1 // SPDX-License-Identifier: BSD-3-Clause-Clear
2 /*
3 * Copyright (C) 2022 MediaTek Inc.
4 */
5
6 #if defined(__FreeBSD__)
7 #define LINUXKPI_PARAM_PREFIX mt7996_
8 #endif
9
10 #include <linux/firmware.h>
11 #include <linux/fs.h>
12 #include "mt7996.h"
13 #include "mcu.h"
14 #include "mac.h"
15 #include "eeprom.h"
16
17 #define fw_name(_dev, name, ...) ({ \
18 char *_fw; \
19 switch (mt76_chip(&(_dev)->mt76)) { \
20 case MT7992_DEVICE_ID: \
21 switch ((_dev)->var.type) { \
22 case MT7992_VAR_TYPE_23: \
23 _fw = MT7992_##name##_23; \
24 break; \
25 default: \
26 _fw = MT7992_##name; \
27 } \
28 break; \
29 case MT7990_DEVICE_ID: \
30 _fw = MT7990_##name; \
31 break; \
32 case MT7996_DEVICE_ID: \
33 default: \
34 switch ((_dev)->var.type) { \
35 case MT7996_VAR_TYPE_233: \
36 _fw = MT7996_##name##_233; \
37 break; \
38 default: \
39 _fw = MT7996_##name; \
40 } \
41 break; \
42 } \
43 _fw; \
44 })
45
46 struct mt7996_patch_hdr {
47 char build_date[16];
48 char platform[4];
49 __be32 hw_sw_ver;
50 __be32 patch_ver;
51 __be16 checksum;
52 u16 reserved;
53 struct {
54 __be32 patch_ver;
55 __be32 subsys;
56 __be32 feature;
57 __be32 n_region;
58 __be32 crc;
59 u32 reserved[11];
60 } desc;
61 } __packed;
62
63 struct mt7996_patch_sec {
64 __be32 type;
65 __be32 offs;
66 __be32 size;
67 union {
68 __be32 spec[13];
69 struct {
70 __be32 addr;
71 __be32 len;
72 __be32 sec_key_idx;
73 __be32 align_len;
74 u32 reserved[9];
75 } info;
76 };
77 } __packed;
78
79 struct mt7996_fw_trailer {
80 u8 chip_id;
81 u8 eco_code;
82 u8 n_region;
83 u8 format_ver;
84 u8 format_flag;
85 u8 reserved[2];
86 char fw_ver[10];
87 char build_date[15];
88 u32 crc;
89 } __packed;
90
91 struct mt7996_fw_region {
92 __le32 decomp_crc;
93 __le32 decomp_len;
94 __le32 decomp_blk_sz;
95 u8 reserved[4];
96 __le32 addr;
97 __le32 len;
98 u8 feature_set;
99 u8 reserved1[15];
100 } __packed;
101
102 #define MCU_PATCH_ADDRESS 0x200000
103
104 #define HE_PHY(p, c) u8_get_bits(c, IEEE80211_HE_PHY_##p)
105 #define HE_MAC(m, c) u8_get_bits(c, IEEE80211_HE_MAC_##m)
106 #define EHT_PHY(p, c) u8_get_bits(c, IEEE80211_EHT_PHY_##p)
107
108 static bool sr_scene_detect = true;
109 module_param(sr_scene_detect, bool, 0644);
110 MODULE_PARM_DESC(sr_scene_detect, "Enable firmware scene detection algorithm");
111
112 static u8
mt7996_mcu_get_sta_nss(u16 mcs_map)113 mt7996_mcu_get_sta_nss(u16 mcs_map)
114 {
115 u8 nss;
116
117 for (nss = 8; nss > 0; nss--) {
118 u8 nss_mcs = (mcs_map >> (2 * (nss - 1))) & 3;
119
120 if (nss_mcs != IEEE80211_VHT_MCS_NOT_SUPPORTED)
121 break;
122 }
123
124 return nss - 1;
125 }
126
127 static void
mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,__le16 * he_mcs,u16 mcs_map)128 mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta *link_sta,
129 struct mt7996_vif_link *link,
130 __le16 *he_mcs, u16 mcs_map)
131 {
132 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
133 enum nl80211_band band = link->phy->mt76->chandef.chan->band;
134 const u16 *mask = link->bitrate_mask.control[band].he_mcs;
135
136 for (nss = 0; nss < max_nss; nss++) {
137 int mcs;
138
139 switch ((mcs_map >> (2 * nss)) & 0x3) {
140 case IEEE80211_HE_MCS_SUPPORT_0_11:
141 mcs = GENMASK(11, 0);
142 break;
143 case IEEE80211_HE_MCS_SUPPORT_0_9:
144 mcs = GENMASK(9, 0);
145 break;
146 case IEEE80211_HE_MCS_SUPPORT_0_7:
147 mcs = GENMASK(7, 0);
148 break;
149 default:
150 mcs = 0;
151 }
152
153 mcs = mcs ? fls(mcs & mask[nss]) - 1 : -1;
154
155 switch (mcs) {
156 case 0 ... 7:
157 mcs = IEEE80211_HE_MCS_SUPPORT_0_7;
158 break;
159 case 8 ... 9:
160 mcs = IEEE80211_HE_MCS_SUPPORT_0_9;
161 break;
162 case 10 ... 11:
163 mcs = IEEE80211_HE_MCS_SUPPORT_0_11;
164 break;
165 default:
166 mcs = IEEE80211_HE_MCS_NOT_SUPPORTED;
167 break;
168 }
169 mcs_map &= ~(0x3 << (nss * 2));
170 mcs_map |= mcs << (nss * 2);
171 }
172
173 *he_mcs = cpu_to_le16(mcs_map);
174 }
175
176 static void
mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta * link_sta,__le16 * vht_mcs,const u16 * mask)177 mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta *link_sta,
178 __le16 *vht_mcs, const u16 *mask)
179 {
180 u16 mcs, mcs_map = le16_to_cpu(link_sta->vht_cap.vht_mcs.rx_mcs_map);
181 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
182
183 for (nss = 0; nss < max_nss; nss++, mcs_map >>= 2) {
184 switch (mcs_map & 0x3) {
185 case IEEE80211_VHT_MCS_SUPPORT_0_9:
186 mcs = GENMASK(9, 0);
187 break;
188 case IEEE80211_VHT_MCS_SUPPORT_0_8:
189 mcs = GENMASK(8, 0);
190 break;
191 case IEEE80211_VHT_MCS_SUPPORT_0_7:
192 mcs = GENMASK(7, 0);
193 break;
194 default:
195 mcs = 0;
196 }
197
198 vht_mcs[nss] = cpu_to_le16(mcs & mask[nss]);
199 }
200 }
201
202 static void
mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta * link_sta,u8 * ht_mcs,const u8 * mask)203 mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta *link_sta,
204 u8 *ht_mcs, const u8 *mask)
205 {
206 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
207
208 for (nss = 0; nss < max_nss; nss++)
209 ht_mcs[nss] = link_sta->ht_cap.mcs.rx_mask[nss] & mask[nss];
210 }
211
212 static int
mt7996_mcu_parse_response(struct mt76_dev * mdev,int cmd,struct sk_buff * skb,int seq)213 mt7996_mcu_parse_response(struct mt76_dev *mdev, int cmd,
214 struct sk_buff *skb, int seq)
215 {
216 struct mt7996_mcu_rxd *rxd;
217 struct mt7996_mcu_uni_event *event;
218 int mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
219 int ret = 0;
220
221 if (!skb) {
222 dev_err(mdev->dev, "Message %08x (seq %d) timeout\n",
223 cmd, seq);
224 return -ETIMEDOUT;
225 }
226
227 rxd = (struct mt7996_mcu_rxd *)skb->data;
228 if (seq != rxd->seq)
229 return -EAGAIN;
230
231 if (cmd == MCU_CMD(PATCH_SEM_CONTROL)) {
232 skb_pull(skb, sizeof(*rxd) - 4);
233 ret = *skb->data;
234 } else if ((rxd->option & MCU_UNI_CMD_EVENT) &&
235 rxd->eid == MCU_UNI_EVENT_RESULT) {
236 skb_pull(skb, sizeof(*rxd));
237 event = (struct mt7996_mcu_uni_event *)skb->data;
238 ret = le32_to_cpu(event->status);
239 /* skip invalid event */
240 if (mcu_cmd != event->cid)
241 ret = -EAGAIN;
242 } else {
243 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
244 }
245
246 return ret;
247 }
248
249 static void
mt7996_mcu_set_timeout(struct mt76_dev * mdev,int cmd)250 mt7996_mcu_set_timeout(struct mt76_dev *mdev, int cmd)
251 {
252 mdev->mcu.timeout = 5 * HZ;
253
254 if (!(cmd & __MCU_CMD_FIELD_UNI))
255 return;
256
257 switch (FIELD_GET(__MCU_CMD_FIELD_ID, cmd)) {
258 case MCU_UNI_CMD_THERMAL:
259 case MCU_UNI_CMD_TWT:
260 case MCU_UNI_CMD_GET_MIB_INFO:
261 case MCU_UNI_CMD_STA_REC_UPDATE:
262 case MCU_UNI_CMD_BSS_INFO_UPDATE:
263 mdev->mcu.timeout = 2 * HZ;
264 return;
265 case MCU_UNI_CMD_EFUSE_CTRL:
266 mdev->mcu.timeout = 20 * HZ;
267 return;
268 default:
269 break;
270 }
271 }
272
273 static int
mt7996_mcu_send_message(struct mt76_dev * mdev,struct sk_buff * skb,int cmd,int * wait_seq)274 mt7996_mcu_send_message(struct mt76_dev *mdev, struct sk_buff *skb,
275 int cmd, int *wait_seq)
276 {
277 struct mt7996_dev *dev = container_of(mdev, struct mt7996_dev, mt76);
278 int txd_len, mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
279 struct mt76_connac2_mcu_uni_txd *uni_txd;
280 struct mt76_connac2_mcu_txd *mcu_txd;
281 enum mt76_mcuq_id qid;
282 __le32 *txd;
283 u32 val;
284 u8 seq;
285
286 mt7996_mcu_set_timeout(mdev, cmd);
287
288 seq = ++dev->mt76.mcu.msg_seq & 0xf;
289 if (!seq)
290 seq = ++dev->mt76.mcu.msg_seq & 0xf;
291
292 if (cmd == MCU_CMD(FW_SCATTER)) {
293 qid = MT_MCUQ_FWDL;
294 goto exit;
295 }
296
297 txd_len = cmd & __MCU_CMD_FIELD_UNI ? sizeof(*uni_txd) : sizeof(*mcu_txd);
298 txd = (__le32 *)skb_push(skb, txd_len);
299 if (test_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state) && mt7996_has_wa(dev))
300 qid = MT_MCUQ_WA;
301 else
302 qid = MT_MCUQ_WM;
303
304 val = FIELD_PREP(MT_TXD0_TX_BYTES, skb->len) |
305 FIELD_PREP(MT_TXD0_PKT_FMT, MT_TX_TYPE_CMD) |
306 FIELD_PREP(MT_TXD0_Q_IDX, MT_TX_MCU_PORT_RX_Q0);
307 txd[0] = cpu_to_le32(val);
308
309 val = FIELD_PREP(MT_TXD1_HDR_FORMAT, MT_HDR_FORMAT_CMD);
310 txd[1] = cpu_to_le32(val);
311
312 if (cmd & __MCU_CMD_FIELD_UNI) {
313 uni_txd = (struct mt76_connac2_mcu_uni_txd *)txd;
314 uni_txd->len = cpu_to_le16(skb->len - sizeof(uni_txd->txd));
315 uni_txd->cid = cpu_to_le16(mcu_cmd);
316 uni_txd->s2d_index = MCU_S2D_H2CN;
317 uni_txd->pkt_type = MCU_PKT_ID;
318 uni_txd->seq = seq;
319
320 if (cmd & __MCU_CMD_FIELD_QUERY)
321 uni_txd->option = MCU_CMD_UNI_QUERY_ACK;
322 else
323 uni_txd->option = MCU_CMD_UNI_EXT_ACK;
324
325 if (mcu_cmd == MCU_UNI_CMD_SDO)
326 uni_txd->option &= ~MCU_CMD_ACK;
327
328 if ((cmd & __MCU_CMD_FIELD_WA) && (cmd & __MCU_CMD_FIELD_WM))
329 uni_txd->s2d_index = MCU_S2D_H2CN;
330 else if (cmd & __MCU_CMD_FIELD_WA)
331 uni_txd->s2d_index = MCU_S2D_H2C;
332 else if (cmd & __MCU_CMD_FIELD_WM)
333 uni_txd->s2d_index = MCU_S2D_H2N;
334
335 goto exit;
336 }
337
338 mcu_txd = (struct mt76_connac2_mcu_txd *)txd;
339 mcu_txd->len = cpu_to_le16(skb->len - sizeof(mcu_txd->txd));
340 mcu_txd->pq_id = cpu_to_le16(MCU_PQ_ID(MT_TX_PORT_IDX_MCU,
341 MT_TX_MCU_PORT_RX_Q0));
342 mcu_txd->pkt_type = MCU_PKT_ID;
343 mcu_txd->seq = seq;
344
345 mcu_txd->cid = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
346 mcu_txd->set_query = MCU_Q_NA;
347 mcu_txd->ext_cid = FIELD_GET(__MCU_CMD_FIELD_EXT_ID, cmd);
348 if (mcu_txd->ext_cid) {
349 mcu_txd->ext_cid_ack = 1;
350
351 if (cmd & __MCU_CMD_FIELD_QUERY)
352 mcu_txd->set_query = MCU_Q_QUERY;
353 else
354 mcu_txd->set_query = MCU_Q_SET;
355 }
356
357 if (cmd & __MCU_CMD_FIELD_WA)
358 mcu_txd->s2d_index = MCU_S2D_H2C;
359 else
360 mcu_txd->s2d_index = MCU_S2D_H2N;
361
362 exit:
363 if (wait_seq)
364 *wait_seq = seq;
365
366 return mt76_tx_queue_skb_raw(dev, mdev->q_mcu[qid], skb, 0);
367 }
368
mt7996_mcu_wa_cmd(struct mt7996_dev * dev,int cmd,u32 a1,u32 a2,u32 a3)369 int mt7996_mcu_wa_cmd(struct mt7996_dev *dev, int cmd, u32 a1, u32 a2, u32 a3)
370 {
371 struct {
372 u8 _rsv[4];
373
374 __le16 tag;
375 __le16 len;
376 __le32 args[3];
377 } __packed req = {
378 .args = {
379 cpu_to_le32(a1),
380 cpu_to_le32(a2),
381 cpu_to_le32(a3),
382 },
383 };
384
385 if (mt7996_has_wa(dev))
386 return mt76_mcu_send_msg(&dev->mt76, cmd, &req.args,
387 sizeof(req.args), false);
388
389 req.tag = cpu_to_le16(cmd == MCU_WA_PARAM_CMD(QUERY) ? UNI_CMD_SDO_QUERY :
390 UNI_CMD_SDO_SET);
391 req.len = cpu_to_le16(sizeof(req) - 4);
392
393 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO), &req,
394 sizeof(req), false);
395 }
396
397 static void
mt7996_mcu_csa_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)398 mt7996_mcu_csa_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
399 {
400 if (!vif->bss_conf.csa_active || vif->type == NL80211_IFTYPE_STATION)
401 return;
402
403 ieee80211_csa_finish(vif, 0);
404 }
405
406 static void
mt7996_mcu_rx_radar_detected(struct mt7996_dev * dev,struct sk_buff * skb)407 mt7996_mcu_rx_radar_detected(struct mt7996_dev *dev, struct sk_buff *skb)
408 {
409 struct mt76_phy *mphy = &dev->mt76.phy;
410 struct mt7996_mcu_rdd_report *r;
411
412 r = (struct mt7996_mcu_rdd_report *)skb->data;
413
414 switch (r->rdd_idx) {
415 case MT_RDD_IDX_BAND2:
416 mphy = dev->mt76.phys[MT_BAND2];
417 break;
418 case MT_RDD_IDX_BAND1:
419 mphy = dev->mt76.phys[MT_BAND1];
420 break;
421 case MT_RDD_IDX_BACKGROUND:
422 if (!dev->rdd2_phy)
423 return;
424 mphy = dev->rdd2_phy->mt76;
425 break;
426 default:
427 dev_err(dev->mt76.dev, "Unknown RDD idx %d\n", r->rdd_idx);
428 return;
429 }
430
431 if (!mphy)
432 return;
433
434 if (r->rdd_idx == MT_RDD_IDX_BACKGROUND)
435 cfg80211_background_radar_event(mphy->hw->wiphy,
436 &dev->rdd2_chandef,
437 GFP_ATOMIC);
438 else
439 ieee80211_radar_detected(mphy->hw, NULL);
440 dev->hw_pattern++;
441 }
442
443 static void
mt7996_mcu_rx_log_message(struct mt7996_dev * dev,struct sk_buff * skb)444 mt7996_mcu_rx_log_message(struct mt7996_dev *dev, struct sk_buff *skb)
445 {
446 #define UNI_EVENT_FW_LOG_FORMAT 0
447 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
448 const char *data = (char *)&rxd[1] + 4, *type;
449 #if defined(__linux__)
450 struct tlv *tlv = (struct tlv *)data;
451 #elif defined(__FreeBSD__)
452 const struct tlv *tlv = (const struct tlv *)data;
453 #endif
454 int len;
455
456 if (!(rxd->option & MCU_UNI_CMD_EVENT)) {
457 len = skb->len - sizeof(*rxd);
458 data = (char *)&rxd[1];
459 goto out;
460 }
461
462 if (le16_to_cpu(tlv->tag) != UNI_EVENT_FW_LOG_FORMAT)
463 return;
464
465 data += sizeof(*tlv) + 4;
466 len = le16_to_cpu(tlv->len) - sizeof(*tlv) - 4;
467
468 out:
469 switch (rxd->s2d_index) {
470 case 0:
471 #if defined(CONFIG_MT7996_DEBUGFS)
472 if (mt7996_debugfs_rx_log(dev, data, len))
473 return;
474 #endif
475
476 type = "WM";
477 break;
478 case 2:
479 type = "WA";
480 break;
481 default:
482 type = "unknown";
483 break;
484 }
485
486 wiphy_info(mt76_hw(dev)->wiphy, "%s: %.*s", type, len, data);
487 }
488
489 static void
mt7996_mcu_cca_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)490 mt7996_mcu_cca_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
491 {
492 if (!vif->bss_conf.color_change_active || vif->type == NL80211_IFTYPE_STATION)
493 return;
494
495 ieee80211_color_change_finish(vif, 0);
496 }
497
498 static void
mt7996_mcu_ie_countdown(struct mt7996_dev * dev,struct sk_buff * skb)499 mt7996_mcu_ie_countdown(struct mt7996_dev *dev, struct sk_buff *skb)
500 {
501 #define UNI_EVENT_IE_COUNTDOWN_CSA 0
502 #define UNI_EVENT_IE_COUNTDOWN_BCC 1
503 struct header {
504 u8 band;
505 u8 rsv[3];
506 };
507 struct mt76_phy *mphy = &dev->mt76.phy;
508 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
509 const char *data = (char *)&rxd[1], *tail;
510 #if defined(__linux__)
511 struct header *hdr = (struct header *)data;
512 struct tlv *tlv = (struct tlv *)(data + 4);
513 #elif defined(__FreeBSD__)
514 const struct header *hdr = (const struct header *)data;
515 const struct tlv *tlv = (const struct tlv *)(data + 4);
516 #endif
517
518 if (hdr->band >= ARRAY_SIZE(dev->mt76.phys))
519 return;
520
521 if (hdr->band && dev->mt76.phys[hdr->band])
522 mphy = dev->mt76.phys[hdr->band];
523
524 tail = skb->data + skb->len;
525 data += sizeof(struct header);
526 while (data + sizeof(struct tlv) < tail && le16_to_cpu(tlv->len)) {
527 switch (le16_to_cpu(tlv->tag)) {
528 case UNI_EVENT_IE_COUNTDOWN_CSA:
529 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
530 IEEE80211_IFACE_ITER_RESUME_ALL,
531 mt7996_mcu_csa_finish, mphy->hw);
532 break;
533 case UNI_EVENT_IE_COUNTDOWN_BCC:
534 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
535 IEEE80211_IFACE_ITER_RESUME_ALL,
536 mt7996_mcu_cca_finish, mphy->hw);
537 break;
538 }
539
540 data += le16_to_cpu(tlv->len);
541 #if defined(__linux__)
542 tlv = (struct tlv *)data;
543 #elif defined(__FreeBSD__)
544 tlv = (const struct tlv *)data;
545 #endif
546 }
547 }
548
549 static int
mt7996_mcu_update_tx_gi(struct rate_info * rate,struct all_sta_trx_rate * mcu_rate)550 mt7996_mcu_update_tx_gi(struct rate_info *rate, struct all_sta_trx_rate *mcu_rate)
551 {
552 switch (mcu_rate->tx_mode) {
553 case MT_PHY_TYPE_CCK:
554 case MT_PHY_TYPE_OFDM:
555 break;
556 case MT_PHY_TYPE_HT:
557 case MT_PHY_TYPE_HT_GF:
558 case MT_PHY_TYPE_VHT:
559 if (mcu_rate->tx_gi)
560 rate->flags |= RATE_INFO_FLAGS_SHORT_GI;
561 else
562 rate->flags &= ~RATE_INFO_FLAGS_SHORT_GI;
563 break;
564 case MT_PHY_TYPE_HE_SU:
565 case MT_PHY_TYPE_HE_EXT_SU:
566 case MT_PHY_TYPE_HE_TB:
567 case MT_PHY_TYPE_HE_MU:
568 if (mcu_rate->tx_gi > NL80211_RATE_INFO_HE_GI_3_2)
569 return -EINVAL;
570 rate->he_gi = mcu_rate->tx_gi;
571 break;
572 case MT_PHY_TYPE_EHT_SU:
573 case MT_PHY_TYPE_EHT_TRIG:
574 case MT_PHY_TYPE_EHT_MU:
575 if (mcu_rate->tx_gi > NL80211_RATE_INFO_EHT_GI_3_2)
576 return -EINVAL;
577 rate->eht_gi = mcu_rate->tx_gi;
578 break;
579 default:
580 return -EINVAL;
581 }
582
583 return 0;
584 }
585
586 static void
mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev * dev,struct sk_buff * skb)587 mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev *dev, struct sk_buff *skb)
588 {
589 struct mt7996_mcu_all_sta_info_event *res;
590 u16 i;
591
592 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
593
594 res = (struct mt7996_mcu_all_sta_info_event *)skb->data;
595
596 for (i = 0; i < le16_to_cpu(res->sta_num); i++) {
597 u8 ac;
598 u16 wlan_idx;
599 struct mt76_wcid *wcid;
600
601 switch (le16_to_cpu(res->tag)) {
602 case UNI_ALL_STA_TXRX_RATE:
603 wlan_idx = le16_to_cpu(res->rate[i].wlan_idx);
604 wcid = mt76_wcid_ptr(dev, wlan_idx);
605
606 if (!wcid)
607 break;
608
609 if (mt7996_mcu_update_tx_gi(&wcid->rate, &res->rate[i]))
610 dev_err(dev->mt76.dev, "Failed to update TX GI\n");
611 break;
612 case UNI_ALL_STA_TXRX_ADM_STAT:
613 wlan_idx = le16_to_cpu(res->adm_stat[i].wlan_idx);
614 wcid = mt76_wcid_ptr(dev, wlan_idx);
615
616 if (!wcid)
617 break;
618
619 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
620 wcid->stats.tx_bytes +=
621 le32_to_cpu(res->adm_stat[i].tx_bytes[ac]);
622 wcid->stats.rx_bytes +=
623 le32_to_cpu(res->adm_stat[i].rx_bytes[ac]);
624 }
625 break;
626 case UNI_ALL_STA_TXRX_MSDU_COUNT:
627 wlan_idx = le16_to_cpu(res->msdu_cnt[i].wlan_idx);
628 wcid = mt76_wcid_ptr(dev, wlan_idx);
629
630 if (!wcid)
631 break;
632
633 wcid->stats.tx_packets +=
634 le32_to_cpu(res->msdu_cnt[i].tx_msdu_cnt);
635 wcid->stats.rx_packets +=
636 le32_to_cpu(res->msdu_cnt[i].rx_msdu_cnt);
637 break;
638 default:
639 break;
640 }
641 }
642 }
643
644 static void
mt7996_mcu_rx_thermal_notify(struct mt7996_dev * dev,struct sk_buff * skb)645 mt7996_mcu_rx_thermal_notify(struct mt7996_dev *dev, struct sk_buff *skb)
646 {
647 #define THERMAL_NOTIFY_TAG 0x4
648 #define THERMAL_NOTIFY 0x2
649 struct mt76_phy *mphy = &dev->mt76.phy;
650 struct mt7996_mcu_thermal_notify *n;
651 struct mt7996_phy *phy;
652
653 n = (struct mt7996_mcu_thermal_notify *)skb->data;
654
655 if (le16_to_cpu(n->tag) != THERMAL_NOTIFY_TAG)
656 return;
657
658 if (n->event_id != THERMAL_NOTIFY)
659 return;
660
661 if (n->band_idx > MT_BAND2)
662 return;
663
664 mphy = dev->mt76.phys[n->band_idx];
665 if (!mphy)
666 return;
667
668 phy = (struct mt7996_phy *)mphy->priv;
669 phy->throttle_state = n->duty_percent;
670 }
671
672 static void
mt7996_mcu_rx_ext_event(struct mt7996_dev * dev,struct sk_buff * skb)673 mt7996_mcu_rx_ext_event(struct mt7996_dev *dev, struct sk_buff *skb)
674 {
675 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
676
677 switch (rxd->ext_eid) {
678 case MCU_EXT_EVENT_FW_LOG_2_HOST:
679 mt7996_mcu_rx_log_message(dev, skb);
680 break;
681 default:
682 break;
683 }
684 }
685
686 static void
mt7996_mcu_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)687 mt7996_mcu_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
688 {
689 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
690
691 switch (rxd->eid) {
692 case MCU_EVENT_EXT:
693 mt7996_mcu_rx_ext_event(dev, skb);
694 break;
695 case MCU_UNI_EVENT_THERMAL:
696 mt7996_mcu_rx_thermal_notify(dev, skb);
697 break;
698 default:
699 break;
700 }
701 dev_kfree_skb(skb);
702 }
703
704 static void
mt7996_mcu_wed_rro_event(struct mt7996_dev * dev,struct sk_buff * skb)705 mt7996_mcu_wed_rro_event(struct mt7996_dev *dev, struct sk_buff *skb)
706 {
707 struct mt7996_mcu_wed_rro_event *event = (void *)skb->data;
708
709 if (!mt7996_has_hwrro(dev))
710 return;
711
712 skb_pull(skb, sizeof(struct mt7996_mcu_rxd) + 4);
713
714 switch (le16_to_cpu(event->tag)) {
715 case UNI_WED_RRO_BA_SESSION_STATUS: {
716 struct mt7996_mcu_wed_rro_ba_event *e;
717
718 while (skb->len >= sizeof(*e)) {
