Commit | Line | Data |
---|---|---|
d646960f SO |
1 | /* |
2 | * Copyright (C) 2011 Intel Corporation. All rights reserved. | |
3 | * | |
4 | * This program is free software; you can redistribute it and/or modify | |
5 | * it under the terms of the GNU General Public License as published by | |
6 | * the Free Software Foundation; either version 2 of the License, or | |
7 | * (at your option) any later version. | |
8 | * | |
9 | * This program is distributed in the hope that it will be useful, | |
10 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
11 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
12 | * GNU General Public License for more details. | |
13 | * | |
14 | * You should have received a copy of the GNU General Public License | |
15 | * along with this program; if not, write to the | |
16 | * Free Software Foundation, Inc., | |
17 | * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. | |
18 | */ | |
19 | ||
20 | #define pr_fmt(fmt) "llcp: %s: " fmt, __func__ | |
21 | ||
22 | #include <linux/init.h> | |
23 | #include <linux/kernel.h> | |
24 | #include <linux/list.h> | |
25 | #include <linux/nfc.h> | |
26 | ||
27 | #include "../nfc.h" | |
28 | #include "llcp.h" | |
29 | ||
30 | static u8 llcp_magic[3] = {0x46, 0x66, 0x6d}; | |
31 | ||
32 | static struct list_head llcp_devices; | |
33 | ||
34 | static void nfc_llcp_socket_release(struct nfc_llcp_local *local) | |
35 | { | |
36 | struct nfc_llcp_sock *parent, *s, *n; | |
37 | struct sock *sk, *parent_sk; | |
38 | int i; | |
39 | ||
40 | ||
41 | mutex_lock(&local->socket_lock); | |
42 | ||
43 | for (i = 0; i < LLCP_MAX_SAP; i++) { | |
44 | parent = local->sockets[i]; | |
45 | if (parent == NULL) | |
46 | continue; | |
47 | ||
48 | /* Release all child sockets */ | |
49 | list_for_each_entry_safe(s, n, &parent->list, list) { | |
50 | list_del(&s->list); | |
51 | sk = &s->sk; | |
52 | ||
53 | lock_sock(sk); | |
54 | ||
55 | if (sk->sk_state == LLCP_CONNECTED) | |
56 | nfc_put_device(s->dev); | |
57 | ||
58 | sk->sk_state = LLCP_CLOSED; | |
59 | sock_set_flag(sk, SOCK_DEAD); | |
60 | ||
61 | release_sock(sk); | |
62 | } | |
63 | ||
64 | parent_sk = &parent->sk; | |
65 | ||
66 | lock_sock(parent_sk); | |
67 | ||
68 | if (parent_sk->sk_state == LLCP_LISTEN) { | |
69 | struct nfc_llcp_sock *lsk, *n; | |
70 | struct sock *accept_sk; | |
71 | ||
72 | list_for_each_entry_safe(lsk, n, &parent->accept_queue, | |
73 | accept_queue) { | |
74 | accept_sk = &lsk->sk; | |
75 | lock_sock(accept_sk); | |
76 | ||
77 | nfc_llcp_accept_unlink(accept_sk); | |
78 | ||
79 | accept_sk->sk_state = LLCP_CLOSED; | |
80 | sock_set_flag(accept_sk, SOCK_DEAD); | |
81 | ||
82 | release_sock(accept_sk); | |
83 | ||
84 | sock_orphan(accept_sk); | |
85 | } | |
86 | } | |
87 | ||
88 | if (parent_sk->sk_state == LLCP_CONNECTED) | |
89 | nfc_put_device(parent->dev); | |
90 | ||
91 | parent_sk->sk_state = LLCP_CLOSED; | |
92 | sock_set_flag(parent_sk, SOCK_DEAD); | |
93 | ||
94 | release_sock(parent_sk); | |
95 | } | |
96 | ||
97 | mutex_unlock(&local->socket_lock); | |
98 | } | |
99 | ||
b9a76f1d SO |
100 | static void nfc_llcp_clear_sdp(struct nfc_llcp_local *local) |
101 | { | |
102 | mutex_lock(&local->sdp_lock); | |
103 | ||
104 | local->local_wks = 0; | |
105 | local->local_sdp = 0; | |
106 | local->local_sap = 0; | |
107 | ||
108 | mutex_unlock(&local->sdp_lock); | |
109 | } | |
110 | ||
d646960f SO |
111 | static void nfc_llcp_timeout_work(struct work_struct *work) |
112 | { | |
113 | struct nfc_llcp_local *local = container_of(work, struct nfc_llcp_local, | |
114 | timeout_work); | |
115 | ||
116 | nfc_dep_link_down(local->dev); | |
117 | } | |
118 | ||
119 | static void nfc_llcp_symm_timer(unsigned long data) | |
120 | { | |
121 | struct nfc_llcp_local *local = (struct nfc_llcp_local *) data; | |
122 | ||
