2 * Char device for device raw access
4 * Copyright (C) 2005-2007 Kristian Hoegsberg <krh@bitplanet.net>
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software Foundation,
18 * Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
21 #include <linux/bug.h>
22 #include <linux/compat.h>
23 #include <linux/delay.h>
24 #include <linux/device.h>
25 #include <linux/errno.h>
26 #include <linux/firewire.h>
27 #include <linux/firewire-cdev.h>
28 #include <linux/idr.h>
29 #include <linux/irqflags.h>
30 #include <linux/jiffies.h>
31 #include <linux/kernel.h>
32 #include <linux/kref.h>
34 #include <linux/module.h>
35 #include <linux/mutex.h>
36 #include <linux/poll.h>
37 #include <linux/sched.h>
38 #include <linux/spinlock.h>
39 #include <linux/string.h>
40 #include <linux/time.h>
41 #include <linux/uaccess.h>
42 #include <linux/vmalloc.h>
43 #include <linux/wait.h>
44 #include <linux/workqueue.h>
46 #include <asm/system.h>
51 * ABI version history is documented in linux/firewire-cdev.h.
53 #define FW_CDEV_KERNEL_VERSION 4
54 #define FW_CDEV_VERSION_EVENT_REQUEST2 4
58 struct fw_device *device;
62 struct idr resource_idr;
63 struct list_head event_list;
64 wait_queue_head_t wait;
65 u64 bus_reset_closure;
67 struct fw_iso_context *iso_context;
69 struct fw_iso_buffer buffer;
70 unsigned long vm_start;
72 struct list_head phy_receiver_link;
73 u64 phy_receiver_closure;
75 struct list_head link;
79 static inline void client_get(struct client *client)
81 kref_get(&client->kref);
84 static void client_release(struct kref *kref)
86 struct client *client = container_of(kref, struct client, kref);
88 fw_device_put(client->device);
92 static void client_put(struct client *client)
94 kref_put(&client->kref, client_release);
97 struct client_resource;
98 typedef void (*client_resource_release_fn_t)(struct client *,
99 struct client_resource *);
100 struct client_resource {
101 client_resource_release_fn_t release;
105 struct address_handler_resource {
106 struct client_resource resource;
107 struct fw_address_handler handler;
109 struct client *client;
112 struct outbound_transaction_resource {
113 struct client_resource resource;
114 struct fw_transaction transaction;
117 struct inbound_transaction_resource {
118 struct client_resource resource;
119 struct fw_card *card;
120 struct fw_request *request;
125 struct descriptor_resource {
126 struct client_resource resource;
127 struct fw_descriptor descriptor;
131 struct iso_resource {
132 struct client_resource resource;
133 struct client *client;
134 /* Schedule work and access todo only with client->lock held. */
135 struct delayed_work work;
136 enum {ISO_RES_ALLOC, ISO_RES_REALLOC, ISO_RES_DEALLOC,
137 ISO_RES_ALLOC_ONCE, ISO_RES_DEALLOC_ONCE,} todo;
141 __be32 transaction_data[2];
142 struct iso_resource_event *e_alloc, *e_dealloc;
145 static void release_iso_resource(struct client *, struct client_resource *);
147 static void schedule_iso_resource(struct iso_resource *r, unsigned long delay)
149 client_get(r->client);
150 if (!schedule_delayed_work(&r->work, delay))
151 client_put(r->client);
154 static void schedule_if_iso_resource(struct client_resource *resource)
156 if (resource->release == release_iso_resource)
157 schedule_iso_resource(container_of(resource,
158 struct iso_resource, resource), 0);
162 * dequeue_event() just kfree()'s the event, so the event has to be
163 * the first field in a struct XYZ_event.
166 struct { void *data; size_t size; } v[2];
167 struct list_head link;
170 struct bus_reset_event {
172 struct fw_cdev_event_bus_reset reset;
175 struct outbound_transaction_event {
177 struct client *client;
178 struct outbound_transaction_resource r;
179 struct fw_cdev_event_response response;
182 struct inbound_transaction_event {
185 struct fw_cdev_event_request request;
186 struct fw_cdev_event_request2 request2;
190 struct iso_interrupt_event {
192 struct fw_cdev_event_iso_interrupt interrupt;
195 struct iso_resource_event {
197 struct fw_cdev_event_iso_resource iso_resource;
200 struct outbound_phy_packet_event {
202 struct client *client;
204 struct fw_cdev_event_phy_packet phy_packet;
207 struct inbound_phy_packet_event {
209 struct fw_cdev_event_phy_packet phy_packet;
212 static inline void __user *u64_to_uptr(__u64 value)
214 return (void __user *)(unsigned long)value;
217 static inline __u64 uptr_to_u64(void __user *ptr)
219 return (__u64)(unsigned long)ptr;
222 static int fw_device_op_open(struct inode *inode, struct file *file)
224 struct fw_device *device;
225 struct client *client;
227 device = fw_device_get_by_devt(inode->i_rdev);
231 if (fw_device_is_shutdown(device)) {
232 fw_device_put(device);
236 client = kzalloc(sizeof(*client), GFP_KERNEL);
237 if (client == NULL) {
238 fw_device_put(device);
242 client->device = device;
243 spin_lock_init(&client->lock);
244 idr_init(&client->resource_idr);
245 INIT_LIST_HEAD(&client->event_list);
246 init_waitqueue_head(&client->wait);
247 INIT_LIST_HEAD(&client->phy_receiver_link);
248 kref_init(&client->kref);
250 file->private_data = client;
252 mutex_lock(&device->client_list_mutex);
253 list_add_tail(&client->link, &device->client_list);
254 mutex_unlock(&device->client_list_mutex);
256 return nonseekable_open(inode, file);
259 static void queue_event(struct client *client, struct event *event,
260 void *data0, size_t size0, void *data1, size_t size1)
264 event->v[0].data = data0;
265 event->v[0].size = size0;
266 event->v[1].data = data1;
267 event->v[1].size = size1;
269 spin_lock_irqsave(&client->lock, flags);
270 if (client->in_shutdown)
273 list_add_tail(&event->link, &client->event_list);
274 spin_unlock_irqrestore(&client->lock, flags);
276 wake_up_interruptible(&client->wait);
279 static int dequeue_event(struct client *client,
280 char __user *buffer, size_t count)
286 ret = wait_event_interruptible(client->wait,
287 !list_empty(&client->event_list) ||
