1 // SPDX-License-Identifier: GPL-2.0
5 * Authors: Benedikt Spranger, Pengutronix
6 * Robert Schwebel, Pengutronix
8 * This software was originally developed in conformance with
9 * Microsoft's Remote NDIS Specification License Agreement.
11 * 03/12/2004 Kai-Uwe Bloem <linux-development@auerswald.de>
12 * Fixed message length bug in init_response
14 * 03/25/2004 Kai-Uwe Bloem <linux-development@auerswald.de>
15 * Fixed rndis_rm_hdr length bug.
17 * Copyright (C) 2004 by David Brownell
18 * updates to merge with Linux 2.6, better match RNDIS spec
21 #include <linux/module.h>
22 #include <linux/moduleparam.h>
23 #include <linux/kernel.h>
24 #include <linux/errno.h>
25 #include <linux/idr.h>
26 #include <linux/list.h>
27 #include <linux/proc_fs.h>
28 #include <linux/slab.h>
29 #include <linux/seq_file.h>
30 #include <linux/netdevice.h>
33 #include <asm/byteorder.h>
34 #include <asm/unaligned.h>
43 /* The driver for your USB chip needs to support ep0 OUT to work with
44 * RNDIS, plus all three CDC Ethernet endpoints (interrupt not optional).
46 * Windows hosts need an INF file like Documentation/usb/linux.inf
47 * and will be happier if you provide the host_addr module parameter.
51 static int rndis_debug
= 0;
52 module_param (rndis_debug
, int, 0);
53 MODULE_PARM_DESC (rndis_debug
, "enable debugging");
58 #ifdef CONFIG_USB_GADGET_DEBUG_FILES
60 #define NAME_TEMPLATE "driver/rndis-%03d"
62 #endif /* CONFIG_USB_GADGET_DEBUG_FILES */
64 static DEFINE_IDA(rndis_ida
);
67 static const __le32 rndis_driver_version
= cpu_to_le32(1);
69 /* Function Prototypes */
70 static rndis_resp_t
*rndis_add_response(struct rndis_params
*params
,
73 #ifdef CONFIG_USB_GADGET_DEBUG_FILES
75 static const struct file_operations rndis_proc_fops
;
77 #endif /* CONFIG_USB_GADGET_DEBUG_FILES */
80 static const u32 oid_supported_list
[] = {
81 /* the general stuff */
82 RNDIS_OID_GEN_SUPPORTED_LIST
,
83 RNDIS_OID_GEN_HARDWARE_STATUS
,
84 RNDIS_OID_GEN_MEDIA_SUPPORTED
,
85 RNDIS_OID_GEN_MEDIA_IN_USE
,
86 RNDIS_OID_GEN_MAXIMUM_FRAME_SIZE
,
87 RNDIS_OID_GEN_LINK_SPEED
,
88 RNDIS_OID_GEN_TRANSMIT_BLOCK_SIZE
,
89 RNDIS_OID_GEN_RECEIVE_BLOCK_SIZE
,
90 RNDIS_OID_GEN_VENDOR_ID
,
91 RNDIS_OID_GEN_VENDOR_DESCRIPTION
,
92 RNDIS_OID_GEN_VENDOR_DRIVER_VERSION
,
93 RNDIS_OID_GEN_CURRENT_PACKET_FILTER
,
94 RNDIS_OID_GEN_MAXIMUM_TOTAL_SIZE
,
95 RNDIS_OID_GEN_MEDIA_CONNECT_STATUS
,
96 RNDIS_OID_GEN_PHYSICAL_MEDIUM
,
98 /* the statistical stuff */
99 RNDIS_OID_GEN_XMIT_OK
,
100 RNDIS_OID_GEN_RCV_OK
,
101 RNDIS_OID_GEN_XMIT_ERROR
,
102 RNDIS_OID_GEN_RCV_ERROR
,
103 RNDIS_OID_GEN_RCV_NO_BUFFER
,
104 #ifdef RNDIS_OPTIONAL_STATS
105 RNDIS_OID_GEN_DIRECTED_BYTES_XMIT
,
106 RNDIS_OID_GEN_DIRECTED_FRAMES_XMIT
,
107 RNDIS_OID_GEN_MULTICAST_BYTES_XMIT
,
108 RNDIS_OID_GEN_MULTICAST_FRAMES_XMIT
,
109 RNDIS_OID_GEN_BROADCAST_BYTES_XMIT
,
110 RNDIS_OID_GEN_BROADCAST_FRAMES_XMIT
,
111 RNDIS_OID_GEN_DIRECTED_BYTES_RCV
,
112 RNDIS_OID_GEN_DIRECTED_FRAMES_RCV
,
113 RNDIS_OID_GEN_MULTICAST_BYTES_RCV
,