719 struct mt76_rx_tid *tid;
720 struct mt76_wcid *wcid;
721 u16 idx;
722
723 e = (void *)skb->data;
724 idx = le16_to_cpu(e->wlan_id);
725 wcid = mt76_wcid_ptr(dev, idx);
726 if (!wcid || !wcid->sta)
727 break;
728
729 if (e->tid >= ARRAY_SIZE(wcid->aggr))
730 break;
731
732 tid = rcu_dereference(wcid->aggr[e->tid]);
733 if (!tid)
734 break;
735
736 tid->id = le16_to_cpu(e->id);
737 skb_pull(skb, sizeof(*e));
738 }
739 break;
740 }
741 case UNI_WED_RRO_BA_SESSION_DELETE: {
742 struct mt7996_mcu_wed_rro_ba_delete_event *e;
743
744 while (skb->len >= sizeof(*e)) {
745 struct mt7996_wed_rro_session_id *session;
746
747 e = (void *)skb->data;
748 session = kzalloc(sizeof(*session), GFP_ATOMIC);
749 if (!session)
750 break;
751
752 session->id = le16_to_cpu(e->session_id);
753
754 spin_lock_bh(&dev->wed_rro.lock);
755 list_add_tail(&session->list, &dev->wed_rro.poll_list);
756 spin_unlock_bh(&dev->wed_rro.lock);
757
758 ieee80211_queue_work(mt76_hw(dev), &dev->wed_rro.work);
759 skb_pull(skb, sizeof(*e));
760 }
761 break;
762 }
763 default:
764 break;
765 }
766 }
767
768 static void
mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)769 mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
770 {
771 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
772
773 switch (rxd->eid) {
774 case MCU_UNI_EVENT_FW_LOG_2_HOST:
775 mt7996_mcu_rx_log_message(dev, skb);
776 break;
777 case MCU_UNI_EVENT_IE_COUNTDOWN:
778 mt7996_mcu_ie_countdown(dev, skb);
779 break;
780 case MCU_UNI_EVENT_RDD_REPORT:
781 mt7996_mcu_rx_radar_detected(dev, skb);
782 break;
783 case MCU_UNI_EVENT_ALL_STA_INFO:
784 mt7996_mcu_rx_all_sta_info_event(dev, skb);
785 break;
786 case MCU_UNI_EVENT_WED_RRO:
787 mt7996_mcu_wed_rro_event(dev, skb);
788 break;
789 default:
790 break;
791 }
792 dev_kfree_skb(skb);
793 }
794
mt7996_mcu_rx_event(struct mt7996_dev * dev,struct sk_buff * skb)795 void mt7996_mcu_rx_event(struct mt7996_dev *dev, struct sk_buff *skb)
796 {
797 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
798
799 if (rxd->option & MCU_UNI_CMD_UNSOLICITED_EVENT) {
800 mt7996_mcu_uni_rx_unsolicited_event(dev, skb);
801 return;
802 }
803
804 /* WA still uses legacy event*/
805 if (rxd->ext_eid == MCU_EXT_EVENT_FW_LOG_2_HOST ||
806 !rxd->seq)
807 mt7996_mcu_rx_unsolicited_event(dev, skb);
808 else
809 mt76_mcu_rx_event(&dev->mt76, skb);
810 }
811
812 static struct tlv *
mt7996_mcu_add_uni_tlv(struct sk_buff * skb,u16 tag,u16 len)813 mt7996_mcu_add_uni_tlv(struct sk_buff *skb, u16 tag, u16 len)
814 {
815 struct tlv *ptlv = skb_put_zero(skb, len);
816
817 ptlv->tag = cpu_to_le16(tag);
818 ptlv->len = cpu_to_le16(len);
819
820 return ptlv;
821 }
822
823 static void
mt7996_mcu_bss_rfch_tlv(struct sk_buff * skb,struct mt7996_phy * phy)824 mt7996_mcu_bss_rfch_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
825 {
826 static const u8 rlm_ch_band[] = {
827 [NL80211_BAND_2GHZ] = 1,
828 [NL80211_BAND_5GHZ] = 2,
829 [NL80211_BAND_6GHZ] = 3,
830 };
831 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
832 struct bss_rlm_tlv *ch;
833 struct tlv *tlv;
834 int freq1 = chandef->center_freq1;
835
836 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RLM, sizeof(*ch));
837
838 ch = (struct bss_rlm_tlv *)tlv;
839 ch->control_channel = chandef->chan->hw_value;
840 ch->center_chan = ieee80211_frequency_to_channel(freq1);
841 ch->bw = mt76_connac_chan_bw(chandef);
842 ch->tx_streams = hweight8(phy->mt76->antenna_mask);
843 ch->rx_streams = hweight8(phy->mt76->antenna_mask);
844 ch->band = rlm_ch_band[chandef->chan->band];
845
846 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
847 int freq2 = chandef->center_freq2;
848
849 ch->center_chan2 = ieee80211_frequency_to_channel(freq2);
850 }
851 }
852
853 static void
mt7996_mcu_bss_ra_tlv(struct sk_buff * skb,struct mt7996_phy * phy)854 mt7996_mcu_bss_ra_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
855 {
856 struct bss_ra_tlv *ra;
857 struct tlv *tlv;
858
859 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RA, sizeof(*ra));
860
861 ra = (struct bss_ra_tlv *)tlv;
862 ra->short_preamble = true;
863 }
864
865 static void
mt7996_mcu_bss_he_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt7996_phy * phy)866 mt7996_mcu_bss_he_tlv(struct sk_buff *skb, struct ieee80211_vif *vif,
867 struct ieee80211_bss_conf *link_conf,
868 struct mt7996_phy *phy)
869 {
870 #define DEFAULT_HE_PE_DURATION 4
871 #define DEFAULT_HE_DURATION_RTS_THRES 1023
872 const struct ieee80211_sta_he_cap *cap;
873 struct bss_info_uni_he *he;
874 struct tlv *tlv;
875
876 cap = mt76_connac_get_he_phy_cap(phy->mt76, vif);
877
878 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_HE_BASIC, sizeof(*he));
879
880 he = (struct bss_info_uni_he *)tlv;
881 he->he_pe_duration = link_conf->htc_trig_based_pkt_ext;
882 if (!he->he_pe_duration)
883 he->he_pe_duration = DEFAULT_HE_PE_DURATION;
884
885 he->he_rts_thres = cpu_to_le16(link_conf->frame_time_rts_th);
886 if (!he->he_rts_thres)
887 he->he_rts_thres = cpu_to_le16(DEFAULT_HE_DURATION_RTS_THRES);
888
889 he->max_nss_mcs[CMD_HE_MCS_BW80] = cap->he_mcs_nss_supp.tx_mcs_80;
890 he->max_nss_mcs[CMD_HE_MCS_BW160] = cap->he_mcs_nss_supp.tx_mcs_160;
891 he->max_nss_mcs[CMD_HE_MCS_BW8080] = cap->he_mcs_nss_supp.tx_mcs_80p80;
892 }
893
894 static void
mt7996_mcu_bss_mbssid_tlv(struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,bool enable)895 mt7996_mcu_bss_mbssid_tlv(struct sk_buff *skb, struct ieee80211_bss_conf *link_conf,
896 bool enable)
897 {
898 struct bss_info_uni_mbssid *mbssid;
899 struct tlv *tlv;
900
901 if (!link_conf->bssid_indicator && enable)
902 return;
903
904 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_11V_MBSSID, sizeof(*mbssid));
905
906 mbssid = (struct bss_info_uni_mbssid *)tlv;
907
908 if (enable) {
909 mbssid->max_indicator = link_conf->bssid_indicator;
910 mbssid->mbss_idx = link_conf->bssid_index;
911 mbssid->tx_bss_omac_idx = 0;
912 }
913 }
914
915 static void
mt7996_mcu_bss_bmc_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink,struct mt7996_phy * phy)916 mt7996_mcu_bss_bmc_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink,
917 struct mt7996_phy *phy)
918 {
919 struct bss_rate_tlv *bmc;
920 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
921 enum nl80211_band band = chandef->chan->band;
922 struct tlv *tlv;
923 u8 idx = mlink->mcast_rates_idx ?
924 mlink->mcast_rates_idx : mlink->basic_rates_idx;
925
926 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RATE, sizeof(*bmc));
927
928 bmc = (struct bss_rate_tlv *)tlv;
929
930 bmc->short_preamble = (band == NL80211_BAND_2GHZ);
931 bmc->bc_fixed_rate = idx;
932 bmc->mc_fixed_rate = idx;
933 }
934
935 static void
mt7996_mcu_bss_txcmd_tlv(struct sk_buff * skb,bool en)936 mt7996_mcu_bss_txcmd_tlv(struct sk_buff *skb, bool en)
937 {
938 struct bss_txcmd_tlv *txcmd;
939 struct tlv *tlv;
940
941 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_TXCMD, sizeof(*txcmd));
942
943 txcmd = (struct bss_txcmd_tlv *)tlv;
944 txcmd->txcmd_mode = en;
945 }
946
947 static void
mt7996_mcu_bss_mld_tlv(struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct mt7996_vif_link * link)948 mt7996_mcu_bss_mld_tlv(struct sk_buff *skb,
949 struct ieee80211_bss_conf *link_conf,
950 struct mt7996_vif_link *link)
951 {
952 struct ieee80211_vif *vif = link_conf->vif;
953 struct mt7996_vif *mvif = (struct mt7996_vif *)vif->drv_priv;
954 struct bss_mld_tlv *mld;
955 struct tlv *tlv;
956
957 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_MLD, sizeof(*mld));
958 mld = (struct bss_mld_tlv *)tlv;
959 mld->own_mld_id = link->mld_idx;
960 mld->link_id = link_conf->link_id;
961
962 if (ieee80211_vif_is_mld(vif)) {
963 mld->group_mld_id = mvif->mld_group_idx;
964 mld->remap_idx = mvif->mld_remap_idx;
965 memcpy(mld->mac_addr, vif->addr, ETH_ALEN);
966 } else {
967 mld->group_mld_id = 0xff;
968 mld->remap_idx = 0xff;
969 }
970 }
971
972 static void
mt7996_mcu_bss_sec_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)973 mt7996_mcu_bss_sec_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
974 {
975 struct bss_sec_tlv *sec;
976 struct tlv *tlv;
977
978 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_SEC, sizeof(*sec));
979
980 sec = (struct bss_sec_tlv *)tlv;
981 sec->cipher = mlink->cipher;
982 }
983
984 static int
mt7996_mcu_muar_config(struct mt7996_dev * dev,struct mt76_vif_link * mlink,const u8 * addr,bool bssid,bool enable)985 mt7996_mcu_muar_config(struct mt7996_dev *dev, struct mt76_vif_link *mlink,
986 const u8 *addr, bool bssid, bool enable)
987 {
988 #define UNI_MUAR_ENTRY 2
989 u32 idx = mlink->omac_idx - REPEATER_BSSID_START;
990 struct {
991 struct {
992 u8 band;
993 u8 __rsv[3];
994 } hdr;
995
996 __le16 tag;
997 __le16 len;
998
999 bool smesh;
1000 u8 bssid;
1001 u8 index;
1002 u8 entry_add;
1003 u8 addr[ETH_ALEN];
1004 u8 __rsv[2];
1005 } __packed req = {
1006 .hdr.band = mlink->band_idx,
1007 .tag = cpu_to_le16(UNI_MUAR_ENTRY),
1008 .len = cpu_to_le16(sizeof(req) - sizeof(req.hdr)),
1009 .smesh = false,
1010 .index = idx * 2 + bssid,
1011 .entry_add = true,
1012 };
1013
1014 if (enable)
1015 memcpy(req.addr, addr, ETH_ALEN);
1016
1017 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REPT_MUAR), &req,
1018 sizeof(req), true);
1019 }
1020
1021 static void
mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff * skb,struct mt7996_phy * phy)1022 mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
1023 {
1024 struct bss_ifs_time_tlv *ifs_time;
1025 struct tlv *tlv;
1026 bool is_2ghz = phy->mt76->chandef.chan->band == NL80211_BAND_2GHZ;
1027
1028 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_IFS_TIME, sizeof(*ifs_time));
1029
1030 ifs_time = (struct bss_ifs_time_tlv *)tlv;
1031 ifs_time->slot_valid = true;
1032 ifs_time->sifs_valid = true;
1033 ifs_time->rifs_valid = true;
1034 ifs_time->eifs_valid = true;
1035
1036 ifs_time->slot_time = cpu_to_le16(phy->slottime);
1037 ifs_time->sifs_time = cpu_to_le16(10);
1038 ifs_time->rifs_time = cpu_to_le16(2);
1039 ifs_time->eifs_time = cpu_to_le16(is_2ghz ? 78 : 84);
1040
1041 if (is_2ghz) {
1042 ifs_time->eifs_cck_valid = true;
1043 ifs_time->eifs_cck_time = cpu_to_le16(314);
1044 }
1045 }
1046
1047 static int
mt7996_mcu_bss_basic_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mvif,struct mt76_phy * phy,u16 wlan_idx,bool enable)1048 mt7996_mcu_bss_basic_tlv(struct sk_buff *skb,
1049 struct ieee80211_vif *vif,
1050 struct ieee80211_bss_conf *link_conf,
1051 struct mt76_vif_link *mvif,
1052 struct mt76_phy *phy, u16 wlan_idx,
1053 bool enable)
1054 {
1055 struct cfg80211_chan_def *chandef = &phy->chandef;
1056 struct mt76_connac_bss_basic_tlv *bss;
1057 u32 type = CONNECTION_INFRA_AP;
1058 u16 sta_wlan_idx = wlan_idx;
1059 struct tlv *tlv;
1060 int idx;
1061
1062 switch (vif->type) {
1063 case NL80211_IFTYPE_MESH_POINT:
1064 case NL80211_IFTYPE_AP:
1065 case NL80211_IFTYPE_MONITOR:
1066 break;
1067 case NL80211_IFTYPE_STATION:
1068 if (enable) {
1069 struct ieee80211_sta *sta;
1070
1071 rcu_read_lock();
1072 sta = ieee80211_find_sta(vif, link_conf->bssid);
1073 if (sta) {
1074 struct mt7996_sta *msta = (void *)sta->drv_priv;
1075 struct mt7996_sta_link *msta_link;
1076 int link_id = link_conf->link_id;
1077
1078 msta_link = rcu_dereference(msta->link[link_id]);
1079 if (msta_link)
1080 sta_wlan_idx = msta_link->wcid.idx;
1081 }
1082 rcu_read_unlock();
1083 }
1084 type = CONNECTION_INFRA_STA;
1085 break;
1086 case NL80211_IFTYPE_ADHOC:
1087 type = CONNECTION_IBSS_ADHOC;
1088 break;
1089 default:
1090 WARN_ON(1);
1091 break;
1092 }
1093
1094 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_BASIC, sizeof(*bss));
1095
1096 bss = (struct mt76_connac_bss_basic_tlv *)tlv;
1097 bss->bmc_tx_wlan_idx = cpu_to_le16(wlan_idx);
1098 bss->sta_idx = cpu_to_le16(sta_wlan_idx);
1099 bss->conn_type = cpu_to_le32(type);
1100 bss->omac_idx = mvif->omac_idx;
1101 bss->band_idx = mvif->band_idx;
1102 bss->wmm_idx = mvif->wmm_idx;
1103 bss->conn_state = !enable;
1104 bss->active = enable;
1105
1106 idx = mvif->omac_idx > EXT_BSSID_START ? HW_BSSID_0 : mvif->omac_idx;
1107 bss->hw_bss_idx = idx;
1108
1109 if (vif->type == NL80211_IFTYPE_MONITOR) {
1110 memcpy(bss->bssid, phy->macaddr, ETH_ALEN);
1111 return 0;
1112 }
1113
1114 memcpy(bss->bssid, link_conf->bssid, ETH_ALEN);
1115 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1116 bss->dtim_period = link_conf->dtim_period;
1117 bss->phymode = mt76_connac_get_phy_mode(phy, vif,
1118 chandef->chan->band, NULL);
1119 bss->phymode_ext = mt76_connac_get_phy_mode_ext(phy, link_conf,
1120 chandef->chan->band);
1121
1122 return 0;
1123 }
1124
1125 static struct sk_buff *
__mt7996_mcu_alloc_bss_req(struct mt76_dev * dev,struct mt76_vif_link * mvif,int len)1126 __mt7996_mcu_alloc_bss_req(struct mt76_dev *dev, struct mt76_vif_link *mvif, int len)
1127 {
1128 struct bss_req_hdr hdr = {
1129 .bss_idx = mvif->idx,
1130 };
1131 struct sk_buff *skb;
1132
1133 skb = mt76_mcu_msg_alloc(dev, NULL, len);
1134 if (!skb)
1135 return ERR_PTR(-ENOMEM);
1136
1137 skb_put_data(skb, &hdr, sizeof(hdr));
1138
1139 return skb;
1140 }
1141
mt7996_mcu_add_bss_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,struct mt7996_sta_link * msta_link,int enable)1142 int mt7996_mcu_add_bss_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1143 struct ieee80211_bss_conf *link_conf,
1144 struct mt76_vif_link *mlink,
1145 struct mt7996_sta_link *msta_link, int enable)
1146 {
1147 struct mt7996_dev *dev = phy->dev;
1148 struct sk_buff *skb;
1149
1150 if (mlink->omac_idx >= REPEATER_BSSID_START) {
1151 mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
1152 mt7996_mcu_muar_config(dev, mlink, link_conf->bssid, true, enable);
1153 }
1154
1155 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1156 MT7996_BSS_UPDATE_MAX_SIZE);
1157 if (IS_ERR(skb))
1158 return PTR_ERR(skb);
1159
1160 /* bss_basic must be first */
1161 mt7996_mcu_bss_basic_tlv(skb, vif, link_conf, mlink, phy->mt76,
1162 msta_link->wcid.idx, enable);
1163 mt7996_mcu_bss_sec_tlv(skb, mlink);
1164
1165 if (vif->type == NL80211_IFTYPE_MONITOR)
1166 goto out;
1167
1168 if (enable) {
1169 struct mt7996_vif_link *link;
1170
1171 mt7996_mcu_bss_rfch_tlv(skb, phy);
1172 mt7996_mcu_bss_bmc_tlv(skb, mlink, phy);
1173 mt7996_mcu_bss_ra_tlv(skb, phy);
1174 mt7996_mcu_bss_txcmd_tlv(skb, true);
1175 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1176
1177 if (vif->bss_conf.he_support)
1178 mt7996_mcu_bss_he_tlv(skb, vif, link_conf, phy);
1179
1180 /* this tag is necessary no matter if the vif is MLD */
1181 link = container_of(mlink, struct mt7996_vif_link, mt76);
1182 mt7996_mcu_bss_mld_tlv(skb, link_conf, link);
1183 }
1184
1185 mt7996_mcu_bss_mbssid_tlv(skb, link_conf, enable);
1186
1187 out:
1188 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1189 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1190 }
1191
mt7996_mcu_set_timing(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)1192 int mt7996_mcu_set_timing(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1193 struct ieee80211_bss_conf *link_conf)
1194 {
1195 struct mt7996_dev *dev = phy->dev;
1196 struct mt76_vif_link *mlink = mt76_vif_conf_link(&dev->mt76, vif, link_conf);
1197 struct sk_buff *skb;
1198
1199 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1200 MT7996_BSS_UPDATE_MAX_SIZE);
1201 if (IS_ERR(skb))
1202 return PTR_ERR(skb);
1203
1204 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1205
1206 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1207 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1208 }
1209
1210 static int
mt7996_mcu_sta_ba(struct mt7996_dev * dev,struct mt76_vif_link * mvif,struct ieee80211_ampdu_params * params,struct mt76_wcid * wcid,bool enable,bool tx)1211 mt7996_mcu_sta_ba(struct mt7996_dev *dev, struct mt76_vif_link *mvif,
1212 struct ieee80211_ampdu_params *params,
1213 struct mt76_wcid *wcid, bool enable, bool tx)
1214 {
1215 struct sta_rec_ba_uni *ba;
1216 struct sk_buff *skb;
1217 struct tlv *tlv;
1218
1219 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mvif, wcid,
1220 MT7996_STA_UPDATE_MAX_SIZE);
1221 if (IS_ERR(skb))
1222 return PTR_ERR(skb);
1223
1224 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BA, sizeof(*ba));
1225
1226 ba = (struct sta_rec_ba_uni *)tlv;
1227 ba->ba_type = tx ? MT_BA_TYPE_ORIGINATOR : MT_BA_TYPE_RECIPIENT;
1228 ba->winsize = cpu_to_le16(params->buf_size);
1229 ba->ssn = cpu_to_le16(params->ssn);
1230 ba->ba_en = enable << params->tid;
1231 ba->amsdu = params->amsdu;
1232 ba->tid = params->tid;
1233 ba->ba_rdd_rro = !tx && enable && mt7996_has_hwrro(dev);
1234
1235 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1236 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1237 }
1238
1239 /** starec & wtbl **/
mt7996_mcu_add_tx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct ieee80211_vif * vif,bool enable)1240 int mt7996_mcu_add_tx_ba(struct mt7996_dev *dev,
1241 struct ieee80211_ampdu_params *params,
1242 struct ieee80211_vif *vif, bool enable)
1243 {
1244 struct ieee80211_sta *sta = params->sta;
1245 struct mt7996_sta *msta = (struct mt7996_sta *)sta->drv_priv;
1246 struct ieee80211_link_sta *link_sta;
1247 unsigned int link_id;
1248 int ret = 0;
1249
1250 for_each_sta_active_link(vif, sta, link_sta, link_id) {
1251 struct mt7996_sta_link *msta_link;
1252 struct mt7996_vif_link *link;
1253
1254 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
1255 if (!msta_link)
1256 continue;
1257
1258 link = mt7996_vif_link(dev, vif, link_id);
1259 if (!link)
1260 continue;
1261
1262 if (enable && !params->amsdu)
1263 msta_link->wcid.amsdu = false;
1264
1265 ret = mt7996_mcu_sta_ba(dev, &link->mt76, params,
1266 &msta_link->wcid, enable, true);
1267 if (ret)
1268 break;
1269 }
1270
1271 return ret;
1272 }
1273
mt7996_mcu_add_rx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct ieee80211_vif * vif,bool enable)1274 int mt7996_mcu_add_rx_ba(struct mt7996_dev *dev,
1275 struct ieee80211_ampdu_params *params,
1276 struct ieee80211_vif *vif, bool enable)
1277 {
1278 struct ieee80211_sta *sta = params->sta;
1279 struct mt7996_sta *msta = (struct mt7996_sta *)sta->drv_priv;
1280 struct ieee80211_link_sta *link_sta;
1281 unsigned int link_id;
1282 int ret = 0;
1283
1284 for_each_sta_active_link(vif, sta, link_sta, link_id) {
1285 struct mt7996_sta_link *msta_link;
1286 struct mt7996_vif_link *link;
1287
1288 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
1289 if (!msta_link)
1290 continue;
1291
1292 link = mt7996_vif_link(dev, vif, link_id);
1293 if (!link)
1294 continue;
1295
1296 ret = mt7996_mcu_sta_ba(dev, &link->mt76, params,
1297 &msta_link->wcid, enable, false);
1298 if (ret)
1299 break;
1300 }
1301
1302 return ret;
1303 }
1304
1305 static void
mt7996_mcu_sta_he_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1306 mt7996_mcu_sta_he_tlv(struct sk_buff *skb,
1307 struct ieee80211_link_sta *link_sta,
1308 struct mt7996_vif_link *link)
1309 {
1310 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1311 struct ieee80211_he_mcs_nss_supp mcs_map;
1312 struct sta_rec_he_v2 *he;
1313 struct tlv *tlv;
1314 int i = 0;
1315
1316 if (!link_sta->he_cap.has_he)
1317 return;
1318
1319 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_V2, sizeof(*he));
1320
1321 he = (struct sta_rec_he_v2 *)tlv;
1322 for (i = 0; i < 11; i++) {
1323 if (i < 6)
1324 he->he_mac_cap[i] = elem->mac_cap_info[i];
1325 he->he_phy_cap[i] = elem->phy_cap_info[i];
1326 }
1327
1328 mcs_map = link_sta->he_cap.he_mcs_nss_supp;
1329 switch (link_sta->bandwidth) {
