Blame - net/bluetooth/hci_core.c - kernel/msm-4.9

blob: 029d7798cffabdd975d70324adf0ecef136ab066 [file] [log] [blame]

YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1	/*
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2	BlueZ - Bluetooth protocol stack for Linux
				3	Copyright (C) 2000-2001 Qualcomm Incorporated
Gustavo F. Padovan	590051d	2011-12-18 13:39:33 -0200	[diff] [blame]	4	Copyright (C) 2011 ProFUSION Embedded Systems
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	5
				6	Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
				7
				8	This program is free software; you can redistribute it and/or modify
				9	it under the terms of the GNU General Public License version 2 as
				10	published by the Free Software Foundation;
				11
				12	THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
				13	OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
				14	FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
				15	IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	16	CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
				17	WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
				18	ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	19	OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
				20
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	21	ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
				22	COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	23	SOFTWARE IS DISCLAIMED.
				24	*/
				25
				26	/* Bluetooth HCI core. */
				27
Gustavo Padovan	8c520a5	2012-05-23 04:04:22 -0300	[diff] [blame]	28	#include <linux/export.h>
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	29	#include <linux/idr.h>
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	30	#include <linux/rfkill.h>
Marcel Holtmann	baf27f6	2013-10-16 03:28:55 -0700	[diff] [blame]	31	#include <linux/debugfs.h>
Johan Hedberg	99780a7	2014-02-18 10:40:07 +0200	[diff] [blame]	32	#include <linux/crypto.h>
Marcel Holtmann	4721983	2013-10-17 17:24:15 -0700	[diff] [blame]	33	#include <asm/unaligned.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	34
				35	#include <net/bluetooth/bluetooth.h>
				36	#include <net/bluetooth/hci_core.h>
Johan Hedberg	4bc58f5	2014-05-20 09:45:47 +0300	[diff] [blame]	37	#include <net/bluetooth/l2cap.h>
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	38	#include <net/bluetooth/mgmt.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	39
Johan Hedberg	0857dd3	2014-12-19 13:40:20 +0200	[diff] [blame]	40	#include "hci_request.h"
Marcel Holtmann	60c5f5f	2014-12-20 16:05:13 +0100	[diff] [blame]	41	#include "hci_debugfs.h"
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	42	#include "smp.h"
				43
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	44	static void hci_rx_work(struct work_struct *work);
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	45	static void hci_cmd_work(struct work_struct *work);
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	46	static void hci_tx_work(struct work_struct *work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	47
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	48	/* HCI device list */
				49	LIST_HEAD(hci_dev_list);
				50	DEFINE_RWLOCK(hci_dev_list_lock);
				51
				52	/* HCI callback list */
				53	LIST_HEAD(hci_cb_list);
Johan Hedberg	fba7ecf	2015-02-18 14:53:55 +0200	[diff] [blame]	54	DEFINE_MUTEX(hci_cb_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	55
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	56	/* HCI ID Numbering */
				57	static DEFINE_IDA(hci_index_ida);
				58
Marcel Holtmann	baf27f6	2013-10-16 03:28:55 -0700	[diff] [blame]	59	/* ---- HCI debugfs entries ---- */
				60
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	61	static ssize_t dut_mode_read(struct file file, char __user user_buf,
				62	size_t count, loff_t *ppos)
				63	{
				64	struct hci_dev *hdev = file->private_data;
				65	char buf[3];
				66
Marcel Holtmann	b7cb93e	2015-03-13 10:20:35 -0700	[diff] [blame]	67	buf[0] = hci_dev_test_flag(hdev, HCI_DUT_MODE) ? 'Y': 'N';
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	68	buf[1] = '\n';
				69	buf[2] = '\0';
				70	return simple_read_from_buffer(user_buf, count, ppos, buf, 2);
				71	}
				72
				73	static ssize_t dut_mode_write(struct file file, const char __user user_buf,
				74	size_t count, loff_t *ppos)
				75	{
				76	struct hci_dev *hdev = file->private_data;
				77	struct sk_buff *skb;
				78	char buf[32];
				79	size_t buf_size = min(count, (sizeof(buf)-1));
				80	bool enable;
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	81
				82	if (!test_bit(HCI_UP, &hdev->flags))
				83	return -ENETDOWN;
				84
				85	if (copy_from_user(buf, user_buf, buf_size))
				86	return -EFAULT;
				87
				88	buf[buf_size] = '\0';
				89	if (strtobool(buf, &enable))
				90	return -EINVAL;
				91
Marcel Holtmann	b7cb93e	2015-03-13 10:20:35 -0700	[diff] [blame]	92	if (enable == hci_dev_test_flag(hdev, HCI_DUT_MODE))
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	93	return -EALREADY;
				94
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	95	hci_req_sync_lock(hdev);
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	96	if (enable)
				97	skb = __hci_cmd_sync(hdev, HCI_OP_ENABLE_DUT_MODE, 0, NULL,
				98	HCI_CMD_TIMEOUT);
				99	else
				100	skb = __hci_cmd_sync(hdev, HCI_OP_RESET, 0, NULL,
				101	HCI_CMD_TIMEOUT);
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	102	hci_req_sync_unlock(hdev);
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	103
				104	if (IS_ERR(skb))
				105	return PTR_ERR(skb);
				106
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	107	kfree_skb(skb);
				108
Marcel Holtmann	b7cb93e	2015-03-13 10:20:35 -0700	[diff] [blame]	109	hci_dev_change_flag(hdev, HCI_DUT_MODE);
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	110
				111	return count;
				112	}
				113
				114	static const struct file_operations dut_mode_fops = {
				115	.open = simple_open,
				116	.read = dut_mode_read,
				117	.write = dut_mode_write,
				118	.llseek = default_llseek,
				119	};
				120
Marcel Holtmann	4b4113d	2015-10-07 19:52:35 +0200	[diff] [blame]	121	static ssize_t vendor_diag_read(struct file file, char __user user_buf,
				122	size_t count, loff_t *ppos)
				123	{
				124	struct hci_dev *hdev = file->private_data;
				125	char buf[3];
				126
				127	buf[0] = hci_dev_test_flag(hdev, HCI_VENDOR_DIAG) ? 'Y': 'N';
				128	buf[1] = '\n';
				129	buf[2] = '\0';
				130	return simple_read_from_buffer(user_buf, count, ppos, buf, 2);
				131	}
				132
				133	static ssize_t vendor_diag_write(struct file file, const char __user user_buf,
				134	size_t count, loff_t *ppos)
				135	{
				136	struct hci_dev *hdev = file->private_data;
				137	char buf[32];
				138	size_t buf_size = min(count, (sizeof(buf)-1));
				139	bool enable;
				140	int err;
				141
				142	if (copy_from_user(buf, user_buf, buf_size))
				143	return -EFAULT;
				144
				145	buf[buf_size] = '\0';
				146	if (strtobool(buf, &enable))
				147	return -EINVAL;
				148
Marcel Holtmann	7e995b9	2015-10-17 16:00:26 +0200	[diff] [blame]	149	/* When the diagnostic flags are not persistent and the transport
				150	* is not active, then there is no need for the vendor callback.
				151	*
				152	* Instead just store the desired value. If needed the setting
				153	* will be programmed when the controller gets powered on.
				154	*/
				155	if (test_bit(HCI_QUIRK_NON_PERSISTENT_DIAG, &hdev->quirks) &&
				156	!test_bit(HCI_RUNNING, &hdev->flags))
				157	goto done;
				158
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	159	hci_req_sync_lock(hdev);
Marcel Holtmann	4b4113d	2015-10-07 19:52:35 +0200	[diff] [blame]	160	err = hdev->set_diag(hdev, enable);
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	161	hci_req_sync_unlock(hdev);
Marcel Holtmann	4b4113d	2015-10-07 19:52:35 +0200	[diff] [blame]	162
				163	if (err < 0)
				164	return err;
				165
Marcel Holtmann	7e995b9	2015-10-17 16:00:26 +0200	[diff] [blame]	166	done:
Marcel Holtmann	4b4113d	2015-10-07 19:52:35 +0200	[diff] [blame]	167	if (enable)
				168	hci_dev_set_flag(hdev, HCI_VENDOR_DIAG);
				169	else
				170	hci_dev_clear_flag(hdev, HCI_VENDOR_DIAG);
				171
				172	return count;
				173	}
				174
				175	static const struct file_operations vendor_diag_fops = {
				176	.open = simple_open,
				177	.read = vendor_diag_read,
				178	.write = vendor_diag_write,
				179	.llseek = default_llseek,
				180	};
				181
Marcel Holtmann	f640ee9	2015-10-08 12:35:42 +0200	[diff] [blame]	182	static void hci_debugfs_create_basic(struct hci_dev *hdev)
				183	{
				184	debugfs_create_file("dut_mode", 0644, hdev->debugfs, hdev,
				185	&dut_mode_fops);
				186
				187	if (hdev->set_diag)
				188	debugfs_create_file("vendor_diag", 0644, hdev->debugfs, hdev,
				189	&vendor_diag_fops);
				190	}
				191
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	192	static void hci_reset_req(struct hci_request *req, unsigned long opt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	193	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	194	BT_DBG("%s %ld", req->hdev->name, opt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	195
				196	/* Reset device */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	197	set_bit(HCI_RESET, &req->hdev->flags);
				198	hci_req_add(req, HCI_OP_RESET, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	199	}
				200
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	201	static void bredr_init(struct hci_request *req)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	202	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	203	req->hdev->flow_ctl_mode = HCI_FLOW_CTL_MODE_PACKET_BASED;
Andrei Emeltchenko	2455a3e	2011-12-19 16:31:28 +0200	[diff] [blame]	204
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	205	/* Read Local Supported Features */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	206	hci_req_add(req, HCI_OP_READ_LOCAL_FEATURES, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	207
Marcel Holtmann	1143e5a	2006-09-23 09:57:20 +0200	[diff] [blame]	208	/* Read Local Version */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	209	hci_req_add(req, HCI_OP_READ_LOCAL_VERSION, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	210
				211	/* Read BD Address */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	212	hci_req_add(req, HCI_OP_READ_BD_ADDR, 0, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	213	}
				214
Johan Hedberg	0af801b	2015-02-17 15:05:21 +0200	[diff] [blame]	215	static void amp_init1(struct hci_request *req)
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	216	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	217	req->hdev->flow_ctl_mode = HCI_FLOW_CTL_MODE_BLOCK_BASED;
Andrei Emeltchenko	2455a3e	2011-12-19 16:31:28 +0200	[diff] [blame]	218
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	219	/* Read Local Version */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	220	hci_req_add(req, HCI_OP_READ_LOCAL_VERSION, 0, NULL);
Andrei Emeltchenko	6bcbc48	2012-03-28 16:31:24 +0300	[diff] [blame]	221
Marcel Holtmann	f6996cf	2013-10-07 02:31:39 -0700	[diff] [blame]	222	/* Read Local Supported Commands */
				223	hci_req_add(req, HCI_OP_READ_LOCAL_COMMANDS, 0, NULL);
				224
Andrei Emeltchenko	6bcbc48	2012-03-28 16:31:24 +0300	[diff] [blame]	225	/* Read Local AMP Info */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	226	hci_req_add(req, HCI_OP_READ_LOCAL_AMP_INFO, 0, NULL);
Andrei Emeltchenko	e71dfab	2012-09-06 15:05:46 +0300	[diff] [blame]	227
				228	/* Read Data Blk size */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	229	hci_req_add(req, HCI_OP_READ_DATA_BLOCK_SIZE, 0, NULL);
Marcel Holtmann	7528ca1	2013-10-07 03:55:52 -0700	[diff] [blame]	230
Marcel Holtmann	f38ba94	2013-10-07 03:55:53 -0700	[diff] [blame]	231	/* Read Flow Control Mode */
				232	hci_req_add(req, HCI_OP_READ_FLOW_CONTROL_MODE, 0, NULL);
				233
Marcel Holtmann	7528ca1	2013-10-07 03:55:52 -0700	[diff] [blame]	234	/* Read Location Data */
				235	hci_req_add(req, HCI_OP_READ_LOCATION_DATA, 0, NULL);
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	236	}
				237
Johan Hedberg	0af801b	2015-02-17 15:05:21 +0200	[diff] [blame]	238	static void amp_init2(struct hci_request *req)
				239	{
				240	/* Read Local Supported Features. Not all AMP controllers
				241	* support this so it's placed conditionally in the second
				242	* stage init.
				243	*/
				244	if (req->hdev->commands[14] & 0x20)
				245	hci_req_add(req, HCI_OP_READ_LOCAL_FEATURES, 0, NULL);
				246	}
				247
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	248	static void hci_init1_req(struct hci_request *req, unsigned long opt)
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	249	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	250	struct hci_dev *hdev = req->hdev;
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	251
				252	BT_DBG("%s %ld", hdev->name, opt);
				253
Andrei Emeltchenko	1177871	2012-06-11 11:13:10 +0300	[diff] [blame]	254	/* Reset */
				255	if (!test_bit(HCI_QUIRK_RESET_ON_CLOSE, &hdev->quirks))
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	256	hci_reset_req(req, 0);
Andrei Emeltchenko	1177871	2012-06-11 11:13:10 +0300	[diff] [blame]	257
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	258	switch (hdev->dev_type) {
				259	case HCI_BREDR:
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	260	bredr_init(req);
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	261	break;
				262
				263	case HCI_AMP:
Johan Hedberg	0af801b	2015-02-17 15:05:21 +0200	[diff] [blame]	264	amp_init1(req);
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	265	break;
				266
				267	default:
				268	BT_ERR("Unknown device type %d", hdev->dev_type);
				269	break;
				270	}
Andrei Emeltchenko	e61ef499	2011-12-19 16:31:27 +0200	[diff] [blame]	271	}
				272
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	273	static void bredr_setup(struct hci_request *req)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	274	{
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	275	__le16 param;
				276	__u8 flt_type;
				277
				278	/* Read Buffer Size (ACL mtu, max pkt, etc.) */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	279	hci_req_add(req, HCI_OP_READ_BUFFER_SIZE, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	280
				281	/* Read Class of Device */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	282	hci_req_add(req, HCI_OP_READ_CLASS_OF_DEV, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	283
				284	/* Read Local Name */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	285	hci_req_add(req, HCI_OP_READ_LOCAL_NAME, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	286
				287	/* Read Voice Setting */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	288	hci_req_add(req, HCI_OP_READ_VOICE_SETTING, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	289
Marcel Holtmann	b4cb9fb	2013-10-14 13:56:16 -0700	[diff] [blame]	290	/* Read Number of Supported IAC */
				291	hci_req_add(req, HCI_OP_READ_NUM_SUPPORTED_IAC, 0, NULL);
				292
Marcel Holtmann	4b836f3	2013-10-14 14:06:36 -0700	[diff] [blame]	293	/* Read Current IAC LAP */
				294	hci_req_add(req, HCI_OP_READ_CURRENT_IAC_LAP, 0, NULL);
				295
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	296	/* Clear Event Filters */
				297	flt_type = HCI_FLT_CLEAR_ALL;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	298	hci_req_add(req, HCI_OP_SET_EVENT_FLT, 1, &flt_type);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	299
				300	/* Connection accept timeout ~20 secs */
Joe Perches	dcf4adb	2014-03-12 10:52:35 -0700	[diff] [blame]	301	param = cpu_to_le16(0x7d00);
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	302	hci_req_add(req, HCI_OP_WRITE_CA_TIMEOUT, 2, &param);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	303	}
				304
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	305	static void le_setup(struct hci_request *req)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	306	{
Johan Hedberg	c73eee9	2013-04-19 18:35:21 +0300	[diff] [blame]	307	struct hci_dev *hdev = req->hdev;
				308
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	309	/* Read LE Buffer Size */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	310	hci_req_add(req, HCI_OP_LE_READ_BUFFER_SIZE, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	311
				312	/* Read LE Local Supported Features */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	313	hci_req_add(req, HCI_OP_LE_READ_LOCAL_FEATURES, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	314
Marcel Holtmann	747d3f0	2014-02-27 20:37:29 -0800	[diff] [blame]	315	/* Read LE Supported States */
				316	hci_req_add(req, HCI_OP_LE_READ_SUPPORTED_STATES, 0, NULL);
				317
Johan Hedberg	c73eee9	2013-04-19 18:35:21 +0300	[diff] [blame]	318	/* LE-only controllers have LE implicitly enabled */
				319	if (!lmp_bredr_capable(hdev))
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	320	hci_dev_set_flag(hdev, HCI_LE_ENABLED);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	321	}
				322
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	323	static void hci_setup_event_mask(struct hci_request *req)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	324	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	325	struct hci_dev *hdev = req->hdev;
				326
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	327	/* The second byte is 0xff instead of 0x9f (two reserved bits
				328	* disabled) since a Broadcom 1.2 dongle doesn't respond to the
				329	* command otherwise.
				330	*/
				331	u8 events[8] = { 0xff, 0xff, 0xfb, 0xff, 0x00, 0x00, 0x00, 0x00 };
				332
				333	/* CSR 1.1 dongles does not accept any bitfield so don't try to set
				334	* any event mask for pre 1.2 devices.
				335	*/
				336	if (hdev->hci_ver < BLUETOOTH_VER_1_2)
				337	return;
				338
				339	if (lmp_bredr_capable(hdev)) {
				340	events[4] \|= 0x01; /* Flow Specification Complete */
Marcel Holtmann	c7882cb	2013-08-13 10:00:54 -0700	[diff] [blame]	341	} else {
				342	/* Use a different default for LE-only devices */
				343	memset(events, 0, sizeof(events));
Marcel Holtmann	c7882cb	2013-08-13 10:00:54 -0700	[diff] [blame]	344	events[1] \|= 0x20; /* Command Complete */
				345	events[1] \|= 0x40; /* Command Status */
				346	events[1] \|= 0x80; /* Hardware Error */
Marcel Holtmann	5c3d3b4	2015-11-04 07:17:23 +0100	[diff] [blame]	347
				348	/* If the controller supports the Disconnect command, enable
				349	* the corresponding event. In addition enable packet flow
				350	* control related events.
				351	*/
				352	if (hdev->commands[0] & 0x20) {
				353	events[0] \|= 0x10; /* Disconnection Complete */
				354	events[2] \|= 0x04; /* Number of Completed Packets */
				355	events[3] \|= 0x02; /* Data Buffer Overflow */
				356	}
				357
				358	/* If the controller supports the Read Remote Version
				359	* Information command, enable the corresponding event.
				360	*/
				361	if (hdev->commands[2] & 0x80)
				362	events[1] \|= 0x08; /* Read Remote Version Information
				363	* Complete
				364	*/
Marcel Holtmann	0da71f1	2014-07-12 23:36:16 +0200	[diff] [blame]	365
				366	if (hdev->le_features[0] & HCI_LE_ENCRYPTION) {
				367	events[0] \|= 0x80; /* Encryption Change */
				368	events[5] \|= 0x80; /* Encryption Key Refresh Complete */
				369	}
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	370	}
				371
Marcel Holtmann	9fe759c	2015-11-01 09:45:22 +0100	[diff] [blame]	372	if (lmp_inq_rssi_capable(hdev) \|\|
				373	test_bit(HCI_QUIRK_FIXUP_INQUIRY_MODE, &hdev->quirks))
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	374	events[4] \|= 0x02; /* Inquiry Result with RSSI */
				375
Marcel Holtmann	70f56aa	2015-11-01 09:39:49 +0100	[diff] [blame]	376	if (lmp_ext_feat_capable(hdev))
				377	events[4] \|= 0x04; /* Read Remote Extended Features Complete */
				378
				379	if (lmp_esco_capable(hdev)) {
				380	events[5] \|= 0x08; /* Synchronous Connection Complete */
				381	events[5] \|= 0x10; /* Synchronous Connection Changed */
				382	}
				383
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	384	if (lmp_sniffsubr_capable(hdev))
				385	events[5] \|= 0x20; /* Sniff Subrating */
				386
				387	if (lmp_pause_enc_capable(hdev))
				388	events[5] \|= 0x80; /* Encryption Key Refresh Complete */
				389
				390	if (lmp_ext_inq_capable(hdev))
				391	events[5] \|= 0x40; /* Extended Inquiry Result */
				392
				393	if (lmp_no_flush_capable(hdev))
				394	events[7] \|= 0x01; /* Enhanced Flush Complete */
				395
				396	if (lmp_lsto_capable(hdev))
				397	events[6] \|= 0x80; /* Link Supervision Timeout Changed */
				398
				399	if (lmp_ssp_capable(hdev)) {
				400	events[6] \|= 0x01; /* IO Capability Request */
				401	events[6] \|= 0x02; /* IO Capability Response */
				402	events[6] \|= 0x04; /* User Confirmation Request */
				403	events[6] \|= 0x08; /* User Passkey Request */
				404	events[6] \|= 0x10; /* Remote OOB Data Request */
				405	events[6] \|= 0x20; /* Simple Pairing Complete */
				406	events[7] \|= 0x04; /* User Passkey Notification */
				407	events[7] \|= 0x08; /* Keypress Notification */
				408	events[7] \|= 0x10; /* Remote Host Supported
				409	* Features Notification
				410	*/
				411	}
				412
				413	if (lmp_le_capable(hdev))
				414	events[7] \|= 0x20; /* LE Meta-Event */
				415
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	416	hci_req_add(req, HCI_OP_SET_EVENT_MASK, sizeof(events), events);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	417	}
				418
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	419	static void hci_init2_req(struct hci_request *req, unsigned long opt)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	420	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	421	struct hci_dev *hdev = req->hdev;
				422
Johan Hedberg	0af801b	2015-02-17 15:05:21 +0200	[diff] [blame]	423	if (hdev->dev_type == HCI_AMP)
				424	return amp_init2(req);
				425
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	426	if (lmp_bredr_capable(hdev))
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	427	bredr_setup(req);
Johan Hedberg	56f8790	2013-10-02 13:43:13 +0300	[diff] [blame]	428	else
Marcel Holtmann	a358dc1	2015-03-13 02:11:02 -0700	[diff] [blame]	429	hci_dev_clear_flag(hdev, HCI_BREDR_ENABLED);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	430
				431	if (lmp_le_capable(hdev))
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	432	le_setup(req);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	433
Marcel Holtmann	0f3adea	2014-12-26 04:42:34 +0100	[diff] [blame]	434	/* All Bluetooth 1.2 and later controllers should support the
				435	* HCI command for reading the local supported commands.
				436	*
				437	* Unfortunately some controllers indicate Bluetooth 1.2 support,
				438	* but do not have support for this command. If that is the case,
				439	* the driver can quirk the behavior and skip reading the local
				440	* supported commands.
Johan Hedberg	3f8e2d7	2013-07-24 02:32:46 +0300	[diff] [blame]	441	*/
Marcel Holtmann	0f3adea	2014-12-26 04:42:34 +0100	[diff] [blame]	442	if (hdev->hci_ver > BLUETOOTH_VER_1_1 &&
				443	!test_bit(HCI_QUIRK_BROKEN_LOCAL_COMMANDS, &hdev->quirks))
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	444	hci_req_add(req, HCI_OP_READ_LOCAL_COMMANDS, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	445
				446	if (lmp_ssp_capable(hdev)) {
Marcel Holtmann	57af75a	2013-10-18 12:04:47 -0700	[diff] [blame]	447	/* When SSP is available, then the host features page
				448	* should also be available as well. However some
				449	* controllers list the max_page as 0 as long as SSP
				450	* has not been enabled. To achieve proper debugging
				451	* output, force the minimum max_page to 1 at least.
				452	*/
				453	hdev->max_page = 0x01;
				454
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	455	if (hci_dev_test_flag(hdev, HCI_SSP_ENABLED)) {
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	456	u8 mode = 0x01;
Marcel Holtmann	574ea3c	2015-01-22 11:15:20 -0800	[diff] [blame]	457
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	458	hci_req_add(req, HCI_OP_WRITE_SSP_MODE,
				459	sizeof(mode), &mode);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	460	} else {
				461	struct hci_cp_write_eir cp;
				462
				463	memset(hdev->eir, 0, sizeof(hdev->eir));
				464	memset(&cp, 0, sizeof(cp));
				465
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	466	hci_req_add(req, HCI_OP_WRITE_EIR, sizeof(cp), &cp);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	467	}
				468	}
				469
Marcel Holtmann	043ec9b	2015-01-02 23:35:19 -0800	[diff] [blame]	470	if (lmp_inq_rssi_capable(hdev) \|\|
				471	test_bit(HCI_QUIRK_FIXUP_INQUIRY_MODE, &hdev->quirks)) {
Marcel Holtmann	04422da	2015-01-02 23:35:18 -0800	[diff] [blame]	472	u8 mode;
				473
				474	/* If Extended Inquiry Result events are supported, then
				475	* they are clearly preferred over Inquiry Result with RSSI
				476	* events.
				477	*/
				478	mode = lmp_ext_inq_capable(hdev) ? 0x02 : 0x01;
				479
				480	hci_req_add(req, HCI_OP_WRITE_INQUIRY_MODE, 1, &mode);
				481	}
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	482
				483	if (lmp_inq_tx_pwr_capable(hdev))
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	484	hci_req_add(req, HCI_OP_READ_INQ_RSP_TX_POWER, 0, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	485
				486	if (lmp_ext_feat_capable(hdev)) {
				487	struct hci_cp_read_local_ext_features cp;
				488
				489	cp.page = 0x01;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	490	hci_req_add(req, HCI_OP_READ_LOCAL_EXT_FEATURES,
				491	sizeof(cp), &cp);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	492	}
				493
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	494	if (hci_dev_test_flag(hdev, HCI_LINK_SECURITY)) {
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	495	u8 enable = 1;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	496	hci_req_add(req, HCI_OP_WRITE_AUTH_ENABLE, sizeof(enable),
				497	&enable);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	498	}
				499	}
				500
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	501	static void hci_setup_link_policy(struct hci_request *req)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	502	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	503	struct hci_dev *hdev = req->hdev;
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	504	struct hci_cp_write_def_link_policy cp;
				505	u16 link_policy = 0;
				506
				507	if (lmp_rswitch_capable(hdev))
				508	link_policy \|= HCI_LP_RSWITCH;
				509	if (lmp_hold_capable(hdev))
				510	link_policy \|= HCI_LP_HOLD;
				511	if (lmp_sniff_capable(hdev))
				512	link_policy \|= HCI_LP_SNIFF;
				513	if (lmp_park_capable(hdev))
				514	link_policy \|= HCI_LP_PARK;
				515
				516	cp.policy = cpu_to_le16(link_policy);
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	517	hci_req_add(req, HCI_OP_WRITE_DEF_LINK_POLICY, sizeof(cp), &cp);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	518	}
				519
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	520	static void hci_set_le_support(struct hci_request *req)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	521	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	522	struct hci_dev *hdev = req->hdev;
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	523	struct hci_cp_write_le_host_supported cp;
				524
Johan Hedberg	c73eee9	2013-04-19 18:35:21 +0300	[diff] [blame]	525	/* LE-only devices do not support explicit enablement */
				526	if (!lmp_bredr_capable(hdev))
				527	return;
				528
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	529	memset(&cp, 0, sizeof(cp));
				530
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	531	if (hci_dev_test_flag(hdev, HCI_LE_ENABLED)) {
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	532	cp.le = 0x01;
Marcel Holtmann	32226e4	2014-07-24 20:04:16 +0200	[diff] [blame]	533	cp.simul = 0x00;
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	534	}
				535
				536	if (cp.le != lmp_host_le_capable(hdev))
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	537	hci_req_add(req, HCI_OP_WRITE_LE_HOST_SUPPORTED, sizeof(cp),
				538	&cp);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	539	}
				540
Johan Hedberg	d62e6d6	2013-09-13 11:40:02 +0300	[diff] [blame]	541	static void hci_set_event_mask_page_2(struct hci_request *req)
				542	{
				543	struct hci_dev *hdev = req->hdev;
				544	u8 events[8] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
				545
				546	/* If Connectionless Slave Broadcast master role is supported
				547	* enable all necessary events for it.
				548	*/
Marcel Holtmann	53b834d2	2013-12-08 11:55:33 -0800	[diff] [blame]	549	if (lmp_csb_master_capable(hdev)) {
Johan Hedberg	d62e6d6	2013-09-13 11:40:02 +0300	[diff] [blame]	550	events[1] \|= 0x40; /* Triggered Clock Capture */
				551	events[1] \|= 0x80; /* Synchronization Train Complete */
				552	events[2] \|= 0x10; /* Slave Page Response Timeout */
				553	events[2] \|= 0x20; /* CSB Channel Map Change */
				554	}
				555
				556	/* If Connectionless Slave Broadcast slave role is supported
				557	* enable all necessary events for it.
