]> git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/blame - net/nfc/llcp/llcp.c
projects / mirror_ubuntu-zesty-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
NFC: Fix LLCP sockets releasing path
[mirror_ubuntu-zesty-kernel.git] / net / nfc / llcp / llcp.c
CommitLineData
d646960f
SO		 1/*
2 * Copyright (C) 2011 Intel Corporation. All rights reserved.
3 *
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation; either version 2 of the License, or
7 * (at your option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 *
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, write to the
16 * Free Software Foundation, Inc.,
17 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
18 */
19
20#define pr_fmt(fmt) "llcp: %s: " fmt, __func__
21
22#include <linux/init.h>
23#include <linux/kernel.h>
24#include <linux/list.h>
25#include <linux/nfc.h>
26
27#include "../nfc.h"
28#include "llcp.h"
29
30static u8 llcp_magic[3] = {0x46, 0x66, 0x6d};
31
32static struct list_head llcp_devices;
33
34static void nfc_llcp_socket_release(struct nfc_llcp_local *local)
35{
36 struct nfc_llcp_sock *parent, *s, *n;
37 struct sock *sk, *parent_sk;
38 int i;
39
40
41 mutex_lock(&local->socket_lock);
42
43 for (i = 0; i < LLCP_MAX_SAP; i++) {
44 parent = local->sockets[i];
45 if (parent == NULL)
46 continue;
47
48 /* Release all child sockets */
49 list_for_each_entry_safe(s, n, &parent->list, list) {
40c75f81 50 list_del_init(&s->list);
d646960f
SO		 51 sk = &s->sk;
52
53 lock_sock(sk);
54
55 if (sk->sk_state == LLCP_CONNECTED)
56 nfc_put_device(s->dev);
57
58 sk->sk_state = LLCP_CLOSED;
d646960f
SO		 59
60 release_sock(sk);
40c75f81
SO		 61
62 sock_orphan(sk);
63
64 s->local = NULL;
d646960f
SO		 65 }
66
67 parent_sk = &parent->sk;
68
69 lock_sock(parent_sk);
70
71 if (parent_sk->sk_state == LLCP_LISTEN) {
72 struct nfc_llcp_sock *lsk, *n;
73 struct sock *accept_sk;
74
75 list_for_each_entry_safe(lsk, n, &parent->accept_queue,
76 accept_queue) {
77 accept_sk = &lsk->sk;
78 lock_sock(accept_sk);
79
80 nfc_llcp_accept_unlink(accept_sk);
81
82 accept_sk->sk_state = LLCP_CLOSED;
d646960f
SO		 83
84 release_sock(accept_sk);
85
86 sock_orphan(accept_sk);
40c75f81
SO		 87
88 lsk->local = NULL;
d646960f
SO		 89 }
90 }
91
92 if (parent_sk->sk_state == LLCP_CONNECTED)
93 nfc_put_device(parent->dev);
94
95 parent_sk->sk_state = LLCP_CLOSED;
d646960f
SO		 96
97 release_sock(parent_sk);
40c75f81
SO		 98
99 sock_orphan(parent_sk);
100
101 parent->local = NULL;
d646960f
SO		 102 }
103
104 mutex_unlock(&local->socket_lock);
105}
106
b9a76f1d
SO		 107static void nfc_llcp_clear_sdp(struct nfc_llcp_local *local)
108{
109 mutex_lock(&local->sdp_lock);
110
111 local->local_wks = 0;
112 local->local_sdp = 0;
113 local->local_sap = 0;
114
115 mutex_unlock(&local->sdp_lock);
116}
117
d646960f
SO		 118static void nfc_llcp_timeout_work(struct work_struct *work)
119{
120 struct nfc_llcp_local *local = container_of(work, struct nfc_llcp_local,
121 timeout_work);
122
123 nfc_dep_link_down(local->dev);
124}
125
126static void nfc_llcp_symm_timer(unsigned long data)
127{