123 | pr_err("SYMM timeout\n"); | |
124 | ||
125 | queue_work(local->timeout_wq, &local->timeout_work); | |
126 | } | |
127 | ||
128 | struct nfc_llcp_local *nfc_llcp_find_local(struct nfc_dev *dev) | |
129 | { | |
130 | struct nfc_llcp_local *local, *n; | |
131 | ||
132 | list_for_each_entry_safe(local, n, &llcp_devices, list) | |
133 | if (local->dev == dev) | |
134 | return local; | |
135 | ||
136 | pr_debug("No device found\n"); | |
137 | ||
138 | return NULL; | |
139 | } | |
140 | ||
141 | static char *wks[] = { | |
142 | NULL, | |
143 | NULL, /* SDP */ | |
144 | "urn:nfc:sn:ip", | |
145 | "urn:nfc:sn:obex", | |
146 | "urn:nfc:sn:snep", | |
147 | }; | |
148 | ||
149 | static int nfc_llcp_wks_sap(char *service_name, size_t service_name_len) | |
150 | { | |
151 | int sap, num_wks; | |
152 | ||
153 | pr_debug("%s\n", service_name); | |
154 | ||
155 | if (service_name == NULL) | |
156 | return -EINVAL; | |
157 | ||
158 | num_wks = ARRAY_SIZE(wks); | |
159 | ||
160 | for (sap = 0 ; sap < num_wks; sap++) { | |
161 | if (wks[sap] == NULL) | |
162 | continue; | |
163 | ||
164 | if (strncmp(wks[sap], service_name, service_name_len) == 0) | |
165 | return sap; | |
166 | } | |
167 | ||
168 | return -EINVAL; | |
169 | } | |
170 | ||
171 | u8 nfc_llcp_get_sdp_ssap(struct nfc_llcp_local *local, | |
172 | struct nfc_llcp_sock *sock) | |
173 | { | |
174 | mutex_lock(&local->sdp_lock); | |
175 | ||
176 | if (sock->service_name != NULL && sock->service_name_len > 0) { | |
177 | int ssap = nfc_llcp_wks_sap(sock->service_name, | |
178 | sock->service_name_len); | |
179 | ||
180 | if (ssap > 0) { | |
181 | pr_debug("WKS %d\n", ssap); | |
182 | ||
183 | /* This is a WKS, let's check if it's free */ | |
184 | if (local->local_wks & BIT(ssap)) { | |
185 | mutex_unlock(&local->sdp_lock); | |
186 | ||
187 | return LLCP_SAP_MAX; | |
188 | } | |
189 | ||
1762c17c | 190 | set_bit(ssap, &local->local_wks); |
d646960f SO |
191 | mutex_unlock(&local->sdp_lock); |
192 | ||
193 | return ssap; | |
194 | } | |
195 | ||
196 | /* | |
197 | * This is not a well known service, | |
198 | * we should try to find a local SDP free spot | |
199 | */ | |
200 | ssap = find_first_zero_bit(&local->local_sdp, LLCP_SDP_NUM_SAP); | |
201 | if (ssap == LLCP_SDP_NUM_SAP) { | |
202 | mutex_unlock(&local->sdp_lock); | |
203 | ||
204 | return LLCP_SAP_MAX; | |
205 | } | |
206 | ||
207 | pr_debug("SDP ssap %d\n", LLCP_WKS_NUM_SAP + ssap); | |
208 | ||
1762c17c | 209 | set_bit(ssap, &local->local_sdp); |
d646960f SO |
210 | mutex_unlock(&local->sdp_lock); |
211 | ||
212 | return LLCP_WKS_NUM_SAP + ssap; | |
213 | ||
214 | } else if (sock->ssap != 0) { | |
215 | if (sock->ssap < LLCP_WKS_NUM_SAP) { | |
1762c17c SO |
216 | if (!test_bit(sock->ssap, &local->local_wks)) { |
217 | set_bit(sock->ssap, &local->local_wks); | |
d646960f SO |
218 | mutex_unlock(&local->sdp_lock); |
219 | ||
220 | return sock->ssap; | |
221 | } | |
222 | ||
223 | } else if (sock->ssap < LLCP_SDP_NUM_SAP) { | |
1762c17c SO |
224 | if (!test_bit(sock->ssap - LLCP_WKS_NUM_SAP, |
225 | &local->local_sdp)) { | |
226 | set_bit(sock->ssap - LLCP_WKS_NUM_SAP, | |
227 | &local->local_sdp); | |
d646960f SO |
228 | mutex_unlock(&local->sdp_lock); |
229 | ||
230 | return sock->ssap; | |
231 | } | |
232 | } | |
233 | } | |
234 | ||
235 | mutex_unlock(&local->sdp_lock); | |
236 | ||
237 | return LLCP_SAP_MAX; | |
238 | } | |
239 | ||
240 | u8 nfc_llcp_get_local_ssap(struct nfc_llcp_local *local) | |
241 | { | |
242 | u8 local_ssap; | |
243 | ||
244 | mutex_lock(&local->sdp_lock); | |
245 | ||
246 | local_ssap = find_first_zero_bit(&local->local_sap, LLCP_LOCAL_NUM_SAP); | |
247 | if (local_ssap == LLCP_LOCAL_NUM_SAP) { | |
248 | mutex_unlock(&local->sdp_lock); | |
249 | return LLCP_SAP_MAX; | |
250 | } | |
251 | ||
1762c17c | 252 | set_bit(local_ssap, &local->local_sap); |
