Blame - net/bluetooth/hci_sock.c - kernel/msm-4.9

blob: 8a814bca00d71bc9f88601baa72d0517ccf4bc42 [file] [log] [blame]

YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1	/*
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	2	BlueZ - Bluetooth protocol stack for Linux
				3	Copyright (C) 2000-2001 Qualcomm Incorporated
				4
				5	Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
				6
				7	This program is free software; you can redistribute it and/or modify
				8	it under the terms of the GNU General Public License version 2 as
				9	published by the Free Software Foundation;
				10
				11	THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
				12	OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
				13	FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
				14	IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	15	CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
				16	WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
				17	ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	18	OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
				19
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	20	ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
				21	COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	22	SOFTWARE IS DISCLAIMED.
				23	*/
				24
				25	/* Bluetooth HCI sockets. */
				26
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	27	#include <linux/module.h>
				28
				29	#include <linux/types.h>
Randy Dunlap	4fc268d	2006-01-11 12:17:47 -0800	[diff] [blame]	30	#include <linux/capability.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	31	#include <linux/errno.h>
				32	#include <linux/kernel.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	33	#include <linux/slab.h>
				34	#include <linux/poll.h>
				35	#include <linux/fcntl.h>
				36	#include <linux/init.h>
				37	#include <linux/skbuff.h>
				38	#include <linux/workqueue.h>
				39	#include <linux/interrupt.h>
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	40	#include <linux/compat.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	41	#include <linux/socket.h>
				42	#include <linux/ioctl.h>
				43	#include <net/sock.h>
				44
				45	#include <asm/system.h>
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	46	#include <linux/uaccess.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	47	#include <asm/unaligned.h>
				48
				49	#include <net/bluetooth/bluetooth.h>
				50	#include <net/bluetooth/hci_core.h>
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	51	#include <net/bluetooth/hci_mon.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	52
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	53	static atomic_t monitor_promisc = ATOMIC_INIT(0);
				54
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	55	/* ----- HCI socket interface ----- */
				56
				57	static inline int hci_test_bit(int nr, void *addr)
				58	{
				59	return ((__u32 ) addr + (nr >> 5)) & ((__u32) 1 << (nr & 31));
				60	}
				61
				62	/* Security filter */
				63	static struct hci_sec_filter hci_sec_filter = {
				64	/* Packet types */
				65	0x10,
				66	/* Events */
Marcel Holtmann	dd7f552	2005-10-28 19:20:53 +0200	[diff] [blame]	67	{ 0x1000d9fe, 0x0000b00c },
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	68	/* Commands */
				69	{
				70	{ 0x0 },
				71	/* OGF_LINK_CTL */
Marcel Holtmann	7c631a6	2007-09-09 08:39:43 +0200	[diff] [blame]	72	{ 0xbe000006, 0x00000001, 0x00000000, 0x00 },
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	73	/* OGF_LINK_POLICY */
Marcel Holtmann	7c631a6	2007-09-09 08:39:43 +0200	[diff] [blame]	74	{ 0x00005200, 0x00000000, 0x00000000, 0x00 },
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	75	/* OGF_HOST_CTL */
Marcel Holtmann	7c631a6	2007-09-09 08:39:43 +0200	[diff] [blame]	76	{ 0xaab00200, 0x2b402aaa, 0x05220154, 0x00 },
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	77	/* OGF_INFO_PARAM */
Marcel Holtmann	7c631a6	2007-09-09 08:39:43 +0200	[diff] [blame]	78	{ 0x000002be, 0x00000000, 0x00000000, 0x00 },
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	79	/* OGF_STATUS_PARAM */
Marcel Holtmann	7c631a6	2007-09-09 08:39:43 +0200	[diff] [blame]	80	{ 0x000000ea, 0x00000000, 0x00000000, 0x00 }
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	81	}
				82	};
				83
				84	static struct bt_sock_list hci_sk_list = {
Robert P. J. Day	d5fb296	2008-03-28 16:17:38 -0700	[diff] [blame]	85	.lock = __RW_LOCK_UNLOCKED(hci_sk_list.lock)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	86	};
				87
				88	/* Send frame to RAW socket */
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	89	void hci_send_to_sock(struct hci_dev hdev, struct sk_buff skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	90	{
				91	struct sock *sk;
				92	struct hlist_node *node;
Marcel Holtmann	e0edf37	2012-02-20 14:50:36 +0100	[diff] [blame]	93	struct sk_buff *skb_copy = NULL;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	94
				95	BT_DBG("hdev %p len %d", hdev, skb->len);
				96
				97	read_lock(&hci_sk_list.lock);
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	98
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	99	sk_for_each(sk, node, &hci_sk_list.head) {
				100	struct hci_filter *flt;
				101	struct sk_buff *nskb;
				102
				103	if (sk->sk_state != BT_BOUND \|\| hci_pi(sk)->hdev != hdev)
				104	continue;
				105
				106	/* Don't send frame to the socket it came from */
				107	if (skb->sk == sk)
				108	continue;
				109
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	110	if (hci_pi(sk)->channel != HCI_CHANNEL_RAW)
Johan Hedberg	a40c406	2010-12-08 00:21:07 +0200	[diff] [blame]	111	continue;
				112
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	113	/* Apply filter */
				114	flt = &hci_pi(sk)->filter;
				115
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	116	if (!test_bit((bt_cb(skb)->pkt_type == HCI_VENDOR_PKT) ?