128 struct nfc_llcp_local *local = (struct nfc_llcp_local *) data;
129
130 pr_err("SYMM timeout\n");
131
132 queue_work(local->timeout_wq, &local->timeout_work);
133}
134
135struct nfc_llcp_local *nfc_llcp_find_local(struct nfc_dev *dev)
136{
137 struct nfc_llcp_local *local, *n;
138
139 list_for_each_entry_safe(local, n, &llcp_devices, list)
140 if (local->dev == dev)
141 return local;
142
143 pr_debug("No device found\n");
144
145 return NULL;
146}
147
148static char *wks[] = {
149 NULL,
150 NULL, /* SDP */
151 "urn:nfc:sn:ip",
152 "urn:nfc:sn:obex",
153 "urn:nfc:sn:snep",
154};
155
156static int nfc_llcp_wks_sap(char *service_name, size_t service_name_len)
157{
158 int sap, num_wks;
159
160 pr_debug("%s\n", service_name);
161
162 if (service_name == NULL)
163 return -EINVAL;
164
165 num_wks = ARRAY_SIZE(wks);
166
167 for (sap = 0 ; sap < num_wks; sap++) {
168 if (wks[sap] == NULL)
169 continue;
170
171 if (strncmp(wks[sap], service_name, service_name_len) == 0)
172 return sap;
173 }
174
175 return -EINVAL;
176}
177
178u8 nfc_llcp_get_sdp_ssap(struct nfc_llcp_local *local,
179 struct nfc_llcp_sock *sock)
180{
181 mutex_lock(&local->sdp_lock);
182
183 if (sock->service_name != NULL && sock->service_name_len > 0) {
184 int ssap = nfc_llcp_wks_sap(sock->service_name,
185 sock->service_name_len);
186
187 if (ssap > 0) {
188 pr_debug("WKS %d\n", ssap);
189
190 /* This is a WKS, let's check if it's free */
191 if (local->local_wks & BIT(ssap)) {
192 mutex_unlock(&local->sdp_lock);
193
194 return LLCP_SAP_MAX;
195 }
196
1762c17c 197 set_bit(ssap, &local->local_wks);
d646960f
SO		 198 mutex_unlock(&local->sdp_lock);
199
200 return ssap;
201 }
202
203 /*
204 * This is not a well known service,
205 * we should try to find a local SDP free spot
206 */
207 ssap = find_first_zero_bit(&local->local_sdp, LLCP_SDP_NUM_SAP);
208 if (ssap == LLCP_SDP_NUM_SAP) {
209 mutex_unlock(&local->sdp_lock);
210
211 return LLCP_SAP_MAX;
212 }
213
214 pr_debug("SDP ssap %d\n", LLCP_WKS_NUM_SAP + ssap);
215
1762c17c 216 set_bit(ssap, &local->local_sdp);
d646960f
SO		 217 mutex_unlock(&local->sdp_lock);
218
219 return LLCP_WKS_NUM_SAP + ssap;
220
221 } else if (sock->ssap != 0) {
222 if (sock->ssap < LLCP_WKS_NUM_SAP) {
1762c17c
SO		 223 if (!test_bit(sock->ssap, &local->local_wks)) {
224 set_bit(sock->ssap, &local->local_wks);
d646960f
SO		 225 mutex_unlock(&local->sdp_lock);
226
227 return sock->ssap;
228 }
229
230 } else if (sock->ssap < LLCP_SDP_NUM_SAP) {
1762c17c
SO		 231 if (!test_bit(sock->ssap - LLCP_WKS_NUM_SAP,
232 &local->local_sdp)) {
233 set_bit(sock->ssap - LLCP_WKS_NUM_SAP,
234 &local->local_sdp);
d646960f
SO		 235 mutex_unlock(&local->sdp_lock);
236
237 return sock->ssap;
238 }
239 }
240 }
241
242 mutex_unlock(&local->sdp_lock);
243
244 return LLCP_SAP_MAX;
245}
246
247u8 nfc_llcp_get_local_ssap(struct nfc_llcp_local *local)
248{
249 u8 local_ssap;
250
251 mutex_lock(&local->sdp_lock);
252
253 local_ssap = find_first_zero_bit(&local->local_sap, LLCP_LOCAL_NUM_SAP);
254 if (local_ssap == LLCP_LOCAL_NUM_SAP) {
255 mutex_unlock(&local->sdp_lock);
256 return LLCP_SAP_MAX;
