Blame - net/bluetooth/hci_core.c - fp2-dev/kernel/msm

blob: 0cd3c3f0d6170fc671f664de802d826f52ea7e16 [file] [log] [blame]

YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1	/*
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2	BlueZ - Bluetooth protocol stack for Linux
Brian Gix	3cd6204	2012-01-11 15:18:17 -0800	[diff] [blame]	3	Copyright (c) 2000-2001, 2010-2012 Code Aurora Forum. All rights reserved.
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4
				5	Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
				6
				7	This program is free software; you can redistribute it and/or modify
				8	it under the terms of the GNU General Public License version 2 as
				9	published by the Free Software Foundation;
				10
				11	THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
				12	OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
				13	FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
				14	IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	15	CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
				16	WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
				17	ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	18	OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
				19
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	20	ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
				21	COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	22	SOFTWARE IS DISCLAIMED.
				23	*/
				24
				25	/* Bluetooth HCI core. */
				26
S.Çağlar Onur	8245302	2008-02-17 23:25:57 -0800	[diff] [blame]	27	#include <linux/jiffies.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	28	#include <linux/module.h>
				29	#include <linux/kmod.h>
				30
				31	#include <linux/types.h>
				32	#include <linux/errno.h>
				33	#include <linux/kernel.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	34	#include <linux/sched.h>
				35	#include <linux/slab.h>
				36	#include <linux/poll.h>
				37	#include <linux/fcntl.h>
				38	#include <linux/init.h>
				39	#include <linux/skbuff.h>
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	40	#include <linux/workqueue.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	41	#include <linux/interrupt.h>
				42	#include <linux/notifier.h>
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	43	#include <linux/rfkill.h>
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	44	#include <linux/timer.h>
Vinicius Costa Gomes	3a0259b	2011-06-09 18:50:43 -0300	[diff] [blame]	45	#include <linux/crypto.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	46	#include <net/sock.h>
				47
				48	#include <asm/system.h>
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	49	#include <linux/uaccess.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	50	#include <asm/unaligned.h>
				51
				52	#include <net/bluetooth/bluetooth.h>
				53	#include <net/bluetooth/hci_core.h>
				54
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	55	#define AUTO_OFF_TIMEOUT 2000
				56
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	57	static void hci_cmd_task(unsigned long arg);
				58	static void hci_rx_task(unsigned long arg);
				59	static void hci_tx_task(unsigned long arg);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	60
				61	static DEFINE_RWLOCK(hci_task_lock);
				62
Steve Muckle	f132c6c	2012-06-06 18:30:57 -0700	[diff] [blame]	63	static bool enable_smp = 1;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	64
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	65	/* HCI device list */
				66	LIST_HEAD(hci_dev_list);
				67	DEFINE_RWLOCK(hci_dev_list_lock);
				68
				69	/* HCI callback list */
				70	LIST_HEAD(hci_cb_list);
				71	DEFINE_RWLOCK(hci_cb_list_lock);
				72
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	73	/* AMP Manager event callbacks */
				74	LIST_HEAD(amp_mgr_cb_list);
				75	DEFINE_RWLOCK(amp_mgr_cb_list_lock);
				76
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	77	/* HCI protocols */
				78	#define HCI_MAX_PROTO 2
				79	struct hci_proto *hci_proto[HCI_MAX_PROTO];
				80
				81	/* HCI notifiers list */
Alan Stern	e041c68	2006-03-27 01:16:30 -0800	[diff] [blame]	82	static ATOMIC_NOTIFIER_HEAD(hci_notifier);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	83
				84	/* ---- HCI notifications ---- */
				85
				86	int hci_register_notifier(struct notifier_block *nb)
				87	{
Alan Stern	e041c68	2006-03-27 01:16:30 -0800	[diff] [blame]	88	return atomic_notifier_chain_register(&hci_notifier, nb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	89	}
				90
				91	int hci_unregister_notifier(struct notifier_block *nb)
				92	{
Alan Stern	e041c68	2006-03-27 01:16:30 -0800	[diff] [blame]	93	return atomic_notifier_chain_unregister(&hci_notifier, nb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	94	}
				95
Marcel Holtmann	6516455	2005-10-28 19:20:48 +0200	[diff] [blame]	96	static void hci_notify(struct hci_dev *hdev, int event)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	97	{
Alan Stern	e041c68	2006-03-27 01:16:30 -0800	[diff] [blame]	98	atomic_notifier_call_chain(&hci_notifier, event, hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	99	}
				100
				101	/* ---- HCI requests ---- */
				102
Johan Hedberg	23bb576	2010-12-21 23:01:27 +0200	[diff] [blame]	103	void hci_req_complete(struct hci_dev *hdev, __u16 cmd, int result)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	104	{
Johan Hedberg	23bb576	2010-12-21 23:01:27 +0200	[diff] [blame]	105	BT_DBG("%s command 0x%04x result 0x%2.2x", hdev->name, cmd, result);
				106
Johan Hedberg	a5040ef	2011-01-10 13:28:59 +0200	[diff] [blame]	107	/* If this is the init phase check if the completed command matches
				108	* the last init command, and if not just return.
				109	*/
				110	if (test_bit(HCI_INIT, &hdev->flags) && hdev->init_last_cmd != cmd)
Johan Hedberg	23bb576	2010-12-21 23:01:27 +0200	[diff] [blame]	111	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	112
				113	if (hdev->req_status == HCI_REQ_PEND) {
				114	hdev->req_result = result;
				115	hdev->req_status = HCI_REQ_DONE;
				116	wake_up_interruptible(&hdev->req_wait_q);
				117	}
				118	}
				119
				120	static void hci_req_cancel(struct hci_dev *hdev, int err)
				121	{
				122	BT_DBG("%s err 0x%2.2x", hdev->name, err);
				123
				124	if (hdev->req_status == HCI_REQ_PEND) {
				125	hdev->req_result = err;
				126	hdev->req_status = HCI_REQ_CANCELED;
				127	wake_up_interruptible(&hdev->req_wait_q);
				128	}
				129	}
				130
				131	/* Execute request and wait for completion. */
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	132	static int __hci_request(struct hci_dev hdev, void (req)(struct hci_dev *hdev, unsigned long opt),
Szymon Janc	01df8c3	2011-02-17 16:46:47 +0100	[diff] [blame]	133	unsigned long opt, __u32 timeout)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	134	{
				135	DECLARE_WAITQUEUE(wait, current);
				136	int err = 0;
				137
				138	BT_DBG("%s start", hdev->name);
				139
				140	hdev->req_status = HCI_REQ_PEND;
				141
				142	add_wait_queue(&hdev->req_wait_q, &wait);
				143	set_current_state(TASK_INTERRUPTIBLE);
				144
				145	req(hdev, opt);
				146	schedule_timeout(timeout);
				147
				148	remove_wait_queue(&hdev->req_wait_q, &wait);
				149
				150	if (signal_pending(current))
				151	return -EINTR;
				152
				153	switch (hdev->req_status) {
				154	case HCI_REQ_DONE:
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	155	err = -bt_err(hdev->req_result);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	156	break;
				157
				158	case HCI_REQ_CANCELED:
				159	err = -hdev->req_result;
				160	break;
				161
				162	default:
				163	err = -ETIMEDOUT;
				164	break;
Stephen Hemminger	3ff50b7	2007-04-20 17:09:22 -0700	[diff] [blame]	165	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	166
Johan Hedberg	a5040ef	2011-01-10 13:28:59 +0200	[diff] [blame]	167	hdev->req_status = hdev->req_result = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	168
				169	BT_DBG("%s end: err %d", hdev->name, err);
				170
				171	return err;
				172	}
				173
				174	static inline int hci_request(struct hci_dev hdev, void (req)(struct hci_dev *hdev, unsigned long opt),
Szymon Janc	01df8c3	2011-02-17 16:46:47 +0100	[diff] [blame]	175	unsigned long opt, __u32 timeout)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	176	{
				177	int ret;
				178
Marcel Holtmann	7c6a329	2008-09-12 03:11:54 +0200	[diff] [blame]	179	if (!test_bit(HCI_UP, &hdev->flags))
				180	return -ENETDOWN;
				181
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	182	/* Serialize all requests */
				183	hci_req_lock(hdev);
				184	ret = __hci_request(hdev, req, opt, timeout);
				185	hci_req_unlock(hdev);
				186
				187	return ret;
				188	}
				189
				190	static void hci_reset_req(struct hci_dev *hdev, unsigned long opt)
				191	{
				192	BT_DBG("%s %ld", hdev->name, opt);
				193
				194	/* Reset device */
Gustavo F. Padovan	f630cf0	2011-03-16 15:36:29 -0300	[diff] [blame]	195	set_bit(HCI_RESET, &hdev->flags);
Brian Gix	6e4531c	2011-10-28 16:12:08 -0700	[diff] [blame]	196	memset(&hdev->features, 0, sizeof(hdev->features));
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	197	hci_send_cmd(hdev, HCI_OP_RESET, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	198	}
				199
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	200	static void hci_init_req(struct hci_dev *hdev, unsigned long opt)
				201	{
Johan Hedberg	b0916ea	2011-01-10 13:44:55 +0200	[diff] [blame]	202	struct hci_cp_delete_stored_link_key cp;
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	203	struct sk_buff *skb;
Marcel Holtmann	1ebb925	2005-11-08 09:57:21 -0800	[diff] [blame]	204	__le16 param;
Marcel Holtmann	89f2783	2007-09-09 08:39:49 +0200	[diff] [blame]	205	__u8 flt_type;
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	206
				207	BT_DBG("%s %ld", hdev->name, opt);
				208
				209	/* Driver initialization */
				210
				211	/* Special commands */
				212	while ((skb = skb_dequeue(&hdev->driver_init))) {
				213	bt_cb(skb)->pkt_type = HCI_COMMAND_PKT;
				214	skb->dev = (void *) hdev;
				215
				216	skb_queue_tail(&hdev->cmd_q, skb);
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	217	tasklet_schedule(&hdev->cmd_task);
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	218	}
				219	skb_queue_purge(&hdev->driver_init);
				220
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	221	/* Mandatory initialization */
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	222
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	223	/* Reset */
Gustavo F. Padovan	f630cf0	2011-03-16 15:36:29 -0300	[diff] [blame]	224	if (!test_bit(HCI_QUIRK_NO_RESET, &hdev->quirks)) {
				225	set_bit(HCI_RESET, &hdev->flags);
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	226	hci_send_cmd(hdev, HCI_OP_RESET, 0, NULL);
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	227	}
				228
Marcel Holtmann	1143e5a	2006-09-23 09:57:20 +0200	[diff] [blame]	229	/* Read Local Version */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	230	hci_send_cmd(hdev, HCI_OP_READ_LOCAL_VERSION, 0, NULL);
Marcel Holtmann	1143e5a	2006-09-23 09:57:20 +0200	[diff] [blame]	231
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	232
				233	/* Set default HCI Flow Control Mode */
				234	if (hdev->dev_type == HCI_BREDR)
				235	hdev->flow_ctl_mode = HCI_PACKET_BASED_FLOW_CTL_MODE;
				236	else
				237	hdev->flow_ctl_mode = HCI_BLOCK_BASED_FLOW_CTL_MODE;
				238
				239	/* Read HCI Flow Control Mode */
				240	hci_send_cmd(hdev, HCI_OP_READ_FLOW_CONTROL_MODE, 0, NULL);
				241
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	242	/* Read Buffer Size (ACL mtu, max pkt, etc.) */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	243	hci_send_cmd(hdev, HCI_OP_READ_BUFFER_SIZE, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	244
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	245	/* Read Data Block Size (ACL mtu, max pkt, etc.) */
				246	hci_send_cmd(hdev, HCI_OP_READ_DATA_BLOCK_SIZE, 0, NULL);
				247
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	248	#if 0
				249	/* Host buffer size */
				250	{
				251	struct hci_cp_host_buffer_size cp;
YOSHIFUJI Hideaki	aca3192	2007-03-25 20:12:50 -0700	[diff] [blame]	252	cp.acl_mtu = cpu_to_le16(HCI_MAX_ACL_SIZE);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	253	cp.sco_mtu = HCI_MAX_SCO_SIZE;
YOSHIFUJI Hideaki	aca3192	2007-03-25 20:12:50 -0700	[diff] [blame]	254	cp.acl_max_pkt = cpu_to_le16(0xffff);
				255	cp.sco_max_pkt = cpu_to_le16(0xffff);
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	256	hci_send_cmd(hdev, HCI_OP_HOST_BUFFER_SIZE, sizeof(cp), &cp);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	257	}
				258	#endif
				259
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	260	if (hdev->dev_type == HCI_BREDR) {
				261	/* BR-EDR initialization */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	262
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	263	/* Read Local Supported Features */
				264	hci_send_cmd(hdev, HCI_OP_READ_LOCAL_FEATURES, 0, NULL);
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	265
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	266	/* Read BD Address */
				267	hci_send_cmd(hdev, HCI_OP_READ_BD_ADDR, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	268
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	269	/* Read Class of Device */
				270	hci_send_cmd(hdev, HCI_OP_READ_CLASS_OF_DEV, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	271
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	272	/* Read Local Name */
				273	hci_send_cmd(hdev, HCI_OP_READ_LOCAL_NAME, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	274
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	275	/* Read Voice Setting */
				276	hci_send_cmd(hdev, HCI_OP_READ_VOICE_SETTING, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	277
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	278	/* Optional initialization */
				279	/* Clear Event Filters */
				280	flt_type = HCI_FLT_CLEAR_ALL;
				281	hci_send_cmd(hdev, HCI_OP_SET_EVENT_FLT, 1, &flt_type);
Johan Hedberg	b0916ea	2011-01-10 13:44:55 +0200	[diff] [blame]	282
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	283	/* Connection accept timeout ~20 secs */
				284	param = cpu_to_le16(0x7d00);
				285	hci_send_cmd(hdev, HCI_OP_WRITE_CA_TIMEOUT, 2, &param);
				286
				287	bacpy(&cp.bdaddr, BDADDR_ANY);
				288	cp.delete_all = 1;
				289	hci_send_cmd(hdev, HCI_OP_DELETE_STORED_LINK_KEY,
				290	sizeof(cp), &cp);
				291	} else {
				292	/* AMP initialization */
				293	/* Connection accept timeout ~5 secs */
				294	param = cpu_to_le16(0x1f40);
				295	hci_send_cmd(hdev, HCI_OP_WRITE_CA_TIMEOUT, 2, &param);
				296
				297	/* Read AMP Info */
				298	hci_send_cmd(hdev, HCI_OP_READ_LOCAL_AMP_INFO, 0, NULL);
				299	}
Andrei Emeltchenko	e61ef49	2011-12-19 16:31:27 +0200	[diff] [blame]	300	}
				301
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	302	static void hci_le_init_req(struct hci_dev *hdev, unsigned long opt)
				303	{
				304	BT_DBG("%s", hdev->name);
				305
				306	/* Read LE buffer size */
				307	hci_send_cmd(hdev, HCI_OP_LE_READ_BUFFER_SIZE, 0, NULL);
Sunny Kapdi	93bef89	2012-07-30 14:52:56 -0700	[diff] [blame^]	308
				309	/* Read LE clear white list */
				310	hci_send_cmd(hdev, HCI_OP_LE_CLEAR_WHITE_LIST, 0, NULL);
				311
				312	/* Read LE white list size */
				313	hci_send_cmd(hdev, HCI_OP_LE_READ_WHITE_LIST_SIZE, 0, NULL);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	314	}
				315
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	316	static void hci_scan_req(struct hci_dev *hdev, unsigned long opt)
				317	{
				318	__u8 scan = opt;
				319
				320	BT_DBG("%s %x", hdev->name, scan);
				321
				322	/* Inquiry and Page scans */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	323	hci_send_cmd(hdev, HCI_OP_WRITE_SCAN_ENABLE, 1, &scan);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	324	}
				325
				326	static void hci_auth_req(struct hci_dev *hdev, unsigned long opt)
				327	{
				328	__u8 auth = opt;
				329
				330	BT_DBG("%s %x", hdev->name, auth);
				331
				332	/* Authentication */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	333	hci_send_cmd(hdev, HCI_OP_WRITE_AUTH_ENABLE, 1, &auth);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	334	}
				335
				336	static void hci_encrypt_req(struct hci_dev *hdev, unsigned long opt)
				337	{
				338	__u8 encrypt = opt;
				339
				340	BT_DBG("%s %x", hdev->name, encrypt);
				341
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	342	/* Encryption */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	343	hci_send_cmd(hdev, HCI_OP_WRITE_ENCRYPT_MODE, 1, &encrypt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	344	}
				345
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	346	static void hci_linkpol_req(struct hci_dev *hdev, unsigned long opt)
				347	{
				348	__le16 policy = cpu_to_le16(opt);
				349
Marcel Holtmann	a418b89	2008-11-30 12:17:28 +0100	[diff] [blame]	350	BT_DBG("%s %x", hdev->name, policy);
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	351
				352	/* Default link policy */
				353	hci_send_cmd(hdev, HCI_OP_WRITE_DEF_LINK_POLICY, 2, &policy);
				354	}
				355
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	356	/* Get HCI device by index.