114 RNDIS_OID_GEN_MULTICAST_FRAMES_RCV
,
115 RNDIS_OID_GEN_BROADCAST_BYTES_RCV
,
116 RNDIS_OID_GEN_BROADCAST_FRAMES_RCV
,
117 RNDIS_OID_GEN_RCV_CRC_ERROR
,
118 RNDIS_OID_GEN_TRANSMIT_QUEUE_LENGTH
,
119 #endif /* RNDIS_OPTIONAL_STATS */
121 /* mandatory 802.3 */
122 /* the general stuff */
123 RNDIS_OID_802_3_PERMANENT_ADDRESS
,
124 RNDIS_OID_802_3_CURRENT_ADDRESS
,
125 RNDIS_OID_802_3_MULTICAST_LIST
,
126 RNDIS_OID_802_3_MAC_OPTIONS
,
127 RNDIS_OID_802_3_MAXIMUM_LIST_SIZE
,
129 /* the statistical stuff */
130 RNDIS_OID_802_3_RCV_ERROR_ALIGNMENT
,
131 RNDIS_OID_802_3_XMIT_ONE_COLLISION
,
132 RNDIS_OID_802_3_XMIT_MORE_COLLISIONS
,
133 #ifdef RNDIS_OPTIONAL_STATS
134 RNDIS_OID_802_3_XMIT_DEFERRED
,
135 RNDIS_OID_802_3_XMIT_MAX_COLLISIONS
,
136 RNDIS_OID_802_3_RCV_OVERRUN
,
137 RNDIS_OID_802_3_XMIT_UNDERRUN
,
138 RNDIS_OID_802_3_XMIT_HEARTBEAT_FAILURE
,
139 RNDIS_OID_802_3_XMIT_TIMES_CRS_LOST
,
140 RNDIS_OID_802_3_XMIT_LATE_COLLISIONS
,
141 #endif /* RNDIS_OPTIONAL_STATS */
144 /* PM and wakeup are "mandatory" for USB, but the RNDIS specs
145 * don't say what they mean ... and the NDIS specs are often
146 * confusing and/or ambiguous in this context. (That is, more
147 * so than their specs for the other OIDs.)
149 * FIXME someone who knows what these should do, please
153 /* power management */
154 OID_PNP_CAPABILITIES
,
160 OID_PNP_ENABLE_WAKE_UP
,
161 OID_PNP_ADD_WAKE_UP_PATTERN
,
162 OID_PNP_REMOVE_WAKE_UP_PATTERN
,
163 #endif /* RNDIS_WAKEUP */
164 #endif /* RNDIS_PM */
169 static int gen_ndis_query_resp(struct rndis_params
*params
, u32 OID
, u8
*buf
,
170 unsigned buf_len
, rndis_resp_t
*r
)
172 int retval
= -ENOTSUPP
;
173 u32 length
= 4; /* usually */
176 rndis_query_cmplt_type
*resp
;
177 struct net_device
*net
;
178 struct rtnl_link_stats64 temp
;
179 const struct rtnl_link_stats64
*stats
;
181 if (!r
) return -ENOMEM
;
182 resp
= (rndis_query_cmplt_type
*)r
->buf
;
184 if (!resp
) return -ENOMEM
;
186 if (buf_len
&& rndis_debug
> 1) {
187 pr_debug("query OID %08x value, len %d:\n", OID
, buf_len
);
188 for (i
= 0; i
< buf_len
; i
+= 16) {
189 pr_debug("%03d: %08x %08x %08x %08x\n", i
,
190 get_unaligned_le32(&buf
[i
]),
191 get_unaligned_le32(&buf
[i
+ 4]),
192 get_unaligned_le32(&buf
[i
+ 8]),
193 get_unaligned_le32(&buf
[i
+ 12]));
197 /* response goes here, right after the header */
198 outbuf
= (__le32
*)&resp
[1];
199 resp
->InformationBufferOffset
= cpu_to_le32(16);
202 stats
= dev_get_stats(net
, &temp
);
206 /* general oids (table 4-1) */
209 case RNDIS_OID_GEN_SUPPORTED_LIST
:
210 pr_debug("%s: RNDIS_OID_GEN_SUPPORTED_LIST\n", __func__
);
211 length
= sizeof(oid_supported_list
);
212 count
= length
/ sizeof(u32
);
213 for (i
= 0; i
< count
; i
++)
214 outbuf
[i
] = cpu_to_le32(oid_supported_list
[i
]);
219 case RNDIS_OID_GEN_HARDWARE_STATUS
:
220 pr_debug("%s: RNDIS_OID_GEN_HARDWARE_STATUS\n", __func__
);
222 * Hardware must be ready to receive high level protocols.
224 * reddite ergo quae sunt Caesaris Caesari
225 * et quae sunt Dei Deo!