288 fw_device_is_shutdown(client->device));
292 if (list_empty(&client->event_list) &&
293 fw_device_is_shutdown(client->device))
296 spin_lock_irq(&client->lock);
297 event = list_first_entry(&client->event_list, struct event, link);
298 list_del(&event->link);
299 spin_unlock_irq(&client->lock);
302 for (i = 0; i < ARRAY_SIZE(event->v) && total < count; i++) {
303 size = min(event->v[i].size, count - total);
304 if (copy_to_user(buffer + total, event->v[i].data, size)) {
318 static ssize_t fw_device_op_read(struct file *file, char __user *buffer,
319 size_t count, loff_t *offset)
321 struct client *client = file->private_data;
323 return dequeue_event(client, buffer, count);
326 static void fill_bus_reset_event(struct fw_cdev_event_bus_reset *event,
327 struct client *client)
329 struct fw_card *card = client->device->card;
331 spin_lock_irq(&card->lock);
333 event->closure = client->bus_reset_closure;
334 event->type = FW_CDEV_EVENT_BUS_RESET;
335 event->generation = client->device->generation;
336 event->node_id = client->device->node_id;
337 event->local_node_id = card->local_node->node_id;
338 event->bm_node_id = card->bm_node_id;
339 event->irm_node_id = card->irm_node->node_id;
340 event->root_node_id = card->root_node->node_id;
342 spin_unlock_irq(&card->lock);
345 static void for_each_client(struct fw_device *device,
346 void (*callback)(struct client *client))
350 mutex_lock(&device->client_list_mutex);
351 list_for_each_entry(c, &device->client_list, link)
353 mutex_unlock(&device->client_list_mutex);
356 static int schedule_reallocations(int id, void *p, void *data)
358 schedule_if_iso_resource(p);
363 static void queue_bus_reset_event(struct client *client)
365 struct bus_reset_event *e;
367 e = kzalloc(sizeof(*e), GFP_KERNEL);
369 fw_notify("Out of memory when allocating event\n");
373 fill_bus_reset_event(&e->reset, client);
375 queue_event(client, &e->event,
376 &e->reset, sizeof(e->reset), NULL, 0);
378 spin_lock_irq(&client->lock);
379 idr_for_each(&client->resource_idr, schedule_reallocations, client);
380 spin_unlock_irq(&client->lock);
383 void fw_device_cdev_update(struct fw_device *device)
385 for_each_client(device, queue_bus_reset_event);
388 static void wake_up_client(struct client *client)
390 wake_up_interruptible(&client->wait);
393 void fw_device_cdev_remove(struct fw_device *device)
395 for_each_client(device, wake_up_client);
399 struct fw_cdev_get_info get_info;
400 struct fw_cdev_send_request send_request;
401 struct fw_cdev_allocate allocate;
402 struct fw_cdev_deallocate deallocate;
403 struct fw_cdev_send_response send_response;
404 struct fw_cdev_initiate_bus_reset initiate_bus_reset;
405 struct fw_cdev_add_descriptor add_descriptor;
406 struct fw_cdev_remove_descriptor remove_descriptor;
407 struct fw_cdev_create_iso_context create_iso_context;
408 struct fw_cdev_queue_iso queue_iso;
409 struct fw_cdev_start_iso start_iso;
410 struct fw_cdev_stop_iso stop_iso;
411 struct fw_cdev_get_cycle_timer get_cycle_timer;
412 struct fw_cdev_allocate_iso_resource allocate_iso_resource;
413 struct fw_cdev_send_stream_packet send_stream_packet;
414 struct fw_cdev_get_cycle_timer2 get_cycle_timer2;
415 struct fw_cdev_send_phy_packet send_phy_packet;
416 struct fw_cdev_receive_phy_packets receive_phy_packets;
419 static int ioctl_get_info(struct client *client, union ioctl_arg *arg)
421 struct fw_cdev_get_info *a = &arg->get_info;
422 struct fw_cdev_event_bus_reset bus_reset;
423 unsigned long ret = 0;
425 client->version = a->version;
426 a->version = FW_CDEV_KERNEL_VERSION;
427 a->card = client->device->card->index;
429 down_read(&fw_device_rwsem);
432 size_t want = a->rom_length;
433 size_t have = client->device->config_rom_length * 4;
435 ret = copy_to_user(u64_to_uptr(a->rom),
436 client->device->config_rom, min(want, have));
438 a->rom_length = client->device->config_rom_length * 4;
440 up_read(&fw_device_rwsem);
445 client->bus_reset_closure = a->bus_reset_closure;
446 if (a->bus_reset != 0) {
447 fill_bus_reset_event(&bus_reset, client);
448 if (copy_to_user(u64_to_uptr(a->bus_reset),
449 &bus_reset, sizeof(bus_reset)))
456 static int add_client_resource(struct client *client,
457 struct client_resource *resource, gfp_t gfp_mask)
463 if (idr_pre_get(&client->resource_idr, gfp_mask) == 0)
466 spin_lock_irqsave(&client->lock, flags);
467 if (client->in_shutdown)
470 ret = idr_get_new(&client->resource_idr, resource,
474 schedule_if_iso_resource(resource);
476 spin_unlock_irqrestore(&client->lock, flags);
481 return ret < 0 ? ret : 0;
484 static int release_client_resource(struct client *client, u32 handle,
485 client_resource_release_fn_t release,
486 struct client_resource **return_resource)
488 struct client_resource *resource;
490 spin_lock_irq(&client->lock);
491 if (client->in_shutdown)
494 resource = idr_find(&client->resource_idr, handle);
495 if (resource && resource->release == release)
496 idr_remove(&client->resource_idr, handle);
497 spin_unlock_irq(&client->lock);
499 if (!(resource && resource->release == release))
503 *return_resource = resource;
505 resource->release(client, resource);
512 static void release_transaction(struct client *client,
513 struct client_resource *resource)
515 struct outbound_transaction_resource *r = container_of(resource,
516 struct outbound_transaction_resource, resource);
518 fw_cancel_transaction(client->device->card, &r->transaction);
521 static void complete_transaction(struct fw_card *card, int rcode,
522 void *payload, size_t length, void *data)
524 struct outbound_transaction_event *e = data;
525 struct fw_cdev_event_response *rsp = &e->response;
526 struct client *client = e->client;
529 if (length < rsp->length)
530 rsp->length = length;
531 if (rcode == RCODE_COMPLETE)
532 memcpy(rsp->data, payload, rsp->length);
534 spin_lock_irqsave(&client->lock, flags);
536 * 1. If called while in shutdown, the idr tree must be left untouched.
