2 * MediaTek Bluetooth USB Driver
4 * Copyright (C) 2013, MediaTek co.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19 * or on the worldwide web at
20 * http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
24 #include <linux/kernel.h>
25 #include <linux/module.h>
26 #include <linux/init.h>
27 #include <linux/slab.h>
28 #include <linux/types.h>
29 #include <linux/sched.h>
30 #include <linux/errno.h>
31 #include <linux/skbuff.h>
32 #include <linux/completion.h>
33 #include <linux/firmware.h>
34 #include <linux/usb.h>
35 #include <net/bluetooth/bluetooth.h>
36 #include <net/bluetooth/hci_core.h>
38 #include "btmtk_usb.h"
40 #define VERSION "1.0.4"
41 #define MT7650_FIRMWARE "mt7650.bin"
42 #define MT7662_FIRMWARE "mt7662.bin"
44 static struct usb_driver btmtk_usb_driver;
47 static int btmtk_usb_load_rom_patch(struct btmtk_usb_data *);
48 static int btmtk_usb_load_fw(struct btmtk_usb_data *);
50 static void hex_dump(char *str, u8 *src_buf, u32 src_buf_len)
57 BT_DBG("%s: %p, len = %d\n", str, src_buf, src_buf_len);
59 for (x = 0; x < src_buf_len; x++) {
61 BT_DBG("0x%04x : ", x);
62 BT_DBG("%02x ", ((unsigned char)pt[x]));
70 static int btmtk_usb_reset(struct usb_device *udev)
74 BT_DBG("%s\n", __func__);
76 ret = usb_control_msg(udev, usb_sndctrlpipe(udev, 0), 0x01,
77 DEVICE_VENDOR_REQUEST_OUT, 0x01, 0x00,
78 NULL, 0x00, CONTROL_TIMEOUT_JIFFIES);
81 BT_ERR("%s error(%d)\n", __func__, ret);
91 static int btmtk_usb_io_read32(struct btmtk_usb_data *data, u32 reg, u32 *val)
93 u8 request = data->r_request;
94 struct usb_device *udev = data->udev;
98 ret = usb_control_msg(udev, usb_rcvctrlpipe(udev, 0), request,
99 DEVICE_VENDOR_REQUEST_IN, 0x0, reg, data->io_buf,
100 4, CONTROL_TIMEOUT_JIFFIES);
104 BT_ERR("%s error(%d), reg=%x, value=%x\n",
105 __func__, ret, reg, *val);
109 memmove(&val_le, data->io_buf, 4);
111 *val = le32_to_cpu(val_le);
119 static int btmtk_usb_io_write32(struct btmtk_usb_data *data, u32 reg, u32 val)
122 u8 request = data->w_request;
123 struct usb_device *udev = data->udev;
127 value = val & 0x0000ffff;
129 ret = usb_control_msg(udev, usb_sndctrlpipe(udev, 0), request,
130 DEVICE_VENDOR_REQUEST_OUT, value, index,
131 NULL, 0, CONTROL_TIMEOUT_JIFFIES);
134 BT_ERR("%s error(%d), reg=%x, value=%x\n",
135 __func__, ret, reg, val);
139 index = (u16)(reg + 2);
140 value = (val & 0xffff0000) >> 16;
142 ret = usb_control_msg(udev, usb_sndctrlpipe(udev, 0),
143 request, DEVICE_VENDOR_REQUEST_OUT,
144 value, index, NULL, 0, CONTROL_TIMEOUT_JIFFIES);
147 BT_ERR("%s error(%d), reg=%x, value=%x\n",
148 __func__, ret, reg, val);
158 static int btmtk_usb_switch_iobase(struct btmtk_usb_data *data, int base)
164 data->w_request = 0x42;
165 data->r_request = 0x47;
168 data->w_request = 0x02;
169 data->r_request = 0x07;
179 static void btmtk_usb_cap_init(struct btmtk_usb_data *data)
181 const struct firmware *firmware;
182 struct usb_device *udev = data->udev;
185 btmtk_usb_io_read32(data, 0x00, &data->chip_id);
187 BT_DBG("chip id = %x\n", data->chip_id);
189 if (is_mt7630(data) || is_mt7650(data)) {
190 data->need_load_fw = 1;
191 data->need_load_rom_patch = 0;
192 ret = request_firmware(&firmware, MT7650_FIRMWARE, &udev->dev);
194 if (ret == -ENOENT) {
195 BT_ERR("Firmware file \"%s\" not found\n",
198 BT_ERR("Firmware file \"%s\" request failed (err=%d)\n",
199 MT7650_FIRMWARE, ret);
202 BT_DBG("Firmware file \"%s\" Found\n",
204 /* load firmware here */
205 data->firmware = firmware;
206 btmtk_usb_load_fw(data);
208 release_firmware(firmware);
209 } else if (is_mt7632(data) || is_mt7662(data)) {
210 data->need_load_fw = 0;
211 data->need_load_rom_patch = 1;
212 data->rom_patch_offset = 0x90000;
213 ret = request_firmware(&firmware, MT7662_FIRMWARE, &udev->dev);
215 if (ret == -ENOENT) {
216 BT_ERR("Firmware file \"%s\" not found\n",
219 BT_ERR("Firmware file \"%s\" request failed (err=%d)\n",
220 MT7662_FIRMWARE, ret);
223 BT_DBG("Firmware file \"%s\" Found\n", MT7662_FIRMWARE);
224 /* load rom patch here */
225 data->firmware = firmware;
226 data->rom_patch_len = firmware->size;
227 btmtk_usb_load_rom_patch(data);
229 release_firmware(firmware);
231 BT_ERR("unknow chip(%x)\n", data->chip_id);
