1 // SPDX-License-Identifier: GPL-2.0 2 /****************************************************************************** 3 * rtl8712_recv.c 4 * 5 * Copyright(c) 2007 - 2010 Realtek Corporation. All rights reserved. 6 * Linux device driver for RTL8192SU 7 * 8 * Modifications for inclusion into the Linux staging tree are 9 * Copyright(c) 2010 Larry Finger. All rights reserved. 10 * 11 * Contact information: 12 * WLAN FAE <wlanfae@realtek.com> 13 * Larry Finger <Larry.Finger@lwfinger.net> 14 * 15 ******************************************************************************/ 16 17 #define _RTL8712_RECV_C_ 18 19 #include <linux/if_ether.h> 20 #include <linux/ip.h> 21 22 #include "osdep_service.h" 23 #include "drv_types.h" 24 #include "recv_osdep.h" 25 #include "mlme_osdep.h" 26 #include "ethernet.h" 27 #include "usb_ops.h" 28 #include "wifi.h" 29 30 /* Bridge-Tunnel header (for EtherTypes ETH_P_AARP and ETH_P_IPX) */ 31 static u8 bridge_tunnel_header[] = {0xaa, 0xaa, 0x03, 0x00, 0x00, 0xf8}; 32 33 /* Ethernet-II snap header (RFC1042 for most EtherTypes) */ 34 static u8 rfc1042_header[] = {0xaa, 0xaa, 0x03, 0x00, 0x00, 0x00}; 35 36 static void recv_tasklet(void *priv); 37 38 int r8712_init_recv_priv(struct recv_priv *precvpriv, struct _adapter *padapter) 39 { 40 int i; 41 struct recv_buf *precvbuf; 42 int res = _SUCCESS; 43 addr_t tmpaddr = 0; 44 int alignment = 0; 45 struct sk_buff *pskb = NULL; 46 47 /*init recv_buf*/ 48 _init_queue(&precvpriv->free_recv_buf_queue); 49 precvpriv->pallocated_recv_buf = 50 kzalloc(NR_RECVBUFF * sizeof(struct recv_buf) + 4, GFP_ATOMIC); 51 if (!precvpriv->pallocated_recv_buf) 52 return _FAIL; 53 precvpriv->precv_buf = precvpriv->pallocated_recv_buf + 4 - 54 ((addr_t)(precvpriv->pallocated_recv_buf) & 3); 55 precvbuf = (struct recv_buf *)precvpriv->precv_buf; 56 for (i = 0; i < NR_RECVBUFF; i++) { 57 INIT_LIST_HEAD(&precvbuf->list); 58 spin_lock_init(&precvbuf->recvbuf_lock); 59 res = r8712_os_recvbuf_resource_alloc(padapter, precvbuf); 60 if (res == _FAIL) 61 break; 62 precvbuf->ref_cnt = 0; 63 precvbuf->adapter = padapter; 64 list_add_tail(&precvbuf->list, 65 &(precvpriv->free_recv_buf_queue.queue)); 66 precvbuf++; 67 } 68 precvpriv->free_recv_buf_queue_cnt = NR_RECVBUFF; 69 tasklet_init(&precvpriv->recv_tasklet, 70 (void(*)(unsigned long))recv_tasklet, 71 (unsigned long)padapter); 72 skb_queue_head_init(&precvpriv->rx_skb_queue); 73 74 skb_queue_head_init(&precvpriv->free_recv_skb_queue); 75 for (i = 0; i < NR_PREALLOC_RECV_SKB; i++) { 76 pskb = netdev_alloc_skb(padapter->pnetdev, MAX_RECVBUF_SZ + 77 RECVBUFF_ALIGN_SZ); 78 if (pskb) { 79 tmpaddr = (addr_t)pskb->data; 80 alignment = tmpaddr & (RECVBUFF_ALIGN_SZ - 1); 81 skb_reserve(pskb, (RECVBUFF_ALIGN_SZ - alignment)); 82 skb_queue_tail(&precvpriv->free_recv_skb_queue, pskb); 83 } 84 pskb = NULL; 85 } 86 return res; 87 } 88 89 void r8712_free_recv_priv(struct recv_priv *precvpriv) 90 { 91 int i; 92 struct recv_buf *precvbuf; 93 struct _adapter *padapter = precvpriv->adapter; 94 95 precvbuf = (struct recv_buf *)precvpriv->precv_buf; 96 for (i = 0; i < NR_RECVBUFF; i++) { 97 r8712_os_recvbuf_resource_free(padapter, precvbuf); 98 precvbuf++; 99 } 100 kfree(precvpriv->pallocated_recv_buf); 101 skb_queue_purge(&precvpriv->rx_skb_queue); 102 if (skb_queue_len(&precvpriv->rx_skb_queue)) 103 netdev_warn(padapter->pnetdev, "r8712u: rx_skb_queue not empty\n"); 104 skb_queue_purge(&precvpriv->free_recv_skb_queue); 105 if (skb_queue_len(&precvpriv->free_recv_skb_queue)) 106 netdev_warn(padapter->pnetdev, "r8712u: free_recv_skb_queue not empty %d\n", 107 skb_queue_len(&precvpriv->free_recv_skb_queue)); 108 } 109 110 int r8712_init_recvbuf(struct _adapter *padapter, struct recv_buf *precvbuf) 111 { 112 precvbuf->transfer_len = 0; 113 precvbuf->len = 0; 114 precvbuf->ref_cnt = 0; 115 if (precvbuf->pbuf) { 116 precvbuf->pdata = precvbuf->pbuf; 117 precvbuf->phead = precvbuf->pbuf; 118 precvbuf->ptail = precvbuf->pbuf; 119 precvbuf->pend = precvbuf->pdata + MAX_RECVBUF_SZ; 120 } 121 return _SUCCESS; 122 } 123 124 int r8712_free_recvframe(union recv_frame *precvframe, 125 struct __queue *pfree_recv_queue) 126 { 127 unsigned long irqL; 128 struct _adapter *padapter = precvframe->u.hdr.adapter; 129 struct recv_priv *precvpriv = &padapter->recvpriv; 130 131 if (precvframe->u.hdr.pkt) { 132 dev_kfree_skb_any(precvframe->u.hdr.pkt);/*free skb by driver*/ 133 precvframe->u.hdr.pkt = NULL; 134 } 135 spin_lock_irqsave(&pfree_recv_queue->lock, irqL); 