1330 case IEEE80211_STA_RX_BW_160:
1331 if (elem->phy_cap_info[0] &
1332 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)
1333 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1334 &he->max_nss_mcs[CMD_HE_MCS_BW8080],
1335 le16_to_cpu(mcs_map.rx_mcs_80p80));
1336
1337 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1338 &he->max_nss_mcs[CMD_HE_MCS_BW160],
1339 le16_to_cpu(mcs_map.rx_mcs_160));
1340 fallthrough;
1341 default:
1342 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1343 &he->max_nss_mcs[CMD_HE_MCS_BW80],
1344 le16_to_cpu(mcs_map.rx_mcs_80));
1345 break;
1346 }
1347
1348 he->pkt_ext = 2;
1349 }
1350
1351 static void
mt7996_mcu_sta_he_6g_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1352 mt7996_mcu_sta_he_6g_tlv(struct sk_buff *skb,
1353 struct ieee80211_link_sta *link_sta)
1354 {
1355 struct sta_rec_he_6g_capa *he_6g;
1356 struct tlv *tlv;
1357
1358 if (!link_sta->he_6ghz_capa.capa)
1359 return;
1360
1361 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_6G, sizeof(*he_6g));
1362
1363 he_6g = (struct sta_rec_he_6g_capa *)tlv;
1364 he_6g->capa = link_sta->he_6ghz_capa.capa;
1365 }
1366
1367 static void
mt7996_mcu_sta_eht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1368 mt7996_mcu_sta_eht_tlv(struct sk_buff *skb,
1369 struct ieee80211_link_sta *link_sta)
1370 {
1371 struct mt7996_sta *msta = (struct mt7996_sta *)link_sta->sta->drv_priv;
1372 struct ieee80211_vif *vif = container_of((void *)msta->vif,
1373 struct ieee80211_vif, drv_priv);
1374 struct ieee80211_eht_mcs_nss_supp *mcs_map;
1375 struct ieee80211_eht_cap_elem_fixed *elem;
1376 struct sta_rec_eht *eht;
1377 struct tlv *tlv;
1378
1379 if (!link_sta->eht_cap.has_eht)
1380 return;
1381
1382 mcs_map = &link_sta->eht_cap.eht_mcs_nss_supp;
1383 elem = &link_sta->eht_cap.eht_cap_elem;
1384
1385 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT, sizeof(*eht));
1386
1387 eht = (struct sta_rec_eht *)tlv;
1388 eht->tid_bitmap = 0xff;
1389 eht->mac_cap = cpu_to_le16(*(u16 *)elem->mac_cap_info);
1390 eht->phy_cap = cpu_to_le64(*(u64 *)elem->phy_cap_info);
1391 eht->phy_cap_ext = cpu_to_le64(elem->phy_cap_info[8]);
1392
1393 if (vif->type != NL80211_IFTYPE_STATION &&
1394 (link_sta->he_cap.he_cap_elem.phy_cap_info[0] &
1395 (IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G |
1396 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
1397 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
1398 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)) == 0) {
1399 memcpy(eht->mcs_map_bw20, &mcs_map->only_20mhz,
1400 sizeof(eht->mcs_map_bw20));
1401 return;
1402 }
1403
1404 memcpy(eht->mcs_map_bw80, &mcs_map->bw._80, sizeof(eht->mcs_map_bw80));
1405 memcpy(eht->mcs_map_bw160, &mcs_map->bw._160, sizeof(eht->mcs_map_bw160));
1406 memcpy(eht->mcs_map_bw320, &mcs_map->bw._320, sizeof(eht->mcs_map_bw320));
1407 }
1408
1409 static void
mt7996_mcu_sta_ht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1410 mt7996_mcu_sta_ht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1411 {
1412 struct sta_rec_ht_uni *ht;
1413 struct tlv *tlv;
1414
1415 if (!link_sta->ht_cap.ht_supported)
1416 return;
1417
1418 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HT, sizeof(*ht));
1419
1420 ht = (struct sta_rec_ht_uni *)tlv;
1421 ht->ht_cap = cpu_to_le16(link_sta->ht_cap.cap);
1422 ht->ampdu_param = u8_encode_bits(link_sta->ht_cap.ampdu_factor,
1423 IEEE80211_HT_AMPDU_PARM_FACTOR) |
1424 u8_encode_bits(link_sta->ht_cap.ampdu_density,
1425 IEEE80211_HT_AMPDU_PARM_DENSITY);
1426 }
1427
1428 static void
mt7996_mcu_sta_vht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1429 mt7996_mcu_sta_vht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1430 {
1431 struct sta_rec_vht *vht;
1432 struct tlv *tlv;
1433
1434 /* For 6G band, this tlv is necessary to let hw work normally */
1435 if (!link_sta->he_6ghz_capa.capa && !link_sta->vht_cap.vht_supported)
1436 return;
1437
1438 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_VHT, sizeof(*vht));
1439
1440 vht = (struct sta_rec_vht *)tlv;
1441 vht->vht_cap = cpu_to_le32(link_sta->vht_cap.cap);
1442 vht->vht_rx_mcs_map = link_sta->vht_cap.vht_mcs.rx_mcs_map;
1443 vht->vht_tx_mcs_map = link_sta->vht_cap.vht_mcs.tx_mcs_map;
1444 }
1445
1446 static void
mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_link_sta * link_sta,struct mt7996_sta_link * msta_link)1447 mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1448 struct ieee80211_vif *vif,
1449 struct ieee80211_link_sta *link_sta,
1450 struct mt7996_sta_link *msta_link)
1451 {
1452 struct sta_rec_amsdu *amsdu;
1453 struct tlv *tlv;
1454
1455 if (vif->type != NL80211_IFTYPE_STATION &&
1456 vif->type != NL80211_IFTYPE_MESH_POINT &&
1457 vif->type != NL80211_IFTYPE_AP)
1458 return;
1459
1460 if (!link_sta->agg.max_amsdu_len)
1461 return;
1462
1463 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HW_AMSDU, sizeof(*amsdu));
1464 amsdu = (struct sta_rec_amsdu *)tlv;
1465 amsdu->max_amsdu_num = 8;
1466 amsdu->amsdu_en = true;
1467 msta_link->wcid.amsdu = true;
1468
1469 switch (link_sta->agg.max_amsdu_len) {
1470 case IEEE80211_MAX_MPDU_LEN_VHT_11454:
1471 amsdu->max_mpdu_size =
1472 IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454;
1473 return;
1474 case IEEE80211_MAX_MPDU_LEN_HT_7935:
1475 case IEEE80211_MAX_MPDU_LEN_VHT_7991:
1476 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_7991;
1477 return;
1478 default:
1479 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_3895;
1480 return;
1481 }
1482 }
1483
1484 static void
mt7996_mcu_sta_muru_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta)1485 mt7996_mcu_sta_muru_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1486 struct ieee80211_bss_conf *link_conf,
1487 struct ieee80211_link_sta *link_sta)
1488 {
1489 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1490 struct sta_rec_muru *muru;
1491 struct tlv *tlv;
1492
1493 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1494 link_conf->vif->type != NL80211_IFTYPE_AP)
1495 return;
1496
1497 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MURU, sizeof(*muru));
1498
1499 muru = (struct sta_rec_muru *)tlv;
1500 muru->cfg.mimo_dl_en = link_conf->eht_mu_beamformer ||
1501 link_conf->he_mu_beamformer ||
1502 link_conf->vht_mu_beamformer ||
1503 link_conf->vht_mu_beamformee;
1504 muru->cfg.ofdma_dl_en = true;
1505
1506 if (link_sta->vht_cap.vht_supported)
1507 muru->mimo_dl.vht_mu_bfee =
1508 !!(link_sta->vht_cap.cap & IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE);
1509
1510 if (!link_sta->he_cap.has_he)
1511 return;
1512
1513 muru->mimo_dl.partial_bw_dl_mimo =
1514 HE_PHY(CAP6_PARTIAL_BANDWIDTH_DL_MUMIMO, elem->phy_cap_info[6]);
1515
1516 muru->mimo_ul.full_ul_mimo =
1517 HE_PHY(CAP2_UL_MU_FULL_MU_MIMO, elem->phy_cap_info[2]);
1518 muru->mimo_ul.partial_ul_mimo =
1519 HE_PHY(CAP2_UL_MU_PARTIAL_MU_MIMO, elem->phy_cap_info[2]);
1520
1521 muru->ofdma_dl.punc_pream_rx =
1522 HE_PHY(CAP1_PREAMBLE_PUNC_RX_MASK, elem->phy_cap_info[1]);
1523 muru->ofdma_dl.he_20m_in_40m_2g =
1524 HE_PHY(CAP8_20MHZ_IN_40MHZ_HE_PPDU_IN_2G, elem->phy_cap_info[8]);
1525 muru->ofdma_dl.he_20m_in_160m =
1526 HE_PHY(CAP8_20MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1527 muru->ofdma_dl.he_80m_in_160m =
1528 HE_PHY(CAP8_80MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1529
1530 muru->ofdma_ul.t_frame_dur =
1531 HE_MAC(CAP1_TF_MAC_PAD_DUR_MASK, elem->mac_cap_info[1]);
1532 muru->ofdma_ul.mu_cascading =
1533 HE_MAC(CAP2_MU_CASCADING, elem->mac_cap_info[2]);
1534 muru->ofdma_ul.uo_ra =
1535 HE_MAC(CAP3_OFDMA_RA, elem->mac_cap_info[3]);
1536 muru->ofdma_ul.rx_ctrl_frame_to_mbss =
1537 HE_MAC(CAP3_RX_CTRL_FRAME_TO_MULTIBSS, elem->mac_cap_info[3]);
1538 }
1539
1540 static inline bool
mt7996_is_ebf_supported(struct mt7996_phy * phy,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,bool bfee)1541 mt7996_is_ebf_supported(struct mt7996_phy *phy,
1542 struct ieee80211_bss_conf *link_conf,
1543 struct ieee80211_link_sta *link_sta, bool bfee)
1544 {
1545 int sts = hweight16(phy->mt76->chainmask);
1546
1547 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1548 link_conf->vif->type != NL80211_IFTYPE_AP)
1549 return false;
1550
1551 if (!bfee && sts < 2)
1552 return false;
1553
1554 if (link_sta->eht_cap.has_eht) {
1555 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1556 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1557
1558 if (bfee)
1559 return link_conf->eht_su_beamformee &&
1560 EHT_PHY(CAP0_SU_BEAMFORMER, pe->phy_cap_info[0]);
1561 else
1562 return link_conf->eht_su_beamformer &&
1563 EHT_PHY(CAP0_SU_BEAMFORMEE, pe->phy_cap_info[0]);
1564 }
1565
1566 if (link_sta->he_cap.has_he) {
1567 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1568
1569 if (bfee)
1570 return link_conf->he_su_beamformee &&
1571 HE_PHY(CAP3_SU_BEAMFORMER, pe->phy_cap_info[3]);
1572 else
1573 return link_conf->he_su_beamformer &&
1574 HE_PHY(CAP4_SU_BEAMFORMEE, pe->phy_cap_info[4]);
1575 }
1576
1577 if (link_sta->vht_cap.vht_supported) {
1578 u32 cap = link_sta->vht_cap.cap;
1579
1580 if (bfee)
1581 return link_conf->vht_su_beamformee &&
1582 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE);
1583 else
1584 return link_conf->vht_su_beamformer &&
1585 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE);
1586 }
1587
1588 return false;
1589 }
1590
1591 static void
mt7996_mcu_sta_sounding_rate(struct sta_rec_bf * bf,struct mt7996_phy * phy)1592 mt7996_mcu_sta_sounding_rate(struct sta_rec_bf *bf, struct mt7996_phy *phy)
1593 {
1594 bf->sounding_phy = MT_PHY_TYPE_OFDM;
1595 bf->ndp_rate = 0; /* mcs0 */
1596 if (is_mt7996(phy->mt76->dev))
1597 bf->ndpa_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1598 else
1599 bf->ndpa_rate = MT7992_CFEND_RATE_DEFAULT; /* ofdm 6m */
1600
1601 bf->rept_poll_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1602 }
1603
1604 static void
mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1605 mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta *link_sta,
1606 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1607 bool explicit)
1608 {
1609 struct ieee80211_mcs_info *mcs = &link_sta->ht_cap.mcs;
1610 u8 n = 0;
1611
1612 bf->tx_mode = MT_PHY_TYPE_HT;
1613
1614 if ((mcs->tx_params & IEEE80211_HT_MCS_TX_RX_DIFF) &&
1615 (mcs->tx_params & IEEE80211_HT_MCS_TX_DEFINED))
1616 n = FIELD_GET(IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK,
1617 mcs->tx_params);
1618 else if (mcs->rx_mask[3])
1619 n = 3;
1620 else if (mcs->rx_mask[2])
1621 n = 2;
1622 else if (mcs->rx_mask[1])
1623 n = 1;
1624
1625 bf->nrow = hweight8(phy->mt76->antenna_mask) - 1;
1626 bf->ncol = min_t(u8, bf->nrow, n);
1627 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1628 min_t(u8, MT7996_IBF_MAX_NC, n);
1629 }
1630
1631 static void
mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1632 mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta *link_sta,
1633 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1634 bool explicit)
1635 {
1636 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1637 struct ieee80211_sta_vht_cap *vc = &phy->mt76->sband_5g.sband.vht_cap;
1638 u16 mcs_map = le16_to_cpu(pc->vht_mcs.rx_mcs_map);
1639 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1640 u8 tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1641
1642 bf->tx_mode = MT_PHY_TYPE_VHT;
1643
1644 if (explicit) {
1645 u8 sts, snd_dim;
1646
1647 mt7996_mcu_sta_sounding_rate(bf, phy);
1648
1649 sts = FIELD_GET(IEEE80211_VHT_CAP_BEAMFORMEE_STS_MASK,
1650 pc->cap);
1651 snd_dim = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1652 vc->cap);
1653 bf->nrow = min_t(u8, min_t(u8, snd_dim, sts), tx_ant);
1654 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1655 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, bf->ncol);
1656
1657 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1658 bf->nrow = 1;
1659 } else {
1660 bf->nrow = tx_ant;
1661 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1662 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1663
1664 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1665 bf->ibf_nrow = 1;
1666 }
1667 }
1668
1669 static void
mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1670 mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta *link_sta,
1671 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1672 struct sta_rec_bf *bf, bool explicit)
1673 {
1674 struct ieee80211_sta_he_cap *pc = &link_sta->he_cap;
1675 struct ieee80211_he_cap_elem *pe = &pc->he_cap_elem;
1676 const struct ieee80211_sta_he_cap *vc =
1677 mt76_connac_get_he_phy_cap(phy->mt76, vif);
1678 const struct ieee80211_he_cap_elem *ve = &vc->he_cap_elem;
1679 u16 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80);
1680 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1681 u8 snd_dim, sts;
1682
1683 if (!vc)
1684 return;
1685
1686 bf->tx_mode = MT_PHY_TYPE_HE_SU;
1687
1688 mt7996_mcu_sta_sounding_rate(bf, phy);
1689
1690 bf->trigger_su = HE_PHY(CAP6_TRIG_SU_BEAMFORMING_FB,
1691 pe->phy_cap_info[6]);
1692 bf->trigger_mu = HE_PHY(CAP6_TRIG_MU_BEAMFORMING_PARTIAL_BW_FB,
1693 pe->phy_cap_info[6]);
1694 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1695 ve->phy_cap_info[5]);
1696 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_MASK,
1697 pe->phy_cap_info[4]);
1698 bf->nrow = min_t(u8, snd_dim, sts);
1699 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1700 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1701 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1702
1703 if (link_sta->bandwidth != IEEE80211_STA_RX_BW_160)
1704 return;
1705
1706 /* go over for 160MHz and 80p80 */
1707 if (pe->phy_cap_info[0] &
1708 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G) {
1709 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_160);
1710 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1711
1712 bf->ncol_gt_bw80 = nss_mcs;
1713 }
1714
1715 if (pe->phy_cap_info[0] &
1716 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G) {
1717 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80p80);
1718 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1719
1720 if (bf->ncol_gt_bw80)
1721 bf->ncol_gt_bw80 = min_t(u8, bf->ncol_gt_bw80, nss_mcs);
1722 else
1723 bf->ncol_gt_bw80 = nss_mcs;
1724 }
1725
1726 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_MASK,
1727 ve->phy_cap_info[5]);
1728 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_MASK,
1729 pe->phy_cap_info[4]);
1730
1731 bf->nrow_gt_bw80 = min_t(int, snd_dim, sts);
1732 }
1733
1734 static void
mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1735 mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta *link_sta,
1736 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1737 struct sta_rec_bf *bf, bool explicit)
1738 {
1739 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1740 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1741 struct ieee80211_eht_mcs_nss_supp *eht_nss = &pc->eht_mcs_nss_supp;
1742 const struct ieee80211_sta_eht_cap *vc =
1743 mt76_connac_get_eht_phy_cap(phy->mt76, vif);
1744 const struct ieee80211_eht_cap_elem_fixed *ve = &vc->eht_cap_elem;
1745 u8 nss_mcs = u8_get_bits(eht_nss->bw._80.rx_tx_mcs9_max_nss,
1746 IEEE80211_EHT_MCS_NSS_RX) - 1;
1747 u8 snd_dim, sts;
1748
1749 bf->tx_mode = MT_PHY_TYPE_EHT_MU;
1750
1751 mt7996_mcu_sta_sounding_rate(bf, phy);
1752
1753 bf->trigger_su = EHT_PHY(CAP3_TRIG_SU_BF_FDBK, pe->phy_cap_info[3]);
1754 bf->trigger_mu = EHT_PHY(CAP3_TRIG_MU_BF_PART_BW_FDBK, pe->phy_cap_info[3]);
1755 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_80MHZ_MASK, ve->phy_cap_info[2]);
1756 sts = EHT_PHY(CAP0_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[0]) +
1757 (EHT_PHY(CAP1_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[1]) << 1);
1758 bf->nrow = min_t(u8, snd_dim, sts);
1759 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1760 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1761 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1762
1763 if (link_sta->bandwidth < IEEE80211_STA_RX_BW_160)
1764 return;
1765
1766 switch (link_sta->bandwidth) {
1767 case IEEE80211_STA_RX_BW_160:
1768 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_160MHZ_MASK, ve->phy_cap_info[2]);
1769 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_160MHZ_MASK, pe->phy_cap_info[1]);
1770 nss_mcs = u8_get_bits(eht_nss->bw._160.rx_tx_mcs9_max_nss,
1771 IEEE80211_EHT_MCS_NSS_RX) - 1;
1772
1773 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts);
1774 bf->ncol_gt_bw80 = nss_mcs;
1775 break;
1776 case IEEE80211_STA_RX_BW_320:
1777 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_320MHZ_MASK, ve->phy_cap_info[2]) +
1778 (EHT_PHY(CAP3_SOUNDING_DIM_320MHZ_MASK,
1779 ve->phy_cap_info[3]) << 1);
1780 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_320MHZ_MASK, pe->phy_cap_info[1]);
1781 nss_mcs = u8_get_bits(eht_nss->bw._320.rx_tx_mcs9_max_nss,
1782 IEEE80211_EHT_MCS_NSS_RX) - 1;
1783
1784 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts) << 4;
1785 bf->ncol_gt_bw80 = nss_mcs << 4;
1786 break;
1787 default:
1788 break;
1789 }
1790 }
1791
1792 static void
mt7996_mcu_sta_bfer_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1793 mt7996_mcu_sta_bfer_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1794 struct ieee80211_bss_conf *link_conf,
1795 struct ieee80211_link_sta *link_sta,
1796 struct mt7996_vif_link *link)
1797 {
1798 #define EBF_MODE BIT(0)
1799 #define IBF_MODE BIT(1)
1800 #define BF_MAT_ORDER 4
1801 struct ieee80211_vif *vif = link_conf->vif;
1802 struct mt7996_phy *phy = link->phy;
1803 int tx_ant = hweight16(phy->mt76->chainmask) - 1;
1804 struct sta_rec_bf *bf;
1805 struct tlv *tlv;
1806 static const u8 matrix[BF_MAT_ORDER][BF_MAT_ORDER] = {
1807 {0, 0, 0, 0},
1808 {1, 1, 0, 0}, /* 2x1, 2x2, 2x3, 2x4 */
1809 {2, 4, 4, 0}, /* 3x1, 3x2, 3x3, 3x4 */
1810 {3, 5, 6, 0} /* 4x1, 4x2, 4x3, 4x4 */
1811 };
1812 bool ebf;
1813
1814 if (!(link_sta->ht_cap.ht_supported || link_sta->he_cap.has_he))
1815 return;
1816
1817 ebf = mt7996_is_ebf_supported(phy, link_conf, link_sta, false);
1818 if (!ebf && !dev->ibf)
1819 return;
1820
1821 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BF, sizeof(*bf));
1822 bf = (struct sta_rec_bf *)tlv;
1823
1824 /* he/eht: eBF only, except mt7992 that has 5T on 5GHz also supports iBF
1825 * vht: support eBF and iBF
1826 * ht: iBF only, since mac80211 lacks of eBF support
1827 */
1828 if (link_sta->eht_cap.has_eht)
1829 mt7996_mcu_sta_bfer_eht(link_sta, vif, link->phy, bf, ebf);
1830 else if (link_sta->he_cap.has_he)
1831 mt7996_mcu_sta_bfer_he(link_sta, vif, link->phy, bf, ebf);
1832 else if (link_sta->vht_cap.vht_supported)
1833 mt7996_mcu_sta_bfer_vht(link_sta, link->phy, bf, ebf);
1834 else if (link_sta->ht_cap.ht_supported)
1835 mt7996_mcu_sta_bfer_ht(link_sta, link->phy, bf, ebf);
1836 else
1837 return;
1838
1839 bf->bf_cap = ebf ? EBF_MODE : (dev->ibf ? IBF_MODE : 0);
1840 if (is_mt7992(&dev->mt76) && tx_ant == 4)
1841 bf->bf_cap |= IBF_MODE;
1842
1843 bf->bw = link_sta->bandwidth;
1844 bf->ibf_dbw = link_sta->bandwidth;
1845 bf->ibf_nrow = tx_ant;
1846
1847 if (link_sta->eht_cap.has_eht || link_sta->he_cap.has_he)
1848 bf->ibf_timeout = is_mt7992(&dev->mt76) ? MT7992_IBF_TIMEOUT :
1849 MT7996_IBF_TIMEOUT;
1850 else if (!ebf && link_sta->bandwidth <= IEEE80211_STA_RX_BW_40 && !bf->ncol)
1851 bf->ibf_timeout = MT7996_IBF_TIMEOUT_LEGACY;
1852 else
1853 bf->ibf_timeout = MT7996_IBF_TIMEOUT;
1854
1855 if (bf->ncol < BF_MAT_ORDER) {
1856 if (ebf)
1857 bf->mem_20m = tx_ant < BF_MAT_ORDER ?