235 static u16 checksume16(u8 *pData, int len)
240 sum += *((u16 *)pData);
244 if (sum & 0x80000000)
245 sum = (sum & 0xFFFF) + (sum >> 16);
251 sum += *((u8 *)pData);
254 sum = (sum & 0xFFFF) + (sum >> 16);
259 static int btmtk_usb_chk_crc(struct btmtk_usb_data *data, u32 checksum_len)
262 struct usb_device *udev = data->udev;
264 BT_DBG("%s\n", __func__);
266 memmove(data->io_buf, &data->rom_patch_offset, 4);
267 memmove(&data->io_buf[4], &checksum_len, 4);
269 ret = usb_control_msg(udev, usb_sndctrlpipe(udev, 0), 0x1,
270 DEVICE_VENDOR_REQUEST_IN, 0x20, 0x00, data->io_buf,
271 8, CONTROL_TIMEOUT_JIFFIES);
274 BT_ERR("%s error(%d)\n", __func__, ret);
279 static u16 btmtk_usb_get_crc(struct btmtk_usb_data *data)
282 struct usb_device *udev = data->udev;
286 BT_DBG("%s\n", __func__);
289 ret = usb_control_msg(udev, usb_rcvctrlpipe(udev, 0),
290 0x01, DEVICE_VENDOR_REQUEST_IN,
291 0x21, 0x00, data->io_buf, 2,
292 CONTROL_TIMEOUT_JIFFIES);
296 BT_ERR("%s error(%d)\n", __func__, ret);
299 memmove(&crc_le, data->io_buf, 2);
301 crc = le16_to_cpu(crc_le);
309 BT_ERR("Query CRC over %d times\n", count);
317 static int btmtk_usb_reset_wmt(struct btmtk_usb_data *data)
322 u8 cmd[8] = {0x6F, 0xFC, 0x05, 0x01, 0x07, 0x01, 0x00, 0x04};
324 memmove(data->io_buf, cmd, 8);
326 BT_DBG("%s\n", __func__);
328 ret = usb_control_msg(data->udev, usb_sndctrlpipe(data->udev, 0), 0x01,
329 DEVICE_CLASS_REQUEST_OUT, 0x12, 0x00,
330 data->io_buf, 8, CONTROL_TIMEOUT_JIFFIES);
333 BT_ERR("%s:(%d)\n", __func__, ret);
338 static void load_rom_patch_complete(struct urb *urb)
341 struct completion *sent_to_mcu_done = (struct completion *)urb->context;
343 complete(sent_to_mcu_done);
346 static int btmtk_usb_load_rom_patch(struct btmtk_usb_data *data)
351 int ret = 0, total_checksum = 0;
356 struct completion sent_to_mcu_done;
362 pipe = usb_sndbulkpipe(data->udev, data->bulk_tx_ep->bEndpointAddress);
364 if (!data->firmware) {
365 BT_ERR("%s:please assign a rom patch\n", __func__);
370 btmtk_usb_switch_iobase(data, WLAN);
371 btmtk_usb_io_read32(data, SEMAPHORE_03, &value);
374 if (((value & 0x01) == 0x00) && (loop < 600)) {
376 goto load_patch_protect;
379 btmtk_usb_io_write32(data, 0x1004, 0x2c);
381 btmtk_usb_switch_iobase(data, SYSCTL);
383 btmtk_usb_io_write32(data, 0x1c, 0x30);
385 /* Enable USB_DMA_CFG */
386 btmtk_usb_io_write32(data, 0x9018, 0x00c00020);
388 btmtk_usb_switch_iobase(data, WLAN);
390 /* check ROM patch if upgrade */
391 btmtk_usb_io_read32(data, COM_REG0, &value);
393 if ((value & 0x02) == 0x02)
396 urb = usb_alloc_urb(0, GFP_ATOMIC);
403 buf = usb_alloc_coherent(data->udev, UPLOAD_PATCH_UNIT,
404 GFP_ATOMIC, &data_dma);
412 BT_DBG("loading rom patch");
414 init_completion(&sent_to_mcu_done);
417 patch_len = data->rom_patch_len - PATCH_INFO_SIZE;
419 /* loading rom patch */
421 s32 sent_len_max = UPLOAD_PATCH_UNIT - PATCH_HEADER_SIZE;
422 sent_len = min_t(s32, (patch_len - cur_len), sent_len_max);
424 BT_DBG("patch_len = %d\n", patch_len);
425 BT_DBG("cur_len = %d\n", cur_len);
426 BT_DBG("sent_len = %d\n", sent_len);
431 if (first_block == 1) {
432 if (sent_len < sent_len_max)
433 phase = PATCH_PHASE3;
435 phase = PATCH_PHASE1;
437 } else if (sent_len == sent_len_max) {
438 phase = PATCH_PHASE2;
440 phase = PATCH_PHASE3;
443 /* prepare HCI header */
446 pos[2] = (sent_len + 5) & 0xFF;
447 pos[3] = ((sent_len + 5) >> 8) & 0xFF;
449 /* prepare WMT header */
452 pos[6] = (sent_len + 1) & 0xFF;
453 pos[7] = ((sent_len + 1) >> 8) & 0xFF;
458 data->firmware->data + PATCH_INFO_SIZE + cur_len,
461 BT_DBG("sent_len + PATCH_HEADER_SIZE = %d, phase = %d\n",
462 sent_len + PATCH_HEADER_SIZE, phase);
464 usb_fill_bulk_urb(urb,
468 sent_len + PATCH_HEADER_SIZE,
469 load_rom_patch_complete,
472 urb->transfer_dma = data_dma;
473 urb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
475 ret = usb_submit_urb(urb, GFP_ATOMIC);
480 if (!wait_for_completion_timeout(&sent_to_mcu_done,
481 msecs_to_jiffies(1000))) {
483 BT_ERR("upload rom_patch timeout\n");
495 total_checksum = checksume16(
496 (u8 *)data->firmware->data + PATCH_INFO_SIZE,
499 BT_DBG("Send checksum req..\n");
501 btmtk_usb_chk_crc(data, patch_len);
