Home Esplora Aiuto
Accedi
samsung-sm8650
/
android_kernel_samsung_sm8650_ksu
2
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): 5c86c450e2
Rami (Branch) Tag
android_kernel_...
/
net
/
qrtr
/
af_qrtr.c

af_qrtr.c 59 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418 
  1. // SPDX-License-Identifier: GPL-2.0-only
    2. 

  2. /*
    3. 

  3.  * Copyright (c) 2015, Sony Mobile Communications Inc.
    4. 

  4.  * Copyright (c) 2013, The Linux Foundation. All rights reserved.
    5. 

  5.  * Copyright (c) 2022-2023 Qualcomm Innovation Center, Inc. All rights reserved.
    6. 

  6.  */
    7. 

  7. #include <linux/kthread.h>
    8. 

  8. #include <linux/module.h>
    9. 

  9. #include <linux/netlink.h>
    10. 

  10. #include <linux/qrtr.h>
    11. 

  11. #include <linux/termios.h>	/* For TIOCINQ/OUTQ */
    12. 

  12. #include <linux/spinlock.h>
    13. 

  13. #include <linux/wait.h>
    14. 

  14. #include <linux/rwsem.h>
    15. 

  15. #include <linux/uidgid.h>
    16. 

  16. #include <linux/pm_wakeup.h>
    17. 

  17. #include <linux/of_device.h>
    18. 

  18. #include <linux/ipc_logging.h>
    19. 

  19. #include <linux/completion.h>
    20. 

  20. 

  21. #include <net/sock.h>
    22. 

  22. #include <uapi/linux/sched/types.h>
    23. 

  23. 

  24. #include "qrtr.h"
    25. 

  25. 

  26. #define QRTR_LOG_PAGE_CNT 16
    27. 

  27. #define QRTR_INFO(ctx, x, ...)				\
    28. 

  28. 	ipc_log_string(ctx, x, ##__VA_ARGS__)
    29. 

  29. 

  30. #define QRTR_PROTO_VER_1 1
    31. 

  31. #define QRTR_PROTO_VER_2 3
    32. 

  32. 

  33. /* auto-bind range */
    34. 

  34. #define QRTR_MIN_EPH_SOCKET 0x4000
    35. 

  35. #define QRTR_MAX_EPH_SOCKET 0x7fff
    36. 

  36. #define QRTR_EPH_PORT_RANGE \
    37. 

  37. 		XA_LIMIT(QRTR_MIN_EPH_SOCKET, QRTR_MAX_EPH_SOCKET)
    38. 

  38. 

  39. #define QRTR_PORT_CTRL_LEGACY 0xffff
    40. 

  40. 

  41. /* qrtr socket states */
    42. 

  42. #define QRTR_STATE_MULTI	-2
    43. 

  43. #define QRTR_STATE_INIT		-1
    44. 

  44. 

  45. #define AID_VENDOR_QRTR	KGIDT_INIT(2906)
    46. 

  46. 

  47. /**
    48. 

  48.  * struct qrtr_hdr_v1 - (I|R)PCrouter packet header version 1
    49. 

  49.  * @version: protocol version
    50. 

  50.  * @type: packet type; one of QRTR_TYPE_*
    51. 

  51.  * @src_node_id: source node
    52. 

  52.  * @src_port_id: source port
    53. 

  53.  * @confirm_rx: boolean; whether a resume-tx packet should be send in reply
    54. 

  54.  * @size: length of packet, excluding this header
    55. 

  55.  * @dst_node_id: destination node
    56. 

  56.  * @dst_port_id: destination port
    57. 

  57.  */
    58. 

  58. struct qrtr_hdr_v1 {
    59. 

  59. 	__le32 version;
    60. 

  60. 	__le32 type;
    61. 

  61. 	__le32 src_node_id;
    62. 

  62. 	__le32 src_port_id;
    63. 

  63. 	__le32 confirm_rx;
    64. 

  64. 	__le32 size;
    65. 

  65. 	__le32 dst_node_id;
    66. 

  66. 	__le32 dst_port_id;
    67. 

  67. } __packed;
    68. 

  68. 

  69. /**
    70. 

  70.  * struct qrtr_hdr_v2 - (I|R)PCrouter packet header later versions
    71. 

  71.  * @version: protocol version
    72. 

  72.  * @type: packet type; one of QRTR_TYPE_*
    73. 

  73.  * @flags: bitmask of QRTR_FLAGS_*
    74. 

  74.  * @optlen: length of optional header data
    75. 

  75.  * @size: length of packet, excluding this header and optlen
    76. 

  76.  * @src_node_id: source node
    77. 

  77.  * @src_port_id: source port
    78. 

  78.  * @dst_node_id: destination node
    79. 

  79.  * @dst_port_id: destination port
    80. 

  80.  */
    81. 

  81. struct qrtr_hdr_v2 {
    82. 

  82. 	u8 version;
    83. 

  83. 	u8 type;
    84. 

  84. 	u8 flags;
    85. 

  85. 	u8 optlen;
    86. 

  86. 	__le32 size;
    87. 

  87. 	__le16 src_node_id;
    88. 

  88. 	__le16 src_port_id;
    89. 

  89. 	__le16 dst_node_id;
    90. 

  90. 	__le16 dst_port_id;
    91. 

  91. };
    92. 

  92. 

  93. #define QRTR_FLAGS_CONFIRM_RX	BIT(0)
    94. 

  94. 

  95. struct qrtr_cb {
    96. 

  96. 	u32 src_node;
    97. 

  97. 	u32 src_port;
    98. 

  98. 	u32 dst_node;
    99. 

  99. 	u32 dst_port;
    100. 

  100. 

  101. 	u8 type;
    102. 

  102. 	u8 confirm_rx;
    103. 

  103. };
    104. 

  104. 

  105. #define QRTR_HDR_MAX_SIZE max_t(size_t, sizeof(struct qrtr_hdr_v1), \
    106. 

  106. 					sizeof(struct qrtr_hdr_v2))
    107. 

  107. 

  108. struct qrtr_sock {
    109. 

  109. 	/* WARNING: sk must be the first member */
    110. 

  110. 	struct sock sk;
    111. 

  111. 	struct sockaddr_qrtr us;
    112. 

  112. 	struct sockaddr_qrtr peer;
    113. 

  113. 

  114. 	int state;
    115. 

  115. 

  116. 	struct completion rx_queue_has_space;
    117. 

  117. 	bool signal_on_recv;
    118. 

  118. 	/* protect above signal variables */
    119. 

  119. 	spinlock_t signal_lock;
    120. 

  120. };
    121. 

  121. 

  122. static inline struct qrtr_sock *qrtr_sk(struct sock *sk)
    123. 

  123. {
    124. 

  124. 	BUILD_BUG_ON(offsetof(struct qrtr_sock, sk) != 0);
    125. 

  125. 	return container_of(sk, struct qrtr_sock, sk);
    126. 

  126. }
    127. 

  127. 

  128. static unsigned int qrtr_local_nid = CONFIG_QRTR_NODE_ID;
    129. 

  129. static unsigned int qrtr_wakeup_ms = CONFIG_QRTR_WAKEUP_MS;
    130. 

  130. 

  131. /* For local IPC logging context*/
    132. 

  132. static void *qrtr_local_ilc;
    133. 

  133. 

  134. /* for node ids */
    135. 

  135. static RADIX_TREE(qrtr_nodes, GFP_ATOMIC);
    136. 

  136. static DEFINE_SPINLOCK(qrtr_nodes_lock);
    137. 

  137. /* broadcast list */
    138. 

  138. static LIST_HEAD(qrtr_all_epts);
    139. 

  139. /* lock for qrtr_all_epts */
    140. 

  140. static DECLARE_RWSEM(qrtr_epts_lock);
    141. 

  141. 

  142. /* local port allocation management */
    143. 

  143. static DEFINE_XARRAY_ALLOC(qrtr_ports);
    144. 

  144. u32 qrtr_ports_next = QRTR_MIN_EPH_SOCKET;
    145. 

  145. static DEFINE_SPINLOCK(qrtr_port_lock);
    146. 

  146. 

  147. /* backup buffers */
    148. 

  148. #define QRTR_BACKUP_HI_NUM	10
    149. 

  149. #define QRTR_BACKUP_HI_SIZE	SZ_16K
    150. 

  150. #define QRTR_BACKUP_MD_NUM	20
    151. 

  151. #define QRTR_BACKUP_MD_SIZE	SZ_1K
    152. 

  152. #define QRTR_BACKUP_LO_NUM	20
    153. 

  153. #define QRTR_BACKUP_LO_SIZE	SZ_256
    154. 

  154. static struct sk_buff_head qrtr_backup_lo;
    155. 

  155. static struct sk_buff_head qrtr_backup_md;
    156. 

  156. static struct sk_buff_head qrtr_backup_hi;
    157. 

  157. static struct work_struct qrtr_backup_work;
    158. 

  158. 

  159. /**
    160. 

  160.  * struct qrtr_node - endpoint node
    161. 

  161.  * @ep_lock: lock for endpoint management and callbacks
    162. 

  162.  * @ep: endpoint
    163. 

  163.  * @ref: reference count for node
    164. 

  164.  * @nid: node id
    165. 

  165.  * @net_id: network cluster identifer
    166. 

  166.  * @qrtr_tx_flow: tree of qrtr_tx_flow, keyed by node << 32 | port
    167. 

  167.  * @qrtr_tx_lock: lock for qrtr_tx_flow inserts
    168. 

  168.  * @hello_sent: hello packet sent to endpoint
    169. 

  169.  * @hello_rcvd: hello packet received from endpoint
    170. 

  170.  * @rx_queue: receive queue
    171. 

  171.  * @item: list item for broadcast list
    172. 

  172.  * @kworker: worker thread for recv work
    173. 

  173.  * @task: task to run the worker thread
    174. 

  174.  * @read_data: scheduled work for recv work
    175. 

  175.  * @say_hello: scheduled work for initiating hello
    176. 

  176.  * @ws: wakeupsource avoid system suspend
    177. 

  177.  * @ilc: ipc logging context reference
    178. 

  178.  */
    179. 

  179. struct qrtr_node {
    180. 

  180. 	struct mutex ep_lock;
    181. 

  181. 	struct qrtr_endpoint *ep;
    182. 

  182. 	struct kref ref;
    183. 

  183. 	unsigned int nid;
    184. 

  184. 	unsigned int net_id;
    185. 

  185. 	atomic_t hello_sent;
    186. 

  186. 	atomic_t hello_rcvd;
    187. 

  187. 

  188. 	struct radix_tree_root qrtr_tx_flow;
    189. 

  189. 	struct mutex qrtr_tx_lock; /* for qrtr_tx_flow */
    190. 

  190. 

  191. 	struct sk_buff_head rx_queue;
    192. 

  192. 	struct list_head item;
    193. 

  193. 

  194. 	struct kthread_worker kworker;
    195. 

  195. 	struct task_struct *task;
    196. 

  196. 	struct kthread_work read_data;
    197. 

  197. 	struct kthread_work say_hello;
    198. 

  198. 

  199. 	struct wakeup_source *ws;
    200. 

  200. 	void *ilc;
    201. 

  201. 

  202. 	struct xarray no_wake_svc; /* services that will not wake up APPS */
    203. 

  203. };
    204. 

  204. 

  205. struct qrtr_tx_flow_waiter {
    206. 

  206. 	struct list_head node;
    207. 

  207. 	struct sock *sk;
    208. 

  208. };
    209. 

  209. 

  210. /**
    211. 

  211.  * struct qrtr_tx_flow - tx flow control
    212. 

  212.  * @resume_tx: waiters for a resume tx from the remote
    213. 

  213.  * @pending: number of waiting senders
    214. 

  214.  * @tx_failed: indicates that a message with confirm_rx flag was lost
    215. 

  215.  * @waiters: list of ports to notify when this flow resumes
    216. 

  216.  * @lock: lock to protect flow variables
    217. 

  217.  */
    218. 

  218. struct qrtr_tx_flow {
    219. 

  219. 	struct wait_queue_head resume_tx;
    220. 

  220. 	int pending;
    221. 

  221. 	int tx_failed;
    222. 

  222. 	struct list_head waiters;
    223. 

  223. 	/* protect above flow variables */
    224. 

  224. 	spinlock_t lock;
    225. 

  225. };
    226. 

  226. 

  227. #define QRTR_TX_FLOW_HIGH	10
    228. 

  228. #define QRTR_TX_FLOW_LOW	5
    229. 

  229. 

  230. static int qrtr_local_enqueue(struct qrtr_node *node, struct sk_buff *skb,
    231. 

  231. 			      int type, struct sockaddr_qrtr *from,
    232. 

  232. 			      struct sockaddr_qrtr *to, unsigned int flags);
    233. 

  233. static int qrtr_bcast_enqueue(struct qrtr_node *node, struct sk_buff *skb,
    234. 

  234. 			      int type, struct sockaddr_qrtr *from,
    235. 

  235. 			      struct sockaddr_qrtr *to, unsigned int flags);
    236. 

  236. static struct qrtr_sock *qrtr_port_lookup(int port);
    237. 

  237. static void qrtr_port_put(struct qrtr_sock *ipc);
    238. 

  238. static void qrtr_handle_del_proc(struct qrtr_node *node, struct sk_buff *skb);
    239. 

  239. 

  240. static void qrtr_log_tx_msg(struct qrtr_node *node, struct qrtr_hdr_v1 *hdr,
    241. 

  241. 			    struct sk_buff *skb)
    242. 

  242. {
    243. 

  243. 	struct qrtr_ctrl_pkt pkt = {0,};
    244. 

  244. 	u64 pl_buf = 0;
    245. 

  245. 	int type;
    246. 

  246. 

  247. 	if (!hdr || !skb)
    248. 

  248. 		return;
    249. 

  249. 

  250. 	type = le32_to_cpu(hdr->type);
    251. 

  251. 	if (type == QRTR_TYPE_DATA) {
    252. 

  252. 		skb_copy_bits(skb, QRTR_HDR_MAX_SIZE, &pl_buf, sizeof(pl_buf));
    253. 

  253. 		QRTR_INFO(node->ilc,
    254. 

  254. 			  "TX DATA: Len:0x%x CF:0x%x src[0x%x:0x%x] dst[0x%x:0x%x] [%08x %08x] [%s]\n",
    255. 

  255. 			  hdr->size, hdr->confirm_rx,
    256. 

  256. 			  hdr->src_node_id, hdr->src_port_id,
    257. 

  257. 			  hdr->dst_node_id, hdr->dst_port_id,
    258. 

  258. 			  (unsigned int)pl_buf, (unsigned int)(pl_buf >> 32),
    259. 

  259. 			  current->comm);
    260. 

  260. 	} else {
    261. 

  261. 		skb_copy_bits(skb, QRTR_HDR_MAX_SIZE, &pkt, sizeof(pkt));
    262. 

  262. 		if (type == QRTR_TYPE_NEW_SERVER ||
    263. 

  263. 		    type == QRTR_TYPE_DEL_SERVER)
    264. 

  264. 			QRTR_INFO(node->ilc,
    265. 

  265. 				  "TX CTRL: cmd:0x%x SVC[0x%x:0x%x] addr[0x%x:0x%x]\n",
    266. 

  266. 				  type, le32_to_cpu(pkt.server.service),
    267. 

  267. 				  le32_to_cpu(pkt.server.instance),
    268. 

  268. 				  le32_to_cpu(pkt.server.node),
    269. 

  269. 				  le32_to_cpu(pkt.server.port));
    270. 

  270. 		else if (type == QRTR_TYPE_DEL_CLIENT ||
    271. 

  271. 			 type == QRTR_TYPE_RESUME_TX)
    272. 

  272. 			QRTR_INFO(node->ilc,
    273. 

  273. 				  "TX CTRL: cmd:0x%x addr[0x%x:0x%x]\n",
    274. 

  274. 				  type, le32_to_cpu(pkt.client.node),
    275. 

  275. 				  le32_to_cpu(pkt.client.port));
    276. 

  276. 		else if (type == QRTR_TYPE_HELLO ||
    277. 

  277. 			 type == QRTR_TYPE_BYE)
    278. 

  278. 			QRTR_INFO(node->ilc,
    279. 

  279. 				  "TX CTRL: cmd:0x%x node[0x%x]\n",
    280. 

  280. 				  type, hdr->src_node_id);
    281. 

  281. 		else if (type == QRTR_TYPE_DEL_PROC)
    282. 

  282. 			QRTR_INFO(node->ilc,
    283. 

  283. 				  "TX CTRL: cmd:0x%x node[0x%x]\n",
    284. 

  284. 				  type, pkt.proc.node);
    285. 

  285. 	}
    286. 

  286. }
    287. 

  287. 

  288. static void qrtr_log_rx_msg(struct qrtr_node *node, struct sk_buff *skb)
    289. 

  289. {
    290. 

  290. 	struct qrtr_ctrl_pkt pkt = {0,};
    291. 

  291. 	struct qrtr_cb *cb;
    292. 

  292. 	u64 pl_buf = 0;
    293. 

  293. 

  294. 	if (!skb)
    295. 

  295. 		return;
    296. 

  296. 

  297. 	cb = (struct qrtr_cb *)skb->cb;
    298. 

  298. 

  299. 	if (cb->type == QRTR_TYPE_DATA) {
    300. 

  300. 		skb_copy_bits(skb, 0, &pl_buf, sizeof(pl_buf));
    301. 