227 *outbuf
= cpu_to_le32(0);
232 case RNDIS_OID_GEN_MEDIA_SUPPORTED
:
233 pr_debug("%s: RNDIS_OID_GEN_MEDIA_SUPPORTED\n", __func__
);
234 *outbuf
= cpu_to_le32(params
->medium
);
239 case RNDIS_OID_GEN_MEDIA_IN_USE
:
240 pr_debug("%s: RNDIS_OID_GEN_MEDIA_IN_USE\n", __func__
);
241 /* one medium, one transport... (maybe you do it better) */
242 *outbuf
= cpu_to_le32(params
->medium
);
247 case RNDIS_OID_GEN_MAXIMUM_FRAME_SIZE
:
248 pr_debug("%s: RNDIS_OID_GEN_MAXIMUM_FRAME_SIZE\n", __func__
);
250 *outbuf
= cpu_to_le32(params
->dev
->mtu
);
256 case RNDIS_OID_GEN_LINK_SPEED
:
258 pr_debug("%s: RNDIS_OID_GEN_LINK_SPEED\n", __func__
);
259 if (params
->media_state
== RNDIS_MEDIA_STATE_DISCONNECTED
)
260 *outbuf
= cpu_to_le32(0);
262 *outbuf
= cpu_to_le32(params
->speed
);
267 case RNDIS_OID_GEN_TRANSMIT_BLOCK_SIZE
:
268 pr_debug("%s: RNDIS_OID_GEN_TRANSMIT_BLOCK_SIZE\n", __func__
);
270 *outbuf
= cpu_to_le32(params
->dev
->mtu
);
276 case RNDIS_OID_GEN_RECEIVE_BLOCK_SIZE
:
277 pr_debug("%s: RNDIS_OID_GEN_RECEIVE_BLOCK_SIZE\n", __func__
);
279 *outbuf
= cpu_to_le32(params
->dev
->mtu
);
285 case RNDIS_OID_GEN_VENDOR_ID
:
286 pr_debug("%s: RNDIS_OID_GEN_VENDOR_ID\n", __func__
);
287 *outbuf
= cpu_to_le32(params
->vendorID
);
292 case RNDIS_OID_GEN_VENDOR_DESCRIPTION
:
293 pr_debug("%s: RNDIS_OID_GEN_VENDOR_DESCRIPTION\n", __func__
);
294 if (params
->vendorDescr
) {
295 length
= strlen(params
->vendorDescr
);
296 memcpy(outbuf
, params
->vendorDescr
, length
);
303 case RNDIS_OID_GEN_VENDOR_DRIVER_VERSION
:
304 pr_debug("%s: RNDIS_OID_GEN_VENDOR_DRIVER_VERSION\n", __func__
);
306 *outbuf
= rndis_driver_version
;
311 case RNDIS_OID_GEN_CURRENT_PACKET_FILTER
:
312 pr_debug("%s: RNDIS_OID_GEN_CURRENT_PACKET_FILTER\n", __func__
);
313 *outbuf
= cpu_to_le32(*params
->filter
);
318 case RNDIS_OID_GEN_MAXIMUM_TOTAL_SIZE
:
319 pr_debug("%s: RNDIS_OID_GEN_MAXIMUM_TOTAL_SIZE\n", __func__
);
320 *outbuf
= cpu_to_le32(RNDIS_MAX_TOTAL_SIZE
);
325 case RNDIS_OID_GEN_MEDIA_CONNECT_STATUS
:
327 pr_debug("%s: RNDIS_OID_GEN_MEDIA_CONNECT_STATUS\n", __func__
);
328 *outbuf
= cpu_to_le32(params
->media_state
);
332 case RNDIS_OID_GEN_PHYSICAL_MEDIUM
:
333 pr_debug("%s: RNDIS_OID_GEN_PHYSICAL_MEDIUM\n", __func__
);
334 *outbuf
= cpu_to_le32(0);
338 /* The RNDIS specification is incomplete/wrong. Some versions
339 * of MS-Windows expect OIDs that aren't specified there. Other
340 * versions emit undefined RNDIS messages. DOCUMENT ALL THESE!