505 if (total_checksum != btmtk_usb_get_crc(data)) {
506 BT_ERR("checksum fail!, local(0x%x) <> fw(0x%x)\n",
507 total_checksum, btmtk_usb_get_crc(data));
514 ret = btmtk_usb_reset_wmt(data);
519 usb_free_coherent(data->udev, UPLOAD_PATCH_UNIT, buf, data_dma);
523 btmtk_usb_io_write32(data, SEMAPHORE_03, 0x1);
528 static int load_fw_iv(struct btmtk_usb_data *data)
531 struct usb_device *udev = data->udev;
532 char *buf = kmalloc(64, GFP_ATOMIC);
534 memmove(buf, data->firmware->data + 32, 64);
536 ret = usb_control_msg(udev, usb_sndctrlpipe(udev, 0), 0x01,
537 DEVICE_VENDOR_REQUEST_OUT, 0x12, 0x0, buf, 64,
538 CONTROL_TIMEOUT_JIFFIES);
541 BT_ERR("%s error(%d) step4\n", __func__, ret);
554 static void load_fw_complete(struct urb *urb)
557 struct completion *sent_to_mcu_done = (struct completion *)urb->context;
559 complete(sent_to_mcu_done);
562 static int btmtk_usb_load_fw(struct btmtk_usb_data *data)
564 struct usb_device *udev = data->udev;
568 u32 packet_header = 0;
569 __le32 packet_header_le;
571 u32 ilm_len = 0, dlm_len = 0;
572 u16 fw_ver, build_ver;
575 int ret = 0, sent_len;
576 struct completion sent_to_mcu_done;
578 pipe = usb_sndbulkpipe(data->udev, data->bulk_tx_ep->bEndpointAddress);
580 if (!data->firmware) {
581 BT_ERR("%s:please assign a fw\n", __func__);
585 BT_DBG("bulk_tx_ep = %x\n", data->bulk_tx_ep->bEndpointAddress);
588 btmtk_usb_switch_iobase(data, WLAN);
589 btmtk_usb_io_read32(data, SEMAPHORE_00, &value);
592 if (((value & 0x1) == 0) && (loop < 10000))
595 /* check MCU if ready */
596 btmtk_usb_io_read32(data, COM_REG0, &value);
598 if ((value & 0x01) == 0x01)
601 /* Enable MPDMA TX and EP2 load FW mode */
602 btmtk_usb_io_write32(data, 0x238, 0x1c000000);
604 btmtk_usb_reset(udev);
607 ilm_len = (*(data->firmware->data + 3) << 24)
608 | (*(data->firmware->data + 2) << 16)
609 | (*(data->firmware->data + 1) << 8)
610 | (*data->firmware->data);
612 dlm_len = (*(data->firmware->data + 7) << 24)
613 | (*(data->firmware->data + 6) << 16)
614 | (*(data->firmware->data + 5) << 8)
615 | (*(data->firmware->data + 4));
617 fw_ver = (*(data->firmware->data + 11) << 8) |
618 (*(data->firmware->data + 10));
620 build_ver = (*(data->firmware->data + 9) << 8) |
621 (*(data->firmware->data + 8));
623 BT_DBG("fw version:%d.%d.%02d ",
624 (fw_ver & 0xf000) >> 8,
625 (fw_ver & 0x0f00) >> 8,
628 BT_DBG("build:%x\n", build_ver);
630 BT_DBG("build Time =");
632 for (loop = 0; loop < 16; loop++)
633 BT_DBG("%c", *(data->firmware->data + 16 + loop));
637 BT_DBG("ILM length = %d(bytes)\n", ilm_len);
638 BT_DBG("DLM length = %d(bytes)\n", dlm_len);
640 btmtk_usb_switch_iobase(data, SYSCTL);
642 /* U2M_PDMA rx_ring_base_ptr */
643 btmtk_usb_io_write32(data, 0x790, 0x400230);
645 /* U2M_PDMA rx_ring_max_cnt */
646 btmtk_usb_io_write32(data, 0x794, 0x1);
648 /* U2M_PDMA cpu_idx */
649 btmtk_usb_io_write32(data, 0x798, 0x1);
651 /* U2M_PDMA enable */
652 btmtk_usb_io_write32(data, 0x704, 0x44);
654 urb = usb_alloc_urb(0, GFP_ATOMIC);
661 buf = usb_alloc_coherent(udev, 14592, GFP_ATOMIC, &data_dma);
668 BT_DBG("loading fw");
670 init_completion(&sent_to_mcu_done);
672 btmtk_usb_switch_iobase(data, SYSCTL);
678 sent_len = min_t(s32, (ilm_len - cur_len), 14336);
681 packet_header &= ~(0xffffffff);
682 packet_header |= (sent_len << 16);
683 packet_header_le = cpu_to_le32(packet_header);
685 memmove(buf, &packet_header_le, 4);
686 memmove(buf + 4, data->firmware->data + 32 + cur_len,
689 /* U2M_PDMA descriptor */
690 btmtk_usb_io_write32(data, 0x230, cur_len);
692 while ((sent_len % 4) != 0)
695 /* U2M_PDMA length */
696 btmtk_usb_io_write32(data, 0x234, sent_len << 16);
698 usb_fill_bulk_urb(urb,
706 urb->transfer_dma = data_dma;
707 urb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
709 ret = usb_submit_urb(urb, GFP_ATOMIC);
714 if (!wait_for_completion_timeout(&sent_to_mcu_done,
715 msecs_to_jiffies(1000))) {
717 BT_ERR("upload ilm fw timeout\n");
731 init_completion(&sent_to_mcu_done);
736 sent_len = min_t(s32, (dlm_len - cur_len), 14336);
741 packet_header &= ~(0xffffffff);
742 packet_header |= (sent_len << 16);
743 packet_header_le = cpu_to_le32(packet_header);