136 list_del_init(&(precvframe->u.hdr.list)); 137 list_add_tail(&(precvframe->u.hdr.list), &pfree_recv_queue->queue); 138 if (padapter) { 139 if (pfree_recv_queue == &precvpriv->free_recv_queue) 140 precvpriv->free_recvframe_cnt++; 141 } 142 spin_unlock_irqrestore(&pfree_recv_queue->lock, irqL); 143 return _SUCCESS; 144 } 145 146 static void update_recvframe_attrib_from_recvstat(struct rx_pkt_attrib *pattrib, 147 struct recv_stat *prxstat) 148 { 149 u16 drvinfo_sz; 150 151 drvinfo_sz = (le32_to_cpu(prxstat->rxdw0) & 0x000f0000) >> 16; 152 drvinfo_sz <<= 3; 153 /*TODO: 154 * Offset 0 155 */ 156 pattrib->bdecrypted = ((le32_to_cpu(prxstat->rxdw0) & BIT(27)) >> 27) 157 ? 0 : 1; 158 pattrib->crc_err = (le32_to_cpu(prxstat->rxdw0) & BIT(14)) >> 14; 159 /*Offset 4*/ 160 /*Offset 8*/ 161 /*Offset 12*/ 162 if (le32_to_cpu(prxstat->rxdw3) & BIT(13)) { 163 pattrib->tcpchk_valid = 1; /* valid */ 164 if (le32_to_cpu(prxstat->rxdw3) & BIT(11)) 165 pattrib->tcp_chkrpt = 1; /* correct */ 166 else 167 pattrib->tcp_chkrpt = 0; /* incorrect */ 168 if (le32_to_cpu(prxstat->rxdw3) & BIT(12)) 169 pattrib->ip_chkrpt = 1; /* correct */ 170 else 171 pattrib->ip_chkrpt = 0; /* incorrect */ 172 } else { 173 pattrib->tcpchk_valid = 0; /* invalid */ 174 } 175 pattrib->mcs_rate = (u8)((le32_to_cpu(prxstat->rxdw3)) & 0x3f); 176 pattrib->htc = (u8)((le32_to_cpu(prxstat->rxdw3) >> 14) & 0x1); 177 /*Offset 16*/ 178 /*Offset 20*/ 179 /*phy_info*/ 180 } 181 182 /*perform defrag*/ 183 static union recv_frame *recvframe_defrag(struct _adapter *adapter, 184 struct __queue *defrag_q) 185 { 186 struct list_head *plist, *phead; 187 u8 wlanhdr_offset; 188 u8 curfragnum; 189 struct recv_frame_hdr *pfhdr, *pnfhdr; 190 union recv_frame *prframe, *pnextrframe; 191 struct __queue *pfree_recv_queue; 192 193 pfree_recv_queue = &adapter->recvpriv.free_recv_queue; 194 phead = &defrag_q->queue; 195 plist = phead->next; 196 prframe = container_of(plist, union recv_frame, u.list); 197 list_del_init(&prframe->u.list); 198 pfhdr = &prframe->u.hdr; 199 curfragnum = 0; 200 if (curfragnum != pfhdr->attrib.frag_num) { 201 /*the first fragment number must be 0 202 *free the whole queue 203 */ 204 r8712_free_recvframe(prframe, pfree_recv_queue); 205 r8712_free_recvframe_queue(defrag_q, pfree_recv_queue); 206 return NULL; 207 } 208 curfragnum++; 209 plist = &defrag_q->queue; 210 plist = plist->next; 211 while (!end_of_queue_search(phead, plist)) { 212 pnextrframe = container_of(plist, union recv_frame, u.list); 213 pnfhdr = &pnextrframe->u.hdr; 214 /*check the fragment sequence (2nd ~n fragment frame) */ 215 if (curfragnum != pnfhdr->attrib.frag_num) { 216 /* the fragment number must increase (after decache) 217 * release the defrag_q & prframe 218 */ 219 r8712_free_recvframe(prframe, pfree_recv_queue); 220 r8712_free_recvframe_queue(defrag_q, pfree_recv_queue); 221 return NULL; 222 } 223 curfragnum++; 224 /* copy the 2nd~n fragment frame's payload to the first fragment 225 * get the 2nd~last fragment frame's payload 226 */ 227 wlanhdr_offset = pnfhdr->attrib.hdrlen + pnfhdr->attrib.iv_len; 228 recvframe_pull(pnextrframe, wlanhdr_offset); 229 /* append to first fragment frame's tail (if privacy frame, 230 * pull the ICV) 231 */ 232 recvframe_pull_tail(prframe, pfhdr->attrib.icv_len); 233 memcpy(pfhdr->rx_tail, pnfhdr->rx_data, pnfhdr->len); 234 recvframe_put(prframe, pnfhdr->len); 235 pfhdr->attrib.icv_len = pnfhdr->attrib.icv_len; 236 plist = plist->next; 237 } 238 /* free the defrag_q queue and return the prframe */ 239 r8712_free_recvframe_queue(defrag_q, pfree_recv_queue); 240 return prframe; 241 } 242 243 /* check if need to defrag, if needed queue the frame to defrag_q */ 244 union recv_frame *r8712_recvframe_chk_defrag(struct _adapter *padapter, 245 union recv_frame *precv_frame) 246 { 247 u8 ismfrag; 248 u8 fragnum; 249 u8 *psta_addr; 250 struct recv_frame_hdr *pfhdr; 251 struct sta_info *psta; 252 struct sta_priv *pstapriv; 253 struct list_head *phead; 254 union recv_frame *prtnframe = NULL; 255 struct __queue *pfree_recv_queue, *pdefrag_q; 256 257 pstapriv = &padapter->stapriv; 258 pfhdr = &precv_frame->u.hdr; 259 pfree_recv_queue = &padapter->recvpriv.free_recv_queue; 260 /* need to define struct of wlan header frame ctrl */ 261 ismfrag = pfhdr->attrib.mfrag; 262 fragnum = pfhdr->attrib.frag_num; 263 psta_addr = pfhdr->attrib.ta; 264 psta = r8712_get_stainfo(pstapriv, psta_addr); 265 if (!psta) 266 pdefrag_q = NULL; 267 else 268 