Loading...
Note: File does not exist in v3.1.
1// SPDX-License-Identifier: GPL-2.0-only
2/*
3 * NFC Digital Protocol stack
4 * Copyright (c) 2013, Intel Corporation.
5 */
6
7#define pr_fmt(fmt) "digital: %s: " fmt, __func__
8
9#include "digital.h"
10
11#define DIGITAL_CMD_SENS_REQ 0x26
12#define DIGITAL_CMD_ALL_REQ 0x52
13#define DIGITAL_CMD_SEL_REQ_CL1 0x93
14#define DIGITAL_CMD_SEL_REQ_CL2 0x95
15#define DIGITAL_CMD_SEL_REQ_CL3 0x97
16
17#define DIGITAL_SDD_REQ_SEL_PAR 0x20
18
19#define DIGITAL_SDD_RES_CT 0x88
20#define DIGITAL_SDD_RES_LEN 5
21#define DIGITAL_SEL_RES_LEN 1
22
23#define DIGITAL_SEL_RES_NFCID1_COMPLETE(sel_res) (!((sel_res) & 0x04))
24#define DIGITAL_SEL_RES_IS_T2T(sel_res) (!((sel_res) & 0x60))
25#define DIGITAL_SEL_RES_IS_T4T(sel_res) ((sel_res) & 0x20)
26#define DIGITAL_SEL_RES_IS_NFC_DEP(sel_res) ((sel_res) & 0x40)
27
28#define DIGITAL_SENS_RES_IS_T1T(sens_res) (((sens_res) & 0x0C00) == 0x0C00)
29#define DIGITAL_SENS_RES_IS_VALID(sens_res) \
30 ((!((sens_res) & 0x001F) && (((sens_res) & 0x0C00) == 0x0C00)) || \
31 (((sens_res) & 0x001F) && ((sens_res) & 0x0C00) != 0x0C00))
32
33#define DIGITAL_MIFARE_READ_RES_LEN 16
34#define DIGITAL_MIFARE_ACK_RES 0x0A
35
36#define DIGITAL_CMD_SENSB_REQ 0x05
37#define DIGITAL_SENSB_ADVANCED BIT(5)
38#define DIGITAL_SENSB_EXTENDED BIT(4)
39#define DIGITAL_SENSB_ALLB_REQ BIT(3)
40#define DIGITAL_SENSB_N(n) ((n) & 0x7)
41
42#define DIGITAL_CMD_SENSB_RES 0x50
43
44#define DIGITAL_CMD_ATTRIB_REQ 0x1D
45#define DIGITAL_ATTRIB_P1_TR0_DEFAULT (0x0 << 6)
46#define DIGITAL_ATTRIB_P1_TR1_DEFAULT (0x0 << 4)
47#define DIGITAL_ATTRIB_P1_SUPRESS_EOS BIT(3)
48#define DIGITAL_ATTRIB_P1_SUPRESS_SOS BIT(2)
49#define DIGITAL_ATTRIB_P2_LISTEN_POLL_1 (0x0 << 6)
50#define DIGITAL_ATTRIB_P2_POLL_LISTEN_1 (0x0 << 4)
51#define DIGITAL_ATTRIB_P2_MAX_FRAME_256 0x8
52#define DIGITAL_ATTRIB_P4_DID(n) ((n) & 0xf)
53
54#define DIGITAL_CMD_SENSF_REQ 0x00
55#define DIGITAL_CMD_SENSF_RES 0x01
56
57#define DIGITAL_SENSF_RES_MIN_LENGTH 17
58#define DIGITAL_SENSF_RES_RD_AP_B1 0x00
59#define DIGITAL_SENSF_RES_RD_AP_B2 0x8F
60
61#define DIGITAL_SENSF_REQ_RC_NONE 0
62#define DIGITAL_SENSF_REQ_RC_SC 1
63#define DIGITAL_SENSF_REQ_RC_AP 2
64
65#define DIGITAL_CMD_ISO15693_INVENTORY_REQ 0x01
66
67#define DIGITAL_ISO15693_REQ_FLAG_DATA_RATE BIT(1)
68#define DIGITAL_ISO15693_REQ_FLAG_INVENTORY BIT(2)
69#define DIGITAL_ISO15693_REQ_FLAG_NB_SLOTS BIT(5)
70#define DIGITAL_ISO15693_RES_FLAG_ERROR BIT(0)
71#define DIGITAL_ISO15693_RES_IS_VALID(flags) \
72 (!((flags) & DIGITAL_ISO15693_RES_FLAG_ERROR))
73
74#define DIGITAL_ISO_DEP_I_PCB 0x02
75#define DIGITAL_ISO_DEP_PNI(pni) ((pni) & 0x01)
76
77#define DIGITAL_ISO_DEP_PCB_TYPE(pcb) ((pcb) & 0xC0)
78
79#define DIGITAL_ISO_DEP_I_BLOCK 0x00
80
81#define DIGITAL_ISO_DEP_BLOCK_HAS_DID(pcb) ((pcb) & 0x08)
82
83static const u8 digital_ats_fsc[] = {
84 16, 24, 32, 40, 48, 64, 96, 128,
85};
86
87#define DIGITAL_ATS_FSCI(t0) ((t0) & 0x0F)
88#define DIGITAL_SENSB_FSCI(pi2) (((pi2) & 0xF0) >> 4)
89#define DIGITAL_ATS_MAX_FSC 256
90
91#define DIGITAL_RATS_BYTE1 0xE0
92#define DIGITAL_RATS_PARAM 0x80
93
94struct digital_sdd_res {
95 u8 nfcid1[4];
96 u8 bcc;
97} __packed;
98
99struct digital_sel_req {
100 u8 sel_cmd;
101 u8 b2;
102 u8 nfcid1[4];
103 u8 bcc;
104} __packed;
105
106struct digital_sensb_req {
107 u8 cmd;
108 u8 afi;
109 u8 param;
110} __packed;
111
112struct digital_sensb_res {
113 u8 cmd;
114 u8 nfcid0[4];
115 u8 app_data[4];
116 u8 proto_info[3];
117} __packed;
118
119struct digital_attrib_req {
120 u8 cmd;
121 u8 nfcid0[4];
122 u8 param1;
123 u8 param2;
124 u8 param3;
125 u8 param4;
126} __packed;
127
128struct digital_attrib_res {
129 u8 mbli_did;
130} __packed;
131
132struct digital_sensf_req {
133 u8 cmd;
134 u8 sc1;
135 u8 sc2;
136 u8 rc;
137 u8 tsn;
138} __packed;
139
