bluetooth: hci_core: defer hci_unregister_sysfs()
[pv_ops_mirror.git] / net / bluetooth / rfcomm / tty.c
blobe4c779bb8d76e6cf9dfab3b82a3ae33f7276dc68
1 /*
2 RFCOMM implementation for Linux Bluetooth stack (BlueZ).
3 Copyright (C) 2002 Maxim Krasnyansky <maxk@qualcomm.com>
4 Copyright (C) 2002 Marcel Holtmann <marcel@holtmann.org>
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License version 2 as
8 published by the Free Software Foundation;
10 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
11 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
12 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
13 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
14 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
15 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
16 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
17 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
20 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
21 SOFTWARE IS DISCLAIMED.
25 * RFCOMM TTY.
27 * $Id: tty.c,v 1.24 2002/10/03 01:54:38 holtmann Exp $
30 #include <linux/module.h>
32 #include <linux/tty.h>
33 #include <linux/tty_driver.h>
34 #include <linux/tty_flip.h>
36 #include <linux/capability.h>
37 #include <linux/slab.h>
38 #include <linux/skbuff.h>
40 #include <net/bluetooth/bluetooth.h>
41 #include <net/bluetooth/hci_core.h>
42 #include <net/bluetooth/rfcomm.h>
44 #ifndef CONFIG_BT_RFCOMM_DEBUG
45 #undef BT_DBG
46 #define BT_DBG(D...)
47 #endif
49 #define RFCOMM_TTY_MAGIC 0x6d02 /* magic number for rfcomm struct */
50 #define RFCOMM_TTY_PORTS RFCOMM_MAX_DEV /* whole lotta rfcomm devices */
51 #define RFCOMM_TTY_MAJOR 216 /* device node major id of the usb/bluetooth.c driver */
52 #define RFCOMM_TTY_MINOR 0
54 static struct tty_driver *rfcomm_tty_driver;
56 struct rfcomm_dev {
57 struct list_head list;
58 atomic_t refcnt;
60 char name[12];
61 int id;
62 unsigned long flags;
63 int opened;
64 int err;
66 bdaddr_t src;
67 bdaddr_t dst;
68 u8 channel;
70 uint modem_status;
72 struct rfcomm_dlc *dlc;
73 struct tty_struct *tty;
74 wait_queue_head_t wait;
75 struct tasklet_struct wakeup_task;
77 struct device *tty_dev;
79 atomic_t wmem_alloc;
82 static LIST_HEAD(rfcomm_dev_list);
83 static DEFINE_RWLOCK(rfcomm_dev_lock);
85 static void rfcomm_dev_data_ready(struct rfcomm_dlc *dlc, struct sk_buff *skb);
86 static void rfcomm_dev_state_change(struct rfcomm_dlc *dlc, int err);
87 static void rfcomm_dev_modem_status(struct rfcomm_dlc *dlc, u8 v24_sig);
89 static void rfcomm_tty_wakeup(unsigned long arg);
91 /* ---- Device functions ---- */
92 static void rfcomm_dev_destruct(struct rfcomm_dev *dev)
94 struct rfcomm_dlc *dlc = dev->dlc;
96 BT_DBG("dev %p dlc %p", dev, dlc);
98 /* Refcount should only hit zero when called from rfcomm_dev_del()
99 which will have taken us off the list. Everything else are
100 refcounting bugs. */
101 BUG_ON(!list_empty(&dev->list));
103 rfcomm_dlc_lock(dlc);
104 /* Detach DLC if it's owned by this dev */
105 if (dlc->owner == dev)
106 dlc->owner = NULL;
107 rfcomm_dlc_unlock(dlc);
109 rfcomm_dlc_put(dlc);
111 tty_unregister_device(rfcomm_tty_driver, dev->id);
113 kfree(dev);
115 /* It's safe to call module_put() here because socket still
116 holds reference to this module. */
117 module_put(THIS_MODULE);
120 static inline void rfcomm_dev_hold(struct rfcomm_dev *dev)