  301. 		QRTR_INFO(node->ilc,
    302. 

  302. 			  "RX DATA: Len:0x%x CF:0x%x src[0x%x:0x%x] dst[0x%x:0x%x] [%08x %08x]\n",
    303. 

  303. 			  skb->len, cb->confirm_rx, cb->src_node, cb->src_port,
    304. 

  304. 			  cb->dst_node, cb->dst_port,
    305. 

  305. 			  (unsigned int)pl_buf, (unsigned int)(pl_buf >> 32));
    306. 

  306. 	} else {
    307. 

  307. 		skb_copy_bits(skb, 0, &pkt, sizeof(pkt));
    308. 

  308. 		if (cb->type == QRTR_TYPE_NEW_SERVER ||
    309. 

  309. 		    cb->type == QRTR_TYPE_DEL_SERVER)
    310. 

  310. 			QRTR_INFO(node->ilc,
    311. 

  311. 				  "RX CTRL: cmd:0x%x SVC[0x%x:0x%x] addr[0x%x:0x%x]\n",
    312. 

  312. 				  cb->type, le32_to_cpu(pkt.server.service),
    313. 

  313. 				  le32_to_cpu(pkt.server.instance),
    314. 

  314. 				  le32_to_cpu(pkt.server.node),
    315. 

  315. 				  le32_to_cpu(pkt.server.port));
    316. 

  316. 		else if (cb->type == QRTR_TYPE_DEL_CLIENT ||
    317. 

  317. 			 cb->type == QRTR_TYPE_RESUME_TX)
    318. 

  318. 			QRTR_INFO(node->ilc,
    319. 

  319. 				  "RX CTRL: cmd:0x%x addr[0x%x:0x%x]\n",
    320. 

  320. 				  cb->type, le32_to_cpu(pkt.client.node),
    321. 

  321. 				  le32_to_cpu(pkt.client.port));
    322. 

  322. 		else if (cb->type == QRTR_TYPE_HELLO ||
    323. 

  323. 			 cb->type == QRTR_TYPE_BYE)
    324. 

  324. 			QRTR_INFO(node->ilc,
    325. 

  325. 				  "RX CTRL: cmd:0x%x node[0x%x]\n",
    326. 

  326. 				  cb->type, cb->src_node);
    327. 

  327. 		else if (cb->type == QRTR_TYPE_DEL_PROC)
    328. 

  328. 			QRTR_INFO(node->ilc,
    329. 

  329. 				  "RX CTRL: cmd:0x%x node[0x%x]\n",
    330. 

  330. 				  cb->type, le32_to_cpu(pkt.proc.node));
    331. 

  331. 	}
    332. 

  332. }
    333. 

  333. 

  334. void qrtr_print_wakeup_reason(const void *data)
    335. 

  335. {
    336. 

  336. 	const struct qrtr_hdr_v1 *v1;
    337. 

  337. 	const struct qrtr_hdr_v2 *v2;
    338. 

  338. 	struct qrtr_cb cb;
    339. 

  339. 	unsigned int size;
    340. 

  340. 	unsigned int ver;
    341. 

  341. 	int service_id;
    342. 

  342. 	size_t hdrlen;
    343. 

  343. 	u64 preview = 0;
    344. 

  344. 

  345. 	ver = *(u8 *)data;
    346. 

  346. 	switch (ver) {
    347. 

  347. 	case QRTR_PROTO_VER_1:
    348. 

  348. 		v1 = data;
    349. 

  349. 		hdrlen = sizeof(*v1);
    350. 

  350. 		cb.src_node = le32_to_cpu(v1->src_node_id);
    351. 

  351. 		cb.src_port = le32_to_cpu(v1->src_port_id);
    352. 

  352. 		cb.dst_node = le32_to_cpu(v1->dst_node_id);
    353. 

  353. 		cb.dst_port = le32_to_cpu(v1->dst_port_id);
    354. 

  354. 

  355. 		size = le32_to_cpu(v1->size);
    356. 

  356. 		break;
    357. 

  357. 	case QRTR_PROTO_VER_2:
    358. 

  358. 		v2 = data;
    359. 

  359. 		hdrlen = sizeof(*v2) + v2->optlen;
    360. 

  360. 		cb.src_node = le16_to_cpu(v2->src_node_id);
    361. 

  361. 		cb.src_port = le16_to_cpu(v2->src_port_id);
    362. 

  362. 		cb.dst_node = le16_to_cpu(v2->dst_node_id);
    363. 

  363. 		cb.dst_port = le16_to_cpu(v2->dst_port_id);
    364. 

  364. 

  365. 		if (cb.src_port == (u16)QRTR_PORT_CTRL)
    366. 

  366. 			cb.src_port = QRTR_PORT_CTRL;
    367. 

  367. 		if (cb.dst_port == (u16)QRTR_PORT_CTRL)
    368. 

  368. 			cb.dst_port = QRTR_PORT_CTRL;
    369. 

  369. 

  370. 		size = le32_to_cpu(v2->size);
    371. 

  371. 		break;
    372. 

  372. 	default:
    373. 

  373. 		return;
    374. 

  374. 	}
    375. 

  375. 

  376. 	service_id = qrtr_get_service_id(cb.src_node, cb.src_port);
    377. 

  377. 	if (service_id < 0)
    378. 

  378. 		service_id = qrtr_get_service_id(cb.dst_node, cb.dst_port);
    379. 

  379. 

  380. 	size = (sizeof(preview) > size) ? size : sizeof(preview);
    381. 

  381. 	memcpy(&preview, data + hdrlen, size);
    382. 

  382. 

  383. 	pr_info("%s: src[0x%x:0x%x] dst[0x%x:0x%x] [%08x %08x] service[0x%x]\n",
    384. 

  384. 		__func__,
    385. 

  385. 		cb.src_node, cb.src_port,
    386. 

  386. 		cb.dst_node, cb.dst_port,
    387. 

  387. 		(unsigned int)preview, (unsigned int)(preview >> 32),
    388. 

  388. 		service_id);
    389. 

  389. }
    390. 

  390. EXPORT_SYMBOL(qrtr_print_wakeup_reason);
    391. 

  391. 

  392. static bool refcount_dec_and_rwsem_lock(refcount_t *r,
    393. 

  393. 					struct rw_semaphore *sem)
    394. 

  394. {
    395. 

  395. 	if (refcount_dec_not_one(r))
    396. 

  396. 		return false;
    397. 

  397. 

  398. 	down_write(sem);
    399. 

  399. 	if (!refcount_dec_and_test(r)) {
    400. 

  400. 		up_write(sem);
    401. 

  401. 		return false;
    402. 

  402. 	}
    403. 

  403. 

  404. 	return true;
    405. 

  405. }
    406. 

  406. 

  407. static inline int kref_put_rwsem_lock(struct kref *kref,
    408. 

  408. 				      void (*release)(struct kref *kref),
    409. 

  409. 				      struct rw_semaphore *sem)
    410. 

  410. {
    411. 

  411. 	if (refcount_dec_and_rwsem_lock(&kref->refcount, sem)) {
    412. 

  412. 		release(kref);
    413. 

  413. 		return 1;
    414. 

  414. 	}
    415. 

  415. 	return 0;
    416. 

  416. }
    417. 

  417. 

  418. /* Release node resources and free the node.
    419. 

  419.  *
    420. 

  420.  * Do not call directly, use qrtr_node_release.  To be used with
    421. 

  421.  * kref_put_mutex.  As such, the node mutex is expected to be locked on call.
    422. 

  422.  */
    423. 

  423. static void __qrtr_node_release(struct kref *kref)
    424. 

  424. {
    425. 

  425. 	struct qrtr_node *node = container_of(kref, struct qrtr_node, ref);
    426. 

  426. 	struct qrtr_tx_flow_waiter *waiter;
    427. 

  427. 	struct qrtr_tx_flow_waiter *temp;
    428. 

  428. 	struct radix_tree_iter iter;
    429. 

  429. 	struct qrtr_tx_flow *flow;
    430. 

  430. 	unsigned long flags;
    431. 

  431. 	void __rcu **slot;
    432. 

  432. 

  433. 	spin_lock_irqsave(&qrtr_nodes_lock, flags);
    434. 

  434. 	/* If the node is a bridge for other nodes, there are possibly
    435. 

  435. 	 * multiple entries pointing to our released node, delete them all.
    436. 

  436. 	 */
    437. 

  437. 	radix_tree_for_each_slot(slot, &qrtr_nodes, &iter, 0) {
    438. 

  438. 		if (*slot == node)
    439. 

  439. 			radix_tree_iter_delete(&qrtr_nodes, &iter, slot);
    440. 

  440. 	}
    441. 

  441. 	spin_unlock_irqrestore(&qrtr_nodes_lock, flags);
    442. 

  442. 

  443. 	list_del(&node->item);
    444. 

  444. 	up_write(&qrtr_epts_lock);
    445. 

  445. 

  446. 	kthread_flush_worker(&node->kworker);
    447. 

  447. 	kthread_stop(node->task);
    448. 

  448. 	skb_queue_purge(&node->rx_queue);
    449. 

  449. 	wakeup_source_unregister(node->ws);
    450. 

  450. 	xa_destroy(&node->no_wake_svc);
    451. 

  451. 

  452. 	/* Free tx flow counters */
    453. 

  453. 	mutex_lock(&node->qrtr_tx_lock);
    454. 

  454. 	radix_tree_for_each_slot(slot, &node->qrtr_tx_flow, &iter, 0) {
    455. 

  455. 		flow = *slot;
    456. 

  456. 		list_for_each_entry_safe(waiter, temp, &flow->waiters, node) {
    457. 

  457. 			list_del(&waiter->node);
    458. 

  458. 			sock_put(waiter->sk);
    459. 

  459. 			kfree(waiter);
    460. 

  460. 		}
    461. 

  461. 		radix_tree_iter_delete(&node->qrtr_tx_flow, &iter, slot);
    462. 

  462. 		kfree(flow);
    463. 

  463. 	}
    464. 

  464. 	mutex_unlock(&node->qrtr_tx_lock);
    465. 

  465. 	QRTR_INFO(node->ilc, "RELEASE node %px\n", node);
    466. 

  466. 	kfree(node);
    467. 

  467. }
    468. 

  468. 

  469. /* Increment reference to node. */
    470. 

  470. static struct qrtr_node *qrtr_node_acquire(struct qrtr_node *node)
    471. 

  471. {
    472. 

  472. 	if (node)
    473. 

  473. 		kref_get(&node->ref);
    474. 

  474. 	return node;
    475. 

  475. }
    476. 

  476. 

  477. /* Decrement reference to node and release as necessary. */
    478. 

  478. static void qrtr_node_release(struct qrtr_node *node)
    479. 

  479. {
    480. 

  480. 	if (!node)
    481. 

  481. 		return;
    482. 

  482. 	kref_put_rwsem_lock(&node->ref, __qrtr_node_release, &qrtr_epts_lock);
    483. 

  483. }
    484. 

  484. 

  485. /**
    486. 

  486.  * qrtr_tx_resume() - reset flow control counter
    487. 

  487.  * @node:	qrtr_node that the QRTR_TYPE_RESUME_TX packet arrived on
    488. 

  488.  * @skb:	resume_tx packet
    489. 

  489.  */
    490. 

  490. static void qrtr_tx_resume(struct qrtr_node *node, struct sk_buff *skb)
    491. 

  491. {
    492. 

  492. 	struct qrtr_tx_flow_waiter *waiter;
    493. 

  493. 	struct qrtr_tx_flow_waiter *temp;
    494. 

  494. 	struct qrtr_ctrl_pkt pkt = {0,};
    495. 

  495. 	struct qrtr_tx_flow *flow;
    496. 

  496. 	struct sockaddr_qrtr src;
    497. 

  497. 	struct qrtr_sock *ipc;
    498. 

  498. 	struct sk_buff *skbn;
    499. 

  499. 	unsigned long flags;
    500. 

  500. 	unsigned long key;
    501. 

  501. 

  502. 	skb_copy_bits(skb, 0, &pkt, sizeof(pkt));
    503. 

  503. 	if (le32_to_cpu(pkt.cmd) != QRTR_TYPE_RESUME_TX)
    504. 

  504. 		return;
    505. 

  505. 

  506. 	src.sq_family = AF_QIPCRTR;
    507. 

  507. 	src.sq_node = le32_to_cpu(pkt.client.node);
    508. 

  508. 	src.sq_port = le32_to_cpu(pkt.client.port);
    509. 

  509. 	key = (u64)src.sq_node << 32 | src.sq_port;
    510. 

  510. 

  511. 	mutex_lock(&node->qrtr_tx_lock);
    512. 

  512. 	flow = radix_tree_lookup(&node->qrtr_tx_flow, key);
    513. 

  513. 	mutex_unlock(&node->qrtr_tx_lock);
    514. 

  514. 	if (!flow)
    515. 

  515. 		return;
    516. 

  516. 

  517. 	spin_lock_irqsave(&flow->lock, flags);
    518. 

  518. 	flow->pending = 0;
    519. 

  519. 	wake_up_interruptible_all(&flow->resume_tx);
    520. 

  520. 

  521. 	list_for_each_entry_safe(waiter, temp, &flow->waiters, node) {
    522. 

  522. 		list_del(&waiter->node);
    523. 

  523. 

  524. 		skbn = alloc_skb(0, GFP_ATOMIC);
    525. 

  525. 		if (skbn) {
    526. 

  526. 			ipc = qrtr_sk(waiter->sk);
    527. 

  527. 			qrtr_local_enqueue(NULL, skbn, QRTR_TYPE_RESUME_TX,
    528. 

  528. 					   &src, &ipc->us, 0);
    529. 

  529. 		}
    530. 

  530. 		sock_put(waiter->sk);
    531. 

  531. 		kfree(waiter);
    532. 

  532. 	}
    533. 

  533. 	spin_unlock_irqrestore(&flow->lock, flags);
    534. 

  534. 

  535. 	consume_skb(skb);
    536. 

  536. }
    537. 

  537. 

  538. /**
    539. 

  539.  * qrtr_tx_wait() - flow control for outgoing packets
    540. 

  540.  * @node:	qrtr_node that the packet is to be send to
    541. 

  541.  * @dest_node:	node id of the destination
    542. 

  542.  * @dest_port:	port number of the destination
    543. 

  543.  * @type:	type of message
    544. 

  544.  *
    545. 

  545.  * The flow control scheme is based around the low and high "watermarks". When
    546. 

  546.  * the low watermark is passed the confirm_rx flag is set on the outgoing
    547. 

  547.  * message, which will trigger the remote to send a control message of the type
    548. 

  548.  * QRTR_TYPE_RESUME_TX to reset the counter. If the high watermark is hit
    549. 

  549.  * further transmision should be paused.
    550. 

  550.  *
    551. 

  551.  * Return: 1 if confirm_rx should be set, 0 otherwise or errno failure
    552. 

  552.  */
    553. 

  553. static int qrtr_tx_wait(struct qrtr_node *node, struct sockaddr_qrtr *to,
    554. 

  554. 			struct sock *sk, int type, unsigned int flags)
    555. 

  555. {
    556. 

  556. 	unsigned long key = (u64)to->sq_node << 32 | to->sq_port;
    557. 

  557. 	struct qrtr_tx_flow_waiter *waiter;
    558. 

  558. 	struct qrtr_tx_flow *flow;
    559. 

  559. 	int confirm_rx = 0;
    560. 

  560. 	long timeo;
    561. 

  561. 	long ret;
    562. 

  562. 

  563. 	/* Never set confirm_rx on non-data packets */
    564. 

  564. 	if (type != QRTR_TYPE_DATA)
    565. 

  565. 		return 0;
    566. 

  566. 

  567. 	/* Assume sk is set correctly for all data type packets */
    568. 

  568. 	timeo = sock_sndtimeo(sk, flags & MSG_DONTWAIT);
    569. 

  569. 

  570. 	mutex_lock(&node->qrtr_tx_lock);
    571. 

  571. 	flow = radix_tree_lookup(&node->qrtr_tx_flow, key);
    572. 

  572. 	if (!flow) {
    573. 

  573. 		flow = kzalloc(sizeof(*flow), GFP_KERNEL);
    574. 

  574. 		if (flow) {
    575. 

  575. 			INIT_LIST_HEAD(&flow->waiters);
    576. 

  576. 			init_waitqueue_head(&flow->resume_tx);
    577. 

  577. 			spin_lock_init(&flow->lock);
    578. 

  578. 			if (radix_tree_insert(&node->qrtr_tx_flow, key, flow)) {
    579. 

  579. 				kfree(flow);
    580. 

  580. 				flow = NULL;
    581. 

  581. 			}
    582. 

  582. 		}
    583. 

  583. 	}
    584. 

  584. 	mutex_unlock(&node->qrtr_tx_lock);
    585. 

  585. 

  586. 	/* Set confirm_rx if we where unable to find and allocate a flow */
    587. 

  587. 	if (!flow)
    588. 

  588. 		return 1;
    589. 

  589. 

  590. 	spin_lock_irq(&flow->lock);
    591. 

  591. 	ret = wait_event_interruptible_lock_irq_timeout(flow->resume_tx,
    592. 

  592. 							flow->pending < QRTR_TX_FLOW_HIGH ||
    593. 

  593. 							flow->tx_failed ||
    594. 

  594. 							!node->ep,
    595. 

