1 // SPDX-License-Identifier: GPL-2.0
3 * n_gsm.c GSM 0710 tty multiplexor
4 * Copyright (c) 2009/10 Intel Corporation
6 * * THIS IS A DEVELOPMENT SNAPSHOT IT IS NOT A FINAL RELEASE *
9 * Mostly done: ioctls for setting modes/timing
10 * Partly done: hooks so you can pull off frames to non tty devs
11 * Restart DLCI 0 when it closes ?
12 * Improve the tx engine
13 * Resolve tx side locking by adding a queue_head and routing
14 * all control traffic via it
15 * General tidy/document
16 * Review the locking/move to refcounts more (mux now moved to an
17 * alloc/free model ready)
18 * Use newest tty open/close port helpers and install hooks
19 * What to do about power functions ?
20 * Termios setting and negotiation
21 * Do we need a 'which mux are you' ioctl to correlate mux and tty sets
25 #include <linux/types.h>
26 #include <linux/major.h>
27 #include <linux/errno.h>
28 #include <linux/signal.h>
29 #include <linux/fcntl.h>
30 #include <linux/sched/signal.h>
31 #include <linux/interrupt.h>
32 #include <linux/tty.h>
33 #include <linux/ctype.h>
35 #include <linux/string.h>
36 #include <linux/slab.h>
37 #include <linux/poll.h>
38 #include <linux/bitops.h>
39 #include <linux/file.h>
40 #include <linux/uaccess.h>
41 #include <linux/module.h>
42 #include <linux/timer.h>
43 #include <linux/tty_flip.h>
44 #include <linux/tty_driver.h>
45 #include <linux/serial.h>
46 #include <linux/kfifo.h>
47 #include <linux/skbuff.h>
50 #include <linux/netdevice.h>
51 #include <linux/etherdevice.h>
52 #include <linux/gsmmux.h>
55 module_param(debug, int, 0600);
57 /* Defaults: these are from the specification */
59 #define T1 10 /* 100mS */
60 #define T2 34 /* 333mS */
61 #define N2 3 /* Retry 3 times */
63 /* Use long timers for testing at low speed with debug on */
70 * Semi-arbitrary buffer size limits. 0710 is normally run with 32-64 byte
71 * limits so this is plenty
75 #define GSM_NET_TX_TIMEOUT (HZ*10)
78 * struct gsm_mux_net - network interface
79 * @struct gsm_dlci* dlci
81 * Created when net interface is initialized.
85 struct gsm_dlci *dlci;
89 * Each block of data we have queued to go out is in the form of
90 * a gsm_msg which holds everything we need in a link layer independent
95 struct list_head list;
96 u8 addr; /* DLCI address + flags */
97 u8 ctrl; /* Control byte + flags */
98 unsigned int len; /* Length of data block (can be zero) */
99 unsigned char *data; /* Points into buffer but not at the start */
100 unsigned char buffer[0];
104 * Each active data link has a gsm_dlci structure associated which ties
105 * the link layer to an optional tty (if the tty side is open). To avoid
106 * complexity right now these are only ever freed up when the mux is
109 * At the moment we don't free DLCI objects until the mux is torn down
110 * this avoid object life time issues but might be worth review later.
117 #define DLCI_CLOSED 0
118 #define DLCI_OPENING 1 /* Sending SABM not seen UA */
119 #define DLCI_OPEN 2 /* SABM/UA complete */
120 #define DLCI_CLOSING 3 /* Sending DISC not seen UA/DM */
124 spinlock_t lock; /* Protects the internal state */
125 struct timer_list t1; /* Retransmit timer for SABM and UA */
127 /* Uplink tty if active */
128 struct tty_port port; /* The tty bound to this DLCI if there is one */
129 struct kfifo *fifo; /* Queue fifo for the DLCI */
130 struct kfifo _fifo; /* For new fifo API porting only */
131 int adaption; /* Adaption layer in use */
133 u32 modem_rx; /* Our incoming virtual modem lines */
134 u32 modem_tx; /* Our outgoing modem lines */
135 int dead; /* Refuse re-open */
137 int throttled; /* Private copy of throttle state */
138 int constipated; /* Throttle status for outgoing */
140 struct sk_buff *skb; /* Frame being sent */
141 struct sk_buff_head skb_list; /* Queued frames */
142 /* Data handling callback */
143 void (*data)(struct gsm_dlci *dlci, u8 *data, int len);
144 void (*prev_data)(struct gsm_dlci *dlci, u8 *data, int len);
145 struct net_device *net; /* network interface, if created */
148 /* DLCI 0, 62/63 are special or reserved see gsmtty_open */
153 * DLCI 0 is used to pass control blocks out of band of the data
154 * flow (and with a higher link priority). One command can be outstanding
155 * at a time and we use this structure to manage them. They are created
156 * and destroyed by the user context, and updated by the receive paths
161 u8 cmd; /* Command we are issuing */
162 u8 *data; /* Data for the command in case we retransmit */
163 int len; /* Length of block for retransmission */
164 int done; /* Done flag */
165 int error; /* Error if any */
169 * Each GSM mux we have is represented by this structure. If we are
170 * operating as an ldisc then we use this structure as our ldisc
171 * state. We need to sort out lifetimes and locking with respect
172 * to the gsm mux array. For now we don't free DLCI objects that
173 * have been instantiated until the mux itself is terminated.
175 * To consider further: tty open versus mux shutdown.
179 struct tty_struct *tty; /* The tty our ldisc is bound to */
185 /* Events on the GSM channel */
186 wait_queue_head_t event;
188 /* Bits for GSM mode decoding */
195 #define GSM_ADDRESS 2
196 #define GSM_CONTROL 3
200 #define GSM_OVERRUN 7
205 unsigned int address;
212 u8 *txframe; /* TX framing buffer */
214 /* Methods for the receiver side */
215 void (*receive)(struct gsm_mux *gsm, u8 ch);
216 void (*error)(struct gsm_mux *gsm, u8 ch, u8 flag);
217 /* And transmit side */
218 int (*output)(struct gsm_mux *mux, u8 *data, int len);
223 int initiator; /* Did we initiate connection */
224 int dead; /* Has the mux been shut down */
225 struct gsm_dlci *dlci[NUM_DLCI];
226 int constipated; /* Asked by remote to shut up */
229 unsigned int tx_bytes; /* TX data outstanding */
230 #define TX_THRESH_HI 8192
231 #define TX_THRESH_LO 2048
232 struct list_head tx_list; /* Pending data packets */
234 /* Control messages */
235 struct timer_list t2_timer; /* Retransmit timer for commands */
236 int cretries; /* Command retry counter */
237 struct gsm_control *pending_cmd;/* Our current pending command */
238 spinlock_t control_lock; /* Protects the pending command */
241 int adaption; /* 1 or 2 supported */
242 u8 ftype; /* UI or UIH */
243 int t1, t2; /* Timers in 1/100th of a sec */
244 int n2; /* Retry count */
246 /* Statistics (not currently exposed) */
247 unsigned long bad_fcs;
248 unsigned long malformed;
249 unsigned long io_error;
250 unsigned long bad_size;
251 unsigned long unsupported;
256 * Mux objects - needed so that we can translate a tty index into the
257 * relevant mux and DLCI.
260 #define MAX_MUX 4 /* 256 minors */
261 static struct gsm_mux *gsm_mux[MAX_MUX]; /* GSM muxes */
262 static spinlock_t gsm_mux_lock;
264 static struct tty_driver *gsm_tty_driver;
267 * This section of the driver logic implements the GSM encodings
268 * both the basic and the 'advanced'. Reliable transport is not
276 /* I is special: the rest are ..*/
287 /* Channel commands */
289 #define CMD_TEST 0x11
292 #define CMD_FCOFF 0x31
295 #define CMD_FCON 0x51
300 /* Virtual modem bits */
307 #define GSM0_SOF 0xF9
308 #define GSM1_SOF 0x7E
309 #define GSM1_ESCAPE 0x7D
310 #define GSM1_ESCAPE_BITS 0x20
314 static const struct tty_port_operations gsm_port_ops;
317 * CRC table for GSM 0710
320 static const u8 gsm_fcs8[256] = {
321 0x00, 0x91, 0xE3, 0x72, 0x07, 0x96, 0xE4, 0x75,
322 0x0E, 0x9F, 0xED, 0x7C, 0x09, 0x98, 0xEA, 0x7B,
323 0x1C, 0x8D, 0xFF, 0x6E, 0x1B, 0x8A, 0xF8, 0x69,
324 0x12, 0x83, 0xF1, 0x60, 0x15, 0x84, 0xF6, 0x67,
325 0x38, 0xA9, 0xDB, 0x4A, 0x3F, 0xAE, 0xDC, 0x4D,
326 0x36, 0xA7, 0xD5, 0x44, 0x31, 0xA0, 0xD2, 0x43,
327 0x24, 0xB5, 0xC7, 0x56, 0x23, 0xB2, 0xC0, 0x51,
328 0x2A, 0xBB, 0xC9, 0x58, 0x2D, 0xBC, 0xCE, 0x5F,
329 0x70, 0xE1, 0x93, 0x02, 0x77, 0xE6, 0x94, 0x05,
330 0x7E, 0xEF, 0x9D, 0x0C, 0x79, 0xE8, 0x9A, 0x0B,
331 0x6C, 0xFD, 0x8F, 0x1E, 0x6B, 0xFA, 0x88, 0x19,
332 0x62, 0xF3, 0x81, 0x10, 0x65, 0xF4, 0x86, 0x17,
333 0x48, 0xD9, 0xAB, 0x3A, 0x4F, 0xDE, 0xAC, 0x3D,
334 0x46, 0xD7, 0xA5, 0x34, 0x41, 0xD0, 0xA2, 0x33,
335 0x54, 0xC5, 0xB7, 0x26, 0x53, 0xC2, 0xB0, 0x21,
336 0x5A, 0xCB, 0xB9, 0x28, 0x5D, 0xCC, 0xBE, 0x2F,
337 0xE0, 0x71, 0x03, 0x92, 0xE7, 0x76, 0x04, 0x95,
338 0xEE, 0x7F, 0x0D, 0x9C, 0xE9, 0x78, 0x0A, 0x9B,
339 0xFC, 0x6D, 0x1F, 0x8E, 0xFB, 0x6A, 0x18, 0x89,
340 0xF2, 0x63, 0x11, 0x80, 0xF5, 0x64, 0x16, 0x87,
341 0xD8, 0x49, 0x3B, 0xAA, 0xDF, 0x4E, 0x3C, 0xAD,
342 0xD6, 0x47, 0x35, 0xA4, 0xD1, 0x40, 0x32, 0xA3,
343 0xC4, 0x55, 0x27, 0xB6, 0xC3, 0x52, 0x20, 0xB1,
344 0xCA, 0x5B, 0x29, 0xB8, 0xCD, 0x5C, 0x2E, 0xBF,
345 0x90, 0x01, 0x73, 0xE2, 0x97, 0x06, 0x74, 0xE5,
346 0x9E, 0x0F, 0x7D, 0xEC, 0x99, 0x08, 0x7A, 0xEB,
347 0x8C, 0x1D, 0x6F, 0xFE, 0x8B, 0x1A, 0x68, 0xF9,
348 0x82, 0x13, 0x61, 0xF0, 0x85, 0x14, 0x66, 0xF7,
349 0xA8, 0x39, 0x4B, 0xDA, 0xAF, 0x3E, 0x4C, 0xDD,
350 0xA6, 0x37, 0x45, 0xD4, 0xA1, 0x30, 0x42, 0xD3,
351 0xB4, 0x25, 0x57, 0xC6, 0xB3, 0x22, 0x50, 0xC1,
352 0xBA, 0x2B, 0x59, 0xC8, 0xBD, 0x2C, 0x5E, 0xCF
355 #define INIT_FCS 0xFF
356 #define GOOD_FCS 0xCF
359 * gsm_fcs_add - update FCS
363 * Update the FCS to include c. Uses the algorithm in the specification
367 static inline u8 gsm_fcs_add(u8 fcs, u8 c)
369 return gsm_fcs8[fcs ^ c];
373 * gsm_fcs_add_block - update FCS for a block
376 * @len: length of buffer
378 * Update the FCS to include c. Uses the algorithm in the specification
382 static inline u8 gsm_fcs_add_block(u8 fcs, u8 *c, int len)
385 fcs = gsm_fcs8[fcs ^ *c++];
390 * gsm_read_ea - read a byte into an EA
391 * @val: variable holding value
392 * c: byte going into the EA
394 * Processes one byte of an EA. Updates the passed variable
395 * and returns 1 if the EA is now completely read
398 static int gsm_read_ea(unsigned int *val, u8 c)
400 /* Add the next 7 bits into the value */
403 /* Was this the last byte of the EA 1 = yes*/
408 * gsm_encode_modem - encode modem data bits
409 * @dlci: DLCI to encode from
411 * Returns the correct GSM encoded modem status bits (6 bit field) for
412 * the current status of the DLCI and attached tty object
415 static u8 gsm_encode_modem(const struct gsm_dlci *dlci)
418 /* FC is true flow control not modem bits */
421 if (dlci->modem_tx & TIOCM_DTR)
422 modembits |= MDM_RTC;
423 if (dlci->modem_tx & TIOCM_RTS)
424 modembits |= MDM_RTR;
425 if (dlci->modem_tx & TIOCM_RI)
427 if (dlci->modem_tx & TIOCM_CD)
433 * gsm_print_packet - display a frame for debug
434 * @hdr: header to print before decode
435 * @addr: address EA from the frame
436 * @cr: C/R bit from the frame
437 * @control: control including PF bit
438 * @data: following data bytes
439 * @dlen: length of data
441 * Displays a packet in human readable format for debugging purposes. The
442 * style is based on amateur radio LAP-B dump display.