122 atomic_inc(&dev->refcnt);
125 static inline void rfcomm_dev_put(struct rfcomm_dev *dev)
127 /* The reason this isn't actually a race, as you no
128 doubt have a little voice screaming at you in your
129 head, is that the refcount should never actually
130 reach zero unless the device has already been taken
131 off the list, in rfcomm_dev_del(). And if that's not
132 true, we'll hit the BUG() in rfcomm_dev_destruct()
133 anyway. */
134 if (atomic_dec_and_test(&dev->refcnt))
135 rfcomm_dev_destruct(dev);
138 static struct rfcomm_dev *__rfcomm_dev_get(int id)
140 struct rfcomm_dev *dev;
141 struct list_head *p;
143 list_for_each(p, &rfcomm_dev_list) {
144 dev = list_entry(p, struct rfcomm_dev, list);
145 if (dev->id == id)
146 return dev;
149 return NULL;
152 static inline struct rfcomm_dev *rfcomm_dev_get(int id)
154 struct rfcomm_dev *dev;
156 read_lock(&rfcomm_dev_lock);
158 dev = __rfcomm_dev_get(id);
160 if (dev) {
161 if (test_bit(RFCOMM_TTY_RELEASED, &dev->flags))
162 dev = NULL;
163 else
164 rfcomm_dev_hold(dev);
167 read_unlock(&rfcomm_dev_lock);
169 return dev;
172 static struct device *rfcomm_get_device(struct rfcomm_dev *dev)
174 struct hci_dev *hdev;
175 struct hci_conn *conn;
177 hdev = hci_get_route(&dev->dst, &dev->src);
178 if (!hdev)
179 return NULL;
181 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &dev->dst);
183 hci_dev_put(hdev);
185 return conn ? &conn->dev : NULL;
188 static ssize_t show_address(struct device *tty_dev, struct device_attribute *attr, char *buf)
190 struct rfcomm_dev *dev = dev_get_drvdata(tty_dev);
191 bdaddr_t bdaddr;
192 baswap(&bdaddr, &dev->dst);
193 return sprintf(buf, "%s\n", batostr(&bdaddr));
196 static ssize_t show_channel(struct device *tty_dev, struct device_attribute *attr, char *buf)
198 struct rfcomm_dev *dev = dev_get_drvdata(tty_dev);
199 return sprintf(buf, "%d\n", dev->channel);
202 static DEVICE_ATTR(address, S_IRUGO, show_address, NULL);
203 static DEVICE_ATTR(channel, S_IRUGO, show_channel, NULL);
205 static int rfcomm_dev_add(struct rfcomm_dev_req *req, struct rfcomm_dlc *dlc)
207 struct rfcomm_dev *dev;
208 struct list_head *head = &rfcomm_dev_list, *p;
209 int err = 0;
211 BT_DBG("id %d channel %d", req->dev_id, req->channel);
213 dev = kzalloc(sizeof(struct rfcomm_dev), GFP_KERNEL);
214 if (!dev)
215 return -ENOMEM;
217 write_lock_bh(&rfcomm_dev_lock);
219 if (req->dev_id < 0) {
220 dev->id = 0;
222 list_for_each(p, &rfcomm_dev_list) {
223 if (list_entry(p, struct rfcomm_dev, list)->id != dev->id)
224 break;
226 dev->id++;
227 head = p;
229 } else {
230 dev->id = req->dev_id;
232 list_for_each(p, &rfcomm_dev_list) {
233 struct rfcomm_dev *entry = list_entry(p, struct rfcomm_dev, list);
235 if (entry->id == dev->id) {
236 err = -EADDRINUSE;
237 goto out;
240 if (entry->id > dev->id - 1)
241 break;
243 head = p;
247 if ((dev->id < 0) || (dev->id > RFCOMM_MAX_DEV - 1)) {
248 err = -ENFILE;
249 goto out;
252 sprintf(dev->name, "rfcomm%d", dev->id);
254 list_add(&dev->list, head);
255 atomic_set(&dev->refcnt, 1);
257 bacpy(&dev->src, &req->src);
258 bacpy(&dev->dst, &req->dst);
259 dev->channel = req->channel;
261 dev->flags = req->flags &
262 ((1 << RFCOMM_RELEASE_ONHUP) | (1 << RFCOMM_REUSE_DLC));
264 init_waitqueue_head(&dev->wait);
265 tasklet_init(&dev->wakeup_task, rfcomm_tty_wakeup, (unsigned long) dev);