  595. 							flow->lock,
    596. 

  596. 							timeo);
    597. 

  597. 	if (ret < 0) {
    598. 

  598. 		confirm_rx = ret;
    599. 

  599. 	} else if (!node->ep) {
    600. 

  600. 		confirm_rx = -EPIPE;
    601. 

  601. 	} else if (flow->tx_failed) {
    602. 

  602. 		flow->tx_failed = 0;
    603. 

  603. 		confirm_rx = 1;
    604. 

  604. 	} else if (!ret && flow->pending >= QRTR_TX_FLOW_HIGH) {
    605. 

  605. 		list_for_each_entry(waiter, &flow->waiters, node) {
    606. 

  606. 			if (waiter->sk == sk) {
    607. 

  607. 				spin_unlock_irq(&flow->lock);
    608. 

  608. 				return -EAGAIN;
    609. 

  609. 			}
    610. 

  610. 		}
    611. 

  611. 

  612. 		waiter = kzalloc(sizeof(*waiter), GFP_ATOMIC);
    613. 

  613. 		if (!waiter) {
    614. 

  614. 			spin_unlock_irq(&flow->lock);
    615. 

  615. 			return -ENOMEM;
    616. 

  616. 		}
    617. 

  617. 		waiter->sk = sk;
    618. 

  618. 		sock_hold(sk);
    619. 

  619. 		list_add_tail(&waiter->node, &flow->waiters);
    620. 

  620. 

  621. 		confirm_rx = -EAGAIN;
    622. 

  622. 		QRTR_INFO(node->ilc, "new waiter %s[%d] for [0x%x:0x%x]\n",
    623. 

  623. 			  current->comm, current->pid,
    624. 

  624. 			  to->sq_node, to->sq_port);
    625. 

  625. 	} else {
    626. 

  626. 		flow->pending++;
    627. 

  627. 		confirm_rx = flow->pending == QRTR_TX_FLOW_LOW;
    628. 

  628. 	}
    629. 

  629. 	spin_unlock_irq(&flow->lock);
    630. 

  630. 

  631. 	return confirm_rx;
    632. 

  632. }
    633. 

  633. 

  634. /**
    635. 

  635.  * qrtr_tx_flow_failed() - flag that tx of confirm_rx flagged messages failed
    636. 

  636.  * @node:	qrtr_node that the packet is to be send to
    637. 

  637.  * @dest_node:	node id of the destination
    638. 

  638.  * @dest_port:	port number of the destination
    639. 

  639.  *
    640. 

  640.  * Signal that the transmission of a message with confirm_rx flag failed. The
    641. 

  641.  * flow's "pending" counter will keep incrementing towards QRTR_TX_FLOW_HIGH,
    642. 

  642.  * at which point transmission would stall forever waiting for the resume TX
    643. 

  643.  * message associated with the dropped confirm_rx message.
    644. 

  644.  * Work around this by marking the flow as having a failed transmission and
    645. 

  645.  * cause the next transmission attempt to be sent with the confirm_rx.
    646. 

  646.  */
    647. 

  647. static void qrtr_tx_flow_failed(struct qrtr_node *node, int dest_node,
    648. 

  648. 				int dest_port)
    649. 

  649. {
    650. 

  650. 	unsigned long key = (u64)dest_node << 32 | dest_port;
    651. 

  651. 	struct qrtr_tx_flow *flow;
    652. 

  652. 

  653. 	mutex_lock(&node->qrtr_tx_lock);
    654. 

  654. 	flow = radix_tree_lookup(&node->qrtr_tx_flow, key);
    655. 

  655. 	mutex_unlock(&node->qrtr_tx_lock);
    656. 

  656. 	if (flow) {
    657. 

  657. 		spin_lock_irq(&flow->lock);
    658. 

  658. 		flow->tx_failed = 1;
    659. 

  659. 		spin_unlock_irq(&flow->lock);
    660. 

  660. 	}
    661. 

  661. }
    662. 

  662. 

  663. static int qrtr_pad_word_pskb(struct sk_buff *skb)
    664. 

  664. {
    665. 

  665. 	unsigned int padding_len;
    666. 

  666. 	unsigned int padto;
    667. 

  667. 	int nfrags;
    668. 

  668. 	int count;
    669. 

  669. 	int i;
    670. 

  670. 

  671. 	padto = ALIGN(skb->len, 4);
    672. 

  672. 	padding_len = padto - skb->len;
    673. 

  673. 	if (!padding_len)
    674. 

  674. 		return 0;
    675. 

  675. 

  676. 	count = skb_headlen(skb);
    677. 

  677. 	nfrags = skb_shinfo(skb)->nr_frags;
    678. 

  678. 	for (i = 0; i < nfrags; i++) {
    679. 

  679. 		u32 p_off, p_len, copied;
    680. 

  680. 		u32 f_off, f_len;
    681. 

  681. 		u32 d_off, d_len;
    682. 

  682. 		skb_frag_t *frag;
    683. 

  683. 		struct page *p;
    684. 

  684. 		u8 *vaddr;
    685. 

  685. 

  686. 		frag = &skb_shinfo(skb)->frags[i];
    687. 

  687. 		f_off = skb_frag_off(frag);
    688. 

  688. 		f_len = skb_frag_size(frag);
    689. 

  689. 		if (count + f_len < skb->len) {
    690. 

  690. 			count += f_len;
    691. 

  691. 			continue;
    692. 

  692. 		}
    693. 

  693. 

  694. 		/* fragment can fit all padding */
    695. 

  695. 		if (count + f_len >= padto) {
    696. 

  696. 			skb_frag_foreach_page(frag, f_off, f_len, p, p_off,
    697. 

  697. 					      p_len, copied) {
    698. 

  698. 				if (count + p_len < padto) {
    699. 

  699. 					count += p_len;
    700. 

  700. 					continue;
    701. 

  701. 				}
    702. 

  702. 

  703. 				d_off = skb->len - count;
    704. 

  704. 				vaddr = kmap_atomic(p);
    705. 

  705. 				memset(vaddr + p_off + d_off, 0, padding_len);
    706. 

  706. 				kunmap_atomic(vaddr);
    707. 

  707. 				count += d_off + padding_len;
    708. 

  708. 				skb->len = padto;
    709. 

  709. 				skb->data_len += padding_len;
    710. 

  710. 				break;
    711. 

  711. 			}
    712. 

  712. 		} else {
    713. 

  713. 			 /* messy case, padding split between pages */
    714. 

  714. 			skb_frag_foreach_page(frag, f_off, f_len, p, p_off,
    715. 

  715. 					      p_len, copied) {
    716. 

  716. 				if (count + p_len < skb->len) {
    717. 

  717. 					count += p_len;
    718. 

  718. 					continue;
    719. 

  719. 				}
    720. 

  720. 

  721. 				/* need to add padding into next page */
    722. 

  722. 				if (count + p_len < padto) {
    723. 

  723. 					d_off = skb->len - count;
    724. 

  724. 					d_len = p_len - d_off;
    725. 

  725. 

  726. 					vaddr = kmap_atomic(p);
    727. 

  727. 					memset(vaddr + p_off + d_off, 0, d_len);
    728. 

  728. 					kunmap_atomic(vaddr);
    729. 

  729. 

  730. 					count += p_len;
    731. 

  731. 					padding_len -= d_len;
    732. 

  732. 					skb->len += d_len;
    733. 

  733. 					skb->data_len += padding_len;
    734. 

  734. 					continue;
    735. 

  735. 				}
    736. 

  736. 

  737. 				d_off = (count < skb->len) ? skb->len - count : 0;
    738. 

  738. 				vaddr = kmap_atomic(p);
    739. 

  739. 				memset(vaddr + p_off + d_off, 0, padding_len);
    740. 

  740. 				kunmap_atomic(vaddr);
    741. 

  741. 				count += d_off + padding_len;
    742. 

  742. 				skb->len += padding_len;
    743. 

  743. 				skb->data_len += padding_len;
    744. 

  744. 			}
    745. 

  745. 		}
    746. 

  746. 

  747. 		if (skb->len == padto)
    748. 

  748. 			break;
    749. 

  749. 	}
    750. 

  750. 	WARN_ON(skb->len != padto);
    751. 

  751. 

  752. 	return 0;
    753. 

  753. }
    754. 

  754. 

  755. /* Pass an outgoing packet socket buffer to the endpoint driver. */
    756. 

  756. static int qrtr_node_enqueue(struct qrtr_node *node, struct sk_buff *skb,
    757. 

  757. 			     int type, struct sockaddr_qrtr *from,
    758. 

  758. 			     struct sockaddr_qrtr *to, unsigned int flags)
    759. 

  759. {
    760. 

  760. 	struct qrtr_hdr_v1 *hdr;
    761. 

  761. 	size_t len = skb->len;
    762. 

  762. 	int rc, confirm_rx;
    763. 

  763. 

  764. 	mutex_lock(&node->ep_lock);
    765. 

  765. 	if (!atomic_read(&node->hello_sent) && type != QRTR_TYPE_HELLO) {
    766. 

  766. 		kfree_skb(skb);
    767. 

  767. 		mutex_unlock(&node->ep_lock);
    768. 

  768. 		return 0;
    769. 

  769. 	}
    770. 

  770. 	if (atomic_read(&node->hello_sent) && type == QRTR_TYPE_HELLO) {
    771. 

  771. 		kfree_skb(skb);
    772. 

  772. 		mutex_unlock(&node->ep_lock);
    773. 

  773. 		return 0;
    774. 

  774. 	}
    775. 

  775. 

  776. 	if (!atomic_read(&node->hello_sent) && type == QRTR_TYPE_HELLO)
    777. 

  777. 		atomic_inc(&node->hello_sent);
    778. 

  778. 

  779. 	mutex_unlock(&node->ep_lock);
    780. 

  780. 

  781. 	/* If sk is null, this is a forwarded packet and should not wait */
    782. 

  782. 	if (!skb->sk) {
    783. 

  783. 		struct qrtr_cb *cb = (struct qrtr_cb *)skb->cb;
    784. 

  784. 

  785. 		confirm_rx = cb->confirm_rx;
    786. 

  786. 	} else {
    787. 

  787. 		confirm_rx = qrtr_tx_wait(node, to, skb->sk, type, flags);
    788. 

  788. 		if (confirm_rx < 0) {
    789. 

  789. 			kfree_skb(skb);
    790. 

  790. 			return confirm_rx;
    791. 

  791. 		}
    792. 

  792. 	}
    793. 

  793. 

  794. 	hdr = skb_push(skb, sizeof(*hdr));
    795. 

  795. 	hdr->version = cpu_to_le32(QRTR_PROTO_VER_1);
    796. 

  796. 	hdr->type = cpu_to_le32(type);
    797. 

  797. 	hdr->src_node_id = cpu_to_le32(from->sq_node);
    798. 

  798. 	hdr->src_port_id = cpu_to_le32(from->sq_port);
    799. 

  799. 	if (to->sq_port == QRTR_PORT_CTRL) {
    800. 

  800. 		hdr->dst_node_id = cpu_to_le32(node->nid);
    801. 

  801. 		hdr->dst_port_id = cpu_to_le32(QRTR_PORT_CTRL);
    802. 

  802. 	} else {
    803. 

  803. 		hdr->dst_node_id = cpu_to_le32(to->sq_node);
    804. 

  804. 		hdr->dst_port_id = cpu_to_le32(to->sq_port);
    805. 

  805. 	}
    806. 

  806. 

  807. 	hdr->size = cpu_to_le32(len);
    808. 

  808. 	hdr->confirm_rx = !!confirm_rx;
    809. 

  809. 

  810. 	qrtr_log_tx_msg(node, hdr, skb);
    811. 

  811. 	/* word align the data and pad with 0s */
    812. 

  812. 	if (skb_is_nonlinear(skb))
    813. 

  813. 		rc = qrtr_pad_word_pskb(skb);
    814. 

  814. 	else
    815. 

  815. 		rc = skb_put_padto(skb, ALIGN(len, 4) + sizeof(*hdr));
    816. 

  816. 

  817. 	if (rc) {
    818. 

  818. 		pr_err("%s: failed to pad size %lu to %lu rc:%d\n", __func__,
    819. 

  819. 		       skb->len, ALIGN(skb->len, 4), rc);
    820. 

  820. 	}
    821. 

  821. 

  822. 	if (!rc) {
    823. 

  823. 		mutex_lock(&node->ep_lock);
    824. 

  824. 		rc = -ENODEV;
    825. 

  825. 		if (node->ep)
    826. 

  826. 			rc = node->ep->xmit(node->ep, skb);
    827. 

  827. 		else {
    828. 

  828. 			if (node->ilc)
    829. 

  829. 				QRTR_INFO(node->ilc, "node->ep NULL confirm_rx : %d\n", confirm_rx);
    830. 

  830. 			kfree_skb(skb);
    831. 

  831. 		}
    832. 

  832. 		mutex_unlock(&node->ep_lock);
    833. 

  833. 	}
    834. 

  834. 	/* Need to ensure that a subsequent message carries the otherwise lost
    835. 

  835. 	 * confirm_rx flag if we dropped this one */
    836. 

  836. 	if (rc && confirm_rx)
    837. 

  837. 		qrtr_tx_flow_failed(node, to->sq_node, to->sq_port);
    838. 

  838. 	if (rc && type == QRTR_TYPE_HELLO) {
    839. 

  839. 		atomic_dec(&node->hello_sent);
    840. 

  840. 		kthread_queue_work(&node->kworker, &node->say_hello);
    841. 

  841. 	}
    842. 

  842. 

  843. 	return rc;
    844. 

  844. }
    845. 

  845. 

  846. /* Lookup node by id.
    847. 

  847.  *
    848. 

  848.  * callers must release with qrtr_node_release()
    849. 

  849.  */
    850. 

  850. static struct qrtr_node *qrtr_node_lookup(unsigned int nid)
    851. 

  851. {
    852. 

  852. 	struct qrtr_node *node;
    853. 

  853. 	unsigned long flags;
    854. 

  854. 

  855. 	down_read(&qrtr_epts_lock);
    856. 

  856. 

  857. 	spin_lock_irqsave(&qrtr_nodes_lock, flags);
    858. 

  858. 	node = radix_tree_lookup(&qrtr_nodes, nid);
    859. 

  859. 	node = qrtr_node_acquire(node);
    860. 

  860. 	spin_unlock_irqrestore(&qrtr_nodes_lock, flags);
    861. 

  861. 	up_read(&qrtr_epts_lock);
    862. 

  862. 

  863. 	return node;
    864. 

  864. }
    865. 

  865. 

  866. /* Assign node id to node.
    867. 

  867.  *
    868. 

  868.  * This is mostly useful for automatic node id assignment, based on
    869. 

  869.  * the source id in the incoming packet.
    870. 

  870.  */
    871. 

  871. static void qrtr_node_assign(struct qrtr_node *node, unsigned int nid)
    872. 

  872. {
    873. 

  873. 	unsigned long flags;
    874. 

  874. 

  875. 	if (nid == node->nid || nid == QRTR_EP_NID_AUTO)
    876. 

  876. 		return;
    877. 

  877. 

  878. 	spin_lock_irqsave(&qrtr_nodes_lock, flags);
    879. 

  879. 	if (!radix_tree_lookup(&qrtr_nodes, nid))
    880. 

  880. 		radix_tree_insert(&qrtr_nodes, nid, node);
    881. 

  881. 

  882. 	if (node->nid == QRTR_EP_NID_AUTO)
    883. 

  883. 		node->nid = nid;
    884. 

  884. 	spin_unlock_irqrestore(&qrtr_nodes_lock, flags);
    885. 

  885. }
    886. 

  886. 

  887. /**
    888. 

  888.  * qrtr_peek_pkt_size() - Peek into the packet header to get potential pkt size
    889. 

  889.  *
    890. 

  890.  * @data: Starting address of the packet which points to router header.
    891. 

  891.  *
    892. 

  892.  * @returns: potential packet size on success, < 0 on error.
    893. 

  893.  *
    894. 

  894.  * This function is used by the underlying transport abstraction layer to
    895. 

  895.  * peek into the potential packet size of an incoming packet. This information
    896. 

  896.  * is used to perform link layer fragmentation and re-assembly
    897. 

  897.  */
    898. 

  898. int qrtr_peek_pkt_size(const void *data)
    899. 

  899. {
    900. 

  900. 	const struct qrtr_hdr_v1 *v1;
    901. 

  901. 	const struct qrtr_hdr_v2 *v2;
    902. 

  902. 	unsigned int hdrlen;
    903. 

  903. 	unsigned int size;
    904. 

  904. 	unsigned int ver;
    905. 

  905. 

  906. 	/* Version field in v1 is little endian, so this works for both cases */
    907. 

  907. 	ver = *(u8 *)data;
    908. 

  908. 

  909. 	switch (ver) {
    910. 

  910. 	case QRTR_PROTO_VER_1:
    911. 

  911. 		v1 = data;
    912. 

  912. 		hdrlen = sizeof(*v1);
    913. 

  913. 		size = le32_to_cpu(v1->size);
    914. 

  914. 		break;
    915. 

  915. 	case QRTR_PROTO_VER_2:
    916. 

  916. 		v2 = data;
    917. 

  917. 		hdrlen = sizeof(*v2) + v2->optlen;
    918. 

  918. 		size = le32_to_cpu(v2->size);
    919. 

  919. 		break;
    920. 