537 * The idr handle will be removed and the client reference will be
539 * 2. If the call chain was release_client_resource ->
540 * release_transaction -> complete_transaction (instead of a normal
541 * conclusion of the transaction), i.e. if this resource was already
542 * unregistered from the idr, the client reference will be dropped
543 * by release_client_resource and we must not drop it here.
545 if (!client->in_shutdown &&
546 idr_find(&client->resource_idr, e->r.resource.handle)) {
547 idr_remove(&client->resource_idr, e->r.resource.handle);
548 /* Drop the idr's reference */
551 spin_unlock_irqrestore(&client->lock, flags);
553 rsp->type = FW_CDEV_EVENT_RESPONSE;
557 * In the case that sizeof(*rsp) doesn't align with the position of the
558 * data, and the read is short, preserve an extra copy of the data
559 * to stay compatible with a pre-2.6.27 bug. Since the bug is harmless
560 * for short reads and some apps depended on it, this is both safe
561 * and prudent for compatibility.
563 if (rsp->length <= sizeof(*rsp) - offsetof(typeof(*rsp), data))
564 queue_event(client, &e->event, rsp, sizeof(*rsp),
565 rsp->data, rsp->length);
567 queue_event(client, &e->event, rsp, sizeof(*rsp) + rsp->length,
570 /* Drop the transaction callback's reference */
574 static int init_request(struct client *client,
575 struct fw_cdev_send_request *request,
576 int destination_id, int speed)
578 struct outbound_transaction_event *e;
581 if (request->tcode != TCODE_STREAM_DATA &&
582 (request->length > 4096 || request->length > 512 << speed))
585 if (request->tcode == TCODE_WRITE_QUADLET_REQUEST &&
589 e = kmalloc(sizeof(*e) + request->length, GFP_KERNEL);
594 e->response.length = request->length;
595 e->response.closure = request->closure;
598 copy_from_user(e->response.data,
599 u64_to_uptr(request->data), request->length)) {
604 e->r.resource.release = release_transaction;
605 ret = add_client_resource(client, &e->r.resource, GFP_KERNEL);
609 /* Get a reference for the transaction callback */
612 fw_send_request(client->device->card, &e->r.transaction,
613 request->tcode, destination_id, request->generation,
614 speed, request->offset, e->response.data,
615 request->length, complete_transaction, e);
624 static int ioctl_send_request(struct client *client, union ioctl_arg *arg)
626 switch (arg->send_request.tcode) {
627 case TCODE_WRITE_QUADLET_REQUEST:
628 case TCODE_WRITE_BLOCK_REQUEST:
629 case TCODE_READ_QUADLET_REQUEST:
630 case TCODE_READ_BLOCK_REQUEST:
631 case TCODE_LOCK_MASK_SWAP:
632 case TCODE_LOCK_COMPARE_SWAP:
633 case TCODE_LOCK_FETCH_ADD:
634 case TCODE_LOCK_LITTLE_ADD:
635 case TCODE_LOCK_BOUNDED_ADD:
636 case TCODE_LOCK_WRAP_ADD:
637 case TCODE_LOCK_VENDOR_DEPENDENT:
643 return init_request(client, &arg->send_request, client->device->node_id,
644 client->device->max_speed);
647 static inline bool is_fcp_request(struct fw_request *request)
649 return request == NULL;
652 static void release_request(struct client *client,
653 struct client_resource *resource)
655 struct inbound_transaction_resource *r = container_of(resource,
656 struct inbound_transaction_resource, resource);
658 if (is_fcp_request(r->request))
661 fw_send_response(r->card, r->request, RCODE_CONFLICT_ERROR);
663 fw_card_put(r->card);
667 static void handle_request(struct fw_card *card, struct fw_request *request,
668 int tcode, int destination, int source,
669 int generation, unsigned long long offset,
670 void *payload, size_t length, void *callback_data)
672 struct address_handler_resource *handler = callback_data;
673 struct inbound_transaction_resource *r;
674 struct inbound_transaction_event *e;
676 void *fcp_frame = NULL;
679 /* card may be different from handler->client->device->card */
682 r = kmalloc(sizeof(*r), GFP_ATOMIC);
683 e = kmalloc(sizeof(*e), GFP_ATOMIC);
684 if (r == NULL || e == NULL) {
685 fw_notify("Out of memory when allocating event\n");
689 r->request = request;
693 if (is_fcp_request(request)) {
695 * FIXME: Let core-transaction.c manage a
696 * single reference-counted copy?