267 rfcomm_dlc_lock(dlc);
268 dlc->data_ready = rfcomm_dev_data_ready;
269 dlc->state_change = rfcomm_dev_state_change;
270 dlc->modem_status = rfcomm_dev_modem_status;
272 dlc->owner = dev;
273 dev->dlc = dlc;
274 rfcomm_dlc_unlock(dlc);
276 /* It's safe to call __module_get() here because socket already
277 holds reference to this module. */
278 __module_get(THIS_MODULE);
280 out:
281 write_unlock_bh(&rfcomm_dev_lock);
283 if (err < 0) {
284 kfree(dev);
285 return err;
288 dev->tty_dev = tty_register_device(rfcomm_tty_driver, dev->id, NULL);
290 if (IS_ERR(dev->tty_dev)) {
291 err = PTR_ERR(dev->tty_dev);
292 list_del(&dev->list);
293 kfree(dev);
294 return err;
297 dev_set_drvdata(dev->tty_dev, dev);
299 if (device_create_file(dev->tty_dev, &dev_attr_address) < 0)
300 BT_ERR("Failed to create address attribute");
302 if (device_create_file(dev->tty_dev, &dev_attr_channel) < 0)
303 BT_ERR("Failed to create channel attribute");
305 return dev->id;
308 static void rfcomm_dev_del(struct rfcomm_dev *dev)
310 BT_DBG("dev %p", dev);
312 if (test_bit(RFCOMM_TTY_RELEASED, &dev->flags))
313 BUG_ON(1);
314 else
315 set_bit(RFCOMM_TTY_RELEASED, &dev->flags);
317 write_lock_bh(&rfcomm_dev_lock);
318 list_del_init(&dev->list);
319 write_unlock_bh(&rfcomm_dev_lock);
321 rfcomm_dev_put(dev);
324 /* ---- Send buffer ---- */
325 static inline unsigned int rfcomm_room(struct rfcomm_dlc *dlc)
327 /* We can't let it be zero, because we don't get a callback
328 when tx_credits becomes nonzero, hence we'd never wake up */
329 return dlc->mtu * (dlc->tx_credits?:1);
332 static void rfcomm_wfree(struct sk_buff *skb)
334 struct rfcomm_dev *dev = (void *) skb->sk;
335 atomic_sub(skb->truesize, &dev->wmem_alloc);
336 if (test_bit(RFCOMM_TTY_ATTACHED, &dev->flags))
337 tasklet_schedule(&dev->wakeup_task);
338 rfcomm_dev_put(dev);
341 static inline void rfcomm_set_owner_w(struct sk_buff *skb, struct rfcomm_dev *dev)
343 rfcomm_dev_hold(dev);
344 atomic_add(skb->truesize, &dev->wmem_alloc);
345 skb->sk = (void *) dev;
346 skb->destructor = rfcomm_wfree;
349 static struct sk_buff *rfcomm_wmalloc(struct rfcomm_dev *dev, unsigned long size, gfp_t priority)
351 if (atomic_read(&dev->wmem_alloc) < rfcomm_room(dev->dlc)) {
352 struct sk_buff *skb = alloc_skb(size, priority);
353 if (skb) {
354 rfcomm_set_owner_w(skb, dev);
355 return skb;
358 return NULL;
361 /* ---- Device IOCTLs ---- */
363 #define NOCAP_FLAGS ((1 << RFCOMM_REUSE_DLC) | (1 << RFCOMM_RELEASE_ONHUP))
365 static int rfcomm_create_dev(struct sock *sk, void __user *arg)
367 struct rfcomm_dev_req req;
368 struct rfcomm_dlc *dlc;
369 int id;
371 if (copy_from_user(&req, arg, sizeof(req)))
372 return -EFAULT;
374 BT_DBG("sk %p dev_id %d flags 0x%x", sk, req.dev_id, req.flags);
376 if (req.flags != NOCAP_FLAGS && !capable(CAP_NET_ADMIN))
377 return -EPERM;
379 if (req.flags & (1 << RFCOMM_REUSE_DLC)) {
380 /* Socket must be connected */
381 if (sk->sk_state != BT_CONNECTED)
382 return -EBADFD;
384 dlc = rfcomm_pi(sk)->dlc;
385 rfcomm_dlc_hold(dlc);
386 } else {
387 dlc = rfcomm_dlc_alloc(GFP_KERNEL);
388 if (!dlc)
389 return -ENOMEM;
392 id = rfcomm_dev_add(&req, dlc);
393 if (id < 0) {
394 rfcomm_dlc_put(dlc);
395 return id;
398 if (req.flags & (1 << RFCOMM_REUSE_DLC)) {
399 /* DLC is now used by device.