140struct digital_sensf_res {
141 u8 cmd;
142 u8 nfcid2[8];
143 u8 pad0[2];
144 u8 pad1[3];
145 u8 mrti_check;
146 u8 mrti_update;
147 u8 pad2;
148 u8 rd[2];
149} __packed;
150
151struct digital_iso15693_inv_req {
152 u8 flags;
153 u8 cmd;
154 u8 mask_len;
155 u64 mask;
156} __packed;
157
158struct digital_iso15693_inv_res {
159 u8 flags;
160 u8 dsfid;
161 u64 uid;
162} __packed;
163
164static int digital_in_send_sdd_req(struct nfc_digital_dev *ddev,
165 struct nfc_target *target);
166
167int digital_in_iso_dep_pull_sod(struct nfc_digital_dev *ddev,
168 struct sk_buff *skb)
169{
170 u8 pcb;
171 u8 block_type;
172
173 if (skb->len < 1)
174 return -EIO;
175
176 pcb = *skb->data;
177 block_type = DIGITAL_ISO_DEP_PCB_TYPE(pcb);
178
179 /* No support fo R-block nor S-block */
180 if (block_type != DIGITAL_ISO_DEP_I_BLOCK) {
181 pr_err("ISO_DEP R-block and S-block not supported\n");
182 return -EIO;
183 }
184
185 if (DIGITAL_ISO_DEP_BLOCK_HAS_DID(pcb)) {
186 pr_err("DID field in ISO_DEP PCB not supported\n");
187 return -EIO;
188 }
189
190 skb_pull(skb, 1);
191
192 return 0;
193}
194
195int digital_in_iso_dep_push_sod(struct nfc_digital_dev *ddev,
196 struct sk_buff *skb)
197{
198 /*
199 * Chaining not supported so skb->len + 1 PCB byte + 2 CRC bytes must
200 * not be greater than remote FSC
201 */
202 if (skb->len + 3 > ddev->target_fsc)
203 return -EIO;
204
205 skb_push(skb, 1);
206
207 *skb->data = DIGITAL_ISO_DEP_I_PCB | ddev->curr_nfc_dep_pni;
208
209 ddev->curr_nfc_dep_pni =
210 DIGITAL_ISO_DEP_PNI(ddev->curr_nfc_dep_pni + 1);
211
212 return 0;
213}
214
215static void digital_in_recv_ats(struct nfc_digital_dev *ddev, void *arg,
216 struct sk_buff *resp)
217{
218 struct nfc_target *target = arg;
219 u8 fsdi;
220 int rc;
221
222 if (IS_ERR(resp)) {
223 rc = PTR_ERR(resp);
224 resp = NULL;
225 goto exit;
226 }
227
228 if (resp->len < 2) {
229 rc = -EIO;
230 goto exit;
231 }
232
233 fsdi = DIGITAL_ATS_FSCI(resp->data[1]);
234 if (fsdi >= 8)
235 ddev->target_fsc = DIGITAL_ATS_MAX_FSC;
236 else
237 ddev->target_fsc = digital_ats_fsc[fsdi];
238
239 ddev->curr_nfc_dep_pni = 0;
240
241 rc = digital_target_found(ddev, target, NFC_PROTO_ISO14443);
242
243exit:
244 dev_kfree_skb(resp);
245 kfree(target);
246
247 if (rc)
248 digital_poll_next_tech(ddev);
249}
250
251static int digital_in_send_rats(struct nfc_digital_dev *ddev,
252 struct nfc_target *target)
253{
254 int rc;
255 struct sk_buff *skb;
256
257 skb = digital_skb_alloc(ddev, 2);
258 if (!skb)
259 return -ENOMEM;
260
261 skb_put_u8(skb, DIGITAL_RATS_BYTE1);
262 skb_put_u8(skb, DIGITAL_RATS_PARAM);
263
264 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_ats,
265 target);
266 if (rc)
267 kfree_skb(skb);
268
269 return rc;
270}
271
272static void digital_in_recv_sel_res(struct nfc_digital_dev *ddev, void *arg,
273 struct sk_buff *resp)
274{
275 struct nfc_target *target = arg;
276 int rc;
277 u8 sel_res;
278 u8 nfc_proto;
279
280 if (IS_ERR(resp)) {
281 rc = PTR_ERR(resp);
282 resp = NULL;
283 goto exit;
284 }
285
286 if (!DIGITAL_DRV_CAPS_IN_CRC(ddev)) {
287 rc = digital_skb_check_crc_a(resp);
288 if (rc) {
289 PROTOCOL_ERR("4.4.1.3");
290 goto exit;
291 }
292 }
293
294 if (resp->len != DIGITAL_SEL_RES_LEN) {
295 rc = -EIO;
296 goto exit;
297 }
298
299 sel_res = resp->data[0];
300
301 if (!DIGITAL_SEL_RES_NFCID1_COMPLETE(sel_res)) {
302 rc = digital_in_send_sdd_req(ddev, target);
303 if (rc)
304 goto exit;
305
306 goto exit_free_skb;
307 }
308
309 target->sel_res = sel_res;
310
311 if (DIGITAL_SEL_RES_IS_T2T(sel_res)) {
312 nfc_proto = NFC_PROTO_MIFARE;
313 } else if (DIGITAL_SEL_RES_IS_NFC_DEP(sel_res)) {
314 nfc_proto = NFC_PROTO_NFC_DEP;
315 } else if (DIGITAL_SEL_RES_IS_T4T(sel_res)) {
316 rc = digital_in_send_rats(ddev, target);
317 if (rc)
318 goto exit;
319 /*
320 * Skip target_found and don't free it for now. This will be