257 }
258
1762c17c 259 set_bit(local_ssap, &local->local_sap);
d646960f
SO		 260
261 mutex_unlock(&local->sdp_lock);
262
263 return local_ssap + LLCP_LOCAL_SAP_OFFSET;
264}
265
266void nfc_llcp_put_ssap(struct nfc_llcp_local *local, u8 ssap)
267{
268 u8 local_ssap;
269 unsigned long *sdp;
270
271 if (ssap < LLCP_WKS_NUM_SAP) {
272 local_ssap = ssap;
273 sdp = &local->local_wks;
274 } else if (ssap < LLCP_LOCAL_NUM_SAP) {
275 local_ssap = ssap - LLCP_WKS_NUM_SAP;
276 sdp = &local->local_sdp;
277 } else if (ssap < LLCP_MAX_SAP) {
278 local_ssap = ssap - LLCP_LOCAL_NUM_SAP;
279 sdp = &local->local_sap;
280 } else {
281 return;
282 }
283
284 mutex_lock(&local->sdp_lock);
285
1762c17c 286 clear_bit(local_ssap, sdp);
d646960f
SO		 287
288 mutex_unlock(&local->sdp_lock);
289}
290
47807d3d 291u8 *nfc_llcp_general_bytes(struct nfc_dev *dev, size_t *general_bytes_len)
d646960f
SO		 292{
293 struct nfc_llcp_local *local;
294
295 local = nfc_llcp_find_local(dev);
296 if (local == NULL) {
297 *general_bytes_len = 0;
298 return NULL;
299 }
300
301 *general_bytes_len = local->gb_len;
302
303 return local->gb;
304}
305
306static int nfc_llcp_build_gb(struct nfc_llcp_local *local)
307{
308 u8 *gb_cur, *version_tlv, version, version_length;
309 u8 *lto_tlv, lto, lto_length;
310 u8 *wks_tlv, wks_length;
311 u8 gb_len = 0;
312
313 version = LLCP_VERSION_11;
314 version_tlv = nfc_llcp_build_tlv(LLCP_TLV_VERSION, &version,
315 1, &version_length);
316 gb_len += version_length;
317
318 /* 1500 ms */
319 lto = 150;
320 lto_tlv = nfc_llcp_build_tlv(LLCP_TLV_VERSION, &lto, 1, &lto_length);
321 gb_len += lto_length;
322
323 pr_debug("Local wks 0x%lx\n", local->local_wks);
324 wks_tlv = nfc_llcp_build_tlv(LLCP_TLV_WKS, (u8 *)&local->local_wks, 2,
325 &wks_length);
326 gb_len += wks_length;
327
328 gb_len += ARRAY_SIZE(llcp_magic);
329
330 if (gb_len > NFC_MAX_GT_LEN) {
331 kfree(version_tlv);
332 return -EINVAL;
333 }
334
335 gb_cur = local->gb;
336
337 memcpy(gb_cur, llcp_magic, ARRAY_SIZE(llcp_magic));
338 gb_cur += ARRAY_SIZE(llcp_magic);
339
340 memcpy(gb_cur, version_tlv, version_length);
341 gb_cur += version_length;
342
343 memcpy(gb_cur, lto_tlv, lto_length);
344 gb_cur += lto_length;
345
346 memcpy(gb_cur, wks_tlv, wks_length);
347 gb_cur += wks_length;
348
349 kfree(version_tlv);
350 kfree(lto_tlv);
351
352 local->gb_len = gb_len;
353
354 return 0;
355}
356
357int nfc_llcp_set_remote_gb(struct nfc_dev *dev, u8 *gb, u8 gb_len)
358{
359 struct nfc_llcp_local *local = nfc_llcp_find_local(dev);
360
361 if (local == NULL) {
362 pr_err("No LLCP device\n");
363 return -ENODEV;
364 }
365
366 memset(local->remote_gb, 0, NFC_MAX_GT_LEN);
367 memcpy(local->remote_gb, gb, gb_len);
368 local->remote_gb_len = gb_len;
369
370 if (local->remote_gb == NULL ||
371 local->remote_gb_len == 0)
372 return -ENODEV;
373
374 if (memcmp(local->remote_gb, llcp_magic, 3)) {
375 pr_err("MAC does not support LLCP\n");
376 return -EINVAL;
377 }
378
379 return nfc_llcp_parse_tlv(local,
380 &local->remote_gb[3], local->remote_gb_len - 3);
381}
382
383static void nfc_llcp_tx_work(struct work_struct *work)