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	357	* Device is held on return. */
				358	struct hci_dev *hci_dev_get(int index)
				359	{
				360	struct hci_dev *hdev = NULL;
				361	struct list_head *p;
				362
				363	BT_DBG("%d", index);
				364
				365	if (index < 0)
				366	return NULL;
				367
				368	read_lock(&hci_dev_list_lock);
				369	list_for_each(p, &hci_dev_list) {
				370	struct hci_dev *d = list_entry(p, struct hci_dev, list);
				371	if (d->id == index) {
				372	hdev = hci_dev_hold(d);
				373	break;
				374	}
				375	}
				376	read_unlock(&hci_dev_list_lock);
				377	return hdev;
				378	}
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	379	EXPORT_SYMBOL(hci_dev_get);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	380
				381	/* ---- Inquiry support ---- */
				382	static void inquiry_cache_flush(struct hci_dev *hdev)
				383	{
				384	struct inquiry_cache *cache = &hdev->inq_cache;
				385	struct inquiry_entry next = cache->list, e;
				386
				387	BT_DBG("cache %p", cache);
				388
				389	cache->list = NULL;
				390	while ((e = next)) {
				391	next = e->next;
				392	kfree(e);
				393	}
				394	}
				395
				396	struct inquiry_entry hci_inquiry_cache_lookup(struct hci_dev hdev, bdaddr_t *bdaddr)
				397	{
				398	struct inquiry_cache *cache = &hdev->inq_cache;
				399	struct inquiry_entry *e;
				400
				401	BT_DBG("cache %p, %s", cache, batostr(bdaddr));
				402
				403	for (e = cache->list; e; e = e->next)
				404	if (!bacmp(&e->data.bdaddr, bdaddr))
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	405	break;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	406	return e;
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	407	}
				408
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	409	void hci_inquiry_cache_update(struct hci_dev hdev, struct inquiry_data data)
				410	{
				411	struct inquiry_cache *cache = &hdev->inq_cache;
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	412	struct inquiry_entry *ie;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	413
				414	BT_DBG("cache %p, %s", cache, batostr(&data->bdaddr));
				415
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	416	ie = hci_inquiry_cache_lookup(hdev, &data->bdaddr);
				417	if (!ie) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	418	/* Entry not in the cache. Add new one. */
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	419	ie = kzalloc(sizeof(struct inquiry_entry), GFP_ATOMIC);
				420	if (!ie)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	421	return;
Johan Hedberg	388fc8f	2012-02-23 00:38:59 +0200	[diff] [blame]	422
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	423	ie->next = cache->list;
				424	cache->list = ie;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	425	}
				426
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	427	memcpy(&ie->data, data, sizeof(*data));
				428	ie->timestamp = jiffies;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	429	cache->timestamp = jiffies;
				430	}
				431
				432	static int inquiry_cache_dump(struct hci_dev hdev, int num, __u8 buf)
				433	{
				434	struct inquiry_cache *cache = &hdev->inq_cache;
				435	struct inquiry_info info = (struct inquiry_info ) buf;
				436	struct inquiry_entry *e;
				437	int copied = 0;
				438
				439	for (e = cache->list; e && copied < num; e = e->next, copied++) {
				440	struct inquiry_data *data = &e->data;
				441	bacpy(&info->bdaddr, &data->bdaddr);
				442	info->pscan_rep_mode = data->pscan_rep_mode;
				443	info->pscan_period_mode = data->pscan_period_mode;
				444	info->pscan_mode = data->pscan_mode;
				445	memcpy(info->dev_class, data->dev_class, 3);
				446	info->clock_offset = data->clock_offset;
				447	info++;
				448	}
				449
				450	BT_DBG("cache %p, copied %d", cache, copied);
				451	return copied;
				452	}
				453
				454	static void hci_inq_req(struct hci_dev *hdev, unsigned long opt)
				455	{
				456	struct hci_inquiry_req ir = (struct hci_inquiry_req ) opt;
				457	struct hci_cp_inquiry cp;
				458
				459	BT_DBG("%s", hdev->name);
				460
				461	if (test_bit(HCI_INQUIRY, &hdev->flags))
				462	return;
				463
				464	/* Start Inquiry */
				465	memcpy(&cp.lap, &ir->lap, 3);
				466	cp.length = ir->length;
				467	cp.num_rsp = ir->num_rsp;
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	468	hci_send_cmd(hdev, HCI_OP_INQUIRY, sizeof(cp), &cp);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	469	}
				470
				471	int hci_inquiry(void __user *arg)
				472	{
				473	__u8 __user *ptr = arg;
				474	struct hci_inquiry_req ir;
				475	struct hci_dev *hdev;
				476	int err = 0, do_inquiry = 0, max_rsp;
				477	long timeo;
				478	__u8 *buf;
				479
				480	if (copy_from_user(&ir, ptr, sizeof(ir)))
				481	return -EFAULT;
				482
Andrei Emeltchenko	5a08ecc	2011-01-11 17:20:20 +0200	[diff] [blame]	483	hdev = hci_dev_get(ir.dev_id);
				484	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	485	return -ENODEV;
				486
				487	hci_dev_lock_bh(hdev);
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	488	if (inquiry_cache_age(hdev) > INQUIRY_CACHE_AGE_MAX \|\|
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	489	inquiry_cache_empty(hdev) \|\|
				490	ir.flags & IREQ_CACHE_FLUSH) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	491	inquiry_cache_flush(hdev);
				492	do_inquiry = 1;
				493	}
				494	hci_dev_unlock_bh(hdev);
				495
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	496	timeo = ir.length * msecs_to_jiffies(2000);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	497
				498	if (do_inquiry) {
				499	err = hci_request(hdev, hci_inq_req, (unsigned long)&ir, timeo);
				500	if (err < 0)
				501	goto done;
				502	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	503
				504	/* for unlimited number of responses we will use buffer with 255 entries */
				505	max_rsp = (ir.num_rsp == 0) ? 255 : ir.num_rsp;
				506
				507	/* cache_dump can't sleep. Therefore we allocate temp buffer and then
				508	* copy it to the user space.
				509	*/
Szymon Janc	01df8c3	2011-02-17 16:46:47 +0100	[diff] [blame]	510	buf = kmalloc(sizeof(struct inquiry_info) * max_rsp, GFP_KERNEL);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	511	if (!buf) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	512	err = -ENOMEM;
				513	goto done;
				514	}
				515
				516	hci_dev_lock_bh(hdev);
				517	ir.num_rsp = inquiry_cache_dump(hdev, max_rsp, buf);
				518	hci_dev_unlock_bh(hdev);
				519
				520	BT_DBG("num_rsp %d", ir.num_rsp);
				521
				522	if (!copy_to_user(ptr, &ir, sizeof(ir))) {
				523	ptr += sizeof(ir);
				524	if (copy_to_user(ptr, buf, sizeof(struct inquiry_info) *
				525	ir.num_rsp))
				526	err = -EFAULT;
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	527	} else
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	528	err = -EFAULT;
				529
				530	kfree(buf);
				531
				532	done:
				533	hci_dev_put(hdev);
				534	return err;
				535	}
				536
				537	/* ---- HCI ioctl helpers ---- */
				538
				539	int hci_dev_open(__u16 dev)
				540	{
				541	struct hci_dev *hdev;
				542	int ret = 0;
				543
Andrei Emeltchenko	5a08ecc	2011-01-11 17:20:20 +0200	[diff] [blame]	544	hdev = hci_dev_get(dev);
				545	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	546	return -ENODEV;
				547
				548	BT_DBG("%s %p", hdev->name, hdev);
				549
				550	hci_req_lock(hdev);
				551
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	552	if (hdev->rfkill && rfkill_blocked(hdev->rfkill)) {
				553	ret = -ERFKILL;
				554	goto done;
				555	}
				556
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	557	if (test_bit(HCI_UP, &hdev->flags)) {
				558	ret = -EALREADY;
				559	goto done;
				560	}
				561
				562	if (test_bit(HCI_QUIRK_RAW_DEVICE, &hdev->quirks))
				563	set_bit(HCI_RAW, &hdev->flags);
				564
				565	if (hdev->open(hdev)) {
				566	ret = -EIO;
				567	goto done;
				568	}
				569
Bhasker Neti	a6e6a4f	2012-01-27 15:25:43 +0530	[diff] [blame]	570	if (!skb_queue_empty(&hdev->cmd_q)) {
				571	BT_ERR("command queue is not empty, purging");
				572	skb_queue_purge(&hdev->cmd_q);
				573	}
				574	if (!skb_queue_empty(&hdev->rx_q)) {
				575	BT_ERR("rx queue is not empty, purging");
				576	skb_queue_purge(&hdev->rx_q);
				577	}
				578	if (!skb_queue_empty(&hdev->raw_q)) {
				579	BT_ERR("raw queue is not empty, purging");
				580	skb_queue_purge(&hdev->raw_q);
				581	}
				582
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	583	if (!test_bit(HCI_RAW, &hdev->flags)) {
				584	atomic_set(&hdev->cmd_cnt, 1);
				585	set_bit(HCI_INIT, &hdev->flags);
Johan Hedberg	a5040ef	2011-01-10 13:28:59 +0200	[diff] [blame]	586	hdev->init_last_cmd = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	587
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	588	ret = __hci_request(hdev, hci_init_req, 0,
				589	msecs_to_jiffies(HCI_INIT_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	590
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	591	if (lmp_le_capable(hdev))
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	592	ret = __hci_request(hdev, hci_le_init_req, 0,
				593	msecs_to_jiffies(HCI_INIT_TIMEOUT));
				594
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	595	clear_bit(HCI_INIT, &hdev->flags);
				596	}
				597
				598	if (!ret) {
				599	hci_dev_hold(hdev);
				600	set_bit(HCI_UP, &hdev->flags);
				601	hci_notify(hdev, HCI_DEV_UP);
Peter Krystad	1fc4407	2011-08-30 15:38:12 -0700	[diff] [blame]	602	if (!test_bit(HCI_SETUP, &hdev->flags) &&
Subramanian Srinivasan	a727a49	2011-11-30 13:06:07 -0800	[diff] [blame]	603	hdev->dev_type == HCI_BREDR) {
				604	hci_dev_lock_bh(hdev);
Johan Hedberg	5add6af	2010-12-16 10:00:37 +0200	[diff] [blame]	605	mgmt_powered(hdev->id, 1);
Subramanian Srinivasan	a727a49	2011-11-30 13:06:07 -0800	[diff] [blame]	606	hci_dev_unlock_bh(hdev);
Johan Hedberg	56e5cb8	2011-11-08 20:40:16 +0200	[diff] [blame]	607	}
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	608	} else {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	609	/* Init failed, cleanup */
				610	tasklet_kill(&hdev->rx_task);
				611	tasklet_kill(&hdev->tx_task);
				612	tasklet_kill(&hdev->cmd_task);
				613
				614	skb_queue_purge(&hdev->cmd_q);
				615	skb_queue_purge(&hdev->rx_q);
				616
				617	if (hdev->flush)
				618	hdev->flush(hdev);
				619
				620	if (hdev->sent_cmd) {
				621	kfree_skb(hdev->sent_cmd);
				622	hdev->sent_cmd = NULL;
				623	}
				624
				625	hdev->close(hdev);
				626	hdev->flags = 0;
				627	}
				628
				629	done:
				630	hci_req_unlock(hdev);
				631	hci_dev_put(hdev);
				632	return ret;
				633	}
				634
Mat Martineau	3b9239a	2012-02-16 11:54:30 -0800	[diff] [blame]	635	static int hci_dev_do_close(struct hci_dev *hdev, u8 is_process)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	636	{
Mat Martineau	4106b99	2011-11-18 15:26:21 -0800	[diff] [blame]	637	unsigned long keepflags = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	638
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	639	BT_DBG("%s %p", hdev->name, hdev);
Andre Guedes	28b75a8	2012-02-03 17:48:00 -0300	[diff] [blame]	640
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	641	hci_req_cancel(hdev, ENODEV);
				642	hci_req_lock(hdev);
				643
				644	if (!test_and_clear_bit(HCI_UP, &hdev->flags)) {
Vinicius Costa Gomes	b79f44c	2011-04-11 18:46:55 -0300	[diff] [blame]	645	del_timer_sync(&hdev->cmd_timer);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	646	hci_req_unlock(hdev);
				647	return 0;
				648	}
				649
				650	/* Kill RX and TX tasks */
				651	tasklet_kill(&hdev->rx_task);
				652	tasklet_kill(&hdev->tx_task);
				653
				654	hci_dev_lock_bh(hdev);
				655	inquiry_cache_flush(hdev);
Mat Martineau	3b9239a	2012-02-16 11:54:30 -0800	[diff] [blame]	656	hci_conn_hash_flush(hdev, is_process);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	657	hci_dev_unlock_bh(hdev);
				658
				659	hci_notify(hdev, HCI_DEV_DOWN);
				660
Bhasker Neti	ffdff57	2011-12-21 17:24:01 -0800	[diff] [blame]	661	if (hdev->dev_type == HCI_BREDR) {
				662	hci_dev_lock_bh(hdev);
				663	mgmt_powered(hdev->id, 0);
				664	hci_dev_unlock_bh(hdev);
				665	}
				666
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	667	if (hdev->flush)