pdefrag_q = &psta->sta_recvpriv.defrag_q; 269 270 if ((ismfrag == 0) && (fragnum == 0)) 271 prtnframe = precv_frame;/*isn't a fragment frame*/ 272 if (ismfrag == 1) { 273 /* 0~(n-1) fragment frame 274 * enqueue to defraf_g 275 */ 276 if (pdefrag_q) { 277 if (fragnum == 0) { 278 /*the first fragment*/ 279 if (!list_empty(&pdefrag_q->queue)) { 280 /*free current defrag_q */ 281 r8712_free_recvframe_queue(pdefrag_q, 282 pfree_recv_queue); 283 } 284 } 285 /* Then enqueue the 0~(n-1) fragment to the defrag_q */ 286 phead = &pdefrag_q->queue; 287 list_add_tail(&pfhdr->list, phead); 288 prtnframe = NULL; 289 } else { 290 /* can't find this ta's defrag_queue, so free this 291 * recv_frame 292 */ 293 r8712_free_recvframe(precv_frame, pfree_recv_queue); 294 prtnframe = NULL; 295 } 296 297 } 298 if ((ismfrag == 0) && (fragnum != 0)) { 299 /* the last fragment frame 300 * enqueue the last fragment 301 */ 302 if (pdefrag_q) { 303 phead = &pdefrag_q->queue; 304 list_add_tail(&pfhdr->list, phead); 305 /*call recvframe_defrag to defrag*/ 306 precv_frame = recvframe_defrag(padapter, pdefrag_q); 307 prtnframe = precv_frame; 308 } else { 309 /* can't find this ta's defrag_queue, so free this 310 * recv_frame 311 */ 312 r8712_free_recvframe(precv_frame, pfree_recv_queue); 313 prtnframe = NULL; 314 } 315 } 316 if (prtnframe && (prtnframe->u.hdr.attrib.privacy)) { 317 /* after defrag we must check tkip mic code */ 318 if (r8712_recvframe_chkmic(padapter, prtnframe) == _FAIL) { 319 r8712_free_recvframe(prtnframe, pfree_recv_queue); 320 prtnframe = NULL; 321 } 322 } 323 return prtnframe; 324 } 325 326 static int amsdu_to_msdu(struct _adapter *padapter, union recv_frame *prframe) 327 { 328 int a_len, padding_len; 329 u16 eth_type, nSubframe_Length; 330 u8 nr_subframes, i; 331 unsigned char *pdata; 332 struct rx_pkt_attrib *pattrib; 333 _pkt *sub_skb, *subframes[MAX_SUBFRAME_COUNT]; 334 struct recv_priv *precvpriv = &padapter->recvpriv; 335 struct __queue *pfree_recv_queue = &(precvpriv->free_recv_queue); 336 337 nr_subframes = 0; 338 pattrib = &prframe->u.hdr.attrib; 339 recvframe_pull(prframe, prframe->u.hdr.attrib.hdrlen); 340 if (prframe->u.hdr.attrib.iv_len > 0) 341 recvframe_pull(prframe, prframe->u.hdr.attrib.iv_len); 342 a_len = prframe->u.hdr.len; 343 pdata = prframe->u.hdr.rx_data; 344 while (a_len > ETH_HLEN) { 345 /* Offset 12 denote 2 mac address */ 346 nSubframe_Length = *((u16 *)(pdata + 12)); 347 /*==m==>change the length order*/ 348 nSubframe_Length = (nSubframe_Length >> 8) + 349 (nSubframe_Length << 8); 350 if (a_len < (ETHERNET_HEADER_SIZE + nSubframe_Length)) { 351 netdev_warn(padapter->pnetdev, "r8712u: nRemain_Length is %d and nSubframe_Length is: %d\n", 352 a_len, nSubframe_Length); 353 goto exit; 354 } 355 /* move the data point to data content */ 356 pdata += ETH_HLEN; 357 a_len -= ETH_HLEN; 358 /* Allocate new skb for releasing to upper layer */ 359 sub_skb = dev_alloc_skb(nSubframe_Length + 12); 360 if (!sub_skb) 361 break; 362 skb_reserve(sub_skb, 12); 363 skb_put_data(sub_skb, pdata, nSubframe_Length); 364 subframes[nr_subframes++] = sub_skb; 365 if (nr_subframes >= MAX_SUBFRAME_COUNT) { 366 netdev_warn(padapter->pnetdev, "r8712u: ParseSubframe(): Too many Subframes! Packets dropped!\n"); 367 break; 368 } 369 pdata += nSubframe_Length; 370 a_len -= nSubframe_Length; 371 if (a_len != 0) { 372 padding_len = 4 - ((nSubframe_Length + ETH_HLEN) & 3); 373 if (padding_len == 4) 374 padding_len = 0; 375 if (a_len < padding_len) 376 goto exit; 377 pdata += padding_len; 378 a_len -= padding_len; 379 } 380 } 381 for (i = 0; i < nr_subframes; i++) { 382 sub_skb = subframes[i]; 383 /* convert hdr + possible LLC headers into Ethernet header */ 384 eth_type = (sub_skb->data[6] << 8) | sub_skb->data[7]; 385 if (sub_skb->len >= 8 && 386 ((!memcmp(sub_skb->data, rfc1042_header, SNAP_SIZE) && 387 eth_type != ETH_P_AARP && eth_type != ETH_P_IPX) || 388 !memcmp(sub_skb->data, bridge_tunnel_header, SNAP_SIZE))) { 389 /* remove RFC1042 or Bridge-Tunnel encapsulation and 390 * replace EtherType 391 */ 392 skb_pull(sub_skb, SNAP_SIZE); 393 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->src, 394 ETH_ALEN); 395 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->dst, 396 ETH_ALEN); 397 } else { 398 __be16 len; 399 /* Leave Ethernet header part of hdr and full payload */ 400 len = htons(sub_skb->len); 401 memcpy(skb_push(sub_skb, 2), &len, 2); 402 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->src, 