445 static void gsm_print_packet(const char *hdr, int addr, int cr,
446 u8 control, const u8 *data, int dlen)
451 pr_info("%s %d) %c: ", hdr, addr, "RC"[cr]);
453 switch (control & ~PF) {
473 if (!(control & 0x01)) {
474 pr_cont("I N(S)%d N(R)%d",
475 (control & 0x0E) >> 1, (control & 0xE0) >> 5);
476 } else switch (control & 0x0F) {
478 pr_cont("RR(%d)", (control & 0xE0) >> 5);
481 pr_cont("RNR(%d)", (control & 0xE0) >> 5);
484 pr_cont("REJ(%d)", (control & 0xE0) >> 5);
487 pr_cont("[%02X]", control);
503 pr_cont("%02X ", *data++);
512 * Link level transmission side
516 * gsm_stuff_packet - bytestuff a packet
519 * @len: length of input
521 * Expand a buffer by bytestuffing it. The worst case size change
522 * is doubling and the caller is responsible for handing out
523 * suitable sized buffers.
526 static int gsm_stuff_frame(const u8 *input, u8 *output, int len)
530 if (*input == GSM1_SOF || *input == GSM1_ESCAPE
531 || *input == XON || *input == XOFF) {
532 *output++ = GSM1_ESCAPE;
533 *output++ = *input++ ^ GSM1_ESCAPE_BITS;
536 *output++ = *input++;
543 * gsm_send - send a control frame
545 * @addr: address for control frame
546 * @cr: command/response bit
547 * @control: control byte including PF bit
549 * Format up and transmit a control frame. These do not go via the
550 * queueing logic as they should be transmitted ahead of data when
553 * FIXME: Lock versus data TX path
556 static void gsm_send(struct gsm_mux *gsm, int addr, int cr, int control)
562 switch (gsm->encoding) {
565 cbuf[1] = (addr << 2) | (cr << 1) | EA;
567 cbuf[3] = EA; /* Length of data = 0 */
568 cbuf[4] = 0xFF - gsm_fcs_add_block(INIT_FCS, cbuf + 1, 3);
574 /* Control frame + packing (but not frame stuffing) in mode 1 */
575 ibuf[0] = (addr << 2) | (cr << 1) | EA;
577 ibuf[2] = 0xFF - gsm_fcs_add_block(INIT_FCS, ibuf, 2);
578 /* Stuffing may double the size worst case */
579 len = gsm_stuff_frame(ibuf, cbuf + 1, 3);
580 /* Now add the SOF markers */
582 cbuf[len + 1] = GSM1_SOF;
583 /* FIXME: we can omit the lead one in many cases */
590 gsm->output(gsm, cbuf, len);
591 gsm_print_packet("-->", addr, cr, control, NULL, 0);
595 * gsm_response - send a control response
597 * @addr: address for control frame
598 * @control: control byte including PF bit
600 * Format up and transmit a link level response frame.
603 static inline void gsm_response(struct gsm_mux *gsm, int addr, int control)
605 gsm_send(gsm, addr, 0, control);
609 * gsm_command - send a control command
611 * @addr: address for control frame
612 * @control: control byte including PF bit
614 * Format up and transmit a link level command frame.
617 static inline void gsm_command(struct gsm_mux *gsm, int addr, int control)
619 gsm_send(gsm, addr, 1, control);
622 /* Data transmission */
624 #define HDR_LEN 6 /* ADDR CTRL [LEN.2] DATA FCS */
627 * gsm_data_alloc - allocate data frame
629 * @addr: DLCI address
630 * @len: length excluding header and FCS
631 * @ctrl: control byte
633 * Allocate a new data buffer for sending frames with data. Space is left
634 * at the front for header bytes but that is treated as an implementation
635 * detail and not for the high level code to use
638 static struct gsm_msg *gsm_data_alloc(struct gsm_mux *gsm, u8 addr, int len,
641 struct gsm_msg *m = kmalloc(sizeof(struct gsm_msg) + len + HDR_LEN,
645 m->data = m->buffer + HDR_LEN - 1; /* Allow for FCS */
649 INIT_LIST_HEAD(&m->list);
654 * gsm_data_kick - poke the queue
657 * The tty device has called us to indicate that room has appeared in
658 * the transmit queue. Ram more data into the pipe if we have any
659 * If we have been flow-stopped by a CMD_FCOFF, then we can only
660 * send messages on DLCI0 until CMD_FCON
662 * FIXME: lock against link layer control transmissions
665 static void gsm_data_kick(struct gsm_mux *gsm)
667 struct gsm_msg *msg, *nmsg;
671 list_for_each_entry_safe(msg, nmsg, &gsm->tx_list, list) {
672 if (gsm->constipated && msg->addr)
674 if (gsm->encoding != 0) {
675 gsm->txframe[0] = GSM1_SOF;
676 len = gsm_stuff_frame(msg->data,
677 gsm->txframe + 1, msg->len);
678 gsm->txframe[len + 1] = GSM1_SOF;
681 gsm->txframe[0] = GSM0_SOF;
682 memcpy(gsm->txframe + 1 , msg->data, msg->len);
683 gsm->txframe[msg->len + 1] = GSM0_SOF;
688 print_hex_dump_bytes("gsm_data_kick: ",
692 if (gsm->output(gsm, gsm->txframe + skip_sof,
695 /* FIXME: Can eliminate one SOF in many more cases */
696 gsm->tx_bytes -= msg->len;
697 /* For a burst of frames skip the extra SOF within the
701 list_del(&msg->list);
707 * __gsm_data_queue - queue a UI or UIH frame
708 * @dlci: DLCI sending the data
709 * @msg: message queued
711 * Add data to the transmit queue and try and get stuff moving
712 * out of the mux tty if not already doing so. The Caller must hold
716 static void __gsm_data_queue(struct gsm_dlci *dlci, struct gsm_msg *msg)
718 struct gsm_mux *gsm = dlci->gsm;
720 u8 *fcs = dp + msg->len;
722 /* Fill in the header */
723 if (gsm->encoding == 0) {
725 *--dp = (msg->len << 1) | EA;
727 *--dp = (msg->len >> 7); /* bits 7 - 15 */
728 *--dp = (msg->len & 127) << 1; /* bits 0 - 6 */
734 *--dp = (msg->addr << 2) | 2 | EA;
736 *--dp = (msg->addr << 2) | EA;
737 *fcs = gsm_fcs_add_block(INIT_FCS, dp , msg->data - dp);
738 /* Ugly protocol layering violation */
739 if (msg->ctrl == UI || msg->ctrl == (UI|PF))
740 *fcs = gsm_fcs_add_block(*fcs, msg->data, msg->len);
743 gsm_print_packet("Q> ", msg->addr, gsm->initiator, msg->ctrl,
744 msg->data, msg->len);
746 /* Move the header back and adjust the length, also allow for the FCS
747 now tacked on the end */
748 msg->len += (msg->data - dp) + 1;
751 /* Add to the actual output queue */
752 list_add_tail(&msg->list, &gsm->tx_list);
753 gsm->tx_bytes += msg->len;
758 * gsm_data_queue - queue a UI or UIH frame
759 * @dlci: DLCI sending the data
760 * @msg: message queued
762 * Add data to the transmit queue and try and get stuff moving
763 * out of the mux tty if not already doing so. Take the
764 * the gsm tx lock and dlci lock.
767 static void gsm_data_queue(struct gsm_dlci *dlci, struct gsm_msg *msg)
770 spin_lock_irqsave(&dlci->gsm->tx_lock, flags);
771 __gsm_data_queue(dlci, msg);
772 spin_unlock_irqrestore(&dlci->gsm->tx_lock, flags);
776 * gsm_dlci_data_output - try and push data out of a DLCI
778 * @dlci: the DLCI to pull data from
780 * Pull data from a DLCI and send it into the transmit queue if there
781 * is data. Keep to the MRU of the mux. This path handles the usual tty
782 * interface which is a byte stream with optional modem data.
784 * Caller must hold the tx_lock of the mux.