				117	0 : (bt_cb(skb)->pkt_type & HCI_FLT_TYPE_BITS), &flt->type_mask))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	118	continue;
				119
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	120	if (bt_cb(skb)->pkt_type == HCI_EVENT_PKT) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	121	register int evt = ((__u8 )skb->data & HCI_FLT_EVENT_BITS);
				122
				123	if (!hci_test_bit(evt, &flt->event_mask))
				124	continue;
				125
David S. Miller	4498c80	2006-11-21 16:17:41 -0800	[diff] [blame]	126	if (flt->opcode &&
				127	((evt == HCI_EV_CMD_COMPLETE &&
				128	flt->opcode !=
Al Viro	905f3ed	2006-12-13 00:35:01 -0800	[diff] [blame]	129	get_unaligned((__le16 *)(skb->data + 3))) \|\|
David S. Miller	4498c80	2006-11-21 16:17:41 -0800	[diff] [blame]	130	(evt == HCI_EV_CMD_STATUS &&
				131	flt->opcode !=
Al Viro	905f3ed	2006-12-13 00:35:01 -0800	[diff] [blame]	132	get_unaligned((__le16 *)(skb->data + 4)))))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	133	continue;
				134	}
				135
Marcel Holtmann	e0edf37	2012-02-20 14:50:36 +0100	[diff] [blame]	136	if (!skb_copy) {
				137	/* Create a private copy with headroom */
				138	skb_copy = __pskb_copy(skb, 1, GFP_ATOMIC);
				139	if (!skb_copy)
				140	continue;
				141
				142	/* Put type byte before the data */
				143	memcpy(skb_push(skb_copy, 1), &bt_cb(skb)->pkt_type, 1);
				144	}
				145
				146	nskb = skb_clone(skb_copy, GFP_ATOMIC);
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	147	if (!nskb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	148	continue;
				149
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	150	if (sock_queue_rcv_skb(sk, nskb))
				151	kfree_skb(nskb);
				152	}
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	153
				154	read_unlock(&hci_sk_list.lock);
Marcel Holtmann	e0edf37	2012-02-20 14:50:36 +0100	[diff] [blame]	155
				156	kfree_skb(skb_copy);
Marcel Holtmann	470fe1b	2012-02-20 14:50:30 +0100	[diff] [blame]	157	}
				158
				159	/* Send frame to control socket */
				160	void hci_send_to_control(struct sk_buff skb, struct sock skip_sk)
				161	{
				162	struct sock *sk;
				163	struct hlist_node *node;
				164
				165	BT_DBG("len %d", skb->len);
				166
				167	read_lock(&hci_sk_list.lock);
				168
				169	sk_for_each(sk, node, &hci_sk_list.head) {
				170	struct sk_buff *nskb;
				171
				172	/* Skip the original socket */
				173	if (sk == skip_sk)
				174	continue;
				175
				176	if (sk->sk_state != BT_BOUND)
				177	continue;
				178
				179	if (hci_pi(sk)->channel != HCI_CHANNEL_CONTROL)
				180	continue;
				181
				182	nskb = skb_clone(skb, GFP_ATOMIC);
				183	if (!nskb)
				184	continue;
				185
				186	if (sock_queue_rcv_skb(sk, nskb))
				187	kfree_skb(nskb);
				188	}
				189
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	190	read_unlock(&hci_sk_list.lock);
				191	}
				192
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	193	/* Send frame to monitor socket */
				194	void hci_send_to_monitor(struct hci_dev hdev, struct sk_buff skb)
				195	{
				196	struct sock *sk;
				197	struct hlist_node *node;
				198	struct sk_buff *skb_copy = NULL;
				199	__le16 opcode;
				200
				201	if (!atomic_read(&monitor_promisc))
				202	return;
				203
				204	BT_DBG("hdev %p len %d", hdev, skb->len);
				205
				206	switch (bt_cb(skb)->pkt_type) {
				207	case HCI_COMMAND_PKT:
				208	opcode = __constant_cpu_to_le16(HCI_MON_COMMAND_PKT);
				209	break;
				210	case HCI_EVENT_PKT:
				211	opcode = __constant_cpu_to_le16(HCI_MON_EVENT_PKT);
				212	break;
				213	case HCI_ACLDATA_PKT:
				214	if (bt_cb(skb)->incoming)
				215	opcode = __constant_cpu_to_le16(HCI_MON_ACL_RX_PKT);
				216	else
				217	opcode = __constant_cpu_to_le16(HCI_MON_ACL_TX_PKT);
				218	break;
				219	case HCI_SCODATA_PKT:
				220	if (bt_cb(skb)->incoming)
				221	opcode = __constant_cpu_to_le16(HCI_MON_SCO_RX_PKT);
				222	else
				223	opcode = __constant_cpu_to_le16(HCI_MON_SCO_TX_PKT);
				224	break;
				225	default:
				226	return;
				227	}
				228
				229	read_lock(&hci_sk_list.lock);
				230
				231	sk_for_each(sk, node, &hci_sk_list.head) {
				232	struct sk_buff *nskb;
				233
				234	if (sk->sk_state != BT_BOUND)
				235	continue;
				236
				237	if (hci_pi(sk)->channel != HCI_CHANNEL_MONITOR)
				238	continue;
				239
				240	if (!skb_copy) {
				241	struct hci_mon_hdr *hdr;
				242
				243	/* Create a private copy with headroom */
				244	skb_copy = __pskb_copy(skb, HCI_MON_HDR_SIZE, GFP_ATOMIC);
				245	if (!skb_copy)
				246	continue;
				247
				248	/* Put header before the data */
				249	hdr = (void *) skb_push(skb_copy, HCI_MON_HDR_SIZE);
				250	hdr->opcode = opcode;
				251	hdr->index = cpu_to_le16(hdev->id);
				252	hdr->len = cpu_to_le16(skb->len);
				253	}
				254
				255	nskb = skb_clone(skb_copy, GFP_ATOMIC);
				256	if (!nskb)
				257	continue;
				258
				259	if (sock_queue_rcv_skb(sk, nskb))
				260	kfree_skb(nskb);
				261	}
				262
				263	read_unlock(&hci_sk_list.lock);
				264
				265	kfree_skb(skb_copy);
				266	}
				267
				268	static void send_monitor_event(struct sk_buff *skb)
				269	{
				270	struct sock *sk;
				271	struct hlist_node *node;
