1 // SPDX-License-Identifier: GPL-2.0
3 * n_gsm.c GSM 0710 tty multiplexor
4 * Copyright (c) 2009/10 Intel Corporation
6 * * THIS IS A DEVELOPMENT SNAPSHOT IT IS NOT A FINAL RELEASE *
9 * Mostly done: ioctls for setting modes/timing
10 * Partly done: hooks so you can pull off frames to non tty devs
11 * Restart DLCI 0 when it closes ?
12 * Improve the tx engine
13 * Resolve tx side locking by adding a queue_head and routing
14 * all control traffic via it
15 * General tidy/document
16 * Review the locking/move to refcounts more (mux now moved to an
17 * alloc/free model ready)
18 * Use newest tty open/close port helpers and install hooks
19 * What to do about power functions ?
20 * Termios setting and negotiation
21 * Do we need a 'which mux are you' ioctl to correlate mux and tty sets
25 #include <linux/types.h>
26 #include <linux/major.h>
27 #include <linux/errno.h>
28 #include <linux/signal.h>
29 #include <linux/fcntl.h>
30 #include <linux/sched/signal.h>
31 #include <linux/interrupt.h>
32 #include <linux/tty.h>
33 #include <linux/ctype.h>
35 #include <linux/string.h>
36 #include <linux/slab.h>
37 #include <linux/poll.h>
38 #include <linux/bitops.h>
39 #include <linux/file.h>
40 #include <linux/uaccess.h>
41 #include <linux/module.h>
42 #include <linux/timer.h>
43 #include <linux/tty_flip.h>
44 #include <linux/tty_driver.h>
45 #include <linux/serial.h>
46 #include <linux/kfifo.h>
47 #include <linux/skbuff.h>
50 #include <linux/netdevice.h>
51 #include <linux/etherdevice.h>
52 #include <linux/gsmmux.h>
55 module_param(debug, int, 0600);
57 /* Defaults: these are from the specification */
59 #define T1 10 /* 100mS */
60 #define T2 34 /* 333mS */
61 #define N2 3 /* Retry 3 times */
63 /* Use long timers for testing at low speed with debug on */
70 * Semi-arbitrary buffer size limits. 0710 is normally run with 32-64 byte
71 * limits so this is plenty
75 #define GSM_NET_TX_TIMEOUT (HZ*10)
78 * struct gsm_mux_net - network interface
79 * @struct gsm_dlci* dlci
81 * Created when net interface is initialized.
85 struct gsm_dlci *dlci;
89 * Each block of data we have queued to go out is in the form of
90 * a gsm_msg which holds everything we need in a link layer independent
95 struct list_head list;
96 u8 addr; /* DLCI address + flags */
97 u8 ctrl; /* Control byte + flags */
98 unsigned int len; /* Length of data block (can be zero) */
99 unsigned char *data; /* Points into buffer but not at the start */
100 unsigned char buffer[0];
104 * Each active data link has a gsm_dlci structure associated which ties
105 * the link layer to an optional tty (if the tty side is open). To avoid
106 * complexity right now these are only ever freed up when the mux is
109 * At the moment we don't free DLCI objects until the mux is torn down
110 * this avoid object life time issues but might be worth review later.
117 #define DLCI_CLOSED 0
118 #define DLCI_OPENING 1 /* Sending SABM not seen UA */
119 #define DLCI_OPEN 2 /* SABM/UA complete */
120 #define DLCI_CLOSING 3 /* Sending DISC not seen UA/DM */
124 spinlock_t lock; /* Protects the internal state */
125 struct timer_list t1; /* Retransmit timer for SABM and UA */
127 /* Uplink tty if active */
128 struct tty_port port; /* The tty bound to this DLCI if there is one */
129 struct kfifo *fifo; /* Queue fifo for the DLCI */
130 struct kfifo _fifo; /* For new fifo API porting only */
131 int adaption; /* Adaption layer in use */
133 u32 modem_rx; /* Our incoming virtual modem lines */
134 u32 modem_tx; /* Our outgoing modem lines */
135 int dead; /* Refuse re-open */
137 int throttled; /* Private copy of throttle state */
138 int constipated; /* Throttle status for outgoing */
140 struct sk_buff *skb; /* Frame being sent */
141 struct sk_buff_head skb_list; /* Queued frames */
142 /* Data handling callback */
143 void (*data)(struct gsm_dlci *dlci, u8 *data, int len);
144 void (*prev_data)(struct gsm_dlci *dlci, u8 *data, int len);
145 struct net_device *net; /* network interface, if created */
148 /* DLCI 0, 62/63 are special or reserved see gsmtty_open */
153 * DLCI 0 is used to pass control blocks out of band of the data
154 * flow (and with a higher link priority). One command can be outstanding
155 * at a time and we use this structure to manage them. They are created
156 * and destroyed by the user context, and updated by the receive paths
161 u8 cmd; /* Command we are issuing */
162 u8 *data; /* Data for the command in case we retransmit */
163 int len; /* Length of block for retransmission */
164 int done; /* Done flag */
165 int error; /* Error if any */
169 * Each GSM mux we have is represented by this structure. If we are
170 * operating as an ldisc then we use this structure as our ldisc
171 * state. We need to sort out lifetimes and locking with respect
172 * to the gsm mux array. For now we don't free DLCI objects that
173 * have been instantiated until the mux itself is terminated.
175 * To consider further: tty open versus mux shutdown.