403 ETH_ALEN); 404 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->dst, 405 ETH_ALEN); 406 } 407 /* Indicate the packets to upper layer */ 408 if (sub_skb) { 409 sub_skb->protocol = 410 eth_type_trans(sub_skb, padapter->pnetdev); 411 sub_skb->dev = padapter->pnetdev; 412 if ((pattrib->tcpchk_valid == 1) && 413 (pattrib->tcp_chkrpt == 1)) { 414 sub_skb->ip_summed = CHECKSUM_UNNECESSARY; 415 } else { 416 sub_skb->ip_summed = CHECKSUM_NONE; 417 } 418 netif_rx(sub_skb); 419 } 420 } 421 exit: 422 prframe->u.hdr.len = 0; 423 r8712_free_recvframe(prframe, pfree_recv_queue); 424 return _SUCCESS; 425 } 426 427 void r8712_rxcmd_event_hdl(struct _adapter *padapter, void *prxcmdbuf) 428 { 429 __le32 voffset; 430 u8 *poffset; 431 u16 cmd_len, drvinfo_sz; 432 struct recv_stat *prxstat; 433 434 poffset = prxcmdbuf; 435 voffset = *(__le32 *)poffset; 436 prxstat = prxcmdbuf; 437 drvinfo_sz = (le32_to_cpu(prxstat->rxdw0) & 0x000f0000) >> 16; 438 drvinfo_sz <<= 3; 439 poffset += RXDESC_SIZE + drvinfo_sz; 440 do { 441 voffset = *(__le32 *)poffset; 442 cmd_len = (u16)(le32_to_cpu(voffset) & 0xffff); 443 r8712_event_handle(padapter, (__le32 *)poffset); 444 poffset += (cmd_len + 8);/*8 bytes alignment*/ 445 } while (le32_to_cpu(voffset) & BIT(31)); 446 447 } 448 449 static int check_indicate_seq(struct recv_reorder_ctrl *preorder_ctrl, 450 u16 seq_num) 451 { 452 u8 wsize = preorder_ctrl->wsize_b; 453 u16 wend = (preorder_ctrl->indicate_seq + wsize - 1) % 4096; 454 455 /* Rx Reorder initialize condition.*/ 456 if (preorder_ctrl->indicate_seq == 0xffff) 457 preorder_ctrl->indicate_seq = seq_num; 458 /* Drop out the packet which SeqNum is smaller than WinStart */ 459 if (SN_LESS(seq_num, preorder_ctrl->indicate_seq)) 460 return false; 461 /* 462 * Sliding window manipulation. Conditions includes: 463 * 1. Incoming SeqNum is equal to WinStart =>Window shift 1 464 * 2. Incoming SeqNum is larger than the WinEnd => Window shift N 465 */ 466 if (SN_EQUAL(seq_num, preorder_ctrl->indicate_seq)) 467 preorder_ctrl->indicate_seq = (preorder_ctrl->indicate_seq + 468 1) % 4096; 469 else if (SN_LESS(wend, seq_num)) { 470 if (seq_num >= (wsize - 1)) 471 preorder_ctrl->indicate_seq = seq_num + 1 - wsize; 472 else 473 preorder_ctrl->indicate_seq = 4095 - (wsize - 474 (seq_num + 1)) + 1; 475 } 476 return true; 477 } 478 479 static int enqueue_reorder_recvframe(struct recv_reorder_ctrl *preorder_ctrl, 480 union recv_frame *prframe) 481 { 482 struct list_head *phead, *plist; 483 union recv_frame *pnextrframe; 484 struct rx_pkt_attrib *pnextattrib; 485 struct __queue *ppending_recvframe_queue = 486 &preorder_ctrl->pending_recvframe_queue; 487 struct rx_pkt_attrib *pattrib = &prframe->u.hdr.attrib; 488 489 phead = &ppending_recvframe_queue->queue; 490 plist = phead->next; 491 while (!end_of_queue_search(phead, plist)) { 492 pnextrframe = container_of(plist, union recv_frame, u.list); 493 pnextattrib = &pnextrframe->u.hdr.attrib; 494 if (SN_LESS(pnextattrib->seq_num, pattrib->seq_num)) 495 plist = plist->next; 496 else if (SN_EQUAL(pnextattrib->seq_num, pattrib->seq_num)) 497 return false; 498 else 499 break; 500 } 501 list_del_init(&(prframe->u.hdr.list)); 502 list_add_tail(&(prframe->u.hdr.list), plist); 503 return true; 504 } 505 506 int r8712_recv_indicatepkts_in_order(struct _adapter *padapter, 507 struct recv_reorder_ctrl *preorder_ctrl, 508 int bforced) 509 { 510 struct list_head *phead, *plist; 511 union recv_frame *prframe; 512 struct rx_pkt_attrib *pattrib; 513 int bPktInBuf = false; 514 struct recv_priv *precvpriv = &padapter->recvpriv; 515 struct __queue *ppending_recvframe_queue = 516 &preorder_ctrl->pending_recvframe_queue; 517 518 phead = &ppending_recvframe_queue->queue; 519 plist = phead->next; 520 /* Handling some condition for forced indicate case.*/ 521 if (bforced) { 522 if (list_empty(phead)) 523 return true; 524 525 prframe = container_of(plist, union recv_frame, u.list); 526 pattrib = &prframe->u.hdr.attrib; 527 preorder_ctrl->indicate_seq = pattrib->seq_num; 528 } 529 /* Prepare indication list and indication. 530 * Check if there is any packet need indicate. 