Loading...
1// SPDX-License-Identifier: GPL-2.0-only
2/*
3 * The NFC Controller Interface is the communication protocol between an
4 * NFC Controller (NFCC) and a Device Host (DH).
5 *
6 * Copyright (C) 2011 Texas Instruments, Inc.
7 * Copyright (C) 2014 Marvell International Ltd.
8 *
9 * Written by Ilan Elias <ilane@ti.com>
10 *
11 * Acknowledgements:
12 * This file is based on hci_core.c, which was written
13 * by Maxim Krasnyansky.
14 */
15
16#define pr_fmt(fmt) KBUILD_MODNAME ": %s: " fmt, __func__
17
18#include <linux/module.h>
19#include <linux/kernel.h>
20#include <linux/types.h>
21#include <linux/workqueue.h>
22#include <linux/completion.h>
23#include <linux/export.h>
24#include <linux/sched.h>
25#include <linux/bitops.h>
26#include <linux/skbuff.h>
27#include <linux/kcov.h>
28
29#include "../nfc.h"
30#include <net/nfc/nci.h>
31#include <net/nfc/nci_core.h>
32#include <linux/nfc.h>
33
34struct core_conn_create_data {
35 int length;
36 struct nci_core_conn_create_cmd *cmd;
37};
38
39static void nci_cmd_work(struct work_struct *work);
40static void nci_rx_work(struct work_struct *work);
41static void nci_tx_work(struct work_struct *work);
42
43struct nci_conn_info *nci_get_conn_info_by_conn_id(struct nci_dev *ndev,
44 int conn_id)
45{
46 struct nci_conn_info *conn_info;
47
48 list_for_each_entry(conn_info, &ndev->conn_info_list, list) {
49 if (conn_info->conn_id == conn_id)
50 return conn_info;
51 }
52
53 return NULL;
54}
55
56int nci_get_conn_info_by_dest_type_params(struct nci_dev *ndev, u8 dest_type,
57 const struct dest_spec_params *params)
58{
59 const struct nci_conn_info *conn_info;
60
61 list_for_each_entry(conn_info, &ndev->conn_info_list, list) {
62 if (conn_info->dest_type == dest_type) {
63 if (!params)
64 return conn_info->conn_id;
65
66 if (params->id == conn_info->dest_params->id &&
67 params->protocol == conn_info->dest_params->protocol)
68 return conn_info->conn_id;
69 }
70 }
71
72 return -EINVAL;
73}
74EXPORT_SYMBOL(nci_get_conn_info_by_dest_type_params);
75
76/* ---- NCI requests ---- */
77
78void nci_req_complete(struct nci_dev *ndev, int result)
79{
80 if (ndev->req_status == NCI_REQ_PEND) {
81 ndev->req_result = result;
82 ndev->req_status = NCI_REQ_DONE;
83 complete(&ndev->req_completion);
84 }
85}
86EXPORT_SYMBOL(nci_req_complete);
87
88static void nci_req_cancel(struct nci_dev *ndev, int err)
89{
90 if (ndev->req_status == NCI_REQ_PEND) {
91 ndev->req_result = err;
92 ndev->req_status = NCI_REQ_CANCELED;
93 complete(&ndev->req_completion);
94 }
95}
96
97/* Execute request and wait for completion. */
98static int __nci_request(struct nci_dev *ndev,
99 void (*req)(struct nci_dev *ndev, const void *opt),
100 const void *opt, __u32 timeout)
101{
102 int rc = 0;
103 long completion_rc;
104
105 ndev->req_status = NCI_REQ_PEND;
106
107 reinit_completion(&ndev->req_completion);
108 req(ndev, opt);
109 completion_rc =
110 wait_for_completion_interruptible_timeout(&ndev->req_completion,
111 timeout);
112
113 pr_debug("wait_for_completion return %ld\n", completion_rc);
114
115 if (completion_rc > 0) {
116 switch (ndev->req_status) {
117 case NCI_REQ_DONE:
118 rc = nci_to_errno(ndev->req_result);
119 break;
120
121 case NCI_REQ_CANCELED:
122 rc = -ndev->req_result;
123 break;
124
125 default:
126 rc = -ETIMEDOUT;
127 break;
128 }
129 } else {
130 pr_err("wait_for_completion_interruptible_timeout failed %ld\n",
131 completion_rc);
132
133 rc = ((completion_rc == 0) ? (-ETIMEDOUT) : (completion_rc));
134 }
135
136 ndev->req_status = ndev->req_result = 0;
137
138 return rc;
139}
140
141inline int nci_request(struct nci_dev *ndev,
142 void (*req)(struct nci_dev *ndev,
143 const void *opt),
144 const void *opt, __u32 timeout)
145{
146 int rc;
147
148 /* Serialize all requests */
149 mutex_lock(&ndev->req_lock);
150 /* check the state after obtaing the lock against any races
151 * from nci_close_device when the device gets removed.
152 */
153 if (test_bit(NCI_UP, &ndev->flags))
154 rc = __nci_request(ndev, req, opt, timeout);
155 else
156 rc = -ENETDOWN;
157 mutex_unlock(&ndev->req_lock);
158
159 return rc;
160}
161
162static void nci_reset_req(struct nci_dev *ndev, const void *opt)
163{
164 struct nci_core_reset_cmd cmd;
165
166 cmd.reset_type = NCI_RESET_TYPE_RESET_CONFIG;
167 nci_send_cmd(ndev, NCI_OP_CORE_RESET_CMD, 1, &cmd);
168}
169
170static void nci_init_req(struct nci_dev *ndev, const void *opt)
171{
172 u8 plen = 0;
173
174 if (opt)
175 plen = sizeof(struct nci_core_init_v2_cmd);
176
177 nci_send_cmd(ndev, NCI_OP_CORE_INIT_CMD, plen, opt);
178}
179
180static void nci_init_complete_req(struct nci_dev *ndev, const void *opt)
181{
182 struct nci_rf_disc_map_cmd cmd;
183 struct disc_map_config *cfg = cmd.mapping_configs;
184 __u8 *num = &cmd.num_mapping_configs;
185 int i;
186
187 /* set rf mapping configurations */
188 *num = 0;
189
190 /* by default mapping is set to NCI_RF_INTERFACE_FRAME */
191 for (i = 0; i < ndev->num_supported_rf_interfaces; i++) {
192 if (ndev->supported_rf_interfaces[i] ==
193 NCI_RF_INTERFACE_ISO_DEP) {
194 cfg[*num].rf_protocol = NCI_RF_PROTOCOL_ISO_DEP;
195 cfg[*num].mode = NCI_DISC_MAP_MODE_POLL |
196 NCI_DISC_MAP_MODE_LISTEN;
197 cfg[*num].rf_interface = NCI_RF_INTERFACE_ISO_DEP;
198 (*num)++;
199 } else if (ndev->supported_rf_interfaces[i] ==
200 NCI_RF_INTERFACE_NFC_DEP) {
201 cfg[*num].rf_protocol = NCI_RF_PROTOCOL_NFC_DEP;
202 cfg[*num].mode = NCI_DISC_MAP_MODE_POLL |
203 NCI_DISC_MAP_MODE_LISTEN;
204 cfg[*num].rf_interface = NCI_RF_INTERFACE_NFC_DEP;
205 (*num)++;
206 }
207
208 if (*num == NCI_MAX_NUM_MAPPING_CONFIGS)
209 break;
210 }
211
212 nci_send_cmd(ndev, NCI_OP_RF_DISCOVER_MAP_CMD,
213 (1 + ((*num) * sizeof(struct disc_map_config))), &cmd);
214}
215
216struct nci_set_config_param {
217 __u8 id;
218 size_t len;
219 const __u8 *val;
220};
221
222static void nci_set_config_req(struct nci_dev *ndev, const void *opt)
223{
224 const struct nci_set_config_param *param = opt;
225 struct nci_core_set_config_cmd cmd;
226
227 BUG_ON(param->len > NCI_MAX_PARAM_LEN);
228
229 cmd.num_params = 1;
230 cmd.param.id = param->id;
231 cmd.param.len = param->len;
232 memcpy(cmd.param.val, param->val, param->len);
233
234 nci_send_cmd(ndev, NCI_OP_CORE_SET_CONFIG_CMD, (3 + param->len), &cmd);
235}
236
237struct nci_rf_discover_param {
238 __u32 im_protocols;
239 __u32 tm_protocols;
240};
241
242static void nci_rf_discover_req(struct nci_dev *ndev, const void *opt)
243{
244 const struct nci_rf_discover_param *param = opt;
245 struct nci_rf_disc_cmd cmd;
246
247 cmd.num_disc_configs = 0;
248
249 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
250 (param->im_protocols & NFC_PROTO_JEWEL_MASK ||
251 param->im_protocols & NFC_PROTO_MIFARE_MASK ||
252 param->im_protocols & NFC_PROTO_ISO14443_MASK ||
253 param->im_protocols & NFC_PROTO_NFC_DEP_MASK)) {
254 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
255 NCI_NFC_A_PASSIVE_POLL_MODE;
256 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
257 cmd.num_disc_configs++;
258 }
259
260 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
261 (param->im_protocols & NFC_PROTO_ISO14443_B_MASK)) {
262 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
263 NCI_NFC_B_PASSIVE_POLL_MODE;
264 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
265 cmd.num_disc_configs++;
266 }
267
268 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
269 (param->im_protocols & NFC_PROTO_FELICA_MASK ||
270 param->im_protocols & NFC_PROTO_NFC_DEP_MASK)) {
271 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
272 NCI_NFC_F_PASSIVE_POLL_MODE;
273 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
274 cmd.num_disc_configs++;
275 }
276
277 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
278 (param->im_protocols & NFC_PROTO_ISO15693_MASK)) {
279 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
280 NCI_NFC_V_PASSIVE_POLL_MODE;
281 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
282 cmd.num_disc_configs++;
283 }
284
285 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS - 1) &&
286 (param->tm_protocols & NFC_PROTO_NFC_DEP_MASK)) {
287 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
288 NCI_NFC_A_PASSIVE_LISTEN_MODE;
289 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
290 cmd.num_disc_configs++;
291 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
292 NCI_NFC_F_PASSIVE_LISTEN_MODE;
293 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
294 cmd.num_disc_configs++;
295 }
296
297 nci_send_cmd(ndev, NCI_OP_RF_DISCOVER_CMD,
298 (1 + (cmd.num_disc_configs * sizeof(struct disc_config))),
299 &cmd);
300}
301
302struct nci_rf_discover_select_param {
303 __u8 rf_discovery_id;
304 __u8 rf_protocol;
305};
306
307static void nci_rf_discover_select_req(struct nci_dev *ndev, const void *opt)
308{
309 const struct nci_rf_discover_select_param *param = opt;
310 struct nci_rf_discover_select_cmd cmd;
311
312 cmd.rf_discovery_id = param->rf_discovery_id;
313 cmd.rf_protocol = param->rf_protocol;
314
315 switch (cmd.rf_protocol) {
316 case NCI_RF_PROTOCOL_ISO_DEP:
317 cmd.rf_interface = NCI_RF_INTERFACE_ISO_DEP;
318 break;
319
320 case NCI_RF_PROTOCOL_NFC_DEP:
321 cmd.rf_interface = NCI_RF_INTERFACE_NFC_DEP;
322 break;
323
324 default:
325 cmd.rf_interface = NCI_RF_INTERFACE_FRAME;
326 break;
327 }
328
329 nci_send_cmd(ndev, NCI_OP_RF_DISCOVER_SELECT_CMD,
330 sizeof(struct nci_rf_discover_select_cmd), &cmd);
331}
332
333static void nci_rf_deactivate_req(struct nci_dev *ndev, const void *opt)
334{
335 struct nci_rf_deactivate_cmd cmd;
336
337 cmd.type = (unsigned long)opt;
338
339 nci_send_cmd(ndev, NCI_OP_RF_DEACTIVATE_CMD,
340 sizeof(struct nci_rf_deactivate_cmd), &cmd);
341}
342
343struct nci_cmd_param {
344 __u16 opcode;
345 size_t len;
346 const __u8 *payload;
347};
348
349static void nci_generic_req(struct nci_dev *ndev, const void *opt)
350{
351 const struct nci_cmd_param *param = opt;
352
353 nci_send_cmd(ndev, param->opcode, param->len, param->payload);
354}
355
356int nci_prop_cmd(struct nci_dev *ndev, __u8 oid, size_t len, const __u8 *payload)
357{
358 struct nci_cmd_param param;
359
360 param.opcode = nci_opcode_pack(NCI_GID_PROPRIETARY, oid);
361 param.len = len;
362 param.payload = payload;
363
364 return __nci_request(ndev, nci_generic_req, ¶m,
365 msecs_to_jiffies(NCI_CMD_TIMEOUT));
366}
367EXPORT_SYMBOL(nci_prop_cmd);
368
369int nci_core_cmd(struct nci_dev *ndev, __u16 opcode, size_t len,
370 const __u8 *payload)
371{
372 struct nci_cmd_param param;
373
374 param.opcode = opcode;
375 param.len = len;
376 param.payload = payload;
377
378 return __nci_request(ndev, nci_generic_req, ¶m,
379 msecs_to_jiffies(NCI_CMD_TIMEOUT));
380}
381EXPORT_SYMBOL(nci_core_cmd);
382
383int nci_core_reset(struct nci_dev *ndev)
384{
385 return __nci_request(ndev, nci_reset_req, (void *)0,
386 msecs_to_jiffies(NCI_RESET_TIMEOUT));
387}
388EXPORT_SYMBOL(nci_core_reset);
389
390int nci_core_init(struct nci_dev *ndev)
391{
392 return __nci_request(ndev, nci_init_req, (void *)0,
393 msecs_to_jiffies(NCI_INIT_TIMEOUT));
394}
395EXPORT_SYMBOL(nci_core_init);
396
397struct nci_loopback_data {
398 u8 conn_id;
399 struct sk_buff *data;
400};
401
402static void nci_send_data_req(struct nci_dev *ndev, const void *opt)
403{
404 const struct nci_loopback_data *data = opt;
405
406 nci_send_data(ndev, data->conn_id, data->data);
407}
408
409static void nci_nfcc_loopback_cb(void *context, struct sk_buff *skb, int err)
410{
411 struct nci_dev *ndev = (struct nci_dev *)context;
412 struct nci_conn_info *conn_info;
413
414 conn_info = nci_get_conn_info_by_conn_id(ndev, ndev->cur_conn_id);
415 if (!conn_info) {
416 nci_req_complete(ndev, NCI_STATUS_REJECTED);
417 return;
418 }
419
420 conn_info->rx_skb = skb;
421
422 nci_req_complete(ndev, NCI_STATUS_OK);
423}
424