321 * done when receiving the ATS
322 */
323 goto exit_free_skb;
324 } else {
325 rc = -EOPNOTSUPP;
326 goto exit;
327 }
328
329 rc = digital_target_found(ddev, target, nfc_proto);
330
331exit:
332 kfree(target);
333
334exit_free_skb:
335 dev_kfree_skb(resp);
336
337 if (rc)
338 digital_poll_next_tech(ddev);
339}
340
341static int digital_in_send_sel_req(struct nfc_digital_dev *ddev,
342 struct nfc_target *target,
343 struct digital_sdd_res *sdd_res)
344{
345 struct sk_buff *skb;
346 struct digital_sel_req *sel_req;
347 u8 sel_cmd;
348 int rc;
349
350 skb = digital_skb_alloc(ddev, sizeof(struct digital_sel_req));
351 if (!skb)
352 return -ENOMEM;
353
354 skb_put(skb, sizeof(struct digital_sel_req));
355 sel_req = (struct digital_sel_req *)skb->data;
356
357 if (target->nfcid1_len <= 4)
358 sel_cmd = DIGITAL_CMD_SEL_REQ_CL1;
359 else if (target->nfcid1_len < 10)
360 sel_cmd = DIGITAL_CMD_SEL_REQ_CL2;
361 else
362 sel_cmd = DIGITAL_CMD_SEL_REQ_CL3;
363
364 sel_req->sel_cmd = sel_cmd;
365 sel_req->b2 = 0x70;
366 memcpy(sel_req->nfcid1, sdd_res->nfcid1, 4);
367 sel_req->bcc = sdd_res->bcc;
368
369 if (DIGITAL_DRV_CAPS_IN_CRC(ddev)) {
370 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
371 NFC_DIGITAL_FRAMING_NFCA_STANDARD_WITH_CRC_A);
372 if (rc)
373 goto exit;
374 } else {
375 digital_skb_add_crc_a(skb);
376 }
377
378 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_sel_res,
379 target);
380exit:
381 if (rc)
382 kfree_skb(skb);
383
384 return rc;
385}
386
387static void digital_in_recv_sdd_res(struct nfc_digital_dev *ddev, void *arg,
388 struct sk_buff *resp)
389{
390 struct nfc_target *target = arg;
391 struct digital_sdd_res *sdd_res;
392 int rc;
393 u8 offset, size;
394 u8 i, bcc;
395
396 if (IS_ERR(resp)) {
397 rc = PTR_ERR(resp);
398 resp = NULL;
399 goto exit;
400 }
401
402 if (resp->len < DIGITAL_SDD_RES_LEN) {
403 PROTOCOL_ERR("4.7.2.8");
404 rc = -EINVAL;
405 goto exit;
406 }
407
408 sdd_res = (struct digital_sdd_res *)resp->data;
409
410 for (i = 0, bcc = 0; i < 4; i++)
411 bcc ^= sdd_res->nfcid1[i];
412
413 if (bcc != sdd_res->bcc) {
414 PROTOCOL_ERR("4.7.2.6");
415 rc = -EINVAL;
416 goto exit;
417 }
418
419 if (sdd_res->nfcid1[0] == DIGITAL_SDD_RES_CT) {
420 offset = 1;
421 size = 3;
422 } else {
423 offset = 0;
424 size = 4;
425 }
426
427 memcpy(target->nfcid1 + target->nfcid1_len, sdd_res->nfcid1 + offset,
428 size);
429 target->nfcid1_len += size;
430
431 rc = digital_in_send_sel_req(ddev, target, sdd_res);
432
433exit:
434 dev_kfree_skb(resp);
435
436 if (rc) {
437 kfree(target);
438 digital_poll_next_tech(ddev);
439 }
440}
441
442static int digital_in_send_sdd_req(struct nfc_digital_dev *ddev,
443 struct nfc_target *target)
444{
445 int rc;
446 struct sk_buff *skb;
447 u8 sel_cmd;
448
449 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
450 NFC_DIGITAL_FRAMING_NFCA_STANDARD);
451 if (rc)
452 return rc;
453
454 skb = digital_skb_alloc(ddev, 2);
455 if (!skb)
456 return -ENOMEM;
457
458 if (target->nfcid1_len == 0)
459 sel_cmd = DIGITAL_CMD_SEL_REQ_CL1;
460 else if (target->nfcid1_len == 3)
461 sel_cmd = DIGITAL_CMD_SEL_REQ_CL2;
462 else
463 sel_cmd = DIGITAL_CMD_SEL_REQ_CL3;
464
465 skb_put_u8(skb, sel_cmd);
466 skb_put_u8(skb, DIGITAL_SDD_REQ_SEL_PAR);
467
468 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_sdd_res,
469 target);
470 if (rc)
471 kfree_skb(skb);
472
473 return rc;
474}
475
476static void digital_in_recv_sens_res(struct nfc_digital_dev *ddev, void *arg,
477 struct sk_buff *resp)
478{
479 struct nfc_target *target = NULL;
480 int rc;
481
482 if (IS_ERR(resp)) {
483 rc = PTR_ERR(resp);
484 resp = NULL;
485 goto exit;
486 }
487
488 if (resp->len < sizeof(u16)) {
489 rc = -EIO;
490 goto exit;
491 }
492
493 target = kzalloc(sizeof(struct nfc_target), GFP_KERNEL);