787 static int gsm_dlci_data_output(struct gsm_mux *gsm, struct gsm_dlci *dlci)
791 int len, total_size, size;
792 int h = dlci->adaption - 1;
796 len = kfifo_len(dlci->fifo);
800 /* MTU/MRU count only the data bits */
806 msg = gsm_data_alloc(gsm, dlci->addr, size, gsm->ftype);
807 /* FIXME: need a timer or something to kick this so it can't
808 get stuck with no work outstanding and no buffer free */
812 switch (dlci->adaption) {
813 case 1: /* Unstructured */
815 case 2: /* Unstructed with modem bits.
816 Always one byte as we never send inline break data */
817 *dp++ = gsm_encode_modem(dlci);
820 WARN_ON(kfifo_out_locked(dlci->fifo, dp , len, &dlci->lock) != len);
821 __gsm_data_queue(dlci, msg);
824 /* Bytes of data we used up */
829 * gsm_dlci_data_output_framed - try and push data out of a DLCI
831 * @dlci: the DLCI to pull data from
833 * Pull data from a DLCI and send it into the transmit queue if there
834 * is data. Keep to the MRU of the mux. This path handles framed data
835 * queued as skbuffs to the DLCI.
837 * Caller must hold the tx_lock of the mux.
840 static int gsm_dlci_data_output_framed(struct gsm_mux *gsm,
841 struct gsm_dlci *dlci)
846 int last = 0, first = 0;
849 /* One byte per frame is used for B/F flags */
850 if (dlci->adaption == 4)
853 /* dlci->skb is locked by tx_lock */
854 if (dlci->skb == NULL) {
855 dlci->skb = skb_dequeue_tail(&dlci->skb_list);
856 if (dlci->skb == NULL)
860 len = dlci->skb->len + overhead;
862 /* MTU/MRU count only the data bits */
863 if (len > gsm->mtu) {
864 if (dlci->adaption == 3) {
865 /* Over long frame, bin it */
866 dev_kfree_skb_any(dlci->skb);
874 size = len + overhead;
875 msg = gsm_data_alloc(gsm, dlci->addr, size, gsm->ftype);
877 /* FIXME: need a timer or something to kick this so it can't
878 get stuck with no work outstanding and no buffer free */
880 skb_queue_tail(&dlci->skb_list, dlci->skb);
886 if (dlci->adaption == 4) { /* Interruptible framed (Packetised Data) */
887 /* Flag byte to carry the start/end info */
888 *dp++ = last << 7 | first << 6 | 1; /* EA */
891 memcpy(dp, dlci->skb->data, len);
892 skb_pull(dlci->skb, len);
893 __gsm_data_queue(dlci, msg);
895 dev_kfree_skb_any(dlci->skb);
902 * gsm_dlci_data_sweep - look for data to send
905 * Sweep the GSM mux channels in priority order looking for ones with
906 * data to send. We could do with optimising this scan a bit. We aim
907 * to fill the queue totally or up to TX_THRESH_HI bytes. Once we hit
908 * TX_THRESH_LO we get called again
910 * FIXME: We should round robin between groups and in theory you can
911 * renegotiate DLCI priorities with optional stuff. Needs optimising.
914 static void gsm_dlci_data_sweep(struct gsm_mux *gsm)
917 /* Priority ordering: We should do priority with RR of the groups */
920 while (i < NUM_DLCI) {
921 struct gsm_dlci *dlci;
923 if (gsm->tx_bytes > TX_THRESH_HI)
926 if (dlci == NULL || dlci->constipated) {
930 if (dlci->adaption < 3 && !dlci->net)
931 len = gsm_dlci_data_output(gsm, dlci);
933 len = gsm_dlci_data_output_framed(gsm, dlci);
936 /* DLCI empty - try the next */
943 * gsm_dlci_data_kick - transmit if possible
944 * @dlci: DLCI to kick
946 * Transmit data from this DLCI if the queue is empty. We can't rely on
947 * a tty wakeup except when we filled the pipe so we need to fire off
948 * new data ourselves in other cases.
951 static void gsm_dlci_data_kick(struct gsm_dlci *dlci)
956 if (dlci->constipated)
959 spin_lock_irqsave(&dlci->gsm->tx_lock, flags);
960 /* If we have nothing running then we need to fire up */
961 sweep = (dlci->gsm->tx_bytes < TX_THRESH_LO);
962 if (dlci->gsm->tx_bytes == 0) {
964 gsm_dlci_data_output_framed(dlci->gsm, dlci);
966 gsm_dlci_data_output(dlci->gsm, dlci);
969 gsm_dlci_data_sweep(dlci->gsm);
970 spin_unlock_irqrestore(&dlci->gsm->tx_lock, flags);
974 * Control message processing
979 * gsm_control_reply - send a response frame to a control
981 * @cmd: the command to use
982 * @data: data to follow encoded info
983 * @dlen: length of data
985 * Encode up and queue a UI/UIH frame containing our response.
988 static void gsm_control_reply(struct gsm_mux *gsm, int cmd, u8 *data,
992 msg = gsm_data_alloc(gsm, 0, dlen + 2, gsm->ftype);
995 msg->data[0] = (cmd & 0xFE) << 1 | EA; /* Clear C/R */
996 msg->data[1] = (dlen << 1) | EA;
997 memcpy(msg->data + 2, data, dlen);
998 gsm_data_queue(gsm->dlci[0], msg);
1002 * gsm_process_modem - process received modem status
1003 * @tty: virtual tty bound to the DLCI
1004 * @dlci: DLCI to affect
1005 * @modem: modem bits (full EA)
1007 * Used when a modem control message or line state inline in adaption
1008 * layer 2 is processed. Sort out the local modem state and throttles
1011 static void gsm_process_modem(struct tty_struct *tty, struct gsm_dlci *dlci,
1012 u32 modem, int clen)
1018 /* The modem status command can either contain one octet (v.24 signals)
1019 or two octets (v.24 signals + break signals). The length field will
1020 either be 2 or 3 respectively. This is specified in section
1021 5.4.6.3.7 of the 27.010 mux spec. */
1024 modem = modem & 0x7f;
1027 modem = (modem >> 7) & 0x7f;
1030 /* Flow control/ready to communicate */
1031 fc = (modem & MDM_FC) || !(modem & MDM_RTR);
1032 if (fc && !dlci->constipated) {
1033 /* Need to throttle our output on this device */
1034 dlci->constipated = 1;
1035 } else if (!fc && dlci->constipated) {
1036 dlci->constipated = 0;
1037 gsm_dlci_data_kick(dlci);
1040 /* Map modem bits */
1041 if (modem & MDM_RTC)
1042 mlines |= TIOCM_DSR | TIOCM_DTR;
1043 if (modem & MDM_RTR)
1044 mlines |= TIOCM_RTS | TIOCM_CTS;
1050 /* Carrier drop -> hangup */
1052 if ((mlines & TIOCM_CD) == 0 && (dlci->modem_rx & TIOCM_CD))
1057 tty_insert_flip_char(&dlci->port, 0, TTY_BREAK);
1058 dlci->modem_rx = mlines;
1062 * gsm_control_modem - modem status received
1064 * @data: data following command
1065 * @clen: command length
1067 * We have received a modem status control message. This is used by
1068 * the GSM mux protocol to pass virtual modem line status and optionally
1069 * to indicate break signals. Unpack it, convert to Linux representation
1070 * and if need be stuff a break message down the tty.
1073 static void gsm_control_modem(struct gsm_mux *gsm, u8 *data, int clen)
1075 unsigned int addr = 0;
1076 unsigned int modem = 0;
1077 unsigned int brk = 0;
1078 struct gsm_dlci *dlci;
1081 struct tty_struct *tty;
1083 while (gsm_read_ea(&addr, *dp++) == 0) {
1088 /* Must be at least one byte following the EA */
1094 /* Closed port, or invalid ? */
1095 if (addr == 0 || addr >= NUM_DLCI || gsm->dlci[addr] == NULL)
1097 dlci = gsm->dlci[addr];
1099 while (gsm_read_ea(&modem, *dp++) == 0) {
1106 while (gsm_read_ea(&brk, *dp++) == 0) {
1112 modem |= (brk & 0x7f);
1114 tty = tty_port_tty_get(&dlci->port);
1115 gsm_process_modem(tty, dlci, modem, clen);
1120 gsm_control_reply(gsm, CMD_MSC, data, clen);
1124 * gsm_control_rls - remote line status
1127 * @clen: data length
1129 * The modem sends us a two byte message on the control channel whenever
1130 * it wishes to send us an error state from the virtual link. Stuff
1131 * this into the uplink tty if present
1134 static void gsm_control_rls(struct gsm_mux *gsm, u8 *data, int clen)
1136 struct tty_port *port;
1137 unsigned int addr = 0;
1142 while (gsm_read_ea(&addr, *dp++) == 0) {
1147 /* Must be at least one byte following ea */
1152 /* Closed port, or invalid ? */
1153 if (addr == 0 || addr >= NUM_DLCI || gsm->dlci[addr] == NULL)
1157 if ((bits & 1) == 0)
1160 port = &gsm->dlci[addr]->port;
1163 tty_insert_flip_char(port, 0, TTY_OVERRUN);
1165 tty_insert_flip_char(port, 0, TTY_PARITY);
1167 tty_insert_flip_char(port, 0, TTY_FRAME);
1169 tty_flip_buffer_push(port);
1171 gsm_control_reply(gsm, CMD_RLS, data, clen);
1174 static void gsm_dlci_begin_close(struct gsm_dlci *dlci);
1177 * gsm_control_message - DLCI 0 control processing
1179 * @command: the command EA
1180 * @data: data beyond the command/length EAs
1183 * Input processor for control messages from the other end of the link.