				272
				273	BT_DBG("len %d", skb->len);
				274
				275	read_lock(&hci_sk_list.lock);
				276
				277	sk_for_each(sk, node, &hci_sk_list.head) {
				278	struct sk_buff *nskb;
				279
				280	if (sk->sk_state != BT_BOUND)
				281	continue;
				282
				283	if (hci_pi(sk)->channel != HCI_CHANNEL_MONITOR)
				284	continue;
				285
				286	nskb = skb_clone(skb, GFP_ATOMIC);
				287	if (!nskb)
				288	continue;
				289
				290	if (sock_queue_rcv_skb(sk, nskb))
				291	kfree_skb(nskb);
				292	}
				293
				294	read_unlock(&hci_sk_list.lock);
				295	}
				296
				297	static struct sk_buff create_monitor_event(struct hci_dev hdev, int event)
				298	{
				299	struct hci_mon_hdr *hdr;
				300	struct hci_mon_new_index *ni;
				301	struct sk_buff *skb;
				302	__le16 opcode;
				303
				304	switch (event) {
				305	case HCI_DEV_REG:
				306	skb = bt_skb_alloc(HCI_MON_NEW_INDEX_SIZE, GFP_ATOMIC);
				307	if (!skb)
				308	return NULL;
				309
				310	ni = (void *) skb_put(skb, HCI_MON_NEW_INDEX_SIZE);
				311	ni->type = hdev->dev_type;
				312	ni->bus = hdev->bus;
				313	bacpy(&ni->bdaddr, &hdev->bdaddr);
				314	memcpy(ni->name, hdev->name, 8);
				315
				316	opcode = __constant_cpu_to_le16(HCI_MON_NEW_INDEX);
				317	break;
				318
				319	case HCI_DEV_UNREG:
				320	skb = bt_skb_alloc(0, GFP_ATOMIC);
				321	if (!skb)
				322	return NULL;
				323
				324	opcode = __constant_cpu_to_le16(HCI_MON_DEL_INDEX);
				325	break;
				326
				327	default:
				328	return NULL;
				329	}
				330
				331	__net_timestamp(skb);
				332
				333	hdr = (void *) skb_push(skb, HCI_MON_HDR_SIZE);
				334	hdr->opcode = opcode;
				335	hdr->index = cpu_to_le16(hdev->id);
				336	hdr->len = cpu_to_le16(skb->len - HCI_MON_HDR_SIZE);
				337
				338	return skb;
				339	}
				340
				341	static void send_monitor_replay(struct sock *sk)
				342	{
				343	struct hci_dev *hdev;
				344
				345	read_lock(&hci_dev_list_lock);
				346
				347	list_for_each_entry(hdev, &hci_dev_list, list) {
				348	struct sk_buff *skb;
				349
				350	skb = create_monitor_event(hdev, HCI_DEV_REG);
				351	if (!skb)
				352	continue;
				353
				354	if (sock_queue_rcv_skb(sk, skb))
				355	kfree_skb(skb);
				356	}
				357
				358	read_unlock(&hci_dev_list_lock);
				359	}
				360
Marcel Holtmann	040030e	2012-02-20 14:50:37 +0100	[diff] [blame]	361	/* Generate internal stack event */
				362	static void hci_si_event(struct hci_dev hdev, int type, int dlen, void data)
				363	{
				364	struct hci_event_hdr *hdr;
				365	struct hci_ev_stack_internal *ev;
				366	struct sk_buff *skb;
				367
				368	skb = bt_skb_alloc(HCI_EVENT_HDR_SIZE + sizeof(*ev) + dlen, GFP_ATOMIC);
				369	if (!skb)
				370	return;
				371
				372	hdr = (void *) skb_put(skb, HCI_EVENT_HDR_SIZE);
				373	hdr->evt = HCI_EV_STACK_INTERNAL;
				374	hdr->plen = sizeof(*ev) + dlen;
				375
				376	ev = (void ) skb_put(skb, sizeof(ev) + dlen);
				377	ev->type = type;
				378	memcpy(ev->data, data, dlen);
				379
				380	bt_cb(skb)->incoming = 1;
				381	__net_timestamp(skb);
				382
				383	bt_cb(skb)->pkt_type = HCI_EVENT_PKT;
				384	skb->dev = (void *) hdev;
				385	hci_send_to_sock(hdev, skb);
				386	kfree_skb(skb);
				387	}
				388
				389	void hci_sock_dev_event(struct hci_dev *hdev, int event)
				390	{
				391	struct hci_ev_si_device ev;
				392
				393	BT_DBG("hdev %s event %d", hdev->name, event);
				394
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	395	/* Send event to monitor */
				396	if (atomic_read(&monitor_promisc)) {
				397	struct sk_buff *skb;
				398
				399	skb = create_monitor_event(hdev, event);
				400	if (skb) {
				401	send_monitor_event(skb);
				402	kfree_skb(skb);
				403	}
				404	}
				405
Marcel Holtmann	040030e	2012-02-20 14:50:37 +0100	[diff] [blame]	406	/* Send event to sockets */
				407	ev.event = event;
				408	ev.dev_id = hdev->id;
				409	hci_si_event(NULL, HCI_EV_SI_DEVICE, sizeof(ev), &ev);
				410
				411	if (event == HCI_DEV_UNREG) {
				412	struct sock *sk;
				413	struct hlist_node *node;
				414
				415	/* Detach sockets from device */
				416	read_lock(&hci_sk_list.lock);
				417	sk_for_each(sk, node, &hci_sk_list.head) {
				418	bh_lock_sock_nested(sk);
				419	if (hci_pi(sk)->hdev == hdev) {
				420	hci_pi(sk)->hdev = NULL;
				421	sk->sk_err = EPIPE;
				422	sk->sk_state = BT_OPEN;
				423	sk->sk_state_change(sk);
				424
				425	hci_dev_put(hdev);
				426	}
				427	bh_unlock_sock(sk);
				428	}
				429	read_unlock(&hci_sk_list.lock);
				430	}
				431	}
				432
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	433	static int hci_sock_release(struct socket *sock)
				434	{
				435	struct sock *sk = sock->sk;
Marcel Holtmann	7b005bd	2006-02-13 11:40:03 +0100	[diff] [blame]	436	struct hci_dev *hdev;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	437
				438	BT_DBG("sock %p sk %p", sock, sk);
				439
				440	if (!sk)
				441	return 0;
				442
Marcel Holtmann	7b005bd	2006-02-13 11:40:03 +0100	[diff] [blame]	443	hdev = hci_pi(sk)->hdev;
				444
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	445	if (hci_pi(sk)->channel == HCI_CHANNEL_MONITOR)
				446	atomic_dec(&monitor_promisc);
				447
