Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 3a6afbd2171a1e92c22d1a9eb54adf1474d938f1 / . / net / bluetooth / hci_core.c
blob: 8f70a35b4d0eb29ef82c411d89a662d1acc877f0 [file] [log] [blame]
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]1/*
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (C) 2000-2001 Qualcomm Incorporated
Gustavo F. Padovan590051d2011-12-18 13:39:33 -0200[diff] [blame]4 Copyright (C) 2011 ProFUSION Embedded Systems
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]5
6 Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License version 2 as
10 published by the Free Software Foundation;
11
12 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
13 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
14 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
15 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]16 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
17 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
18 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]19 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
20
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]21 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
22 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]23 SOFTWARE IS DISCLAIMED.
24*/
25
26/* Bluetooth HCI core. */
27
Gustavo Padovan8c520a52012-05-23 04:04:22 -0300[diff] [blame]28#include <linux/export.h>
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]29#include <linux/idr.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]30
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]31#include <linux/rfkill.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]32
33#include <net/bluetooth/bluetooth.h>
34#include <net/bluetooth/hci_core.h>
35
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]36static void hci_rx_work(struct work_struct *work);
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]37static void hci_cmd_work(struct work_struct *work);
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]38static void hci_tx_work(struct work_struct *work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]39
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]40/* HCI device list */
41LIST_HEAD(hci_dev_list);
42DEFINE_RWLOCK(hci_dev_list_lock);
43
44/* HCI callback list */
45LIST_HEAD(hci_cb_list);
46DEFINE_RWLOCK(hci_cb_list_lock);
47
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]48/* HCI ID Numbering */
49static DEFINE_IDA(hci_index_ida);
50
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]51/* ---- HCI notifications ---- */
52
Marcel Holtmann65164552005-10-28 19:20:48 +0200[diff] [blame]53static void hci_notify(struct hci_dev *hdev, int event)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]54{
Marcel Holtmann040030e2012-02-20 14:50:37 +0100[diff] [blame]55 hci_sock_dev_event(hdev, event);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]56}
57
58/* ---- HCI requests ---- */
59
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]60static void hci_req_sync_complete(struct hci_dev *hdev, u8 result)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]61{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]62 BT_DBG("%s result 0x%2.2x", hdev->name, result);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]63
64 if (hdev->req_status == HCI_REQ_PEND) {
65 hdev->req_result = result;
66 hdev->req_status = HCI_REQ_DONE;
67 wake_up_interruptible(&hdev->req_wait_q);
68 }
69}
70
71static void hci_req_cancel(struct hci_dev *hdev, int err)
72{
73 BT_DBG("%s err 0x%2.2x", hdev->name, err);
74
75 if (hdev->req_status == HCI_REQ_PEND) {
76 hdev->req_result = err;
77 hdev->req_status = HCI_REQ_CANCELED;
78 wake_up_interruptible(&hdev->req_wait_q);
79 }
80}
81
Fengguang Wu77a63e02013-04-20 16:24:31 +0300[diff] [blame]82static struct sk_buff *hci_get_cmd_complete(struct hci_dev *hdev, u16 opcode,
83 u8 event)
Johan Hedberg75e84b72013-04-02 13:35:04 +0300[diff] [blame]84{
85 struct hci_ev_cmd_complete *ev;
86 struct hci_event_hdr *hdr;
87 struct sk_buff *skb;
88
89 hci_dev_lock(hdev);
90
91 skb = hdev->recv_evt;
92 hdev->recv_evt = NULL;
93
94 hci_dev_unlock(hdev);
95
96 if (!skb)
97 return ERR_PTR(-ENODATA);
98
99 if (skb->len < sizeof(*hdr)) {
100 BT_ERR("Too short HCI event");
101 goto failed;
102 }
103
104 hdr = (void *) skb->data;
105 skb_pull(skb, HCI_EVENT_HDR_SIZE);
106
Johan Hedberg7b1abbb2013-04-03 21:54:47 +0300[diff] [blame]107 if (event) {
108 if (hdr->evt != event)
109 goto failed;
110 return skb;
111 }
112
Johan Hedberg75e84b72013-04-02 13:35:04 +0300[diff] [blame]113 if (hdr->evt != HCI_EV_CMD_COMPLETE) {
114 BT_DBG("Last event is not cmd complete (0x%2.2x)", hdr->evt);
115 goto failed;
116 }
117
118 if (skb->len < sizeof(*ev)) {
119 BT_ERR("Too short cmd_complete event");
120 goto failed;
121 }
122
123 ev = (void *) skb->data;
124 skb_pull(skb, sizeof(*ev));
125
126 if (opcode == __le16_to_cpu(ev->opcode))
127 return skb;
128
129 BT_DBG("opcode doesn't match (0x%2.2x != 0x%2.2x)", opcode,
130 __le16_to_cpu(ev->opcode));
131
132failed:
133 kfree_skb(skb);
134 return ERR_PTR(-ENODATA);
135}
136
Johan Hedberg7b1abbb2013-04-03 21:54:47 +0300[diff] [blame]137struct sk_buff *__hci_cmd_sync_ev(struct hci_dev *hdev, u16 opcode, u32 plen,
Johan Hedberg07dc93d2013-04-19 10:14:51 +0300[diff] [blame]138 const void *param, u8 event, u32 timeout)
Johan Hedberg75e84b72013-04-02 13:35:04 +0300[diff] [blame]139{
140 DECLARE_WAITQUEUE(wait, current);
141 struct hci_request req;
142 int err = 0;
143
144 BT_DBG("%s", hdev->name);
145
146 hci_req_init(&req, hdev);
147
Johan Hedberg7b1abbb2013-04-03 21:54:47 +0300[diff] [blame]148 hci_req_add_ev(&req, opcode, plen, param, event);
Johan Hedberg75e84b72013-04-02 13:35:04 +0300[diff] [blame]149
150 hdev->req_status = HCI_REQ_PEND;
151
152 err = hci_req_run(&req, hci_req_sync_complete);
153 if (err < 0)
154 return ERR_PTR(err);
155
156 add_wait_queue(&hdev->req_wait_q, &wait);
157 set_current_state(TASK_INTERRUPTIBLE);
158
159 schedule_timeout(timeout);
160
161 remove_wait_queue(&hdev->req_wait_q, &wait);
162
163 if (signal_pending(current))
164 return ERR_PTR(-EINTR);
165
166 switch (hdev->req_status) {
167 case HCI_REQ_DONE:
168 err = -bt_to_errno(hdev->req_result);
169 break;
170
171 case HCI_REQ_CANCELED:
172 err = -hdev->req_result;
173 break;
174
175 default:
176 err = -ETIMEDOUT;
177 break;
178 }
179
180 hdev->req_status = hdev->req_result = 0;
181
182 BT_DBG("%s end: err %d", hdev->name, err);
183
184 if (err < 0)
185 return ERR_PTR(err);
186
Johan Hedberg7b1abbb2013-04-03 21:54:47 +0300[diff] [blame]187 return hci_get_cmd_complete(hdev, opcode, event);
188}
189EXPORT_SYMBOL(__hci_cmd_sync_ev);
190
191struct sk_buff *__hci_cmd_sync(struct hci_dev *hdev, u16 opcode, u32 plen,
Johan Hedberg07dc93d2013-04-19 10:14:51 +0300[diff] [blame]192 const void *param, u32 timeout)
Johan Hedberg7b1abbb2013-04-03 21:54:47 +0300[diff] [blame]193{
194 return __hci_cmd_sync_ev(hdev, opcode, plen, param, 0, timeout);
Johan Hedberg75e84b72013-04-02 13:35:04 +0300[diff] [blame]195}
196EXPORT_SYMBOL(__hci_cmd_sync);
197
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]198/* Execute request and wait for completion. */
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]199static int __hci_req_sync(struct hci_dev *hdev,
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]200 void (*func)(struct hci_request *req,
201 unsigned long opt),
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]202 unsigned long opt, __u32 timeout)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]203{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]204 struct hci_request req;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]205 DECLARE_WAITQUEUE(wait, current);
206 int err = 0;
207
208 BT_DBG("%s start", hdev->name);
209
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]210 hci_req_init(&req, hdev);
211
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]212 hdev->req_status = HCI_REQ_PEND;
213
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]214 func(&req, opt);
Johan Hedberg53cce222013-03-05 20:37:42 +0200[diff] [blame]215
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]216 err = hci_req_run(&req, hci_req_sync_complete);
217 if (err < 0) {
Johan Hedberg53cce222013-03-05 20:37:42 +0200[diff] [blame]218 hdev->req_status = 0;
Andre Guedes920c8302013-03-08 11:20:15 -0300[diff] [blame]219
220 /* ENODATA means the HCI request command queue is empty.
221 * This can happen when a request with conditionals doesn't
222 * trigger any commands to be sent. This is normal behavior
223 * and should not trigger an error return.
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]224 */
Andre Guedes920c8302013-03-08 11:20:15 -0300[diff] [blame]225 if (err == -ENODATA)
226 return 0;
227
228 return err;
Johan Hedberg53cce222013-03-05 20:37:42 +0200[diff] [blame]229 }
230
Andre Guedesbc4445c2013-03-08 11:20:13 -0300[diff] [blame]231 add_wait_queue(&hdev->req_wait_q, &wait);
232 set_current_state(TASK_INTERRUPTIBLE);
233
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]234 schedule_timeout(timeout);
235
236 remove_wait_queue(&hdev->req_wait_q, &wait);
237
238 if (signal_pending(current))
239 return -EINTR;
240
241 switch (hdev->req_status) {
242 case HCI_REQ_DONE:
Joe Perchese1750722011-06-29 18:18:29 -0700[diff] [blame]243 err = -bt_to_errno(hdev->req_result);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]244 break;
245
246 case HCI_REQ_CANCELED:
247 err = -hdev->req_result;
248 break;
249
250 default:
251 err = -ETIMEDOUT;
252 break;
Stephen Hemminger3ff50b72007-04-20 17:09:22 -0700[diff] [blame]253 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]254
Johan Hedberga5040ef2011-01-10 13:28:59 +0200[diff] [blame]255 hdev->req_status = hdev->req_result = 0;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]256
257 BT_DBG("%s end: err %d", hdev->name, err);
258
259 return err;
260}
261
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]262static int hci_req_sync(struct hci_dev *hdev,
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]263 void (*req)(struct hci_request *req,
264 unsigned long opt),
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]265 unsigned long opt, __u32 timeout)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]266{
267 int ret;
268
Marcel Holtmann7c6a3292008-09-12 03:11:54 +0200[diff] [blame]269 if (!test_bit(HCI_UP, &hdev->flags))
270 return -ENETDOWN;
271
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]272 /* Serialize all requests */
273 hci_req_lock(hdev);
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]274 ret = __hci_req_sync(hdev, req, opt, timeout);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]275 hci_req_unlock(hdev);
276
277 return ret;
278}
279
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]280static void hci_reset_req(struct hci_request *req, unsigned long opt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]281{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]282 BT_DBG("%s %ld", req->hdev->name, opt);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]283
284 /* Reset device */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]285 set_bit(HCI_RESET, &req->hdev->flags);
286 hci_req_add(req, HCI_OP_RESET, 0, NULL);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]287}
288
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]289static void bredr_init(struct hci_request *req)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]290{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]291 req->hdev->flow_ctl_mode = HCI_FLOW_CTL_MODE_PACKET_BASED;
Andrei Emeltchenko2455a3e2011-12-19 16:31:28 +0200[diff] [blame]292
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]293 /* Read Local Supported Features */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]294 hci_req_add(req, HCI_OP_READ_LOCAL_FEATURES, 0, NULL);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]295
Marcel Holtmann1143e5a2006-09-23 09:57:20 +0200[diff] [blame]296 /* Read Local Version */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]297 hci_req_add(req, HCI_OP_READ_LOCAL_VERSION, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]298
299 /* Read BD Address */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]300 hci_req_add(req, HCI_OP_READ_BD_ADDR, 0, NULL);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]301}
302
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]303static void amp_init(struct hci_request *req)
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]304{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]305 req->hdev->flow_ctl_mode = HCI_FLOW_CTL_MODE_BLOCK_BASED;
Andrei Emeltchenko2455a3e2011-12-19 16:31:28 +0200[diff] [blame]306
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]307 /* Read Local Version */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]308 hci_req_add(req, HCI_OP_READ_LOCAL_VERSION, 0, NULL);
Andrei Emeltchenko6bcbc482012-03-28 16:31:24 +0300[diff] [blame]309
Marcel Holtmannf6996cf2013-10-07 02:31:39 -0700[diff] [blame]310 /* Read Local Supported Commands */
311 hci_req_add(req, HCI_OP_READ_LOCAL_COMMANDS, 0, NULL);
312
313 /* Read Local Supported Features */
314 hci_req_add(req, HCI_OP_READ_LOCAL_FEATURES, 0, NULL);
315
Andrei Emeltchenko6bcbc482012-03-28 16:31:24 +0300[diff] [blame]316 /* Read Local AMP Info */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]317 hci_req_add(req, HCI_OP_READ_LOCAL_AMP_INFO, 0, NULL);
Andrei Emeltchenkoe71dfab2012-09-06 15:05:46 +0300[diff] [blame]318
319 /* Read Data Blk size */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]320 hci_req_add(req, HCI_OP_READ_DATA_BLOCK_SIZE, 0, NULL);
Marcel Holtmann7528ca12013-10-07 03:55:52 -0700[diff] [blame]321
Marcel Holtmannf38ba942013-10-07 03:55:53 -0700[diff] [blame]322 /* Read Flow Control Mode */
323 hci_req_add(req, HCI_OP_READ_FLOW_CONTROL_MODE, 0, NULL);
324
Marcel Holtmann7528ca12013-10-07 03:55:52 -0700[diff] [blame]325 /* Read Location Data */
326 hci_req_add(req, HCI_OP_READ_LOCATION_DATA, 0, NULL);
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]327}
328
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]329static void hci_init1_req(struct hci_request *req, unsigned long opt)
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]330{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]331 struct hci_dev *hdev = req->hdev;
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]332
333 BT_DBG("%s %ld", hdev->name, opt);
334
Andrei Emeltchenko11778712012-06-11 11:13:10 +0300[diff] [blame]335 /* Reset */
336 if (!test_bit(HCI_QUIRK_RESET_ON_CLOSE, &hdev->quirks))
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]337 hci_reset_req(req, 0);
Andrei Emeltchenko11778712012-06-11 11:13:10 +0300[diff] [blame]338
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]339 switch (hdev->dev_type) {
340 case HCI_BREDR:
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]341 bredr_init(req);
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]342 break;
343
344 case HCI_AMP:
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]345 amp_init(req);
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]346 break;
347
348 default:
349 BT_ERR("Unknown device type %d", hdev->dev_type);
350 break;
351 }
Andrei Emeltchenkoe61ef4992011-12-19 16:31:27 +0200[diff] [blame]352}
353
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]354static void bredr_setup(struct hci_request *req)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]355{
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]356 __le16 param;
357 __u8 flt_type;
358
359 /* Read Buffer Size (ACL mtu, max pkt, etc.) */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]360 hci_req_add(req, HCI_OP_READ_BUFFER_SIZE, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]361
362 /* Read Class of Device */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]363 hci_req_add(req, HCI_OP_READ_CLASS_OF_DEV, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]364
365 /* Read Local Name */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]366 hci_req_add(req, HCI_OP_READ_LOCAL_NAME, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]367
368 /* Read Voice Setting */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]369 hci_req_add(req, HCI_OP_READ_VOICE_SETTING, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]370
371 /* Clear Event Filters */
372 flt_type = HCI_FLT_CLEAR_ALL;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]373 hci_req_add(req, HCI_OP_SET_EVENT_FLT, 1, &flt_type);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]374
375 /* Connection accept timeout ~20 secs */
376 param = __constant_cpu_to_le16(0x7d00);
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]377 hci_req_add(req, HCI_OP_WRITE_CA_TIMEOUT, 2, &param);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]378
Johan Hedbergf332ec62013-03-15 17:07:11 -0500[diff] [blame]379 /* Read page scan parameters */
380 if (req->hdev->hci_ver > BLUETOOTH_VER_1_1) {
381 hci_req_add(req, HCI_OP_READ_PAGE_SCAN_ACTIVITY, 0, NULL);
382 hci_req_add(req, HCI_OP_READ_PAGE_SCAN_TYPE, 0, NULL);
383 }
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]384}
385
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]386static void le_setup(struct hci_request *req)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]387{
Johan Hedbergc73eee92013-04-19 18:35:21 +0300[diff] [blame]388 struct hci_dev *hdev = req->hdev;
389
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]390 /* Read LE Buffer Size */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]391 hci_req_add(req, HCI_OP_LE_READ_BUFFER_SIZE, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]392
393 /* Read LE Local Supported Features */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]394 hci_req_add(req, HCI_OP_LE_READ_LOCAL_FEATURES, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]395
396 /* Read LE Advertising Channel TX Power */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]397 hci_req_add(req, HCI_OP_LE_READ_ADV_TX_POWER, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]398
399 /* Read LE White List Size */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]400 hci_req_add(req, HCI_OP_LE_READ_WHITE_LIST_SIZE, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]401
402 /* Read LE Supported States */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]403 hci_req_add(req, HCI_OP_LE_READ_SUPPORTED_STATES, 0, NULL);
Johan Hedbergc73eee92013-04-19 18:35:21 +0300[diff] [blame]404
405 /* LE-only controllers have LE implicitly enabled */
406 if (!lmp_bredr_capable(hdev))
407 set_bit(HCI_LE_ENABLED, &hdev->dev_flags);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]408}
409
410static u8 hci_get_inquiry_mode(struct hci_dev *hdev)
411{
412 if (lmp_ext_inq_capable(hdev))
413 return 0x02;
414
415 if (lmp_inq_rssi_capable(hdev))
416 return 0x01;
417
418 if (hdev->manufacturer == 11 && hdev->hci_rev == 0x00 &&
419 hdev->lmp_subver == 0x0757)
420 return 0x01;
421
422 if (hdev->manufacturer == 15) {
423 if (hdev->hci_rev == 0x03 && hdev->lmp_subver == 0x6963)
424 return 0x01;
425 if (hdev->hci_rev == 0x09 && hdev->lmp_subver == 0x6963)
426 return 0x01;
427 if (hdev->hci_rev == 0x00 && hdev->lmp_subver == 0x6965)
428 return 0x01;
429 }
430
431 if (hdev->manufacturer == 31 && hdev->hci_rev == 0x2005 &&
432 hdev->lmp_subver == 0x1805)
433 return 0x01;
434
435 return 0x00;
436}
437
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]438static void hci_setup_inquiry_mode(struct hci_request *req)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]439{
440 u8 mode;
441
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]442 mode = hci_get_inquiry_mode(req->hdev);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]443
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]444 hci_req_add(req, HCI_OP_WRITE_INQUIRY_MODE, 1, &mode);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]445}
446
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]447static void hci_setup_event_mask(struct hci_request *req)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]448{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]449 struct hci_dev *hdev = req->hdev;
450
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]451 /* The second byte is 0xff instead of 0x9f (two reserved bits
452 * disabled) since a Broadcom 1.2 dongle doesn't respond to the
453 * command otherwise.
454 */
455 u8 events[8] = { 0xff, 0xff, 0xfb, 0xff, 0x00, 0x00, 0x00, 0x00 };
456
457 /* CSR 1.1 dongles does not accept any bitfield so don't try to set
458 * any event mask for pre 1.2 devices.
