testmode.c 12 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502
  1. // SPDX-License-Identifier: BSD-3-Clause-Clear
  2. /*
  3. * Copyright (c) 2018-2019 The Linux Foundation. All rights reserved.
  4. * Copyright (c) 2023-2025 Qualcomm Innovation Center, Inc. All rights reserved.
  5. */
  6. #include "testmode.h"
  7. #include <net/netlink.h>
  8. #include "debug.h"
  9. #include "wmi.h"
  10. #include "hw.h"
  11. #include "core.h"
  12. #include "../testmode_i.h"
  13. #define ATH11K_FTM_SEGHDR_CURRENT_SEQ GENMASK(3, 0)
  14. #define ATH11K_FTM_SEGHDR_TOTAL_SEGMENTS GENMASK(7, 4)
  15. static const struct nla_policy ath11k_tm_policy[ATH_TM_ATTR_MAX + 1] = {
  16. [ATH_TM_ATTR_CMD] = { .type = NLA_U32 },
  17. [ATH_TM_ATTR_DATA] = { .type = NLA_BINARY,
  18. .len = ATH_TM_DATA_MAX_LEN },
  19. [ATH_TM_ATTR_WMI_CMDID] = { .type = NLA_U32 },
  20. [ATH_TM_ATTR_VERSION_MAJOR] = { .type = NLA_U32 },
  21. [ATH_TM_ATTR_VERSION_MINOR] = { .type = NLA_U32 },
  22. };
  23. static struct ath11k *ath11k_tm_get_ar(struct ath11k_base *ab)
  24. {
  25. struct ath11k_pdev *pdev;
  26. struct ath11k *ar = NULL;
  27. int i;
  28. for (i = 0; i < ab->num_radios; i++) {
  29. pdev = &ab->pdevs[i];
  30. ar = pdev->ar;
  31. if (ar && ar->state == ATH11K_STATE_FTM)
  32. break;
  33. }
  34. return ar;
  35. }
  36. /* This function handles unsegmented events. Data in various events are aggregated
  37. * in application layer, this event is unsegmented from host perspective.
  38. */
  39. static void ath11k_tm_wmi_event_unsegmented(struct ath11k_base *ab, u32 cmd_id,
  40. struct sk_buff *skb)
  41. {
  42. struct sk_buff *nl_skb;
  43. struct ath11k *ar;
  44. ath11k_dbg(ab, ATH11K_DBG_TESTMODE,
  45. "event wmi cmd_id %d skb length %d\n",
  46. cmd_id, skb->len);
  47. ath11k_dbg_dump(ab, ATH11K_DBG_TESTMODE, NULL, "", skb->data, skb->len);
  48. ar = ath11k_tm_get_ar(ab);
  49. if (!ar) {
  50. ath11k_warn(ab, "testmode event not handled due to invalid pdev\n");
  51. return;
  52. }
  53. spin_lock_bh(&ar->data_lock);
  54. nl_skb = cfg80211_testmode_alloc_event_skb(ar->hw->wiphy,
  55. 2 * nla_total_size(sizeof(u32)) +
  56. nla_total_size(skb->len),
  57. GFP_ATOMIC);
  58. if (!nl_skb) {
  59. ath11k_warn(ab,
  60. "failed to allocate skb for unsegmented testmode wmi event\n");
  61. goto out;
  62. }
  63. if (nla_put_u32(nl_skb, ATH_TM_ATTR_CMD, ATH_TM_CMD_WMI) ||
  64. nla_put_u32(nl_skb, ATH_TM_ATTR_WMI_CMDID, cmd_id) ||
  65. nla_put(nl_skb, ATH_TM_ATTR_DATA, skb->len, skb->data)) {
  66. ath11k_warn(ab, "failed to populate testmode unsegmented event\n");
  67. kfree_skb(nl_skb);
  68. goto out;
  69. }
  70. cfg80211_testmode_event(nl_skb, GFP_ATOMIC);
  71. spin_unlock_bh(&ar->data_lock);
  72. return;
  73. out:
  74. spin_unlock_bh(&ar->data_lock);