531 */ 532 while (!list_empty(phead)) { 533 prframe = container_of(plist, union recv_frame, u.list); 534 pattrib = &prframe->u.hdr.attrib; 535 if (!SN_LESS(preorder_ctrl->indicate_seq, pattrib->seq_num)) { 536 plist = plist->next; 537 list_del_init(&(prframe->u.hdr.list)); 538 if (SN_EQUAL(preorder_ctrl->indicate_seq, 539 pattrib->seq_num)) 540 preorder_ctrl->indicate_seq = 541 (preorder_ctrl->indicate_seq + 1) % 4096; 542 /*indicate this recv_frame*/ 543 if (!pattrib->amsdu) { 544 if (!padapter->driver_stopped && 545 !padapter->surprise_removed) { 546 /* indicate this recv_frame */ 547 r8712_recv_indicatepkt(padapter, 548 prframe); 549 } 550 } else if (pattrib->amsdu == 1) { 551 if (amsdu_to_msdu(padapter, prframe) != 552 _SUCCESS) 553 r8712_free_recvframe(prframe, 554 &precvpriv->free_recv_queue); 555 } 556 /* Update local variables. */ 557 bPktInBuf = false; 558 } else { 559 bPktInBuf = true; 560 break; 561 } 562 } 563 return bPktInBuf; 564 } 565 566 static int recv_indicatepkt_reorder(struct _adapter *padapter, 567 union recv_frame *prframe) 568 { 569 unsigned long irql; 570 struct rx_pkt_attrib *pattrib = &prframe->u.hdr.attrib; 571 struct recv_reorder_ctrl *preorder_ctrl = prframe->u.hdr.preorder_ctrl; 572 struct __queue *ppending_recvframe_queue = 573 &preorder_ctrl->pending_recvframe_queue; 574 575 if (!pattrib->amsdu) { 576 /* s1. */ 577 r8712_wlanhdr_to_ethhdr(prframe); 578 if (pattrib->qos != 1) { 579 if (!padapter->driver_stopped && 580 !padapter->surprise_removed) { 581 r8712_recv_indicatepkt(padapter, prframe); 582 return _SUCCESS; 583 } else { 584 return _FAIL; 585 } 586 } 587 } 588 spin_lock_irqsave(&ppending_recvframe_queue->lock, irql); 589 /*s2. check if winstart_b(indicate_seq) needs to be updated*/ 590 if (!check_indicate_seq(preorder_ctrl, pattrib->seq_num)) 591 goto _err_exit; 592 /*s3. Insert all packet into Reorder Queue to maintain its ordering.*/ 593 if (!enqueue_reorder_recvframe(preorder_ctrl, prframe)) 594 goto _err_exit; 595 /*s4. 596 * Indication process. 597 * After Packet dropping and Sliding Window shifting as above, we can 598 * now just indicate the packets with the SeqNum smaller than latest 599 * WinStart and buffer other packets. 600 * 601 * For Rx Reorder condition: 602 * 1. All packets with SeqNum smaller than WinStart => Indicate 603 * 2. All packets with SeqNum larger than or equal to 604 * WinStart => Buffer it. 605 */ 606 if (r8712_recv_indicatepkts_in_order(padapter, preorder_ctrl, false) == 607 true) { 608 mod_timer(&preorder_ctrl->reordering_ctrl_timer, 609 jiffies + msecs_to_jiffies(REORDER_WAIT_TIME)); 610 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 611 } else { 612 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 613 del_timer(&preorder_ctrl->reordering_ctrl_timer); 614 } 615 return _SUCCESS; 616 _err_exit: 617 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 618 return _FAIL; 619 } 620 621 void r8712_reordering_ctrl_timeout_handler(void *pcontext) 622 { 623 unsigned long irql; 624 struct recv_reorder_ctrl *preorder_ctrl = pcontext; 625 struct _adapter *padapter = preorder_ctrl->padapter; 626 struct __queue *ppending_recvframe_queue = 627 &preorder_ctrl->pending_recvframe_queue; 628 629 if (padapter->driver_stopped || padapter->surprise_removed) 630 return; 631 spin_lock_irqsave(&ppending_recvframe_queue->lock, irql); 632 r8712_recv_indicatepkts_in_order(padapter, preorder_ctrl, true); 633 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 634 } 635 636 static int r8712_process_recv_indicatepkts(struct _adapter *padapter, 637 union recv_frame *prframe) 638 { 639 int retval = _SUCCESS; 640 struct mlme_priv *pmlmepriv = &padapter->mlmepriv; 641 struct ht_priv *phtpriv = &pmlmepriv->htpriv; 642 643 if (phtpriv->ht_option == 1) { /*B/G/N Mode*/ 644 if (recv_indicatepkt_reorder(padapter, prframe) != _SUCCESS) { 645 /* including perform A-MPDU Rx Ordering Buffer Control*/ 646 if (!padapter->driver_stopped && 647 !padapter->surprise_removed) 648 return _FAIL; 649 } 650 } else { /*B/G mode*/ 651 retval = r8712_wlanhdr_to_ethhdr(prframe); 652 if (retval != _SUCCESS) 653 return retval; 654 if (!padapter->driver_stopped && !padapter->surprise_removed) { 655 /* indicate this recv_frame */ 656 r8712_recv_indicatepkt(padapter, prframe); 657 } else { 658 return _FAIL; 659 } 660 } 661 return retval; 662 } 663 664 static u8 query_rx_pwr_percentage(s8 antpower) 665 { 666 if ((antpower <= -100) || (antpower >= 20)) 667 return 0; 668 else if (antpower >= 0) 669 return 100; 670 else 671 return 100 + antpower; 672 } 673 674 static u8 evm_db2percentage(s8 value) 675 { 676 /* 677 * -33dB~0dB to 0%~99% 678 */ 679 s8 ret_val; 680 681 ret_val = value; 682 if (ret_val >= 0) 683 ret_val = 0; 684 if (ret_val <= -33) 685 ret_val = -33; 686 ret_val = -ret_val; 687 ret_val *= 3; 688 if (ret_val == 99) 689 ret_val = 100; 690 return ret_val; 691 } 692 693 s32 r8712_signal_scale_mapping(s32 cur_sig) 694 { 695 s32 ret_sig; 696 697 if (cur_sig >= 51 && cur_sig <= 100) 698 ret_sig = 100; 699 else if (cur_sig >= 41 && cur_sig <= 50) 700 ret_sig = 80 + ((cur_sig - 40) * 2); 701 else if (cur_sig >= 31 && cur_sig <= 40) 702 ret_sig = 66 + (cur_sig - 30); 703 else if (cur_sig >= 21 && cur_sig <= 30) 704 ret_sig = 54 + (cur_sig - 20); 705 else if (cur_sig >= 10 && cur_sig <= 20) 706 ret_sig = 42 + (((cur_sig - 10) * 2) / 3); 707 else if (cur_sig >= 5 && cur_sig <= 9) 708 ret_sig = 22 + (((cur_sig - 5) * 3) / 2); 709 else if (cur_sig >= 1 && cur_sig <= 4) 710 ret_sig = 6 + (((cur_sig - 1) * 3) / 2); 711 else 712 ret_sig = cur_sig; 713 return ret_sig; 714 } 715 716 static s32 translate2dbm(struct _adapter *padapter, u8 signal_strength_idx) 717 { 718 s32 signal_power; /* in dBm.*/ 719 /* Translate to dBm (x=0.5y-95).*/ 720 signal_power = (s32)((signal_strength_idx + 1) >> 1); 721 signal_power -= 95; 722 return signal_power; 723 } 724 725 static void query_rx_phy_status(struct _adapter *padapter, 726 union recv_frame *prframe) 727 { 728 u8 i, max_spatial_stream, evm; 729 struct recv_stat *prxstat = (struct recv_stat *)prframe->u.hdr.rx_head; 730 struct phy_stat *pphy_stat = (struct phy_stat *)(prxstat + 1); 731 u8 *pphy_head = (u8 *)(prxstat + 1); 732 s8 rx_pwr[4], rx_pwr_all; 733 u8 pwdb_all; 734 u32 rssi, total_rssi = 0; 735 u8 bcck_rate = 0, rf_rx_num = 0, cck_highpwr = 0; 736 struct phy_cck_rx_status *pcck_buf; 737 u8 sq; 738 739 /* Record it for next packet processing*/ 740 bcck_rate = (prframe->u.hdr.attrib.mcs_rate <= 3 ? 1 : 0); 741 if (bcck_rate) { 742 u8 report; 743 744 /* CCK Driver info Structure is not the same as OFDM packet.*/ 745 pcck_buf = (struct phy_cck_rx_status *)pphy_stat; 746 /* (1)Hardware does not provide RSSI for CCK 747 * (2)PWDB, Average PWDB calculated by hardware 748 * (for rate adaptive) 749 */ 750 if (!cck_highpwr) { 751 report = pcck_buf->cck_agc_rpt & 0xc0; 752 report >>= 6; 753 switch (report) { 754 /* Modify the RF RNA gain value to -40, -20, 755 * -2, 14 by Jenyu's suggestion 756 * Note: different RF with the different 757 * RNA gain. 758 */ 759 case 0x3: 760 rx_pwr_all = -40 - (pcck_buf->cck_agc_rpt & 761 0x3e); 762 break; 763 case 0x2: 764 rx_pwr_all = -20 - (pcck_buf->cck_agc_rpt & 765 0x3e); 766 break; 767 case 0x1: 768 rx_pwr_all = -2 - (pcck_buf->cck_agc_rpt & 769 0x3e); 770 break; 771 case 0x0: 772 rx_pwr_all = 14 - (pcck_buf->cck_agc_rpt & 773 0x3e); 774 break; 775 } 776 } else { 777 report = ((u8)(le32_to_cpu(pphy_stat->phydw1) >> 8)) & 778 0x60; 779 report >>= 5; 780 switch (report) { 781 case 0x3: 782 rx_pwr_all = -40 - ((pcck_buf->cck_agc_rpt & 783 0x1f) << 1); 784 break; 785 case 0x2: 786 rx_pwr_all = -20 - ((pcck_buf->cck_agc_rpt & 787 0x1f) << 1); 788 break; 789 case 0x1: 790 rx_pwr_all = -2 - ((pcck_buf->cck_agc_rpt & 791 0x1f) << 1); 792 break; 793 case 0x0: 794 rx_pwr_all = 14 - ((pcck_buf->cck_agc_rpt & 795 0x1f) << 1); 796 break; 797 } 798 } 799 pwdb_all = query_rx_pwr_percentage(rx_pwr_all); 800 /* CCK gain is smaller than OFDM/MCS gain,*/ 801 /* so we add gain diff by experiences, the val is 6 */ 802 pwdb_all += 6; 803 if (pwdb_all > 100) 804 pwdb_all = 100; 805 /* modify the offset to make the same gain index with OFDM.*/ 806 if (pwdb_all > 34 && pwdb_all <= 42) 807 pwdb_all -= 2; 808 else if (pwdb_all > 26 && pwdb_all <= 34) 809 pwdb_all -= 6; 810 else if (pwdb_all > 14 && pwdb_all <= 26) 811 pwdb_all -= 8; 812 else if (pwdb_all > 4 && pwdb_all <= 14) 813 pwdb_all -= 4; 814 /* 815 * (3) Get Signal Quality (EVM) 816 */ 817 if (pwdb_all > 40) { 818 sq = 100; 819 } else { 820 sq = pcck_buf->sq_rpt; 821 if (pcck_buf->sq_rpt > 64) 822 sq = 0; 823 else if (pcck_buf->sq_rpt < 20) 824 sq = 100; 825 else 826 sq = ((64 - sq) * 100) / 44; 827 } 828 prframe->u.hdr.attrib.signal_qual = sq; 829 prframe->u.hdr.attrib.rx_mimo_signal_qual[0] = sq; 830 prframe->u.hdr.attrib.rx_mimo_signal_qual[1] = -1; 831 } else { 832 /* (1)Get RSSI for HT rate */ 833 for (i = 0; i < ((padapter->registrypriv.rf_config) & 834 0x0f); i++) { 835 rf_rx_num++; 836 rx_pwr[i] = ((pphy_head[PHY_STAT_GAIN_TRSW_SHT + i] 837 & 0x3F) * 2) - 110; 838 /* Translate DBM to percentage. */ 839 rssi = query_rx_pwr_percentage(rx_pwr[i]); 840 total_rssi += rssi; 841 } 842 /* (2)PWDB, Average PWDB calculated by hardware (for 843 * rate adaptive) 844 */ 845 rx_pwr_all = (((pphy_head[PHY_STAT_PWDB_ALL_SHT]) >> 1) & 0x7f) 846 - 106; 847 pwdb_all = query_rx_pwr_percentage(rx_pwr_all); 848 849 { 850 /* (3)EVM of HT rate */ 851 if (prframe->u.hdr.attrib.htc && 852 prframe->u.hdr.attrib.mcs_rate >= 20 && 853 prframe->u.hdr.attrib.mcs_rate <= 27) { 854 /* both spatial stream make sense */ 855 max_spatial_stream = 2; 856 } else { 857 /* only spatial stream 1 makes sense */ 858 max_spatial_stream = 1; 859 } 860 for (i = 0; i < max_spatial_stream; i++) { 861 evm = evm_db2percentage((pphy_head 862 [PHY_STAT_RXEVM_SHT + i]));/*dbm*/ 863 prframe->u.hdr.attrib.signal_qual = 864 (u8)(evm & 0xff); 865 prframe->u.hdr.attrib.rx_mimo_signal_qual[i] = 866 (u8)(evm & 0xff); 867 } 868 } 869 } 870 /* UI BSS List signal strength(in percentage), make it good looking, 871 * from 0~100. It is assigned to the BSS List in 872 * GetValueFromBeaconOrProbeRsp(). 873 */ 874 if (bcck_rate) { 875 prframe->u.hdr.attrib.signal_strength = 876 (u8)r8712_signal_scale_mapping(pwdb_all); 877 } else { 878 if (rf_rx_num != 0) 879 prframe->u.hdr.attrib.signal_strength = 880 (u8)(r8712_signal_scale_mapping(total_rssi /= 881 rf_rx_num)); 882 } 883 } 884 885 static void process_link_qual(struct _adapter *padapter, 886 union recv_frame *prframe) 887 { 888 u32 last_evm = 0, tmpVal; 889 struct rx_pkt_attrib *pattrib; 890 struct smooth_rssi_data *sqd = &padapter->recvpriv.signal_qual_data; 891 892 if (!prframe || !padapter) 893 return; 894 pattrib = &prframe->u.hdr.attrib; 895 if (pattrib->signal_qual != 0) { 896 /* 897 * 1. Record the general EVM to the sliding window. 898 */ 899 if (sqd->total_num++ >= PHY_LINKQUALITY_SLID_WIN_MAX) { 900 sqd->total_num = PHY_LINKQUALITY_SLID_WIN_MAX; 901 last_evm = sqd->elements[sqd->index]; 902 sqd->total_val -= last_evm; 903 } 904 sqd->total_val += pattrib->signal_qual; 905 sqd->elements[sqd->index++] = pattrib->signal_qual; 906 if (sqd->index >= PHY_LINKQUALITY_SLID_WIN_MAX) 907 sqd->index = 0; 908 909 /* <1> Showed on UI for user, in percentage. */ 910 tmpVal = sqd->total_val / sqd->total_num; 911 padapter->recvpriv.signal = (u8)tmpVal; 912 } 913 } 914 915 static void process_rssi(struct _adapter *padapter, union recv_frame *prframe) 916 { 917 u32 last_rssi, tmp_val; 918 struct rx_pkt_attrib *pattrib = &prframe->u.hdr.attrib; 919 struct smooth_rssi_data *ssd = &padapter->recvpriv.signal_strength_data; 920 921 if (ssd->total_num++ >= PHY_RSSI_SLID_WIN_MAX) { 922 ssd->total_num = PHY_RSSI_SLID_WIN_MAX; 923 last_rssi = ssd->elements[ssd->index]; 924 ssd->total_val -= last_rssi; 925 } 926 ssd->total_val += pattrib->signal_strength; 927 ssd->elements[ssd->index++] = pattrib->signal_strength; 928 if (ssd->index >= PHY_RSSI_SLID_WIN_MAX) 929 ssd->index = 0; 930 tmp_val = ssd->total_val / ssd->total_num; 931 padapter->recvpriv.rssi = (s8)translate2dbm(padapter, (u8)tmp_val); 932 } 933 934 static void process_phy_info(struct _adapter *padapter, 935 union recv_frame *prframe) 936 { 937 query_rx_phy_status(padapter, prframe); 938 process_rssi(padapter, prframe); 939 process_link_qual(padapter, prframe); 940 } 941 942 int recv_func(struct _adapter *padapter, void *pcontext) 943 { 944 struct rx_pkt_attrib *pattrib; 945 union recv_frame *prframe, *orig_prframe; 946 int retval = _SUCCESS; 947 struct __queue *pfree_recv_queue = &padapter->recvpriv.free_recv_queue; 948 struct mlme_priv *pmlmepriv = &padapter->mlmepriv; 949 950 prframe = pcontext; 951 orig_prframe = prframe; 952 pattrib = &prframe->u.hdr.attrib; 953 if (check_fwstate(pmlmepriv, WIFI_MP_STATE)) { 954 if (pattrib->crc_err == 1) 955 padapter->mppriv.rx_crcerrpktcount++; 956 else 957 padapter->mppriv.rx_pktcount++; 958 if (!check_fwstate(pmlmepriv, WIFI_MP_LPBK_STATE)) { 959 /* free this recv_frame */ 960 r8712_free_recvframe(orig_prframe, pfree_recv_queue); 961 goto _exit_recv_func; 962 } 963 } 964 /* check the frame crtl field and decache */ 965 retval = r8712_validate_recv_frame(padapter, prframe); 966 if (retval != _SUCCESS) { 967 /* free this recv_frame */ 968 r8712_free_recvframe(orig_prframe, pfree_recv_queue); 969 goto _exit_recv_func; 970 } 971 process_phy_info(padapter, prframe); 972 prframe = r8712_decryptor(padapter, prframe); 973 if (!prframe) { 974 retval = _FAIL; 975 goto _exit_recv_func; 976 } 977 prframe = r8712_recvframe_chk_defrag(padapter, prframe); 978 if (!prframe) 979 goto _exit_recv_func; 980 prframe = r8712_portctrl(padapter, prframe); 981 if (!prframe) { 982 retval = _FAIL; 983 goto _exit_recv_func; 984 } 985 retval = r8712_process_recv_indicatepkts(padapter, prframe); 986 if (retval != _SUCCESS) { 987 r8712_free_recvframe(orig_prframe, pfree_recv_queue); 988 goto _exit_recv_func; 989 } 990 _exit_recv_func: 991 return retval; 992 } 993 994 static int recvbuf2recvframe(struct _adapter *padapter, struct sk_buff *pskb) 995 { 996 u8 *pbuf, shift_sz = 0; 997 u8 frag, mf; 998 uint pkt_len; 999 u32 transfer_len; 1000 struct recv_stat *prxstat; 1001 u16 pkt_cnt, drvinfo_sz, pkt_offset, tmp_len, alloc_sz; 1002 struct __queue *pfree_recv_queue; 1003 _pkt *pkt_copy = NULL; 1004 union recv_frame *precvframe = NULL; 1005 struct recv_priv *precvpriv = &padapter->recvpriv; 1006 1007 pfree_recv_queue = &(precvpriv->free_recv_queue); 1008 pbuf = pskb->data; 1009 prxstat = (struct recv_stat *)pbuf; 1010 pkt_cnt = (le32_to_cpu(prxstat->rxdw2) >> 16) & 0xff; 1011 pkt_len = le32_to_cpu(prxstat->rxdw0) & 0x00003fff; 1012 transfer_len = pskb->len; 1013 /* Test throughput with Netgear 3700 (No security) with Chariot 3T3R 1014 * pairs. The packet count will be a big number so that the containing 1015 * packet will effect the Rx reordering. 1016 */ 1017 if (transfer_len < pkt_len) { 1018 /* In this case, it means the MAX_RECVBUF_SZ is too small to 1019 * get the data from 8712u. 1020 */ 1021 return _FAIL; 1022 } 1023 do { 1024 prxstat = (struct recv_stat *)pbuf; 1025 pkt_len = le32_to_cpu(prxstat->rxdw0) & 0x00003fff; 1026 /* more fragment bit */ 1027 mf = (le32_to_cpu(prxstat->rxdw1) >> 27) & 0x1; 1028 /* ragmentation number */ 1029 frag = (le32_to_cpu(prxstat->rxdw2) >> 12) & 0xf; 1030 /* uint 2^3 = 8 bytes */ 1031 drvinfo_sz = (le32_to_cpu(prxstat->rxdw0) & 0x000f0000) >> 16; 1032 drvinfo_sz <<= 3; 1033 if (pkt_len <= 0) 1034 goto _exit_recvbuf2recvframe; 1035 /* Qos data, wireless lan header length is 26 */ 1036 if ((le32_to_cpu(prxstat->rxdw0) >> 23) & 0x01) 1037 shift_sz = 2; 1038 precvframe = r8712_alloc_recvframe(pfree_recv_queue); 1039 if (!precvframe) 1040 goto _exit_recvbuf2recvframe; 1041 INIT_LIST_HEAD(&precvframe->u.hdr.list); 1042 precvframe->u.hdr.precvbuf = NULL; /*can't access the precvbuf*/ 1043 precvframe->u.hdr.len = 0; 1044 tmp_len = pkt_len + drvinfo_sz + RXDESC_SIZE; 1045 pkt_offset = (u16)round_up(tmp_len, 128); 1046 /* for first fragment packet, driver need allocate 1536 + 1047 * drvinfo_sz + RXDESC_SIZE to defrag packet. 1048 */ 1049 if ((mf == 1) && (frag == 0)) 1050 /*1658+6=1664, 1664 is 128 alignment.*/ 1051 alloc_sz = max_t(u16, tmp_len, 1658); 1052 else 1053 alloc_sz = tmp_len; 1054 /* 2 is for IP header 4 bytes alignment in QoS packet case. 1055 * 4 is for skb->data 4 bytes alignment. 1056 */ 1057 alloc_sz += 6; 1058 pkt_copy = netdev_alloc_skb(padapter->pnetdev, alloc_sz); 1059 if (pkt_copy) { 1060 precvframe->u.hdr.pkt = pkt_copy; 1061 skb_reserve(pkt_copy, 4 - ((addr_t)(pkt_copy->data) 1062 % 4)); 1063 skb_reserve(pkt_copy, shift_sz); 1064 memcpy(pkt_copy->data, pbuf, tmp_len); 1065 precvframe->u.hdr.rx_head = precvframe->u.hdr.rx_data = 1066 precvframe->u.hdr.rx_tail = pkt_copy->data; 1067 precvframe->u.hdr.rx_end = pkt_copy->data + alloc_sz; 1068 } else { 1069 precvframe->u.hdr.pkt = skb_clone(pskb, GFP_ATOMIC); 1070 if (!precvframe->u.hdr.pkt) 1071 return _FAIL; 1072 precvframe->u.hdr.rx_head = pbuf; 1073 precvframe->u.hdr.rx_data = pbuf; 1074 precvframe->u.hdr.rx_tail = pbuf; 1075 precvframe->u.hdr.rx_end = pbuf + alloc_sz; 1076 } 1077 recvframe_put(precvframe, tmp_len); 1078 recvframe_pull(precvframe, drvinfo_sz + RXDESC_SIZE); 1079 /* because the endian issue, driver avoid reference to the 1080 * rxstat after calling update_recvframe_attrib_from_recvstat(); 1081 */ 1082 update_recvframe_attrib_from_recvstat(&precvframe->u.hdr.attrib, 1083 prxstat); 1084 r8712_recv_entry(precvframe); 1085 transfer_len -= pkt_offset; 1086 pbuf += pkt_offset; 1087 pkt_cnt--; 1088 precvframe = NULL; 1089 pkt_copy = NULL; 1090 } while ((transfer_len > 0) && pkt_cnt > 0); 1091 _exit_recvbuf2recvframe: 1092 return _SUCCESS; 1093 } 1094 1095 static void recv_tasklet(void *priv) 1096 { 1097 struct sk_buff *pskb; 1098 struct _adapter *padapter = priv; 1099 struct recv_priv *precvpriv = &padapter->recvpriv; 1100 1101 while (NULL != (pskb = skb_dequeue(&precvpriv->rx_skb_queue))) { 1102 recvbuf2recvframe(padapter, pskb); 1103 skb_reset_tail_pointer(pskb); 1104 pskb->len = 0; 1105 if (!skb_cloned(pskb)) 1106 skb_queue_tail(&precvpriv->free_recv_skb_queue, pskb); 1107 else 1108 consume_skb(pskb); 1109 } 1110 } 1111