				558	*/
Marcel Holtmann	53b834d2	2013-12-08 11:55:33 -0800	[diff] [blame]	559	if (lmp_csb_slave_capable(hdev)) {
Johan Hedberg	d62e6d6	2013-09-13 11:40:02 +0300	[diff] [blame]	560	events[2] \|= 0x01; /* Synchronization Train Received */
				561	events[2] \|= 0x02; /* CSB Receive */
				562	events[2] \|= 0x04; /* CSB Timeout */
				563	events[2] \|= 0x08; /* Truncated Page Complete */
				564	}
				565
Marcel Holtmann	40c59fc	2014-01-10 02:07:21 -0800	[diff] [blame]	566	/* Enable Authenticated Payload Timeout Expired event if supported */
Marcel Holtmann	cd7ca0e	2014-07-09 09:49:05 +0200	[diff] [blame]	567	if (lmp_ping_capable(hdev) \|\| hdev->le_features[0] & HCI_LE_PING)
Marcel Holtmann	40c59fc	2014-01-10 02:07:21 -0800	[diff] [blame]	568	events[2] \|= 0x80;
				569
Johan Hedberg	d62e6d6	2013-09-13 11:40:02 +0300	[diff] [blame]	570	hci_req_add(req, HCI_OP_SET_EVENT_MASK_PAGE_2, sizeof(events), events);
				571	}
				572
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	573	static void hci_init3_req(struct hci_request *req, unsigned long opt)
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	574	{
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	575	struct hci_dev *hdev = req->hdev;
Johan Hedberg	d2c5d77	2013-04-17 15:00:52 +0300	[diff] [blame]	576	u8 p;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	577
Marcel Holtmann	0da71f1	2014-07-12 23:36:16 +0200	[diff] [blame]	578	hci_setup_event_mask(req);
				579
Johan Hedberg	e81be90	2015-08-30 21:47:20 +0300	[diff] [blame]	580	if (hdev->commands[6] & 0x20 &&
				581	!test_bit(HCI_QUIRK_BROKEN_STORED_LINK_KEY, &hdev->quirks)) {
Marcel Holtmann	48ce62c	2015-01-12 09:21:26 -0800	[diff] [blame]	582	struct hci_cp_read_stored_link_key cp;
				583
				584	bacpy(&cp.bdaddr, BDADDR_ANY);
				585	cp.read_all = 0x01;
				586	hci_req_add(req, HCI_OP_READ_STORED_LINK_KEY, sizeof(cp), &cp);
				587	}
				588
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	589	if (hdev->commands[5] & 0x10)
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	590	hci_setup_link_policy(req);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	591
Marcel Holtmann	417287d	2014-12-11 20:21:54 +0100	[diff] [blame]	592	if (hdev->commands[8] & 0x01)
				593	hci_req_add(req, HCI_OP_READ_PAGE_SCAN_ACTIVITY, 0, NULL);
				594
				595	/* Some older Broadcom based Bluetooth 1.2 controllers do not
				596	* support the Read Page Scan Type command. Check support for
				597	* this command in the bit mask of supported commands.
				598	*/
				599	if (hdev->commands[13] & 0x01)
				600	hci_req_add(req, HCI_OP_READ_PAGE_SCAN_TYPE, 0, NULL);
				601
Andre Guedes	9193c6e	2014-07-01 18:10:09 -0300	[diff] [blame]	602	if (lmp_le_capable(hdev)) {
				603	u8 events[8];
				604
				605	memset(events, 0, sizeof(events));
Marcel Holtmann	4d6c705	2014-07-13 00:29:22 +0200	[diff] [blame]	606
				607	if (hdev->le_features[0] & HCI_LE_ENCRYPTION)
				608	events[0] \|= 0x10; /* LE Long Term Key Request */
Andre Guedes	662bc2e	2014-07-01 18:10:10 -0300	[diff] [blame]	609
				610	/* If controller supports the Connection Parameters Request
				611	* Link Layer Procedure, enable the corresponding event.
				612	*/
				613	if (hdev->le_features[0] & HCI_LE_CONN_PARAM_REQ_PROC)
				614	events[0] \|= 0x20; /* LE Remote Connection
				615	* Parameter Request
				616	*/
				617
Marcel Holtmann	a9f6068	2014-12-20 16:28:39 +0100	[diff] [blame]	618	/* If the controller supports the Data Length Extension
				619	* feature, enable the corresponding event.
				620	*/
				621	if (hdev->le_features[0] & HCI_LE_DATA_LEN_EXT)
				622	events[0] \|= 0x40; /* LE Data Length Change */
				623
Marcel Holtmann	4b71bba	2014-12-05 16:20:12 +0100	[diff] [blame]	624	/* If the controller supports Extended Scanner Filter
				625	* Policies, enable the correspondig event.
				626	*/
				627	if (hdev->le_features[0] & HCI_LE_EXT_SCAN_POLICY)
				628	events[1] \|= 0x04; /* LE Direct Advertising
				629	* Report
				630	*/
				631
Marcel Holtmann	7d26f5c	2015-11-01 09:39:51 +0100	[diff] [blame]	632	/* If the controller supports the LE Set Scan Enable command,
				633	* enable the corresponding advertising report event.
				634	*/
				635	if (hdev->commands[26] & 0x08)
				636	events[0] \|= 0x02; /* LE Advertising Report */
				637
				638	/* If the controller supports the LE Create Connection
				639	* command, enable the corresponding event.
				640	*/
				641	if (hdev->commands[26] & 0x10)
				642	events[0] \|= 0x01; /* LE Connection Complete */
				643
				644	/* If the controller supports the LE Connection Update
				645	* command, enable the corresponding event.
				646	*/
				647	if (hdev->commands[27] & 0x04)
				648	events[0] \|= 0x04; /* LE Connection Update
				649	* Complete
				650	*/
				651
				652	/* If the controller supports the LE Read Remote Used Features
				653	* command, enable the corresponding event.
				654	*/
				655	if (hdev->commands[27] & 0x20)
				656	events[0] \|= 0x08; /* LE Read Remote Used
				657	* Features Complete
				658	*/
				659
Marcel Holtmann	5a34bd5	2014-12-05 16:20:15 +0100	[diff] [blame]	660	/* If the controller supports the LE Read Local P-256
				661	* Public Key command, enable the corresponding event.
				662	*/
				663	if (hdev->commands[34] & 0x02)
				664	events[0] \|= 0x80; /* LE Read Local P-256
				665	* Public Key Complete
				666	*/
				667
				668	/* If the controller supports the LE Generate DHKey
				669	* command, enable the corresponding event.
				670	*/
				671	if (hdev->commands[34] & 0x04)
				672	events[1] \|= 0x01; /* LE Generate DHKey Complete */
				673
Andre Guedes	9193c6e	2014-07-01 18:10:09 -0300	[diff] [blame]	674	hci_req_add(req, HCI_OP_LE_SET_EVENT_MASK, sizeof(events),
				675	events);
				676
Marcel Holtmann	15a49cc	2014-07-12 23:20:50 +0200	[diff] [blame]	677	if (hdev->commands[25] & 0x40) {
				678	/* Read LE Advertising Channel TX Power */
				679	hci_req_add(req, HCI_OP_LE_READ_ADV_TX_POWER, 0, NULL);
				680	}
				681
Marcel Holtmann	2ab216a	2015-11-01 09:39:48 +0100	[diff] [blame]	682	if (hdev->commands[26] & 0x40) {
				683	/* Read LE White List Size */
				684	hci_req_add(req, HCI_OP_LE_READ_WHITE_LIST_SIZE,
				685	0, NULL);
				686	}
				687
				688	if (hdev->commands[26] & 0x80) {
				689	/* Clear LE White List */
				690	hci_req_add(req, HCI_OP_LE_CLEAR_WHITE_LIST, 0, NULL);
				691	}
				692
Marcel Holtmann	a9f6068	2014-12-20 16:28:39 +0100	[diff] [blame]	693	if (hdev->le_features[0] & HCI_LE_DATA_LEN_EXT) {
				694	/* Read LE Maximum Data Length */
				695	hci_req_add(req, HCI_OP_LE_READ_MAX_DATA_LEN, 0, NULL);
				696
				697	/* Read LE Suggested Default Data Length */
				698	hci_req_add(req, HCI_OP_LE_READ_DEF_DATA_LEN, 0, NULL);
				699	}
				700
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	701	hci_set_le_support(req);
Andre Guedes	9193c6e	2014-07-01 18:10:09 -0300	[diff] [blame]	702	}
Johan Hedberg	d2c5d77	2013-04-17 15:00:52 +0300	[diff] [blame]	703
				704	/* Read features beyond page 1 if available */
				705	for (p = 2; p < HCI_MAX_PAGES && p <= hdev->max_page; p++) {
				706	struct hci_cp_read_local_ext_features cp;
				707
				708	cp.page = p;
				709	hci_req_add(req, HCI_OP_READ_LOCAL_EXT_FEATURES,
				710	sizeof(cp), &cp);
				711	}
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	712	}
				713
Johan Hedberg	5d4e7e8	2013-09-13 11:40:01 +0300	[diff] [blame]	714	static void hci_init4_req(struct hci_request *req, unsigned long opt)
				715	{
				716	struct hci_dev *hdev = req->hdev;
				717
Marcel Holtmann	36f260c	2015-01-12 22:47:22 -0800	[diff] [blame]	718	/* Some Broadcom based Bluetooth controllers do not support the
				719	* Delete Stored Link Key command. They are clearly indicating its
				720	* absence in the bit mask of supported commands.
				721	*
				722	* Check the supported commands and only if the the command is marked
				723	* as supported send it. If not supported assume that the controller
				724	* does not have actual support for stored link keys which makes this
				725	* command redundant anyway.
				726	*
				727	* Some controllers indicate that they support handling deleting
				728	* stored link keys, but they don't. The quirk lets a driver
				729	* just disable this command.
				730	*/
				731	if (hdev->commands[6] & 0x80 &&
				732	!test_bit(HCI_QUIRK_BROKEN_STORED_LINK_KEY, &hdev->quirks)) {
				733	struct hci_cp_delete_stored_link_key cp;
				734
				735	bacpy(&cp.bdaddr, BDADDR_ANY);
				736	cp.delete_all = 0x01;
				737	hci_req_add(req, HCI_OP_DELETE_STORED_LINK_KEY,
				738	sizeof(cp), &cp);
				739	}
				740
Johan Hedberg	d62e6d6	2013-09-13 11:40:02 +0300	[diff] [blame]	741	/* Set event mask page 2 if the HCI command for it is supported */
				742	if (hdev->commands[22] & 0x04)
				743	hci_set_event_mask_page_2(req);
				744
Marcel Holtmann	109e319	2014-07-23 19:24:56 +0200	[diff] [blame]	745	/* Read local codec list if the HCI command is supported */
				746	if (hdev->commands[29] & 0x20)
				747	hci_req_add(req, HCI_OP_READ_LOCAL_CODECS, 0, NULL);
				748
Marcel Holtmann	f4fe73e	2014-07-23 19:24:57 +0200	[diff] [blame]	749	/* Get MWS transport configuration if the HCI command is supported */
				750	if (hdev->commands[30] & 0x08)
				751	hci_req_add(req, HCI_OP_GET_MWS_TRANSPORT_CONFIG, 0, NULL);
				752
Johan Hedberg	5d4e7e8	2013-09-13 11:40:01 +0300	[diff] [blame]	753	/* Check for Synchronization Train support */
Marcel Holtmann	53b834d2	2013-12-08 11:55:33 -0800	[diff] [blame]	754	if (lmp_sync_train_capable(hdev))
Johan Hedberg	5d4e7e8	2013-09-13 11:40:01 +0300	[diff] [blame]	755	hci_req_add(req, HCI_OP_READ_SYNC_TRAIN_PARAMS, 0, NULL);
Marcel Holtmann	a6d0d69	2014-01-10 02:07:24 -0800	[diff] [blame]	756
				757	/* Enable Secure Connections if supported and configured */
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	758	if (hci_dev_test_flag(hdev, HCI_SSP_ENABLED) &&
Marcel Holtmann	574ea3c	2015-01-22 11:15:20 -0800	[diff] [blame]	759	bredr_sc_enabled(hdev)) {
Marcel Holtmann	a6d0d69	2014-01-10 02:07:24 -0800	[diff] [blame]	760	u8 support = 0x01;
Marcel Holtmann	574ea3c	2015-01-22 11:15:20 -0800	[diff] [blame]	761
Marcel Holtmann	a6d0d69	2014-01-10 02:07:24 -0800	[diff] [blame]	762	hci_req_add(req, HCI_OP_WRITE_SC_SUPPORT,
				763	sizeof(support), &support);
				764	}
Johan Hedberg	5d4e7e8	2013-09-13 11:40:01 +0300	[diff] [blame]	765	}
				766
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	767	static int __hci_init(struct hci_dev *hdev)
				768	{
				769	int err;
				770
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	771	err = __hci_req_sync(hdev, hci_init1_req, 0, HCI_INIT_TIMEOUT, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	772	if (err < 0)
				773	return err;
				774
Marcel Holtmann	f640ee9	2015-10-08 12:35:42 +0200	[diff] [blame]	775	if (hci_dev_test_flag(hdev, HCI_SETUP))
				776	hci_debugfs_create_basic(hdev);
Marcel Holtmann	4b4148e	2013-10-19 07:09:12 -0700	[diff] [blame]	777
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	778	err = __hci_req_sync(hdev, hci_init2_req, 0, HCI_INIT_TIMEOUT, NULL);
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	779	if (err < 0)
				780	return err;
				781
Johan Hedberg	0af801b	2015-02-17 15:05:21 +0200	[diff] [blame]	782	/* HCI_BREDR covers both single-mode LE, BR/EDR and dual-mode
				783	* BR/EDR/LE type controllers. AMP controllers only need the
				784	* first two stages of init.
				785	*/
				786	if (hdev->dev_type != HCI_BREDR)
				787	return 0;
				788
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	789	err = __hci_req_sync(hdev, hci_init3_req, 0, HCI_INIT_TIMEOUT, NULL);
Johan Hedberg	5d4e7e8	2013-09-13 11:40:01 +0300	[diff] [blame]	790	if (err < 0)
				791	return err;
				792
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	793	err = __hci_req_sync(hdev, hci_init4_req, 0, HCI_INIT_TIMEOUT, NULL);
Marcel Holtmann	baf27f6	2013-10-16 03:28:55 -0700	[diff] [blame]	794	if (err < 0)
				795	return err;
				796
Marcel Holtmann	ec6cef9	2015-01-01 02:05:16 -0800	[diff] [blame]	797	/* This function is only called when the controller is actually in
				798	* configured state. When the controller is marked as unconfigured,
				799	* this initialization procedure is not run.
				800	*
				801	* It means that it is possible that a controller runs through its
				802	* setup phase and then discovers missing settings. If that is the
				803	* case, then this function will not be called. It then will only
				804	* be called during the config phase.
				805	*
				806	* So only when in setup phase or config phase, create the debugfs
				807	* entries and register the SMP channels.
Marcel Holtmann	baf27f6	2013-10-16 03:28:55 -0700	[diff] [blame]	808	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	809	if (!hci_dev_test_flag(hdev, HCI_SETUP) &&
				810	!hci_dev_test_flag(hdev, HCI_CONFIG))
Marcel Holtmann	baf27f6	2013-10-16 03:28:55 -0700	[diff] [blame]	811	return 0;
				812
Marcel Holtmann	60c5f5f	2014-12-20 16:05:13 +0100	[diff] [blame]	813	hci_debugfs_create_common(hdev);
				814
Marcel Holtmann	71c3b60	2014-12-20 16:05:15 +0100	[diff] [blame]	815	if (lmp_bredr_capable(hdev))
Marcel Holtmann	60c5f5f	2014-12-20 16:05:13 +0100	[diff] [blame]	816	hci_debugfs_create_bredr(hdev);
Marcel Holtmann	2bfa353	2013-10-17 19:16:02 -0700	[diff] [blame]	817
Marcel Holtmann	162a3ba	2015-01-14 15:43:11 -0800	[diff] [blame]	818	if (lmp_le_capable(hdev))
Marcel Holtmann	60c5f5f	2014-12-20 16:05:13 +0100	[diff] [blame]	819	hci_debugfs_create_le(hdev);
Marcel Holtmann	e7b8fc9	2013-10-17 11:45:09 -0700	[diff] [blame]	820
Marcel Holtmann	baf27f6	2013-10-16 03:28:55 -0700	[diff] [blame]	821	return 0;
Johan Hedberg	2177bab	2013-03-05 20:37:43 +0200	[diff] [blame]	822	}
				823
Marcel Holtmann	0ebca7d	2014-07-05 10:48:02 +0200	[diff] [blame]	824	static void hci_init0_req(struct hci_request *req, unsigned long opt)
				825	{
				826	struct hci_dev *hdev = req->hdev;
				827
				828	BT_DBG("%s %ld", hdev->name, opt);
				829
				830	/* Reset */
				831	if (!test_bit(HCI_QUIRK_RESET_ON_CLOSE, &hdev->quirks))
				832	hci_reset_req(req, 0);
				833
				834	/* Read Local Version */
				835	hci_req_add(req, HCI_OP_READ_LOCAL_VERSION, 0, NULL);
				836
				837	/* Read BD Address */
				838	if (hdev->set_bdaddr)
				839	hci_req_add(req, HCI_OP_READ_BD_ADDR, 0, NULL);
				840	}
				841
				842	static int __hci_unconf_init(struct hci_dev *hdev)
				843	{
				844	int err;
				845
Marcel Holtmann	cc78b44	2014-07-06 13:43:20 +0200	[diff] [blame]	846	if (test_bit(HCI_QUIRK_RAW_DEVICE, &hdev->quirks))
				847	return 0;
				848
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	849	err = __hci_req_sync(hdev, hci_init0_req, 0, HCI_INIT_TIMEOUT, NULL);
Marcel Holtmann	0ebca7d	2014-07-05 10:48:02 +0200	[diff] [blame]	850	if (err < 0)
				851	return err;
				852
Marcel Holtmann	f640ee9	2015-10-08 12:35:42 +0200	[diff] [blame]	853	if (hci_dev_test_flag(hdev, HCI_SETUP))
				854	hci_debugfs_create_basic(hdev);
				855
Marcel Holtmann	0ebca7d	2014-07-05 10:48:02 +0200	[diff] [blame]	856	return 0;
				857	}
				858
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	859	static void hci_scan_req(struct hci_request *req, unsigned long opt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	860	{
				861	__u8 scan = opt;
				862
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	863	BT_DBG("%s %x", req->hdev->name, scan);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	864
				865	/* Inquiry and Page scans */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	866	hci_req_add(req, HCI_OP_WRITE_SCAN_ENABLE, 1, &scan);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	867	}
				868
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	869	static void hci_auth_req(struct hci_request *req, unsigned long opt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	870	{
				871	__u8 auth = opt;
				872
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	873	BT_DBG("%s %x", req->hdev->name, auth);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	874
				875	/* Authentication */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	876	hci_req_add(req, HCI_OP_WRITE_AUTH_ENABLE, 1, &auth);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	877	}
				878
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	879	static void hci_encrypt_req(struct hci_request *req, unsigned long opt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	880	{
				881	__u8 encrypt = opt;
				882
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	883	BT_DBG("%s %x", req->hdev->name, encrypt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	884
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	885	/* Encryption */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	886	hci_req_add(req, HCI_OP_WRITE_ENCRYPT_MODE, 1, &encrypt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	887	}
				888
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	889	static void hci_linkpol_req(struct hci_request *req, unsigned long opt)
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	890	{
				891	__le16 policy = cpu_to_le16(opt);
				892
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	893	BT_DBG("%s %x", req->hdev->name, policy);
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	894
				895	/* Default link policy */
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	896	hci_req_add(req, HCI_OP_WRITE_DEF_LINK_POLICY, 2, &policy);
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	897	}
				898
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	899	/* Get HCI device by index.
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	900	* Device is held on return. */
				901	struct hci_dev *hci_dev_get(int index)
				902	{
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	903	struct hci_dev hdev = NULL, d;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	904
				905	BT_DBG("%d", index);
				906
				907	if (index < 0)
				908	return NULL;
				909
				910	read_lock(&hci_dev_list_lock);
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	911	list_for_each_entry(d, &hci_dev_list, list) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	912	if (d->id == index) {
				913	hdev = hci_dev_hold(d);
				914	break;
				915	}
				916	}
				917	read_unlock(&hci_dev_list_lock);
				918	return hdev;
				919	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	920
				921	/* ---- Inquiry support ---- */
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	922
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	923	bool hci_discovery_active(struct hci_dev *hdev)
				924	{
				925	struct discovery_state *discov = &hdev->discovery;
				926
Andre Guedes	6fbe195	2012-02-03 17:47:58 -0300	[diff] [blame]	927	switch (discov->state) {
Andre Guedes	343f935	2012-02-17 20:39:37 -0300	[diff] [blame]	928	case DISCOVERY_FINDING:
Andre Guedes	6fbe195	2012-02-03 17:47:58 -0300	[diff] [blame]	929	case DISCOVERY_RESOLVING:
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	930	return true;
				931
Andre Guedes	6fbe195	2012-02-03 17:47:58 -0300	[diff] [blame]	932	default:
				933	return false;
				934	}
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	935	}
				936
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	937	void hci_discovery_set_state(struct hci_dev *hdev, int state)
				938	{
Johan Hedberg	bb3e0a3	2014-07-07 13:24:58 +0300	[diff] [blame]	939	int old_state = hdev->discovery.state;
				940
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	941	BT_DBG("%s state %u -> %u", hdev->name, hdev->discovery.state, state);
				942
Johan Hedberg	bb3e0a3	2014-07-07 13:24:58 +0300	[diff] [blame]	943	if (old_state == state)
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	944	return;
				945
Johan Hedberg	bb3e0a3	2014-07-07 13:24:58 +0300	[diff] [blame]	946	hdev->discovery.state = state;
				947
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	948	switch (state) {
				949	case DISCOVERY_STOPPED:
Andre Guedes	c54c386	2014-02-26 20:21:50 -0300	[diff] [blame]	950	hci_update_background_scan(hdev);
				951
Johan Hedberg	bb3e0a3	2014-07-07 13:24:58 +0300	[diff] [blame]	952	if (old_state != DISCOVERY_STARTING)
Andre Guedes	7b99b65	2012-02-13 15:41:02 -0300	[diff] [blame]	953	mgmt_discovering(hdev, 0);
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	954	break;
				955	case DISCOVERY_STARTING:
				956	break;
Andre Guedes	343f935	2012-02-17 20:39:37 -0300	[diff] [blame]	957	case DISCOVERY_FINDING:
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	958	mgmt_discovering(hdev, 1);
				959	break;
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	960	case DISCOVERY_RESOLVING:
				961	break;
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	962	case DISCOVERY_STOPPING:
				963	break;
				964	}
Johan Hedberg	ff9ef57	2012-01-04 14:23:45 +0200	[diff] [blame]	965	}
				966
Andre Guedes	1f9b9a5	2013-04-30 15:29:27 -0300	[diff] [blame]	967	void hci_inquiry_cache_flush(struct hci_dev *hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	968	{
Johan Hedberg	3088351	2012-01-04 14:16:21 +0200	[diff] [blame]	969	struct discovery_state *cache = &hdev->discovery;
Johan Hedberg	b57c1a5	2012-01-03 16:03:00 +0200	[diff] [blame]	970	struct inquiry_entry p, n;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	971
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	972	list_for_each_entry_safe(p, n, &cache->all, all) {
				973	list_del(&p->all);
Johan Hedberg	b57c1a5	2012-01-03 16:03:00 +0200	[diff] [blame]	974	kfree(p);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	975	}
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	976
				977	INIT_LIST_HEAD(&cache->unknown);
				978	INIT_LIST_HEAD(&cache->resolve);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	979	}
				980
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	981	struct inquiry_entry hci_inquiry_cache_lookup(struct hci_dev hdev,
				982	bdaddr_t *bdaddr)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	983	{
Johan Hedberg	3088351	2012-01-04 14:16:21 +0200	[diff] [blame]	984	struct discovery_state *cache = &hdev->discovery;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	985	struct inquiry_entry *e;
				986
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	987	BT_DBG("cache %p, %pMR", cache, bdaddr);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	988
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	989	list_for_each_entry(e, &cache->all, all) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	990	if (!bacmp(&e->data.bdaddr, bdaddr))
Johan Hedberg	b57c1a5	2012-01-03 16:03:00 +0200	[diff] [blame]	991	return e;
				992	}
				993
				994	return NULL;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	995	}
				996
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	997	struct inquiry_entry hci_inquiry_cache_lookup_unknown(struct hci_dev hdev,
Gustavo F. Padovan	0412468	2012-03-08 01:25:00 -0300	[diff] [blame]	998	bdaddr_t *bdaddr)
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	999	{
Johan Hedberg	3088351	2012-01-04 14:16:21 +0200	[diff] [blame]	1000	struct discovery_state *cache = &hdev->discovery;
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1001	struct inquiry_entry *e;
				1002
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	1003	BT_DBG("cache %p, %pMR", cache, bdaddr);
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1004
				1005	list_for_each_entry(e, &cache->unknown, list) {
				1006	if (!bacmp(&e->data.bdaddr, bdaddr))
				1007	return e;
				1008	}
				1009
				1010	return NULL;
				1011	}
				1012
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	1013	struct inquiry_entry hci_inquiry_cache_lookup_resolve(struct hci_dev hdev,
Gustavo F. Padovan	0412468	2012-03-08 01:25:00 -0300	[diff] [blame]	1014	bdaddr_t *bdaddr,
				1015	int state)
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	1016	{
				1017	struct discovery_state *cache = &hdev->discovery;
				1018	struct inquiry_entry *e;
				1019
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	1020	BT_DBG("cache %p bdaddr %pMR state %d", cache, bdaddr, state);
Johan Hedberg	30dc78e	2012-01-04 15:44:20 +0200	[diff] [blame]	1021
				1022	list_for_each_entry(e, &cache->resolve, list) {
				1023	if (!bacmp(bdaddr, BDADDR_ANY) && e->name_state == state)
				1024	return e;
				1025	if (!bacmp(&e->data.bdaddr, bdaddr))
				1026	return e;
				1027	}
				1028
				1029	return NULL;
				1030	}
				1031
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1032	void hci_inquiry_cache_update_resolve(struct hci_dev *hdev,
Gustavo F. Padovan	0412468	2012-03-08 01:25:00 -0300	[diff] [blame]	1033	struct inquiry_entry *ie)
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1034	{
				1035	struct discovery_state *cache = &hdev->discovery;
				1036	struct list_head *pos = &cache->resolve;
				1037	struct inquiry_entry *p;
				1038
				1039	list_del(&ie->list);
				1040
				1041	list_for_each_entry(p, &cache->resolve, list) {
				1042	if (p->name_state != NAME_PENDING &&
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	1043	abs(p->data.rssi) >= abs(ie->data.rssi))
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1044	break;
				1045	pos = &p->list;
				1046	}
				1047
				1048	list_add(&ie->list, pos);
				1049	}
				1050
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1051	u32 hci_inquiry_cache_update(struct hci_dev hdev, struct inquiry_data data,
				1052	bool name_known)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1053	{
Johan Hedberg	3088351	2012-01-04 14:16:21 +0200	[diff] [blame]	1054	struct discovery_state *cache = &hdev->discovery;
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1055	struct inquiry_entry *ie;
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1056	u32 flags = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1057
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	1058	BT_DBG("cache %p, %pMR", cache, &data->bdaddr);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1059
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	1060	hci_remove_remote_oob_data(hdev, &data->bdaddr, BDADDR_BREDR);
Szymon Janc	2b2fec4	2012-11-20 11:38:54 +0100	[diff] [blame]	1061
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1062	if (!data->ssp_mode)
				1063	flags \|= MGMT_DEV_FOUND_LEGACY_PAIRING;
Johan Hedberg	388fc8f	2012-02-23 00:38:59 +0200	[diff] [blame]	1064
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1065	ie = hci_inquiry_cache_lookup(hdev, &data->bdaddr);
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1066	if (ie) {
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1067	if (!ie->data.ssp_mode)
				1068	flags \|= MGMT_DEV_FOUND_LEGACY_PAIRING;
Johan Hedberg	388fc8f	2012-02-23 00:38:59 +0200	[diff] [blame]	1069
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1070	if (ie->name_state == NAME_NEEDED &&
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	1071	data->rssi != ie->data.rssi) {
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1072	ie->data.rssi = data->rssi;
				1073	hci_inquiry_cache_update_resolve(hdev, ie);
				1074	}
				1075
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1076	goto update;
Johan Hedberg	a3d4e20	2012-01-09 00:53:02 +0200	[diff] [blame]	1077	}
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1078
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1079	/* Entry not in the cache. Add new one. */
Johan Hedberg	27f70f3	2014-07-21 10:50:06 +0300	[diff] [blame]	1080	ie = kzalloc(sizeof(*ie), GFP_KERNEL);
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1081	if (!ie) {
				1082	flags \|= MGMT_DEV_FOUND_CONFIRM_NAME;
				1083	goto done;
				1084	}
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1085
				1086	list_add(&ie->all, &cache->all);
				1087
				1088	if (name_known) {
				1089	ie->name_state = NAME_KNOWN;
				1090	} else {
				1091	ie->name_state = NAME_NOT_KNOWN;
				1092	list_add(&ie->list, &cache->unknown);
				1093	}
				1094
				1095	update:
				1096	if (name_known && ie->name_state != NAME_KNOWN &&
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	1097	ie->name_state != NAME_PENDING) {
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1098	ie->name_state = NAME_KNOWN;
				1099	list_del(&ie->list);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1100	}
				1101
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1102	memcpy(&ie->data, data, sizeof(*data));
				1103	ie->timestamp = jiffies;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1104	cache->timestamp = jiffies;
Johan Hedberg	3175405	2012-01-04 13:39:52 +0200	[diff] [blame]	1105
				1106	if (ie->name_state == NAME_NOT_KNOWN)
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1107	flags \|= MGMT_DEV_FOUND_CONFIRM_NAME;
Johan Hedberg	3175405	2012-01-04 13:39:52 +0200	[diff] [blame]	1108
Marcel Holtmann	af58925	2014-07-01 14:11:20 +0200	[diff] [blame]	1109	done:
				1110	return flags;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1111	}
				1112
				1113	static int inquiry_cache_dump(struct hci_dev hdev, int num, __u8 buf)
				1114	{
Johan Hedberg	3088351	2012-01-04 14:16:21 +0200	[diff] [blame]	1115	struct discovery_state *cache = &hdev->discovery;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1116	struct inquiry_info info = (struct inquiry_info ) buf;
				1117	struct inquiry_entry *e;
				1118	int copied = 0;
				1119
Johan Hedberg	561aafb	2012-01-04 13:31:59 +0200	[diff] [blame]	1120	list_for_each_entry(e, &cache->all, all) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1121	struct inquiry_data *data = &e->data;
Johan Hedberg	b57c1a5	2012-01-03 16:03:00 +0200	[diff] [blame]	1122
				1123	if (copied >= num)
				1124	break;
				1125
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1126	bacpy(&info->bdaddr, &data->bdaddr);
				1127	info->pscan_rep_mode = data->pscan_rep_mode;
				1128	info->pscan_period_mode = data->pscan_period_mode;
				1129	info->pscan_mode = data->pscan_mode;
				1130	memcpy(info->dev_class, data->dev_class, 3);
				1131	info->clock_offset = data->clock_offset;
Johan Hedberg	b57c1a5	2012-01-03 16:03:00 +0200	[diff] [blame]	1132
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1133	info++;
Johan Hedberg	b57c1a5	2012-01-03 16:03:00 +0200	[diff] [blame]	1134	copied++;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1135	}
				1136
				1137	BT_DBG("cache %p, copied %d", cache, copied);
				1138	return copied;
				1139	}
				1140
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	1141	static void hci_inq_req(struct hci_request *req, unsigned long opt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1142	{
				1143	struct hci_inquiry_req ir = (struct hci_inquiry_req ) opt;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	1144	struct hci_dev *hdev = req->hdev;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1145	struct hci_cp_inquiry cp;
				1146
				1147	BT_DBG("%s", hdev->name);
				1148
				1149	if (test_bit(HCI_INQUIRY, &hdev->flags))
				1150	return;
				1151
				1152	/* Start Inquiry */
				1153	memcpy(&cp.lap, &ir->lap, 3);
				1154	cp.length = ir->length;
				1155	cp.num_rsp = ir->num_rsp;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	1156	hci_req_add(req, HCI_OP_INQUIRY, sizeof(cp), &cp);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1157	}
				1158
				1159	int hci_inquiry(void __user *arg)
				1160	{
				1161	__u8 __user *ptr = arg;
				1162	struct hci_inquiry_req ir;
				1163	struct hci_dev *hdev;
				1164	int err = 0, do_inquiry = 0, max_rsp;
				1165	long timeo;
				1166	__u8 *buf;
				1167
				1168	if (copy_from_user(&ir, ptr, sizeof(ir)))
				1169	return -EFAULT;
				1170
Andrei Emeltchenko	5a08ecc	2011-01-11 17:20:20 +0200	[diff] [blame]	1171	hdev = hci_dev_get(ir.dev_id);
				1172	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1173	return -ENODEV;
				1174
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1175	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1176	err = -EBUSY;
				1177	goto done;
				1178	}
				1179
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1180	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1181	err = -EOPNOTSUPP;
				1182	goto done;
				1183	}
				1184
Marcel Holtmann	5b69bef5	2013-10-10 10:02:08 -0700	[diff] [blame]	1185	if (hdev->dev_type != HCI_BREDR) {
				1186	err = -EOPNOTSUPP;
				1187	goto done;
				1188	}
				1189
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1190	if (!hci_dev_test_flag(hdev, HCI_BREDR_ENABLED)) {
Johan Hedberg	56f8790	2013-10-02 13:43:13 +0300	[diff] [blame]	1191	err = -EOPNOTSUPP;
				1192	goto done;
				1193	}
				1194
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1195	hci_dev_lock(hdev);
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1196	if (inquiry_cache_age(hdev) > INQUIRY_CACHE_AGE_MAX \|\|
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	1197	inquiry_cache_empty(hdev) \|\| ir.flags & IREQ_CACHE_FLUSH) {
Andre Guedes	1f9b9a5	2013-04-30 15:29:27 -0300	[diff] [blame]	1198	hci_inquiry_cache_flush(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1199	do_inquiry = 1;
				1200	}
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1201	hci_dev_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1202
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	1203	timeo = ir.length * msecs_to_jiffies(2000);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1204
				1205	if (do_inquiry) {
Johan Hedberg	01178cd	2013-03-05 20:37:41 +0200	[diff] [blame]	1206	err = hci_req_sync(hdev, hci_inq_req, (unsigned long) &ir,
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1207	timeo, NULL);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1208	if (err < 0)
				1209	goto done;
Andre Guedes	3e13fa1	2013-03-27 20:04:56 -0300	[diff] [blame]	1210
				1211	/* Wait until Inquiry procedure finishes (HCI_INQUIRY flag is
				1212	* cleared). If it is interrupted by a signal, return -EINTR.