384{
385 struct nfc_llcp_local *local = container_of(work, struct nfc_llcp_local,
386 tx_work);
387 struct sk_buff *skb;
388
389 skb = skb_dequeue(&local->tx_queue);
390 if (skb != NULL) {
391 pr_debug("Sending pending skb\n");
392 nfc_data_exchange(local->dev, local->target_idx,
393 skb, nfc_llcp_recv, local);
394 } else {
395 nfc_llcp_send_symm(local->dev);
396 }
397
398 mod_timer(&local->link_timer,
399 jiffies + msecs_to_jiffies(local->remote_lto));
400}
401
402static u8 nfc_llcp_dsap(struct sk_buff *pdu)
403{
404 return (pdu->data[0] & 0xfc) >> 2;
405}
406
407static u8 nfc_llcp_ptype(struct sk_buff *pdu)
408{
409 return ((pdu->data[0] & 0x03) << 2) | ((pdu->data[1] & 0xc0) >> 6);
410}
411
412static u8 nfc_llcp_ssap(struct sk_buff *pdu)
413{
414 return pdu->data[1] & 0x3f;
415}
416
417static u8 nfc_llcp_ns(struct sk_buff *pdu)
418{
419 return pdu->data[2] >> 4;
420}
421
422static u8 nfc_llcp_nr(struct sk_buff *pdu)
423{
424 return pdu->data[2] & 0xf;
425}
426
427static void nfc_llcp_set_nrns(struct nfc_llcp_sock *sock, struct sk_buff *pdu)
428{
0767a7fa 429 pdu->data[2] = (sock->send_n << 4) | (sock->recv_n % 16);
d646960f
SO		 430 sock->send_n = (sock->send_n + 1) % 16;
431 sock->recv_ack_n = (sock->recv_n - 1) % 16;
432}
433
434static struct nfc_llcp_sock *nfc_llcp_sock_get(struct nfc_llcp_local *local,
435 u8 ssap, u8 dsap)
436{
437 struct nfc_llcp_sock *sock, *llcp_sock, *n;
438
439 if (ssap == 0 && dsap == 0)
440 return NULL;
441
442 mutex_lock(&local->socket_lock);
443 sock = local->sockets[ssap];
444 if (sock == NULL) {
445 mutex_unlock(&local->socket_lock);
446 return NULL;
447 }
448
449 pr_debug("root dsap %d (%d)\n", sock->dsap, dsap);
450
451 if (sock->dsap == dsap) {
452 sock_hold(&sock->sk);
453 mutex_unlock(&local->socket_lock);
454 return sock;
455 }
456
457 list_for_each_entry_safe(llcp_sock, n, &sock->list, list) {
458 pr_debug("llcp_sock %p sk %p dsap %d\n", llcp_sock,
459 &llcp_sock->sk, llcp_sock->dsap);
460 if (llcp_sock->dsap == dsap) {
461 sock_hold(&llcp_sock->sk);
462 mutex_unlock(&local->socket_lock);
463 return llcp_sock;
464 }
465 }
466
467 pr_err("Could not find socket for %d %d\n", ssap, dsap);
468
469 mutex_unlock(&local->socket_lock);
470
471 return NULL;
472}
473
474static void nfc_llcp_sock_put(struct nfc_llcp_sock *sock)
475{
476 sock_put(&sock->sk);
477}
478
479static u8 *nfc_llcp_connect_sn(struct sk_buff *skb, size_t *sn_len)
480{
481 u8 *tlv = &skb->data[2], type, length;
482 size_t tlv_array_len = skb->len - LLCP_HEADER_SIZE, offset = 0;
483
484 while (offset < tlv_array_len) {
485 type = tlv[0];
486 length = tlv[1];
487
488 pr_debug("type 0x%x length %d\n", type, length);
489
490 if (type == LLCP_TLV_SN) {
491 *sn_len = length;
492 return &tlv[2];
493 }
494
495 offset += length + 2;
496 tlv += length + 2;
497 }
498
499 return NULL;
500}
501
502static void nfc_llcp_recv_connect(struct nfc_llcp_local *local,
503 struct sk_buff *skb)
504{
505 struct sock *new_sk, *parent;
506 struct nfc_llcp_sock *sock, *new_sock;
507 u8 dsap, ssap, bound_sap, reason;
508
509 dsap = nfc_llcp_dsap(skb);