179 struct tty_struct *tty; /* The tty our ldisc is bound to */
185 /* Events on the GSM channel */
186 wait_queue_head_t event;
188 /* Bits for GSM mode decoding */
195 #define GSM_ADDRESS 2
196 #define GSM_CONTROL 3
200 #define GSM_OVERRUN 7
205 unsigned int address;
212 u8 *txframe; /* TX framing buffer */
214 /* Methods for the receiver side */
215 void (*receive)(struct gsm_mux *gsm, u8 ch);
216 void (*error)(struct gsm_mux *gsm, u8 ch, u8 flag);
217 /* And transmit side */
218 int (*output)(struct gsm_mux *mux, u8 *data, int len);
223 int initiator; /* Did we initiate connection */
224 int dead; /* Has the mux been shut down */
225 struct gsm_dlci *dlci[NUM_DLCI];
226 int constipated; /* Asked by remote to shut up */
229 unsigned int tx_bytes; /* TX data outstanding */
230 #define TX_THRESH_HI 8192
231 #define TX_THRESH_LO 2048
232 struct list_head tx_list; /* Pending data packets */
234 /* Control messages */
235 struct timer_list t2_timer; /* Retransmit timer for commands */
236 int cretries; /* Command retry counter */
237 struct gsm_control *pending_cmd;/* Our current pending command */
238 spinlock_t control_lock; /* Protects the pending command */
241 int adaption; /* 1 or 2 supported */
242 u8 ftype; /* UI or UIH */
243 int t1, t2; /* Timers in 1/100th of a sec */
244 int n2; /* Retry count */
246 /* Statistics (not currently exposed) */
247 unsigned long bad_fcs;
248 unsigned long malformed;
249 unsigned long io_error;
250 unsigned long bad_size;
251 unsigned long unsupported;
256 * Mux objects - needed so that we can translate a tty index into the
257 * relevant mux and DLCI.
260 #define MAX_MUX 4 /* 256 minors */
261 static struct gsm_mux *gsm_mux[MAX_MUX]; /* GSM muxes */
262 static spinlock_t gsm_mux_lock;
264 static struct tty_driver *gsm_tty_driver;
267 * This section of the driver logic implements the GSM encodings
268 * both the basic and the 'advanced'. Reliable transport is not
276 /* I is special: the rest are ..*/
287 /* Channel commands */
289 #define CMD_TEST 0x11
292 #define CMD_FCOFF 0x31
295 #define CMD_FCON 0x51
300 /* Virtual modem bits */
307 #define GSM0_SOF 0xF9
308 #define GSM1_SOF 0x7E
309 #define GSM1_ESCAPE 0x7D
310 #define GSM1_ESCAPE_BITS 0x20
314 static const struct tty_port_operations gsm_port_ops;
317 * CRC table for GSM 0710
320 static const u8 gsm_fcs8[256] = {
321 0x00, 0x91, 0xE3, 0x72, 0x07, 0x96, 0xE4, 0x75,
322 0x0E, 0x9F, 0xED, 0x7C, 0x09, 0x98, 0xEA, 0x7B,
323 0x1C, 0x8D, 0xFF, 0x6E, 0x1B, 0x8A, 0xF8, 0x69,
324 0x12, 0x83, 0xF1, 0x60, 0x15, 0x84, 0xF6, 0x67,
325 0x38, 0xA9, 0xDB, 0x4A, 0x3F, 0xAE, 0xDC, 0x4D,
326 0x36, 0xA7, 0xD5, 0x44, 0x31, 0xA0, 0xD2, 0x43,
327 0x24, 0xB5, 0xC7, 0x56, 0x23, 0xB2, 0xC0, 0x51,
328 0x2A, 0xBB, 0xC9, 0x58, 0x2D, 0xBC, 0xCE, 0x5F,
329 0x70, 0xE1, 0x93, 0x02, 0x77, 0xE6, 0x94, 0x05,
330 0x7E, 0xEF, 0x9D, 0x0C, 0x79, 0xE8, 0x9A, 0x0B,
331 0x6C, 0xFD, 0x8F, 0x1E, 0x6B, 0xFA, 0x88, 0x19,
332 0x62, 0xF3, 0x81, 0x10, 0x65, 0xF4, 0x86, 0x17,
333 0x48, 0xD9, 0xAB, 0x3A, 0x4F, 0xDE, 0xAC, 0x3D,
334 0x46, 0xD7, 0xA5, 0x34, 0x41, 0xD0, 0xA2, 0x33,
335 0x54, 0xC5, 0xB7, 0x26, 0x53, 0xC2, 0xB0, 0x21,
336 0x5A, 0xCB, 0xB9, 0x28, 0x5D, 0xCC, 0xBE, 0x2F,
337 0xE0, 0x71, 0x03, 0x92, 0xE7, 0x76, 0x04, 0x95,
338 0xEE, 0x7F, 0x0D, 0x9C, 0xE9, 0x78, 0x0A, 0x9B,
339 0xFC, 0x6D, 0x1F, 0x8E, 0xFB, 0x6A, 0x18, 0x89,
340 0xF2, 0x63, 0x11, 0x80, 0xF5, 0x64, 0x16, 0x87,
341 0xD8, 0x49, 0x3B, 0xAA, 0xDF, 0x4E, 0x3C, 0xAD,
342 0xD6, 0x47, 0x35, 0xA4, 0xD1, 0x40, 0x32, 0xA3,
343 0xC4, 0x55, 0x27, 0xB6, 0xC3, 0x52, 0x20, 0xB1,
344 0xCA, 0x5B, 0x29, 0xB8, 0xCD, 0x5C, 0x2E, 0xBF,
345 0x90, 0x01, 0x73, 0xE2, 0x97, 0x06, 0x74, 0xE5,
346 0x9E, 0x0F, 0x7D, 0xEC, 0x99, 0x08, 0x7A, 0xEB,
347 0x8C, 0x1D, 0x6F, 0xFE, 0x8B, 0x1A, 0x68, 0xF9,
348 0x82, 0x13, 0x61, 0xF0, 0x85, 0x14, 0x66, 0xF7,
349 0xA8, 0x39, 0x4B, 0xDA, 0xAF, 0x3E, 0x4C, 0xDD,
350 0xA6, 0x37, 0x45, 0xD4, 0xA1, 0x30, 0x42, 0xD3,
351 0xB4, 0x25, 0x57, 0xC6, 0xB3, 0x22, 0x50, 0xC1,
352 0xBA, 0x2B, 0x59, 0xC8, 0xBD, 0x2C, 0x5E, 0xCF
355 #define INIT_FCS 0xFF
356 #define GOOD_FCS 0xCF
359 * gsm_fcs_add - update FCS
363 * Update the FCS to include c. Uses the algorithm in the specification
367 static inline u8 gsm_fcs_add(u8 fcs, u8 c)