745 memmove(buf, &packet_header_le, 4);
747 data->firmware->data + 32 + ilm_len + cur_len,
750 /* U2M_PDMA descriptor */
751 btmtk_usb_io_write32(data, 0x230, 0x80000 + cur_len);
753 while ((sent_len % 4) != 0) {
754 BT_DBG("sent_len is not divided by 4\n");
758 /* U2M_PDMA length */
759 btmtk_usb_io_write32(data, 0x234, sent_len << 16);
761 usb_fill_bulk_urb(urb,
769 urb->transfer_dma = data_dma;
770 urb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
772 ret = usb_submit_urb(urb, GFP_ATOMIC);
777 if (!wait_for_completion_timeout(&sent_to_mcu_done,
778 msecs_to_jiffies(1000))) {
780 BT_ERR("upload dlm fw timeout\n");
792 /* upload 64bytes interrupt vector */
793 ret = load_fw_iv(data);
796 btmtk_usb_switch_iobase(data, WLAN);
798 /* check MCU if ready */
802 btmtk_usb_io_read32(data, COM_REG0, &value);
809 } while (loop <= 100);
812 BT_ERR("wait for 100 times\n");
817 usb_free_coherent(udev, 14592, buf, data_dma);
821 /* Disbale load fw mode */
822 btmtk_usb_io_read32(data, 0x238, &value);
823 value = value & ~(0x10000000);
824 btmtk_usb_io_write32(data, 0x238, value);
826 btmtk_usb_io_write32(data, SEMAPHORE_00, 0x1);
830 static int inc_tx(struct btmtk_usb_data *data)
835 spin_lock_irqsave(&data->txlock, flags);
836 rv = test_bit(BTUSB_SUSPENDING, &data->flags);
838 data->tx_in_flight++;
839 spin_unlock_irqrestore(&data->txlock, flags);
844 static void btmtk_usb_intr_complete(struct urb *urb)
846 struct hci_dev *hdev = urb->context;
847 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
850 BT_DBG("%s: %s urb %p status %d count %d\n", __func__, hdev->name,
851 urb, urb->status, urb->actual_length);
853 if (!test_bit(HCI_RUNNING, &hdev->flags))
856 if (urb->status == 0) {
857 hdev->stat.byte_rx += urb->actual_length;
859 hex_dump("hci event", urb->transfer_buffer, urb->actual_length);
861 if (hci_recv_fragment(hdev, HCI_EVENT_PKT,
862 urb->transfer_buffer,
863 urb->actual_length) < 0) {
864 BT_ERR("%s corrupted event packet", hdev->name);
869 if (!test_bit(BTUSB_INTR_RUNNING, &data->flags))
872 usb_mark_last_busy(data->udev);
873 usb_anchor_urb(urb, &data->intr_anchor);
875 err = usb_submit_urb(urb, GFP_ATOMIC);
878 /* -EPERM: urb is being killed;
879 * -ENODEV: device got disconnected */
880 if (err != -EPERM && err != -ENODEV)
881 BT_ERR("%s urb %p failed to resubmit (%d)",
882 hdev->name, urb, -err);
883 usb_unanchor_urb(urb);
887 static int btmtk_usb_submit_intr_urb(struct hci_dev *hdev, gfp_t mem_flags)
889 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
895 BT_DBG("%s\n", __func__);
900 urb = usb_alloc_urb(0, mem_flags);
904 size = le16_to_cpu(data->intr_ep->wMaxPacketSize);
906 buf = kmalloc(size, mem_flags);
912 pipe = usb_rcvintpipe(data->udev, data->intr_ep->bEndpointAddress);
914 usb_fill_int_urb(urb, data->udev, pipe, buf, size,
915 btmtk_usb_intr_complete, hdev,
916 data->intr_ep->bInterval);
918 urb->transfer_flags |= URB_FREE_BUFFER;
920 usb_anchor_urb(urb, &data->intr_anchor);
922 err = usb_submit_urb(urb, mem_flags);
924 if (err != -EPERM && err != -ENODEV)
925 BT_ERR("%s urb %p submission failed (%d)",
926 hdev->name, urb, -err);
927 usb_unanchor_urb(urb);
936 static void btmtk_usb_bulk_in_complete(struct urb *urb)
938 struct hci_dev *hdev = urb->context;
939 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
942 BT_DBG("%s:%s urb %p status %d count %d", __func__, hdev->name,
943 urb, urb->status, urb->actual_length);
945 if (!test_bit(HCI_RUNNING, &hdev->flags))
948 if (urb->status == 0) {
949 hdev->stat.byte_rx += urb->actual_length;
951 if (hci_recv_fragment(hdev, HCI_ACLDATA_PKT,
952 urb->transfer_buffer,
953 urb->actual_length) < 0) {
954 BT_ERR("%s corrupted ACL packet", hdev->name);
959 if (!test_bit(BTUSB_BULK_RUNNING, &data->flags))
962 usb_anchor_urb(urb, &data->bulk_anchor);
963 usb_mark_last_busy(data->udev);
965 err = usb_submit_urb(urb, GFP_ATOMIC);
967 /* -EPERM: urb is being killed;
968 * -ENODEV: device got disconnected */
969 if (err != -EPERM && err != -ENODEV)
970 BT_ERR("%s urb %p failed to resubmit (%d)",
971 hdev->name, urb, -err);
972 usb_unanchor_urb(urb);
976 static int btmtk_usb_submit_bulk_in_urb(struct hci_dev *hdev, gfp_t mem_flags)