459 */
460 if (hdev->hci_ver < BLUETOOTH_VER_1_2)
461 return;
462
463 if (lmp_bredr_capable(hdev)) {
464 events[4] |= 0x01; /* Flow Specification Complete */
465 events[4] |= 0x02; /* Inquiry Result with RSSI */
466 events[4] |= 0x04; /* Read Remote Extended Features Complete */
467 events[5] |= 0x08; /* Synchronous Connection Complete */
468 events[5] |= 0x10; /* Synchronous Connection Changed */
Marcel Holtmannc7882cb2013-08-13 10:00:54 -0700[diff] [blame]469 } else {
470 /* Use a different default for LE-only devices */
471 memset(events, 0, sizeof(events));
472 events[0] |= 0x10; /* Disconnection Complete */
473 events[0] |= 0x80; /* Encryption Change */
474 events[1] |= 0x08; /* Read Remote Version Information Complete */
475 events[1] |= 0x20; /* Command Complete */
476 events[1] |= 0x40; /* Command Status */
477 events[1] |= 0x80; /* Hardware Error */
478 events[2] |= 0x04; /* Number of Completed Packets */
479 events[3] |= 0x02; /* Data Buffer Overflow */
480 events[5] |= 0x80; /* Encryption Key Refresh Complete */
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]481 }
482
483 if (lmp_inq_rssi_capable(hdev))
484 events[4] |= 0x02; /* Inquiry Result with RSSI */
485
486 if (lmp_sniffsubr_capable(hdev))
487 events[5] |= 0x20; /* Sniff Subrating */
488
489 if (lmp_pause_enc_capable(hdev))
490 events[5] |= 0x80; /* Encryption Key Refresh Complete */
491
492 if (lmp_ext_inq_capable(hdev))
493 events[5] |= 0x40; /* Extended Inquiry Result */
494
495 if (lmp_no_flush_capable(hdev))
496 events[7] |= 0x01; /* Enhanced Flush Complete */
497
498 if (lmp_lsto_capable(hdev))
499 events[6] |= 0x80; /* Link Supervision Timeout Changed */
500
501 if (lmp_ssp_capable(hdev)) {
502 events[6] |= 0x01; /* IO Capability Request */
503 events[6] |= 0x02; /* IO Capability Response */
504 events[6] |= 0x04; /* User Confirmation Request */
505 events[6] |= 0x08; /* User Passkey Request */
506 events[6] |= 0x10; /* Remote OOB Data Request */
507 events[6] |= 0x20; /* Simple Pairing Complete */
508 events[7] |= 0x04; /* User Passkey Notification */
509 events[7] |= 0x08; /* Keypress Notification */
510 events[7] |= 0x10; /* Remote Host Supported
511 * Features Notification
512 */
513 }
514
515 if (lmp_le_capable(hdev))
516 events[7] |= 0x20; /* LE Meta-Event */
517
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]518 hci_req_add(req, HCI_OP_SET_EVENT_MASK, sizeof(events), events);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]519
520 if (lmp_le_capable(hdev)) {
521 memset(events, 0, sizeof(events));
522 events[0] = 0x1f;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]523 hci_req_add(req, HCI_OP_LE_SET_EVENT_MASK,
524 sizeof(events), events);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]525 }
526}
527
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]528static void hci_init2_req(struct hci_request *req, unsigned long opt)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]529{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]530 struct hci_dev *hdev = req->hdev;
531
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]532 if (lmp_bredr_capable(hdev))
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]533 bredr_setup(req);
Johan Hedberg56f87902013-10-02 13:43:13 +0300[diff] [blame]534 else
535 clear_bit(HCI_BREDR_ENABLED, &hdev->dev_flags);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]536
537 if (lmp_le_capable(hdev))
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]538 le_setup(req);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]539
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]540 hci_setup_event_mask(req);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]541
Johan Hedberg3f8e2d72013-07-24 02:32:46 +0300[diff] [blame]542 /* AVM Berlin (31), aka "BlueFRITZ!", doesn't support the read
543 * local supported commands HCI command.
544 */
545 if (hdev->manufacturer != 31 && hdev->hci_ver > BLUETOOTH_VER_1_1)
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]546 hci_req_add(req, HCI_OP_READ_LOCAL_COMMANDS, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]547
548 if (lmp_ssp_capable(hdev)) {
549 if (test_bit(HCI_SSP_ENABLED, &hdev->dev_flags)) {
550 u8 mode = 0x01;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]551 hci_req_add(req, HCI_OP_WRITE_SSP_MODE,
552 sizeof(mode), &mode);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]553 } else {
554 struct hci_cp_write_eir cp;
555
556 memset(hdev->eir, 0, sizeof(hdev->eir));
557 memset(&cp, 0, sizeof(cp));
558
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]559 hci_req_add(req, HCI_OP_WRITE_EIR, sizeof(cp), &cp);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]560 }
561 }
562
563 if (lmp_inq_rssi_capable(hdev))
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]564 hci_setup_inquiry_mode(req);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]565
566 if (lmp_inq_tx_pwr_capable(hdev))
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]567 hci_req_add(req, HCI_OP_READ_INQ_RSP_TX_POWER, 0, NULL);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]568
569 if (lmp_ext_feat_capable(hdev)) {
570 struct hci_cp_read_local_ext_features cp;
571
572 cp.page = 0x01;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]573 hci_req_add(req, HCI_OP_READ_LOCAL_EXT_FEATURES,
574 sizeof(cp), &cp);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]575 }
576
577 if (test_bit(HCI_LINK_SECURITY, &hdev->dev_flags)) {
578 u8 enable = 1;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]579 hci_req_add(req, HCI_OP_WRITE_AUTH_ENABLE, sizeof(enable),
580 &enable);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]581 }
582}
583
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]584static void hci_setup_link_policy(struct hci_request *req)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]585{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]586 struct hci_dev *hdev = req->hdev;
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]587 struct hci_cp_write_def_link_policy cp;
588 u16 link_policy = 0;
589
590 if (lmp_rswitch_capable(hdev))
591 link_policy |= HCI_LP_RSWITCH;
592 if (lmp_hold_capable(hdev))
593 link_policy |= HCI_LP_HOLD;
594 if (lmp_sniff_capable(hdev))
595 link_policy |= HCI_LP_SNIFF;
596 if (lmp_park_capable(hdev))
597 link_policy |= HCI_LP_PARK;
598
599 cp.policy = cpu_to_le16(link_policy);
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]600 hci_req_add(req, HCI_OP_WRITE_DEF_LINK_POLICY, sizeof(cp), &cp);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]601}
602
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]603static void hci_set_le_support(struct hci_request *req)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]604{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]605 struct hci_dev *hdev = req->hdev;
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]606 struct hci_cp_write_le_host_supported cp;
607
Johan Hedbergc73eee92013-04-19 18:35:21 +0300[diff] [blame]608 /* LE-only devices do not support explicit enablement */
609 if (!lmp_bredr_capable(hdev))
610 return;
611
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]612 memset(&cp, 0, sizeof(cp));
613
614 if (test_bit(HCI_LE_ENABLED, &hdev->dev_flags)) {
615 cp.le = 0x01;
616 cp.simul = lmp_le_br_capable(hdev);
617 }
618
619 if (cp.le != lmp_host_le_capable(hdev))
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]620 hci_req_add(req, HCI_OP_WRITE_LE_HOST_SUPPORTED, sizeof(cp),
621 &cp);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]622}
623
Johan Hedbergd62e6d62013-09-13 11:40:02 +0300[diff] [blame]624static void hci_set_event_mask_page_2(struct hci_request *req)
625{
626 struct hci_dev *hdev = req->hdev;
627 u8 events[8] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
628
629 /* If Connectionless Slave Broadcast master role is supported
630 * enable all necessary events for it.
631 */
632 if (hdev->features[2][0] & 0x01) {
633 events[1] |= 0x40; /* Triggered Clock Capture */
634 events[1] |= 0x80; /* Synchronization Train Complete */
635 events[2] |= 0x10; /* Slave Page Response Timeout */
636 events[2] |= 0x20; /* CSB Channel Map Change */
637 }
638
639 /* If Connectionless Slave Broadcast slave role is supported
640 * enable all necessary events for it.
641 */
642 if (hdev->features[2][0] & 0x02) {
643 events[2] |= 0x01; /* Synchronization Train Received */
644 events[2] |= 0x02; /* CSB Receive */
645 events[2] |= 0x04; /* CSB Timeout */
646 events[2] |= 0x08; /* Truncated Page Complete */
647 }
648
649 hci_req_add(req, HCI_OP_SET_EVENT_MASK_PAGE_2, sizeof(events), events);
650}
651
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]652static void hci_init3_req(struct hci_request *req, unsigned long opt)
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]653{
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]654 struct hci_dev *hdev = req->hdev;
Johan Hedbergd2c5d772013-04-17 15:00:52 +0300[diff] [blame]655 u8 p;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]656
Gustavo Padovanb8f4e062013-06-13 12:34:31 +0100[diff] [blame]657 /* Some Broadcom based Bluetooth controllers do not support the
658 * Delete Stored Link Key command. They are clearly indicating its
659 * absence in the bit mask of supported commands.
660 *
661 * Check the supported commands and only if the the command is marked
662 * as supported send it. If not supported assume that the controller
663 * does not have actual support for stored link keys which makes this
664 * command redundant anyway.
Marcel Holtmann637b4ca2013-07-01 14:14:46 -0700[diff] [blame]665 */
Johan Hedberg59f45d52013-06-13 11:01:13 +0300[diff] [blame]666 if (hdev->commands[6] & 0x80) {
667 struct hci_cp_delete_stored_link_key cp;
668
669 bacpy(&cp.bdaddr, BDADDR_ANY);
670 cp.delete_all = 0x01;
671 hci_req_add(req, HCI_OP_DELETE_STORED_LINK_KEY,
672 sizeof(cp), &cp);
673 }
674
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]675 if (hdev->commands[5] & 0x10)
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]676 hci_setup_link_policy(req);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]677
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]678 if (lmp_le_capable(hdev)) {
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]679 hci_set_le_support(req);
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]680 hci_update_ad(req);
681 }
Johan Hedbergd2c5d772013-04-17 15:00:52 +0300[diff] [blame]682
683 /* Read features beyond page 1 if available */
684 for (p = 2; p < HCI_MAX_PAGES && p <= hdev->max_page; p++) {
685 struct hci_cp_read_local_ext_features cp;
686
687 cp.page = p;
688 hci_req_add(req, HCI_OP_READ_LOCAL_EXT_FEATURES,
689 sizeof(cp), &cp);
690 }
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]691}
692
Johan Hedberg5d4e7e82013-09-13 11:40:01 +0300[diff] [blame]693static void hci_init4_req(struct hci_request *req, unsigned long opt)
694{
695 struct hci_dev *hdev = req->hdev;
696
Johan Hedbergd62e6d62013-09-13 11:40:02 +0300[diff] [blame]697 /* Set event mask page 2 if the HCI command for it is supported */
698 if (hdev->commands[22] & 0x04)
699 hci_set_event_mask_page_2(req);
700
Johan Hedberg5d4e7e82013-09-13 11:40:01 +0300[diff] [blame]701 /* Check for Synchronization Train support */
702 if (hdev->features[2][0] & 0x04)
703 hci_req_add(req, HCI_OP_READ_SYNC_TRAIN_PARAMS, 0, NULL);
704}
705
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]706static int __hci_init(struct hci_dev *hdev)
707{
708 int err;
709
710 err = __hci_req_sync(hdev, hci_init1_req, 0, HCI_INIT_TIMEOUT);
711 if (err < 0)
712 return err;
713
714 /* HCI_BREDR covers both single-mode LE, BR/EDR and dual-mode
715 * BR/EDR/LE type controllers. AMP controllers only need the
716 * first stage init.
717 */
718 if (hdev->dev_type != HCI_BREDR)
719 return 0;
720
721 err = __hci_req_sync(hdev, hci_init2_req, 0, HCI_INIT_TIMEOUT);
722 if (err < 0)
723 return err;
724
Johan Hedberg5d4e7e82013-09-13 11:40:01 +0300[diff] [blame]725 err = __hci_req_sync(hdev, hci_init3_req, 0, HCI_INIT_TIMEOUT);
726 if (err < 0)
727 return err;
728
729 return __hci_req_sync(hdev, hci_init4_req, 0, HCI_INIT_TIMEOUT);
Johan Hedberg2177bab2013-03-05 20:37:43 +0200[diff] [blame]730}
731
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]732static void hci_scan_req(struct hci_request *req, unsigned long opt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]733{
734 __u8 scan = opt;
735
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]736 BT_DBG("%s %x", req->hdev->name, scan);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]737
738 /* Inquiry and Page scans */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]739 hci_req_add(req, HCI_OP_WRITE_SCAN_ENABLE, 1, &scan);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]740}
741
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]742static void hci_auth_req(struct hci_request *req, unsigned long opt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]743{
744 __u8 auth = opt;
745
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]746 BT_DBG("%s %x", req->hdev->name, auth);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]747
748 /* Authentication */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]749 hci_req_add(req, HCI_OP_WRITE_AUTH_ENABLE, 1, &auth);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]750}
751
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]752static void hci_encrypt_req(struct hci_request *req, unsigned long opt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]753{
754 __u8 encrypt = opt;
755
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]756 BT_DBG("%s %x", req->hdev->name, encrypt);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]757
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]758 /* Encryption */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]759 hci_req_add(req, HCI_OP_WRITE_ENCRYPT_MODE, 1, &encrypt);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]760}
761
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]762static void hci_linkpol_req(struct hci_request *req, unsigned long opt)
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]763{
764 __le16 policy = cpu_to_le16(opt);
765
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]766 BT_DBG("%s %x", req->hdev->name, policy);
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]767
768 /* Default link policy */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]769 hci_req_add(req, HCI_OP_WRITE_DEF_LINK_POLICY, 2, &policy);
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]770}
771
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]772/* Get HCI device by index.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]773 * Device is held on return. */
774struct hci_dev *hci_dev_get(int index)
775{
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]776 struct hci_dev *hdev = NULL, *d;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]777
778 BT_DBG("%d", index);
779
780 if (index < 0)
781 return NULL;
782
783 read_lock(&hci_dev_list_lock);
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]784 list_for_each_entry(d, &hci_dev_list, list) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]785 if (d->id == index) {
786 hdev = hci_dev_hold(d);
787 break;
788 }
789 }
790 read_unlock(&hci_dev_list_lock);
791 return hdev;
792}
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]793
794/* ---- Inquiry support ---- */
Johan Hedbergff9ef572012-01-04 14:23:45 +0200[diff] [blame]795
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]796bool hci_discovery_active(struct hci_dev *hdev)
797{
798 struct discovery_state *discov = &hdev->discovery;
799
Andre Guedes6fbe1952012-02-03 17:47:58 -0300[diff] [blame]800 switch (discov->state) {
Andre Guedes343f9352012-02-17 20:39:37 -0300[diff] [blame]801 case DISCOVERY_FINDING:
Andre Guedes6fbe1952012-02-03 17:47:58 -0300[diff] [blame]802 case DISCOVERY_RESOLVING:
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]803 return true;
804
Andre Guedes6fbe1952012-02-03 17:47:58 -0300[diff] [blame]805 default:
806 return false;
807 }
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]808}
809
Johan Hedbergff9ef572012-01-04 14:23:45 +0200[diff] [blame]810void hci_discovery_set_state(struct hci_dev *hdev, int state)
811{
812 BT_DBG("%s state %u -> %u", hdev->name, hdev->discovery.state, state);
813
814 if (hdev->discovery.state == state)
815 return;
816
817 switch (state) {
818 case DISCOVERY_STOPPED:
Andre Guedes7b99b652012-02-13 15:41:02 -0300[diff] [blame]819 if (hdev->discovery.state != DISCOVERY_STARTING)
820 mgmt_discovering(hdev, 0);
Johan Hedbergff9ef572012-01-04 14:23:45 +0200[diff] [blame]821 break;
822 case DISCOVERY_STARTING:
823 break;
Andre Guedes343f9352012-02-17 20:39:37 -0300[diff] [blame]824 case DISCOVERY_FINDING:
Johan Hedbergff9ef572012-01-04 14:23:45 +0200[diff] [blame]825 mgmt_discovering(hdev, 1);
826 break;
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]827 case DISCOVERY_RESOLVING:
828 break;
Johan Hedbergff9ef572012-01-04 14:23:45 +0200[diff] [blame]829 case DISCOVERY_STOPPING:
830 break;
831 }
832
833 hdev->discovery.state = state;
834}
835
Andre Guedes1f9b9a52013-04-30 15:29:27 -0300[diff] [blame]836void hci_inquiry_cache_flush(struct hci_dev *hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]837{
Johan Hedberg30883512012-01-04 14:16:21 +0200[diff] [blame]838 struct discovery_state *cache = &hdev->discovery;
Johan Hedbergb57c1a52012-01-03 16:03:00 +0200[diff] [blame]839 struct inquiry_entry *p, *n;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]840
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]841 list_for_each_entry_safe(p, n, &cache->all, all) {
842 list_del(&p->all);
Johan Hedbergb57c1a52012-01-03 16:03:00 +0200[diff] [blame]843 kfree(p);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]844 }
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]845
846 INIT_LIST_HEAD(&cache->unknown);
847 INIT_LIST_HEAD(&cache->resolve);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]848}
849
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]850struct inquiry_entry *hci_inquiry_cache_lookup(struct hci_dev *hdev,
851 bdaddr_t *bdaddr)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]852{
Johan Hedberg30883512012-01-04 14:16:21 +0200[diff] [blame]853 struct discovery_state *cache = &hdev->discovery;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]854 struct inquiry_entry *e;
855
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]856 BT_DBG("cache %p, %pMR", cache, bdaddr);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]857
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]858 list_for_each_entry(e, &cache->all, all) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]859 if (!bacmp(&e->data.bdaddr, bdaddr))
Johan Hedbergb57c1a52012-01-03 16:03:00 +0200[diff] [blame]860 return e;
861 }
862
863 return NULL;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]864}
865
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]866struct inquiry_entry *hci_inquiry_cache_lookup_unknown(struct hci_dev *hdev,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]867 bdaddr_t *bdaddr)
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]868{
Johan Hedberg30883512012-01-04 14:16:21 +0200[diff] [blame]869 struct discovery_state *cache = &hdev->discovery;
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]870 struct inquiry_entry *e;
871
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]872 BT_DBG("cache %p, %pMR", cache, bdaddr);
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]873
874 list_for_each_entry(e, &cache->unknown, list) {
875 if (!bacmp(&e->data.bdaddr, bdaddr))
876 return e;
877 }
878
879 return NULL;
880}
881
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]882struct inquiry_entry *hci_inquiry_cache_lookup_resolve(struct hci_dev *hdev,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]883 bdaddr_t *bdaddr,
884 int state)
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]885{
886 struct discovery_state *cache = &hdev->discovery;
887 struct inquiry_entry *e;
888
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]889 BT_DBG("cache %p bdaddr %pMR state %d", cache, bdaddr, state);
Johan Hedberg30dc78e2012-01-04 15:44:20 +0200[diff] [blame]890
891 list_for_each_entry(e, &cache->resolve, list) {
892 if (!bacmp(bdaddr, BDADDR_ANY) && e->name_state == state)
893 return e;
894 if (!bacmp(&e->data.bdaddr, bdaddr))
895 return e;
896 }
897
898 return NULL;
899}
900
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]901void hci_inquiry_cache_update_resolve(struct hci_dev *hdev,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]902 struct inquiry_entry *ie)
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]903{
904 struct discovery_state *cache = &hdev->discovery;
905 struct list_head *pos = &cache->resolve;
906 struct inquiry_entry *p;
907
908 list_del(&ie->list);
909
910 list_for_each_entry(p, &cache->resolve, list) {
911 if (p->name_state != NAME_PENDING &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]912 abs(p->data.rssi) >= abs(ie->data.rssi))
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]913 break;
914 pos = &p->list;
915 }
916
917 list_add(&ie->list, pos);
918}
919
Johan Hedberg31754052012-01-04 13:39:52 +0200[diff] [blame]920bool hci_inquiry_cache_update(struct hci_dev *hdev, struct inquiry_data *data,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]921 bool name_known, bool *ssp)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]922{
Johan Hedberg30883512012-01-04 14:16:21 +0200[diff] [blame]923 struct discovery_state *cache = &hdev->discovery;
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]924 struct inquiry_entry *ie;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]925
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]926 BT_DBG("cache %p, %pMR", cache, &data->bdaddr);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]927
Szymon Janc2b2fec42012-11-20 11:38:54 +0100[diff] [blame]928 hci_remove_remote_oob_data(hdev, &data->bdaddr);
929
Johan Hedberg388fc8f2012-02-23 00:38:59 +0200[diff] [blame]930 if (ssp)
931 *ssp = data->ssp_mode;
932
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]933 ie = hci_inquiry_cache_lookup(hdev, &data->bdaddr);
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]934 if (ie) {
Johan Hedberg388fc8f2012-02-23 00:38:59 +0200[diff] [blame]935 if (ie->data.ssp_mode && ssp)
936 *ssp = true;
937
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]938 if (ie->name_state == NAME_NEEDED &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]939 data->rssi != ie->data.rssi) {
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]940 ie->data.rssi = data->rssi;
941 hci_inquiry_cache_update_resolve(hdev, ie);
942 }
943
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]944 goto update;
Johan Hedberga3d4e202012-01-09 00:53:02 +0200[diff] [blame]945 }
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]946
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]947 /* Entry not in the cache. Add new one. */
948 ie = kzalloc(sizeof(struct inquiry_entry), GFP_ATOMIC);
949 if (!ie)
Johan Hedberg31754052012-01-04 13:39:52 +0200[diff] [blame]950 return false;
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]951
952 list_add(&ie->all, &cache->all);
953
954 if (name_known) {
955 ie->name_state = NAME_KNOWN;
956 } else {
957 ie->name_state = NAME_NOT_KNOWN;
958 list_add(&ie->list, &cache->unknown);
959 }
960
961update:
962 if (name_known && ie->name_state != NAME_KNOWN &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]963 ie->name_state != NAME_PENDING) {
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]964 ie->name_state = NAME_KNOWN;
965 list_del(&ie->list);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]966 }
967
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]968 memcpy(&ie->data, data, sizeof(*data));
969 ie->timestamp = jiffies;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]970 cache->timestamp = jiffies;
Johan Hedberg31754052012-01-04 13:39:52 +0200[diff] [blame]971
972 if (ie->name_state == NAME_NOT_KNOWN)
973 return false;
974
975 return true;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]976}
977
978static int inquiry_cache_dump(struct hci_dev *hdev, int num, __u8 *buf)
979{
Johan Hedberg30883512012-01-04 14:16:21 +0200[diff] [blame]980 struct discovery_state *cache = &hdev->discovery;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]981 struct inquiry_info *info = (struct inquiry_info *) buf;
982 struct inquiry_entry *e;
983 int copied = 0;
984
Johan Hedberg561aafb2012-01-04 13:31:59 +0200[diff] [blame]985 list_for_each_entry(e, &cache->all, all) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]986 struct inquiry_data *data = &e->data;
Johan Hedbergb57c1a52012-01-03 16:03:00 +0200[diff] [blame]987
988 if (copied >= num)
989 break;
990
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]991 bacpy(&info->bdaddr, &data->bdaddr);
992 info->pscan_rep_mode = data->pscan_rep_mode;
993 info->pscan_period_mode = data->pscan_period_mode;
994 info->pscan_mode = data->pscan_mode;
995 memcpy(info->dev_class, data->dev_class, 3);
996 info->clock_offset = data->clock_offset;
Johan Hedbergb57c1a52012-01-03 16:03:00 +0200[diff] [blame]997
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]998 info++;
Johan Hedbergb57c1a52012-01-03 16:03:00 +0200[diff] [blame]999 copied++;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1000 }
1001
1002 BT_DBG("cache %p, copied %d", cache, copied);
1003 return copied;
1004}
1005
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]1006static void hci_inq_req(struct hci_request *req, unsigned long opt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1007{
1008 struct hci_inquiry_req *ir = (struct hci_inquiry_req *) opt;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]1009 struct hci_dev *hdev = req->hdev;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1010 struct hci_cp_inquiry cp;
1011
1012 BT_DBG("%s", hdev->name);
1013
1014 if (test_bit(HCI_INQUIRY, &hdev->flags))
1015 return;
1016
1017 /* Start Inquiry */
1018 memcpy(&cp.lap, &ir->lap, 3);
1019 cp.length = ir->length;
1020 cp.num_rsp = ir->num_rsp;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]1021 hci_req_add(req, HCI_OP_INQUIRY, sizeof(cp), &cp);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1022}
1023
Andre Guedes3e13fa12013-03-27 20:04:56 -0300[diff] [blame]1024static int wait_inquiry(void *word)
1025{
1026 schedule();
1027 return signal_pending(current);
1028}
1029
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1030int hci_inquiry(void __user *arg)
1031{
1032 __u8 __user *ptr = arg;
1033 struct hci_inquiry_req ir;
1034 struct hci_dev *hdev;
1035 int err = 0, do_inquiry = 0, max_rsp;
1036 long timeo;
1037 __u8 *buf;
1038
1039 if (copy_from_user(&ir, ptr, sizeof(ir)))
1040 return -EFAULT;
1041
Andrei Emeltchenko5a08ecc2011-01-11 17:20:20 +0200[diff] [blame]1042 hdev = hci_dev_get(ir.dev_id);
1043 if (!hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1044 return -ENODEV;
1045
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1046 if (test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
1047 err = -EBUSY;
1048 goto done;
1049 }
1050
Marcel Holtmann5b69bef52013-10-10 10:02:08 -0700[diff] [blame]1051 if (hdev->dev_type != HCI_BREDR) {
1052 err = -EOPNOTSUPP;
1053 goto done;
1054 }
1055
Johan Hedberg56f87902013-10-02 13:43:13 +0300[diff] [blame]1056 if (!test_bit(HCI_BREDR_ENABLED, &hdev->dev_flags)) {
1057 err = -EOPNOTSUPP;
1058 goto done;
1059 }
1060
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1061 hci_dev_lock(hdev);
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]1062 if (inquiry_cache_age(hdev) > INQUIRY_CACHE_AGE_MAX ||
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1063 inquiry_cache_empty(hdev) || ir.flags & IREQ_CACHE_FLUSH) {
Andre Guedes1f9b9a52013-04-30 15:29:27 -0300[diff] [blame]1064 hci_inquiry_cache_flush(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1065 do_inquiry = 1;
1066 }
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1067 hci_dev_unlock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1068
Marcel Holtmann04837f62006-07-03 10:02:33 +0200[diff] [blame]1069 timeo = ir.length * msecs_to_jiffies(2000);
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1070
1071 if (do_inquiry) {
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1072 err = hci_req_sync(hdev, hci_inq_req, (unsigned long) &ir,
1073 timeo);
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1074 if (err < 0)
1075 goto done;
Andre Guedes3e13fa12013-03-27 20:04:56 -0300[diff] [blame]1076
1077 /* Wait until Inquiry procedure finishes (HCI_INQUIRY flag is
1078 * cleared). If it is interrupted by a signal, return -EINTR.