400 * Socket must be disconnected */
401 sk->sk_state = BT_CLOSED;
404 return id;
407 static int rfcomm_release_dev(void __user *arg)
409 struct rfcomm_dev_req req;
410 struct rfcomm_dev *dev;
412 if (copy_from_user(&req, arg, sizeof(req)))
413 return -EFAULT;
415 BT_DBG("dev_id %d flags 0x%x", req.dev_id, req.flags);
417 if (!(dev = rfcomm_dev_get(req.dev_id)))
418 return -ENODEV;
420 if (dev->flags != NOCAP_FLAGS && !capable(CAP_NET_ADMIN)) {
421 rfcomm_dev_put(dev);
422 return -EPERM;
425 if (req.flags & (1 << RFCOMM_HANGUP_NOW))
426 rfcomm_dlc_close(dev->dlc, 0);
428 /* Shut down TTY synchronously before freeing rfcomm_dev */
429 if (dev->tty)
430 tty_vhangup(dev->tty);
432 if (!test_bit(RFCOMM_RELEASE_ONHUP, &dev->flags))
433 rfcomm_dev_del(dev);
434 rfcomm_dev_put(dev);
435 return 0;
438 static int rfcomm_get_dev_list(void __user *arg)
440 struct rfcomm_dev_list_req *dl;
441 struct rfcomm_dev_info *di;
442 struct list_head *p;
443 int n = 0, size, err;
444 u16 dev_num;
446 BT_DBG("");
448 if (get_user(dev_num, (u16 __user *) arg))
449 return -EFAULT;
451 if (!dev_num || dev_num > (PAGE_SIZE * 4) / sizeof(*di))
452 return -EINVAL;
454 size = sizeof(*dl) + dev_num * sizeof(*di);
456 if (!(dl = kmalloc(size, GFP_KERNEL)))
457 return -ENOMEM;
459 di = dl->dev_info;
461 read_lock_bh(&rfcomm_dev_lock);
463 list_for_each(p, &rfcomm_dev_list) {
464 struct rfcomm_dev *dev = list_entry(p, struct rfcomm_dev, list);
465 if (test_bit(RFCOMM_TTY_RELEASED, &dev->flags))
466 continue;
467 (di + n)->id = dev->id;
468 (di + n)->flags = dev->flags;
469 (di + n)->state = dev->dlc->state;
470 (di + n)->channel = dev->channel;
471 bacpy(&(di + n)->src, &dev->src);
472 bacpy(&(di + n)->dst, &dev->dst);
473 if (++n >= dev_num)
474 break;
477 read_unlock_bh(&rfcomm_dev_lock);
479 dl->dev_num = n;
480 size = sizeof(*dl) + n * sizeof(*di);
482 err = copy_to_user(arg, dl, size);
483 kfree(dl);
485 return err ? -EFAULT : 0;
488 static int rfcomm_get_dev_info(void __user *arg)
490 struct rfcomm_dev *dev;
491 struct rfcomm_dev_info di;
492 int err = 0;
494 BT_DBG("");
496 if (copy_from_user(&di, arg, sizeof(di)))
497 return -EFAULT;
499 if (!(dev = rfcomm_dev_get(di.id)))
500 return -ENODEV;
502 di.flags = dev->flags;
503 di.channel = dev->channel;
504 di.state = dev->dlc->state;
505 bacpy(&di.src, &dev->src);
506 bacpy(&di.dst, &dev->dst);
508 if (copy_to_user(arg, &di, sizeof(di)))
509 err = -EFAULT;
511 rfcomm_dev_put(dev);
512 return err;
515 int rfcomm_dev_ioctl(struct sock *sk, unsigned int cmd, void __user *arg)
517 BT_DBG("cmd %d arg %p", cmd, arg);
519 switch (cmd) {
520 case RFCOMMCREATEDEV:
521 return rfcomm_create_dev(sk, arg);
523 case RFCOMMRELEASEDEV:
524 return rfcomm_release_dev(arg);
526 case RFCOMMGETDEVLIST:
527 return rfcomm_get_dev_list(arg);
529 case RFCOMMGETDEVINFO:
530 return rfcomm_get_dev_info(arg);
533 return -EINVAL;
536 /* ---- DLC callbacks ---- */
537 static void rfcomm_dev_data_ready(struct rfcomm_dlc *dlc, struct sk_buff *skb)
539 struct rfcomm_dev *dev = dlc->owner;
540 struct tty_struct *tty;
542 if (!dev || !(tty = dev->tty)) {
543 kfree_skb(skb);
544 return;
547 BT_DBG("dlc %p tty %p len %d", dlc, tty, skb->len);
549 tty_insert_flip_string(tty, skb->data, skb->len);
550 tty_flip_buffer_push(tty);
552 kfree_skb(skb);
555 static void rfcomm_dev_state_change(struct rfcomm_dlc *dlc, int err)
557 struct rfcomm_dev *dev = dlc->owner;
558 if (!dev)
559 return;
561 BT_DBG("dlc %p dev %p err %d", dlc, dev, err);
563 dev->err = err;