494 if (!target) {
495 rc = -ENOMEM;
496 goto exit;
497 }
498
499 target->sens_res = __le16_to_cpu(*(__le16 *)resp->data);
500
501 if (!DIGITAL_SENS_RES_IS_VALID(target->sens_res)) {
502 PROTOCOL_ERR("4.6.3.3");
503 rc = -EINVAL;
504 goto exit;
505 }
506
507 if (DIGITAL_SENS_RES_IS_T1T(target->sens_res))
508 rc = digital_target_found(ddev, target, NFC_PROTO_JEWEL);
509 else
510 rc = digital_in_send_sdd_req(ddev, target);
511
512exit:
513 dev_kfree_skb(resp);
514
515 if (rc) {
516 kfree(target);
517 digital_poll_next_tech(ddev);
518 }
519}
520
521int digital_in_send_sens_req(struct nfc_digital_dev *ddev, u8 rf_tech)
522{
523 struct sk_buff *skb;
524 int rc;
525
526 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_RF_TECH,
527 NFC_DIGITAL_RF_TECH_106A);
528 if (rc)
529 return rc;
530
531 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
532 NFC_DIGITAL_FRAMING_NFCA_SHORT);
533 if (rc)
534 return rc;
535
536 skb = digital_skb_alloc(ddev, 1);
537 if (!skb)
538 return -ENOMEM;
539
540 skb_put_u8(skb, DIGITAL_CMD_SENS_REQ);
541
542 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_sens_res, NULL);
543 if (rc)
544 kfree_skb(skb);
545
546 return rc;
547}
548
549int digital_in_recv_mifare_res(struct sk_buff *resp)
550{
551 /* Successful READ command response is 16 data bytes + 2 CRC bytes long.
552 * Since the driver can't differentiate a ACK/NACK response from a valid
553 * READ response, the CRC calculation must be handled at digital level
554 * even if the driver supports it for this technology.
555 */
556 if (resp->len == DIGITAL_MIFARE_READ_RES_LEN + DIGITAL_CRC_LEN) {
557 if (digital_skb_check_crc_a(resp)) {
558 PROTOCOL_ERR("9.4.1.2");
559 return -EIO;
560 }
561
562 return 0;
563 }
564
565 /* ACK response (i.e. successful WRITE). */
566 if (resp->len == 1 && resp->data[0] == DIGITAL_MIFARE_ACK_RES) {
567 resp->data[0] = 0;
568 return 0;
569 }
570
571 /* NACK and any other responses are treated as error. */
572 return -EIO;
573}
574
575static void digital_in_recv_attrib_res(struct nfc_digital_dev *ddev, void *arg,
576 struct sk_buff *resp)
577{
578 struct nfc_target *target = arg;
579 struct digital_attrib_res *attrib_res;
580 int rc;
581
582 if (IS_ERR(resp)) {
583 rc = PTR_ERR(resp);
584 resp = NULL;
585 goto exit;
586 }
587
588 if (resp->len < sizeof(*attrib_res)) {
589 PROTOCOL_ERR("12.6.2");
590 rc = -EIO;
591 goto exit;
592 }
593
594 attrib_res = (struct digital_attrib_res *)resp->data;
595
596 if (attrib_res->mbli_did & 0x0f) {
597 PROTOCOL_ERR("12.6.2.1");
598 rc = -EIO;
599 goto exit;
600 }
601
602 rc = digital_target_found(ddev, target, NFC_PROTO_ISO14443_B);
603
604exit:
605 dev_kfree_skb(resp);
606 kfree(target);
607
608 if (rc)
609 digital_poll_next_tech(ddev);
610}
611
612static int digital_in_send_attrib_req(struct nfc_digital_dev *ddev,
613 struct nfc_target *target,
614 struct digital_sensb_res *sensb_res)
615{
616 struct digital_attrib_req *attrib_req;
617 struct sk_buff *skb;
618 int rc;
619
620 skb = digital_skb_alloc(ddev, sizeof(*attrib_req));
621 if (!skb)
622 return -ENOMEM;
623
624 attrib_req = skb_put(skb, sizeof(*attrib_req));
625
626 attrib_req->cmd = DIGITAL_CMD_ATTRIB_REQ;
627 memcpy(attrib_req->nfcid0, sensb_res->nfcid0,
628 sizeof(attrib_req->nfcid0));
629 attrib_req->param1 = DIGITAL_ATTRIB_P1_TR0_DEFAULT |
630 DIGITAL_ATTRIB_P1_TR1_DEFAULT;
631 attrib_req->param2 = DIGITAL_ATTRIB_P2_LISTEN_POLL_1 |
632 DIGITAL_ATTRIB_P2_POLL_LISTEN_1 |
633 DIGITAL_ATTRIB_P2_MAX_FRAME_256;
634 attrib_req->param3 = sensb_res->proto_info[1] & 0x07;
635 attrib_req->param4 = DIGITAL_ATTRIB_P4_DID(0);
636
637 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_attrib_res,
638 target);
639 if (rc)
640 kfree_skb(skb);
641
642 return rc;
643}
644
645static void digital_in_recv_sensb_res(struct nfc_digital_dev *ddev, void *arg,