  920. 	default:
    921. 

  921. 		pr_err("qrtr: Invalid version %d\n", ver);
    922. 

  922. 		return -EINVAL;
    923. 

  923. 	}
    924. 

  924. 

  925. 	return ALIGN(size, 4) + hdrlen;
    926. 

  926. }
    927. 

  927. EXPORT_SYMBOL(qrtr_peek_pkt_size);
    928. 

  928. 

  929. static void qrtr_alloc_backup(struct work_struct *work)
    930. 

  930. {
    931. 

  931. 	struct sk_buff *skb;
    932. 

  932. 	int errcode;
    933. 

  933. 

  934. 	while (skb_queue_len(&qrtr_backup_lo) < QRTR_BACKUP_LO_NUM) {
    935. 

  935. 		skb = alloc_skb_with_frags(sizeof(struct qrtr_hdr_v1),
    936. 

  936. 					   QRTR_BACKUP_LO_SIZE, 0, &errcode,
    937. 

  937. 					   GFP_KERNEL);
    938. 

  938. 		if (!skb)
    939. 

  939. 			break;
    940. 

  940. 		skb_queue_tail(&qrtr_backup_lo, skb);
    941. 

  941. 	}
    942. 

  942. 

  943. 	while (skb_queue_len(&qrtr_backup_md) < QRTR_BACKUP_MD_NUM) {
    944. 

  944.                 skb = alloc_skb_with_frags(sizeof(struct qrtr_hdr_v1),
    945. 

  945.                                            QRTR_BACKUP_MD_SIZE, 0, &errcode,
    946. 

  946.                                            GFP_KERNEL);
    947. 

  947.                 if (!skb)
    948. 

  948.                         break;
    949. 

  949.                 skb_queue_tail(&qrtr_backup_md, skb);
    950. 

  950.         }
    951. 

  951. 

  952. 	while (skb_queue_len(&qrtr_backup_hi) < QRTR_BACKUP_HI_NUM) {
    953. 

  953. 		skb = alloc_skb_with_frags(sizeof(struct qrtr_hdr_v1),
    954. 

  954. 					   QRTR_BACKUP_HI_SIZE, 0, &errcode,
    955. 

  955. 					   GFP_KERNEL);
    956. 

  956. 		if (!skb)
    957. 

  957. 			break;
    958. 

  958. 		skb_queue_tail(&qrtr_backup_hi, skb);
    959. 

  959. 	}
    960. 

  960. }
    961. 

  961. 

  962. static struct sk_buff *qrtr_get_backup(size_t len)
    963. 

  963. {
    964. 

  964. 	struct sk_buff *skb = NULL;
    965. 

  965. 

  966. 	if (len < QRTR_BACKUP_LO_SIZE)
    967. 

  967. 		skb = skb_dequeue(&qrtr_backup_lo);
    968. 

  968.         else if (len < QRTR_BACKUP_MD_SIZE)
    969. 

  969.                 skb = skb_dequeue(&qrtr_backup_md);
    970. 

  970. 	else if (len < QRTR_BACKUP_HI_SIZE)
    971. 

  971. 		skb = skb_dequeue(&qrtr_backup_hi);
    972. 

  972. 

  973. 	if (skb)
    974. 

  974. 		queue_work(system_unbound_wq, &qrtr_backup_work);
    975. 

  975. 

  976. 	return skb;
    977. 

  977. }
    978. 

  978. 

  979. static void qrtr_backup_init(void)
    980. 

  980. {
    981. 

  981. 	skb_queue_head_init(&qrtr_backup_lo);
    982. 

  982. 	skb_queue_head_init(&qrtr_backup_md);
    983. 

  983. 	skb_queue_head_init(&qrtr_backup_hi);
    984. 

  984. 	INIT_WORK(&qrtr_backup_work, qrtr_alloc_backup);
    985. 

  985. 	queue_work(system_unbound_wq, &qrtr_backup_work);
    986. 

  986. }
    987. 

  987. 

  988. static void qrtr_backup_deinit(void)
    989. 

  989. {
    990. 

  990. 	cancel_work_sync(&qrtr_backup_work);
    991. 

  991. 	skb_queue_purge(&qrtr_backup_lo);
    992. 

  992. 	skb_queue_purge(&qrtr_backup_md);
    993. 

  993. 	skb_queue_purge(&qrtr_backup_hi);
    994. 

  994. }
    995. 

  995. 

  996. /**
    997. 

  997.  * qrtr_endpoint_post() - post incoming data
    998. 

  998.  * @ep: endpoint handle
    999. 

  999.  * @data: data pointer
    1000. 

  1000.  * @len: size of data in bytes
    1001. 

  1001.  *
    1002. 

  1002.  * Return: 0 on success; negative error code on failure
    1003. 

  1003.  */
    1004. 

  1004. int qrtr_endpoint_post(struct qrtr_endpoint *ep, const void *data, size_t len)
    1005. 

  1005. {
    1006. 

  1006. 	struct qrtr_node *node = ep->node;
    1007. 

  1007. 	const struct qrtr_hdr_v1 *v1;
    1008. 

  1008. 	const struct qrtr_hdr_v2 *v2;
    1009. 

  1009. 	struct qrtr_sock *ipc;
    1010. 

  1010. 	struct sk_buff *skb;
    1011. 

  1011. 	struct qrtr_cb *cb;
    1012. 

  1012. 	size_t size;
    1013. 

  1013. 	unsigned int ver;
    1014. 

  1014. 	size_t hdrlen;
    1015. 

  1015. 	int errcode;
    1016. 

  1016. 	int svc_id;
    1017. 

  1017. 

  1018. 	if (len == 0 || len & 3)
    1019. 

  1019. 		return -EINVAL;
    1020. 

  1020. 

  1021. 	skb = alloc_skb_with_frags(sizeof(*v1), len, 0, &errcode, GFP_ATOMIC);
    1022. 

  1022. 	if (!skb) {
    1023. 

  1023. 		skb = qrtr_get_backup(len);
    1024. 

  1024. 		if (!skb) {
    1025. 

  1025. 			pr_err("qrtr: Unable to get skb with len:%lu\n", len);
    1026. 

  1026. 			return -ENOMEM;
    1027. 

  1027. 		}
    1028. 

  1028. 	}
    1029. 

  1029. 

  1030. 	skb_reserve(skb, sizeof(*v1));
    1031. 

  1031. 	cb = (struct qrtr_cb *)skb->cb;
    1032. 

  1032. 

  1033. 	/* Version field in v1 is little endian, so this works for both cases */
    1034. 

  1034. 	ver = *(u8*)data;
    1035. 

  1035. 

  1036. 	switch (ver) {
    1037. 

  1037. 	case QRTR_PROTO_VER_1:
    1038. 

  1038. 		if (len < sizeof(*v1))
    1039. 

  1039. 			goto err;
    1040. 

  1040. 		v1 = data;
    1041. 

  1041. 		hdrlen = sizeof(*v1);
    1042. 

  1042. 

  1043. 		cb->type = le32_to_cpu(v1->type);
    1044. 

  1044. 		cb->src_node = le32_to_cpu(v1->src_node_id);
    1045. 

  1045. 		cb->src_port = le32_to_cpu(v1->src_port_id);
    1046. 

  1046. 		cb->confirm_rx = !!v1->confirm_rx;
    1047. 

  1047. 		cb->dst_node = le32_to_cpu(v1->dst_node_id);
    1048. 

  1048. 		cb->dst_port = le32_to_cpu(v1->dst_port_id);
    1049. 

  1049. 

  1050. 		size = le32_to_cpu(v1->size);
    1051. 

  1051. 		break;
    1052. 

  1052. 	case QRTR_PROTO_VER_2:
    1053. 

  1053. 		if (len < sizeof(*v2))
    1054. 

  1054. 			goto err;
    1055. 

  1055. 		v2 = data;
    1056. 

  1056. 		hdrlen = sizeof(*v2) + v2->optlen;
    1057. 

  1057. 

  1058. 		cb->type = v2->type;
    1059. 

  1059. 		cb->confirm_rx = !!(v2->flags & QRTR_FLAGS_CONFIRM_RX);
    1060. 

  1060. 		cb->src_node = le16_to_cpu(v2->src_node_id);
    1061. 

  1061. 		cb->src_port = le16_to_cpu(v2->src_port_id);
    1062. 

  1062. 		cb->dst_node = le16_to_cpu(v2->dst_node_id);
    1063. 

  1063. 		cb->dst_port = le16_to_cpu(v2->dst_port_id);
    1064. 

  1064. 

  1065. 		if (cb->src_port == (u16)QRTR_PORT_CTRL)
    1066. 

  1066. 			cb->src_port = QRTR_PORT_CTRL;
    1067. 

  1067. 		if (cb->dst_port == (u16)QRTR_PORT_CTRL)
    1068. 

  1068. 			cb->dst_port = QRTR_PORT_CTRL;
    1069. 

  1069. 

  1070. 		size = le32_to_cpu(v2->size);
    1071. 

  1071. 		break;
    1072. 

  1072. 	default:
    1073. 

  1073. 		pr_err("qrtr: Invalid version %d\n", ver);
    1074. 

  1074. 		goto err;
    1075. 

  1075. 	}
    1076. 

  1076. 

  1077. 	if (cb->dst_port == QRTR_PORT_CTRL_LEGACY)
    1078. 

  1078. 		cb->dst_port = QRTR_PORT_CTRL;
    1079. 

  1079. 

  1080. 	if (!size || len != ALIGN(size, 4) + hdrlen)
    1081. 

  1081. 		goto err;
    1082. 

  1082. 

  1083. 	if ((cb->type == QRTR_TYPE_NEW_SERVER ||
    1084. 

  1084. 	     cb->type == QRTR_TYPE_RESUME_TX) &&
    1085. 

  1085. 	    size < sizeof(struct qrtr_ctrl_pkt))
    1086. 

  1086. 		goto err;
    1087. 

  1087. 

  1088. 	if (cb->dst_port != QRTR_PORT_CTRL && cb->type != QRTR_TYPE_DATA &&
    1089. 

  1089. 	    cb->type != QRTR_TYPE_RESUME_TX)
    1090. 

  1090. 		goto err;
    1091. 

  1091. 

  1092. 	skb->data_len = size;
    1093. 

  1093. 	skb->len = size;
    1094. 

  1094. 	skb_store_bits(skb, 0, data + hdrlen, size);
    1095. 

  1095. 

  1096. 	qrtr_node_assign(node, cb->src_node);
    1097. 

  1097. 

  1098. 	if (cb->type == QRTR_TYPE_NEW_SERVER) {
    1099. 

  1099. 		/* Remote node endpoint can bridge other distant nodes */
    1100. 

  1100. 		const struct qrtr_ctrl_pkt *pkt;
    1101. 

  1101. 

  1102. 		pkt = data + hdrlen;
    1103. 

  1103. 		qrtr_node_assign(node, le32_to_cpu(pkt->server.node));
    1104. 

  1104. 	}
    1105. 

  1105. 

  1106. 	qrtr_log_rx_msg(node, skb);
    1107. 

  1107. 	/* All control packets and non-local destined data packets should be
    1108. 

  1108. 	 * queued to the worker for forwarding handling.
    1109. 

  1109. 	 */
    1110. 

  1110. 	svc_id = qrtr_get_service_id(cb->src_node, cb->src_port);
    1111. 

  1111. 	if (cb->type != QRTR_TYPE_DATA || cb->dst_node != qrtr_local_nid) {
    1112. 

  1112. 		skb_queue_tail(&node->rx_queue, skb);
    1113. 

  1113. 		kthread_queue_work(&node->kworker, &node->read_data);
    1114. 

  1114. 		pm_wakeup_ws_event(node->ws, qrtr_wakeup_ms, true);
    1115. 

  1115. 	} else {
    1116. 

  1116. 		int ret = 0;
    1117. 

  1117. 		int debug = (cb->src_node == 0)||(cb->src_node == 5);
    1118. 

  1118. 		u8 confirm_rx = cb->confirm_rx;
    1119. 

  1119. 

  1120. 		ipc = qrtr_port_lookup(cb->dst_port);
    1121. 

  1121. 		if (!ipc) {
    1122. 

  1122. 			kfree_skb(skb);
    1123. 

  1123. 			return -ENODEV;
    1124. 

  1124. 		}
    1125. 

  1125. 

  1126. 		ret = sock_queue_rcv_skb(&ipc->sk, skb);
    1127. 

  1127. 		if (debug)
    1128. 

  1128. 			QRTR_INFO(node->ilc, "POST [0x%x:0x%x] cf=%d 0x%px (%d) %d (%px) %d\n", ipc->us.sq_node, ipc->us.sq_port, confirm_rx,
    1129. 

  1129. 				skb, ipc->sk.sk_receive_queue.qlen,
    1130. 

  1130. 				skwq_has_sleeper(ipc->sk.sk_wq), ipc->sk.sk_wq?ipc->sk.sk_wq->wait.head.next:NULL,
    1131. 

  1131. 				ret);
    1132. 

  1132. 		if (ret) {
    1133. 

  1133. 			qrtr_port_put(ipc);
    1134. 

  1134. 			goto err;
    1135. 

  1135. 		}
    1136. 

  1136. 

  1137. 		/* Force wakeup based on services */
    1138. 

  1138. 		if (!xa_load(&node->no_wake_svc, svc_id))
    1139. 

  1139. 			pm_wakeup_ws_event(node->ws, qrtr_wakeup_ms, true);
    1140. 

  1140. 

  1141. 		qrtr_port_put(ipc);
    1142. 

  1142. 	}
    1143. 

  1143. 

  1144. 	return 0;
    1145. 

  1145. 

  1146. err:
    1147. 

  1147. 	kfree_skb(skb);
    1148. 

  1148. 	return -EINVAL;
    1149. 

  1149. 

  1150. }
    1151. 

  1151. EXPORT_SYMBOL_GPL(qrtr_endpoint_post);
    1152. 

  1152. 

  1153. /**
    1154. 

  1154.  * qrtr_alloc_ctrl_packet() - allocate control packet skb
    1155. 

  1155.  * @pkt: reference to qrtr_ctrl_pkt pointer
    1156. 

  1156.  * @flags: the type of memory to allocate
    1157. 

  1157.  *
    1158. 

  1158.  * Returns newly allocated sk_buff, or NULL on failure
    1159. 

  1159.  *
    1160. 

  1160.  * This function allocates a sk_buff large enough to carry a qrtr_ctrl_pkt and
    1161. 

  1161.  * on success returns a reference to the control packet in @pkt.
    1162. 

  1162.  */
    1163. 

  1163. static struct sk_buff *qrtr_alloc_ctrl_packet(struct qrtr_ctrl_pkt **pkt,
    1164. 

  1164. 					      gfp_t flags)
    1165. 

  1165. {
    1166. 

  1166. 	const int pkt_len = sizeof(struct qrtr_ctrl_pkt);
    1167. 

  1167. 	struct sk_buff *skb;
    1168. 

  1168. 

  1169. 	skb = alloc_skb(QRTR_HDR_MAX_SIZE + pkt_len, flags);
    1170. 

  1170. 	if (!skb)
    1171. 

  1171. 		return NULL;
    1172. 

  1172. 

  1173. 	skb_reserve(skb, QRTR_HDR_MAX_SIZE);
    1174. 

  1174. 	*pkt = skb_put_zero(skb, pkt_len);
    1175. 

  1175. 

  1176. 	return skb;
    1177. 

  1177. }
    1178. 

  1178. 

  1179. static bool qrtr_must_forward(struct qrtr_node *src,
    1180. 

  1180. 			      struct qrtr_node *dst, u32 type)
    1181. 

  1181. {
    1182. 

  1182. 	/* Node structure is not maintained for local processor.
    1183. 

  1183. 	 * Hence src is null in that case.
    1184. 

  1184. 	 */
    1185. 

  1185. 	if (!src)
    1186. 

  1186. 		return true;
    1187. 

  1187. 

  1188. 	if (!dst)
    1189. 

  1189. 		return false;
    1190. 

  1190. 

  1191. 	if (type == QRTR_TYPE_HELLO || type == QRTR_TYPE_RESUME_TX)
    1192. 

  1192. 		return false;
    1193. 

  1193. 

  1194. 	if (dst == src || dst->nid == QRTR_EP_NID_AUTO)
    1195. 

  1195. 		return false;
    1196. 

  1196. 

  1197. 	if (abs(dst->net_id - src->net_id) > 1)
    1198. 

  1198. 		return true;
    1199. 

  1199. 

  1200. 	return false;
    1201. 

  1201. }
    1202. 

  1202. 

  1203. static void qrtr_fwd_ctrl_pkt(struct qrtr_node *src, struct sk_buff *skb)
    1204. 

  1204. {
    1205. 

  1205. 	struct qrtr_node *node;
    1206. 

  1206. 	struct qrtr_cb *cb = (struct qrtr_cb *)skb->cb;
    1207. 

  1207. 

  1208. 	down_read(&qrtr_epts_lock);
    1209. 

  1209. 	list_for_each_entry(node, &qrtr_all_epts, item) {
    1210. 

  1210. 		struct sockaddr_qrtr from;
    1211. 

  1211. 		struct sockaddr_qrtr to;
    1212. 

  1212. 		struct sk_buff *skbn;
    1213. 

  1213. 

  1214. 		if (!qrtr_must_forward(src, node, cb->type))
    1215. 

  1215. 			continue;
    1216. 