369 return gsm_fcs8[fcs ^ c];
373 * gsm_fcs_add_block - update FCS for a block
376 * @len: length of buffer
378 * Update the FCS to include c. Uses the algorithm in the specification
382 static inline u8 gsm_fcs_add_block(u8 fcs, u8 *c, int len)
385 fcs = gsm_fcs8[fcs ^ *c++];
390 * gsm_read_ea - read a byte into an EA
391 * @val: variable holding value
392 * c: byte going into the EA
394 * Processes one byte of an EA. Updates the passed variable
395 * and returns 1 if the EA is now completely read
398 static int gsm_read_ea(unsigned int *val, u8 c)
400 /* Add the next 7 bits into the value */
403 /* Was this the last byte of the EA 1 = yes*/
408 * gsm_encode_modem - encode modem data bits
409 * @dlci: DLCI to encode from
411 * Returns the correct GSM encoded modem status bits (6 bit field) for
412 * the current status of the DLCI and attached tty object
415 static u8 gsm_encode_modem(const struct gsm_dlci *dlci)
418 /* FC is true flow control not modem bits */
421 if (dlci->modem_tx & TIOCM_DTR)
422 modembits |= MDM_RTC;
423 if (dlci->modem_tx & TIOCM_RTS)
424 modembits |= MDM_RTR;
425 if (dlci->modem_tx & TIOCM_RI)
427 if (dlci->modem_tx & TIOCM_CD)
433 * gsm_print_packet - display a frame for debug
434 * @hdr: header to print before decode
435 * @addr: address EA from the frame
436 * @cr: C/R bit from the frame
437 * @control: control including PF bit
438 * @data: following data bytes
439 * @dlen: length of data
441 * Displays a packet in human readable format for debugging purposes. The
442 * style is based on amateur radio LAP-B dump display.
445 static void gsm_print_packet(const char *hdr, int addr, int cr,
446 u8 control, const u8 *data, int dlen)
451 pr_info("%s %d) %c: ", hdr, addr, "RC"[cr]);
453 switch (control & ~PF) {
473 if (!(control & 0x01)) {
474 pr_cont("I N(S)%d N(R)%d",
475 (control & 0x0E) >> 1, (control & 0xE0) >> 5);
476 } else switch (control & 0x0F) {
478 pr_cont("RR(%d)", (control & 0xE0) >> 5);
481 pr_cont("RNR(%d)", (control & 0xE0) >> 5);
484 pr_cont("REJ(%d)", (control & 0xE0) >> 5);
487 pr_cont("[%02X]", control);
503 pr_cont("%02X ", *data++);
512 * Link level transmission side
516 * gsm_stuff_packet - bytestuff a packet
519 * @len: length of input
521 * Expand a buffer by bytestuffing it. The worst case size change
522 * is doubling and the caller is responsible for handing out
523 * suitable sized buffers.
526 static int gsm_stuff_frame(const u8 *input, u8 *output, int len)
530 if (*input == GSM1_SOF || *input == GSM1_ESCAPE
531 || *input == XON || *input == XOFF) {
532 *output++ = GSM1_ESCAPE;
533 *output++ = *input++ ^ GSM1_ESCAPE_BITS;
536 *output++ = *input++;
543 * gsm_send - send a control frame
545 * @addr: address for control frame
546 * @cr: command/response bit
547 * @control: control byte including PF bit
549 * Format up and transmit a control frame. These do not go via the
550 * queueing logic as they should be transmitted ahead of data when
553 * FIXME: Lock versus data TX path
556 static void gsm_send(struct gsm_mux *gsm, int addr, int cr, int control)
562 switch (gsm->encoding) {
565 cbuf[1] = (addr << 2) | (cr << 1) | EA;
567 cbuf[3] = EA; /* Length of data = 0 */
568 cbuf[4] = 0xFF - gsm_fcs_add_block(INIT_FCS, cbuf + 1, 3);
574 /* Control frame + packing (but not frame stuffing) in mode 1 */
575 ibuf[0] = (addr << 2) | (cr << 1) | EA;
577 ibuf[2] = 0xFF - gsm_fcs_add_block(INIT_FCS, ibuf, 2);
578 /* Stuffing may double the size worst case */
579 len = gsm_stuff_frame(ibuf, cbuf + 1, 3);
580 /* Now add the SOF markers */
582 cbuf[len + 1] = GSM1_SOF;
583 /* FIXME: we can omit the lead one in many cases */
590 gsm->output(gsm, cbuf, len);
591 gsm_print_packet("-->", addr, cr, control, NULL, 0);
595 * gsm_response - send a control response
597 * @addr: address for control frame
598 * @control: control byte including PF bit
600 * Format up and transmit a link level response frame.
603 static inline void gsm_response(struct gsm_mux *gsm, int addr, int control)
605 gsm_send(gsm, addr, 0, control);
609 * gsm_command - send a control command
611 * @addr: address for control frame
612 * @control: control byte including PF bit
614 * Format up and transmit a link level command frame.
