drivers/misc/mei/nfc.c

   1 /*
   2  *
   3  * Intel Management Engine Interface (Intel MEI) Linux driver
   4  * Copyright (c) 2003-2013, Intel Corporation.
   5  *
   6  * This program is free software; you can redistribute it and/or modify it
   7  * under the terms and conditions of the GNU General Public License,
   8  * version 2, as published by the Free Software Foundation.
   9  *
  10  * This program is distributed in the hope it will be useful, but WITHOUT
  11  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
  12  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
  13  * more details.
  14  *
  15  */
  16
  17 #include <linux/kernel.h>
  18 #include <linux/sched.h>
  19 #include <linux/module.h>
  20 #include <linux/moduleparam.h>
  21 #include <linux/device.h>
  22 #include <linux/pci.h>
  23 #include <linux/mei_cl_bus.h>
  24
  25 #include "mei_dev.h"
  26 #include "client.h"
  27
  28 struct mei_nfc_cmd {
  29         u8 command;
  30         u8 status;
  31         u16 req_id;
  32         u32 reserved;
  33         u16 data_size;
  34         u8 sub_command;
  35         u8 data[];
  36 } __packed;
  37
  38 struct mei_nfc_reply {
  39         u8 command;
  40         u8 status;
  41         u16 req_id;
  42         u32 reserved;
  43         u16 data_size;
  44         u8 sub_command;
  45         u8 reply_status;
  46         u8 data[];
  47 } __packed;
  48
  49 struct mei_nfc_if_version {
  50         u8 radio_version_sw[3];
  51         u8 reserved[3];
  52         u8 radio_version_hw[3];
  53         u8 i2c_addr;
  54         u8 fw_ivn;
  55         u8 vendor_id;
  56         u8 radio_type;
  57 } __packed;
  58
  59 struct mei_nfc_connect {
  60         u8 fw_ivn;
  61         u8 vendor_id;
  62 } __packed;
  63
  64 struct mei_nfc_connect_resp {
  65         u8 fw_ivn;
  66         u8 vendor_id;
  67         u16 me_major;
  68         u16 me_minor;
  69         u16 me_hotfix;
  70         u16 me_build;
  71 } __packed;
  72
  73 struct mei_nfc_hci_hdr {
  74         u8 cmd;
  75         u8 status;
  76         u16 req_id;
  77         u32 reserved;
  78         u16 data_size;
  79 } __packed;
  80
  81 #define MEI_NFC_CMD_MAINTENANCE 0x00
  82 #define MEI_NFC_CMD_HCI_SEND 0x01
  83 #define MEI_NFC_CMD_HCI_RECV 0x02
  84
  85 #define MEI_NFC_SUBCMD_CONNECT    0x00
  86 #define MEI_NFC_SUBCMD_IF_VERSION 0x01
  87
  88 #define MEI_NFC_HEADER_SIZE 10
  89
  90 /** mei_nfc_dev - NFC mei device
  91  *
  92  * @cl: NFC host client
  93  * @cl_info: NFC info host client
  94  * @init_work: perform connection to the info client
  95  * @fw_ivn: NFC Interface Version Number
  96  * @vendor_id: NFC manufacturer ID
  97  * @radio_type: NFC radio type
  98  */
  99 struct mei_nfc_dev {
 100         struct mei_cl *cl;
 101         struct mei_cl *cl_info;
 102         struct work_struct init_work;
 103         wait_queue_head_t send_wq;
 104         u8 fw_ivn;
 105         u8 vendor_id;
 106         u8 radio_type;
 107         char *bus_name;
 108
 109         u16 req_id;
 110         u16 recv_req_id;
 111 };
 112
 113 static struct mei_nfc_dev nfc_dev;
 114
 115 /* UUIDs for NFC F/W clients */
 116 const uuid_le mei_nfc_guid = UUID_LE(0x0bb17a78, 0x2a8e, 0x4c50,
 117                                      0x94, 0xd4, 0x50, 0x26,
 118                                      0x67, 0x23, 0x77, 0x5c);
 119
 120 static const uuid_le mei_nfc_info_guid = UUID_LE(0xd2de1625, 0x382d, 0x417d,
 121                                         0x48, 0xa4, 0xef, 0xab,