1858 matrix[tx_ant][bf->ncol] : 0;
1859 else
1860 bf->mem_20m = bf->nrow < BF_MAT_ORDER ?
1861 matrix[bf->nrow][bf->ncol] : 0;
1862 }
1863 }
1864
1865 static void
mt7996_mcu_sta_bfee_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1866 mt7996_mcu_sta_bfee_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1867 struct ieee80211_bss_conf *link_conf,
1868 struct ieee80211_link_sta *link_sta,
1869 struct mt7996_vif_link *link)
1870 {
1871 struct mt7996_phy *phy = link->phy;
1872 int tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1873 struct sta_rec_bfee *bfee;
1874 struct tlv *tlv;
1875 u8 nrow = 0;
1876
1877 if (!(link_sta->vht_cap.vht_supported || link_sta->he_cap.has_he))
1878 return;
1879
1880 if (!mt7996_is_ebf_supported(phy, link_conf, link_sta, true))
1881 return;
1882
1883 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BFEE, sizeof(*bfee));
1884 bfee = (struct sta_rec_bfee *)tlv;
1885
1886 if (link_sta->he_cap.has_he) {
1887 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1888
1889 nrow = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1890 pe->phy_cap_info[5]);
1891 } else if (link_sta->vht_cap.vht_supported) {
1892 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1893
1894 nrow = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1895 pc->cap);
1896 }
1897
1898 /* reply with identity matrix to avoid 2x2 BF negative gain */
1899 bfee->fb_identity_matrix = (nrow == 1 && tx_ant == 2);
1900 }
1901
1902 static void
mt7996_mcu_sta_tx_proc_tlv(struct sk_buff * skb)1903 mt7996_mcu_sta_tx_proc_tlv(struct sk_buff *skb)
1904 {
1905 struct sta_rec_tx_proc *tx_proc;
1906 struct tlv *tlv;
1907
1908 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_TX_PROC, sizeof(*tx_proc));
1909
1910 tx_proc = (struct sta_rec_tx_proc *)tlv;
1911 tx_proc->flag = cpu_to_le32(0);
1912 }
1913
1914 static void
mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev * dev,struct sk_buff * skb)1915 mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev *dev, struct sk_buff *skb)
1916 {
1917 struct sta_rec_hdrt *hdrt;
1918 struct tlv *tlv;
1919
1920 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDRT, sizeof(*hdrt));
1921
1922 hdrt = (struct sta_rec_hdrt *)tlv;
1923 hdrt->hdrt_mode = 1;
1924 }
1925
1926 static void
mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct mt76_wcid * wcid)1927 mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1928 struct ieee80211_vif *vif, struct mt76_wcid *wcid)
1929 {
1930 struct sta_rec_hdr_trans *hdr_trans;
1931 struct tlv *tlv;
1932
1933 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDR_TRANS, sizeof(*hdr_trans));
1934 hdr_trans = (struct sta_rec_hdr_trans *)tlv;
1935 hdr_trans->dis_rx_hdr_tran = true;
1936
1937 if (vif->type == NL80211_IFTYPE_STATION)
1938 hdr_trans->to_ds = true;
1939 else
1940 hdr_trans->from_ds = true;
1941
1942 if (!wcid)
1943 return;
1944
1945 hdr_trans->dis_rx_hdr_tran = !test_bit(MT_WCID_FLAG_HDR_TRANS, &wcid->flags);
1946 if (test_bit(MT_WCID_FLAG_4ADDR, &wcid->flags)) {
1947 hdr_trans->to_ds = true;
1948 hdr_trans->from_ds = true;
1949 }
1950
1951 if (vif->type == NL80211_IFTYPE_MESH_POINT) {
1952 hdr_trans->to_ds = true;
1953 hdr_trans->from_ds = true;
1954 hdr_trans->mesh = true;
1955 }
1956 }
1957
1958 static enum mcu_mmps_mode
mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)1959 mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)
1960 {
1961 switch (smps) {
1962 case IEEE80211_SMPS_OFF:
1963 return MCU_MMPS_DISABLE;
1964 case IEEE80211_SMPS_STATIC:
1965 return MCU_MMPS_STATIC;
1966 case IEEE80211_SMPS_DYNAMIC:
1967 return MCU_MMPS_DYNAMIC;
1968 default:
1969 return MCU_MMPS_DISABLE;
1970 }
1971 }
1972
mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev * dev,void * data,u16 version)1973 int mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev *dev,
1974 void *data, u16 version)
1975 {
1976 struct uni_header hdr = {};
1977 struct ra_fixed_rate *req;
1978 struct sk_buff *skb;
1979 struct tlv *tlv;
1980 int len;
1981
1982 len = sizeof(hdr) + sizeof(*req);
1983
1984 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
1985 if (!skb)
1986 return -ENOMEM;
1987
1988 skb_put_data(skb, &hdr, sizeof(hdr));
1989
1990 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_RA_FIXED_RATE, sizeof(*req));
1991 req = (struct ra_fixed_rate *)tlv;
1992 req->version = cpu_to_le16(version);
1993 memcpy(&req->rate, data, sizeof(req->rate));
1994
1995 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1996 MCU_WM_UNI_CMD(RA), true);
1997 }
1998
mt7996_mcu_set_fixed_field(struct mt7996_dev * dev,struct mt7996_sta * msta,void * data,u8 link_id,u32 field)1999 int mt7996_mcu_set_fixed_field(struct mt7996_dev *dev, struct mt7996_sta *msta,
2000 void *data, u8 link_id, u32 field)
2001 {
2002 struct mt7996_vif *mvif = msta->vif;
2003 struct mt7996_sta_link *msta_link;
2004 struct sta_rec_ra_fixed_uni *ra;
2005 struct sta_phy_uni *phy = data;
2006 struct mt76_vif_link *mlink;
2007 struct sk_buff *skb;
2008 int err = -ENODEV;
2009 struct tlv *tlv;
2010
2011 rcu_read_lock();
2012
2013 mlink = rcu_dereference(mvif->mt76.link[link_id]);
2014 if (!mlink)
2015 goto error_unlock;
2016
2017 msta_link = rcu_dereference(msta->link[link_id]);
2018 if (!msta_link)
2019 goto error_unlock;
2020
2021 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mlink,
2022 &msta_link->wcid,
2023 MT7996_STA_UPDATE_MAX_SIZE);
2024 if (IS_ERR(skb)) {
2025 err = PTR_ERR(skb);
2026 goto error_unlock;
2027 }
2028
2029 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA_UPDATE, sizeof(*ra));
2030 ra = (struct sta_rec_ra_fixed_uni *)tlv;
2031
2032 switch (field) {
2033 case RATE_PARAM_AUTO:
2034 break;
2035 case RATE_PARAM_FIXED:
2036 case RATE_PARAM_FIXED_MCS:
2037 case RATE_PARAM_FIXED_GI:
2038 case RATE_PARAM_FIXED_HE_LTF:
2039 if (phy)
2040 ra->phy = *phy;
2041 break;
2042 case RATE_PARAM_MMPS_UPDATE: {
2043 struct ieee80211_sta *sta = wcid_to_sta(&msta_link->wcid);
2044 struct ieee80211_link_sta *link_sta;
2045
2046 link_sta = rcu_dereference(sta->link[link_id]);
2047 if (!link_sta) {
2048 dev_kfree_skb(skb);
2049 goto error_unlock;
2050 }
2051
2052 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
2053 break;
2054 }
2055 default:
2056 break;
2057 }
2058 ra->field = cpu_to_le32(field);
2059
2060 rcu_read_unlock();
2061
2062 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2063 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2064 error_unlock:
2065 rcu_read_unlock();
2066
2067 return err;
2068 }
2069
2070 static int
mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id)2071 mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev *dev, struct mt7996_sta *msta,
2072 struct ieee80211_vif *vif, u8 link_id)
2073 {
2074 struct ieee80211_link_sta *link_sta;
2075 struct cfg80211_bitrate_mask mask;
2076 struct mt7996_sta_link *msta_link;
2077 struct mt7996_vif_link *link;
2078 struct sta_phy_uni phy = {};
2079 struct ieee80211_sta *sta;
2080 int ret, nrates = 0, idx;
2081 enum nl80211_band band;
2082 bool has_he;
2083
2084 #define __sta_phy_bitrate_mask_check(_mcs, _gi, _ht, _he) \
2085 do { \
2086 u8 i, gi = mask.control[band]._gi; \
2087 gi = (_he) ? gi : gi == NL80211_TXRATE_FORCE_SGI; \
2088 phy.sgi = gi; \
2089 phy.he_ltf = mask.control[band].he_ltf; \
2090 for (i = 0; i < ARRAY_SIZE(mask.control[band]._mcs); i++) { \
2091 if (!mask.control[band]._mcs[i]) \
2092 continue; \
2093 nrates += hweight16(mask.control[band]._mcs[i]); \
2094 phy.mcs = ffs(mask.control[band]._mcs[i]) - 1; \
2095 if (_ht) \
2096 phy.mcs += 8 * i; \
2097 } \
2098 } while (0)
2099
2100 rcu_read_lock();
2101
2102 link = mt7996_vif_link(dev, vif, link_id);
2103 if (!link)
2104 goto error_unlock;
2105
2106 msta_link = rcu_dereference(msta->link[link_id]);
2107 if (!msta_link)
2108 goto error_unlock;
2109
2110 sta = wcid_to_sta(&msta_link->wcid);
2111 link_sta = rcu_dereference(sta->link[link_id]);
2112 if (!link_sta)
2113 goto error_unlock;
2114
2115 band = link->phy->mt76->chandef.chan->band;
2116 has_he = link_sta->he_cap.has_he;
2117 mask = link->bitrate_mask;
2118 idx = msta_link->wcid.idx;
2119
2120 if (has_he) {
2121 __sta_phy_bitrate_mask_check(he_mcs, he_gi, 0, 1);
2122 } else if (link_sta->vht_cap.vht_supported) {
2123 __sta_phy_bitrate_mask_check(vht_mcs, gi, 0, 0);
2124 } else if (link_sta->ht_cap.ht_supported) {
2125 __sta_phy_bitrate_mask_check(ht_mcs, gi, 1, 0);
2126 } else {
2127 nrates = hweight32(mask.control[band].legacy);
2128 phy.mcs = ffs(mask.control[band].legacy) - 1;
2129 }
2130
2131 rcu_read_unlock();
2132
2133 #undef __sta_phy_bitrate_mask_check
2134
2135 /* fall back to auto rate control */
2136 if (mask.control[band].gi == NL80211_TXRATE_DEFAULT_GI &&
2137 mask.control[band].he_gi == GENMASK(7, 0) &&
2138 mask.control[band].he_ltf == GENMASK(7, 0) &&
2139 nrates != 1)
2140 return 0;
2141
2142 /* fixed single rate */
2143 if (nrates == 1) {
2144 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2145 RATE_PARAM_FIXED_MCS);
2146 if (ret)
2147 return ret;
2148 }
2149
2150 /* fixed GI */
2151 if (mask.control[band].gi != NL80211_TXRATE_DEFAULT_GI ||
2152 mask.control[band].he_gi != GENMASK(7, 0)) {
2153 u32 addr;
2154
2155 /* firmware updates only TXCMD but doesn't take WTBL into
2156 * account, so driver should update here to reflect the
2157 * actual txrate hardware sends out.
2158 */
2159 addr = mt7996_mac_wtbl_lmac_addr(dev, idx, 7);
2160 if (has_he)
2161 mt76_rmw_field(dev, addr, GENMASK(31, 24), phy.sgi);
2162 else
2163 mt76_rmw_field(dev, addr, GENMASK(15, 12), phy.sgi);
2164
2165 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2166 RATE_PARAM_FIXED_GI);
2167 if (ret)
2168 return ret;
2169 }
2170
2171 /* fixed HE_LTF */
2172 if (mask.control[band].he_ltf != GENMASK(7, 0)) {
2173 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2174 RATE_PARAM_FIXED_HE_LTF);
2175 if (ret)
2176 return ret;
2177 }
2178
2179 return 0;
2180
2181 error_unlock:
2182 rcu_read_unlock();
2183
2184 return -ENODEV;
2185 }
2186
2187 static void
mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff * skb,struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)2188 mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff *skb, struct mt7996_dev *dev,
2189 struct ieee80211_vif *vif,
2190 struct ieee80211_bss_conf *link_conf,
2191 struct ieee80211_link_sta *link_sta,
2192 struct mt7996_vif_link *link)
2193 {
2194 #define INIT_RCPI 180
2195 struct mt76_phy *mphy = link->phy->mt76;
2196 struct cfg80211_chan_def *chandef = &mphy->chandef;
2197 struct cfg80211_bitrate_mask *mask = &link->bitrate_mask;
2198 u32 cap = link_sta->sta->wme ? STA_CAP_WMM : 0;
2199 enum nl80211_band band = chandef->chan->band;
2200 struct sta_rec_ra_uni *ra;
2201 struct tlv *tlv;
2202 u32 supp_rate = link_sta->supp_rates[band];
2203
2204 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA, sizeof(*ra));
2205 ra = (struct sta_rec_ra_uni *)tlv;
2206
2207 ra->valid = true;
2208 ra->auto_rate = true;
2209 ra->phy_mode = mt76_connac_get_phy_mode(mphy, vif, band, link_sta);
2210 ra->channel = chandef->chan->hw_value;
2211 ra->bw = (link_sta->bandwidth == IEEE80211_STA_RX_BW_320) ?
2212 CMD_CBW_320MHZ : link_sta->bandwidth;
2213 ra->phy.bw = ra->bw;
2214 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
2215
2216 if (supp_rate) {
2217 supp_rate &= mask->control[band].legacy;
2218 ra->rate_len = hweight32(supp_rate);
2219
2220 if (band == NL80211_BAND_2GHZ) {
2221 ra->supp_mode = MODE_CCK;
2222 ra->supp_cck_rate = supp_rate & GENMASK(3, 0);
2223
2224 if (ra->rate_len > 4) {
2225 ra->supp_mode |= MODE_OFDM;
2226 ra->supp_ofdm_rate = supp_rate >> 4;
2227 }
2228 } else {
2229 ra->supp_mode = MODE_OFDM;
2230 ra->supp_ofdm_rate = supp_rate;
2231 }
2232 }
2233
2234 if (link_sta->ht_cap.ht_supported) {
2235 ra->supp_mode |= MODE_HT;
2236 ra->af = link_sta->ht_cap.ampdu_factor;
2237 ra->ht_gf = !!(link_sta->ht_cap.cap & IEEE80211_HT_CAP_GRN_FLD);
2238
2239 cap |= STA_CAP_HT;
2240 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_20)
2241 cap |= STA_CAP_SGI_20;
2242 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_40)
2243 cap |= STA_CAP_SGI_40;
2244 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_TX_STBC)
2245 cap |= STA_CAP_TX_STBC;
2246 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_RX_STBC)
2247 cap |= STA_CAP_RX_STBC;
2248 if (link_conf->ht_ldpc &&
2249 (link_sta->ht_cap.cap & IEEE80211_HT_CAP_LDPC_CODING))
2250 cap |= STA_CAP_LDPC;
2251
2252 mt7996_mcu_set_sta_ht_mcs(link_sta, ra->ht_mcs,
2253 mask->control[band].ht_mcs);
2254 ra->supp_ht_mcs = *(__le32 *)ra->ht_mcs;
2255 }
2256
2257 if (link_sta->vht_cap.vht_supported) {
2258 u8 af;
2259
2260 ra->supp_mode |= MODE_VHT;
2261 af = FIELD_GET(IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK,
2262 link_sta->vht_cap.cap);
2263 ra->af = max_t(u8, ra->af, af);
2264
2265 cap |= STA_CAP_VHT;
2266 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_80)
2267 cap |= STA_CAP_VHT_SGI_80;
2268 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_160)
2269 cap |= STA_CAP_VHT_SGI_160;
2270 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_TXSTBC)
2271 cap |= STA_CAP_VHT_TX_STBC;
2272 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXSTBC_1)
2273 cap |= STA_CAP_VHT_RX_STBC;
2274 if ((vif->type != NL80211_IFTYPE_AP || link_conf->vht_ldpc) &&
2275 (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXLDPC))
2276 cap |= STA_CAP_VHT_LDPC;
2277
2278 mt7996_mcu_set_sta_vht_mcs(link_sta, ra->supp_vht_mcs,
2279 mask->control[band].vht_mcs);
2280 }
2281
2282 if (link_sta->he_cap.has_he) {
2283 ra->supp_mode |= MODE_HE;
2284 cap |= STA_CAP_HE;
2285
2286 if (link_sta->he_6ghz_capa.capa)
2287 ra->af = le16_get_bits(link_sta->he_6ghz_capa.capa,
2288 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP);
2289 }
2290 ra->sta_cap = cpu_to_le32(cap);
2291
2292 memset(ra->rx_rcpi, INIT_RCPI, sizeof(ra->rx_rcpi));
2293 }
2294
mt7996_mcu_add_rate_ctrl(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id,bool changed)2295 int mt7996_mcu_add_rate_ctrl(struct mt7996_dev *dev, struct mt7996_sta *msta,
2296 struct ieee80211_vif *vif, u8 link_id,
2297 bool changed)
2298 {
2299 struct ieee80211_bss_conf *link_conf;
2300 struct ieee80211_link_sta *link_sta;
2301 struct mt7996_sta_link *msta_link;
2302 struct mt7996_vif_link *link;
2303 struct ieee80211_sta *sta;
2304 struct sk_buff *skb;
2305 int ret = -ENODEV;
2306
2307 rcu_read_lock();
2308
2309 link = mt7996_vif_link(dev, vif, link_id);
2310 if (!link)
2311 goto error_unlock;
2312
2313 msta_link = rcu_dereference(msta->link[link_id]);
2314 if (!msta_link)
2315 goto error_unlock;
2316
2317 sta = wcid_to_sta(&msta_link->wcid);
2318 link_sta = rcu_dereference(sta->link[link_id]);
2319 if (!link_sta)
2320 goto error_unlock;
2321
2322 link_conf = rcu_dereference(vif->link_conf[link_id]);
2323 if (!link_conf)
2324 goto error_unlock;
2325
2326 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2327 &msta_link->wcid,
2328 MT7996_STA_UPDATE_MAX_SIZE);
2329 if (IS_ERR(skb)) {
2330 ret = PTR_ERR(skb);
2331 goto error_unlock;
2332 }
2333
2334 /* firmware rc algorithm refers to sta_rec_he for HE control.
2335 * once dev->rc_work changes the settings driver should also
2336 * update sta_rec_he here.
2337 */
2338 if (changed)
2339 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2340
2341 /* sta_rec_ra accommodates BW, NSS and only MCS range format
2342 * i.e 0-{7,8,9} for VHT.