				668	hdev->flush(hdev);
				669
				670	/* Reset device */
				671	skb_queue_purge(&hdev->cmd_q);
				672	atomic_set(&hdev->cmd_cnt, 1);
				673	if (!test_bit(HCI_RAW, &hdev->flags)) {
				674	set_bit(HCI_INIT, &hdev->flags);
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	675	__hci_request(hdev, hci_reset_req, 0,
Gustavo F. Padovan	cad44c2	2011-12-23 18:59:13 -0200	[diff] [blame]	676	msecs_to_jiffies(250));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	677	clear_bit(HCI_INIT, &hdev->flags);
				678	}
				679
				680	/* Kill cmd task */
				681	tasklet_kill(&hdev->cmd_task);
				682
				683	/* Drop queues */
				684	skb_queue_purge(&hdev->rx_q);
				685	skb_queue_purge(&hdev->cmd_q);
				686	skb_queue_purge(&hdev->raw_q);
				687
				688	/* Drop last sent command */
				689	if (hdev->sent_cmd) {
Vinicius Costa Gomes	b79f44c	2011-04-11 18:46:55 -0300	[diff] [blame]	690	del_timer_sync(&hdev->cmd_timer);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	691	kfree_skb(hdev->sent_cmd);
				692	hdev->sent_cmd = NULL;
				693	}
				694
				695	/* After this point our queues are empty
				696	* and no tasks are scheduled. */
				697	hdev->close(hdev);
				698
Mat Martineau	4106b99	2011-11-18 15:26:21 -0800	[diff] [blame]	699	/* Clear only non-persistent flags */
				700	if (test_bit(HCI_MGMT, &hdev->flags))
				701	set_bit(HCI_MGMT, &keepflags);
				702	if (test_bit(HCI_LINK_KEYS, &hdev->flags))
				703	set_bit(HCI_LINK_KEYS, &keepflags);
				704	if (test_bit(HCI_DEBUG_KEYS, &hdev->flags))
				705	set_bit(HCI_DEBUG_KEYS, &keepflags);
Johan Hedberg	5add6af	2010-12-16 10:00:37 +0200	[diff] [blame]	706
Mat Martineau	4106b99	2011-11-18 15:26:21 -0800	[diff] [blame]	707	hdev->flags = keepflags;
Johan Hedberg	e59fda8	2012-02-22 18:11:53 +0200	[diff] [blame]	708
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	709	hci_req_unlock(hdev);
				710
				711	hci_dev_put(hdev);
				712	return 0;
				713	}
				714
				715	int hci_dev_close(__u16 dev)
				716	{
				717	struct hci_dev *hdev;
				718	int err;
				719
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	720	hdev = hci_dev_get(dev);
				721	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	722	return -ENODEV;
Mat Martineau	3b9239a	2012-02-16 11:54:30 -0800	[diff] [blame]	723	err = hci_dev_do_close(hdev, 1);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	724	hci_dev_put(hdev);
				725	return err;
				726	}
				727
				728	int hci_dev_reset(__u16 dev)
				729	{
				730	struct hci_dev *hdev;
				731	int ret = 0;
				732
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	733	hdev = hci_dev_get(dev);
				734	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	735	return -ENODEV;
				736
				737	hci_req_lock(hdev);
				738	tasklet_disable(&hdev->tx_task);
				739
				740	if (!test_bit(HCI_UP, &hdev->flags))
				741	goto done;
				742
				743	/* Drop queues */
				744	skb_queue_purge(&hdev->rx_q);
				745	skb_queue_purge(&hdev->cmd_q);
				746
				747	hci_dev_lock_bh(hdev);
				748	inquiry_cache_flush(hdev);
Mat Martineau	3b9239a	2012-02-16 11:54:30 -0800	[diff] [blame]	749	hci_conn_hash_flush(hdev, 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	750	hci_dev_unlock_bh(hdev);
				751
				752	if (hdev->flush)
				753	hdev->flush(hdev);
				754
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	755	atomic_set(&hdev->cmd_cnt, 1);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	756	hdev->acl_cnt = 0; hdev->sco_cnt = 0; hdev->le_cnt = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	757
				758	if (!test_bit(HCI_RAW, &hdev->flags))
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	759	ret = __hci_request(hdev, hci_reset_req, 0,
				760	msecs_to_jiffies(HCI_INIT_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	761
				762	done:
				763	tasklet_enable(&hdev->tx_task);
				764	hci_req_unlock(hdev);
				765	hci_dev_put(hdev);
				766	return ret;
				767	}
				768
				769	int hci_dev_reset_stat(__u16 dev)
				770	{
				771	struct hci_dev *hdev;
				772	int ret = 0;
				773
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	774	hdev = hci_dev_get(dev);
				775	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	776	return -ENODEV;
				777
				778	memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));
				779
				780	hci_dev_put(hdev);
				781
				782	return ret;
				783	}
				784
				785	int hci_dev_cmd(unsigned int cmd, void __user *arg)
				786	{
				787	struct hci_dev *hdev;
				788	struct hci_dev_req dr;
				789	int err = 0;
				790
				791	if (copy_from_user(&dr, arg, sizeof(dr)))
				792	return -EFAULT;
				793
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	794	hdev = hci_dev_get(dr.dev_id);
				795	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	796	return -ENODEV;
				797
				798	switch (cmd) {
				799	case HCISETAUTH:
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	800	err = hci_request(hdev, hci_auth_req, dr.dev_opt,
				801	msecs_to_jiffies(HCI_INIT_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	802	break;
				803
				804	case HCISETENCRYPT:
				805	if (!lmp_encrypt_capable(hdev)) {
				806	err = -EOPNOTSUPP;
				807	break;
				808	}
				809
				810	if (!test_bit(HCI_AUTH, &hdev->flags)) {
				811	/* Auth must be enabled first */
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	812	err = hci_request(hdev, hci_auth_req, dr.dev_opt,
				813	msecs_to_jiffies(HCI_INIT_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	814	if (err)
				815	break;
				816	}
				817
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	818	err = hci_request(hdev, hci_encrypt_req, dr.dev_opt,
				819	msecs_to_jiffies(HCI_INIT_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	820	break;
				821
				822	case HCISETSCAN:
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	823	err = hci_request(hdev, hci_scan_req, dr.dev_opt,
				824	msecs_to_jiffies(HCI_INIT_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	825	break;
				826
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	827	case HCISETLINKPOL:
				828	err = hci_request(hdev, hci_linkpol_req, dr.dev_opt,
				829	msecs_to_jiffies(HCI_INIT_TIMEOUT));
				830	break;
				831
				832	case HCISETLINKMODE:
				833	hdev->link_mode = ((__u16) dr.dev_opt) &
				834	(HCI_LM_MASTER \| HCI_LM_ACCEPT);
				835	break;
				836
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	837	case HCISETPTYPE:
				838	hdev->pkt_type = (__u16) dr.dev_opt;
				839	break;
				840
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	841	case HCISETACLMTU:
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	842	hdev->acl_mtu = ((__u16 ) &dr.dev_opt + 1);
				843	hdev->acl_pkts = ((__u16 ) &dr.dev_opt + 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	844	break;
				845
				846	case HCISETSCOMTU:
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	847	hdev->sco_mtu = ((__u16 ) &dr.dev_opt + 1);
				848	hdev->sco_pkts = ((__u16 ) &dr.dev_opt + 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	849	break;
				850
				851	default:
				852	err = -EINVAL;
				853	break;
				854	}
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	855
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	856	hci_dev_put(hdev);
				857	return err;
				858	}
				859
				860	int hci_get_dev_list(void __user *arg)
				861	{
				862	struct hci_dev_list_req *dl;
				863	struct hci_dev_req *dr;
				864	struct list_head *p;
				865	int n = 0, size, err;
				866	__u16 dev_num;
				867
				868	if (get_user(dev_num, (__u16 __user *) arg))
				869	return -EFAULT;
				870
				871	if (!dev_num \|\| dev_num > (PAGE_SIZE * 2) / sizeof(*dr))
				872	return -EINVAL;
				873
				874	size = sizeof(dl) + dev_num sizeof(*dr);
				875
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	876	dl = kzalloc(size, GFP_KERNEL);
				877	if (!dl)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	878	return -ENOMEM;
				879
				880	dr = dl->dev_req;
				881
				882	read_lock_bh(&hci_dev_list_lock);
				883	list_for_each(p, &hci_dev_list) {
				884	struct hci_dev *hdev;
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	885
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	886	hdev = list_entry(p, struct hci_dev, list);
				887
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	888	hci_del_off_timer(hdev);
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	889
				890	if (!test_bit(HCI_MGMT, &hdev->flags))
				891	set_bit(HCI_PAIRABLE, &hdev->flags);
				892
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	893	(dr + n)->dev_id = hdev->id;
				894	(dr + n)->dev_opt = hdev->flags;
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	895
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	896	if (++n >= dev_num)
				897	break;
				898	}
				899	read_unlock_bh(&hci_dev_list_lock);
				900
				901	dl->dev_num = n;
				902	size = sizeof(dl) + n sizeof(*dr);
				903
				904	err = copy_to_user(arg, dl, size);
				905	kfree(dl);
				906
				907	return err ? -EFAULT : 0;
				908	}
				909
				910	int hci_get_dev_info(void __user *arg)
				911	{
				912	struct hci_dev *hdev;
				913	struct hci_dev_info di;
				914	int err = 0;
				915
				916	if (copy_from_user(&di, arg, sizeof(di)))
				917	return -EFAULT;
				918
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	919	hdev = hci_dev_get(di.dev_id);
				920	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	921	return -ENODEV;
				922
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	923	hci_del_off_timer(hdev);
				924
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	925	if (!test_bit(HCI_MGMT, &hdev->flags))
				926	set_bit(HCI_PAIRABLE, &hdev->flags);
				927
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	928	strcpy(di.name, hdev->name);
				929	di.bdaddr = hdev->bdaddr;
Marcel Holtmann	943da25	2010-02-13 02:28:41 +0100	[diff] [blame]	930	di.type = (hdev->bus & 0x0f) \| (hdev->dev_type << 4);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	931	di.flags = hdev->flags;
				932	di.pkt_type = hdev->pkt_type;
				933	di.acl_mtu = hdev->acl_mtu;
				934	di.acl_pkts = hdev->acl_pkts;
				935	di.sco_mtu = hdev->sco_mtu;
				936	di.sco_pkts = hdev->sco_pkts;
				937	di.link_policy = hdev->link_policy;
				938	di.link_mode = hdev->link_mode;
				939
				940	memcpy(&di.stat, &hdev->stat, sizeof(di.stat));
				941	memcpy(&di.features, &hdev->features, sizeof(di.features));
				942
				943	if (copy_to_user(arg, &di, sizeof(di)))
				944	err = -EFAULT;
				945
				946	hci_dev_put(hdev);
				947
				948	return err;
				949	}
				950
				951	/* ---- Interface to HCI drivers ---- */
				952
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	953	static int hci_rfkill_set_block(void *data, bool blocked)
				954	{
				955	struct hci_dev *hdev = data;
				956
				957	BT_DBG("%p name %s blocked %d", hdev, hdev->name, blocked);
				958
				959	if (!blocked)
				960	return 0;
				961
Mat Martineau	3b9239a	2012-02-16 11:54:30 -0800	[diff] [blame]	962	hci_dev_do_close(hdev, 0);
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	963
				964	return 0;
				965	}
				966
				967	static const struct rfkill_ops hci_rfkill_ops = {
				968	.set_block = hci_rfkill_set_block,
				969	};
				970
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	971	/* Alloc HCI device */
				972	struct hci_dev *hci_alloc_dev(void)
				973	{
				974	struct hci_dev *hdev;
				975
Marcel Holtmann	25ea6db	2006-07-06 15:40:09 +0200	[diff] [blame]	976	hdev = kzalloc(sizeof(struct hci_dev), GFP_KERNEL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	977	if (!hdev)
				978	return NULL;
				979
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	980	skb_queue_head_init(&hdev->driver_init);
				981
				982	return hdev;
				983	}
				984	EXPORT_SYMBOL(hci_alloc_dev);
				985
				986	/* Free HCI device */
				987	void hci_free_dev(struct hci_dev *hdev)
				988	{
				989	skb_queue_purge(&hdev->driver_init);
				990
Marcel Holtmann	a91f2e3	2006-07-03 10:02:41 +0200	[diff] [blame]	991	/* will free via device release */
				992	put_device(&hdev->dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	993	}
				994	EXPORT_SYMBOL(hci_free_dev);
				995
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	996	static void hci_power_on(struct work_struct *work)
				997	{
				998	struct hci_dev *hdev = container_of(work, struct hci_dev, power_on);