				1213	*/
NeilBrown	7431620	2014-07-07 15:16:04 +1000	[diff] [blame]	1214	if (wait_on_bit(&hdev->flags, HCI_INQUIRY,
Andre Guedes	3e13fa1	2013-03-27 20:04:56 -0300	[diff] [blame]	1215	TASK_INTERRUPTIBLE))
				1216	return -EINTR;
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1217	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1218
Gustavo Padovan	8fc9ced	2012-05-23 04:04:21 -0300	[diff] [blame]	1219	/* for unlimited number of responses we will use buffer with
				1220	* 255 entries
				1221	*/
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1222	max_rsp = (ir.num_rsp == 0) ? 255 : ir.num_rsp;
				1223
				1224	/* cache_dump can't sleep. Therefore we allocate temp buffer and then
				1225	* copy it to the user space.
				1226	*/
Szymon Janc	01df8c3	2011-02-17 16:46:47 +0100	[diff] [blame]	1227	buf = kmalloc(sizeof(struct inquiry_info) * max_rsp, GFP_KERNEL);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1228	if (!buf) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1229	err = -ENOMEM;
				1230	goto done;
				1231	}
				1232
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1233	hci_dev_lock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1234	ir.num_rsp = inquiry_cache_dump(hdev, max_rsp, buf);
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1235	hci_dev_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1236
				1237	BT_DBG("num_rsp %d", ir.num_rsp);
				1238
				1239	if (!copy_to_user(ptr, &ir, sizeof(ir))) {
				1240	ptr += sizeof(ir);
				1241	if (copy_to_user(ptr, buf, sizeof(struct inquiry_info) *
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	1242	ir.num_rsp))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1243	err = -EFAULT;
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1244	} else
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1245	err = -EFAULT;
				1246
				1247	kfree(buf);
				1248
				1249	done:
				1250	hci_dev_put(hdev);
				1251	return err;
				1252	}
				1253
Johan Hedberg	cbed0ca	2013-10-01 22:44:49 +0300	[diff] [blame]	1254	static int hci_dev_do_open(struct hci_dev *hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1255	{
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1256	int ret = 0;
				1257
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1258	BT_DBG("%s %p", hdev->name, hdev);
				1259
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1260	hci_req_sync_lock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1261
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1262	if (hci_dev_test_flag(hdev, HCI_UNREGISTER)) {
Johan Hovold	9432496	2012-03-15 14:48:41 +0100	[diff] [blame]	1263	ret = -ENODEV;
				1264	goto done;
				1265	}
				1266
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1267	if (!hci_dev_test_flag(hdev, HCI_SETUP) &&
				1268	!hci_dev_test_flag(hdev, HCI_CONFIG)) {
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	1269	/* Check for rfkill but allow the HCI setup stage to
				1270	* proceed (which in itself doesn't cause any RF activity).
				1271	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1272	if (hci_dev_test_flag(hdev, HCI_RFKILLED)) {
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	1273	ret = -ERFKILL;
				1274	goto done;
				1275	}
				1276
				1277	/* Check for valid public address or a configured static
				1278	* random adddress, but let the HCI setup proceed to
				1279	* be able to determine if there is a public address
				1280	* or not.
				1281	*
Marcel Holtmann	c6beca0	2014-02-17 09:21:19 -0800	[diff] [blame]	1282	* In case of user channel usage, it is not important
				1283	* if a public address or static random address is
				1284	* available.
				1285	*
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	1286	* This check is only valid for BR/EDR controllers
				1287	* since AMP controllers do not have an address.
				1288	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1289	if (!hci_dev_test_flag(hdev, HCI_USER_CHANNEL) &&
Marcel Holtmann	c6beca0	2014-02-17 09:21:19 -0800	[diff] [blame]	1290	hdev->dev_type == HCI_BREDR &&
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	1291	!bacmp(&hdev->bdaddr, BDADDR_ANY) &&
				1292	!bacmp(&hdev->static_addr, BDADDR_ANY)) {
				1293	ret = -EADDRNOTAVAIL;
				1294	goto done;
				1295	}
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	1296	}
				1297
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1298	if (test_bit(HCI_UP, &hdev->flags)) {
				1299	ret = -EALREADY;
				1300	goto done;
				1301	}
				1302
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1303	if (hdev->open(hdev)) {
				1304	ret = -EIO;
				1305	goto done;
				1306	}
				1307
Marcel Holtmann	e9ca8bf	2015-10-04 23:34:02 +0200	[diff] [blame]	1308	set_bit(HCI_RUNNING, &hdev->flags);
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	1309	hci_sock_dev_event(hdev, HCI_DEV_OPEN);
Marcel Holtmann	4a3f95b	2015-10-04 23:34:00 +0200	[diff] [blame]	1310
Marcel Holtmann	f41c70c	2012-11-12 14:02:14 +0900	[diff] [blame]	1311	atomic_set(&hdev->cmd_cnt, 1);
				1312	set_bit(HCI_INIT, &hdev->flags);
				1313
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1314	if (hci_dev_test_flag(hdev, HCI_SETUP)) {
Marcel Holtmann	e131d74	2015-10-20 02:30:47 +0200	[diff] [blame]	1315	hci_sock_dev_event(hdev, HCI_DEV_SETUP);
				1316
Marcel Holtmann	af202f8	2014-07-04 17:23:34 +0200	[diff] [blame]	1317	if (hdev->setup)
				1318	ret = hdev->setup(hdev);
Marcel Holtmann	f41c70c	2012-11-12 14:02:14 +0900	[diff] [blame]	1319
Marcel Holtmann	af202f8	2014-07-04 17:23:34 +0200	[diff] [blame]	1320	/* The transport driver can set these quirks before
				1321	* creating the HCI device or in its setup callback.
				1322	*
				1323	* In case any of them is set, the controller has to
				1324	* start up as unconfigured.
				1325	*/
Marcel Holtmann	eb1904f	2014-07-04 17:23:33 +0200	[diff] [blame]	1326	if (test_bit(HCI_QUIRK_EXTERNAL_CONFIG, &hdev->quirks) \|\|
				1327	test_bit(HCI_QUIRK_INVALID_BDADDR, &hdev->quirks))
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	1328	hci_dev_set_flag(hdev, HCI_UNCONFIGURED);
Marcel Holtmann	0ebca7d	2014-07-05 10:48:02 +0200	[diff] [blame]	1329
				1330	/* For an unconfigured controller it is required to
				1331	* read at least the version information provided by
				1332	* the Read Local Version Information command.
				1333	*
				1334	* If the set_bdaddr driver callback is provided, then
				1335	* also the original Bluetooth public device address
				1336	* will be read using the Read BD Address command.
				1337	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1338	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED))
Marcel Holtmann	0ebca7d	2014-07-05 10:48:02 +0200	[diff] [blame]	1339	ret = __hci_unconf_init(hdev);
Marcel Holtmann	89bc22d	2014-07-04 16:54:37 +0200	[diff] [blame]	1340	}
				1341
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1342	if (hci_dev_test_flag(hdev, HCI_CONFIG)) {
Marcel Holtmann	9713c17	2014-07-06 12:11:15 +0200	[diff] [blame]	1343	/* If public address change is configured, ensure that
				1344	* the address gets programmed. If the driver does not
				1345	* support changing the public address, fail the power
				1346	* on procedure.
				1347	*/
				1348	if (bacmp(&hdev->public_addr, BDADDR_ANY) &&
				1349	hdev->set_bdaddr)
Marcel Holtmann	24c457e	2014-07-02 00:53:47 +0200	[diff] [blame]	1350	ret = hdev->set_bdaddr(hdev, &hdev->public_addr);
				1351	else
				1352	ret = -EADDRNOTAVAIL;
				1353	}
Marcel Holtmann	f41c70c	2012-11-12 14:02:14 +0900	[diff] [blame]	1354
				1355	if (!ret) {
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1356	if (!hci_dev_test_flag(hdev, HCI_UNCONFIGURED) &&
Marcel Holtmann	98a63aa	2015-10-20 23:25:42 +0200	[diff] [blame]	1357	!hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	f41c70c	2012-11-12 14:02:14 +0900	[diff] [blame]	1358	ret = __hci_init(hdev);
Marcel Holtmann	98a63aa	2015-10-20 23:25:42 +0200	[diff] [blame]	1359	if (!ret && hdev->post_init)
				1360	ret = hdev->post_init(hdev);
				1361	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1362	}
				1363
Marcel Holtmann	7e995b9	2015-10-17 16:00:26 +0200	[diff] [blame]	1364	/* If the HCI Reset command is clearing all diagnostic settings,
				1365	* then they need to be reprogrammed after the init procedure
				1366	* completed.
				1367	*/
				1368	if (test_bit(HCI_QUIRK_NON_PERSISTENT_DIAG, &hdev->quirks) &&
				1369	hci_dev_test_flag(hdev, HCI_VENDOR_DIAG) && hdev->set_diag)
				1370	ret = hdev->set_diag(hdev, true);
				1371
Marcel Holtmann	f41c70c	2012-11-12 14:02:14 +0900	[diff] [blame]	1372	clear_bit(HCI_INIT, &hdev->flags);
				1373
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1374	if (!ret) {
				1375	hci_dev_hold(hdev);
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	1376	hci_dev_set_flag(hdev, HCI_RPA_EXPIRED);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1377	set_bit(HCI_UP, &hdev->flags);
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	1378	hci_sock_dev_event(hdev, HCI_DEV_UP);
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1379	if (!hci_dev_test_flag(hdev, HCI_SETUP) &&
				1380	!hci_dev_test_flag(hdev, HCI_CONFIG) &&
				1381	!hci_dev_test_flag(hdev, HCI_UNCONFIGURED) &&
				1382	!hci_dev_test_flag(hdev, HCI_USER_CHANNEL) &&
Marcel Holtmann	1514b89	2013-10-06 08:25:01 -0700	[diff] [blame]	1383	hdev->dev_type == HCI_BREDR) {
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1384	hci_dev_lock(hdev);
Johan Hedberg	744cf19	2011-11-08 20:40:14 +0200	[diff] [blame]	1385	mgmt_powered(hdev, 1);
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1386	hci_dev_unlock(hdev);
Johan Hedberg	56e5cb8	2011-11-08 20:40:16 +0200	[diff] [blame]	1387	}
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1388	} else {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1389	/* Init failed, cleanup */
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	1390	flush_work(&hdev->tx_work);
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	1391	flush_work(&hdev->cmd_work);
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	1392	flush_work(&hdev->rx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1393
				1394	skb_queue_purge(&hdev->cmd_q);
				1395	skb_queue_purge(&hdev->rx_q);
				1396
				1397	if (hdev->flush)
				1398	hdev->flush(hdev);
				1399
				1400	if (hdev->sent_cmd) {
				1401	kfree_skb(hdev->sent_cmd);
				1402	hdev->sent_cmd = NULL;
				1403	}
				1404
Marcel Holtmann	e9ca8bf	2015-10-04 23:34:02 +0200	[diff] [blame]	1405	clear_bit(HCI_RUNNING, &hdev->flags);
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	1406	hci_sock_dev_event(hdev, HCI_DEV_CLOSE);
Marcel Holtmann	4a3f95b	2015-10-04 23:34:00 +0200	[diff] [blame]	1407
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1408	hdev->close(hdev);
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1409	hdev->flags &= BIT(HCI_RAW);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1410	}
				1411
				1412	done:
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1413	hci_req_sync_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1414	return ret;
				1415	}
				1416
Johan Hedberg	cbed0ca	2013-10-01 22:44:49 +0300	[diff] [blame]	1417	/* ---- HCI ioctl helpers ---- */
				1418
				1419	int hci_dev_open(__u16 dev)
				1420	{
				1421	struct hci_dev *hdev;
				1422	int err;
				1423
				1424	hdev = hci_dev_get(dev);
				1425	if (!hdev)
				1426	return -ENODEV;
				1427
Marcel Holtmann	4a96440	2014-07-02 19:10:33 +0200	[diff] [blame]	1428	/* Devices that are marked as unconfigured can only be powered
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1429	* up as user channel. Trying to bring them up as normal devices
				1430	* will result into a failure. Only user channel operation is
				1431	* possible.
				1432	*
				1433	* When this function is called for a user channel, the flag
				1434	* HCI_USER_CHANNEL will be set first before attempting to
				1435	* open the device.
				1436	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1437	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED) &&
				1438	!hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1439	err = -EOPNOTSUPP;
				1440	goto done;
				1441	}
				1442
Johan Hedberg	e1d08f4	2013-10-01 22:44:50 +0300	[diff] [blame]	1443	/* We need to ensure that no other power on/off work is pending
				1444	* before proceeding to call hci_dev_do_open. This is
				1445	* particularly important if the setup procedure has not yet
				1446	* completed.
				1447	*/
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	1448	if (hci_dev_test_and_clear_flag(hdev, HCI_AUTO_OFF))
Johan Hedberg	e1d08f4	2013-10-01 22:44:50 +0300	[diff] [blame]	1449	cancel_delayed_work(&hdev->power_off);
				1450
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	1451	/* After this call it is guaranteed that the setup procedure
				1452	* has finished. This means that error conditions like RFKILL
				1453	* or no valid public or static random address apply.
				1454	*/
Johan Hedberg	e1d08f4	2013-10-01 22:44:50 +0300	[diff] [blame]	1455	flush_workqueue(hdev->req_workqueue);
				1456
Marcel Holtmann	12aa4f0	2014-07-10 15:25:22 +0200	[diff] [blame]	1457	/* For controllers not using the management interface and that
Johan Hedberg	b6ae845	2014-07-30 09:22:22 +0300	[diff] [blame]	1458	* are brought up using legacy ioctl, set the HCI_BONDABLE bit
Marcel Holtmann	12aa4f0	2014-07-10 15:25:22 +0200	[diff] [blame]	1459	* so that pairing works for them. Once the management interface
				1460	* is in use this bit will be cleared again and userspace has
				1461	* to explicitly enable it.
				1462	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1463	if (!hci_dev_test_flag(hdev, HCI_USER_CHANNEL) &&
				1464	!hci_dev_test_flag(hdev, HCI_MGMT))
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	1465	hci_dev_set_flag(hdev, HCI_BONDABLE);
Marcel Holtmann	12aa4f0	2014-07-10 15:25:22 +0200	[diff] [blame]	1466
Johan Hedberg	cbed0ca	2013-10-01 22:44:49 +0300	[diff] [blame]	1467	err = hci_dev_do_open(hdev);
				1468
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1469	done:
Johan Hedberg	cbed0ca	2013-10-01 22:44:49 +0300	[diff] [blame]	1470	hci_dev_put(hdev);
Johan Hedberg	cbed0ca	2013-10-01 22:44:49 +0300	[diff] [blame]	1471	return err;
				1472	}
				1473
Johan Hedberg	d7347f3	2014-07-04 12:37:23 +0300	[diff] [blame]	1474	/* This function requires the caller holds hdev->lock */
				1475	static void hci_pend_le_actions_clear(struct hci_dev *hdev)
				1476	{
				1477	struct hci_conn_params *p;
				1478
Johan Hedberg	f161dd4	2014-08-15 21:06:54 +0300	[diff] [blame]	1479	list_for_each_entry(p, &hdev->le_conn_params, list) {
				1480	if (p->conn) {
				1481	hci_conn_drop(p->conn);
Johan Hedberg	f8aaf9b	2014-08-17 23:28:57 +0300	[diff] [blame]	1482	hci_conn_put(p->conn);
Johan Hedberg	f161dd4	2014-08-15 21:06:54 +0300	[diff] [blame]	1483	p->conn = NULL;
				1484	}
Johan Hedberg	d7347f3	2014-07-04 12:37:23 +0300	[diff] [blame]	1485	list_del_init(&p->action);
Johan Hedberg	f161dd4	2014-08-15 21:06:54 +0300	[diff] [blame]	1486	}
Johan Hedberg	d7347f3	2014-07-04 12:37:23 +0300	[diff] [blame]	1487
				1488	BT_DBG("All LE pending actions cleared");
				1489	}
				1490
Simon Fels	6b3cc1d	2015-09-02 12:10:12 +0200	[diff] [blame]	1491	int hci_dev_do_close(struct hci_dev *hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1492	{
Marcel Holtmann	acc649c	2015-10-08 01:53:55 +0200	[diff] [blame]	1493	bool auto_off;
				1494
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1495	BT_DBG("%s %p", hdev->name, hdev);
				1496
Gabriele Mazzotta	d24d814	2015-04-26 20:51:50 +0200	[diff] [blame]	1497	if (!hci_dev_test_flag(hdev, HCI_UNREGISTER) &&
Loic Poulain	867146a	2015-06-09 11:46:30 +0200	[diff] [blame]	1498	!hci_dev_test_flag(hdev, HCI_USER_CHANNEL) &&
Gabriele Mazzotta	d24d814	2015-04-26 20:51:50 +0200	[diff] [blame]	1499	test_bit(HCI_UP, &hdev->flags)) {
Tedd Ho-Jeong An	a44fecb	2015-02-13 09:20:50 -0800	[diff] [blame]	1500	/* Execute vendor specific shutdown routine */
				1501	if (hdev->shutdown)
				1502	hdev->shutdown(hdev);
				1503	}
				1504
Vinicius Costa Gomes	78c04c0	2012-09-14 16:34:46 -0300	[diff] [blame]	1505	cancel_delayed_work(&hdev->power_off);
				1506
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1507	hci_req_sync_cancel(hdev, ENODEV);
				1508	hci_req_sync_lock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1509
				1510	if (!test_and_clear_bit(HCI_UP, &hdev->flags)) {
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	1511	cancel_delayed_work_sync(&hdev->cmd_timer);
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1512	hci_req_sync_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1513	return 0;
				1514	}
				1515
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	1516	/* Flush RX and TX works */
				1517	flush_work(&hdev->tx_work);
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	1518	flush_work(&hdev->rx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1519
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1520	if (hdev->discov_timeout > 0) {
Johan Hedberg	e0f9309	2011-11-09 01:44:22 +0200	[diff] [blame]	1521	cancel_delayed_work(&hdev->discov_off);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1522	hdev->discov_timeout = 0;
Marcel Holtmann	a358dc1	2015-03-13 02:11:02 -0700	[diff] [blame]	1523	hci_dev_clear_flag(hdev, HCI_DISCOVERABLE);
				1524	hci_dev_clear_flag(hdev, HCI_LIMITED_DISCOVERABLE);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	1525	}
				1526
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	1527	if (hci_dev_test_and_clear_flag(hdev, HCI_SERVICE_CACHE))
Johan Hedberg	7d78525	2011-12-15 00:47:39 +0200	[diff] [blame]	1528	cancel_delayed_work(&hdev->service_cache);
				1529
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	1530	cancel_delayed_work_sync(&hdev->le_scan_disable);
Jakub Pawlowski	2d28cfe	2015-02-01 23:07:54 -0800	[diff] [blame]	1531	cancel_delayed_work_sync(&hdev->le_scan_restart);
Johan Hedberg	4518bb0	2014-02-24 20:35:07 +0200	[diff] [blame]	1532
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1533	if (hci_dev_test_flag(hdev, HCI_MGMT))
Johan Hedberg	4518bb0	2014-02-24 20:35:07 +0200	[diff] [blame]	1534	cancel_delayed_work_sync(&hdev->rpa_expired);
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	1535
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	1536	if (hdev->adv_instance_timeout) {
				1537	cancel_delayed_work_sync(&hdev->adv_instance_expire);
				1538	hdev->adv_instance_timeout = 0;
				1539	}
				1540
Johan Hedberg	76727c0	2014-11-18 09:00:14 +0200	[diff] [blame]	1541	/* Avoid potential lockdep warnings from the *_flush() calls by
				1542	* ensuring the workqueue is empty up front.
				1543	*/
				1544	drain_workqueue(hdev->workqueue);
				1545
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1546	hci_dev_lock(hdev);
Johan Hedberg	1aeb9c6	2014-12-11 21:45:46 +0200	[diff] [blame]	1547
Johan Hedberg	8f502f8	2015-01-28 19:56:02 +0200	[diff] [blame]	1548	hci_discovery_set_state(hdev, DISCOVERY_STOPPED);
				1549
Marcel Holtmann	acc649c	2015-10-08 01:53:55 +0200	[diff] [blame]	1550	auto_off = hci_dev_test_and_clear_flag(hdev, HCI_AUTO_OFF);
				1551
				1552	if (!auto_off && hdev->dev_type == HCI_BREDR)
				1553	mgmt_powered(hdev, 0);
Johan Hedberg	1aeb9c6	2014-12-11 21:45:46 +0200	[diff] [blame]	1554
Andre Guedes	1f9b9a5	2013-04-30 15:29:27 -0300	[diff] [blame]	1555	hci_inquiry_cache_flush(hdev);
Johan Hedberg	d7347f3	2014-07-04 12:37:23 +0300	[diff] [blame]	1556	hci_pend_le_actions_clear(hdev);
Johan Hedberg	f161dd4	2014-08-15 21:06:54 +0300	[diff] [blame]	1557	hci_conn_hash_flush(hdev);
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1558	hci_dev_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1559
Marcel Holtmann	64dae96	2015-01-28 14:10:28 -0800	[diff] [blame]	1560	smp_unregister(hdev);
				1561
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	1562	hci_sock_dev_event(hdev, HCI_DEV_DOWN);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1563
				1564	if (hdev->flush)
				1565	hdev->flush(hdev);
				1566
				1567	/* Reset device */
				1568	skb_queue_purge(&hdev->cmd_q);
				1569	atomic_set(&hdev->cmd_cnt, 1);
Marcel Holtmann	acc649c	2015-10-08 01:53:55 +0200	[diff] [blame]	1570	if (test_bit(HCI_QUIRK_RESET_ON_CLOSE, &hdev->quirks) &&
				1571	!auto_off && !hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1572	set_bit(HCI_INIT, &hdev->flags);
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1573	__hci_req_sync(hdev, hci_reset_req, 0, HCI_CMD_TIMEOUT, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1574	clear_bit(HCI_INIT, &hdev->flags);
				1575	}
				1576
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	1577	/* flush cmd work */
				1578	flush_work(&hdev->cmd_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1579
				1580	/* Drop queues */
				1581	skb_queue_purge(&hdev->rx_q);
				1582	skb_queue_purge(&hdev->cmd_q);
				1583	skb_queue_purge(&hdev->raw_q);
				1584
				1585	/* Drop last sent command */
				1586	if (hdev->sent_cmd) {
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	1587	cancel_delayed_work_sync(&hdev->cmd_timer);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1588	kfree_skb(hdev->sent_cmd);
				1589	hdev->sent_cmd = NULL;
				1590	}
				1591
Marcel Holtmann	e9ca8bf	2015-10-04 23:34:02 +0200	[diff] [blame]	1592	clear_bit(HCI_RUNNING, &hdev->flags);
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	1593	hci_sock_dev_event(hdev, HCI_DEV_CLOSE);
Marcel Holtmann	4a3f95b	2015-10-04 23:34:00 +0200	[diff] [blame]	1594
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1595	/* After this point our queues are empty
				1596	* and no tasks are scheduled. */
				1597	hdev->close(hdev);
				1598
Johan Hedberg	35b973c	2013-03-15 17:06:59 -0500	[diff] [blame]	1599	/* Clear flags */
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1600	hdev->flags &= BIT(HCI_RAW);
Marcel Holtmann	eacb44d	2015-03-13 09:04:17 -0700	[diff] [blame]	1601	hci_dev_clear_volatile_flags(hdev);
Johan Hedberg	35b973c	2013-03-15 17:06:59 -0500	[diff] [blame]	1602
Andrei Emeltchenko	ced5c33	2012-11-28 17:59:42 +0200	[diff] [blame]	1603	/* Controller radio is available but is currently powered down */
Marcel Holtmann	536619e	2013-10-05 11:47:45 -0700	[diff] [blame]	1604	hdev->amp_status = AMP_STATUS_POWERED_DOWN;
Andrei Emeltchenko	ced5c33	2012-11-28 17:59:42 +0200	[diff] [blame]	1605
Johan Hedberg	e59fda8	2012-02-22 18:11:53 +0200	[diff] [blame]	1606	memset(hdev->eir, 0, sizeof(hdev->eir));
Johan Hedberg	09b3c3f	2012-02-22 22:01:41 +0200	[diff] [blame]	1607	memset(hdev->dev_class, 0, sizeof(hdev->dev_class));
Marcel Holtmann	7a4cd51	2014-02-19 19:52:13 -0800	[diff] [blame]	1608	bacpy(&hdev->random_addr, BDADDR_ANY);
Johan Hedberg	e59fda8	2012-02-22 18:11:53 +0200	[diff] [blame]	1609
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1610	hci_req_sync_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1611
Johan Hedberg	5fc16cc	2015-11-11 08:11:16 +0200	[diff] [blame]	1612	hci_request_cancel_all(hdev);
				1613
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1614	hci_dev_put(hdev);
				1615	return 0;
				1616	}
				1617
				1618	int hci_dev_close(__u16 dev)
				1619	{
				1620	struct hci_dev *hdev;
				1621	int err;
				1622
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1623	hdev = hci_dev_get(dev);
				1624	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1625	return -ENODEV;
Marcel Holtmann	8ee5654	2012-02-21 12:33:48 +0100	[diff] [blame]	1626
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1627	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1628	err = -EBUSY;
				1629	goto done;
				1630	}
				1631
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	1632	if (hci_dev_test_and_clear_flag(hdev, HCI_AUTO_OFF))
Marcel Holtmann	8ee5654	2012-02-21 12:33:48 +0100	[diff] [blame]	1633	cancel_delayed_work(&hdev->power_off);
				1634
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1635	err = hci_dev_do_close(hdev);
Marcel Holtmann	8ee5654	2012-02-21 12:33:48 +0100	[diff] [blame]	1636
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1637	done:
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1638	hci_dev_put(hdev);
				1639	return err;
				1640	}
				1641
Marcel Holtmann	5c91249	2015-01-28 11:53:05 -0800	[diff] [blame]	1642	static int hci_dev_do_reset(struct hci_dev *hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1643	{
Marcel Holtmann	5c91249	2015-01-28 11:53:05 -0800	[diff] [blame]	1644	int ret;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1645
Marcel Holtmann	5c91249	2015-01-28 11:53:05 -0800	[diff] [blame]	1646	BT_DBG("%s %p", hdev->name, hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1647
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1648	hci_req_sync_lock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1649
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1650	/* Drop queues */
				1651	skb_queue_purge(&hdev->rx_q);
				1652	skb_queue_purge(&hdev->cmd_q);
				1653
Johan Hedberg	76727c0	2014-11-18 09:00:14 +0200	[diff] [blame]	1654	/* Avoid potential lockdep warnings from the *_flush() calls by
				1655	* ensuring the workqueue is empty up front.