d646960f SO |
253 | |
254 | mutex_unlock(&local->sdp_lock); | |
255 | ||
256 | return local_ssap + LLCP_LOCAL_SAP_OFFSET; | |
257 | } | |
258 | ||
259 | void nfc_llcp_put_ssap(struct nfc_llcp_local *local, u8 ssap) | |
260 | { | |
261 | u8 local_ssap; | |
262 | unsigned long *sdp; | |
263 | ||
264 | if (ssap < LLCP_WKS_NUM_SAP) { | |
265 | local_ssap = ssap; | |
266 | sdp = &local->local_wks; | |
267 | } else if (ssap < LLCP_LOCAL_NUM_SAP) { | |
268 | local_ssap = ssap - LLCP_WKS_NUM_SAP; | |
269 | sdp = &local->local_sdp; | |
270 | } else if (ssap < LLCP_MAX_SAP) { | |
271 | local_ssap = ssap - LLCP_LOCAL_NUM_SAP; | |
272 | sdp = &local->local_sap; | |
273 | } else { | |
274 | return; | |
275 | } | |
276 | ||
277 | mutex_lock(&local->sdp_lock); | |
278 | ||
1762c17c | 279 | clear_bit(local_ssap, sdp); |
d646960f SO |
280 | |
281 | mutex_unlock(&local->sdp_lock); | |
282 | } | |
283 | ||
47807d3d | 284 | u8 *nfc_llcp_general_bytes(struct nfc_dev *dev, size_t *general_bytes_len) |
d646960f SO |
285 | { |
286 | struct nfc_llcp_local *local; | |
287 | ||
288 | local = nfc_llcp_find_local(dev); | |
289 | if (local == NULL) { | |
290 | *general_bytes_len = 0; | |
291 | return NULL; | |
292 | } | |
293 | ||
294 | *general_bytes_len = local->gb_len; | |
295 | ||
296 | return local->gb; | |
297 | } | |
298 | ||
299 | static int nfc_llcp_build_gb(struct nfc_llcp_local *local) | |
300 | { | |
301 | u8 *gb_cur, *version_tlv, version, version_length; | |
302 | u8 *lto_tlv, lto, lto_length; | |
303 | u8 *wks_tlv, wks_length; | |
304 | u8 gb_len = 0; | |
305 | ||
306 | version = LLCP_VERSION_11; | |
307 | version_tlv = nfc_llcp_build_tlv(LLCP_TLV_VERSION, &version, | |
308 | 1, &version_length); | |
309 | gb_len += version_length; | |
310 | ||
311 | /* 1500 ms */ | |
312 | lto = 150; | |
313 | lto_tlv = nfc_llcp_build_tlv(LLCP_TLV_VERSION, <o, 1, <o_length); | |
314 | gb_len += lto_length; | |
315 | ||
316 | pr_debug("Local wks 0x%lx\n", local->local_wks); | |
317 | wks_tlv = nfc_llcp_build_tlv(LLCP_TLV_WKS, (u8 *)&local->local_wks, 2, | |
318 | &wks_length); | |
319 | gb_len += wks_length; | |
320 | ||
321 | gb_len += ARRAY_SIZE(llcp_magic); | |
322 | ||
323 | if (gb_len > NFC_MAX_GT_LEN) { | |
324 | kfree(version_tlv); | |
325 | return -EINVAL; | |
326 | } | |
327 | ||
328 | gb_cur = local->gb; | |
329 | ||
330 | memcpy(gb_cur, llcp_magic, ARRAY_SIZE(llcp_magic)); | |
331 | gb_cur += ARRAY_SIZE(llcp_magic); | |
332 | ||
333 | memcpy(gb_cur, version_tlv, version_length); | |
334 | gb_cur += version_length; | |
335 | ||
336 | memcpy(gb_cur, lto_tlv, lto_length); | |
337 | gb_cur += lto_length; | |
338 | ||
339 | memcpy(gb_cur, wks_tlv, wks_length); | |
340 | gb_cur += wks_length; | |
341 | ||
342 | kfree(version_tlv); | |
343 | kfree(lto_tlv); | |
344 | ||
345 | local->gb_len = gb_len; | |
346 | ||
347 | return 0; | |
348 | } | |
349 | ||
350 | int nfc_llcp_set_remote_gb(struct nfc_dev *dev, u8 *gb, u8 gb_len) | |
351 | { | |
352 | struct nfc_llcp_local *local = nfc_llcp_find_local(dev); | |
353 | ||
354 | if (local == NULL) { | |
355 | pr_err("No LLCP device\n"); | |
356 | return -ENODEV; | |
357 | } | |
358 | ||
359 | memset(local->remote_gb, 0, NFC_MAX_GT_LEN); | |
360 | memcpy(local->remote_gb, gb, gb_len); | |
361 | local->remote_gb_len = gb_len; | |
362 | ||
363 | if (local->remote_gb == NULL || | |
364 | local->remote_gb_len == 0) | |
365 | return -ENODEV; | |
366 | ||
367 | if (memcmp(local->remote_gb, llcp_magic, 3)) { | |
368 | pr_err("MAC does not support LLCP\n"); | |
369 | return -EINVAL; | |
370 | } | |
371 | ||
372 | return nfc_llcp_parse_tlv(local, | |
373 | &local->remote_gb[3], local->remote_gb_len - 3); | |
374 | } | |
375 | ||
376 | static void nfc_llcp_tx_work(struct work_struct *work) | |
377 | { | |