  1216. 

  1217. 		skbn = skb_clone(skb, GFP_KERNEL);
    1218. 

  1218. 		if (!skbn)
    1219. 

  1219. 			break;
    1220. 

  1220. 

  1221. 		from.sq_family = AF_QIPCRTR;
    1222. 

  1222. 		from.sq_node = cb->src_node;
    1223. 

  1223. 		from.sq_port = cb->src_port;
    1224. 

  1224. 

  1225. 		to.sq_family = AF_QIPCRTR;
    1226. 

  1226. 		to.sq_node = node->nid;
    1227. 

  1227. 		to.sq_port = QRTR_PORT_CTRL;
    1228. 

  1228. 

  1229. 		qrtr_node_enqueue(node, skbn, cb->type, &from, &to, 0);
    1230. 

  1230. 	}
    1231. 

  1231. 	up_read(&qrtr_epts_lock);
    1232. 

  1232. }
    1233. 

  1233. 

  1234. static void qrtr_fwd_pkt(struct sk_buff *skb, struct qrtr_cb *cb)
    1235. 

  1235. {
    1236. 

  1236. 	struct sockaddr_qrtr from = {AF_QIPCRTR, cb->src_node, cb->src_port};
    1237. 

  1237. 	struct sockaddr_qrtr to = {AF_QIPCRTR, cb->dst_node, cb->dst_port};
    1238. 

  1238. 	struct qrtr_node *node;
    1239. 

  1239. 

  1240. 	node = qrtr_node_lookup(cb->dst_node);
    1241. 

  1241. 	if (!node) {
    1242. 

  1242. 		kfree_skb(skb);
    1243. 

  1243. 		return;
    1244. 

  1244. 	}
    1245. 

  1245. 

  1246. 	qrtr_node_enqueue(node, skb, cb->type, &from, &to, 0);
    1247. 

  1247. 	qrtr_node_release(node);
    1248. 

  1248. }
    1249. 

  1249. 

  1250. static int qrtr_sock_queue_ctrl_skb(struct qrtr_sock *ipc, struct sk_buff *skb)
    1251. 

  1251. {
    1252. 

  1252. 	unsigned long flags;
    1253. 

  1253. 	int rc;
    1254. 

  1254. 

  1255. 	while (1) {
    1256. 

  1256. 		rc = sock_queue_rcv_skb(&ipc->sk, skb);
    1257. 

  1257. 		if (rc == -ENOMEM || rc == -ENOBUFS) {
    1258. 

  1258. 			spin_lock_irqsave(&ipc->signal_lock, flags);
    1259. 

  1259. 			reinit_completion(&ipc->rx_queue_has_space);
    1260. 

  1260. 			ipc->signal_on_recv = true;
    1261. 

  1261. 			spin_unlock_irqrestore(&ipc->signal_lock, flags);
    1262. 

  1262. 			wait_for_completion(&ipc->rx_queue_has_space);
    1263. 

  1263. 		} else {
    1264. 

  1264. 			return rc;
    1265. 

  1265. 		}
    1266. 

  1266. 	}
    1267. 

  1267. 

  1268. 	return 0;
    1269. 

  1269. }
    1270. 

  1270. 

  1271. static void qrtr_sock_queue_skb(struct qrtr_node *node, struct sk_buff *skb,
    1272. 

  1272. 				struct qrtr_sock *ipc)
    1273. 

  1273. {
    1274. 

  1274. 	struct qrtr_cb *cb = (struct qrtr_cb *)skb->cb;
    1275. 

  1275. 	int rc;
    1276. 

  1276. 

  1277. 	/* Don't queue HELLO if control port already received */
    1278. 

  1278. 	if (cb->type == QRTR_TYPE_HELLO) {
    1279. 

  1279. 		if (atomic_read(&node->hello_rcvd)) {
    1280. 

  1280. 			kfree_skb(skb);
    1281. 

  1281. 			return;
    1282. 

  1282. 		}
    1283. 

  1283. 		atomic_inc(&node->hello_rcvd);
    1284. 

  1284. 	}
    1285. 

  1285. 

  1286. 	rc = (ipc->us.sq_port == QRTR_PORT_CTRL) ?
    1287. 

  1287. 		qrtr_sock_queue_ctrl_skb(ipc, skb) :
    1288. 

  1288. 		sock_queue_rcv_skb(&ipc->sk, skb);
    1289. 

  1289. 	if (rc) {
    1290. 

  1290. 		pr_err("%s: qrtr pkt dropped flow[%d] rc[%d]\n",
    1291. 

  1291. 		       __func__, cb->confirm_rx, rc);
    1292. 

  1292. 		kfree_skb(skb);
    1293. 

  1293. 	}
    1294. 

  1294. }
    1295. 

  1295. 

  1296. /* Handle not atomic operations for a received packet. */
    1297. 

  1297. static void qrtr_node_rx_work(struct kthread_work *work)
    1298. 

  1298. {
    1299. 

  1299. 	struct qrtr_node *node = container_of(work, struct qrtr_node,
    1300. 

  1300. 					      read_data);
    1301. 

  1301. 	struct sk_buff *skb;
    1302. 

  1302. 	char name[32] = {0,};
    1303. 

  1303. 

  1304. 	if (unlikely(!node->ilc)) {
    1305. 

  1305. 		snprintf(name, sizeof(name), "qrtr_%d", node->nid);
    1306. 

  1306. 		node->ilc = ipc_log_context_create(QRTR_LOG_PAGE_CNT, name, 0);
    1307. 

  1307. 	}
    1308. 

  1308. 

  1309. 	while ((skb = skb_dequeue(&node->rx_queue)) != NULL) {
    1310. 

  1310. 		struct qrtr_cb *cb = (struct qrtr_cb *)skb->cb;
    1311. 

  1311. 		struct qrtr_sock *ipc;
    1312. 

  1312. 

  1313. 		if (cb->type != QRTR_TYPE_DATA)
    1314. 

  1314. 			qrtr_fwd_ctrl_pkt(node, skb);
    1315. 

  1315. 

  1316. 		if (cb->type == QRTR_TYPE_RESUME_TX) {
    1317. 

  1317. 			if (cb->dst_node != qrtr_local_nid) {
    1318. 

  1318. 				qrtr_fwd_pkt(skb, cb);
    1319. 

  1319. 				continue;
    1320. 

  1320. 			}
    1321. 

  1321. 			qrtr_tx_resume(node, skb);
    1322. 

  1322. 		} else if (cb->dst_node != qrtr_local_nid &&
    1323. 

  1323. 			   cb->type == QRTR_TYPE_DATA) {
    1324. 

  1324. 			qrtr_fwd_pkt(skb, cb);
    1325. 

  1325. 		} else if (cb->type == QRTR_TYPE_DEL_PROC) {
    1326. 

  1326. 			qrtr_handle_del_proc(node, skb);
    1327. 

  1327. 		} else {
    1328. 

  1328. 			ipc = qrtr_port_lookup(cb->dst_port);
    1329. 

  1329. 			if (!ipc) {
    1330. 

  1330. 				kfree_skb(skb);
    1331. 

  1331. 			} else {
    1332. 

  1332. 				qrtr_sock_queue_skb(node, skb, ipc);
    1333. 

  1333. 				qrtr_port_put(ipc);
    1334. 

  1334. 			}
    1335. 

  1335. 		}
    1336. 

  1336. 	}
    1337. 

  1337. }
    1338. 

  1338. 

  1339. static void qrtr_handle_del_proc(struct qrtr_node *node, struct sk_buff *skb)
    1340. 

  1340. {
    1341. 

  1341. 	struct sockaddr_qrtr src = {AF_QIPCRTR, 0, QRTR_PORT_CTRL};
    1342. 

  1342. 	struct sockaddr_qrtr dst = {AF_QIPCRTR, qrtr_local_nid, QRTR_PORT_CTRL};
    1343. 

  1343. 	struct qrtr_ctrl_pkt pkt = {0,};
    1344. 

  1344. 	struct qrtr_tx_flow_waiter *waiter;
    1345. 

  1345. 	struct qrtr_tx_flow_waiter *temp;
    1346. 

  1346. 	struct radix_tree_iter iter;
    1347. 

  1347. 	struct qrtr_tx_flow *flow;
    1348. 

  1348. 	unsigned long node_id;
    1349. 

  1349. 	void __rcu **slot;
    1350. 

  1350. 

  1351. 	skb_copy_bits(skb, 0, &pkt, sizeof(pkt));
    1352. 

  1352. 	src.sq_node = le32_to_cpu(pkt.proc.node);
    1353. 

  1353. 	/* Free tx flow counters */
    1354. 

  1354. 	mutex_lock(&node->qrtr_tx_lock);
    1355. 

  1355. 	radix_tree_for_each_slot(slot, &node->qrtr_tx_flow, &iter, 0) {
    1356. 

  1356. 		flow = rcu_dereference(*slot);
    1357. 

  1357. 		/* extract node id from the index key */
    1358. 

  1358. 		node_id = (iter.index & 0xFFFFFFFF00000000) >> 32;
    1359. 

  1359. 		if (node_id != src.sq_node)
    1360. 

  1360. 			continue;
    1361. 

  1361. 		list_for_each_entry_safe(waiter, temp, &flow->waiters, node) {
    1362. 

  1362. 			list_del(&waiter->node);
    1363. 

  1363. 			sock_put(waiter->sk);
    1364. 

  1364. 			kfree(waiter);
    1365. 

  1365. 		}
    1366. 

  1366. 		kfree(flow);
    1367. 

  1367. 		radix_tree_delete(&node->qrtr_tx_flow, iter.index);
    1368. 

  1368. 	}
    1369. 

  1369. 	mutex_unlock(&node->qrtr_tx_lock);
    1370. 

  1370. 

  1371. 	memset(&pkt, 0, sizeof(pkt));
    1372. 

  1372. 	pkt.cmd = cpu_to_le32(QRTR_TYPE_BYE);
    1373. 

  1373. 	skb_store_bits(skb, 0, &pkt, sizeof(pkt));
    1374. 

  1374. 	qrtr_local_enqueue(NULL, skb, QRTR_TYPE_BYE, &src, &dst, 0);
    1375. 

  1375. }
    1376. 

  1376. 

  1377. static void qrtr_hello_work(struct kthread_work *work)
    1378. 

  1378. {
    1379. 

  1379. 	struct sockaddr_qrtr from = {AF_QIPCRTR, 0, QRTR_PORT_CTRL};
    1380. 

  1380. 	struct sockaddr_qrtr to = {AF_QIPCRTR, 0, QRTR_PORT_CTRL};
    1381. 

  1381. 	struct qrtr_ctrl_pkt *pkt;
    1382. 

  1382. 	struct qrtr_node *node;
    1383. 

  1383. 	struct qrtr_sock *ctrl;
    1384. 

  1384. 	struct sk_buff *skb;
    1385. 

  1385. 

  1386. 	ctrl = qrtr_port_lookup(QRTR_PORT_CTRL);
    1387. 

  1387. 	if (!ctrl)
    1388. 

  1388. 		return;
    1389. 

  1389. 

  1390. 	skb = qrtr_alloc_ctrl_packet(&pkt, GFP_KERNEL);
    1391. 

  1391. 	if (!skb) {
    1392. 

  1392. 		qrtr_port_put(ctrl);
    1393. 

  1393. 		return;
    1394. 

  1394. 	}
    1395. 

  1395. 

  1396. 	node = container_of(work, struct qrtr_node, say_hello);
    1397. 

  1397. 	pkt->cmd = cpu_to_le32(QRTR_TYPE_HELLO);
    1398. 

  1398. 	from.sq_node = qrtr_local_nid;
    1399. 

  1399. 	to.sq_node = node->nid;
    1400. 

  1400. 	qrtr_node_enqueue(node, skb, QRTR_TYPE_HELLO, &from, &to, 0);
    1401. 

  1401. 	qrtr_port_put(ctrl);
    1402. 

  1402. }
    1403. 

  1403. 

  1404. /**
    1405. 

  1405.  * qrtr_endpoint_register() - register a new endpoint
    1406. 

  1406.  * @ep: endpoint to register
    1407. 

  1407.  * @nid: desired node id; may be QRTR_EP_NID_AUTO for auto-assignment
    1408. 

  1408.  * @rt: flag to notify real time low latency endpoint
    1409. 

  1409.  * @no_wake: array of services to not wake up
    1410. 

  1410.  * Return: 0 on success; negative error code on failure
    1411. 

  1411.  *
    1412. 

  1412.  * The specified endpoint must have the xmit function pointer set on call.
    1413. 

  1413.  */
    1414. 

  1414. int qrtr_endpoint_register(struct qrtr_endpoint *ep, unsigned int net_id,
    1415. 

  1415. 			   bool rt, struct qrtr_array *no_wake)
    1416. 

  1416. {
    1417. 

  1417. 	int rc, i;
    1418. 

  1418. 	size_t size;
    1419. 

  1419. 	struct qrtr_node *node;
    1420. 

  1420. 	struct sched_param param = {.sched_priority = 1};
    1421. 

  1421. 

  1422. 	if (!ep || !ep->xmit)
    1423. 

  1423. 		return -EINVAL;
    1424. 

  1424. 

  1425. 	node = kzalloc(sizeof(*node), GFP_KERNEL);
    1426. 

  1426. 	if (!node)
    1427. 

  1427. 		return -ENOMEM;
    1428. 

  1428. 

  1429. 	kref_init(&node->ref);
    1430. 

  1430. 	mutex_init(&node->ep_lock);
    1431. 

  1431. 	skb_queue_head_init(&node->rx_queue);
    1432. 

  1432. 	node->nid = QRTR_EP_NID_AUTO;
    1433. 

  1433. 	node->ep = ep;
    1434. 

  1434. 	atomic_set(&node->hello_sent, 0);
    1435. 

  1435. 	atomic_set(&node->hello_rcvd, 0);
    1436. 

  1436. 

  1437. 	kthread_init_work(&node->read_data, qrtr_node_rx_work);
    1438. 

  1438. 	kthread_init_work(&node->say_hello, qrtr_hello_work);
    1439. 

  1439. 	kthread_init_worker(&node->kworker);
    1440. 

  1440. 	node->task = kthread_run(kthread_worker_fn, &node->kworker, "qrtr_rx");
    1441. 

  1441. 	if (IS_ERR(node->task)) {
    1442. 

  1442. 		kfree(node);
    1443. 

  1443. 		return -ENOMEM;
    1444. 

  1444. 	}
    1445. 

  1445. 	if (rt)
    1446. 

  1446. 		sched_setscheduler(node->task, SCHED_FIFO, &param);
    1447. 

  1447. 

  1448. 	xa_init(&node->no_wake_svc);
    1449. 

  1449. 	size = no_wake ? no_wake->size : 0;
    1450. 

  1450. 	for (i = 0; i < size; i++) {
    1451. 

  1451. 		rc = xa_insert(&node->no_wake_svc, no_wake->arr[i], node,
    1452. 

  1452. 			       GFP_KERNEL);
    1453. 

  1453. 		if (rc) {
    1454. 

  1454. 			kfree(node);
    1455. 

  1455. 			return rc;
    1456. 

  1456. 		}
    1457. 

  1457. 	}
    1458. 

  1458. 

  1459. 	INIT_RADIX_TREE(&node->qrtr_tx_flow, GFP_KERNEL);
    1460. 

  1460. 	mutex_init(&node->qrtr_tx_lock);
    1461. 

  1461. 

  1462. 	qrtr_node_assign(node, node->nid);
    1463. 

  1463. 	node->net_id = net_id;
    1464. 

  1464. 

  1465. 	down_write(&qrtr_epts_lock);
    1466. 

  1466. 	list_add(&node->item, &qrtr_all_epts);
    1467. 

  1467. 	up_write(&qrtr_epts_lock);
    1468. 

  1468. 	ep->node = node;
    1469. 

  1469. 

  1470. 	node->ws = wakeup_source_register(NULL, "qrtr_ws");
    1471. 

  1471. 

  1472. 	kthread_queue_work(&node->kworker, &node->say_hello);
    1473. 

  1473. 	return 0;
    1474. 

  1474. }
    1475. 

  1475. EXPORT_SYMBOL_GPL(qrtr_endpoint_register);
    1476. 

  1476. 

  1477. static u32 qrtr_calc_checksum(struct qrtr_ctrl_pkt *pkt)
    1478. 

  1478. {
    1479. 

  1479. 	u32 checksum = 0;
    1480. 

  1480. 	u32 mask = 0xffff;
    1481. 

  1481. 	u16 upper_nb;
    1482. 

  1482. 	u16 lower_nb;
    1483. 

  1483. 	u32 *msg;
    1484. 

  1484. 	int i;
    1485. 

  1485. 

  1486. 	if (!pkt)
    1487. 

  1487. 		return checksum;
    1488. 

  1488. 	msg = (u32 *)pkt;
    1489. 

  1489. 

  1490. 	for (i = 0; i < sizeof(*pkt) / sizeof(*msg); i++) {
    1491. 

  1491. 		lower_nb = *msg & mask;
    1492. 

  1492. 		upper_nb = (*msg >> 16) & mask;
    1493. 

  1493. 		checksum += (upper_nb + lower_nb);
    1494. 

  1494. 		msg++;
    1495. 

  1495. 	}
    1496. 

  1496. 	while (checksum > 0xffff)
    1497. 