564 wake_up_interruptible(&dev->wait);
566 if (dlc->state == BT_CLOSED) {
567 if (!dev->tty) {
568 if (test_bit(RFCOMM_RELEASE_ONHUP, &dev->flags)) {
569 if (rfcomm_dev_get(dev->id) == NULL)
570 return;
572 rfcomm_dev_del(dev);
573 /* We have to drop DLC lock here, otherwise
574 rfcomm_dev_put() will dead lock if it's
575 the last reference. */
576 rfcomm_dlc_unlock(dlc);
577 rfcomm_dev_put(dev);
578 rfcomm_dlc_lock(dlc);
580 } else
581 tty_hangup(dev->tty);
585 static void rfcomm_dev_modem_status(struct rfcomm_dlc *dlc, u8 v24_sig)
587 struct rfcomm_dev *dev = dlc->owner;
588 if (!dev)
589 return;
591 BT_DBG("dlc %p dev %p v24_sig 0x%02x", dlc, dev, v24_sig);
593 if ((dev->modem_status & TIOCM_CD) && !(v24_sig & RFCOMM_V24_DV)) {
594 if (dev->tty && !C_CLOCAL(dev->tty))
595 tty_hangup(dev->tty);
598 dev->modem_status =
599 ((v24_sig & RFCOMM_V24_RTC) ? (TIOCM_DSR | TIOCM_DTR) : 0) |
600 ((v24_sig & RFCOMM_V24_RTR) ? (TIOCM_RTS | TIOCM_CTS) : 0) |
601 ((v24_sig & RFCOMM_V24_IC) ? TIOCM_RI : 0) |
602 ((v24_sig & RFCOMM_V24_DV) ? TIOCM_CD : 0);
605 /* ---- TTY functions ---- */
606 static void rfcomm_tty_wakeup(unsigned long arg)
608 struct rfcomm_dev *dev = (void *) arg;
609 struct tty_struct *tty = dev->tty;
610 if (!tty)
611 return;
613 BT_DBG("dev %p tty %p", dev, tty);
615 if (test_bit(TTY_DO_WRITE_WAKEUP, &tty->flags) && tty->ldisc.write_wakeup)
616 (tty->ldisc.write_wakeup)(tty);
618 wake_up_interruptible(&tty->write_wait);
619 #ifdef SERIAL_HAVE_POLL_WAIT
620 wake_up_interruptible(&tty->poll_wait);
621 #endif
624 static int rfcomm_tty_open(struct tty_struct *tty, struct file *filp)
626 DECLARE_WAITQUEUE(wait, current);
627 struct rfcomm_dev *dev;
628 struct rfcomm_dlc *dlc;
629 int err, id;
631 id = tty->index;
633 BT_DBG("tty %p id %d", tty, id);
635 /* We don't leak this refcount. For reasons which are not entirely
636 clear, the TTY layer will call our ->close() method even if the
637 open fails. We decrease the refcount there, and decreasing it
638 here too would cause breakage. */
639 dev = rfcomm_dev_get(id);
640 if (!dev)
641 return -ENODEV;
643 BT_DBG("dev %p dst %s channel %d opened %d", dev, batostr(&dev->dst), dev->channel, dev->opened);
645 if (dev->opened++ != 0)
646 return 0;
648 dlc = dev->dlc;
650 /* Attach TTY and open DLC */
652 rfcomm_dlc_lock(dlc);
653 tty->driver_data = dev;
654 dev->tty = tty;
655 rfcomm_dlc_unlock(dlc);
656 set_bit(RFCOMM_TTY_ATTACHED, &dev->flags);
658 err = rfcomm_dlc_open(dlc, &dev->src, &dev->dst, dev->channel);
659 if (err < 0)
660 return err;
662 /* Wait for DLC to connect */
663 add_wait_queue(&dev->wait, &wait);
664 while (1) {
665 set_current_state(TASK_INTERRUPTIBLE);
667 if (dlc->state == BT_CLOSED) {
668 err = -dev->err;
669 break;
672 if (dlc->state == BT_CONNECTED)
673 break;
675 if (signal_pending(current)) {
676 err = -EINTR;
677 break;
680 schedule();
682 set_current_state(TASK_RUNNING);
683 remove_wait_queue(&dev->wait, &wait);
685 if (err == 0)
686 device_move(dev->tty_dev, rfcomm_get_device(dev));
688 return err;
691 static void rfcomm_tty_close(struct tty_struct *tty, struct file *filp)
693 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
694 if (!dev)
695 return;
697 BT_DBG("tty %p dev %p dlc %p opened %d", tty, dev, dev->dlc, dev->opened);
699 if (--dev->opened == 0) {
700 if (dev->tty_dev->parent)
701 device_move(dev->tty_dev, NULL);
703 /* Close DLC and dettach TTY */
704 rfcomm_dlc_close(dev->dlc, 0);
706 clear_bit(RFCOMM_TTY_ATTACHED, &dev->flags);