425int nci_nfcc_loopback(struct nci_dev *ndev, const void *data, size_t data_len,
426 struct sk_buff **resp)
427{
428 int r;
429 struct nci_loopback_data loopback_data;
430 struct nci_conn_info *conn_info;
431 struct sk_buff *skb;
432 int conn_id = nci_get_conn_info_by_dest_type_params(ndev,
433 NCI_DESTINATION_NFCC_LOOPBACK, NULL);
434
435 if (conn_id < 0) {
436 r = nci_core_conn_create(ndev, NCI_DESTINATION_NFCC_LOOPBACK,
437 0, 0, NULL);
438 if (r != NCI_STATUS_OK)
439 return r;
440
441 conn_id = nci_get_conn_info_by_dest_type_params(ndev,
442 NCI_DESTINATION_NFCC_LOOPBACK,
443 NULL);
444 }
445
446 conn_info = nci_get_conn_info_by_conn_id(ndev, conn_id);
447 if (!conn_info)
448 return -EPROTO;
449
450 /* store cb and context to be used on receiving data */
451 conn_info->data_exchange_cb = nci_nfcc_loopback_cb;
452 conn_info->data_exchange_cb_context = ndev;
453
454 skb = nci_skb_alloc(ndev, NCI_DATA_HDR_SIZE + data_len, GFP_KERNEL);
455 if (!skb)
456 return -ENOMEM;
457
458 skb_reserve(skb, NCI_DATA_HDR_SIZE);
459 skb_put_data(skb, data, data_len);
460
461 loopback_data.conn_id = conn_id;
462 loopback_data.data = skb;
463
464 ndev->cur_conn_id = conn_id;
465 r = nci_request(ndev, nci_send_data_req, &loopback_data,
466 msecs_to_jiffies(NCI_DATA_TIMEOUT));
467 if (r == NCI_STATUS_OK && resp)
468 *resp = conn_info->rx_skb;
469
470 return r;
471}
472EXPORT_SYMBOL(nci_nfcc_loopback);
473
474static int nci_open_device(struct nci_dev *ndev)
475{
476 int rc = 0;
477
478 mutex_lock(&ndev->req_lock);
479
480 if (test_bit(NCI_UNREG, &ndev->flags)) {
481 rc = -ENODEV;
482 goto done;
483 }
484
485 if (test_bit(NCI_UP, &ndev->flags)) {
486 rc = -EALREADY;
487 goto done;
488 }
489
490 if (ndev->ops->open(ndev)) {
491 rc = -EIO;
492 goto done;
493 }
494
495 atomic_set(&ndev->cmd_cnt, 1);
496
497 set_bit(NCI_INIT, &ndev->flags);
498
499 if (ndev->ops->init)
500 rc = ndev->ops->init(ndev);
501
502 if (!rc) {
503 rc = __nci_request(ndev, nci_reset_req, (void *)0,
504 msecs_to_jiffies(NCI_RESET_TIMEOUT));
505 }
506
507 if (!rc && ndev->ops->setup) {
508 rc = ndev->ops->setup(ndev);
509 }
510
511 if (!rc) {
512 struct nci_core_init_v2_cmd nci_init_v2_cmd = {
513 .feature1 = NCI_FEATURE_DISABLE,
514 .feature2 = NCI_FEATURE_DISABLE
515 };
516 const void *opt = NULL;
517
518 if (ndev->nci_ver & NCI_VER_2_MASK)
519 opt = &nci_init_v2_cmd;
520
521 rc = __nci_request(ndev, nci_init_req, opt,
522 msecs_to_jiffies(NCI_INIT_TIMEOUT));
523 }
524
525 if (!rc && ndev->ops->post_setup)
526 rc = ndev->ops->post_setup(ndev);
527
528 if (!rc) {
529 rc = __nci_request(ndev, nci_init_complete_req, (void *)0,
530 msecs_to_jiffies(NCI_INIT_TIMEOUT));
531 }
532
533 clear_bit(NCI_INIT, &ndev->flags);
534
535 if (!rc) {
536 set_bit(NCI_UP, &ndev->flags);
537 nci_clear_target_list(ndev);
538 atomic_set(&ndev->state, NCI_IDLE);
539 } else {
540 /* Init failed, cleanup */
541 skb_queue_purge(&ndev->cmd_q);
542 skb_queue_purge(&ndev->rx_q);
543 skb_queue_purge(&ndev->tx_q);
544
545 ndev->ops->close(ndev);
546 ndev->flags &= BIT(NCI_UNREG);
547 }
548
549done:
550 mutex_unlock(&ndev->req_lock);
551 return rc;
552}
553
554static int nci_close_device(struct nci_dev *ndev)
555{
556 nci_req_cancel(ndev, ENODEV);
557
558 /* This mutex needs to be held as a barrier for
559 * caller nci_unregister_device
560 */
561 mutex_lock(&ndev->req_lock);
562
563 if (!test_and_clear_bit(NCI_UP, &ndev->flags)) {
564 /* Need to flush the cmd wq in case
565 * there is a queued/running cmd_work
566 */
567 flush_workqueue(ndev->cmd_wq);
568 del_timer_sync(&ndev->cmd_timer);
569 del_timer_sync(&ndev->data_timer);
570 mutex_unlock(&ndev->req_lock);
571 return 0;
572 }
573
574 /* Drop RX and TX queues */
575 skb_queue_purge(&ndev->rx_q);
576 skb_queue_purge(&ndev->tx_q);
577
578 /* Flush RX and TX wq */
579 flush_workqueue(ndev->rx_wq);
580 flush_workqueue(ndev->tx_wq);
581
582 /* Reset device */
583 skb_queue_purge(&ndev->cmd_q);
584 atomic_set(&ndev->cmd_cnt, 1);
585
586 set_bit(NCI_INIT, &ndev->flags);
587 __nci_request(ndev, nci_reset_req, (void *)0,
588 msecs_to_jiffies(NCI_RESET_TIMEOUT));
589
590 /* After this point our queues are empty
591 * and no works are scheduled.
592 */
593 ndev->ops->close(ndev);
594
595 clear_bit(NCI_INIT, &ndev->flags);
596
597 /* Flush cmd wq */
598 flush_workqueue(ndev->cmd_wq);
599
600 del_timer_sync(&ndev->cmd_timer);
601
602 /* Clear flags except NCI_UNREG */
603 ndev->flags &= BIT(NCI_UNREG);
604
605 mutex_unlock(&ndev->req_lock);
606
607 return 0;
608}
609
610/* NCI command timer function */
611static void nci_cmd_timer(struct timer_list *t)
612{
613 struct nci_dev *ndev = from_timer(ndev, t, cmd_timer);
614
615 atomic_set(&ndev->cmd_cnt, 1);
616 queue_work(ndev->cmd_wq, &ndev->cmd_work);
617}
618
619/* NCI data exchange timer function */
620static void nci_data_timer(struct timer_list *t)
621{
622 struct nci_dev *ndev = from_timer(ndev, t, data_timer);
623
624 set_bit(NCI_DATA_EXCHANGE_TO, &ndev->flags);
625 queue_work(ndev->rx_wq, &ndev->rx_work);
626}
627
628static int nci_dev_up(struct nfc_dev *nfc_dev)
629{
630 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
631
632 return nci_open_device(ndev);
633}
634
635static int nci_dev_down(struct nfc_dev *nfc_dev)
636{
637 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
638
639 return nci_close_device(ndev);
640}
641
642int nci_set_config(struct nci_dev *ndev, __u8 id, size_t len, const __u8 *val)
643{
644 struct nci_set_config_param param;
645
646 if (!val || !len)
647 return 0;
648
649 param.id = id;
650 param.len = len;
651 param.val = val;
652
653 return __nci_request(ndev, nci_set_config_req, ¶m,
654 msecs_to_jiffies(NCI_SET_CONFIG_TIMEOUT));
655}
656EXPORT_SYMBOL(nci_set_config);
657
658static void nci_nfcee_discover_req(struct nci_dev *ndev, const void *opt)
659{
660 struct nci_nfcee_discover_cmd cmd;
661 __u8 action = (unsigned long)opt;
662
663 cmd.discovery_action = action;
664
665 nci_send_cmd(ndev, NCI_OP_NFCEE_DISCOVER_CMD, 1, &cmd);
666}
667
668int nci_nfcee_discover(struct nci_dev *ndev, u8 action)
669{
670 unsigned long opt = action;
671
672 return __nci_request(ndev, nci_nfcee_discover_req, (void *)opt,
673 msecs_to_jiffies(NCI_CMD_TIMEOUT));
674}
675EXPORT_SYMBOL(nci_nfcee_discover);
676
677static void nci_nfcee_mode_set_req(struct nci_dev *ndev, const void *opt)
678{
679 const struct nci_nfcee_mode_set_cmd *cmd = opt;
680
681 nci_send_cmd(ndev, NCI_OP_NFCEE_MODE_SET_CMD,
682 sizeof(struct nci_nfcee_mode_set_cmd), cmd);
683}
684
685int nci_nfcee_mode_set(struct nci_dev *ndev, u8 nfcee_id, u8 nfcee_mode)
686{
687 struct nci_nfcee_mode_set_cmd cmd;
688
689 cmd.nfcee_id = nfcee_id;
690 cmd.nfcee_mode = nfcee_mode;
691
692 return __nci_request(ndev, nci_nfcee_mode_set_req, &cmd,
693 msecs_to_jiffies(NCI_CMD_TIMEOUT));
694}
695EXPORT_SYMBOL(nci_nfcee_mode_set);
696
697static void nci_core_conn_create_req(struct nci_dev *ndev, const void *opt)
698{
699 const struct core_conn_create_data *data = opt;
700
701 nci_send_cmd(ndev, NCI_OP_CORE_CONN_CREATE_CMD, data->length, data->cmd);
702}
703
704int nci_core_conn_create(struct nci_dev *ndev, u8 destination_type,
705 u8 number_destination_params,
706 size_t params_len,
707 const struct core_conn_create_dest_spec_params *params)
708{
709 int r;
710 struct nci_core_conn_create_cmd *cmd;
711 struct core_conn_create_data data;
712
713 data.length = params_len + sizeof(struct nci_core_conn_create_cmd);
714 cmd = kzalloc(data.length, GFP_KERNEL);
715 if (!cmd)
716 return -ENOMEM;
717
718 cmd->destination_type = destination_type;
719 cmd->number_destination_params = number_destination_params;
720
721 data.cmd = cmd;
722
723 if (params) {
724 memcpy(cmd->params, params, params_len);
725 if (params->length > 0)
726 memcpy(&ndev->cur_params,
727 ¶ms->value[DEST_SPEC_PARAMS_ID_INDEX],
728 sizeof(struct dest_spec_params));
729 else
730 ndev->cur_params.id = 0;
731 } else {
732 ndev->cur_params.id = 0;
733 }
734 ndev->cur_dest_type = destination_type;
735
736 r = __nci_request(ndev, nci_core_conn_create_req, &data,
737 msecs_to_jiffies(NCI_CMD_TIMEOUT));
738 kfree(cmd);
739 return r;
740}
741EXPORT_SYMBOL(nci_core_conn_create);
742
743static void nci_core_conn_close_req(struct nci_dev *ndev, const void *opt)
744{
745 __u8 conn_id = (unsigned long)opt;
746
747 nci_send_cmd(ndev, NCI_OP_CORE_CONN_CLOSE_CMD, 1, &conn_id);
748}
749
750int nci_core_conn_close(struct nci_dev *ndev, u8 conn_id)
751{
752 unsigned long opt = conn_id;
753
754 ndev->cur_conn_id = conn_id;
755 return __nci_request(ndev, nci_core_conn_close_req, (void *)opt,
756 msecs_to_jiffies(NCI_CMD_TIMEOUT));
757}
758EXPORT_SYMBOL(nci_core_conn_close);
759
760static int nci_set_local_general_bytes(struct nfc_dev *nfc_dev)
761{
762 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
763 struct nci_set_config_param param;
764 int rc;
765
766 param.val = nfc_get_local_general_bytes(nfc_dev, ¶m.len);
767 if ((param.val == NULL) || (param.len == 0))
768 return 0;
769
770 if (param.len > NFC_MAX_GT_LEN)
771 return -EINVAL;
772
773 param.id = NCI_PN_ATR_REQ_GEN_BYTES;
774
775 rc = nci_request(ndev, nci_set_config_req, ¶m,
776 msecs_to_jiffies(NCI_SET_CONFIG_TIMEOUT));
777 if (rc)
778 return rc;
779
780 param.id = NCI_LN_ATR_RES_GEN_BYTES;
781
782 return nci_request(ndev, nci_set_config_req, ¶m,
783 msecs_to_jiffies(NCI_SET_CONFIG_TIMEOUT));
784}
785
786static int nci_set_listen_parameters(struct nfc_dev *nfc_dev)
787{
788 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
789 int rc;
790 __u8 val;
791
792 val = NCI_LA_SEL_INFO_NFC_DEP_MASK;
793
794 rc = nci_set_config(ndev, NCI_LA_SEL_INFO, 1, &val);
795 if (rc)
796 return rc;
797
798 val = NCI_LF_PROTOCOL_TYPE_NFC_DEP_MASK;
799
800 rc = nci_set_config(ndev, NCI_LF_PROTOCOL_TYPE, 1, &val);
801 if (rc)
802 return rc;
803
804 val = NCI_LF_CON_BITR_F_212 | NCI_LF_CON_BITR_F_424;
805
806 return nci_set_config(ndev, NCI_LF_CON_BITR_F, 1, &val);
807}
808
809static int nci_start_poll(struct nfc_dev *nfc_dev,
810 __u32 im_protocols, __u32 tm_protocols)
811{
812 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
813 struct nci_rf_discover_param param;
814 int rc;
815
816 if ((atomic_read(&ndev->state) == NCI_DISCOVERY) ||
817 (atomic_read(&ndev->state) == NCI_W4_ALL_DISCOVERIES)) {
818 pr_err("unable to start poll, since poll is already active\n");
819 return -EBUSY;
820 }
821
822 if (ndev->target_active_prot) {
823 pr_err("there is an active target\n");
824 return -EBUSY;
825 }
826
827 if ((atomic_read(&ndev->state) == NCI_W4_HOST_SELECT) ||
828 (atomic_read(&ndev->state) == NCI_POLL_ACTIVE)) {
829 pr_debug("target active or w4 select, implicitly deactivate\n");
830
831 rc = nci_request(ndev, nci_rf_deactivate_req,
832 (void *)NCI_DEACTIVATE_TYPE_IDLE_MODE,
833 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
834 if (rc)
835 return -EBUSY;
836 }
837
838 if ((im_protocols | tm_protocols) & NFC_PROTO_NFC_DEP_MASK) {
839 rc = nci_set_local_general_bytes(nfc_dev);
840 if (rc) {
841 pr_err("failed to set local general bytes\n");
842 return rc;
843 }
844 }
845
846 if (tm_protocols & NFC_PROTO_NFC_DEP_MASK) {
847 rc = nci_set_listen_parameters(nfc_dev);
848 if (rc)
849 pr_err("failed to set listen parameters\n");
850 }
851
852 param.im_protocols = im_protocols;
853 param.tm_protocols = tm_protocols;
854 rc = nci_request(ndev, nci_rf_discover_req, ¶m,
855 msecs_to_jiffies(NCI_RF_DISC_TIMEOUT));
856
857 if (!rc)
858 ndev->poll_prots = im_protocols;
859
860 return rc;
861}
862
863static void nci_stop_poll(struct nfc_dev *nfc_dev)
864{
865 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
866
867 if ((atomic_read(&ndev->state) != NCI_DISCOVERY) &&
868 (atomic_read(&ndev->state) != NCI_W4_ALL_DISCOVERIES)) {
869 pr_err("unable to stop poll, since poll is not active\n");