				1656	*/
				1657	drain_workqueue(hdev->workqueue);
				1658
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1659	hci_dev_lock(hdev);
Andre Guedes	1f9b9a5	2013-04-30 15:29:27 -0300	[diff] [blame]	1660	hci_inquiry_cache_flush(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1661	hci_conn_hash_flush(hdev);
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	1662	hci_dev_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1663
				1664	if (hdev->flush)
				1665	hdev->flush(hdev);
				1666
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1667	atomic_set(&hdev->cmd_cnt, 1);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	1668	hdev->acl_cnt = 0; hdev->sco_cnt = 0; hdev->le_cnt = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1669
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1670	ret = __hci_req_sync(hdev, hci_reset_req, 0, HCI_INIT_TIMEOUT, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1671
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	1672	hci_req_sync_unlock(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1673	return ret;
				1674	}
				1675
Marcel Holtmann	5c91249	2015-01-28 11:53:05 -0800	[diff] [blame]	1676	int hci_dev_reset(__u16 dev)
				1677	{
				1678	struct hci_dev *hdev;
				1679	int err;
				1680
				1681	hdev = hci_dev_get(dev);
				1682	if (!hdev)
				1683	return -ENODEV;
				1684
				1685	if (!test_bit(HCI_UP, &hdev->flags)) {
				1686	err = -ENETDOWN;
				1687	goto done;
				1688	}
				1689
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1690	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	5c91249	2015-01-28 11:53:05 -0800	[diff] [blame]	1691	err = -EBUSY;
				1692	goto done;
				1693	}
				1694
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1695	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Marcel Holtmann	5c91249	2015-01-28 11:53:05 -0800	[diff] [blame]	1696	err = -EOPNOTSUPP;
				1697	goto done;
				1698	}
				1699
				1700	err = hci_dev_do_reset(hdev);
				1701
				1702	done:
				1703	hci_dev_put(hdev);
				1704	return err;
				1705	}
				1706
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1707	int hci_dev_reset_stat(__u16 dev)
				1708	{
				1709	struct hci_dev *hdev;
				1710	int ret = 0;
				1711
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1712	hdev = hci_dev_get(dev);
				1713	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1714	return -ENODEV;
				1715
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1716	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1717	ret = -EBUSY;
				1718	goto done;
				1719	}
				1720
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1721	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1722	ret = -EOPNOTSUPP;
				1723	goto done;
				1724	}
				1725
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1726	memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));
				1727
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1728	done:
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1729	hci_dev_put(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1730	return ret;
				1731	}
				1732
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1733	static void hci_update_scan_state(struct hci_dev *hdev, u8 scan)
				1734	{
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1735	bool conn_changed, discov_changed;
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1736
				1737	BT_DBG("%s scan 0x%02x", hdev->name, scan);
				1738
				1739	if ((scan & SCAN_PAGE))
Marcel Holtmann	238be78	2015-03-13 02:11:06 -0700	[diff] [blame]	1740	conn_changed = !hci_dev_test_and_set_flag(hdev,
				1741	HCI_CONNECTABLE);
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1742	else
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	1743	conn_changed = hci_dev_test_and_clear_flag(hdev,
				1744	HCI_CONNECTABLE);
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1745
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1746	if ((scan & SCAN_INQUIRY)) {
Marcel Holtmann	238be78	2015-03-13 02:11:06 -0700	[diff] [blame]	1747	discov_changed = !hci_dev_test_and_set_flag(hdev,
				1748	HCI_DISCOVERABLE);
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1749	} else {
Marcel Holtmann	a358dc1	2015-03-13 02:11:02 -0700	[diff] [blame]	1750	hci_dev_clear_flag(hdev, HCI_LIMITED_DISCOVERABLE);
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	1751	discov_changed = hci_dev_test_and_clear_flag(hdev,
				1752	HCI_DISCOVERABLE);
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1753	}
				1754
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1755	if (!hci_dev_test_flag(hdev, HCI_MGMT))
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1756	return;
				1757
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1758	if (conn_changed \|\| discov_changed) {
				1759	/* In case this was disabled through mgmt */
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	1760	hci_dev_set_flag(hdev, HCI_BREDR_ENABLED);
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1761
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1762	if (hci_dev_test_flag(hdev, HCI_LE_ENABLED))
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1763	mgmt_update_adv_data(hdev);
				1764
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1765	mgmt_new_settings(hdev);
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1766	}
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1767	}
				1768
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1769	int hci_dev_cmd(unsigned int cmd, void __user *arg)
				1770	{
				1771	struct hci_dev *hdev;
				1772	struct hci_dev_req dr;
				1773	int err = 0;
				1774
				1775	if (copy_from_user(&dr, arg, sizeof(dr)))
				1776	return -EFAULT;
				1777
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1778	hdev = hci_dev_get(dr.dev_id);
				1779	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1780	return -ENODEV;
				1781
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1782	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1783	err = -EBUSY;
				1784	goto done;
				1785	}
				1786
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1787	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	1788	err = -EOPNOTSUPP;
				1789	goto done;
				1790	}
				1791
Marcel Holtmann	5b69bef5	2013-10-10 10:02:08 -0700	[diff] [blame]	1792	if (hdev->dev_type != HCI_BREDR) {
				1793	err = -EOPNOTSUPP;
				1794	goto done;
				1795	}
				1796
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1797	if (!hci_dev_test_flag(hdev, HCI_BREDR_ENABLED)) {
Johan Hedberg	56f8790	2013-10-02 13:43:13 +0300	[diff] [blame]	1798	err = -EOPNOTSUPP;
				1799	goto done;
				1800	}
				1801
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1802	switch (cmd) {
				1803	case HCISETAUTH:
Johan Hedberg	01178cd	2013-03-05 20:37:41 +0200	[diff] [blame]	1804	err = hci_req_sync(hdev, hci_auth_req, dr.dev_opt,
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1805	HCI_INIT_TIMEOUT, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1806	break;
				1807
				1808	case HCISETENCRYPT:
				1809	if (!lmp_encrypt_capable(hdev)) {
				1810	err = -EOPNOTSUPP;
				1811	break;
				1812	}
				1813
				1814	if (!test_bit(HCI_AUTH, &hdev->flags)) {
				1815	/* Auth must be enabled first */
Johan Hedberg	01178cd	2013-03-05 20:37:41 +0200	[diff] [blame]	1816	err = hci_req_sync(hdev, hci_auth_req, dr.dev_opt,
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1817	HCI_INIT_TIMEOUT, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1818	if (err)
				1819	break;
				1820	}
				1821
Johan Hedberg	01178cd	2013-03-05 20:37:41 +0200	[diff] [blame]	1822	err = hci_req_sync(hdev, hci_encrypt_req, dr.dev_opt,
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1823	HCI_INIT_TIMEOUT, NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1824	break;
				1825
				1826	case HCISETSCAN:
Johan Hedberg	01178cd	2013-03-05 20:37:41 +0200	[diff] [blame]	1827	err = hci_req_sync(hdev, hci_scan_req, dr.dev_opt,
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1828	HCI_INIT_TIMEOUT, NULL);
Johan Hedberg	91a668b	2014-07-09 13:28:26 +0300	[diff] [blame]	1829
Johan Hedberg	bc6d2d0	2014-07-10 12:09:08 +0300	[diff] [blame]	1830	/* Ensure that the connectable and discoverable states
				1831	* get correctly modified as this was a non-mgmt change.
Johan Hedberg	91a668b	2014-07-09 13:28:26 +0300	[diff] [blame]	1832	*/
Johan Hedberg	123abc0	2014-07-10 12:09:07 +0300	[diff] [blame]	1833	if (!err)
				1834	hci_update_scan_state(hdev, dr.dev_opt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1835	break;
				1836
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	1837	case HCISETLINKPOL:
Johan Hedberg	01178cd	2013-03-05 20:37:41 +0200	[diff] [blame]	1838	err = hci_req_sync(hdev, hci_linkpol_req, dr.dev_opt,
Johan Hedberg	4ebeee2	2015-11-11 08:11:19 +0200	[diff] [blame^]	1839	HCI_INIT_TIMEOUT, NULL);
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	1840	break;
				1841
				1842	case HCISETLINKMODE:
				1843	hdev->link_mode = ((__u16) dr.dev_opt) &
				1844	(HCI_LM_MASTER \| HCI_LM_ACCEPT);
				1845	break;
				1846
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1847	case HCISETPTYPE:
				1848	hdev->pkt_type = (__u16) dr.dev_opt;
				1849	break;
				1850
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1851	case HCISETACLMTU:
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	1852	hdev->acl_mtu = ((__u16 ) &dr.dev_opt + 1);
				1853	hdev->acl_pkts = ((__u16 ) &dr.dev_opt + 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1854	break;
				1855
				1856	case HCISETSCOMTU:
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	1857	hdev->sco_mtu = ((__u16 ) &dr.dev_opt + 1);
				1858	hdev->sco_pkts = ((__u16 ) &dr.dev_opt + 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1859	break;
				1860
				1861	default:
				1862	err = -EINVAL;
				1863	break;
				1864	}
Marcel Holtmann	e4e8e37	2008-07-14 20:13:47 +0200	[diff] [blame]	1865
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1866	done:
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1867	hci_dev_put(hdev);
				1868	return err;
				1869	}
				1870
				1871	int hci_get_dev_list(void __user *arg)
				1872	{
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	1873	struct hci_dev *hdev;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1874	struct hci_dev_list_req *dl;
				1875	struct hci_dev_req *dr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1876	int n = 0, size, err;
				1877	__u16 dev_num;
				1878
				1879	if (get_user(dev_num, (__u16 __user *) arg))
				1880	return -EFAULT;
				1881
				1882	if (!dev_num \|\| dev_num > (PAGE_SIZE * 2) / sizeof(*dr))
				1883	return -EINVAL;
				1884
				1885	size = sizeof(dl) + dev_num sizeof(*dr);
				1886
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1887	dl = kzalloc(size, GFP_KERNEL);
				1888	if (!dl)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1889	return -ENOMEM;
				1890
				1891	dr = dl->dev_req;
				1892
Gustavo F. Padovan	f20d09d	2011-12-22 16:30:27 -0200	[diff] [blame]	1893	read_lock(&hci_dev_list_lock);
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	1894	list_for_each_entry(hdev, &hci_dev_list, list) {
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1895	unsigned long flags = hdev->flags;
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	1896
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1897	/* When the auto-off is configured it means the transport
				1898	* is running, but in that case still indicate that the
				1899	* device is actually down.
				1900	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1901	if (hci_dev_test_flag(hdev, HCI_AUTO_OFF))
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1902	flags &= ~BIT(HCI_UP);
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	1903
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1904	(dr + n)->dev_id = hdev->id;
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1905	(dr + n)->dev_opt = flags;
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	1906
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1907	if (++n >= dev_num)
				1908	break;
				1909	}
Gustavo F. Padovan	f20d09d	2011-12-22 16:30:27 -0200	[diff] [blame]	1910	read_unlock(&hci_dev_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1911
				1912	dl->dev_num = n;
				1913	size = sizeof(dl) + n sizeof(*dr);
				1914
				1915	err = copy_to_user(arg, dl, size);
				1916	kfree(dl);
				1917
				1918	return err ? -EFAULT : 0;
				1919	}
				1920
				1921	int hci_get_dev_info(void __user *arg)
				1922	{
				1923	struct hci_dev *hdev;
				1924	struct hci_dev_info di;
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1925	unsigned long flags;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1926	int err = 0;
				1927
				1928	if (copy_from_user(&di, arg, sizeof(di)))
				1929	return -EFAULT;
				1930
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	1931	hdev = hci_dev_get(di.dev_id);
				1932	if (!hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1933	return -ENODEV;
				1934
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1935	/* When the auto-off is configured it means the transport
				1936	* is running, but in that case still indicate that the
				1937	* device is actually down.
				1938	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1939	if (hci_dev_test_flag(hdev, HCI_AUTO_OFF))
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1940	flags = hdev->flags & ~BIT(HCI_UP);
				1941	else
				1942	flags = hdev->flags;
Johan Hedberg	c542a06	2011-01-26 13:11:03 +0200	[diff] [blame]	1943
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1944	strcpy(di.name, hdev->name);
				1945	di.bdaddr = hdev->bdaddr;
Marcel Holtmann	60f2a3e	2013-10-01 22:59:20 -0700	[diff] [blame]	1946	di.type = (hdev->bus & 0x0f) \| ((hdev->dev_type & 0x03) << 4);
Marcel Holtmann	2e84d8d	2014-07-10 13:17:37 +0200	[diff] [blame]	1947	di.flags = flags;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1948	di.pkt_type = hdev->pkt_type;
Johan Hedberg	572c7f8	2012-10-19 20:57:46 +0300	[diff] [blame]	1949	if (lmp_bredr_capable(hdev)) {
				1950	di.acl_mtu = hdev->acl_mtu;
				1951	di.acl_pkts = hdev->acl_pkts;
				1952	di.sco_mtu = hdev->sco_mtu;
				1953	di.sco_pkts = hdev->sco_pkts;
				1954	} else {
				1955	di.acl_mtu = hdev->le_mtu;
				1956	di.acl_pkts = hdev->le_pkts;
				1957	di.sco_mtu = 0;
				1958	di.sco_pkts = 0;
				1959	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1960	di.link_policy = hdev->link_policy;
				1961	di.link_mode = hdev->link_mode;
				1962
				1963	memcpy(&di.stat, &hdev->stat, sizeof(di.stat));
				1964	memcpy(&di.features, &hdev->features, sizeof(di.features));
				1965
				1966	if (copy_to_user(arg, &di, sizeof(di)))
				1967	err = -EFAULT;
				1968
				1969	hci_dev_put(hdev);
				1970
				1971	return err;
				1972	}
				1973
				1974	/* ---- Interface to HCI drivers ---- */
				1975
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	1976	static int hci_rfkill_set_block(void *data, bool blocked)
				1977	{
				1978	struct hci_dev *hdev = data;
				1979
				1980	BT_DBG("%p name %s blocked %d", hdev, hdev->name, blocked);
				1981
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1982	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL))
Marcel Holtmann	0736cfa	2013-08-26 21:40:51 -0700	[diff] [blame]	1983	return -EBUSY;
				1984
Johan Hedberg	5e13036	2013-09-13 08:58:17 +0300	[diff] [blame]	1985	if (blocked) {
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	1986	hci_dev_set_flag(hdev, HCI_RFKILLED);
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	1987	if (!hci_dev_test_flag(hdev, HCI_SETUP) &&
				1988	!hci_dev_test_flag(hdev, HCI_CONFIG))
Johan Hedberg	bf54303	2013-09-13 08:58:18 +0300	[diff] [blame]	1989	hci_dev_do_close(hdev);
Johan Hedberg	5e13036	2013-09-13 08:58:17 +0300	[diff] [blame]	1990	} else {
Marcel Holtmann	a358dc1	2015-03-13 02:11:02 -0700	[diff] [blame]	1991	hci_dev_clear_flag(hdev, HCI_RFKILLED);
Gustavo Padovan	1025c04	2013-09-27 11:56:14 -0300	[diff] [blame]	1992	}
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	1993
				1994	return 0;
				1995	}
				1996
				1997	static const struct rfkill_ops hci_rfkill_ops = {
				1998	.set_block = hci_rfkill_set_block,
				1999	};
				2000
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2001	static void hci_power_on(struct work_struct *work)
				2002	{
				2003	struct hci_dev *hdev = container_of(work, struct hci_dev, power_on);
Johan Hedberg	96570ff	2013-05-29 09:51:29 +0300	[diff] [blame]	2004	int err;
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2005
				2006	BT_DBG("%s", hdev->name);
				2007
Johan Hedberg	cbed0ca	2013-10-01 22:44:49 +0300	[diff] [blame]	2008	err = hci_dev_do_open(hdev);
Johan Hedberg	96570ff	2013-05-29 09:51:29 +0300	[diff] [blame]	2009	if (err < 0) {
Jaganath Kanakkassery	3ad6758	2014-12-11 11:43:12 +0530	[diff] [blame]	2010	hci_dev_lock(hdev);
Johan Hedberg	96570ff	2013-05-29 09:51:29 +0300	[diff] [blame]	2011	mgmt_set_powered_failed(hdev, err);
Jaganath Kanakkassery	3ad6758	2014-12-11 11:43:12 +0530	[diff] [blame]	2012	hci_dev_unlock(hdev);
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2013	return;
Johan Hedberg	96570ff	2013-05-29 09:51:29 +0300	[diff] [blame]	2014	}
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2015
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	2016	/* During the HCI setup phase, a few error conditions are
				2017	* ignored and they need to be checked now. If they are still
				2018	* valid, it is important to turn the device back off.
				2019	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	2020	if (hci_dev_test_flag(hdev, HCI_RFKILLED) \|\|
				2021	hci_dev_test_flag(hdev, HCI_UNCONFIGURED) \|\|
Marcel Holtmann	a5c8f27	2013-10-06 01:08:57 -0700	[diff] [blame]	2022	(hdev->dev_type == HCI_BREDR &&
				2023	!bacmp(&hdev->bdaddr, BDADDR_ANY) &&
				2024	!bacmp(&hdev->static_addr, BDADDR_ANY))) {
Marcel Holtmann	a358dc1	2015-03-13 02:11:02 -0700	[diff] [blame]	2025	hci_dev_clear_flag(hdev, HCI_AUTO_OFF);
Johan Hedberg	bf54303	2013-09-13 08:58:18 +0300	[diff] [blame]	2026	hci_dev_do_close(hdev);
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	2027	} else if (hci_dev_test_flag(hdev, HCI_AUTO_OFF)) {
Johan Hedberg	1920257	2013-01-14 22:33:51 +0200	[diff] [blame]	2028	queue_delayed_work(hdev->req_workqueue, &hdev->power_off,
				2029	HCI_AUTO_OFF_TIMEOUT);
Johan Hedberg	bf54303	2013-09-13 08:58:18 +0300	[diff] [blame]	2030	}
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2031
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	2032	if (hci_dev_test_and_clear_flag(hdev, HCI_SETUP)) {
Marcel Holtmann	4a96440	2014-07-02 19:10:33 +0200	[diff] [blame]	2033	/* For unconfigured devices, set the HCI_RAW flag
				2034	* so that userspace can easily identify them.
Marcel Holtmann	4a96440	2014-07-02 19:10:33 +0200	[diff] [blame]	2035	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	2036	if (hci_dev_test_flag(hdev, HCI_UNCONFIGURED))
Marcel Holtmann	4a96440	2014-07-02 19:10:33 +0200	[diff] [blame]	2037	set_bit(HCI_RAW, &hdev->flags);
Marcel Holtmann	0602a8a	2014-07-02 21:30:54 +0200	[diff] [blame]	2038
				2039	/* For fully configured devices, this will send
				2040	* the Index Added event. For unconfigured devices,
				2041	* it will send Unconfigued Index Added event.
				2042	*
				2043	* Devices with HCI_QUIRK_RAW_DEVICE are ignored
				2044	* and no event will be send.
				2045	*/
Johan Hedberg	744cf19	2011-11-08 20:40:14 +0200	[diff] [blame]	2046	mgmt_index_added(hdev);
Marcel Holtmann	a69d892	2015-03-13 02:11:05 -0700	[diff] [blame]	2047	} else if (hci_dev_test_and_clear_flag(hdev, HCI_CONFIG)) {
Marcel Holtmann	5ea234d	2014-07-06 12:11:16 +0200	[diff] [blame]	2048	/* When the controller is now configured, then it
				2049	* is important to clear the HCI_RAW flag.
				2050	*/
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	2051	if (!hci_dev_test_flag(hdev, HCI_UNCONFIGURED))
Marcel Holtmann	5ea234d	2014-07-06 12:11:16 +0200	[diff] [blame]	2052	clear_bit(HCI_RAW, &hdev->flags);
				2053
Marcel Holtmann	d603b76	2014-07-06 12:11:14 +0200	[diff] [blame]	2054	/* Powering on the controller with HCI_CONFIG set only
				2055	* happens with the transition from unconfigured to
				2056	* configured. This will send the Index Added event.