342 case RNDIS_OID_GEN_MAC_OPTIONS
: /* from WinME */
343 pr_debug("%s: RNDIS_OID_GEN_MAC_OPTIONS\n", __func__
);
344 *outbuf
= cpu_to_le32(
345 RNDIS_MAC_OPTION_RECEIVE_SERIALIZED
346 | RNDIS_MAC_OPTION_FULL_DUPLEX
);
350 /* statistics OIDs (table 4-2) */
353 case RNDIS_OID_GEN_XMIT_OK
:
355 pr_debug("%s: RNDIS_OID_GEN_XMIT_OK\n", __func__
);
357 *outbuf
= cpu_to_le32(stats
->tx_packets
358 - stats
->tx_errors
- stats
->tx_dropped
);
364 case RNDIS_OID_GEN_RCV_OK
:
366 pr_debug("%s: RNDIS_OID_GEN_RCV_OK\n", __func__
);
368 *outbuf
= cpu_to_le32(stats
->rx_packets
369 - stats
->rx_errors
- stats
->rx_dropped
);
375 case RNDIS_OID_GEN_XMIT_ERROR
:
377 pr_debug("%s: RNDIS_OID_GEN_XMIT_ERROR\n", __func__
);
379 *outbuf
= cpu_to_le32(stats
->tx_errors
);
385 case RNDIS_OID_GEN_RCV_ERROR
:
387 pr_debug("%s: RNDIS_OID_GEN_RCV_ERROR\n", __func__
);
389 *outbuf
= cpu_to_le32(stats
->rx_errors
);
395 case RNDIS_OID_GEN_RCV_NO_BUFFER
:
396 pr_debug("%s: RNDIS_OID_GEN_RCV_NO_BUFFER\n", __func__
);
398 *outbuf
= cpu_to_le32(stats
->rx_dropped
);
403 /* ieee802.3 OIDs (table 4-3) */
406 case RNDIS_OID_802_3_PERMANENT_ADDRESS
:
407 pr_debug("%s: RNDIS_OID_802_3_PERMANENT_ADDRESS\n", __func__
);
410 memcpy(outbuf
, params
->host_mac
, length
);
416 case RNDIS_OID_802_3_CURRENT_ADDRESS
:
417 pr_debug("%s: RNDIS_OID_802_3_CURRENT_ADDRESS\n", __func__
);
420 memcpy(outbuf
, params
->host_mac
, length
);
426 case RNDIS_OID_802_3_MULTICAST_LIST
:
427 pr_debug("%s: RNDIS_OID_802_3_MULTICAST_LIST\n", __func__
);
428 /* Multicast base address only */
429 *outbuf
= cpu_to_le32(0xE0000000);
434 case RNDIS_OID_802_3_MAXIMUM_LIST_SIZE
:
435 pr_debug("%s: RNDIS_OID_802_3_MAXIMUM_LIST_SIZE\n", __func__
);
436 /* Multicast base address only */
437 *outbuf
= cpu_to_le32(1);
441 case RNDIS_OID_802_3_MAC_OPTIONS
:
442 pr_debug("%s: RNDIS_OID_802_3_MAC_OPTIONS\n", __func__
);
443 *outbuf
= cpu_to_le32(0);
447 /* ieee802.3 statistics OIDs (table 4-4) */
450 case RNDIS_OID_802_3_RCV_ERROR_ALIGNMENT
:
451 pr_debug("%s: RNDIS_OID_802_3_RCV_ERROR_ALIGNMENT\n", __func__
);
453 *outbuf
= cpu_to_le32(stats
->rx_frame_errors
);
459 case RNDIS_OID_802_3_XMIT_ONE_COLLISION
:
460 pr_debug("%s: RNDIS_OID_802_3_XMIT_ONE_COLLISION\n", __func__
);
461 *outbuf
= cpu_to_le32(0);
466 case RNDIS_OID_802_3_XMIT_MORE_COLLISIONS
:
467 pr_debug("%s: RNDIS_OID_802_3_XMIT_MORE_COLLISIONS\n", __func__
);
468 *outbuf
= cpu_to_le32(0);
473 pr_warn("%s: query unknown OID 0x%08X\n", __func__
, OID
);
478 resp
->InformationBufferLength
= cpu_to_le32(length
);
479 r
->length
= length
+ sizeof(*resp
);
480 resp
->MessageLength
= cpu_to_le32(r
->length
);
484 static int gen_ndis_set_resp(struct rndis_params
*params
, u32 OID
,
485 u8
*buf
, u32 buf_len
, rndis_resp_t
*r
)
487 rndis_set_cmplt_type
*resp
;
488 int i
, retval
= -ENOTSUPP
;
492 resp
= (rndis_set_cmplt_type
*)r
->buf
;
496 if (buf_len
&& rndis_debug
> 1) {
497 pr_debug("set OID %08x value, len %d:\n", OID
, buf_len
);
498 for (i
= 0; i
< buf_len
; i
+= 16) {
499 pr_debug("%03d: %08x %08x %08x %08x\n", i
,
500 get_unaligned_le32(&buf
[i
]),
501 get_unaligned_le32(&buf
[i
+ 4]),
502 get_unaligned_le32(&buf
[i
+ 8]),
503 get_unaligned_le32(&buf
[i
+ 12]));
508 case RNDIS_OID_GEN_CURRENT_PACKET_FILTER
:
510 /* these NDIS_PACKET_TYPE_* bitflags are shared with
511 * cdc_filter; it's not RNDIS-specific
512 * NDIS_PACKET_TYPE_x == USB_CDC_PACKET_TYPE_x for x in:
513 * PROMISCUOUS, DIRECTED,
514 * MULTICAST, ALL_MULTICAST, BROADCAST
516 *params
->filter
= (u16
)get_unaligned_le32(buf
);
517 pr_debug("%s: RNDIS_OID_GEN_CURRENT_PACKET_FILTER %08x\n",
518 __func__
, *params
->filter
);
520 /* this call has a significant side effect: it's
521 * what makes the packet flow start and stop, like
522 * activating the CDC Ethernet altsetting.