870 return;
871 }
872
873 nci_request(ndev, nci_rf_deactivate_req,
874 (void *)NCI_DEACTIVATE_TYPE_IDLE_MODE,
875 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
876}
877
878static int nci_activate_target(struct nfc_dev *nfc_dev,
879 struct nfc_target *target, __u32 protocol)
880{
881 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
882 struct nci_rf_discover_select_param param;
883 const struct nfc_target *nci_target = NULL;
884 int i;
885 int rc = 0;
886
887 pr_debug("target_idx %d, protocol 0x%x\n", target->idx, protocol);
888
889 if ((atomic_read(&ndev->state) != NCI_W4_HOST_SELECT) &&
890 (atomic_read(&ndev->state) != NCI_POLL_ACTIVE)) {
891 pr_err("there is no available target to activate\n");
892 return -EINVAL;
893 }
894
895 if (ndev->target_active_prot) {
896 pr_err("there is already an active target\n");
897 return -EBUSY;
898 }
899
900 for (i = 0; i < ndev->n_targets; i++) {
901 if (ndev->targets[i].idx == target->idx) {
902 nci_target = &ndev->targets[i];
903 break;
904 }
905 }
906
907 if (!nci_target) {
908 pr_err("unable to find the selected target\n");
909 return -EINVAL;
910 }
911
912 if (protocol >= NFC_PROTO_MAX) {
913 pr_err("the requested nfc protocol is invalid\n");
914 return -EINVAL;
915 }
916
917 if (!(nci_target->supported_protocols & (1 << protocol))) {
918 pr_err("target does not support the requested protocol 0x%x\n",
919 protocol);
920 return -EINVAL;
921 }
922
923 if (atomic_read(&ndev->state) == NCI_W4_HOST_SELECT) {
924 param.rf_discovery_id = nci_target->logical_idx;
925
926 if (protocol == NFC_PROTO_JEWEL)
927 param.rf_protocol = NCI_RF_PROTOCOL_T1T;
928 else if (protocol == NFC_PROTO_MIFARE)
929 param.rf_protocol = NCI_RF_PROTOCOL_T2T;
930 else if (protocol == NFC_PROTO_FELICA)
931 param.rf_protocol = NCI_RF_PROTOCOL_T3T;
932 else if (protocol == NFC_PROTO_ISO14443 ||
933 protocol == NFC_PROTO_ISO14443_B)
934 param.rf_protocol = NCI_RF_PROTOCOL_ISO_DEP;
935 else
936 param.rf_protocol = NCI_RF_PROTOCOL_NFC_DEP;
937
938 rc = nci_request(ndev, nci_rf_discover_select_req, ¶m,
939 msecs_to_jiffies(NCI_RF_DISC_SELECT_TIMEOUT));
940 }
941
942 if (!rc)
943 ndev->target_active_prot = protocol;
944
945 return rc;
946}
947
948static void nci_deactivate_target(struct nfc_dev *nfc_dev,
949 struct nfc_target *target,
950 __u8 mode)
951{
952 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
953 unsigned long nci_mode = NCI_DEACTIVATE_TYPE_IDLE_MODE;
954
955 if (!ndev->target_active_prot) {
956 pr_err("unable to deactivate target, no active target\n");
957 return;
958 }
959
960 ndev->target_active_prot = 0;
961
962 switch (mode) {
963 case NFC_TARGET_MODE_SLEEP:
964 nci_mode = NCI_DEACTIVATE_TYPE_SLEEP_MODE;
965 break;
966 }
967
968 if (atomic_read(&ndev->state) == NCI_POLL_ACTIVE) {
969 nci_request(ndev, nci_rf_deactivate_req, (void *)nci_mode,
970 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
971 }
972}
973
974static int nci_dep_link_up(struct nfc_dev *nfc_dev, struct nfc_target *target,
975 __u8 comm_mode, __u8 *gb, size_t gb_len)
976{
977 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
978 int rc;
979
980 pr_debug("target_idx %d, comm_mode %d\n", target->idx, comm_mode);
981
982 rc = nci_activate_target(nfc_dev, target, NFC_PROTO_NFC_DEP);
983 if (rc)
984 return rc;
985
986 rc = nfc_set_remote_general_bytes(nfc_dev, ndev->remote_gb,
987 ndev->remote_gb_len);
988 if (!rc)
989 rc = nfc_dep_link_is_up(nfc_dev, target->idx, NFC_COMM_PASSIVE,
990 NFC_RF_INITIATOR);
991
992 return rc;
993}
994
995static int nci_dep_link_down(struct nfc_dev *nfc_dev)
996{
997 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
998 int rc;
999
1000 if (nfc_dev->rf_mode == NFC_RF_INITIATOR) {
1001 nci_deactivate_target(nfc_dev, NULL, NCI_DEACTIVATE_TYPE_IDLE_MODE);
1002 } else {
1003 if (atomic_read(&ndev->state) == NCI_LISTEN_ACTIVE ||
1004 atomic_read(&ndev->state) == NCI_DISCOVERY) {
1005 nci_request(ndev, nci_rf_deactivate_req, (void *)0,
1006 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
1007 }
1008
1009 rc = nfc_tm_deactivated(nfc_dev);
1010 if (rc)
1011 pr_err("error when signaling tm deactivation\n");
1012 }
1013
1014 return 0;
1015}
1016
1017
1018static int nci_transceive(struct nfc_dev *nfc_dev, struct nfc_target *target,
1019 struct sk_buff *skb,
1020 data_exchange_cb_t cb, void *cb_context)
1021{
1022 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1023 int rc;
1024 struct nci_conn_info *conn_info;
1025
1026 conn_info = ndev->rf_conn_info;
1027 if (!conn_info)
1028 return -EPROTO;
1029
1030 pr_debug("target_idx %d, len %d\n", target->idx, skb->len);
1031
1032 if (!ndev->target_active_prot) {
1033 pr_err("unable to exchange data, no active target\n");
1034 return -EINVAL;
1035 }
1036
1037 if (test_and_set_bit(NCI_DATA_EXCHANGE, &ndev->flags))
1038 return -EBUSY;
1039
1040 /* store cb and context to be used on receiving data */
1041 conn_info->data_exchange_cb = cb;
1042 conn_info->data_exchange_cb_context = cb_context;
1043
1044 rc = nci_send_data(ndev, NCI_STATIC_RF_CONN_ID, skb);
1045 if (rc)
1046 clear_bit(NCI_DATA_EXCHANGE, &ndev->flags);
1047
1048 return rc;
1049}
1050
1051static int nci_tm_send(struct nfc_dev *nfc_dev, struct sk_buff *skb)
1052{
1053 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1054 int rc;
1055
1056 rc = nci_send_data(ndev, NCI_STATIC_RF_CONN_ID, skb);
1057 if (rc)
1058 pr_err("unable to send data\n");
1059
1060 return rc;
1061}
1062
1063static int nci_enable_se(struct nfc_dev *nfc_dev, u32 se_idx)
1064{
1065 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1066
1067 if (ndev->ops->enable_se)
1068 return ndev->ops->enable_se(ndev, se_idx);
1069
1070 return 0;
1071}
1072
1073static int nci_disable_se(struct nfc_dev *nfc_dev, u32 se_idx)
1074{
1075 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1076
1077 if (ndev->ops->disable_se)
1078 return ndev->ops->disable_se(ndev, se_idx);
1079
1080 return 0;
1081}
1082
1083static int nci_discover_se(struct nfc_dev *nfc_dev)
1084{
1085 int r;
1086 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1087
1088 if (ndev->ops->discover_se) {
1089 r = nci_nfcee_discover(ndev, NCI_NFCEE_DISCOVERY_ACTION_ENABLE);
1090 if (r != NCI_STATUS_OK)
1091 return -EPROTO;
1092
1093 return ndev->ops->discover_se(ndev);
1094 }
1095
1096 return 0;
1097}
1098
1099static int nci_se_io(struct nfc_dev *nfc_dev, u32 se_idx,
1100 u8 *apdu, size_t apdu_length,
1101 se_io_cb_t cb, void *cb_context)
1102{
1103 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1104
1105 if (ndev->ops->se_io)
1106 return ndev->ops->se_io(ndev, se_idx, apdu,
1107 apdu_length, cb, cb_context);
1108
1109 return 0;
1110}
1111
1112static int nci_fw_download(struct nfc_dev *nfc_dev, const char *firmware_name)
1113{
1114 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1115
1116 if (!ndev->ops->fw_download)
1117 return -ENOTSUPP;
1118
1119 return ndev->ops->fw_download(ndev, firmware_name);
1120}
1121
1122static const struct nfc_ops nci_nfc_ops = {
1123 .dev_up = nci_dev_up,
1124 .dev_down = nci_dev_down,
1125 .start_poll = nci_start_poll,
1126 .stop_poll = nci_stop_poll,
1127 .dep_link_up = nci_dep_link_up,
1128 .dep_link_down = nci_dep_link_down,
1129 .activate_target = nci_activate_target,
1130 .deactivate_target = nci_deactivate_target,
1131 .im_transceive = nci_transceive,
1132 .tm_send = nci_tm_send,
1133 .enable_se = nci_enable_se,
1134 .disable_se = nci_disable_se,
1135 .discover_se = nci_discover_se,
1136 .se_io = nci_se_io,
1137 .fw_download = nci_fw_download,
1138};
1139
1140/* ---- Interface to NCI drivers ---- */
1141/**
1142 * nci_allocate_device - allocate a new nci device
1143 *
1144 * @ops: device operations
1145 * @supported_protocols: NFC protocols supported by the device
1146 * @tx_headroom: Reserved space at beginning of skb
1147 * @tx_tailroom: Reserved space at end of skb
1148 */
1149struct nci_dev *nci_allocate_device(const struct nci_ops *ops,
1150 __u32 supported_protocols,
1151 int tx_headroom, int tx_tailroom)
1152{
1153 struct nci_dev *ndev;
1154
1155 pr_debug("supported_protocols 0x%x\n", supported_protocols);
1156
1157 if (!ops->open || !ops->close || !ops->send)
1158 return NULL;
1159
1160 if (!supported_protocols)
1161 return NULL;
1162
1163 ndev = kzalloc(sizeof(struct nci_dev), GFP_KERNEL);
1164 if (!ndev)
1165 return NULL;
1166
1167 ndev->ops = ops;
1168
1169 if (ops->n_prop_ops > NCI_MAX_PROPRIETARY_CMD) {
1170 pr_err("Too many proprietary commands: %zd\n",
1171 ops->n_prop_ops);
1172 goto free_nci;
1173 }
1174
1175 ndev->tx_headroom = tx_headroom;
1176 ndev->tx_tailroom = tx_tailroom;
1177 init_completion(&ndev->req_completion);
1178
1179 ndev->nfc_dev = nfc_allocate_device(&nci_nfc_ops,
1180 supported_protocols,
1181 tx_headroom + NCI_DATA_HDR_SIZE,
1182 tx_tailroom);
1183 if (!ndev->nfc_dev)
1184 goto free_nci;
1185
1186 ndev->hci_dev = nci_hci_allocate(ndev);
1187 if (!ndev->hci_dev)
1188 goto free_nfc;
1189
1190 nfc_set_drvdata(ndev->nfc_dev, ndev);
1191
1192 return ndev;
1193
1194free_nfc:
1195 nfc_free_device(ndev->nfc_dev);
1196free_nci:
1197 kfree(ndev);
1198 return NULL;
1199}
1200EXPORT_SYMBOL(nci_allocate_device);
1201
1202/**
1203 * nci_free_device - deallocate nci device
1204 *
1205 * @ndev: The nci device to deallocate
1206 */
1207void nci_free_device(struct nci_dev *ndev)
1208{
1209 nfc_free_device(ndev->nfc_dev);
1210 nci_hci_deallocate(ndev);
1211
1212 /* drop partial rx data packet if present */
1213 if (ndev->rx_data_reassembly)
1214 kfree_skb(ndev->rx_data_reassembly);
1215 kfree(ndev);
1216}
1217EXPORT_SYMBOL(nci_free_device);
1218
1219/**
1220 * nci_register_device - register a nci device in the nfc subsystem
1221 *
1222 * @ndev: The nci device to register
1223 */
1224int nci_register_device(struct nci_dev *ndev)
1225{
1226 int rc;
1227 struct device *dev = &ndev->nfc_dev->dev;
1228 char name[32];
1229
1230 ndev->flags = 0;
1231
1232 INIT_WORK(&ndev->cmd_work, nci_cmd_work);
1233 snprintf(name, sizeof(name), "%s_nci_cmd_wq", dev_name(dev));
1234 ndev->cmd_wq = create_singlethread_workqueue(name);
1235 if (!ndev->cmd_wq) {
1236 rc = -ENOMEM;
1237 goto exit;
1238 }
1239
1240 INIT_WORK(&ndev->rx_work, nci_rx_work);
1241 snprintf(name, sizeof(name), "%s_nci_rx_wq", dev_name(dev));
1242 ndev->rx_wq = create_singlethread_workqueue(name);
1243 if (!ndev->rx_wq) {
1244 rc = -ENOMEM;
1245 goto destroy_cmd_wq_exit;
1246 }
1247
1248 INIT_WORK(&ndev->tx_work, nci_tx_work);
1249 snprintf(name, sizeof(name), "%s_nci_tx_wq", dev_name(dev));
1250 ndev->tx_wq = create_singlethread_workqueue(name);
1251 if (!ndev->tx_wq) {
1252 rc = -ENOMEM;
1253 goto destroy_rx_wq_exit;
1254 }
1255
1256 skb_queue_head_init(&ndev->cmd_q);
1257 skb_queue_head_init(&ndev->rx_q);
1258 skb_queue_head_init(&ndev->tx_q);
1259
1260 timer_setup(&ndev->cmd_timer, nci_cmd_timer, 0);
1261 timer_setup(&ndev->data_timer, nci_data_timer, 0);
1262
1263 mutex_init(&ndev->req_lock);
1264 INIT_LIST_HEAD(&ndev->conn_info_list);
1265
1266 rc = nfc_register_device(ndev->nfc_dev);
1267 if (rc)
1268 goto destroy_tx_wq_exit;
1269
1270 goto exit;
1271
1272destroy_tx_wq_exit:
1273 destroy_workqueue(ndev->tx_wq);
1274
1275destroy_rx_wq_exit:
1276 destroy_workqueue(ndev->rx_wq);
1277
1278destroy_cmd_wq_exit:
1279 destroy_workqueue(ndev->cmd_wq);
1280
1281exit:
1282 return rc;
1283}
1284EXPORT_SYMBOL(nci_register_device);
1285
1286/**
1287 * nci_unregister_device - unregister a nci device in the nfc subsystem
1288 *
1289 * @ndev: The nci device to unregister
1290 */
1291void nci_unregister_device(struct nci_dev *ndev)
1292{
1293 struct nci_conn_info *conn_info, *n;
1294
1295 /* This set_bit is not protected with specialized barrier,
1296 * However, it is fine because the mutex_lock(&ndev->req_lock);
1297 * in nci_close_device() will help to emit one.