1079 */
1080 if (wait_on_bit(&hdev->flags, HCI_INQUIRY, wait_inquiry,
1081 TASK_INTERRUPTIBLE))
1082 return -EINTR;
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1083 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1084
Gustavo Padovan8fc9ced2012-05-23 04:04:21 -0300[diff] [blame]1085 /* for unlimited number of responses we will use buffer with
1086 * 255 entries
1087 */
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1088 max_rsp = (ir.num_rsp == 0) ? 255 : ir.num_rsp;
1089
1090 /* cache_dump can't sleep. Therefore we allocate temp buffer and then
1091 * copy it to the user space.
1092 */
Szymon Janc01df8c32011-02-17 16:46:47 +0100[diff] [blame]1093 buf = kmalloc(sizeof(struct inquiry_info) * max_rsp, GFP_KERNEL);
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1094 if (!buf) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1095 err = -ENOMEM;
1096 goto done;
1097 }
1098
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1099 hci_dev_lock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1100 ir.num_rsp = inquiry_cache_dump(hdev, max_rsp, buf);
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1101 hci_dev_unlock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1102
1103 BT_DBG("num_rsp %d", ir.num_rsp);
1104
1105 if (!copy_to_user(ptr, &ir, sizeof(ir))) {
1106 ptr += sizeof(ir);
1107 if (copy_to_user(ptr, buf, sizeof(struct inquiry_info) *
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1108 ir.num_rsp))
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1109 err = -EFAULT;
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]1110 } else
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1111 err = -EFAULT;
1112
1113 kfree(buf);
1114
1115done:
1116 hci_dev_put(hdev);
1117 return err;
1118}
1119
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1120static u8 create_ad(struct hci_dev *hdev, u8 *ptr)
1121{
1122 u8 ad_len = 0, flags = 0;
1123 size_t name_len;
1124
Johan Hedbergf3d3444a2013-10-05 12:01:04 +0200[diff] [blame]1125 if (test_bit(HCI_ADVERTISING, &hdev->dev_flags))
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1126 flags |= LE_AD_GENERAL;
1127
Johan Hedberg11802b22013-10-02 16:02:24 +0300[diff] [blame]1128 if (test_bit(HCI_BREDR_ENABLED, &hdev->dev_flags)) {
1129 if (lmp_le_br_capable(hdev))
1130 flags |= LE_AD_SIM_LE_BREDR_CTRL;
1131 if (lmp_host_le_br_capable(hdev))
1132 flags |= LE_AD_SIM_LE_BREDR_HOST;
1133 } else {
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1134 flags |= LE_AD_NO_BREDR;
Johan Hedberg11802b22013-10-02 16:02:24 +0300[diff] [blame]1135 }
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1136
1137 if (flags) {
1138 BT_DBG("adv flags 0x%02x", flags);
1139
1140 ptr[0] = 2;
1141 ptr[1] = EIR_FLAGS;
1142 ptr[2] = flags;
1143
1144 ad_len += 3;
1145 ptr += 3;
1146 }
1147
1148 if (hdev->adv_tx_power != HCI_TX_POWER_INVALID) {
1149 ptr[0] = 2;
1150 ptr[1] = EIR_TX_POWER;
1151 ptr[2] = (u8) hdev->adv_tx_power;
1152
1153 ad_len += 3;
1154 ptr += 3;
1155 }
1156
1157 name_len = strlen(hdev->dev_name);
1158 if (name_len > 0) {
1159 size_t max_len = HCI_MAX_AD_LENGTH - ad_len - 2;
1160
1161 if (name_len > max_len) {
1162 name_len = max_len;
1163 ptr[1] = EIR_NAME_SHORT;
1164 } else
1165 ptr[1] = EIR_NAME_COMPLETE;
1166
1167 ptr[0] = name_len + 1;
1168
1169 memcpy(ptr + 2, hdev->dev_name, name_len);
1170
1171 ad_len += (name_len + 2);
1172 ptr += (name_len + 2);
1173 }
1174
1175 return ad_len;
1176}
1177
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]1178void hci_update_ad(struct hci_request *req)
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1179{
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]1180 struct hci_dev *hdev = req->hdev;
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1181 struct hci_cp_le_set_adv_data cp;
1182 u8 len;
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1183
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]1184 if (!lmp_le_capable(hdev))
1185 return;
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1186
1187 memset(&cp, 0, sizeof(cp));
1188
1189 len = create_ad(hdev, cp.data);
1190
1191 if (hdev->adv_data_len == len &&
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]1192 memcmp(cp.data, hdev->adv_data, len) == 0)
1193 return;
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1194
1195 memcpy(hdev->adv_data, cp.data, sizeof(cp.data));
1196 hdev->adv_data_len = len;
1197
1198 cp.length = len;
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1199
Johan Hedberg04b4edc2013-03-15 17:07:01 -0500[diff] [blame]1200 hci_req_add(req, HCI_OP_LE_SET_ADV_DATA, sizeof(cp), &cp);
Johan Hedberg3f0f5242012-11-08 01:23:00 +0100[diff] [blame]1201}
1202
Johan Hedbergcbed0ca2013-10-01 22:44:49 +0300[diff] [blame]1203static int hci_dev_do_open(struct hci_dev *hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1204{
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1205 int ret = 0;
1206
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1207 BT_DBG("%s %p", hdev->name, hdev);
1208
1209 hci_req_lock(hdev);
1210
Johan Hovold94324962012-03-15 14:48:41 +0100[diff] [blame]1211 if (test_bit(HCI_UNREGISTER, &hdev->dev_flags)) {
1212 ret = -ENODEV;
1213 goto done;
1214 }
1215
Marcel Holtmanna5c8f272013-10-06 01:08:57 -0700[diff] [blame]1216 if (!test_bit(HCI_SETUP, &hdev->dev_flags)) {
1217 /* Check for rfkill but allow the HCI setup stage to
1218 * proceed (which in itself doesn't cause any RF activity).
1219 */
1220 if (test_bit(HCI_RFKILLED, &hdev->dev_flags)) {
1221 ret = -ERFKILL;
1222 goto done;
1223 }
1224
1225 /* Check for valid public address or a configured static
1226 * random adddress, but let the HCI setup proceed to
1227 * be able to determine if there is a public address
1228 * or not.
1229 *
1230 * This check is only valid for BR/EDR controllers
1231 * since AMP controllers do not have an address.
1232 */
1233 if (hdev->dev_type == HCI_BREDR &&
1234 !bacmp(&hdev->bdaddr, BDADDR_ANY) &&
1235 !bacmp(&hdev->static_addr, BDADDR_ANY)) {
1236 ret = -EADDRNOTAVAIL;
1237 goto done;
1238 }
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]1239 }
1240
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1241 if (test_bit(HCI_UP, &hdev->flags)) {
1242 ret = -EALREADY;
1243 goto done;
1244 }
1245
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1246 if (hdev->open(hdev)) {
1247 ret = -EIO;
1248 goto done;
1249 }
1250
Marcel Holtmannf41c70c2012-11-12 14:02:14 +0900[diff] [blame]1251 atomic_set(&hdev->cmd_cnt, 1);
1252 set_bit(HCI_INIT, &hdev->flags);
1253
1254 if (hdev->setup && test_bit(HCI_SETUP, &hdev->dev_flags))
1255 ret = hdev->setup(hdev);
1256
1257 if (!ret) {
Marcel Holtmannf41c70c2012-11-12 14:02:14 +0900[diff] [blame]1258 if (test_bit(HCI_QUIRK_RAW_DEVICE, &hdev->quirks))
1259 set_bit(HCI_RAW, &hdev->flags);
1260
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1261 if (!test_bit(HCI_RAW, &hdev->flags) &&
1262 !test_bit(HCI_USER_CHANNEL, &hdev->dev_flags))
Marcel Holtmannf41c70c2012-11-12 14:02:14 +0900[diff] [blame]1263 ret = __hci_init(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1264 }
1265
Marcel Holtmannf41c70c2012-11-12 14:02:14 +0900[diff] [blame]1266 clear_bit(HCI_INIT, &hdev->flags);
1267
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1268 if (!ret) {
1269 hci_dev_hold(hdev);
1270 set_bit(HCI_UP, &hdev->flags);
1271 hci_notify(hdev, HCI_DEV_UP);
Andrei Emeltchenkobb4b2a92012-07-19 17:03:40 +0300[diff] [blame]1272 if (!test_bit(HCI_SETUP, &hdev->dev_flags) &&
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1273 !test_bit(HCI_USER_CHANNEL, &hdev->dev_flags) &&
Marcel Holtmann1514b892013-10-06 08:25:01 -0700[diff] [blame]1274 hdev->dev_type == HCI_BREDR) {
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1275 hci_dev_lock(hdev);
Johan Hedberg744cf192011-11-08 20:40:14 +0200[diff] [blame]1276 mgmt_powered(hdev, 1);
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1277 hci_dev_unlock(hdev);
Johan Hedberg56e5cb82011-11-08 20:40:16 +0200[diff] [blame]1278 }
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]1279 } else {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1280 /* Init failed, cleanup */
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]1281 flush_work(&hdev->tx_work);
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]1282 flush_work(&hdev->cmd_work);
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]1283 flush_work(&hdev->rx_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1284
1285 skb_queue_purge(&hdev->cmd_q);
1286 skb_queue_purge(&hdev->rx_q);
1287
1288 if (hdev->flush)
1289 hdev->flush(hdev);
1290
1291 if (hdev->sent_cmd) {
1292 kfree_skb(hdev->sent_cmd);
1293 hdev->sent_cmd = NULL;
1294 }
1295
1296 hdev->close(hdev);
1297 hdev->flags = 0;
1298 }
1299
1300done:
1301 hci_req_unlock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1302 return ret;
1303}
1304
Johan Hedbergcbed0ca2013-10-01 22:44:49 +0300[diff] [blame]1305/* ---- HCI ioctl helpers ---- */
1306
1307int hci_dev_open(__u16 dev)
1308{
1309 struct hci_dev *hdev;
1310 int err;
1311
1312 hdev = hci_dev_get(dev);
1313 if (!hdev)
1314 return -ENODEV;
1315
Johan Hedberge1d08f42013-10-01 22:44:50 +0300[diff] [blame]1316 /* We need to ensure that no other power on/off work is pending
1317 * before proceeding to call hci_dev_do_open. This is
1318 * particularly important if the setup procedure has not yet
1319 * completed.
1320 */
1321 if (test_and_clear_bit(HCI_AUTO_OFF, &hdev->dev_flags))
1322 cancel_delayed_work(&hdev->power_off);
1323
Marcel Holtmanna5c8f272013-10-06 01:08:57 -0700[diff] [blame]1324 /* After this call it is guaranteed that the setup procedure
1325 * has finished. This means that error conditions like RFKILL
1326 * or no valid public or static random address apply.
1327 */
Johan Hedberge1d08f42013-10-01 22:44:50 +0300[diff] [blame]1328 flush_workqueue(hdev->req_workqueue);
1329
Johan Hedbergcbed0ca2013-10-01 22:44:49 +0300[diff] [blame]1330 err = hci_dev_do_open(hdev);
1331
1332 hci_dev_put(hdev);
1333
1334 return err;
1335}
1336
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1337static int hci_dev_do_close(struct hci_dev *hdev)
1338{
1339 BT_DBG("%s %p", hdev->name, hdev);
1340
Vinicius Costa Gomes78c04c02012-09-14 16:34:46 -0300[diff] [blame]1341 cancel_delayed_work(&hdev->power_off);
1342
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1343 hci_req_cancel(hdev, ENODEV);
1344 hci_req_lock(hdev);
1345
1346 if (!test_and_clear_bit(HCI_UP, &hdev->flags)) {
Vinicius Costa Gomesb79f44c2011-04-11 18:46:55 -0300[diff] [blame]1347 del_timer_sync(&hdev->cmd_timer);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1348 hci_req_unlock(hdev);
1349 return 0;
1350 }
1351
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]1352 /* Flush RX and TX works */
1353 flush_work(&hdev->tx_work);
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]1354 flush_work(&hdev->rx_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1355
Johan Hedberg16ab91a2011-11-07 22:16:02 +0200[diff] [blame]1356 if (hdev->discov_timeout > 0) {
Johan Hedberge0f93092011-11-09 01:44:22 +0200[diff] [blame]1357 cancel_delayed_work(&hdev->discov_off);
Johan Hedberg16ab91a2011-11-07 22:16:02 +0200[diff] [blame]1358 hdev->discov_timeout = 0;
Johan Hedberg5e5282b2012-02-21 16:01:30 +0200[diff] [blame]1359 clear_bit(HCI_DISCOVERABLE, &hdev->dev_flags);
Johan Hedberg16ab91a2011-11-07 22:16:02 +0200[diff] [blame]1360 }
1361
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]1362 if (test_and_clear_bit(HCI_SERVICE_CACHE, &hdev->dev_flags))
Johan Hedberg7d785252011-12-15 00:47:39 +0200[diff] [blame]1363 cancel_delayed_work(&hdev->service_cache);
1364
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]1365 cancel_delayed_work_sync(&hdev->le_scan_disable);
1366
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1367 hci_dev_lock(hdev);
Andre Guedes1f9b9a52013-04-30 15:29:27 -0300[diff] [blame]1368 hci_inquiry_cache_flush(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1369 hci_conn_hash_flush(hdev);
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1370 hci_dev_unlock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1371
1372 hci_notify(hdev, HCI_DEV_DOWN);
1373
1374 if (hdev->flush)
1375 hdev->flush(hdev);
1376
1377 /* Reset device */
1378 skb_queue_purge(&hdev->cmd_q);
1379 atomic_set(&hdev->cmd_cnt, 1);
Johan Hedberg8af59462012-02-03 21:29:40 +0200[diff] [blame]1380 if (!test_bit(HCI_RAW, &hdev->flags) &&
Marcel Holtmann3a6afbd2013-10-11 09:44:12 -0700[diff] [blame^]1381 !test_bit(HCI_AUTO_OFF, &hdev->dev_flags) &&
Szymon Janca6c511c2012-05-23 12:35:46 +0200[diff] [blame]1382 test_bit(HCI_QUIRK_RESET_ON_CLOSE, &hdev->quirks)) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1383 set_bit(HCI_INIT, &hdev->flags);
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1384 __hci_req_sync(hdev, hci_reset_req, 0, HCI_CMD_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1385 clear_bit(HCI_INIT, &hdev->flags);
1386 }
1387
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]1388 /* flush cmd work */
1389 flush_work(&hdev->cmd_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1390
1391 /* Drop queues */
1392 skb_queue_purge(&hdev->rx_q);
1393 skb_queue_purge(&hdev->cmd_q);
1394 skb_queue_purge(&hdev->raw_q);
1395
1396 /* Drop last sent command */
1397 if (hdev->sent_cmd) {
Vinicius Costa Gomesb79f44c2011-04-11 18:46:55 -0300[diff] [blame]1398 del_timer_sync(&hdev->cmd_timer);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1399 kfree_skb(hdev->sent_cmd);
1400 hdev->sent_cmd = NULL;
1401 }
1402
Johan Hedbergb6ddb632013-04-02 13:34:31 +0300[diff] [blame]1403 kfree_skb(hdev->recv_evt);
1404 hdev->recv_evt = NULL;
1405
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1406 /* After this point our queues are empty
1407 * and no tasks are scheduled. */
1408 hdev->close(hdev);
1409
Johan Hedberg35b973c2013-03-15 17:06:59 -0500[diff] [blame]1410 /* Clear flags */
1411 hdev->flags = 0;
1412 hdev->dev_flags &= ~HCI_PERSISTENT_MASK;
1413
Marcel Holtmann93c311a2013-10-07 00:58:33 -0700[diff] [blame]1414 if (!test_and_clear_bit(HCI_AUTO_OFF, &hdev->dev_flags)) {
1415 if (hdev->dev_type == HCI_BREDR) {
1416 hci_dev_lock(hdev);
1417 mgmt_powered(hdev, 0);
1418 hci_dev_unlock(hdev);
1419 }
Marcel Holtmann8ee56542012-02-21 12:33:48 +0100[diff] [blame]1420 }
Johan Hedberg5add6af2010-12-16 10:00:37 +0200[diff] [blame]1421
Andrei Emeltchenkoced5c332012-11-28 17:59:42 +0200[diff] [blame]1422 /* Controller radio is available but is currently powered down */
Marcel Holtmann536619e2013-10-05 11:47:45 -0700[diff] [blame]1423 hdev->amp_status = AMP_STATUS_POWERED_DOWN;
Andrei Emeltchenkoced5c332012-11-28 17:59:42 +0200[diff] [blame]1424
Johan Hedberge59fda82012-02-22 18:11:53 +0200[diff] [blame]1425 memset(hdev->eir, 0, sizeof(hdev->eir));
Johan Hedberg09b3c3f2012-02-22 22:01:41 +0200[diff] [blame]1426 memset(hdev->dev_class, 0, sizeof(hdev->dev_class));
Johan Hedberge59fda82012-02-22 18:11:53 +0200[diff] [blame]1427
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1428 hci_req_unlock(hdev);
1429
1430 hci_dev_put(hdev);
1431 return 0;
1432}
1433
1434int hci_dev_close(__u16 dev)
1435{
1436 struct hci_dev *hdev;
1437 int err;
1438
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1439 hdev = hci_dev_get(dev);
1440 if (!hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1441 return -ENODEV;
Marcel Holtmann8ee56542012-02-21 12:33:48 +0100[diff] [blame]1442
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1443 if (test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
1444 err = -EBUSY;
1445 goto done;
1446 }
1447
Marcel Holtmann8ee56542012-02-21 12:33:48 +0100[diff] [blame]1448 if (test_and_clear_bit(HCI_AUTO_OFF, &hdev->dev_flags))
1449 cancel_delayed_work(&hdev->power_off);
1450
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1451 err = hci_dev_do_close(hdev);
Marcel Holtmann8ee56542012-02-21 12:33:48 +0100[diff] [blame]1452
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1453done:
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1454 hci_dev_put(hdev);
1455 return err;
1456}
1457
1458int hci_dev_reset(__u16 dev)
1459{
1460 struct hci_dev *hdev;
1461 int ret = 0;
1462
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1463 hdev = hci_dev_get(dev);
1464 if (!hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1465 return -ENODEV;
1466
1467 hci_req_lock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1468
Marcel Holtmann808a0492013-08-26 20:57:58 -0700[diff] [blame]1469 if (!test_bit(HCI_UP, &hdev->flags)) {
1470 ret = -ENETDOWN;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1471 goto done;
Marcel Holtmann808a0492013-08-26 20:57:58 -0700[diff] [blame]1472 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1473
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1474 if (test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
1475 ret = -EBUSY;
1476 goto done;
1477 }
1478
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1479 /* Drop queues */
1480 skb_queue_purge(&hdev->rx_q);
1481 skb_queue_purge(&hdev->cmd_q);
1482
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1483 hci_dev_lock(hdev);
Andre Guedes1f9b9a52013-04-30 15:29:27 -0300[diff] [blame]1484 hci_inquiry_cache_flush(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1485 hci_conn_hash_flush(hdev);
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1486 hci_dev_unlock(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1487
1488 if (hdev->flush)
1489 hdev->flush(hdev);
1490
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]1491 atomic_set(&hdev->cmd_cnt, 1);
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]1492 hdev->acl_cnt = 0; hdev->sco_cnt = 0; hdev->le_cnt = 0;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1493
1494 if (!test_bit(HCI_RAW, &hdev->flags))
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1495 ret = __hci_req_sync(hdev, hci_reset_req, 0, HCI_INIT_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1496
1497done:
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1498 hci_req_unlock(hdev);
1499 hci_dev_put(hdev);
1500 return ret;
1501}
1502
1503int hci_dev_reset_stat(__u16 dev)
1504{
1505 struct hci_dev *hdev;
1506 int ret = 0;
1507
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1508 hdev = hci_dev_get(dev);
1509 if (!hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1510 return -ENODEV;
1511
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1512 if (test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
1513 ret = -EBUSY;
1514 goto done;
1515 }
1516
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1517 memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));
1518
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1519done:
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1520 hci_dev_put(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1521 return ret;
1522}
1523
1524int hci_dev_cmd(unsigned int cmd, void __user *arg)
1525{
1526 struct hci_dev *hdev;
1527 struct hci_dev_req dr;
1528 int err = 0;
1529
1530 if (copy_from_user(&dr, arg, sizeof(dr)))
1531 return -EFAULT;
1532
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1533 hdev = hci_dev_get(dr.dev_id);
1534 if (!hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1535 return -ENODEV;