Inga Stotland	5029fc2	2011-09-12 15:22:52 -0700	[diff] [blame]	999	int err;
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1000
				1001	BT_DBG("%s", hdev->name);
				1002
Inga Stotland	5029fc2	2011-09-12 15:22:52 -0700	[diff] [blame]	1003	err = hci_dev_open(hdev->id);
				1004	if (err && err != -EALREADY)
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1005	return;
				1006
Peter Krystad	1fc4407	2011-08-30 15:38:12 -0700	[diff] [blame]	1007	if (test_bit(HCI_AUTO_OFF, &hdev->flags) &&
				1008	hdev->dev_type == HCI_BREDR)
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1009	mod_timer(&hdev->off_timer,
				1010	jiffies + msecs_to_jiffies(AUTO_OFF_TIMEOUT));
				1011
Peter Krystad	1fc4407	2011-08-30 15:38:12 -0700	[diff] [blame]	1012	if (test_and_clear_bit(HCI_SETUP, &hdev->flags) &&
				1013	hdev->dev_type == HCI_BREDR)
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1014	mgmt_index_added(hdev->id);
				1015	}
				1016
				1017	static void hci_power_off(struct work_struct *work)
				1018	{
				1019	struct hci_dev *hdev = container_of(work, struct hci_dev, power_off);
				1020
				1021	BT_DBG("%s", hdev->name);
				1022
				1023	hci_dev_close(hdev->id);
				1024	}
				1025
				1026	static void hci_auto_off(unsigned long data)
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1027	{
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1028	struct hci_dev hdev = (struct hci_dev ) data;
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1029
				1030	BT_DBG("%s", hdev->name);
				1031
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1032	clear_bit(HCI_AUTO_OFF, &hdev->flags);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1033
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1034	queue_work(hdev->workqueue, &hdev->power_off);
				1035	}
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1036
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1037	void hci_del_off_timer(struct hci_dev *hdev)
				1038	{
				1039	BT_DBG("%s", hdev->name);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1040
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1041	clear_bit(HCI_AUTO_OFF, &hdev->flags);
				1042	del_timer(&hdev->off_timer);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1043	}
				1044
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	1045	int hci_uuids_clear(struct hci_dev *hdev)
				1046	{
				1047	struct list_head p, n;
				1048
				1049	list_for_each_safe(p, n, &hdev->uuids) {
				1050	struct bt_uuid *uuid;
				1051
				1052	uuid = list_entry(p, struct bt_uuid, list);
				1053
				1054	list_del(p);
				1055	kfree(uuid);
				1056	}
				1057
				1058	return 0;
				1059	}
				1060
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1061	int hci_link_keys_clear(struct hci_dev *hdev)
				1062	{
				1063	struct list_head p, n;
				1064
				1065	list_for_each_safe(p, n, &hdev->link_keys) {
				1066	struct link_key *key;
				1067
				1068	key = list_entry(p, struct link_key, list);
				1069
				1070	list_del(p);
				1071	kfree(key);
				1072	}
				1073
				1074	return 0;
				1075	}
				1076
				1077	struct link_key hci_find_link_key(struct hci_dev hdev, bdaddr_t *bdaddr)
				1078	{
				1079	struct list_head *p;
				1080
				1081	list_for_each(p, &hdev->link_keys) {
				1082	struct link_key *k;
				1083
				1084	k = list_entry(p, struct link_key, list);
				1085
				1086	if (bacmp(bdaddr, &k->bdaddr) == 0)
				1087	return k;
				1088	}
				1089
				1090	return NULL;
				1091	}
				1092
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1093	struct link_key hci_find_ltk(struct hci_dev hdev, __le16 ediv, u8 rand[8])
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	1094	{
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1095	struct list_head *p;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	1096
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1097	list_for_each(p, &hdev->link_keys) {
				1098	struct link_key *k;
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1099	struct key_master_id *id;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	1100
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1101	k = list_entry(p, struct link_key, list);
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	1102
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1103	if (k->key_type != KEY_TYPE_LTK)
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1104	continue;
				1105
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1106	if (k->dlen != sizeof(*id))
				1107	continue;
				1108
				1109	id = (void *) &k->data;
				1110	if (id->ediv == ediv &&
				1111	(memcmp(rand, id->rand, sizeof(id->rand)) == 0))
				1112	return k;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1113	}
				1114
				1115	return NULL;
				1116	}
				1117	EXPORT_SYMBOL(hci_find_ltk);
				1118
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1119	struct link_key hci_find_link_key_type(struct hci_dev hdev,
				1120	bdaddr_t *bdaddr, u8 type)
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1121	{
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1122	struct list_head *p;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1123
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1124	list_for_each(p, &hdev->link_keys) {
				1125	struct link_key *k;
				1126
				1127	k = list_entry(p, struct link_key, list);
				1128
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1129	if ((k->key_type == type) && (bacmp(bdaddr, &k->bdaddr) == 0))
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1130	return k;
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1131	}
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1132
				1133	return NULL;
				1134	}
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1135	EXPORT_SYMBOL(hci_find_link_key_type);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1136
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1137	int hci_add_link_key(struct hci_dev hdev, int new_key, bdaddr_t bdaddr,
				1138	u8 *val, u8 type, u8 pin_len)
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1139	{
				1140	struct link_key key, old_key;
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1141	struct hci_conn *conn;
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	1142	u8 old_key_type;
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1143	u8 bonded = 0;
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1144
				1145	old_key = hci_find_link_key(hdev, bdaddr);
				1146	if (old_key) {
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1147	old_key_type = old_key->key_type;
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1148	key = old_key;
				1149	} else {
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1150	old_key_type = 0xff;
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1151	key = kzalloc(sizeof(*key), GFP_ATOMIC);
				1152	if (!key)
				1153	return -ENOMEM;
				1154	list_add(&key->list, &hdev->link_keys);
				1155	}
				1156
				1157	BT_DBG("%s key for %s type %u", hdev->name, batostr(bdaddr), type);
				1158
				1159	bacpy(&key->bdaddr, bdaddr);
				1160	memcpy(key->val, val, 16);
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1161	key->auth = 0x01;
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1162	key->key_type = type;
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1163	key->pin_len = pin_len;
				1164
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1165	conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, bdaddr);
Srinivas Krovvidi	9ff5145	2011-09-27 19:25:02 +0530	[diff] [blame]	1166	/* Store the link key persistently if one of the following is true:
				1167	* 1. the remote side is using dedicated bonding since in that case
				1168	* also the local requirements are set to dedicated bonding
				1169	* 2. the local side had dedicated bonding as a requirement
				1170	* 3. this is a legacy link key
				1171	* 4. this is a changed combination key and there was a previously
				1172	* stored one
				1173	* If none of the above match only keep the link key around for
				1174	* this connection and set the temporary flag for the device.
				1175	*/
Johan Hedberg	4748fed	2011-04-28 11:29:02 -0700	[diff] [blame]	1176
Brian Gix	dfdd936	2011-08-18 09:58:02 -0700	[diff] [blame]	1177	if (conn) {
Srinivas Krovvidi	9ff5145	2011-09-27 19:25:02 +0530	[diff] [blame]	1178	if ((conn->remote_auth > 0x01) \|\|
				1179	(conn->auth_initiator && conn->auth_type > 0x01) \|\|
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1180	(key->key_type < 0x03) \|\|
				1181	(key->key_type == 0x06 && old_key_type != 0xff))
Brian Gix	dfdd936	2011-08-18 09:58:02 -0700	[diff] [blame]	1182	bonded = 1;
				1183	}
Johan Hedberg	4df378a	2011-04-28 11:29:03 -0700	[diff] [blame]	1184
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1185	if (new_key)
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1186	mgmt_new_key(hdev->id, key, bonded);
Johan Hedberg	4df378a	2011-04-28 11:29:03 -0700	[diff] [blame]	1187
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1188	if (type == 0x06)
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1189	key->key_type = old_key_type;
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1190
				1191	return 0;
				1192	}
				1193
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1194	int hci_add_ltk(struct hci_dev hdev, int new_key, bdaddr_t bdaddr,
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1195	u8 addr_type, u8 key_size, u8 auth,
				1196	__le16 ediv, u8 rand[8], u8 ltk[16])
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1197	{
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1198	struct link_key key, old_key;
				1199	struct key_master_id *id;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1200
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1201	BT_DBG("%s Auth: %2.2X addr %s type: %d", hdev->name, auth,
				1202	batostr(bdaddr), addr_type);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1203
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1204	old_key = hci_find_link_key_type(hdev, bdaddr, KEY_TYPE_LTK);
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1205	if (old_key) {
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1206	key = old_key;
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1207	} else {
				1208	key = kzalloc(sizeof(key) + sizeof(id), GFP_ATOMIC);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1209	if (!key)
				1210	return -ENOMEM;
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1211	list_add(&key->list, &hdev->link_keys);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1212	}
				1213
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1214	key->dlen = sizeof(*id);
				1215
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1216	bacpy(&key->bdaddr, bdaddr);
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1217	key->addr_type = addr_type;
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1218	memcpy(key->val, ltk, sizeof(key->val));
Brian Gix	cf95677	2011-10-20 15:18:51 -0700	[diff] [blame]	1219	key->key_type = KEY_TYPE_LTK;
Vinicius Costa Gomes	1fa2de3	2011-07-08 18:31:45 -0300	[diff] [blame]	1220	key->pin_len = key_size;
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1221	key->auth = auth;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1222
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1223	id = (void *) &key->data;
				1224	id->ediv = ediv;
				1225	memcpy(id->rand, rand, sizeof(id->rand));
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1226
Vinicius Costa Gomes	7f9004d	2011-07-07 18:59:36 -0300	[diff] [blame]	1227	if (new_key)
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1228	mgmt_new_key(hdev->id, key, auth & 0x01);
Vinicius Costa Gomes	261cc5a	2012-02-02 21:08:05 -0300	[diff] [blame]	1229
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	1230	return 0;
				1231	}
				1232
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1233	int hci_remove_link_key(struct hci_dev hdev, bdaddr_t bdaddr)
				1234	{
				1235	struct link_key *key;
				1236
				1237	key = hci_find_link_key(hdev, bdaddr);
				1238	if (!key)
				1239	return -ENOENT;
				1240
				1241	BT_DBG("%s removing %s", hdev->name, batostr(bdaddr));
				1242
				1243	list_del(&key->list);
				1244	kfree(key);