1298 */
1299 set_bit(NCI_UNREG, &ndev->flags);
1300
1301 nci_close_device(ndev);
1302
1303 destroy_workqueue(ndev->cmd_wq);
1304 destroy_workqueue(ndev->rx_wq);
1305 destroy_workqueue(ndev->tx_wq);
1306
1307 list_for_each_entry_safe(conn_info, n, &ndev->conn_info_list, list) {
1308 list_del(&conn_info->list);
1309 /* conn_info is allocated with devm_kzalloc */
1310 }
1311
1312 nfc_unregister_device(ndev->nfc_dev);
1313}
1314EXPORT_SYMBOL(nci_unregister_device);
1315
1316/**
1317 * nci_recv_frame - receive frame from NCI drivers
1318 *
1319 * @ndev: The nci device
1320 * @skb: The sk_buff to receive
1321 */
1322int nci_recv_frame(struct nci_dev *ndev, struct sk_buff *skb)
1323{
1324 pr_debug("len %d\n", skb->len);
1325
1326 if (!ndev || (!test_bit(NCI_UP, &ndev->flags) &&
1327 !test_bit(NCI_INIT, &ndev->flags))) {
1328 kfree_skb(skb);
1329 return -ENXIO;
1330 }
1331
1332 /* Queue frame for rx worker thread */
1333 skb_queue_tail(&ndev->rx_q, skb);
1334 queue_work(ndev->rx_wq, &ndev->rx_work);
1335
1336 return 0;
1337}
1338EXPORT_SYMBOL(nci_recv_frame);
1339
1340int nci_send_frame(struct nci_dev *ndev, struct sk_buff *skb)
1341{
1342 pr_debug("len %d\n", skb->len);
1343
1344 if (!ndev) {
1345 kfree_skb(skb);
1346 return -ENODEV;
1347 }
1348
1349 /* Get rid of skb owner, prior to sending to the driver. */
1350 skb_orphan(skb);
1351
1352 /* Send copy to sniffer */
1353 nfc_send_to_raw_sock(ndev->nfc_dev, skb,
1354 RAW_PAYLOAD_NCI, NFC_DIRECTION_TX);
1355
1356 return ndev->ops->send(ndev, skb);
1357}
1358EXPORT_SYMBOL(nci_send_frame);
1359
1360/* Send NCI command */
1361int nci_send_cmd(struct nci_dev *ndev, __u16 opcode, __u8 plen, const void *payload)
1362{
1363 struct nci_ctrl_hdr *hdr;
1364 struct sk_buff *skb;
1365
1366 pr_debug("opcode 0x%x, plen %d\n", opcode, plen);
1367
1368 skb = nci_skb_alloc(ndev, (NCI_CTRL_HDR_SIZE + plen), GFP_KERNEL);
1369 if (!skb) {
1370 pr_err("no memory for command\n");
1371 return -ENOMEM;
1372 }
1373
1374 hdr = skb_put(skb, NCI_CTRL_HDR_SIZE);
1375 hdr->gid = nci_opcode_gid(opcode);
1376 hdr->oid = nci_opcode_oid(opcode);
1377 hdr->plen = plen;
1378
1379 nci_mt_set((__u8 *)hdr, NCI_MT_CMD_PKT);
1380 nci_pbf_set((__u8 *)hdr, NCI_PBF_LAST);
1381
1382 if (plen)
1383 skb_put_data(skb, payload, plen);
1384
1385 skb_queue_tail(&ndev->cmd_q, skb);
1386 queue_work(ndev->cmd_wq, &ndev->cmd_work);
1387
1388 return 0;
1389}
1390EXPORT_SYMBOL(nci_send_cmd);
1391
1392/* Proprietary commands API */
1393static const struct nci_driver_ops *ops_cmd_lookup(const struct nci_driver_ops *ops,
1394 size_t n_ops,
1395 __u16 opcode)
1396{
1397 size_t i;
1398 const struct nci_driver_ops *op;
1399
1400 if (!ops || !n_ops)
1401 return NULL;
1402
1403 for (i = 0; i < n_ops; i++) {
1404 op = &ops[i];
1405 if (op->opcode == opcode)
1406 return op;
1407 }
1408
1409 return NULL;
1410}
1411
1412static int nci_op_rsp_packet(struct nci_dev *ndev, __u16 rsp_opcode,
1413 struct sk_buff *skb, const struct nci_driver_ops *ops,
1414 size_t n_ops)
1415{
1416 const struct nci_driver_ops *op;
1417
1418 op = ops_cmd_lookup(ops, n_ops, rsp_opcode);
1419 if (!op || !op->rsp)
1420 return -ENOTSUPP;
1421
1422 return op->rsp(ndev, skb);
1423}
1424
1425static int nci_op_ntf_packet(struct nci_dev *ndev, __u16 ntf_opcode,
1426 struct sk_buff *skb, const struct nci_driver_ops *ops,
1427 size_t n_ops)
1428{
1429 const struct nci_driver_ops *op;
1430
1431 op = ops_cmd_lookup(ops, n_ops, ntf_opcode);
1432 if (!op || !op->ntf)
1433 return -ENOTSUPP;
1434
1435 return op->ntf(ndev, skb);
1436}
1437
1438int nci_prop_rsp_packet(struct nci_dev *ndev, __u16 opcode,
1439 struct sk_buff *skb)
1440{
1441 return nci_op_rsp_packet(ndev, opcode, skb, ndev->ops->prop_ops,
1442 ndev->ops->n_prop_ops);
1443}
1444
1445int nci_prop_ntf_packet(struct nci_dev *ndev, __u16 opcode,
1446 struct sk_buff *skb)
1447{
1448 return nci_op_ntf_packet(ndev, opcode, skb, ndev->ops->prop_ops,
1449 ndev->ops->n_prop_ops);
1450}
1451
1452int nci_core_rsp_packet(struct nci_dev *ndev, __u16 opcode,
1453 struct sk_buff *skb)
1454{
1455 return nci_op_rsp_packet(ndev, opcode, skb, ndev->ops->core_ops,
1456 ndev->ops->n_core_ops);
1457}
1458
1459int nci_core_ntf_packet(struct nci_dev *ndev, __u16 opcode,
1460 struct sk_buff *skb)
1461{
1462 return nci_op_ntf_packet(ndev, opcode, skb, ndev->ops->core_ops,
1463 ndev->ops->n_core_ops);
1464}
1465
1466/* ---- NCI TX Data worker thread ---- */
1467
1468static void nci_tx_work(struct work_struct *work)
1469{
1470 struct nci_dev *ndev = container_of(work, struct nci_dev, tx_work);
1471 struct nci_conn_info *conn_info;
1472 struct sk_buff *skb;
1473
1474 conn_info = nci_get_conn_info_by_conn_id(ndev, ndev->cur_conn_id);
1475 if (!conn_info)
1476 return;
1477
1478 pr_debug("credits_cnt %d\n", atomic_read(&conn_info->credits_cnt));
1479
1480 /* Send queued tx data */
1481 while (atomic_read(&conn_info->credits_cnt)) {
1482 skb = skb_dequeue(&ndev->tx_q);
1483 if (!skb)
1484 return;
1485 kcov_remote_start_common(skb_get_kcov_handle(skb));
1486
1487 /* Check if data flow control is used */
1488 if (atomic_read(&conn_info->credits_cnt) !=
1489 NCI_DATA_FLOW_CONTROL_NOT_USED)
1490 atomic_dec(&conn_info->credits_cnt);
1491
1492 pr_debug("NCI TX: MT=data, PBF=%d, conn_id=%d, plen=%d\n",
1493 nci_pbf(skb->data),
1494 nci_conn_id(skb->data),
1495 nci_plen(skb->data));
1496
1497 nci_send_frame(ndev, skb);
1498
1499 mod_timer(&ndev->data_timer,
1500 jiffies + msecs_to_jiffies(NCI_DATA_TIMEOUT));
1501 kcov_remote_stop();
1502 }
1503}
1504
1505/* ----- NCI RX worker thread (data & control) ----- */
1506
1507static void nci_rx_work(struct work_struct *work)
1508{
1509 struct nci_dev *ndev = container_of(work, struct nci_dev, rx_work);
1510 struct sk_buff *skb;
1511
1512 for (; (skb = skb_dequeue(&ndev->rx_q)); kcov_remote_stop()) {
1513 kcov_remote_start_common(skb_get_kcov_handle(skb));
1514
1515 /* Send copy to sniffer */
1516 nfc_send_to_raw_sock(ndev->nfc_dev, skb,
1517 RAW_PAYLOAD_NCI, NFC_DIRECTION_RX);
1518
1519 /* Process frame */
1520 switch (nci_mt(skb->data)) {
1521 case NCI_MT_RSP_PKT:
1522 nci_rsp_packet(ndev, skb);
1523 break;
1524
1525 case NCI_MT_NTF_PKT:
1526 nci_ntf_packet(ndev, skb);
1527 break;
1528
1529 case NCI_MT_DATA_PKT:
1530 nci_rx_data_packet(ndev, skb);
1531 break;
1532
1533 default:
1534 pr_err("unknown MT 0x%x\n", nci_mt(skb->data));
1535 kfree_skb(skb);
1536 break;
1537 }
1538 }
1539
1540 /* check if a data exchange timeout has occurred */
1541 if (test_bit(NCI_DATA_EXCHANGE_TO, &ndev->flags)) {
1542 /* complete the data exchange transaction, if exists */
1543 if (test_bit(NCI_DATA_EXCHANGE, &ndev->flags))
1544 nci_data_exchange_complete(ndev, NULL,
1545 ndev->cur_conn_id,
1546 -ETIMEDOUT);
1547
1548 clear_bit(NCI_DATA_EXCHANGE_TO, &ndev->flags);
1549 }
1550}
1551
1552/* ----- NCI TX CMD worker thread ----- */
1553
1554static void nci_cmd_work(struct work_struct *work)
1555{
1556 struct nci_dev *ndev = container_of(work, struct nci_dev, cmd_work);
1557 struct sk_buff *skb;
1558
1559 pr_debug("cmd_cnt %d\n", atomic_read(&ndev->cmd_cnt));
1560
1561 /* Send queued command */
1562 if (atomic_read(&ndev->cmd_cnt)) {
1563 skb = skb_dequeue(&ndev->cmd_q);
1564 if (!skb)
1565 return;
1566
1567 kcov_remote_start_common(skb_get_kcov_handle(skb));
1568 atomic_dec(&ndev->cmd_cnt);
1569
1570 pr_debug("NCI TX: MT=cmd, PBF=%d, GID=0x%x, OID=0x%x, plen=%d\n",
1571 nci_pbf(skb->data),
1572 nci_opcode_gid(nci_opcode(skb->data)),
1573 nci_opcode_oid(nci_opcode(skb->data)),
1574 nci_plen(skb->data));
1575
1576 nci_send_frame(ndev, skb);
1577
1578 mod_timer(&ndev->cmd_timer,
1579 jiffies + msecs_to_jiffies(NCI_CMD_TIMEOUT));
1580 kcov_remote_stop();
1581 }
1582}
1583
1584MODULE_DESCRIPTION("NFC Controller Interface");
1585MODULE_LICENSE("GPL");
1// SPDX-License-Identifier: GPL-2.0-only
2/*
3 * The NFC Controller Interface is the communication protocol between an
4 * NFC Controller (NFCC) and a Device Host (DH).