1184 * Processes the incoming request and queues a response frame or an
1185 * NSC response if not supported
1188 static void gsm_control_message(struct gsm_mux *gsm, unsigned int command,
1192 unsigned long flags;
1196 struct gsm_dlci *dlci = gsm->dlci[0];
1197 /* Modem wishes to close down */
1201 gsm_dlci_begin_close(dlci);
1206 /* Modem wishes to test, reply with the data */
1207 gsm_control_reply(gsm, CMD_TEST, data, clen);
1210 /* Modem can accept data again */
1211 gsm->constipated = 0;
1212 gsm_control_reply(gsm, CMD_FCON, NULL, 0);
1213 /* Kick the link in case it is idling */
1214 spin_lock_irqsave(&gsm->tx_lock, flags);
1216 spin_unlock_irqrestore(&gsm->tx_lock, flags);
1219 /* Modem wants us to STFU */
1220 gsm->constipated = 1;
1221 gsm_control_reply(gsm, CMD_FCOFF, NULL, 0);
1224 /* Out of band modem line change indicator for a DLCI */
1225 gsm_control_modem(gsm, data, clen);
1228 /* Out of band error reception for a DLCI */
1229 gsm_control_rls(gsm, data, clen);
1232 /* Modem wishes to enter power saving state */
1233 gsm_control_reply(gsm, CMD_PSC, NULL, 0);
1235 /* Optional unsupported commands */
1236 case CMD_PN: /* Parameter negotiation */
1237 case CMD_RPN: /* Remote port negotiation */
1238 case CMD_SNC: /* Service negotiation command */
1240 /* Reply to bad commands with an NSC */
1242 gsm_control_reply(gsm, CMD_NSC, buf, 1);
1248 * gsm_control_response - process a response to our control
1250 * @command: the command (response) EA
1251 * @data: data beyond the command/length EA
1254 * Process a response to an outstanding command. We only allow a single
1255 * control message in flight so this is fairly easy. All the clean up
1256 * is done by the caller, we just update the fields, flag it as done
1260 static void gsm_control_response(struct gsm_mux *gsm, unsigned int command,
1263 struct gsm_control *ctrl;
1264 unsigned long flags;
1266 spin_lock_irqsave(&gsm->control_lock, flags);
1268 ctrl = gsm->pending_cmd;
1269 /* Does the reply match our command */
1271 if (ctrl != NULL && (command == ctrl->cmd || command == CMD_NSC)) {
1272 /* Our command was replied to, kill the retry timer */
1273 del_timer(&gsm->t2_timer);
1274 gsm->pending_cmd = NULL;
1275 /* Rejected by the other end */
1276 if (command == CMD_NSC)
1277 ctrl->error = -EOPNOTSUPP;
1279 wake_up(&gsm->event);
1281 spin_unlock_irqrestore(&gsm->control_lock, flags);
1285 * gsm_control_transmit - send control packet
1287 * @ctrl: frame to send
1289 * Send out a pending control command (called under control lock)
1292 static void gsm_control_transmit(struct gsm_mux *gsm, struct gsm_control *ctrl)
1294 struct gsm_msg *msg = gsm_data_alloc(gsm, 0, ctrl->len + 1, gsm->ftype);
1297 msg->data[0] = (ctrl->cmd << 1) | 2 | EA; /* command */
1298 memcpy(msg->data + 1, ctrl->data, ctrl->len);
1299 gsm_data_queue(gsm->dlci[0], msg);
1303 * gsm_control_retransmit - retransmit a control frame
1304 * @data: pointer to our gsm object
1306 * Called off the T2 timer expiry in order to retransmit control frames
1307 * that have been lost in the system somewhere. The control_lock protects
1308 * us from colliding with another sender or a receive completion event.
1309 * In that situation the timer may still occur in a small window but
1310 * gsm->pending_cmd will be NULL and we just let the timer expire.
1313 static void gsm_control_retransmit(struct timer_list *t)
1315 struct gsm_mux *gsm = from_timer(gsm, t, t2_timer);
1316 struct gsm_control *ctrl;
1317 unsigned long flags;
1318 spin_lock_irqsave(&gsm->control_lock, flags);
1319 ctrl = gsm->pending_cmd;
1322 if (gsm->cretries == 0) {
1323 gsm->pending_cmd = NULL;
1324 ctrl->error = -ETIMEDOUT;
1326 spin_unlock_irqrestore(&gsm->control_lock, flags);
1327 wake_up(&gsm->event);
1330 gsm_control_transmit(gsm, ctrl);
1331 mod_timer(&gsm->t2_timer, jiffies + gsm->t2 * HZ / 100);
1333 spin_unlock_irqrestore(&gsm->control_lock, flags);
1337 * gsm_control_send - send a control frame on DLCI 0
1338 * @gsm: the GSM channel
1339 * @command: command to send including CR bit
1340 * @data: bytes of data (must be kmalloced)
1341 * @len: length of the block to send
1343 * Queue and dispatch a control command. Only one command can be
1344 * active at a time. In theory more can be outstanding but the matching
1345 * gets really complicated so for now stick to one outstanding.
1348 static struct gsm_control *gsm_control_send(struct gsm_mux *gsm,
1349 unsigned int command, u8 *data, int clen)
1351 struct gsm_control *ctrl = kzalloc(sizeof(struct gsm_control),
1353 unsigned long flags;
1357 wait_event(gsm->event, gsm->pending_cmd == NULL);
1358 spin_lock_irqsave(&gsm->control_lock, flags);
1359 if (gsm->pending_cmd != NULL) {
1360 spin_unlock_irqrestore(&gsm->control_lock, flags);
1363 ctrl->cmd = command;
1366 gsm->pending_cmd = ctrl;
1367 gsm->cretries = gsm->n2;
1368 mod_timer(&gsm->t2_timer, jiffies + gsm->t2 * HZ / 100);
1369 gsm_control_transmit(gsm, ctrl);
1370 spin_unlock_irqrestore(&gsm->control_lock, flags);
1375 * gsm_control_wait - wait for a control to finish
1377 * @control: control we are waiting on
1379 * Waits for the control to complete or time out. Frees any used
1380 * resources and returns 0 for success, or an error if the remote
1381 * rejected or ignored the request.
1384 static int gsm_control_wait(struct gsm_mux *gsm, struct gsm_control *control)
1387 wait_event(gsm->event, control->done == 1);
1388 err = control->error;
1395 * DLCI level handling: Needs krefs
1399 * State transitions and timers
1403 * gsm_dlci_close - a DLCI has closed
1404 * @dlci: DLCI that closed
1406 * Perform processing when moving a DLCI into closed state. If there
1407 * is an attached tty this is hung up
1410 static void gsm_dlci_close(struct gsm_dlci *dlci)
1412 del_timer(&dlci->t1);
1414 pr_debug("DLCI %d goes closed.\n", dlci->addr);
1415 dlci->state = DLCI_CLOSED;
1416 if (dlci->addr != 0) {
1417 tty_port_tty_hangup(&dlci->port, false);
1418 kfifo_reset(dlci->fifo);
1420 dlci->gsm->dead = 1;
1421 wake_up(&dlci->gsm->event);
1422 /* A DLCI 0 close is a MUX termination so we need to kick that
1423 back to userspace somehow */
1427 * gsm_dlci_open - a DLCI has opened
1428 * @dlci: DLCI that opened
1430 * Perform processing when moving a DLCI into open state.
1433 static void gsm_dlci_open(struct gsm_dlci *dlci)
1435 /* Note that SABM UA .. SABM UA first UA lost can mean that we go
1437 del_timer(&dlci->t1);
1438 /* This will let a tty open continue */
1439 dlci->state = DLCI_OPEN;
1441 pr_debug("DLCI %d goes open.\n", dlci->addr);
1442 wake_up(&dlci->gsm->event);
1446 * gsm_dlci_t1 - T1 timer expiry
1447 * @dlci: DLCI that opened
1449 * The T1 timer handles retransmits of control frames (essentially of
1450 * SABM and DISC). We resend the command until the retry count runs out
1451 * in which case an opening port goes back to closed and a closing port
1452 * is simply put into closed state (any further frames from the other
1453 * end will get a DM response)
1455 * Some control dlci can stay in ADM mode with other dlci working just
1456 * fine. In that case we can just keep the control dlci open after the
1457 * DLCI_OPENING retries time out.
1460 static void gsm_dlci_t1(struct timer_list *t)
1462 struct gsm_dlci *dlci = from_timer(dlci, t, t1);
1463 struct gsm_mux *gsm = dlci->gsm;
1465 switch (dlci->state) {
1468 if (dlci->retries) {
1469 gsm_command(dlci->gsm, dlci->addr, SABM|PF);
1470 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1471 } else if (!dlci->addr && gsm->control == (DM | PF)) {
1473 pr_info("DLCI %d opening in ADM mode.\n",
1475 gsm_dlci_open(dlci);
1477 gsm_dlci_close(dlci);
1483 if (dlci->retries) {
1484 gsm_command(dlci->gsm, dlci->addr, DISC|PF);
1485 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1487 gsm_dlci_close(dlci);
1493 * gsm_dlci_begin_open - start channel open procedure
1494 * @dlci: DLCI to open
1496 * Commence opening a DLCI from the Linux side. We issue SABM messages
1497 * to the modem which should then reply with a UA or ADM, at which point
1498 * we will move into open state. Opening is done asynchronously with retry
1499 * running off timers and the responses.
1502 static void gsm_dlci_begin_open(struct gsm_dlci *dlci)
1504 struct gsm_mux *gsm = dlci->gsm;
1505 if (dlci->state == DLCI_OPEN || dlci->state == DLCI_OPENING)
1507 dlci->retries = gsm->n2;
1508 dlci->state = DLCI_OPENING;
1509 gsm_command(dlci->gsm, dlci->addr, SABM|PF);
1510 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1514 * gsm_dlci_begin_close - start channel open procedure
1515 * @dlci: DLCI to open
1517 * Commence closing a DLCI from the Linux side. We issue DISC messages
1518 * to the modem which should then reply with a UA, at which point we
1519 * will move into closed state. Closing is done asynchronously with retry
1520 * off timers. We may also receive a DM reply from the other end which
1521 * indicates the channel was already closed.
1524 static void gsm_dlci_begin_close(struct gsm_dlci *dlci)
1526 struct gsm_mux *gsm = dlci->gsm;
1527 if (dlci->state == DLCI_CLOSED || dlci->state == DLCI_CLOSING)
1529 dlci->retries = gsm->n2;
1530 dlci->state = DLCI_CLOSING;
1531 gsm_command(dlci->gsm, dlci->addr, DISC|PF);
1532 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1536 * gsm_dlci_data - data arrived
1538 * @data: block of bytes received
1539 * @len: length of received block
1541 * A UI or UIH frame has arrived which contains data for a channel
1542 * other than the control channel. If the relevant virtual tty is
1543 * open we shovel the bits down it, if not we drop them.
1546 static void gsm_dlci_data(struct gsm_dlci *dlci, u8 *data, int clen)
1549 struct tty_port *port = &dlci->port;
1550 struct tty_struct *tty;
1551 unsigned int modem = 0;
1555 pr_debug("%d bytes for tty\n", len);
1556 switch (dlci->adaption) {
1557 /* Unsupported types */
1558 /* Packetised interruptible data */
1561 /* Packetised uininterruptible voice/data */
1564 /* Asynchronous serial with line state in each frame */
1566 while (gsm_read_ea(&modem, *data++) == 0) {
1571 tty = tty_port_tty_get(port);
1573 gsm_process_modem(tty, dlci, modem, clen);
1576 /* Line state will go via DLCI 0 controls only */
1579 tty_insert_flip_string(port, data, len);
1580 tty_flip_buffer_push(port);
1585 * gsm_dlci_control - data arrived on control channel
1587 * @data: block of bytes received
1588 * @len: length of received block
1590 * A UI or UIH frame has arrived which contains data for DLCI 0 the
1591 * control channel. This should contain a command EA followed by
1592 * control data bytes. The command EA contains a command/response bit
1593 * and we divide up the work accordingly.