2343 */
2344 mt7996_mcu_sta_rate_ctrl_tlv(skb, dev, vif, link_conf, link_sta, link);
2345
2346 rcu_read_unlock();
2347
2348 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
2349 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2350 if (ret)
2351 return ret;
2352
2353 return mt7996_mcu_add_rate_ctrl_fixed(dev, msta, vif, link_id);
2354
2355 error_unlock:
2356 rcu_read_unlock();
2357
2358 return ret;
2359 }
2360
2361 static int
mt7996_mcu_add_group(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt76_wcid * wcid)2362 mt7996_mcu_add_group(struct mt7996_dev *dev, struct mt7996_vif_link *link,
2363 struct mt76_wcid *wcid)
2364 {
2365 #define MT_STA_BSS_GROUP 1
2366 struct {
2367 u8 __rsv1[4];
2368
2369 __le16 tag;
2370 __le16 len;
2371 __le16 wlan_idx;
2372 u8 __rsv2[2];
2373 __le32 action;
2374 __le32 val;
2375 u8 __rsv3[8];
2376 } __packed req = {
2377 .tag = cpu_to_le16(UNI_VOW_DRR_CTRL),
2378 .len = cpu_to_le16(sizeof(req) - 4),
2379 .action = cpu_to_le32(MT_STA_BSS_GROUP),
2380 .val = cpu_to_le32(link->mt76.idx % 16),
2381 .wlan_idx = cpu_to_le16(wcid->idx),
2382 };
2383
2384 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(VOW), &req,
2385 sizeof(req), true);
2386 }
2387
2388 static void
mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2389 mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2390 struct ieee80211_vif *vif,
2391 struct ieee80211_sta *sta)
2392 {
2393 struct mt7996_sta *msta = (struct mt7996_sta *)sta->drv_priv;
2394 unsigned int nlinks = hweight16(sta->valid_links);
2395 struct mld_setup_link *mld_setup_link;
2396 struct ieee80211_link_sta *link_sta;
2397 struct sta_rec_mld_setup *mld_setup;
2398 struct mt7996_sta_link *msta_link;
2399 unsigned int link_id;
2400 struct tlv *tlv;
2401
2402 msta_link = mt76_dereference(msta->link[msta->deflink_id], &dev->mt76);
2403 if (!msta_link)
2404 return;
2405
2406 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MLD,
2407 sizeof(struct sta_rec_mld_setup) +
2408 sizeof(struct mld_setup_link) * nlinks);
2409
2410 mld_setup = (struct sta_rec_mld_setup *)tlv;
2411 memcpy(mld_setup->mld_addr, sta->addr, ETH_ALEN);
2412 mld_setup->setup_wcid = cpu_to_le16(msta_link->wcid.idx);
2413 mld_setup->primary_id = cpu_to_le16(msta_link->wcid.idx);
2414
2415 if (nlinks > 1) {
2416 msta_link = mt76_dereference(msta->link[msta->seclink_id],
2417 &dev->mt76);
2418 if (!msta_link)
2419 return;
2420 }
2421 mld_setup->seconed_id = cpu_to_le16(msta_link->wcid.idx);
2422 mld_setup->link_num = nlinks;
2423
2424 mld_setup_link = (struct mld_setup_link *)mld_setup->link_info;
2425 for_each_sta_active_link(vif, sta, link_sta, link_id) {
2426 struct mt7996_vif_link *link;
2427
2428 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2429 if (!msta_link)
2430 continue;
2431
2432 link = mt7996_vif_link(dev, vif, link_id);
2433 if (!link)
2434 continue;
2435
2436 mld_setup_link->wcid = cpu_to_le16(msta_link->wcid.idx);
2437 mld_setup_link->bss_idx = link->mt76.idx;
2438 mld_setup_link++;
2439 }
2440 }
2441
2442 static void
mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_sta * sta)2443 mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2444 struct ieee80211_sta *sta)
2445 {
2446 struct sta_rec_eht_mld *eht_mld;
2447 struct tlv *tlv;
2448 int i;
2449
2450 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT_MLD, sizeof(*eht_mld));
2451 eht_mld = (struct sta_rec_eht_mld *)tlv;
2452
2453 for (i = 0; i < ARRAY_SIZE(eht_mld->str_cap); i++)
2454 eht_mld->str_cap[i] = 0x7;
2455 }
2456
mt7996_mcu_add_sta(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,int conn_state,bool newly)2457 int mt7996_mcu_add_sta(struct mt7996_dev *dev,
2458 struct ieee80211_bss_conf *link_conf,
2459 struct ieee80211_link_sta *link_sta,
2460 struct mt7996_vif_link *link,
2461 struct mt7996_sta_link *msta_link,
2462 int conn_state, bool newly)
2463 {
2464 struct mt76_wcid *wcid = msta_link ? &msta_link->wcid : link->mt76.wcid;
2465 struct ieee80211_sta *sta = link_sta ? link_sta->sta : NULL;
2466 struct sk_buff *skb;
2467 int ret;
2468
2469 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76, wcid,
2470 MT7996_STA_UPDATE_MAX_SIZE);
2471 if (IS_ERR(skb))
2472 return PTR_ERR(skb);
2473
2474 /* starec basic */
2475 mt76_connac_mcu_sta_basic_tlv(&dev->mt76, skb, link_conf, link_sta,
2476 conn_state, newly);
2477
2478 if (conn_state == CONN_STATE_DISCONNECT)
2479 goto out;
2480
2481 /* starec hdr trans */
2482 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, link_conf->vif, wcid);
2483 /* starec tx proc */
2484 mt7996_mcu_sta_tx_proc_tlv(skb);
2485
2486 /* tag order is in accordance with firmware dependency. */
2487 if (link_sta) {
2488 /* starec hdrt mode */
2489 mt7996_mcu_sta_hdrt_tlv(dev, skb);
2490 if (conn_state == CONN_STATE_CONNECT) {
2491 /* starec bfer */
2492 mt7996_mcu_sta_bfer_tlv(dev, skb, link_conf, link_sta,
2493 link);
2494 /* starec bfee */
2495 mt7996_mcu_sta_bfee_tlv(dev, skb, link_conf, link_sta,
2496 link);
2497 }
2498 /* starec ht */
2499 mt7996_mcu_sta_ht_tlv(skb, link_sta);
2500 /* starec vht */
2501 mt7996_mcu_sta_vht_tlv(skb, link_sta);
2502 /* starec uapsd */
2503 mt76_connac_mcu_sta_uapsd(skb, link_conf->vif, sta);
2504 /* starec amsdu */
2505 mt7996_mcu_sta_amsdu_tlv(dev, skb, link_conf->vif, link_sta,
2506 msta_link);
2507 /* starec he */
2508 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2509 /* starec he 6g*/
2510 mt7996_mcu_sta_he_6g_tlv(skb, link_sta);
2511 /* starec eht */
2512 mt7996_mcu_sta_eht_tlv(skb, link_sta);
2513 /* starec muru */
2514 mt7996_mcu_sta_muru_tlv(dev, skb, link_conf, link_sta);
2515
2516 if (sta->mlo) {
2517 mt7996_mcu_sta_mld_setup_tlv(dev, skb, link_conf->vif,
2518 sta);
2519 mt7996_mcu_sta_eht_mld_tlv(dev, skb, sta);
2520 }
2521 }
2522
2523 ret = mt7996_mcu_add_group(dev, link, wcid);
2524 if (ret) {
2525 dev_kfree_skb(skb);
2526 return ret;
2527 }
2528 out:
2529 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2530 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2531 }
2532
mt7996_mcu_teardown_mld_sta(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)2533 int mt7996_mcu_teardown_mld_sta(struct mt7996_dev *dev,
2534 struct mt7996_vif_link *link,
2535 struct mt7996_sta_link *msta_link)
2536 {
2537 struct sk_buff *skb;
2538
2539 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2540 &msta_link->wcid,
2541 MT7996_STA_UPDATE_MAX_SIZE);
2542 if (IS_ERR(skb))
2543 return PTR_ERR(skb);
2544
2545 mt76_connac_mcu_add_tlv(skb, STA_REC_MLD_OFF, sizeof(struct tlv));
2546
2547 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2548 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2549 }
2550
2551 static int
mt7996_mcu_sta_key_tlv(struct mt76_dev * dev,struct mt76_wcid * wcid,struct sk_buff * skb,struct ieee80211_key_conf * key,enum set_key_cmd cmd)2552 mt7996_mcu_sta_key_tlv(struct mt76_dev *dev, struct mt76_wcid *wcid,
2553 struct sk_buff *skb,
2554 struct ieee80211_key_conf *key,
2555 enum set_key_cmd cmd)
2556 {
2557 struct sta_rec_sec_uni *sec;
2558 struct sec_key_uni *sec_key;
2559 struct tlv *tlv;
2560 u8 cipher;
2561
2562 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_KEY_V2, sizeof(*sec));
2563 sec = (struct sta_rec_sec_uni *)tlv;
2564 /* due to connac3 FW design, we only do remove key for BIGTK; even for
2565 * removal, the field should be filled with SET_KEY
2566 */
2567 sec->add = SET_KEY;
2568 sec->n_cipher = 1;
2569 sec_key = &sec->key[0];
2570 sec_key->wlan_idx = cpu_to_le16(wcid->idx);
2571 sec_key->key_id = key->keyidx;
2572
2573 if (cmd != SET_KEY)
2574 return 0;
2575
2576 cipher = mt76_connac_mcu_get_cipher(key->cipher);
2577 if (cipher == MCU_CIPHER_NONE)
2578 return -EOPNOTSUPP;
2579
2580 sec_key->mgmt_prot = 0;
2581 sec_key->cipher_id = cipher;
2582 sec_key->cipher_len = sizeof(*sec_key);
2583 sec_key->key_len = key->keylen;
2584 sec_key->need_resp = 0;
2585 memcpy(sec_key->key, key->key, key->keylen);
2586
2587 if (cipher == MCU_CIPHER_TKIP) {
2588 /* Rx/Tx MIC keys are swapped */
2589 memcpy(sec_key->key + 16, key->key + 24, 8);
2590 memcpy(sec_key->key + 24, key->key + 16, 8);
2591 return 0;
2592 }
2593
2594 if (sec_key->key_id != 6 && sec_key->key_id != 7)
2595 return 0;
2596
2597 switch (key->cipher) {
2598 case WLAN_CIPHER_SUITE_AES_CMAC:
2599 sec_key->cipher_id = MCU_CIPHER_BCN_PROT_CMAC_128;
2600 break;
2601 case WLAN_CIPHER_SUITE_BIP_GMAC_128:
2602 sec_key->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_128;
2603 break;
2604 case WLAN_CIPHER_SUITE_BIP_GMAC_256:
2605 sec_key->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_256;
2606 break;
2607 case WLAN_CIPHER_SUITE_BIP_CMAC_256:
2608 if (!is_mt7990(dev))
2609 return -EOPNOTSUPP;
2610 sec_key->cipher_id = MCU_CIPHER_BCN_PROT_CMAC_256;
2611 break;
2612 default:
2613 return -EOPNOTSUPP;
2614 }
2615
2616 sec_key->bcn_mode = is_mt7990(dev) ? BP_HW_MODE : BP_SW_MODE;
2617
2618 return 0;
2619 }
2620
mt7996_mcu_add_key(struct mt76_dev * dev,struct mt7996_vif_link * link,struct ieee80211_key_conf * key,int mcu_cmd,struct mt76_wcid * wcid,enum set_key_cmd cmd)2621 int mt7996_mcu_add_key(struct mt76_dev *dev, struct mt7996_vif_link *link,
2622 struct ieee80211_key_conf *key, int mcu_cmd,
2623 struct mt76_wcid *wcid, enum set_key_cmd cmd)
2624 {
2625 struct sk_buff *skb;
2626 int ret;
2627
2628 skb = __mt76_connac_mcu_alloc_sta_req(dev, (struct mt76_vif_link *)link,
2629 wcid, MT7996_STA_UPDATE_MAX_SIZE);
2630 if (IS_ERR(skb))
2631 return PTR_ERR(skb);
2632
2633 ret = mt7996_mcu_sta_key_tlv(dev, wcid, skb, key, cmd);
2634 if (ret) {
2635 dev_kfree_skb(skb);
2636 return ret;
2637 }
2638
2639 return mt76_mcu_skb_send_msg(dev, skb, mcu_cmd, true);
2640 }
2641
mt7996_mcu_add_dev_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,bool enable)2642 int mt7996_mcu_add_dev_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
2643 struct ieee80211_bss_conf *link_conf,
2644 struct mt76_vif_link *mlink, bool enable)
2645 {
2646 struct mt7996_dev *dev = phy->dev;
2647 struct {
2648 struct req_hdr {
2649 u8 omac_idx;
2650 u8 band_idx;
2651 u8 __rsv[2];
2652 } __packed hdr;
2653 struct req_tlv {
2654 __le16 tag;
2655 __le16 len;
2656 u8 active;
2657 u8 __rsv;
2658 u8 omac_addr[ETH_ALEN];
2659 } __packed tlv;
2660 } data = {
2661 .hdr = {
2662 .omac_idx = mlink->omac_idx,
2663 .band_idx = mlink->band_idx,
2664 },
2665 .tlv = {
2666 .tag = cpu_to_le16(DEV_INFO_ACTIVE),
2667 .len = cpu_to_le16(sizeof(struct req_tlv)),
2668 .active = enable,
2669 },
2670 };
2671
2672 if (mlink->omac_idx >= REPEATER_BSSID_START)
2673 return mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
2674
2675 memcpy(data.tlv.omac_addr, link_conf->addr, ETH_ALEN);
2676 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(DEV_INFO_UPDATE),
2677 &data, sizeof(data), true);
2678 }
2679
2680 static void
mt7996_mcu_beacon_cntdwn(struct sk_buff * rskb,struct sk_buff * skb,struct ieee80211_mutable_offsets * offs,bool csa)2681 mt7996_mcu_beacon_cntdwn(struct sk_buff *rskb, struct sk_buff *skb,
2682 struct ieee80211_mutable_offsets *offs,
2683 bool csa)
2684 {
2685 struct bss_bcn_cntdwn_tlv *info;
2686 struct tlv *tlv;
2687 u16 tag;
2688
2689 if (!offs->cntdwn_counter_offs[0])
2690 return;
2691
2692 tag = csa ? UNI_BSS_INFO_BCN_CSA : UNI_BSS_INFO_BCN_BCC;
2693
2694 tlv = mt7996_mcu_add_uni_tlv(rskb, tag, sizeof(*info));
2695
2696 info = (struct bss_bcn_cntdwn_tlv *)tlv;
2697 info->cnt = skb->data[offs->cntdwn_counter_offs[0]];
2698 }
2699
2700 static void
mt7996_mcu_beacon_mbss(struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2701 mt7996_mcu_beacon_mbss(struct sk_buff *rskb, struct sk_buff *skb,
2702 struct bss_bcn_content_tlv *bcn,
2703 struct ieee80211_mutable_offsets *offs)
2704 {
2705 struct bss_bcn_mbss_tlv *mbss;
2706 const struct element *elem;
2707 struct tlv *tlv;
2708
2709 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_MBSSID, sizeof(*mbss));
2710
2711 mbss = (struct bss_bcn_mbss_tlv *)tlv;
2712 mbss->offset[0] = cpu_to_le16(offs->tim_offset);
2713 mbss->bitmap = cpu_to_le32(1);
2714
2715 for_each_element_id(elem, WLAN_EID_MULTIPLE_BSSID,
2716 &skb->data[offs->mbssid_off],
2717 skb->len - offs->mbssid_off) {
2718 const struct element *sub_elem;
2719
2720 if (elem->datalen < 2)
2721 continue;
2722
2723 for_each_element(sub_elem, elem->data + 1, elem->datalen - 1) {
2724 const struct ieee80211_bssid_index *idx;
2725 const u8 *idx_ie;
2726
2727 /* not a valid BSS profile */
2728 if (sub_elem->id || sub_elem->datalen < 4)
2729 continue;
2730
2731 /* Find WLAN_EID_MULTI_BSSID_IDX
2732 * in the merged nontransmitted profile
2733 */
2734 idx_ie = cfg80211_find_ie(WLAN_EID_MULTI_BSSID_IDX,
2735 sub_elem->data, sub_elem->datalen);
2736 if (!idx_ie || idx_ie[1] < sizeof(*idx))
2737 continue;
2738
2739 #if defined(__linux__)
2740 idx = (void *)(idx_ie + 2);
2741 #elif defined(__FreeBSD__)
2742 idx = (const void *)(idx_ie + 2);
2743 #endif
2744 if (!idx->bssid_index || idx->bssid_index > 31)
2745 continue;
2746
2747 mbss->offset[idx->bssid_index] = cpu_to_le16(idx_ie -
2748 skb->data);
2749 mbss->bitmap |= cpu_to_le32(BIT(idx->bssid_index));
2750 }
2751 }
2752 }
2753
2754 static void
mt7996_mcu_beacon_cont(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct mt7996_vif_link * link,struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2755 mt7996_mcu_beacon_cont(struct mt7996_dev *dev,
2756 struct ieee80211_bss_conf *link_conf,
2757 struct mt7996_vif_link *link,
2758 struct sk_buff *rskb, struct sk_buff *skb,
2759 struct bss_bcn_content_tlv *bcn,
2760 struct ieee80211_mutable_offsets *offs)
2761 {
2762 u8 *buf, keyidx = link->msta_link.wcid.hw_key_idx2;
2763 struct mt76_wcid *wcid;
2764
2765 if (is_mt7990(&dev->mt76) && (keyidx == 6 || keyidx == 7))
2766 wcid = &link->msta_link.wcid;
2767 else
2768 wcid = &dev->mt76.global_wcid;
2769
2770 bcn->pkt_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2771 bcn->tim_ie_pos = cpu_to_le16(offs->tim_offset);
2772
2773 if (offs->cntdwn_counter_offs[0]) {
2774 u16 offset = offs->cntdwn_counter_offs[0];
2775
2776 if (link_conf->csa_active)
2777 bcn->csa_ie_pos = cpu_to_le16(offset - 4);
2778 if (link_conf->color_change_active)
2779 bcn->bcc_ie_pos = cpu_to_le16(offset - 3);
2780 }
2781
2782 buf = (u8 *)bcn + sizeof(*bcn);
2783 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0,
2784 BSS_CHANGED_BEACON);
2785
2786 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2787 }
2788
mt7996_mcu_add_beacon(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,bool enabled)2789 int mt7996_mcu_add_beacon(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
2790 struct ieee80211_bss_conf *link_conf, bool enabled)
2791 {
2792 struct mt7996_dev *dev = mt7996_hw_dev(hw);
2793 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
2794 struct mt76_vif_link *mlink = link ? &link->mt76 : NULL;
2795 struct ieee80211_mutable_offsets offs;
2796 struct ieee80211_tx_info *info;
2797 struct sk_buff *skb, *rskb;
2798 struct tlv *tlv;
2799 struct bss_bcn_content_tlv *bcn;
2800 int len, extra_len = 0;
2801
2802 if (link_conf->nontransmitted)
2803 return 0;
2804
2805 if (!mlink)
2806 return -EINVAL;
2807
2808 if (link->phy && link->phy->mt76->offchannel)
2809 enabled = false;
2810
2811 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
2812 MT7996_MAX_BSS_OFFLOAD_SIZE);
2813 if (IS_ERR(rskb))
2814 return PTR_ERR(rskb);
2815
2816 skb = ieee80211_beacon_get_template(hw, vif, &offs, link_conf->link_id);
2817 if (enabled && !skb) {
2818 dev_kfree_skb(rskb);
2819 return -EINVAL;
2820 }
2821
2822 if (skb) {
2823 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2824 dev_err(dev->mt76.dev, "Bcn size limit exceed\n");
2825 dev_kfree_skb(rskb);
2826 dev_kfree_skb(skb);
2827 return -EINVAL;
2828 }
2829
2830 extra_len = skb->len;
2831 }
2832
2833 len = ALIGN(sizeof(*bcn) + MT_TXD_SIZE + extra_len, 4);
2834 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_CONTENT, len);
2835 bcn = (struct bss_bcn_content_tlv *)tlv;
2836 bcn->enable = enabled;
2837 if (!bcn->enable)
2838 goto out;
2839
2840 info = IEEE80211_SKB_CB(skb);
2841 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, mlink->band_idx);
2842
2843 mt7996_mcu_beacon_cont(dev, link_conf, link, rskb, skb, bcn, &offs);
2844 if (link_conf->bssid_indicator)
2845 mt7996_mcu_beacon_mbss(rskb, skb, bcn, &offs);
2846 mt7996_mcu_beacon_cntdwn(rskb, skb, &offs, link_conf->csa_active);
2847 out:
2848 dev_kfree_skb(skb);
2849 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2850 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2851 }
2852
mt7996_mcu_beacon_inband_discov(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct mt7996_vif_link * link,u32 changed)2853 int mt7996_mcu_beacon_inband_discov(struct mt7996_dev *dev,
2854 struct ieee80211_bss_conf *link_conf,
2855 struct mt7996_vif_link *link, u32 changed)
2856 {
2857 #define OFFLOAD_TX_MODE_SU BIT(0)
2858 #define OFFLOAD_TX_MODE_MU BIT(1)
2859 struct ieee80211_vif *vif = link_conf->vif;
2860 struct ieee80211_hw *hw = mt76_hw(dev);
2861 struct mt7996_phy *phy = link->phy;
2862 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2863 struct bss_inband_discovery_tlv *discov;
2864 struct ieee80211_tx_info *info;
2865 struct sk_buff *rskb, *skb = NULL;
2866 struct cfg80211_chan_def *chandef;
2867 enum nl80211_band band;
2868 struct tlv *tlv;
2869 u8 *buf, interval;
2870 int len;
2871
2872 if (!phy)
2873 return -EINVAL;
2874
2875 chandef = &phy->mt76->chandef;
2876 band = chandef->chan->band;
2877
2878 if (link_conf->nontransmitted)
2879 return 0;
2880
2881 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76,
2882 MT7996_MAX_BSS_OFFLOAD_SIZE);
2883 if (IS_ERR(rskb))
2884 return PTR_ERR(rskb);
2885
2886 if (changed & BSS_CHANGED_FILS_DISCOVERY &&
2887 link_conf->fils_discovery.max_interval) {
2888 interval = link_conf->fils_discovery.max_interval;
2889 skb = ieee80211_get_fils_discovery_tmpl(hw, vif);
2890 } else if (changed & BSS_CHANGED_UNSOL_BCAST_PROBE_RESP &&
2891 link_conf->unsol_bcast_probe_resp_interval) {
2892 interval = link_conf->unsol_bcast_probe_resp_interval;
2893 skb = ieee80211_get_unsol_bcast_probe_resp_tmpl(hw, vif);
2894 }
2895
2896 if (!skb) {
2897 dev_kfree_skb(rskb);
2898 return -EINVAL;
2899 }
2900
2901 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2902 dev_err(dev->mt76.dev, "inband discovery size limit exceed\n");
2903 dev_kfree_skb(rskb);
2904 dev_kfree_skb(skb);
2905 return -EINVAL;
2906 }
2907
2908 info = IEEE80211_SKB_CB(skb);
2909 info->control.vif = vif;
2910 info->band = band;
2911 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, phy->mt76->band_idx);
2912
2913 len = ALIGN(sizeof(*discov) + MT_TXD_SIZE + skb->len, 4);
2914 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_OFFLOAD, len);
2915
2916 discov = (struct bss_inband_discovery_tlv *)tlv;
2917 discov->tx_mode = OFFLOAD_TX_MODE_SU;
2918 /* 0: UNSOL PROBE RESP, 1: FILS DISCOV */
2919 discov->tx_type = !!(changed & BSS_CHANGED_FILS_DISCOVERY);
2920 discov->tx_interval = interval;
2921 discov->prob_rsp_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2922 discov->enable = true;
2923 discov->wcid = cpu_to_le16(MT7996_WTBL_RESERVED);
2924
2925 buf = (u8 *)tlv + sizeof(*discov);
2926
2927 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0, changed);
2928
2929 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2930