525 if (*params
->filter
) {
526 params
->state
= RNDIS_DATA_INITIALIZED
;
527 netif_carrier_on(params
->dev
);
528 if (netif_running(params
->dev
))
529 netif_wake_queue(params
->dev
);
531 params
->state
= RNDIS_INITIALIZED
;
532 netif_carrier_off(params
->dev
);
533 netif_stop_queue(params
->dev
);
537 case RNDIS_OID_802_3_MULTICAST_LIST
:
538 /* I think we can ignore this */
539 pr_debug("%s: RNDIS_OID_802_3_MULTICAST_LIST\n", __func__
);
544 pr_warn("%s: set unknown OID 0x%08X, size %d\n",
545 __func__
, OID
, buf_len
);
555 static int rndis_init_response(struct rndis_params
*params
,
556 rndis_init_msg_type
*buf
)
558 rndis_init_cmplt_type
*resp
;
564 r
= rndis_add_response(params
, sizeof(rndis_init_cmplt_type
));
567 resp
= (rndis_init_cmplt_type
*)r
->buf
;
569 resp
->MessageType
= cpu_to_le32(RNDIS_MSG_INIT_C
);
570 resp
->MessageLength
= cpu_to_le32(52);
571 resp
->RequestID
= buf
->RequestID
; /* Still LE in msg buffer */
572 resp
->Status
= cpu_to_le32(RNDIS_STATUS_SUCCESS
);
573 resp
->MajorVersion
= cpu_to_le32(RNDIS_MAJOR_VERSION
);
574 resp
->MinorVersion
= cpu_to_le32(RNDIS_MINOR_VERSION
);
575 resp
->DeviceFlags
= cpu_to_le32(RNDIS_DF_CONNECTIONLESS
);
576 resp
->Medium
= cpu_to_le32(RNDIS_MEDIUM_802_3
);
577 resp
->MaxPacketsPerTransfer
= cpu_to_le32(1);
578 resp
->MaxTransferSize
= cpu_to_le32(
580 + sizeof(struct ethhdr
)
581 + sizeof(struct rndis_packet_msg_type
)
583 resp
->PacketAlignmentFactor
= cpu_to_le32(0);
584 resp
->AFListOffset
= cpu_to_le32(0);
585 resp
->AFListSize
= cpu_to_le32(0);
587 params
->resp_avail(params
->v
);
591 static int rndis_query_response(struct rndis_params
*params
,
592 rndis_query_msg_type
*buf
)
594 rndis_query_cmplt_type
*resp
;
597 /* pr_debug("%s: OID = %08X\n", __func__, cpu_to_le32(buf->OID)); */
602 * we need more memory:
603 * gen_ndis_query_resp expects enough space for
604 * rndis_query_cmplt_type followed by data.
605 * oid_supported_list is the largest data reply
607 r
= rndis_add_response(params
,
608 sizeof(oid_supported_list
) + sizeof(rndis_query_cmplt_type
));
611 resp
= (rndis_query_cmplt_type
*)r
->buf
;
613 resp
->MessageType
= cpu_to_le32(RNDIS_MSG_QUERY_C
);
614 resp
->RequestID
= buf
->RequestID
; /* Still LE in msg buffer */
616 if (gen_ndis_query_resp(params
, le32_to_cpu(buf
->OID
),
617 le32_to_cpu(buf
->InformationBufferOffset
)
619 le32_to_cpu(buf
->InformationBufferLength
),
621 /* OID not supported */
622 resp
->Status
= cpu_to_le32(RNDIS_STATUS_NOT_SUPPORTED
);
623 resp
->MessageLength
= cpu_to_le32(sizeof *resp
);
624 resp
->InformationBufferLength
= cpu_to_le32(0);
625 resp
->InformationBufferOffset
= cpu_to_le32(0);
627 resp
->Status
= cpu_to_le32(RNDIS_STATUS_SUCCESS
);
629 params
->resp_avail(params
->v
);
633 static int rndis_set_response(struct rndis_params
*params
,
634 rndis_set_msg_type
*buf
)
636 u32 BufLength
, BufOffset
;
637 rndis_set_cmplt_type
*resp
;
640 r
= rndis_add_response(params
, sizeof(rndis_set_cmplt_type
));
643 resp
= (rndis_set_cmplt_type
*)r
->buf
;
645 BufLength
= le32_to_cpu(buf
->InformationBufferLength
);
646 BufOffset
= le32_to_cpu(buf
->InformationBufferOffset
);
649 pr_debug("%s: Length: %d\n", __func__
, BufLength
);
650 pr_debug("%s: Offset: %d\n", __func__
, BufOffset
);
651 pr_debug("%s: InfoBuffer: ", __func__
);
653 for (i
= 0; i
< BufLength
; i
++) {
654 pr_debug("%02x ", *(((u8
*) buf
) + i
+ 8 + BufOffset
));
660 resp
->MessageType
= cpu_to_le32(RNDIS_MSG_SET_C
);
661 resp
->MessageLength
= cpu_to_le32(16);
662 resp