1596 static void gsm_dlci_command(struct gsm_dlci *dlci, u8 *data, int len)
1598 /* See what command is involved */
1599 unsigned int command = 0;
1601 if (gsm_read_ea(&command, *data++) == 1) {
1604 /* FIXME: this is properly an EA */
1606 /* Malformed command ? */
1610 gsm_control_message(dlci->gsm, command,
1613 gsm_control_response(dlci->gsm, command,
1621 * Allocate/Free DLCI channels
1625 * gsm_dlci_alloc - allocate a DLCI
1627 * @addr: address of the DLCI
1629 * Allocate and install a new DLCI object into the GSM mux.
1631 * FIXME: review locking races
1634 static struct gsm_dlci *gsm_dlci_alloc(struct gsm_mux *gsm, int addr)
1636 struct gsm_dlci *dlci = kzalloc(sizeof(struct gsm_dlci), GFP_ATOMIC);
1639 spin_lock_init(&dlci->lock);
1640 mutex_init(&dlci->mutex);
1641 dlci->fifo = &dlci->_fifo;
1642 if (kfifo_alloc(&dlci->_fifo, 4096, GFP_KERNEL) < 0) {
1647 skb_queue_head_init(&dlci->skb_list);
1648 timer_setup(&dlci->t1, gsm_dlci_t1, 0);
1649 tty_port_init(&dlci->port);
1650 dlci->port.ops = &gsm_port_ops;
1653 dlci->adaption = gsm->adaption;
1654 dlci->state = DLCI_CLOSED;
1656 dlci->data = gsm_dlci_data;
1658 dlci->data = gsm_dlci_command;
1659 gsm->dlci[addr] = dlci;
1664 * gsm_dlci_free - free DLCI
1665 * @dlci: DLCI to free
1671 static void gsm_dlci_free(struct tty_port *port)
1673 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
1675 del_timer_sync(&dlci->t1);
1676 dlci->gsm->dlci[dlci->addr] = NULL;
1677 kfifo_free(dlci->fifo);
1678 while ((dlci->skb = skb_dequeue(&dlci->skb_list)))
1679 dev_kfree_skb(dlci->skb);
1683 static inline void dlci_get(struct gsm_dlci *dlci)
1685 tty_port_get(&dlci->port);
1688 static inline void dlci_put(struct gsm_dlci *dlci)
1690 tty_port_put(&dlci->port);
1693 static void gsm_destroy_network(struct gsm_dlci *dlci);
1696 * gsm_dlci_release - release DLCI
1697 * @dlci: DLCI to destroy
1699 * Release a DLCI. Actual free is deferred until either
1700 * mux is closed or tty is closed - whichever is last.
1704 static void gsm_dlci_release(struct gsm_dlci *dlci)
1706 struct tty_struct *tty = tty_port_tty_get(&dlci->port);
1708 mutex_lock(&dlci->mutex);
1709 gsm_destroy_network(dlci);
1710 mutex_unlock(&dlci->mutex);
1714 tty_port_tty_set(&dlci->port, NULL);
1717 dlci->state = DLCI_CLOSED;
1722 * LAPBish link layer logic
1726 * gsm_queue - a GSM frame is ready to process
1727 * @gsm: pointer to our gsm mux
1729 * At this point in time a frame has arrived and been demangled from
1730 * the line encoding. All the differences between the encodings have
1731 * been handled below us and the frame is unpacked into the structures.
1732 * The fcs holds the header FCS but any data FCS must be added here.
1735 static void gsm_queue(struct gsm_mux *gsm)
1737 struct gsm_dlci *dlci;
1740 /* We have to sneak a look at the packet body to do the FCS.
1741 A somewhat layering violation in the spec */
1743 if ((gsm->control & ~PF) == UI)
1744 gsm->fcs = gsm_fcs_add_block(gsm->fcs, gsm->buf, gsm->len);
1745 if (gsm->encoding == 0) {
1746 /* WARNING: gsm->received_fcs is used for
1747 gsm->encoding = 0 only.
1748 In this case it contain the last piece of data
1749 required to generate final CRC */
1750 gsm->fcs = gsm_fcs_add(gsm->fcs, gsm->received_fcs);
1752 if (gsm->fcs != GOOD_FCS) {
1755 pr_debug("BAD FCS %02x\n", gsm->fcs);
1758 address = gsm->address >> 1;
1759 if (address >= NUM_DLCI)
1762 cr = gsm->address & 1; /* C/R bit */
1764 gsm_print_packet("<--", address, cr, gsm->control, gsm->buf, gsm->len);
1766 cr ^= 1 - gsm->initiator; /* Flip so 1 always means command */
1767 dlci = gsm->dlci[address];
1769 switch (gsm->control) {
1774 dlci = gsm_dlci_alloc(gsm, address);
1778 gsm_response(gsm, address, DM);
1780 gsm_response(gsm, address, UA);
1781 gsm_dlci_open(dlci);
1787 if (dlci == NULL || dlci->state == DLCI_CLOSED) {
1788 gsm_response(gsm, address, DM);
1791 /* Real close complete */
1792 gsm_response(gsm, address, UA);
1793 gsm_dlci_close(dlci);
1797 if (cr == 0 || dlci == NULL)
1799 switch (dlci->state) {
1801 gsm_dlci_close(dlci);
1804 gsm_dlci_open(dlci);
1808 case DM: /* DM can be valid unsolicited */
1814 gsm_dlci_close(dlci);
1824 if (dlci == NULL || dlci->state != DLCI_OPEN) {
1825 gsm_command(gsm, address, DM|PF);
1828 dlci->data(dlci, gsm->buf, gsm->len);
1841 * gsm0_receive - perform processing for non-transparency
1842 * @gsm: gsm data for this ldisc instance
1845 * Receive bytes in gsm mode 0
1848 static void gsm0_receive(struct gsm_mux *gsm, unsigned char c)
1852 switch (gsm->state) {
1853 case GSM_SEARCH: /* SOF marker */
1854 if (c == GSM0_SOF) {
1855 gsm->state = GSM_ADDRESS;
1858 gsm->fcs = INIT_FCS;
1861 case GSM_ADDRESS: /* Address EA */
1862 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1863 if (gsm_read_ea(&gsm->address, c))
1864 gsm->state = GSM_CONTROL;
1866 case GSM_CONTROL: /* Control Byte */
1867 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1869 gsm->state = GSM_LEN0;
1871 case GSM_LEN0: /* Length EA */
1872 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1873 if (gsm_read_ea(&gsm->len, c)) {
1874 if (gsm->len > gsm->mru) {
1876 gsm->state = GSM_SEARCH;
1881 gsm->state = GSM_FCS;
1883 gsm->state = GSM_DATA;
1886 gsm->state = GSM_LEN1;
1889 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1891 gsm->len |= len << 7;
1892 if (gsm->len > gsm->mru) {
1894 gsm->state = GSM_SEARCH;
1899 gsm->state = GSM_FCS;
1901 gsm->state = GSM_DATA;
1903 case GSM_DATA: /* Data */
1904 gsm->buf[gsm->count++] = c;
1905 if (gsm->count == gsm->len)
1906 gsm->state = GSM_FCS;
1908 case GSM_FCS: /* FCS follows the packet */
1909 gsm->received_fcs = c;
1911 gsm->state = GSM_SSOF;
1914 if (c == GSM0_SOF) {
1915 gsm->state = GSM_SEARCH;
1923 * gsm1_receive - perform processing for non-transparency
1924 * @gsm: gsm data for this ldisc instance
1927 * Receive bytes in mode 1 (Advanced option)
1930 static void gsm1_receive(struct gsm_mux *gsm, unsigned char c)
1932 if (c == GSM1_SOF) {
1933 /* EOF is only valid in frame if we have got to the data state
1934 and received at least one byte (the FCS) */
1935 if (gsm->state == GSM_DATA && gsm->count) {
1936 /* Extract the FCS */
1938 gsm->fcs = gsm_fcs_add(gsm->fcs, gsm->buf[gsm->count]);
1939 gsm->len = gsm->count;
1941 gsm->state = GSM_START;
1944 /* Any partial frame was a runt so go back to start */
1945 if (gsm->state != GSM_START) {
1947 gsm->state = GSM_START;
1949 /* A SOF in GSM_START means we are still reading idling or
1954 if (c == GSM1_ESCAPE) {
1959 /* Only an unescaped SOF gets us out of GSM search */
1960 if (gsm->state == GSM_SEARCH)
1964 c ^= GSM1_ESCAPE_BITS;
1967 switch (gsm->state) {
1968 case GSM_START: /* First byte after SOF */
1970 gsm->state = GSM_ADDRESS;
1971 gsm->fcs = INIT_FCS;
1973 case GSM_ADDRESS: /* Address continuation */
1974 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1975 if (gsm_read_ea(&gsm->address, c))
1976 gsm->state = GSM_CONTROL;
1978 case GSM_CONTROL: /* Control Byte */
1979 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1982 gsm->state = GSM_DATA;
1984 case GSM_DATA: /* Data */
1985 if (gsm->count > gsm->mru) { /* Allow one for the FCS */
1986 gsm->state = GSM_OVERRUN;
1989 gsm->buf[gsm->count++] = c;
1991 case GSM_OVERRUN: /* Over-long - eg a dropped SOF */
1997 * gsm_error - handle tty error
1999 * @data: byte received (may be invalid)
2000 * @flag: error received
2002 * Handle an error in the receipt of data for a frame. Currently we just
2003 * go back to hunting for a SOF.
2005 * FIXME: better diagnostics ?
2008 static void gsm_error(struct gsm_mux *gsm,
2009 unsigned char data, unsigned char flag)
2011 gsm->state = GSM_SEARCH;
2015 static int gsm_disconnect(struct gsm_mux *gsm)
2017 struct gsm_dlci *dlci = gsm->dlci[0];
2018 struct gsm_control *gc;
2023 /* In theory disconnecting DLCI 0 is sufficient but for some
2024 modems this is apparently not the case. */
2025 gc = gsm_control_send(gsm, CMD_CLD, NULL, 0);
2027 gsm_control_wait(gsm, gc);
2029 del_timer_sync(&gsm->t2_timer);
2030 /* Now we are sure T2 has stopped */
2032 gsm_dlci_begin_close(dlci);
2033 wait_event_interruptible(gsm->event,
2034 dlci->state == DLCI_CLOSED);
2036 if (signal_pending(current))
2043 * gsm_cleanup_mux - generic GSM protocol cleanup
2046 * Clean up the bits of the mux which are the same for all framing
2047 * protocols. Remove the mux from the mux table, stop all the timers
2048 * and then shut down each device hanging up the channels as we go.