2931 dev_kfree_skb(skb);
2932
2933 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2934 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2935 }
2936
mt7996_driver_own(struct mt7996_dev * dev,u8 band)2937 static int mt7996_driver_own(struct mt7996_dev *dev, u8 band)
2938 {
2939 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(band), MT_TOP_LPCR_HOST_DRV_OWN);
2940 if (!mt76_poll_msec(dev, MT_TOP_LPCR_HOST_BAND(band),
2941 MT_TOP_LPCR_HOST_FW_OWN_STAT, 0, 500)) {
2942 dev_err(dev->mt76.dev, "Timeout for driver own\n");
2943 return -EIO;
2944 }
2945
2946 /* clear irq when the driver own success */
2947 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND_IRQ_STAT(band),
2948 MT_TOP_LPCR_HOST_BAND_STAT);
2949
2950 return 0;
2951 }
2952
mt7996_patch_sec_mode(u32 key_info)2953 static u32 mt7996_patch_sec_mode(u32 key_info)
2954 {
2955 u32 sec = u32_get_bits(key_info, MT7996_PATCH_SEC), key = 0;
2956
2957 if (key_info == GENMASK(31, 0) || sec == MT7996_SEC_MODE_PLAIN)
2958 return 0;
2959
2960 if (sec == MT7996_SEC_MODE_AES)
2961 key = u32_get_bits(key_info, MT7996_PATCH_AES_KEY);
2962 else
2963 key = u32_get_bits(key_info, MT7996_PATCH_SCRAMBLE_KEY);
2964
2965 return MT7996_SEC_ENCRYPT | MT7996_SEC_IV |
2966 u32_encode_bits(key, MT7996_SEC_KEY_IDX);
2967 }
2968
mt7996_load_patch(struct mt7996_dev * dev)2969 static int mt7996_load_patch(struct mt7996_dev *dev)
2970 {
2971 const struct mt7996_patch_hdr *hdr;
2972 const struct firmware *fw = NULL;
2973 int i, ret, sem;
2974
2975 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 1);
2976 switch (sem) {
2977 case PATCH_IS_DL:
2978 return 0;
2979 case PATCH_NOT_DL_SEM_SUCCESS:
2980 break;
2981 default:
2982 dev_err(dev->mt76.dev, "Failed to get patch semaphore\n");
2983 return -EAGAIN;
2984 }
2985
2986 ret = request_firmware(&fw, fw_name(dev, ROM_PATCH), dev->mt76.dev);
2987 if (ret)
2988 goto out;
2989
2990 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
2991 dev_err(dev->mt76.dev, "Invalid firmware\n");
2992 ret = -EINVAL;
2993 goto out;
2994 }
2995
2996 hdr = (const struct mt7996_patch_hdr *)(fw->data);
2997
2998 dev_info(dev->mt76.dev, "HW/SW Version: 0x%x, Build Time: %.16s\n",
2999 be32_to_cpu(hdr->hw_sw_ver), hdr->build_date);
3000
3001 for (i = 0; i < be32_to_cpu(hdr->desc.n_region); i++) {
3002 #if defined(__linux__)
3003 struct mt7996_patch_sec *sec;
3004 #elif defined(__FreeBSD__)
3005 const struct mt7996_patch_sec *sec;
3006 #endif
3007 const u8 *dl;
3008 u32 len, addr, sec_key_idx, mode = DL_MODE_NEED_RSP;
3009
3010 #if defined(__linux__)
3011 sec = (struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
3012 #elif defined(__FreeBSD__)
3013 sec = (const struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
3014 #endif
3015 i * sizeof(*sec));
3016 if ((be32_to_cpu(sec->type) & PATCH_SEC_TYPE_MASK) !=
3017 PATCH_SEC_TYPE_INFO) {
3018 ret = -EINVAL;
3019 goto out;
3020 }
3021
3022 addr = be32_to_cpu(sec->info.addr);
3023 len = be32_to_cpu(sec->info.len);
3024 sec_key_idx = be32_to_cpu(sec->info.sec_key_idx);
3025 dl = fw->data + be32_to_cpu(sec->offs);
3026
3027 mode |= mt7996_patch_sec_mode(sec_key_idx);
3028
3029 ret = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3030 mode);
3031 if (ret) {
3032 dev_err(dev->mt76.dev, "Download request failed\n");
3033 goto out;
3034 }
3035
3036 ret = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3037 dl, len, 4096);
3038 if (ret) {
3039 dev_err(dev->mt76.dev, "Failed to send patch\n");
3040 goto out;
3041 }
3042 }
3043
3044 ret = mt76_connac_mcu_start_patch(&dev->mt76);
3045 if (ret)
3046 dev_err(dev->mt76.dev, "Failed to start patch\n");
3047
3048 out:
3049 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 0);
3050 switch (sem) {
3051 case PATCH_REL_SEM_SUCCESS:
3052 break;
3053 default:
3054 ret = -EAGAIN;
3055 dev_err(dev->mt76.dev, "Failed to release patch semaphore\n");
3056 break;
3057 }
3058 release_firmware(fw);
3059
3060 return ret;
3061 }
3062
3063 static int
mt7996_mcu_send_ram_firmware(struct mt7996_dev * dev,const struct mt7996_fw_trailer * hdr,const u8 * data,enum mt7996_ram_type type)3064 mt7996_mcu_send_ram_firmware(struct mt7996_dev *dev,
3065 const struct mt7996_fw_trailer *hdr,
3066 const u8 *data, enum mt7996_ram_type type)
3067 {
3068 int i, offset = 0;
3069 u32 override = 0, option = 0;
3070
3071 for (i = 0; i < hdr->n_region; i++) {
3072 const struct mt7996_fw_region *region;
3073 int err;
3074 u32 len, addr, mode;
3075
3076 region = (const struct mt7996_fw_region *)((const u8 *)hdr -
3077 (hdr->n_region - i) * sizeof(*region));
3078 /* DSP and WA use same mode */
3079 mode = mt76_connac_mcu_gen_dl_mode(&dev->mt76,
3080 region->feature_set,
3081 type != MT7996_RAM_TYPE_WM);
3082 len = le32_to_cpu(region->len);
3083 addr = le32_to_cpu(region->addr);
3084
3085 if (region->feature_set & FW_FEATURE_OVERRIDE_ADDR)
3086 override = addr;
3087
3088 err = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3089 mode);
3090 if (err) {
3091 dev_err(dev->mt76.dev, "Download request failed\n");
3092 return err;
3093 }
3094
3095 err = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3096 data + offset, len, 4096);
3097 if (err) {
3098 dev_err(dev->mt76.dev, "Failed to send firmware.\n");
3099 return err;
3100 }
3101
3102 offset += len;
3103 }
3104
3105 if (override)
3106 option |= FW_START_OVERRIDE;
3107
3108 if (type == MT7996_RAM_TYPE_WA)
3109 option |= FW_START_WORKING_PDA_CR4;
3110 else if (type == MT7996_RAM_TYPE_DSP)
3111 option |= FW_START_WORKING_PDA_DSP;
3112
3113 return mt76_connac_mcu_start_firmware(&dev->mt76, override, option);
3114 }
3115
__mt7996_load_ram(struct mt7996_dev * dev,const char * fw_type,const char * fw_file,enum mt7996_ram_type ram_type)3116 static int __mt7996_load_ram(struct mt7996_dev *dev, const char *fw_type,
3117 const char *fw_file, enum mt7996_ram_type ram_type)
3118 {
3119 const struct mt7996_fw_trailer *hdr;
3120 const struct firmware *fw;
3121 int ret;
3122
3123 ret = request_firmware(&fw, fw_file, dev->mt76.dev);
3124 if (ret)
3125 return ret;
3126
3127 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
3128 dev_err(dev->mt76.dev, "Invalid firmware\n");
3129 ret = -EINVAL;
3130 goto out;
3131 }
3132
3133 hdr = (const void *)(fw->data + fw->size - sizeof(*hdr));
3134 dev_info(dev->mt76.dev, "%s Firmware Version: %.10s, Build Time: %.15s\n",
3135 fw_type, hdr->fw_ver, hdr->build_date);
3136
3137 ret = mt7996_mcu_send_ram_firmware(dev, hdr, fw->data, ram_type);
3138 if (ret) {
3139 dev_err(dev->mt76.dev, "Failed to start %s firmware\n", fw_type);
3140 goto out;
3141 }
3142
3143 snprintf(dev->mt76.hw->wiphy->fw_version,
3144 sizeof(dev->mt76.hw->wiphy->fw_version),
3145 "%.10s-%.15s", hdr->fw_ver, hdr->build_date);
3146
3147 out:
3148 release_firmware(fw);
3149
3150 return ret;
3151 }
3152
mt7996_load_ram(struct mt7996_dev * dev)3153 static int mt7996_load_ram(struct mt7996_dev *dev)
3154 {
3155 int ret;
3156
3157 ret = __mt7996_load_ram(dev, "WM", fw_name(dev, FIRMWARE_WM),
3158 MT7996_RAM_TYPE_WM);
3159 if (ret)
3160 return ret;
3161
3162 if (!mt7996_has_wa(dev))
3163 return 0;
3164
3165 ret = __mt7996_load_ram(dev, "DSP", fw_name(dev, FIRMWARE_DSP),
3166 MT7996_RAM_TYPE_DSP);
3167 if (ret)
3168 return ret;
3169
3170 return __mt7996_load_ram(dev, "WA", fw_name(dev, FIRMWARE_WA),
3171 MT7996_RAM_TYPE_WA);
3172 }
3173
3174 static int
mt7996_firmware_state(struct mt7996_dev * dev,u8 fw_state)3175 mt7996_firmware_state(struct mt7996_dev *dev, u8 fw_state)
3176 {
3177 u32 state = FIELD_PREP(MT_TOP_MISC_FW_STATE, fw_state);
3178
3179 if (!mt76_poll_msec(dev, MT_TOP_MISC, MT_TOP_MISC_FW_STATE,
3180 state, 1000)) {
3181 dev_err(dev->mt76.dev, "Timeout for initializing firmware\n");
3182 return -EIO;
3183 }
3184 return 0;
3185 }
3186
3187 static int
mt7996_mcu_restart(struct mt76_dev * dev)3188 mt7996_mcu_restart(struct mt76_dev *dev)
3189 {
3190 struct {
3191 u8 __rsv1[4];
3192
3193 __le16 tag;
3194 __le16 len;
3195 u8 power_mode;
3196 u8 __rsv2[3];
3197 } __packed req = {
3198 .tag = cpu_to_le16(UNI_POWER_OFF),
3199 .len = cpu_to_le16(sizeof(req) - 4),
3200 .power_mode = 1,
3201 };
3202
3203 return mt76_mcu_send_msg(dev, MCU_WM_UNI_CMD(POWER_CTRL), &req,
3204 sizeof(req), false);
3205 }
3206
mt7996_load_firmware(struct mt7996_dev * dev)3207 static int mt7996_load_firmware(struct mt7996_dev *dev)
3208 {
3209 u8 fw_state;
3210 int ret;
3211
3212 /* make sure fw is download state */
3213 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3214 /* restart firmware once */
3215 mt7996_mcu_restart(&dev->mt76);
3216 ret = mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD);
3217 if (ret) {
3218 dev_err(dev->mt76.dev,
3219 "Firmware is not ready for download\n");
3220 return ret;
3221 }
3222 }
3223
3224 ret = mt7996_load_patch(dev);
3225 if (ret)
3226 return ret;
3227
3228 ret = mt7996_load_ram(dev);
3229 if (ret)
3230 return ret;
3231
3232 fw_state = mt7996_has_wa(dev) ? FW_STATE_RDY : FW_STATE_NORMAL_TRX;
3233 ret = mt7996_firmware_state(dev, fw_state);
3234 if (ret)
3235 return ret;
3236
3237 mt76_queue_tx_cleanup(dev, dev->mt76.q_mcu[MT_MCUQ_FWDL], false);
3238
3239 dev_dbg(dev->mt76.dev, "Firmware init done\n");
3240
3241 return 0;
3242 }
3243
mt7996_mcu_fw_log_2_host(struct mt7996_dev * dev,u8 type,u8 ctrl)3244 int mt7996_mcu_fw_log_2_host(struct mt7996_dev *dev, u8 type, u8 ctrl)
3245 {
3246 struct {
3247 u8 _rsv[4];
3248
3249 __le16 tag;
3250 __le16 len;
3251 u8 ctrl;
3252 u8 interval;
3253 u8 _rsv2[2];
3254 } __packed data = {
3255 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_LOG_CTRL),
3256 .len = cpu_to_le16(sizeof(data) - 4),
3257 .ctrl = ctrl,
3258 };
3259
3260 if (type == MCU_FW_LOG_WA)
3261 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(WSYS_CONFIG),
3262 &data, sizeof(data), true);
3263
3264 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3265 sizeof(data), true);
3266 }
3267
mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev * dev,u32 module,u8 level)3268 int mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev *dev, u32 module, u8 level)
3269 {
3270 struct {
3271 u8 _rsv[4];
3272
3273 __le16 tag;
3274 __le16 len;
3275 __le32 module_idx;
3276 u8 level;
3277 u8 _rsv2[3];
3278 } data = {
3279 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_DBG_CTRL),
3280 .len = cpu_to_le16(sizeof(data) - 4),
3281 .module_idx = cpu_to_le32(module),
3282 .level = level,
3283 };
3284
3285 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3286 sizeof(data), false);
3287 }
3288
mt7996_mcu_set_mwds(struct mt7996_dev * dev,bool enabled)3289 static int mt7996_mcu_set_mwds(struct mt7996_dev *dev, bool enabled)
3290 {
3291 struct {
3292 u8 enable;
3293 u8 _rsv[3];
3294 } __packed req = {
3295 .enable = enabled
3296 };
3297
3298 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(MWDS_SUPPORT), &req,
3299 sizeof(req), false);
3300 }
3301
mt7996_add_rx_airtime_tlv(struct sk_buff * skb,u8 band_idx)3302 static void mt7996_add_rx_airtime_tlv(struct sk_buff *skb, u8 band_idx)
3303 {
3304 struct vow_rx_airtime *req;
3305 struct tlv *tlv;
3306
3307 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_CLR_EN, sizeof(*req));
3308 req = (struct vow_rx_airtime *)tlv;
3309 req->enable = true;
3310 req->band = band_idx;
3311
3312 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_EN, sizeof(*req));
3313 req = (struct vow_rx_airtime *)tlv;
3314 req->enable = true;
3315 req->band = band_idx;
3316 }
3317
3318 static int
mt7996_mcu_init_rx_airtime(struct mt7996_dev * dev)3319 mt7996_mcu_init_rx_airtime(struct mt7996_dev *dev)
3320 {
3321 struct uni_header hdr = {};
3322 struct sk_buff *skb;
3323 int len, num, i;
3324
3325 num = 2 + 2 * (mt7996_band_valid(dev, MT_BAND1) +
3326 mt7996_band_valid(dev, MT_BAND2));
3327 len = sizeof(hdr) + num * sizeof(struct vow_rx_airtime);
3328 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3329 if (!skb)
3330 return -ENOMEM;
3331
3332 skb_put_data(skb, &hdr, sizeof(hdr));
3333
3334 for (i = 0; i < __MT_MAX_BAND; i++) {
3335 if (mt7996_band_valid(dev, i))
3336 mt7996_add_rx_airtime_tlv(skb, i);
3337 }
3338
3339 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3340 MCU_WM_UNI_CMD(VOW), true);
3341 }
3342
mt7996_mcu_init_firmware(struct mt7996_dev * dev)3343 int mt7996_mcu_init_firmware(struct mt7996_dev *dev)
3344 {
3345 int ret;
3346
3347 /* force firmware operation mode into normal state,
3348 * which should be set before firmware download stage.
3349 */
3350 mt76_wr(dev, MT_SWDEF_MODE, MT_SWDEF_NORMAL_MODE);
3351
3352 ret = mt7996_driver_own(dev, 0);
3353 if (ret)
3354 return ret;
3355 /* set driver own for band1 when two hif exist */
3356 if (dev->hif2) {
3357 ret = mt7996_driver_own(dev, 1);
3358 if (ret)
3359 return ret;
3360 }
3361
3362 ret = mt7996_load_firmware(dev);
3363 if (ret)
3364 return ret;
3365
3366 set_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state);
3367 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WM, 0);
3368 if (ret)
3369 return ret;
3370
3371 if (mt7996_has_wa(dev)) {
3372 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WA, 0);
3373 if (ret)
3374 return ret;
3375
3376 ret = mt7996_mcu_set_mwds(dev, 1);
3377 if (ret)
3378 return ret;
3379 }
3380
3381 ret = mt7996_mcu_init_rx_airtime(dev);
3382 if (ret)
3383 return ret;
3384
3385 return mt7996_mcu_wa_cmd(dev, MCU_WA_PARAM_CMD(SET),
3386 MCU_WA_PARAM_RED, 0, 0);
3387 }
3388
mt7996_mcu_init(struct mt7996_dev * dev)3389 int mt7996_mcu_init(struct mt7996_dev *dev)
3390 {
3391 static const struct mt76_mcu_ops mt7996_mcu_ops = {
3392 .headroom = sizeof(struct mt76_connac2_mcu_txd), /* reuse */
3393 .mcu_skb_send_msg = mt7996_mcu_send_message,
3394 .mcu_parse_response = mt7996_mcu_parse_response,
3395 };
3396
3397 dev->mt76.mcu_ops = &mt7996_mcu_ops;
3398
3399 return mt7996_mcu_init_firmware(dev);
3400 }
3401
mt7996_mcu_exit(struct mt7996_dev * dev)3402 void mt7996_mcu_exit(struct mt7996_dev *dev)
3403 {
3404 mt7996_mcu_restart(&dev->mt76);
3405 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3406 dev_err(dev->mt76.dev, "Failed to exit mcu\n");
3407 goto out;
3408 }
3409
3410 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(0), MT_TOP_LPCR_HOST_FW_OWN);
3411 if (dev->hif2)
3412 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(1),
3413 MT_TOP_LPCR_HOST_FW_OWN);
3414 out:
3415 skb_queue_purge(&dev->mt76.mcu.res_q);
3416 }
3417
mt7996_mcu_set_hdr_trans(struct mt7996_dev * dev,bool hdr_trans)3418 int mt7996_mcu_set_hdr_trans(struct mt7996_dev *dev, bool hdr_trans)
3419 {
3420 struct {
3421 u8 __rsv[4];
3422 } __packed hdr = {};
3423 struct hdr_trans_blacklist *req_blacklist;
3424 struct hdr_trans_en *req_en;
3425 struct sk_buff *skb;
3426 struct tlv *tlv;
3427 int len = MT7996_HDR_TRANS_MAX_SIZE + sizeof(hdr);
3428
3429 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3430 if (!skb)
3431 return -ENOMEM;
3432
3433 skb_put_data(skb, &hdr, sizeof(hdr));
3434
3435 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_EN, sizeof(*req_en));
3436 req_en = (struct hdr_trans_en *)tlv;
3437 req_en->enable = hdr_trans;
3438
3439 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_VLAN,
3440 sizeof(struct hdr_trans_vlan));
3441
3442 if (hdr_trans) {
3443 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_BLACKLIST,
3444 sizeof(*req_blacklist));
3445 req_blacklist = (struct hdr_trans_blacklist *)tlv;
3446 req_blacklist->enable = 1;
3447 req_blacklist->type = cpu_to_le16(ETH_P_PAE);
3448 }
3449
3450 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3451 MCU_WM_UNI_CMD(RX_HDR_TRANS), true);
3452 }
3453
mt7996_mcu_set_tx(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)3454 int mt7996_mcu_set_tx(struct mt7996_dev *dev, struct ieee80211_vif *vif,
3455 struct ieee80211_bss_conf *link_conf)
3456 {
3457 #define MCU_EDCA_AC_PARAM 0
3458 #define WMM_AIFS_SET BIT(0)
3459 #define WMM_CW_MIN_SET BIT(1)
3460 #define WMM_CW_MAX_SET BIT(2)
3461 #define WMM_TXOP_SET BIT(3)
3462 #define WMM_PARAM_SET (WMM_AIFS_SET | WMM_CW_MIN_SET | \
3463 WMM_CW_MAX_SET | WMM_TXOP_SET)
3464 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
3465 struct mt7996_vif *mvif = (struct mt7996_vif *)vif->drv_priv;
3466 unsigned int link_id = link_conf->link_id;
3467 struct mt7996_vif_link_info *link_info = &mvif->link_info[link_id];
3468 struct {
3469 u8 bss_idx;
3470 u8 __rsv[3];
3471 } __packed hdr = {
3472 .bss_idx = link->mt76.idx,
3473 };
3474 struct sk_buff *skb;
3475 int len = sizeof(hdr) + IEEE80211_NUM_ACS * sizeof(struct edca);
3476 int ac;
3477
3478 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3479 if (!skb)
3480 return -ENOMEM;
3481
3482 skb_put_data(skb, &hdr, sizeof(hdr));
3483
3484 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
3485 struct ieee80211_tx_queue_params *q = &link_info->queue_params[ac];
3486 struct edca *e;
3487 struct tlv *tlv;
3488
3489 tlv = mt7996_mcu_add_uni_tlv(skb, MCU_EDCA_AC_PARAM, sizeof(*e));
3490
3491 e = (struct edca *)tlv;
3492 e->set = WMM_PARAM_SET;
3493 e->queue = ac;
3494 e->aifs = q->aifs;
3495 e->txop = cpu_to_le16(q->txop);
3496
3497 if (q->cw_min)
3498 e->cw_min = fls(q->cw_min);
3499 else
3500 e->cw_min = 5;
3501
3502 if (q->cw_max)
3503 e->cw_max = fls(q->cw_max);
3504 else
3505 e->cw_max = 10;
3506 }
3507
3508 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3509 MCU_WM_UNI_CMD(EDCA_UPDATE), true);
3510 }
3511
mt7996_mcu_set_fcc5_lpn(struct mt7996_dev * dev,int val)3512 int mt7996_mcu_set_fcc5_lpn(struct mt7996_dev *dev, int val)
3513 {
3514 struct {
3515 u8 _rsv[4];
3516
3517 __le16 tag;
3518 __le16 len;
3519
3520 __le32 ctrl;
3521 __le16 min_lpn;
3522 u8 rsv[2];
3523 } __packed req = {
3524 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3525 .len = cpu_to_le16(sizeof(req) - 4),
3526
3527 .ctrl = cpu_to_le32(0x1),
3528 .min_lpn = cpu_to_le16(val),
3529 };
3530
3531 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3532 &req, sizeof(req), true);
3533 }
3534
mt7996_mcu_set_pulse_th(struct mt7996_dev * dev,const struct mt7996_dfs_pulse * pulse)3535 int mt7996_mcu_set_pulse_th(struct mt7996_dev *dev,
3536 const struct mt7996_dfs_pulse *pulse)
3537 {
3538 struct {
3539 u8 _rsv[4];
3540
3541 __le16 tag;
3542 __le16 len;
3543
3544 __le32 ctrl;
3545
3546 __le32 max_width; /* us */
3547 __le32 max_pwr; /* dbm */
3548 __le32 min_pwr; /* dbm */
3549 __le32 min_stgr_pri; /* us */
3550 __le32 max_stgr_pri; /* us */
3551 __le32 min_cr_pri; /* us */
3552 __le32 max_cr_pri; /* us */
3553 } __packed req = {
3554 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3555 .len = cpu_to_le16(sizeof(req) - 4),
3556
3557 .ctrl = cpu_to_le32(0x3),
3558
3559 #define __req_field(field) .field = cpu_to_le32(pulse->field)
3560 __req_field(max_width),
3561 __req_field(max_pwr),
3562 __req_field(min_pwr),
3563 __req_field(min_stgr_pri),
3564 __req_field(max_stgr_pri),
3565 __req_field(min_cr_pri),
3566 __req_field(max_cr_pri),
3567 #undef __req_field
3568 };
3569
3570 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3571 &req, sizeof(req), true);
3572 }
3573
mt7996_mcu_set_radar_th(struct mt7996_dev * dev,int index,const struct mt7996_dfs_pattern * pattern)3574 int mt7996_mcu_set_radar_th(struct mt7996_dev *dev, int index,
3575 const struct mt7996_dfs_pattern *pattern)
3576 {
3577 struct {
3578 u8 _rsv[4];
3579