 122                                         0xba, 0x8a, 0x12, 0x06);
 123
 124 /* Vendors */
 125 #define MEI_NFC_VENDOR_INSIDE 0x00
 126 #define MEI_NFC_VENDOR_NXP    0x01
 127
 128 /* Radio types */
 129 #define MEI_NFC_VENDOR_INSIDE_UREAD 0x00
 130 #define MEI_NFC_VENDOR_NXP_PN544    0x01
 131
 132 static void mei_nfc_free(struct mei_nfc_dev *ndev)
 133 {
 134         if (ndev->cl) {
 135                 list_del(&ndev->cl->device_link);
 136                 mei_cl_unlink(ndev->cl);
 137                 kfree(ndev->cl);
 138         }
 139
 140         if (ndev->cl_info) {
 141                 list_del(&ndev->cl_info->device_link);
 142                 mei_cl_unlink(ndev->cl_info);
 143                 kfree(ndev->cl_info);
 144         }
 145
 146         memset(ndev, 0, sizeof(struct mei_nfc_dev));
 147 }
 148
 149 static int mei_nfc_build_bus_name(struct mei_nfc_dev *ndev)
 150 {
 151         struct mei_device *dev;
 152
 153         if (!ndev->cl)
 154                 return -ENODEV;
 155
 156         dev = ndev->cl->dev;
 157
 158         switch (ndev->vendor_id) {
 159         case MEI_NFC_VENDOR_INSIDE:
 160                 switch (ndev->radio_type) {
 161                 case MEI_NFC_VENDOR_INSIDE_UREAD:
 162                         ndev->bus_name = "microread";
 163                         return 0;
 164
 165                 default:
 166                         dev_err(&dev->pdev->dev, "Unknown radio type 0x%x\n",
 167                                 ndev->radio_type);
 168
 169                         return -EINVAL;
 170                 }
 171
 172         case MEI_NFC_VENDOR_NXP:
 173                 switch (ndev->radio_type) {
 174                 case MEI_NFC_VENDOR_NXP_PN544:
 175                         ndev->bus_name = "pn544";
 176                         return 0;
 177                 default:
 178                         dev_err(&dev->pdev->dev, "Unknown radio type 0x%x\n",
 179                                 ndev->radio_type);
 180
 181                         return -EINVAL;
 182                 }
 183
 184         default:
 185                 dev_err(&dev->pdev->dev, "Unknown vendor ID 0x%x\n",
 186                         ndev->vendor_id);
 187
 188                 return -EINVAL;
 189         }
 190
 191         return 0;
 192 }
 193
 194 static int mei_nfc_connect(struct mei_nfc_dev *ndev)
 195 {
 196         struct mei_device *dev;
 197         struct mei_cl *cl;
 198         struct mei_nfc_cmd *cmd, *reply;
 199         struct mei_nfc_connect *connect;
 200         struct mei_nfc_connect_resp *connect_resp;
 201         size_t connect_length, connect_resp_length;
 202         int bytes_recv, ret;
 203
 204         cl = ndev->cl;
 205         dev = cl->dev;
 206
 207         connect_length = sizeof(struct mei_nfc_cmd) +
 208                         sizeof(struct mei_nfc_connect);
 209
 210         connect_resp_length = sizeof(struct mei_nfc_cmd) +
 211                         sizeof(struct mei_nfc_connect_resp);
 212
 213         cmd = kzalloc(connect_length, GFP_KERNEL);
 214         if (!cmd)
 215                 return -ENOMEM;
 216         connect = (struct mei_nfc_connect *)cmd->data;
 217
 218         reply = kzalloc(connect_resp_length, GFP_KERNEL);
 219         if (!reply) {
 220                 kfree(cmd);
 221                 return -ENOMEM;
 222         }
 223
 224         connect_resp = (struct mei_nfc_connect_resp *)reply->data;
 225
 226         cmd->command = MEI_NFC_CMD_MAINTENANCE;