646 struct sk_buff *resp)
647{
648 struct nfc_target *target = NULL;
649 struct digital_sensb_res *sensb_res;
650 u8 fsci;
651 int rc;
652
653 if (IS_ERR(resp)) {
654 rc = PTR_ERR(resp);
655 resp = NULL;
656 goto exit;
657 }
658
659 if (resp->len != sizeof(*sensb_res)) {
660 PROTOCOL_ERR("5.6.2.1");
661 rc = -EIO;
662 goto exit;
663 }
664
665 sensb_res = (struct digital_sensb_res *)resp->data;
666
667 if (sensb_res->cmd != DIGITAL_CMD_SENSB_RES) {
668 PROTOCOL_ERR("5.6.2");
669 rc = -EIO;
670 goto exit;
671 }
672
673 if (!(sensb_res->proto_info[1] & BIT(0))) {
674 PROTOCOL_ERR("5.6.2.12");
675 rc = -EIO;
676 goto exit;
677 }
678
679 if (sensb_res->proto_info[1] & BIT(3)) {
680 PROTOCOL_ERR("5.6.2.16");
681 rc = -EIO;
682 goto exit;
683 }
684
685 fsci = DIGITAL_SENSB_FSCI(sensb_res->proto_info[1]);
686 if (fsci >= 8)
687 ddev->target_fsc = DIGITAL_ATS_MAX_FSC;
688 else
689 ddev->target_fsc = digital_ats_fsc[fsci];
690
691 target = kzalloc(sizeof(struct nfc_target), GFP_KERNEL);
692 if (!target) {
693 rc = -ENOMEM;
694 goto exit;
695 }
696
697 rc = digital_in_send_attrib_req(ddev, target, sensb_res);
698
699exit:
700 dev_kfree_skb(resp);
701
702 if (rc) {
703 kfree(target);
704 digital_poll_next_tech(ddev);
705 }
706}
707
708int digital_in_send_sensb_req(struct nfc_digital_dev *ddev, u8 rf_tech)
709{
710 struct digital_sensb_req *sensb_req;
711 struct sk_buff *skb;
712 int rc;
713
714 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_RF_TECH,
715 NFC_DIGITAL_RF_TECH_106B);
716 if (rc)
717 return rc;
718
719 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
720 NFC_DIGITAL_FRAMING_NFCB);
721 if (rc)
722 return rc;
723
724 skb = digital_skb_alloc(ddev, sizeof(*sensb_req));
725 if (!skb)
726 return -ENOMEM;
727
728 sensb_req = skb_put(skb, sizeof(*sensb_req));
729
730 sensb_req->cmd = DIGITAL_CMD_SENSB_REQ;
731 sensb_req->afi = 0x00; /* All families and sub-families */
732 sensb_req->param = DIGITAL_SENSB_N(0);
733
734 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_sensb_res,
735 NULL);
736 if (rc)
737 kfree_skb(skb);
738
739 return rc;
740}
741
742static void digital_in_recv_sensf_res(struct nfc_digital_dev *ddev, void *arg,
743 struct sk_buff *resp)
744{
745 int rc;
746 u8 proto;
747 struct nfc_target target;
748 struct digital_sensf_res *sensf_res;
749
750 if (IS_ERR(resp)) {
751 rc = PTR_ERR(resp);
752 resp = NULL;
753 goto exit;
754 }
755
756 if (resp->len < DIGITAL_SENSF_RES_MIN_LENGTH) {
757 rc = -EIO;
758 goto exit;
759 }
760
761 if (!DIGITAL_DRV_CAPS_IN_CRC(ddev)) {
762 rc = digital_skb_check_crc_f(resp);
763 if (rc) {
764 PROTOCOL_ERR("6.4.1.8");
765 goto exit;
766 }
767 }
768
769 skb_pull(resp, 1);
770
771 memset(&target, 0, sizeof(struct nfc_target));
772
773 sensf_res = (struct digital_sensf_res *)resp->data;
774
775 memcpy(target.sensf_res, sensf_res, resp->len);
776 target.sensf_res_len = resp->len;
777
778 memcpy(target.nfcid2, sensf_res->nfcid2, NFC_NFCID2_MAXSIZE);
779 target.nfcid2_len = NFC_NFCID2_MAXSIZE;
780
781 if (target.nfcid2[0] == DIGITAL_SENSF_NFCID2_NFC_DEP_B1 &&
782 target.nfcid2[1] == DIGITAL_SENSF_NFCID2_NFC_DEP_B2)
783 proto = NFC_PROTO_NFC_DEP;
784 else
785 proto = NFC_PROTO_FELICA;
786
787 rc = digital_target_found(ddev, &target, proto);
788
789exit:
790 dev_kfree_skb(resp);
791
792 if (rc)
793 digital_poll_next_tech(ddev);
794}
795
796int digital_in_send_sensf_req(struct nfc_digital_dev *ddev, u8 rf_tech)
797{
798 struct digital_sensf_req *sensf_req;
799 struct sk_buff *skb;
800 int rc;
801 u8 size;
802
803 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_RF_TECH, rf_tech);
804 if (rc)
805 return rc;
806
807 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
808 NFC_DIGITAL_FRAMING_NFCF);
809 if (rc)
810 return rc;
811
812 size = sizeof(struct digital_sensf_req);
813
814 skb = digital_skb_alloc(ddev, size);