617 static inline void gsm_command(struct gsm_mux *gsm, int addr, int control)
619 gsm_send(gsm, addr, 1, control);
622 /* Data transmission */
624 #define HDR_LEN 6 /* ADDR CTRL [LEN.2] DATA FCS */
627 * gsm_data_alloc - allocate data frame
629 * @addr: DLCI address
630 * @len: length excluding header and FCS
631 * @ctrl: control byte
633 * Allocate a new data buffer for sending frames with data. Space is left
634 * at the front for header bytes but that is treated as an implementation
635 * detail and not for the high level code to use
638 static struct gsm_msg *gsm_data_alloc(struct gsm_mux *gsm, u8 addr, int len,
641 struct gsm_msg *m = kmalloc(sizeof(struct gsm_msg) + len + HDR_LEN,
645 m->data = m->buffer + HDR_LEN - 1; /* Allow for FCS */
649 INIT_LIST_HEAD(&m->list);
654 * gsm_data_kick - poke the queue
657 * The tty device has called us to indicate that room has appeared in
658 * the transmit queue. Ram more data into the pipe if we have any
659 * If we have been flow-stopped by a CMD_FCOFF, then we can only
660 * send messages on DLCI0 until CMD_FCON
662 * FIXME: lock against link layer control transmissions
665 static void gsm_data_kick(struct gsm_mux *gsm)
667 struct gsm_msg *msg, *nmsg;
671 list_for_each_entry_safe(msg, nmsg, &gsm->tx_list, list) {
672 if (gsm->constipated && msg->addr)
674 if (gsm->encoding != 0) {
675 gsm->txframe[0] = GSM1_SOF;
676 len = gsm_stuff_frame(msg->data,
677 gsm->txframe + 1, msg->len);
678 gsm->txframe[len + 1] = GSM1_SOF;
681 gsm->txframe[0] = GSM0_SOF;
682 memcpy(gsm->txframe + 1 , msg->data, msg->len);
683 gsm->txframe[msg->len + 1] = GSM0_SOF;
688 print_hex_dump_bytes("gsm_data_kick: ",
692 if (gsm->output(gsm, gsm->txframe + skip_sof,
695 /* FIXME: Can eliminate one SOF in many more cases */
696 gsm->tx_bytes -= msg->len;
697 /* For a burst of frames skip the extra SOF within the
701 list_del(&msg->list);
707 * __gsm_data_queue - queue a UI or UIH frame
708 * @dlci: DLCI sending the data
709 * @msg: message queued
711 * Add data to the transmit queue and try and get stuff moving
712 * out of the mux tty if not already doing so. The Caller must hold
716 static void __gsm_data_queue(struct gsm_dlci *dlci, struct gsm_msg *msg)
718 struct gsm_mux *gsm = dlci->gsm;
720 u8 *fcs = dp + msg->len;
722 /* Fill in the header */
723 if (gsm->encoding == 0) {
725 *--dp = (msg->len << 1) | EA;
727 *--dp = (msg->len >> 7); /* bits 7 - 15 */
728 *--dp = (msg->len & 127) << 1; /* bits 0 - 6 */
734 *--dp = (msg->addr << 2) | 2 | EA;
736 *--dp = (msg->addr << 2) | EA;
737 *fcs = gsm_fcs_add_block(INIT_FCS, dp , msg->data - dp);
738 /* Ugly protocol layering violation */
739 if (msg->ctrl == UI || msg->ctrl == (UI|PF))
740 *fcs = gsm_fcs_add_block(*fcs, msg->data, msg->len);
743 gsm_print_packet("Q> ", msg->addr, gsm->initiator, msg->ctrl,
744 msg->data, msg->len);
746 /* Move the header back and adjust the length, also allow for the FCS
747 now tacked on the end */
748 msg->len += (msg->data - dp) + 1;
751 /* Add to the actual output queue */
752 list_add_tail(&msg->list, &gsm->tx_list);
753 gsm->tx_bytes += msg->len;
758 * gsm_data_queue - queue a UI or UIH frame
759 * @dlci: DLCI sending the data
760 * @msg: message queued
762 * Add data to the transmit queue and try and get stuff moving
763 * out of the mux tty if not already doing so. Take the
764 * the gsm tx lock and dlci lock.
767 static void gsm_data_queue(struct gsm_dlci *dlci, struct gsm_msg *msg)
770 spin_lock_irqsave(&dlci->gsm->tx_lock, flags);
771 __gsm_data_queue(dlci, msg);
772 spin_unlock_irqrestore(&dlci->gsm->tx_lock, flags);
776 * gsm_dlci_data_output - try and push data out of a DLCI
778 * @dlci: the DLCI to pull data from
780 * Pull data from a DLCI and send it into the transmit queue if there
781 * is data. Keep to the MRU of the mux. This path handles the usual tty
782 * interface which is a byte stream with optional modem data.
784 * Caller must hold the tx_lock of the mux.
787 static int gsm_dlci_data_output(struct gsm_mux *gsm, struct gsm_dlci *dlci)
791 int len, total_size, size;
792 int h = dlci->adaption - 1;
796 len = kfifo_len(dlci->fifo);
800 /* MTU/MRU count only the data bits */
806 msg = gsm_data_alloc(gsm, dlci->addr, size, gsm->ftype);
807 /* FIXME: need a timer or something to kick this so it can't
808 get stuck with no work outstanding and no buffer free */
812 switch (dlci->adaption) {
813 case 1: /* Unstructured */
815 case 2: /* Unstructed with modem bits.