698 fcp_frame = kmemdup(payload, length, GFP_ATOMIC);
699 if (fcp_frame == NULL)
705 r->resource.release = release_request;
706 ret = add_client_resource(handler->client, &r->resource, GFP_ATOMIC);
710 if (handler->client->version < FW_CDEV_VERSION_EVENT_REQUEST2) {
711 struct fw_cdev_event_request *req = &e->req.request;
714 tcode = TCODE_LOCK_REQUEST;
716 req->type = FW_CDEV_EVENT_REQUEST;
718 req->offset = offset;
719 req->length = length;
720 req->handle = r->resource.handle;
721 req->closure = handler->closure;
722 event_size0 = sizeof(*req);
724 struct fw_cdev_event_request2 *req = &e->req.request2;
726 req->type = FW_CDEV_EVENT_REQUEST2;
728 req->offset = offset;
729 req->source_node_id = source;
730 req->destination_node_id = destination;
731 req->card = card->index;
732 req->generation = generation;
733 req->length = length;
734 req->handle = r->resource.handle;
735 req->closure = handler->closure;
736 event_size0 = sizeof(*req);
739 queue_event(handler->client, &e->event,
740 &e->req, event_size0, r->data, length);
748 if (!is_fcp_request(request))
749 fw_send_response(card, request, RCODE_CONFLICT_ERROR);
754 static void release_address_handler(struct client *client,
755 struct client_resource *resource)
757 struct address_handler_resource *r =
758 container_of(resource, struct address_handler_resource, resource);
760 fw_core_remove_address_handler(&r->handler);
764 static int ioctl_allocate(struct client *client, union ioctl_arg *arg)
766 struct fw_cdev_allocate *a = &arg->allocate;
767 struct address_handler_resource *r;
768 struct fw_address_region region;
771 r = kmalloc(sizeof(*r), GFP_KERNEL);
775 region.start = a->offset;
776 region.end = a->offset + a->length;
777 r->handler.length = a->length;
778 r->handler.address_callback = handle_request;
779 r->handler.callback_data = r;
780 r->closure = a->closure;
783 ret = fw_core_add_address_handler(&r->handler, ®ion);
789 r->resource.release = release_address_handler;
790 ret = add_client_resource(client, &r->resource, GFP_KERNEL);
792 release_address_handler(client, &r->resource);
795 a->handle = r->resource.handle;
800 static int ioctl_deallocate(struct client *client, union ioctl_arg *arg)
802 return release_client_resource(client, arg->deallocate.handle,
803 release_address_handler, NULL);
806 static int ioctl_send_response(struct client *client, union ioctl_arg *arg)
808 struct fw_cdev_send_response *a = &arg->send_response;
809 struct client_resource *resource;
810 struct inbound_transaction_resource *r;
813 if (release_client_resource(client, a->handle,
814 release_request, &resource) < 0)
817 r = container_of(resource, struct inbound_transaction_resource,
819 if (is_fcp_request(r->request))
822 if (a->length != fw_get_response_length(r->request)) {
827 if (copy_from_user(r->data, u64_to_uptr(a->data), a->length)) {
832 fw_send_response(r->card, r->request, a->rcode);
834 fw_card_put(r->card);
840 static int ioctl_initiate_bus_reset(struct client *client, union ioctl_arg *arg)
842 fw_schedule_bus_reset(client->device->card, true,
843 arg->initiate_bus_reset.type == FW_CDEV_SHORT_RESET);
847 static void release_descriptor(struct client *client,
848 struct client_resource *resource)
850 struct descriptor_resource *r =
851 container_of(resource, struct descriptor_resource, resource);
853 fw_core_remove_descriptor(&r->descriptor);
857 static int ioctl_add_descriptor(struct client *client, union ioctl_arg *arg)
859 struct fw_cdev_add_descriptor *a = &arg->add_descriptor;
860 struct descriptor_resource *r;
863 /* Access policy: Allow this ioctl only on local nodes' device files. */
864 if (!client->device->is_local)
870 r = kmalloc(sizeof(*r) + a->length * 4, GFP_KERNEL);
874 if (copy_from_user(r->data, u64_to_uptr(a->data), a->length * 4)) {
879 r->descriptor.length = a->length;
880 r->descriptor.immediate = a->immediate;
881 r->descriptor.key = a->key;
882 r->descriptor.data = r->data;
884 ret = fw_core_add_descriptor(&r->descriptor);
888 r->resource.release = release_descriptor;
889 ret = add_client_resource(client, &r->resource, GFP_KERNEL);
891 fw_core_remove_descriptor(&r->descriptor);
894 a->handle = r->resource.handle;
903 static int ioctl_remove_descriptor(struct client *client, union ioctl_arg *arg)
905 return release_client_resource(client, arg->remove_descriptor.handle,
906 release_descriptor, NULL);
909 static void iso_callback(struct fw_iso_context *context, u32 cycle,
910 size_t header_length, void *header, void *data)
912 struct client *client = data;
913 struct iso_interrupt_event *e;
915 e = kmalloc(sizeof(*e) + header_length, GFP_ATOMIC);
917 fw_notify("Out of memory when allocating event\n");
920 e->interrupt.type = FW_CDEV_EVENT_ISO_INTERRUPT;
921 e->interrupt.closure = client->iso_closure;
922 e->interrupt.cycle = cycle;
923 e->interrupt.header_length = header_length;
924 memcpy(e->interrupt.header, header, header_length);
925 queue_event(client, &e->event, &e->interrupt,
926 sizeof(e->interrupt) + header_length, NULL, 0);
929 static int ioctl_create_iso_context(struct client *client, union ioctl_arg *arg)
931 struct fw_cdev_create_iso_context *a = &arg->create_iso_context;
932 struct fw_iso_context *context;
934 BUILD_BUG_ON(FW_CDEV_ISO_CONTEXT_TRANSMIT != FW_ISO_CONTEXT_TRANSMIT ||
935 FW_CDEV_ISO_CONTEXT_RECEIVE != FW_ISO_CONTEXT_RECEIVE);
941 case FW_ISO_CONTEXT_RECEIVE:
942 if (a->header_size < 4 || (a->header_size & 3))
946 case FW_ISO_CONTEXT_TRANSMIT:
947 if (a->speed > SCODE_3200)
955 context = fw_iso_context_create(client->device->card, a->type,
956 a->channel, a->speed, a->header_size,
957 iso_callback, client);
959 return PTR_ERR(context);
961 /* We only support one context at this time. */
962 spin_lock_irq(&client->lock);
963 if (client->iso_context != NULL) {
964 spin_unlock_irq(&client->lock);
965 fw_iso_context_destroy(context);
968 client->iso_closure = a->closure;
969 client->iso_context = context;
970 spin_unlock_irq(&client->lock);
977 /* Macros for decoding the iso packet control header. */
978 #define GET_PAYLOAD_LENGTH(v) ((v) & 0xffff)
979 #define GET_INTERRUPT(v) (((v) >> 16) & 0x01)
980 #define GET_SKIP(v) (((v) >> 17) & 0x01)
981 #define GET_TAG(v) (((v) >> 18) & 0x03)
982 #define GET_SY(v) (((v) >> 20) & 0x0f)
983 #define GET_HEADER_LENGTH(v) (((v) >> 24) & 0xff)
985 static int ioctl_queue_iso(struct client *client, union ioctl_arg *arg)
987 struct fw_cdev_queue_iso *a = &arg->queue_iso;
988 struct fw_cdev_iso_packet __user *p, *end, *next;
989 struct fw_iso_context *ctx = client->iso_context;
990 unsigned long payload, buffer_end, header_length;
994 struct fw_iso_packet packet;
998 if (ctx == NULL || a->handle != 0)
1002 * If the user passes a non-NULL data pointer, has mmap()'ed
1003 * the iso buffer, and the pointer points inside the buffer,
1004 * we setup the payload pointers accordingly. Otherwise we
1005 * set them both to 0, which will still let packets with
1006 * payload_length == 0 through. In other words, if no packets
1007 * use the indirect payload, the iso buffer need not be mapped
1008 * and the a->data pointer is ignored.