378 | struct nfc_llcp_local *local = container_of(work, struct nfc_llcp_local, | |
379 | tx_work); | |
380 | struct sk_buff *skb; | |
381 | ||
382 | skb = skb_dequeue(&local->tx_queue); | |
383 | if (skb != NULL) { | |
384 | pr_debug("Sending pending skb\n"); | |
385 | nfc_data_exchange(local->dev, local->target_idx, | |
386 | skb, nfc_llcp_recv, local); | |
387 | } else { | |
388 | nfc_llcp_send_symm(local->dev); | |
389 | } | |
390 | ||
391 | mod_timer(&local->link_timer, | |
392 | jiffies + msecs_to_jiffies(local->remote_lto)); | |
393 | } | |
394 | ||
395 | static u8 nfc_llcp_dsap(struct sk_buff *pdu) | |
396 | { | |
397 | return (pdu->data[0] & 0xfc) >> 2; | |
398 | } | |
399 | ||
400 | static u8 nfc_llcp_ptype(struct sk_buff *pdu) | |
401 | { | |
402 | return ((pdu->data[0] & 0x03) << 2) | ((pdu->data[1] & 0xc0) >> 6); | |
403 | } | |
404 | ||
405 | static u8 nfc_llcp_ssap(struct sk_buff *pdu) | |
406 | { | |
407 | return pdu->data[1] & 0x3f; | |
408 | } | |
409 | ||
410 | static u8 nfc_llcp_ns(struct sk_buff *pdu) | |
411 | { | |
412 | return pdu->data[2] >> 4; | |
413 | } | |
414 | ||
415 | static u8 nfc_llcp_nr(struct sk_buff *pdu) | |
416 | { | |
417 | return pdu->data[2] & 0xf; | |
418 | } | |
419 | ||
420 | static void nfc_llcp_set_nrns(struct nfc_llcp_sock *sock, struct sk_buff *pdu) | |
421 | { | |
0767a7fa | 422 | pdu->data[2] = (sock->send_n << 4) | (sock->recv_n % 16); |
d646960f SO |
423 | sock->send_n = (sock->send_n + 1) % 16; |
424 | sock->recv_ack_n = (sock->recv_n - 1) % 16; | |
425 | } | |
426 | ||
427 | static struct nfc_llcp_sock *nfc_llcp_sock_get(struct nfc_llcp_local *local, | |
428 | u8 ssap, u8 dsap) | |
429 | { | |
430 | struct nfc_llcp_sock *sock, *llcp_sock, *n; | |
431 | ||
432 | if (ssap == 0 && dsap == 0) | |
433 | return NULL; | |
434 | ||
435 | mutex_lock(&local->socket_lock); | |
436 | sock = local->sockets[ssap]; | |
437 | if (sock == NULL) { | |
438 | mutex_unlock(&local->socket_lock); | |
439 | return NULL; | |
440 | } | |
441 | ||
442 | pr_debug("root dsap %d (%d)\n", sock->dsap, dsap); | |
443 | ||
444 | if (sock->dsap == dsap) { | |
445 | sock_hold(&sock->sk); | |
446 | mutex_unlock(&local->socket_lock); | |
447 | return sock; | |
448 | } | |
449 | ||
450 | list_for_each_entry_safe(llcp_sock, n, &sock->list, list) { | |
451 | pr_debug("llcp_sock %p sk %p dsap %d\n", llcp_sock, | |
452 | &llcp_sock->sk, llcp_sock->dsap); | |
453 | if (llcp_sock->dsap == dsap) { | |
454 | sock_hold(&llcp_sock->sk); | |
455 | mutex_unlock(&local->socket_lock); | |
456 | return llcp_sock; | |
457 | } | |
458 | } | |
459 | ||
460 | pr_err("Could not find socket for %d %d\n", ssap, dsap); | |
461 | ||
462 | mutex_unlock(&local->socket_lock); | |
463 | ||
464 | return NULL; | |
465 | } | |
466 | ||
467 | static void nfc_llcp_sock_put(struct nfc_llcp_sock *sock) | |
468 | { | |
469 | sock_put(&sock->sk); | |
470 | } | |
471 | ||
472 | static u8 *nfc_llcp_connect_sn(struct sk_buff *skb, size_t *sn_len) | |
473 | { | |
474 | u8 *tlv = &skb->data[2], type, length; | |
475 | size_t tlv_array_len = skb->len - LLCP_HEADER_SIZE, offset = 0; | |
476 | ||
477 | while (offset < tlv_array_len) { | |
478 | type = tlv[0]; | |
479 | length = tlv[1]; | |
480 | ||
481 | pr_debug("type 0x%x length %d\n", type, length); | |
482 | ||
483 | if (type == LLCP_TLV_SN) { | |
484 | *sn_len = length; | |
485 | return &tlv[2]; | |
486 | } | |
487 | ||
488 | offset += length + 2; | |
489 | tlv += length + 2; | |
490 | } | |
491 | ||
492 | return NULL; | |
493 | } | |
494 | ||
495 | static void nfc_llcp_recv_connect(struct nfc_llcp_local *local, | |
496 | struct sk_buff *skb) | |
497 | { | |
498 | struct sock *new_sk, *parent; | |
499 | struct nfc_llcp_sock *sock, *new_sock; | |
500 | u8 dsap, ssap, bound_sap, reason; | |
501 | ||
502 | dsap = nfc_llcp_dsap(skb); | |