816 Always one byte as we never send inline break data */
817 *dp++ = gsm_encode_modem(dlci);
820 WARN_ON(kfifo_out_locked(dlci->fifo, dp , len, &dlci->lock) != len);
821 __gsm_data_queue(dlci, msg);
824 /* Bytes of data we used up */
829 * gsm_dlci_data_output_framed - try and push data out of a DLCI
831 * @dlci: the DLCI to pull data from
833 * Pull data from a DLCI and send it into the transmit queue if there
834 * is data. Keep to the MRU of the mux. This path handles framed data
835 * queued as skbuffs to the DLCI.
837 * Caller must hold the tx_lock of the mux.
840 static int gsm_dlci_data_output_framed(struct gsm_mux *gsm,
841 struct gsm_dlci *dlci)
846 int last = 0, first = 0;
849 /* One byte per frame is used for B/F flags */
850 if (dlci->adaption == 4)
853 /* dlci->skb is locked by tx_lock */
854 if (dlci->skb == NULL) {
855 dlci->skb = skb_dequeue_tail(&dlci->skb_list);
856 if (dlci->skb == NULL)
860 len = dlci->skb->len + overhead;
862 /* MTU/MRU count only the data bits */
863 if (len > gsm->mtu) {
864 if (dlci->adaption == 3) {
865 /* Over long frame, bin it */
866 dev_kfree_skb_any(dlci->skb);
874 size = len + overhead;
875 msg = gsm_data_alloc(gsm, dlci->addr, size, gsm->ftype);
877 /* FIXME: need a timer or something to kick this so it can't
878 get stuck with no work outstanding and no buffer free */
880 skb_queue_tail(&dlci->skb_list, dlci->skb);
886 if (dlci->adaption == 4) { /* Interruptible framed (Packetised Data) */
887 /* Flag byte to carry the start/end info */
888 *dp++ = last << 7 | first << 6 | 1; /* EA */
891 memcpy(dp, dlci->skb->data, len);
892 skb_pull(dlci->skb, len);
893 __gsm_data_queue(dlci, msg);
895 dev_kfree_skb_any(dlci->skb);
902 * gsm_dlci_data_sweep - look for data to send
905 * Sweep the GSM mux channels in priority order looking for ones with
906 * data to send. We could do with optimising this scan a bit. We aim
907 * to fill the queue totally or up to TX_THRESH_HI bytes. Once we hit
908 * TX_THRESH_LO we get called again
910 * FIXME: We should round robin between groups and in theory you can
911 * renegotiate DLCI priorities with optional stuff. Needs optimising.
914 static void gsm_dlci_data_sweep(struct gsm_mux *gsm)
917 /* Priority ordering: We should do priority with RR of the groups */
920 while (i < NUM_DLCI) {
921 struct gsm_dlci *dlci;
923 if (gsm->tx_bytes > TX_THRESH_HI)
926 if (dlci == NULL || dlci->constipated) {
930 if (dlci->adaption < 3 && !dlci->net)
931 len = gsm_dlci_data_output(gsm, dlci);
933 len = gsm_dlci_data_output_framed(gsm, dlci);
936 /* DLCI empty - try the next */
943 * gsm_dlci_data_kick - transmit if possible
944 * @dlci: DLCI to kick
946 * Transmit data from this DLCI if the queue is empty. We can't rely on
947 * a tty wakeup except when we filled the pipe so we need to fire off
948 * new data ourselves in other cases.
951 static void gsm_dlci_data_kick(struct gsm_dlci *dlci)
956 if (dlci->constipated)
959 spin_lock_irqsave(&dlci->gsm->tx_lock, flags);
960 /* If we have nothing running then we need to fire up */
961 sweep = (dlci->gsm->tx_bytes < TX_THRESH_LO);
962 if (dlci->gsm->tx_bytes == 0) {
964 gsm_dlci_data_output_framed(dlci->gsm, dlci);
966 gsm_dlci_data_output(dlci->gsm, dlci);
969 gsm_dlci_data_sweep(dlci->gsm);
970 spin_unlock_irqrestore(&dlci->gsm->tx_lock, flags);
974 * Control message processing
979 * gsm_control_reply - send a response frame to a control
981 * @cmd: the command to use
982 * @data: data to follow encoded info
983 * @dlen: length of data
985 * Encode up and queue a UI/UIH frame containing our response.
988 static void gsm_control_reply(struct gsm_mux *gsm, int cmd, u8 *data,
992 msg = gsm_data_alloc(gsm, 0, dlen + 2, gsm->ftype);
995 msg->data[0] = (cmd & 0xFE) << 1 | EA; /* Clear C/R */
996 msg->data[1] = (dlen << 1) | EA;
997 memcpy(msg->data + 2, data, dlen);
998 gsm_data_queue(gsm->dlci[0], msg);
1002 * gsm_process_modem - process received modem status
1003 * @tty: virtual tty bound to the DLCI
1004 * @dlci: DLCI to affect
1005 * @modem: modem bits (full EA)
1007 * Used when a modem control message or line state inline in adaption
1008 * layer 2 is processed. Sort out the local modem state and throttles
1011 static void gsm_process_modem(struct tty_struct *tty, struct gsm_dlci *dlci,
1012 u32 modem, int clen)
1018 /* The modem status command can either contain one octet (v.24 signals)
1019 or two octets (v.24 signals + break signals). The length field will
1020 either be 2 or 3 respectively. This is specified in section
1021 5.4.6.3.7 of the 27.010 mux spec. */
1024 modem = modem & 0x7f;
1027 modem = (modem >> 7) & 0x7f;
1030 /* Flow control/ready to communicate */
1031 fc = (modem & MDM_FC) || !(modem & MDM_RTR);
1032 if (fc && !dlci->constipated) {
1033 /* Need to throttle our output on this device */
1034 dlci->constipated = 1;
1035 } else if (!fc && dlci->constipated) {
1036 dlci->constipated = 0;
1037 gsm_dlci_data_kick(dlci);
1040 /* Map modem bits */
1041 if (modem & MDM_RTC)
1042 mlines |= TIOCM_DSR | TIOCM_DTR;
1043 if (modem & MDM_RTR)
1044 mlines |= TIOCM_RTS | TIOCM_CTS;
1050 /* Carrier drop -> hangup */
1052 if ((mlines & TIOCM_CD) == 0 && (dlci->modem_rx & TIOCM_CD))
1057 tty_insert_flip_char(&dlci->port, 0, TTY_BREAK);
1058 dlci->modem_rx = mlines;
1062 * gsm_control_modem - modem status received
1064 * @data: data following command
1065 * @clen: command length
1067 * We have received a modem status control message. This is used by
1068 * the GSM mux protocol to pass virtual modem line status and optionally
1069 * to indicate break signals. Unpack it, convert to Linux representation
1070 * and if need be stuff a break message down the tty.