->RequestID
= buf
->RequestID
; /* Still LE in msg buffer */
663 if (gen_ndis_set_resp(params
, le32_to_cpu(buf
->OID
),
664 ((u8
*)buf
) + 8 + BufOffset
, BufLength
, r
))
665 resp
->Status
= cpu_to_le32(RNDIS_STATUS_NOT_SUPPORTED
);
667 resp
->Status
= cpu_to_le32(RNDIS_STATUS_SUCCESS
);
669 params
->resp_avail(params
->v
);
673 static int rndis_reset_response(struct rndis_params
*params
,
674 rndis_reset_msg_type
*buf
)
676 rndis_reset_cmplt_type
*resp
;
681 /* drain the response queue */
682 while ((xbuf
= rndis_get_next_response(params
, &length
)))
683 rndis_free_response(params
, xbuf
);
685 r
= rndis_add_response(params
, sizeof(rndis_reset_cmplt_type
));
688 resp
= (rndis_reset_cmplt_type
*)r
->buf
;
690 resp
->MessageType
= cpu_to_le32(RNDIS_MSG_RESET_C
);
691 resp
->MessageLength
= cpu_to_le32(16);
692 resp
->Status
= cpu_to_le32(RNDIS_STATUS_SUCCESS
);
693 /* resent information */
694 resp
->AddressingReset
= cpu_to_le32(1);
696 params
->resp_avail(params
->v
);
700 static int rndis_keepalive_response(struct rndis_params
*params
,
701 rndis_keepalive_msg_type
*buf
)
703 rndis_keepalive_cmplt_type
*resp
;
706 /* host "should" check only in RNDIS_DATA_INITIALIZED state */
708 r
= rndis_add_response(params
, sizeof(rndis_keepalive_cmplt_type
));
711 resp
= (rndis_keepalive_cmplt_type
*)r
->buf
;
713 resp
->MessageType
= cpu_to_le32(RNDIS_MSG_KEEPALIVE_C
);
714 resp
->MessageLength
= cpu_to_le32(16);
715 resp
->RequestID
= buf
->RequestID
; /* Still LE in msg buffer */
716 resp
->Status
= cpu_to_le32(RNDIS_STATUS_SUCCESS
);
718 params
->resp_avail(params
->v
);
724 * Device to Host Comunication
726 static int rndis_indicate_status_msg(struct rndis_params
*params
, u32 status
)
728 rndis_indicate_status_msg_type
*resp
;
731 if (params
->state
== RNDIS_UNINITIALIZED
)
734 r
= rndis_add_response(params
, sizeof(rndis_indicate_status_msg_type
));
737 resp
= (rndis_indicate_status_msg_type
*)r
->buf
;
739 resp
->MessageType
= cpu_to_le32(RNDIS_MSG_INDICATE
);
740 resp
->MessageLength
= cpu_to_le32(20);
741 resp
->Status
= cpu_to_le32(status
);
742 resp
->StatusBufferLength
= cpu_to_le32(0);
743 resp
->StatusBufferOffset
= cpu_to_le32(0);
745 params
->resp_avail(params
->v
);
749 int rndis_signal_connect(struct rndis_params
*params
)
751 params
->media_state
= RNDIS_MEDIA_STATE_CONNECTED
;
752 return rndis_indicate_status_msg(params
, RNDIS_STATUS_MEDIA_CONNECT
);
754 EXPORT_SYMBOL_GPL(rndis_signal_connect
);
756 int rndis_signal_disconnect(struct rndis_params
*params
)
758 params
->media_state
= RNDIS_MEDIA_STATE_DISCONNECTED
;
759 return rndis_indicate_status_msg(params
, RNDIS_STATUS_MEDIA_DISCONNECT
);
761 EXPORT_SYMBOL_GPL(rndis_signal_disconnect
);
763 void rndis_uninit(struct rndis_params
*params
)
770 params
->state
= RNDIS_UNINITIALIZED
;
772 /* drain the response queue */
773 while ((buf
= rndis_get_next_response(params
, &length
)))
774 rndis_free_response(params
, buf
);
776 EXPORT_SYMBOL_GPL(rndis_uninit
);
778 void rndis_set_host_mac(struct rndis_params
*params
, const u8
*addr
)
780 params
->host_mac
= addr
;
782 EXPORT_SYMBOL_GPL(rndis_set_host_mac
);
787 int rndis_msg_parser(struct rndis_params
*params
, u8
*buf
)
789 u32 MsgType
, MsgLength
;
796 MsgType
= get_unaligned_le32(tmp
++);
797 MsgLength
= get_unaligned_le32(tmp
++);
802 /* NOTE: RNDIS is *EXTREMELY* chatty ... Windows constantly polls for
803 * rx/tx statistics and link status, in addition to KEEPALIVE traffic
804 * and normal HC level polling to see if there's any IN traffic.