503 | ssap = nfc_llcp_ssap(skb); | |
504 | ||
505 | pr_debug("%d %d\n", dsap, ssap); | |
506 | ||
507 | nfc_llcp_parse_tlv(local, &skb->data[LLCP_HEADER_SIZE], | |
508 | skb->len - LLCP_HEADER_SIZE); | |
509 | ||
510 | if (dsap != LLCP_SAP_SDP) { | |
511 | bound_sap = dsap; | |
512 | ||
513 | mutex_lock(&local->socket_lock); | |
514 | sock = local->sockets[dsap]; | |
515 | if (sock == NULL) { | |
516 | mutex_unlock(&local->socket_lock); | |
517 | reason = LLCP_DM_NOBOUND; | |
518 | goto fail; | |
519 | } | |
520 | ||
521 | sock_hold(&sock->sk); | |
522 | mutex_unlock(&local->socket_lock); | |
523 | ||
524 | lock_sock(&sock->sk); | |
525 | ||
526 | if (sock->dsap == LLCP_SAP_SDP && | |
527 | sock->sk.sk_state == LLCP_LISTEN) | |
528 | goto enqueue; | |
529 | } else { | |
530 | u8 *sn; | |
531 | size_t sn_len; | |
532 | ||
533 | sn = nfc_llcp_connect_sn(skb, &sn_len); | |
534 | if (sn == NULL) { | |
535 | reason = LLCP_DM_NOBOUND; | |
536 | goto fail; | |
537 | } | |
538 | ||
539 | pr_debug("Service name length %zu\n", sn_len); | |
540 | ||
541 | mutex_lock(&local->socket_lock); | |
542 | for (bound_sap = 0; bound_sap < LLCP_LOCAL_SAP_OFFSET; | |
543 | bound_sap++) { | |
544 | sock = local->sockets[bound_sap]; | |
545 | if (sock == NULL) | |
546 | continue; | |
547 | ||
548 | if (sock->service_name == NULL || | |
549 | sock->service_name_len == 0) | |
550 | continue; | |
551 | ||
552 | if (sock->service_name_len != sn_len) | |
553 | continue; | |
554 | ||
555 | if (sock->dsap == LLCP_SAP_SDP && | |
556 | sock->sk.sk_state == LLCP_LISTEN && | |
557 | !memcmp(sn, sock->service_name, sn_len)) { | |
558 | pr_debug("Found service name at SAP %d\n", | |
559 | bound_sap); | |
560 | sock_hold(&sock->sk); | |
561 | mutex_unlock(&local->socket_lock); | |
562 | ||
563 | lock_sock(&sock->sk); | |
564 | ||
565 | goto enqueue; | |
566 | } | |
567 | } | |
341ee434 | 568 | mutex_unlock(&local->socket_lock); |
d646960f SO |
569 | } |
570 | ||
d646960f SO |
571 | reason = LLCP_DM_NOBOUND; |
572 | goto fail; | |
573 | ||
574 | enqueue: | |
575 | parent = &sock->sk; | |
576 | ||
577 | if (sk_acceptq_is_full(parent)) { | |
578 | reason = LLCP_DM_REJ; | |
579 | release_sock(&sock->sk); | |
580 | sock_put(&sock->sk); | |
581 | goto fail; | |
582 | } | |
583 | ||
584 | new_sk = nfc_llcp_sock_alloc(NULL, parent->sk_type, | |
585 | GFP_ATOMIC); | |
586 | if (new_sk == NULL) { | |
587 | reason = LLCP_DM_REJ; | |
588 | release_sock(&sock->sk); | |
589 | sock_put(&sock->sk); | |
590 | goto fail; | |
591 | } | |
592 | ||
593 | new_sock = nfc_llcp_sock(new_sk); | |
594 | new_sock->dev = local->dev; | |
595 | new_sock->local = local; | |
596 | new_sock->nfc_protocol = sock->nfc_protocol; | |
597 | new_sock->ssap = bound_sap; | |
598 | new_sock->dsap = ssap; | |
599 | new_sock->parent = parent; | |
600 | ||
601 | pr_debug("new sock %p sk %p\n", new_sock, &new_sock->sk); | |
602 | ||
603 | list_add_tail(&new_sock->list, &sock->list); | |
604 | ||
605 | nfc_llcp_accept_enqueue(&sock->sk, new_sk); | |
606 | ||
607 | nfc_get_device(local->dev->idx); | |
608 | ||
609 | new_sk->sk_state = LLCP_CONNECTED; | |
610 | ||
611 | /* Wake the listening processes */ | |
612 | parent->sk_data_ready(parent, 0); | |
613 | ||
614 | /* Send CC */ | |
615 | nfc_llcp_send_cc(new_sock); | |
616 | ||
617 | release_sock(&sock->sk); | |
618 | sock_put(&sock->sk); | |
619 | ||
620 | return; | |
621 | ||
622 | fail: | |
623 | /* Send DM */ | |
624 | nfc_llcp_send_dm(local, dsap, ssap, reason); | |
625 | ||
626 | return; | |
627 | ||
628 | } | |
629 | ||
d094afa1 | 630 | int nfc_llcp_queue_i_frames(struct nfc_llcp_sock *sock) |
4722d2b7 | 631 | { |
d094afa1 | 632 | int nr_frames = 0; |
4722d2b7 SO |
633 | struct nfc_llcp_local *local = sock->local; |
634 | ||
635 | pr_debug("Remote ready %d tx queue len %d remote rw %d", | |