				2057	*/
				2058	mgmt_index_added(hdev);
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	2059	}
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2060	}
				2061
				2062	static void hci_power_off(struct work_struct *work)
				2063	{
Johan Hedberg	3243553	2011-11-07 22:16:04 +0200	[diff] [blame]	2064	struct hci_dev *hdev = container_of(work, struct hci_dev,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	2065	power_off.work);
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2066
				2067	BT_DBG("%s", hdev->name);
				2068
Marcel Holtmann	8ee5654	2012-02-21 12:33:48 +0100	[diff] [blame]	2069	hci_dev_do_close(hdev);
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	2070	}
				2071
Marcel Holtmann	c7741d1	2015-01-28 11:09:55 -0800	[diff] [blame]	2072	static void hci_error_reset(struct work_struct *work)
				2073	{
				2074	struct hci_dev *hdev = container_of(work, struct hci_dev, error_reset);
				2075
				2076	BT_DBG("%s", hdev->name);
				2077
				2078	if (hdev->hw_error)
				2079	hdev->hw_error(hdev, hdev->hw_error_code);
				2080	else
				2081	BT_ERR("%s hardware error 0x%2.2x", hdev->name,
				2082	hdev->hw_error_code);
				2083
				2084	if (hci_dev_do_close(hdev))
				2085	return;
				2086
Marcel Holtmann	c7741d1	2015-01-28 11:09:55 -0800	[diff] [blame]	2087	hci_dev_do_open(hdev);
				2088	}
				2089
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	2090	static void hci_discov_off(struct work_struct *work)
				2091	{
				2092	struct hci_dev *hdev;
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	2093
				2094	hdev = container_of(work, struct hci_dev, discov_off.work);
				2095
				2096	BT_DBG("%s", hdev->name);
				2097
Marcel Holtmann	d1967ff	2013-10-15 10:57:40 -0700	[diff] [blame]	2098	mgmt_discoverable_timeout(hdev);
Johan Hedberg	16ab91a	2011-11-07 22:16:02 +0200	[diff] [blame]	2099	}
				2100
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	2101	static void hci_adv_timeout_expire(struct work_struct *work)
				2102	{
				2103	struct hci_dev *hdev;
				2104
				2105	hdev = container_of(work, struct hci_dev, adv_instance_expire.work);
				2106
				2107	BT_DBG("%s", hdev->name);
				2108
				2109	mgmt_adv_timeout_expired(hdev);
				2110	}
				2111
Johan Hedberg	35f7498	2014-02-18 17:14:32 +0200	[diff] [blame]	2112	void hci_uuids_clear(struct hci_dev *hdev)
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	2113	{
Johan Hedberg	4821002	2013-01-27 00:31:28 +0200	[diff] [blame]	2114	struct bt_uuid uuid, tmp;
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	2115
Johan Hedberg	4821002	2013-01-27 00:31:28 +0200	[diff] [blame]	2116	list_for_each_entry_safe(uuid, tmp, &hdev->uuids, list) {
				2117	list_del(&uuid->list);
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	2118	kfree(uuid);
				2119	}
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	2120	}
				2121
Johan Hedberg	35f7498	2014-02-18 17:14:32 +0200	[diff] [blame]	2122	void hci_link_keys_clear(struct hci_dev *hdev)
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2123	{
Johan Hedberg	0378b59	2014-11-19 15:22:22 +0200	[diff] [blame]	2124	struct link_key *key;
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2125
Johan Hedberg	0378b59	2014-11-19 15:22:22 +0200	[diff] [blame]	2126	list_for_each_entry_rcu(key, &hdev->link_keys, list) {
				2127	list_del_rcu(&key->list);
				2128	kfree_rcu(key, rcu);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2129	}
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2130	}
				2131
Johan Hedberg	35f7498	2014-02-18 17:14:32 +0200	[diff] [blame]	2132	void hci_smp_ltks_clear(struct hci_dev *hdev)
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2133	{
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2134	struct smp_ltk *k;
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2135
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2136	list_for_each_entry_rcu(k, &hdev->long_term_keys, list) {
				2137	list_del_rcu(&k->list);
				2138	kfree_rcu(k, rcu);
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2139	}
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2140	}
				2141
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2142	void hci_smp_irks_clear(struct hci_dev *hdev)
				2143	{
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2144	struct smp_irk *k;
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2145
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2146	list_for_each_entry_rcu(k, &hdev->identity_resolving_keys, list) {
				2147	list_del_rcu(&k->list);
				2148	kfree_rcu(k, rcu);
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2149	}
				2150	}
				2151
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2152	struct link_key hci_find_link_key(struct hci_dev hdev, bdaddr_t *bdaddr)
				2153	{
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	2154	struct link_key *k;
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2155
Johan Hedberg	0378b59	2014-11-19 15:22:22 +0200	[diff] [blame]	2156	rcu_read_lock();
				2157	list_for_each_entry_rcu(k, &hdev->link_keys, list) {
				2158	if (bacmp(bdaddr, &k->bdaddr) == 0) {
				2159	rcu_read_unlock();
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2160	return k;
Johan Hedberg	0378b59	2014-11-19 15:22:22 +0200	[diff] [blame]	2161	}
				2162	}
				2163	rcu_read_unlock();
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2164
				2165	return NULL;
				2166	}
				2167
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2168	static bool hci_persistent_key(struct hci_dev hdev, struct hci_conn conn,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	2169	u8 key_type, u8 old_key_type)
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2170	{
				2171	/* Legacy key */
				2172	if (key_type < 0x03)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2173	return true;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2174
				2175	/* Debug keys are insecure so don't store them persistently */
				2176	if (key_type == HCI_LK_DEBUG_COMBINATION)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2177	return false;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2178
				2179	/* Changed combination key and there's no previous one */
				2180	if (key_type == HCI_LK_CHANGED_COMBINATION && old_key_type == 0xff)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2181	return false;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2182
				2183	/* Security mode 3 case */
				2184	if (!conn)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2185	return true;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2186
Johan Hedberg	e3befab	2014-06-01 16:33:39 +0300	[diff] [blame]	2187	/* BR/EDR key derived using SC from an LE link */
				2188	if (conn->type == LE_LINK)
				2189	return true;
				2190
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2191	/* Neither local nor remote side had no-bonding as requirement */
				2192	if (conn->auth_type > 0x01 && conn->remote_auth > 0x01)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2193	return true;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2194
				2195	/* Local side had dedicated bonding as requirement */
				2196	if (conn->auth_type == 0x02 \|\| conn->auth_type == 0x03)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2197	return true;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2198
				2199	/* Remote side had dedicated bonding as requirement */
				2200	if (conn->remote_auth == 0x02 \|\| conn->remote_auth == 0x03)
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2201	return true;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2202
				2203	/* If none of the above criteria match, then don't store the key
				2204	* persistently */
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2205	return false;
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2206	}
				2207
Johan Hedberg	e804d25	2014-07-16 11:42:28 +0300	[diff] [blame]	2208	static u8 ltk_role(u8 type)
Johan Hedberg	98a0b84	2014-01-30 19:40:00 -0800	[diff] [blame]	2209	{
Johan Hedberg	e804d25	2014-07-16 11:42:28 +0300	[diff] [blame]	2210	if (type == SMP_LTK)
				2211	return HCI_ROLE_MASTER;
Johan Hedberg	98a0b84	2014-01-30 19:40:00 -0800	[diff] [blame]	2212
Johan Hedberg	e804d25	2014-07-16 11:42:28 +0300	[diff] [blame]	2213	return HCI_ROLE_SLAVE;
Johan Hedberg	98a0b84	2014-01-30 19:40:00 -0800	[diff] [blame]	2214	}
				2215
Johan Hedberg	f3a73d9	2014-05-29 15:02:59 +0300	[diff] [blame]	2216	struct smp_ltk hci_find_ltk(struct hci_dev hdev, bdaddr_t *bdaddr,
				2217	u8 addr_type, u8 role)
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2218	{
Vinicius Costa Gomes	c9839a1	2012-02-02 21:08:01 -0300	[diff] [blame]	2219	struct smp_ltk *k;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2220
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2221	rcu_read_lock();
				2222	list_for_each_entry_rcu(k, &hdev->long_term_keys, list) {
Johan Hedberg	5378bc5	2014-05-29 14:00:39 +0300	[diff] [blame]	2223	if (addr_type != k->bdaddr_type \|\| bacmp(bdaddr, &k->bdaddr))
				2224	continue;
				2225
Johan Hedberg	923e241	2014-12-03 12:43:39 +0200	[diff] [blame]	2226	if (smp_ltk_is_sc(k) \|\| ltk_role(k->type) == role) {
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2227	rcu_read_unlock();
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2228	return k;
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2229	}
				2230	}
				2231	rcu_read_unlock();
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2232
				2233	return NULL;
				2234	}
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2235
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2236	struct smp_irk hci_find_irk_by_rpa(struct hci_dev hdev, bdaddr_t *rpa)
				2237	{
				2238	struct smp_irk *irk;
				2239
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2240	rcu_read_lock();
				2241	list_for_each_entry_rcu(irk, &hdev->identity_resolving_keys, list) {
				2242	if (!bacmp(&irk->rpa, rpa)) {
				2243	rcu_read_unlock();
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2244	return irk;
				2245	}
				2246	}
				2247
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2248	list_for_each_entry_rcu(irk, &hdev->identity_resolving_keys, list) {
				2249	if (smp_irk_matches(hdev, irk->val, rpa)) {
				2250	bacpy(&irk->rpa, rpa);
				2251	rcu_read_unlock();
				2252	return irk;
				2253	}
				2254	}
				2255	rcu_read_unlock();
				2256
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2257	return NULL;
				2258	}
				2259
				2260	struct smp_irk hci_find_irk_by_addr(struct hci_dev hdev, bdaddr_t *bdaddr,
				2261	u8 addr_type)
				2262	{
				2263	struct smp_irk *irk;
				2264
Johan Hedberg	6cfc998	2014-02-18 21:41:35 +0200	[diff] [blame]	2265	/* Identity Address must be public or static random */
				2266	if (addr_type == ADDR_LE_DEV_RANDOM && (bdaddr->b[5] & 0xc0) != 0xc0)
				2267	return NULL;
				2268
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2269	rcu_read_lock();
				2270	list_for_each_entry_rcu(irk, &hdev->identity_resolving_keys, list) {
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2271	if (addr_type == irk->addr_type &&
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2272	bacmp(bdaddr, &irk->bdaddr) == 0) {
				2273	rcu_read_unlock();
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2274	return irk;
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2275	}
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2276	}
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2277	rcu_read_unlock();
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2278
				2279	return NULL;
				2280	}
				2281
Johan Hedberg	567fa2a	2014-06-24 13:15:48 +0300	[diff] [blame]	2282	struct link_key hci_add_link_key(struct hci_dev hdev, struct hci_conn *conn,
Johan Hedberg	7652ff6	2014-06-24 13:15:49 +0300	[diff] [blame]	2283	bdaddr_t bdaddr, u8 val, u8 type,
				2284	u8 pin_len, bool *persistent)
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2285	{
				2286	struct link_key key, old_key;
Vishal Agarwal	745c0ce	2012-04-13 17:43:22 +0530	[diff] [blame]	2287	u8 old_key_type;
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2288
				2289	old_key = hci_find_link_key(hdev, bdaddr);
				2290	if (old_key) {
				2291	old_key_type = old_key->type;
				2292	key = old_key;
				2293	} else {
Johan Hedberg	12adcf3	2011-04-28 11:29:00 -0700	[diff] [blame]	2294	old_key_type = conn ? conn->key_type : 0xff;
Johan Hedberg	0a14ab4	2014-02-19 14:57:43 +0200	[diff] [blame]	2295	key = kzalloc(sizeof(*key), GFP_KERNEL);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2296	if (!key)
Johan Hedberg	567fa2a	2014-06-24 13:15:48 +0300	[diff] [blame]	2297	return NULL;
Johan Hedberg	0378b59	2014-11-19 15:22:22 +0200	[diff] [blame]	2298	list_add_rcu(&key->list, &hdev->link_keys);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2299	}
				2300
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	2301	BT_DBG("%s key for %pMR type %u", hdev->name, bdaddr, type);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2302
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2303	/* Some buggy controller combinations generate a changed
				2304	* combination key for legacy pairing even when there's no
				2305	* previous key */
				2306	if (type == HCI_LK_CHANGED_COMBINATION &&
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	2307	(!conn \|\| conn->remote_auth == 0xff) && old_key_type == 0xff) {
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2308	type = HCI_LK_COMBINATION;
Johan Hedberg	655fe6e	2011-04-28 11:29:01 -0700	[diff] [blame]	2309	if (conn)
				2310	conn->key_type = type;
				2311	}
Johan Hedberg	d25e28a	2011-04-28 11:28:59 -0700	[diff] [blame]	2312
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2313	bacpy(&key->bdaddr, bdaddr);
Andrei Emeltchenko	9b3b446	2012-05-23 11:31:20 +0300	[diff] [blame]	2314	memcpy(key->val, val, HCI_LINK_KEY_SIZE);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2315	key->pin_len = pin_len;
				2316
Waldemar Rymarkiewicz	b6020ba	2011-04-28 12:07:53 +0200	[diff] [blame]	2317	if (type == HCI_LK_CHANGED_COMBINATION)
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2318	key->type = old_key_type;
Johan Hedberg	4748fed	2011-04-28 11:29:02 -0700	[diff] [blame]	2319	else
				2320	key->type = type;
				2321
Johan Hedberg	7652ff6	2014-06-24 13:15:49 +0300	[diff] [blame]	2322	if (persistent)
				2323	*persistent = hci_persistent_key(hdev, conn, type,
				2324	old_key_type);
Johan Hedberg	4df378a	2011-04-28 11:29:03 -0700	[diff] [blame]	2325
Johan Hedberg	567fa2a	2014-06-24 13:15:48 +0300	[diff] [blame]	2326	return key;
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2327	}
				2328
Johan Hedberg	ca9142b	2014-02-19 14:57:44 +0200	[diff] [blame]	2329	struct smp_ltk hci_add_ltk(struct hci_dev hdev, bdaddr_t *bdaddr,
Johan Hedberg	35d7027	2014-02-19 14:57:47 +0200	[diff] [blame]	2330	u8 addr_type, u8 type, u8 authenticated,
Marcel Holtmann	fe39c7b	2014-02-27 16:00:28 -0800	[diff] [blame]	2331	u8 tk[16], u8 enc_size, __le16 ediv, __le64 rand)
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2332	{
Vinicius Costa Gomes	c9839a1	2012-02-02 21:08:01 -0300	[diff] [blame]	2333	struct smp_ltk key, old_key;
Johan Hedberg	e804d25	2014-07-16 11:42:28 +0300	[diff] [blame]	2334	u8 role = ltk_role(type);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2335
Johan Hedberg	f3a73d9	2014-05-29 15:02:59 +0300	[diff] [blame]	2336	old_key = hci_find_ltk(hdev, bdaddr, addr_type, role);
Vinicius Costa Gomes	c9839a1	2012-02-02 21:08:01 -0300	[diff] [blame]	2337	if (old_key)
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2338	key = old_key;
Vinicius Costa Gomes	c9839a1	2012-02-02 21:08:01 -0300	[diff] [blame]	2339	else {
Johan Hedberg	0a14ab4	2014-02-19 14:57:43 +0200	[diff] [blame]	2340	key = kzalloc(sizeof(*key), GFP_KERNEL);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2341	if (!key)
Johan Hedberg	ca9142b	2014-02-19 14:57:44 +0200	[diff] [blame]	2342	return NULL;
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2343	list_add_rcu(&key->list, &hdev->long_term_keys);
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2344	}
				2345
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2346	bacpy(&key->bdaddr, bdaddr);
Vinicius Costa Gomes	c9839a1	2012-02-02 21:08:01 -0300	[diff] [blame]	2347	key->bdaddr_type = addr_type;
				2348	memcpy(key->val, tk, sizeof(key->val));
				2349	key->authenticated = authenticated;
				2350	key->ediv = ediv;
Marcel Holtmann	fe39c7b	2014-02-27 16:00:28 -0800	[diff] [blame]	2351	key->rand = rand;
Vinicius Costa Gomes	c9839a1	2012-02-02 21:08:01 -0300	[diff] [blame]	2352	key->enc_size = enc_size;
				2353	key->type = type;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2354
Johan Hedberg	ca9142b	2014-02-19 14:57:44 +0200	[diff] [blame]	2355	return key;
Vinicius Costa Gomes	75d262c	2011-07-07 18:59:36 -0300	[diff] [blame]	2356	}
				2357
Johan Hedberg	ca9142b	2014-02-19 14:57:44 +0200	[diff] [blame]	2358	struct smp_irk hci_add_irk(struct hci_dev hdev, bdaddr_t *bdaddr,
				2359	u8 addr_type, u8 val[16], bdaddr_t *rpa)
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2360	{
				2361	struct smp_irk *irk;
				2362
				2363	irk = hci_find_irk_by_addr(hdev, bdaddr, addr_type);
				2364	if (!irk) {
				2365	irk = kzalloc(sizeof(*irk), GFP_KERNEL);
				2366	if (!irk)
Johan Hedberg	ca9142b	2014-02-19 14:57:44 +0200	[diff] [blame]	2367	return NULL;
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2368
				2369	bacpy(&irk->bdaddr, bdaddr);
				2370	irk->addr_type = addr_type;
				2371
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2372	list_add_rcu(&irk->list, &hdev->identity_resolving_keys);
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2373	}
				2374
				2375	memcpy(irk->val, val, 16);
				2376	bacpy(&irk->rpa, rpa);
				2377
Johan Hedberg	ca9142b	2014-02-19 14:57:44 +0200	[diff] [blame]	2378	return irk;
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	2379	}
				2380
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2381	int hci_remove_link_key(struct hci_dev hdev, bdaddr_t bdaddr)
				2382	{
				2383	struct link_key *key;
				2384
				2385	key = hci_find_link_key(hdev, bdaddr);
				2386	if (!key)
				2387	return -ENOENT;
				2388
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	2389	BT_DBG("%s removing %pMR", hdev->name, bdaddr);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2390
Johan Hedberg	0378b59	2014-11-19 15:22:22 +0200	[diff] [blame]	2391	list_del_rcu(&key->list);
				2392	kfree_rcu(key, rcu);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	2393
				2394	return 0;
				2395	}
				2396
Johan Hedberg	e0b2b27	2014-02-18 17:14:31 +0200	[diff] [blame]	2397	int hci_remove_ltk(struct hci_dev hdev, bdaddr_t bdaddr, u8 bdaddr_type)
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2398	{
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2399	struct smp_ltk *k;
Johan Hedberg	c51ffa0	2014-02-18 17:14:33 +0200	[diff] [blame]	2400	int removed = 0;
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2401
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2402	list_for_each_entry_rcu(k, &hdev->long_term_keys, list) {
Johan Hedberg	e0b2b27	2014-02-18 17:14:31 +0200	[diff] [blame]	2403	if (bacmp(bdaddr, &k->bdaddr) \|\| k->bdaddr_type != bdaddr_type)
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2404	continue;
				2405
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	2406	BT_DBG("%s removing %pMR", hdev->name, bdaddr);
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2407
Johan Hedberg	970d0f1	2014-11-13 14:37:47 +0200	[diff] [blame]	2408	list_del_rcu(&k->list);
				2409	kfree_rcu(k, rcu);
Johan Hedberg	c51ffa0	2014-02-18 17:14:33 +0200	[diff] [blame]	2410	removed++;
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2411	}
				2412
Johan Hedberg	c51ffa0	2014-02-18 17:14:33 +0200	[diff] [blame]	2413	return removed ? 0 : -ENOENT;
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	2414	}
				2415
Johan Hedberg	a7ec733	2014-02-18 17:14:35 +0200	[diff] [blame]	2416	void hci_remove_irk(struct hci_dev hdev, bdaddr_t bdaddr, u8 addr_type)
				2417	{
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2418	struct smp_irk *k;
Johan Hedberg	a7ec733	2014-02-18 17:14:35 +0200	[diff] [blame]	2419
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2420	list_for_each_entry_rcu(k, &hdev->identity_resolving_keys, list) {
Johan Hedberg	a7ec733	2014-02-18 17:14:35 +0200	[diff] [blame]	2421	if (bacmp(bdaddr, &k->bdaddr) \|\| k->addr_type != addr_type)
				2422	continue;
				2423
				2424	BT_DBG("%s removing %pMR", hdev->name, bdaddr);
				2425
Johan Hedberg	adae20c	2014-11-13 14:37:48 +0200	[diff] [blame]	2426	list_del_rcu(&k->list);
				2427	kfree_rcu(k, rcu);
Johan Hedberg	a7ec733	2014-02-18 17:14:35 +0200	[diff] [blame]	2428	}
				2429	}
				2430
Johan Hedberg	55e76b3	2015-03-10 22:34:40 +0200	[diff] [blame]	2431	bool hci_bdaddr_is_paired(struct hci_dev hdev, bdaddr_t bdaddr, u8 type)
				2432	{
				2433	struct smp_ltk *k;
Johan Hedberg	4ba9faf	2015-03-11 10:52:08 +0200	[diff] [blame]	2434	struct smp_irk *irk;
Johan Hedberg	55e76b3	2015-03-10 22:34:40 +0200	[diff] [blame]	2435	u8 addr_type;
				2436
				2437	if (type == BDADDR_BREDR) {
				2438	if (hci_find_link_key(hdev, bdaddr))
				2439	return true;
				2440	return false;
				2441	}
				2442
				2443	/* Convert to HCI addr type which struct smp_ltk uses */
				2444	if (type == BDADDR_LE_PUBLIC)
				2445	addr_type = ADDR_LE_DEV_PUBLIC;
				2446	else
				2447	addr_type = ADDR_LE_DEV_RANDOM;
				2448
Johan Hedberg	4ba9faf	2015-03-11 10:52:08 +0200	[diff] [blame]	2449	irk = hci_get_irk(hdev, bdaddr, addr_type);
				2450	if (irk) {
				2451	bdaddr = &irk->bdaddr;
				2452	addr_type = irk->addr_type;
				2453	}
				2454
Johan Hedberg	55e76b3	2015-03-10 22:34:40 +0200	[diff] [blame]	2455	rcu_read_lock();
				2456	list_for_each_entry_rcu(k, &hdev->long_term_keys, list) {
Johan Hedberg	87c8b28	2015-03-11 08:55:51 +0200	[diff] [blame]	2457	if (k->bdaddr_type == addr_type && !bacmp(bdaddr, &k->bdaddr)) {
				2458	rcu_read_unlock();
Johan Hedberg	55e76b3	2015-03-10 22:34:40 +0200	[diff] [blame]	2459	return true;
Johan Hedberg	87c8b28	2015-03-11 08:55:51 +0200	[diff] [blame]	2460	}
Johan Hedberg	55e76b3	2015-03-10 22:34:40 +0200	[diff] [blame]	2461	}
				2462	rcu_read_unlock();
				2463
				2464	return false;
				2465	}
				2466
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	2467	/* HCI command timer function */
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	2468	static void hci_cmd_timeout(struct work_struct *work)
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	2469	{
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	2470	struct hci_dev *hdev = container_of(work, struct hci_dev,
				2471	cmd_timer.work);
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	2472
Andrei Emeltchenko	bda4f23	2012-06-11 11:13:08 +0300	[diff] [blame]	2473	if (hdev->sent_cmd) {
				2474	struct hci_command_hdr sent = (void ) hdev->sent_cmd->data;
				2475	u16 opcode = __le16_to_cpu(sent->opcode);
				2476
				2477	BT_ERR("%s command 0x%4.4x tx timeout", hdev->name, opcode);
				2478	} else {
				2479	BT_ERR("%s command tx timeout", hdev->name);
				2480	}
				2481
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	2482	atomic_set(&hdev->cmd_cnt, 1);
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	2483	queue_work(hdev->workqueue, &hdev->cmd_work);
Ville Tervo	6bd3232	2011-02-16 16:32:41 +0200	[diff] [blame]	2484	}
				2485
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2486	struct oob_data hci_find_remote_oob_data(struct hci_dev hdev,
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2487	bdaddr_t *bdaddr, u8 bdaddr_type)
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2488	{
				2489	struct oob_data *data;
				2490
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2491	list_for_each_entry(data, &hdev->remote_oob_data, list) {
				2492	if (bacmp(bdaddr, &data->bdaddr) != 0)
				2493	continue;
				2494	if (data->bdaddr_type != bdaddr_type)
				2495	continue;
				2496	return data;
				2497	}
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2498
				2499	return NULL;
				2500	}
				2501
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2502	int hci_remove_remote_oob_data(struct hci_dev hdev, bdaddr_t bdaddr,
				2503	u8 bdaddr_type)
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2504	{
				2505	struct oob_data *data;
				2506
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2507	data = hci_find_remote_oob_data(hdev, bdaddr, bdaddr_type);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2508	if (!data)
				2509	return -ENOENT;
				2510
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2511	BT_DBG("%s removing %pMR (%u)", hdev->name, bdaddr, bdaddr_type);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2512
				2513	list_del(&data->list);
				2514	kfree(data);
				2515
				2516	return 0;
				2517	}
				2518
Johan Hedberg	35f7498	2014-02-18 17:14:32 +0200	[diff] [blame]	2519	void hci_remote_oob_data_clear(struct hci_dev *hdev)
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2520	{
				2521	struct oob_data data, n;
				2522
				2523	list_for_each_entry_safe(data, n, &hdev->remote_oob_data, list) {
				2524	list_del(&data->list);
				2525	kfree(data);
				2526	}
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2527	}
				2528
Marcel Holtmann	0798872	2014-01-10 02:07:29 -0800	[diff] [blame]	2529	int hci_add_remote_oob_data(struct hci_dev hdev, bdaddr_t bdaddr,
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2530	u8 bdaddr_type, u8 hash192, u8 rand192,
Johan Hedberg	81328d5	2014-10-26 20:33:47 +0100	[diff] [blame]	2531	u8 hash256, u8 rand256)
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2532	{
				2533	struct oob_data *data;
				2534
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2535	data = hci_find_remote_oob_data(hdev, bdaddr, bdaddr_type);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2536	if (!data) {
Johan Hedberg	0a14ab4	2014-02-19 14:57:43 +0200	[diff] [blame]	2537	data = kmalloc(sizeof(*data), GFP_KERNEL);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2538	if (!data)
				2539	return -ENOMEM;
				2540
				2541	bacpy(&data->bdaddr, bdaddr);
Johan Hedberg	6928a92	2014-10-26 20:46:09 +0100	[diff] [blame]	2542	data->bdaddr_type = bdaddr_type;
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2543	list_add(&data->list, &hdev->remote_oob_data);
				2544	}
				2545
Johan Hedberg	81328d5	2014-10-26 20:33:47 +0100	[diff] [blame]	2546	if (hash192 && rand192) {
				2547	memcpy(data->hash192, hash192, sizeof(data->hash192));
				2548	memcpy(data->rand192, rand192, sizeof(data->rand192));
Marcel Holtmann	f7697b1	2015-01-30 23:20:55 -0800	[diff] [blame]	2549	if (hash256 && rand256)
				2550	data->present = 0x03;
Johan Hedberg	81328d5	2014-10-26 20:33:47 +0100	[diff] [blame]	2551	} else {
				2552	memset(data->hash192, 0, sizeof(data->hash192));
				2553	memset(data->rand192, 0, sizeof(data->rand192));
Marcel Holtmann	f7697b1	2015-01-30 23:20:55 -0800	[diff] [blame]	2554	if (hash256 && rand256)
				2555	data->present = 0x02;
				2556	else
				2557	data->present = 0x00;
Marcel Holtmann	0798872	2014-01-10 02:07:29 -0800	[diff] [blame]	2558	}
				2559
Johan Hedberg	81328d5	2014-10-26 20:33:47 +0100	[diff] [blame]	2560	if (hash256 && rand256) {
				2561	memcpy(data->hash256, hash256, sizeof(data->hash256));
				2562	memcpy(data->rand256, rand256, sizeof(data->rand256));
				2563	} else {
				2564	memset(data->hash256, 0, sizeof(data->hash256));
				2565	memset(data->rand256, 0, sizeof(data->rand256));
Marcel Holtmann	f7697b1	2015-01-30 23:20:55 -0800	[diff] [blame]	2566	if (hash192 && rand192)
				2567	data->present = 0x01;
Johan Hedberg	81328d5	2014-10-26 20:33:47 +0100	[diff] [blame]	2568	}
Marcel Holtmann	0798872	2014-01-10 02:07:29 -0800	[diff] [blame]	2569
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	2570	BT_DBG("%s for %pMR", hdev->name, bdaddr);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	2571
				2572	return 0;
				2573	}
				2574
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	2575	/* This function requires the caller holds hdev->lock */
				2576	struct adv_info hci_find_adv_instance(struct hci_dev hdev, u8 instance)
				2577	{
				2578	struct adv_info *adv_instance;
				2579
				2580	list_for_each_entry(adv_instance, &hdev->adv_instances, list) {
				2581	if (adv_instance->instance == instance)
				2582	return adv_instance;
				2583	}
				2584
				2585	return NULL;
				2586	}
				2587
				2588	/* This function requires the caller holds hdev->lock */
				2589	struct adv_info hci_get_next_instance(struct hci_dev hdev, u8 instance) {
				2590	struct adv_info *cur_instance;
				2591
				2592	cur_instance = hci_find_adv_instance(hdev, instance);
				2593	if (!cur_instance)
				2594	return NULL;
				2595
				2596	if (cur_instance == list_last_entry(&hdev->adv_instances,
				2597	struct adv_info, list))
				2598	return list_first_entry(&hdev->adv_instances,
				2599	struct adv_info, list);
				2600	else
				2601	return list_next_entry(cur_instance, list);
				2602	}
				2603
				2604	/* This function requires the caller holds hdev->lock */
				2605	int hci_remove_adv_instance(struct hci_dev *hdev, u8 instance)
				2606	{
				2607	struct adv_info *adv_instance;
				2608
				2609	adv_instance = hci_find_adv_instance(hdev, instance);
				2610	if (!adv_instance)
				2611	return -ENOENT;
				2612
				2613	BT_DBG("%s removing %dMR", hdev->name, instance);
				2614
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	2615	if (hdev->cur_adv_instance == instance && hdev->adv_instance_timeout) {
				2616	cancel_delayed_work(&hdev->adv_instance_expire);
				2617	hdev->adv_instance_timeout = 0;
				2618	}
				2619
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	2620	list_del(&adv_instance->list);
				2621	kfree(adv_instance);
				2622
				2623	hdev->adv_instance_cnt--;
				2624
				2625	return 0;
				2626	}
				2627
				2628	/* This function requires the caller holds hdev->lock */
				2629	void hci_adv_instances_clear(struct hci_dev *hdev)
				2630	{
				2631	struct adv_info adv_instance, n;
				2632
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	2633	if (hdev->adv_instance_timeout) {
				2634	cancel_delayed_work(&hdev->adv_instance_expire);
				2635	hdev->adv_instance_timeout = 0;
				2636	}
				2637
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	2638	list_for_each_entry_safe(adv_instance, n, &hdev->adv_instances, list) {
				2639	list_del(&adv_instance->list);
				2640	kfree(adv_instance);
				2641	}
				2642
				2643	hdev->adv_instance_cnt = 0;
				2644	}
				2645
				2646	/* This function requires the caller holds hdev->lock */
				2647	int hci_add_adv_instance(struct hci_dev *hdev, u8 instance, u32 flags,
				2648	u16 adv_data_len, u8 *adv_data,
				2649	u16 scan_rsp_len, u8 *scan_rsp_data,
				2650	u16 timeout, u16 duration)
				2651	{
				2652	struct adv_info *adv_instance;
				2653
				2654	adv_instance = hci_find_adv_instance(hdev, instance);
				2655	if (adv_instance) {
				2656	memset(adv_instance->adv_data, 0,
				2657	sizeof(adv_instance->adv_data));
				2658	memset(adv_instance->scan_rsp_data, 0,
				2659	sizeof(adv_instance->scan_rsp_data));
				2660	} else {
				2661	if (hdev->adv_instance_cnt >= HCI_MAX_ADV_INSTANCES \|\|
				2662	instance < 1 \|\| instance > HCI_MAX_ADV_INSTANCES)
				2663	return -EOVERFLOW;
				2664
Johan Hedberg	39ecfad	2015-06-18 20:50:08 +0300	[diff] [blame]	2665	adv_instance = kzalloc(sizeof(*adv_instance), GFP_KERNEL);
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	2666	if (!adv_instance)
				2667	return -ENOMEM;
				2668
Florian Grandel	fffd38b	2015-06-18 03:16:47 +0200	[diff] [blame]	2669	adv_instance->pending = true;
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	2670	adv_instance->instance = instance;
				2671	list_add(&adv_instance->list, &hdev->adv_instances);
				2672	hdev->adv_instance_cnt++;
				2673	}
				2674
				2675	adv_instance->flags = flags;
				2676	adv_instance->adv_data_len = adv_data_len;
				2677	adv_instance->scan_rsp_len = scan_rsp_len;
				2678
				2679	if (adv_data_len)
				2680	memcpy(adv_instance->adv_data, adv_data, adv_data_len);
				2681
				2682	if (scan_rsp_len)
				2683	memcpy(adv_instance->scan_rsp_data,
				2684	scan_rsp_data, scan_rsp_len);
				2685
				2686	adv_instance->timeout = timeout;
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	2687	adv_instance->remaining_time = timeout;
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	2688
				2689	if (duration == 0)
				2690	adv_instance->duration = HCI_DEFAULT_ADV_DURATION;
				2691	else
				2692	adv_instance->duration = duration;
				2693
				2694	BT_DBG("%s for %dMR", hdev->name, instance);
				2695
				2696	return 0;
				2697	}
				2698
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2699	struct bdaddr_list hci_bdaddr_list_lookup(struct list_head bdaddr_list,
Marcel Holtmann	b9ee0a7	2013-10-17 17:24:13 -0700	[diff] [blame]	2700	bdaddr_t *bdaddr, u8 type)
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2701	{
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	2702	struct bdaddr_list *b;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2703
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2704	list_for_each_entry(b, bdaddr_list, list) {
Marcel Holtmann	b9ee0a7	2013-10-17 17:24:13 -0700	[diff] [blame]	2705	if (!bacmp(&b->bdaddr, bdaddr) && b->bdaddr_type == type)
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2706	return b;
Marcel Holtmann	b9ee0a7	2013-10-17 17:24:13 -0700	[diff] [blame]	2707	}
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2708
				2709	return NULL;
				2710	}
				2711
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2712	void hci_bdaddr_list_clear(struct list_head *bdaddr_list)
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2713	{
				2714	struct list_head p, n;
				2715
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2716	list_for_each_safe(p, n, bdaddr_list) {
Marcel Holtmann	b9ee0a7	2013-10-17 17:24:13 -0700	[diff] [blame]	2717	struct bdaddr_list *b = list_entry(p, struct bdaddr_list, list);
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2718
				2719	list_del(p);
				2720	kfree(b);
				2721	}
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2722	}
				2723
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2724	int hci_bdaddr_list_add(struct list_head list, bdaddr_t bdaddr, u8 type)
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2725	{
				2726	struct bdaddr_list *entry;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2727
Marcel Holtmann	b9ee0a7	2013-10-17 17:24:13 -0700	[diff] [blame]	2728	if (!bacmp(bdaddr, BDADDR_ANY))
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2729	return -EBADF;
				2730
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2731	if (hci_bdaddr_list_lookup(list, bdaddr, type))
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	2732	return -EEXIST;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2733
Johan Hedberg	27f70f3	2014-07-21 10:50:06 +0300	[diff] [blame]	2734	entry = kzalloc(sizeof(*entry), GFP_KERNEL);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	2735	if (!entry)
				2736	return -ENOMEM;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2737
				2738	bacpy(&entry->bdaddr, bdaddr);
Marcel Holtmann	b9ee0a7	2013-10-17 17:24:13 -0700	[diff] [blame]	2739	entry->bdaddr_type = type;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	2740
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2741	list_add(&entry->list, list);
Marcel Holtmann	d2ab0ac	2014-02-27 20:37:30 -0800	[diff] [blame]	2742
				2743	return 0;
				2744	}
				2745
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2746	int hci_bdaddr_list_del(struct list_head list, bdaddr_t bdaddr, u8 type)
Marcel Holtmann	d2ab0ac	2014-02-27 20:37:30 -0800	[diff] [blame]	2747	{
				2748	struct bdaddr_list *entry;
				2749
Johan Hedberg	35f7498	2014-02-18 17:14:32 +0200	[diff] [blame]	2750	if (!bacmp(bdaddr, BDADDR_ANY)) {
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2751	hci_bdaddr_list_clear(list);
Johan Hedberg	35f7498	2014-02-18 17:14:32 +0200	[diff] [blame]	2752	return 0;
				2753	}
Marcel Holtmann	d2ab0ac	2014-02-27 20:37:30 -0800	[diff] [blame]	2754
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	2755	entry = hci_bdaddr_list_lookup(list, bdaddr, type);
Marcel Holtmann	d2ab0ac	2014-02-27 20:37:30 -0800	[diff] [blame]	2756	if (!entry)
				2757	return -ENOENT;
				2758
				2759	list_del(&entry->list);
				2760	kfree(entry);
				2761
				2762	return 0;
				2763	}
				2764
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2765	/* This function requires the caller holds hdev->lock */
				2766	struct hci_conn_params hci_conn_params_lookup(struct hci_dev hdev,
				2767	bdaddr_t *addr, u8 addr_type)
				2768	{
				2769	struct hci_conn_params *params;
				2770
				2771	list_for_each_entry(params, &hdev->le_conn_params, list) {
				2772	if (bacmp(&params->addr, addr) == 0 &&
				2773	params->addr_type == addr_type) {
				2774	return params;
				2775	}
				2776	}
				2777
				2778	return NULL;
				2779	}
				2780
				2781	/* This function requires the caller holds hdev->lock */
Johan Hedberg	501f882	2014-07-04 12:37:26 +0300	[diff] [blame]	2782	struct hci_conn_params hci_pend_le_action_lookup(struct list_head list,
				2783	bdaddr_t *addr, u8 addr_type)
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2784	{
Johan Hedberg	912b42e	2014-07-03 19:33:49 +0300	[diff] [blame]	2785	struct hci_conn_params *param;
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2786
Johan Hedberg	501f882	2014-07-04 12:37:26 +0300	[diff] [blame]	2787	list_for_each_entry(param, list, action) {
Johan Hedberg	912b42e	2014-07-03 19:33:49 +0300	[diff] [blame]	2788	if (bacmp(&param->addr, addr) == 0 &&
				2789	param->addr_type == addr_type)
				2790	return param;
Marcel Holtmann	4b10966	2014-06-29 13:41:49 +0200	[diff] [blame]	2791	}
				2792
				2793	return NULL;
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2794	}
				2795
				2796	/* This function requires the caller holds hdev->lock */
Marcel Holtmann	51d167c	2014-07-01 12:11:04 +0200	[diff] [blame]	2797	struct hci_conn_params hci_conn_params_add(struct hci_dev hdev,
				2798	bdaddr_t *addr, u8 addr_type)
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2799	{
				2800	struct hci_conn_params *params;
				2801
				2802	params = hci_conn_params_lookup(hdev, addr, addr_type);
Andre Guedes	cef952c	2014-02-26 20:21:49 -0300	[diff] [blame]	2803	if (params)
Marcel Holtmann	51d167c	2014-07-01 12:11:04 +0200	[diff] [blame]	2804	return params;
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2805
				2806	params = kzalloc(sizeof(*params), GFP_KERNEL);
				2807	if (!params) {
				2808	BT_ERR("Out of memory");
Marcel Holtmann	51d167c	2014-07-01 12:11:04 +0200	[diff] [blame]	2809	return NULL;
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2810	}
				2811
				2812	bacpy(&params->addr, addr);
				2813	params->addr_type = addr_type;
Andre Guedes	cef952c	2014-02-26 20:21:49 -0300	[diff] [blame]	2814
				2815	list_add(&params->list, &hdev->le_conn_params);
Johan Hedberg	93450c7	2014-07-04 12:37:17 +0300	[diff] [blame]	2816	INIT_LIST_HEAD(&params->action);
Andre Guedes	cef952c	2014-02-26 20:21:49 -0300	[diff] [blame]	2817
Marcel Holtmann	bf5b3c8	2014-06-30 12:34:39 +0200	[diff] [blame]	2818	params->conn_min_interval = hdev->le_conn_min_interval;
				2819	params->conn_max_interval = hdev->le_conn_max_interval;
				2820	params->conn_latency = hdev->le_conn_latency;
				2821	params->supervision_timeout = hdev->le_supv_timeout;
				2822	params->auto_connect = HCI_AUTO_CONN_DISABLED;
				2823
				2824	BT_DBG("addr %pMR (type %u)", addr, addr_type);
				2825
Marcel Holtmann	51d167c	2014-07-01 12:11:04 +0200	[diff] [blame]	2826	return params;
Marcel Holtmann	bf5b3c8	2014-06-30 12:34:39 +0200	[diff] [blame]	2827	}
				2828
Johan Hedberg	f6c6324	2014-08-15 21:06:59 +0300	[diff] [blame]	2829	static void hci_conn_params_free(struct hci_conn_params *params)
				2830	{
				2831	if (params->conn) {
				2832	hci_conn_drop(params->conn);
				2833	hci_conn_put(params->conn);
				2834	}
				2835
				2836	list_del(&params->action);
				2837	list_del(&params->list);
				2838	kfree(params);
				2839	}
				2840
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2841	/* This function requires the caller holds hdev->lock */
				2842	void hci_conn_params_del(struct hci_dev hdev, bdaddr_t addr, u8 addr_type)
				2843	{
				2844	struct hci_conn_params *params;
				2845
				2846	params = hci_conn_params_lookup(hdev, addr, addr_type);
				2847	if (!params)
				2848	return;
				2849
Johan Hedberg	f6c6324	2014-08-15 21:06:59 +0300	[diff] [blame]	2850	hci_conn_params_free(params);
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2851
Johan Hedberg	95305ba	2014-07-04 12:37:21 +0300	[diff] [blame]	2852	hci_update_background_scan(hdev);
				2853
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2854	BT_DBG("addr %pMR (type %u)", addr, addr_type);
				2855	}
				2856
				2857	/* This function requires the caller holds hdev->lock */
Johan Hedberg	55af49a	2014-07-02 17:37:26 +0300	[diff] [blame]	2858	void hci_conn_params_clear_disabled(struct hci_dev *hdev)
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2859	{
				2860	struct hci_conn_params params, tmp;
				2861
				2862	list_for_each_entry_safe(params, tmp, &hdev->le_conn_params, list) {
Johan Hedberg	55af49a	2014-07-02 17:37:26 +0300	[diff] [blame]	2863	if (params->auto_connect != HCI_AUTO_CONN_DISABLED)
				2864	continue;
Jakub Pawlowski	f75113a	2015-08-07 20:22:53 +0200	[diff] [blame]	2865
				2866	/* If trying to estabilish one time connection to disabled
				2867	* device, leave the params, but mark them as just once.