1536
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1537 if (test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
1538 err = -EBUSY;
1539 goto done;
1540 }
1541
Marcel Holtmann5b69bef52013-10-10 10:02:08 -0700[diff] [blame]1542 if (hdev->dev_type != HCI_BREDR) {
1543 err = -EOPNOTSUPP;
1544 goto done;
1545 }
1546
Johan Hedberg56f87902013-10-02 13:43:13 +0300[diff] [blame]1547 if (!test_bit(HCI_BREDR_ENABLED, &hdev->dev_flags)) {
1548 err = -EOPNOTSUPP;
1549 goto done;
1550 }
1551
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1552 switch (cmd) {
1553 case HCISETAUTH:
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1554 err = hci_req_sync(hdev, hci_auth_req, dr.dev_opt,
1555 HCI_INIT_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1556 break;
1557
1558 case HCISETENCRYPT:
1559 if (!lmp_encrypt_capable(hdev)) {
1560 err = -EOPNOTSUPP;
1561 break;
1562 }
1563
1564 if (!test_bit(HCI_AUTH, &hdev->flags)) {
1565 /* Auth must be enabled first */
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1566 err = hci_req_sync(hdev, hci_auth_req, dr.dev_opt,
1567 HCI_INIT_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1568 if (err)
1569 break;
1570 }
1571
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1572 err = hci_req_sync(hdev, hci_encrypt_req, dr.dev_opt,
1573 HCI_INIT_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1574 break;
1575
1576 case HCISETSCAN:
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1577 err = hci_req_sync(hdev, hci_scan_req, dr.dev_opt,
1578 HCI_INIT_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1579 break;
1580
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]1581 case HCISETLINKPOL:
Johan Hedberg01178cd2013-03-05 20:37:41 +0200[diff] [blame]1582 err = hci_req_sync(hdev, hci_linkpol_req, dr.dev_opt,
1583 HCI_INIT_TIMEOUT);
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]1584 break;
1585
1586 case HCISETLINKMODE:
1587 hdev->link_mode = ((__u16) dr.dev_opt) &
1588 (HCI_LM_MASTER | HCI_LM_ACCEPT);
1589 break;
1590
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1591 case HCISETPTYPE:
1592 hdev->pkt_type = (__u16) dr.dev_opt;
1593 break;
1594
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1595 case HCISETACLMTU:
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]1596 hdev->acl_mtu = *((__u16 *) &dr.dev_opt + 1);
1597 hdev->acl_pkts = *((__u16 *) &dr.dev_opt + 0);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1598 break;
1599
1600 case HCISETSCOMTU:
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]1601 hdev->sco_mtu = *((__u16 *) &dr.dev_opt + 1);
1602 hdev->sco_pkts = *((__u16 *) &dr.dev_opt + 0);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1603 break;
1604
1605 default:
1606 err = -EINVAL;
1607 break;
1608 }
Marcel Holtmanne4e8e372008-07-14 20:13:47 +0200[diff] [blame]1609
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1610done:
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1611 hci_dev_put(hdev);
1612 return err;
1613}
1614
1615int hci_get_dev_list(void __user *arg)
1616{
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]1617 struct hci_dev *hdev;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1618 struct hci_dev_list_req *dl;
1619 struct hci_dev_req *dr;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1620 int n = 0, size, err;
1621 __u16 dev_num;
1622
1623 if (get_user(dev_num, (__u16 __user *) arg))
1624 return -EFAULT;
1625
1626 if (!dev_num || dev_num > (PAGE_SIZE * 2) / sizeof(*dr))
1627 return -EINVAL;
1628
1629 size = sizeof(*dl) + dev_num * sizeof(*dr);
1630
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1631 dl = kzalloc(size, GFP_KERNEL);
1632 if (!dl)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1633 return -ENOMEM;
1634
1635 dr = dl->dev_req;
1636
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]1637 read_lock(&hci_dev_list_lock);
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]1638 list_for_each_entry(hdev, &hci_dev_list, list) {
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]1639 if (test_and_clear_bit(HCI_AUTO_OFF, &hdev->dev_flags))
Johan Hedberge0f93092011-11-09 01:44:22 +0200[diff] [blame]1640 cancel_delayed_work(&hdev->power_off);
Johan Hedbergc542a062011-01-26 13:11:03 +0200[diff] [blame]1641
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]1642 if (!test_bit(HCI_MGMT, &hdev->dev_flags))
1643 set_bit(HCI_PAIRABLE, &hdev->dev_flags);
Johan Hedbergc542a062011-01-26 13:11:03 +0200[diff] [blame]1644
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1645 (dr + n)->dev_id = hdev->id;
1646 (dr + n)->dev_opt = hdev->flags;
Johan Hedbergc542a062011-01-26 13:11:03 +0200[diff] [blame]1647
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1648 if (++n >= dev_num)
1649 break;
1650 }
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]1651 read_unlock(&hci_dev_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1652
1653 dl->dev_num = n;
1654 size = sizeof(*dl) + n * sizeof(*dr);
1655
1656 err = copy_to_user(arg, dl, size);
1657 kfree(dl);
1658
1659 return err ? -EFAULT : 0;
1660}
1661
1662int hci_get_dev_info(void __user *arg)
1663{
1664 struct hci_dev *hdev;
1665 struct hci_dev_info di;
1666 int err = 0;
1667
1668 if (copy_from_user(&di, arg, sizeof(di)))
1669 return -EFAULT;
1670
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]1671 hdev = hci_dev_get(di.dev_id);
1672 if (!hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1673 return -ENODEV;
1674
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]1675 if (test_and_clear_bit(HCI_AUTO_OFF, &hdev->dev_flags))
Johan Hedberg32435532011-11-07 22:16:04 +0200[diff] [blame]1676 cancel_delayed_work_sync(&hdev->power_off);
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1677
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]1678 if (!test_bit(HCI_MGMT, &hdev->dev_flags))
1679 set_bit(HCI_PAIRABLE, &hdev->dev_flags);
Johan Hedbergc542a062011-01-26 13:11:03 +0200[diff] [blame]1680
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1681 strcpy(di.name, hdev->name);
1682 di.bdaddr = hdev->bdaddr;
Marcel Holtmann60f2a3e2013-10-01 22:59:20 -0700[diff] [blame]1683 di.type = (hdev->bus & 0x0f) | ((hdev->dev_type & 0x03) << 4);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1684 di.flags = hdev->flags;
1685 di.pkt_type = hdev->pkt_type;
Johan Hedberg572c7f82012-10-19 20:57:46 +0300[diff] [blame]1686 if (lmp_bredr_capable(hdev)) {
1687 di.acl_mtu = hdev->acl_mtu;
1688 di.acl_pkts = hdev->acl_pkts;
1689 di.sco_mtu = hdev->sco_mtu;
1690 di.sco_pkts = hdev->sco_pkts;
1691 } else {
1692 di.acl_mtu = hdev->le_mtu;
1693 di.acl_pkts = hdev->le_pkts;
1694 di.sco_mtu = 0;
1695 di.sco_pkts = 0;
1696 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1697 di.link_policy = hdev->link_policy;
1698 di.link_mode = hdev->link_mode;
1699
1700 memcpy(&di.stat, &hdev->stat, sizeof(di.stat));
1701 memcpy(&di.features, &hdev->features, sizeof(di.features));
1702
1703 if (copy_to_user(arg, &di, sizeof(di)))
1704 err = -EFAULT;
1705
1706 hci_dev_put(hdev);
1707
1708 return err;
1709}
1710
1711/* ---- Interface to HCI drivers ---- */
1712
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]1713static int hci_rfkill_set_block(void *data, bool blocked)
1714{
1715 struct hci_dev *hdev = data;
1716
1717 BT_DBG("%p name %s blocked %d", hdev, hdev->name, blocked);
1718
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]1719 if (test_bit(HCI_USER_CHANNEL, &hdev->dev_flags))
1720 return -EBUSY;
1721
Johan Hedberg5e130362013-09-13 08:58:17 +0300[diff] [blame]1722 if (blocked) {
1723 set_bit(HCI_RFKILLED, &hdev->dev_flags);
Johan Hedbergbf543032013-09-13 08:58:18 +0300[diff] [blame]1724 if (!test_bit(HCI_SETUP, &hdev->dev_flags))
1725 hci_dev_do_close(hdev);
Johan Hedberg5e130362013-09-13 08:58:17 +0300[diff] [blame]1726 } else {
1727 clear_bit(HCI_RFKILLED, &hdev->dev_flags);
Gustavo Padovan1025c042013-09-27 11:56:14 -0300[diff] [blame]1728 }
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]1729
1730 return 0;
1731}
1732
1733static const struct rfkill_ops hci_rfkill_ops = {
1734 .set_block = hci_rfkill_set_block,
1735};
1736
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1737static void hci_power_on(struct work_struct *work)
1738{
1739 struct hci_dev *hdev = container_of(work, struct hci_dev, power_on);
Johan Hedberg96570ff2013-05-29 09:51:29 +0300[diff] [blame]1740 int err;
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1741
1742 BT_DBG("%s", hdev->name);
1743
Johan Hedbergcbed0ca2013-10-01 22:44:49 +0300[diff] [blame]1744 err = hci_dev_do_open(hdev);
Johan Hedberg96570ff2013-05-29 09:51:29 +0300[diff] [blame]1745 if (err < 0) {
1746 mgmt_set_powered_failed(hdev, err);
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1747 return;
Johan Hedberg96570ff2013-05-29 09:51:29 +0300[diff] [blame]1748 }
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1749
Marcel Holtmanna5c8f272013-10-06 01:08:57 -0700[diff] [blame]1750 /* During the HCI setup phase, a few error conditions are
1751 * ignored and they need to be checked now. If they are still
1752 * valid, it is important to turn the device back off.
1753 */
1754 if (test_bit(HCI_RFKILLED, &hdev->dev_flags) ||
1755 (hdev->dev_type == HCI_BREDR &&
1756 !bacmp(&hdev->bdaddr, BDADDR_ANY) &&
1757 !bacmp(&hdev->static_addr, BDADDR_ANY))) {
Johan Hedbergbf543032013-09-13 08:58:18 +0300[diff] [blame]1758 clear_bit(HCI_AUTO_OFF, &hdev->dev_flags);
1759 hci_dev_do_close(hdev);
1760 } else if (test_bit(HCI_AUTO_OFF, &hdev->dev_flags)) {
Johan Hedberg19202572013-01-14 22:33:51 +0200[diff] [blame]1761 queue_delayed_work(hdev->req_workqueue, &hdev->power_off,
1762 HCI_AUTO_OFF_TIMEOUT);
Johan Hedbergbf543032013-09-13 08:58:18 +0300[diff] [blame]1763 }
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1764
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]1765 if (test_and_clear_bit(HCI_SETUP, &hdev->dev_flags))
Johan Hedberg744cf192011-11-08 20:40:14 +0200[diff] [blame]1766 mgmt_index_added(hdev);
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1767}
1768
1769static void hci_power_off(struct work_struct *work)
1770{
Johan Hedberg32435532011-11-07 22:16:04 +0200[diff] [blame]1771 struct hci_dev *hdev = container_of(work, struct hci_dev,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1772 power_off.work);
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1773
1774 BT_DBG("%s", hdev->name);
1775
Marcel Holtmann8ee56542012-02-21 12:33:48 +0100[diff] [blame]1776 hci_dev_do_close(hdev);
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]1777}
1778
Johan Hedberg16ab91a2011-11-07 22:16:02 +0200[diff] [blame]1779static void hci_discov_off(struct work_struct *work)
1780{
1781 struct hci_dev *hdev;
1782 u8 scan = SCAN_PAGE;
1783
1784 hdev = container_of(work, struct hci_dev, discov_off.work);
1785
1786 BT_DBG("%s", hdev->name);
1787
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1788 hci_dev_lock(hdev);
Johan Hedberg16ab91a2011-11-07 22:16:02 +0200[diff] [blame]1789
1790 hci_send_cmd(hdev, HCI_OP_WRITE_SCAN_ENABLE, sizeof(scan), &scan);
1791
1792 hdev->discov_timeout = 0;
1793
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]1794 hci_dev_unlock(hdev);
Johan Hedberg16ab91a2011-11-07 22:16:02 +0200[diff] [blame]1795}
1796
Johan Hedberg2aeb9a12011-01-04 12:08:51 +0200[diff] [blame]1797int hci_uuids_clear(struct hci_dev *hdev)
1798{
Johan Hedberg48210022013-01-27 00:31:28 +0200[diff] [blame]1799 struct bt_uuid *uuid, *tmp;
Johan Hedberg2aeb9a12011-01-04 12:08:51 +0200[diff] [blame]1800
Johan Hedberg48210022013-01-27 00:31:28 +0200[diff] [blame]1801 list_for_each_entry_safe(uuid, tmp, &hdev->uuids, list) {
1802 list_del(&uuid->list);
Johan Hedberg2aeb9a12011-01-04 12:08:51 +0200[diff] [blame]1803 kfree(uuid);
1804 }
1805
1806 return 0;
1807}
1808
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1809int hci_link_keys_clear(struct hci_dev *hdev)
1810{
1811 struct list_head *p, *n;
1812
1813 list_for_each_safe(p, n, &hdev->link_keys) {
1814 struct link_key *key;
1815
1816 key = list_entry(p, struct link_key, list);
1817
1818 list_del(p);
1819 kfree(key);
1820 }
1821
1822 return 0;
1823}
1824
Vinicius Costa Gomesb899efa2012-02-02 21:08:00 -0300[diff] [blame]1825int hci_smp_ltks_clear(struct hci_dev *hdev)
1826{
1827 struct smp_ltk *k, *tmp;
1828
1829 list_for_each_entry_safe(k, tmp, &hdev->long_term_keys, list) {
1830 list_del(&k->list);
1831 kfree(k);
1832 }
1833
1834 return 0;
1835}
1836
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1837struct link_key *hci_find_link_key(struct hci_dev *hdev, bdaddr_t *bdaddr)
1838{
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]1839 struct link_key *k;
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1840
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]1841 list_for_each_entry(k, &hdev->link_keys, list)
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1842 if (bacmp(bdaddr, &k->bdaddr) == 0)
1843 return k;
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1844
1845 return NULL;
1846}
1847
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1848static bool hci_persistent_key(struct hci_dev *hdev, struct hci_conn *conn,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1849 u8 key_type, u8 old_key_type)
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1850{
1851 /* Legacy key */
1852 if (key_type < 0x03)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1853 return true;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1854
1855 /* Debug keys are insecure so don't store them persistently */
1856 if (key_type == HCI_LK_DEBUG_COMBINATION)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1857 return false;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1858
1859 /* Changed combination key and there's no previous one */
1860 if (key_type == HCI_LK_CHANGED_COMBINATION && old_key_type == 0xff)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1861 return false;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1862
1863 /* Security mode 3 case */
1864 if (!conn)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1865 return true;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1866
1867 /* Neither local nor remote side had no-bonding as requirement */
1868 if (conn->auth_type > 0x01 && conn->remote_auth > 0x01)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1869 return true;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1870
1871 /* Local side had dedicated bonding as requirement */
1872 if (conn->auth_type == 0x02 || conn->auth_type == 0x03)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1873 return true;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1874
1875 /* Remote side had dedicated bonding as requirement */
1876 if (conn->remote_auth == 0x02 || conn->remote_auth == 0x03)
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1877 return true;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1878
1879 /* If none of the above criteria match, then don't store the key
1880 * persistently */
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1881 return false;
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1882}
1883
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1884struct smp_ltk *hci_find_ltk(struct hci_dev *hdev, __le16 ediv, u8 rand[8])
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1885{
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1886 struct smp_ltk *k;
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1887
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1888 list_for_each_entry(k, &hdev->long_term_keys, list) {
1889 if (k->ediv != ediv ||
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1890 memcmp(rand, k->rand, sizeof(k->rand)))
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1891 continue;
1892
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1893 return k;
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1894 }
1895
1896 return NULL;
1897}
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1898
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1899struct smp_ltk *hci_find_ltk_by_addr(struct hci_dev *hdev, bdaddr_t *bdaddr,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]1900 u8 addr_type)
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1901{
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1902 struct smp_ltk *k;
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1903
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1904 list_for_each_entry(k, &hdev->long_term_keys, list)
1905 if (addr_type == k->bdaddr_type &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1906 bacmp(bdaddr, &k->bdaddr) == 0)
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1907 return k;
1908
1909 return NULL;
1910}
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1911
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1912int hci_add_link_key(struct hci_dev *hdev, struct hci_conn *conn, int new_key,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]1913 bdaddr_t *bdaddr, u8 *val, u8 type, u8 pin_len)
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1914{
1915 struct link_key *key, *old_key;
Vishal Agarwal745c0ce2012-04-13 17:43:22 +0530[diff] [blame]1916 u8 old_key_type;
1917 bool persistent;
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1918
1919 old_key = hci_find_link_key(hdev, bdaddr);
1920 if (old_key) {
1921 old_key_type = old_key->type;
1922 key = old_key;
1923 } else {
Johan Hedberg12adcf32011-04-28 11:29:00 -0700[diff] [blame]1924 old_key_type = conn ? conn->key_type : 0xff;
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1925 key = kzalloc(sizeof(*key), GFP_ATOMIC);
1926 if (!key)
1927 return -ENOMEM;
1928 list_add(&key->list, &hdev->link_keys);
1929 }
1930
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]1931 BT_DBG("%s key for %pMR type %u", hdev->name, bdaddr, type);
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1932
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1933 /* Some buggy controller combinations generate a changed
1934 * combination key for legacy pairing even when there's no
1935 * previous key */
1936 if (type == HCI_LK_CHANGED_COMBINATION &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]1937 (!conn || conn->remote_auth == 0xff) && old_key_type == 0xff) {
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1938 type = HCI_LK_COMBINATION;
Johan Hedberg655fe6e2011-04-28 11:29:01 -0700[diff] [blame]1939 if (conn)
1940 conn->key_type = type;
1941 }
Johan Hedbergd25e28a2011-04-28 11:28:59 -0700[diff] [blame]1942
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1943 bacpy(&key->bdaddr, bdaddr);
Andrei Emeltchenko9b3b4462012-05-23 11:31:20 +0300[diff] [blame]1944 memcpy(key->val, val, HCI_LINK_KEY_SIZE);
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1945 key->pin_len = pin_len;
1946
Waldemar Rymarkiewiczb6020ba2011-04-28 12:07:53 +0200[diff] [blame]1947 if (type == HCI_LK_CHANGED_COMBINATION)
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1948 key->type = old_key_type;
Johan Hedberg4748fed2011-04-28 11:29:02 -0700[diff] [blame]1949 else
1950 key->type = type;
1951
Johan Hedberg4df378a2011-04-28 11:29:03 -0700[diff] [blame]1952 if (!new_key)
1953 return 0;
1954
1955 persistent = hci_persistent_key(hdev, conn, type, old_key_type);