  75. ath11k_warn(ab, "Failed to send testmode event to higher layers\n");
  76. }
  77. /* This function handles segmented events. Data of various events received
  78. * from firmware is aggregated and sent to application layer
  79. */
  80. static int ath11k_tm_process_event(struct ath11k_base *ab, u32 cmd_id,
  81. const struct wmi_ftm_event_msg *ftm_msg,
  82. u16 length)
  83. {
  84. struct sk_buff *nl_skb;
  85. int ret = 0;
  86. struct ath11k *ar;
  87. u8 const *buf_pos;
  88. u16 datalen;
  89. u8 total_segments, current_seq;
  90. u32 data_pos;
  91. u32 pdev_id;
  92. ath11k_dbg(ab, ATH11K_DBG_TESTMODE,
  93. "event wmi cmd_id %d ftm event msg %p datalen %d\n",
  94. cmd_id, ftm_msg, length);
  95. ath11k_dbg_dump(ab, ATH11K_DBG_TESTMODE, NULL, "", ftm_msg, length);
  96. pdev_id = DP_HW2SW_MACID(ftm_msg->seg_hdr.pdev_id);
  97. if (pdev_id >= ab->num_radios) {
  98. ath11k_warn(ab, "testmode event not handled due to invalid pdev id: %d\n",
  99. pdev_id);
  100. return -EINVAL;
  101. }
  102. ar = ab->pdevs[pdev_id].ar;
  103. if (!ar) {
  104. ath11k_warn(ab, "testmode event not handled due to absence of pdev\n");
  105. return -ENODEV;
  106. }
  107. current_seq = FIELD_GET(ATH11K_FTM_SEGHDR_CURRENT_SEQ,
  108. ftm_msg->seg_hdr.segmentinfo);
  109. total_segments = FIELD_GET(ATH11K_FTM_SEGHDR_TOTAL_SEGMENTS,
  110. ftm_msg->seg_hdr.segmentinfo);
  111. datalen = length - (sizeof(struct wmi_ftm_seg_hdr));
  112. buf_pos = ftm_msg->data;
  113. spin_lock_bh(&ar->data_lock);
  114. if (current_seq == 0) {
  115. ab->testmode.expected_seq = 0;
  116. ab->testmode.data_pos = 0;
  117. }
  118. data_pos = ab->testmode.data_pos;
  119. if ((data_pos + datalen) > ATH_FTM_EVENT_MAX_BUF_LENGTH) {
  120. ath11k_warn(ab, "Invalid ftm event length at %d: %d\n",
  121. data_pos, datalen);
  122. ret = -EINVAL;
  123. goto out;
  124. }
  125. memcpy(&ab->testmode.eventdata[data_pos], buf_pos, datalen);
  126. data_pos += datalen;
  127. if (++ab->testmode.expected_seq != total_segments) {
  128. ab->testmode.data_pos = data_pos;
  129. ath11k_dbg(ab, ATH11K_DBG_TESTMODE,
  130. "partial data received current_seq %d total_seg %d\n",
  131. current_seq, total_segments);
  132. goto out;
  133. }
  134. ath11k_dbg(ab, ATH11K_DBG_TESTMODE,
  135. "total data length pos %d len %d\n",
  136. data_pos, ftm_msg->seg_hdr.len);
  137. nl_skb = cfg80211_testmode_alloc_event_skb(ar->hw->wiphy,
  138. 2 * nla_total_size(sizeof(u32)) +
  139. nla_total_size(data_pos),
  140. GFP_ATOMIC);
  141. if (!nl_skb) {
  142. ath11k_warn(ab,
  143. "failed to allocate skb for segmented testmode wmi event\n");
  144. ret = -ENOMEM;
  145. goto out;
  146. }
  147. if (nla_put_u32(nl_skb, ATH_TM_ATTR_CMD,
  148. ATH_TM_CMD_WMI_FTM) ||
  149. nla_put_u32(nl_skb, ATH_TM_ATTR_WMI_CMDID, cmd_id) ||