  1497. 		checksum = (checksum & mask) + ((checksum >> 16) & mask);
    1498. 

  1498. 

  1499. 	checksum = ~checksum & mask;
    1500. 

  1500. 

  1501. 	return checksum;
    1502. 

  1502. }
    1503. 

  1503. 

  1504. static void qrtr_fwd_del_proc(struct qrtr_node *src, unsigned int nid)
    1505. 

  1505. {
    1506. 

  1506. 	struct sockaddr_qrtr from = {AF_QIPCRTR, 0, QRTR_PORT_CTRL};
    1507. 

  1507. 	struct sockaddr_qrtr to = {AF_QIPCRTR, 0, QRTR_PORT_CTRL};
    1508. 

  1508. 	struct qrtr_ctrl_pkt *pkt;
    1509. 

  1509. 	struct qrtr_node *dst;
    1510. 

  1510. 	struct sk_buff *skb;
    1511. 

  1511. 

  1512. 	down_read(&qrtr_epts_lock);
    1513. 

  1513. 	list_for_each_entry(dst, &qrtr_all_epts, item) {
    1514. 

  1514. 		if (!qrtr_must_forward(src, dst, QRTR_TYPE_DEL_PROC))
    1515. 

  1515. 			continue;
    1516. 

  1516. 

  1517. 		skb = qrtr_alloc_ctrl_packet(&pkt, GFP_KERNEL);
    1518. 

  1518. 		if (!skb)
    1519. 

  1519. 			return;
    1520. 

  1520. 

  1521. 		pkt->cmd = cpu_to_le32(QRTR_TYPE_DEL_PROC);
    1522. 

  1522. 		pkt->proc.rsvd = QRTR_DEL_PROC_MAGIC;
    1523. 

  1523. 		pkt->proc.node = cpu_to_le32(nid);
    1524. 

  1524. 		pkt->proc.rsvd = cpu_to_le32(qrtr_calc_checksum(pkt));
    1525. 

  1525. 

  1526. 		from.sq_node = src->nid;
    1527. 

  1527. 		to.sq_node = dst->nid;
    1528. 

  1528. 		qrtr_node_enqueue(dst, skb, QRTR_TYPE_DEL_PROC, &from, &to, 0);
    1529. 

  1529. 	}
    1530. 

  1530. 	up_read(&qrtr_epts_lock);
    1531. 

  1531. }
    1532. 

  1532. 

  1533. /**
    1534. 

  1534.  * qrtr_endpoint_unregister - unregister endpoint
    1535. 

  1535.  * @ep: endpoint to unregister
    1536. 

  1536.  */
    1537. 

  1537. void qrtr_endpoint_unregister(struct qrtr_endpoint *ep)
    1538. 

  1538. {
    1539. 

  1539. 	struct qrtr_node *node = ep->node;
    1540. 

  1540. 	struct sockaddr_qrtr src = {AF_QIPCRTR, node->nid, QRTR_PORT_CTRL};
    1541. 

  1541. 	struct sockaddr_qrtr dst = {AF_QIPCRTR, qrtr_local_nid, QRTR_PORT_CTRL};
    1542. 

  1542. 	struct radix_tree_iter iter;
    1543. 

  1543. 	struct qrtr_ctrl_pkt *pkt;
    1544. 

  1544. 	struct qrtr_tx_flow *flow;
    1545. 

  1545. 	struct sk_buff *skb;
    1546. 

  1546. 	unsigned long flags;
    1547. 

  1547. 	void __rcu **slot;
    1548. 

  1548. 

  1549. 	mutex_lock(&node->ep_lock);
    1550. 

  1550. 	node->ep = NULL;
    1551. 

  1551. 	mutex_unlock(&node->ep_lock);
    1552. 

  1552. 

  1553. 	/* Notify the local controller about the event */
    1554. 

  1554. 	spin_lock_irqsave(&qrtr_nodes_lock, flags);
    1555. 

  1555. 	radix_tree_for_each_slot(slot, &qrtr_nodes, &iter, 0) {
    1556. 

  1556. 		if (*slot != node)
    1557. 

  1557. 			continue;
    1558. 

  1558. 		src.sq_node = iter.index;
    1559. 

  1559. 		spin_unlock_irqrestore(&qrtr_nodes_lock, flags);
    1560. 

  1560. 		skb = qrtr_alloc_ctrl_packet(&pkt, GFP_KERNEL);
    1561. 

  1561. 		if (skb) {
    1562. 

  1562. 			pkt->cmd = cpu_to_le32(QRTR_TYPE_BYE);
    1563. 

  1563. 			qrtr_local_enqueue(NULL, skb, QRTR_TYPE_BYE, &src, &dst, 0);
    1564. 

  1564. 		}
    1565. 

  1565. 		qrtr_fwd_del_proc(node, iter.index);
    1566. 

  1566. 		spin_lock_irqsave(&qrtr_nodes_lock, flags);
    1567. 

  1567. 	}
    1568. 

  1568. 	spin_unlock_irqrestore(&qrtr_nodes_lock, flags);
    1569. 

  1569. 

  1570. 	/* Wake up any transmitters waiting for resume-tx from the node */
    1571. 

  1571. 	mutex_lock(&node->qrtr_tx_lock);
    1572. 

  1572. 	radix_tree_for_each_slot(slot, &node->qrtr_tx_flow, &iter, 0) {
    1573. 

  1573. 		flow = *slot;
    1574. 

  1574. 		wake_up_interruptible_all(&flow->resume_tx);
    1575. 

  1575. 	}
    1576. 

  1576. 	mutex_unlock(&node->qrtr_tx_lock);
    1577. 

  1577. 

  1578. 	qrtr_node_release(node);
    1579. 

  1579. 	ep->node = NULL;
    1580. 

  1580. }
    1581. 

  1581. EXPORT_SYMBOL_GPL(qrtr_endpoint_unregister);
    1582. 

  1582. 

  1583. /* Lookup socket by port.
    1584. 

  1584.  *
    1585. 

  1585.  * Callers must release with qrtr_port_put()
    1586. 

  1586.  */
    1587. 

  1587. static struct qrtr_sock *qrtr_port_lookup(int port)
    1588. 

  1588. {
    1589. 

  1589. 	struct qrtr_sock *ipc;
    1590. 

  1590. 	unsigned long flags;
    1591. 

  1591. 

  1592. 	if (port == QRTR_PORT_CTRL)
    1593. 

  1593. 		port = 0;
    1594. 

  1594. 

  1595. 	spin_lock_irqsave(&qrtr_port_lock, flags);
    1596. 

  1596. 	ipc = xa_load(&qrtr_ports, port);
    1597. 

  1597. 	if (ipc)
    1598. 

  1598. 		sock_hold(&ipc->sk);
    1599. 

  1599. 	spin_unlock_irqrestore(&qrtr_port_lock, flags);
    1600. 

  1600. 

  1601. 	return ipc;
    1602. 

  1602. }
    1603. 

  1603. 

  1604. /* Release acquired socket. */
    1605. 

  1605. static void qrtr_port_put(struct qrtr_sock *ipc)
    1606. 

  1606. {
    1607. 

  1607. 	sock_put(&ipc->sk);
    1608. 

  1608. }
    1609. 

  1609. 

  1610. static void qrtr_send_del_client(struct qrtr_sock *ipc)
    1611. 

  1611. {
    1612. 

  1612. 	struct qrtr_ctrl_pkt *pkt;
    1613. 

  1613. 	struct sockaddr_qrtr to;
    1614. 

  1614. 	struct qrtr_node *node;
    1615. 

  1615. 	struct sk_buff *skbn;
    1616. 

  1616. 	struct sk_buff *skb;
    1617. 

  1617. 	int type = QRTR_TYPE_DEL_CLIENT;
    1618. 

  1618. 

  1619. 	skb = qrtr_alloc_ctrl_packet(&pkt, GFP_KERNEL);
    1620. 

  1620. 	if (!skb)
    1621. 

  1621. 		return;
    1622. 

  1622. 

  1623. 	to.sq_family = AF_QIPCRTR;
    1624. 

  1624. 	to.sq_node = QRTR_NODE_BCAST;
    1625. 

  1625. 	to.sq_port = QRTR_PORT_CTRL;
    1626. 

  1626. 

  1627. 	pkt->cmd = cpu_to_le32(QRTR_TYPE_DEL_CLIENT);
    1628. 

  1628. 	pkt->client.node = cpu_to_le32(ipc->us.sq_node);
    1629. 

  1629. 	pkt->client.port = cpu_to_le32(ipc->us.sq_port);
    1630. 

  1630. 

  1631. 	skb_set_owner_w(skb, &ipc->sk);
    1632. 

  1632. 

  1633. 	if (ipc->state == QRTR_STATE_MULTI) {
    1634. 

  1634. 		qrtr_bcast_enqueue(NULL, skb, type, &ipc->us, &to, 0);
    1635. 

  1635. 		return;
    1636. 

  1636. 	}
    1637. 

  1637. 

  1638. 	if (ipc->state > QRTR_STATE_INIT) {
    1639. 

  1639. 		node = qrtr_node_lookup(ipc->state);
    1640. 

  1640. 		if (!node)
    1641. 

  1641. 			goto exit;
    1642. 

  1642. 

  1643. 		skbn = skb_clone(skb, GFP_KERNEL);
    1644. 

  1644. 		if (!skbn) {
    1645. 

  1645. 			qrtr_node_release(node);
    1646. 

  1646. 			goto exit;
    1647. 

  1647. 		}
    1648. 

  1648. 

  1649. 		skb_set_owner_w(skbn, &ipc->sk);
    1650. 

  1650. 		qrtr_node_enqueue(node, skbn, type, &ipc->us, &to, 0);
    1651. 

  1651. 		qrtr_node_release(node);
    1652. 

  1652. 	}
    1653. 

  1653. exit:
    1654. 

  1654. 	qrtr_local_enqueue(NULL, skb, type, &ipc->us, &to, 0);
    1655. 

  1655. }
    1656. 

  1656. 

  1657. /* Remove port assignment. */
    1658. 

  1658. static void qrtr_port_remove(struct qrtr_sock *ipc)
    1659. 

  1659. {
    1660. 

  1660. 	int port = ipc->us.sq_port;
    1661. 

  1661. 	unsigned long flags;
    1662. 

  1662. 

  1663. 	qrtr_send_del_client(ipc);
    1664. 

  1664. 

  1665. 	if (port == QRTR_PORT_CTRL)
    1666. 

  1666. 		port = 0;
    1667. 

  1667. 

  1668. 	__sock_put(&ipc->sk);
    1669. 

  1669. 

  1670. 	spin_lock_irqsave(&qrtr_port_lock, flags);
    1671. 

  1671. 	xa_erase(&qrtr_ports, port);
    1672. 

  1672. 	spin_unlock_irqrestore(&qrtr_port_lock, flags);
    1673. 

  1673. }
    1674. 

  1674. 

  1675. /* Assign port number to socket.
    1676. 

  1676.  *
    1677. 

  1677.  * Specify port in the integer pointed to by port, and it will be adjusted
    1678. 

  1678.  * on return as necesssary.
    1679. 

  1679.  *
    1680. 

  1680.  * Port may be:
    1681. 

  1681.  *   0: Assign ephemeral port in [QRTR_MIN_EPH_SOCKET, QRTR_MAX_EPH_SOCKET]
    1682. 

  1682.  *   <QRTR_MIN_EPH_SOCKET: Specified; requires CAP_NET_ADMIN
    1683. 

  1683.  *   >QRTR_MIN_EPH_SOCKET: Specified; available to all
    1684. 

  1684.  */
    1685. 

  1685. static int qrtr_port_assign(struct qrtr_sock *ipc, int *port)
    1686. 

  1686. {
    1687. 

  1687. 	int rc;
    1688. 

  1688. 

  1689. 	if (!*port) {
    1690. 

  1690. 		rc = xa_alloc_cyclic(&qrtr_ports, port, ipc,
    1691. 

  1691. 				     QRTR_EPH_PORT_RANGE, &qrtr_ports_next,
    1692. 

  1692. 				     GFP_ATOMIC);
    1693. 

  1693. 	} else if (*port < QRTR_MIN_EPH_SOCKET &&
    1694. 

  1694. 		   !(capable(CAP_NET_ADMIN) ||
    1695. 

  1695. 		   in_egroup_p(AID_VENDOR_QRTR) ||
    1696. 

  1696. 		   in_egroup_p(GLOBAL_ROOT_GID))) {
    1697. 

  1697. 		rc = -EACCES;
    1698. 

  1698. 	} else if (*port == QRTR_PORT_CTRL) {
    1699. 

  1699. 		rc = xa_insert(&qrtr_ports, 0, ipc, GFP_ATOMIC);
    1700. 

  1700. 	} else {
    1701. 

  1701. 		rc = xa_insert(&qrtr_ports, *port, ipc, GFP_ATOMIC);
    1702. 

  1702. 	}
    1703. 

  1703. 

  1704. 	if (rc == -EBUSY)
    1705. 

  1705. 		return -EADDRINUSE;
    1706. 

  1706. 	else if (rc < 0)
    1707. 

  1707. 		return rc;
    1708. 

  1708. 

  1709. 	sock_hold(&ipc->sk);
    1710. 

  1710. 

  1711. 	return 0;
    1712. 

  1712. }
    1713. 

  1713. 

  1714. /* Reset all non-control ports */
    1715. 

  1715. static void qrtr_reset_ports(void)
    1716. 

  1716. {
    1717. 

  1717. 	struct qrtr_sock *ipc;
    1718. 

  1718. 	unsigned long index;
    1719. 

  1719. 

  1720. 	rcu_read_lock();
    1721. 

  1721. 	xa_for_each_start(&qrtr_ports, index, ipc, 1) {
    1722. 

  1722. 		sock_hold(&ipc->sk);
    1723. 

  1723. 		ipc->sk.sk_err = ENETRESET;
    1724. 

  1724. 		sk_error_report(&ipc->sk);
    1725. 

  1725. 		sock_put(&ipc->sk);
    1726. 

  1726. 	}
    1727. 

  1727. 	rcu_read_unlock();
    1728. 

  1728. }
    1729. 

  1729. 

  1730. /* Bind socket to address.
    1731. 

  1731.  *
    1732. 

  1732.  * Socket should be locked upon call.
    1733. 

  1733.  */
    1734. 

  1734. static int __qrtr_bind(struct socket *sock,
    1735. 

  1735. 		       const struct sockaddr_qrtr *addr, int zapped)
    1736. 

  1736. {
    1737. 

  1737. 	struct qrtr_sock *ipc = qrtr_sk(sock->sk);
    1738. 

  1738. 	struct sock *sk = sock->sk;
    1739. 

  1739. 	unsigned long flags;
    1740. 

  1740. 	int port;
    1741. 

  1741. 	int rc;
    1742. 

  1742. 

  1743. 	/* rebinding ok */
    1744. 

  1744. 	if (!zapped && addr->sq_port == ipc->us.sq_port)
    1745. 

  1745. 		return 0;
    1746. 

  1746. 

  1747. 	spin_lock_irqsave(&qrtr_port_lock, flags);
    1748. 

  1748. 	port = addr->sq_port;
    1749. 

  1749. 	rc = qrtr_port_assign(ipc, &port);
    1750. 

  1750. 	if (rc) {
    1751. 

  1751. 		spin_unlock_irqrestore(&qrtr_port_lock, flags);
    1752. 

  1752. 		return rc;
    1753. 

  1753. 	}
    1754. 

  1754. 

  1755. 	if (port == QRTR_PORT_CTRL)
    1756. 

  1756. 		qrtr_reset_ports();
    1757. 

  1757. 	spin_unlock_irqrestore(&qrtr_port_lock, flags);
    1758. 

  1758. 

  1759. 	/* unbind previous, if any */
    1760. 

  1760. 	if (!zapped)
    1761. 

  1761. 		qrtr_port_remove(ipc);
    1762. 

  1762. 	ipc->us.sq_port = port;
    1763. 

  1763. 

  1764. 	sock_reset_flag(sk, SOCK_ZAPPED);
    1765. 

  1765. 

  1766. 	return 0;
    1767. 

  1767. }
    1768. 

  1768. 

  1769. /* Auto bind to an ephemeral port. */
    1770. 

  1770. static int qrtr_autobind(struct socket *sock)
    1771. 

  1771. {
    1772. 

  1772. 	struct sock *sk = sock->sk;
    1773. 

  1773. 	struct sockaddr_qrtr addr;
    1774. 

  1774. 

  1775. 	if (!sock_flag(sk, SOCK_ZAPPED))
    1776. 

  1776. 		return 0;
    1777. 

  1777. 

  1778. 	addr.sq_family = AF_QIPCRTR;
    1779. 

  1779. 	addr.sq_node = qrtr_local_nid;
    1780. 

  1780. 	addr.sq_port = 0;
    1781. 

  1781. 

  1782. 	return __qrtr_bind(sock, &addr, 1);
    1783. 

  1783. }
    1784. 

  1784. 

  1785. /* Bind socket to specified sockaddr. */
    1786. 

  1786. static int qrtr_bind(struct socket *sock, struct sockaddr *saddr, int len)
    1787. 

  1787. {
    1788. 

  1788. 	DECLARE_SOCKADDR(struct sockaddr_qrtr *, addr, saddr);
    1789. 

  1789. 	struct qrtr_sock *ipc = qrtr_sk(sock->sk);
    1790. 