5 *
6 * Copyright (C) 2011 Texas Instruments, Inc.
7 * Copyright (C) 2014 Marvell International Ltd.
8 *
9 * Written by Ilan Elias <ilane@ti.com>
10 *
11 * Acknowledgements:
12 * This file is based on hci_core.c, which was written
13 * by Maxim Krasnyansky.
14 */
15
16#define pr_fmt(fmt) KBUILD_MODNAME ": %s: " fmt, __func__
17
18#include <linux/module.h>
19#include <linux/kernel.h>
20#include <linux/types.h>
21#include <linux/workqueue.h>
22#include <linux/completion.h>
23#include <linux/export.h>
24#include <linux/sched.h>
25#include <linux/bitops.h>
26#include <linux/skbuff.h>
27
28#include "../nfc.h"
29#include <net/nfc/nci.h>
30#include <net/nfc/nci_core.h>
31#include <linux/nfc.h>
32
33struct core_conn_create_data {
34 int length;
35 struct nci_core_conn_create_cmd *cmd;
36};
37
38static void nci_cmd_work(struct work_struct *work);
39static void nci_rx_work(struct work_struct *work);
40static void nci_tx_work(struct work_struct *work);
41
42struct nci_conn_info *nci_get_conn_info_by_conn_id(struct nci_dev *ndev,
43 int conn_id)
44{
45 struct nci_conn_info *conn_info;
46
47 list_for_each_entry(conn_info, &ndev->conn_info_list, list) {
48 if (conn_info->conn_id == conn_id)
49 return conn_info;
50 }
51
52 return NULL;
53}
54
55int nci_get_conn_info_by_dest_type_params(struct nci_dev *ndev, u8 dest_type,
56 struct dest_spec_params *params)
57{
58 struct nci_conn_info *conn_info;
59
60 list_for_each_entry(conn_info, &ndev->conn_info_list, list) {
61 if (conn_info->dest_type == dest_type) {
62 if (!params)
63 return conn_info->conn_id;
64
65 if (params->id == conn_info->dest_params->id &&
66 params->protocol == conn_info->dest_params->protocol)
67 return conn_info->conn_id;
68 }
69 }
70
71 return -EINVAL;
72}
73EXPORT_SYMBOL(nci_get_conn_info_by_dest_type_params);
74
75/* ---- NCI requests ---- */
76
77void nci_req_complete(struct nci_dev *ndev, int result)
78{
79 if (ndev->req_status == NCI_REQ_PEND) {
80 ndev->req_result = result;
81 ndev->req_status = NCI_REQ_DONE;
82 complete(&ndev->req_completion);
83 }
84}
85EXPORT_SYMBOL(nci_req_complete);
86
87static void nci_req_cancel(struct nci_dev *ndev, int err)
88{
89 if (ndev->req_status == NCI_REQ_PEND) {
90 ndev->req_result = err;
91 ndev->req_status = NCI_REQ_CANCELED;
92 complete(&ndev->req_completion);
93 }
94}
95
96/* Execute request and wait for completion. */
97static int __nci_request(struct nci_dev *ndev,
98 void (*req)(struct nci_dev *ndev, unsigned long opt),
99 unsigned long opt, __u32 timeout)
100{
101 int rc = 0;
102 long completion_rc;
103
104 ndev->req_status = NCI_REQ_PEND;
105
106 reinit_completion(&ndev->req_completion);
107 req(ndev, opt);
108 completion_rc =
109 wait_for_completion_interruptible_timeout(&ndev->req_completion,
110 timeout);
111
112 pr_debug("wait_for_completion return %ld\n", completion_rc);
113
114 if (completion_rc > 0) {
115 switch (ndev->req_status) {
116 case NCI_REQ_DONE:
117 rc = nci_to_errno(ndev->req_result);
118 break;
119
120 case NCI_REQ_CANCELED:
121 rc = -ndev->req_result;
122 break;
123
124 default:
125 rc = -ETIMEDOUT;
126 break;
127 }
128 } else {
129 pr_err("wait_for_completion_interruptible_timeout failed %ld\n",
130 completion_rc);
131
132 rc = ((completion_rc == 0) ? (-ETIMEDOUT) : (completion_rc));
133 }
134
135 ndev->req_status = ndev->req_result = 0;
136
137 return rc;
138}
139
140inline int nci_request(struct nci_dev *ndev,
141 void (*req)(struct nci_dev *ndev,
142 unsigned long opt),
143 unsigned long opt, __u32 timeout)
144{
145 int rc;
146
147 if (!test_bit(NCI_UP, &ndev->flags))
148 return -ENETDOWN;
149
150 /* Serialize all requests */
151 mutex_lock(&ndev->req_lock);
152 rc = __nci_request(ndev, req, opt, timeout);
153 mutex_unlock(&ndev->req_lock);
154
155 return rc;
156}
157
158static void nci_reset_req(struct nci_dev *ndev, unsigned long opt)
159{
160 struct nci_core_reset_cmd cmd;
161
162 cmd.reset_type = NCI_RESET_TYPE_RESET_CONFIG;
163 nci_send_cmd(ndev, NCI_OP_CORE_RESET_CMD, 1, &cmd);
164}
165
166static void nci_init_req(struct nci_dev *ndev, unsigned long opt)
167{
168 nci_send_cmd(ndev, NCI_OP_CORE_INIT_CMD, 0, NULL);
169}
170
171static void nci_init_complete_req(struct nci_dev *ndev, unsigned long opt)
172{
173 struct nci_rf_disc_map_cmd cmd;
174 struct disc_map_config *cfg = cmd.mapping_configs;
175 __u8 *num = &cmd.num_mapping_configs;
176 int i;
177
178 /* set rf mapping configurations */
179 *num = 0;
180
181 /* by default mapping is set to NCI_RF_INTERFACE_FRAME */
182 for (i = 0; i < ndev->num_supported_rf_interfaces; i++) {
183 if (ndev->supported_rf_interfaces[i] ==
184 NCI_RF_INTERFACE_ISO_DEP) {
185 cfg[*num].rf_protocol = NCI_RF_PROTOCOL_ISO_DEP;
186 cfg[*num].mode = NCI_DISC_MAP_MODE_POLL |
187 NCI_DISC_MAP_MODE_LISTEN;
188 cfg[*num].rf_interface = NCI_RF_INTERFACE_ISO_DEP;
189 (*num)++;
190 } else if (ndev->supported_rf_interfaces[i] ==
191 NCI_RF_INTERFACE_NFC_DEP) {
192 cfg[*num].rf_protocol = NCI_RF_PROTOCOL_NFC_DEP;
193 cfg[*num].mode = NCI_DISC_MAP_MODE_POLL |
194 NCI_DISC_MAP_MODE_LISTEN;
195 cfg[*num].rf_interface = NCI_RF_INTERFACE_NFC_DEP;
196 (*num)++;
197 }
198
199 if (*num == NCI_MAX_NUM_MAPPING_CONFIGS)
200 break;
201 }
202
203 nci_send_cmd(ndev, NCI_OP_RF_DISCOVER_MAP_CMD,
204 (1 + ((*num) * sizeof(struct disc_map_config))), &cmd);
205}
206
207struct nci_set_config_param {
208 __u8 id;
209 size_t len;
210 __u8 *val;
211};
212
213static void nci_set_config_req(struct nci_dev *ndev, unsigned long opt)
214{
215 struct nci_set_config_param *param = (struct nci_set_config_param *)opt;
216 struct nci_core_set_config_cmd cmd;
217
218 BUG_ON(param->len > NCI_MAX_PARAM_LEN);
219
220 cmd.num_params = 1;
221 cmd.param.id = param->id;
222 cmd.param.len = param->len;
223 memcpy(cmd.param.val, param->val, param->len);
224
225 nci_send_cmd(ndev, NCI_OP_CORE_SET_CONFIG_CMD, (3 + param->len), &cmd);
226}
227
228struct nci_rf_discover_param {
229 __u32 im_protocols;
230 __u32 tm_protocols;
231};
232
233static void nci_rf_discover_req(struct nci_dev *ndev, unsigned long opt)
234{
235 struct nci_rf_discover_param *param =
236 (struct nci_rf_discover_param *)opt;
237 struct nci_rf_disc_cmd cmd;
238
239 cmd.num_disc_configs = 0;
240
241 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
242 (param->im_protocols & NFC_PROTO_JEWEL_MASK ||
243 param->im_protocols & NFC_PROTO_MIFARE_MASK ||
244 param->im_protocols & NFC_PROTO_ISO14443_MASK ||
245 param->im_protocols & NFC_PROTO_NFC_DEP_MASK)) {
246 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
247 NCI_NFC_A_PASSIVE_POLL_MODE;
248 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
249 cmd.num_disc_configs++;
250 }
251
252 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
253 (param->im_protocols & NFC_PROTO_ISO14443_B_MASK)) {
254 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
255 NCI_NFC_B_PASSIVE_POLL_MODE;
256 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
257 cmd.num_disc_configs++;
258 }
259
260 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
261 (param->im_protocols & NFC_PROTO_FELICA_MASK ||
262 param->im_protocols & NFC_PROTO_NFC_DEP_MASK)) {
263 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
264 NCI_NFC_F_PASSIVE_POLL_MODE;
265 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
266 cmd.num_disc_configs++;
267 }
268
269 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS) &&
270 (param->im_protocols & NFC_PROTO_ISO15693_MASK)) {
271 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
272 NCI_NFC_V_PASSIVE_POLL_MODE;
273 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
274 cmd.num_disc_configs++;
275 }
276
277 if ((cmd.num_disc_configs < NCI_MAX_NUM_RF_CONFIGS - 1) &&
278 (param->tm_protocols & NFC_PROTO_NFC_DEP_MASK)) {
279 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
280 NCI_NFC_A_PASSIVE_LISTEN_MODE;
281 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
282 cmd.num_disc_configs++;
283 cmd.disc_configs[cmd.num_disc_configs].rf_tech_and_mode =
284 NCI_NFC_F_PASSIVE_LISTEN_MODE;
285 cmd.disc_configs[cmd.num_disc_configs].frequency = 1;
286 cmd.num_disc_configs++;
287 }
288
289 nci_send_cmd(ndev, NCI_OP_RF_DISCOVER_CMD,
290 (1 + (cmd.num_disc_configs * sizeof(struct disc_config))),
291 &cmd);
292}
293
294struct nci_rf_discover_select_param {
295 __u8 rf_discovery_id;
296 __u8 rf_protocol;
297};
298
299static void nci_rf_discover_select_req(struct nci_dev *ndev, unsigned long opt)
300{
301 struct nci_rf_discover_select_param *param =
302 (struct nci_rf_discover_select_param *)opt;
303 struct nci_rf_discover_select_cmd cmd;
304
305 cmd.rf_discovery_id = param->rf_discovery_id;
306 cmd.rf_protocol = param->rf_protocol;
307
308 switch (cmd.rf_protocol) {
309 case NCI_RF_PROTOCOL_ISO_DEP:
310 cmd.rf_interface = NCI_RF_INTERFACE_ISO_DEP;
311 break;
312
313 case NCI_RF_PROTOCOL_NFC_DEP:
314 cmd.rf_interface = NCI_RF_INTERFACE_NFC_DEP;
315 break;
316
317 default:
318 cmd.rf_interface = NCI_RF_INTERFACE_FRAME;
319 break;
320 }
321
322 nci_send_cmd(ndev, NCI_OP_RF_DISCOVER_SELECT_CMD,
323 sizeof(struct nci_rf_discover_select_cmd), &cmd);
324}
325
326static void nci_rf_deactivate_req(struct nci_dev *ndev, unsigned long opt)
327{
328 struct nci_rf_deactivate_cmd cmd;
329
330 cmd.type = opt;
331
332 nci_send_cmd(ndev, NCI_OP_RF_DEACTIVATE_CMD,
333 sizeof(struct nci_rf_deactivate_cmd), &cmd);
334}
335
336struct nci_cmd_param {
337 __u16 opcode;
338 size_t len;
339 __u8 *payload;
340};
341
342static void nci_generic_req(struct nci_dev *ndev, unsigned long opt)
343{
344 struct nci_cmd_param *param =
345 (struct nci_cmd_param *)opt;
346
347 nci_send_cmd(ndev, param->opcode, param->len, param->payload);
348}
349
350int nci_prop_cmd(struct nci_dev *ndev, __u8 oid, size_t len, __u8 *payload)
351{
352 struct nci_cmd_param param;
353
354 param.opcode = nci_opcode_pack(NCI_GID_PROPRIETARY, oid);
355 param.len = len;
356 param.payload = payload;
357
358 return __nci_request(ndev, nci_generic_req, (unsigned long)¶m,
359 msecs_to_jiffies(NCI_CMD_TIMEOUT));
360}
361EXPORT_SYMBOL(nci_prop_cmd);
362
363int nci_core_cmd(struct nci_dev *ndev, __u16 opcode, size_t len, __u8 *payload)
364{
365 struct nci_cmd_param param;
366
367 param.opcode = opcode;
368 param.len = len;
369 param.payload = payload;
370
371 return __nci_request(ndev, nci_generic_req, (unsigned long)¶m,