510 ssap = nfc_llcp_ssap(skb);
511
512 pr_debug("%d %d\n", dsap, ssap);
513
514 nfc_llcp_parse_tlv(local, &skb->data[LLCP_HEADER_SIZE],
515 skb->len - LLCP_HEADER_SIZE);
516
517 if (dsap != LLCP_SAP_SDP) {
518 bound_sap = dsap;
519
520 mutex_lock(&local->socket_lock);
521 sock = local->sockets[dsap];
522 if (sock == NULL) {
523 mutex_unlock(&local->socket_lock);
524 reason = LLCP_DM_NOBOUND;
525 goto fail;
526 }
527
528 sock_hold(&sock->sk);
529 mutex_unlock(&local->socket_lock);
530
531 lock_sock(&sock->sk);
532
533 if (sock->dsap == LLCP_SAP_SDP &&
534 sock->sk.sk_state == LLCP_LISTEN)
535 goto enqueue;
536 } else {
537 u8 *sn;
538 size_t sn_len;
539
540 sn = nfc_llcp_connect_sn(skb, &sn_len);
541 if (sn == NULL) {
542 reason = LLCP_DM_NOBOUND;
543 goto fail;
544 }
545
546 pr_debug("Service name length %zu\n", sn_len);
547
548 mutex_lock(&local->socket_lock);
549 for (bound_sap = 0; bound_sap < LLCP_LOCAL_SAP_OFFSET;
550 bound_sap++) {
551 sock = local->sockets[bound_sap];
552 if (sock == NULL)
553 continue;
554
555 if (sock->service_name == NULL ||
556 sock->service_name_len == 0)
557 continue;
558
559 if (sock->service_name_len != sn_len)
560 continue;
561
562 if (sock->dsap == LLCP_SAP_SDP &&
563 sock->sk.sk_state == LLCP_LISTEN &&
564 !memcmp(sn, sock->service_name, sn_len)) {
565 pr_debug("Found service name at SAP %d\n",
566 bound_sap);
567 sock_hold(&sock->sk);
568 mutex_unlock(&local->socket_lock);
569
570 lock_sock(&sock->sk);
571
572 goto enqueue;
573 }
574 }
341ee434 575 mutex_unlock(&local->socket_lock);
d646960f
SO		 576 }
577
d646960f
SO		 578 reason = LLCP_DM_NOBOUND;
579 goto fail;
580
581enqueue:
582 parent = &sock->sk;
583
584 if (sk_acceptq_is_full(parent)) {
585 reason = LLCP_DM_REJ;
586 release_sock(&sock->sk);
587 sock_put(&sock->sk);
588 goto fail;
589 }
590
591 new_sk = nfc_llcp_sock_alloc(NULL, parent->sk_type,
592 GFP_ATOMIC);
593 if (new_sk == NULL) {
594 reason = LLCP_DM_REJ;
595 release_sock(&sock->sk);
596 sock_put(&sock->sk);
597 goto fail;
598 }
599
600 new_sock = nfc_llcp_sock(new_sk);
601 new_sock->dev = local->dev;
602 new_sock->local = local;
603 new_sock->nfc_protocol = sock->nfc_protocol;
604 new_sock->ssap = bound_sap;
605 new_sock->dsap = ssap;
606 new_sock->parent = parent;
607
608 pr_debug("new sock %p sk %p\n", new_sock, &new_sock->sk);
609
610 list_add_tail(&new_sock->list, &sock->list);
611
612 nfc_llcp_accept_enqueue(&sock->sk, new_sk);
613
614 nfc_get_device(local->dev->idx);
615
616 new_sk->sk_state = LLCP_CONNECTED;
617
618 /* Wake the listening processes */
619 parent->sk_data_ready(parent, 0);
620
621 /* Send CC */
622 nfc_llcp_send_cc(new_sock);
623
624 release_sock(&sock->sk);
625 sock_put(&sock->sk);
626
627 return;
628
629fail:
630 /* Send DM */
631 nfc_llcp_send_dm(local, dsap, ssap, reason);
632
633 return;
634
635}
636
d094afa1 637int nfc_llcp_queue_i_frames(struct nfc_llcp_sock *sock)
4722d2b7 638{
d094afa1 639 int nr_frames = 0;
4722d2b7
SO		 640 struct nfc_llcp_local *local = sock->local;
641
642 pr_debug("Remote ready %d tx queue len %d remote rw %d",