  150. nla_put(nl_skb, ATH_TM_ATTR_DATA, data_pos,
  151. &ab->testmode.eventdata[0])) {
  152. ath11k_warn(ab, "failed to populate segmented testmode event");
  153. kfree_skb(nl_skb);
  154. ret = -ENOBUFS;
  155. goto out;
  156. }
  157. cfg80211_testmode_event(nl_skb, GFP_ATOMIC);
  158. out:
  159. spin_unlock_bh(&ar->data_lock);
  160. return ret;
  161. }
  162. static void ath11k_tm_wmi_event_segmented(struct ath11k_base *ab, u32 cmd_id,
  163. struct sk_buff *skb)
  164. {
  165. const void **tb;
  166. const struct wmi_ftm_event_msg *ev;
  167. u16 length;
  168. int ret;
  169. tb = ath11k_wmi_tlv_parse_alloc(ab, skb, GFP_ATOMIC);
  170. if (IS_ERR(tb)) {
  171. ret = PTR_ERR(tb);
  172. ath11k_warn(ab, "failed to parse ftm event tlv: %d\n", ret);
  173. return;
  174. }
  175. ev = tb[WMI_TAG_ARRAY_BYTE];
  176. if (!ev) {
  177. ath11k_warn(ab, "failed to fetch ftm msg\n");
  178. kfree(tb);
  179. return;
  180. }
  181. length = skb->len - TLV_HDR_SIZE;
  182. ret = ath11k_tm_process_event(ab, cmd_id, ev, length);
  183. if (ret)
  184. ath11k_warn(ab, "Failed to process ftm event\n");
  185. kfree(tb);
  186. }
  187. void ath11k_tm_wmi_event(struct ath11k_base *ab, u32 cmd_id, struct sk_buff *skb)
  188. {
  189. if (test_bit(ATH11K_FLAG_FTM_SEGMENTED, &ab->dev_flags))
  190. ath11k_tm_wmi_event_segmented(ab, cmd_id, skb);
  191. else
  192. ath11k_tm_wmi_event_unsegmented(ab, cmd_id, skb);
  193. }
  194. static int ath11k_tm_cmd_get_version(struct ath11k *ar, struct nlattr *tb[])
  195. {
  196. struct sk_buff *skb;
  197. int ret;
  198. ath11k_dbg(ar->ab, ATH11K_DBG_TESTMODE,
  199. "cmd get version_major %d version_minor %d\n",
  200. ATH_TESTMODE_VERSION_MAJOR,
  201. ATH_TESTMODE_VERSION_MINOR);
  202. skb = cfg80211_testmode_alloc_reply_skb(ar->hw->wiphy,
  203. nla_total_size(sizeof(u32)));
  204. if (!skb)
  205. return -ENOMEM;
  206. ret = nla_put_u32(skb, ATH_TM_ATTR_VERSION_MAJOR,
  207. ATH_TESTMODE_VERSION_MAJOR);
  208. if (ret) {
  209. kfree_skb(skb);
  210. return ret;
  211. }
  212. ret = nla_put_u32(skb, ATH_TM_ATTR_VERSION_MINOR,
  213. ATH_TESTMODE_VERSION_MINOR);
  214. if (ret) {
  215. kfree_skb(skb);
  216. return ret;
  217. }
  218. return cfg80211_testmode_reply(skb);
  219. }
  220. static int ath11k_tm_cmd_testmode_start(struct ath11k *ar, struct nlattr *tb[])
  221. {
  222. int ret;
  223. mutex_lock(&ar->conf_mutex);
  224. if (ar->state == ATH11K_STATE_FTM) {
  225. ret = -EALREADY;
  226. goto err;
  227. }
  228. /* start utf only when the driver is not in use */
  229. if (ar->state != ATH11K_STATE_OFF) {
  230. ret = -EBUSY;
  231. goto err;
  232. }
  233. ar->ab->testmode.eventdata = kzalloc(ATH_FTM_EVENT_MAX_BUF_LENGTH,
  234. GFP_KERNEL);
  235. if (!ar->ab->testmode.eventdata) {
  236. ret = -ENOMEM;
  237. goto err;
  238. }