1073 static void gsm_control_modem(struct gsm_mux *gsm, u8 *data, int clen)
1075 unsigned int addr = 0;
1076 unsigned int modem = 0;
1077 unsigned int brk = 0;
1078 struct gsm_dlci *dlci;
1081 struct tty_struct *tty;
1083 while (gsm_read_ea(&addr, *dp++) == 0) {
1088 /* Must be at least one byte following the EA */
1094 /* Closed port, or invalid ? */
1095 if (addr == 0 || addr >= NUM_DLCI || gsm->dlci[addr] == NULL)
1097 dlci = gsm->dlci[addr];
1099 while (gsm_read_ea(&modem, *dp++) == 0) {
1106 while (gsm_read_ea(&brk, *dp++) == 0) {
1112 modem |= (brk & 0x7f);
1114 tty = tty_port_tty_get(&dlci->port);
1115 gsm_process_modem(tty, dlci, modem, clen);
1120 gsm_control_reply(gsm, CMD_MSC, data, clen);
1124 * gsm_control_rls - remote line status
1127 * @clen: data length
1129 * The modem sends us a two byte message on the control channel whenever
1130 * it wishes to send us an error state from the virtual link. Stuff
1131 * this into the uplink tty if present
1134 static void gsm_control_rls(struct gsm_mux *gsm, u8 *data, int clen)
1136 struct tty_port *port;
1137 unsigned int addr = 0;
1142 while (gsm_read_ea(&addr, *dp++) == 0) {
1147 /* Must be at least one byte following ea */
1152 /* Closed port, or invalid ? */
1153 if (addr == 0 || addr >= NUM_DLCI || gsm->dlci[addr] == NULL)
1157 if ((bits & 1) == 0)
1160 port = &gsm->dlci[addr]->port;
1163 tty_insert_flip_char(port, 0, TTY_OVERRUN);
1165 tty_insert_flip_char(port, 0, TTY_PARITY);
1167 tty_insert_flip_char(port, 0, TTY_FRAME);
1169 tty_flip_buffer_push(port);
1171 gsm_control_reply(gsm, CMD_RLS, data, clen);
1174 static void gsm_dlci_begin_close(struct gsm_dlci *dlci);
1177 * gsm_control_message - DLCI 0 control processing
1179 * @command: the command EA
1180 * @data: data beyond the command/length EAs
1183 * Input processor for control messages from the other end of the link.
1184 * Processes the incoming request and queues a response frame or an
1185 * NSC response if not supported
1188 static void gsm_control_message(struct gsm_mux *gsm, unsigned int command,
1192 unsigned long flags;
1196 struct gsm_dlci *dlci = gsm->dlci[0];
1197 /* Modem wishes to close down */
1201 gsm_dlci_begin_close(dlci);
1206 /* Modem wishes to test, reply with the data */
1207 gsm_control_reply(gsm, CMD_TEST, data, clen);
1210 /* Modem can accept data again */
1211 gsm->constipated = 0;
1212 gsm_control_reply(gsm, CMD_FCON, NULL, 0);
1213 /* Kick the link in case it is idling */
1214 spin_lock_irqsave(&gsm->tx_lock, flags);
1216 spin_unlock_irqrestore(&gsm->tx_lock, flags);
1219 /* Modem wants us to STFU */
1220 gsm->constipated = 1;
1221 gsm_control_reply(gsm, CMD_FCOFF, NULL, 0);
1224 /* Out of band modem line change indicator for a DLCI */
1225 gsm_control_modem(gsm, data, clen);
1228 /* Out of band error reception for a DLCI */
1229 gsm_control_rls(gsm, data, clen);
1232 /* Modem wishes to enter power saving state */
1233 gsm_control_reply(gsm, CMD_PSC, NULL, 0);
1235 /* Optional unsupported commands */
1236 case CMD_PN: /* Parameter negotiation */
1237 case CMD_RPN: /* Remote port negotiation */
1238 case CMD_SNC: /* Service negotiation command */
1240 /* Reply to bad commands with an NSC */
1242 gsm_control_reply(gsm, CMD_NSC, buf, 1);
1248 * gsm_control_response - process a response to our control
1250 * @command: the command (response) EA
1251 * @data: data beyond the command/length EA
1254 * Process a response to an outstanding command. We only allow a single
1255 * control message in flight so this is fairly easy. All the clean up
1256 * is done by the caller, we just update the fields, flag it as done
1260 static void gsm_control_response(struct gsm_mux *gsm, unsigned int command,
1263 struct gsm_control *ctrl;
1264 unsigned long flags;
1266 spin_lock_irqsave(&gsm->control_lock, flags);
1268 ctrl = gsm->pending_cmd;
1269 /* Does the reply match our command */
1271 if (ctrl != NULL && (command == ctrl->cmd || command == CMD_NSC)) {
1272 /* Our command was replied to, kill the retry timer */
1273 del_timer(&gsm->t2_timer);
1274 gsm->pending_cmd = NULL;
1275 /* Rejected by the other end */
1276 if (command == CMD_NSC)
1277 ctrl->error = -EOPNOTSUPP;
1279 wake_up(&gsm->event);
1281 spin_unlock_irqrestore(&gsm->control_lock, flags);
1285 * gsm_control_transmit - send control packet
1287 * @ctrl: frame to send
1289 * Send out a pending control command (called under control lock)
1292 static void gsm_control_transmit(struct gsm_mux *gsm, struct gsm_control *ctrl)
1294 struct gsm_msg *msg = gsm_data_alloc(gsm, 0, ctrl->len + 1, gsm->ftype);
1297 msg->data[0] = (ctrl->cmd << 1) | 2 | EA; /* command */
1298 memcpy(msg->data + 1, ctrl->data, ctrl->len);
1299 gsm_data_queue(gsm->dlci[0], msg);
1303 * gsm_control_retransmit - retransmit a control frame
1304 * @data: pointer to our gsm object
1306 * Called off the T2 timer expiry in order to retransmit control frames
1307 * that have been lost in the system somewhere. The control_lock protects
1308 * us from colliding with another sender or a receive completion event.