707 tasklet_kill(&dev->wakeup_task);
709 rfcomm_dlc_lock(dev->dlc);
710 tty->driver_data = NULL;
711 dev->tty = NULL;
712 rfcomm_dlc_unlock(dev->dlc);
715 rfcomm_dev_put(dev);
718 static int rfcomm_tty_write(struct tty_struct *tty, const unsigned char *buf, int count)
720 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
721 struct rfcomm_dlc *dlc = dev->dlc;
722 struct sk_buff *skb;
723 int err = 0, sent = 0, size;
725 BT_DBG("tty %p count %d", tty, count);
727 while (count) {
728 size = min_t(uint, count, dlc->mtu);
730 skb = rfcomm_wmalloc(dev, size + RFCOMM_SKB_RESERVE, GFP_ATOMIC);
732 if (!skb)
733 break;
735 skb_reserve(skb, RFCOMM_SKB_HEAD_RESERVE);
737 memcpy(skb_put(skb, size), buf + sent, size);
739 if ((err = rfcomm_dlc_send(dlc, skb)) < 0) {
740 kfree_skb(skb);
741 break;
744 sent += size;
745 count -= size;
748 return sent ? sent : err;
751 static int rfcomm_tty_write_room(struct tty_struct *tty)
753 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
754 int room;
756 BT_DBG("tty %p", tty);
758 if (!dev || !dev->dlc)
759 return 0;
761 room = rfcomm_room(dev->dlc) - atomic_read(&dev->wmem_alloc);
762 if (room < 0)
763 room = 0;
765 return room;
768 static int rfcomm_tty_ioctl(struct tty_struct *tty, struct file *filp, unsigned int cmd, unsigned long arg)
770 BT_DBG("tty %p cmd 0x%02x", tty, cmd);
772 switch (cmd) {
773 case TCGETS:
774 BT_DBG("TCGETS is not supported");
775 return -ENOIOCTLCMD;
777 case TCSETS:
778 BT_DBG("TCSETS is not supported");
779 return -ENOIOCTLCMD;
781 case TIOCMIWAIT:
782 BT_DBG("TIOCMIWAIT");
783 break;
785 case TIOCGICOUNT:
786 BT_DBG("TIOCGICOUNT");
787 break;
789 case TIOCGSERIAL:
790 BT_ERR("TIOCGSERIAL is not supported");
791 return -ENOIOCTLCMD;
793 case TIOCSSERIAL:
794 BT_ERR("TIOCSSERIAL is not supported");
795 return -ENOIOCTLCMD;
797 case TIOCSERGSTRUCT:
798 BT_ERR("TIOCSERGSTRUCT is not supported");
799 return -ENOIOCTLCMD;
801 case TIOCSERGETLSR:
802 BT_ERR("TIOCSERGETLSR is not supported");
803 return -ENOIOCTLCMD;
805 case TIOCSERCONFIG:
806 BT_ERR("TIOCSERCONFIG is not supported");
807 return -ENOIOCTLCMD;
809 default:
810 return -ENOIOCTLCMD; /* ioctls which we must ignore */
814 return -ENOIOCTLCMD;
817 static void rfcomm_tty_set_termios(struct tty_struct *tty, struct ktermios *old)
819 struct ktermios *new = tty->termios;
820 int old_baud_rate = tty_termios_baud_rate(old);
821 int new_baud_rate = tty_termios_baud_rate(new);
823 u8 baud, data_bits, stop_bits, parity, x_on, x_off;
824 u16 changes = 0;
826 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
828 BT_DBG("tty %p termios %p", tty, old);
830 if (!dev || !dev->dlc || !dev->dlc->session)
831 return;
833 /* Handle turning off CRTSCTS */
834 if ((old->c_cflag & CRTSCTS) && !(new->c_cflag & CRTSCTS))
835 BT_DBG("Turning off CRTSCTS unsupported");
837 /* Parity on/off and when on, odd/even */
838 if (((old->c_cflag & PARENB) != (new->c_cflag & PARENB)) ||
839 ((old->c_cflag & PARODD) != (new->c_cflag & PARODD)) ) {
840 changes |= RFCOMM_RPN_PM_PARITY;
841 BT_DBG("Parity change detected.");
844 /* Mark and space parity are not supported! */
845 if (new->c_cflag & PARENB) {
846 if (new->c_cflag & PARODD) {
847 BT_DBG("Parity is ODD");
848 parity = RFCOMM_RPN_PARITY_ODD;
849 } else {
850 BT_DBG("Parity is EVEN");
851 parity = RFCOMM_RPN_PARITY_EVEN;
853 } else {
854 BT_DBG("Parity is OFF");
855 parity = RFCOMM_RPN_PARITY_NONE;
858 /* Setting the x_on / x_off characters */
859 if (old->c_cc[VSTOP] != new->c_cc[VSTOP]) {
860 BT_DBG("XOFF custom");