1956
Johan Hedberg744cf192011-11-08 20:40:14 +0200[diff] [blame]1957 mgmt_new_link_key(hdev, key, persistent);
Johan Hedberg4df378a2011-04-28 11:29:03 -0700[diff] [blame]1958
Vishal Agarwal6ec5bca2012-04-16 14:44:44 +0530[diff] [blame]1959 if (conn)
1960 conn->flush_key = !persistent;
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]1961
1962 return 0;
1963}
1964
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1965int hci_add_ltk(struct hci_dev *hdev, bdaddr_t *bdaddr, u8 addr_type, u8 type,
Andrei Emeltchenko9a006652012-03-09 12:12:12 +0200[diff] [blame]1966 int new_key, u8 authenticated, u8 tk[16], u8 enc_size, __le16
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]1967 ediv, u8 rand[8])
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1968{
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1969 struct smp_ltk *key, *old_key;
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1970
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1971 if (!(type & HCI_SMP_STK) && !(type & HCI_SMP_LTK))
1972 return 0;
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1973
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1974 old_key = hci_find_ltk_by_addr(hdev, bdaddr, addr_type);
1975 if (old_key)
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1976 key = old_key;
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1977 else {
1978 key = kzalloc(sizeof(*key), GFP_ATOMIC);
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1979 if (!key)
1980 return -ENOMEM;
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1981 list_add(&key->list, &hdev->long_term_keys);
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1982 }
1983
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1984 bacpy(&key->bdaddr, bdaddr);
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1985 key->bdaddr_type = addr_type;
1986 memcpy(key->val, tk, sizeof(key->val));
1987 key->authenticated = authenticated;
1988 key->ediv = ediv;
1989 key->enc_size = enc_size;
1990 key->type = type;
1991 memcpy(key->rand, rand, sizeof(key->rand));
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1992
Vinicius Costa Gomesc9839a12012-02-02 21:08:01 -0300[diff] [blame]1993 if (!new_key)
1994 return 0;
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1995
Vinicius Costa Gomes261cc5a2012-02-02 21:08:05 -0300[diff] [blame]1996 if (type & HCI_SMP_LTK)
1997 mgmt_new_ltk(hdev, key, 1);
1998
Vinicius Costa Gomes75d262c2011-07-07 18:59:36 -0300[diff] [blame]1999 return 0;
2000}
2001
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]2002int hci_remove_link_key(struct hci_dev *hdev, bdaddr_t *bdaddr)
2003{
2004 struct link_key *key;
2005
2006 key = hci_find_link_key(hdev, bdaddr);
2007 if (!key)
2008 return -ENOENT;
2009
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]2010 BT_DBG("%s removing %pMR", hdev->name, bdaddr);
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]2011
2012 list_del(&key->list);
2013 kfree(key);
2014
2015 return 0;
2016}
2017
Vinicius Costa Gomesb899efa2012-02-02 21:08:00 -0300[diff] [blame]2018int hci_remove_ltk(struct hci_dev *hdev, bdaddr_t *bdaddr)
2019{
2020 struct smp_ltk *k, *tmp;
2021
2022 list_for_each_entry_safe(k, tmp, &hdev->long_term_keys, list) {
2023 if (bacmp(bdaddr, &k->bdaddr))
2024 continue;
2025
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]2026 BT_DBG("%s removing %pMR", hdev->name, bdaddr);
Vinicius Costa Gomesb899efa2012-02-02 21:08:00 -0300[diff] [blame]2027
2028 list_del(&k->list);
2029 kfree(k);
2030 }
2031
2032 return 0;
2033}
2034
Ville Tervo6bd32322011-02-16 16:32:41 +0200[diff] [blame]2035/* HCI command timer function */
Andrei Emeltchenkobda4f232012-06-11 11:13:08 +0300[diff] [blame]2036static void hci_cmd_timeout(unsigned long arg)
Ville Tervo6bd32322011-02-16 16:32:41 +0200[diff] [blame]2037{
2038 struct hci_dev *hdev = (void *) arg;
2039
Andrei Emeltchenkobda4f232012-06-11 11:13:08 +0300[diff] [blame]2040 if (hdev->sent_cmd) {
2041 struct hci_command_hdr *sent = (void *) hdev->sent_cmd->data;
2042 u16 opcode = __le16_to_cpu(sent->opcode);
2043
2044 BT_ERR("%s command 0x%4.4x tx timeout", hdev->name, opcode);
2045 } else {
2046 BT_ERR("%s command tx timeout", hdev->name);
2047 }
2048
Ville Tervo6bd32322011-02-16 16:32:41 +0200[diff] [blame]2049 atomic_set(&hdev->cmd_cnt, 1);
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]2050 queue_work(hdev->workqueue, &hdev->cmd_work);
Ville Tervo6bd32322011-02-16 16:32:41 +0200[diff] [blame]2051}
2052
Szymon Janc2763eda2011-03-22 13:12:22 +0100[diff] [blame]2053struct oob_data *hci_find_remote_oob_data(struct hci_dev *hdev,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]2054 bdaddr_t *bdaddr)
Szymon Janc2763eda2011-03-22 13:12:22 +0100[diff] [blame]2055{
2056 struct oob_data *data;
2057
2058 list_for_each_entry(data, &hdev->remote_oob_data, list)
2059 if (bacmp(bdaddr, &data->bdaddr) == 0)
2060 return data;
2061
2062 return NULL;
2063}
2064
2065int hci_remove_remote_oob_data(struct hci_dev *hdev, bdaddr_t *bdaddr)
2066{
2067 struct oob_data *data;
2068
2069 data = hci_find_remote_oob_data(hdev, bdaddr);
2070 if (!data)
2071 return -ENOENT;
2072
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]2073 BT_DBG("%s removing %pMR", hdev->name, bdaddr);
Szymon Janc2763eda2011-03-22 13:12:22 +0100[diff] [blame]2074
2075 list_del(&data->list);
2076 kfree(data);
2077
2078 return 0;
2079}
2080
2081int hci_remote_oob_data_clear(struct hci_dev *hdev)
2082{
2083 struct oob_data *data, *n;
2084
2085 list_for_each_entry_safe(data, n, &hdev->remote_oob_data, list) {
2086 list_del(&data->list);
2087 kfree(data);
2088 }
2089
2090 return 0;
2091}
2092
2093int hci_add_remote_oob_data(struct hci_dev *hdev, bdaddr_t *bdaddr, u8 *hash,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]2094 u8 *randomizer)
Szymon Janc2763eda2011-03-22 13:12:22 +0100[diff] [blame]2095{
2096 struct oob_data *data;
2097
2098 data = hci_find_remote_oob_data(hdev, bdaddr);
2099
2100 if (!data) {
2101 data = kmalloc(sizeof(*data), GFP_ATOMIC);
2102 if (!data)
2103 return -ENOMEM;
2104
2105 bacpy(&data->bdaddr, bdaddr);
2106 list_add(&data->list, &hdev->remote_oob_data);
2107 }
2108
2109 memcpy(data->hash, hash, sizeof(data->hash));
2110 memcpy(data->randomizer, randomizer, sizeof(data->randomizer));
2111
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]2112 BT_DBG("%s for %pMR", hdev->name, bdaddr);
Szymon Janc2763eda2011-03-22 13:12:22 +0100[diff] [blame]2113
2114 return 0;
2115}
2116
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]2117struct bdaddr_list *hci_blacklist_lookup(struct hci_dev *hdev, bdaddr_t *bdaddr)
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2118{
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]2119 struct bdaddr_list *b;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2120
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]2121 list_for_each_entry(b, &hdev->blacklist, list)
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2122 if (bacmp(bdaddr, &b->bdaddr) == 0)
2123 return b;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2124
2125 return NULL;
2126}
2127
2128int hci_blacklist_clear(struct hci_dev *hdev)
2129{
2130 struct list_head *p, *n;
2131
2132 list_for_each_safe(p, n, &hdev->blacklist) {
2133 struct bdaddr_list *b;
2134
2135 b = list_entry(p, struct bdaddr_list, list);
2136
2137 list_del(p);
2138 kfree(b);
2139 }
2140
2141 return 0;
2142}
2143
Johan Hedberg88c1fe42012-02-09 15:56:11 +0200[diff] [blame]2144int hci_blacklist_add(struct hci_dev *hdev, bdaddr_t *bdaddr, u8 type)
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2145{
2146 struct bdaddr_list *entry;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2147
2148 if (bacmp(bdaddr, BDADDR_ANY) == 0)
2149 return -EBADF;
2150
Antti Julku5e762442011-08-25 16:48:02 +0300[diff] [blame]2151 if (hci_blacklist_lookup(hdev, bdaddr))
2152 return -EEXIST;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2153
2154 entry = kzalloc(sizeof(struct bdaddr_list), GFP_KERNEL);
Antti Julku5e762442011-08-25 16:48:02 +0300[diff] [blame]2155 if (!entry)
2156 return -ENOMEM;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2157
2158 bacpy(&entry->bdaddr, bdaddr);
2159
2160 list_add(&entry->list, &hdev->blacklist);
2161
Johan Hedberg88c1fe42012-02-09 15:56:11 +0200[diff] [blame]2162 return mgmt_device_blocked(hdev, bdaddr, type);
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2163}
2164
Johan Hedberg88c1fe42012-02-09 15:56:11 +0200[diff] [blame]2165int hci_blacklist_del(struct hci_dev *hdev, bdaddr_t *bdaddr, u8 type)
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2166{
2167 struct bdaddr_list *entry;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2168
Szymon Janc1ec918c2011-11-16 09:32:21 +0100[diff] [blame]2169 if (bacmp(bdaddr, BDADDR_ANY) == 0)
Antti Julku5e762442011-08-25 16:48:02 +0300[diff] [blame]2170 return hci_blacklist_clear(hdev);
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2171
2172 entry = hci_blacklist_lookup(hdev, bdaddr);
Szymon Janc1ec918c2011-11-16 09:32:21 +0100[diff] [blame]2173 if (!entry)
Antti Julku5e762442011-08-25 16:48:02 +0300[diff] [blame]2174 return -ENOENT;
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2175
2176 list_del(&entry->list);
2177 kfree(entry);
2178
Johan Hedberg88c1fe42012-02-09 15:56:11 +0200[diff] [blame]2179 return mgmt_device_unblocked(hdev, bdaddr, type);
Antti Julkub2a66aa2011-06-15 12:01:14 +0300[diff] [blame]2180}
2181
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2182static void inquiry_complete(struct hci_dev *hdev, u8 status)
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2183{
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2184 if (status) {
2185 BT_ERR("Failed to start inquiry: status %d", status);
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2186
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2187 hci_dev_lock(hdev);
2188 hci_discovery_set_state(hdev, DISCOVERY_STOPPED);
2189 hci_dev_unlock(hdev);
2190 return;
2191 }
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2192}
2193
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2194static void le_scan_disable_work_complete(struct hci_dev *hdev, u8 status)
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2195{
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2196 /* General inquiry access code (GIAC) */
2197 u8 lap[3] = { 0x33, 0x8b, 0x9e };
2198 struct hci_request req;
2199 struct hci_cp_inquiry cp;
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2200 int err;
2201
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2202 if (status) {
2203 BT_ERR("Failed to disable LE scanning: status %d", status);
2204 return;
Andre Guedes7dbfac12012-03-15 16:52:07 -0300[diff] [blame]2205 }
2206
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2207 switch (hdev->discovery.type) {
2208 case DISCOV_TYPE_LE:
2209 hci_dev_lock(hdev);
2210 hci_discovery_set_state(hdev, DISCOVERY_STOPPED);
2211 hci_dev_unlock(hdev);
2212 break;
2213
2214 case DISCOV_TYPE_INTERLEAVED:
2215 hci_req_init(&req, hdev);
2216
2217 memset(&cp, 0, sizeof(cp));
2218 memcpy(&cp.lap, lap, sizeof(cp.lap));
2219 cp.length = DISCOV_INTERLEAVED_INQUIRY_LEN;
2220 hci_req_add(&req, HCI_OP_INQUIRY, sizeof(cp), &cp);
2221
2222 hci_dev_lock(hdev);
2223
2224 hci_inquiry_cache_flush(hdev);
2225
2226 err = hci_req_run(&req, inquiry_complete);
2227 if (err) {
2228 BT_ERR("Inquiry request failed: err %d", err);
2229 hci_discovery_set_state(hdev, DISCOVERY_STOPPED);
2230 }
2231
2232 hci_dev_unlock(hdev);
2233 break;
2234 }
Andre Guedes7dbfac12012-03-15 16:52:07 -0300[diff] [blame]2235}
2236
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2237static void le_scan_disable_work(struct work_struct *work)
2238{
2239 struct hci_dev *hdev = container_of(work, struct hci_dev,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]2240 le_scan_disable.work);
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2241 struct hci_cp_le_set_scan_enable cp;
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2242 struct hci_request req;
2243 int err;
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2244
2245 BT_DBG("%s", hdev->name);
2246
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2247 hci_req_init(&req, hdev);
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2248
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2249 memset(&cp, 0, sizeof(cp));
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2250 cp.enable = LE_SCAN_DISABLE;
2251 hci_req_add(&req, HCI_OP_LE_SET_SCAN_ENABLE, sizeof(cp), &cp);
Andre Guedes7ba8b4b2012-02-03 17:47:59 -0300[diff] [blame]2252
Andre Guedes4c87eaa2013-04-30 15:29:32 -0300[diff] [blame]2253 err = hci_req_run(&req, le_scan_disable_work_complete);
2254 if (err)
2255 BT_ERR("Disable LE scanning request failed: err %d", err);
Andre Guedes28b75a82012-02-03 17:48:00 -0300[diff] [blame]2256}
2257
David Herrmann9be0dab2012-04-22 14:39:57 +0200[diff] [blame]2258/* Alloc HCI device */
2259struct hci_dev *hci_alloc_dev(void)
2260{
2261 struct hci_dev *hdev;
2262
2263 hdev = kzalloc(sizeof(struct hci_dev), GFP_KERNEL);
2264 if (!hdev)
2265 return NULL;
2266
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2267 hdev->pkt_type = (HCI_DM1 | HCI_DH1 | HCI_HV1);
2268 hdev->esco_type = (ESCO_HV1);
2269 hdev->link_mode = (HCI_LM_ACCEPT);
2270 hdev->io_capability = 0x03; /* No Input No Output */
Johan Hedbergbbaf4442012-11-08 01:22:59 +0100[diff] [blame]2271 hdev->inq_tx_power = HCI_TX_POWER_INVALID;
2272 hdev->adv_tx_power = HCI_TX_POWER_INVALID;
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2273
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2274 hdev->sniff_max_interval = 800;
2275 hdev->sniff_min_interval = 80;
2276
Marcel Holtmannbef64732013-10-11 08:23:19 -0700[diff] [blame]2277 hdev->le_scan_interval = 0x0060;
2278 hdev->le_scan_window = 0x0030;
2279
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2280 mutex_init(&hdev->lock);
2281 mutex_init(&hdev->req_lock);
2282
2283 INIT_LIST_HEAD(&hdev->mgmt_pending);
2284 INIT_LIST_HEAD(&hdev->blacklist);
2285 INIT_LIST_HEAD(&hdev->uuids);
2286 INIT_LIST_HEAD(&hdev->link_keys);
2287 INIT_LIST_HEAD(&hdev->long_term_keys);
2288 INIT_LIST_HEAD(&hdev->remote_oob_data);
Andrei Emeltchenko6b536b52012-08-31 16:39:28 +0300[diff] [blame]2289 INIT_LIST_HEAD(&hdev->conn_hash.list);
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2290
2291 INIT_WORK(&hdev->rx_work, hci_rx_work);
2292 INIT_WORK(&hdev->cmd_work, hci_cmd_work);
2293 INIT_WORK(&hdev->tx_work, hci_tx_work);
2294 INIT_WORK(&hdev->power_on, hci_power_on);
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2295
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2296 INIT_DELAYED_WORK(&hdev->power_off, hci_power_off);
2297 INIT_DELAYED_WORK(&hdev->discov_off, hci_discov_off);
2298 INIT_DELAYED_WORK(&hdev->le_scan_disable, le_scan_disable_work);
2299
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2300 skb_queue_head_init(&hdev->rx_q);
2301 skb_queue_head_init(&hdev->cmd_q);
2302 skb_queue_head_init(&hdev->raw_q);
2303
2304 init_waitqueue_head(&hdev->req_wait_q);
2305
Andrei Emeltchenkobda4f232012-06-11 11:13:08 +0300[diff] [blame]2306 setup_timer(&hdev->cmd_timer, hci_cmd_timeout, (unsigned long) hdev);
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2307
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2308 hci_init_sysfs(hdev);
2309 discovery_init(hdev);
David Herrmann9be0dab2012-04-22 14:39:57 +0200[diff] [blame]2310
2311 return hdev;
2312}
2313EXPORT_SYMBOL(hci_alloc_dev);
2314
2315/* Free HCI device */
2316void hci_free_dev(struct hci_dev *hdev)
2317{
David Herrmann9be0dab2012-04-22 14:39:57 +0200[diff] [blame]2318 /* will free via device release */
2319 put_device(&hdev->dev);
2320}
2321EXPORT_SYMBOL(hci_free_dev);
2322
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2323/* Register HCI device */
2324int hci_register_dev(struct hci_dev *hdev)
2325{
David Herrmannb1b813d2012-04-22 14:39:58 +0200[diff] [blame]2326 int id, error;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2327
David Herrmann010666a2012-01-07 15:47:07 +0100[diff] [blame]2328 if (!hdev->open || !hdev->close)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2329 return -EINVAL;
2330
Mat Martineau08add512011-11-02 16:18:36 -0700[diff] [blame]2331 /* Do not allow HCI_AMP devices to register at index 0,
2332 * so the index can be used as the AMP controller ID.
2333 */
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]2334 switch (hdev->dev_type) {
2335 case HCI_BREDR:
2336 id = ida_simple_get(&hci_index_ida, 0, 0, GFP_KERNEL);
2337 break;
2338 case HCI_AMP:
2339 id = ida_simple_get(&hci_index_ida, 1, 0, GFP_KERNEL);
2340 break;
2341 default:
2342 return -EINVAL;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2343 }
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]2344
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]2345 if (id < 0)
2346 return id;
2347
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2348 sprintf(hdev->name, "hci%d", id);
2349 hdev->id = id;
Andrei Emeltchenko2d8b3a12012-04-16 16:32:04 +0300[diff] [blame]2350
2351 BT_DBG("%p name %s bus %d", hdev, hdev->name, hdev->bus);
2352
Kees Cookd8537542013-07-03 15:04:57 -0700[diff] [blame]2353 hdev->workqueue = alloc_workqueue("%s", WQ_HIGHPRI | WQ_UNBOUND |
2354 WQ_MEM_RECLAIM, 1, hdev->name);
David Herrmann33ca9542011-10-08 14:58:49 +0200[diff] [blame]2355 if (!hdev->workqueue) {
2356 error = -ENOMEM;
2357 goto err;
2358 }
Marcel Holtmannf48fd9c2010-03-20 15:20:04 +0100[diff] [blame]2359
Kees Cookd8537542013-07-03 15:04:57 -0700[diff] [blame]2360 hdev->req_workqueue = alloc_workqueue("%s", WQ_HIGHPRI | WQ_UNBOUND |
2361 WQ_MEM_RECLAIM, 1, hdev->name);
Johan Hedberg6ead1bb2013-01-14 22:33:50 +0200[diff] [blame]2362 if (!hdev->req_workqueue) {
2363 destroy_workqueue(hdev->workqueue);
2364 error = -ENOMEM;
2365 goto err;
2366 }
2367
David Herrmann33ca9542011-10-08 14:58:49 +0200[diff] [blame]2368 error = hci_add_sysfs(hdev);
2369 if (error < 0)
2370 goto err_wqueue;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2371
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]2372 hdev->rfkill = rfkill_alloc(hdev->name, &hdev->dev,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2373 RFKILL_TYPE_BLUETOOTH, &hci_rfkill_ops,
2374 hdev);
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]2375 if (hdev->rfkill) {
2376 if (rfkill_register(hdev->rfkill) < 0) {
2377 rfkill_destroy(hdev->rfkill);
2378 hdev->rfkill = NULL;
2379 }
2380 }
2381
Johan Hedberg5e130362013-09-13 08:58:17 +0300[diff] [blame]2382 if (hdev->rfkill && rfkill_blocked(hdev->rfkill))
2383 set_bit(HCI_RFKILLED, &hdev->dev_flags);
2384
Johan Hedberga8b2d5c2012-01-08 23:11:15 +0200[diff] [blame]2385 set_bit(HCI_SETUP, &hdev->dev_flags);
Marcel Holtmann004b0252013-10-07 00:58:32 -0700[diff] [blame]2386 set_bit(HCI_AUTO_OFF, &hdev->dev_flags);
Andrei Emeltchenkoce2be9a2012-06-29 15:07:00 +0300[diff] [blame]2387
Marcel Holtmann01cd3402013-10-06 01:16:22 -0700[diff] [blame]2388 if (hdev->dev_type == HCI_BREDR) {
Johan Hedberg56f87902013-10-02 13:43:13 +0300[diff] [blame]2389 /* Assume BR/EDR support until proven otherwise (such as
2390 * through reading supported features during init.
