1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22#define pr_fmt(fmt) KBUILD_MODNAME ": %s: " fmt, __func__
23
24#include <net/tcp_states.h>
25#include <linux/nfc.h>
26#include <linux/export.h>
27
28#include "nfc.h"
29
30static struct nfc_sock_list raw_sk_list = {
31 .lock = __RW_LOCK_UNLOCKED(raw_sk_list.lock)
32};
33
34static void nfc_sock_link(struct nfc_sock_list *l, struct sock *sk)
35{
36 write_lock(&l->lock);
37 sk_add_node(sk, &l->head);
38 write_unlock(&l->lock);
39}
40
41static void nfc_sock_unlink(struct nfc_sock_list *l, struct sock *sk)
42{
43 write_lock(&l->lock);
44 sk_del_node_init(sk);
45 write_unlock(&l->lock);
46}
47
48static void rawsock_write_queue_purge(struct sock *sk)
49{
50 pr_debug("sk=%p\n", sk);
51
52 spin_lock_bh(&sk->sk_write_queue.lock);
53 __skb_queue_purge(&sk->sk_write_queue);
54 nfc_rawsock(sk)->tx_work_scheduled = false;
55 spin_unlock_bh(&sk->sk_write_queue.lock);
56}
57
58static void rawsock_report_error(struct sock *sk, int err)
59{
60 pr_debug("sk=%p err=%d\n", sk, err);
61
62 sk->sk_shutdown = SHUTDOWN_MASK;
63 sk->sk_err = -err;
64 sk->sk_error_report(sk);
65
66 rawsock_write_queue_purge(sk);
67}
68
69static int rawsock_release(struct socket *sock)
70{
71 struct sock *sk = sock->sk;
72
73 pr_debug("sock=%p sk=%p\n", sock, sk);
74
75 if (!sk)
76 return 0;
77
78 if (sock->type == SOCK_RAW)
79 nfc_sock_unlink(&raw_sk_list, sk);
80
81 sock_orphan(sk);
82 sock_put(sk);
83
84 return 0;
85}
86
87static int rawsock_connect(struct socket *sock, struct sockaddr *_addr,
88 int len, int flags)
89{
90 struct sock *sk = sock->sk;
91 struct sockaddr_nfc *addr = (struct sockaddr_nfc *)_addr;
92 struct nfc_dev *dev;
93 int rc = 0;
94
95 pr_debug("sock=%p sk=%p flags=%d\n", sock, sk, flags);
96
97 if (!addr || len < sizeof(struct sockaddr_nfc) ||
98 addr->sa_family != AF_NFC)
99 return -EINVAL;
100
101 pr_debug("addr dev_idx=%u target_idx=%u protocol=%u\n",
102 addr->dev_idx, addr->target_idx, addr->nfc_protocol);
103
104 lock_sock(sk);
105
106 if (sock->state == SS_CONNECTED) {
107 rc = -EISCONN;
108 goto error;
109 }
110
111 dev = nfc_get_device(addr->dev_idx);
112 if (!dev) {
113 rc = -ENODEV;
114 goto error;
115 }
116
117 if (addr->target_idx > dev->target_next_idx - 1 ||
118 addr->target_idx < dev->target_next_idx - dev->n_targets) {
119 rc = -EINVAL;
120 goto error;
121 }
122
123 rc = nfc_activate_target(dev, addr->target_idx, addr->nfc_protocol);
124 if (rc)
125 goto put_dev;
126
127 nfc_rawsock(sk)->dev = dev;
128 nfc_rawsock(sk)->target_idx = addr->target_idx;
129 sock->state = SS_CONNECTED;
130 sk->sk_state = TCP_ESTABLISHED;
131 sk->sk_state_change(sk);
132
133 release_sock(sk);
134 return 0;
135
136put_dev:
137 nfc_put_device(dev);
138error:
139 release_sock(sk);
140 return rc;
141}
142
143static int rawsock_add_header(struct sk_buff *skb)
144{
145 *(u8 *)skb_push(skb, NFC_HEADER_SIZE) = 0;
146
147 return 0;
148}
149
150static void rawsock_data_exchange_complete(void *context, struct sk_buff *skb,
151 int err)
152{
153 struct sock *sk = (struct sock *) context;
154
155 BUG_ON(in_irq());
156
157 pr_debug("sk=%p err=%d\n", sk, err);
158
159 if (err)
160 goto error;
161
162 err = rawsock_add_header(skb);
163 if (err)
164 goto error_skb;
165