861 x_on = new->c_cc[VSTOP];
862 changes |= RFCOMM_RPN_PM_XON;
863 } else {
864 BT_DBG("XOFF default");
865 x_on = RFCOMM_RPN_XON_CHAR;
868 if (old->c_cc[VSTART] != new->c_cc[VSTART]) {
869 BT_DBG("XON custom");
870 x_off = new->c_cc[VSTART];
871 changes |= RFCOMM_RPN_PM_XOFF;
872 } else {
873 BT_DBG("XON default");
874 x_off = RFCOMM_RPN_XOFF_CHAR;
877 /* Handle setting of stop bits */
878 if ((old->c_cflag & CSTOPB) != (new->c_cflag & CSTOPB))
879 changes |= RFCOMM_RPN_PM_STOP;
881 /* POSIX does not support 1.5 stop bits and RFCOMM does not
882 * support 2 stop bits. So a request for 2 stop bits gets
883 * translated to 1.5 stop bits */
884 if (new->c_cflag & CSTOPB) {
885 stop_bits = RFCOMM_RPN_STOP_15;
886 } else {
887 stop_bits = RFCOMM_RPN_STOP_1;
890 /* Handle number of data bits [5-8] */
891 if ((old->c_cflag & CSIZE) != (new->c_cflag & CSIZE))
892 changes |= RFCOMM_RPN_PM_DATA;
894 switch (new->c_cflag & CSIZE) {
895 case CS5:
896 data_bits = RFCOMM_RPN_DATA_5;
897 break;
898 case CS6:
899 data_bits = RFCOMM_RPN_DATA_6;
900 break;
901 case CS7:
902 data_bits = RFCOMM_RPN_DATA_7;
903 break;
904 case CS8:
905 data_bits = RFCOMM_RPN_DATA_8;
906 break;
907 default:
908 data_bits = RFCOMM_RPN_DATA_8;
909 break;
912 /* Handle baudrate settings */
913 if (old_baud_rate != new_baud_rate)
914 changes |= RFCOMM_RPN_PM_BITRATE;
916 switch (new_baud_rate) {
917 case 2400:
918 baud = RFCOMM_RPN_BR_2400;
919 break;
920 case 4800:
921 baud = RFCOMM_RPN_BR_4800;
922 break;
923 case 7200:
924 baud = RFCOMM_RPN_BR_7200;
925 break;
926 case 9600:
927 baud = RFCOMM_RPN_BR_9600;
928 break;
929 case 19200:
930 baud = RFCOMM_RPN_BR_19200;
931 break;
932 case 38400:
933 baud = RFCOMM_RPN_BR_38400;
934 break;
935 case 57600:
936 baud = RFCOMM_RPN_BR_57600;
937 break;
938 case 115200:
939 baud = RFCOMM_RPN_BR_115200;
940 break;
941 case 230400:
942 baud = RFCOMM_RPN_BR_230400;
943 break;
944 default:
945 /* 9600 is standard accordinag to the RFCOMM specification */
946 baud = RFCOMM_RPN_BR_9600;
947 break;
951 if (changes)
952 rfcomm_send_rpn(dev->dlc->session, 1, dev->dlc->dlci, baud,
953 data_bits, stop_bits, parity,
954 RFCOMM_RPN_FLOW_NONE, x_on, x_off, changes);
956 return;
959 static void rfcomm_tty_throttle(struct tty_struct *tty)
961 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
963 BT_DBG("tty %p dev %p", tty, dev);
965 rfcomm_dlc_throttle(dev->dlc);
968 static void rfcomm_tty_unthrottle(struct tty_struct *tty)
970 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
972 BT_DBG("tty %p dev %p", tty, dev);
974 rfcomm_dlc_unthrottle(dev->dlc);
977 static int rfcomm_tty_chars_in_buffer(struct tty_struct *tty)
979 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
981 BT_DBG("tty %p dev %p", tty, dev);
983 if (!dev || !dev->dlc)
984 return 0;
986 if (!skb_queue_empty(&dev->dlc->tx_queue))
987 return dev->dlc->mtu;
989 return 0;
992 static void rfcomm_tty_flush_buffer(struct tty_struct *tty)
994 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
996 BT_DBG("tty %p dev %p", tty, dev);
998 if (!dev || !dev->dlc)
999 return;
1001 skb_queue_purge(&dev->dlc->tx_queue);
1003 if (test_bit(TTY_DO_WRITE_WAKEUP, &tty->flags) && tty->ldisc.write_wakeup)
1004 tty->ldisc.write_wakeup(tty);
1007 static void rfcomm_tty_send_xchar(struct tty_struct *tty, char ch)
1009 BT_DBG("tty %p ch %c", tty, ch);
1012 static void rfcomm_tty_wait_until_sent(struct tty_struct *tty, int timeout)
1014 BT_DBG("tty %p timeout %d", tty, timeout);