643 sock->remote_ready, skb_queue_len(&sock->tx_pending_queue),
644 local->remote_rw);
645
646 /* Try to queue some I frames for transmission */
647 while (sock->remote_ready &&
648 skb_queue_len(&sock->tx_pending_queue) < local->remote_rw) {
649 struct sk_buff *pdu, *pending_pdu;
650
651 pdu = skb_dequeue(&sock->tx_queue);
652 if (pdu == NULL)
653 break;
654
655 /* Update N(S)/N(R) */
656 nfc_llcp_set_nrns(sock, pdu);
657
658 pending_pdu = skb_clone(pdu, GFP_KERNEL);
659
660 skb_queue_tail(&local->tx_queue, pdu);
661 skb_queue_tail(&sock->tx_pending_queue, pending_pdu);
d094afa1 662 nr_frames++;
4722d2b7 663 }
d094afa1
SO		 664
665 return nr_frames;
4722d2b7
SO		 666}
667
d646960f
SO		 668static void nfc_llcp_recv_hdlc(struct nfc_llcp_local *local,
669 struct sk_buff *skb)
670{
671 struct nfc_llcp_sock *llcp_sock;
672 struct sock *sk;
673 u8 dsap, ssap, ptype, ns, nr;
674
675 ptype = nfc_llcp_ptype(skb);
676 dsap = nfc_llcp_dsap(skb);
677 ssap = nfc_llcp_ssap(skb);
678 ns = nfc_llcp_ns(skb);
679 nr = nfc_llcp_nr(skb);
680
681 pr_debug("%d %d R %d S %d\n", dsap, ssap, nr, ns);
682
683 llcp_sock = nfc_llcp_sock_get(local, dsap, ssap);
684 if (llcp_sock == NULL) {
685 nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_NOCONN);
686 return;
687 }
688
689 sk = &llcp_sock->sk;
690 lock_sock(sk);
691 if (sk->sk_state == LLCP_CLOSED) {
692 release_sock(sk);
693 nfc_llcp_sock_put(llcp_sock);
694 }
695
d646960f
SO		 696 /* Pass the payload upstream */
697 if (ptype == LLCP_PDU_I) {
698 pr_debug("I frame, queueing on %p\n", &llcp_sock->sk);
699
53aef920
SO		 700 if (ns == llcp_sock->recv_n)
701 llcp_sock->recv_n = (llcp_sock->recv_n + 1) % 16;
702 else
703 pr_err("Received out of sequence I PDU\n");
704
d646960f
SO		 705 skb_pull(skb, LLCP_HEADER_SIZE + LLCP_SEQUENCE_SIZE);
706 if (sock_queue_rcv_skb(&llcp_sock->sk, skb)) {
707 pr_err("receive queue is full\n");
708 skb_queue_head(&llcp_sock->tx_backlog_queue, skb);
709 }
710 }
711
712 /* Remove skbs from the pending queue */
713 if (llcp_sock->send_ack_n != nr) {
714 struct sk_buff *s, *tmp;
715
716 llcp_sock->send_ack_n = nr;
717
718 skb_queue_walk_safe(&llcp_sock->tx_pending_queue, s, tmp)
719 if (nfc_llcp_ns(s) <= nr) {
720 skb_unlink(s, &llcp_sock->tx_pending_queue);
721 kfree_skb(s);
722 }
723 }
724
53aef920
SO		 725 if (ptype == LLCP_PDU_RR)
726 llcp_sock->remote_ready = true;
727 else if (ptype == LLCP_PDU_RNR)
728 llcp_sock->remote_ready = false;
729
d094afa1
SO		 730 if (nfc_llcp_queue_i_frames(llcp_sock) == 0)
731 nfc_llcp_send_rr(llcp_sock);
d646960f
SO		 732
733 release_sock(sk);
734 nfc_llcp_sock_put(llcp_sock);
735}
736
737static void nfc_llcp_recv_disc(struct nfc_llcp_local *local,
738 struct sk_buff *skb)
739{
740 struct nfc_llcp_sock *llcp_sock;
741 struct sock *sk;
742 u8 dsap, ssap;
743
744 dsap = nfc_llcp_dsap(skb);
745 ssap = nfc_llcp_ssap(skb);
746
747 llcp_sock = nfc_llcp_sock_get(local, dsap, ssap);
748 if (llcp_sock == NULL) {
749 nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_NOCONN);
750 return;
751 }
752
753 sk = &llcp_sock->sk;
754 lock_sock(sk);
755 if (sk->sk_state == LLCP_CLOSED) {