1309 * In that situation the timer may still occur in a small window but
1310 * gsm->pending_cmd will be NULL and we just let the timer expire.
1313 static void gsm_control_retransmit(struct timer_list *t)
1315 struct gsm_mux *gsm = from_timer(gsm, t, t2_timer);
1316 struct gsm_control *ctrl;
1317 unsigned long flags;
1318 spin_lock_irqsave(&gsm->control_lock, flags);
1319 ctrl = gsm->pending_cmd;
1322 if (gsm->cretries == 0) {
1323 gsm->pending_cmd = NULL;
1324 ctrl->error = -ETIMEDOUT;
1326 spin_unlock_irqrestore(&gsm->control_lock, flags);
1327 wake_up(&gsm->event);
1330 gsm_control_transmit(gsm, ctrl);
1331 mod_timer(&gsm->t2_timer, jiffies + gsm->t2 * HZ / 100);
1333 spin_unlock_irqrestore(&gsm->control_lock, flags);
1337 * gsm_control_send - send a control frame on DLCI 0
1338 * @gsm: the GSM channel
1339 * @command: command to send including CR bit
1340 * @data: bytes of data (must be kmalloced)
1341 * @len: length of the block to send
1343 * Queue and dispatch a control command. Only one command can be
1344 * active at a time. In theory more can be outstanding but the matching
1345 * gets really complicated so for now stick to one outstanding.
1348 static struct gsm_control *gsm_control_send(struct gsm_mux *gsm,
1349 unsigned int command, u8 *data, int clen)
1351 struct gsm_control *ctrl = kzalloc(sizeof(struct gsm_control),
1353 unsigned long flags;
1357 wait_event(gsm->event, gsm->pending_cmd == NULL);
1358 spin_lock_irqsave(&gsm->control_lock, flags);
1359 if (gsm->pending_cmd != NULL) {
1360 spin_unlock_irqrestore(&gsm->control_lock, flags);
1363 ctrl->cmd = command;
1366 gsm->pending_cmd = ctrl;
1367 gsm->cretries = gsm->n2;
1368 mod_timer(&gsm->t2_timer, jiffies + gsm->t2 * HZ / 100);
1369 gsm_control_transmit(gsm, ctrl);
1370 spin_unlock_irqrestore(&gsm->control_lock, flags);
1375 * gsm_control_wait - wait for a control to finish
1377 * @control: control we are waiting on
1379 * Waits for the control to complete or time out. Frees any used
1380 * resources and returns 0 for success, or an error if the remote
1381 * rejected or ignored the request.
1384 static int gsm_control_wait(struct gsm_mux *gsm, struct gsm_control *control)
1387 wait_event(gsm->event, control->done == 1);
1388 err = control->error;
1395 * DLCI level handling: Needs krefs
1399 * State transitions and timers
1403 * gsm_dlci_close - a DLCI has closed
1404 * @dlci: DLCI that closed
1406 * Perform processing when moving a DLCI into closed state. If there
1407 * is an attached tty this is hung up
1410 static void gsm_dlci_close(struct gsm_dlci *dlci)
1412 del_timer(&dlci->t1);
1414 pr_debug("DLCI %d goes closed.\n", dlci->addr);
1415 dlci->state = DLCI_CLOSED;
1416 if (dlci->addr != 0) {
1417 tty_port_tty_hangup(&dlci->port, false);
1418 kfifo_reset(dlci->fifo);
1420 dlci->gsm->dead = 1;
1421 wake_up(&dlci->gsm->event);
1422 /* A DLCI 0 close is a MUX termination so we need to kick that
1423 back to userspace somehow */
1427 * gsm_dlci_open - a DLCI has opened
1428 * @dlci: DLCI that opened
1430 * Perform processing when moving a DLCI into open state.