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	448	bt_sock_unlink(&hci_sk_list, sk);
				449
				450	if (hdev) {
				451	atomic_dec(&hdev->promisc);
				452	hci_dev_put(hdev);
				453	}
				454
				455	sock_orphan(sk);
				456
				457	skb_queue_purge(&sk->sk_receive_queue);
				458	skb_queue_purge(&sk->sk_write_queue);
				459
				460	sock_put(sk);
				461	return 0;
				462	}
				463
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	464	static int hci_sock_blacklist_add(struct hci_dev hdev, void __user arg)
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	465	{
				466	bdaddr_t bdaddr;
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	467	int err;
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	468
				469	if (copy_from_user(&bdaddr, arg, sizeof(bdaddr)))
				470	return -EFAULT;
				471
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	472	hci_dev_lock(hdev);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	473
Johan Hedberg	88c1fe4	2012-02-09 15:56:11 +0200	[diff] [blame]	474	err = hci_blacklist_add(hdev, &bdaddr, 0);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	475
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	476	hci_dev_unlock(hdev);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	477
				478	return err;
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	479	}
				480
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	481	static int hci_sock_blacklist_del(struct hci_dev hdev, void __user arg)
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	482	{
				483	bdaddr_t bdaddr;
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	484	int err;
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	485
				486	if (copy_from_user(&bdaddr, arg, sizeof(bdaddr)))
				487	return -EFAULT;
				488
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	489	hci_dev_lock(hdev);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	490
Johan Hedberg	88c1fe4	2012-02-09 15:56:11 +0200	[diff] [blame]	491	err = hci_blacklist_del(hdev, &bdaddr, 0);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	492
Gustavo F. Padovan	09fd0de	2011-06-17 13:03:21 -0300	[diff] [blame]	493	hci_dev_unlock(hdev);
Antti Julku	5e76244	2011-08-25 16:48:02 +0300	[diff] [blame]	494
				495	return err;
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	496	}
				497
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	498	/* Ioctls that require bound socket */
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	499	static inline int hci_sock_bound_ioctl(struct sock *sk, unsigned int cmd, unsigned long arg)
				500	{
				501	struct hci_dev *hdev = hci_pi(sk)->hdev;
				502
				503	if (!hdev)
				504	return -EBADFD;
				505
				506	switch (cmd) {
				507	case HCISETRAW:
				508	if (!capable(CAP_NET_ADMIN))
				509	return -EACCES;
				510
				511	if (test_bit(HCI_QUIRK_RAW_DEVICE, &hdev->quirks))
				512	return -EPERM;
				513
				514	if (arg)
				515	set_bit(HCI_RAW, &hdev->flags);
				516	else
				517	clear_bit(HCI_RAW, &hdev->flags);
				518
				519	return 0;
				520
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	521	case HCIGETCONNINFO:
Marcel Holtmann	40be492	2008-07-14 20:13:50 +0200	[diff] [blame]	522	return hci_get_conn_info(hdev, (void __user *) arg);
				523
				524	case HCIGETAUTHINFO:
				525	return hci_get_auth_info(hdev, (void __user *) arg);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	526
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	527	case HCIBLOCKADDR:
				528	if (!capable(CAP_NET_ADMIN))
				529	return -EACCES;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	530	return hci_sock_blacklist_add(hdev, (void __user *) arg);
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	531
				532	case HCIUNBLOCKADDR:
				533	if (!capable(CAP_NET_ADMIN))
				534	return -EACCES;
Antti Julku	b2a66aa	2011-06-15 12:01:14 +0300	[diff] [blame]	535	return hci_sock_blacklist_del(hdev, (void __user *) arg);
Johan Hedberg	f035856	2010-05-18 13:20:32 +0200	[diff] [blame]	536
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	537	default:
				538	if (hdev->ioctl)
				539	return hdev->ioctl(hdev, cmd, arg);
				540	return -EINVAL;
				541	}
				542	}
				543
				544	static int hci_sock_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
				545	{
				546	struct sock *sk = sock->sk;
Marcel Holtmann	40be492	2008-07-14 20:13:50 +0200	[diff] [blame]	547	void __user argp = (void __user ) arg;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	548	int err;
				549
				550	BT_DBG("cmd %x arg %lx", cmd, arg);
				551
				552	switch (cmd) {
				553	case HCIGETDEVLIST:
				554	return hci_get_dev_list(argp);
				555
				556	case HCIGETDEVINFO:
				557	return hci_get_dev_info(argp);
				558
				559	case HCIGETCONNLIST:
				560	return hci_get_conn_list(argp);
				561
				562	case HCIDEVUP:
				563	if (!capable(CAP_NET_ADMIN))
				564	return -EACCES;
				565	return hci_dev_open(arg);
				566
				567	case HCIDEVDOWN:
				568	if (!capable(CAP_NET_ADMIN))
				569	return -EACCES;
				570	return hci_dev_close(arg);
				571
				572	case HCIDEVRESET:
				573	if (!capable(CAP_NET_ADMIN))
				574	return -EACCES;
				575	return hci_dev_reset(arg);
				576