372 msecs_to_jiffies(NCI_CMD_TIMEOUT));
373}
374EXPORT_SYMBOL(nci_core_cmd);
375
376int nci_core_reset(struct nci_dev *ndev)
377{
378 return __nci_request(ndev, nci_reset_req, 0,
379 msecs_to_jiffies(NCI_RESET_TIMEOUT));
380}
381EXPORT_SYMBOL(nci_core_reset);
382
383int nci_core_init(struct nci_dev *ndev)
384{
385 return __nci_request(ndev, nci_init_req, 0,
386 msecs_to_jiffies(NCI_INIT_TIMEOUT));
387}
388EXPORT_SYMBOL(nci_core_init);
389
390struct nci_loopback_data {
391 u8 conn_id;
392 struct sk_buff *data;
393};
394
395static void nci_send_data_req(struct nci_dev *ndev, unsigned long opt)
396{
397 struct nci_loopback_data *data = (struct nci_loopback_data *)opt;
398
399 nci_send_data(ndev, data->conn_id, data->data);
400}
401
402static void nci_nfcc_loopback_cb(void *context, struct sk_buff *skb, int err)
403{
404 struct nci_dev *ndev = (struct nci_dev *)context;
405 struct nci_conn_info *conn_info;
406
407 conn_info = nci_get_conn_info_by_conn_id(ndev, ndev->cur_conn_id);
408 if (!conn_info) {
409 nci_req_complete(ndev, NCI_STATUS_REJECTED);
410 return;
411 }
412
413 conn_info->rx_skb = skb;
414
415 nci_req_complete(ndev, NCI_STATUS_OK);
416}
417
418int nci_nfcc_loopback(struct nci_dev *ndev, void *data, size_t data_len,
419 struct sk_buff **resp)
420{
421 int r;
422 struct nci_loopback_data loopback_data;
423 struct nci_conn_info *conn_info;
424 struct sk_buff *skb;
425 int conn_id = nci_get_conn_info_by_dest_type_params(ndev,
426 NCI_DESTINATION_NFCC_LOOPBACK, NULL);
427
428 if (conn_id < 0) {
429 r = nci_core_conn_create(ndev, NCI_DESTINATION_NFCC_LOOPBACK,
430 0, 0, NULL);
431 if (r != NCI_STATUS_OK)
432 return r;
433
434 conn_id = nci_get_conn_info_by_dest_type_params(ndev,
435 NCI_DESTINATION_NFCC_LOOPBACK,
436 NULL);
437 }
438
439 conn_info = nci_get_conn_info_by_conn_id(ndev, conn_id);
440 if (!conn_info)
441 return -EPROTO;
442
443 /* store cb and context to be used on receiving data */
444 conn_info->data_exchange_cb = nci_nfcc_loopback_cb;
445 conn_info->data_exchange_cb_context = ndev;
446
447 skb = nci_skb_alloc(ndev, NCI_DATA_HDR_SIZE + data_len, GFP_KERNEL);
448 if (!skb)
449 return -ENOMEM;
450
451 skb_reserve(skb, NCI_DATA_HDR_SIZE);
452 skb_put_data(skb, data, data_len);
453
454 loopback_data.conn_id = conn_id;
455 loopback_data.data = skb;
456
457 ndev->cur_conn_id = conn_id;
458 r = nci_request(ndev, nci_send_data_req, (unsigned long)&loopback_data,
459 msecs_to_jiffies(NCI_DATA_TIMEOUT));
460 if (r == NCI_STATUS_OK && resp)
461 *resp = conn_info->rx_skb;
462
463 return r;
464}
465EXPORT_SYMBOL(nci_nfcc_loopback);
466
467static int nci_open_device(struct nci_dev *ndev)
468{
469 int rc = 0;
470
471 mutex_lock(&ndev->req_lock);
472
473 if (test_bit(NCI_UP, &ndev->flags)) {
474 rc = -EALREADY;
475 goto done;
476 }
477
478 if (ndev->ops->open(ndev)) {
479 rc = -EIO;
480 goto done;
481 }
482
483 atomic_set(&ndev->cmd_cnt, 1);
484
485 set_bit(NCI_INIT, &ndev->flags);
486
487 if (ndev->ops->init)
488 rc = ndev->ops->init(ndev);
489
490 if (!rc) {
491 rc = __nci_request(ndev, nci_reset_req, 0,
492 msecs_to_jiffies(NCI_RESET_TIMEOUT));
493 }
494
495 if (!rc && ndev->ops->setup) {
496 rc = ndev->ops->setup(ndev);
497 }
498
499 if (!rc) {
500 rc = __nci_request(ndev, nci_init_req, 0,
501 msecs_to_jiffies(NCI_INIT_TIMEOUT));
502 }
503
504 if (!rc && ndev->ops->post_setup)
505 rc = ndev->ops->post_setup(ndev);
506
507 if (!rc) {
508 rc = __nci_request(ndev, nci_init_complete_req, 0,
509 msecs_to_jiffies(NCI_INIT_TIMEOUT));
510 }
511
512 clear_bit(NCI_INIT, &ndev->flags);
513
514 if (!rc) {
515 set_bit(NCI_UP, &ndev->flags);
516 nci_clear_target_list(ndev);
517 atomic_set(&ndev->state, NCI_IDLE);
518 } else {
519 /* Init failed, cleanup */
520 skb_queue_purge(&ndev->cmd_q);
521 skb_queue_purge(&ndev->rx_q);
522 skb_queue_purge(&ndev->tx_q);
523
524 ndev->ops->close(ndev);
525 ndev->flags = 0;
526 }
527
528done:
529 mutex_unlock(&ndev->req_lock);
530 return rc;
531}
532
533static int nci_close_device(struct nci_dev *ndev)
534{
535 nci_req_cancel(ndev, ENODEV);
536 mutex_lock(&ndev->req_lock);
537
538 if (!test_and_clear_bit(NCI_UP, &ndev->flags)) {
539 del_timer_sync(&ndev->cmd_timer);
540 del_timer_sync(&ndev->data_timer);
541 mutex_unlock(&ndev->req_lock);
542 return 0;
543 }
544
545 /* Drop RX and TX queues */
546 skb_queue_purge(&ndev->rx_q);
547 skb_queue_purge(&ndev->tx_q);
548
549 /* Flush RX and TX wq */
550 flush_workqueue(ndev->rx_wq);
551 flush_workqueue(ndev->tx_wq);
552
553 /* Reset device */
554 skb_queue_purge(&ndev->cmd_q);
555 atomic_set(&ndev->cmd_cnt, 1);
556
557 set_bit(NCI_INIT, &ndev->flags);
558 __nci_request(ndev, nci_reset_req, 0,
559 msecs_to_jiffies(NCI_RESET_TIMEOUT));
560
561 /* After this point our queues are empty
562 * and no works are scheduled.
563 */
564 ndev->ops->close(ndev);
565
566 clear_bit(NCI_INIT, &ndev->flags);
567
568 del_timer_sync(&ndev->cmd_timer);
569
570 /* Flush cmd wq */
571 flush_workqueue(ndev->cmd_wq);
572
573 /* Clear flags */
574 ndev->flags = 0;
575
576 mutex_unlock(&ndev->req_lock);
577
578 return 0;
579}
580
581/* NCI command timer function */
582static void nci_cmd_timer(struct timer_list *t)
583{
584 struct nci_dev *ndev = from_timer(ndev, t, cmd_timer);
585
586 atomic_set(&ndev->cmd_cnt, 1);
587 queue_work(ndev->cmd_wq, &ndev->cmd_work);
588}
589
590/* NCI data exchange timer function */
591static void nci_data_timer(struct timer_list *t)
592{
593 struct nci_dev *ndev = from_timer(ndev, t, data_timer);
594
595 set_bit(NCI_DATA_EXCHANGE_TO, &ndev->flags);
596 queue_work(ndev->rx_wq, &ndev->rx_work);
597}
598
599static int nci_dev_up(struct nfc_dev *nfc_dev)
600{
601 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
602
603 return nci_open_device(ndev);
604}
605
606static int nci_dev_down(struct nfc_dev *nfc_dev)
607{
608 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
609
610 return nci_close_device(ndev);
611}
612
613int nci_set_config(struct nci_dev *ndev, __u8 id, size_t len, __u8 *val)
614{
615 struct nci_set_config_param param;
616
617 if (!val || !len)
618 return 0;
619
620 param.id = id;
621 param.len = len;
622 param.val = val;
623
624 return __nci_request(ndev, nci_set_config_req, (unsigned long)¶m,
625 msecs_to_jiffies(NCI_SET_CONFIG_TIMEOUT));
626}
627EXPORT_SYMBOL(nci_set_config);
628
629static void nci_nfcee_discover_req(struct nci_dev *ndev, unsigned long opt)
630{
631 struct nci_nfcee_discover_cmd cmd;
632 __u8 action = opt;
633
634 cmd.discovery_action = action;
635
636 nci_send_cmd(ndev, NCI_OP_NFCEE_DISCOVER_CMD, 1, &cmd);
637}
638
639int nci_nfcee_discover(struct nci_dev *ndev, u8 action)
640{
641 return __nci_request(ndev, nci_nfcee_discover_req, action,
642 msecs_to_jiffies(NCI_CMD_TIMEOUT));
643}
644EXPORT_SYMBOL(nci_nfcee_discover);
645
646static void nci_nfcee_mode_set_req(struct nci_dev *ndev, unsigned long opt)
647{
648 struct nci_nfcee_mode_set_cmd *cmd =
649 (struct nci_nfcee_mode_set_cmd *)opt;
650
651 nci_send_cmd(ndev, NCI_OP_NFCEE_MODE_SET_CMD,
652 sizeof(struct nci_nfcee_mode_set_cmd), cmd);
653}
654
655int nci_nfcee_mode_set(struct nci_dev *ndev, u8 nfcee_id, u8 nfcee_mode)
656{
657 struct nci_nfcee_mode_set_cmd cmd;
658
659 cmd.nfcee_id = nfcee_id;
660 cmd.nfcee_mode = nfcee_mode;
661
662 return __nci_request(ndev, nci_nfcee_mode_set_req,
663 (unsigned long)&cmd,
664 msecs_to_jiffies(NCI_CMD_TIMEOUT));
665}
666EXPORT_SYMBOL(nci_nfcee_mode_set);
667
668static void nci_core_conn_create_req(struct nci_dev *ndev, unsigned long opt)
669{
670 struct core_conn_create_data *data =
671 (struct core_conn_create_data *)opt;
672
673 nci_send_cmd(ndev, NCI_OP_CORE_CONN_CREATE_CMD, data->length, data->cmd);
674}
675
676int nci_core_conn_create(struct nci_dev *ndev, u8 destination_type,
677 u8 number_destination_params,
678 size_t params_len,
679 struct core_conn_create_dest_spec_params *params)
680{
681 int r;
682 struct nci_core_conn_create_cmd *cmd;
683 struct core_conn_create_data data;
684
685 data.length = params_len + sizeof(struct nci_core_conn_create_cmd);
686 cmd = kzalloc(data.length, GFP_KERNEL);
687 if (!cmd)
688 return -ENOMEM;
689
690 cmd->destination_type = destination_type;
691 cmd->number_destination_params = number_destination_params;
692
693 data.cmd = cmd;
694
695 if (params) {
696 memcpy(cmd->params, params, params_len);
697 if (params->length > 0)
698 memcpy(&ndev->cur_params,
699 ¶ms->value[DEST_SPEC_PARAMS_ID_INDEX],
700 sizeof(struct dest_spec_params));
701 else
702 ndev->cur_params.id = 0;
703 } else {
704 ndev->cur_params.id = 0;
705 }
706 ndev->cur_dest_type = destination_type;
707
708 r = __nci_request(ndev, nci_core_conn_create_req, (unsigned long)&data,
709 msecs_to_jiffies(NCI_CMD_TIMEOUT));
710 kfree(cmd);
711 return r;
712}
713EXPORT_SYMBOL(nci_core_conn_create);
714
715static void nci_core_conn_close_req(struct nci_dev *ndev, unsigned long opt)
716{
717 __u8 conn_id = opt;
718
719 nci_send_cmd(ndev, NCI_OP_CORE_CONN_CLOSE_CMD, 1, &conn_id);
720}
721
722int nci_core_conn_close(struct nci_dev *ndev, u8 conn_id)
723{
724 ndev->cur_conn_id = conn_id;
725 return __nci_request(ndev, nci_core_conn_close_req, conn_id,
726 msecs_to_jiffies(NCI_CMD_TIMEOUT));
727}
728EXPORT_SYMBOL(nci_core_conn_close);
729
730static int nci_set_local_general_bytes(struct nfc_dev *nfc_dev)
731{
732 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
733 struct nci_set_config_param param;
734 int rc;
735
736 param.val = nfc_get_local_general_bytes(nfc_dev, ¶m.len);
737 if ((param.val == NULL) || (param.len == 0))
738 return 0;
739
740 if (param.len > NFC_MAX_GT_LEN)
741 return -EINVAL;
742
743 param.id = NCI_PN_ATR_REQ_GEN_BYTES;
744
745 rc = nci_request(ndev, nci_set_config_req, (unsigned long)¶m,
746 msecs_to_jiffies(NCI_SET_CONFIG_TIMEOUT));
747 if (rc)
748 return rc;
749
750 param.id = NCI_LN_ATR_RES_GEN_BYTES;
751
752 return nci_request(ndev, nci_set_config_req, (unsigned long)¶m,
753 msecs_to_jiffies(NCI_SET_CONFIG_TIMEOUT));
754}
755
756static int nci_set_listen_parameters(struct nfc_dev *nfc_dev)
757{
758 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
759 int rc;
760 __u8 val;
761
762 val = NCI_LA_SEL_INFO_NFC_DEP_MASK;
763
764 rc = nci_set_config(ndev, NCI_LA_SEL_INFO, 1, &val);
765 if (rc)
766 return rc;
767
768 val = NCI_LF_PROTOCOL_TYPE_NFC_DEP_MASK;
769