978 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
982 int err, size = HCI_MAX_FRAME_SIZE;
984 BT_DBG("%s:%s\n", __func__, hdev->name);
986 if (!data->bulk_rx_ep)
989 urb = usb_alloc_urb(0, mem_flags);
993 buf = kmalloc(size, mem_flags);
999 pipe = usb_rcvbulkpipe(data->udev, data->bulk_rx_ep->bEndpointAddress);
1001 usb_fill_bulk_urb(urb, data->udev, pipe, buf, size,
1002 btmtk_usb_bulk_in_complete, hdev);
1004 urb->transfer_flags |= URB_FREE_BUFFER;
1006 usb_mark_last_busy(data->udev);
1007 usb_anchor_urb(urb, &data->bulk_anchor);
1009 err = usb_submit_urb(urb, mem_flags);
1011 if (err != -EPERM && err != -ENODEV)
1012 BT_ERR("%s urb %p submission failed (%d)",
1013 hdev->name, urb, -err);
1014 usb_unanchor_urb(urb);
1022 static void btmtk_usb_isoc_in_complete(struct urb *urb)
1025 struct hci_dev *hdev = urb->context;
1026 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1029 BT_DBG("%s: %s urb %p status %d count %d", __func__, hdev->name,
1030 urb, urb->status, urb->actual_length);
1032 if (!test_bit(HCI_RUNNING, &hdev->flags))
1035 if (urb->status == 0) {
1036 for (i = 0; i < urb->number_of_packets; i++) {
1037 unsigned int offset = urb->iso_frame_desc[i].offset;
1038 unsigned int length;
1039 length = urb->iso_frame_desc[i].actual_length;
1041 if (urb->iso_frame_desc[i].status)
1044 hdev->stat.byte_rx += length;
1046 if (hci_recv_fragment(hdev, HCI_SCODATA_PKT,
1047 urb->transfer_buffer + offset,
1049 BT_ERR("%s corrupted SCO packet", hdev->name);
1050 hdev->stat.err_rx++;
1055 if (!test_bit(BTUSB_ISOC_RUNNING, &data->flags))
1058 usb_anchor_urb(urb, &data->isoc_anchor);
1060 err = usb_submit_urb(urb, GFP_ATOMIC);
1062 /* -EPERM: urb is being killed;
1063 * -ENODEV: device got disconnected */
1064 if (err != -EPERM && err != -ENODEV)
1065 BT_ERR("%s urb %p failed to resubmit (%d)",
1066 hdev->name, urb, -err);
1067 usb_unanchor_urb(urb);
1071 static inline void __fill_isoc_descriptor(struct urb *urb, int len, int mtu)
1075 BT_DBG("len %d mtu %d", len, mtu);
1077 for (i = 0; i < BTUSB_MAX_ISOC_FRAMES && len >= mtu;
1078 i++, offset += mtu, len -= mtu) {
1079 urb->iso_frame_desc[i].offset = offset;
1080 urb->iso_frame_desc[i].length = mtu;
1083 if (len && i < BTUSB_MAX_ISOC_FRAMES) {
1084 urb->iso_frame_desc[i].offset = offset;
1085 urb->iso_frame_desc[i].length = len;
1089 urb->number_of_packets = i;
1092 static int btmtk_usb_submit_isoc_in_urb(struct hci_dev *hdev, gfp_t mem_flags)
1094 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1100 BT_DBG("%s\n", __func__);
1102 if (!data->isoc_rx_ep)
1105 urb = usb_alloc_urb(BTUSB_MAX_ISOC_FRAMES, mem_flags);
1109 size = le16_to_cpu(data->isoc_rx_ep->wMaxPacketSize) *
1110 BTUSB_MAX_ISOC_FRAMES;
1112 buf = kmalloc(size, mem_flags);
1118 pipe = usb_rcvisocpipe(data->udev, data->isoc_rx_ep->bEndpointAddress);
1120 usb_fill_int_urb(urb, data->udev, pipe, buf, size,
1121 btmtk_usb_isoc_in_complete, hdev,
1122 data->isoc_rx_ep->bInterval);
1124 urb->transfer_flags = URB_FREE_BUFFER | URB_ISO_ASAP;
1126 __fill_isoc_descriptor(urb, size,
1127 le16_to_cpu(data->isoc_rx_ep->wMaxPacketSize));
1129 usb_anchor_urb(urb, &data->isoc_anchor);
1131 err = usb_submit_urb(urb, mem_flags);
1133 if (err != -EPERM && err != -ENODEV)
1134 BT_ERR("%s urb %p submission failed (%d)",
1135 hdev->name, urb, -err);
1136 usb_unanchor_urb(urb);
1144 static int btmtk_usb_open(struct hci_dev *hdev)
1146 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1149 BT_DBG("%s\n", __func__);
1151 err = usb_autopm_get_interface(data->intf);
1155 data->intf->needs_remote_wakeup = 1;
1157 if (test_and_set_bit(HCI_RUNNING, &hdev->flags))
1160 if (test_and_set_bit(BTUSB_INTR_RUNNING, &data->flags))
1163 err = btmtk_usb_submit_intr_urb(hdev, GFP_KERNEL);
1167 err = btmtk_usb_submit_bulk_in_urb(hdev, GFP_KERNEL);
1169 usb_kill_anchored_urbs(&data->intr_anchor);
1173 set_bit(BTUSB_BULK_RUNNING, &data->flags);
1174 btmtk_usb_submit_bulk_in_urb(hdev, GFP_KERNEL);
1177 usb_autopm_put_interface(data->intf);
1181 clear_bit(BTUSB_INTR_RUNNING, &data->flags);
1182 clear_bit(HCI_RUNNING, &hdev->flags);
1183 usb_autopm_put_interface(data->intf);
1187 static void btmtk_usb_stop_traffic(struct btmtk_usb_data *data)