3580 __le16 tag;
3581 __le16 len;
3582
3583 __le32 ctrl;
3584 __le16 radar_type;
3585
3586 u8 enb;
3587 u8 stgr;
3588 u8 min_crpn;
3589 u8 max_crpn;
3590 u8 min_crpr;
3591 u8 min_pw;
3592 __le32 min_pri;
3593 __le32 max_pri;
3594 u8 max_pw;
3595 u8 min_crbn;
3596 u8 max_crbn;
3597 u8 min_stgpn;
3598 u8 max_stgpn;
3599 u8 min_stgpr;
3600 u8 rsv[2];
3601 __le32 min_stgpr_diff;
3602 } __packed req = {
3603 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3604 .len = cpu_to_le16(sizeof(req) - 4),
3605
3606 .ctrl = cpu_to_le32(0x2),
3607 .radar_type = cpu_to_le16(index),
3608
3609 #define __req_field_u8(field) .field = pattern->field
3610 #define __req_field_u32(field) .field = cpu_to_le32(pattern->field)
3611 __req_field_u8(enb),
3612 __req_field_u8(stgr),
3613 __req_field_u8(min_crpn),
3614 __req_field_u8(max_crpn),
3615 __req_field_u8(min_crpr),
3616 __req_field_u8(min_pw),
3617 __req_field_u32(min_pri),
3618 __req_field_u32(max_pri),
3619 __req_field_u8(max_pw),
3620 __req_field_u8(min_crbn),
3621 __req_field_u8(max_crbn),
3622 __req_field_u8(min_stgpn),
3623 __req_field_u8(max_stgpn),
3624 __req_field_u8(min_stgpr),
3625 __req_field_u32(min_stgpr_diff),
3626 #undef __req_field_u8
3627 #undef __req_field_u32
3628 };
3629
3630 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3631 &req, sizeof(req), true);
3632 }
3633
3634 static int
mt7996_mcu_background_chain_ctrl(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef,int cmd)3635 mt7996_mcu_background_chain_ctrl(struct mt7996_phy *phy,
3636 struct cfg80211_chan_def *chandef,
3637 int cmd)
3638 {
3639 struct mt7996_dev *dev = phy->dev;
3640 struct mt76_phy *mphy = phy->mt76;
3641 struct ieee80211_channel *chan = mphy->chandef.chan;
3642 int freq = mphy->chandef.center_freq1;
3643 struct mt7996_mcu_background_chain_ctrl req = {
3644 .tag = cpu_to_le16(0),
3645 .len = cpu_to_le16(sizeof(req) - 4),
3646 .monitor_scan_type = 2, /* simple rx */
3647 };
3648
3649 if (!chandef && cmd != CH_SWITCH_BACKGROUND_SCAN_STOP)
3650 return -EINVAL;
3651
3652 if (!cfg80211_chandef_valid(&mphy->chandef))
3653 return -EINVAL;
3654
3655 switch (cmd) {
3656 case CH_SWITCH_BACKGROUND_SCAN_START: {
3657 req.chan = chan->hw_value;
3658 req.central_chan = ieee80211_frequency_to_channel(freq);
3659 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3660 req.monitor_chan = chandef->chan->hw_value;
3661 req.monitor_central_chan =
3662 ieee80211_frequency_to_channel(chandef->center_freq1);
3663 req.monitor_bw = mt76_connac_chan_bw(chandef);
3664 req.band_idx = phy->mt76->band_idx;
3665 req.scan_mode = 1;
3666 break;
3667 }
3668 case CH_SWITCH_BACKGROUND_SCAN_RUNNING:
3669 req.monitor_chan = chandef->chan->hw_value;
3670 req.monitor_central_chan =
3671 ieee80211_frequency_to_channel(chandef->center_freq1);
3672 req.band_idx = phy->mt76->band_idx;
3673 req.scan_mode = 2;
3674 break;
3675 case CH_SWITCH_BACKGROUND_SCAN_STOP:
3676 req.chan = chan->hw_value;
3677 req.central_chan = ieee80211_frequency_to_channel(freq);
3678 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3679 req.tx_stream = hweight8(mphy->antenna_mask);
3680 req.rx_stream = mphy->antenna_mask;
3681 break;
3682 default:
3683 return -EINVAL;
3684 }
3685 req.band = chandef ? chandef->chan->band == NL80211_BAND_5GHZ : 1;
3686
3687 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(OFFCH_SCAN_CTRL),
3688 &req, sizeof(req), false);
3689 }
3690
mt7996_mcu_rdd_background_enable(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef)3691 int mt7996_mcu_rdd_background_enable(struct mt7996_phy *phy,
3692 struct cfg80211_chan_def *chandef)
3693 {
3694 struct mt7996_dev *dev = phy->dev;
3695 int err, region, rdd_idx = mt7996_get_rdd_idx(phy, true);
3696
3697 if (!chandef) { /* disable offchain */
3698 err = mt7996_mcu_rdd_cmd(dev, RDD_STOP, rdd_idx, 0);
3699 if (err)
3700 return err;
3701
3702 return mt7996_mcu_background_chain_ctrl(phy, NULL,
3703 CH_SWITCH_BACKGROUND_SCAN_STOP);
3704 }
3705
3706 err = mt7996_mcu_background_chain_ctrl(phy, chandef,
3707 CH_SWITCH_BACKGROUND_SCAN_START);
3708 if (err)
3709 return err;
3710
3711 switch (dev->mt76.region) {
3712 case NL80211_DFS_ETSI:
3713 region = 0;
3714 break;
3715 case NL80211_DFS_JP:
3716 region = 2;
3717 break;
3718 case NL80211_DFS_FCC:
3719 default:
3720 region = 1;
3721 break;
3722 }
3723
3724 return mt7996_mcu_rdd_cmd(dev, RDD_START, rdd_idx, region);
3725 }
3726
mt7996_mcu_set_chan_info(struct mt7996_phy * phy,u16 tag)3727 int mt7996_mcu_set_chan_info(struct mt7996_phy *phy, u16 tag)
3728 {
3729 static const u8 ch_band[] = {
3730 [NL80211_BAND_2GHZ] = 0,
3731 [NL80211_BAND_5GHZ] = 1,
3732 [NL80211_BAND_6GHZ] = 2,
3733 };
3734 struct mt7996_dev *dev = phy->dev;
3735 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
3736 int freq1 = chandef->center_freq1;
3737 u8 band_idx = phy->mt76->band_idx;
3738 struct {
3739 /* fixed field */
3740 u8 __rsv[4];
3741
3742 __le16 tag;
3743 __le16 len;
3744 u8 control_ch;
3745 u8 center_ch;
3746 u8 bw;
3747 u8 tx_path_num;
3748 u8 rx_path; /* mask or num */
3749 u8 switch_reason;
3750 u8 band_idx;
3751 u8 center_ch2; /* for 80+80 only */
3752 __le16 cac_case;
3753 u8 channel_band;
3754 u8 rsv0;
3755 __le32 outband_freq;
3756 u8 txpower_drop;
3757 u8 ap_bw;
3758 u8 ap_center_ch;
3759 u8 rsv1[53];
3760 } __packed req = {
3761 .tag = cpu_to_le16(tag),
3762 .len = cpu_to_le16(sizeof(req) - 4),
3763 .control_ch = chandef->chan->hw_value,
3764 .center_ch = ieee80211_frequency_to_channel(freq1),
3765 .bw = mt76_connac_chan_bw(chandef),
3766 .tx_path_num = hweight16(phy->mt76->chainmask),
3767 .rx_path = mt7996_rx_chainmask(phy) >> dev->chainshift[band_idx],
3768 .band_idx = band_idx,
3769 .channel_band = ch_band[chandef->chan->band],
3770 };
3771
3772 if (phy->mt76->hw->conf.flags & IEEE80211_CONF_MONITOR)
3773 req.switch_reason = CH_SWITCH_NORMAL;
3774 else if (phy->mt76->offchannel ||
3775 phy->mt76->hw->conf.flags & IEEE80211_CONF_IDLE)
3776 req.switch_reason = CH_SWITCH_SCAN_BYPASS_DPD;
3777 else if (!cfg80211_reg_can_beacon(phy->mt76->hw->wiphy, chandef,
3778 NL80211_IFTYPE_AP))
3779 req.switch_reason = CH_SWITCH_DFS;
3780 else
3781 req.switch_reason = CH_SWITCH_NORMAL;
3782
3783 if (tag == UNI_CHANNEL_SWITCH)
3784 req.rx_path = hweight8(req.rx_path);
3785
3786 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
3787 int freq2 = chandef->center_freq2;
3788
3789 req.center_ch2 = ieee80211_frequency_to_channel(freq2);
3790 }
3791
3792 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(CHANNEL_SWITCH),
3793 &req, sizeof(req), true);
3794 }
3795
mt7996_mcu_set_eeprom_flash(struct mt7996_dev * dev)3796 static int mt7996_mcu_set_eeprom_flash(struct mt7996_dev *dev)
3797 {
3798 #define MAX_PAGE_IDX_MASK GENMASK(7, 5)
3799 #define PAGE_IDX_MASK GENMASK(4, 2)
3800 #define PER_PAGE_SIZE 0x400
3801 struct mt7996_mcu_eeprom req = {
3802 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3803 .buffer_mode = EE_MODE_BUFFER
3804 };
3805 u16 eeprom_size = MT7996_EEPROM_SIZE;
3806 u8 total = DIV_ROUND_UP(eeprom_size, PER_PAGE_SIZE);
3807 u8 *eep = (u8 *)dev->mt76.eeprom.data;
3808 int eep_len, i;
3809
3810 for (i = 0; i < total; i++, eep += eep_len) {
3811 struct sk_buff *skb;
3812 int ret, msg_len;
3813
3814 if (i == total - 1 && !!(eeprom_size % PER_PAGE_SIZE))
3815 eep_len = eeprom_size % PER_PAGE_SIZE;
3816 else
3817 eep_len = PER_PAGE_SIZE;
3818
3819 msg_len = sizeof(req) + eep_len;
3820 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, msg_len);
3821 if (!skb)
3822 return -ENOMEM;
3823
3824 req.len = cpu_to_le16(msg_len - 4);
3825 req.format = FIELD_PREP(MAX_PAGE_IDX_MASK, total - 1) |
3826 FIELD_PREP(PAGE_IDX_MASK, i) | EE_FORMAT_WHOLE;
3827 req.buf_len = cpu_to_le16(eep_len);
3828
3829 skb_put_data(skb, &req, sizeof(req));
3830 skb_put_data(skb, eep, eep_len);
3831
3832 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
3833 MCU_WM_UNI_CMD(EFUSE_CTRL), true);
3834 if (ret)
3835 return ret;
3836 }
3837
3838 return 0;
3839 }
3840
mt7996_mcu_set_eeprom(struct mt7996_dev * dev)3841 int mt7996_mcu_set_eeprom(struct mt7996_dev *dev)
3842 {
3843 struct mt7996_mcu_eeprom req = {
3844 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3845 .len = cpu_to_le16(sizeof(req) - 4),
3846 .buffer_mode = EE_MODE_EFUSE,
3847 .format = EE_FORMAT_WHOLE
3848 };
3849
3850 if (dev->flash_mode)
3851 return mt7996_mcu_set_eeprom_flash(dev);
3852
3853 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(EFUSE_CTRL),
3854 &req, sizeof(req), true);
3855 }
3856
mt7996_mcu_get_eeprom(struct mt7996_dev * dev,u32 offset,u8 * buf,u32 buf_len)3857 int mt7996_mcu_get_eeprom(struct mt7996_dev *dev, u32 offset, u8 *buf, u32 buf_len)
3858 {
3859 struct {
3860 u8 _rsv[4];
3861
3862 __le16 tag;
3863 __le16 len;
3864 __le32 addr;
3865 __le32 valid;
3866 u8 data[16];
3867 } __packed req = {
3868 .tag = cpu_to_le16(UNI_EFUSE_ACCESS),
3869 .len = cpu_to_le16(sizeof(req) - 4),
3870 .addr = cpu_to_le32(round_down(offset,
3871 MT7996_EEPROM_BLOCK_SIZE)),
3872 };
3873 struct sk_buff *skb;
3874 bool valid;
3875 int ret;
3876
3877 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3878 MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL),
3879 &req, sizeof(req), true, &skb);
3880 if (ret)
3881 return ret;
3882
3883 valid = le32_to_cpu(*(__le32 *)(skb->data + 16));
3884 if (valid) {
3885 u32 addr = le32_to_cpu(*(__le32 *)(skb->data + 12));
3886
3887 if (!buf)
3888 buf = (u8 *)dev->mt76.eeprom.data + addr;
3889 if (!buf_len || buf_len > MT7996_EEPROM_BLOCK_SIZE)
3890 buf_len = MT7996_EEPROM_BLOCK_SIZE;
3891
3892 skb_pull(skb, 48);
3893 memcpy(buf, skb->data, buf_len);
3894 } else {
3895 ret = -EINVAL;
3896 }
3897
3898 dev_kfree_skb(skb);
3899
3900 return ret;
3901 }
3902
mt7996_mcu_get_eeprom_free_block(struct mt7996_dev * dev,u8 * block_num)3903 int mt7996_mcu_get_eeprom_free_block(struct mt7996_dev *dev, u8 *block_num)
3904 {
3905 struct {
3906 u8 _rsv[4];
3907
3908 __le16 tag;
3909 __le16 len;
3910 u8 num;
3911 u8 version;
3912 u8 die_idx;
3913 u8 _rsv2;
3914 } __packed req = {
3915 .tag = cpu_to_le16(UNI_EFUSE_FREE_BLOCK),
3916 .len = cpu_to_le16(sizeof(req) - 4),
3917 .version = 2,
3918 };
3919 struct sk_buff *skb;
3920 int ret;
3921
3922 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL), &req,
3923 sizeof(req), true, &skb);
3924 if (ret)
3925 return ret;
3926
3927 *block_num = *(u8 *)(skb->data + 8);
3928 dev_kfree_skb(skb);
3929
3930 return 0;
3931 }
3932
mt7996_mcu_get_chip_config(struct mt7996_dev * dev,u32 * cap)3933 int mt7996_mcu_get_chip_config(struct mt7996_dev *dev, u32 *cap)
3934 {
3935 #define NIC_CAP 3
3936 #define UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION 0x21
3937 struct {
3938 u8 _rsv[4];
3939
3940 __le16 tag;
3941 __le16 len;
3942 } __packed req = {
3943 .tag = cpu_to_le16(NIC_CAP),
3944 .len = cpu_to_le16(sizeof(req) - 4),
3945 };
3946 struct sk_buff *skb;
3947 u8 *buf;
3948 int ret;
3949
3950 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3951 MCU_WM_UNI_CMD_QUERY(CHIP_CONFIG), &req,
3952 sizeof(req), true, &skb);
3953 if (ret)
3954 return ret;
3955
3956 /* fixed field */
3957 skb_pull(skb, 4);
3958
3959 buf = skb->data;
3960 while (buf - skb->data < skb->len) {
3961 struct tlv *tlv = (struct tlv *)buf;
3962
3963 switch (le16_to_cpu(tlv->tag)) {
3964 case UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION:
3965 *cap = le32_to_cpu(*(__le32 *)(buf + sizeof(*tlv)));
3966 break;
3967 default:
3968 break;
3969 }
3970
3971 buf += le16_to_cpu(tlv->len);
3972 }
3973
3974 dev_kfree_skb(skb);
3975
3976 return 0;
3977 }
3978
mt7996_mcu_get_chan_mib_info(struct mt7996_phy * phy,bool chan_switch)3979 int mt7996_mcu_get_chan_mib_info(struct mt7996_phy *phy, bool chan_switch)
3980 {
3981 enum {
3982 IDX_TX_TIME,
3983 IDX_RX_TIME,
3984 IDX_OBSS_AIRTIME,
3985 IDX_NON_WIFI_TIME,
3986 IDX_NUM
3987 };
3988 struct {
3989 struct {
3990 u8 band;
3991 u8 __rsv[3];
3992 } hdr;
3993 struct {
3994 __le16 tag;
3995 __le16 len;
3996 __le32 offs;
3997 } data[IDX_NUM];
3998 } __packed req = {
3999 .hdr.band = phy->mt76->band_idx,
4000 };
4001 static const u32 offs[] = {
4002 [IDX_TX_TIME] = UNI_MIB_TX_TIME,
4003 [IDX_RX_TIME] = UNI_MIB_RX_TIME,
4004 [IDX_OBSS_AIRTIME] = UNI_MIB_OBSS_AIRTIME,
4005 [IDX_NON_WIFI_TIME] = UNI_MIB_NON_WIFI_TIME,
4006 };
4007 struct mt76_channel_state *state = phy->mt76->chan_state;
4008 struct mt76_channel_state *state_ts = &phy->state_ts;
4009 struct mt7996_dev *dev = phy->dev;
4010 struct mt7996_mcu_mib *res;
4011 struct sk_buff *skb;
4012 int i, ret;
4013
4014 for (i = 0; i < IDX_NUM; i++) {
4015 req.data[i].tag = cpu_to_le16(UNI_CMD_MIB_DATA);
4016 req.data[i].len = cpu_to_le16(sizeof(req.data[i]));
4017 req.data[i].offs = cpu_to_le32(offs[i]);
4018 }
4019
4020 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(GET_MIB_INFO),
4021 &req, sizeof(req), true, &skb);
4022 if (ret)
4023 return ret;
4024
4025 skb_pull(skb, sizeof(req.hdr));
4026
4027 res = (struct mt7996_mcu_mib *)(skb->data);
4028
4029 if (chan_switch)
4030 goto out;
4031
4032 #define __res_u64(s) le64_to_cpu(res[s].data)
4033 state->cc_tx += __res_u64(IDX_TX_TIME) - state_ts->cc_tx;
4034 state->cc_bss_rx += __res_u64(IDX_RX_TIME) - state_ts->cc_bss_rx;
4035 state->cc_rx += __res_u64(IDX_RX_TIME) +
4036 __res_u64(IDX_OBSS_AIRTIME) -
4037 state_ts->cc_rx;
4038 state->cc_busy += __res_u64(IDX_TX_TIME) +
4039 __res_u64(IDX_RX_TIME) +
4040 __res_u64(IDX_OBSS_AIRTIME) +
4041 __res_u64(IDX_NON_WIFI_TIME) -
4042 state_ts->cc_busy;
4043 out:
4044 state_ts->cc_tx = __res_u64(IDX_TX_TIME);
4045 state_ts->cc_bss_rx = __res_u64(IDX_RX_TIME);
4046 state_ts->cc_rx = __res_u64(IDX_RX_TIME) + __res_u64(IDX_OBSS_AIRTIME);
4047 state_ts->cc_busy = __res_u64(IDX_TX_TIME) +
4048 __res_u64(IDX_RX_TIME) +
4049 __res_u64(IDX_OBSS_AIRTIME) +
4050 __res_u64(IDX_NON_WIFI_TIME);
4051 #undef __res_u64
4052
4053 dev_kfree_skb(skb);
4054
4055 return 0;
4056 }
4057
mt7996_mcu_get_temperature(struct mt7996_phy * phy)4058 int mt7996_mcu_get_temperature(struct mt7996_phy *phy)
4059 {
4060 #define TEMPERATURE_QUERY 0
4061 #define GET_TEMPERATURE 0
4062 struct {
4063 u8 _rsv[4];
4064
4065 __le16 tag;
4066 __le16 len;
4067
4068 u8 rsv1;
4069 u8 action;
4070 u8 band_idx;
4071 u8 rsv2;
4072 } req = {
4073 .tag = cpu_to_le16(TEMPERATURE_QUERY),
4074 .len = cpu_to_le16(sizeof(req) - 4),
4075 .action = GET_TEMPERATURE,
4076 .band_idx = phy->mt76->band_idx,
4077 };
4078 struct mt7996_mcu_thermal {
4079 u8 _rsv[4];
4080
4081 __le16 tag;
4082 __le16 len;
4083
4084 __le32 rsv;
4085 __le32 temperature;
4086 } __packed * res;
4087 struct sk_buff *skb;
4088 int ret;
4089 u32 temp;
4090
4091 ret = mt76_mcu_send_and_get_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4092 &req, sizeof(req), true, &skb);
4093 if (ret)
4094 return ret;
4095
4096 res = (void *)skb->data;
4097 temp = le32_to_cpu(res->temperature);
4098 dev_kfree_skb(skb);
4099
4100 return temp;
4101 }
4102
mt7996_mcu_set_thermal_throttling(struct mt7996_phy * phy,u8 state)4103 int mt7996_mcu_set_thermal_throttling(struct mt7996_phy *phy, u8 state)
4104 {
4105 struct {
4106 u8 _rsv[4];
4107
4108 __le16 tag;
4109 __le16 len;
4110
4111 struct mt7996_mcu_thermal_ctrl ctrl;
4112 } __packed req = {
4113 .tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DUTY_CONFIG),
4114 .len = cpu_to_le16(sizeof(req) - 4),
4115 .ctrl = {
4116 .band_idx = phy->mt76->band_idx,
4117 },
4118 };
4119 int level, ret;
4120
4121 /* set duty cycle and level */
4122 for (level = 0; level < 4; level++) {
4123 req.ctrl.duty.duty_level = level;
4124 req.ctrl.duty.duty_cycle = state;
4125 state /= 2;
4126
4127 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4128 &req, sizeof(req), false);
4129 if (ret)
4130 return ret;
4131 }
4132
4133 return 0;
4134 }
4135
mt7996_mcu_set_thermal_protect(struct mt7996_phy * phy,bool enable)4136 int mt7996_mcu_set_thermal_protect(struct mt7996_phy *phy, bool enable)
4137 {
4138 #define SUSTAIN_PERIOD 10
4139 struct {
4140 u8 _rsv[4];
4141
4142 __le16 tag;
4143 __le16 len;
4144
4145 struct mt7996_mcu_thermal_ctrl ctrl;
4146 struct mt7996_mcu_thermal_enable enable;
4147 } __packed req = {
4148 .len = cpu_to_le16(sizeof(req) - 4 - sizeof(req.enable)),
4149 .ctrl = {
4150 .band_idx = phy->mt76->band_idx,
4151 .type.protect_type = 1,
4152 .type.trigger_type = 1,
4153 },
4154 };
4155 int ret;
4156
4157 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DISABLE);
4158
4159 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4160 &req, sizeof(req) - sizeof(req.enable), false);
4161 if (ret || !enable)
4162 return ret;
4163
4164 /* set high-temperature trigger threshold */
4165 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_ENABLE);
4166 req.enable.restore_temp = cpu_to_le32(phy->throttle_temp[0]);
4167 req.enable.trigger_temp = cpu_to_le32(phy->throttle_temp[1]);
4168 req.enable.sustain_time = cpu_to_le16(SUSTAIN_PERIOD);
4169
4170 req.len = cpu_to_le16(sizeof(req) - 4);
4171
4172 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4173 &req, sizeof(req), false);
4174 }
4175
mt7996_mcu_set_ser(struct mt7996_dev * dev,u8 action,u8 val,u8 band)4176 int mt7996_mcu_set_ser(struct mt7996_dev *dev, u8 action, u8 val, u8 band)
4177 {
4178 struct {
4179 u8 rsv[4];
4180
4181 __le16 tag;
4182 __le16 len;
4183
4184 union {
4185 struct {
4186 __le32 mask;
4187 } __packed set;
4188
4189 struct {
4190 u8 method;
4191 u8 band;
4192 u8 rsv2[2];
4193 } __packed trigger;
4194 };
4195 } __packed req = {
4196 .tag = cpu_to_le16(action),
4197 .len = cpu_to_le16(sizeof(req) - 4),
4198 };
4199
4200 switch (action) {
4201 case UNI_CMD_SER_SET:
4202 req.set.mask = cpu_to_le32(val);
4203 break;
4204 case UNI_CMD_SER_TRIGGER:
4205 req.trigger.method = val;
4206 req.trigger.band = band;
4207 break;
4208 default:
4209 return -EINVAL;
4210 }
4211
4212 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SER),
4213 &req, sizeof(req), false);
4214 }
4215
mt7996_mcu_set_txbf(struct mt7996_dev * dev,u8 action)4216 int mt7996_mcu_set_txbf(struct mt7996_dev *dev, u8 action)
4217 {
4218 #define MT7996_BF_MAX_SIZE sizeof(union bf_tag_tlv)
4219 #define BF_PROCESSING 4
4220 struct uni_header hdr;
4221 struct sk_buff *skb;
4222 struct tlv *tlv;
4223 int len = sizeof(hdr) + MT7996_BF_MAX_SIZE;
4224
4225 memset(&hdr, 0, sizeof(hdr));
4226
4227 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
4228 if (!skb)
4229 return -ENOMEM;
4230
4231 skb_put_data(skb, &hdr, sizeof(hdr));
4232
4233 switch (action) {
4234 case BF_SOUNDING_ON: {
4235 struct bf_sounding_on *req_snd_on;
4236
4237 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_snd_on));
4238 req_snd_on = (struct bf_sounding_on *)tlv;
4239 req_snd_on->snd_mode = BF_PROCESSING;
4240 break;
4241 }
4242 case BF_HW_EN_UPDATE: {
4243 struct bf_hw_en_status_update *req_hw_en;
4244
4245 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_hw_en));
4246 req_hw_en = (struct bf_hw_en_status_update *)tlv;
4247 req_hw_en->ebf = true;
4248 req_hw_en->ibf = dev->ibf;
4249 break;
4250 }
4251 case BF_MOD_EN_CTRL: {
4252 struct bf_mod_en_ctrl *req_mod_en;
4253
4254 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_mod_en));
4255 req_mod_en = (struct bf_mod_en_ctrl *)tlv;
4256 req_mod_en->bf_num = mt7996_band_valid(dev, MT_BAND2) ? 3 : 2;
4257 req_mod_en->bf_bitmap = mt7996_band_valid(dev, MT_BAND2) ?