1017 static void rfcomm_tty_hangup(struct tty_struct *tty)
1019 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
1021 BT_DBG("tty %p dev %p", tty, dev);
1023 if (!dev)
1024 return;
1026 rfcomm_tty_flush_buffer(tty);
1028 if (test_bit(RFCOMM_RELEASE_ONHUP, &dev->flags)) {
1029 if (rfcomm_dev_get(dev->id) == NULL)
1030 return;
1031 rfcomm_dev_del(dev);
1032 rfcomm_dev_put(dev);
1036 static int rfcomm_tty_read_proc(char *buf, char **start, off_t offset, int len, int *eof, void *unused)
1038 return 0;
1041 static int rfcomm_tty_tiocmget(struct tty_struct *tty, struct file *filp)
1043 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
1045 BT_DBG("tty %p dev %p", tty, dev);
1047 return dev->modem_status;
1050 static int rfcomm_tty_tiocmset(struct tty_struct *tty, struct file *filp, unsigned int set, unsigned int clear)
1052 struct rfcomm_dev *dev = (struct rfcomm_dev *) tty->driver_data;
1053 struct rfcomm_dlc *dlc = dev->dlc;
1054 u8 v24_sig;
1056 BT_DBG("tty %p dev %p set 0x%02x clear 0x%02x", tty, dev, set, clear);
1058 rfcomm_dlc_get_modem_status(dlc, &v24_sig);
1060 if (set & TIOCM_DSR || set & TIOCM_DTR)
1061 v24_sig |= RFCOMM_V24_RTC;
1062 if (set & TIOCM_RTS || set & TIOCM_CTS)
1063 v24_sig |= RFCOMM_V24_RTR;
1064 if (set & TIOCM_RI)
1065 v24_sig |= RFCOMM_V24_IC;
1066 if (set & TIOCM_CD)
1067 v24_sig |= RFCOMM_V24_DV;
1069 if (clear & TIOCM_DSR || clear & TIOCM_DTR)
1070 v24_sig &= ~RFCOMM_V24_RTC;
1071 if (clear & TIOCM_RTS || clear & TIOCM_CTS)
1072 v24_sig &= ~RFCOMM_V24_RTR;
1073 if (clear & TIOCM_RI)
1074 v24_sig &= ~RFCOMM_V24_IC;
1075 if (clear & TIOCM_CD)
1076 v24_sig &= ~RFCOMM_V24_DV;
1078 rfcomm_dlc_set_modem_status(dlc, v24_sig);
1080 return 0;
1083 /* ---- TTY structure ---- */
1085 static const struct tty_operations rfcomm_ops = {
1086 .open = rfcomm_tty_open,
1087 .close = rfcomm_tty_close,
1088 .write = rfcomm_tty_write,
1089 .write_room = rfcomm_tty_write_room,
1090 .chars_in_buffer = rfcomm_tty_chars_in_buffer,
1091 .flush_buffer = rfcomm_tty_flush_buffer,
1092 .ioctl = rfcomm_tty_ioctl,
1093 .throttle = rfcomm_tty_throttle,
1094 .unthrottle = rfcomm_tty_unthrottle,
1095 .set_termios = rfcomm_tty_set_termios,
1096 .send_xchar = rfcomm_tty_send_xchar,
1097 .hangup = rfcomm_tty_hangup,
1098 .wait_until_sent = rfcomm_tty_wait_until_sent,
1099 .read_proc = rfcomm_tty_read_proc,
1100 .tiocmget = rfcomm_tty_tiocmget,
1101 .tiocmset = rfcomm_tty_tiocmset,
1104 int rfcomm_init_ttys(void)
1106 rfcomm_tty_driver = alloc_tty_driver(RFCOMM_TTY_PORTS);
1107 if (!rfcomm_tty_driver)
1108 return -1;
1110 rfcomm_tty_driver->owner = THIS_MODULE;
1111 rfcomm_tty_driver->driver_name = "rfcomm";
1112 rfcomm_tty_driver->name = "rfcomm";
1113 rfcomm_tty_driver->major = RFCOMM_TTY_MAJOR;
1114 rfcomm_tty_driver->minor_start = RFCOMM_TTY_MINOR;
1115 rfcomm_tty_driver->type = TTY_DRIVER_TYPE_SERIAL;
1116 rfcomm_tty_driver->subtype = SERIAL_TYPE_NORMAL;
1117 rfcomm_tty_driver->flags = TTY_DRIVER_REAL_RAW | TTY_DRIVER_DYNAMIC_DEV;
1118 rfcomm_tty_driver->init_termios = tty_std_termios;
1119 rfcomm_tty_driver->init_termios.c_cflag = B9600 | CS8 | CREAD | HUPCL | CLOCAL;
1120 tty_set_operations(rfcomm_tty_driver, &rfcomm_ops);
1122 if (tty_register_driver(rfcomm_tty_driver)) {
1123 BT_ERR("Can't register RFCOMM TTY driver");
1124 put_tty_driver(rfcomm_tty_driver);
1125 return -1;
1128 BT_INFO("RFCOMM TTY layer initialized");
1130 return 0;
1133 void rfcomm_cleanup_ttys(void)
1135 tty_unregister_driver(rfcomm_tty_driver);
1136 put_tty_driver(rfcomm_tty_driver);