1189 BT_DBG("%s\n", __func__);
1191 usb_kill_anchored_urbs(&data->intr_anchor);
1192 usb_kill_anchored_urbs(&data->bulk_anchor);
1193 usb_kill_anchored_urbs(&data->isoc_anchor);
1196 static int btmtk_usb_close(struct hci_dev *hdev)
1198 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1201 BT_DBG("%s\n", __func__);
1203 if (!test_and_clear_bit(HCI_RUNNING, &hdev->flags))
1206 cancel_work_sync(&data->work);
1207 cancel_work_sync(&data->waker);
1209 clear_bit(BTUSB_ISOC_RUNNING, &data->flags);
1210 clear_bit(BTUSB_BULK_RUNNING, &data->flags);
1211 clear_bit(BTUSB_INTR_RUNNING, &data->flags);
1213 btmtk_usb_stop_traffic(data);
1215 err = usb_autopm_get_interface(data->intf);
1219 data->intf->needs_remote_wakeup = 0;
1220 usb_autopm_put_interface(data->intf);
1223 usb_scuttle_anchored_urbs(&data->deferred);
1227 static int btmtk_usb_flush(struct hci_dev *hdev)
1229 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1231 BT_DBG("%s\n", __func__);
1233 usb_kill_anchored_urbs(&data->tx_anchor);
1238 static void btmtk_usb_tx_complete(struct urb *urb)
1240 struct sk_buff *skb = urb->context;
1241 struct hci_dev *hdev = (struct hci_dev *)skb->dev;
1242 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1244 BT_DBG("%s: %s urb %p status %d count %d\n", __func__, hdev->name,
1245 urb, urb->status, urb->actual_length);
1247 if (!test_bit(HCI_RUNNING, &hdev->flags))
1251 hdev->stat.byte_tx += urb->transfer_buffer_length;
1253 hdev->stat.err_tx++;
1256 spin_lock(&data->txlock);
1257 data->tx_in_flight--;
1258 spin_unlock(&data->txlock);
1260 kfree(urb->setup_packet);
1265 static void btmtk_usb_isoc_tx_complete(struct urb *urb)
1267 struct sk_buff *skb = urb->context;
1268 struct hci_dev *hdev = (struct hci_dev *) skb->dev;
1270 BT_DBG("%s: %s urb %p status %d count %d", __func__, hdev->name,
1271 urb, urb->status, urb->actual_length);
1273 if (!test_bit(HCI_RUNNING, &hdev->flags))
1277 hdev->stat.byte_tx += urb->transfer_buffer_length;
1279 hdev->stat.err_tx++;
1282 kfree(urb->setup_packet);
1287 static int btmtk_usb_send_frame(struct hci_dev *hdev, struct sk_buff *skb)
1289 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1290 struct usb_ctrlrequest *dr;
1295 BT_DBG("%s\n", __func__);
1297 if (!test_bit(HCI_RUNNING, &hdev->flags))
1300 switch (bt_cb(skb)->pkt_type) {
1301 case HCI_COMMAND_PKT:
1302 urb = usb_alloc_urb(0, GFP_ATOMIC);
1306 dr = kmalloc(sizeof(*dr), GFP_ATOMIC);
1312 dr->bRequestType = data->cmdreq_type;
1316 dr->wLength = __cpu_to_le16(skb->len);
1318 pipe = usb_sndctrlpipe(data->udev, 0x00);
1320 if (test_bit(HCI_RUNNING, &hdev->flags)) {
1322 memcpy(&op_code, skb->data, 2);
1323 BT_DBG("ogf = %x\n", (op_code & 0xfc00) >> 10);
1324 BT_DBG("ocf = %x\n", op_code & 0x03ff);
1325 hex_dump("hci command", skb->data, skb->len);
1329 usb_fill_control_urb(urb, data->udev, pipe, (void *) dr,
1330 skb->data, skb->len,
1331 btmtk_usb_tx_complete, skb);
1333 hdev->stat.cmd_tx++;
1336 case HCI_ACLDATA_PKT:
1337 if (!data->bulk_tx_ep)
1340 urb = usb_alloc_urb(0, GFP_ATOMIC);
1344 pipe = usb_sndbulkpipe(data->udev,
1345 data->bulk_tx_ep->bEndpointAddress);
1347 usb_fill_bulk_urb(urb, data->udev, pipe, skb->data,
1348 skb->len, btmtk_usb_tx_complete, skb);
1350 hdev->stat.acl_tx++;
1351 BT_DBG("HCI_ACLDATA_PKT:\n");
1354 case HCI_SCODATA_PKT:
1355 if (!data->isoc_tx_ep || hdev->conn_hash.sco_num < 1)
1358 urb = usb_alloc_urb(BTUSB_MAX_ISOC_FRAMES, GFP_ATOMIC);
1362 pipe = usb_sndisocpipe(data->udev,
1363 data->isoc_tx_ep->bEndpointAddress);
1365 usb_fill_int_urb(urb, data->udev, pipe,
1366 skb->data, skb->len, btmtk_usb_isoc_tx_complete,
1367 skb, data->isoc_tx_ep->bInterval);
1369 urb->transfer_flags = URB_ISO_ASAP;
1371 __fill_isoc_descriptor(urb, skb->len,
1372 le16_to_cpu(data->isoc_tx_ep->wMaxPacketSize));
1374 hdev->stat.sco_tx++;
1375 BT_DBG("HCI_SCODATA_PKT:\n");
1385 usb_anchor_urb(urb, &data->deferred);
1386 schedule_work(&data->waker);
1392 usb_anchor_urb(urb, &data->tx_anchor);
1394 err = usb_submit_urb(urb, GFP_ATOMIC);
1396 if (err != -EPERM && err != -ENODEV)
1397 BT_ERR("%s urb %p submission failed (%d)",
1398 hdev->name, urb, -err);
1399 kfree(urb->setup_packet);