4258 GENMASK(2, 0) : GENMASK(1, 0);
4259 break;
4260 }
4261 default:
4262 return -EINVAL;
4263 }
4264
4265 return mt76_mcu_skb_send_msg(&dev->mt76, skb, MCU_WM_UNI_CMD(BF), true);
4266 }
4267
4268 static int
mt7996_mcu_enable_obss_spr(struct mt7996_phy * phy,u16 action,u8 val)4269 mt7996_mcu_enable_obss_spr(struct mt7996_phy *phy, u16 action, u8 val)
4270 {
4271 struct mt7996_dev *dev = phy->dev;
4272 struct {
4273 u8 band_idx;
4274 u8 __rsv[3];
4275
4276 __le16 tag;
4277 __le16 len;
4278
4279 __le32 val;
4280 } __packed req = {
4281 .band_idx = phy->mt76->band_idx,
4282 .tag = cpu_to_le16(action),
4283 .len = cpu_to_le16(sizeof(req) - 4),
4284 .val = cpu_to_le32(val),
4285 };
4286
4287 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4288 &req, sizeof(req), true);
4289 }
4290
4291 static int
mt7996_mcu_set_obss_spr_pd(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4292 mt7996_mcu_set_obss_spr_pd(struct mt7996_phy *phy,
4293 struct ieee80211_he_obss_pd *he_obss_pd)
4294 {
4295 struct mt7996_dev *dev = phy->dev;
4296 u8 max_th = 82, non_srg_max_th = 62;
4297 struct {
4298 u8 band_idx;
4299 u8 __rsv[3];
4300
4301 __le16 tag;
4302 __le16 len;
4303
4304 u8 pd_th_non_srg;
4305 u8 pd_th_srg;
4306 u8 period_offs;
4307 u8 rcpi_src;
4308 __le16 obss_pd_min;
4309 __le16 obss_pd_min_srg;
4310 u8 resp_txpwr_mode;
4311 u8 txpwr_restrict_mode;
4312 u8 txpwr_ref;
4313 u8 __rsv2[3];
4314 } __packed req = {
4315 .band_idx = phy->mt76->band_idx,
4316 .tag = cpu_to_le16(UNI_CMD_SR_SET_PARAM),
4317 .len = cpu_to_le16(sizeof(req) - 4),
4318 .obss_pd_min = cpu_to_le16(max_th),
4319 .obss_pd_min_srg = cpu_to_le16(max_th),
4320 .txpwr_restrict_mode = 2,
4321 .txpwr_ref = 21
4322 };
4323 int ret;
4324
4325 /* disable firmware dynamical PD asjustment */
4326 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_DPD, false);
4327 if (ret)
4328 return ret;
4329
4330 if (he_obss_pd->sr_ctrl &
4331 IEEE80211_HE_SPR_NON_SRG_OBSS_PD_SR_DISALLOWED)
4332 req.pd_th_non_srg = max_th;
4333 else if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_NON_SRG_OFFSET_PRESENT)
4334 req.pd_th_non_srg = max_th - he_obss_pd->non_srg_max_offset;
4335 else
4336 req.pd_th_non_srg = non_srg_max_th;
4337
4338 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_SRG_INFORMATION_PRESENT)
4339 req.pd_th_srg = max_th - he_obss_pd->max_offset;
4340
4341 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4342 &req, sizeof(req), true);
4343 }
4344
4345 static int
mt7996_mcu_set_obss_spr_siga(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4346 mt7996_mcu_set_obss_spr_siga(struct mt7996_phy *phy,
4347 struct mt7996_vif_link *link,
4348 struct ieee80211_he_obss_pd *he_obss_pd)
4349 {
4350 struct mt7996_dev *dev = phy->dev;
4351 u8 omac = link->mt76.omac_idx;
4352 struct {
4353 u8 band_idx;
4354 u8 __rsv[3];
4355
4356 __le16 tag;
4357 __le16 len;
4358
4359 u8 omac;
4360 u8 __rsv2[3];
4361 u8 flag[20];
4362 } __packed req = {
4363 .band_idx = phy->mt76->band_idx,
4364 .tag = cpu_to_le16(UNI_CMD_SR_SET_SIGA),
4365 .len = cpu_to_le16(sizeof(req) - 4),
4366 .omac = omac > HW_BSSID_MAX ? omac - 12 : omac,
4367 };
4368 int ret;
4369
4370 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_HESIGA_SR_VAL15_ALLOWED)
4371 req.flag[req.omac] = 0xf;
4372 else
4373 return 0;
4374
4375 /* switch to normal AP mode */
4376 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_MODE, 0);
4377 if (ret)
4378 return ret;
4379
4380 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4381 &req, sizeof(req), true);
4382 }
4383
4384 static int
mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4385 mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy *phy,
4386 struct ieee80211_he_obss_pd *he_obss_pd)
4387 {
4388 struct mt7996_dev *dev = phy->dev;
4389 struct {
4390 u8 band_idx;
4391 u8 __rsv[3];
4392
4393 __le16 tag;
4394 __le16 len;
4395
4396 __le32 color_l[2];
4397 __le32 color_h[2];
4398 __le32 bssid_l[2];
4399 __le32 bssid_h[2];
4400 } __packed req = {
4401 .band_idx = phy->mt76->band_idx,
4402 .tag = cpu_to_le16(UNI_CMD_SR_SET_SRG_BITMAP),
4403 .len = cpu_to_le16(sizeof(req) - 4),
4404 };
4405 u32 bitmap;
4406
4407 memcpy(&bitmap, he_obss_pd->bss_color_bitmap, sizeof(bitmap));
4408 req.color_l[req.band_idx] = cpu_to_le32(bitmap);
4409
4410 memcpy(&bitmap, he_obss_pd->bss_color_bitmap + 4, sizeof(bitmap));
4411 req.color_h[req.band_idx] = cpu_to_le32(bitmap);
4412
4413 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap, sizeof(bitmap));
4414 req.bssid_l[req.band_idx] = cpu_to_le32(bitmap);
4415
4416 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap + 4, sizeof(bitmap));
4417 req.bssid_h[req.band_idx] = cpu_to_le32(bitmap);
4418
4419 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR), &req,
4420 sizeof(req), true);
4421 }
4422
mt7996_mcu_add_obss_spr(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4423 int mt7996_mcu_add_obss_spr(struct mt7996_phy *phy,
4424 struct mt7996_vif_link *link,
4425 struct ieee80211_he_obss_pd *he_obss_pd)
4426 {
4427 int ret;
4428
4429 /* enable firmware scene detection algorithms */
4430 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_SD,
4431 sr_scene_detect);
4432 if (ret)
4433 return ret;
4434
4435 /* firmware dynamically adjusts PD threshold so skip manual control */
4436 if (sr_scene_detect && !he_obss_pd->enable)
4437 return 0;
4438
4439 /* enable spatial reuse */
4440 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE,
4441 he_obss_pd->enable);
4442 if (ret)
4443 return ret;
4444
4445 if (sr_scene_detect || !he_obss_pd->enable)
4446 return 0;
4447
4448 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_TX, true);
4449 if (ret)
4450 return ret;
4451
4452 /* set SRG/non-SRG OBSS PD threshold */
4453 ret = mt7996_mcu_set_obss_spr_pd(phy, he_obss_pd);
4454 if (ret)
4455 return ret;
4456
4457 /* Set SR prohibit */
4458 ret = mt7996_mcu_set_obss_spr_siga(phy, link, he_obss_pd);
4459 if (ret)
4460 return ret;
4461
4462 /* set SRG BSS color/BSSID bitmap */
4463 return mt7996_mcu_set_obss_spr_bitmap(phy, he_obss_pd);
4464 }
4465
mt7996_mcu_update_bss_color(struct mt7996_dev * dev,struct mt76_vif_link * mlink,struct cfg80211_he_bss_color * he_bss_color)4466 int mt7996_mcu_update_bss_color(struct mt7996_dev *dev,
4467 struct mt76_vif_link *mlink,
4468 struct cfg80211_he_bss_color *he_bss_color)
4469 {
4470 int len = sizeof(struct bss_req_hdr) + sizeof(struct bss_color_tlv);
4471 struct bss_color_tlv *bss_color;
4472 struct sk_buff *skb;
4473 struct tlv *tlv;
4474
4475 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink, len);
4476 if (IS_ERR(skb))
4477 return PTR_ERR(skb);
4478
4479 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BSS_COLOR,
4480 sizeof(*bss_color));
4481 bss_color = (struct bss_color_tlv *)tlv;
4482 bss_color->enable = he_bss_color->enabled;
4483 bss_color->color = he_bss_color->color;
4484
4485 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4486 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
4487 }
4488
4489 #define TWT_AGRT_TRIGGER BIT(0)
4490 #define TWT_AGRT_ANNOUNCE BIT(1)
4491 #define TWT_AGRT_PROTECT BIT(2)
4492
mt7996_mcu_twt_agrt_update(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_twt_flow * flow,int cmd)4493 int mt7996_mcu_twt_agrt_update(struct mt7996_dev *dev,
4494 struct mt7996_vif_link *link,
4495 struct mt7996_twt_flow *flow,
4496 int cmd)
4497 {
4498 struct {
4499 /* fixed field */
4500 u8 bss;
4501 u8 _rsv[3];
4502
4503 __le16 tag;
4504 __le16 len;
4505 u8 tbl_idx;
4506 u8 cmd;
4507 u8 own_mac_idx;
4508 u8 flowid; /* 0xff for group id */
4509 __le16 peer_id; /* specify the peer_id (msb=0)
4510 * or group_id (msb=1)
4511 */
4512 u8 duration; /* 256 us */
4513 u8 bss_idx;
4514 __le64 start_tsf;
4515 __le16 mantissa;
4516 u8 exponent;
4517 u8 is_ap;
4518 u8 agrt_params;
4519 u8 __rsv2[23];
4520 } __packed req = {
4521 .tag = cpu_to_le16(UNI_CMD_TWT_ARGT_UPDATE),
4522 .len = cpu_to_le16(sizeof(req) - 4),
4523 .tbl_idx = flow->table_id,
4524 .cmd = cmd,
4525 .own_mac_idx = link->mt76.omac_idx,
4526 .flowid = flow->id,
4527 .peer_id = cpu_to_le16(flow->wcid),
4528 .duration = flow->duration,
4529 .bss = link->mt76.idx,
4530 .bss_idx = link->mt76.idx,
4531 .start_tsf = cpu_to_le64(flow->tsf),
4532 .mantissa = flow->mantissa,
4533 .exponent = flow->exp,
4534 .is_ap = true,
4535 };
4536
4537 if (flow->protection)
4538 req.agrt_params |= TWT_AGRT_PROTECT;
4539 if (!flow->flowtype)
4540 req.agrt_params |= TWT_AGRT_ANNOUNCE;
4541 if (flow->trigger)
4542 req.agrt_params |= TWT_AGRT_TRIGGER;
4543
4544 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(TWT),
4545 &req, sizeof(req), true);
4546 }
4547
mt7996_mcu_set_rts_thresh(struct mt7996_phy * phy,u32 val)4548 int mt7996_mcu_set_rts_thresh(struct mt7996_phy *phy, u32 val)
4549 {
4550 struct {
4551 u8 band_idx;
4552 u8 _rsv[3];
4553
4554 __le16 tag;
4555 __le16 len;
4556 __le32 len_thresh;
4557 __le32 pkt_thresh;
4558 } __packed req = {
4559 .band_idx = phy->mt76->band_idx,
4560 .tag = cpu_to_le16(UNI_BAND_CONFIG_RTS_THRESHOLD),
4561 .len = cpu_to_le16(sizeof(req) - 4),
4562 .len_thresh = cpu_to_le32(val),
4563 .pkt_thresh = cpu_to_le32(0x2),
4564 };
4565
4566 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4567 &req, sizeof(req), true);
4568 }
4569
mt7996_mcu_set_radio_en(struct mt7996_phy * phy,bool enable)4570 int mt7996_mcu_set_radio_en(struct mt7996_phy *phy, bool enable)
4571 {
4572 struct {
4573 u8 band_idx;
4574 u8 _rsv[3];
4575
4576 __le16 tag;
4577 __le16 len;
4578 u8 enable;
4579 u8 _rsv2[3];
4580 } __packed req = {
4581 .band_idx = phy->mt76->band_idx,
4582 .tag = cpu_to_le16(UNI_BAND_CONFIG_RADIO_ENABLE),
4583 .len = cpu_to_le16(sizeof(req) - 4),
4584 .enable = enable,
4585 };
4586
4587 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4588 &req, sizeof(req), true);
4589 }
4590
mt7996_mcu_rdd_cmd(struct mt7996_dev * dev,int cmd,u8 rdd_idx,u8 val)4591 int mt7996_mcu_rdd_cmd(struct mt7996_dev *dev, int cmd, u8 rdd_idx, u8 val)
4592 {
4593 struct {
4594 u8 _rsv[4];
4595
4596 __le16 tag;
4597 __le16 len;
4598
4599 u8 ctrl;
4600 u8 rdd_idx;
4601 u8 rdd_rx_sel;
4602 u8 val;
4603 u8 rsv[4];
4604 } __packed req = {
4605 .tag = cpu_to_le16(UNI_RDD_CTRL_PARM),
4606 .len = cpu_to_le16(sizeof(req) - 4),
4607 .ctrl = cmd,
4608 .rdd_idx = rdd_idx,
4609 .val = val,
4610 };
4611
4612 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
4613 &req, sizeof(req), true);
4614 }
4615
mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)4616 int mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev *dev,
4617 struct ieee80211_vif *vif,
4618 struct mt7996_vif_link *link,
4619 struct mt7996_sta_link *msta_link)
4620 {
4621 struct sk_buff *skb;
4622
4623 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
4624 &msta_link->wcid,
4625 MT7996_STA_UPDATE_MAX_SIZE);
4626 if (IS_ERR(skb))
4627 return PTR_ERR(skb);
4628
4629 /* starec hdr trans */
4630 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, vif, &msta_link->wcid);
4631 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4632 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
4633 }
4634
mt7996_mcu_set_fixed_rate_table(struct mt7996_phy * phy,u8 table_idx,u16 rate_idx,bool beacon)4635 int mt7996_mcu_set_fixed_rate_table(struct mt7996_phy *phy, u8 table_idx,
4636 u16 rate_idx, bool beacon)
4637 {
4638 #define UNI_FIXED_RATE_TABLE_SET 0
4639 #define SPE_IXD_SELECT_TXD 0
4640 #define SPE_IXD_SELECT_BMC_WTBL 1
4641 struct mt7996_dev *dev = phy->dev;
4642 struct fixed_rate_table_ctrl req = {
4643 .tag = cpu_to_le16(UNI_FIXED_RATE_TABLE_SET),
4644 .len = cpu_to_le16(sizeof(req) - 4),
4645 .table_idx = table_idx,
4646 .rate_idx = cpu_to_le16(rate_idx),
4647 .gi = 1,
4648 .he_ltf = 1,
4649 };
4650 u8 band_idx = phy->mt76->band_idx;
4651
4652 if (beacon) {
4653 req.spe_idx_sel = SPE_IXD_SELECT_TXD;
4654 req.spe_idx = 24 + band_idx;
4655 phy->beacon_rate = rate_idx;
4656 } else {
4657 req.spe_idx_sel = SPE_IXD_SELECT_BMC_WTBL;
4658 }
4659
4660 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(FIXED_RATE_TABLE),
4661 &req, sizeof(req), false);
4662 }
4663
mt7996_mcu_rf_regval(struct mt7996_dev * dev,u32 regidx,u32 * val,bool set)4664 int mt7996_mcu_rf_regval(struct mt7996_dev *dev, u32 regidx, u32 *val, bool set)
4665 {
4666 struct {
4667 u8 __rsv1[4];
4668
4669 __le16 tag;
4670 __le16 len;
4671 __le16 idx;
4672 u8 __rsv2[2];
4673 __le32 ofs;
4674 __le32 data;
4675 } __packed *res, req = {
4676 .tag = cpu_to_le16(UNI_CMD_ACCESS_RF_REG_BASIC),
4677 .len = cpu_to_le16(sizeof(req) - 4),
4678
4679 .idx = cpu_to_le16(u32_get_bits(regidx, GENMASK(31, 24))),
4680 .ofs = cpu_to_le32(u32_get_bits(regidx, GENMASK(23, 0))),
4681 .data = set ? cpu_to_le32(*val) : 0,
4682 };
4683 struct sk_buff *skb;
4684 int ret;
4685
4686 if (set)
4687 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REG_ACCESS),
4688 &req, sizeof(req), true);
4689
4690 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
4691 MCU_WM_UNI_CMD_QUERY(REG_ACCESS),
4692 &req, sizeof(req), true, &skb);
4693 if (ret)
4694 return ret;
4695
4696 res = (void *)skb->data;
4697 *val = le32_to_cpu(res->data);
4698 dev_kfree_skb(skb);
4699
4700 return 0;
4701 }
4702
mt7996_mcu_trigger_assert(struct mt7996_dev * dev)4703 int mt7996_mcu_trigger_assert(struct mt7996_dev *dev)
4704 {
4705 struct {
4706 __le16 tag;
4707 __le16 len;
4708 u8 enable;
4709 u8 rsv[3];
4710 } __packed req = {
4711 .len = cpu_to_le16(sizeof(req) - 4),
4712 .enable = true,
4713 };
4714
4715 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ASSERT_DUMP),
4716 &req, sizeof(req), false);
4717 }
4718
mt7996_mcu_set_rro(struct mt7996_dev * dev,u16 tag,u16 val)4719 int mt7996_mcu_set_rro(struct mt7996_dev *dev, u16 tag, u16 val)
4720 {
4721 struct {
4722 u8 __rsv1[4];
4723 __le16 tag;
4724 __le16 len;
4725 union {
4726 struct {
4727 u8 type;
4728 u8 __rsv2[3];
4729 } __packed platform_type;
4730 struct {
4731 u8 type;
4732 u8 dest;
4733 u8 __rsv2[2];
4734 } __packed bypass_mode;
4735 struct {
4736 u8 path;
4737 u8 __rsv2[3];
4738 } __packed txfree_path;
4739 struct {
4740 __le16 flush_one;
4741 __le16 flush_all;
4742 u8 __rsv2[4];
4743 } __packed timeout;
4744 };
4745 } __packed req = {
4746 .tag = cpu_to_le16(tag),
4747 .len = cpu_to_le16(sizeof(req) - 4),
4748 };
4749
4750 switch (tag) {
4751 case UNI_RRO_SET_PLATFORM_TYPE:
4752 req.platform_type.type = val;
4753 break;
4754 case UNI_RRO_SET_BYPASS_MODE:
4755 req.bypass_mode.type = val;
4756 break;
4757 case UNI_RRO_SET_TXFREE_PATH:
4758 req.txfree_path.path = val;
4759 break;
4760 case UNI_RRO_SET_FLUSH_TIMEOUT:
4761 req.timeout.flush_one = cpu_to_le16(val);
4762 req.timeout.flush_all = cpu_to_le16(2 * val);
4763 break;
4764 default:
4765 return -EINVAL;
4766 }
4767
4768 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4769 sizeof(req), true);
4770 }
4771
mt7996_mcu_get_all_sta_info(struct mt7996_phy * phy,u16 tag)4772 int mt7996_mcu_get_all_sta_info(struct mt7996_phy *phy, u16 tag)
4773 {
4774 struct mt7996_dev *dev = phy->dev;
4775 struct {
4776 u8 _rsv[4];
4777
4778 __le16 tag;
4779 __le16 len;
4780 } __packed req = {
4781 .tag = cpu_to_le16(tag),
4782 .len = cpu_to_le16(sizeof(req) - 4),
4783 };
4784
4785 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ALL_STA_INFO),
4786 &req, sizeof(req), false);
4787 }
4788
mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev * dev,u16 id)4789 int mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev *dev, u16 id)
4790 {
4791 struct {
4792 u8 __rsv[4];
4793
4794 __le16 tag;
4795 __le16 len;
4796 __le16 session_id;
4797 u8 pad[4];
4798 } __packed req = {
4799 .tag = cpu_to_le16(UNI_RRO_DEL_BA_SESSION),
4800 .len = cpu_to_le16(sizeof(req) - 4),
4801 .session_id = cpu_to_le16(id),
4802 };
4803
4804 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4805 sizeof(req), true);
4806 }
4807
mt7996_mcu_set_sniffer_mode(struct mt7996_phy * phy,bool enabled)4808 int mt7996_mcu_set_sniffer_mode(struct mt7996_phy *phy, bool enabled)
4809 {
4810 struct mt7996_dev *dev = phy->dev;
4811 struct {
4812 u8 band_idx;
4813 u8 _rsv[3];
4814 __le16 tag;
4815 __le16 len;
4816 u8 enable;
4817 u8 _pad[3];
4818 } __packed req = {
4819 .band_idx = phy->mt76->band_idx,
4820 .tag = 0,
4821 .len = cpu_to_le16(sizeof(req) - 4),
4822 .enable = enabled,
4823 };
4824
4825 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SNIFFER), &req,
4826 sizeof(req), true);
4827 }
4828
mt7996_mcu_set_txpower_sku(struct mt7996_phy * phy)4829 int mt7996_mcu_set_txpower_sku(struct mt7996_phy *phy)
4830 {
4831 #define TX_POWER_LIMIT_TABLE_RATE 0
4832 struct mt7996_dev *dev = phy->dev;
4833 struct mt76_phy *mphy = phy->mt76;
4834 struct tx_power_limit_table_ctrl {
4835 u8 __rsv1[4];
4836
4837 __le16 tag;
4838 __le16 len;
4839 u8 power_ctrl_id;
4840 u8 power_limit_type;
4841 u8 band_idx;
4842 } __packed req = {
4843 .tag = cpu_to_le16(UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL),
4844 .len = cpu_to_le16(sizeof(req) + MT7996_SKU_PATH_NUM - 4),
4845 .power_ctrl_id = UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL,
4846 .power_limit_type = TX_POWER_LIMIT_TABLE_RATE,
4847 .band_idx = phy->mt76->band_idx,
4848 };
4849 struct mt76_power_limits la = {};
4850 struct sk_buff *skb;
4851 int i, tx_power;
4852
4853 tx_power = mt76_get_power_bound(mphy, phy->txpower);
4854 tx_power = mt76_get_rate_power_limits(mphy, mphy->chandef.chan,
4855 &la, tx_power);
4856 mphy->txpower_cur = tx_power;
4857
4858 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL,
4859 sizeof(req) + MT7996_SKU_PATH_NUM);
4860 if (!skb)
4861 return -ENOMEM;
4862
4863 skb_put_data(skb, &req, sizeof(req));
4864 /* cck and ofdm */
4865 skb_put_data(skb, &la.cck, sizeof(la.cck));
4866 skb_put_data(skb, &la.ofdm, sizeof(la.ofdm));
4867 /* ht20 */
4868 skb_put_data(skb, &la.mcs[0], 8);
4869 /* ht40 */
4870 skb_put_data(skb, &la.mcs[1], 9);
4871
4872 /* vht */
4873 for (i = 0; i < 4; i++) {
4874 skb_put_data(skb, &la.mcs[i], sizeof(la.mcs[i]));
4875 skb_put_zero(skb, 2); /* padding */
4876 }
4877
4878 /* he */
4879 skb_put_data(skb, &la.ru[0], sizeof(la.ru));
4880 /* eht */
4881 skb_put_data(skb, &la.eht[0], sizeof(la.eht));
4882
4883 /* padding */
4884 skb_put_zero(skb, MT7996_SKU_PATH_NUM - MT7996_SKU_RATE_NUM);
4885
4886 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4887 MCU_WM_UNI_CMD(TXPOWER), true);
4888 }
4889
mt7996_mcu_cp_support(struct mt7996_dev * dev,u8 mode)4890 int mt7996_mcu_cp_support(struct mt7996_dev *dev, u8 mode)
4891 {
4892 __le32 cp_mode;
4893
4894 if (mode < mt76_connac_lmac_mapping(IEEE80211_AC_BE) ||
4895 mode > mt76_connac_lmac_mapping(IEEE80211_AC_VO))
4896 return -EINVAL;
4897
4898 if (!mt7996_has_wa(dev)) {
4899 struct {
4900 u8 _rsv[4];
4901
4902 __le16 tag;
4903 __le16 len;
4904 u8 cp_mode;
4905 u8 rsv[3];
4906 } __packed req = {
4907 .tag = cpu_to_le16(UNI_CMD_SDO_CP_MODE),
4908 .len = cpu_to_le16(sizeof(req) - 4),
4909 .cp_mode = mode,
4910 };
4911
4912 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO),
4913 &req, sizeof(req), false);
4914 }
4915
4916 cp_mode = cpu_to_le32(mode);
4917
4918 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(CP_SUPPORT),
4919 &cp_mode, sizeof(cp_mode), true);
4920 }
4921