 227         cmd->data_size = 3;
 228         cmd->sub_command = MEI_NFC_SUBCMD_CONNECT;
 229         connect->fw_ivn = ndev->fw_ivn;
 230         connect->vendor_id = ndev->vendor_id;
 231
 232         ret = __mei_cl_send(cl, (u8 *)cmd, connect_length);
 233         if (ret < 0) {
 234                 dev_err(&dev->pdev->dev, "Could not send connect cmd\n");
 235                 goto err;
 236         }
 237
 238         bytes_recv = __mei_cl_recv(cl, (u8 *)reply, connect_resp_length);
 239         if (bytes_recv < 0) {
 240                 dev_err(&dev->pdev->dev, "Could not read connect response\n");
 241                 ret = bytes_recv;
 242                 goto err;
 243         }
 244
 245         dev_info(&dev->pdev->dev, "IVN 0x%x Vendor ID 0x%x\n",
 246                  connect_resp->fw_ivn, connect_resp->vendor_id);
 247
 248         dev_info(&dev->pdev->dev, "ME FW %d.%d.%d.%d\n",
 249                 connect_resp->me_major, connect_resp->me_minor,
 250                 connect_resp->me_hotfix, connect_resp->me_build);
 251
 252         ret = 0;
 253
 254 err:
 255         kfree(reply);
 256         kfree(cmd);
 257
 258         return ret;
 259 }
 260
 261 static int mei_nfc_if_version(struct mei_nfc_dev *ndev)
 262 {
 263         struct mei_device *dev;
 264         struct mei_cl *cl;
 265
 266         struct mei_nfc_cmd cmd;
 267         struct mei_nfc_reply *reply = NULL;
 268         struct mei_nfc_if_version *version;
 269         size_t if_version_length;
 270         int bytes_recv, ret;
 271
 272         cl = ndev->cl_info;
 273         dev = cl->dev;
 274
 275         memset(&cmd, 0, sizeof(struct mei_nfc_cmd));
 276         cmd.command = MEI_NFC_CMD_MAINTENANCE;
 277         cmd.data_size = 1;
 278         cmd.sub_command = MEI_NFC_SUBCMD_IF_VERSION;
 279
 280         ret = __mei_cl_send(cl, (u8 *)&cmd, sizeof(struct mei_nfc_cmd));
 281         if (ret < 0) {
 282                 dev_err(&dev->pdev->dev, "Could not send IF version cmd\n");
 283                 return ret;
 284         }
 285
 286         /* to be sure on the stack we alloc memory */
 287         if_version_length = sizeof(struct mei_nfc_reply) +
 288                 sizeof(struct mei_nfc_if_version);
 289
 290         reply = kzalloc(if_version_length, GFP_KERNEL);
 291         if (!reply)
 292                 return -ENOMEM;
 293
 294         bytes_recv = __mei_cl_recv(cl, (u8 *)reply, if_version_length);
 295         if (bytes_recv < 0 || bytes_recv < sizeof(struct mei_nfc_reply)) {
 296                 dev_err(&dev->pdev->dev, "Could not read IF version\n");
 297                 ret = -EIO;
 298                 goto err;
 299         }
 300
 301         version = (struct mei_nfc_if_version *)reply->data;
 302
 303         ndev->fw_ivn = version->fw_ivn;
 304         ndev->vendor_id = version->vendor_id;
 305         ndev->radio_type = version->radio_type;
 306
 307 err:
 308         kfree(reply);
 309         return ret;
 310 }
 311
 312 static int mei_nfc_enable(struct mei_cl_device *cldev)
 313 {
 314         struct mei_device *dev;
 315         struct mei_nfc_dev *ndev = &nfc_dev;
 316         int ret;
 317
 318         dev = ndev->cl->dev;
 319
 320         ret = mei_nfc_connect(ndev);
 321         if (ret < 0) {
 322                 dev_err(&dev->pdev->dev, "Could not connect to NFC");
 323                 return ret;
 324         }
 325
 326         return 0;
 327 }
 328
 329 static int mei_nfc_disable(struct mei_cl_device *cldev)