807 /* For USB: responses may take up to 10 seconds */
810 pr_debug("%s: RNDIS_MSG_INIT\n",
812 params
->state
= RNDIS_INITIALIZED
;
813 return rndis_init_response(params
, (rndis_init_msg_type
*)buf
);
816 pr_debug("%s: RNDIS_MSG_HALT\n",
818 params
->state
= RNDIS_UNINITIALIZED
;
820 netif_carrier_off(params
->dev
);
821 netif_stop_queue(params
->dev
);
825 case RNDIS_MSG_QUERY
:
826 return rndis_query_response(params
,
827 (rndis_query_msg_type
*)buf
);
830 return rndis_set_response(params
, (rndis_set_msg_type
*)buf
);
832 case RNDIS_MSG_RESET
:
833 pr_debug("%s: RNDIS_MSG_RESET\n",
835 return rndis_reset_response(params
,
836 (rndis_reset_msg_type
*)buf
);
838 case RNDIS_MSG_KEEPALIVE
:
839 /* For USB: host does this every 5 seconds */
841 pr_debug("%s: RNDIS_MSG_KEEPALIVE\n",
843 return rndis_keepalive_response(params
,
844 (rndis_keepalive_msg_type
*)
848 /* At least Windows XP emits some undefined RNDIS messages.
849 * In one case those messages seemed to relate to the host
852 pr_warn("%s: unknown RNDIS message 0x%08X len %d\n",
853 __func__
, MsgType
, MsgLength
);
854 print_hex_dump_bytes(__func__
, DUMP_PREFIX_OFFSET
,
861 EXPORT_SYMBOL_GPL(rndis_msg_parser
);
863 static inline int rndis_get_nr(void)
865 return ida_simple_get(&rndis_ida
, 0, 0, GFP_KERNEL
);
868 static inline void rndis_put_nr(int nr
)
870 ida_simple_remove(&rndis_ida
, nr
);
873 struct rndis_params
*rndis_register(void (*resp_avail
)(void *v
), void *v
)
875 struct rndis_params
*params
;
879 return ERR_PTR(-EINVAL
);
883 pr_debug("failed\n");
885 return ERR_PTR(-ENODEV
);
888 params
= kzalloc(sizeof(*params
), GFP_KERNEL
);
892 return ERR_PTR(-ENOMEM
);
895 #ifdef CONFIG_USB_GADGET_DEBUG_FILES
897 struct proc_dir_entry
*proc_entry
;
900 sprintf(name
, NAME_TEMPLATE
, i
);
901 proc_entry
= proc_create_data(name
, 0660, NULL
,
902 &rndis_proc_fops
, params
);
907 return ERR_PTR(-EIO
);
912 params
->confignr
= i
;
914 params
->state
= RNDIS_UNINITIALIZED
;
915 params
->media_state
= RNDIS_MEDIA_STATE_DISCONNECTED
;
916 params
->resp_avail
= resp_avail
;
918 INIT_LIST_HEAD(¶ms
->resp_queue
);
919 pr_debug("%s: configNr = %d\n", __func__
, i
);
923 EXPORT_SYMBOL_GPL(rndis_register
);
925 void rndis_deregister(struct rndis_params
*params
)
929 pr_debug("%s:\n", __func__
);
934 i
= params
->confignr
;
936 #ifdef CONFIG_USB_GADGET_DEBUG_FILES
940 sprintf(name
, NAME_TEMPLATE
, i
);
941 remove_proc_entry(name
, NULL
);
948 EXPORT_SYMBOL_GPL(rndis_deregister
);
949 int rndis_set_param_dev(struct rndis_params
*params
, struct net_device
*dev
,
952 pr_debug("%s:\n", __func__
);
959 params
->filter
= cdc_filter
;
963 EXPORT_SYMBOL_GPL(rndis_set_param_dev
);
965 int rndis_set_param_vendor(struct rndis_params
*params
, u32 vendorID
,
966 const char *vendorDescr
)
968 pr_debug("%s:\n", __func__
);
969 if (!vendorDescr
) return -1;
973 params
->vendorID
= vendorID
;
974 params
->vendorDescr
= vendorDescr
;
978 EXPORT_SYMBOL_GPL(rndis_set_param_vendor
);
980 int rndis_set_param_medium(struct rndis_params
*params
, u32 medium
, u32 speed
)
982 pr_debug("%s: %u %u\n", __func__
, medium
, speed
);
986 params
->medium
= medium
;
987 params
->speed
= speed
;
991 EXPORT_SYMBOL_GPL(rndis_set_param_medium
);
993 void rndis_add_hdr(struct sk_buff
*skb
)
995 struct rndis_packet_msg_type
*header
;
999 header