1011 payload = (unsigned long)a->data - client->vm_start;
1012 buffer_end = client->buffer.page_count << PAGE_SHIFT;
1013 if (a->data == 0 || client->buffer.pages == NULL ||
1014 payload >= buffer_end) {
1019 p = (struct fw_cdev_iso_packet __user *)u64_to_uptr(a->packets);
1021 if (!access_ok(VERIFY_READ, p, a->size))
1024 end = (void __user *)p + a->size;
1027 if (get_user(control, &p->control))
1029 u.packet.payload_length = GET_PAYLOAD_LENGTH(control);
1030 u.packet.interrupt = GET_INTERRUPT(control);
1031 u.packet.skip = GET_SKIP(control);
1032 u.packet.tag = GET_TAG(control);
1033 u.packet.sy = GET_SY(control);
1034 u.packet.header_length = GET_HEADER_LENGTH(control);
1036 if (ctx->type == FW_ISO_CONTEXT_TRANSMIT) {
1037 if (u.packet.header_length % 4 != 0)
1039 header_length = u.packet.header_length;
1042 * We require that header_length is a multiple of
1043 * the fixed header size, ctx->header_size.
1045 if (ctx->header_size == 0) {
1046 if (u.packet.header_length > 0)
1048 } else if (u.packet.header_length == 0 ||
1049 u.packet.header_length % ctx->header_size != 0) {
1055 next = (struct fw_cdev_iso_packet __user *)
1056 &p->header[header_length / 4];
1059 if (__copy_from_user
1060 (u.packet.header, p->header, header_length))
1062 if (u.packet.skip && ctx->type == FW_ISO_CONTEXT_TRANSMIT &&
1063 u.packet.header_length + u.packet.payload_length > 0)
1065 if (payload + u.packet.payload_length > buffer_end)
1068 if (fw_iso_context_queue(ctx, &u.packet,
1069 &client->buffer, payload))
1073 payload += u.packet.payload_length;
1077 a->size -= uptr_to_u64(p) - a->packets;
1078 a->packets = uptr_to_u64(p);
1079 a->data = client->vm_start + payload;
1084 static int ioctl_start_iso(struct client *client, union ioctl_arg *arg)
1086 struct fw_cdev_start_iso *a = &arg->start_iso;
1089 FW_CDEV_ISO_CONTEXT_MATCH_TAG0 != FW_ISO_CONTEXT_MATCH_TAG0 ||
1090 FW_CDEV_ISO_CONTEXT_MATCH_TAG1 != FW_ISO_CONTEXT_MATCH_TAG1 ||
1091 FW_CDEV_ISO_CONTEXT_MATCH_TAG2 != FW_ISO_CONTEXT_MATCH_TAG2 ||
1092 FW_CDEV_ISO_CONTEXT_MATCH_TAG3 != FW_ISO_CONTEXT_MATCH_TAG3 ||
1093 FW_CDEV_ISO_CONTEXT_MATCH_ALL_TAGS != FW_ISO_CONTEXT_MATCH_ALL_TAGS);
1095 if (client->iso_context == NULL || a->handle != 0)
1098 if (client->iso_context->type == FW_ISO_CONTEXT_RECEIVE &&
1099 (a->tags == 0 || a->tags > 15 || a->sync > 15))
1102 return fw_iso_context_start(client->iso_context,
1103 a->cycle, a->sync, a->tags);
1106 static int ioctl_stop_iso(struct client *client, union ioctl_arg *arg)
1108 struct fw_cdev_stop_iso *a = &arg->stop_iso;
1110 if (client->iso_context == NULL || a->handle != 0)
1113 return fw_iso_context_stop(client->iso_context);
1116 static int ioctl_get_cycle_timer2(struct client *client, union ioctl_arg *arg)
1118 struct fw_cdev_get_cycle_timer2 *a = &arg->get_cycle_timer2;
1119 struct fw_card *card = client->device->card;
1120 struct timespec ts = {0, 0};
1124 local_irq_disable();
1126 cycle_time = card->driver->read_csr(card, CSR_CYCLE_TIME);
1128 switch (a->clk_id) {
1129 case CLOCK_REALTIME: getnstimeofday(&ts); break;
1130 case CLOCK_MONOTONIC: do_posix_clock_monotonic_gettime(&ts); break;
1131 case CLOCK_MONOTONIC_RAW: getrawmonotonic(&ts); break;
1138 a->tv_sec = ts.tv_sec;
1139 a->tv_nsec = ts.tv_nsec;
1140 a->cycle_timer = cycle_time;
1145 static int ioctl_get_cycle_timer(struct client *client, union ioctl_arg *arg)
1147 struct fw_cdev_get_cycle_timer *a = &arg->get_cycle_timer;
1148 struct fw_cdev_get_cycle_timer2 ct2;
1150 ct2.clk_id = CLOCK_REALTIME;
1151 ioctl_get_cycle_timer2(client, (union ioctl_arg *)&ct2);
1153 a->local_time = ct2.tv_sec * USEC_PER_SEC + ct2.tv_nsec / NSEC_PER_USEC;
1154 a->cycle_timer = ct2.cycle_timer;
1159 static void iso_resource_work(struct work_struct *work)
1161 struct iso_resource_event *e;
1162 struct iso_resource *r =
1163 container_of(work, struct iso_resource, work.work);
1164 struct client *client = r->client;
1165 int generation, channel, bandwidth, todo;
1166 bool skip, free, success;
1168 spin_lock_irq(&client->lock);
1169 generation = client->device->generation;
1171 /* Allow 1000ms grace period for other reallocations. */
1172 if (todo == ISO_RES_ALLOC &&
1173 time_is_after_jiffies(client->device->card->reset_jiffies + HZ)) {
1174 schedule_iso_resource(r, DIV_ROUND_UP(HZ, 3));
1177 /* We could be called twice within the same generation. */