815 if (!skb)
816 return -ENOMEM;
817
818 skb_put(skb, size);
819
820 sensf_req = (struct digital_sensf_req *)skb->data;
821 sensf_req->cmd = DIGITAL_CMD_SENSF_REQ;
822 sensf_req->sc1 = 0xFF;
823 sensf_req->sc2 = 0xFF;
824 sensf_req->rc = 0;
825 sensf_req->tsn = 0;
826
827 *(u8 *)skb_push(skb, 1) = size + 1;
828
829 if (!DIGITAL_DRV_CAPS_IN_CRC(ddev))
830 digital_skb_add_crc_f(skb);
831
832 rc = digital_in_send_cmd(ddev, skb, 30, digital_in_recv_sensf_res,
833 NULL);
834 if (rc)
835 kfree_skb(skb);
836
837 return rc;
838}
839
840static void digital_in_recv_iso15693_inv_res(struct nfc_digital_dev *ddev,
841 void *arg, struct sk_buff *resp)
842{
843 struct digital_iso15693_inv_res *res;
844 struct nfc_target *target = NULL;
845 int rc;
846
847 if (IS_ERR(resp)) {
848 rc = PTR_ERR(resp);
849 resp = NULL;
850 goto out_free_skb;
851 }
852
853 if (resp->len != sizeof(*res)) {
854 rc = -EIO;
855 goto out_free_skb;
856 }
857
858 res = (struct digital_iso15693_inv_res *)resp->data;
859
860 if (!DIGITAL_ISO15693_RES_IS_VALID(res->flags)) {
861 PROTOCOL_ERR("ISO15693 - 10.3.1");
862 rc = -EINVAL;
863 goto out_free_skb;
864 }
865
866 target = kzalloc(sizeof(*target), GFP_KERNEL);
867 if (!target) {
868 rc = -ENOMEM;
869 goto out_free_skb;
870 }
871
872 target->is_iso15693 = 1;
873 target->iso15693_dsfid = res->dsfid;
874 memcpy(target->iso15693_uid, &res->uid, sizeof(target->iso15693_uid));
875
876 rc = digital_target_found(ddev, target, NFC_PROTO_ISO15693);
877
878 kfree(target);
879
880out_free_skb:
881 dev_kfree_skb(resp);
882
883 if (rc)
884 digital_poll_next_tech(ddev);
885}
886
887int digital_in_send_iso15693_inv_req(struct nfc_digital_dev *ddev, u8 rf_tech)
888{
889 struct digital_iso15693_inv_req *req;
890 struct sk_buff *skb;
891 int rc;
892
893 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_RF_TECH,
894 NFC_DIGITAL_RF_TECH_ISO15693);
895 if (rc)
896 return rc;
897
898 rc = digital_in_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
899 NFC_DIGITAL_FRAMING_ISO15693_INVENTORY);
900 if (rc)
901 return rc;
902
903 skb = digital_skb_alloc(ddev, sizeof(*req));
904 if (!skb)
905 return -ENOMEM;
906
907 skb_put(skb, sizeof(*req) - sizeof(req->mask)); /* No mask */
908 req = (struct digital_iso15693_inv_req *)skb->data;
909
910 /* Single sub-carrier, high data rate, no AFI, single slot
911 * Inventory command
912 */
913 req->flags = DIGITAL_ISO15693_REQ_FLAG_DATA_RATE |
914 DIGITAL_ISO15693_REQ_FLAG_INVENTORY |
915 DIGITAL_ISO15693_REQ_FLAG_NB_SLOTS;
916 req->cmd = DIGITAL_CMD_ISO15693_INVENTORY_REQ;
917 req->mask_len = 0;
918
919 rc = digital_in_send_cmd(ddev, skb, 30,
920 digital_in_recv_iso15693_inv_res, NULL);
921 if (rc)
922 kfree_skb(skb);
923
924 return rc;
925}
926
927static int digital_tg_send_sel_res(struct nfc_digital_dev *ddev)
928{
929 struct sk_buff *skb;
930 int rc;
931
932 skb = digital_skb_alloc(ddev, 1);
933 if (!skb)
934 return -ENOMEM;
935
936 skb_put_u8(skb, DIGITAL_SEL_RES_NFC_DEP);
937
938 if (!DIGITAL_DRV_CAPS_TG_CRC(ddev))
939 digital_skb_add_crc_a(skb);
940
941 rc = digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
942 NFC_DIGITAL_FRAMING_NFCA_ANTICOL_COMPLETE);
943 if (rc) {
944 kfree_skb(skb);
945 return rc;
946 }
947
948 rc = digital_tg_send_cmd(ddev, skb, 300, digital_tg_recv_atr_req,
949 NULL);
950 if (rc)
951 kfree_skb(skb);
952
953 return rc;
954}
955
956static void digital_tg_recv_sel_req(struct nfc_digital_dev *ddev, void *arg,
957 struct sk_buff *resp)
958{
959 int rc;
960
961 if (IS_ERR(resp)) {
962 rc = PTR_ERR(resp);
963 resp = NULL;
964 goto exit;
965 }
966
967 if (!DIGITAL_DRV_CAPS_TG_CRC(ddev)) {
968 rc = digital_skb_check_crc_a(resp);
969 if (rc) {
970 PROTOCOL_ERR("4.4.1.3");
971 goto exit;
972 }
973 }
974
975 /* Silently ignore SEL_REQ content and send a SEL_RES for NFC-DEP */