756 release_sock(sk);
757 nfc_llcp_sock_put(llcp_sock);
758 }
759
760
761 if (sk->sk_state == LLCP_CONNECTED) {
762 nfc_put_device(local->dev);
763 sk->sk_state = LLCP_CLOSED;
764 sk->sk_state_change(sk);
765 }
766
767 nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_DISC);
768
769 release_sock(sk);
770 nfc_llcp_sock_put(llcp_sock);
771}
772
773static void nfc_llcp_recv_cc(struct nfc_llcp_local *local,
774 struct sk_buff *skb)
775{
776 struct nfc_llcp_sock *llcp_sock;
777 u8 dsap, ssap;
778
779
780 dsap = nfc_llcp_dsap(skb);
781 ssap = nfc_llcp_ssap(skb);
782
783 llcp_sock = nfc_llcp_sock_get(local, dsap, ssap);
784
785 if (llcp_sock == NULL)
786 llcp_sock = nfc_llcp_sock_get(local, dsap, LLCP_SAP_SDP);
787
788 if (llcp_sock == NULL) {
789 pr_err("Invalid CC\n");
790 nfc_llcp_send_dm(local, dsap, ssap, LLCP_DM_NOCONN);
791
792 return;
793 }
794
795 llcp_sock->dsap = ssap;
796
797 nfc_llcp_parse_tlv(local, &skb->data[LLCP_HEADER_SIZE],
798 skb->len - LLCP_HEADER_SIZE);
799
800 nfc_llcp_sock_put(llcp_sock);
801}
802
803static void nfc_llcp_rx_work(struct work_struct *work)
804{
805 struct nfc_llcp_local *local = container_of(work, struct nfc_llcp_local,
806 rx_work);
807 u8 dsap, ssap, ptype;
808 struct sk_buff *skb;
809
810 skb = local->rx_pending;
811 if (skb == NULL) {
812 pr_debug("No pending SKB\n");
813 return;
814 }
815
816 ptype = nfc_llcp_ptype(skb);
817 dsap = nfc_llcp_dsap(skb);
818 ssap = nfc_llcp_ssap(skb);
819
820 pr_debug("ptype 0x%x dsap 0x%x ssap 0x%x\n", ptype, dsap, ssap);
821
822 switch (ptype) {
823 case LLCP_PDU_SYMM:
824 pr_debug("SYMM\n");
825 break;
826
827 case LLCP_PDU_CONNECT:
828 pr_debug("CONNECT\n");
829 nfc_llcp_recv_connect(local, skb);
830 break;
831
832 case LLCP_PDU_DISC:
833 pr_debug("DISC\n");
834 nfc_llcp_recv_disc(local, skb);
835 break;
836
837 case LLCP_PDU_CC:
838 pr_debug("CC\n");
839 nfc_llcp_recv_cc(local, skb);
840 break;
841
842 case LLCP_PDU_I:
843 case LLCP_PDU_RR:
53aef920 844 case LLCP_PDU_RNR:
d646960f
SO		 845 pr_debug("I frame\n");
846 nfc_llcp_recv_hdlc(local, skb);
847 break;
848
849 }
850
851 queue_work(local->tx_wq, &local->tx_work);
852 kfree_skb(local->rx_pending);
853 local->rx_pending = NULL;
854
855 return;
856}
857
858void nfc_llcp_recv(void *data, struct sk_buff *skb, int err)
859{
860 struct nfc_llcp_local *local = (struct nfc_llcp_local *) data;
861
862 pr_debug("Received an LLCP PDU\n");
863 if (err < 0) {
864 pr_err("err %d", err);
865 return;
866 }
867
868 local->rx_pending = skb_get(skb);
869 del_timer(&local->link_timer);
870 queue_work(local->rx_wq, &local->rx_work);
871
872 return;
873}
874
875void nfc_llcp_mac_is_down(struct nfc_dev *dev)
876{
877 struct nfc_llcp_local *local;
878
879 local = nfc_llcp_find_local(dev);
880 if (local == NULL)
881 return;
882
b9a76f1d
SO		 883 nfc_llcp_clear_sdp(local);
884
d646960f
SO		 885 /* Close and purge all existing sockets */
886 nfc_llcp_socket_release(local);
887}
888
889void nfc_llcp_mac_is_up(struct nfc_dev *dev, u32 target_idx,
890 u8 comm_mode, u8 rf_mode)
891{
892 struct nfc_llcp_local *local;
893
894 pr_debug("rf mode %d\n", rf_mode);