2051 static void gsm_cleanup_mux(struct gsm_mux *gsm)
2054 struct gsm_dlci *dlci = gsm->dlci[0];
2055 struct gsm_msg *txq, *ntxq;
2059 spin_lock(&gsm_mux_lock);
2060 for (i = 0; i < MAX_MUX; i++) {
2061 if (gsm_mux[i] == gsm) {
2066 spin_unlock(&gsm_mux_lock);
2067 /* open failed before registering => nothing to do */
2071 del_timer_sync(&gsm->t2_timer);
2072 /* Now we are sure T2 has stopped */
2076 /* Free up any link layer users */
2077 mutex_lock(&gsm->mutex);
2078 for (i = 0; i < NUM_DLCI; i++)
2080 gsm_dlci_release(gsm->dlci[i]);
2081 mutex_unlock(&gsm->mutex);
2082 /* Now wipe the queues */
2083 list_for_each_entry_safe(txq, ntxq, &gsm->tx_list, list)
2085 INIT_LIST_HEAD(&gsm->tx_list);
2089 * gsm_activate_mux - generic GSM setup
2092 * Set up the bits of the mux which are the same for all framing
2093 * protocols. Add the mux to the mux table so it can be opened and
2094 * finally kick off connecting to DLCI 0 on the modem.
2097 static int gsm_activate_mux(struct gsm_mux *gsm)
2099 struct gsm_dlci *dlci;
2102 timer_setup(&gsm->t2_timer, gsm_control_retransmit, 0);
2103 init_waitqueue_head(&gsm->event);
2104 spin_lock_init(&gsm->control_lock);
2105 spin_lock_init(&gsm->tx_lock);
2107 if (gsm->encoding == 0)
2108 gsm->receive = gsm0_receive;
2110 gsm->receive = gsm1_receive;
2111 gsm->error = gsm_error;
2113 spin_lock(&gsm_mux_lock);
2114 for (i = 0; i < MAX_MUX; i++) {
2115 if (gsm_mux[i] == NULL) {
2121 spin_unlock(&gsm_mux_lock);
2125 dlci = gsm_dlci_alloc(gsm, 0);
2128 gsm->dead = 0; /* Tty opens are now permissible */
2133 * gsm_free_mux - free up a mux
2136 * Dispose of allocated resources for a dead mux
2138 static void gsm_free_mux(struct gsm_mux *gsm)
2140 kfree(gsm->txframe);
2146 * gsm_free_muxr - free up a mux
2149 * Dispose of allocated resources for a dead mux
2151 static void gsm_free_muxr(struct kref *ref)
2153 struct gsm_mux *gsm = container_of(ref, struct gsm_mux, ref);
2157 static inline void mux_get(struct gsm_mux *gsm)
2159 kref_get(&gsm->ref);
2162 static inline void mux_put(struct gsm_mux *gsm)
2164 kref_put(&gsm->ref, gsm_free_muxr);
2168 * gsm_alloc_mux - allocate a mux
2170 * Creates a new mux ready for activation.
2173 static struct gsm_mux *gsm_alloc_mux(void)
2175 struct gsm_mux *gsm = kzalloc(sizeof(struct gsm_mux), GFP_KERNEL);
2178 gsm->buf = kmalloc(MAX_MRU + 1, GFP_KERNEL);
2179 if (gsm->buf == NULL) {
2183 gsm->txframe = kmalloc(2 * MAX_MRU + 2, GFP_KERNEL);
2184 if (gsm->txframe == NULL) {
2189 spin_lock_init(&gsm->lock);
2190 mutex_init(&gsm->mutex);
2191 kref_init(&gsm->ref);
2192 INIT_LIST_HEAD(&gsm->tx_list);
2200 gsm->mru = 64; /* Default to encoding 1 so these should be 64 */
2202 gsm->dead = 1; /* Avoid early tty opens */
2208 * gsmld_output - write to link
2210 * @data: bytes to output
2213 * Write a block of data from the GSM mux to the data channel. This
2214 * will eventually be serialized from above but at the moment isn't.
2217 static int gsmld_output(struct gsm_mux *gsm, u8 *data, int len)
2219 if (tty_write_room(gsm->tty) < len) {
2220 set_bit(TTY_DO_WRITE_WAKEUP, &gsm->tty->flags);
2224 print_hex_dump_bytes("gsmld_output: ", DUMP_PREFIX_OFFSET,
2226 gsm->tty->ops->write(gsm->tty, data, len);
2231 * gsmld_attach_gsm - mode set up
2232 * @tty: our tty structure
2235 * Set up the MUX for basic mode and commence connecting to the
2236 * modem. Currently called from the line discipline set up but
2237 * will need moving to an ioctl path.
2240 static int gsmld_attach_gsm(struct tty_struct *tty, struct gsm_mux *gsm)
2244 gsm->tty = tty_kref_get(tty);
2245 gsm->output = gsmld_output;
2246 ret = gsm_activate_mux(gsm);
2248 tty_kref_put(gsm->tty);
2250 /* Don't register device 0 - this is the control channel and not
2251 a usable tty interface */
2252 base = gsm->num << 6; /* Base for this MUX */
2253 for (i = 1; i < NUM_DLCI; i++)
2254 tty_register_device(gsm_tty_driver, base + i, NULL);
2261 * gsmld_detach_gsm - stop doing 0710 mux
2262 * @tty: tty attached to the mux
2265 * Shutdown and then clean up the resources used by the line discipline
2268 static void gsmld_detach_gsm(struct tty_struct *tty, struct gsm_mux *gsm)
2271 int base = gsm->num << 6; /* Base for this MUX */
2273 WARN_ON(tty != gsm->tty);
2274 for (i = 1; i < NUM_DLCI; i++)
2275 tty_unregister_device(gsm_tty_driver, base + i);
2276 gsm_cleanup_mux(gsm);
2277 tty_kref_put(gsm->tty);
2281 static void gsmld_receive_buf(struct tty_struct *tty, const unsigned char *cp,
2282 char *fp, int count)
2284 struct gsm_mux *gsm = tty->disc_data;
2285 const unsigned char *dp;
2288 char flags = TTY_NORMAL;
2291 print_hex_dump_bytes("gsmld_receive: ", DUMP_PREFIX_OFFSET,
2294 for (i = count, dp = cp, f = fp; i; i--, dp++) {
2299 gsm->receive(gsm, *dp);
2305 gsm->error(gsm, *dp, flags);
2308 WARN_ONCE(1, "%s: unknown flag %d\n",
2309 tty_name(tty), flags);
2313 /* FASYNC if needed ? */
2314 /* If clogged call tty_throttle(tty); */
2318 * gsmld_flush_buffer - clean input queue
2319 * @tty: terminal device
2321 * Flush the input buffer. Called when the line discipline is
2322 * being closed, when the tty layer wants the buffer flushed (eg
2326 static void gsmld_flush_buffer(struct tty_struct *tty)
2331 * gsmld_close - close the ldisc for this tty
2334 * Called from the terminal layer when this line discipline is
2335 * being shut down, either because of a close or becsuse of a
2336 * discipline change. The function will not be called while other
2337 * ldisc methods are in progress.
2340 static void gsmld_close(struct tty_struct *tty)
2342 struct gsm_mux *gsm = tty->disc_data;
2344 gsmld_detach_gsm(tty, gsm);
2346 gsmld_flush_buffer(tty);
2347 /* Do other clean up here */
2352 * gsmld_open - open an ldisc
2353 * @tty: terminal to open
2355 * Called when this line discipline is being attached to the
2356 * terminal device. Can sleep. Called serialized so that no
2357 * other events will occur in parallel. No further open will occur
2361 static int gsmld_open(struct tty_struct *tty)
2363 struct gsm_mux *gsm;
2366 if (tty->ops->write == NULL)
2369 /* Attach our ldisc data */
2370 gsm = gsm_alloc_mux();
2374 tty->disc_data = gsm;
2375 tty->receive_room = 65536;
2377 /* Attach the initial passive connection */
2380 ret = gsmld_attach_gsm(tty, gsm);
2382 gsm_cleanup_mux(gsm);
2389 * gsmld_write_wakeup - asynchronous I/O notifier
2392 * Required for the ptys, serial driver etc. since processes
2393 * that attach themselves to the master and rely on ASYNC
2394 * IO must be woken up
2397 static void gsmld_write_wakeup(struct tty_struct *tty)
2399 struct gsm_mux *gsm = tty->disc_data;
2400 unsigned long flags;
2403 clear_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
2404 spin_lock_irqsave(&gsm->tx_lock, flags);
2406 if (gsm->tx_bytes < TX_THRESH_LO) {
2407 gsm_dlci_data_sweep(gsm);
2409 spin_unlock_irqrestore(&gsm->tx_lock, flags);
2413 * gsmld_read - read function for tty
2415 * @file: file object
2416 * @buf: userspace buffer pointer
2419 * Perform reads for the line discipline. We are guaranteed that the
2420 * line discipline will not be closed under us but we may get multiple
2421 * parallel readers and must handle this ourselves. We may also get
2422 * a hangup. Always called in user context, may sleep.
2424 * This code must be sure never to sleep through a hangup.
2427 static ssize_t gsmld_read(struct tty_struct *tty, struct file *file,
2428 unsigned char __user *buf, size_t nr)
2434 * gsmld_write - write function for tty
2436 * @file: file object
2437 * @buf: userspace buffer pointer
2440 * Called when the owner of the device wants to send a frame
2441 * itself (or some other control data). The data is transferred
2442 * as-is and must be properly framed and checksummed as appropriate
2443 * by userspace. Frames are either sent whole or not at all as this
2444 * avoids pain user side.
2447 static ssize_t gsmld_write(struct tty_struct *tty, struct file *file,
2448 const unsigned char *buf, size_t nr)
2450 int space = tty_write_room(tty);
2452 return tty->ops->write(tty, buf, nr);
2453 set_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
2458 * gsmld_poll - poll method for N_GSM0710
2459 * @tty: terminal device
2460 * @file: file accessing it
2463 * Called when the line discipline is asked to poll() for data or
2464 * for special events. This code is not serialized with respect to
2465 * other events save open/close.
2467 * This code must be sure never to sleep through a hangup.