  1790. 	struct sock *sk = sock->sk;
    1791. 

  1791. 	int rc;
    1792. 

  1792. 

  1793. 	if (len < sizeof(*addr) || addr->sq_family != AF_QIPCRTR)
    1794. 

  1794. 		return -EINVAL;
    1795. 

  1795. 

  1796. 	if (addr->sq_node != ipc->us.sq_node)
    1797. 

  1797. 		return -EINVAL;
    1798. 

  1798. 

  1799. 	lock_sock(sk);
    1800. 

  1800. 	rc = __qrtr_bind(sock, addr, sock_flag(sk, SOCK_ZAPPED));
    1801. 

  1801. 	release_sock(sk);
    1802. 

  1802. 

  1803. 	return rc;
    1804. 

  1804. }
    1805. 

  1805. 

  1806. /* Queue packet to local peer socket. */
    1807. 

  1807. static int qrtr_local_enqueue(struct qrtr_node *node, struct sk_buff *skb,
    1808. 

  1808. 			      int type, struct sockaddr_qrtr *from,
    1809. 

  1809. 			      struct sockaddr_qrtr *to, unsigned int flags)
    1810. 

  1810. {
    1811. 

  1811. 	struct qrtr_sock *ipc;
    1812. 

  1812. 	struct qrtr_cb *cb;
    1813. 

  1813. 	struct sock *sk = skb->sk;
    1814. 

  1814. 	int rc;
    1815. 

  1815. 

  1816. 	ipc = qrtr_port_lookup(to->sq_port);
    1817. 

  1817. 	if (!ipc && to->sq_port == QRTR_PORT_CTRL) {
    1818. 

  1818. 		kfree_skb(skb);
    1819. 

  1819. 		return 0;
    1820. 

  1820. 	}
    1821. 

  1821. 	if (!ipc || &ipc->sk == skb->sk) { /* do not send to self */
    1822. 

  1822. 		if (ipc)
    1823. 

  1823. 			qrtr_port_put(ipc);
    1824. 

  1824. 		kfree_skb(skb);
    1825. 

  1825. 		return -ENODEV;
    1826. 

  1826. 	}
    1827. 

  1827. 

  1828. 	/* Keep resetting NETRESET until socket is closed */
    1829. 

  1829. 	if (sk && sk->sk_err == ENETRESET) {
    1830. 

  1830. 		sk->sk_err = ENETRESET;
    1831. 

  1831. 		sk_error_report(sk);
    1832. 

  1832. 		qrtr_port_put(ipc);
    1833. 

  1833. 		kfree_skb(skb);
    1834. 

  1834. 		return 0;
    1835. 

  1835. 	}
    1836. 

  1836. 

  1837. 	cb = (struct qrtr_cb *)skb->cb;
    1838. 

  1838. 	cb->src_node = from->sq_node;
    1839. 

  1839. 	cb->src_port = from->sq_port;
    1840. 

  1840. 

  1841. 	QRTR_INFO(qrtr_local_ilc,
    1842. 

  1842. 		  "LOCAL ENQUEUE: cmd:0x%x src[0x%x:0x%x] dst[0x%x:0x%x] [%s] pid:%d\n",
    1843. 

  1843. 		  type, from->sq_node, from->sq_port,
    1844. 

  1844. 		  to->sq_node, to->sq_port, current->comm,
    1845. 

  1845. 		  current->pid);
    1846. 

  1846. 

  1847. 	rc = (ipc->us.sq_port == QRTR_PORT_CTRL) ?
    1848. 

  1848. 		qrtr_sock_queue_ctrl_skb(ipc, skb) :
    1849. 

  1849. 		sock_queue_rcv_skb(&ipc->sk, skb);
    1850. 

  1850. 	qrtr_port_put(ipc);
    1851. 

  1851. 	if (rc) {
    1852. 

  1852. 		kfree_skb(skb);
    1853. 

  1853. 		return -ENOSPC;
    1854. 

  1854. 	}
    1855. 

  1855. 

  1856. 	return 0;
    1857. 

  1857. }
    1858. 

  1858. 

  1859. /* Queue packet for broadcast. */
    1860. 

  1860. static int qrtr_bcast_enqueue(struct qrtr_node *node, struct sk_buff *skb,
    1861. 

  1861. 			      int type, struct sockaddr_qrtr *from,
    1862. 

  1862. 			      struct sockaddr_qrtr *to, unsigned int flags)
    1863. 

  1863. {
    1864. 

  1864. 	struct sk_buff *skbn;
    1865. 

  1865. 

  1866. 	down_read(&qrtr_epts_lock);
    1867. 

  1867. 	list_for_each_entry(node, &qrtr_all_epts, item) {
    1868. 

  1868. 		if (node->nid == QRTR_EP_NID_AUTO && type != QRTR_TYPE_HELLO)
    1869. 

  1869. 			continue;
    1870. 

  1870. 

  1871. 		skbn = skb_clone(skb, GFP_KERNEL);
    1872. 

  1872. 		if (!skbn)
    1873. 

  1873. 			break;
    1874. 

  1874. 		skb_set_owner_w(skbn, skb->sk);
    1875. 

  1875. 		qrtr_node_enqueue(node, skbn, type, from, to, flags);
    1876. 

  1876. 	}
    1877. 

  1877. 	up_read(&qrtr_epts_lock);
    1878. 

  1878. 

  1879. 	qrtr_local_enqueue(NULL, skb, type, from, to, flags);
    1880. 

  1880. 

  1881. 	return 0;
    1882. 

  1882. }
    1883. 

  1883. 

  1884. static int qrtr_sendmsg(struct socket *sock, struct msghdr *msg, size_t len)
    1885. 

  1885. {
    1886. 

  1886. 	DECLARE_SOCKADDR(struct sockaddr_qrtr *, addr, msg->msg_name);
    1887. 

  1887. 	int (*enqueue_fn)(struct qrtr_node *, struct sk_buff *, int,
    1888. 

  1888. 			  struct sockaddr_qrtr *, struct sockaddr_qrtr *,
    1889. 

  1889. 			  unsigned int);
    1890. 

  1890. 	__le32 qrtr_type = cpu_to_le32(QRTR_TYPE_DATA);
    1891. 

  1891. 	struct qrtr_sock *ipc = qrtr_sk(sock->sk);
    1892. 

  1892. 	struct sock *sk = sock->sk;
    1893. 

  1893. 	struct qrtr_ctrl_pkt pkt;
    1894. 

  1894. 	struct qrtr_node *node;
    1895. 

  1895. 	struct qrtr_node *srv_node;
    1896. 

  1896. 	struct sk_buff *skb;
    1897. 

  1897. 	int pdata_len = 0;
    1898. 

  1898. 	int data_len = 0;
    1899. 

  1899. 	size_t plen;
    1900. 

  1900. 	u32 type;
    1901. 

  1901. 	int rc;
    1902. 

  1902. 

  1903. 	if (msg->msg_flags & ~(MSG_DONTWAIT))
    1904. 

  1904. 		return -EINVAL;
    1905. 

  1905. 

  1906. 	if (len > 65535)
    1907. 

  1907. 		return -EMSGSIZE;
    1908. 

  1908. 

  1909. 	lock_sock(sk);
    1910. 

  1910. 

  1911. 	if (addr) {
    1912. 

  1912. 		if (msg->msg_namelen < sizeof(*addr)) {
    1913. 

  1913. 			release_sock(sk);
    1914. 

  1914. 			return -EINVAL;
    1915. 

  1915. 		}
    1916. 

  1916. 

  1917. 		if (addr->sq_family != AF_QIPCRTR) {
    1918. 

  1918. 			release_sock(sk);
    1919. 

  1919. 			return -EINVAL;
    1920. 

  1920. 		}
    1921. 

  1921. 

  1922. 		rc = qrtr_autobind(sock);
    1923. 

  1923. 		if (rc) {
    1924. 

  1924. 			release_sock(sk);
    1925. 

  1925. 			return rc;
    1926. 

  1926. 		}
    1927. 

  1927. 	} else if (sk->sk_state == TCP_ESTABLISHED) {
    1928. 

  1928. 		addr = &ipc->peer;
    1929. 

  1929. 	} else {
    1930. 

  1930. 		release_sock(sk);
    1931. 

  1931. 		return -ENOTCONN;
    1932. 

  1932. 	}
    1933. 

  1933. 

  1934. 	node = NULL;
    1935. 

  1935. 	srv_node = NULL;
    1936. 

  1936. 	if (addr->sq_node == QRTR_NODE_BCAST) {
    1937. 

  1937. 		if (addr->sq_port != QRTR_PORT_CTRL &&
    1938. 

  1938. 		    qrtr_local_nid != QRTR_NODE_BCAST) {
    1939. 

  1939. 			release_sock(sk);
    1940. 

  1940. 			return -ENOTCONN;
    1941. 

  1941. 		}
    1942. 

  1942. 		enqueue_fn = qrtr_bcast_enqueue;
    1943. 

  1943. 	} else if (addr->sq_node == ipc->us.sq_node) {
    1944. 

  1944. 		enqueue_fn = qrtr_local_enqueue;
    1945. 

  1945. 	} else {
    1946. 

  1946. 		node = qrtr_node_lookup(addr->sq_node);
    1947. 

  1947. 		if (!node) {
    1948. 

  1948. 			release_sock(sk);
    1949. 

  1949. 			return -ECONNRESET;
    1950. 

  1950. 		}
    1951. 

  1951. 		enqueue_fn = qrtr_node_enqueue;
    1952. 

  1952. 

  1953. 		if (ipc->state > QRTR_STATE_INIT && ipc->state != node->nid)
    1954. 

  1954. 			ipc->state = QRTR_STATE_MULTI;
    1955. 

  1955. 		else if (ipc->state == QRTR_STATE_INIT)
    1956. 

  1956. 			ipc->state = node->nid;
    1957. 

  1957. 	}
    1958. 

  1958. 

  1959. 	plen = (len + 3) & ~3;
    1960. 

  1960. 	if (plen > SKB_MAX_ALLOC) {
    1961. 

  1961. 		data_len = min_t(size_t,
    1962. 

  1962. 				 plen - SKB_MAX_ALLOC,
    1963. 

  1963. 				 MAX_SKB_FRAGS * PAGE_SIZE);
    1964. 

  1964. 		pdata_len = PAGE_ALIGN(data_len);
    1965. 

  1965. 

  1966. 		BUILD_BUG_ON(SKB_MAX_ALLOC < PAGE_SIZE);
    1967. 

  1967. 	}
    1968. 

  1968. 	skb = sock_alloc_send_pskb(sk, QRTR_HDR_MAX_SIZE + (plen - data_len),
    1969. 

  1969. 				   pdata_len, msg->msg_flags & MSG_DONTWAIT,
    1970. 

  1970. 				   &rc, PAGE_ALLOC_COSTLY_ORDER);
    1971. 

  1971. 	if (!skb) {
    1972. 

  1972. 		rc = -ENOMEM;
    1973. 

  1973. 		goto out_node;
    1974. 

  1974. 	}
    1975. 

  1975. 

  1976. 	skb_reserve(skb, QRTR_HDR_MAX_SIZE);
    1977. 

  1977. 

  1978. 	/* len is used by the enqueue functions and should remain accurate
    1979. 

  1979. 	 * regardless of padding or allocation size
    1980. 

  1980. 	 */
    1981. 

  1981. 	skb_put(skb, len - data_len);
    1982. 

  1982. 	skb->data_len = data_len;
    1983. 

  1983. 	skb->len = len;
    1984. 

  1984. 	rc = skb_copy_datagram_from_iter(skb, 0, &msg->msg_iter, len);
    1985. 

  1985. 	if (rc) {
    1986. 

  1986. 		kfree_skb(skb);
    1987. 

  1987. 		goto out_node;
    1988. 

  1988. 	}
    1989. 

  1989. 

  1990. 	if (ipc->us.sq_port == QRTR_PORT_CTRL ||
    1991. 

  1991. 	    addr->sq_port == QRTR_PORT_CTRL) {
    1992. 

  1992. 		if (len < 4) {
    1993. 

  1993. 			rc = -EINVAL;
    1994. 

  1994. 			kfree_skb(skb);
    1995. 

  1995. 			goto out_node;
    1996. 

  1996. 		}
    1997. 

  1997. 

  1998. 		/* control messages already require the type as 'command' */
    1999. 

  1999. 		skb_copy_bits(skb, 0, &qrtr_type, 4);
    2000. 

  2000. 	}
    2001. 

  2001. 

  2002. 	type = le32_to_cpu(qrtr_type);
    2003. 

  2003. 	if (addr->sq_port == QRTR_PORT_CTRL && type == QRTR_TYPE_NEW_SERVER) {
    2004. 

  2004. 		ipc->state = QRTR_STATE_MULTI;
    2005. 

  2005. 

  2006. 		/* drop new server cmds that are not forwardable to dst node*/
    2007. 

  2007. 		skb_copy_bits(skb, 0, &pkt, sizeof(pkt));
    2008. 

  2008. 		srv_node = qrtr_node_lookup(pkt.server.node);
    2009. 

  2009. 		if (!qrtr_must_forward(srv_node, node, type)) {
    2010. 

  2010. 			rc = 0;
    2011. 

  2011. 			kfree_skb(skb);
    2012. 

  2012. 			qrtr_node_release(srv_node);
    2013. 

  2013. 			goto out_node;
    2014. 

  2014. 		}
    2015. 

  2015. 		qrtr_node_release(srv_node);
    2016. 

  2016. 	}
    2017. 

  2017. 

  2018. 	rc = enqueue_fn(node, skb, type, &ipc->us, addr, msg->msg_flags);
    2019. 

  2019. 

  2020. 	if (rc >= 0)
    2021. 

  2021. 		rc = len;
    2022. 

  2022. 

  2023. out_node:
    2024. 

  2024. 	qrtr_node_release(node);
    2025. 

  2025. 	release_sock(sk);
    2026. 

  2026. 

  2027. 	return rc;
    2028. 

  2028. }
    2029. 

  2029. 

  2030. static int qrtr_send_resume_tx(struct qrtr_cb *cb)
    2031. 

  2031. {
    2032. 

  2032. 	struct sockaddr_qrtr remote = { AF_QIPCRTR, cb->src_node, cb->src_port };
    2033. 

  2033. 	struct sockaddr_qrtr local = { AF_QIPCRTR, cb->dst_node, cb->dst_port };
    2034. 

  2034. 	struct qrtr_ctrl_pkt *pkt;
    2035. 

  2035. 	struct qrtr_node *node;
    2036. 

  2036. 	struct sk_buff *skb;
    2037. 

  2037. 	int ret;
    2038. 

  2038. 

  2039. 	node = qrtr_node_lookup(remote.sq_node);
    2040. 

  2040. 	if (!node)
    2041. 

  2041. 		return -EINVAL;
    2042. 

  2042. 

  2043. 	skb = qrtr_alloc_ctrl_packet(&pkt, GFP_KERNEL);
    2044. 

  2044. 	if (!skb) {
    2045. 

  2045. 		qrtr_node_release(node);
    2046. 

  2046. 		return -ENOMEM;
    2047. 

  2047. 	}
    2048. 

  2048. 

  2049. 	pkt->cmd = cpu_to_le32(QRTR_TYPE_RESUME_TX);
    2050. 

  2050. 	pkt->client.node = cpu_to_le32(cb->dst_node);
    2051. 

  2051. 	pkt->client.port = cpu_to_le32(cb->dst_port);
    2052. 

  2052. 

  2053. 	ret = qrtr_node_enqueue(node, skb, QRTR_TYPE_RESUME_TX, &local, &remote, 0);
    2054. 

  2054. 

  2055. 	qrtr_node_release(node);
    2056. 

  2056. 

  2057. 	return ret;
    2058. 

  2058. }
    2059. 

  2059. 

  2060. static int qrtr_recvmsg(struct socket *sock, struct msghdr *msg,
    2061. 

  2061. 			size_t size, int flags)
    2062. 

  2062. {
    2063. 

  2063. 	DECLARE_SOCKADDR(struct sockaddr_qrtr *, addr, msg->msg_name);
    2064. 

  2064. 	struct sock *sk = sock->sk;
    2065. 

  2065. 	unsigned long lock_flags;
    2066. 

  2066. 	struct qrtr_sock *ipc;
    2067. 

  2067. 	struct sk_buff *skb;
    2068. 

  2068. 	struct qrtr_cb *cb;
    2069. 

  2069. 	int copied, rc;
    2070. 

  2070. 

  2071. 	if (sock_flag(sk, SOCK_ZAPPED))
    2072. 

  2072. 		return -EADDRNOTAVAIL;
    2073. 

  2073. 

  2074. 	skb = skb_recv_datagram(sk, flags, &rc);
    2075. 

  2075. 	if (!skb)
    2076. 

  2076. 		return rc;
    2077. 

  2077. 

  2078. 	lock_sock(sk);
    2079. 

  2079. 	cb = (struct qrtr_cb *)skb->cb;
    2080. 

  2080. 	if ((cb->src_node == 0) || (cb->src_node == 5)) {
    2081. 

  2081. 		struct qrtr_node *node;
    2082. 

  2082. 		node = qrtr_node_lookup(cb->src_node);
    2083. 

  2083. 		if (node) {
    2084. 

  2084. 			QRTR_INFO(node->ilc, "RECV [0x%x:0x%x(cf=%d)] %px %px\n", cb->dst_node, cb->dst_port, cb->confirm_rx, sk, skb);
    2085. 