166 err = sock_queue_rcv_skb(sk, skb);
167 if (err)
168 goto error_skb;
169
170 spin_lock_bh(&sk->sk_write_queue.lock);
171 if (!skb_queue_empty(&sk->sk_write_queue))
172 schedule_work(&nfc_rawsock(sk)->tx_work);
173 else
174 nfc_rawsock(sk)->tx_work_scheduled = false;
175 spin_unlock_bh(&sk->sk_write_queue.lock);
176
177 sock_put(sk);
178 return;
179
180error_skb:
181 kfree_skb(skb);
182
183error:
184 rawsock_report_error(sk, err);
185 sock_put(sk);
186}
187
188static void rawsock_tx_work(struct work_struct *work)
189{
190 struct sock *sk = to_rawsock_sk(work);
191 struct nfc_dev *dev = nfc_rawsock(sk)->dev;
192 u32 target_idx = nfc_rawsock(sk)->target_idx;
193 struct sk_buff *skb;
194 int rc;
195
196 pr_debug("sk=%p target_idx=%u\n", sk, target_idx);
197
198 if (sk->sk_shutdown & SEND_SHUTDOWN) {
199 rawsock_write_queue_purge(sk);
200 return;
201 }
202
203 skb = skb_dequeue(&sk->sk_write_queue);
204
205 sock_hold(sk);
206 rc = nfc_data_exchange(dev, target_idx, skb,
207 rawsock_data_exchange_complete, sk);
208 if (rc) {
209 rawsock_report_error(sk, rc);
210 sock_put(sk);
211 }
212}
213
214static int rawsock_sendmsg(struct socket *sock, struct msghdr *msg, size_t len)
215{
216 struct sock *sk = sock->sk;
217 struct nfc_dev *dev = nfc_rawsock(sk)->dev;
218 struct sk_buff *skb;
219 int rc;
220
221 pr_debug("sock=%p sk=%p len=%zu\n", sock, sk, len);
222
223 if (msg->msg_namelen)
224 return -EOPNOTSUPP;
225
226 if (sock->state != SS_CONNECTED)
227 return -ENOTCONN;
228
229 skb = nfc_alloc_send_skb(dev, sk, msg->msg_flags, len, &rc);
230 if (skb == NULL)
231 return rc;
232
233 rc = memcpy_from_msg(skb_put(skb, len), msg, len);
234 if (rc < 0) {
235 kfree_skb(skb);
236 return rc;
237 }
238
239 spin_lock_bh(&sk->sk_write_queue.lock);
240 __skb_queue_tail(&sk->sk_write_queue, skb);
241 if (!nfc_rawsock(sk)->tx_work_scheduled) {
242 schedule_work(&nfc_rawsock(sk)->tx_work);
243 nfc_rawsock(sk)->tx_work_scheduled = true;
244 }
245 spin_unlock_bh(&sk->sk_write_queue.lock);
246
247 return len;
248}
249
250static int rawsock_recvmsg(struct socket *sock, struct msghdr *msg, size_t len,
251 int flags)
252{
253 int noblock = flags & MSG_DONTWAIT;
254 struct sock *sk = sock->sk;
255 struct sk_buff *skb;
256 int copied;
257 int rc;
258
259 pr_debug("sock=%p sk=%p len=%zu flags=%d\n", sock, sk, len, flags);
260
261 skb = skb_recv_datagram(sk, flags, noblock, &rc);
262 if (!skb)
263 return rc;
264
265 copied = skb->len;
266 if (len < copied) {
267 msg->msg_flags |= MSG_TRUNC;
268 copied = len;
269 }
270
271 rc = skb_copy_datagram_msg(skb, 0, msg, copied);
272
273 skb_free_datagram(sk, skb);
274
275 return rc ? : copied;
276}
277
278static const struct proto_ops rawsock_ops = {
279 .family = PF_NFC,
280 .owner = THIS_MODULE,
281 .release = rawsock_release,
282 .bind = sock_no_bind,
283 .connect = rawsock_connect,
284 .socketpair = sock_no_socketpair,
285 .accept = sock_no_accept,
286 .getname = sock_no_getname,
287 .poll = datagram_poll,
288 .ioctl = sock_no_ioctl,
289 .listen = sock_no_listen,
290 .shutdown = sock_no_shutdown,
291 .setsockopt = sock_no_setsockopt,
292 .getsockopt = sock_no_getsockopt,
293 .sendmsg = rawsock_sendmsg,
294 .recvmsg = rawsock_recvmsg,
295 .mmap = sock_no_mmap,
296};
297
298static const struct proto_ops rawsock_raw_ops = {