1178 skip = todo == ISO_RES_REALLOC &&
1179 r->generation == generation;
1181 free = todo == ISO_RES_DEALLOC ||
1182 todo == ISO_RES_ALLOC_ONCE ||
1183 todo == ISO_RES_DEALLOC_ONCE;
1184 r->generation = generation;
1185 spin_unlock_irq(&client->lock);
1190 bandwidth = r->bandwidth;
1192 fw_iso_resource_manage(client->device->card, generation,
1193 r->channels, &channel, &bandwidth,
1194 todo == ISO_RES_ALLOC ||
1195 todo == ISO_RES_REALLOC ||
1196 todo == ISO_RES_ALLOC_ONCE,
1197 r->transaction_data);
1199 * Is this generation outdated already? As long as this resource sticks
1200 * in the idr, it will be scheduled again for a newer generation or at
1203 if (channel == -EAGAIN &&
1204 (todo == ISO_RES_ALLOC || todo == ISO_RES_REALLOC))
1207 success = channel >= 0 || bandwidth > 0;
1209 spin_lock_irq(&client->lock);
1211 * Transit from allocation to reallocation, except if the client
1212 * requested deallocation in the meantime.
1214 if (r->todo == ISO_RES_ALLOC)
1215 r->todo = ISO_RES_REALLOC;
1217 * Allocation or reallocation failure? Pull this resource out of the
1218 * idr and prepare for deletion, unless the client is shutting down.
1220 if (r->todo == ISO_RES_REALLOC && !success &&
1221 !client->in_shutdown &&
1222 idr_find(&client->resource_idr, r->resource.handle)) {
1223 idr_remove(&client->resource_idr, r->resource.handle);
1227 spin_unlock_irq(&client->lock);
1229 if (todo == ISO_RES_ALLOC && channel >= 0)
1230 r->channels = 1ULL << channel;
1232 if (todo == ISO_RES_REALLOC && success)
1235 if (todo == ISO_RES_ALLOC || todo == ISO_RES_ALLOC_ONCE) {
1240 r->e_dealloc = NULL;
1242 e->iso_resource.handle = r->resource.handle;
1243 e->iso_resource.channel = channel;
1244 e->iso_resource.bandwidth = bandwidth;
1246 queue_event(client, &e->event,
1247 &e->iso_resource, sizeof(e->iso_resource), NULL, 0);
1250 cancel_delayed_work(&r->work);
1252 kfree(r->e_dealloc);
1259 static void release_iso_resource(struct client *client,
1260 struct client_resource *resource)
1262 struct iso_resource *r =
1263 container_of(resource, struct iso_resource, resource);
1265 spin_lock_irq(&client->lock);
1266 r->todo = ISO_RES_DEALLOC;
1267 schedule_iso_resource(r, 0);
1268 spin_unlock_irq(&client->lock);
1271 static int init_iso_resource(struct client *client,
1272 struct fw_cdev_allocate_iso_resource *request, int todo)
1274 struct iso_resource_event *e1, *e2;
1275 struct iso_resource *r;
1278 if ((request->channels == 0 && request->bandwidth == 0) ||
1279 request->bandwidth > BANDWIDTH_AVAILABLE_INITIAL ||
1280 request->bandwidth < 0)
1283 r = kmalloc(sizeof(*r), GFP_KERNEL);
1284 e1 = kmalloc(sizeof(*e1), GFP_KERNEL);
1285 e2 = kmalloc(sizeof(*e2), GFP_KERNEL);
1286 if (r == NULL || e1 == NULL || e2 == NULL) {
1291 INIT_DELAYED_WORK(&r->work, iso_resource_work);
1295 r->channels = request->channels;
1296 r->bandwidth = request->bandwidth;
1300 e1->iso_resource.closure = request->closure;
1301 e1->iso_resource.type = FW_CDEV_EVENT_ISO_RESOURCE_ALLOCATED;
1302 e2->iso_resource.closure = request->closure;
1303 e2->iso_resource.type = FW_CDEV_EVENT_ISO_RESOURCE_DEALLOCATED;
1305 if (todo == ISO_RES_ALLOC) {
1306 r->resource.release = release_iso_resource;
1307 ret = add_client_resource(client, &r->resource, GFP_KERNEL);
1311 r->resource.release = NULL;
1312 r->resource.handle = -1;
1313 schedule_iso_resource(r, 0);
1315 request->handle = r->resource.handle;
1326 static int ioctl_allocate_iso_resource(struct client *client,
1327 union ioctl_arg *arg)
1329 return init_iso_resource(client,
1330 &arg->allocate_iso_resource, ISO_RES_ALLOC);
1333 static int ioctl_deallocate_iso_resource(struct client *client,
1334 union ioctl_arg *arg)
1336 return release_client_resource(client,
1337 arg->deallocate.handle, release_iso_resource, NULL);
1340 static int ioctl_allocate_iso_resource_once(struct client *client,
1341 union ioctl_arg *arg)
1343 return init_iso_resource(client,
1344 &arg->allocate_iso_resource, ISO_RES_ALLOC_ONCE);
1347 static int ioctl_deallocate_iso_resource_once(struct client *client,
1348 union ioctl_arg *arg)
1350 return init_iso_resource(client,
1351 &arg->allocate_iso_resource, ISO_RES_DEALLOC_ONCE);
1355 * Returns a speed code: Maximum speed to or from this device,
1356 * limited by the device's link speed, the local node's link speed,
1357 * and all PHY port speeds between the two links.