2391 */
2392 set_bit(HCI_BREDR_ENABLED, &hdev->dev_flags);
2393 }
Andrei Emeltchenkoce2be9a2012-06-29 15:07:00 +0300[diff] [blame]2394
Gustavo Padovanfcee3372013-07-11 11:34:28 +0100[diff] [blame]2395 write_lock(&hci_dev_list_lock);
2396 list_add(&hdev->list, &hci_dev_list);
2397 write_unlock(&hci_dev_list_lock);
2398
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2399 hci_notify(hdev, HCI_DEV_REG);
David Herrmanndc946bd2012-01-07 15:47:24 +0100[diff] [blame]2400 hci_dev_hold(hdev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2401
Johan Hedberg19202572013-01-14 22:33:51 +0200[diff] [blame]2402 queue_work(hdev->req_workqueue, &hdev->power_on);
Marcel Holtmannfbe96d62012-10-30 01:35:40 -0700[diff] [blame]2403
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2404 return id;
Marcel Holtmannf48fd9c2010-03-20 15:20:04 +0100[diff] [blame]2405
David Herrmann33ca9542011-10-08 14:58:49 +0200[diff] [blame]2406err_wqueue:
2407 destroy_workqueue(hdev->workqueue);
Johan Hedberg6ead1bb2013-01-14 22:33:50 +0200[diff] [blame]2408 destroy_workqueue(hdev->req_workqueue);
David Herrmann33ca9542011-10-08 14:58:49 +0200[diff] [blame]2409err:
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]2410 ida_simple_remove(&hci_index_ida, hdev->id);
Marcel Holtmannf48fd9c2010-03-20 15:20:04 +0100[diff] [blame]2411
David Herrmann33ca9542011-10-08 14:58:49 +0200[diff] [blame]2412 return error;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2413}
2414EXPORT_SYMBOL(hci_register_dev);
2415
2416/* Unregister HCI device */
David Herrmann59735632011-10-26 10:43:19 +0200[diff] [blame]2417void hci_unregister_dev(struct hci_dev *hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2418{
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]2419 int i, id;
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2420
Marcel Holtmannc13854c2010-02-08 15:27:07 +0100[diff] [blame]2421 BT_DBG("%p name %s bus %d", hdev, hdev->name, hdev->bus);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2422
Johan Hovold94324962012-03-15 14:48:41 +0100[diff] [blame]2423 set_bit(HCI_UNREGISTER, &hdev->dev_flags);
2424
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]2425 id = hdev->id;
2426
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]2427 write_lock(&hci_dev_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2428 list_del(&hdev->list);
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]2429 write_unlock(&hci_dev_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2430
2431 hci_dev_do_close(hdev);
2432
Suraj Sumangalacd4c5392010-07-14 13:02:16 +0530[diff] [blame]2433 for (i = 0; i < NUM_REASSEMBLY; i++)
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2434 kfree_skb(hdev->reassembly[i]);
2435
Gustavo Padovanb9b5ef12012-11-21 00:50:21 -0200[diff] [blame]2436 cancel_work_sync(&hdev->power_on);
2437
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]2438 if (!test_bit(HCI_INIT, &hdev->flags) &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2439 !test_bit(HCI_SETUP, &hdev->dev_flags)) {
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]2440 hci_dev_lock(hdev);
Johan Hedberg744cf192011-11-08 20:40:14 +0200[diff] [blame]2441 mgmt_index_removed(hdev);
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]2442 hci_dev_unlock(hdev);
Johan Hedberg56e5cb82011-11-08 20:40:16 +0200[diff] [blame]2443 }
Johan Hedbergab81cbf2010-12-15 13:53:18 +0200[diff] [blame]2444
Johan Hedberg2e58ef32011-11-08 20:40:15 +0200[diff] [blame]2445 /* mgmt_index_removed should take care of emptying the
2446 * pending list */
2447 BUG_ON(!list_empty(&hdev->mgmt_pending));
2448
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2449 hci_notify(hdev, HCI_DEV_UNREG);
2450
Marcel Holtmann611b30f2009-06-08 14:41:38 +0200[diff] [blame]2451 if (hdev->rfkill) {
2452 rfkill_unregister(hdev->rfkill);
2453 rfkill_destroy(hdev->rfkill);
2454 }
2455
David Herrmannce242972011-10-08 14:58:48 +0200[diff] [blame]2456 hci_del_sysfs(hdev);
Dave Young147e2d52008-03-05 18:45:59 -0800[diff] [blame]2457
Marcel Holtmannf48fd9c2010-03-20 15:20:04 +0100[diff] [blame]2458 destroy_workqueue(hdev->workqueue);
Johan Hedberg6ead1bb2013-01-14 22:33:50 +0200[diff] [blame]2459 destroy_workqueue(hdev->req_workqueue);
Marcel Holtmannf48fd9c2010-03-20 15:20:04 +0100[diff] [blame]2460
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]2461 hci_dev_lock(hdev);
Johan Hedberge2e0cac2011-01-04 12:08:50 +0200[diff] [blame]2462 hci_blacklist_clear(hdev);
Johan Hedberg2aeb9a12011-01-04 12:08:51 +0200[diff] [blame]2463 hci_uuids_clear(hdev);
Johan Hedberg55ed8ca12011-01-17 14:41:05 +0200[diff] [blame]2464 hci_link_keys_clear(hdev);
Vinicius Costa Gomesb899efa2012-02-02 21:08:00 -0300[diff] [blame]2465 hci_smp_ltks_clear(hdev);
Szymon Janc2763eda2011-03-22 13:12:22 +0100[diff] [blame]2466 hci_remote_oob_data_clear(hdev);
Gustavo F. Padovan09fd0de2011-06-17 13:03:21 -0300[diff] [blame]2467 hci_dev_unlock(hdev);
Johan Hedberge2e0cac2011-01-04 12:08:50 +0200[diff] [blame]2468
David Herrmanndc946bd2012-01-07 15:47:24 +0100[diff] [blame]2469 hci_dev_put(hdev);
Sasha Levin3df92b32012-05-27 22:36:56 +0200[diff] [blame]2470
2471 ida_simple_remove(&hci_index_ida, id);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2472}
2473EXPORT_SYMBOL(hci_unregister_dev);
2474
2475/* Suspend HCI device */
2476int hci_suspend_dev(struct hci_dev *hdev)
2477{
2478 hci_notify(hdev, HCI_DEV_SUSPEND);
2479 return 0;
2480}
2481EXPORT_SYMBOL(hci_suspend_dev);
2482
2483/* Resume HCI device */
2484int hci_resume_dev(struct hci_dev *hdev)
2485{
2486 hci_notify(hdev, HCI_DEV_RESUME);
2487 return 0;
2488}
2489EXPORT_SYMBOL(hci_resume_dev);
2490
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2491/* Receive frame from HCI drivers */
Marcel Holtmanne1a26172013-10-10 16:52:43 -0700[diff] [blame]2492int hci_recv_frame(struct hci_dev *hdev, struct sk_buff *skb)
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2493{
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2494 if (!hdev || (!test_bit(HCI_UP, &hdev->flags)
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2495 && !test_bit(HCI_INIT, &hdev->flags))) {
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2496 kfree_skb(skb);
2497 return -ENXIO;
2498 }
2499
Jorrit Schippersd82603c2012-12-27 17:33:02 +0100[diff] [blame]2500 /* Incoming skb */
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2501 bt_cb(skb)->incoming = 1;
2502
2503 /* Time stamp */
2504 __net_timestamp(skb);
2505
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2506 skb_queue_tail(&hdev->rx_q, skb);
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]2507 queue_work(hdev->workqueue, &hdev->rx_work);
Marcel Holtmannc78ae282009-11-18 01:02:54 +0100[diff] [blame]2508
Marcel Holtmann76bca882009-11-18 00:40:39 +0100[diff] [blame]2509 return 0;
2510}
2511EXPORT_SYMBOL(hci_recv_frame);
2512
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2513static int hci_reassembly(struct hci_dev *hdev, int type, void *data,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2514 int count, __u8 index)
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2515{
2516 int len = 0;
2517 int hlen = 0;
2518 int remain = count;
2519 struct sk_buff *skb;
2520 struct bt_skb_cb *scb;
2521
2522 if ((type < HCI_ACLDATA_PKT || type > HCI_EVENT_PKT) ||
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2523 index >= NUM_REASSEMBLY)
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2524 return -EILSEQ;
2525
2526 skb = hdev->reassembly[index];
2527
2528 if (!skb) {
2529 switch (type) {
2530 case HCI_ACLDATA_PKT:
2531 len = HCI_MAX_FRAME_SIZE;
2532 hlen = HCI_ACL_HDR_SIZE;
2533 break;
2534 case HCI_EVENT_PKT:
2535 len = HCI_MAX_EVENT_SIZE;
2536 hlen = HCI_EVENT_HDR_SIZE;
2537 break;
2538 case HCI_SCODATA_PKT:
2539 len = HCI_MAX_SCO_SIZE;
2540 hlen = HCI_SCO_HDR_SIZE;
2541 break;
2542 }
2543
Gustavo F. Padovan1e429f32011-04-04 18:25:14 -0300[diff] [blame]2544 skb = bt_skb_alloc(len, GFP_ATOMIC);
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2545 if (!skb)
2546 return -ENOMEM;
2547
2548 scb = (void *) skb->cb;
2549 scb->expect = hlen;
2550 scb->pkt_type = type;
2551
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2552 hdev->reassembly[index] = skb;
2553 }
2554
2555 while (count) {
2556 scb = (void *) skb->cb;
Dan Carpenter89bb46d2012-02-28 09:57:59 +0300[diff] [blame]2557 len = min_t(uint, scb->expect, count);
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2558
2559 memcpy(skb_put(skb, len), data, len);
2560
2561 count -= len;
2562 data += len;
2563 scb->expect -= len;
2564 remain = count;
2565
2566 switch (type) {
2567 case HCI_EVENT_PKT:
2568 if (skb->len == HCI_EVENT_HDR_SIZE) {
2569 struct hci_event_hdr *h = hci_event_hdr(skb);
2570 scb->expect = h->plen;
2571
2572 if (skb_tailroom(skb) < scb->expect) {
2573 kfree_skb(skb);
2574 hdev->reassembly[index] = NULL;
2575 return -ENOMEM;
2576 }
2577 }
2578 break;
2579
2580 case HCI_ACLDATA_PKT:
2581 if (skb->len == HCI_ACL_HDR_SIZE) {
2582 struct hci_acl_hdr *h = hci_acl_hdr(skb);
2583 scb->expect = __le16_to_cpu(h->dlen);
2584
2585 if (skb_tailroom(skb) < scb->expect) {
2586 kfree_skb(skb);
2587 hdev->reassembly[index] = NULL;
2588 return -ENOMEM;
2589 }
2590 }
2591 break;
2592
2593 case HCI_SCODATA_PKT:
2594 if (skb->len == HCI_SCO_HDR_SIZE) {
2595 struct hci_sco_hdr *h = hci_sco_hdr(skb);
2596 scb->expect = h->dlen;
2597
2598 if (skb_tailroom(skb) < scb->expect) {
2599 kfree_skb(skb);
2600 hdev->reassembly[index] = NULL;
2601 return -ENOMEM;
2602 }
2603 }
2604 break;
2605 }
2606
2607 if (scb->expect == 0) {
2608 /* Complete frame */
2609
2610 bt_cb(skb)->pkt_type = type;
Marcel Holtmanne1a26172013-10-10 16:52:43 -0700[diff] [blame]2611 hci_recv_frame(hdev, skb);
Suraj Sumangala33e882a2010-07-14 13:02:17 +0530[diff] [blame]2612
2613 hdev->reassembly[index] = NULL;
2614 return remain;
2615 }
2616 }
2617
2618 return remain;
2619}
2620
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2621int hci_recv_fragment(struct hci_dev *hdev, int type, void *data, int count)
2622{
Suraj Sumangalaf39a3c02010-07-14 13:02:18 +0530[diff] [blame]2623 int rem = 0;
2624
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2625 if (type < HCI_ACLDATA_PKT || type > HCI_EVENT_PKT)
2626 return -EILSEQ;
2627
Gustavo F. Padovanda5f6c32010-07-24 01:34:54 -0300[diff] [blame]2628 while (count) {
Gustavo F. Padovan1e429f32011-04-04 18:25:14 -0300[diff] [blame]2629 rem = hci_reassembly(hdev, type, data, count, type - 1);
Suraj Sumangalaf39a3c02010-07-14 13:02:18 +0530[diff] [blame]2630 if (rem < 0)
2631 return rem;
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2632
Suraj Sumangalaf39a3c02010-07-14 13:02:18 +0530[diff] [blame]2633 data += (count - rem);
2634 count = rem;
Joe Perchesf81c6222011-06-03 11:51:19 +0000[diff] [blame]2635 }
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2636
Suraj Sumangalaf39a3c02010-07-14 13:02:18 +0530[diff] [blame]2637 return rem;
Marcel Holtmannef222012007-07-11 06:42:04 +0200[diff] [blame]2638}
2639EXPORT_SYMBOL(hci_recv_fragment);
2640
Suraj Sumangala99811512010-07-14 13:02:19 +0530[diff] [blame]2641#define STREAM_REASSEMBLY 0
2642
2643int hci_recv_stream_fragment(struct hci_dev *hdev, void *data, int count)
2644{
2645 int type;
2646 int rem = 0;
2647
Gustavo F. Padovanda5f6c32010-07-24 01:34:54 -0300[diff] [blame]2648 while (count) {
Suraj Sumangala99811512010-07-14 13:02:19 +0530[diff] [blame]2649 struct sk_buff *skb = hdev->reassembly[STREAM_REASSEMBLY];
2650
2651 if (!skb) {
2652 struct { char type; } *pkt;
2653
2654 /* Start of the frame */
2655 pkt = data;
2656 type = pkt->type;
2657
2658 data++;
2659 count--;
2660 } else
2661 type = bt_cb(skb)->pkt_type;
2662
Gustavo F. Padovan1e429f32011-04-04 18:25:14 -0300[diff] [blame]2663 rem = hci_reassembly(hdev, type, data, count,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2664 STREAM_REASSEMBLY);
Suraj Sumangala99811512010-07-14 13:02:19 +0530[diff] [blame]2665 if (rem < 0)
2666 return rem;
2667
2668 data += (count - rem);
2669 count = rem;
Joe Perchesf81c6222011-06-03 11:51:19 +0000[diff] [blame]2670 }
Suraj Sumangala99811512010-07-14 13:02:19 +0530[diff] [blame]2671
2672 return rem;
2673}
2674EXPORT_SYMBOL(hci_recv_stream_fragment);
2675
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2676/* ---- Interface to upper protocols ---- */
2677
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2678int hci_register_cb(struct hci_cb *cb)
2679{
2680 BT_DBG("%p name %s", cb, cb->name);
2681
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]2682 write_lock(&hci_cb_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2683 list_add(&cb->list, &hci_cb_list);
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]2684 write_unlock(&hci_cb_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2685
2686 return 0;
2687}
2688EXPORT_SYMBOL(hci_register_cb);
2689
2690int hci_unregister_cb(struct hci_cb *cb)
2691{
2692 BT_DBG("%p name %s", cb, cb->name);
2693
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]2694 write_lock(&hci_cb_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2695 list_del(&cb->list);
Gustavo F. Padovanf20d09d2011-12-22 16:30:27 -0200[diff] [blame]2696 write_unlock(&hci_cb_list_lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2697
2698 return 0;
2699}
2700EXPORT_SYMBOL(hci_unregister_cb);
2701
Marcel Holtmann51086992013-10-10 14:54:19 -0700[diff] [blame]2702static void hci_send_frame(struct hci_dev *hdev, struct sk_buff *skb)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2703{
Marcel Holtmann0d48d932005-08-09 20:30:28 -0700[diff] [blame]2704 BT_DBG("%s type %d len %d", hdev->name, bt_cb(skb)->pkt_type, skb->len);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2705
Marcel Holtmanncd82e612012-02-20 20:34:38 +0100[diff] [blame]2706 /* Time stamp */
2707 __net_timestamp(skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2708
Marcel Holtmanncd82e612012-02-20 20:34:38 +0100[diff] [blame]2709 /* Send copy to monitor */
2710 hci_send_to_monitor(hdev, skb);
2711
2712 if (atomic_read(&hdev->promisc)) {
2713 /* Send copy to the sockets */
Marcel Holtmann470fe1b2012-02-20 14:50:30 +0100[diff] [blame]2714 hci_send_to_sock(hdev, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2715 }
2716
2717 /* Get rid of skb owner, prior to sending to the driver. */
2718 skb_orphan(skb);
2719
Marcel Holtmann7bd8f092013-10-11 06:19:18 -0700[diff] [blame]2720 if (hdev->send(hdev, skb) < 0)
Marcel Holtmann51086992013-10-10 14:54:19 -0700[diff] [blame]2721 BT_ERR("%s sending frame failed", hdev->name);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2722}
2723
Johan Hedberg3119ae92013-03-05 20:37:44 +0200[diff] [blame]2724void hci_req_init(struct hci_request *req, struct hci_dev *hdev)
2725{
2726 skb_queue_head_init(&req->cmd_q);
2727 req->hdev = hdev;
Andre Guedes5d73e032013-03-08 11:20:16 -0300[diff] [blame]2728 req->err = 0;
Johan Hedberg3119ae92013-03-05 20:37:44 +0200[diff] [blame]2729}
2730
2731int hci_req_run(struct hci_request *req, hci_req_complete_t complete)
2732{
2733 struct hci_dev *hdev = req->hdev;
2734 struct sk_buff *skb;
2735 unsigned long flags;
2736
2737 BT_DBG("length %u", skb_queue_len(&req->cmd_q));
2738
Andre Guedes5d73e032013-03-08 11:20:16 -0300[diff] [blame]2739 /* If an error occured during request building, remove all HCI
2740 * commands queued on the HCI request queue.
2741 */
2742 if (req->err) {
2743 skb_queue_purge(&req->cmd_q);
2744 return req->err;
2745 }
2746
Johan Hedberg3119ae92013-03-05 20:37:44 +0200[diff] [blame]2747 /* Do not allow empty requests */
2748 if (skb_queue_empty(&req->cmd_q))
Andre Guedes382b0c32013-03-08 11:20:14 -0300[diff] [blame]2749 return -ENODATA;
Johan Hedberg3119ae92013-03-05 20:37:44 +0200[diff] [blame]2750
2751 skb = skb_peek_tail(&req->cmd_q);
2752 bt_cb(skb)->req.complete = complete;
2753
2754 spin_lock_irqsave(&hdev->cmd_q.lock, flags);
2755 skb_queue_splice_tail(&req->cmd_q, &hdev->cmd_q);
2756 spin_unlock_irqrestore(&hdev->cmd_q.lock, flags);
2757
2758 queue_work(hdev->workqueue, &hdev->cmd_work);
2759
2760 return 0;
2761}
2762
Johan Hedberg1ca3a9d2013-03-05 20:37:45 +0200[diff] [blame]2763static struct sk_buff *hci_prepare_cmd(struct hci_dev *hdev, u16 opcode,
Johan Hedberg07dc93d2013-04-19 10:14:51 +0300[diff] [blame]2764 u32 plen, const void *param)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2765{
2766 int len = HCI_COMMAND_HDR_SIZE + plen;
2767 struct hci_command_hdr *hdr;
2768 struct sk_buff *skb;
2769
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2770 skb = bt_skb_alloc(len, GFP_ATOMIC);
Johan Hedberg1ca3a9d2013-03-05 20:37:45 +0200[diff] [blame]2771 if (!skb)
2772 return NULL;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2773
2774 hdr = (struct hci_command_hdr *) skb_put(skb, HCI_COMMAND_HDR_SIZE);
Marcel Holtmanna9de9242007-10-20 13:33:56 +0200[diff] [blame]2775 hdr->opcode = cpu_to_le16(opcode);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2776 hdr->plen = plen;
2777
2778 if (plen)
2779 memcpy(skb_put(skb, plen), param, plen);
2780
2781 BT_DBG("skb len %d", skb->len);
2782
Marcel Holtmann0d48d932005-08-09 20:30:28 -0700[diff] [blame]2783 bt_cb(skb)->pkt_type = HCI_COMMAND_PKT;
Marcel Holtmannc78ae282009-11-18 01:02:54 +0100[diff] [blame]2784
Johan Hedberg1ca3a9d2013-03-05 20:37:45 +0200[diff] [blame]2785 return skb;
2786}
2787
2788/* Send HCI command */
Johan Hedberg07dc93d2013-04-19 10:14:51 +0300[diff] [blame]2789int hci_send_cmd(struct hci_dev *hdev, __u16 opcode, __u32 plen,
2790 const void *param)
Johan Hedberg1ca3a9d2013-03-05 20:37:45 +0200[diff] [blame]2791{
2792 struct sk_buff *skb;
2793
2794 BT_DBG("%s opcode 0x%4.4x plen %d", hdev->name, opcode, plen);
2795
2796 skb = hci_prepare_cmd(hdev, opcode, plen, param);
2797 if (!skb) {
2798 BT_ERR("%s no memory for command", hdev->name);
2799 return -ENOMEM;
2800 }
2801
Johan Hedberg11714b32013-03-05 20:37:47 +0200[diff] [blame]2802 /* Stand-alone HCI commands must be flaged as
2803 * single-command requests.