895
896 local = nfc_llcp_find_local(dev);
897 if (local == NULL)
898 return;
899
900 local->target_idx = target_idx;
901 local->comm_mode = comm_mode;
902 local->rf_mode = rf_mode;
903
904 if (rf_mode == NFC_RF_INITIATOR) {
905 pr_debug("Queueing Tx work\n");
906
907 queue_work(local->tx_wq, &local->tx_work);
908 } else {
909 mod_timer(&local->link_timer,
910 jiffies + msecs_to_jiffies(local->remote_lto));
911 }
912}
913
914int nfc_llcp_register_device(struct nfc_dev *ndev)
915{
916 struct device *dev = &ndev->dev;
917 struct nfc_llcp_local *local;
918 char name[32];
919 int err;
920
921 local = kzalloc(sizeof(struct nfc_llcp_local), GFP_KERNEL);
922 if (local == NULL)
923 return -ENOMEM;
924
925 local->dev = ndev;
926 INIT_LIST_HEAD(&local->list);
927 mutex_init(&local->sdp_lock);
928 mutex_init(&local->socket_lock);
929 init_timer(&local->link_timer);
930 local->link_timer.data = (unsigned long) local;
931 local->link_timer.function = nfc_llcp_symm_timer;
932
933 skb_queue_head_init(&local->tx_queue);
934 INIT_WORK(&local->tx_work, nfc_llcp_tx_work);
935 snprintf(name, sizeof(name), "%s_llcp_tx_wq", dev_name(dev));
936 local->tx_wq = alloc_workqueue(name,
937 WQ_NON_REENTRANT | WQ_UNBOUND | WQ_MEM_RECLAIM, 1);
938 if (local->tx_wq == NULL) {
939 err = -ENOMEM;
940 goto err_local;
941 }
942
943 local->rx_pending = NULL;
944 INIT_WORK(&local->rx_work, nfc_llcp_rx_work);
945 snprintf(name, sizeof(name), "%s_llcp_rx_wq", dev_name(dev));
946 local->rx_wq = alloc_workqueue(name,
947 WQ_NON_REENTRANT | WQ_UNBOUND | WQ_MEM_RECLAIM, 1);
948 if (local->rx_wq == NULL) {
949 err = -ENOMEM;
950 goto err_tx_wq;
951 }
952
953 INIT_WORK(&local->timeout_work, nfc_llcp_timeout_work);
954 snprintf(name, sizeof(name), "%s_llcp_timeout_wq", dev_name(dev));
955 local->timeout_wq = alloc_workqueue(name,
956 WQ_NON_REENTRANT | WQ_UNBOUND | WQ_MEM_RECLAIM, 1);
957 if (local->timeout_wq == NULL) {
958 err = -ENOMEM;
959 goto err_rx_wq;
960 }
961
962 nfc_llcp_build_gb(local);
963
964 local->remote_miu = LLCP_DEFAULT_MIU;
965 local->remote_lto = LLCP_DEFAULT_LTO;
966 local->remote_rw = LLCP_DEFAULT_RW;
967
968 list_add(&llcp_devices, &local->list);
969
970 return 0;
971
972err_rx_wq:
973 destroy_workqueue(local->rx_wq);
974
975err_tx_wq:
976 destroy_workqueue(local->tx_wq);
977
978err_local:
979 kfree(local);
980
981 return 0;
982}
983
984void nfc_llcp_unregister_device(struct nfc_dev *dev)
985{
986 struct nfc_llcp_local *local = nfc_llcp_find_local(dev);
987
988 if (local == NULL) {
989 pr_debug("No such device\n");
990 return;
991 }
992
993 list_del(&local->list);
994 nfc_llcp_socket_release(local);
995 del_timer_sync(&local->link_timer);
996 skb_queue_purge(&local->tx_queue);
997 destroy_workqueue(local->tx_wq);
998 destroy_workqueue(local->rx_wq);
5b68a7ca 999 kfree_skb(local->rx_pending);
d646960f
SO		 1000 kfree(local);
1001}
1002
1003int __init nfc_llcp_init(void)
1004{
1005 INIT_LIST_HEAD(&llcp_devices);
1006
1007 return nfc_llcp_sock_init();
1008}
1009
1010void nfc_llcp_exit(void)
1011{
1012 nfc_llcp_sock_exit();
1013}
ubuntu-zesty-kernel mirror