				577	case HCIDEVRESTAT:
				578	if (!capable(CAP_NET_ADMIN))
				579	return -EACCES;
				580	return hci_dev_reset_stat(arg);
				581
				582	case HCISETSCAN:
				583	case HCISETAUTH:
				584	case HCISETENCRYPT:
				585	case HCISETPTYPE:
				586	case HCISETLINKPOL:
				587	case HCISETLINKMODE:
				588	case HCISETACLMTU:
				589	case HCISETSCOMTU:
				590	if (!capable(CAP_NET_ADMIN))
				591	return -EACCES;
				592	return hci_dev_cmd(cmd, argp);
				593
				594	case HCIINQUIRY:
				595	return hci_inquiry(argp);
				596
				597	default:
				598	lock_sock(sk);
				599	err = hci_sock_bound_ioctl(sk, cmd, arg);
				600	release_sock(sk);
				601	return err;
				602	}
				603	}
				604
				605	static int hci_sock_bind(struct socket sock, struct sockaddr addr, int addr_len)
				606	{
Johan Hedberg	0381101	2010-12-08 00:21:06 +0200	[diff] [blame]	607	struct sockaddr_hci haddr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	608	struct sock *sk = sock->sk;
				609	struct hci_dev *hdev = NULL;
Johan Hedberg	0381101	2010-12-08 00:21:06 +0200	[diff] [blame]	610	int len, err = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	611
				612	BT_DBG("sock %p sk %p", sock, sk);
				613
Johan Hedberg	0381101	2010-12-08 00:21:06 +0200	[diff] [blame]	614	if (!addr)
				615	return -EINVAL;
				616
				617	memset(&haddr, 0, sizeof(haddr));
				618	len = min_t(unsigned int, sizeof(haddr), addr_len);
				619	memcpy(&haddr, addr, len);
				620
				621	if (haddr.hci_family != AF_BLUETOOTH)
				622	return -EINVAL;
				623
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	624	lock_sock(sk);
				625
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	626	if (sk->sk_state == BT_BOUND) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	627	err = -EALREADY;
				628	goto done;
				629	}
				630
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	631	switch (haddr.hci_channel) {
				632	case HCI_CHANNEL_RAW:
				633	if (hci_pi(sk)->hdev) {
				634	err = -EALREADY;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	635	goto done;
				636	}
				637
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	638	if (haddr.hci_dev != HCI_DEV_NONE) {
				639	hdev = hci_dev_get(haddr.hci_dev);
				640	if (!hdev) {
				641	err = -ENODEV;
				642	goto done;
				643	}
				644
				645	atomic_inc(&hdev->promisc);
				646	}
				647
				648	hci_pi(sk)->hdev = hdev;
				649	break;
				650
				651	case HCI_CHANNEL_CONTROL:
Marcel Holtmann	4b95a24	2012-02-20 21:24:37 +0100	[diff] [blame]	652	if (haddr.hci_dev != HCI_DEV_NONE) {
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	653	err = -EINVAL;
				654	goto done;
				655	}
				656
Marcel Holtmann	801f13b	2012-02-20 20:54:10 +0100	[diff] [blame]	657	if (!capable(CAP_NET_ADMIN)) {
				658	err = -EPERM;
				659	goto done;
				660	}
				661
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	662	set_bit(HCI_PI_MGMT_INIT, &hci_pi(sk)->flags);
				663	break;
				664
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	665	case HCI_CHANNEL_MONITOR:
				666	if (haddr.hci_dev != HCI_DEV_NONE) {
				667	err = -EINVAL;
				668	goto done;
				669	}
				670
				671	if (!capable(CAP_NET_RAW)) {
				672	err = -EPERM;
				673	goto done;
				674	}
				675
				676	send_monitor_replay(sk);
				677
				678	atomic_inc(&monitor_promisc);
				679	break;
				680
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	681	default:
				682	err = -EINVAL;
				683	goto done;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	684	}
				685
Marcel Holtmann	7cc2ade	2012-02-20 14:50:35 +0100	[diff] [blame]	686
Johan Hedberg	0381101	2010-12-08 00:21:06 +0200	[diff] [blame]	687	hci_pi(sk)->channel = haddr.hci_channel;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	688	sk->sk_state = BT_BOUND;
				689
				690	done:
				691	release_sock(sk);
				692	return err;
				693	}
				694
				695	static int hci_sock_getname(struct socket sock, struct sockaddr addr, int *addr_len, int peer)
				696	{
				697	struct sockaddr_hci haddr = (struct sockaddr_hci ) addr;
				698	struct sock *sk = sock->sk;
Marcel Holtmann	7b005bd	2006-02-13 11:40:03 +0100	[diff] [blame]	699	struct hci_dev *hdev = hci_pi(sk)->hdev;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	700
				701	BT_DBG("sock %p sk %p", sock, sk);
				702
Marcel Holtmann	7b005bd	2006-02-13 11:40:03 +0100	[diff] [blame]	703	if (!hdev)
				704	return -EBADFD;
				705
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	706	lock_sock(sk);
				707
				708	addr_len = sizeof(haddr);
				709	haddr->hci_family = AF_BLUETOOTH;
Marcel Holtmann	7b005bd	2006-02-13 11:40:03 +0100	[diff] [blame]	710	haddr->hci_dev = hdev->id;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	711
				712	release_sock(sk);
				713	return 0;
				714	}
				715
				716	static inline void hci_sock_cmsg(struct sock sk, struct msghdr msg, struct sk_buff *skb)
				717	{
				718	__u32 mask = hci_pi(sk)->cmsg_mask;
				719
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	720	if (mask & HCI_CMSG_DIR) {
				721	int incoming = bt_cb(skb)->incoming;
				722	put_cmsg(msg, SOL_HCI, HCI_CMSG_DIR, sizeof(incoming), &incoming);
				723	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	724