1359 static int ioctl_get_speed(struct client *client, union ioctl_arg *arg)
1361 return client->device->max_speed;
1364 static int ioctl_send_broadcast_request(struct client *client,
1365 union ioctl_arg *arg)
1367 struct fw_cdev_send_request *a = &arg->send_request;
1370 case TCODE_WRITE_QUADLET_REQUEST:
1371 case TCODE_WRITE_BLOCK_REQUEST:
1377 /* Security policy: Only allow accesses to Units Space. */
1378 if (a->offset < CSR_REGISTER_BASE + CSR_CONFIG_ROM_END)
1381 return init_request(client, a, LOCAL_BUS | 0x3f, SCODE_100);
1384 static int ioctl_send_stream_packet(struct client *client, union ioctl_arg *arg)
1386 struct fw_cdev_send_stream_packet *a = &arg->send_stream_packet;
1387 struct fw_cdev_send_request request;
1390 if (a->speed > client->device->card->link_speed ||
1391 a->length > 1024 << a->speed)
1394 if (a->tag > 3 || a->channel > 63 || a->sy > 15)
1397 dest = fw_stream_packet_destination_id(a->tag, a->channel, a->sy);
1398 request.tcode = TCODE_STREAM_DATA;
1399 request.length = a->length;
1400 request.closure = a->closure;
1401 request.data = a->data;
1402 request.generation = a->generation;
1404 return init_request(client, &request, dest, a->speed);
1407 static void outbound_phy_packet_callback(struct fw_packet *packet,
1408 struct fw_card *card, int status)
1410 struct outbound_phy_packet_event *e =
1411 container_of(packet, struct outbound_phy_packet_event, p);
1415 case ACK_COMPLETE: e->phy_packet.rcode = RCODE_COMPLETE; break;
1416 /* should never happen with PHY packets: */
1417 case ACK_PENDING: e->phy_packet.rcode = RCODE_COMPLETE; break;
1420 case ACK_BUSY_B: e->phy_packet.rcode = RCODE_BUSY; break;
1421 case ACK_DATA_ERROR: e->phy_packet.rcode = RCODE_DATA_ERROR; break;
1422 case ACK_TYPE_ERROR: e->phy_packet.rcode = RCODE_TYPE_ERROR; break;
1423 /* stale generation; cancelled; on certain controllers: no ack */
1424 default: e->phy_packet.rcode = status; break;
1427 queue_event(e->client, &e->event,
1428 &e->phy_packet, sizeof(e->phy_packet), NULL, 0);
1429 client_put(e->client);
1432 static int ioctl_send_phy_packet(struct client *client, union ioctl_arg *arg)
1434 struct fw_cdev_send_phy_packet *a = &arg->send_phy_packet;
1435 struct fw_card *card = client->device->card;
1436 struct outbound_phy_packet_event *e;
1438 /* Access policy: Allow this ioctl only on local nodes' device files. */
1439 if (!client->device->is_local)
1442 e = kzalloc(sizeof(*e), GFP_KERNEL);
1448 e->p.speed = SCODE_100;
1449 e->p.generation = a->generation;
1450 e->p.header[0] = a->data[0];
1451 e->p.header[1] = a->data[1];
1452 e->p.header_length = 8;
1453 e->p.callback = outbound_phy_packet_callback;
1454 e->phy_packet.closure = a->closure;
1455 e->phy_packet.type = FW_CDEV_EVENT_PHY_PACKET_SENT;
1457 card->driver->send_request(card, &e->p);
1462 static int ioctl_receive_phy_packets(struct client *client, union ioctl_arg *arg)
1464 struct fw_cdev_receive_phy_packets *a = &arg->receive_phy_packets;
1465 struct fw_card *card = client->device->card;
1467 /* Access policy: Allow this ioctl only on local nodes' device files. */
1468 if (!client->device->is_local)
1471 spin_lock_irq(&card->lock);
1473 list_move_tail(&client->phy_receiver_link, &card->phy_receiver_list);
1474 client->phy_receiver_closure = a->closure;
1476 spin_unlock_irq(&card->lock);
1481 void fw_cdev_handle_phy_packet(struct fw_card *card, struct fw_packet *p)
1483 struct client *client;
1484 struct inbound_phy_packet_event *e;
1485 unsigned long flags;
1487 spin_lock_irqsave(&card->lock, flags);
1489 list_for_each_entry(client, &card->phy_receiver_list, phy_receiver_link) {
1490 e = kmalloc(sizeof(*e) + 8, GFP_ATOMIC);
1492 fw_notify("Out of memory when allocating event\n");
1495 e->phy_packet.closure = client->phy_receiver_closure;
1496 e->phy_packet.type = FW_CDEV_EVENT_PHY_PACKET_RECEIVED;
1497 e->phy_packet.rcode = RCODE_COMPLETE;
1498 e->phy_packet.length = 8;
1499 e->phy_packet.data[0] = p->header[1];
1500 e->phy_packet.data[1] = p->header[2];
1501 queue_event(client, &e->event,
1502 &e->phy_packet, sizeof(e->phy_packet) + 8, NULL, 0);
1505 spin_unlock_irqrestore(&card->lock, flags);
1508 static int (* const ioctl_handlers[])(struct client *, union ioctl_arg *) = {
1509 [0x00] = ioctl_get_info,
1510 [0x01] = ioctl_send_request,
1511 [0x02] = ioctl_allocate,
1512 [0x03] = ioctl_deallocate,
1513 [0x04] = ioctl_send_response,
1514 [0x05] = ioctl_initiate_bus_reset,
1515 [0x06] = ioctl_add_descriptor,