				1245
				1246	return 0;
				1247	}
				1248
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	1249	/* HCI command timer function */
				1250	static void hci_cmd_timer(unsigned long arg)
				1251	{
				1252	struct hci_dev hdev = (void ) arg;
				1253
				1254	BT_ERR("%s command tx timeout", hdev->name);
				1255	atomic_set(&hdev->cmd_cnt, 1);
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1256	clear_bit(HCI_RESET, &hdev->flags);
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	1257	tasklet_schedule(&hdev->cmd_task);
				1258	}
				1259
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	1260	struct oob_data hci_find_remote_oob_data(struct hci_dev hdev,
				1261	bdaddr_t *bdaddr)
				1262	{
				1263	struct oob_data *data;
				1264
				1265	list_for_each_entry(data, &hdev->remote_oob_data, list)
				1266	if (bacmp(bdaddr, &data->bdaddr) == 0)
				1267	return data;
				1268
				1269	return NULL;
				1270	}
				1271
				1272	int hci_remove_remote_oob_data(struct hci_dev hdev, bdaddr_t bdaddr)
				1273	{
				1274	struct oob_data *data;
				1275
				1276	data = hci_find_remote_oob_data(hdev, bdaddr);
				1277	if (!data)
				1278	return -ENOENT;
				1279
				1280	BT_DBG("%s removing %s", hdev->name, batostr(bdaddr));
				1281
				1282	list_del(&data->list);
				1283	kfree(data);
				1284
				1285	return 0;
				1286	}
				1287
				1288	int hci_remote_oob_data_clear(struct hci_dev *hdev)
				1289	{
				1290	struct oob_data data, n;
				1291
				1292	list_for_each_entry_safe(data, n, &hdev->remote_oob_data, list) {
				1293	list_del(&data->list);
				1294	kfree(data);
				1295	}
				1296
				1297	return 0;
				1298	}
				1299
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1300	static void hci_adv_clear(unsigned long arg)
				1301	{
				1302	struct hci_dev hdev = (void ) arg;
				1303
				1304	hci_adv_entries_clear(hdev);
				1305	}
				1306
				1307	int hci_adv_entries_clear(struct hci_dev *hdev)
				1308	{
				1309	struct list_head p, n;
				1310
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1311	BT_DBG("");
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1312	write_lock_bh(&hdev->adv_entries_lock);
				1313
				1314	list_for_each_safe(p, n, &hdev->adv_entries) {
				1315	struct adv_entry *entry;
				1316
				1317	entry = list_entry(p, struct adv_entry, list);
				1318
				1319	list_del(p);
				1320	kfree(entry);
				1321	}
				1322
				1323	write_unlock_bh(&hdev->adv_entries_lock);
				1324
				1325	return 0;
				1326	}
				1327
				1328	struct adv_entry hci_find_adv_entry(struct hci_dev hdev, bdaddr_t *bdaddr)
				1329	{
				1330	struct list_head *p;
				1331	struct adv_entry *res = NULL;
				1332
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1333	BT_DBG("");
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1334	read_lock_bh(&hdev->adv_entries_lock);
				1335
				1336	list_for_each(p, &hdev->adv_entries) {
				1337	struct adv_entry *entry;
				1338
				1339	entry = list_entry(p, struct adv_entry, list);
				1340
				1341	if (bacmp(bdaddr, &entry->bdaddr) == 0) {
				1342	res = entry;
				1343	goto out;
				1344	}
				1345	}
				1346	out:
				1347	read_unlock_bh(&hdev->adv_entries_lock);
				1348	return res;
				1349	}
				1350
				1351	static inline int is_connectable_adv(u8 evt_type)
				1352	{
				1353	if (evt_type == ADV_IND \|\| evt_type == ADV_DIRECT_IND)
				1354	return 1;
				1355
				1356	return 0;
				1357	}
				1358
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	1359	int hci_add_remote_oob_data(struct hci_dev hdev, bdaddr_t bdaddr, u8 *hash,
				1360	u8 *randomizer)
				1361	{
				1362	struct oob_data *data;
				1363
				1364	data = hci_find_remote_oob_data(hdev, bdaddr);
				1365
				1366	if (!data) {
				1367	data = kmalloc(sizeof(*data), GFP_ATOMIC);
				1368	if (!data)
				1369	return -ENOMEM;
				1370
				1371	bacpy(&data->bdaddr, bdaddr);
				1372	list_add(&data->list, &hdev->remote_oob_data);
				1373	}
				1374
				1375	memcpy(data->hash, hash, sizeof(data->hash));
				1376	memcpy(data->randomizer, randomizer, sizeof(data->randomizer));
				1377
				1378	BT_DBG("%s for %s", hdev->name, batostr(bdaddr));
				1379
				1380	return 0;
				1381	}
				1382
Andre Guedes	6c77c8c	2011-05-26 16:23:50 -0300	[diff] [blame]	1383	int hci_add_adv_entry(struct hci_dev *hdev,
				1384	struct hci_ev_le_advertising_info *ev)
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1385	{
				1386	struct adv_entry *entry;
Brian Gix	fdd3892	2011-09-28 16:23:48 -0700	[diff] [blame]	1387	u8 flags = 0;
				1388	int i;
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1389
Brian Gix	a68668b	2011-08-11 15:49:36 -0700	[diff] [blame]	1390	BT_DBG("");
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1391
Andre Guedes	6c77c8c	2011-05-26 16:23:50 -0300	[diff] [blame]	1392	if (!is_connectable_adv(ev->evt_type))
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1393	return -EINVAL;
				1394
Brian Gix	fdd3892	2011-09-28 16:23:48 -0700	[diff] [blame]	1395	if (ev->data && ev->length) {
				1396	for (i = 0; (i + 2) < ev->length; i++)
				1397	if (ev->data[i+1] == 0x01) {
				1398	flags = ev->data[i+2];
				1399	BT_DBG("flags: %2.2x", flags);
				1400	break;
				1401	} else {
				1402	i += ev->data[i];
				1403	}
				1404	}
				1405
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1406	entry = hci_find_adv_entry(hdev, &ev->bdaddr);
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1407	/* Only new entries should be added to adv_entries. So, if
				1408	* bdaddr was found, don't add it. */
Brian Gix	fdd3892	2011-09-28 16:23:48 -0700	[diff] [blame]	1409	if (entry) {
				1410	entry->flags = flags;
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1411	return 0;
Brian Gix	fdd3892	2011-09-28 16:23:48 -0700	[diff] [blame]	1412	}
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1413
Andre Guedes	6c77c8c	2011-05-26 16:23:50 -0300	[diff] [blame]	1414	entry = kzalloc(sizeof(*entry), GFP_ATOMIC);
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1415	if (!entry)
				1416	return -ENOMEM;
				1417
				1418	bacpy(&entry->bdaddr, &ev->bdaddr);
				1419	entry->bdaddr_type = ev->bdaddr_type;
Brian Gix	fdd3892	2011-09-28 16:23:48 -0700	[diff] [blame]	1420	entry->flags = flags;
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1421
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1422	write_lock(&hdev->adv_entries_lock);
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1423	list_add(&entry->list, &hdev->adv_entries);
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1424	write_unlock(&hdev->adv_entries_lock);
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1425
				1426	return 0;
				1427	}
				1428
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1429	static struct crypto_blkcipher *alloc_cypher(void)
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	1430	{
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1431	if (enable_smp)
				1432	return crypto_alloc_blkcipher("ecb(aes)", 0, CRYPTO_ALG_ASYNC);
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	1433
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1434	return ERR_PTR(-ENOTSUPP);
Andre Guedes	28b75a8	2012-02-03 17:48:00 -0300	[diff] [blame]	1435	}
				1436
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1437	/* Register HCI device */
				1438	int hci_register_dev(struct hci_dev *hdev)
				1439	{
				1440	struct list_head head = &hci_dev_list, p;
Peter Krystad	462bf76	2011-09-19 14:20:20 -0700	[diff] [blame]	1441	int i, id;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1442
Marcel Holtmann	c13854ce	2010-02-08 15:27:07 +0100	[diff] [blame]	1443	BT_DBG("%p name %s bus %d owner %p", hdev, hdev->name,
				1444	hdev->bus, hdev->owner);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1445
				1446	if (!hdev->open \|\| !hdev->close \|\| !hdev->destruct)
				1447	return -EINVAL;
				1448
Mat Martineau	08add51	2011-11-02 16:18:36 -0700	[diff] [blame]	1449	id = (hdev->dev_type == HCI_BREDR) ? 0 : 1;
				1450
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1451	write_lock_bh(&hci_dev_list_lock);
				1452
				1453	/* Find first available device id */
				1454	list_for_each(p, &hci_dev_list) {
				1455	if (list_entry(p, struct hci_dev, list)->id != id)
				1456	break;
				1457	head = p; id++;
				1458	}
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1459
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1460	sprintf(hdev->name, "hci%d", id);
				1461	hdev->id = id;
				1462	list_add(&hdev->list, head);
				1463
				1464	atomic_set(&hdev->refcnt, 1);
				1465	spin_lock_init(&hdev->lock);
				1466
				1467	hdev->flags = 0;
				1468	hdev->pkt_type = (HCI_DM1 \| HCI_DH1 \| HCI_HV1);
Marcel Holtmann	5b7f990	2007-07-11 09:51:55 +0200	[diff] [blame]	1469	hdev->esco_type = (ESCO_HV1);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1470	hdev->link_mode = (HCI_LM_ACCEPT);
Johan Hedberg	17fa4b9	2011-01-25 13:28:33 +0200	[diff] [blame]	1471	hdev->io_capability = 0x03; /* No Input No Output */
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1472
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	1473	hdev->idle_timeout = 0;
				1474	hdev->sniff_max_interval = 800;
				1475	hdev->sniff_min_interval = 80;
				1476
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1477	tasklet_init(&hdev->cmd_task, hci_cmd_task, (unsigned long) hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1478	tasklet_init(&hdev->rx_task, hci_rx_task, (unsigned long) hdev);
				1479	tasklet_init(&hdev->tx_task, hci_tx_task, (unsigned long) hdev);
				1480
				1481	skb_queue_head_init(&hdev->rx_q);
				1482	skb_queue_head_init(&hdev->cmd_q);
				1483	skb_queue_head_init(&hdev->raw_q);
				1484
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	1485	setup_timer(&hdev->cmd_timer, hci_cmd_timer, (unsigned long) hdev);
Brian Gix	568dde9	2012-01-11 16:18:04 -0800	[diff] [blame]	1486	setup_timer(&hdev->disco_timer, mgmt_disco_timeout,
				1487	(unsigned long) hdev);
				1488	setup_timer(&hdev->disco_le_timer, mgmt_disco_le_timeout,
				1489	(unsigned long) hdev);
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	1490
Suraj Sumangala	cd4c539	2010-07-14 13:02:16 +0530	[diff] [blame]	1491	for (i = 0; i < NUM_REASSEMBLY; i++)
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1492	hdev->reassembly[i] = NULL;
				1493
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1494	init_waitqueue_head(&hdev->req_wait_q);
Thomas Gleixner	a6a67ef	2009-07-26 08:18:19 +0000	[diff] [blame]	1495	mutex_init(&hdev->req_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1496
				1497	inquiry_cache_init(hdev);
				1498
				1499	hci_conn_hash_init(hdev);
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1500	hci_chan_list_init(hdev);
Johan Hedberg	2e58ef3	2011-11-08 20:40:15 +0200	[diff] [blame]	1501
David Miller	ea4bd8b	2010-07-30 21:54:49 -0700	[diff] [blame]	1502	INIT_LIST_HEAD(&hdev->blacklist);
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	1503
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	1504	INIT_LIST_HEAD(&hdev->uuids);
				1505
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1506	INIT_LIST_HEAD(&hdev->link_keys);
				1507
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	1508	INIT_LIST_HEAD(&hdev->remote_oob_data);
				1509
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1510	INIT_LIST_HEAD(&hdev->adv_entries);
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1511	rwlock_init(&hdev->adv_entries_lock);
				1512	setup_timer(&hdev->adv_timer, hci_adv_clear, (unsigned long) hdev);
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1513
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1514	INIT_WORK(&hdev->power_on, hci_power_on);
				1515	INIT_WORK(&hdev->power_off, hci_power_off);
				1516	setup_timer(&hdev->off_timer, hci_auto_off, (unsigned long) hdev);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1517
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1518	memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));
				1519
				1520	atomic_set(&hdev->promisc, 0);
				1521
				1522	write_unlock_bh(&hci_dev_list_lock);
Andre Guedes	28b75a8	2012-02-03 17:48:00 -0300	[diff] [blame]	1523
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	1524	hdev->workqueue = create_singlethread_workqueue(hdev->name);