636 | sock->remote_ready, skb_queue_len(&sock->tx_pending_queue), | |
637 | local->remote_rw); | |
638 | ||
639 | /* Try to queue some I frames for transmission */ | |
640 | while (sock->remote_ready && | |
641 | skb_queue_len(&sock->tx_pending_queue) < local->remote_rw) { | |
642 | struct sk_buff *pdu, *pending_pdu; | |
643 | ||
644 | pdu = skb_dequeue(&sock->tx_queue); | |
645 | if (pdu == NULL) | |
646 | break; | |
647 | ||
648 | /* Update N(S)/N(R) */ | |
649 | nfc_llcp_set_nrns(sock, pdu); | |
650 | ||
651 | pending_pdu = skb_clone(pdu, GFP_KERNEL); | |
652 | ||
653 | skb_queue_tail(&local->tx_queue, pdu); | |
654 | skb_queue_tail(&sock->tx_pending_queue, pending_pdu); | |
d094afa1 | 655 | nr_frames++; |
4722d2b7 | 656 | } |
d094afa1 SO |
657 | |
658 | return nr_frames; | |
4722d2b7 SO |
659 | } |
660 | ||
d646960f SO |
661 | static void nfc_llcp_recv_hdlc(struct nfc_llcp_local *local, |
662 | struct sk_buff *skb) | |
663 | { | |
664 | struct nfc_llcp_sock *llcp_sock; | |
665 | struct sock *sk; | |
666 | u8 dsap, ssap, ptype, ns, nr; | |
667 | ||
668 | ptype = nfc_llcp_ptype(skb); | |
669 | dsap = nfc_llcp_dsap(skb); | |
670 | ssap = nfc_llcp_ssap(skb); | |
671 | ns = nfc_llcp_ns(skb); | |
672 | nr = nfc_llcp_nr(skb); | |
673 | ||
674 | pr_debug("%d %d R %d S %d\n", dsap, ssap, nr, ns); | |
675 | ||
676 | llcp_sock = nfc_llcp_sock_get(local, dsap, ssap); | |
677 | if (llcp_sock == NULL) { | |
678 | nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_NOCONN); | |
679 | return; | |
680 | } | |
681 | ||
682 | sk = &llcp_sock->sk; | |
683 | lock_sock(sk); | |
684 | if (sk->sk_state == LLCP_CLOSED) { | |
685 | release_sock(sk); | |
686 | nfc_llcp_sock_put(llcp_sock); | |
687 | } | |
688 | ||
d646960f SO |
689 | /* Pass the payload upstream */ |
690 | if (ptype == LLCP_PDU_I) { | |
691 | pr_debug("I frame, queueing on %p\n", &llcp_sock->sk); | |
692 | ||
53aef920 SO |
693 | if (ns == llcp_sock->recv_n) |
694 | llcp_sock->recv_n = (llcp_sock->recv_n + 1) % 16; | |
695 | else | |
696 | pr_err("Received out of sequence I PDU\n"); | |
697 | ||
d646960f SO |
698 | skb_pull(skb, LLCP_HEADER_SIZE + LLCP_SEQUENCE_SIZE); |
699 | if (sock_queue_rcv_skb(&llcp_sock->sk, skb)) { | |
700 | pr_err("receive queue is full\n"); | |
701 | skb_queue_head(&llcp_sock->tx_backlog_queue, skb); | |
702 | } | |
703 | } | |
704 | ||
705 | /* Remove skbs from the pending queue */ | |
706 | if (llcp_sock->send_ack_n != nr) { | |
707 | struct sk_buff *s, *tmp; | |
708 | ||
709 | llcp_sock->send_ack_n = nr; | |
710 | ||
711 | skb_queue_walk_safe(&llcp_sock->tx_pending_queue, s, tmp) | |
712 | if (nfc_llcp_ns(s) <= nr) { | |
713 | skb_unlink(s, &llcp_sock->tx_pending_queue); | |
714 | kfree_skb(s); | |
715 | } | |
716 | } | |
717 | ||
53aef920 SO |
718 | if (ptype == LLCP_PDU_RR) |
719 | llcp_sock->remote_ready = true; | |
720 | else if (ptype == LLCP_PDU_RNR) | |
721 | llcp_sock->remote_ready = false; | |
722 | ||
d094afa1 SO |
723 | if (nfc_llcp_queue_i_frames(llcp_sock) == 0) |
724 | nfc_llcp_send_rr(llcp_sock); | |
d646960f SO |
725 | |
726 | release_sock(sk); | |
727 | nfc_llcp_sock_put(llcp_sock); | |
728 | } | |
729 | ||
730 | static void nfc_llcp_recv_disc(struct nfc_llcp_local *local, | |
731 | struct sk_buff *skb) | |
732 | { | |
733 | struct nfc_llcp_sock *llcp_sock; | |
734 | struct sock *sk; | |
735 | u8 dsap, ssap; | |
736 | ||
737 | dsap = nfc_llcp_dsap(skb); | |
738 | ssap = nfc_llcp_ssap(skb); | |
739 | ||
740 | llcp_sock = nfc_llcp_sock_get(local, dsap, ssap); | |
741 | if (llcp_sock == NULL) { | |
742 | nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_NOCONN); | |
743 | return; | |
744 | } | |
745 | ||
746 | sk = &llcp_sock->sk; | |
747 | lock_sock(sk); | |
748 | if (sk->sk_state == LLCP_CLOSED) { | |
749 | release_sock(sk); | |