2804 */
2805 bt_cb(skb)->req.start = true;
2806
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2807 skb_queue_tail(&hdev->cmd_q, skb);
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]2808 queue_work(hdev->workqueue, &hdev->cmd_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2809
2810 return 0;
2811}
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2812
Johan Hedberg71c76a12013-03-05 20:37:46 +0200[diff] [blame]2813/* Queue a command to an asynchronous HCI request */
Johan Hedberg07dc93d2013-04-19 10:14:51 +0300[diff] [blame]2814void hci_req_add_ev(struct hci_request *req, u16 opcode, u32 plen,
2815 const void *param, u8 event)
Johan Hedberg71c76a12013-03-05 20:37:46 +0200[diff] [blame]2816{
2817 struct hci_dev *hdev = req->hdev;
2818 struct sk_buff *skb;
2819
2820 BT_DBG("%s opcode 0x%4.4x plen %d", hdev->name, opcode, plen);
2821
Andre Guedes34739c12013-03-08 11:20:18 -0300[diff] [blame]2822 /* If an error occured during request building, there is no point in
2823 * queueing the HCI command. We can simply return.
2824 */
2825 if (req->err)
2826 return;
2827
Johan Hedberg71c76a12013-03-05 20:37:46 +0200[diff] [blame]2828 skb = hci_prepare_cmd(hdev, opcode, plen, param);
2829 if (!skb) {
Andre Guedes5d73e032013-03-08 11:20:16 -0300[diff] [blame]2830 BT_ERR("%s no memory for command (opcode 0x%4.4x)",
2831 hdev->name, opcode);
2832 req->err = -ENOMEM;
Andre Guedese348fe62013-03-08 11:20:17 -0300[diff] [blame]2833 return;
Johan Hedberg71c76a12013-03-05 20:37:46 +0200[diff] [blame]2834 }
2835
2836 if (skb_queue_empty(&req->cmd_q))
2837 bt_cb(skb)->req.start = true;
2838
Johan Hedberg02350a72013-04-03 21:50:29 +0300[diff] [blame]2839 bt_cb(skb)->req.event = event;
2840
Johan Hedberg71c76a12013-03-05 20:37:46 +0200[diff] [blame]2841 skb_queue_tail(&req->cmd_q, skb);
Johan Hedberg71c76a12013-03-05 20:37:46 +0200[diff] [blame]2842}
2843
Johan Hedberg07dc93d2013-04-19 10:14:51 +0300[diff] [blame]2844void hci_req_add(struct hci_request *req, u16 opcode, u32 plen,
2845 const void *param)
Johan Hedberg02350a72013-04-03 21:50:29 +0300[diff] [blame]2846{
2847 hci_req_add_ev(req, opcode, plen, param, 0);
2848}
2849
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2850/* Get data from the previously sent command */
Marcel Holtmanna9de9242007-10-20 13:33:56 +0200[diff] [blame]2851void *hci_sent_cmd_data(struct hci_dev *hdev, __u16 opcode)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2852{
2853 struct hci_command_hdr *hdr;
2854
2855 if (!hdev->sent_cmd)
2856 return NULL;
2857
2858 hdr = (void *) hdev->sent_cmd->data;
2859
Marcel Holtmanna9de9242007-10-20 13:33:56 +0200[diff] [blame]2860 if (hdr->opcode != cpu_to_le16(opcode))
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2861 return NULL;
2862
Andrei Emeltchenkof0e09512012-06-11 11:13:09 +0300[diff] [blame]2863 BT_DBG("%s opcode 0x%4.4x", hdev->name, opcode);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2864
2865 return hdev->sent_cmd->data + HCI_COMMAND_HDR_SIZE;
2866}
2867
2868/* Send ACL data */
2869static void hci_add_acl_hdr(struct sk_buff *skb, __u16 handle, __u16 flags)
2870{
2871 struct hci_acl_hdr *hdr;
2872 int len = skb->len;
2873
Arnaldo Carvalho de Melobadff6d2007-03-13 13:06:52 -0300[diff] [blame]2874 skb_push(skb, HCI_ACL_HDR_SIZE);
2875 skb_reset_transport_header(skb);
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -0700[diff] [blame]2876 hdr = (struct hci_acl_hdr *)skb_transport_header(skb);
YOSHIFUJI Hideakiaca31922007-03-25 20:12:50 -0700[diff] [blame]2877 hdr->handle = cpu_to_le16(hci_handle_pack(handle, flags));
2878 hdr->dlen = cpu_to_le16(len);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2879}
2880
Andrei Emeltchenkoee22be72012-09-21 12:30:04 +0300[diff] [blame]2881static void hci_queue_acl(struct hci_chan *chan, struct sk_buff_head *queue,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]2882 struct sk_buff *skb, __u16 flags)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2883{
Andrei Emeltchenkoee22be72012-09-21 12:30:04 +0300[diff] [blame]2884 struct hci_conn *conn = chan->conn;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2885 struct hci_dev *hdev = conn->hdev;
2886 struct sk_buff *list;
2887
Gustavo Padovan087bfd92012-05-11 13:16:11 -0300[diff] [blame]2888 skb->len = skb_headlen(skb);
2889 skb->data_len = 0;
2890
2891 bt_cb(skb)->pkt_type = HCI_ACLDATA_PKT;
Andrei Emeltchenko204a6e52012-10-15 11:58:39 +0300[diff] [blame]2892
2893 switch (hdev->dev_type) {
2894 case HCI_BREDR:
2895 hci_add_acl_hdr(skb, conn->handle, flags);
2896 break;
2897 case HCI_AMP:
2898 hci_add_acl_hdr(skb, chan->handle, flags);
2899 break;
2900 default:
2901 BT_ERR("%s unknown dev_type %d", hdev->name, hdev->dev_type);
2902 return;
2903 }
Gustavo Padovan087bfd92012-05-11 13:16:11 -0300[diff] [blame]2904
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]2905 list = skb_shinfo(skb)->frag_list;
2906 if (!list) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2907 /* Non fragmented */
2908 BT_DBG("%s nonfrag skb %p len %d", hdev->name, skb, skb->len);
2909
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]2910 skb_queue_tail(queue, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2911 } else {
2912 /* Fragmented */
2913 BT_DBG("%s frag %p len %d", hdev->name, skb, skb->len);
2914
2915 skb_shinfo(skb)->frag_list = NULL;
2916
2917 /* Queue all fragments atomically */
Gustavo F. Padovanaf3e6352011-12-22 16:35:05 -0200[diff] [blame]2918 spin_lock(&queue->lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2919
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]2920 __skb_queue_tail(queue, skb);
Andrei Emeltchenkoe7021122011-01-03 11:14:36 +0200[diff] [blame]2921
2922 flags &= ~ACL_START;
2923 flags |= ACL_CONT;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2924 do {
2925 skb = list; list = list->next;
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]2926
Marcel Holtmann0d48d932005-08-09 20:30:28 -0700[diff] [blame]2927 bt_cb(skb)->pkt_type = HCI_ACLDATA_PKT;
Andrei Emeltchenkoe7021122011-01-03 11:14:36 +0200[diff] [blame]2928 hci_add_acl_hdr(skb, conn->handle, flags);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2929
2930 BT_DBG("%s frag %p len %d", hdev->name, skb, skb->len);
2931
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]2932 __skb_queue_tail(queue, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2933 } while (list);
2934
Gustavo F. Padovanaf3e6352011-12-22 16:35:05 -0200[diff] [blame]2935 spin_unlock(&queue->lock);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2936 }
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]2937}
2938
2939void hci_send_acl(struct hci_chan *chan, struct sk_buff *skb, __u16 flags)
2940{
Andrei Emeltchenkoee22be72012-09-21 12:30:04 +0300[diff] [blame]2941 struct hci_dev *hdev = chan->conn->hdev;
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]2942
Andrei Emeltchenkof0e09512012-06-11 11:13:09 +0300[diff] [blame]2943 BT_DBG("%s chan %p flags 0x%4.4x", hdev->name, chan, flags);
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]2944
Andrei Emeltchenkoee22be72012-09-21 12:30:04 +0300[diff] [blame]2945 hci_queue_acl(chan, &chan->data_q, skb, flags);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2946
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]2947 queue_work(hdev->workqueue, &hdev->tx_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2948}
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2949
2950/* Send SCO data */
Gustavo F. Padovan0d861d82010-05-01 16:15:35 -0300[diff] [blame]2951void hci_send_sco(struct hci_conn *conn, struct sk_buff *skb)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2952{
2953 struct hci_dev *hdev = conn->hdev;
2954 struct hci_sco_hdr hdr;
2955
2956 BT_DBG("%s len %d", hdev->name, skb->len);
2957
YOSHIFUJI Hideakiaca31922007-03-25 20:12:50 -0700[diff] [blame]2958 hdr.handle = cpu_to_le16(conn->handle);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2959 hdr.dlen = skb->len;
2960
Arnaldo Carvalho de Melobadff6d2007-03-13 13:06:52 -0300[diff] [blame]2961 skb_push(skb, HCI_SCO_HDR_SIZE);
2962 skb_reset_transport_header(skb);
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -0700[diff] [blame]2963 memcpy(skb_transport_header(skb), &hdr, HCI_SCO_HDR_SIZE);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2964
Marcel Holtmann0d48d932005-08-09 20:30:28 -0700[diff] [blame]2965 bt_cb(skb)->pkt_type = HCI_SCODATA_PKT;
Marcel Holtmannc78ae282009-11-18 01:02:54 +0100[diff] [blame]2966
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2967 skb_queue_tail(&conn->data_q, skb);
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]2968 queue_work(hdev->workqueue, &hdev->tx_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2969}
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2970
2971/* ---- HCI TX task (outgoing data) ---- */
2972
2973/* HCI Connection scheduler */
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]2974static struct hci_conn *hci_low_sent(struct hci_dev *hdev, __u8 type,
2975 int *quote)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2976{
2977 struct hci_conn_hash *h = &hdev->conn_hash;
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]2978 struct hci_conn *conn = NULL, *c;
Mikel Astizabc5de82012-04-11 08:48:47 +0200[diff] [blame]2979 unsigned int num = 0, min = ~0;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2980
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]2981 /* We don't have to lock device here. Connections are always
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2982 * added and removed with TX task disabled. */
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]2983
2984 rcu_read_lock();
2985
2986 list_for_each_entry_rcu(c, &h->list, list) {
Marcel Holtmann769be972008-07-14 20:13:49 +0200[diff] [blame]2987 if (c->type != type || skb_queue_empty(&c->data_q))
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2988 continue;
Marcel Holtmann769be972008-07-14 20:13:49 +0200[diff] [blame]2989
2990 if (c->state != BT_CONNECTED && c->state != BT_CONFIG)
2991 continue;
2992
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]2993 num++;
2994
2995 if (c->sent < min) {
2996 min = c->sent;
2997 conn = c;
2998 }
Luiz Augusto von Dentz52087a72011-08-17 16:23:00 +0300[diff] [blame]2999
3000 if (hci_conn_num(hdev, type) == num)
3001 break;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3002 }
3003
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3004 rcu_read_unlock();
3005
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3006 if (conn) {
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3007 int cnt, q;
3008
3009 switch (conn->type) {
3010 case ACL_LINK:
3011 cnt = hdev->acl_cnt;
3012 break;
3013 case SCO_LINK:
3014 case ESCO_LINK:
3015 cnt = hdev->sco_cnt;
3016 break;
3017 case LE_LINK:
3018 cnt = hdev->le_mtu ? hdev->le_cnt : hdev->acl_cnt;
3019 break;
3020 default:
3021 cnt = 0;
3022 BT_ERR("Unknown link type");
3023 }
3024
3025 q = cnt / num;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3026 *quote = q ? q : 1;
3027 } else
3028 *quote = 0;
3029
3030 BT_DBG("conn %p quote %d", conn, *quote);
3031 return conn;
3032}
3033
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3034static void hci_link_tx_to(struct hci_dev *hdev, __u8 type)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3035{
3036 struct hci_conn_hash *h = &hdev->conn_hash;
Luiz Augusto von Dentz8035ded2011-11-01 10:58:56 +0200[diff] [blame]3037 struct hci_conn *c;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3038
Ville Tervobae1f5d92011-02-10 22:38:53 -0300[diff] [blame]3039 BT_ERR("%s link tx timeout", hdev->name);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3040
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3041 rcu_read_lock();
3042
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3043 /* Kill stalled connections */
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3044 list_for_each_entry_rcu(c, &h->list, list) {
Ville Tervobae1f5d92011-02-10 22:38:53 -0300[diff] [blame]3045 if (c->type == type && c->sent) {
Andrei Emeltchenko6ed93dc2012-09-25 12:49:43 +0300[diff] [blame]3046 BT_ERR("%s killing stalled connection %pMR",
3047 hdev->name, &c->dst);
Andre Guedesbed71742013-01-30 11:50:56 -0300[diff] [blame]3048 hci_disconnect(c, HCI_ERROR_REMOTE_USER_TERM);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3049 }
3050 }
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3051
3052 rcu_read_unlock();
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3053}
3054
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3055static struct hci_chan *hci_chan_sent(struct hci_dev *hdev, __u8 type,
3056 int *quote)
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3057{
3058 struct hci_conn_hash *h = &hdev->conn_hash;
3059 struct hci_chan *chan = NULL;
Mikel Astizabc5de82012-04-11 08:48:47 +0200[diff] [blame]3060 unsigned int num = 0, min = ~0, cur_prio = 0;
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3061 struct hci_conn *conn;
3062 int cnt, q, conn_num = 0;
3063
3064 BT_DBG("%s", hdev->name);
3065
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3066 rcu_read_lock();
3067
3068 list_for_each_entry_rcu(conn, &h->list, list) {
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3069 struct hci_chan *tmp;
3070
3071 if (conn->type != type)
3072 continue;
3073
3074 if (conn->state != BT_CONNECTED && conn->state != BT_CONFIG)
3075 continue;
3076
3077 conn_num++;
3078
Gustavo F. Padovan8192ede2011-12-14 15:08:48 -0200[diff] [blame]3079 list_for_each_entry_rcu(tmp, &conn->chan_list, list) {
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3080 struct sk_buff *skb;
3081
3082 if (skb_queue_empty(&tmp->data_q))
3083 continue;
3084
3085 skb = skb_peek(&tmp->data_q);
3086 if (skb->priority < cur_prio)
3087 continue;
3088
3089 if (skb->priority > cur_prio) {
3090 num = 0;
3091 min = ~0;
3092 cur_prio = skb->priority;
3093 }
3094
3095 num++;
3096
3097 if (conn->sent < min) {
3098 min = conn->sent;
3099 chan = tmp;
3100 }
3101 }
3102
3103 if (hci_conn_num(hdev, type) == conn_num)
3104 break;
3105 }
3106
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3107 rcu_read_unlock();
3108
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3109 if (!chan)
3110 return NULL;
3111
3112 switch (chan->conn->type) {
3113 case ACL_LINK:
3114 cnt = hdev->acl_cnt;
3115 break;
Andrei Emeltchenkobd1eb662012-10-10 17:38:30 +0300[diff] [blame]3116 case AMP_LINK:
3117 cnt = hdev->block_cnt;
3118 break;
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3119 case SCO_LINK:
3120 case ESCO_LINK:
3121 cnt = hdev->sco_cnt;
3122 break;
3123 case LE_LINK:
3124 cnt = hdev->le_mtu ? hdev->le_cnt : hdev->acl_cnt;
3125 break;
3126 default:
3127 cnt = 0;
3128 BT_ERR("Unknown link type");
3129 }
3130
3131 q = cnt / num;
3132 *quote = q ? q : 1;
3133 BT_DBG("chan %p quote %d", chan, *quote);
3134 return chan;
3135}
3136
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3137static void hci_prio_recalculate(struct hci_dev *hdev, __u8 type)
3138{
3139 struct hci_conn_hash *h = &hdev->conn_hash;
3140 struct hci_conn *conn;
3141 int num = 0;
3142
3143 BT_DBG("%s", hdev->name);
3144
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3145 rcu_read_lock();
3146
3147 list_for_each_entry_rcu(conn, &h->list, list) {
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3148 struct hci_chan *chan;
3149
3150 if (conn->type != type)
3151 continue;
3152
3153 if (conn->state != BT_CONNECTED && conn->state != BT_CONFIG)
3154 continue;
3155
3156 num++;
3157
Gustavo F. Padovan8192ede2011-12-14 15:08:48 -0200[diff] [blame]3158 list_for_each_entry_rcu(chan, &conn->chan_list, list) {
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3159 struct sk_buff *skb;
3160
3161 if (chan->sent) {
3162 chan->sent = 0;
3163 continue;
3164 }
3165
3166 if (skb_queue_empty(&chan->data_q))
3167 continue;
3168
3169 skb = skb_peek(&chan->data_q);
3170 if (skb->priority >= HCI_PRIO_MAX - 1)
3171 continue;
3172
3173 skb->priority = HCI_PRIO_MAX - 1;
3174
3175 BT_DBG("chan %p skb %p promoted to %d", chan, skb,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3176 skb->priority);
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3177 }
3178
3179 if (hci_conn_num(hdev, type) == num)
3180 break;
3181 }
Gustavo F. Padovanbf4c6322011-12-14 22:54:12 -0200[diff] [blame]3182
3183 rcu_read_unlock();
3184
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3185}
3186
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3187static inline int __get_blocks(struct hci_dev *hdev, struct sk_buff *skb)
3188{
3189 /* Calculate count of blocks used by this packet */
3190 return DIV_ROUND_UP(skb->len - HCI_ACL_HDR_SIZE, hdev->block_len);
3191}
3192
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3193static void __check_timeout(struct hci_dev *hdev, unsigned int cnt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3194{
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3195 if (!test_bit(HCI_RAW, &hdev->flags)) {
3196 /* ACL tx timeout must be longer than maximum
3197 * link supervision timeout (40.9 seconds) */
Andrei Emeltchenko63d2bc12012-02-03 16:27:55 +0200[diff] [blame]3198 if (!cnt && time_after(jiffies, hdev->acl_last_tx +
Andrei Emeltchenko5f246e82012-06-11 11:13:07 +0300[diff] [blame]3199 HCI_ACL_TX_TIMEOUT))
Ville Tervobae1f5d92011-02-10 22:38:53 -0300[diff] [blame]3200 hci_link_tx_to(hdev, ACL_LINK);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3201 }
Andrei Emeltchenko63d2bc12012-02-03 16:27:55 +0200[diff] [blame]3202}
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3203
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3204static void hci_sched_acl_pkt(struct hci_dev *hdev)
Andrei Emeltchenko63d2bc12012-02-03 16:27:55 +0200[diff] [blame]3205{
3206 unsigned int cnt = hdev->acl_cnt;
3207 struct hci_chan *chan;
3208 struct sk_buff *skb;
3209 int quote;
3210
3211 __check_timeout(hdev, cnt);
Marcel Holtmann04837f62006-07-03 10:02:33 +0200[diff] [blame]3212
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3213 while (hdev->acl_cnt &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3214 (chan = hci_chan_sent(hdev, ACL_LINK, &quote))) {
Luiz Augusto von Dentzec1cce22011-11-02 15:52:02 +0200[diff] [blame]3215 u32 priority = (skb_peek(&chan->data_q))->priority;
3216 while (quote-- && (skb = skb_peek(&chan->data_q))) {
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3217 BT_DBG("chan %p skb %p len %d priority %u", chan, skb,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3218 skb->len, skb->priority);
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3219
Luiz Augusto von Dentzec1cce22011-11-02 15:52:02 +0200[diff] [blame]3220 /* Stop if priority has changed */
3221 if (skb->priority < priority)
3222 break;
3223
3224 skb = skb_dequeue(&chan->data_q);
3225
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3226 hci_conn_enter_active_mode(chan->conn,
Gustavo F. Padovan04124682012-03-08 01:25:00 -0300[diff] [blame]3227 bt_cb(skb)->force_active);
Marcel Holtmann04837f62006-07-03 10:02:33 +0200[diff] [blame]3228
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3229 hci_send_frame(hdev, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3230 hdev->acl_last_tx = jiffies;
3231
3232 hdev->acl_cnt--;
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3233 chan->sent++;
3234 chan->conn->sent++;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3235 }
3236 }
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3237
3238 if (cnt != hdev->acl_cnt)
3239 hci_prio_recalculate(hdev, ACL_LINK);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3240}
3241
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3242static void hci_sched_acl_blk(struct hci_dev *hdev)
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3243{
Andrei Emeltchenko63d2bc12012-02-03 16:27:55 +0200[diff] [blame]3244 unsigned int cnt = hdev->block_cnt;
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3245 struct hci_chan *chan;
3246 struct sk_buff *skb;
3247 int quote;
Andrei Emeltchenkobd1eb662012-10-10 17:38:30 +0300[diff] [blame]3248 u8 type;
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3249