				2868	*/
				2869	if (params->explicit_connect) {
				2870	params->auto_connect = HCI_AUTO_CONN_EXPLICIT;
				2871	continue;
				2872	}
				2873
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2874	list_del(&params->list);
				2875	kfree(params);
				2876	}
				2877
Johan Hedberg	55af49a	2014-07-02 17:37:26 +0300	[diff] [blame]	2878	BT_DBG("All LE disabled connection parameters were removed");
				2879	}
				2880
				2881	/* This function requires the caller holds hdev->lock */
Johan Hedberg	030e7f8	2015-11-10 09:44:53 +0200	[diff] [blame]	2882	static void hci_conn_params_clear_all(struct hci_dev *hdev)
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2883	{
				2884	struct hci_conn_params params, tmp;
				2885
Johan Hedberg	f6c6324	2014-08-15 21:06:59 +0300	[diff] [blame]	2886	list_for_each_entry_safe(params, tmp, &hdev->le_conn_params, list)
				2887	hci_conn_params_free(params);
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	2888
				2889	BT_DBG("All LE connection parameters were removed");
				2890	}
				2891
Marcel Holtmann	1904a85	2015-01-11 13:50:44 -0800	[diff] [blame]	2892	static void inquiry_complete(struct hci_dev *hdev, u8 status, u16 opcode)
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2893	{
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2894	if (status) {
				2895	BT_ERR("Failed to start inquiry: status %d", status);
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2896
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2897	hci_dev_lock(hdev);
				2898	hci_discovery_set_state(hdev, DISCOVERY_STOPPED);
				2899	hci_dev_unlock(hdev);
				2900	return;
				2901	}
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2902	}
				2903
Marcel Holtmann	1904a85	2015-01-11 13:50:44 -0800	[diff] [blame]	2904	static void le_scan_disable_work_complete(struct hci_dev *hdev, u8 status,
				2905	u16 opcode)
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2906	{
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2907	/* General inquiry access code (GIAC) */
				2908	u8 lap[3] = { 0x33, 0x8b, 0x9e };
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2909	struct hci_cp_inquiry cp;
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2910	int err;
				2911
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2912	if (status) {
				2913	BT_ERR("Failed to disable LE scanning: status %d", status);
				2914	return;
Andre Guedes	7dbfac1	2012-03-15 16:52:07 -0300	[diff] [blame]	2915	}
				2916
Jakub Pawlowski	2d28cfe	2015-02-01 23:07:54 -0800	[diff] [blame]	2917	hdev->discovery.scan_start = 0;
				2918
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2919	switch (hdev->discovery.type) {
				2920	case DISCOV_TYPE_LE:
				2921	hci_dev_lock(hdev);
				2922	hci_discovery_set_state(hdev, DISCOVERY_STOPPED);
				2923	hci_dev_unlock(hdev);
				2924	break;
				2925
				2926	case DISCOV_TYPE_INTERLEAVED:
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2927	hci_dev_lock(hdev);
				2928
Jakub Pawlowski	07d2334	2015-03-17 09:04:14 -0700	[diff] [blame]	2929	if (test_bit(HCI_QUIRK_SIMULTANEOUS_DISCOVERY,
				2930	&hdev->quirks)) {
				2931	/* If we were running LE only scan, change discovery
				2932	* state. If we were running both LE and BR/EDR inquiry
				2933	* simultaneously, and BR/EDR inquiry is already
				2934	* finished, stop discovery, otherwise BR/EDR inquiry
Wesley Kuo	177d050	2015-05-13 10:33:15 +0800	[diff] [blame]	2935	* will stop discovery when finished. If we will resolve
				2936	* remote device name, do not change discovery state.
Jakub Pawlowski	07d2334	2015-03-17 09:04:14 -0700	[diff] [blame]	2937	*/
Wesley Kuo	177d050	2015-05-13 10:33:15 +0800	[diff] [blame]	2938	if (!test_bit(HCI_INQUIRY, &hdev->flags) &&
				2939	hdev->discovery.state != DISCOVERY_RESOLVING)
Jakub Pawlowski	07d2334	2015-03-17 09:04:14 -0700	[diff] [blame]	2940	hci_discovery_set_state(hdev,
				2941	DISCOVERY_STOPPED);
				2942	} else {
Johan Hedberg	baf880a	2015-03-21 08:02:23 +0200	[diff] [blame]	2943	struct hci_request req;
				2944
Jakub Pawlowski	07d2334	2015-03-17 09:04:14 -0700	[diff] [blame]	2945	hci_inquiry_cache_flush(hdev);
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2946
Johan Hedberg	baf880a	2015-03-21 08:02:23 +0200	[diff] [blame]	2947	hci_req_init(&req, hdev);
				2948
				2949	memset(&cp, 0, sizeof(cp));
				2950	memcpy(&cp.lap, lap, sizeof(cp.lap));
				2951	cp.length = DISCOV_INTERLEAVED_INQUIRY_LEN;
				2952	hci_req_add(&req, HCI_OP_INQUIRY, sizeof(cp), &cp);
				2953
Jakub Pawlowski	07d2334	2015-03-17 09:04:14 -0700	[diff] [blame]	2954	err = hci_req_run(&req, inquiry_complete);
				2955	if (err) {
				2956	BT_ERR("Inquiry request failed: err %d", err);
				2957	hci_discovery_set_state(hdev,
				2958	DISCOVERY_STOPPED);
				2959	}
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2960	}
				2961
				2962	hci_dev_unlock(hdev);
				2963	break;
				2964	}
Andre Guedes	7dbfac1	2012-03-15 16:52:07 -0300	[diff] [blame]	2965	}
				2966
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2967	static void le_scan_disable_work(struct work_struct *work)
				2968	{
				2969	struct hci_dev *hdev = container_of(work, struct hci_dev,
Gustavo F. Padovan	0412468	2012-03-08 01:25:00 -0300	[diff] [blame]	2970	le_scan_disable.work);
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2971	struct hci_request req;
				2972	int err;
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2973
				2974	BT_DBG("%s", hdev->name);
				2975
Jakub Pawlowski	2d28cfe	2015-02-01 23:07:54 -0800	[diff] [blame]	2976	cancel_delayed_work_sync(&hdev->le_scan_restart);
				2977
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2978	hci_req_init(&req, hdev);
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2979
Andre Guedes	b1efcc2	2014-02-26 20:21:40 -0300	[diff] [blame]	2980	hci_req_add_le_scan_disable(&req);
Andre Guedes	7ba8b4b	2012-02-03 17:47:59 -0300	[diff] [blame]	2981
Andre Guedes	4c87eaa	2013-04-30 15:29:32 -0300	[diff] [blame]	2982	err = hci_req_run(&req, le_scan_disable_work_complete);
				2983	if (err)
				2984	BT_ERR("Disable LE scanning request failed: err %d", err);
Andre Guedes	28b75a8	2012-02-03 17:48:00 -0300	[diff] [blame]	2985	}
				2986
Jakub Pawlowski	2d28cfe	2015-02-01 23:07:54 -0800	[diff] [blame]	2987	static void le_scan_restart_work_complete(struct hci_dev *hdev, u8 status,
				2988	u16 opcode)
				2989	{
				2990	unsigned long timeout, duration, scan_start, now;
				2991
				2992	BT_DBG("%s", hdev->name);
				2993
				2994	if (status) {
				2995	BT_ERR("Failed to restart LE scan: status %d", status);
				2996	return;
				2997	}
				2998
				2999	if (!test_bit(HCI_QUIRK_STRICT_DUPLICATE_FILTER, &hdev->quirks) \|\|
				3000	!hdev->discovery.scan_start)
				3001	return;
				3002
				3003	/* When the scan was started, hdev->le_scan_disable has been queued
				3004	* after duration from scan_start. During scan restart this job
				3005	* has been canceled, and we need to queue it again after proper
				3006	* timeout, to make sure that scan does not run indefinitely.
				3007	*/
				3008	duration = hdev->discovery.scan_duration;
				3009	scan_start = hdev->discovery.scan_start;
				3010	now = jiffies;
				3011	if (now - scan_start <= duration) {
				3012	int elapsed;
				3013
				3014	if (now >= scan_start)
				3015	elapsed = now - scan_start;
				3016	else
				3017	elapsed = ULONG_MAX - scan_start + now;
				3018
				3019	timeout = duration - elapsed;
				3020	} else {
				3021	timeout = 0;
				3022	}
				3023	queue_delayed_work(hdev->workqueue,
				3024	&hdev->le_scan_disable, timeout);
				3025	}
				3026
				3027	static void le_scan_restart_work(struct work_struct *work)
				3028	{
				3029	struct hci_dev *hdev = container_of(work, struct hci_dev,
				3030	le_scan_restart.work);
				3031	struct hci_request req;
				3032	struct hci_cp_le_set_scan_enable cp;
				3033	int err;
				3034
				3035	BT_DBG("%s", hdev->name);
				3036
				3037	/* If controller is not scanning we are done. */
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	3038	if (!hci_dev_test_flag(hdev, HCI_LE_SCAN))
Jakub Pawlowski	2d28cfe	2015-02-01 23:07:54 -0800	[diff] [blame]	3039	return;
				3040
				3041	hci_req_init(&req, hdev);
				3042
				3043	hci_req_add_le_scan_disable(&req);
				3044
				3045	memset(&cp, 0, sizeof(cp));
				3046	cp.enable = LE_SCAN_ENABLE;
				3047	cp.filter_dup = LE_SCAN_FILTER_DUP_ENABLE;
				3048	hci_req_add(&req, HCI_OP_LE_SET_SCAN_ENABLE, sizeof(cp), &cp);
				3049
				3050	err = hci_req_run(&req, le_scan_restart_work_complete);
				3051	if (err)
				3052	BT_ERR("Restart LE scan request failed: err %d", err);
				3053	}
				3054
Johan Hedberg	a1f4c31	2014-02-27 14:05:41 +0200	[diff] [blame]	3055	/* Copy the Identity Address of the controller.
				3056	*
				3057	* If the controller has a public BD_ADDR, then by default use that one.
				3058	* If this is a LE only controller without a public address, default to
				3059	* the static random address.
				3060	*
				3061	* For debugging purposes it is possible to force controllers with a
				3062	* public address to use the static random address instead.
Marcel Holtmann	50b5b95	2014-12-19 23:05:35 +0100	[diff] [blame]	3063	*
				3064	* In case BR/EDR has been disabled on a dual-mode controller and
				3065	* userspace has configured a static address, then that address
				3066	* becomes the identity address instead of the public BR/EDR address.
Johan Hedberg	a1f4c31	2014-02-27 14:05:41 +0200	[diff] [blame]	3067	*/
				3068	void hci_copy_identity_address(struct hci_dev hdev, bdaddr_t bdaddr,
				3069	u8 *bdaddr_type)
				3070	{
Marcel Holtmann	b7cb93e	2015-03-13 10:20:35 -0700	[diff] [blame]	3071	if (hci_dev_test_flag(hdev, HCI_FORCE_STATIC_ADDR) \|\|
Marcel Holtmann	50b5b95	2014-12-19 23:05:35 +0100	[diff] [blame]	3072	!bacmp(&hdev->bdaddr, BDADDR_ANY) \|\|
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	3073	(!hci_dev_test_flag(hdev, HCI_BREDR_ENABLED) &&
Marcel Holtmann	50b5b95	2014-12-19 23:05:35 +0100	[diff] [blame]	3074	bacmp(&hdev->static_addr, BDADDR_ANY))) {
Johan Hedberg	a1f4c31	2014-02-27 14:05:41 +0200	[diff] [blame]	3075	bacpy(bdaddr, &hdev->static_addr);
				3076	*bdaddr_type = ADDR_LE_DEV_RANDOM;
				3077	} else {
				3078	bacpy(bdaddr, &hdev->bdaddr);
				3079	*bdaddr_type = ADDR_LE_DEV_PUBLIC;
				3080	}
				3081	}
				3082
David Herrmann	9be0dab	2012-04-22 14:39:57 +0200	[diff] [blame]	3083	/* Alloc HCI device */
				3084	struct hci_dev *hci_alloc_dev(void)
				3085	{
				3086	struct hci_dev *hdev;
				3087
Johan Hedberg	27f70f3	2014-07-21 10:50:06 +0300	[diff] [blame]	3088	hdev = kzalloc(sizeof(*hdev), GFP_KERNEL);
David Herrmann	9be0dab	2012-04-22 14:39:57 +0200	[diff] [blame]	3089	if (!hdev)
				3090	return NULL;
				3091
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3092	hdev->pkt_type = (HCI_DM1 \| HCI_DH1 \| HCI_HV1);
				3093	hdev->esco_type = (ESCO_HV1);
				3094	hdev->link_mode = (HCI_LM_ACCEPT);
Marcel Holtmann	b4cb9fb	2013-10-14 13:56:16 -0700	[diff] [blame]	3095	hdev->num_iac = 0x01; /* One IAC support is mandatory */
				3096	hdev->io_capability = 0x03; /* No Input No Output */
Marcel Holtmann	96c2103	2014-07-02 11:30:51 +0200	[diff] [blame]	3097	hdev->manufacturer = 0xffff; /* Default to internal use */
Johan Hedberg	bbaf444	2012-11-08 01:22:59 +0100	[diff] [blame]	3098	hdev->inq_tx_power = HCI_TX_POWER_INVALID;
				3099	hdev->adv_tx_power = HCI_TX_POWER_INVALID;
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	3100	hdev->adv_instance_cnt = 0;
				3101	hdev->cur_adv_instance = 0x00;
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	3102	hdev->adv_instance_timeout = 0;
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3103
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3104	hdev->sniff_max_interval = 800;
				3105	hdev->sniff_min_interval = 80;
				3106
Marcel Holtmann	3f959d4	2014-02-20 11:55:56 -0800	[diff] [blame]	3107	hdev->le_adv_channel_map = 0x07;
Georg Lukas	628531c	2014-07-26 13:59:57 +0200	[diff] [blame]	3108	hdev->le_adv_min_interval = 0x0800;
				3109	hdev->le_adv_max_interval = 0x0800;
Marcel Holtmann	bef6473	2013-10-11 08:23:19 -0700	[diff] [blame]	3110	hdev->le_scan_interval = 0x0060;
				3111	hdev->le_scan_window = 0x0030;
Marcel Holtmann	4e70c7e	2013-10-19 07:09:13 -0700	[diff] [blame]	3112	hdev->le_conn_min_interval = 0x0028;
				3113	hdev->le_conn_max_interval = 0x0038;
Marcel Holtmann	04fb7d9	2014-06-30 12:34:36 +0200	[diff] [blame]	3114	hdev->le_conn_latency = 0x0000;
				3115	hdev->le_supv_timeout = 0x002a;
Marcel Holtmann	a8e1bfa	2014-12-20 16:28:40 +0100	[diff] [blame]	3116	hdev->le_def_tx_len = 0x001b;
				3117	hdev->le_def_tx_time = 0x0148;
				3118	hdev->le_max_tx_len = 0x001b;
				3119	hdev->le_max_tx_time = 0x0148;
				3120	hdev->le_max_rx_len = 0x001b;
				3121	hdev->le_max_rx_time = 0x0148;
Marcel Holtmann	bef6473	2013-10-11 08:23:19 -0700	[diff] [blame]	3122
Johan Hedberg	d6bfd59	2014-02-23 19:42:20 +0200	[diff] [blame]	3123	hdev->rpa_timeout = HCI_DEFAULT_RPA_TIMEOUT;
Lukasz Rymanowski	b9a7a61	2014-03-27 20:55:20 +0100	[diff] [blame]	3124	hdev->discov_interleaved_timeout = DISCOV_INTERLEAVED_TIMEOUT;
Andrzej Kaczmarek	31ad169	2014-05-14 13:43:02 +0200	[diff] [blame]	3125	hdev->conn_info_min_age = DEFAULT_CONN_INFO_MIN_AGE;
				3126	hdev->conn_info_max_age = DEFAULT_CONN_INFO_MAX_AGE;
Johan Hedberg	d6bfd59	2014-02-23 19:42:20 +0200	[diff] [blame]	3127
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3128	mutex_init(&hdev->lock);
				3129	mutex_init(&hdev->req_lock);
				3130
				3131	INIT_LIST_HEAD(&hdev->mgmt_pending);
				3132	INIT_LIST_HEAD(&hdev->blacklist);
Johan Hedberg	6659358	2014-07-09 12:59:14 +0300	[diff] [blame]	3133	INIT_LIST_HEAD(&hdev->whitelist);
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3134	INIT_LIST_HEAD(&hdev->uuids);
				3135	INIT_LIST_HEAD(&hdev->link_keys);
				3136	INIT_LIST_HEAD(&hdev->long_term_keys);
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	3137	INIT_LIST_HEAD(&hdev->identity_resolving_keys);
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3138	INIT_LIST_HEAD(&hdev->remote_oob_data);
Marcel Holtmann	d2ab0ac	2014-02-27 20:37:30 -0800	[diff] [blame]	3139	INIT_LIST_HEAD(&hdev->le_white_list);
Andre Guedes	15819a7	2014-02-03 13:56:18 -0300	[diff] [blame]	3140	INIT_LIST_HEAD(&hdev->le_conn_params);
Andre Guedes	77a77a3	2014-02-26 20:21:46 -0300	[diff] [blame]	3141	INIT_LIST_HEAD(&hdev->pend_le_conns);
Johan Hedberg	66f8455	2014-07-04 12:37:18 +0300	[diff] [blame]	3142	INIT_LIST_HEAD(&hdev->pend_le_reports);
Andrei Emeltchenko	6b536b5	2012-08-31 16:39:28 +0300	[diff] [blame]	3143	INIT_LIST_HEAD(&hdev->conn_hash.list);
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	3144	INIT_LIST_HEAD(&hdev->adv_instances);
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3145
				3146	INIT_WORK(&hdev->rx_work, hci_rx_work);
				3147	INIT_WORK(&hdev->cmd_work, hci_cmd_work);
				3148	INIT_WORK(&hdev->tx_work, hci_tx_work);
				3149	INIT_WORK(&hdev->power_on, hci_power_on);
Marcel Holtmann	c7741d1	2015-01-28 11:09:55 -0800	[diff] [blame]	3150	INIT_WORK(&hdev->error_reset, hci_error_reset);
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3151
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3152	INIT_DELAYED_WORK(&hdev->power_off, hci_power_off);
				3153	INIT_DELAYED_WORK(&hdev->discov_off, hci_discov_off);
				3154	INIT_DELAYED_WORK(&hdev->le_scan_disable, le_scan_disable_work);
Jakub Pawlowski	2d28cfe	2015-02-01 23:07:54 -0800	[diff] [blame]	3155	INIT_DELAYED_WORK(&hdev->le_scan_restart, le_scan_restart_work);
Florian Grandel	5d900e4	2015-06-18 03:16:35 +0200	[diff] [blame]	3156	INIT_DELAYED_WORK(&hdev->adv_instance_expire, hci_adv_timeout_expire);
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3157
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3158	skb_queue_head_init(&hdev->rx_q);
				3159	skb_queue_head_init(&hdev->cmd_q);
				3160	skb_queue_head_init(&hdev->raw_q);
				3161
				3162	init_waitqueue_head(&hdev->req_wait_q);
				3163
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	3164	INIT_DELAYED_WORK(&hdev->cmd_timer, hci_cmd_timeout);
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3165
Johan Hedberg	5fc16cc	2015-11-11 08:11:16 +0200	[diff] [blame]	3166	hci_request_setup(hdev);
				3167
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3168	hci_init_sysfs(hdev);
				3169	discovery_init(hdev);
David Herrmann	9be0dab	2012-04-22 14:39:57 +0200	[diff] [blame]	3170
				3171	return hdev;
				3172	}
				3173	EXPORT_SYMBOL(hci_alloc_dev);
				3174
				3175	/* Free HCI device */
				3176	void hci_free_dev(struct hci_dev *hdev)
				3177	{
David Herrmann	9be0dab	2012-04-22 14:39:57 +0200	[diff] [blame]	3178	/* will free via device release */
				3179	put_device(&hdev->dev);
				3180	}
				3181	EXPORT_SYMBOL(hci_free_dev);
				3182
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3183	/* Register HCI device */
				3184	int hci_register_dev(struct hci_dev *hdev)
				3185	{
David Herrmann	b1b813d	2012-04-22 14:39:58 +0200	[diff] [blame]	3186	int id, error;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3187
Marcel Holtmann	74292d5	2014-07-06 15:50:27 +0200	[diff] [blame]	3188	if (!hdev->open \|\| !hdev->close \|\| !hdev->send)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3189	return -EINVAL;
				3190
Mat Martineau	08add51	2011-11-02 16:18:36 -0700	[diff] [blame]	3191	/* Do not allow HCI_AMP devices to register at index 0,
				3192	* so the index can be used as the AMP controller ID.
				3193	*/
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	3194	switch (hdev->dev_type) {
				3195	case HCI_BREDR:
				3196	id = ida_simple_get(&hci_index_ida, 0, 0, GFP_KERNEL);
				3197	break;
				3198	case HCI_AMP:
				3199	id = ida_simple_get(&hci_index_ida, 1, 0, GFP_KERNEL);
				3200	break;
				3201	default:
				3202	return -EINVAL;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3203	}
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	3204
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	3205	if (id < 0)
				3206	return id;
				3207
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3208	sprintf(hdev->name, "hci%d", id);
				3209	hdev->id = id;
Andrei Emeltchenko	2d8b3a1	2012-04-16 16:32:04 +0300	[diff] [blame]	3210
				3211	BT_DBG("%p name %s bus %d", hdev, hdev->name, hdev->bus);
				3212
Kees Cook	d853754	2013-07-03 15:04:57 -0700	[diff] [blame]	3213	hdev->workqueue = alloc_workqueue("%s", WQ_HIGHPRI \| WQ_UNBOUND \|
				3214	WQ_MEM_RECLAIM, 1, hdev->name);
David Herrmann	33ca954	2011-10-08 14:58:49 +0200	[diff] [blame]	3215	if (!hdev->workqueue) {
				3216	error = -ENOMEM;
				3217	goto err;
				3218	}
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	3219
Kees Cook	d853754	2013-07-03 15:04:57 -0700	[diff] [blame]	3220	hdev->req_workqueue = alloc_workqueue("%s", WQ_HIGHPRI \| WQ_UNBOUND \|
				3221	WQ_MEM_RECLAIM, 1, hdev->name);
Johan Hedberg	6ead1bb	2013-01-14 22:33:50 +0200	[diff] [blame]	3222	if (!hdev->req_workqueue) {
				3223	destroy_workqueue(hdev->workqueue);
				3224	error = -ENOMEM;
				3225	goto err;
				3226	}
				3227
Marcel Holtmann	0153e2e	2013-10-17 17:24:17 -0700	[diff] [blame]	3228	if (!IS_ERR_OR_NULL(bt_debugfs))
				3229	hdev->debugfs = debugfs_create_dir(hdev->name, bt_debugfs);
				3230
Marcel Holtmann	bdc3e0f	2013-10-17 17:24:19 -0700	[diff] [blame]	3231	dev_set_name(&hdev->dev, "%s", hdev->name);
				3232
				3233	error = device_add(&hdev->dev);
David Herrmann	33ca954	2011-10-08 14:58:49 +0200	[diff] [blame]	3234	if (error < 0)
Johan Hedberg	5450691	2014-08-08 09:32:51 +0300	[diff] [blame]	3235	goto err_wqueue;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3236
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	3237	hdev->rfkill = rfkill_alloc(hdev->name, &hdev->dev,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3238	RFKILL_TYPE_BLUETOOTH, &hci_rfkill_ops,
				3239	hdev);
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	3240	if (hdev->rfkill) {
				3241	if (rfkill_register(hdev->rfkill) < 0) {
				3242	rfkill_destroy(hdev->rfkill);
				3243	hdev->rfkill = NULL;
				3244	}
				3245	}
				3246
Johan Hedberg	5e13036	2013-09-13 08:58:17 +0300	[diff] [blame]	3247	if (hdev->rfkill && rfkill_blocked(hdev->rfkill))
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	3248	hci_dev_set_flag(hdev, HCI_RFKILLED);
Johan Hedberg	5e13036	2013-09-13 08:58:17 +0300	[diff] [blame]	3249
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	3250	hci_dev_set_flag(hdev, HCI_SETUP);
				3251	hci_dev_set_flag(hdev, HCI_AUTO_OFF);
Andrei Emeltchenko	ce2be9a	2012-06-29 15:07:00 +0300	[diff] [blame]	3252
Marcel Holtmann	01cd340	2013-10-06 01:16:22 -0700	[diff] [blame]	3253	if (hdev->dev_type == HCI_BREDR) {
Johan Hedberg	56f8790	2013-10-02 13:43:13 +0300	[diff] [blame]	3254	/* Assume BR/EDR support until proven otherwise (such as
				3255	* through reading supported features during init.