 330 {
 331         return 0;
 332 }
 333
 334 static int mei_nfc_send(struct mei_cl_device *cldev, u8 *buf, size_t length)
 335 {
 336         struct mei_device *dev;
 337         struct mei_nfc_dev *ndev;
 338         struct mei_nfc_hci_hdr *hdr;
 339         u8 *mei_buf;
 340         int err;
 341
 342         ndev = (struct mei_nfc_dev *) cldev->priv_data;
 343         dev = ndev->cl->dev;
 344
 345         err = -ENOMEM;
 346         mei_buf = kzalloc(length + MEI_NFC_HEADER_SIZE, GFP_KERNEL);
 347         if (!mei_buf)
 348                 goto out;
 349
 350         hdr = (struct mei_nfc_hci_hdr *) mei_buf;
 351         hdr->cmd = MEI_NFC_CMD_HCI_SEND;
 352         hdr->status = 0;
 353         hdr->req_id = ndev->req_id;
 354         hdr->reserved = 0;
 355         hdr->data_size = length;
 356
 357         memcpy(mei_buf + MEI_NFC_HEADER_SIZE, buf, length);
 358         err = __mei_cl_send(ndev->cl, mei_buf, length + MEI_NFC_HEADER_SIZE);
 359         if (err < 0)
 360                 goto out;
 361
 362         if (!wait_event_interruptible_timeout(ndev->send_wq,
 363                                 ndev->recv_req_id == ndev->req_id, HZ)) {
 364                 dev_err(&dev->pdev->dev, "NFC MEI command timeout\n");
 365                 err = -ETIME;
 366         } else {
 367                 ndev->req_id++;
 368         }
 369 out:
 370         kfree(mei_buf);
 371         return err;
 372 }
 373
 374 static int mei_nfc_recv(struct mei_cl_device *cldev, u8 *buf, size_t length)
 375 {
 376         struct mei_nfc_dev *ndev;
 377         struct mei_nfc_hci_hdr *hci_hdr;
 378         int received_length;
 379
 380         ndev = (struct mei_nfc_dev *)cldev->priv_data;
 381
 382         received_length = __mei_cl_recv(ndev->cl, buf, length);
 383         if (received_length < 0)
 384                 return received_length;
 385
 386         hci_hdr = (struct mei_nfc_hci_hdr *) buf;
 387
 388         if (hci_hdr->cmd == MEI_NFC_CMD_HCI_SEND) {
 389                 ndev->recv_req_id = hci_hdr->req_id;
 390                 wake_up(&ndev->send_wq);
 391
 392                 return 0;
 393         }
 394
 395         return received_length;
 396 }
 397
 398 static struct mei_cl_ops nfc_ops = {
 399         .enable = mei_nfc_enable,
 400         .disable = mei_nfc_disable,
 401         .send = mei_nfc_send,
 402         .recv = mei_nfc_recv,
 403 };
 404
 405 static void mei_nfc_init(struct work_struct *work)
 406 {
 407         struct mei_device *dev;
 408         struct mei_cl_device *cldev;
 409         struct mei_nfc_dev *ndev;
 410         struct mei_cl *cl_info;
 411
 412         ndev = container_of(work, struct mei_nfc_dev, init_work);
 413
 414         cl_info = ndev->cl_info;
 415         dev = cl_info->dev;
 416
 417         mutex_lock(&dev->device_lock);
 418
 419         if (mei_cl_connect(cl_info, NULL) < 0) {
 420                 mutex_unlock(&dev->device_lock);
 421                 dev_err(&dev->pdev->dev,
 422                         "Could not connect to the NFC INFO ME client");
 423
 424                 goto err;
 425         }
 426
 427         mutex_unlock(&dev->device_lock);
 428
 429         if (mei_nfc_if_version(ndev) < 0) {
 430                 dev_err(&dev->pdev->dev, "Could not get the NFC interface version");
 431
 432                 goto err;
 433         }
 434
 435         dev_info(&dev->pdev->dev,
 436                 "NFC MEI VERSION: IVN 0x%x Vendor ID 0x%x Type 0x%x\n",