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	725	if (mask & HCI_CMSG_TSTAMP) {
Johann Felix Soden	f6e623a	2010-02-15 22:23:48 +0100	[diff] [blame]	726	#ifdef CONFIG_COMPAT
				727	struct compat_timeval ctv;
				728	#endif
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	729	struct timeval tv;
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	730	void *data;
				731	int len;
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	732
				733	skb_get_timestamp(skb, &tv);
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	734
David S. Miller	1da97f8	2007-09-12 14:10:58 +0200	[diff] [blame]	735	data = &tv;
				736	len = sizeof(tv);
				737	#ifdef CONFIG_COMPAT
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	738	if (msg->msg_flags & MSG_CMSG_COMPAT) {
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	739	ctv.tv_sec = tv.tv_sec;
				740	ctv.tv_usec = tv.tv_usec;
				741	data = &ctv;
				742	len = sizeof(ctv);
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	743	}
David S. Miller	1da97f8	2007-09-12 14:10:58 +0200	[diff] [blame]	744	#endif
Marcel Holtmann	767c5eb	2007-09-09 08:39:34 +0200	[diff] [blame]	745
				746	put_cmsg(msg, SOL_HCI, HCI_CMSG_TSTAMP, len, data);
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	747	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	748	}
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	749
				750	static int hci_sock_recvmsg(struct kiocb iocb, struct socket sock,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	751	struct msghdr *msg, size_t len, int flags)
				752	{
				753	int noblock = flags & MSG_DONTWAIT;
				754	struct sock *sk = sock->sk;
				755	struct sk_buff *skb;
				756	int copied, err;
				757
				758	BT_DBG("sock %p, sk %p", sock, sk);
				759
				760	if (flags & (MSG_OOB))
				761	return -EOPNOTSUPP;
				762
				763	if (sk->sk_state == BT_CLOSED)
				764	return 0;
				765
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	766	skb = skb_recv_datagram(sk, flags, noblock, &err);
				767	if (!skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	768	return err;
				769
				770	msg->msg_namelen = 0;
				771
				772	copied = skb->len;
				773	if (len < copied) {
				774	msg->msg_flags \|= MSG_TRUNC;
				775	copied = len;
				776	}
				777
Arnaldo Carvalho de Melo	badff6d	2007-03-13 13:06:52 -0300	[diff] [blame]	778	skb_reset_transport_header(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	779	err = skb_copy_datagram_iovec(skb, 0, msg->msg_iov, copied);
				780
Marcel Holtmann	3a20862	2012-02-20 14:50:34 +0100	[diff] [blame]	781	switch (hci_pi(sk)->channel) {
				782	case HCI_CHANNEL_RAW:
				783	hci_sock_cmsg(sk, msg, skb);
				784	break;
Marcel Holtmann	97e0bde	2012-02-22 13:49:28 +0100	[diff] [blame^]	785	case HCI_CHANNEL_CONTROL:
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	786	case HCI_CHANNEL_MONITOR:
				787	sock_recv_timestamp(msg, sk, skb);
				788	break;
Marcel Holtmann	3a20862	2012-02-20 14:50:34 +0100	[diff] [blame]	789	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	790
				791	skb_free_datagram(sk, skb);
				792
				793	return err ? : copied;
				794	}
				795
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	796	static int hci_sock_sendmsg(struct kiocb iocb, struct socket sock,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	797	struct msghdr *msg, size_t len)
				798	{
				799	struct sock *sk = sock->sk;
				800	struct hci_dev *hdev;
				801	struct sk_buff *skb;
				802	int err;
				803
				804	BT_DBG("sock %p sk %p", sock, sk);
				805
				806	if (msg->msg_flags & MSG_OOB)
				807	return -EOPNOTSUPP;
				808
				809	if (msg->msg_flags & ~(MSG_DONTWAIT\|MSG_NOSIGNAL\|MSG_ERRQUEUE))
				810	return -EINVAL;
				811
				812	if (len < 4 \|\| len > HCI_MAX_FRAME_SIZE)
				813	return -EINVAL;
				814
				815	lock_sock(sk);
				816
Johan Hedberg	0381101	2010-12-08 00:21:06 +0200	[diff] [blame]	817	switch (hci_pi(sk)->channel) {
				818	case HCI_CHANNEL_RAW:
				819	break;
				820	case HCI_CHANNEL_CONTROL:
				821	err = mgmt_control(sk, msg, len);
				822	goto done;
Marcel Holtmann	cd82e61	2012-02-20 20:34:38 +0100	[diff] [blame]	823	case HCI_CHANNEL_MONITOR:
				824	err = -EOPNOTSUPP;
				825	goto done;
Johan Hedberg	0381101	2010-12-08 00:21:06 +0200	[diff] [blame]	826	default:
				827	err = -EINVAL;
				828	goto done;
				829	}
				830
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	831	hdev = hci_pi(sk)->hdev;
				832	if (!hdev) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	833	err = -EBADFD;
				834	goto done;
				835	}
				836
Marcel Holtmann	7e21add	2009-11-18 01:05:00 +0100	[diff] [blame]	837	if (!test_bit(HCI_UP, &hdev->flags)) {
				838	err = -ENETDOWN;
				839	goto done;
				840	}
				841
Andrei Emeltchenko	70f23020	2010-12-01 16:58:25 +0200	[diff] [blame]	842	skb = bt_skb_send_alloc(sk, len, msg->msg_flags & MSG_DONTWAIT, &err);
				843	if (!skb)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	844	goto done;
				845
				846	if (memcpy_fromiovec(skb_put(skb, len), msg->msg_iov, len)) {
				847	err = -EFAULT;
				848	goto drop;
				849	}
				850