1400 usb_unanchor_urb(urb);
1402 usb_mark_last_busy(data->udev);
1410 static void btmtk_usb_notify(struct hci_dev *hdev, unsigned int evt)
1412 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1414 BT_DBG("%s evt %d", hdev->name, evt);
1416 if (hdev->conn_hash.sco_num != data->sco_num) {
1417 data->sco_num = hdev->conn_hash.sco_num;
1418 schedule_work(&data->work);
1422 static inline int __set_isoc_interface(struct hci_dev *hdev, int altsetting)
1424 struct btmtk_usb_data *data = hci_get_drvdata(hdev);
1425 struct usb_interface *intf = data->isoc;
1426 struct usb_endpoint_descriptor *ep_desc;
1432 err = usb_set_interface(data->udev, 1, altsetting);
1434 BT_ERR("%s setting interface failed (%d)", hdev->name, -err);
1438 data->isoc_altsetting = altsetting;
1440 data->isoc_tx_ep = NULL;
1441 data->isoc_rx_ep = NULL;
1443 for (i = 0; i < intf->cur_altsetting->desc.bNumEndpoints; i++) {
1444 ep_desc = &intf->cur_altsetting->endpoint[i].desc;
1446 if (!data->isoc_tx_ep && usb_endpoint_is_isoc_out(ep_desc)) {
1447 data->isoc_tx_ep = ep_desc;
1451 if (!data->isoc_rx_ep && usb_endpoint_is_isoc_in(ep_desc)) {
1452 data->isoc_rx_ep = ep_desc;
1457 if (!data->isoc_tx_ep || !data->isoc_rx_ep) {
1458 BT_ERR("%s invalid SCO descriptors", hdev->name);
1465 static void btmtk_usb_work(struct work_struct *work)
1467 struct btmtk_usb_data *data = container_of(work, struct btmtk_usb_data,
1469 struct hci_dev *hdev = data->hdev;
1473 BT_DBG("%s\n", __func__);
1475 if (hdev->conn_hash.sco_num > 0) {
1476 if (!test_bit(BTUSB_DID_ISO_RESUME, &data->flags)) {
1477 err = usb_autopm_get_interface(data->isoc ?
1478 data->isoc : data->intf);
1480 clear_bit(BTUSB_ISOC_RUNNING, &data->flags);
1481 usb_kill_anchored_urbs(&data->isoc_anchor);
1485 set_bit(BTUSB_DID_ISO_RESUME, &data->flags);
1488 if (hdev->voice_setting & 0x0020) {
1489 static const int alts[3] = { 2, 4, 5 };
1490 new_alts = alts[hdev->conn_hash.sco_num - 1];
1492 new_alts = hdev->conn_hash.sco_num;
1495 if (data->isoc_altsetting != new_alts) {
1496 clear_bit(BTUSB_ISOC_RUNNING, &data->flags);
1497 usb_kill_anchored_urbs(&data->isoc_anchor);
1499 if (__set_isoc_interface(hdev, new_alts) < 0)
1503 if (!test_and_set_bit(BTUSB_ISOC_RUNNING, &data->flags)) {
1504 if (btmtk_usb_submit_isoc_in_urb(hdev, GFP_KERNEL) < 0)
1505 clear_bit(BTUSB_ISOC_RUNNING, &data->flags);
1507 btmtk_usb_submit_isoc_in_urb(hdev, GFP_KERNEL);
1510 clear_bit(BTUSB_ISOC_RUNNING, &data->flags);
1511 usb_kill_anchored_urbs(&data->isoc_anchor);
1513 __set_isoc_interface(hdev, 0);
1515 if (test_and_clear_bit(BTUSB_DID_ISO_RESUME, &data->flags))
1516 usb_autopm_put_interface(data->isoc ?
1517 data->isoc : data->intf);
1521 static void btmtk_usb_waker(struct work_struct *work)
1523 struct btmtk_usb_data *data = container_of(work, struct btmtk_usb_data,
1527 err = usb_autopm_get_interface(data->intf);
1532 usb_autopm_put_interface(data->intf);
1535 static int btmtk_usb_probe(struct usb_interface *intf,
1536 const struct usb_device_id *id)
1538 struct btmtk_usb_data *data;
1539 struct usb_endpoint_descriptor *ep_desc;
1541 struct hci_dev *hdev;
1543 /* interface numbers are hardcoded in the spec */
1544 if (intf->cur_altsetting->desc.bInterfaceNumber != 0)
1547 data = kzalloc(sizeof(*data), GFP_KERNEL);
1552 for (i = 0; i < intf->cur_altsetting->desc.bNumEndpoints; i++) {
1553 ep_desc = &intf->cur_altsetting->endpoint[i].desc;
1555 if (!data->intr_ep && usb_endpoint_is_int_in(ep_desc)) {
1556 data->intr_ep = ep_desc;
1560 if (!data->bulk_tx_ep && usb_endpoint_is_bulk_out(ep_desc)) {
1561 data->bulk_tx_ep = ep_desc;
1565 if (!data->bulk_rx_ep && usb_endpoint_is_bulk_in(ep_desc)) {
1566 data->bulk_rx_ep = ep_desc;
1571 if (!data->intr_ep || !data->bulk_tx_ep || !data->bulk_rx_ep) {
1576 data->cmdreq_type = USB_TYPE_CLASS;
1578 data->udev = interface_to_usbdev(intf);
1581 spin_lock_init(&data->lock);
1582 INIT_WORK(&data->work, btmtk_usb_work);
1583 INIT_WORK(&data->waker, btmtk_usb_waker);
1584 spin_lock_init(&data->txlock);
1586 init_usb_anchor(&data->tx_anchor);
1587 init_usb_anchor(&data->intr_anchor);
1588 init_usb_anchor(&data->bulk_anchor);
1589 init_usb_anchor(&data->isoc_anchor);