				3256	*/
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	3257	hci_dev_set_flag(hdev, HCI_BREDR_ENABLED);
Johan Hedberg	56f8790	2013-10-02 13:43:13 +0300	[diff] [blame]	3258	}
Andrei Emeltchenko	ce2be9a	2012-06-29 15:07:00 +0300	[diff] [blame]	3259
Gustavo Padovan	fcee337	2013-07-11 11:34:28 +0100	[diff] [blame]	3260	write_lock(&hci_dev_list_lock);
				3261	list_add(&hdev->list, &hci_dev_list);
				3262	write_unlock(&hci_dev_list_lock);
				3263
Marcel Holtmann	4a96440	2014-07-02 19:10:33 +0200	[diff] [blame]	3264	/* Devices that are marked for raw-only usage are unconfigured
				3265	* and should not be included in normal operation.
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	3266	*/
				3267	if (test_bit(HCI_QUIRK_RAW_DEVICE, &hdev->quirks))
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	3268	hci_dev_set_flag(hdev, HCI_UNCONFIGURED);
Marcel Holtmann	fee746b	2014-06-29 12:13:05 +0200	[diff] [blame]	3269
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	3270	hci_sock_dev_event(hdev, HCI_DEV_REG);
David Herrmann	dc946bd	2012-01-07 15:47:24 +0100	[diff] [blame]	3271	hci_dev_hold(hdev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3272
Johan Hedberg	1920257	2013-01-14 22:33:51 +0200	[diff] [blame]	3273	queue_work(hdev->req_workqueue, &hdev->power_on);
Marcel Holtmann	fbe96d6	2012-10-30 01:35:40 -0700	[diff] [blame]	3274
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3275	return id;
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	3276
David Herrmann	33ca954	2011-10-08 14:58:49 +0200	[diff] [blame]	3277	err_wqueue:
				3278	destroy_workqueue(hdev->workqueue);
Johan Hedberg	6ead1bb	2013-01-14 22:33:50 +0200	[diff] [blame]	3279	destroy_workqueue(hdev->req_workqueue);
David Herrmann	33ca954	2011-10-08 14:58:49 +0200	[diff] [blame]	3280	err:
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	3281	ida_simple_remove(&hci_index_ida, hdev->id);
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	3282
David Herrmann	33ca954	2011-10-08 14:58:49 +0200	[diff] [blame]	3283	return error;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3284	}
				3285	EXPORT_SYMBOL(hci_register_dev);
				3286
				3287	/* Unregister HCI device */
David Herrmann	5973563	2011-10-26 10:43:19 +0200	[diff] [blame]	3288	void hci_unregister_dev(struct hci_dev *hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3289	{
Marcel Holtmann	2d7cc19	2015-04-04 21:59:27 -0700	[diff] [blame]	3290	int id;
Marcel Holtmann	ef22201	2007-07-11 06:42:04 +0200	[diff] [blame]	3291
Marcel Holtmann	c13854c	2010-02-08 15:27:07 +0100	[diff] [blame]	3292	BT_DBG("%p name %s bus %d", hdev, hdev->name, hdev->bus);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3293
Marcel Holtmann	a1536da	2015-03-13 02:11:01 -0700	[diff] [blame]	3294	hci_dev_set_flag(hdev, HCI_UNREGISTER);
Johan Hovold	9432496	2012-03-15 14:48:41 +0100	[diff] [blame]	3295
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	3296	id = hdev->id;
				3297
Gustavo F. Padovan	f20d09d	2011-12-22 16:30:27 -0200	[diff] [blame]	3298	write_lock(&hci_dev_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3299	list_del(&hdev->list);
Gustavo F. Padovan	f20d09d	2011-12-22 16:30:27 -0200	[diff] [blame]	3300	write_unlock(&hci_dev_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3301
				3302	hci_dev_do_close(hdev);
				3303
Gustavo Padovan	b9b5ef1	2012-11-21 00:50:21 -0200	[diff] [blame]	3304	cancel_work_sync(&hdev->power_on);
				3305
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	3306	if (!test_bit(HCI_INIT, &hdev->flags) &&
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	3307	!hci_dev_test_flag(hdev, HCI_SETUP) &&
				3308	!hci_dev_test_flag(hdev, HCI_CONFIG)) {
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	3309	hci_dev_lock(hdev);
Johan Hedberg	744cf19	2011-11-08 20:40:14 +0200	[diff] [blame]	3310	mgmt_index_removed(hdev);
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	3311	hci_dev_unlock(hdev);
Johan Hedberg	56e5cb8	2011-11-08 20:40:16 +0200	[diff] [blame]	3312	}
Johan Hedberg	ab81cbf	2010-12-15 13:53:18 +0200	[diff] [blame]	3313
Johan Hedberg	2e58ef3	2011-11-08 20:40:15 +0200	[diff] [blame]	3314	/* mgmt_index_removed should take care of emptying the
				3315	* pending list */
				3316	BUG_ON(!list_empty(&hdev->mgmt_pending));
				3317
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	3318	hci_sock_dev_event(hdev, HCI_DEV_UNREG);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3319
Marcel Holtmann	611b30f	2009-06-08 14:41:38 +0200	[diff] [blame]	3320	if (hdev->rfkill) {
				3321	rfkill_unregister(hdev->rfkill);
				3322	rfkill_destroy(hdev->rfkill);
				3323	}
				3324
Marcel Holtmann	bdc3e0f	2013-10-17 17:24:19 -0700	[diff] [blame]	3325	device_del(&hdev->dev);
Dave Young	147e2d5	2008-03-05 18:45:59 -0800	[diff] [blame]	3326
Marcel Holtmann	0153e2e	2013-10-17 17:24:17 -0700	[diff] [blame]	3327	debugfs_remove_recursive(hdev->debugfs);
				3328
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	3329	destroy_workqueue(hdev->workqueue);
Johan Hedberg	6ead1bb	2013-01-14 22:33:50 +0200	[diff] [blame]	3330	destroy_workqueue(hdev->req_workqueue);
Marcel Holtmann	f48fd9c	2010-03-20 15:20:04 +0100	[diff] [blame]	3331
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	3332	hci_dev_lock(hdev);
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	3333	hci_bdaddr_list_clear(&hdev->blacklist);
Johan Hedberg	6659358	2014-07-09 12:59:14 +0300	[diff] [blame]	3334	hci_bdaddr_list_clear(&hdev->whitelist);
Johan Hedberg	2aeb9a1	2011-01-04 12:08:51 +0200	[diff] [blame]	3335	hci_uuids_clear(hdev);
Johan Hedberg	55ed8ca1	2011-01-17 14:41:05 +0200	[diff] [blame]	3336	hci_link_keys_clear(hdev);
Vinicius Costa Gomes	b899efa	2012-02-02 21:08:00 -0300	[diff] [blame]	3337	hci_smp_ltks_clear(hdev);
Johan Hedberg	970c4e4	2014-02-18 10:19:33 +0200	[diff] [blame]	3338	hci_smp_irks_clear(hdev);
Szymon Janc	2763eda	2011-03-22 13:12:22 +0100	[diff] [blame]	3339	hci_remote_oob_data_clear(hdev);
Florian Grandel	d2609b3	2015-06-18 03:16:34 +0200	[diff] [blame]	3340	hci_adv_instances_clear(hdev);
Johan Hedberg	dcc36c1	2014-07-09 12:59:13 +0300	[diff] [blame]	3341	hci_bdaddr_list_clear(&hdev->le_white_list);
Johan Hedberg	373110c	2014-07-02 17:37:25 +0300	[diff] [blame]	3342	hci_conn_params_clear_all(hdev);
Marcel Holtmann	2207880	2014-12-05 11:45:22 +0100	[diff] [blame]	3343	hci_discovery_filter_clear(hdev);
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	3344	hci_dev_unlock(hdev);
Johan Hedberg	e2e0cac	2011-01-04 12:08:50 +0200	[diff] [blame]	3345
David Herrmann	dc946bd	2012-01-07 15:47:24 +0100	[diff] [blame]	3346	hci_dev_put(hdev);
Sasha Levin	3df92b3	2012-05-27 22:36:56 +0200	[diff] [blame]	3347
				3348	ida_simple_remove(&hci_index_ida, id);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3349	}
				3350	EXPORT_SYMBOL(hci_unregister_dev);
				3351
				3352	/* Suspend HCI device */
				3353	int hci_suspend_dev(struct hci_dev *hdev)
				3354	{
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	3355	hci_sock_dev_event(hdev, HCI_DEV_SUSPEND);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3356	return 0;
				3357	}
				3358	EXPORT_SYMBOL(hci_suspend_dev);
				3359
				3360	/* Resume HCI device */
				3361	int hci_resume_dev(struct hci_dev *hdev)
				3362	{
Marcel Holtmann	05fcd4c	2015-10-25 23:29:22 +0100	[diff] [blame]	3363	hci_sock_dev_event(hdev, HCI_DEV_RESUME);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3364	return 0;
				3365	}
				3366	EXPORT_SYMBOL(hci_resume_dev);
				3367
Marcel Holtmann	75e0569	2014-11-02 08:15:38 +0100	[diff] [blame]	3368	/* Reset HCI device */
				3369	int hci_reset_dev(struct hci_dev *hdev)
				3370	{
				3371	const u8 hw_err[] = { HCI_EV_HARDWARE_ERROR, 0x01, 0x00 };
				3372	struct sk_buff *skb;
				3373
				3374	skb = bt_skb_alloc(3, GFP_ATOMIC);
				3375	if (!skb)
				3376	return -ENOMEM;
				3377
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3378	hci_skb_pkt_type(skb) = HCI_EVENT_PKT;
Marcel Holtmann	75e0569	2014-11-02 08:15:38 +0100	[diff] [blame]	3379	memcpy(skb_put(skb, 3), hw_err, 3);
				3380
				3381	/* Send Hardware Error to upper stack */
				3382	return hci_recv_frame(hdev, skb);
				3383	}
				3384	EXPORT_SYMBOL(hci_reset_dev);
				3385
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3386	/* Receive frame from HCI drivers */
Marcel Holtmann	e1a2617	2013-10-10 16:52:43 -0700	[diff] [blame]	3387	int hci_recv_frame(struct hci_dev hdev, struct sk_buff skb)
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3388	{
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3389	if (!hdev \|\| (!test_bit(HCI_UP, &hdev->flags)
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3390	&& !test_bit(HCI_INIT, &hdev->flags))) {
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3391	kfree_skb(skb);
				3392	return -ENXIO;
				3393	}
				3394
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3395	if (hci_skb_pkt_type(skb) != HCI_EVENT_PKT &&
				3396	hci_skb_pkt_type(skb) != HCI_ACLDATA_PKT &&
				3397	hci_skb_pkt_type(skb) != HCI_SCODATA_PKT) {
Marcel Holtmann	fe806dc	2015-10-08 03:14:28 +0200	[diff] [blame]	3398	kfree_skb(skb);
				3399	return -EINVAL;
				3400	}
				3401
Jorrit Schippers	d82603c	2012-12-27 17:33:02 +0100	[diff] [blame]	3402	/* Incoming skb */
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3403	bt_cb(skb)->incoming = 1;
				3404
				3405	/* Time stamp */
				3406	__net_timestamp(skb);
				3407
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3408	skb_queue_tail(&hdev->rx_q, skb);
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	3409	queue_work(hdev->workqueue, &hdev->rx_work);
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	3410
Marcel Holtmann	76bca88	2009-11-18 00:40:39 +0100	[diff] [blame]	3411	return 0;
				3412	}
				3413	EXPORT_SYMBOL(hci_recv_frame);
				3414
Marcel Holtmann	e875ff8	2015-10-07 16:38:35 +0200	[diff] [blame]	3415	/* Receive diagnostic message from HCI drivers */
				3416	int hci_recv_diag(struct hci_dev hdev, struct sk_buff skb)
				3417	{
Marcel Holtmann	581d6fd	2015-10-09 16:13:51 +0200	[diff] [blame]	3418	/* Mark as diagnostic packet */
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3419	hci_skb_pkt_type(skb) = HCI_DIAG_PKT;
Marcel Holtmann	581d6fd	2015-10-09 16:13:51 +0200	[diff] [blame]	3420
Marcel Holtmann	e875ff8	2015-10-07 16:38:35 +0200	[diff] [blame]	3421	/* Time stamp */
				3422	__net_timestamp(skb);
				3423
Marcel Holtmann	581d6fd	2015-10-09 16:13:51 +0200	[diff] [blame]	3424	skb_queue_tail(&hdev->rx_q, skb);
				3425	queue_work(hdev->workqueue, &hdev->rx_work);
Marcel Holtmann	e875ff8	2015-10-07 16:38:35 +0200	[diff] [blame]	3426
Marcel Holtmann	e875ff8	2015-10-07 16:38:35 +0200	[diff] [blame]	3427	return 0;
				3428	}
				3429	EXPORT_SYMBOL(hci_recv_diag);
				3430
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3431	/* ---- Interface to upper protocols ---- */
				3432
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3433	int hci_register_cb(struct hci_cb *cb)
				3434	{
				3435	BT_DBG("%p name %s", cb, cb->name);
				3436
Johan Hedberg	fba7ecf	2015-02-18 14:53:55 +0200	[diff] [blame]	3437	mutex_lock(&hci_cb_list_lock);
Johan Hedberg	00629e0	2015-02-18 14:53:54 +0200	[diff] [blame]	3438	list_add_tail(&cb->list, &hci_cb_list);
Johan Hedberg	fba7ecf	2015-02-18 14:53:55 +0200	[diff] [blame]	3439	mutex_unlock(&hci_cb_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3440
				3441	return 0;
				3442	}
				3443	EXPORT_SYMBOL(hci_register_cb);
				3444
				3445	int hci_unregister_cb(struct hci_cb *cb)
				3446	{
				3447	BT_DBG("%p name %s", cb, cb->name);
				3448
Johan Hedberg	fba7ecf	2015-02-18 14:53:55 +0200	[diff] [blame]	3449	mutex_lock(&hci_cb_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3450	list_del(&cb->list);
Johan Hedberg	fba7ecf	2015-02-18 14:53:55 +0200	[diff] [blame]	3451	mutex_unlock(&hci_cb_list_lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3452
				3453	return 0;
				3454	}
				3455	EXPORT_SYMBOL(hci_unregister_cb);
				3456
Marcel Holtmann	5108699	2013-10-10 14:54:19 -0700	[diff] [blame]	3457	static void hci_send_frame(struct hci_dev hdev, struct sk_buff skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3458	{
Marcel Holtmann	cdc52fa	2014-07-06 15:36:15 +0200	[diff] [blame]	3459	int err;
				3460
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3461	BT_DBG("%s type %d len %d", hdev->name, hci_skb_pkt_type(skb),
				3462	skb->len);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3463
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	3464	/* Time stamp */
				3465	__net_timestamp(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3466
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	3467	/* Send copy to monitor */
				3468	hci_send_to_monitor(hdev, skb);
				3469
				3470	if (atomic_read(&hdev->promisc)) {
				3471	/* Send copy to the sockets */
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	3472	hci_send_to_sock(hdev, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3473	}
				3474
				3475	/* Get rid of skb owner, prior to sending to the driver. */
				3476	skb_orphan(skb);
				3477
Marcel Holtmann	73d0d3c	2015-10-04 23:34:01 +0200	[diff] [blame]	3478	if (!test_bit(HCI_RUNNING, &hdev->flags)) {
				3479	kfree_skb(skb);
				3480	return;
				3481	}
				3482
Marcel Holtmann	cdc52fa	2014-07-06 15:36:15 +0200	[diff] [blame]	3483	err = hdev->send(hdev, skb);
				3484	if (err < 0) {
				3485	BT_ERR("%s sending frame failed (%d)", hdev->name, err);
				3486	kfree_skb(skb);
				3487	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3488	}
				3489
Johan Hedberg	1ca3a9d	2013-03-05 20:37:45 +0200	[diff] [blame]	3490	/* Send HCI command */
Johan Hedberg	07dc93d	2013-04-19 10:14:51 +0300	[diff] [blame]	3491	int hci_send_cmd(struct hci_dev *hdev, __u16 opcode, __u32 plen,
				3492	const void *param)
Johan Hedberg	1ca3a9d	2013-03-05 20:37:45 +0200	[diff] [blame]	3493	{
				3494	struct sk_buff *skb;
				3495
				3496	BT_DBG("%s opcode 0x%4.4x plen %d", hdev->name, opcode, plen);
				3497
				3498	skb = hci_prepare_cmd(hdev, opcode, plen, param);
				3499	if (!skb) {
				3500	BT_ERR("%s no memory for command", hdev->name);
				3501	return -ENOMEM;
				3502	}
				3503
Stephen Hemminger	49c922b	2014-10-27 21:12:20 -0700	[diff] [blame]	3504	/* Stand-alone HCI commands must be flagged as
Johan Hedberg	11714b3	2013-03-05 20:37:47 +0200	[diff] [blame]	3505	* single-command requests.
				3506	*/
Johan Hedberg	44d2713	2015-11-05 09:31:40 +0200	[diff] [blame]	3507	bt_cb(skb)->hci.req_flags \|= HCI_REQ_START;
Johan Hedberg	11714b3	2013-03-05 20:37:47 +0200	[diff] [blame]	3508
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3509	skb_queue_tail(&hdev->cmd_q, skb);
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	3510	queue_work(hdev->workqueue, &hdev->cmd_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3511
				3512	return 0;
				3513	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3514
				3515	/* Get data from the previously sent command */
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	3516	void hci_sent_cmd_data(struct hci_dev hdev, __u16 opcode)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3517	{
				3518	struct hci_command_hdr *hdr;
				3519
				3520	if (!hdev->sent_cmd)
				3521	return NULL;
				3522
				3523	hdr = (void *) hdev->sent_cmd->data;
				3524
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	3525	if (hdr->opcode != cpu_to_le16(opcode))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3526	return NULL;
				3527
Andrei Emeltchenko	f0e0951	2012-06-11 11:13:09 +0300	[diff] [blame]	3528	BT_DBG("%s opcode 0x%4.4x", hdev->name, opcode);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3529
				3530	return hdev->sent_cmd->data + HCI_COMMAND_HDR_SIZE;
				3531	}
				3532
Loic Poulain	fbef168	2015-09-29 15:05:44 +0200	[diff] [blame]	3533	/* Send HCI command and wait for command commplete event */
				3534	struct sk_buff hci_cmd_sync(struct hci_dev hdev, u16 opcode, u32 plen,
				3535	const void *param, u32 timeout)
				3536	{
				3537	struct sk_buff *skb;
				3538
				3539	if (!test_bit(HCI_UP, &hdev->flags))
				3540	return ERR_PTR(-ENETDOWN);
				3541
				3542	bt_dev_dbg(hdev, "opcode 0x%4.4x plen %d", opcode, plen);
				3543
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	3544	hci_req_sync_lock(hdev);
Loic Poulain	fbef168	2015-09-29 15:05:44 +0200	[diff] [blame]	3545	skb = __hci_cmd_sync(hdev, opcode, plen, param, timeout);
Johan Hedberg	b504430	2015-11-10 09:44:55 +0200	[diff] [blame]	3546	hci_req_sync_unlock(hdev);
Loic Poulain	fbef168	2015-09-29 15:05:44 +0200	[diff] [blame]	3547
				3548	return skb;
				3549	}
				3550	EXPORT_SYMBOL(hci_cmd_sync);
				3551
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3552	/* Send ACL data */
				3553	static void hci_add_acl_hdr(struct sk_buff *skb, __u16 handle, __u16 flags)
				3554	{
				3555	struct hci_acl_hdr *hdr;
				3556	int len = skb->len;
				3557
Arnaldo Carvalho de Melo	badff6d	2007-03-13 13:06:52 -0300	[diff] [blame]	3558	skb_push(skb, HCI_ACL_HDR_SIZE);
				3559	skb_reset_transport_header(skb);
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	3560	hdr = (struct hci_acl_hdr *)skb_transport_header(skb);
YOSHIFUJI Hideaki	aca3192	2007-03-25 20:12:50 -0700	[diff] [blame]	3561	hdr->handle = cpu_to_le16(hci_handle_pack(handle, flags));
				3562	hdr->dlen = cpu_to_le16(len);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3563	}
				3564
Andrei Emeltchenko	ee22be7	2012-09-21 12:30:04 +0300	[diff] [blame]	3565	static void hci_queue_acl(struct hci_chan chan, struct sk_buff_head queue,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3566	struct sk_buff *skb, __u16 flags)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3567	{
Andrei Emeltchenko	ee22be7	2012-09-21 12:30:04 +0300	[diff] [blame]	3568	struct hci_conn *conn = chan->conn;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3569	struct hci_dev *hdev = conn->hdev;
				3570	struct sk_buff *list;
				3571
Gustavo Padovan	087bfd9	2012-05-11 13:16:11 -0300	[diff] [blame]	3572	skb->len = skb_headlen(skb);
				3573	skb->data_len = 0;
				3574
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3575	hci_skb_pkt_type(skb) = HCI_ACLDATA_PKT;
Andrei Emeltchenko	204a6e5	2012-10-15 11:58:39 +0300	[diff] [blame]	3576
				3577	switch (hdev->dev_type) {
				3578	case HCI_BREDR:
				3579	hci_add_acl_hdr(skb, conn->handle, flags);
				3580	break;
				3581	case HCI_AMP:
				3582	hci_add_acl_hdr(skb, chan->handle, flags);
				3583	break;
				3584	default:
				3585	BT_ERR("%s unknown dev_type %d", hdev->name, hdev->dev_type);
				3586	return;
				3587	}
Gustavo Padovan	087bfd9	2012-05-11 13:16:11 -0300	[diff] [blame]	3588
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	3589	list = skb_shinfo(skb)->frag_list;
				3590	if (!list) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3591	/* Non fragmented */
				3592	BT_DBG("%s nonfrag skb %p len %d", hdev->name, skb, skb->len);
				3593
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3594	skb_queue_tail(queue, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3595	} else {
				3596	/* Fragmented */
				3597	BT_DBG("%s frag %p len %d", hdev->name, skb, skb->len);
				3598
				3599	skb_shinfo(skb)->frag_list = NULL;
				3600
Jukka Rissanen	9cfd5a2	2014-10-29 10:16:00 +0200	[diff] [blame]	3601	/* Queue all fragments atomically. We need to use spin_lock_bh
				3602	* here because of 6LoWPAN links, as there this function is
				3603	* called from softirq and using normal spin lock could cause
				3604	* deadlocks.