750 | nfc_llcp_sock_put(llcp_sock); | |
751 | } | |
752 | ||
753 | ||
754 | if (sk->sk_state == LLCP_CONNECTED) { | |
755 | nfc_put_device(local->dev); | |
756 | sk->sk_state = LLCP_CLOSED; | |
757 | sk->sk_state_change(sk); | |
758 | } | |
759 | ||
760 | nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_DISC); | |
761 | ||
762 | release_sock(sk); | |
763 | nfc_llcp_sock_put(llcp_sock); | |
764 | } | |
765 | ||
766 | static void nfc_llcp_recv_cc(struct nfc_llcp_local *local, | |
767 | struct sk_buff *skb) | |
768 | { | |
769 | struct nfc_llcp_sock *llcp_sock; | |
770 | u8 dsap, ssap; | |
771 | ||
772 | ||
773 | dsap = nfc_llcp_dsap(skb); | |
774 | ssap = nfc_llcp_ssap(skb); | |
775 | ||
776 | llcp_sock = nfc_llcp_sock_get(local, dsap, ssap); | |
777 | ||
778 | if (llcp_sock == NULL) | |
779 | llcp_sock = nfc_llcp_sock_get(local, dsap, LLCP_SAP_SDP); | |
780 | ||
781 | if (llcp_sock == NULL) { | |
782 | pr_err("Invalid CC\n"); | |
783 | nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_NOCONN); | |
784 | ||
785 | return; | |
786 | } | |
787 | ||
788 | llcp_sock->dsap = ssap; | |
789 | ||
790 | nfc_llcp_parse_tlv(local, &skb->data[LLCP_HEADER_SIZE], | |
791 | skb->len - LLCP_HEADER_SIZE); | |
792 | ||
793 | nfc_llcp_sock_put(llcp_sock); | |
794 | } | |
795 | ||
796 | static void nfc_llcp_rx_work(struct work_struct *work) | |
797 | { | |
798 | struct nfc_llcp_local *local = container_of(work, struct nfc_llcp_local, | |
799 | rx_work); | |
800 | u8 dsap, ssap, ptype; | |
801 | struct sk_buff *skb; | |
802 | ||
803 | skb = local->rx_pending; | |
804 | if (skb == NULL) { | |
805 | pr_debug("No pending SKB\n"); | |
806 | return; | |
807 | } | |
808 | ||
809 | ptype = nfc_llcp_ptype(skb); | |
810 | dsap = nfc_llcp_dsap(skb); | |
811 | ssap = nfc_llcp_ssap(skb); | |
812 | ||
813 | pr_debug("ptype 0x%x dsap 0x%x ssap 0x%x\n", ptype, dsap, ssap); | |
814 | ||
815 | switch (ptype) { | |
816 | case LLCP_PDU_SYMM: | |
817 | pr_debug("SYMM\n"); | |
818 | break; | |
819 | ||
820 | case LLCP_PDU_CONNECT: | |
821 | pr_debug("CONNECT\n"); | |
822 | nfc_llcp_recv_connect(local, skb); | |
823 | break; | |
824 | ||
825 | case LLCP_PDU_DISC: | |
826 | pr_debug("DISC\n"); | |
827 | nfc_llcp_recv_disc(local, skb); | |
828 | break; | |
829 | ||
830 | case LLCP_PDU_CC: | |
831 | pr_debug("CC\n"); | |
832 | nfc_llcp_recv_cc(local, skb); | |
833 | break; | |
834 | ||
835 | case LLCP_PDU_I: | |
836 | case LLCP_PDU_RR: | |
53aef920 | 837 | case LLCP_PDU_RNR: |
d646960f SO |
838 | pr_debug("I frame\n"); |
839 | nfc_llcp_recv_hdlc(local, skb); | |
840 | break; | |
841 | ||
842 | } | |
843 | ||
844 | queue_work(local->tx_wq, &local->tx_work); | |
845 | kfree_skb(local->rx_pending); | |
846 | local->rx_pending = NULL; | |
847 | ||
848 | return; | |
849 | } | |
850 | ||
851 | void nfc_llcp_recv(void *data, struct sk_buff *skb, int err) | |
852 | { | |
853 | struct nfc_llcp_local *local = (struct nfc_llcp_local *) data; | |
854 | ||
855 | pr_debug("Received an LLCP PDU\n"); | |
856 | if (err < 0) { | |
857 | pr_err("err %d", err); | |
858 | return; | |
859 | } | |
860 | ||
861 | local->rx_pending = skb_get(skb); | |
862 | del_timer(&local->link_timer); | |
863 | queue_work(local->rx_wq, &local->rx_work); | |
864 | ||
865 | return; | |
866 | } | |
867 | ||
868 | void nfc_llcp_mac_is_down(struct nfc_dev *dev) | |
869 | { | |
870 | struct nfc_llcp_local *local; | |
871 | ||
872 | local = nfc_llcp_find_local(dev); | |
873 | if (local == NULL) | |
874 | return; | |
875 | ||
b9a76f1d SO |
876 | nfc_llcp_clear_sdp(local); |
877 | ||
d646960f SO |
878 | /* Close and purge all existing sockets */ |
879 | nfc_llcp_socket_release(local); | |
880 | } | |
881 | ||
882 | void nfc_llcp_mac_is_up(struct nfc_dev *dev, u32 target_idx, | |
883 | u8 comm_mode, u8 rf_mode) | |
884 | { | |
885 | struct nfc_llcp_local *local; | |