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	851	bt_cb(skb)->pkt_type = ((unsigned char ) skb->data);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	852	skb_pull(skb, 1);
				853	skb->dev = (void *) hdev;
				854
Marcel Holtmann	0d48d93	2005-08-09 20:30:28 -0700	[diff] [blame]	855	if (bt_cb(skb)->pkt_type == HCI_COMMAND_PKT) {
Harvey Harrison	8398531	2008-05-02 16:25:46 -0700	[diff] [blame]	856	u16 opcode = get_unaligned_le16(skb->data);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	857	u16 ogf = hci_opcode_ogf(opcode);
				858	u16 ocf = hci_opcode_ocf(opcode);
				859
				860	if (((ogf > HCI_SFLT_MAX_OGF) \|\|
				861	!hci_test_bit(ocf & HCI_FLT_OCF_BITS, &hci_sec_filter.ocf_mask[ogf])) &&
				862	!capable(CAP_NET_RAW)) {
				863	err = -EPERM;
				864	goto drop;
				865	}
				866
Marcel Holtmann	a9de924	2007-10-20 13:33:56 +0200	[diff] [blame]	867	if (test_bit(HCI_RAW, &hdev->flags) \|\| (ogf == 0x3f)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	868	skb_queue_tail(&hdev->raw_q, skb);
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	869	queue_work(hdev->workqueue, &hdev->tx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	870	} else {
				871	skb_queue_tail(&hdev->cmd_q, skb);
Gustavo F. Padovan	c347b76	2011-12-14 23:53:47 -0200	[diff] [blame]	872	queue_work(hdev->workqueue, &hdev->cmd_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	873	}
				874	} else {
				875	if (!capable(CAP_NET_RAW)) {
				876	err = -EPERM;
				877	goto drop;
				878	}
				879
				880	skb_queue_tail(&hdev->raw_q, skb);
Gustavo F. Padovan	3eff45e	2011-12-15 00:50:02 -0200	[diff] [blame]	881	queue_work(hdev->workqueue, &hdev->tx_work);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	882	}
				883
				884	err = len;
				885
				886	done:
				887	release_sock(sk);
				888	return err;
				889
				890	drop:
				891	kfree_skb(skb);
				892	goto done;
				893	}
				894
David S. Miller	b705884	2009-09-30 16:12:20 -0700	[diff] [blame]	895	static int hci_sock_setsockopt(struct socket sock, int level, int optname, char __user optval, unsigned int len)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	896	{
				897	struct hci_ufilter uf = { .opcode = 0 };
				898	struct sock *sk = sock->sk;
				899	int err = 0, opt = 0;
				900
				901	BT_DBG("sk %p, opt %d", sk, optname);
				902
				903	lock_sock(sk);
				904
Marcel Holtmann	2f39cdb	2012-02-20 14:50:32 +0100	[diff] [blame]	905	if (hci_pi(sk)->channel != HCI_CHANNEL_RAW) {
				906	err = -EINVAL;
				907	goto done;
				908	}
				909
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	910	switch (optname) {
				911	case HCI_DATA_DIR:
				912	if (get_user(opt, (int __user *)optval)) {
				913	err = -EFAULT;
				914	break;
				915	}
				916
				917	if (opt)
				918	hci_pi(sk)->cmsg_mask \|= HCI_CMSG_DIR;
				919	else
				920	hci_pi(sk)->cmsg_mask &= ~HCI_CMSG_DIR;
				921	break;
				922
				923	case HCI_TIME_STAMP:
				924	if (get_user(opt, (int __user *)optval)) {
				925	err = -EFAULT;
				926	break;
				927	}
				928
				929	if (opt)
				930	hci_pi(sk)->cmsg_mask \|= HCI_CMSG_TSTAMP;
				931	else
				932	hci_pi(sk)->cmsg_mask &= ~HCI_CMSG_TSTAMP;
				933	break;
				934
				935	case HCI_FILTER:
Marcel Holtmann	0878b66	2007-05-05 00:35:59 +0200	[diff] [blame]	936	{
				937	struct hci_filter *f = &hci_pi(sk)->filter;
				938
				939	uf.type_mask = f->type_mask;
				940	uf.opcode = f->opcode;
				941	uf.event_mask[0] = ((u32 ) f->event_mask + 0);
				942	uf.event_mask[1] = ((u32 ) f->event_mask + 1);
				943	}
				944
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	945	len = min_t(unsigned int, len, sizeof(uf));
				946	if (copy_from_user(&uf, optval, len)) {
				947	err = -EFAULT;
				948	break;
				949	}
				950
				951	if (!capable(CAP_NET_RAW)) {
				952	uf.type_mask &= hci_sec_filter.type_mask;
				953	uf.event_mask[0] &= ((u32 ) hci_sec_filter.event_mask + 0);
				954	uf.event_mask[1] &= ((u32 ) hci_sec_filter.event_mask + 1);
				955	}
				956
				957	{
				958	struct hci_filter *f = &hci_pi(sk)->filter;
				959
				960	f->type_mask = uf.type_mask;
				961	f->opcode = uf.opcode;
				962	((u32 ) f->event_mask + 0) = uf.event_mask[0];
				963	((u32 ) f->event_mask + 1) = uf.event_mask[1];
				964	}
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	965	break;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	966
				967	default:
				968	err = -ENOPROTOOPT;
				969	break;
				970	}
				971
Marcel Holtmann	2f39cdb	2012-02-20 14:50:32 +0100	[diff] [blame]	972	done:
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	973	release_sock(sk);
				974	return err;
				975	}
				976
				977	static int hci_sock_getsockopt(struct socket sock, int level, int optname, char __user optval, int __user *optlen)
				978	{
				979	struct hci_ufilter uf;
				980	struct sock *sk = sock->sk;
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	981	int len, opt, err = 0;
				982
				983	BT_DBG("sk %p, opt %d", sk, optname);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	984
				985	if (get_user(len, optlen))
				986	return -EFAULT;
				987
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	988	lock_sock(sk);
				989
				990	if (hci_pi(sk)->channel != HCI_CHANNEL_RAW) {
				991	err = -EINVAL;