2468 * Called without the kernel lock held - fine
2471 static __poll_t gsmld_poll(struct tty_struct *tty, struct file *file,
2475 struct gsm_mux *gsm = tty->disc_data;
2477 poll_wait(file, &tty->read_wait, wait);
2478 poll_wait(file, &tty->write_wait, wait);
2479 if (tty_hung_up_p(file))
2481 if (!tty_is_writelocked(tty) && tty_write_room(tty) > 0)
2482 mask |= POLLOUT | POLLWRNORM;
2488 static int gsmld_config(struct tty_struct *tty, struct gsm_mux *gsm,
2489 struct gsm_config *c)
2492 int need_restart = 0;
2494 /* Stuff we don't support yet - UI or I frame transport, windowing */
2495 if ((c->adaption != 1 && c->adaption != 2) || c->k)
2497 /* Check the MRU/MTU range looks sane */
2498 if (c->mru > MAX_MRU || c->mtu > MAX_MTU || c->mru < 8 || c->mtu < 8)
2502 if (c->encapsulation > 1) /* Basic, advanced, no I */
2504 if (c->initiator > 1)
2506 if (c->i == 0 || c->i > 2) /* UIH and UI only */
2509 * See what is needed for reconfiguration
2513 if (c->t1 != 0 && c->t1 != gsm->t1)
2515 if (c->t2 != 0 && c->t2 != gsm->t2)
2517 if (c->encapsulation != gsm->encoding)
2519 if (c->adaption != gsm->adaption)
2522 if (c->initiator != gsm->initiator)
2524 if (c->mru != gsm->mru)
2526 if (c->mtu != gsm->mtu)
2530 * Close down what is needed, restart and initiate the new
2534 if (need_close || need_restart) {
2537 ret = gsm_disconnect(gsm);
2543 gsm_cleanup_mux(gsm);
2545 gsm->initiator = c->initiator;
2548 gsm->encoding = c->encapsulation;
2549 gsm->adaption = c->adaption;
2562 /* FIXME: We need to separate activation/deactivation from adding
2563 and removing from the mux array */
2565 gsm_activate_mux(gsm);
2566 if (gsm->initiator && need_close)
2567 gsm_dlci_begin_open(gsm->dlci[0]);
2571 static int gsmld_ioctl(struct tty_struct *tty, struct file *file,
2572 unsigned int cmd, unsigned long arg)
2574 struct gsm_config c;
2575 struct gsm_mux *gsm = tty->disc_data;
2578 case GSMIOC_GETCONF:
2579 memset(&c, 0, sizeof(c));
2580 c.adaption = gsm->adaption;
2581 c.encapsulation = gsm->encoding;
2582 c.initiator = gsm->initiator;
2585 c.t3 = 0; /* Not supported */
2587 if (gsm->ftype == UIH)
2591 pr_debug("Ftype %d i %d\n", gsm->ftype, c.i);
2595 if (copy_to_user((void *)arg, &c, sizeof(c)))
2598 case GSMIOC_SETCONF:
2599 if (copy_from_user(&c, (void *)arg, sizeof(c)))
2601 return gsmld_config(tty, gsm, &c);
2603 return n_tty_ioctl_helper(tty, file, cmd, arg);
2607 #ifdef CONFIG_COMPAT
2608 static long gsmld_compat_ioctl(struct tty_struct *tty, struct file *file,
2609 unsigned int cmd, unsigned long arg)
2611 return gsmld_ioctl(tty, file, cmd, arg);
2620 static int gsm_mux_net_open(struct net_device *net)
2622 pr_debug("%s called\n", __func__);
2623 netif_start_queue(net);
2627 static int gsm_mux_net_close(struct net_device *net)
2629 netif_stop_queue(net);
2633 static void dlci_net_free(struct gsm_dlci *dlci)
2639 dlci->adaption = dlci->prev_adaption;
2640 dlci->data = dlci->prev_data;
2641 free_netdev(dlci->net);
2644 static void net_free(struct kref *ref)
2646 struct gsm_mux_net *mux_net;
2647 struct gsm_dlci *dlci;
2649 mux_net = container_of(ref, struct gsm_mux_net, ref);
2650 dlci = mux_net->dlci;
2653 unregister_netdev(dlci->net);
2654 dlci_net_free(dlci);
2658 static inline void muxnet_get(struct gsm_mux_net *mux_net)
2660 kref_get(&mux_net->ref);
2663 static inline void muxnet_put(struct gsm_mux_net *mux_net)
2665 kref_put(&mux_net->ref, net_free);
2668 static int gsm_mux_net_start_xmit(struct sk_buff *skb,
2669 struct net_device *net)
2671 struct gsm_mux_net *mux_net = netdev_priv(net);
2672 struct gsm_dlci *dlci = mux_net->dlci;
2673 muxnet_get(mux_net);
2675 skb_queue_head(&dlci->skb_list, skb);
2676 net->stats.tx_packets++;
2677 net->stats.tx_bytes += skb->len;
2678 gsm_dlci_data_kick(dlci);
2679 /* And tell the kernel when the last transmit started. */
2680 netif_trans_update(net);
2681 muxnet_put(mux_net);
2682 return NETDEV_TX_OK;
2685 /* called when a packet did not ack after watchdogtimeout */
2686 static void gsm_mux_net_tx_timeout(struct net_device *net)
2688 /* Tell syslog we are hosed. */
2689 dev_dbg(&net->dev, "Tx timed out.\n");
2691 /* Update statistics */
2692 net->stats.tx_errors++;
2695 static void gsm_mux_rx_netchar(struct gsm_dlci *dlci,
2696 unsigned char *in_buf, int size)
2698 struct net_device *net = dlci->net;
2699 struct sk_buff *skb;
2700 struct gsm_mux_net *mux_net = netdev_priv(net);
2701 muxnet_get(mux_net);
2703 /* Allocate an sk_buff */
2704 skb = dev_alloc_skb(size + NET_IP_ALIGN);
2706 /* We got no receive buffer. */
2707 net->stats.rx_dropped++;
2708 muxnet_put(mux_net);
2711 skb_reserve(skb, NET_IP_ALIGN);
2712 skb_put_data(skb, in_buf, size);
2715 skb->protocol = htons(ETH_P_IP);
2717 /* Ship it off to the kernel */
2720 /* update out statistics */
2721 net->stats.rx_packets++;
2722 net->stats.rx_bytes += size;
2723 muxnet_put(mux_net);
2727 static void gsm_mux_net_init(struct net_device *net)
2729 static const struct net_device_ops gsm_netdev_ops = {
2730 .ndo_open = gsm_mux_net_open,
2731 .ndo_stop = gsm_mux_net_close,
2732 .ndo_start_xmit = gsm_mux_net_start_xmit,
2733 .ndo_tx_timeout = gsm_mux_net_tx_timeout,
2736 net->netdev_ops = &gsm_netdev_ops;
2738 /* fill in the other fields */
2739 net->watchdog_timeo = GSM_NET_TX_TIMEOUT;
2740 net->flags = IFF_POINTOPOINT | IFF_NOARP | IFF_MULTICAST;
2741 net->type = ARPHRD_NONE;
2742 net->tx_queue_len = 10;
2746 /* caller holds the dlci mutex */
2747 static void gsm_destroy_network(struct gsm_dlci *dlci)
2749 struct gsm_mux_net *mux_net;
2751 pr_debug("destroy network interface");
2754 mux_net = netdev_priv(dlci->net);
2755 muxnet_put(mux_net);
2759 /* caller holds the dlci mutex */
2760 static int gsm_create_network(struct gsm_dlci *dlci, struct gsm_netconfig *nc)
2764 struct net_device *net;
2765 struct gsm_mux_net *mux_net;
2767 if (!capable(CAP_NET_ADMIN))
2770 /* Already in a non tty mode */
2771 if (dlci->adaption > 2)
2774 if (nc->protocol != htons(ETH_P_IP))
2775 return -EPROTONOSUPPORT;
2777 if (nc->adaption != 3 && nc->adaption != 4)
2778 return -EPROTONOSUPPORT;
2780 pr_debug("create network interface");
2783 if (nc->if_name[0] != '\0')
2784 netname = nc->if_name;
2785 net = alloc_netdev(sizeof(struct gsm_mux_net), netname,
2786 NET_NAME_UNKNOWN, gsm_mux_net_init);
2788 pr_err("alloc_netdev failed");
2791 net->mtu = dlci->gsm->mtu;
2793 net->max_mtu = dlci->gsm->mtu;
2794 mux_net = netdev_priv(net);
2795 mux_net->dlci = dlci;
2796 kref_init(&mux_net->ref);
2797 strncpy(nc->if_name, net->name, IFNAMSIZ); /* return net name */
2799 /* reconfigure dlci for network */
2800 dlci->prev_adaption = dlci->adaption;
2801 dlci->prev_data = dlci->data;
2802 dlci->adaption = nc->adaption;
2803 dlci->data = gsm_mux_rx_netchar;
2806 pr_debug("register netdev");
2807 retval = register_netdev(net);
2809 pr_err("network register fail %d\n", retval);
2810 dlci_net_free(dlci);
2813 return net->ifindex; /* return network index */
2816 /* Line discipline for real tty */
2817 static struct tty_ldisc_ops tty_ldisc_packet = {
2818 .owner = THIS_MODULE,
2819 .magic = TTY_LDISC_MAGIC,
2822 .close = gsmld_close,
2823 .flush_buffer = gsmld_flush_buffer,
2825 .write = gsmld_write,
2826 #ifdef CONFIG_COMPAT
2827 .compat_ioctl = gsmld_compat_ioctl,
2829 .ioctl = gsmld_ioctl,
2831 .receive_buf = gsmld_receive_buf,
2832 .write_wakeup = gsmld_write_wakeup
2841 static int gsmtty_modem_update(struct gsm_dlci *dlci, u8 brk)
2844 struct gsm_control *ctrl;
2850 modembits[0] = len << 1 | EA; /* Data bytes */
2851 modembits[1] = dlci->addr << 2 | 3; /* DLCI, EA, 1 */
2852 modembits[2] = gsm_encode_modem(dlci) << 1 | EA;
2854 modembits[3] = brk << 4 | 2 | EA; /* Valid, EA */
2855 ctrl = gsm_control_send(dlci->gsm, CMD_MSC, modembits, len + 1);
2858 return gsm_control_wait(dlci->gsm, ctrl);
2861 static int gsm_carrier_raised(struct tty_port *port)
2863 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
2864 /* Not yet open so no carrier info */
2865 if (dlci->state != DLCI_OPEN)
2869 return dlci->modem_rx & TIOCM_CD;
2872 static void gsm_dtr_rts(struct tty_port *port, int onoff)
2874 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
2875 unsigned int modem_tx = dlci->modem_tx;
2877 modem_tx |= TIOCM_DTR | TIOCM_RTS;
2879 modem_tx &= ~(TIOCM_DTR | TIOCM_RTS);
2880 if (modem_tx != dlci->modem_tx) {
2881 dlci->modem_tx = modem_tx;
2882 gsmtty_modem_update(dlci, 0);
2886 static const struct tty_port_operations gsm_port_ops = {
2887 .carrier_raised = gsm_carrier_raised,
2888 .dtr_rts = gsm_dtr_rts,
2889 .destruct = gsm_dlci_free,
2892 static int gsmtty_install(struct tty_driver *driver, struct tty_struct *tty)
2894 struct gsm_mux *gsm;
2895 struct gsm_dlci *dlci;
2896 unsigned int line = tty->index;
2897 unsigned int mux = line >> 6;
2905 /* FIXME: we need to lock gsm_mux for lifetimes of ttys eventually */
2906 if (gsm_mux[mux] == NULL)
2908 if (line == 0 || line > 61) /* 62/63 reserved */
2913 /* If DLCI 0 is not yet fully open return an error.