1590 init_usb_anchor(&data->deferred);
1592 hdev = hci_alloc_dev();
1598 hdev->bus = HCI_USB;
1600 hci_set_drvdata(hdev, data);
1604 SET_HCIDEV_DEV(hdev, &intf->dev);
1606 hdev->open = btmtk_usb_open;
1607 hdev->close = btmtk_usb_close;
1608 hdev->flush = btmtk_usb_flush;
1609 hdev->send = btmtk_usb_send_frame;
1610 hdev->notify = btmtk_usb_notify;
1612 /* Interface numbers are hardcoded in the specification */
1613 data->isoc = usb_ifnum_to_if(data->udev, 1);
1616 err = usb_driver_claim_interface(&btmtk_usb_driver,
1625 data->io_buf = kmalloc(256, GFP_KERNEL);
1626 if (!data->io_buf) {
1632 btmtk_usb_switch_iobase(data, WLAN);
1634 btmtk_usb_cap_init(data);
1636 err = hci_register_dev(hdev);
1643 usb_set_intfdata(intf, data);
1648 static void btmtk_usb_disconnect(struct usb_interface *intf)
1650 struct btmtk_usb_data *data = usb_get_intfdata(intf);
1651 struct hci_dev *hdev;
1653 BT_DBG("%s\n", __func__);
1659 usb_set_intfdata(data->intf, NULL);
1662 usb_set_intfdata(data->isoc, NULL);
1664 hci_unregister_dev(hdev);
1666 if (intf == data->isoc)
1667 usb_driver_release_interface(&btmtk_usb_driver, data->intf);
1668 else if (data->isoc)
1669 usb_driver_release_interface(&btmtk_usb_driver, data->isoc);
1673 kfree(data->io_buf);
1679 static int btmtk_usb_suspend(struct usb_interface *intf, pm_message_t message)
1681 struct btmtk_usb_data *data = usb_get_intfdata(intf);
1683 BT_DBG("%s\n", __func__);
1685 if (data->suspend_count++)
1688 spin_lock_irq(&data->txlock);
1689 if (!(PMSG_IS_AUTO(message) && data->tx_in_flight)) {
1690 set_bit(BTUSB_SUSPENDING, &data->flags);
1691 spin_unlock_irq(&data->txlock);
1693 spin_unlock_irq(&data->txlock);
1694 data->suspend_count--;
1698 cancel_work_sync(&data->work);
1700 btmtk_usb_stop_traffic(data);
1701 usb_kill_anchored_urbs(&data->tx_anchor);
1706 static void play_deferred(struct btmtk_usb_data *data)
1711 while ((urb = usb_get_from_anchor(&data->deferred))) {
1712 err = usb_submit_urb(urb, GFP_ATOMIC);
1716 data->tx_in_flight++;
1719 usb_scuttle_anchored_urbs(&data->deferred);
1722 static int btmtk_usb_resume(struct usb_interface *intf)
1724 struct btmtk_usb_data *data = usb_get_intfdata(intf);
1725 struct hci_dev *hdev = data->hdev;
1728 BT_DBG("%s\n", __func__);
1730 if (--data->suspend_count)
1733 if (!test_bit(HCI_RUNNING, &hdev->flags))
1736 if (test_bit(BTUSB_INTR_RUNNING, &data->flags)) {
1737 err = btmtk_usb_submit_intr_urb(hdev, GFP_NOIO);
1739 clear_bit(BTUSB_INTR_RUNNING, &data->flags);
1744 if (test_bit(BTUSB_BULK_RUNNING, &data->flags)) {
1745 err = btmtk_usb_submit_bulk_in_urb(hdev, GFP_NOIO);
1747 clear_bit(BTUSB_BULK_RUNNING, &data->flags);
1751 btmtk_usb_submit_bulk_in_urb(hdev, GFP_NOIO);
1754 if (test_bit(BTUSB_ISOC_RUNNING, &data->flags)) {
1755 if (btmtk_usb_submit_isoc_in_urb(hdev, GFP_NOIO) < 0)
1756 clear_bit(BTUSB_ISOC_RUNNING, &data->flags);
1758 btmtk_usb_submit_isoc_in_urb(hdev, GFP_NOIO);
1761 spin_lock_irq(&data->txlock);
1762 play_deferred(data);
1763 clear_bit(BTUSB_SUSPENDING, &data->flags);
1764 spin_unlock_irq(&data->txlock);
1765 schedule_work(&data->work);
1770 usb_scuttle_anchored_urbs(&data->deferred);
1772 spin_lock_irq(&data->txlock);
1773 clear_bit(BTUSB_SUSPENDING, &data->flags);
1774 spin_unlock_irq(&data->txlock);
1780 static struct usb_device_id btmtk_usb_table[] = {
1781 /* Mediatek MT7650 */
1782 { USB_DEVICE(0x0e8d, 0x7650) },
1783 { USB_DEVICE(0x0e8d, 0x7630) },
1784 { USB_DEVICE(0x0e8d, 0x763e) },
1785 /* Mediatek MT662 */
1786 { USB_DEVICE(0x0e8d, 0x7662) },
1787 { USB_DEVICE(0x0e8d, 0x7632) },
1788 { } /* Terminating entry */
1791 static struct usb_driver btmtk_usb_driver = {
1792 .name = "btmtk_usb",
1793 .probe = btmtk_usb_probe,
1794 .disconnect = btmtk_usb_disconnect,
1796 .suspend = btmtk_usb_suspend,
1797 .resume = btmtk_usb_resume,
1799 .id_table = btmtk_usb_table,
1800 .supports_autosuspend = 1,
1801 .disable_hub_initiated_lpm = 1,
1804 module_usb_driver(btmtk_usb_driver);
1806 MODULE_DESCRIPTION("Mediatek Bluetooth USB driver ver " VERSION);
1807 MODULE_VERSION(VERSION);
1808 MODULE_LICENSE("GPL");
1809 MODULE_FIRMWARE(MT7650_FIRMWARE);
1810 MODULE_FIRMWARE(MT7662_FIRMWARE);
projects / linux-drm-fsl-dcu.git / blob