976
977 rc = digital_tg_send_sel_res(ddev);
978
979exit:
980 if (rc)
981 digital_poll_next_tech(ddev);
982
983 dev_kfree_skb(resp);
984}
985
986static int digital_tg_send_sdd_res(struct nfc_digital_dev *ddev)
987{
988 struct sk_buff *skb;
989 struct digital_sdd_res *sdd_res;
990 int rc, i;
991
992 skb = digital_skb_alloc(ddev, sizeof(struct digital_sdd_res));
993 if (!skb)
994 return -ENOMEM;
995
996 skb_put(skb, sizeof(struct digital_sdd_res));
997 sdd_res = (struct digital_sdd_res *)skb->data;
998
999 sdd_res->nfcid1[0] = 0x08;
1000 get_random_bytes(sdd_res->nfcid1 + 1, 3);
1001
1002 sdd_res->bcc = 0;
1003 for (i = 0; i < 4; i++)
1004 sdd_res->bcc ^= sdd_res->nfcid1[i];
1005
1006 rc = digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
1007 NFC_DIGITAL_FRAMING_NFCA_STANDARD_WITH_CRC_A);
1008 if (rc) {
1009 kfree_skb(skb);
1010 return rc;
1011 }
1012
1013 rc = digital_tg_send_cmd(ddev, skb, 300, digital_tg_recv_sel_req,
1014 NULL);
1015 if (rc)
1016 kfree_skb(skb);
1017
1018 return rc;
1019}
1020
1021static void digital_tg_recv_sdd_req(struct nfc_digital_dev *ddev, void *arg,
1022 struct sk_buff *resp)
1023{
1024 u8 *sdd_req;
1025 int rc;
1026
1027 if (IS_ERR(resp)) {
1028 rc = PTR_ERR(resp);
1029 resp = NULL;
1030 goto exit;
1031 }
1032
1033 sdd_req = resp->data;
1034
1035 if (resp->len < 2 || sdd_req[0] != DIGITAL_CMD_SEL_REQ_CL1 ||
1036 sdd_req[1] != DIGITAL_SDD_REQ_SEL_PAR) {
1037 rc = -EINVAL;
1038 goto exit;
1039 }
1040
1041 rc = digital_tg_send_sdd_res(ddev);
1042
1043exit:
1044 if (rc)
1045 digital_poll_next_tech(ddev);
1046
1047 dev_kfree_skb(resp);
1048}
1049
1050static int digital_tg_send_sens_res(struct nfc_digital_dev *ddev)
1051{
1052 struct sk_buff *skb;
1053 u8 *sens_res;
1054 int rc;
1055
1056 skb = digital_skb_alloc(ddev, 2);
1057 if (!skb)
1058 return -ENOMEM;
1059
1060 sens_res = skb_put(skb, 2);
1061
1062 sens_res[0] = (DIGITAL_SENS_RES_NFC_DEP >> 8) & 0xFF;
1063 sens_res[1] = DIGITAL_SENS_RES_NFC_DEP & 0xFF;
1064
1065 rc = digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
1066 NFC_DIGITAL_FRAMING_NFCA_STANDARD);
1067 if (rc) {
1068 kfree_skb(skb);
1069 return rc;
1070 }
1071
1072 rc = digital_tg_send_cmd(ddev, skb, 300, digital_tg_recv_sdd_req,
1073 NULL);
1074 if (rc)
1075 kfree_skb(skb);
1076
1077 return rc;
1078}
1079
1080void digital_tg_recv_sens_req(struct nfc_digital_dev *ddev, void *arg,
1081 struct sk_buff *resp)
1082{
1083 u8 sens_req;
1084 int rc;
1085
1086 if (IS_ERR(resp)) {
1087 rc = PTR_ERR(resp);
1088 resp = NULL;
1089 goto exit;
1090 }
1091
1092 sens_req = resp->data[0];
1093
1094 if (!resp->len || (sens_req != DIGITAL_CMD_SENS_REQ &&
1095 sens_req != DIGITAL_CMD_ALL_REQ)) {
1096 rc = -EINVAL;
1097 goto exit;
1098 }
1099
1100 rc = digital_tg_send_sens_res(ddev);
1101
1102exit:
1103 if (rc)
1104 digital_poll_next_tech(ddev);
1105
1106 dev_kfree_skb(resp);
1107}
1108
1109static void digital_tg_recv_atr_or_sensf_req(struct nfc_digital_dev *ddev,
1110 void *arg, struct sk_buff *resp)
1111{
1112 if (!IS_ERR(resp) && (resp->len >= 2) &&
1113 (resp->data[1] == DIGITAL_CMD_SENSF_REQ))
1114 digital_tg_recv_sensf_req(ddev, arg, resp);
1115 else
1116 digital_tg_recv_atr_req(ddev, arg, resp);
1117
1118 return;
1119}
1120
1121static int digital_tg_send_sensf_res(struct nfc_digital_dev *ddev,
1122 struct digital_sensf_req *sensf_req)
1123{
1124 struct sk_buff *skb;
1125 u8 size;
1126 int rc;
1127 struct digital_sensf_res *sensf_res;
1128
1129 size = sizeof(struct digital_sensf_res);
1130
1131 if (sensf_req->rc == DIGITAL_SENSF_REQ_RC_NONE)
1132 size -= sizeof(sensf_res->rd);
1133
1134 skb = digital_skb_alloc(ddev, size);
1135 if (!skb)
1136 return -ENOMEM;
1137
1138 skb_put(skb, size);
1139
1140 sensf_res = (struct digital_sensf_res *)skb->data;
1141
1142 memset(sensf_res, 0, size);
1143