2914 This is ok from a locking
2915 perspective as we don't have to worry about this
2917 mutex_lock(&gsm->mutex);
2918 if (gsm->dlci[0] && gsm->dlci[0]->state != DLCI_OPEN) {
2919 mutex_unlock(&gsm->mutex);
2922 dlci = gsm->dlci[line];
2925 dlci = gsm_dlci_alloc(gsm, line);
2928 mutex_unlock(&gsm->mutex);
2931 ret = tty_port_install(&dlci->port, driver, tty);
2935 mutex_unlock(&gsm->mutex);
2940 dlci_get(gsm->dlci[0]);
2942 tty->driver_data = dlci;
2943 mutex_unlock(&gsm->mutex);
2948 static int gsmtty_open(struct tty_struct *tty, struct file *filp)
2950 struct gsm_dlci *dlci = tty->driver_data;
2951 struct tty_port *port = &dlci->port;
2954 tty_port_tty_set(port, tty);
2957 /* We could in theory open and close before we wait - eg if we get
2958 a DM straight back. This is ok as that will have caused a hangup */
2959 tty_port_set_initialized(port, 1);
2960 /* Start sending off SABM messages */
2961 gsm_dlci_begin_open(dlci);
2962 /* And wait for virtual carrier */
2963 return tty_port_block_til_ready(port, tty, filp);
2966 static void gsmtty_close(struct tty_struct *tty, struct file *filp)
2968 struct gsm_dlci *dlci = tty->driver_data;
2972 if (dlci->state == DLCI_CLOSED)
2974 mutex_lock(&dlci->mutex);
2975 gsm_destroy_network(dlci);
2976 mutex_unlock(&dlci->mutex);
2977 if (tty_port_close_start(&dlci->port, tty, filp) == 0)
2979 gsm_dlci_begin_close(dlci);
2980 if (tty_port_initialized(&dlci->port) && C_HUPCL(tty))
2981 tty_port_lower_dtr_rts(&dlci->port);
2982 tty_port_close_end(&dlci->port, tty);
2983 tty_port_tty_set(&dlci->port, NULL);
2987 static void gsmtty_hangup(struct tty_struct *tty)
2989 struct gsm_dlci *dlci = tty->driver_data;
2990 if (dlci->state == DLCI_CLOSED)
2992 tty_port_hangup(&dlci->port);
2993 gsm_dlci_begin_close(dlci);
2996 static int gsmtty_write(struct tty_struct *tty, const unsigned char *buf,
3000 struct gsm_dlci *dlci = tty->driver_data;
3001 if (dlci->state == DLCI_CLOSED)
3003 /* Stuff the bytes into the fifo queue */
3004 sent = kfifo_in_locked(dlci->fifo, buf, len, &dlci->lock);
3005 /* Need to kick the channel */
3006 gsm_dlci_data_kick(dlci);
3010 static int gsmtty_write_room(struct tty_struct *tty)
3012 struct gsm_dlci *dlci = tty->driver_data;
3013 if (dlci->state == DLCI_CLOSED)
3015 return TX_SIZE - kfifo_len(dlci->fifo);
3018 static int gsmtty_chars_in_buffer(struct tty_struct *tty)
3020 struct gsm_dlci *dlci = tty->driver_data;
3021 if (dlci->state == DLCI_CLOSED)
3023 return kfifo_len(dlci->fifo);
3026 static void gsmtty_flush_buffer(struct tty_struct *tty)
3028 struct gsm_dlci *dlci = tty->driver_data;
3029 if (dlci->state == DLCI_CLOSED)
3031 /* Caution needed: If we implement reliable transport classes
3032 then the data being transmitted can't simply be junked once
3033 it has first hit the stack. Until then we can just blow it
3035 kfifo_reset(dlci->fifo);
3036 /* Need to unhook this DLCI from the transmit queue logic */
3039 static void gsmtty_wait_until_sent(struct tty_struct *tty, int timeout)
3041 /* The FIFO handles the queue so the kernel will do the right
3042 thing waiting on chars_in_buffer before calling us. No work
3046 static int gsmtty_tiocmget(struct tty_struct *tty)
3048 struct gsm_dlci *dlci = tty->driver_data;
3049 if (dlci->state == DLCI_CLOSED)
3051 return dlci->modem_rx;
3054 static int gsmtty_tiocmset(struct tty_struct *tty,
3055 unsigned int set, unsigned int clear)
3057 struct gsm_dlci *dlci = tty->driver_data;
3058 unsigned int modem_tx = dlci->modem_tx;
3060 if (dlci->state == DLCI_CLOSED)
3065 if (modem_tx != dlci->modem_tx) {
3066 dlci->modem_tx = modem_tx;
3067 return gsmtty_modem_update(dlci, 0);
3073 static int gsmtty_ioctl(struct tty_struct *tty,
3074 unsigned int cmd, unsigned long arg)
3076 struct gsm_dlci *dlci = tty->driver_data;
3077 struct gsm_netconfig nc;
3080 if (dlci->state == DLCI_CLOSED)
3083 case GSMIOC_ENABLE_NET:
3084 if (copy_from_user(&nc, (void __user *)arg, sizeof(nc)))
3086 nc.if_name[IFNAMSIZ-1] = '\0';
3087 /* return net interface index or error code */
3088 mutex_lock(&dlci->mutex);
3089 index = gsm_create_network(dlci, &nc);
3090 mutex_unlock(&dlci->mutex);
3091 if (copy_to_user((void __user *)arg, &nc, sizeof(nc)))
3094 case GSMIOC_DISABLE_NET:
3095 if (!capable(CAP_NET_ADMIN))
3097 mutex_lock(&dlci->mutex);
3098 gsm_destroy_network(dlci);
3099 mutex_unlock(&dlci->mutex);
3102 return -ENOIOCTLCMD;
3106 static void gsmtty_set_termios(struct tty_struct *tty, struct ktermios *old)
3108 struct gsm_dlci *dlci = tty->driver_data;
3109 if (dlci->state == DLCI_CLOSED)
3111 /* For the moment its fixed. In actual fact the speed information
3112 for the virtual channel can be propogated in both directions by
3113 the RPN control message. This however rapidly gets nasty as we
3114 then have to remap modem signals each way according to whether
3115 our virtual cable is null modem etc .. */
3116 tty_termios_copy_hw(&tty->termios, old);
3119 static void gsmtty_throttle(struct tty_struct *tty)
3121 struct gsm_dlci *dlci = tty->driver_data;
3122 if (dlci->state == DLCI_CLOSED)
3125 dlci->modem_tx &= ~TIOCM_DTR;
3126 dlci->throttled = 1;
3127 /* Send an MSC with DTR cleared */
3128 gsmtty_modem_update(dlci, 0);
3131 static void gsmtty_unthrottle(struct tty_struct *tty)
3133 struct gsm_dlci *dlci = tty->driver_data;
3134 if (dlci->state == DLCI_CLOSED)
3137 dlci->modem_tx |= TIOCM_DTR;
3138 dlci->throttled = 0;
3139 /* Send an MSC with DTR set */
3140 gsmtty_modem_update(dlci, 0);
3143 static int gsmtty_break_ctl(struct tty_struct *tty, int state)
3145 struct gsm_dlci *dlci = tty->driver_data;
3146 int encode = 0; /* Off */
3147 if (dlci->state == DLCI_CLOSED)
3150 if (state == -1) /* "On indefinitely" - we can't encode this
3153 else if (state > 0) {
3154 encode = state / 200; /* mS to encoding */
3156 encode = 0x0F; /* Best effort */
3158 return gsmtty_modem_update(dlci, encode);
3161 static void gsmtty_cleanup(struct tty_struct *tty)
3163 struct gsm_dlci *dlci = tty->driver_data;
3164 struct gsm_mux *gsm = dlci->gsm;
3167 dlci_put(gsm->dlci[0]);
3171 /* Virtual ttys for the demux */
3172 static const struct tty_operations gsmtty_ops = {
3173 .install = gsmtty_install,
3174 .open = gsmtty_open,
3175 .close = gsmtty_close,
3176 .write = gsmtty_write,
3177 .write_room = gsmtty_write_room,
3178 .chars_in_buffer = gsmtty_chars_in_buffer,
3179 .flush_buffer = gsmtty_flush_buffer,
3180 .ioctl = gsmtty_ioctl,
3181 .throttle = gsmtty_throttle,
3182 .unthrottle = gsmtty_unthrottle,
3183 .set_termios = gsmtty_set_termios,
3184 .hangup = gsmtty_hangup,
3185 .wait_until_sent = gsmtty_wait_until_sent,
3186 .tiocmget = gsmtty_tiocmget,
3187 .tiocmset = gsmtty_tiocmset,
3188 .break_ctl = gsmtty_break_ctl,
3189 .cleanup = gsmtty_cleanup,
3194 static int __init gsm_init(void)
3196 /* Fill in our line protocol discipline, and register it */
3197 int status = tty_register_ldisc(N_GSM0710, &tty_ldisc_packet);
3199 pr_err("n_gsm: can't register line discipline (err = %d)\n",
3204 gsm_tty_driver = alloc_tty_driver(256);
3205 if (!gsm_tty_driver) {
3206 tty_unregister_ldisc(N_GSM0710);
3207 pr_err("gsm_init: tty allocation failed.\n");
3210 gsm_tty_driver->driver_name = "gsmtty";
3211 gsm_tty_driver->name = "gsmtty";
3212 gsm_tty_driver->major = 0; /* Dynamic */
3213 gsm_tty_driver->minor_start = 0;
3214 gsm_tty_driver->type = TTY_DRIVER_TYPE_SERIAL;
3215 gsm_tty_driver->subtype = SERIAL_TYPE_NORMAL;
3216 gsm_tty_driver->flags = TTY_DRIVER_REAL_RAW | TTY_DRIVER_DYNAMIC_DEV
3217 | TTY_DRIVER_HARDWARE_BREAK;
3218 gsm_tty_driver->init_termios = tty_std_termios;
3220 gsm_tty_driver->init_termios.c_lflag &= ~ECHO;
3221 tty_set_operations(gsm_tty_driver, &gsmtty_ops);
3223 spin_lock_init(&gsm_mux_lock);
3225 if (tty_register_driver(gsm_tty_driver)) {
3226 put_tty_driver(gsm_tty_driver);
3227 tty_unregister_ldisc(N_GSM0710);
3228 pr_err("gsm_init: tty registration failed.\n");
3231 pr_debug("gsm_init: loaded as %d,%d.\n",
3232 gsm_tty_driver->major, gsm_tty_driver->minor_start);
3236 static void __exit gsm_exit(void)
3238 int status = tty_unregister_ldisc(N_GSM0710);
3240 pr_err("n_gsm: can't unregister line discipline (err = %d)\n",
3242 tty_unregister_driver(gsm_tty_driver);
3243 put_tty_driver(gsm_tty_driver);
3246 module_init(gsm_init);
3247 module_exit(gsm_exit);
3250 MODULE_LICENSE("GPL");
3251 MODULE_ALIAS_LDISC(N_GSM0710);
git.samba.org / sfrench / cifs-2.6.git / blob