886 | ||
887 | pr_debug("rf mode %d\n", rf_mode); | |
888 | ||
889 | local = nfc_llcp_find_local(dev); | |
890 | if (local == NULL) | |
891 | return; | |
892 | ||
893 | local->target_idx = target_idx; | |
894 | local->comm_mode = comm_mode; | |
895 | local->rf_mode = rf_mode; | |
896 | ||
897 | if (rf_mode == NFC_RF_INITIATOR) { | |
898 | pr_debug("Queueing Tx work\n"); | |
899 | ||
900 | queue_work(local->tx_wq, &local->tx_work); | |
901 | } else { | |
902 | mod_timer(&local->link_timer, | |
903 | jiffies + msecs_to_jiffies(local->remote_lto)); | |
904 | } | |
905 | } | |
906 | ||
907 | int nfc_llcp_register_device(struct nfc_dev *ndev) | |
908 | { | |
909 | struct device *dev = &ndev->dev; | |
910 | struct nfc_llcp_local *local; | |
911 | char name[32]; | |
912 | int err; | |
913 | ||
914 | local = kzalloc(sizeof(struct nfc_llcp_local), GFP_KERNEL); | |
915 | if (local == NULL) | |
916 | return -ENOMEM; | |
917 | ||
918 | local->dev = ndev; | |
919 | INIT_LIST_HEAD(&local->list); | |
920 | mutex_init(&local->sdp_lock); | |
921 | mutex_init(&local->socket_lock); | |
922 | init_timer(&local->link_timer); | |
923 | local->link_timer.data = (unsigned long) local; | |
924 | local->link_timer.function = nfc_llcp_symm_timer; | |
925 | ||
926 | skb_queue_head_init(&local->tx_queue); | |
927 | INIT_WORK(&local->tx_work, nfc_llcp_tx_work); | |
928 | snprintf(name, sizeof(name), "%s_llcp_tx_wq", dev_name(dev)); | |
929 | local->tx_wq = alloc_workqueue(name, | |
930 | WQ_NON_REENTRANT | WQ_UNBOUND | WQ_MEM_RECLAIM, 1); | |
931 | if (local->tx_wq == NULL) { | |
932 | err = -ENOMEM; | |
933 | goto err_local; | |
934 | } | |
935 | ||
936 | local->rx_pending = NULL; | |
937 | INIT_WORK(&local->rx_work, nfc_llcp_rx_work); | |
938 | snprintf(name, sizeof(name), "%s_llcp_rx_wq", dev_name(dev)); | |
939 | local->rx_wq = alloc_workqueue(name, | |
940 | WQ_NON_REENTRANT | WQ_UNBOUND | WQ_MEM_RECLAIM, 1); | |
941 | if (local->rx_wq == NULL) { | |
942 | err = -ENOMEM; | |
943 | goto err_tx_wq; | |
944 | } | |
945 | ||
946 | INIT_WORK(&local->timeout_work, nfc_llcp_timeout_work); | |
947 | snprintf(name, sizeof(name), "%s_llcp_timeout_wq", dev_name(dev)); | |
948 | local->timeout_wq = alloc_workqueue(name, | |
949 | WQ_NON_REENTRANT | WQ_UNBOUND | WQ_MEM_RECLAIM, 1); | |
950 | if (local->timeout_wq == NULL) { | |
951 | err = -ENOMEM; | |
952 | goto err_rx_wq; | |
953 | } | |
954 | ||
955 | nfc_llcp_build_gb(local); | |
956 | ||
957 | local->remote_miu = LLCP_DEFAULT_MIU; | |
958 | local->remote_lto = LLCP_DEFAULT_LTO; | |
959 | local->remote_rw = LLCP_DEFAULT_RW; | |
960 | ||
961 | list_add(&llcp_devices, &local->list); | |
962 | ||
963 | return 0; | |
964 | ||
965 | err_rx_wq: | |
966 | destroy_workqueue(local->rx_wq); | |
967 | ||
968 | err_tx_wq: | |
969 | destroy_workqueue(local->tx_wq); | |
970 | ||
971 | err_local: | |
972 | kfree(local); | |
973 | ||
974 | return 0; | |
975 | } | |
976 | ||
977 | void nfc_llcp_unregister_device(struct nfc_dev *dev) | |
978 | { | |
979 | struct nfc_llcp_local *local = nfc_llcp_find_local(dev); | |
980 | ||
981 | if (local == NULL) { | |
982 | pr_debug("No such device\n"); | |
983 | return; | |
984 | } | |
985 | ||
986 | list_del(&local->list); | |
987 | nfc_llcp_socket_release(local); | |
988 | del_timer_sync(&local->link_timer); | |
989 | skb_queue_purge(&local->tx_queue); | |
990 | destroy_workqueue(local->tx_wq); | |
991 | destroy_workqueue(local->rx_wq); | |
5b68a7ca | 992 | kfree_skb(local->rx_pending); |
d646960f SO |
993 | kfree(local); |
994 | } | |
995 | ||
996 | int __init nfc_llcp_init(void) | |
997 | { | |
998 | INIT_LIST_HEAD(&llcp_devices); | |
999 | ||
1000 | return nfc_llcp_sock_init(); | |
1001 | } | |
1002 | ||
1003 | void nfc_llcp_exit(void) | |
1004 | { | |
1005 | nfc_llcp_sock_exit(); | |
1006 | } |