299 .family = PF_NFC,
300 .owner = THIS_MODULE,
301 .release = rawsock_release,
302 .bind = sock_no_bind,
303 .connect = sock_no_connect,
304 .socketpair = sock_no_socketpair,
305 .accept = sock_no_accept,
306 .getname = sock_no_getname,
307 .poll = datagram_poll,
308 .ioctl = sock_no_ioctl,
309 .listen = sock_no_listen,
310 .shutdown = sock_no_shutdown,
311 .setsockopt = sock_no_setsockopt,
312 .getsockopt = sock_no_getsockopt,
313 .sendmsg = sock_no_sendmsg,
314 .recvmsg = rawsock_recvmsg,
315 .mmap = sock_no_mmap,
316};
317
318static void rawsock_destruct(struct sock *sk)
319{
320 pr_debug("sk=%p\n", sk);
321
322 if (sk->sk_state == TCP_ESTABLISHED) {
323 nfc_deactivate_target(nfc_rawsock(sk)->dev,
324 nfc_rawsock(sk)->target_idx,
325 NFC_TARGET_MODE_IDLE);
326 nfc_put_device(nfc_rawsock(sk)->dev);
327 }
328
329 skb_queue_purge(&sk->sk_receive_queue);
330
331 if (!sock_flag(sk, SOCK_DEAD)) {
332 pr_err("Freeing alive NFC raw socket %p\n", sk);
333 return;
334 }
335}
336
337static int rawsock_create(struct net *net, struct socket *sock,
338 const struct nfc_protocol *nfc_proto, int kern)
339{
340 struct sock *sk;
341
342 pr_debug("sock=%p\n", sock);
343
344 if ((sock->type != SOCK_SEQPACKET) && (sock->type != SOCK_RAW))
345 return -ESOCKTNOSUPPORT;
346
347 if (sock->type == SOCK_RAW)
348 sock->ops = &rawsock_raw_ops;
349 else
350 sock->ops = &rawsock_ops;
351
352 sk = sk_alloc(net, PF_NFC, GFP_ATOMIC, nfc_proto->proto, kern);
353 if (!sk)
354 return -ENOMEM;
355
356 sock_init_data(sock, sk);
357 sk->sk_protocol = nfc_proto->id;
358 sk->sk_destruct = rawsock_destruct;
359 sock->state = SS_UNCONNECTED;
360 if (sock->type == SOCK_RAW)
361 nfc_sock_link(&raw_sk_list, sk);
362 else {
363 INIT_WORK(&nfc_rawsock(sk)->tx_work, rawsock_tx_work);
364 nfc_rawsock(sk)->tx_work_scheduled = false;
365 }
366
367 return 0;
368}
369
370void nfc_send_to_raw_sock(struct nfc_dev *dev, struct sk_buff *skb,
371 u8 payload_type, u8 direction)
372{
373 struct sk_buff *skb_copy = NULL, *nskb;
374 struct sock *sk;
375 u8 *data;
376
377 read_lock(&raw_sk_list.lock);
378
379 sk_for_each(sk, &raw_sk_list.head) {
380 if (!skb_copy) {
381 skb_copy = __pskb_copy_fclone(skb, NFC_RAW_HEADER_SIZE,
382 GFP_ATOMIC, true);
383 if (!skb_copy)
384 continue;
385
386 data = skb_push(skb_copy, NFC_RAW_HEADER_SIZE);
387
388 data[0] = dev ? dev->idx : 0xFF;
389 data[1] = direction & 0x01;
390 data[1] |= (payload_type << 1);
391 }
392
393 nskb = skb_clone(skb_copy, GFP_ATOMIC);
394 if (!nskb)
395 continue;
396
397 if (sock_queue_rcv_skb(sk, nskb))
398 kfree_skb(nskb);
399 }
400
401 read_unlock(&raw_sk_list.lock);
402
403 kfree_skb(skb_copy);
404}
405EXPORT_SYMBOL(nfc_send_to_raw_sock);
406
407static struct proto rawsock_proto = {
408 .name = "NFC_RAW",
409 .owner = THIS_MODULE,
410 .obj_size = sizeof(struct nfc_rawsock),
411};
412
413static const struct nfc_protocol rawsock_nfc_proto = {
414 .id = NFC_SOCKPROTO_RAW,
415 .proto = &rawsock_proto,
416 .owner = THIS_MODULE,
417 .create = rawsock_create
418};
419
420int __init rawsock_init(void)
421{
422 int rc;
423
424 rc = nfc_proto_register(&rawsock_nfc_proto);
425
426 return rc;
427}
428
429void rawsock_exit(void)
430{
431 nfc_proto_unregister(&rawsock_nfc_proto);
432}
433