  239. ar->state = ATH11K_STATE_FTM;
  240. ar->ftm_msgref = 0;
  241. mutex_unlock(&ar->conf_mutex);
  242. ath11k_dbg(ar->ab, ATH11K_DBG_TESTMODE, "cmd start\n");
  243. return 0;
  244. err:
  245. mutex_unlock(&ar->conf_mutex);
  246. return ret;
  247. }
  248. static int ath11k_tm_cmd_wmi(struct ath11k *ar, struct nlattr *tb[],
  249. struct ieee80211_vif *vif)
  250. {
  251. struct ath11k_pdev_wmi *wmi = ar->wmi;
  252. struct sk_buff *skb;
  253. struct ath11k_vif *arvif;
  254. u32 cmd_id, buf_len;
  255. int ret, tag;
  256. void *buf;
  257. u32 *ptr;
  258. mutex_lock(&ar->conf_mutex);
  259. if (!tb[ATH_TM_ATTR_DATA]) {
  260. ret = -EINVAL;
  261. goto out;
  262. }
  263. if (!tb[ATH_TM_ATTR_WMI_CMDID]) {
  264. ret = -EINVAL;
  265. goto out;
  266. }
  267. buf = nla_data(tb[ATH_TM_ATTR_DATA]);
  268. buf_len = nla_len(tb[ATH_TM_ATTR_DATA]);
  269. if (!buf_len) {
  270. ath11k_warn(ar->ab, "No data present in testmode wmi command\n");
  271. ret = -EINVAL;
  272. goto out;
  273. }
  274. cmd_id = nla_get_u32(tb[ATH_TM_ATTR_WMI_CMDID]);
  275. /* Make sure that the buffer length is long enough to
  276. * hold TLV and pdev/vdev id.
  277. */
  278. if (buf_len < sizeof(struct wmi_tlv) + sizeof(u32)) {
  279. ret = -EINVAL;
  280. goto out;
  281. }
  282. ptr = buf;
  283. tag = FIELD_GET(WMI_TLV_TAG, *ptr);
  284. /* pdev/vdev id start after TLV header */
  285. ptr++;
  286. if (tag == WMI_TAG_PDEV_SET_PARAM_CMD)
  287. *ptr = ar->pdev->pdev_id;
  288. if (ar->ab->fw_mode != ATH11K_FIRMWARE_MODE_FTM &&
  289. (tag == WMI_TAG_VDEV_SET_PARAM_CMD || tag == WMI_TAG_UNIT_TEST_CMD)) {
  290. if (vif) {
  291. arvif = ath11k_vif_to_arvif(vif);
  292. *ptr = arvif->vdev_id;
  293. } else {
  294. ret = -EINVAL;
  295. goto out;
  296. }
  297. }
  298. ath11k_dbg(ar->ab, ATH11K_DBG_TESTMODE,
  299. "cmd wmi cmd_id %d buf length %d\n",
  300. cmd_id, buf_len);
  301. ath11k_dbg_dump(ar->ab, ATH11K_DBG_TESTMODE, NULL, "", buf, buf_len);
  302. skb = ath11k_wmi_alloc_skb(wmi->wmi_ab, buf_len);
  303. if (!skb) {
  304. ret = -ENOMEM;
  305. goto out;
  306. }
  307. memcpy(skb->data, buf, buf_len);
  308. ret = ath11k_wmi_cmd_send(wmi, skb, cmd_id);
  309. if (ret) {
  310. dev_kfree_skb(skb);
  311. ath11k_warn(ar->ab, "failed to transmit wmi command (testmode): %d\n",
  312. ret);
  313. goto out;
  314. }
  315. ret = 0;
  316. out:
  317. mutex_unlock(&ar->conf_mutex);
  318. return ret;
  319. }
  320. static int ath11k_tm_cmd_wmi_ftm(struct ath11k *ar, struct nlattr *tb[])
  321. {
  322. struct ath11k_pdev_wmi *wmi = ar->wmi;
  323. struct ath11k_base *ab = ar->ab;
  324. struct sk_buff *skb;
  325. u32 cmd_id, buf_len, hdr_info;
  326. int ret;
  327. void *buf;
  328. u8 segnumber = 0, seginfo;
  329. u16 chunk_len, total_bytes, num_segments;
  330. u8 *bufpos;