 437                 ndev->fw_ivn, ndev->vendor_id, ndev->radio_type);
 438
 439         mutex_lock(&dev->device_lock);
 440
 441         if (mei_cl_disconnect(cl_info) < 0) {
 442                 mutex_unlock(&dev->device_lock);
 443                 dev_err(&dev->pdev->dev,
 444                         "Could not disconnect the NFC INFO ME client");
 445
 446                 goto err;
 447         }
 448
 449         mutex_unlock(&dev->device_lock);
 450
 451         if (mei_nfc_build_bus_name(ndev) < 0) {
 452                 dev_err(&dev->pdev->dev,
 453                         "Could not build the bus ID name\n");
 454                 return;
 455         }
 456
 457         cldev = mei_cl_add_device(dev, mei_nfc_guid, ndev->bus_name, &nfc_ops);
 458         if (!cldev) {
 459                 dev_err(&dev->pdev->dev,
 460                         "Could not add the NFC device to the MEI bus\n");
 461
 462                 goto err;
 463         }
 464
 465         cldev->priv_data = ndev;
 466
 467
 468         return;
 469
 470 err:
 471         mutex_lock(&dev->device_lock);
 472         mei_nfc_free(ndev);
 473         mutex_unlock(&dev->device_lock);
 474
 475         return;
 476 }
 477
 478
 479 int mei_nfc_host_init(struct mei_device *dev)
 480 {
 481         struct mei_nfc_dev *ndev = &nfc_dev;
 482         struct mei_cl *cl_info, *cl = NULL;
 483         int i, ret;
 484
 485         /* already initialized */
 486         if (ndev->cl_info)
 487                 return 0;
 488
 489         ndev->cl_info = mei_cl_allocate(dev);
 490         ndev->cl = mei_cl_allocate(dev);
 491
 492         cl = ndev->cl;
 493         cl_info = ndev->cl_info;
 494
 495         if (!cl || !cl_info) {
 496                 ret = -ENOMEM;
 497                 goto err;
 498         }
 499
 500         /* check for valid client id */
 501         i = mei_me_cl_by_uuid(dev, &mei_nfc_info_guid);
 502         if (i < 0) {
 503                 dev_info(&dev->pdev->dev, "nfc: failed to find the client\n");
 504                 ret = -ENOTTY;
 505                 goto err;
 506         }
 507
 508         cl_info->me_client_id = dev->me_clients[i].client_id;
 509
 510         ret = mei_cl_link(cl_info, MEI_HOST_CLIENT_ID_ANY);
 511         if (ret)
 512                 goto err;
 513
 514         cl_info->device_uuid = mei_nfc_info_guid;
 515
 516         list_add_tail(&cl_info->device_link, &dev->device_list);
 517
 518         /* check for valid client id */
 519         i = mei_me_cl_by_uuid(dev, &mei_nfc_guid);
 520         if (i < 0) {
 521                 dev_info(&dev->pdev->dev, "nfc: failed to find the client\n");
 522                 ret = -ENOTTY;
 523                 goto err;
 524         }
 525
 526         cl->me_client_id = dev->me_clients[i].client_id;
 527
 528         ret = mei_cl_link(cl, MEI_HOST_CLIENT_ID_ANY);
 529         if (ret)
 530                 goto err;
 531
 532         cl->device_uuid = mei_nfc_guid;
 533
 534
 535         list_add_tail(&cl->device_link, &dev->device_list);
 536
 537         ndev->req_id = 1;
 538
 539         INIT_WORK(&ndev->init_work, mei_nfc_init);
 540         init_waitqueue_head(&ndev->send_wq);
 541         schedule_work(&ndev->init_work);
 542
 543         return 0;
 544
 545 err:
 546         mei_nfc_free(ndev);
 547
 548         return ret;
 549 }
 550
 551 void mei_nfc_host_exit(struct mei_device *dev)
 552 {
 553         struct mei_nfc_dev *ndev = &nfc_dev;
 554         cancel_work_sync(&ndev->init_work);
 555 }
 556
 557