				1525	if (!hdev->workqueue)
				1526	goto nomem;
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	1527
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1528	hdev->tfm = alloc_cypher();
Vinicius Costa Gomes	09fabbc	2011-06-09 18:50:43 -0300	[diff] [blame]	1529	if (IS_ERR(hdev->tfm))
				1530	BT_INFO("Failed to load transform for ecb(aes): %ld",
				1531	PTR_ERR(hdev->tfm));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1532
				1533	hci_register_sysfs(hdev);
				1534
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	1535	hdev->rfkill = rfkill_alloc(hdev->name, &hdev->dev,
				1536	RFKILL_TYPE_BLUETOOTH, &hci_rfkill_ops, hdev);
				1537	if (hdev->rfkill) {
				1538	if (rfkill_register(hdev->rfkill) < 0) {
				1539	rfkill_destroy(hdev->rfkill);
				1540	hdev->rfkill = NULL;
				1541	}
				1542	}
				1543
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1544	set_bit(HCI_AUTO_OFF, &hdev->flags);
				1545	set_bit(HCI_SETUP, &hdev->flags);
				1546	queue_work(hdev->workqueue, &hdev->power_on);
				1547
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1548	hci_notify(hdev, HCI_DEV_REG);
				1549
				1550	return id;
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	1551
				1552	nomem:
				1553	write_lock_bh(&hci_dev_list_lock);
				1554	list_del(&hdev->list);
				1555	write_unlock_bh(&hci_dev_list_lock);
				1556
				1557	return -ENOMEM;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1558	}
				1559	EXPORT_SYMBOL(hci_register_dev);
				1560
				1561	/* Unregister HCI device */
				1562	int hci_unregister_dev(struct hci_dev *hdev)
				1563	{
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1564	int i;
				1565
Marcel Holtmann	c13854ce	2010-02-08 15:27:07 +0100	[diff] [blame]	1566	BT_DBG("%p name %s bus %d", hdev, hdev->name, hdev->bus);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1567
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1568	write_lock_bh(&hci_dev_list_lock);
				1569	list_del(&hdev->list);
				1570	write_unlock_bh(&hci_dev_list_lock);
				1571
Ankit Verma	d3e99df	2012-04-25 15:42:04 -0700	[diff] [blame]	1572	hci_dev_do_close(hdev, hdev->bus == HCI_SMD);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1573
Suraj Sumangala	cd4c539	2010-07-14 13:02:16 +0530	[diff] [blame]	1574	for (i = 0; i < NUM_REASSEMBLY; i++)
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1575	kfree_skb(hdev->reassembly[i]);
				1576
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1577	if (!test_bit(HCI_INIT, &hdev->flags) &&
Peter Krystad	1fc4407	2011-08-30 15:38:12 -0700	[diff] [blame]	1578	!test_bit(HCI_SETUP, &hdev->flags) &&
Subramanian Srinivasan	a727a49	2011-11-30 13:06:07 -0800	[diff] [blame]	1579	hdev->dev_type == HCI_BREDR) {
				1580	hci_dev_lock_bh(hdev);
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1581	mgmt_index_removed(hdev->id);
Subramanian Srinivasan	a727a49	2011-11-30 13:06:07 -0800	[diff] [blame]	1582	hci_dev_unlock_bh(hdev);
Johan Hedberg	56e5cb8	2011-11-08 20:40:16 +0200	[diff] [blame]	1583	}
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	1584
Vinicius Costa Gomes	09fabbc	2011-06-09 18:50:43 -0300	[diff] [blame]	1585	if (!IS_ERR(hdev->tfm))
				1586	crypto_free_blkcipher(hdev->tfm);
Johan Hedberg	2e58ef3	2011-11-08 20:40:15 +0200	[diff] [blame]	1587
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1588	hci_notify(hdev, HCI_DEV_UNREG);
				1589
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	1590	if (hdev->rfkill) {
				1591	rfkill_unregister(hdev->rfkill);
				1592	rfkill_destroy(hdev->rfkill);
				1593	}
				1594
Dave Young	147e2d5	2008-03-05 18:45:59 -0800	[diff] [blame]	1595	hci_unregister_sysfs(hdev);
				1596
Brian Gix	3cd6204	2012-01-11 15:18:17 -0800	[diff] [blame]	1597	/* Disable all timers */
Gustavo F. Padovan	c6f3c5f	2011-02-15 20:22:03 -0300	[diff] [blame]	1598	hci_del_off_timer(hdev);
Andre Guedes	45e600f	2011-05-26 16:23:53 -0300	[diff] [blame]	1599	del_timer(&hdev->adv_timer);
Brian Gix	3cd6204	2012-01-11 15:18:17 -0800	[diff] [blame]	1600	del_timer(&hdev->cmd_timer);
Brian Gix	568dde9	2012-01-11 16:18:04 -0800	[diff] [blame]	1601	del_timer(&hdev->disco_timer);
				1602	del_timer(&hdev->disco_le_timer);
Gustavo F. Padovan	c6f3c5f	2011-02-15 20:22:03 -0300	[diff] [blame]	1603
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	1604	destroy_workqueue(hdev->workqueue);
				1605
Johan Hedberg	e2e0cac	2011-01-04 12:08:50 +0200	[diff] [blame]	1606	hci_dev_lock_bh(hdev);
				1607	hci_blacklist_clear(hdev);
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	1608	hci_uuids_clear(hdev);
Johan Hedberg	55ed8ca	2011-01-17 14:41:05 +0200	[diff] [blame]	1609	hci_link_keys_clear(hdev);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	1610	hci_remote_oob_data_clear(hdev);
Andre Guedes	76c8686	2011-05-26 16:23:50 -0300	[diff] [blame]	1611	hci_adv_entries_clear(hdev);
Johan Hedberg	e2e0cac	2011-01-04 12:08:50 +0200	[diff] [blame]	1612	hci_dev_unlock_bh(hdev);
				1613
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1614	__hci_dev_put(hdev);
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1615
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1616	return 0;
				1617	}
				1618	EXPORT_SYMBOL(hci_unregister_dev);
				1619
				1620	/* Suspend HCI device */
				1621	int hci_suspend_dev(struct hci_dev *hdev)
				1622	{
				1623	hci_notify(hdev, HCI_DEV_SUSPEND);
				1624	return 0;
				1625	}
				1626	EXPORT_SYMBOL(hci_suspend_dev);
				1627
				1628	/* Resume HCI device */
				1629	int hci_resume_dev(struct hci_dev *hdev)
				1630	{
				1631	hci_notify(hdev, HCI_DEV_RESUME);
				1632	return 0;
				1633	}
				1634	EXPORT_SYMBOL(hci_resume_dev);
				1635
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	1636	/* Receive frame from HCI drivers */
				1637	int hci_recv_frame(struct sk_buff *skb)
				1638	{
				1639	struct hci_dev hdev = (struct hci_dev ) skb->dev;
				1640	if (!hdev \|\| (!test_bit(HCI_UP, &hdev->flags)
				1641	&& !test_bit(HCI_INIT, &hdev->flags))) {
				1642	kfree_skb(skb);
				1643	return -ENXIO;
				1644	}
				1645
				1646	/* Incomming skb */
				1647	bt_cb(skb)->incoming = 1;
				1648
				1649	/* Time stamp */
				1650	__net_timestamp(skb);
				1651
				1652	/* Queue frame for rx task */
				1653	skb_queue_tail(&hdev->rx_q, skb);
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	1654	tasklet_schedule(&hdev->rx_task);
				1655
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	1656	return 0;
				1657	}
				1658	EXPORT_SYMBOL(hci_recv_frame);
				1659
Suraj Sumangala	33e882a	2010-07-14 13:02:17 +0530	[diff] [blame]	1660	static int hci_reassembly(struct hci_dev hdev, int type, void data,
Gustavo F. Padovan	1e429f3	2011-04-04 18:25:14 -0300	[diff] [blame]	1661	int count, __u8 index)
Suraj Sumangala	33e882a	2010-07-14 13:02:17 +0530	[diff] [blame]	1662	{
				1663	int len = 0;
				1664	int hlen = 0;
				1665	int remain = count;
				1666	struct sk_buff *skb;
				1667	struct bt_skb_cb *scb;
				1668
				1669	if ((type < HCI_ACLDATA_PKT \|\| type > HCI_EVENT_PKT) \|\|
				1670	index >= NUM_REASSEMBLY)
				1671	return -EILSEQ;
				1672
				1673	skb = hdev->reassembly[index];
				1674
				1675	if (!skb) {
				1676	switch (type) {
				1677	case HCI_ACLDATA_PKT:
				1678	len = HCI_MAX_FRAME_SIZE;
				1679	hlen = HCI_ACL_HDR_SIZE;
				1680	break;
				1681	case HCI_EVENT_PKT:
				1682	len = HCI_MAX_EVENT_SIZE;
				1683	hlen = HCI_EVENT_HDR_SIZE;
				1684	break;
				1685	case HCI_SCODATA_PKT:
				1686	len = HCI_MAX_SCO_SIZE;
				1687	hlen = HCI_SCO_HDR_SIZE;
				1688	break;
				1689	}
				1690
Gustavo F. Padovan	1e429f3	2011-04-04 18:25:14 -0300	[diff] [blame]	1691	skb = bt_skb_alloc(len, GFP_ATOMIC);
Suraj Sumangala	33e882a	2010-07-14 13:02:17 +0530	[diff] [blame]	1692	if (!skb)
				1693	return -ENOMEM;
				1694
				1695	scb = (void *) skb->cb;
				1696	scb->expect = hlen;
				1697	scb->pkt_type = type;
				1698
				1699	skb->dev = (void *) hdev;
				1700	hdev->reassembly[index] = skb;
				1701	}
				1702
				1703	while (count) {
				1704	scb = (void *) skb->cb;
				1705	len = min(scb->expect, (__u16)count);
				1706
				1707	memcpy(skb_put(skb, len), data, len);
				1708
				1709	count -= len;
				1710	data += len;
				1711	scb->expect -= len;
				1712	remain = count;
				1713
				1714	switch (type) {
				1715	case HCI_EVENT_PKT:
				1716	if (skb->len == HCI_EVENT_HDR_SIZE) {
				1717	struct hci_event_hdr *h = hci_event_hdr(skb);
				1718	scb->expect = h->plen;
				1719
				1720	if (skb_tailroom(skb) < scb->expect) {
				1721	kfree_skb(skb);
				1722	hdev->reassembly[index] = NULL;
				1723	return -ENOMEM;
				1724	}
				1725	}
				1726	break;
				1727
				1728	case HCI_ACLDATA_PKT:
				1729	if (skb->len == HCI_ACL_HDR_SIZE) {
				1730	struct hci_acl_hdr *h = hci_acl_hdr(skb);
				1731	scb->expect = __le16_to_cpu(h->dlen);
				1732
				1733	if (skb_tailroom(skb) < scb->expect) {
				1734	kfree_skb(skb);
				1735	hdev->reassembly[index] = NULL;
				1736	return -ENOMEM;
				1737	}
				1738	}
				1739	break;
				1740
				1741	case HCI_SCODATA_PKT:
				1742	if (skb->len == HCI_SCO_HDR_SIZE) {
				1743	struct hci_sco_hdr *h = hci_sco_hdr(skb);
				1744	scb->expect = h->dlen;
				1745
				1746	if (skb_tailroom(skb) < scb->expect) {
				1747	kfree_skb(skb);
				1748	hdev->reassembly[index] = NULL;
				1749	return -ENOMEM;
				1750	}
				1751	}
				1752	break;
				1753	}
				1754
				1755	if (scb->expect == 0) {
				1756	/* Complete frame */
				1757
				1758	bt_cb(skb)->pkt_type = type;
				1759	hci_recv_frame(skb);
				1760
				1761	hdev->reassembly[index] = NULL;
				1762	return remain;
				1763	}
				1764	}
				1765
				1766	return remain;
				1767	}
				1768
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1769	int hci_recv_fragment(struct hci_dev hdev, int type, void data, int count)
				1770	{
Suraj Sumangala	f39a3c0	2010-07-14 13:02:18 +0530	[diff] [blame]	1771	int rem = 0;
				1772
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1773	if (type < HCI_ACLDATA_PKT \|\| type > HCI_EVENT_PKT)
				1774	return -EILSEQ;
				1775
Gustavo F. Padovan	da5f6c3	2010-07-24 01:34:54 -0300	[diff] [blame]	1776	while (count) {
Gustavo F. Padovan	1e429f3	2011-04-04 18:25:14 -0300	[diff] [blame]	1777	rem = hci_reassembly(hdev, type, data, count, type - 1);
Suraj Sumangala	f39a3c0	2010-07-14 13:02:18 +0530	[diff] [blame]	1778	if (rem < 0)
				1779	return rem;
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1780
Suraj Sumangala	f39a3c0	2010-07-14 13:02:18 +0530	[diff] [blame]	1781	data += (count - rem);
				1782	count = rem;
Gustavo F. Padovan	da5f6c3	2010-07-24 01:34:54 -0300	[diff] [blame]	1783	};
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1784
Suraj Sumangala	f39a3c0	2010-07-14 13:02:18 +0530	[diff] [blame]	1785	return rem;
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	1786	}
				1787	EXPORT_SYMBOL(hci_recv_fragment);
				1788
Suraj Sumangala	9981151	2010-07-14 13:02:19 +0530	[diff] [blame]	1789	#define STREAM_REASSEMBLY 0
				1790
				1791	int hci_recv_stream_fragment(struct hci_dev hdev, void data, int count)
				1792	{
				1793	int type;
				1794	int rem = 0;
				1795
Gustavo F. Padovan	da5f6c3	2010-07-24 01:34:54 -0300	[diff] [blame]	1796	while (count) {
Suraj Sumangala	9981151	2010-07-14 13:02:19 +0530	[diff] [blame]	1797	struct sk_buff *skb = hdev->reassembly[STREAM_REASSEMBLY];
				1798
				1799	if (!skb) {
				1800	struct { char type; } *pkt;
				1801
				1802	/* Start of the frame */
				1803	pkt = data;
				1804	type = pkt->type;
				1805
				1806	data++;
				1807	count--;
				1808	} else
				1809	type = bt_cb(skb)->pkt_type;
				1810
Gustavo F. Padovan	1e429f3	2011-04-04 18:25:14 -0300	[diff] [blame]	1811	rem = hci_reassembly(hdev, type, data, count,
				1812	STREAM_REASSEMBLY);
Suraj Sumangala	9981151	2010-07-14 13:02:19 +0530	[diff] [blame]	1813	if (rem < 0)
				1814	return rem;
				1815
				1816	data += (count - rem);
				1817	count = rem;
Gustavo F. Padovan	da5f6c3	2010-07-24 01:34:54 -0300	[diff] [blame]	1818	};
Suraj Sumangala	9981151	2010-07-14 13:02:19 +0530	[diff] [blame]	1819
				1820	return rem;
				1821	}
				1822	EXPORT_SYMBOL(hci_recv_stream_fragment);
				1823
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1824	/* ---- Interface to upper protocols ---- */
				1825
				1826	/* Register/Unregister protocols.