770 rc = nci_set_config(ndev, NCI_LF_PROTOCOL_TYPE, 1, &val);
771 if (rc)
772 return rc;
773
774 val = NCI_LF_CON_BITR_F_212 | NCI_LF_CON_BITR_F_424;
775
776 return nci_set_config(ndev, NCI_LF_CON_BITR_F, 1, &val);
777}
778
779static int nci_start_poll(struct nfc_dev *nfc_dev,
780 __u32 im_protocols, __u32 tm_protocols)
781{
782 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
783 struct nci_rf_discover_param param;
784 int rc;
785
786 if ((atomic_read(&ndev->state) == NCI_DISCOVERY) ||
787 (atomic_read(&ndev->state) == NCI_W4_ALL_DISCOVERIES)) {
788 pr_err("unable to start poll, since poll is already active\n");
789 return -EBUSY;
790 }
791
792 if (ndev->target_active_prot) {
793 pr_err("there is an active target\n");
794 return -EBUSY;
795 }
796
797 if ((atomic_read(&ndev->state) == NCI_W4_HOST_SELECT) ||
798 (atomic_read(&ndev->state) == NCI_POLL_ACTIVE)) {
799 pr_debug("target active or w4 select, implicitly deactivate\n");
800
801 rc = nci_request(ndev, nci_rf_deactivate_req,
802 NCI_DEACTIVATE_TYPE_IDLE_MODE,
803 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
804 if (rc)
805 return -EBUSY;
806 }
807
808 if ((im_protocols | tm_protocols) & NFC_PROTO_NFC_DEP_MASK) {
809 rc = nci_set_local_general_bytes(nfc_dev);
810 if (rc) {
811 pr_err("failed to set local general bytes\n");
812 return rc;
813 }
814 }
815
816 if (tm_protocols & NFC_PROTO_NFC_DEP_MASK) {
817 rc = nci_set_listen_parameters(nfc_dev);
818 if (rc)
819 pr_err("failed to set listen parameters\n");
820 }
821
822 param.im_protocols = im_protocols;
823 param.tm_protocols = tm_protocols;
824 rc = nci_request(ndev, nci_rf_discover_req, (unsigned long)¶m,
825 msecs_to_jiffies(NCI_RF_DISC_TIMEOUT));
826
827 if (!rc)
828 ndev->poll_prots = im_protocols;
829
830 return rc;
831}
832
833static void nci_stop_poll(struct nfc_dev *nfc_dev)
834{
835 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
836
837 if ((atomic_read(&ndev->state) != NCI_DISCOVERY) &&
838 (atomic_read(&ndev->state) != NCI_W4_ALL_DISCOVERIES)) {
839 pr_err("unable to stop poll, since poll is not active\n");
840 return;
841 }
842
843 nci_request(ndev, nci_rf_deactivate_req, NCI_DEACTIVATE_TYPE_IDLE_MODE,
844 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
845}
846
847static int nci_activate_target(struct nfc_dev *nfc_dev,
848 struct nfc_target *target, __u32 protocol)
849{
850 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
851 struct nci_rf_discover_select_param param;
852 struct nfc_target *nci_target = NULL;
853 int i;
854 int rc = 0;
855
856 pr_debug("target_idx %d, protocol 0x%x\n", target->idx, protocol);
857
858 if ((atomic_read(&ndev->state) != NCI_W4_HOST_SELECT) &&
859 (atomic_read(&ndev->state) != NCI_POLL_ACTIVE)) {
860 pr_err("there is no available target to activate\n");
861 return -EINVAL;
862 }
863
864 if (ndev->target_active_prot) {
865 pr_err("there is already an active target\n");
866 return -EBUSY;
867 }
868
869 for (i = 0; i < ndev->n_targets; i++) {
870 if (ndev->targets[i].idx == target->idx) {
871 nci_target = &ndev->targets[i];
872 break;
873 }
874 }
875
876 if (!nci_target) {
877 pr_err("unable to find the selected target\n");
878 return -EINVAL;
879 }
880
881 if (!(nci_target->supported_protocols & (1 << protocol))) {
882 pr_err("target does not support the requested protocol 0x%x\n",
883 protocol);
884 return -EINVAL;
885 }
886
887 if (atomic_read(&ndev->state) == NCI_W4_HOST_SELECT) {
888 param.rf_discovery_id = nci_target->logical_idx;
889
890 if (protocol == NFC_PROTO_JEWEL)
891 param.rf_protocol = NCI_RF_PROTOCOL_T1T;
892 else if (protocol == NFC_PROTO_MIFARE)
893 param.rf_protocol = NCI_RF_PROTOCOL_T2T;
894 else if (protocol == NFC_PROTO_FELICA)
895 param.rf_protocol = NCI_RF_PROTOCOL_T3T;
896 else if (protocol == NFC_PROTO_ISO14443 ||
897 protocol == NFC_PROTO_ISO14443_B)
898 param.rf_protocol = NCI_RF_PROTOCOL_ISO_DEP;
899 else
900 param.rf_protocol = NCI_RF_PROTOCOL_NFC_DEP;
901
902 rc = nci_request(ndev, nci_rf_discover_select_req,
903 (unsigned long)¶m,
904 msecs_to_jiffies(NCI_RF_DISC_SELECT_TIMEOUT));
905 }
906
907 if (!rc)
908 ndev->target_active_prot = protocol;
909
910 return rc;
911}
912
913static void nci_deactivate_target(struct nfc_dev *nfc_dev,
914 struct nfc_target *target,
915 __u8 mode)
916{
917 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
918 u8 nci_mode = NCI_DEACTIVATE_TYPE_IDLE_MODE;
919
920 pr_debug("entry\n");
921
922 if (!ndev->target_active_prot) {
923 pr_err("unable to deactivate target, no active target\n");
924 return;
925 }
926
927 ndev->target_active_prot = 0;
928
929 switch (mode) {
930 case NFC_TARGET_MODE_SLEEP:
931 nci_mode = NCI_DEACTIVATE_TYPE_SLEEP_MODE;
932 break;
933 }
934
935 if (atomic_read(&ndev->state) == NCI_POLL_ACTIVE) {
936 nci_request(ndev, nci_rf_deactivate_req, nci_mode,
937 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
938 }
939}
940
941static int nci_dep_link_up(struct nfc_dev *nfc_dev, struct nfc_target *target,
942 __u8 comm_mode, __u8 *gb, size_t gb_len)
943{
944 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
945 int rc;
946
947 pr_debug("target_idx %d, comm_mode %d\n", target->idx, comm_mode);
948
949 rc = nci_activate_target(nfc_dev, target, NFC_PROTO_NFC_DEP);
950 if (rc)
951 return rc;
952
953 rc = nfc_set_remote_general_bytes(nfc_dev, ndev->remote_gb,
954 ndev->remote_gb_len);
955 if (!rc)
956 rc = nfc_dep_link_is_up(nfc_dev, target->idx, NFC_COMM_PASSIVE,
957 NFC_RF_INITIATOR);
958
959 return rc;
960}
961
962static int nci_dep_link_down(struct nfc_dev *nfc_dev)
963{
964 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
965 int rc;
966
967 pr_debug("entry\n");
968
969 if (nfc_dev->rf_mode == NFC_RF_INITIATOR) {
970 nci_deactivate_target(nfc_dev, NULL, NCI_DEACTIVATE_TYPE_IDLE_MODE);
971 } else {
972 if (atomic_read(&ndev->state) == NCI_LISTEN_ACTIVE ||
973 atomic_read(&ndev->state) == NCI_DISCOVERY) {
974 nci_request(ndev, nci_rf_deactivate_req, 0,
975 msecs_to_jiffies(NCI_RF_DEACTIVATE_TIMEOUT));
976 }
977
978 rc = nfc_tm_deactivated(nfc_dev);
979 if (rc)
980 pr_err("error when signaling tm deactivation\n");
981 }
982
983 return 0;
984}
985
986
987static int nci_transceive(struct nfc_dev *nfc_dev, struct nfc_target *target,
988 struct sk_buff *skb,
989 data_exchange_cb_t cb, void *cb_context)
990{
991 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
992 int rc;
993 struct nci_conn_info *conn_info;
994
995 conn_info = ndev->rf_conn_info;
996 if (!conn_info)
997 return -EPROTO;
998
999 pr_debug("target_idx %d, len %d\n", target->idx, skb->len);
1000
1001 if (!ndev->target_active_prot) {
1002 pr_err("unable to exchange data, no active target\n");
1003 return -EINVAL;
1004 }
1005
1006 if (test_and_set_bit(NCI_DATA_EXCHANGE, &ndev->flags))
1007 return -EBUSY;
1008
1009 /* store cb and context to be used on receiving data */
1010 conn_info->data_exchange_cb = cb;
1011 conn_info->data_exchange_cb_context = cb_context;
1012
1013 rc = nci_send_data(ndev, NCI_STATIC_RF_CONN_ID, skb);
1014 if (rc)
1015 clear_bit(NCI_DATA_EXCHANGE, &ndev->flags);
1016
1017 return rc;
1018}
1019
1020static int nci_tm_send(struct nfc_dev *nfc_dev, struct sk_buff *skb)
1021{
1022 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1023 int rc;
1024
1025 rc = nci_send_data(ndev, NCI_STATIC_RF_CONN_ID, skb);
1026 if (rc)
1027 pr_err("unable to send data\n");
1028
1029 return rc;
1030}
1031
1032static int nci_enable_se(struct nfc_dev *nfc_dev, u32 se_idx)
1033{
1034 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1035
1036 if (ndev->ops->enable_se)
1037 return ndev->ops->enable_se(ndev, se_idx);
1038
1039 return 0;
1040}
1041
1042static int nci_disable_se(struct nfc_dev *nfc_dev, u32 se_idx)
1043{
1044 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1045
1046 if (ndev->ops->disable_se)
1047 return ndev->ops->disable_se(ndev, se_idx);
1048
1049 return 0;
1050}
1051
1052static int nci_discover_se(struct nfc_dev *nfc_dev)
1053{
1054 int r;
1055 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1056
1057 if (ndev->ops->discover_se) {
1058 r = nci_nfcee_discover(ndev, NCI_NFCEE_DISCOVERY_ACTION_ENABLE);
1059 if (r != NCI_STATUS_OK)
1060 return -EPROTO;
1061
1062 return ndev->ops->discover_se(ndev);
1063 }
1064
1065 return 0;
1066}
1067
1068static int nci_se_io(struct nfc_dev *nfc_dev, u32 se_idx,
1069 u8 *apdu, size_t apdu_length,
1070 se_io_cb_t cb, void *cb_context)
1071{
1072 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1073
1074 if (ndev->ops->se_io)
1075 return ndev->ops->se_io(ndev, se_idx, apdu,
1076 apdu_length, cb, cb_context);
1077
1078 return 0;
1079}
1080
1081static int nci_fw_download(struct nfc_dev *nfc_dev, const char *firmware_name)
1082{
1083 struct nci_dev *ndev = nfc_get_drvdata(nfc_dev);
1084
1085 if (!ndev->ops->fw_download)
1086 return -ENOTSUPP;
1087
1088 return ndev->ops->fw_download(ndev, firmware_name);
1089}
1090
1091static struct nfc_ops nci_nfc_ops = {
1092 .dev_up = nci_dev_up,
1093 .dev_down = nci_dev_down,
1094 .start_poll = nci_start_poll,
1095 .stop_poll = nci_stop_poll,
1096 .dep_link_up = nci_dep_link_up,
1097 .dep_link_down = nci_dep_link_down,
1098 .activate_target = nci_activate_target,
1099 .deactivate_target = nci_deactivate_target,
1100 .im_transceive = nci_transceive,
1101 .tm_send = nci_tm_send,
1102 .enable_se = nci_enable_se,
1103 .disable_se = nci_disable_se,
1104 .discover_se = nci_discover_se,
1105 .se_io = nci_se_io,
1106 .fw_download = nci_fw_download,
1107};
1108
1109/* ---- Interface to NCI drivers ---- */
1110/**
1111 * nci_allocate_device - allocate a new nci device
1112 *
1113 * @ops: device operations
1114 * @supported_protocols: NFC protocols supported by the device
1115 */
1116struct nci_dev *nci_allocate_device(struct nci_ops *ops,
1117 __u32 supported_protocols,
1118 int tx_headroom, int tx_tailroom)
1119{
1120 struct nci_dev *ndev;
1121
1122 pr_debug("supported_protocols 0x%x\n", supported_protocols);
1123
1124 if (!ops->open || !ops->close || !ops->send)
1125 return NULL;
1126
1127 if (!supported_protocols)
1128 return NULL;
1129
1130 ndev = kzalloc(sizeof(struct nci_dev), GFP_KERNEL);
1131 if (!ndev)
1132 return NULL;
1133
1134 ndev->ops = ops;
1135
1136 if (ops->n_prop_ops > NCI_MAX_PROPRIETARY_CMD) {
1137 pr_err("Too many proprietary commands: %zd\n",
1138 ops->n_prop_ops);