  331. struct wmi_ftm_cmd *ftm_cmd;
  332. set_bit(ATH11K_FLAG_FTM_SEGMENTED, &ab->dev_flags);
  333. mutex_lock(&ar->conf_mutex);
  334. if (ar->state != ATH11K_STATE_FTM) {
  335. ret = -ENETDOWN;
  336. goto out;
  337. }
  338. if (!tb[ATH_TM_ATTR_DATA]) {
  339. ret = -EINVAL;
  340. goto out;
  341. }
  342. buf = nla_data(tb[ATH_TM_ATTR_DATA]);
  343. buf_len = nla_len(tb[ATH_TM_ATTR_DATA]);
  344. cmd_id = WMI_PDEV_UTF_CMDID;
  345. ath11k_dbg(ar->ab, ATH11K_DBG_TESTMODE,
  346. "cmd wmi ftm cmd_id %d buffer length %d\n",
  347. cmd_id, buf_len);
  348. ath11k_dbg_dump(ar->ab, ATH11K_DBG_TESTMODE, NULL, "", buf, buf_len);
  349. bufpos = buf;
  350. total_bytes = buf_len;
  351. num_segments = total_bytes / MAX_WMI_UTF_LEN;
  352. if (buf_len - (num_segments * MAX_WMI_UTF_LEN))
  353. num_segments++;
  354. while (buf_len) {
  355. chunk_len = min_t(u16, buf_len, MAX_WMI_UTF_LEN);
  356. skb = ath11k_wmi_alloc_skb(wmi->wmi_ab, (chunk_len +
  357. sizeof(struct wmi_ftm_cmd)));
  358. if (!skb) {
  359. ret = -ENOMEM;
  360. goto out;
  361. }
  362. ftm_cmd = (struct wmi_ftm_cmd *)skb->data;
  363. hdr_info = FIELD_PREP(WMI_TLV_TAG, WMI_TAG_ARRAY_BYTE) |
  364. FIELD_PREP(WMI_TLV_LEN, (chunk_len +
  365. sizeof(struct wmi_ftm_seg_hdr)));
  366. ftm_cmd->tlv_header = hdr_info;
  367. ftm_cmd->seg_hdr.len = total_bytes;
  368. ftm_cmd->seg_hdr.msgref = ar->ftm_msgref;
  369. seginfo = FIELD_PREP(ATH11K_FTM_SEGHDR_TOTAL_SEGMENTS, num_segments) |
  370. FIELD_PREP(ATH11K_FTM_SEGHDR_CURRENT_SEQ, segnumber);
  371. ftm_cmd->seg_hdr.segmentinfo = seginfo;
  372. segnumber++;
  373. memcpy(&ftm_cmd->data, bufpos, chunk_len);
  374. ret = ath11k_wmi_cmd_send(wmi, skb, cmd_id);
  375. if (ret) {
  376. ath11k_warn(ar->ab, "failed to send wmi ftm command: %d\n", ret);
  377. goto out;
  378. }
  379. buf_len -= chunk_len;
  380. bufpos += chunk_len;
  381. }
  382. ar->ftm_msgref++;
  383. ret = 0;
  384. out:
  385. mutex_unlock(&ar->conf_mutex);
  386. return ret;
  387. }
  388. int ath11k_tm_cmd(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
  389. void *data, int len)
  390. {
  391. struct ath11k *ar = hw->priv;
  392. struct nlattr *tb[ATH_TM_ATTR_MAX + 1];
  393. int ret;
  394. ret = nla_parse(tb, ATH_TM_ATTR_MAX, data, len, ath11k_tm_policy,
  395. NULL);
  396. if (ret)
  397. return ret;
  398. if (!tb[ATH_TM_ATTR_CMD])
  399. return -EINVAL;
  400. switch (nla_get_u32(tb[ATH_TM_ATTR_CMD])) {
  401. case ATH_TM_CMD_GET_VERSION:
  402. return ath11k_tm_cmd_get_version(ar, tb);
  403. case ATH_TM_CMD_WMI:
  404. return ath11k_tm_cmd_wmi(ar, tb, vif);
  405. case ATH_TM_CMD_TESTMODE_START:
  406. return ath11k_tm_cmd_testmode_start(ar, tb);
  407. case ATH_TM_CMD_WMI_FTM:
  408. return ath11k_tm_cmd_wmi_ftm(ar, tb);
  409. default:
  410. return -EOPNOTSUPP;
  411. }
  412. }