1516 [0x07] = ioctl_remove_descriptor,
1517 [0x08] = ioctl_create_iso_context,
1518 [0x09] = ioctl_queue_iso,
1519 [0x0a] = ioctl_start_iso,
1520 [0x0b] = ioctl_stop_iso,
1521 [0x0c] = ioctl_get_cycle_timer,
1522 [0x0d] = ioctl_allocate_iso_resource,
1523 [0x0e] = ioctl_deallocate_iso_resource,
1524 [0x0f] = ioctl_allocate_iso_resource_once,
1525 [0x10] = ioctl_deallocate_iso_resource_once,
1526 [0x11] = ioctl_get_speed,
1527 [0x12] = ioctl_send_broadcast_request,
1528 [0x13] = ioctl_send_stream_packet,
1529 [0x14] = ioctl_get_cycle_timer2,
1530 [0x15] = ioctl_send_phy_packet,
1531 [0x16] = ioctl_receive_phy_packets,
1534 static int dispatch_ioctl(struct client *client,
1535 unsigned int cmd, void __user *arg)
1537 union ioctl_arg buffer;
1540 if (fw_device_is_shutdown(client->device))
1543 if (_IOC_TYPE(cmd) != '#' ||
1544 _IOC_NR(cmd) >= ARRAY_SIZE(ioctl_handlers) ||
1545 _IOC_SIZE(cmd) > sizeof(buffer))
1548 if (_IOC_DIR(cmd) == _IOC_READ)
1549 memset(&buffer, 0, _IOC_SIZE(cmd));
1551 if (_IOC_DIR(cmd) & _IOC_WRITE)
1552 if (copy_from_user(&buffer, arg, _IOC_SIZE(cmd)))
1555 ret = ioctl_handlers[_IOC_NR(cmd)](client, &buffer);
1559 if (_IOC_DIR(cmd) & _IOC_READ)
1560 if (copy_to_user(arg, &buffer, _IOC_SIZE(cmd)))
1566 static long fw_device_op_ioctl(struct file *file,
1567 unsigned int cmd, unsigned long arg)
1569 return dispatch_ioctl(file->private_data, cmd, (void __user *)arg);
1572 #ifdef CONFIG_COMPAT
1573 static long fw_device_op_compat_ioctl(struct file *file,
1574 unsigned int cmd, unsigned long arg)
1576 return dispatch_ioctl(file->private_data, cmd, compat_ptr(arg));
1580 static int fw_device_op_mmap(struct file *file, struct vm_area_struct *vma)
1582 struct client *client = file->private_data;
1583 enum dma_data_direction direction;
1585 int page_count, ret;
1587 if (fw_device_is_shutdown(client->device))
1590 /* FIXME: We could support multiple buffers, but we don't. */
1591 if (client->buffer.pages != NULL)
1594 if (!(vma->vm_flags & VM_SHARED))
1597 if (vma->vm_start & ~PAGE_MASK)
1600 client->vm_start = vma->vm_start;
1601 size = vma->vm_end - vma->vm_start;
1602 page_count = size >> PAGE_SHIFT;
1603 if (size & ~PAGE_MASK)
1606 if (vma->vm_flags & VM_WRITE)
1607 direction = DMA_TO_DEVICE;
1609 direction = DMA_FROM_DEVICE;
1611 ret = fw_iso_buffer_init(&client->buffer, client->device->card,
1612 page_count, direction);
1616 ret = fw_iso_buffer_map(&client->buffer, vma);
1618 fw_iso_buffer_destroy(&client->buffer, client->device->card);
1623 static int shutdown_resource(int id, void *p, void *data)
1625 struct client_resource *resource = p;
1626 struct client *client = data;
1628 resource->release(client, resource);
1634 static int fw_device_op_release(struct inode *inode, struct file *file)
1636 struct client *client = file->private_data;
1637 struct event *event, *next_event;
1639 spin_lock_irq(&client->device->card->lock);
1640 list_del(&client->phy_receiver_link);
1641 spin_unlock_irq(&client->device->card->lock);
1643 mutex_lock(&client->device->client_list_mutex);
1644 list_del(&client->link);
1645 mutex_unlock(&client->device->client_list_mutex);
1647 if (client->iso_context)
1648 fw_iso_context_destroy(client->iso_context);
1650 if (client->buffer.pages)
1651 fw_iso_buffer_destroy(&client->buffer, client->device->card);
1653 /* Freeze client->resource_idr and client->event_list */
1654 spin_lock_irq(&client->lock);
1655 client->in_shutdown = true;
1656 spin_unlock_irq(&client->lock);
1658 idr_for_each(&client->resource_idr, shutdown_resource, client);
1659 idr_remove_all(&client->resource_idr);
1660 idr_destroy(&client->resource_idr);
1662 list_for_each_entry_safe(event, next_event, &client->event_list, link)
1670 static unsigned int fw_device_op_poll(struct file *file, poll_table * pt)
1672 struct client *client = file->private_data;
1673 unsigned int mask = 0;
1675 poll_wait(file, &client->wait, pt);
1677 if (fw_device_is_shutdown(client->device))
1678 mask |= POLLHUP | POLLERR;
1679 if (!list_empty(&client->event_list))
1680 mask |= POLLIN | POLLRDNORM;
1685 const struct file_operations fw_device_ops = {
1686 .owner = THIS_MODULE,
1687 .llseek = no_llseek,
1688 .open = fw_device_op_open,
1689 .read = fw_device_op_read,
1690 .unlocked_ioctl = fw_device_op_ioctl,
1691 .mmap = fw_device_op_mmap,
1692 .release = fw_device_op_release,
1693 .poll = fw_device_op_poll,
1694 #ifdef CONFIG_COMPAT
1695 .compat_ioctl = fw_device_op_compat_ioctl,
git.openpandora.org / pandora-kernel.git / blob