= skb_push(skb
, sizeof(*header
));
1000 memset(header
, 0, sizeof *header
);
1001 header
->MessageType
= cpu_to_le32(RNDIS_MSG_PACKET
);
1002 header
->MessageLength
= cpu_to_le32(skb
->len
);
1003 header
->DataOffset
= cpu_to_le32(36);
1004 header
->DataLength
= cpu_to_le32(skb
->len
- sizeof(*header
));
1006 EXPORT_SYMBOL_GPL(rndis_add_hdr
);
1008 void rndis_free_response(struct rndis_params
*params
, u8
*buf
)
1010 rndis_resp_t
*r
, *n
;
1012 list_for_each_entry_safe(r
, n
, ¶ms
->resp_queue
, list
) {
1013 if (r
->buf
== buf
) {
1019 EXPORT_SYMBOL_GPL(rndis_free_response
);
1021 u8
*rndis_get_next_response(struct rndis_params
*params
, u32
*length
)
1023 rndis_resp_t
*r
, *n
;
1025 if (!length
) return NULL
;
1027 list_for_each_entry_safe(r
, n
, ¶ms
->resp_queue
, list
) {
1030 *length
= r
->length
;
1037 EXPORT_SYMBOL_GPL(rndis_get_next_response
);
1039 static rndis_resp_t
*rndis_add_response(struct rndis_params
*params
, u32 length
)
1043 /* NOTE: this gets copied into ether.c USB_BUFSIZ bytes ... */
1044 r
= kmalloc(sizeof(rndis_resp_t
) + length
, GFP_ATOMIC
);
1045 if (!r
) return NULL
;
1047 r
->buf
= (u8
*)(r
+ 1);
1051 list_add_tail(&r
->list
, ¶ms
->resp_queue
);
1055 int rndis_rm_hdr(struct gether
*port
,
1056 struct sk_buff
*skb
,
1057 struct sk_buff_head
*list
)
1059 /* tmp points to a struct rndis_packet_msg_type */
1060 __le32
*tmp
= (void *)skb
->data
;
1062 /* MessageType, MessageLength */
1063 if (cpu_to_le32(RNDIS_MSG_PACKET
)
1064 != get_unaligned(tmp
++)) {
1065 dev_kfree_skb_any(skb
);
1070 /* DataOffset, DataLength */
1071 if (!skb_pull(skb
, get_unaligned_le32(tmp
++) + 8)) {
1072 dev_kfree_skb_any(skb
);
1075 skb_trim(skb
, get_unaligned_le32(tmp
++));
1077 skb_queue_tail(list
, skb
);
1080 EXPORT_SYMBOL_GPL(rndis_rm_hdr
);
1082 #ifdef CONFIG_USB_GADGET_DEBUG_FILES
1084 static int rndis_proc_show(struct seq_file
*m
, void *v
)
1086 rndis_params
*param
= m
->private;
1095 "vendor ID : 0x%08X\n"
1097 param
->confignr
, (param
->used
) ? "y" : "n",
1099 switch (param
->state
) {
1100 case RNDIS_UNINITIALIZED
:
1101 s
= "RNDIS_UNINITIALIZED"; break;
1102 case RNDIS_INITIALIZED
:
1103 s
= "RNDIS_INITIALIZED"; break;
1104 case RNDIS_DATA_INITIALIZED
:
1105 s
= "RNDIS_DATA_INITIALIZED"; break;
1108 (param
->media_state
) ? 0 : param
->speed
*100,
1109 (param
->media_state
) ? "disconnected" : "connected",
1110 param
->vendorID
, param
->vendorDescr
);
1114 static ssize_t
rndis_proc_write(struct file
*file
, const char __user
*buffer
,
1115 size_t count
, loff_t
*ppos
)
1117 rndis_params
*p
= PDE_DATA(file_inode(file
));
1119 int i
, fl_speed
= 0;
1121 for (i
= 0; i
< count
; i
++) {
1123 if (get_user(c
, buffer
))
1137 speed
= speed
* 10 + c
- '0';
1141 rndis_signal_connect(p
);
1145 rndis_signal_disconnect(p
);
1148 if (fl_speed
) p
->speed
= speed
;
1149 else pr_debug("%c is not valid\n", c
);
1159 static int rndis_proc_open(struct inode
*inode
, struct file
*file
)
1161 return single_open(file
, rndis_proc_show
, PDE_DATA(inode
));
1164 static const struct file_operations rndis_proc_fops
= {
1165 .owner
= THIS_MODULE
,
1166 .open
= rndis_proc_open
,
1168 .llseek
= seq_lseek
,
1169 .release
= single_release
,
1170 .write
= rndis_proc_write
,
1173 #define NAME_TEMPLATE "driver/rndis-%03d"
1175 #endif /* CONFIG_USB_GADGET_DEBUG_FILES */