  2085. 			qrtr_node_release(node);
    2086. 

  2086. 		}
    2087. 

  2087. 	}
    2088. 

  2088. 	copied = skb->len;
    2089. 

  2089. 	if (copied > size) {
    2090. 

  2090. 		copied = size;
    2091. 

  2091. 		msg->msg_flags |= MSG_TRUNC;
    2092. 

  2092. 	}
    2093. 

  2093. 

  2094. 	rc = skb_copy_datagram_msg(skb, 0, msg, copied);
    2095. 

  2095. 	if (rc < 0)
    2096. 

  2096. 		goto out;
    2097. 

  2097. 	rc = copied;
    2098. 

  2098. 

  2099. 	if (addr) {
    2100. 

  2100. 		/* There is an anonymous 2-byte hole after sq_family,
    2101. 

  2101. 		 * make sure to clear it.
    2102. 

  2102. 		 */
    2103. 

  2103. 		memset(addr, 0, sizeof(*addr));
    2104. 

  2104. 

  2105. 		addr->sq_family = AF_QIPCRTR;
    2106. 

  2106. 		addr->sq_node = cb->src_node;
    2107. 

  2107. 		addr->sq_port = cb->src_port;
    2108. 

  2108. 		msg->msg_namelen = sizeof(*addr);
    2109. 

  2109. 	}
    2110. 

  2110. 

  2111. out:
    2112. 

  2112. 	if (cb->confirm_rx)
    2113. 

  2113. 		qrtr_send_resume_tx(cb);
    2114. 

  2114. 

  2115. 	skb_free_datagram(sk, skb);
    2116. 

  2116. 

  2117. 	ipc = qrtr_sk(sk);
    2118. 

  2118. 	if (ipc->us.sq_port == QRTR_PORT_CTRL) {
    2119. 

  2119. 		spin_lock_irqsave(&ipc->signal_lock, lock_flags);
    2120. 

  2120. 		if (ipc->signal_on_recv) {
    2121. 

  2121. 			complete_all(&ipc->rx_queue_has_space);
    2122. 

  2122. 			ipc->signal_on_recv = false;
    2123. 

  2123. 		}
    2124. 

  2124. 		spin_unlock_irqrestore(&ipc->signal_lock, lock_flags);
    2125. 

  2125. 	}
    2126. 

  2126. 

  2127. 	release_sock(sk);
    2128. 

  2128. 

  2129. 	return rc;
    2130. 

  2130. }
    2131. 

  2131. 

  2132. static int qrtr_connect(struct socket *sock, struct sockaddr *saddr,
    2133. 

  2133. 			int len, int flags)
    2134. 

  2134. {
    2135. 

  2135. 	DECLARE_SOCKADDR(struct sockaddr_qrtr *, addr, saddr);
    2136. 

  2136. 	struct qrtr_sock *ipc = qrtr_sk(sock->sk);
    2137. 

  2137. 	struct sock *sk = sock->sk;
    2138. 

  2138. 	int rc;
    2139. 

  2139. 

  2140. 	if (len < sizeof(*addr) || addr->sq_family != AF_QIPCRTR)
    2141. 

  2141. 		return -EINVAL;
    2142. 

  2142. 

  2143. 	lock_sock(sk);
    2144. 

  2144. 

  2145. 	sk->sk_state = TCP_CLOSE;
    2146. 

  2146. 	sock->state = SS_UNCONNECTED;
    2147. 

  2147. 

  2148. 	rc = qrtr_autobind(sock);
    2149. 

  2149. 	if (rc) {
    2150. 

  2150. 		release_sock(sk);
    2151. 

  2151. 		return rc;
    2152. 

  2152. 	}
    2153. 

  2153. 

  2154. 	ipc->peer = *addr;
    2155. 

  2155. 	sock->state = SS_CONNECTED;
    2156. 

  2156. 	sk->sk_state = TCP_ESTABLISHED;
    2157. 

  2157. 

  2158. 	release_sock(sk);
    2159. 

  2159. 

  2160. 	return 0;
    2161. 

  2161. }
    2162. 

  2162. 

  2163. static int qrtr_getname(struct socket *sock, struct sockaddr *saddr,
    2164. 

  2164. 			int peer)
    2165. 

  2165. {
    2166. 

  2166. 	struct qrtr_sock *ipc = qrtr_sk(sock->sk);
    2167. 

  2167. 	struct sockaddr_qrtr qaddr;
    2168. 

  2168. 	struct sock *sk = sock->sk;
    2169. 

  2169. 

  2170. 	lock_sock(sk);
    2171. 

  2171. 	if (peer) {
    2172. 

  2172. 		if (sk->sk_state != TCP_ESTABLISHED) {
    2173. 

  2173. 			release_sock(sk);
    2174. 

  2174. 			return -ENOTCONN;
    2175. 

  2175. 		}
    2176. 

  2176. 

  2177. 		qaddr = ipc->peer;
    2178. 

  2178. 	} else {
    2179. 

  2179. 		qaddr = ipc->us;
    2180. 

  2180. 	}
    2181. 

  2181. 	release_sock(sk);
    2182. 

  2182. 

  2183. 	qaddr.sq_family = AF_QIPCRTR;
    2184. 

  2184. 

  2185. 	memcpy(saddr, &qaddr, sizeof(qaddr));
    2186. 

  2186. 

  2187. 	return sizeof(qaddr);
    2188. 

  2188. }
    2189. 

  2189. 

  2190. static int qrtr_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
    2191. 

  2191. {
    2192. 

  2192. 	void __user *argp = (void __user *)arg;
    2193. 

  2193. 	struct qrtr_sock *ipc = qrtr_sk(sock->sk);
    2194. 

  2194. 	struct sock *sk = sock->sk;
    2195. 

  2195. 	struct sockaddr_qrtr *sq;
    2196. 

  2196. 	struct sk_buff *skb;
    2197. 

  2197. 	struct ifreq ifr;
    2198. 

  2198. 	long len = 0;
    2199. 

  2199. 	int rc = 0;
    2200. 

  2200. 

  2201. 	lock_sock(sk);
    2202. 

  2202. 

  2203. 	switch (cmd) {
    2204. 

  2204. 	case TIOCOUTQ:
    2205. 

  2205. 		len = sk->sk_sndbuf - sk_wmem_alloc_get(sk);
    2206. 

  2206. 		if (len < 0)
    2207. 

  2207. 			len = 0;
    2208. 

  2208. 		rc = put_user(len, (int __user *)argp);
    2209. 

  2209. 		break;
    2210. 

  2210. 	case TIOCINQ:
    2211. 

  2211. 		skb = skb_peek(&sk->sk_receive_queue);
    2212. 

  2212. 		if (skb)
    2213. 

  2213. 			len = skb->len;
    2214. 

  2214. 		rc = put_user(len, (int __user *)argp);
    2215. 

  2215. 		break;
    2216. 

  2216. 	case SIOCGIFADDR:
    2217. 

  2217. 		if (get_user_ifreq(&ifr, NULL, argp)) {
    2218. 

  2218. 			rc = -EFAULT;
    2219. 

  2219. 			break;
    2220. 

  2220. 		}
    2221. 

  2221. 

  2222. 		sq = (struct sockaddr_qrtr *)&ifr.ifr_addr;
    2223. 

  2223. 		*sq = ipc->us;
    2224. 

  2224. 		if (put_user_ifreq(&ifr, argp)) {
    2225. 

  2225. 			rc = -EFAULT;
    2226. 

  2226. 			break;
    2227. 

  2227. 		}
    2228. 

  2228. 		break;
    2229. 

  2229. 	case SIOCADDRT:
    2230. 

  2230. 	case SIOCDELRT:
    2231. 

  2231. 	case SIOCSIFADDR:
    2232. 

  2232. 	case SIOCGIFDSTADDR:
    2233. 

  2233. 	case SIOCSIFDSTADDR:
    2234. 

  2234. 	case SIOCGIFBRDADDR:
    2235. 

  2235. 	case SIOCSIFBRDADDR:
    2236. 

  2236. 	case SIOCGIFNETMASK:
    2237. 

  2237. 	case SIOCSIFNETMASK:
    2238. 

  2238. 		rc = -EINVAL;
    2239. 

  2239. 		break;
    2240. 

  2240. 	default:
    2241. 

  2241. 		rc = -ENOIOCTLCMD;
    2242. 

  2242. 		break;
    2243. 

  2243. 	}
    2244. 

  2244. 

  2245. 	release_sock(sk);
    2246. 

  2246. 

  2247. 	return rc;
    2248. 

  2248. }
    2249. 

  2249. 

  2250. static int qrtr_release(struct socket *sock)
    2251. 

  2251. {
    2252. 

  2252. 	struct sock *sk = sock->sk;
    2253. 

  2253. 	struct qrtr_sock *ipc;
    2254. 

  2254. 

  2255. 	if (!sk)
    2256. 

  2256. 		return 0;
    2257. 

  2257. 

  2258. 	lock_sock(sk);
    2259. 

  2259. 

  2260. 	ipc = qrtr_sk(sk);
    2261. 

  2261. 

  2262. 	if (ipc->us.sq_port == QRTR_PORT_CTRL) {
    2263. 

  2263. 		struct qrtr_node *node;
    2264. 

  2264. 

  2265. 		down_write(&qrtr_epts_lock);
    2266. 

  2266. 		list_for_each_entry(node, &qrtr_all_epts, item) {
    2267. 

  2267. 			atomic_set(&node->hello_sent, 0);
    2268. 

  2268. 			atomic_set(&node->hello_rcvd, 0);
    2269. 

  2269. 		}
    2270. 

  2270. 		up_write(&qrtr_epts_lock);
    2271. 

  2271. 	}
    2272. 

  2272. 

  2273. 	sk->sk_shutdown = SHUTDOWN_MASK;
    2274. 

  2274. 	if (!sock_flag(sk, SOCK_DEAD))
    2275. 

  2275. 		sk->sk_state_change(sk);
    2276. 

  2276. 

  2277. 	sock_set_flag(sk, SOCK_DEAD);
    2278. 

  2278. 	sock_orphan(sk);
    2279. 

  2279. 	sock->sk = NULL;
    2280. 

  2280. 

  2281. 	if (!sock_flag(sk, SOCK_ZAPPED))
    2282. 

  2282. 		qrtr_port_remove(ipc);
    2283. 

  2283. 

  2284. 	skb_queue_purge(&sk->sk_receive_queue);
    2285. 

  2285. 

  2286. 	release_sock(sk);
    2287. 

  2287. 	sock_put(sk);
    2288. 

  2288. 

  2289. 	return 0;
    2290. 

  2290. }
    2291. 

  2291. 

  2292. static const struct proto_ops qrtr_proto_ops = {
    2293. 

  2293. 	.owner		= THIS_MODULE,
    2294. 

  2294. 	.family		= AF_QIPCRTR,
    2295. 

  2295. 	.bind		= qrtr_bind,
    2296. 

  2296. 	.connect	= qrtr_connect,
    2297. 

  2297. 	.socketpair	= sock_no_socketpair,
    2298. 

  2298. 	.accept		= sock_no_accept,
    2299. 

  2299. 	.listen		= sock_no_listen,
    2300. 

  2300. 	.sendmsg	= qrtr_sendmsg,
    2301. 

  2301. 	.recvmsg	= qrtr_recvmsg,
    2302. 

  2302. 	.getname	= qrtr_getname,
    2303. 

  2303. 	.ioctl		= qrtr_ioctl,
    2304. 

  2304. 	.gettstamp	= sock_gettstamp,
    2305. 

  2305. 	.poll		= datagram_poll,
    2306. 

  2306. 	.shutdown	= sock_no_shutdown,
    2307. 

  2307. 	.release	= qrtr_release,
    2308. 

  2308. 	.mmap		= sock_no_mmap,
    2309. 

  2309. 	.sendpage	= sock_no_sendpage,
    2310. 

  2310. };
    2311. 

  2311. 

  2312. static struct proto qrtr_proto = {
    2313. 

  2313. 	.name		= "QIPCRTR",
    2314. 

  2314. 	.owner		= THIS_MODULE,
    2315. 

  2315. 	.obj_size	= sizeof(struct qrtr_sock),
    2316. 

  2316. };
    2317. 

  2317. 

  2318. static int qrtr_create(struct net *net, struct socket *sock,
    2319. 

  2319. 		       int protocol, int kern)
    2320. 

  2320. {
    2321. 

  2321. 	struct qrtr_sock *ipc;
    2322. 

  2322. 	struct sock *sk;
    2323. 

  2323. 

  2324. 	if (sock->type != SOCK_DGRAM)
    2325. 

  2325. 		return -EPROTOTYPE;
    2326. 

  2326. 

  2327. 	sk = sk_alloc(net, AF_QIPCRTR, GFP_KERNEL, &qrtr_proto, kern);
    2328. 

  2328. 	if (!sk)
    2329. 

  2329. 		return -ENOMEM;
    2330. 

  2330. 

  2331. 	sock_set_flag(sk, SOCK_ZAPPED);
    2332. 

  2332. 	sk->sk_allocation |= __GFP_RETRY_MAYFAIL;
    2333. 

  2333. 

  2334. 	sock_init_data(sock, sk);
    2335. 

  2335. 	sock->ops = &qrtr_proto_ops;
    2336. 

  2336. 

  2337. 	ipc = qrtr_sk(sk);
    2338. 

  2338. 	ipc->us.sq_family = AF_QIPCRTR;
    2339. 

  2339. 	ipc->us.sq_node = qrtr_local_nid;
    2340. 

  2340. 	ipc->us.sq_port = 0;
    2341. 

  2341. 	ipc->state = QRTR_STATE_INIT;
    2342. 

  2342. 	ipc->signal_on_recv = false;
    2343. 

  2343. 	init_completion(&ipc->rx_queue_has_space);
    2344. 

  2344. 	spin_lock_init(&ipc->signal_lock);
    2345. 

  2345. 

  2346. 	return 0;
    2347. 

  2347. }
    2348. 

  2348. 

  2349. static const struct net_proto_family qrtr_family = {
    2350. 

  2350. 	.owner	= THIS_MODULE,
    2351. 

  2351. 	.family	= AF_QIPCRTR,
    2352. 

  2352. 	.create	= qrtr_create,
    2353. 

  2353. };
    2354. 

  2354. 

  2355. static void qrtr_update_node_id(void)
    2356. 

  2356. {
    2357. 

  2357. 	const char *compat = "qcom,qrtr";
    2358. 

  2358. 	struct device_node *np = NULL;
    2359. 

  2359. 	u32 node_id;
    2360. 

  2360. 	int ret;
    2361. 

  2361. 

  2362. 	while ((np = of_find_compatible_node(np, NULL, compat))) {
    2363. 

  2363. 		ret = of_property_read_u32(np, "qcom,node-id", &node_id);
    2364. 

  2364. 		of_node_put(np);
    2365. 

  2365. 		if (ret)
    2366. 

  2366. 			continue;
    2367. 

  2367. 

  2368. 		qrtr_local_nid = node_id;
    2369. 

  2369. 		break;
    2370. 

  2370. 	}
    2371. 

  2371. }
    2372. 

  2372. 

  2373. static int __init qrtr_proto_init(void)
    2374. 

  2374. {
    2375. 

  2375. 	int rc;
    2376. 

  2376. 

  2377. 	qrtr_update_node_id();
    2378. 

  2378. 

  2379. 	qrtr_local_ilc = ipc_log_context_create(QRTR_LOG_PAGE_CNT,
    2380. 

  2380. 						"qrtr_local", 0);
    2381. 

  2381. 

  2382. 	rc = proto_register(&qrtr_proto, 1);
    2383. 

  2383. 	if (rc)
    2384. 

  2384. 		return rc;
    2385. 

  2385. 

  2386. 	rc = sock_register(&qrtr_family);
    2387. 

  2387. 	if (rc)
    2388. 

  2388. 		goto err_proto;
    2389. 

  2389. 

  2390. 	rc = qrtr_ns_init();
    2391. 

  2391. 	if (rc)
    2392. 

  2392. 		goto err_sock;
    2393. 

  2393. 

  2394. 	qrtr_backup_init();
    2395. 

  2395. 

  2396. 	return 0;
    2397. 

  2397. 

  2398. err_sock:
    2399. 

  2399. 	sock_unregister(qrtr_family.family);
    2400. 

  2400. err_proto:
    2401. 

  2401. 	proto_unregister(&qrtr_proto);
    2402. 

  2402. 	return rc;
    2403. 

  2403. }
    2404. 

  2404. postcore_initcall(qrtr_proto_init);
    2405. 

  2405. 

  2406. static void __exit qrtr_proto_fini(void)
    2407. 

  2407. {
    2408. 

  2408. 	qrtr_ns_remove();
    2409. 

  2409. 	sock_unregister(qrtr_family.family);
    2410. 

  2410. 	proto_unregister(&qrtr_proto);
    2411. 

  2411. 

  2412. 	qrtr_backup_deinit();
    2413. 

  2413. }
    2414. 

  2414. module_exit(qrtr_proto_fini);
    2415. 

  2415. 

  2416. MODULE_DESCRIPTION("Qualcomm IPC-router driver");
    2417. 

  2417. MODULE_LICENSE("GPL v2");
    2418. 

  2418. MODULE_ALIAS_NETPROTO(PF_QIPCRTR);
    2419.