Andrei Emeltchenko63d2bc12012-02-03 16:27:55 +0200[diff] [blame]3250 __check_timeout(hdev, cnt);
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3251
Andrei Emeltchenkobd1eb662012-10-10 17:38:30 +0300[diff] [blame]3252 BT_DBG("%s", hdev->name);
3253
3254 if (hdev->dev_type == HCI_AMP)
3255 type = AMP_LINK;
3256 else
3257 type = ACL_LINK;
3258
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3259 while (hdev->block_cnt > 0 &&
Andrei Emeltchenkobd1eb662012-10-10 17:38:30 +0300[diff] [blame]3260 (chan = hci_chan_sent(hdev, type, &quote))) {
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3261 u32 priority = (skb_peek(&chan->data_q))->priority;
3262 while (quote > 0 && (skb = skb_peek(&chan->data_q))) {
3263 int blocks;
3264
3265 BT_DBG("chan %p skb %p len %d priority %u", chan, skb,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3266 skb->len, skb->priority);
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3267
3268 /* Stop if priority has changed */
3269 if (skb->priority < priority)
3270 break;
3271
3272 skb = skb_dequeue(&chan->data_q);
3273
3274 blocks = __get_blocks(hdev, skb);
3275 if (blocks > hdev->block_cnt)
3276 return;
3277
3278 hci_conn_enter_active_mode(chan->conn,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3279 bt_cb(skb)->force_active);
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3280
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3281 hci_send_frame(hdev, skb);
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3282 hdev->acl_last_tx = jiffies;
3283
3284 hdev->block_cnt -= blocks;
3285 quote -= blocks;
3286
3287 chan->sent += blocks;
3288 chan->conn->sent += blocks;
3289 }
3290 }
3291
3292 if (cnt != hdev->block_cnt)
Andrei Emeltchenkobd1eb662012-10-10 17:38:30 +0300[diff] [blame]3293 hci_prio_recalculate(hdev, type);
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3294}
3295
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3296static void hci_sched_acl(struct hci_dev *hdev)
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3297{
3298 BT_DBG("%s", hdev->name);
3299
Andrei Emeltchenkobd1eb662012-10-10 17:38:30 +0300[diff] [blame]3300 /* No ACL link over BR/EDR controller */
3301 if (!hci_conn_num(hdev, ACL_LINK) && hdev->dev_type == HCI_BREDR)
3302 return;
3303
3304 /* No AMP link over AMP controller */
3305 if (!hci_conn_num(hdev, AMP_LINK) && hdev->dev_type == HCI_AMP)
Andrei Emeltchenkob71d3852012-02-03 16:27:54 +0200[diff] [blame]3306 return;
3307
3308 switch (hdev->flow_ctl_mode) {
3309 case HCI_FLOW_CTL_MODE_PACKET_BASED:
3310 hci_sched_acl_pkt(hdev);
3311 break;
3312
3313 case HCI_FLOW_CTL_MODE_BLOCK_BASED:
3314 hci_sched_acl_blk(hdev);
3315 break;
3316 }
3317}
3318
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3319/* Schedule SCO */
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3320static void hci_sched_sco(struct hci_dev *hdev)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3321{
3322 struct hci_conn *conn;
3323 struct sk_buff *skb;
3324 int quote;
3325
3326 BT_DBG("%s", hdev->name);
3327
Luiz Augusto von Dentz52087a72011-08-17 16:23:00 +0300[diff] [blame]3328 if (!hci_conn_num(hdev, SCO_LINK))
3329 return;
3330
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3331 while (hdev->sco_cnt && (conn = hci_low_sent(hdev, SCO_LINK, &quote))) {
3332 while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
3333 BT_DBG("skb %p len %d", skb, skb->len);
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3334 hci_send_frame(hdev, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3335
3336 conn->sent++;
3337 if (conn->sent == ~0)
3338 conn->sent = 0;
3339 }
3340 }
3341}
3342
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3343static void hci_sched_esco(struct hci_dev *hdev)
Marcel Holtmannb6a0dc82007-10-20 14:55:10 +0200[diff] [blame]3344{
3345 struct hci_conn *conn;
3346 struct sk_buff *skb;
3347 int quote;
3348
3349 BT_DBG("%s", hdev->name);
3350
Luiz Augusto von Dentz52087a72011-08-17 16:23:00 +0300[diff] [blame]3351 if (!hci_conn_num(hdev, ESCO_LINK))
3352 return;
3353
Gustavo Padovan8fc9ced2012-05-23 04:04:21 -0300[diff] [blame]3354 while (hdev->sco_cnt && (conn = hci_low_sent(hdev, ESCO_LINK,
3355 &quote))) {
Marcel Holtmannb6a0dc82007-10-20 14:55:10 +0200[diff] [blame]3356 while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
3357 BT_DBG("skb %p len %d", skb, skb->len);
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3358 hci_send_frame(hdev, skb);
Marcel Holtmannb6a0dc82007-10-20 14:55:10 +0200[diff] [blame]3359
3360 conn->sent++;
3361 if (conn->sent == ~0)
3362 conn->sent = 0;
3363 }
3364 }
3365}
3366
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3367static void hci_sched_le(struct hci_dev *hdev)
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3368{
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3369 struct hci_chan *chan;
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3370 struct sk_buff *skb;
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3371 int quote, cnt, tmp;
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3372
3373 BT_DBG("%s", hdev->name);
3374
Luiz Augusto von Dentz52087a72011-08-17 16:23:00 +0300[diff] [blame]3375 if (!hci_conn_num(hdev, LE_LINK))
3376 return;
3377
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3378 if (!test_bit(HCI_RAW, &hdev->flags)) {
3379 /* LE tx timeout must be longer than maximum
3380 * link supervision timeout (40.9 seconds) */
Ville Tervobae1f5d92011-02-10 22:38:53 -0300[diff] [blame]3381 if (!hdev->le_cnt && hdev->le_pkts &&
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3382 time_after(jiffies, hdev->le_last_tx + HZ * 45))
Ville Tervobae1f5d92011-02-10 22:38:53 -0300[diff] [blame]3383 hci_link_tx_to(hdev, LE_LINK);
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3384 }
3385
3386 cnt = hdev->le_pkts ? hdev->le_cnt : hdev->acl_cnt;
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3387 tmp = cnt;
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3388 while (cnt && (chan = hci_chan_sent(hdev, LE_LINK, &quote))) {
Luiz Augusto von Dentzec1cce22011-11-02 15:52:02 +0200[diff] [blame]3389 u32 priority = (skb_peek(&chan->data_q))->priority;
3390 while (quote-- && (skb = skb_peek(&chan->data_q))) {
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3391 BT_DBG("chan %p skb %p len %d priority %u", chan, skb,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3392 skb->len, skb->priority);
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3393
Luiz Augusto von Dentzec1cce22011-11-02 15:52:02 +0200[diff] [blame]3394 /* Stop if priority has changed */
3395 if (skb->priority < priority)
3396 break;
3397
3398 skb = skb_dequeue(&chan->data_q);
3399
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3400 hci_send_frame(hdev, skb);
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3401 hdev->le_last_tx = jiffies;
3402
3403 cnt--;
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3404 chan->sent++;
3405 chan->conn->sent++;
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3406 }
3407 }
Luiz Augusto von Dentz73d80de2011-11-02 15:52:01 +0200[diff] [blame]3408
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3409 if (hdev->le_pkts)
3410 hdev->le_cnt = cnt;
3411 else
3412 hdev->acl_cnt = cnt;
Luiz Augusto von Dentz02b20f02011-11-02 15:52:03 +0200[diff] [blame]3413
3414 if (cnt != tmp)
3415 hci_prio_recalculate(hdev, LE_LINK);
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3416}
3417
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]3418static void hci_tx_work(struct work_struct *work)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3419{
Gustavo F. Padovan3eff45e2011-12-15 00:50:02 -0200[diff] [blame]3420 struct hci_dev *hdev = container_of(work, struct hci_dev, tx_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3421 struct sk_buff *skb;
3422
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3423 BT_DBG("%s acl %d sco %d le %d", hdev->name, hdev->acl_cnt,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3424 hdev->sco_cnt, hdev->le_cnt);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3425
Marcel Holtmann52de5992013-09-03 18:08:38 -0700[diff] [blame]3426 if (!test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
3427 /* Schedule queues and send stuff to HCI driver */
3428 hci_sched_acl(hdev);
3429 hci_sched_sco(hdev);
3430 hci_sched_esco(hdev);
3431 hci_sched_le(hdev);
3432 }
Ville Tervo6ed58ec2011-02-10 22:38:48 -0300[diff] [blame]3433
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3434 /* Send next queued raw (unknown type) packet */
3435 while ((skb = skb_dequeue(&hdev->raw_q)))
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3436 hci_send_frame(hdev, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3437}
3438
Lucas De Marchi25985ed2011-03-30 22:57:33 -0300[diff] [blame]3439/* ----- HCI RX task (incoming data processing) ----- */
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3440
3441/* ACL data packet */
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3442static void hci_acldata_packet(struct hci_dev *hdev, struct sk_buff *skb)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3443{
3444 struct hci_acl_hdr *hdr = (void *) skb->data;
3445 struct hci_conn *conn;
3446 __u16 handle, flags;
3447
3448 skb_pull(skb, HCI_ACL_HDR_SIZE);
3449
3450 handle = __le16_to_cpu(hdr->handle);
3451 flags = hci_flags(handle);
3452 handle = hci_handle(handle);
3453
Andrei Emeltchenkof0e09512012-06-11 11:13:09 +0300[diff] [blame]3454 BT_DBG("%s len %d handle 0x%4.4x flags 0x%4.4x", hdev->name, skb->len,
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3455 handle, flags);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3456
3457 hdev->stat.acl_rx++;
3458
3459 hci_dev_lock(hdev);
3460 conn = hci_conn_hash_lookup_handle(hdev, handle);
3461 hci_dev_unlock(hdev);
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]3462
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3463 if (conn) {
Mat Martineau65983fc2011-12-13 15:06:02 -0800[diff] [blame]3464 hci_conn_enter_active_mode(conn, BT_POWER_FORCE_ACTIVE_OFF);
Marcel Holtmann04837f62006-07-03 10:02:33 +0200[diff] [blame]3465
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3466 /* Send to upper protocol */
Ulisses Furquim686ebf22011-12-21 10:11:33 -0200[diff] [blame]3467 l2cap_recv_acldata(conn, skb, flags);
3468 return;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3469 } else {
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]3470 BT_ERR("%s ACL packet for unknown connection handle %d",
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3471 hdev->name, handle);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3472 }
3473
3474 kfree_skb(skb);
3475}
3476
3477/* SCO data packet */
Gustavo Padovan6039aa732012-05-23 04:04:18 -0300[diff] [blame]3478static void hci_scodata_packet(struct hci_dev *hdev, struct sk_buff *skb)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3479{
3480 struct hci_sco_hdr *hdr = (void *) skb->data;
3481 struct hci_conn *conn;
3482 __u16 handle;
3483
3484 skb_pull(skb, HCI_SCO_HDR_SIZE);
3485
3486 handle = __le16_to_cpu(hdr->handle);
3487
Andrei Emeltchenkof0e09512012-06-11 11:13:09 +0300[diff] [blame]3488 BT_DBG("%s len %d handle 0x%4.4x", hdev->name, skb->len, handle);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3489
3490 hdev->stat.sco_rx++;
3491
3492 hci_dev_lock(hdev);
3493 conn = hci_conn_hash_lookup_handle(hdev, handle);
3494 hci_dev_unlock(hdev);
3495
3496 if (conn) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3497 /* Send to upper protocol */
Ulisses Furquim686ebf22011-12-21 10:11:33 -0200[diff] [blame]3498 sco_recv_scodata(conn, skb);
3499 return;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3500 } else {
YOSHIFUJI Hideaki8e87d142007-02-09 23:24:33 +0900[diff] [blame]3501 BT_ERR("%s SCO packet for unknown connection handle %d",
Gustavo Padovana8c5fb12012-05-17 00:36:26 -0300[diff] [blame]3502 hdev->name, handle);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3503 }
3504
3505 kfree_skb(skb);
3506}
3507
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3508static bool hci_req_is_complete(struct hci_dev *hdev)
3509{
3510 struct sk_buff *skb;
3511
3512 skb = skb_peek(&hdev->cmd_q);
3513 if (!skb)
3514 return true;
3515
3516 return bt_cb(skb)->req.start;
3517}
3518
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]3519static void hci_resend_last(struct hci_dev *hdev)
3520{
3521 struct hci_command_hdr *sent;
3522 struct sk_buff *skb;
3523 u16 opcode;
3524
3525 if (!hdev->sent_cmd)
3526 return;
3527
3528 sent = (void *) hdev->sent_cmd->data;
3529 opcode = __le16_to_cpu(sent->opcode);
3530 if (opcode == HCI_OP_RESET)
3531 return;
3532
3533 skb = skb_clone(hdev->sent_cmd, GFP_KERNEL);
3534 if (!skb)
3535 return;
3536
3537 skb_queue_head(&hdev->cmd_q, skb);
3538 queue_work(hdev->workqueue, &hdev->cmd_work);
3539}
3540
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3541void hci_req_cmd_complete(struct hci_dev *hdev, u16 opcode, u8 status)
3542{
3543 hci_req_complete_t req_complete = NULL;
3544 struct sk_buff *skb;
3545 unsigned long flags;
3546
3547 BT_DBG("opcode 0x%04x status 0x%02x", opcode, status);
3548
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]3549 /* If the completed command doesn't match the last one that was
3550 * sent we need to do special handling of it.
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3551 */
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]3552 if (!hci_sent_cmd_data(hdev, opcode)) {
3553 /* Some CSR based controllers generate a spontaneous
3554 * reset complete event during init and any pending
3555 * command will never be completed. In such a case we
3556 * need to resend whatever was the last sent
3557 * command.
3558 */
3559 if (test_bit(HCI_INIT, &hdev->flags) && opcode == HCI_OP_RESET)
3560 hci_resend_last(hdev);
3561
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3562 return;
Johan Hedberg42c6b122013-03-05 20:37:49 +0200[diff] [blame]3563 }
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3564
3565 /* If the command succeeded and there's still more commands in
3566 * this request the request is not yet complete.
3567 */
3568 if (!status && !hci_req_is_complete(hdev))
3569 return;
3570
3571 /* If this was the last command in a request the complete
3572 * callback would be found in hdev->sent_cmd instead of the
3573 * command queue (hdev->cmd_q).
3574 */
3575 if (hdev->sent_cmd) {
3576 req_complete = bt_cb(hdev->sent_cmd)->req.complete;
Johan Hedberg53e21fb2013-07-27 14:11:14 -0500[diff] [blame]3577
3578 if (req_complete) {
3579 /* We must set the complete callback to NULL to
3580 * avoid calling the callback more than once if
3581 * this function gets called again.
3582 */
3583 bt_cb(hdev->sent_cmd)->req.complete = NULL;
3584
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3585 goto call_complete;
Johan Hedberg53e21fb2013-07-27 14:11:14 -0500[diff] [blame]3586 }
Johan Hedberg9238f362013-03-05 20:37:48 +0200[diff] [blame]3587 }
3588
3589 /* Remove all pending commands belonging to this request */
3590 spin_lock_irqsave(&hdev->cmd_q.lock, flags);
3591 while ((skb = __skb_dequeue(&hdev->cmd_q))) {
3592 if (bt_cb(skb)->req.start) {
3593 __skb_queue_head(&hdev->cmd_q, skb);
3594 break;
3595 }
3596
3597 req_complete = bt_cb(skb)->req.complete;
3598 kfree_skb(skb);
3599 }
3600 spin_unlock_irqrestore(&hdev->cmd_q.lock, flags);
3601
3602call_complete:
3603 if (req_complete)
3604 req_complete(hdev, status);
3605}
3606
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]3607static void hci_rx_work(struct work_struct *work)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3608{
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]3609 struct hci_dev *hdev = container_of(work, struct hci_dev, rx_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3610 struct sk_buff *skb;
3611
3612 BT_DBG("%s", hdev->name);
3613
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3614 while ((skb = skb_dequeue(&hdev->rx_q))) {
Marcel Holtmanncd82e612012-02-20 20:34:38 +0100[diff] [blame]3615 /* Send copy to monitor */
3616 hci_send_to_monitor(hdev, skb);
3617
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3618 if (atomic_read(&hdev->promisc)) {
3619 /* Send copy to the sockets */
Marcel Holtmann470fe1b2012-02-20 14:50:30 +0100[diff] [blame]3620 hci_send_to_sock(hdev, skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3621 }
3622
Marcel Holtmann0736cfa2013-08-26 21:40:51 -0700[diff] [blame]3623 if (test_bit(HCI_RAW, &hdev->flags) ||
3624 test_bit(HCI_USER_CHANNEL, &hdev->dev_flags)) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3625 kfree_skb(skb);
3626 continue;
3627 }
3628
3629 if (test_bit(HCI_INIT, &hdev->flags)) {
3630 /* Don't process data packets in this states. */
Marcel Holtmann0d48d932005-08-09 20:30:28 -0700[diff] [blame]3631 switch (bt_cb(skb)->pkt_type) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3632 case HCI_ACLDATA_PKT:
3633 case HCI_SCODATA_PKT:
3634 kfree_skb(skb);
3635 continue;
Stephen Hemminger3ff50b72007-04-20 17:09:22 -0700[diff] [blame]3636 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3637 }
3638
3639 /* Process frame */
Marcel Holtmann0d48d932005-08-09 20:30:28 -0700[diff] [blame]3640 switch (bt_cb(skb)->pkt_type) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3641 case HCI_EVENT_PKT:
Marcel Holtmannb78752c2010-08-08 23:06:53 -0400[diff] [blame]3642 BT_DBG("%s Event packet", hdev->name);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3643 hci_event_packet(hdev, skb);
3644 break;
3645
3646 case HCI_ACLDATA_PKT:
3647 BT_DBG("%s ACL data packet", hdev->name);
3648 hci_acldata_packet(hdev, skb);
3649 break;
3650
3651 case HCI_SCODATA_PKT:
3652 BT_DBG("%s SCO data packet", hdev->name);
3653 hci_scodata_packet(hdev, skb);
3654 break;
3655
3656 default:
3657 kfree_skb(skb);
3658 break;
3659 }
3660 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3661}
3662
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]3663static void hci_cmd_work(struct work_struct *work)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3664{
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]3665 struct hci_dev *hdev = container_of(work, struct hci_dev, cmd_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3666 struct sk_buff *skb;
3667
Andrei Emeltchenko21047862012-07-10 15:27:47 +0300[diff] [blame]3668 BT_DBG("%s cmd_cnt %d cmd queued %d", hdev->name,
3669 atomic_read(&hdev->cmd_cnt), skb_queue_len(&hdev->cmd_q));
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3670
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3671 /* Send queued commands */
Andrei Emeltchenko5a08ecc2011-01-11 17:20:20 +0200[diff] [blame]3672 if (atomic_read(&hdev->cmd_cnt)) {
3673 skb = skb_dequeue(&hdev->cmd_q);
3674 if (!skb)
3675 return;
3676
Wei Yongjun7585b972009-02-25 18:29:52 +0800[diff] [blame]3677 kfree_skb(hdev->sent_cmd);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3678
Marcel Holtmanna675d7f2013-09-03 18:11:07 -0700[diff] [blame]3679 hdev->sent_cmd = skb_clone(skb, GFP_KERNEL);
Andrei Emeltchenko70f230202010-12-01 16:58:25 +0200[diff] [blame]3680 if (hdev->sent_cmd) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3681 atomic_dec(&hdev->cmd_cnt);
Marcel Holtmann57d17d72013-10-10 14:54:17 -0700[diff] [blame]3682 hci_send_frame(hdev, skb);
Szymon Janc7bdb8a52011-07-26 22:46:54 +0200[diff] [blame]3683 if (test_bit(HCI_RESET, &hdev->flags))
3684 del_timer(&hdev->cmd_timer);
3685 else
3686 mod_timer(&hdev->cmd_timer,
Andrei Emeltchenko5f246e82012-06-11 11:13:07 +0300[diff] [blame]3687 jiffies + HCI_CMD_TIMEOUT);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3688 } else {
3689 skb_queue_head(&hdev->cmd_q, skb);
Gustavo F. Padovanc347b762011-12-14 23:53:47 -0200[diff] [blame]3690 queue_work(hdev->workqueue, &hdev->cmd_work);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3691 }
3692 }
3693}
Andre Guedes2519a1f2011-11-07 11:45:24 -0300[diff] [blame]3694
Andre Guedes31f79562012-04-24 21:02:53 -0300[diff] [blame]3695u8 bdaddr_to_le(u8 bdaddr_type)
3696{
3697 switch (bdaddr_type) {
3698 case BDADDR_LE_PUBLIC:
3699 return ADDR_LE_DEV_PUBLIC;
3700
3701 default:
3702 /* Fallback to LE Random address type */
3703 return ADDR_LE_DEV_RANDOM;
3704 }
3705}