				992	goto done;
				993	}
				994
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	995	switch (optname) {
				996	case HCI_DATA_DIR:
				997	if (hci_pi(sk)->cmsg_mask & HCI_CMSG_DIR)
				998	opt = 1;
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	999	else
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1000	opt = 0;
				1001
				1002	if (put_user(opt, optval))
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	1003	err = -EFAULT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1004	break;
				1005
				1006	case HCI_TIME_STAMP:
				1007	if (hci_pi(sk)->cmsg_mask & HCI_CMSG_TSTAMP)
				1008	opt = 1;
YOSHIFUJI Hideaki	8e87d14	2007-02-09 23:24:33 +0900	[diff] [blame]	1009	else
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1010	opt = 0;
				1011
				1012	if (put_user(opt, optval))
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	1013	err = -EFAULT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1014	break;
				1015
				1016	case HCI_FILTER:
				1017	{
				1018	struct hci_filter *f = &hci_pi(sk)->filter;
				1019
				1020	uf.type_mask = f->type_mask;
				1021	uf.opcode = f->opcode;
				1022	uf.event_mask[0] = ((u32 ) f->event_mask + 0);
				1023	uf.event_mask[1] = ((u32 ) f->event_mask + 1);
				1024	}
				1025
				1026	len = min_t(unsigned int, len, sizeof(uf));
				1027	if (copy_to_user(optval, &uf, len))
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	1028	err = -EFAULT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1029	break;
				1030
				1031	default:
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	1032	err = -ENOPROTOOPT;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1033	break;
				1034	}
				1035
Marcel Holtmann	cedc546	2012-02-20 14:50:33 +0100	[diff] [blame]	1036	done:
				1037	release_sock(sk);
				1038	return err;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1039	}
				1040
Eric Dumazet	90ddc4f	2005-12-22 12:49:22 -0800	[diff] [blame]	1041	static const struct proto_ops hci_sock_ops = {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1042	.family = PF_BLUETOOTH,
				1043	.owner = THIS_MODULE,
				1044	.release = hci_sock_release,
				1045	.bind = hci_sock_bind,
				1046	.getname = hci_sock_getname,
				1047	.sendmsg = hci_sock_sendmsg,
				1048	.recvmsg = hci_sock_recvmsg,
				1049	.ioctl = hci_sock_ioctl,
				1050	.poll = datagram_poll,
				1051	.listen = sock_no_listen,
				1052	.shutdown = sock_no_shutdown,
				1053	.setsockopt = hci_sock_setsockopt,
				1054	.getsockopt = hci_sock_getsockopt,
				1055	.connect = sock_no_connect,
				1056	.socketpair = sock_no_socketpair,
				1057	.accept = sock_no_accept,
				1058	.mmap = sock_no_mmap
				1059	};
				1060
				1061	static struct proto hci_sk_proto = {
				1062	.name = "HCI",
				1063	.owner = THIS_MODULE,
				1064	.obj_size = sizeof(struct hci_pinfo)
				1065	};
				1066
Eric Paris	3f378b6	2009-11-05 22:18:14 -0800	[diff] [blame]	1067	static int hci_sock_create(struct net net, struct socket sock, int protocol,
				1068	int kern)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1069	{
				1070	struct sock *sk;
				1071
				1072	BT_DBG("sock %p", sock);
				1073
				1074	if (sock->type != SOCK_RAW)
				1075	return -ESOCKTNOSUPPORT;
				1076
				1077	sock->ops = &hci_sock_ops;
				1078
Pavel Emelyanov	6257ff2	2007-11-01 00:39:31 -0700	[diff] [blame]	1079	sk = sk_alloc(net, PF_BLUETOOTH, GFP_ATOMIC, &hci_sk_proto);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1080	if (!sk)
				1081	return -ENOMEM;
				1082
				1083	sock_init_data(sock, sk);
				1084
				1085	sock_reset_flag(sk, SOCK_ZAPPED);
				1086
				1087	sk->sk_protocol = protocol;
				1088
				1089	sock->state = SS_UNCONNECTED;
				1090	sk->sk_state = BT_OPEN;
				1091
				1092	bt_sock_link(&hci_sk_list, sk);
				1093	return 0;
				1094	}
				1095
Stephen Hemminger	ec1b4cf	2009-10-05 05:58:39 +0000	[diff] [blame]	1096	static const struct net_proto_family hci_sock_family_ops = {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1097	.family = PF_BLUETOOTH,
				1098	.owner = THIS_MODULE,
				1099	.create = hci_sock_create,
				1100	};
				1101
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1102	int __init hci_sock_init(void)
				1103	{
				1104	int err;
				1105
				1106	err = proto_register(&hci_sk_proto, 0);
				1107	if (err < 0)
				1108	return err;
				1109
				1110	err = bt_sock_register(BTPROTO_HCI, &hci_sock_family_ops);
				1111	if (err < 0)
				1112	goto error;
				1113
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1114	BT_INFO("HCI socket layer initialized");
				1115
				1116	return 0;
				1117
				1118	error:
				1119	BT_ERR("HCI socket registration failed");
				1120	proto_unregister(&hci_sk_proto);
				1121	return err;
				1122	}
				1123
Anand Gadiyar	b7440a14	2011-02-22 12:43:09 +0530	[diff] [blame]	1124	void hci_sock_cleanup(void)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1125	{
				1126	if (bt_sock_unregister(BTPROTO_HCI) < 0)
				1127	BT_ERR("HCI socket unregistration failed");
				1128
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1129	proto_unregister(&hci_sk_proto);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1130	}