				1827	* hci_task_lock is used to ensure that no tasks are running. */
				1828	int hci_register_proto(struct hci_proto *hp)
				1829	{
				1830	int err = 0;
				1831
				1832	BT_DBG("%p name %s id %d", hp, hp->name, hp->id);
				1833
				1834	if (hp->id >= HCI_MAX_PROTO)
				1835	return -EINVAL;
				1836
				1837	write_lock_bh(&hci_task_lock);
				1838
				1839	if (!hci_proto[hp->id])
				1840	hci_proto[hp->id] = hp;
				1841	else
				1842	err = -EEXIST;
				1843
				1844	write_unlock_bh(&hci_task_lock);
				1845
				1846	return err;
				1847	}
				1848	EXPORT_SYMBOL(hci_register_proto);
				1849
				1850	int hci_unregister_proto(struct hci_proto *hp)
				1851	{
				1852	int err = 0;
				1853
				1854	BT_DBG("%p name %s id %d", hp, hp->name, hp->id);
				1855
				1856	if (hp->id >= HCI_MAX_PROTO)
				1857	return -EINVAL;
				1858
				1859	write_lock_bh(&hci_task_lock);
				1860
				1861	if (hci_proto[hp->id])
				1862	hci_proto[hp->id] = NULL;
				1863	else
				1864	err = -ENOENT;
				1865
				1866	write_unlock_bh(&hci_task_lock);
				1867
				1868	return err;
				1869	}
				1870	EXPORT_SYMBOL(hci_unregister_proto);
				1871
				1872	int hci_register_cb(struct hci_cb *cb)
				1873	{
				1874	BT_DBG("%p name %s", cb, cb->name);
				1875
				1876	write_lock_bh(&hci_cb_list_lock);
				1877	list_add(&cb->list, &hci_cb_list);
				1878	write_unlock_bh(&hci_cb_list_lock);
				1879
				1880	return 0;
				1881	}
				1882	EXPORT_SYMBOL(hci_register_cb);
				1883
				1884	int hci_unregister_cb(struct hci_cb *cb)
				1885	{
				1886	BT_DBG("%p name %s", cb, cb->name);
				1887
				1888	write_lock_bh(&hci_cb_list_lock);
				1889	list_del(&cb->list);
				1890	write_unlock_bh(&hci_cb_list_lock);
				1891
				1892	return 0;
				1893	}
				1894	EXPORT_SYMBOL(hci_unregister_cb);
				1895
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1896	int hci_register_amp(struct amp_mgr_cb *cb)
				1897	{
				1898	BT_DBG("%p", cb);
				1899
				1900	write_lock_bh(&amp_mgr_cb_list_lock);
				1901	list_add(&cb->list, &amp_mgr_cb_list);
				1902	write_unlock_bh(&amp_mgr_cb_list_lock);
				1903
				1904	return 0;
				1905	}
				1906	EXPORT_SYMBOL(hci_register_amp);
				1907
				1908	int hci_unregister_amp(struct amp_mgr_cb *cb)
				1909	{
				1910	BT_DBG("%p", cb);
				1911
				1912	write_lock_bh(&amp_mgr_cb_list_lock);
				1913	list_del(&cb->list);
				1914	write_unlock_bh(&amp_mgr_cb_list_lock);
				1915
				1916	return 0;
				1917	}
				1918	EXPORT_SYMBOL(hci_unregister_amp);
				1919
				1920	void hci_amp_cmd_complete(struct hci_dev *hdev, __u16 opcode,
				1921	struct sk_buff *skb)
				1922	{
				1923	struct amp_mgr_cb *cb;
				1924
				1925	BT_DBG("opcode 0x%x", opcode);
				1926
				1927	read_lock_bh(&amp_mgr_cb_list_lock);
				1928	list_for_each_entry(cb, &amp_mgr_cb_list, list) {
				1929	if (cb->amp_cmd_complete_event)
				1930	cb->amp_cmd_complete_event(hdev, opcode, skb);
				1931	}
				1932	read_unlock_bh(&amp_mgr_cb_list_lock);
				1933	}
				1934
				1935	void hci_amp_cmd_status(struct hci_dev *hdev, __u16 opcode, __u8 status)
				1936	{
				1937	struct amp_mgr_cb *cb;
				1938
				1939	BT_DBG("opcode 0x%x, status %d", opcode, status);
				1940
				1941	read_lock_bh(&amp_mgr_cb_list_lock);
				1942	list_for_each_entry(cb, &amp_mgr_cb_list, list) {
				1943	if (cb->amp_cmd_status_event)
				1944	cb->amp_cmd_status_event(hdev, opcode, status);
				1945	}
				1946	read_unlock_bh(&amp_mgr_cb_list_lock);
				1947	}
				1948
				1949	void hci_amp_event_packet(struct hci_dev *hdev, __u8 ev_code,
				1950	struct sk_buff *skb)
				1951	{
				1952	struct amp_mgr_cb *cb;
				1953
				1954	BT_DBG("ev_code 0x%x", ev_code);
				1955
				1956	read_lock_bh(&amp_mgr_cb_list_lock);
				1957	list_for_each_entry(cb, &amp_mgr_cb_list, list) {
				1958	if (cb->amp_event)
				1959	cb->amp_event(hdev, ev_code, skb);
				1960	}
				1961	read_unlock_bh(&amp_mgr_cb_list_lock);
				1962	}
				1963
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1964	static int hci_send_frame(struct sk_buff *skb)
				1965	{
				1966	struct hci_dev hdev = (struct hci_dev ) skb->dev;
				1967
				1968	if (!hdev) {
				1969	kfree_skb(skb);
				1970	return -ENODEV;
				1971	}
				1972
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	1973	BT_DBG("%s type %d len %d", hdev->name, bt_cb(skb)->pkt_type, skb->len);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1974
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	1975	if (atomic_read(&hdev->promisc)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1976	/* Time stamp */
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	1977	__net_timestamp(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1978
Johan Hedberg	eec8d2b	2010-12-16 10:17:38 +0200	[diff] [blame]	1979	hci_send_to_sock(hdev, skb, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1980	}
				1981
				1982	/* Get rid of skb owner, prior to sending to the driver. */
				1983	skb_orphan(skb);
				1984
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	1985	hci_notify(hdev, HCI_DEV_WRITE);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1986	return hdev->send(skb);
				1987	}
				1988
				1989	/* Send HCI command */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	1990	int hci_send_cmd(struct hci_dev hdev, __u16 opcode, __u32 plen, void param)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1991	{
				1992	int len = HCI_COMMAND_HDR_SIZE + plen;
				1993	struct hci_command_hdr *hdr;
				1994	struct sk_buff *skb;
				1995
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	1996	BT_DBG("%s opcode 0x%x plen %d", hdev->name, opcode, plen);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1997
				1998	skb = bt_skb_alloc(len, GFP_ATOMIC);
				1999	if (!skb) {
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	2000	BT_ERR("%s no memory for command", hdev->name);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2001	return -ENOMEM;
				2002	}
				2003
				2004	hdr = (struct hci_command_hdr *) skb_put(skb, HCI_COMMAND_HDR_SIZE);
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	2005	hdr->opcode = cpu_to_le16(opcode);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2006	hdr->plen = plen;
				2007
				2008	if (plen)
				2009	memcpy(skb_put(skb, plen), param, plen);
				2010
				2011	BT_DBG("skb len %d", skb->len);
				2012
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	2013	bt_cb(skb)->pkt_type = HCI_COMMAND_PKT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2014	skb->dev = (void *) hdev;
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	2015
Johan Hedberg	a5040ef	2011-01-10 13:28:59 +0200	[diff] [blame]	2016	if (test_bit(HCI_INIT, &hdev->flags))
				2017	hdev->init_last_cmd = opcode;
				2018
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2019	skb_queue_tail(&hdev->cmd_q, skb);
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	2020	tasklet_schedule(&hdev->cmd_task);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2021
				2022	return 0;
				2023	}
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2024	EXPORT_SYMBOL(hci_send_cmd);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2025
				2026	/* Get data from the previously sent command */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	2027	void hci_sent_cmd_data(struct hci_dev hdev, __u16 opcode)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2028	{
				2029	struct hci_command_hdr *hdr;
				2030
				2031	if (!hdev->sent_cmd)
				2032	return NULL;
				2033
				2034	hdr = (void *) hdev->sent_cmd->data;
				2035
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	2036	if (hdr->opcode != cpu_to_le16(opcode))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2037	return NULL;
				2038
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	2039	BT_DBG("%s opcode 0x%x", hdev->name, opcode);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2040
				2041	return hdev->sent_cmd->data + HCI_COMMAND_HDR_SIZE;
				2042	}
				2043
				2044	/* Send ACL data */
				2045	static void hci_add_acl_hdr(struct sk_buff *skb, __u16 handle, __u16 flags)
				2046	{
				2047	struct hci_acl_hdr *hdr;
				2048	int len = skb->len;
				2049
Arnaldo Carvalho de Melo	badff6d	2007-03-13 13:06:52 -0300	[diff] [blame]	2050	skb_push(skb, HCI_ACL_HDR_SIZE);
				2051	skb_reset_transport_header(skb);
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	2052	hdr = (struct hci_acl_hdr *)skb_transport_header(skb);
YOSHIFUJI Hideaki	aca3192	2007-03-25 20:12:50 -0700	[diff] [blame]	2053	hdr->handle = cpu_to_le16(hci_handle_pack(handle, flags));
				2054	hdr->dlen = cpu_to_le16(len);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2055	}
				2056
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2057	void hci_send_acl(struct hci_conn conn, struct hci_chan chan,
				2058	struct sk_buff *skb, __u16 flags)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2059	{
				2060	struct hci_dev *hdev = conn->hdev;
				2061	struct sk_buff *list;
				2062
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2063	BT_DBG("%s conn %p chan %p flags 0x%x", hdev->name, conn, chan, flags);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2064
				2065	skb->dev = (void *) hdev;
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	2066	bt_cb(skb)->pkt_type = HCI_ACLDATA_PKT;
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2067	if (hdev->dev_type == HCI_BREDR)
				2068	hci_add_acl_hdr(skb, conn->handle, flags);
				2069	else
				2070	hci_add_acl_hdr(skb, chan->ll_handle, flags);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2071
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	2072	list = skb_shinfo(skb)->frag_list;
				2073	if (!list) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2074	/* Non fragmented */
				2075	BT_DBG("%s nonfrag skb %p len %d", hdev->name, skb, skb->len);
				2076
				2077	skb_queue_tail(&conn->data_q, skb);
				2078	} else {
				2079	/* Fragmented */
				2080	BT_DBG("%s frag %p len %d", hdev->name, skb, skb->len);
				2081
				2082	skb_shinfo(skb)->frag_list = NULL;
				2083
				2084	/* Queue all fragments atomically */
				2085	spin_lock_bh(&conn->data_q.lock);
				2086
				2087	__skb_queue_tail(&conn->data_q, skb);
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2088	flags &= ~ACL_PB_MASK;
Andrei Emeltchenko	e702112	2011-01-03 11:14:36 +0200	[diff] [blame]	2089	flags \|= ACL_CONT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2090	do {
				2091	skb = list; list = list->next;
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	2092
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2093	skb->dev = (void *) hdev;
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	2094	bt_cb(skb)->pkt_type = HCI_ACLDATA_PKT;
Andrei Emeltchenko	e702112	2011-01-03 11:14:36 +0200	[diff] [blame]	2095	hci_add_acl_hdr(skb, conn->handle, flags);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2096
				2097	BT_DBG("%s frag %p len %d", hdev->name, skb, skb->len);
				2098
				2099	__skb_queue_tail(&conn->data_q, skb);
				2100	} while (list);
				2101
				2102	spin_unlock_bh(&conn->data_q.lock);
				2103	}
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	2104
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	2105	tasklet_schedule(&hdev->tx_task);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2106	}
				2107	EXPORT_SYMBOL(hci_send_acl);
				2108
				2109	/* Send SCO data */
Gustavo F. Padovan	0d861d8	2010-05-01 16:15:35 -0300	[diff] [blame]	2110	void hci_send_sco(struct hci_conn conn, struct sk_buff skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2111	{
				2112	struct hci_dev *hdev = conn->hdev;
				2113	struct hci_sco_hdr hdr;
				2114
				2115	BT_DBG("%s len %d", hdev->name, skb->len);
				2116
YOSHIFUJI Hideaki	aca3192	2007-03-25 20:12:50 -0700	[diff] [blame]	2117	hdr.handle = cpu_to_le16(conn->handle);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2118	hdr.dlen = skb->len;
				2119
Arnaldo Carvalho de Melo	badff6d	2007-03-13 13:06:52 -0300	[diff] [blame]	2120	skb_push(skb, HCI_SCO_HDR_SIZE);
				2121	skb_reset_transport_header(skb);
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	2122	memcpy(skb_transport_header(skb), &hdr, HCI_SCO_HDR_SIZE);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2123
				2124	skb->dev = (void *) hdev;
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	2125	bt_cb(skb)->pkt_type = HCI_SCODATA_PKT;
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	2126
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2127	skb_queue_tail(&conn->data_q, skb);
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	2128	tasklet_schedule(&hdev->tx_task);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2129	}
				2130	EXPORT_SYMBOL(hci_send_sco);
				2131
				2132	/* ---- HCI TX task (outgoing data) ---- */
Srinivas Krovvidi	672dff3	2012-06-29 19:37:45 +0530	[diff] [blame]	2133	/* HCI ACL Connection scheduler */
				2134	static inline struct hci_conn hci_low_sent_acl(struct hci_dev hdev,
				2135	int *quote)
				2136	{
				2137	struct hci_conn_hash *h = &hdev->conn_hash;
				2138	struct hci_conn *conn = NULL;
				2139	int num = 0, min = ~0, conn_num = 0;
				2140	struct list_head *p;
				2141
				2142	/* We don't have to lock device here. Connections are always
				2143	* added and removed with TX task disabled. */
				2144	list_for_each(p, &h->list) {
				2145	struct hci_conn *c;
				2146	c = list_entry(p, struct hci_conn, list);
				2147	if (c->type == ACL_LINK)
				2148	conn_num++;
				2149
				2150	if (skb_queue_empty(&c->data_q))
				2151	continue;
				2152
				2153	if (c->state != BT_CONNECTED && c->state != BT_CONFIG)
				2154	continue;
				2155
				2156	num++;
				2157
				2158	if (c->sent < min) {
				2159	min = c->sent;
				2160	conn = c;
				2161	}
				2162	}
				2163
				2164	if (conn) {
				2165	int cnt, q;
				2166	cnt = hdev->acl_cnt;
				2167	q = cnt / num;
				2168	*quote = q ? q : 1;
				2169	} else
				2170	*quote = 0;
				2171
				2172	if ((*quote == hdev->acl_cnt) &&
				2173	(conn->sent == (hdev->acl_pkts - 1)) &&
				2174	(conn_num > 1)) {
				2175	*quote = 0;
				2176	conn = NULL;
				2177	}
				2178
				2179	BT_DBG("conn %p quote %d", conn, *quote);
				2180	return conn;
				2181	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2182
				2183	/* HCI Connection scheduler */
				2184	static inline struct hci_conn hci_low_sent(struct hci_dev hdev, __u8 type, int *quote)
				2185	{
				2186	struct hci_conn_hash *h = &hdev->conn_hash;
Marcel Holtmann	5b7f990	2007-07-11 09:51:55 +0200	[diff] [blame]	2187	struct hci_conn *conn = NULL;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2188	int num = 0, min = ~0;
				2189	struct list_head *p;
				2190
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	2191	/* We don't have to lock device here. Connections are always
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2192	* added and removed with TX task disabled. */
				2193	list_for_each(p, &h->list) {
				2194	struct hci_conn *c;
				2195	c = list_entry(p, struct hci_conn, list);
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	2196
Marcel Holtmann	769be97	2008-07-14 20:13:49 +0200	[diff] [blame]	2197	if (c->type != type \|\| skb_queue_empty(&c->data_q))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2198	continue;