				3605	*/
				3606	spin_lock_bh(&queue->lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3607
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3608	__skb_queue_tail(queue, skb);
Andrei Emeltchenko	e702112	2011-01-03 11:14:36 +0200	[diff] [blame]	3609
				3610	flags &= ~ACL_START;
				3611	flags \|= ACL_CONT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3612	do {
				3613	skb = list; list = list->next;
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	3614
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3615	hci_skb_pkt_type(skb) = HCI_ACLDATA_PKT;
Andrei Emeltchenko	e702112	2011-01-03 11:14:36 +0200	[diff] [blame]	3616	hci_add_acl_hdr(skb, conn->handle, flags);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3617
				3618	BT_DBG("%s frag %p len %d", hdev->name, skb, skb->len);
				3619
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3620	__skb_queue_tail(queue, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3621	} while (list);
				3622
Jukka Rissanen	9cfd5a2	2014-10-29 10:16:00 +0200	[diff] [blame]	3623	spin_unlock_bh(&queue->lock);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3624	}
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3625	}
				3626
				3627	void hci_send_acl(struct hci_chan chan, struct sk_buff skb, __u16 flags)
				3628	{
Andrei Emeltchenko	ee22be7	2012-09-21 12:30:04 +0300	[diff] [blame]	3629	struct hci_dev *hdev = chan->conn->hdev;
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3630
Andrei Emeltchenko	f0e0951	2012-06-11 11:13:09 +0300	[diff] [blame]	3631	BT_DBG("%s chan %p flags 0x%4.4x", hdev->name, chan, flags);
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3632
Andrei Emeltchenko	ee22be7	2012-09-21 12:30:04 +0300	[diff] [blame]	3633	hci_queue_acl(chan, &chan->data_q, skb, flags);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3634
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	3635	queue_work(hdev->workqueue, &hdev->tx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3636	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3637
				3638	/* Send SCO data */
Gustavo F. Padovan	0d861d8	2010-05-01 16:15:35 -0300	[diff] [blame]	3639	void hci_send_sco(struct hci_conn conn, struct sk_buff skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3640	{
				3641	struct hci_dev *hdev = conn->hdev;
				3642	struct hci_sco_hdr hdr;
				3643
				3644	BT_DBG("%s len %d", hdev->name, skb->len);
				3645
YOSHIFUJI Hideaki	aca3192	2007-03-25 20:12:50 -0700	[diff] [blame]	3646	hdr.handle = cpu_to_le16(conn->handle);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3647	hdr.dlen = skb->len;
				3648
Arnaldo Carvalho de Melo	badff6d	2007-03-13 13:06:52 -0300	[diff] [blame]	3649	skb_push(skb, HCI_SCO_HDR_SIZE);
				3650	skb_reset_transport_header(skb);
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	3651	memcpy(skb_transport_header(skb), &hdr, HCI_SCO_HDR_SIZE);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3652
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	3653	hci_skb_pkt_type(skb) = HCI_SCODATA_PKT;
Marcel Holtmann	c78ae28	2009-11-18 01:02:54 +0100	[diff] [blame]	3654
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3655	skb_queue_tail(&conn->data_q, skb);
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	3656	queue_work(hdev->workqueue, &hdev->tx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3657	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3658
				3659	/* ---- HCI TX task (outgoing data) ---- */
				3660
				3661	/* HCI Connection scheduler */
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3662	static struct hci_conn hci_low_sent(struct hci_dev hdev, __u8 type,
				3663	int *quote)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3664	{
				3665	struct hci_conn_hash *h = &hdev->conn_hash;
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	3666	struct hci_conn conn = NULL, c;
Mikel Astiz	abc5de8	2012-04-11 08:48:47 +0200	[diff] [blame]	3667	unsigned int num = 0, min = ~0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3668
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	3669	/* We don't have to lock device here. Connections are always
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3670	* added and removed with TX task disabled. */
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3671
				3672	rcu_read_lock();
				3673
				3674	list_for_each_entry_rcu(c, &h->list, list) {
Marcel Holtmann	769be97	2008-07-14 20:13:49 +0200	[diff] [blame]	3675	if (c->type != type \|\| skb_queue_empty(&c->data_q))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3676	continue;
Marcel Holtmann	769be97	2008-07-14 20:13:49 +0200	[diff] [blame]	3677
				3678	if (c->state != BT_CONNECTED && c->state != BT_CONFIG)
				3679	continue;
				3680
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3681	num++;
				3682
				3683	if (c->sent < min) {
				3684	min = c->sent;
				3685	conn = c;
				3686	}
Luiz Augusto von Dentz	52087a7	2011-08-17 16:23:00 +0300	[diff] [blame]	3687
				3688	if (hci_conn_num(hdev, type) == num)
				3689	break;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3690	}
				3691
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3692	rcu_read_unlock();
				3693
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3694	if (conn) {
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	3695	int cnt, q;
				3696
				3697	switch (conn->type) {
				3698	case ACL_LINK:
				3699	cnt = hdev->acl_cnt;
				3700	break;
				3701	case SCO_LINK:
				3702	case ESCO_LINK:
				3703	cnt = hdev->sco_cnt;
				3704	break;
				3705	case LE_LINK:
				3706	cnt = hdev->le_mtu ? hdev->le_cnt : hdev->acl_cnt;
				3707	break;
				3708	default:
				3709	cnt = 0;
				3710	BT_ERR("Unknown link type");
				3711	}
				3712
				3713	q = cnt / num;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3714	*quote = q ? q : 1;
				3715	} else
				3716	*quote = 0;
				3717
				3718	BT_DBG("conn %p quote %d", conn, *quote);
				3719	return conn;
				3720	}
				3721
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3722	static void hci_link_tx_to(struct hci_dev *hdev, __u8 type)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3723	{
				3724	struct hci_conn_hash *h = &hdev->conn_hash;
Luiz Augusto von Dentz	8035ded	2011-11-01 10:58:56 +0200	[diff] [blame]	3725	struct hci_conn *c;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3726
Ville Tervo	bae1f5d9	2011-02-10 22:38:53 -0300	[diff] [blame]	3727	BT_ERR("%s link tx timeout", hdev->name);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3728
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3729	rcu_read_lock();
				3730
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3731	/* Kill stalled connections */
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3732	list_for_each_entry_rcu(c, &h->list, list) {
Ville Tervo	bae1f5d9	2011-02-10 22:38:53 -0300	[diff] [blame]	3733	if (c->type == type && c->sent) {
Andrei Emeltchenko	6ed93dc	2012-09-25 12:49:43 +0300	[diff] [blame]	3734	BT_ERR("%s killing stalled connection %pMR",
				3735	hdev->name, &c->dst);
Andre Guedes	bed7174	2013-01-30 11:50:56 -0300	[diff] [blame]	3736	hci_disconnect(c, HCI_ERROR_REMOTE_USER_TERM);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3737	}
				3738	}
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3739
				3740	rcu_read_unlock();
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3741	}
				3742
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3743	static struct hci_chan hci_chan_sent(struct hci_dev hdev, __u8 type,
				3744	int *quote)
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3745	{
				3746	struct hci_conn_hash *h = &hdev->conn_hash;
				3747	struct hci_chan *chan = NULL;
Mikel Astiz	abc5de8	2012-04-11 08:48:47 +0200	[diff] [blame]	3748	unsigned int num = 0, min = ~0, cur_prio = 0;
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3749	struct hci_conn *conn;
				3750	int cnt, q, conn_num = 0;
				3751
				3752	BT_DBG("%s", hdev->name);
				3753
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3754	rcu_read_lock();
				3755
				3756	list_for_each_entry_rcu(conn, &h->list, list) {
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3757	struct hci_chan *tmp;
				3758
				3759	if (conn->type != type)
				3760	continue;
				3761
				3762	if (conn->state != BT_CONNECTED && conn->state != BT_CONFIG)
				3763	continue;
				3764
				3765	conn_num++;
				3766
Gustavo F. Padovan	8192ede	2011-12-14 15:08:48 -0200	[diff] [blame]	3767	list_for_each_entry_rcu(tmp, &conn->chan_list, list) {
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3768	struct sk_buff *skb;
				3769
				3770	if (skb_queue_empty(&tmp->data_q))
				3771	continue;
				3772
				3773	skb = skb_peek(&tmp->data_q);
				3774	if (skb->priority < cur_prio)
				3775	continue;
				3776
				3777	if (skb->priority > cur_prio) {
				3778	num = 0;
				3779	min = ~0;
				3780	cur_prio = skb->priority;
				3781	}
				3782
				3783	num++;
				3784
				3785	if (conn->sent < min) {
				3786	min = conn->sent;
				3787	chan = tmp;
				3788	}
				3789	}
				3790
				3791	if (hci_conn_num(hdev, type) == conn_num)
				3792	break;
				3793	}
				3794
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3795	rcu_read_unlock();
				3796
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3797	if (!chan)
				3798	return NULL;
				3799
				3800	switch (chan->conn->type) {
				3801	case ACL_LINK:
				3802	cnt = hdev->acl_cnt;
				3803	break;
Andrei Emeltchenko	bd1eb66	2012-10-10 17:38:30 +0300	[diff] [blame]	3804	case AMP_LINK:
				3805	cnt = hdev->block_cnt;
				3806	break;
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3807	case SCO_LINK:
				3808	case ESCO_LINK:
				3809	cnt = hdev->sco_cnt;
				3810	break;
				3811	case LE_LINK:
				3812	cnt = hdev->le_mtu ? hdev->le_cnt : hdev->acl_cnt;
				3813	break;
				3814	default:
				3815	cnt = 0;
				3816	BT_ERR("Unknown link type");
				3817	}
				3818
				3819	q = cnt / num;
				3820	*quote = q ? q : 1;
				3821	BT_DBG("chan %p quote %d", chan, *quote);
				3822	return chan;
				3823	}
				3824
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	3825	static void hci_prio_recalculate(struct hci_dev *hdev, __u8 type)
				3826	{
				3827	struct hci_conn_hash *h = &hdev->conn_hash;
				3828	struct hci_conn *conn;
				3829	int num = 0;
				3830
				3831	BT_DBG("%s", hdev->name);
				3832
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3833	rcu_read_lock();
				3834
				3835	list_for_each_entry_rcu(conn, &h->list, list) {
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	3836	struct hci_chan *chan;
				3837
				3838	if (conn->type != type)
				3839	continue;
				3840
				3841	if (conn->state != BT_CONNECTED && conn->state != BT_CONFIG)
				3842	continue;
				3843
				3844	num++;
				3845
Gustavo F. Padovan	8192ede	2011-12-14 15:08:48 -0200	[diff] [blame]	3846	list_for_each_entry_rcu(chan, &conn->chan_list, list) {
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	3847	struct sk_buff *skb;
				3848
				3849	if (chan->sent) {
				3850	chan->sent = 0;
				3851	continue;
				3852	}
				3853
				3854	if (skb_queue_empty(&chan->data_q))
				3855	continue;
				3856
				3857	skb = skb_peek(&chan->data_q);
				3858	if (skb->priority >= HCI_PRIO_MAX - 1)
				3859	continue;
				3860
				3861	skb->priority = HCI_PRIO_MAX - 1;
				3862
				3863	BT_DBG("chan %p skb %p promoted to %d", chan, skb,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3864	skb->priority);
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	3865	}
				3866
				3867	if (hci_conn_num(hdev, type) == num)
				3868	break;
				3869	}
Gustavo F. Padovan	bf4c632	2011-12-14 22:54:12 -0200	[diff] [blame]	3870
				3871	rcu_read_unlock();
				3872
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	3873	}
				3874
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3875	static inline int __get_blocks(struct hci_dev hdev, struct sk_buff skb)
				3876	{
				3877	/* Calculate count of blocks used by this packet */
				3878	return DIV_ROUND_UP(skb->len - HCI_ACL_HDR_SIZE, hdev->block_len);
				3879	}
				3880
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3881	static void __check_timeout(struct hci_dev *hdev, unsigned int cnt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3882	{
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	3883	if (!hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3884	/* ACL tx timeout must be longer than maximum
				3885	* link supervision timeout (40.9 seconds) */
Andrei Emeltchenko	63d2bc1	2012-02-03 16:27:55 +0200	[diff] [blame]	3886	if (!cnt && time_after(jiffies, hdev->acl_last_tx +
Andrei Emeltchenko	5f246e8	2012-06-11 11:13:07 +0300	[diff] [blame]	3887	HCI_ACL_TX_TIMEOUT))
Ville Tervo	bae1f5d9	2011-02-10 22:38:53 -0300	[diff] [blame]	3888	hci_link_tx_to(hdev, ACL_LINK);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3889	}
Andrei Emeltchenko	63d2bc1	2012-02-03 16:27:55 +0200	[diff] [blame]	3890	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3891
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3892	static void hci_sched_acl_pkt(struct hci_dev *hdev)
Andrei Emeltchenko	63d2bc1	2012-02-03 16:27:55 +0200	[diff] [blame]	3893	{
				3894	unsigned int cnt = hdev->acl_cnt;
				3895	struct hci_chan *chan;
				3896	struct sk_buff *skb;
				3897	int quote;
				3898
				3899	__check_timeout(hdev, cnt);
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	3900
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3901	while (hdev->acl_cnt &&
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3902	(chan = hci_chan_sent(hdev, ACL_LINK, &quote))) {
Luiz Augusto von Dentz	ec1cce2	2011-11-02 15:52:02 +0200	[diff] [blame]	3903	u32 priority = (skb_peek(&chan->data_q))->priority;
				3904	while (quote-- && (skb = skb_peek(&chan->data_q))) {
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3905	BT_DBG("chan %p skb %p len %d priority %u", chan, skb,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3906	skb->len, skb->priority);
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3907
Luiz Augusto von Dentz	ec1cce2	2011-11-02 15:52:02 +0200	[diff] [blame]	3908	/* Stop if priority has changed */
				3909	if (skb->priority < priority)
				3910	break;
				3911
				3912	skb = skb_dequeue(&chan->data_q);
				3913
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3914	hci_conn_enter_active_mode(chan->conn,
Gustavo F. Padovan	0412468	2012-03-08 01:25:00 -0300	[diff] [blame]	3915	bt_cb(skb)->force_active);
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	3916
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	3917	hci_send_frame(hdev, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3918	hdev->acl_last_tx = jiffies;
				3919
				3920	hdev->acl_cnt--;
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	3921	chan->sent++;
				3922	chan->conn->sent++;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3923	}
				3924	}
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	3925
				3926	if (cnt != hdev->acl_cnt)
				3927	hci_prio_recalculate(hdev, ACL_LINK);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	3928	}
				3929
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3930	static void hci_sched_acl_blk(struct hci_dev *hdev)
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3931	{
Andrei Emeltchenko	63d2bc1	2012-02-03 16:27:55 +0200	[diff] [blame]	3932	unsigned int cnt = hdev->block_cnt;
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3933	struct hci_chan *chan;
				3934	struct sk_buff *skb;
				3935	int quote;
Andrei Emeltchenko	bd1eb66	2012-10-10 17:38:30 +0300	[diff] [blame]	3936	u8 type;
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3937
Andrei Emeltchenko	63d2bc1	2012-02-03 16:27:55 +0200	[diff] [blame]	3938	__check_timeout(hdev, cnt);
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3939
Andrei Emeltchenko	bd1eb66	2012-10-10 17:38:30 +0300	[diff] [blame]	3940	BT_DBG("%s", hdev->name);
				3941
				3942	if (hdev->dev_type == HCI_AMP)
				3943	type = AMP_LINK;
				3944	else
				3945	type = ACL_LINK;
				3946
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3947	while (hdev->block_cnt > 0 &&
Andrei Emeltchenko	bd1eb66	2012-10-10 17:38:30 +0300	[diff] [blame]	3948	(chan = hci_chan_sent(hdev, type, &quote))) {
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3949	u32 priority = (skb_peek(&chan->data_q))->priority;
				3950	while (quote > 0 && (skb = skb_peek(&chan->data_q))) {
				3951	int blocks;
				3952
				3953	BT_DBG("chan %p skb %p len %d priority %u", chan, skb,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3954	skb->len, skb->priority);
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3955
				3956	/* Stop if priority has changed */
				3957	if (skb->priority < priority)
				3958	break;
				3959
				3960	skb = skb_dequeue(&chan->data_q);
				3961
				3962	blocks = __get_blocks(hdev, skb);
				3963	if (blocks > hdev->block_cnt)
				3964	return;
				3965
				3966	hci_conn_enter_active_mode(chan->conn,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	3967	bt_cb(skb)->force_active);
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3968
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	3969	hci_send_frame(hdev, skb);
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3970	hdev->acl_last_tx = jiffies;
				3971
				3972	hdev->block_cnt -= blocks;
				3973	quote -= blocks;
				3974
				3975	chan->sent += blocks;
				3976	chan->conn->sent += blocks;
				3977	}
				3978	}
				3979
				3980	if (cnt != hdev->block_cnt)
Andrei Emeltchenko	bd1eb66	2012-10-10 17:38:30 +0300	[diff] [blame]	3981	hci_prio_recalculate(hdev, type);
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3982	}
				3983
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	3984	static void hci_sched_acl(struct hci_dev *hdev)
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3985	{
				3986	BT_DBG("%s", hdev->name);
				3987
Andrei Emeltchenko	bd1eb66	2012-10-10 17:38:30 +0300	[diff] [blame]	3988	/* No ACL link over BR/EDR controller */
				3989	if (!hci_conn_num(hdev, ACL_LINK) && hdev->dev_type == HCI_BREDR)
				3990	return;
				3991
				3992	/* No AMP link over AMP controller */
				3993	if (!hci_conn_num(hdev, AMP_LINK) && hdev->dev_type == HCI_AMP)
Andrei Emeltchenko	b71d385	2012-02-03 16:27:54 +0200	[diff] [blame]	3994	return;
				3995
				3996	switch (hdev->flow_ctl_mode) {
				3997	case HCI_FLOW_CTL_MODE_PACKET_BASED:
				3998	hci_sched_acl_pkt(hdev);
				3999	break;
				4000
				4001	case HCI_FLOW_CTL_MODE_BLOCK_BASED:
				4002	hci_sched_acl_blk(hdev);
				4003	break;
				4004	}
				4005	}
				4006
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4007	/* Schedule SCO */
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	4008	static void hci_sched_sco(struct hci_dev *hdev)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4009	{
				4010	struct hci_conn *conn;
				4011	struct sk_buff *skb;
				4012	int quote;
				4013
				4014	BT_DBG("%s", hdev->name);
				4015
Luiz Augusto von Dentz	52087a7	2011-08-17 16:23:00 +0300	[diff] [blame]	4016	if (!hci_conn_num(hdev, SCO_LINK))
				4017	return;
				4018
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4019	while (hdev->sco_cnt && (conn = hci_low_sent(hdev, SCO_LINK, &quote))) {
				4020	while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
				4021	BT_DBG("skb %p len %d", skb, skb->len);
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	4022	hci_send_frame(hdev, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4023
				4024	conn->sent++;
				4025	if (conn->sent == ~0)
				4026	conn->sent = 0;
				4027	}
				4028	}
				4029	}
				4030
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	4031	static void hci_sched_esco(struct hci_dev *hdev)
Marcel Holtmann	b6a0dc8	2007-10-20 14:55:10 +0200	[diff] [blame]	4032	{
				4033	struct hci_conn *conn;
				4034	struct sk_buff *skb;
				4035	int quote;
				4036
				4037	BT_DBG("%s", hdev->name);
				4038
Luiz Augusto von Dentz	52087a7	2011-08-17 16:23:00 +0300	[diff] [blame]	4039	if (!hci_conn_num(hdev, ESCO_LINK))
				4040	return;
				4041
Gustavo Padovan	8fc9ced	2012-05-23 04:04:21 -0300	[diff] [blame]	4042	while (hdev->sco_cnt && (conn = hci_low_sent(hdev, ESCO_LINK,
				4043	&quote))) {
Marcel Holtmann	b6a0dc8	2007-10-20 14:55:10 +0200	[diff] [blame]	4044	while (quote-- && (skb = skb_dequeue(&conn->data_q))) {
				4045	BT_DBG("skb %p len %d", skb, skb->len);
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	4046	hci_send_frame(hdev, skb);
Marcel Holtmann	b6a0dc8	2007-10-20 14:55:10 +0200	[diff] [blame]	4047
				4048	conn->sent++;
				4049	if (conn->sent == ~0)
				4050	conn->sent = 0;
				4051	}
				4052	}
				4053	}
				4054
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	4055	static void hci_sched_le(struct hci_dev *hdev)
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4056	{
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	4057	struct hci_chan *chan;
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4058	struct sk_buff *skb;
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	4059	int quote, cnt, tmp;
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4060
				4061	BT_DBG("%s", hdev->name);
				4062
Luiz Augusto von Dentz	52087a7	2011-08-17 16:23:00 +0300	[diff] [blame]	4063	if (!hci_conn_num(hdev, LE_LINK))
				4064	return;
				4065
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	4066	if (!hci_dev_test_flag(hdev, HCI_UNCONFIGURED)) {
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4067	/* LE tx timeout must be longer than maximum
				4068	* link supervision timeout (40.9 seconds) */
Ville Tervo	bae1f5d9	2011-02-10 22:38:53 -0300	[diff] [blame]	4069	if (!hdev->le_cnt && hdev->le_pkts &&
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	4070	time_after(jiffies, hdev->le_last_tx + HZ * 45))
Ville Tervo	bae1f5d9	2011-02-10 22:38:53 -0300	[diff] [blame]	4071	hci_link_tx_to(hdev, LE_LINK);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4072	}
				4073
				4074	cnt = hdev->le_pkts ? hdev->le_cnt : hdev->acl_cnt;
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	4075	tmp = cnt;
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	4076	while (cnt && (chan = hci_chan_sent(hdev, LE_LINK, &quote))) {
Luiz Augusto von Dentz	ec1cce2	2011-11-02 15:52:02 +0200	[diff] [blame]	4077	u32 priority = (skb_peek(&chan->data_q))->priority;
				4078	while (quote-- && (skb = skb_peek(&chan->data_q))) {
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	4079	BT_DBG("chan %p skb %p len %d priority %u", chan, skb,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	4080	skb->len, skb->priority);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4081
Luiz Augusto von Dentz	ec1cce2	2011-11-02 15:52:02 +0200	[diff] [blame]	4082	/* Stop if priority has changed */
				4083	if (skb->priority < priority)
				4084	break;
				4085
				4086	skb = skb_dequeue(&chan->data_q);
				4087
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	4088	hci_send_frame(hdev, skb);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4089	hdev->le_last_tx = jiffies;
				4090
				4091	cnt--;
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	4092	chan->sent++;
				4093	chan->conn->sent++;
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4094	}
				4095	}
Luiz Augusto von Dentz	73d80de	2011-11-02 15:52:01 +0200	[diff] [blame]	4096
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4097	if (hdev->le_pkts)
				4098	hdev->le_cnt = cnt;
				4099	else
				4100	hdev->acl_cnt = cnt;
Luiz Augusto von Dentz	02b20f0	2011-11-02 15:52:03 +0200	[diff] [blame]	4101
				4102	if (cnt != tmp)
				4103	hci_prio_recalculate(hdev, LE_LINK);
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4104	}
				4105
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	4106	static void hci_tx_work(struct work_struct *work)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4107	{
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	4108	struct hci_dev *hdev = container_of(work, struct hci_dev, tx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4109	struct sk_buff *skb;
				4110
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4111	BT_DBG("%s acl %d sco %d le %d", hdev->name, hdev->acl_cnt,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	4112	hdev->sco_cnt, hdev->le_cnt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4113
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	4114	if (!hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Marcel Holtmann	52de599	2013-09-03 18:08:38 -0700	[diff] [blame]	4115	/* Schedule queues and send stuff to HCI driver */
				4116	hci_sched_acl(hdev);
				4117	hci_sched_sco(hdev);
				4118	hci_sched_esco(hdev);
				4119	hci_sched_le(hdev);
				4120	}
Ville Tervo	6ed58ec	2011-02-10 22:38:48 -0300	[diff] [blame]	4121
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4122	/* Send next queued raw (unknown type) packet */
				4123	while ((skb = skb_dequeue(&hdev->raw_q)))
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	4124	hci_send_frame(hdev, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4125	}
				4126
Lucas De Marchi	25985ed	2011-03-30 22:57:33 -0300	[diff] [blame]	4127	/* ----- HCI RX task (incoming data processing) ----- */
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4128
				4129	/* ACL data packet */
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	4130	static void hci_acldata_packet(struct hci_dev hdev, struct sk_buff skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4131	{
				4132	struct hci_acl_hdr hdr = (void ) skb->data;
				4133	struct hci_conn *conn;
				4134	__u16 handle, flags;
				4135
				4136	skb_pull(skb, HCI_ACL_HDR_SIZE);
				4137
				4138	handle = __le16_to_cpu(hdr->handle);
				4139	flags = hci_flags(handle);
				4140	handle = hci_handle(handle);
				4141
Andrei Emeltchenko	f0e0951	2012-06-11 11:13:09 +0300	[diff] [blame]	4142	BT_DBG("%s len %d handle 0x%4.4x flags 0x%4.4x", hdev->name, skb->len,
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	4143	handle, flags);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4144
				4145	hdev->stat.acl_rx++;
				4146
				4147	hci_dev_lock(hdev);
				4148	conn = hci_conn_hash_lookup_handle(hdev, handle);
				4149	hci_dev_unlock(hdev);
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	4150
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4151	if (conn) {
Mat Martineau	65983fc	2011-12-13 15:06:02 -0800	[diff] [blame]	4152	hci_conn_enter_active_mode(conn, BT_POWER_FORCE_ACTIVE_OFF);
Marcel Holtmann	04837f6	2006-07-03 10:02:33 +0200	[diff] [blame]	4153
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4154	/* Send to upper protocol */
Ulisses Furquim	686ebf2	2011-12-21 10:11:33 -0200	[diff] [blame]	4155	l2cap_recv_acldata(conn, skb, flags);
				4156	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4157	} else {
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	4158	BT_ERR("%s ACL packet for unknown connection handle %d",
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	4159	hdev->name, handle);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4160	}
				4161
				4162	kfree_skb(skb);
				4163	}
				4164
				4165	/* SCO data packet */
Gustavo Padovan	6039aa73	2012-05-23 04:04:18 -0300	[diff] [blame]	4166	static void hci_scodata_packet(struct hci_dev hdev, struct sk_buff skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4167	{
				4168	struct hci_sco_hdr hdr = (void ) skb->data;
				4169	struct hci_conn *conn;
				4170	__u16 handle;
				4171
				4172	skb_pull(skb, HCI_SCO_HDR_SIZE);
				4173
				4174	handle = __le16_to_cpu(hdr->handle);
				4175
Andrei Emeltchenko	f0e0951	2012-06-11 11:13:09 +0300	[diff] [blame]	4176	BT_DBG("%s len %d handle 0x%4.4x", hdev->name, skb->len, handle);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4177
				4178	hdev->stat.sco_rx++;
				4179
				4180	hci_dev_lock(hdev);
				4181	conn = hci_conn_hash_lookup_handle(hdev, handle);
				4182	hci_dev_unlock(hdev);
				4183
				4184	if (conn) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4185	/* Send to upper protocol */
Ulisses Furquim	686ebf2	2011-12-21 10:11:33 -0200	[diff] [blame]	4186	sco_recv_scodata(conn, skb);
				4187	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4188	} else {
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	4189	BT_ERR("%s SCO packet for unknown connection handle %d",
Gustavo Padovan	a8c5fb1	2012-05-17 00:36:26 -0300	[diff] [blame]	4190	hdev->name, handle);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4191	}
				4192
				4193	kfree_skb(skb);
				4194	}
				4195
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4196	static bool hci_req_is_complete(struct hci_dev *hdev)
				4197	{
				4198	struct sk_buff *skb;
				4199
				4200	skb = skb_peek(&hdev->cmd_q);
				4201	if (!skb)
				4202	return true;
				4203
Johan Hedberg	44d2713	2015-11-05 09:31:40 +0200	[diff] [blame]	4204	return (bt_cb(skb)->hci.req_flags & HCI_REQ_START);
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4205	}
				4206
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	4207	static void hci_resend_last(struct hci_dev *hdev)
				4208	{
				4209	struct hci_command_hdr *sent;
				4210	struct sk_buff *skb;
				4211	u16 opcode;
				4212
				4213	if (!hdev->sent_cmd)
				4214	return;
				4215
				4216	sent = (void *) hdev->sent_cmd->data;
				4217	opcode = __le16_to_cpu(sent->opcode);
				4218	if (opcode == HCI_OP_RESET)
				4219	return;
				4220
				4221	skb = skb_clone(hdev->sent_cmd, GFP_KERNEL);
				4222	if (!skb)
				4223	return;
				4224
				4225	skb_queue_head(&hdev->cmd_q, skb);
				4226	queue_work(hdev->workqueue, &hdev->cmd_work);
				4227	}
				4228
Johan Hedberg	e6214487	2015-04-02 13:41:08 +0300	[diff] [blame]	4229	void hci_req_cmd_complete(struct hci_dev *hdev, u16 opcode, u8 status,
				4230	hci_req_complete_t *req_complete,
				4231	hci_req_complete_skb_t *req_complete_skb)
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4232	{
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4233	struct sk_buff *skb;
				4234	unsigned long flags;
				4235
				4236	BT_DBG("opcode 0x%04x status 0x%02x", opcode, status);
				4237
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	4238	/* If the completed command doesn't match the last one that was
				4239	* sent we need to do special handling of it.
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4240	*/
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	4241	if (!hci_sent_cmd_data(hdev, opcode)) {
				4242	/* Some CSR based controllers generate a spontaneous
				4243	* reset complete event during init and any pending
				4244	* command will never be completed. In such a case we
				4245	* need to resend whatever was the last sent
				4246	* command.
				4247	*/
				4248	if (test_bit(HCI_INIT, &hdev->flags) && opcode == HCI_OP_RESET)
				4249	hci_resend_last(hdev);
				4250
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4251	return;
Johan Hedberg	42c6b12	2013-03-05 20:37:49 +0200	[diff] [blame]	4252	}
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4253
				4254	/* If the command succeeded and there's still more commands in
				4255	* this request the request is not yet complete.
				4256	*/
				4257	if (!status && !hci_req_is_complete(hdev))
				4258	return;
				4259
				4260	/* If this was the last command in a request the complete
				4261	* callback would be found in hdev->sent_cmd instead of the
				4262	* command queue (hdev->cmd_q).
				4263	*/
Johan Hedberg	44d2713	2015-11-05 09:31:40 +0200	[diff] [blame]	4264	if (bt_cb(hdev->sent_cmd)->hci.req_flags & HCI_REQ_SKB) {
				4265	*req_complete_skb = bt_cb(hdev->sent_cmd)->hci.req_complete_skb;
Johan Hedberg	e6214487	2015-04-02 13:41:08 +0300	[diff] [blame]	4266	return;
				4267	}
Johan Hedberg	53e21fb	2013-07-27 14:11:14 -0500	[diff] [blame]	4268
Johan Hedberg	44d2713	2015-11-05 09:31:40 +0200	[diff] [blame]	4269	if (bt_cb(hdev->sent_cmd)->hci.req_complete) {
				4270	*req_complete = bt_cb(hdev->sent_cmd)->hci.req_complete;
Johan Hedberg	e6214487	2015-04-02 13:41:08 +0300	[diff] [blame]	4271	return;
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4272	}
				4273
				4274	/* Remove all pending commands belonging to this request */
				4275	spin_lock_irqsave(&hdev->cmd_q.lock, flags);
				4276	while ((skb = __skb_dequeue(&hdev->cmd_q))) {
Johan Hedberg	44d2713	2015-11-05 09:31:40 +0200	[diff] [blame]	4277	if (bt_cb(skb)->hci.req_flags & HCI_REQ_START) {
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4278	__skb_queue_head(&hdev->cmd_q, skb);
				4279	break;
				4280	}
				4281
Marcel Holtmann	242c0eb	2015-10-25 22:45:53 +0100	[diff] [blame]	4282	*req_complete = bt_cb(skb)->hci.req_complete;
				4283	*req_complete_skb = bt_cb(skb)->hci.req_complete_skb;
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4284	kfree_skb(skb);
				4285	}
				4286	spin_unlock_irqrestore(&hdev->cmd_q.lock, flags);
Johan Hedberg	9238f36	2013-03-05 20:37:48 +0200	[diff] [blame]	4287	}
				4288
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	4289	static void hci_rx_work(struct work_struct *work)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4290	{
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	4291	struct hci_dev *hdev = container_of(work, struct hci_dev, rx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4292	struct sk_buff *skb;
				4293
				4294	BT_DBG("%s", hdev->name);
				4295
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4296	while ((skb = skb_dequeue(&hdev->rx_q))) {
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	4297	/* Send copy to monitor */
				4298	hci_send_to_monitor(hdev, skb);
				4299
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4300	if (atomic_read(&hdev->promisc)) {
				4301	/* Send copy to the sockets */
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	4302	hci_send_to_sock(hdev, skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4303	}
				4304
Marcel Holtmann	d7a5a11	2015-03-13 02:11:00 -0700	[diff] [blame]	4305	if (hci_dev_test_flag(hdev, HCI_USER_CHANNEL)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4306	kfree_skb(skb);
				4307	continue;
				4308	}
				4309
				4310	if (test_bit(HCI_INIT, &hdev->flags)) {
				4311	/* Don't process data packets in this states. */
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	4312	switch (hci_skb_pkt_type(skb)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4313	case HCI_ACLDATA_PKT:
				4314	case HCI_SCODATA_PKT:
				4315	kfree_skb(skb);
				4316	continue;
Stephen Hemminger	3ff50b7	2007-04-20 17:09:22 -0700	[diff] [blame]	4317	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4318	}
				4319
				4320	/* Process frame */
Marcel Holtmann	d79f34e	2015-11-05 07:10:00 +0100	[diff] [blame]	4321	switch (hci_skb_pkt_type(skb)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4322	case HCI_EVENT_PKT:
Marcel Holtmann	b78752c	2010-08-08 23:06:53 -0400	[diff] [blame]	4323	BT_DBG("%s Event packet", hdev->name);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4324	hci_event_packet(hdev, skb);
				4325	break;
				4326
				4327	case HCI_ACLDATA_PKT:
				4328	BT_DBG("%s ACL data packet", hdev->name);
				4329	hci_acldata_packet(hdev, skb);
				4330	break;
				4331
				4332	case HCI_SCODATA_PKT:
				4333	BT_DBG("%s SCO data packet", hdev->name);
				4334	hci_scodata_packet(hdev, skb);
				4335	break;
				4336
				4337	default:
				4338	kfree_skb(skb);
				4339	break;
				4340	}
				4341	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4342	}
				4343
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	4344	static void hci_cmd_work(struct work_struct *work)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4345	{
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	4346	struct hci_dev *hdev = container_of(work, struct hci_dev, cmd_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4347	struct sk_buff *skb;
				4348
Andrei Emeltchenko	2104786	2012-07-10 15:27:47 +0300	[diff] [blame]	4349	BT_DBG("%s cmd_cnt %d cmd queued %d", hdev->name,
				4350	atomic_read(&hdev->cmd_cnt), skb_queue_len(&hdev->cmd_q));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4351
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4352	/* Send queued commands */
Andrei Emeltchenko	5a08ecc	2011-01-11 17:20:20 +0200	[diff] [blame]	4353	if (atomic_read(&hdev->cmd_cnt)) {
				4354	skb = skb_dequeue(&hdev->cmd_q);
				4355	if (!skb)
				4356	return;
				4357
Wei Yongjun	7585b97	2009-02-25 18:29:52 +0800	[diff] [blame]	4358	kfree_skb(hdev->sent_cmd);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4359
Marcel Holtmann	a675d7f	2013-09-03 18:11:07 -0700	[diff] [blame]	4360	hdev->sent_cmd = skb_clone(skb, GFP_KERNEL);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	4361	if (hdev->sent_cmd) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4362	atomic_dec(&hdev->cmd_cnt);
Marcel Holtmann	57d17d7	2013-10-10 14:54:17 -0700	[diff] [blame]	4363	hci_send_frame(hdev, skb);
Szymon Janc	7bdb8a5	2011-07-26 22:46:54 +0200	[diff] [blame]	4364	if (test_bit(HCI_RESET, &hdev->flags))
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	4365	cancel_delayed_work(&hdev->cmd_timer);
Szymon Janc	7bdb8a5	2011-07-26 22:46:54 +0200	[diff] [blame]	4366	else
Marcel Holtmann	65cc2b4	2014-06-16 12:30:56 +0200	[diff] [blame]	4367	schedule_delayed_work(&hdev->cmd_timer,
				4368	HCI_CMD_TIMEOUT);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4369	} else {
				4370	skb_queue_head(&hdev->cmd_q, skb);
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	4371	queue_work(hdev->workqueue, &hdev->cmd_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4372	}
				4373	}
				4374	}