1139 ops->prop_ops = NULL;
1140 ops->n_prop_ops = 0;
1141 }
1142
1143 ndev->tx_headroom = tx_headroom;
1144 ndev->tx_tailroom = tx_tailroom;
1145 init_completion(&ndev->req_completion);
1146
1147 ndev->nfc_dev = nfc_allocate_device(&nci_nfc_ops,
1148 supported_protocols,
1149 tx_headroom + NCI_DATA_HDR_SIZE,
1150 tx_tailroom);
1151 if (!ndev->nfc_dev)
1152 goto free_nci;
1153
1154 ndev->hci_dev = nci_hci_allocate(ndev);
1155 if (!ndev->hci_dev)
1156 goto free_nfc;
1157
1158 nfc_set_drvdata(ndev->nfc_dev, ndev);
1159
1160 return ndev;
1161
1162free_nfc:
1163 nfc_free_device(ndev->nfc_dev);
1164free_nci:
1165 kfree(ndev);
1166 return NULL;
1167}
1168EXPORT_SYMBOL(nci_allocate_device);
1169
1170/**
1171 * nci_free_device - deallocate nci device
1172 *
1173 * @ndev: The nci device to deallocate
1174 */
1175void nci_free_device(struct nci_dev *ndev)
1176{
1177 nfc_free_device(ndev->nfc_dev);
1178 kfree(ndev);
1179}
1180EXPORT_SYMBOL(nci_free_device);
1181
1182/**
1183 * nci_register_device - register a nci device in the nfc subsystem
1184 *
1185 * @dev: The nci device to register
1186 */
1187int nci_register_device(struct nci_dev *ndev)
1188{
1189 int rc;
1190 struct device *dev = &ndev->nfc_dev->dev;
1191 char name[32];
1192
1193 ndev->flags = 0;
1194
1195 INIT_WORK(&ndev->cmd_work, nci_cmd_work);
1196 snprintf(name, sizeof(name), "%s_nci_cmd_wq", dev_name(dev));
1197 ndev->cmd_wq = create_singlethread_workqueue(name);
1198 if (!ndev->cmd_wq) {
1199 rc = -ENOMEM;
1200 goto exit;
1201 }
1202
1203 INIT_WORK(&ndev->rx_work, nci_rx_work);
1204 snprintf(name, sizeof(name), "%s_nci_rx_wq", dev_name(dev));
1205 ndev->rx_wq = create_singlethread_workqueue(name);
1206 if (!ndev->rx_wq) {
1207 rc = -ENOMEM;
1208 goto destroy_cmd_wq_exit;
1209 }
1210
1211 INIT_WORK(&ndev->tx_work, nci_tx_work);
1212 snprintf(name, sizeof(name), "%s_nci_tx_wq", dev_name(dev));
1213 ndev->tx_wq = create_singlethread_workqueue(name);
1214 if (!ndev->tx_wq) {
1215 rc = -ENOMEM;
1216 goto destroy_rx_wq_exit;
1217 }
1218
1219 skb_queue_head_init(&ndev->cmd_q);
1220 skb_queue_head_init(&ndev->rx_q);
1221 skb_queue_head_init(&ndev->tx_q);
1222
1223 timer_setup(&ndev->cmd_timer, nci_cmd_timer, 0);
1224 timer_setup(&ndev->data_timer, nci_data_timer, 0);
1225
1226 mutex_init(&ndev->req_lock);
1227 INIT_LIST_HEAD(&ndev->conn_info_list);
1228
1229 rc = nfc_register_device(ndev->nfc_dev);
1230 if (rc)
1231 goto destroy_rx_wq_exit;
1232
1233 goto exit;
1234
1235destroy_rx_wq_exit:
1236 destroy_workqueue(ndev->rx_wq);
1237
1238destroy_cmd_wq_exit:
1239 destroy_workqueue(ndev->cmd_wq);
1240
1241exit:
1242 return rc;
1243}
1244EXPORT_SYMBOL(nci_register_device);
1245
1246/**
1247 * nci_unregister_device - unregister a nci device in the nfc subsystem
1248 *
1249 * @dev: The nci device to unregister
1250 */
1251void nci_unregister_device(struct nci_dev *ndev)
1252{
1253 struct nci_conn_info *conn_info, *n;
1254
1255 nci_close_device(ndev);
1256
1257 destroy_workqueue(ndev->cmd_wq);
1258 destroy_workqueue(ndev->rx_wq);
1259 destroy_workqueue(ndev->tx_wq);
1260
1261 list_for_each_entry_safe(conn_info, n, &ndev->conn_info_list, list) {
1262 list_del(&conn_info->list);
1263 /* conn_info is allocated with devm_kzalloc */
1264 }
1265
1266 nfc_unregister_device(ndev->nfc_dev);
1267}
1268EXPORT_SYMBOL(nci_unregister_device);
1269
1270/**
1271 * nci_recv_frame - receive frame from NCI drivers
1272 *
1273 * @ndev: The nci device
1274 * @skb: The sk_buff to receive
1275 */
1276int nci_recv_frame(struct nci_dev *ndev, struct sk_buff *skb)
1277{
1278 pr_debug("len %d\n", skb->len);
1279
1280 if (!ndev || (!test_bit(NCI_UP, &ndev->flags) &&
1281 !test_bit(NCI_INIT, &ndev->flags))) {
1282 kfree_skb(skb);
1283 return -ENXIO;
1284 }
1285
1286 /* Queue frame for rx worker thread */
1287 skb_queue_tail(&ndev->rx_q, skb);
1288 queue_work(ndev->rx_wq, &ndev->rx_work);
1289
1290 return 0;
1291}
1292EXPORT_SYMBOL(nci_recv_frame);
1293
1294int nci_send_frame(struct nci_dev *ndev, struct sk_buff *skb)
1295{
1296 pr_debug("len %d\n", skb->len);
1297
1298 if (!ndev) {
1299 kfree_skb(skb);
1300 return -ENODEV;
1301 }
1302
1303 /* Get rid of skb owner, prior to sending to the driver. */
1304 skb_orphan(skb);
1305
1306 /* Send copy to sniffer */
1307 nfc_send_to_raw_sock(ndev->nfc_dev, skb,
1308 RAW_PAYLOAD_NCI, NFC_DIRECTION_TX);
1309
1310 return ndev->ops->send(ndev, skb);
1311}
1312EXPORT_SYMBOL(nci_send_frame);
1313
1314/* Send NCI command */
1315int nci_send_cmd(struct nci_dev *ndev, __u16 opcode, __u8 plen, void *payload)
1316{
1317 struct nci_ctrl_hdr *hdr;
1318 struct sk_buff *skb;
1319
1320 pr_debug("opcode 0x%x, plen %d\n", opcode, plen);
1321
1322 skb = nci_skb_alloc(ndev, (NCI_CTRL_HDR_SIZE + plen), GFP_KERNEL);
1323 if (!skb) {
1324 pr_err("no memory for command\n");
1325 return -ENOMEM;
1326 }
1327
1328 hdr = skb_put(skb, NCI_CTRL_HDR_SIZE);
1329 hdr->gid = nci_opcode_gid(opcode);
1330 hdr->oid = nci_opcode_oid(opcode);
1331 hdr->plen = plen;
1332
1333 nci_mt_set((__u8 *)hdr, NCI_MT_CMD_PKT);
1334 nci_pbf_set((__u8 *)hdr, NCI_PBF_LAST);
1335
1336 if (plen)
1337 skb_put_data(skb, payload, plen);
1338
1339 skb_queue_tail(&ndev->cmd_q, skb);
1340 queue_work(ndev->cmd_wq, &ndev->cmd_work);
1341
1342 return 0;
1343}
1344EXPORT_SYMBOL(nci_send_cmd);
1345
1346/* Proprietary commands API */
1347static struct nci_driver_ops *ops_cmd_lookup(struct nci_driver_ops *ops,
1348 size_t n_ops,
1349 __u16 opcode)
1350{
1351 size_t i;
1352 struct nci_driver_ops *op;
1353
1354 if (!ops || !n_ops)
1355 return NULL;
1356
1357 for (i = 0; i < n_ops; i++) {
1358 op = &ops[i];
1359 if (op->opcode == opcode)
1360 return op;
1361 }
1362
1363 return NULL;
1364}
1365
1366static int nci_op_rsp_packet(struct nci_dev *ndev, __u16 rsp_opcode,
1367 struct sk_buff *skb, struct nci_driver_ops *ops,
1368 size_t n_ops)
1369{
1370 struct nci_driver_ops *op;
1371
1372 op = ops_cmd_lookup(ops, n_ops, rsp_opcode);
1373 if (!op || !op->rsp)
1374 return -ENOTSUPP;
1375
1376 return op->rsp(ndev, skb);
1377}
1378
1379static int nci_op_ntf_packet(struct nci_dev *ndev, __u16 ntf_opcode,
1380 struct sk_buff *skb, struct nci_driver_ops *ops,
1381 size_t n_ops)
1382{
1383 struct nci_driver_ops *op;
1384
1385 op = ops_cmd_lookup(ops, n_ops, ntf_opcode);
1386 if (!op || !op->ntf)
1387 return -ENOTSUPP;
1388
1389 return op->ntf(ndev, skb);
1390}
1391
1392int nci_prop_rsp_packet(struct nci_dev *ndev, __u16 opcode,
1393 struct sk_buff *skb)
1394{
1395 return nci_op_rsp_packet(ndev, opcode, skb, ndev->ops->prop_ops,
1396 ndev->ops->n_prop_ops);
1397}
1398
1399int nci_prop_ntf_packet(struct nci_dev *ndev, __u16 opcode,
1400 struct sk_buff *skb)
1401{
1402 return nci_op_ntf_packet(ndev, opcode, skb, ndev->ops->prop_ops,
1403 ndev->ops->n_prop_ops);
1404}
1405
1406int nci_core_rsp_packet(struct nci_dev *ndev, __u16 opcode,
1407 struct sk_buff *skb)
1408{
1409 return nci_op_rsp_packet(ndev, opcode, skb, ndev->ops->core_ops,
1410 ndev->ops->n_core_ops);
1411}
1412
1413int nci_core_ntf_packet(struct nci_dev *ndev, __u16 opcode,
1414 struct sk_buff *skb)
1415{
1416 return nci_op_ntf_packet(ndev, opcode, skb, ndev->ops->core_ops,
1417 ndev->ops->n_core_ops);
1418}
1419
1420/* ---- NCI TX Data worker thread ---- */
1421
1422static void nci_tx_work(struct work_struct *work)
1423{
1424 struct nci_dev *ndev = container_of(work, struct nci_dev, tx_work);
1425 struct nci_conn_info *conn_info;
1426 struct sk_buff *skb;
1427
1428 conn_info = nci_get_conn_info_by_conn_id(ndev, ndev->cur_conn_id);
1429 if (!conn_info)
1430 return;
1431
1432 pr_debug("credits_cnt %d\n", atomic_read(&conn_info->credits_cnt));
1433
1434 /* Send queued tx data */
1435 while (atomic_read(&conn_info->credits_cnt)) {
1436 skb = skb_dequeue(&ndev->tx_q);
1437 if (!skb)
1438 return;
1439
1440 /* Check if data flow control is used */
1441 if (atomic_read(&conn_info->credits_cnt) !=
1442 NCI_DATA_FLOW_CONTROL_NOT_USED)
1443 atomic_dec(&conn_info->credits_cnt);
1444
1445 pr_debug("NCI TX: MT=data, PBF=%d, conn_id=%d, plen=%d\n",
1446 nci_pbf(skb->data),
1447 nci_conn_id(skb->data),
1448 nci_plen(skb->data));
1449
1450 nci_send_frame(ndev, skb);
1451
1452 mod_timer(&ndev->data_timer,
1453 jiffies + msecs_to_jiffies(NCI_DATA_TIMEOUT));
1454 }
1455}
1456
1457/* ----- NCI RX worker thread (data & control) ----- */
1458
1459static void nci_rx_work(struct work_struct *work)
1460{
1461 struct nci_dev *ndev = container_of(work, struct nci_dev, rx_work);
1462 struct sk_buff *skb;
1463
1464 while ((skb = skb_dequeue(&ndev->rx_q))) {
1465
1466 /* Send copy to sniffer */
1467 nfc_send_to_raw_sock(ndev->nfc_dev, skb,
1468 RAW_PAYLOAD_NCI, NFC_DIRECTION_RX);
1469
1470 /* Process frame */
1471 switch (nci_mt(skb->data)) {
1472 case NCI_MT_RSP_PKT:
1473 nci_rsp_packet(ndev, skb);
1474 break;
1475
1476 case NCI_MT_NTF_PKT:
1477 nci_ntf_packet(ndev, skb);
1478 break;
1479
1480 case NCI_MT_DATA_PKT:
1481 nci_rx_data_packet(ndev, skb);
1482 break;
1483
1484 default:
1485 pr_err("unknown MT 0x%x\n", nci_mt(skb->data));
1486 kfree_skb(skb);
1487 break;
1488 }
1489 }
1490
1491 /* check if a data exchange timout has occurred */
1492 if (test_bit(NCI_DATA_EXCHANGE_TO, &ndev->flags)) {
1493 /* complete the data exchange transaction, if exists */
1494 if (test_bit(NCI_DATA_EXCHANGE, &ndev->flags))
1495 nci_data_exchange_complete(ndev, NULL,
1496 ndev->cur_conn_id,
1497 -ETIMEDOUT);
1498
1499 clear_bit(NCI_DATA_EXCHANGE_TO, &ndev->flags);
1500 }
1501}
1502
1503/* ----- NCI TX CMD worker thread ----- */
1504
1505static void nci_cmd_work(struct work_struct *work)
1506{
1507 struct nci_dev *ndev = container_of(work, struct nci_dev, cmd_work);
1508 struct sk_buff *skb;
1509
1510 pr_debug("cmd_cnt %d\n", atomic_read(&ndev->cmd_cnt));
1511
1512 /* Send queued command */
1513 if (atomic_read(&ndev->cmd_cnt)) {
1514 skb = skb_dequeue(&ndev->cmd_q);
1515 if (!skb)
1516 return;
1517
1518 atomic_dec(&ndev->cmd_cnt);
1519
1520 pr_debug("NCI TX: MT=cmd, PBF=%d, GID=0x%x, OID=0x%x, plen=%d\n",
1521 nci_pbf(skb->data),
1522 nci_opcode_gid(nci_opcode(skb->data)),
1523 nci_opcode_oid(nci_opcode(skb->data)),
1524 nci_plen(skb->data));
1525
1526 nci_send_frame(ndev, skb);
1527
1528 mod_timer(&ndev->cmd_timer,
1529 jiffies + msecs_to_jiffies(NCI_CMD_TIMEOUT));
1530 }
1531}
1532
1533MODULE_LICENSE("GPL");