Marcel Holtmann	769be97	2008-07-14 20:13:49 +0200	[diff] [blame]	2199
				2200	if (c->state != BT_CONNECTED && c->state != BT_CONFIG)
				2201	continue;
				2202
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2203	num++;
				2204
				2205	if (c->sent < min) {
				2206	min = c->sent;
				2207	conn = c;
				2208	}
				2209	}
				2210
				2211	if (conn) {
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2212	int cnt, q;
				2213
				2214	switch (conn->type) {
				2215	case ACL_LINK:
				2216	cnt = hdev->acl_cnt;
				2217	break;
				2218	case SCO_LINK:
				2219	case ESCO_LINK:
				2220	cnt = hdev->sco_cnt;
				2221	break;
				2222	case LE_LINK:
				2223	cnt = hdev->le_mtu ? hdev->le_cnt : hdev->acl_cnt;
				2224	break;
				2225	default:
				2226	cnt = 0;
				2227	BT_ERR("Unknown link type");
				2228	}
				2229
				2230	q = cnt / num;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2231	*quote = q ? q : 1;
				2232	} else
				2233	*quote = 0;
				2234
				2235	BT_DBG("conn %p quote %d", conn, *quote);
				2236	return conn;
				2237	}
				2238
Ville Tervo	bae1f5d	2011-02-10 22:38:53 -0300	[diff] [blame]	2239	static inline void hci_link_tx_to(struct hci_dev *hdev, __u8 type)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2240	{
				2241	struct hci_conn_hash *h = &hdev->conn_hash;
				2242	struct list_head *p;
				2243	struct hci_conn *c;
				2244
Ville Tervo	bae1f5d	2011-02-10 22:38:53 -0300	[diff] [blame]	2245	BT_ERR("%s link tx timeout", hdev->name);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2246
				2247	/* Kill stalled connections */
				2248	list_for_each(p, &h->list) {
				2249	c = list_entry(p, struct hci_conn, list);
Ville Tervo	bae1f5d	2011-02-10 22:38:53 -0300	[diff] [blame]	2250	if (c->type == type && c->sent) {
				2251	BT_ERR("%s killing stalled connection %s",
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2252	hdev->name, batostr(&c->dst));
				2253	hci_acl_disconn(c, 0x13);
				2254	}
				2255	}
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	2256	}
				2257
				2258	static inline void hci_sched_acl(struct hci_dev *hdev)
				2259	{
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2260	struct hci_conn *conn;
				2261	struct sk_buff *skb;
				2262	int quote;
				2263
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	2264	BT_DBG("%s", hdev->name);
				2265
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2266	if (!test_bit(HCI_RAW, &hdev->flags)) {
				2267	/* ACL tx timeout must be longer than maximum
				2268	* link supervision timeout (40.9 seconds) */
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2269	if (hdev->acl_cnt <= 0 &&
				2270	time_after(jiffies, hdev->acl_last_tx + HZ * 45))
Ville Tervo	bae1f5d	2011-02-10 22:38:53 -0300	[diff] [blame]	2271	hci_link_tx_to(hdev, ACL_LINK);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2272	}
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	2273
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2274	while (hdev->acl_cnt > 0 &&
Srinivas Krovvidi	672dff3	2012-06-29 19:37:45 +0530	[diff] [blame]	2275	((conn = hci_low_sent_acl(hdev, &quote)) != NULL)) {
				2276
				2277	while (quote > 0 &&
				2278	(skb = skb_dequeue(&conn->data_q))) {
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2279	int count = 1;
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	2280
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2281	BT_DBG("skb %p len %d", skb, skb->len);
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	2282
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2283	if (hdev->flow_ctl_mode ==
				2284	HCI_BLOCK_BASED_FLOW_CTL_MODE)
				2285	/* Calculate count of blocks used by
				2286	* this packet
				2287	*/
				2288	count = ((skb->len - HCI_ACL_HDR_SIZE - 1) /
				2289	hdev->data_block_len) + 1;
				2290
				2291	if (count > hdev->acl_cnt)
				2292	return;
				2293
Srinivas Krovvidi	9dd3592	2012-07-26 15:10:28 +0530	[diff] [blame]	2294	hci_dev_lock(hdev);
Jaikumar Ganesh	514abe6	2011-05-23 18:06:04 -0700	[diff] [blame]	2295	hci_conn_enter_active_mode(conn, bt_cb(skb)->force_active);
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	2296
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2297	hci_send_frame(skb);
				2298	hdev->acl_last_tx = jiffies;
				2299
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2300	hdev->acl_cnt -= count;
				2301	quote -= count;
				2302
				2303	conn->sent += count;
Srinivas Krovvidi	9dd3592	2012-07-26 15:10:28 +0530	[diff] [blame]	2304	hci_dev_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2305	}
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	2306	}
				2307	}
				2308
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2309	/* Schedule SCO */
				2310	static inline void hci_sched_sco(struct hci_dev *hdev)
				2311	{
				2312	struct hci_conn *conn;
				2313	struct sk_buff *skb;
				2314	int quote;
				2315
				2316	BT_DBG("%s", hdev->name);
				2317
				2318	while (hdev->sco_cnt && (conn = hci_low_sent(hdev, SCO_LINK, &quote))) {
				2319	while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
				2320	BT_DBG("skb %p len %d", skb, skb->len);
				2321	hci_send_frame(skb);
				2322
				2323	conn->sent++;
				2324	if (conn->sent == ~0)
				2325	conn->sent = 0;
				2326	}
				2327	}
				2328	}
				2329
Marcel Holtmann	b6a0dc8	2007-10-20 14:55:10 +0200	[diff] [blame]	2330	static inline void hci_sched_esco(struct hci_dev *hdev)
				2331	{
				2332	struct hci_conn *conn;
				2333	struct sk_buff *skb;
				2334	int quote;
				2335
				2336	BT_DBG("%s", hdev->name);
				2337
				2338	while (hdev->sco_cnt && (conn = hci_low_sent(hdev, ESCO_LINK, &quote))) {
				2339	while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
				2340	BT_DBG("skb %p len %d", skb, skb->len);
				2341	hci_send_frame(skb);
				2342
				2343	conn->sent++;
				2344	if (conn->sent == ~0)
				2345	conn->sent = 0;
				2346	}
				2347	}
				2348	}
				2349
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2350	static inline void hci_sched_le(struct hci_dev *hdev)
				2351	{
				2352	struct hci_conn *conn;
				2353	struct sk_buff *skb;
				2354	int quote, cnt;
				2355
				2356	BT_DBG("%s", hdev->name);
				2357
				2358	if (!test_bit(HCI_RAW, &hdev->flags)) {
				2359	/* LE tx timeout must be longer than maximum
				2360	* link supervision timeout (40.9 seconds) */
Ville Tervo	bae1f5d	2011-02-10 22:38:53 -0300	[diff] [blame]	2361	if (!hdev->le_cnt && hdev->le_pkts &&
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2362	time_after(jiffies, hdev->le_last_tx + HZ * 45))
Ville Tervo	bae1f5d	2011-02-10 22:38:53 -0300	[diff] [blame]	2363	hci_link_tx_to(hdev, LE_LINK);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2364	}
				2365
				2366	cnt = hdev->le_pkts ? hdev->le_cnt : hdev->acl_cnt;
				2367	while (cnt && (conn = hci_low_sent(hdev, LE_LINK, &quote))) {
				2368	while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
				2369	BT_DBG("skb %p len %d", skb, skb->len);
Luiz Augusto von Dentz	ec1cce2	2011-11-02 15:52:02 +0200	[diff] [blame]	2370
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2371	hci_send_frame(skb);
				2372	hdev->le_last_tx = jiffies;
				2373
				2374	cnt--;
				2375	conn->sent++;
				2376	}
				2377	}
				2378	if (hdev->le_pkts)
				2379	hdev->le_cnt = cnt;
				2380	else
				2381	hdev->acl_cnt = cnt;
				2382	}
				2383
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2384	static void hci_tx_task(unsigned long arg)
				2385	{
				2386	struct hci_dev hdev = (struct hci_dev ) arg;
				2387	struct sk_buff *skb;
				2388
				2389	read_lock(&hci_task_lock);
				2390
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2391	BT_DBG("%s acl %d sco %d le %d", hdev->name, hdev->acl_cnt,
				2392	hdev->sco_cnt, hdev->le_cnt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2393
				2394	/* Schedule queues and send stuff to HCI driver */
				2395
				2396	hci_sched_acl(hdev);
				2397
				2398	hci_sched_sco(hdev);
				2399
Marcel Holtmann	b6a0dc8	2007-10-20 14:55:10 +0200	[diff] [blame]	2400	hci_sched_esco(hdev);
				2401
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	2402	hci_sched_le(hdev);
				2403
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2404	/* Send next queued raw (unknown type) packet */
				2405	while ((skb = skb_dequeue(&hdev->raw_q)))
				2406	hci_send_frame(skb);
				2407
				2408	read_unlock(&hci_task_lock);
				2409	}
				2410
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2411	/* ----- HCI RX task (incoming data proccessing) ----- */
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2412
				2413	/* ACL data packet */
				2414	static inline void hci_acldata_packet(struct hci_dev hdev, struct sk_buff skb)
				2415	{
				2416	struct hci_acl_hdr hdr = (void ) skb->data;
				2417	struct hci_conn *conn;
				2418	__u16 handle, flags;
				2419
				2420	skb_pull(skb, HCI_ACL_HDR_SIZE);
				2421
				2422	handle = __le16_to_cpu(hdr->handle);
				2423	flags = hci_flags(handle);
				2424	handle = hci_handle(handle);
				2425
				2426	BT_DBG("%s len %d handle 0x%x flags 0x%x", hdev->name, skb->len, handle, flags);
				2427
				2428	hdev->stat.acl_rx++;
				2429
				2430	hci_dev_lock(hdev);
				2431	conn = hci_conn_hash_lookup_handle(hdev, handle);
				2432	hci_dev_unlock(hdev);
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	2433
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2434	if (conn) {
				2435	register struct hci_proto *hp;
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	2436
Jaikumar Ganesh	514abe6	2011-05-23 18:06:04 -0700	[diff] [blame]	2437	hci_conn_enter_active_mode(conn, bt_cb(skb)->force_active);
Johan Hedberg	671267b	2012-05-12 16:11:50 -0300	[diff] [blame]	2438
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2439	/* Send to upper protocol */
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	2440	hp = hci_proto[HCI_PROTO_L2CAP];
				2441	if (hp && hp->recv_acldata) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2442	hp->recv_acldata(conn, skb, flags);
				2443	return;
				2444	}
				2445	} else {
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	2446	BT_ERR("%s ACL packet for unknown connection handle %d",
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2447	hdev->name, handle);
				2448	}
				2449
				2450	kfree_skb(skb);
				2451	}
				2452
				2453	/* SCO data packet */
				2454	static inline void hci_scodata_packet(struct hci_dev hdev, struct sk_buff skb)
				2455	{
				2456	struct hci_sco_hdr hdr = (void ) skb->data;
				2457	struct hci_conn *conn;
				2458	__u16 handle;
				2459
				2460	skb_pull(skb, HCI_SCO_HDR_SIZE);
				2461
				2462	handle = __le16_to_cpu(hdr->handle);
				2463
				2464	BT_DBG("%s len %d handle 0x%x", hdev->name, skb->len, handle);
				2465
				2466	hdev->stat.sco_rx++;
				2467
				2468	hci_dev_lock(hdev);
				2469	conn = hci_conn_hash_lookup_handle(hdev, handle);
				2470	hci_dev_unlock(hdev);
				2471
				2472	if (conn) {
				2473	register struct hci_proto *hp;
				2474
				2475	/* Send to upper protocol */
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	2476	hp = hci_proto[HCI_PROTO_SCO];
				2477	if (hp && hp->recv_scodata) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2478	hp->recv_scodata(conn, skb);
				2479	return;
				2480	}
				2481	} else {
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	2482	BT_ERR("%s SCO packet for unknown connection handle %d",
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2483	hdev->name, handle);
				2484	}
				2485
				2486	kfree_skb(skb);
				2487	}
				2488
Marcel Holtmann	6516455	2005-10-28 19:20:48 +0200	[diff] [blame]	2489	static void hci_rx_task(unsigned long arg)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2490	{
				2491	struct hci_dev hdev = (struct hci_dev ) arg;
				2492	struct sk_buff *skb;
				2493
				2494	BT_DBG("%s", hdev->name);
				2495
				2496	read_lock(&hci_task_lock);
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	2497
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2498	while ((skb = skb_dequeue(&hdev->rx_q))) {
				2499	if (atomic_read(&hdev->promisc)) {
				2500	/* Send copy to the sockets */
Johan Hedberg	eec8d2b	2010-12-16 10:17:38 +0200	[diff] [blame]	2501	hci_send_to_sock(hdev, skb, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2502	}
				2503
				2504	if (test_bit(HCI_RAW, &hdev->flags)) {
				2505	kfree_skb(skb);
				2506	continue;
				2507	}
				2508
				2509	if (test_bit(HCI_INIT, &hdev->flags)) {
				2510	/* Don't process data packets in this states. */
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	2511	switch (bt_cb(skb)->pkt_type) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2512	case HCI_ACLDATA_PKT:
				2513	case HCI_SCODATA_PKT:
				2514	kfree_skb(skb);
				2515	continue;
Stephen Hemminger	3ff50b7	2007-04-20 17:09:22 -0700	[diff] [blame]	2516	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2517	}
				2518
				2519	/* Process frame */
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	2520	switch (bt_cb(skb)->pkt_type) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2521	case HCI_EVENT_PKT:
				2522	hci_event_packet(hdev, skb);
				2523	break;
				2524
				2525	case HCI_ACLDATA_PKT:
				2526	BT_DBG("%s ACL data packet", hdev->name);
				2527	hci_acldata_packet(hdev, skb);
				2528	break;
				2529
				2530	case HCI_SCODATA_PKT:
				2531	BT_DBG("%s SCO data packet", hdev->name);
				2532	hci_scodata_packet(hdev, skb);
				2533	break;
				2534
				2535	default:
				2536	kfree_skb(skb);
				2537	break;
				2538	}
				2539	}
				2540
				2541	read_unlock(&hci_task_lock);
				2542	}
				2543
				2544	static void hci_cmd_task(unsigned long arg)
				2545	{
				2546	struct hci_dev hdev = (struct hci_dev ) arg;
				2547	struct sk_buff *skb;
				2548
				2549	BT_DBG("%s cmd %d", hdev->name, atomic_read(&hdev->cmd_cnt));
				2550
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2551	/* Send queued commands */
Andrei Emeltchenko	5a08ecc	2011-01-11 17:20:20 +0200	[diff] [blame]	2552	if (atomic_read(&hdev->cmd_cnt)) {
				2553	skb = skb_dequeue(&hdev->cmd_q);
				2554	if (!skb)
				2555	return;
				2556
Wei Yongjun	7585b97	2009-02-25 18:29:52 +0800	[diff] [blame]	2557	kfree_skb(hdev->sent_cmd);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2558
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	2559	hdev->sent_cmd = skb_clone(skb, GFP_ATOMIC);
				2560	if (hdev->sent_cmd) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2561	atomic_dec(&hdev->cmd_cnt);
				2562	hci_send_frame(skb);
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2563	mod_timer(&hdev->cmd_timer,
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	2564	jiffies + msecs_to_jiffies(HCI_CMD_TIMEOUT));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2565	} else {
				2566	skb_queue_head(&hdev->cmd_q, skb);
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	2567	tasklet_schedule(&hdev->cmd_task);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2568	}
				2569	}
				2570	}
Andre Guedes	2519a1f	2011-11-07 11:45:24 -0300	[diff] [blame]	2571
Bryan Huntsman	3f2bc4d	2011-08-16 17:27:22 -0700	[diff] [blame]	2572	module_param(enable_smp, bool, 0644);
				2573	MODULE_PARM_DESC(enable_smp, "Enable SMP support (LE only)");