1144 sensf_res->cmd = DIGITAL_CMD_SENSF_RES;
1145 sensf_res->nfcid2[0] = DIGITAL_SENSF_NFCID2_NFC_DEP_B1;
1146 sensf_res->nfcid2[1] = DIGITAL_SENSF_NFCID2_NFC_DEP_B2;
1147 get_random_bytes(&sensf_res->nfcid2[2], 6);
1148
1149 switch (sensf_req->rc) {
1150 case DIGITAL_SENSF_REQ_RC_SC:
1151 sensf_res->rd[0] = sensf_req->sc1;
1152 sensf_res->rd[1] = sensf_req->sc2;
1153 break;
1154 case DIGITAL_SENSF_REQ_RC_AP:
1155 sensf_res->rd[0] = DIGITAL_SENSF_RES_RD_AP_B1;
1156 sensf_res->rd[1] = DIGITAL_SENSF_RES_RD_AP_B2;
1157 break;
1158 }
1159
1160 *(u8 *)skb_push(skb, sizeof(u8)) = size + 1;
1161
1162 if (!DIGITAL_DRV_CAPS_TG_CRC(ddev))
1163 digital_skb_add_crc_f(skb);
1164
1165 rc = digital_tg_send_cmd(ddev, skb, 300,
1166 digital_tg_recv_atr_or_sensf_req, NULL);
1167 if (rc)
1168 kfree_skb(skb);
1169
1170 return rc;
1171}
1172
1173void digital_tg_recv_sensf_req(struct nfc_digital_dev *ddev, void *arg,
1174 struct sk_buff *resp)
1175{
1176 struct digital_sensf_req *sensf_req;
1177 int rc;
1178
1179 if (IS_ERR(resp)) {
1180 rc = PTR_ERR(resp);
1181 resp = NULL;
1182 goto exit;
1183 }
1184
1185 if (!DIGITAL_DRV_CAPS_TG_CRC(ddev)) {
1186 rc = digital_skb_check_crc_f(resp);
1187 if (rc) {
1188 PROTOCOL_ERR("6.4.1.8");
1189 goto exit;
1190 }
1191 }
1192
1193 if (resp->len != sizeof(struct digital_sensf_req) + 1) {
1194 rc = -EINVAL;
1195 goto exit;
1196 }
1197
1198 skb_pull(resp, 1);
1199 sensf_req = (struct digital_sensf_req *)resp->data;
1200
1201 if (sensf_req->cmd != DIGITAL_CMD_SENSF_REQ) {
1202 rc = -EINVAL;
1203 goto exit;
1204 }
1205
1206 rc = digital_tg_send_sensf_res(ddev, sensf_req);
1207
1208exit:
1209 if (rc)
1210 digital_poll_next_tech(ddev);
1211
1212 dev_kfree_skb(resp);
1213}
1214
1215static int digital_tg_config_nfca(struct nfc_digital_dev *ddev)
1216{
1217 int rc;
1218
1219 rc = digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_RF_TECH,
1220 NFC_DIGITAL_RF_TECH_106A);
1221 if (rc)
1222 return rc;
1223
1224 return digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
1225 NFC_DIGITAL_FRAMING_NFCA_NFC_DEP);
1226}
1227
1228int digital_tg_listen_nfca(struct nfc_digital_dev *ddev, u8 rf_tech)
1229{
1230 int rc;
1231
1232 rc = digital_tg_config_nfca(ddev);
1233 if (rc)
1234 return rc;
1235
1236 return digital_tg_listen(ddev, 300, digital_tg_recv_sens_req, NULL);
1237}
1238
1239static int digital_tg_config_nfcf(struct nfc_digital_dev *ddev, u8 rf_tech)
1240{
1241 int rc;
1242
1243 rc = digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_RF_TECH, rf_tech);
1244 if (rc)
1245 return rc;
1246
1247 return digital_tg_configure_hw(ddev, NFC_DIGITAL_CONFIG_FRAMING,
1248 NFC_DIGITAL_FRAMING_NFCF_NFC_DEP);
1249}
1250
1251int digital_tg_listen_nfcf(struct nfc_digital_dev *ddev, u8 rf_tech)
1252{
1253 int rc;
1254
1255 rc = digital_tg_config_nfcf(ddev, rf_tech);
1256 if (rc)
1257 return rc;
1258
1259 return digital_tg_listen(ddev, 300, digital_tg_recv_sensf_req, NULL);
1260}
1261
1262void digital_tg_recv_md_req(struct nfc_digital_dev *ddev, void *arg,
1263 struct sk_buff *resp)
1264{
1265 u8 rf_tech;
1266 int rc;
1267
1268 if (IS_ERR(resp)) {
1269 resp = NULL;
1270 goto exit_free_skb;
1271 }
1272
1273 rc = ddev->ops->tg_get_rf_tech(ddev, &rf_tech);
1274 if (rc)
1275 goto exit_free_skb;
1276
1277 switch (rf_tech) {
1278 case NFC_DIGITAL_RF_TECH_106A:
1279 rc = digital_tg_config_nfca(ddev);
1280 if (rc)
1281 goto exit_free_skb;
1282 digital_tg_recv_sens_req(ddev, arg, resp);
1283 break;
1284 case NFC_DIGITAL_RF_TECH_212F:
1285 case NFC_DIGITAL_RF_TECH_424F:
1286 rc = digital_tg_config_nfcf(ddev, rf_tech);
1287 if (rc)
1288 goto exit_free_skb;
1289 digital_tg_recv_sensf_req(ddev, arg, resp);
1290 break;
1291 default:
1292 goto exit_free_skb;
1293 }
1294
1295 return;
1296
1297exit_free_skb:
1298 digital_poll_next_tech(ddev);
1299 dev_kfree_skb(resp);
1300}