1433 static void gsm_dlci_open(struct gsm_dlci *dlci)
1435 /* Note that SABM UA .. SABM UA first UA lost can mean that we go
1437 del_timer(&dlci->t1);
1438 /* This will let a tty open continue */
1439 dlci->state = DLCI_OPEN;
1441 pr_debug("DLCI %d goes open.\n", dlci->addr);
1442 wake_up(&dlci->gsm->event);
1446 * gsm_dlci_t1 - T1 timer expiry
1447 * @dlci: DLCI that opened
1449 * The T1 timer handles retransmits of control frames (essentially of
1450 * SABM and DISC). We resend the command until the retry count runs out
1451 * in which case an opening port goes back to closed and a closing port
1452 * is simply put into closed state (any further frames from the other
1453 * end will get a DM response)
1456 static void gsm_dlci_t1(struct timer_list *t)
1458 struct gsm_dlci *dlci = from_timer(dlci, t, t1);
1459 struct gsm_mux *gsm = dlci->gsm;
1461 switch (dlci->state) {
1464 if (dlci->retries) {
1465 gsm_command(dlci->gsm, dlci->addr, SABM|PF);
1466 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1468 gsm_dlci_close(dlci);
1472 if (dlci->retries) {
1473 gsm_command(dlci->gsm, dlci->addr, DISC|PF);
1474 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1476 gsm_dlci_close(dlci);
1482 * gsm_dlci_begin_open - start channel open procedure
1483 * @dlci: DLCI to open
1485 * Commence opening a DLCI from the Linux side. We issue SABM messages
1486 * to the modem which should then reply with a UA, at which point we
1487 * will move into open state. Opening is done asynchronously with retry
1488 * running off timers and the responses.
1491 static void gsm_dlci_begin_open(struct gsm_dlci *dlci)
1493 struct gsm_mux *gsm = dlci->gsm;
1494 if (dlci->state == DLCI_OPEN || dlci->state == DLCI_OPENING)
1496 dlci->retries = gsm->n2;
1497 dlci->state = DLCI_OPENING;
1498 gsm_command(dlci->gsm, dlci->addr, SABM|PF);
1499 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1503 * gsm_dlci_begin_close - start channel open procedure
1504 * @dlci: DLCI to open
1506 * Commence closing a DLCI from the Linux side. We issue DISC messages
1507 * to the modem which should then reply with a UA, at which point we
1508 * will move into closed state. Closing is done asynchronously with retry
1509 * off timers. We may also receive a DM reply from the other end which
1510 * indicates the channel was already closed.
1513 static void gsm_dlci_begin_close(struct gsm_dlci *dlci)
1515 struct gsm_mux *gsm = dlci->gsm;
1516 if (dlci->state == DLCI_CLOSED || dlci->state == DLCI_CLOSING)
1518 dlci->retries = gsm->n2;
1519 dlci->state = DLCI_CLOSING;
1520 gsm_command(dlci->gsm, dlci->addr, DISC|PF);
1521 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1525 * gsm_dlci_data - data arrived
1527 * @data: block of bytes received
1528 * @len: length of received block
1530 * A UI or UIH frame has arrived which contains data for a channel
1531 * other than the control channel. If the relevant virtual tty is
1532 * open we shovel the bits down it, if not we drop them.
1535 static void gsm_dlci_data(struct gsm_dlci *dlci, u8 *data, int clen)
1538 struct tty_port *port = &dlci->port;
1539 struct tty_struct *tty;
1540 unsigned int modem = 0;
1544 pr_debug("%d bytes for tty\n", len);
1545 switch (dlci->adaption) {
1546 /* Unsupported types */
1547 /* Packetised interruptible data */
1550 /* Packetised uininterruptible voice/data */
1553 /* Asynchronous serial with line state in each frame */
1555 while (gsm_read_ea(&modem, *data++) == 0) {
1560 tty = tty_port_tty_get(port);
1562 gsm_process_modem(tty, dlci, modem, clen);
1565 /* Line state will go via DLCI 0 controls only */
1568 tty_insert_flip_string(port, data, len);
1569 tty_flip_buffer_push(port);
1574 * gsm_dlci_control - data arrived on control channel
1576 * @data: block of bytes received
1577 * @len: length of received block
1579 * A UI or UIH frame has arrived which contains data for DLCI 0 the
1580 * control channel. This should contain a command EA followed by
1581 * control data bytes. The command EA contains a command/response bit
1582 * and we divide up the work accordingly.
1585 static void gsm_dlci_command(struct gsm_dlci *dlci, u8 *data, int len)
1587 /* See what command is involved */
1588 unsigned int command = 0;
1590 if (gsm_read_ea(&command, *data++) == 1) {
1593 /* FIXME: this is properly an EA */
1595 /* Malformed command ? */
1599 gsm_control_message(dlci->gsm, command,
1602 gsm_control_response(dlci->gsm, command,
1610 * Allocate/Free DLCI channels
1614 * gsm_dlci_alloc - allocate a DLCI
1616 * @addr: address of the DLCI
1618 * Allocate and install a new DLCI object into the GSM mux.
1620 * FIXME: review locking races
1623 static struct gsm_dlci *gsm_dlci_alloc(struct gsm_mux *gsm, int addr)
1625 struct gsm_dlci *dlci = kzalloc(sizeof(struct gsm_dlci), GFP_ATOMIC);
1628 spin_lock_init(&dlci->lock);
1629 mutex_init(&dlci->mutex);
1630 dlci->fifo = &dlci->_fifo;
1631 if (kfifo_alloc(&dlci->_fifo, 4096, GFP_KERNEL) < 0) {
1636 skb_queue_head_init(&dlci->skb_list);
1637 timer_setup(&dlci->t1, gsm_dlci_t1, 0);
1638 tty_port_init(&dlci->port);
1639 dlci->port.ops = &gsm_port_ops;
1642 dlci->adaption = gsm->adaption;
1643 dlci->state = DLCI_CLOSED;
1645 dlci->data = gsm_dlci_data;
1647 dlci->data = gsm_dlci_command;
1648 gsm->dlci[addr] = dlci;
1653 * gsm_dlci_free - free DLCI
1654 * @dlci: DLCI to free
1660 static void gsm_dlci_free(struct tty_port *port)
1662 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
1664 del_timer_sync(&dlci->t1);
1665 dlci->gsm->dlci[dlci->addr] = NULL;
1666 kfifo_free(dlci->fifo);
1667 while ((dlci->skb = skb_dequeue(&dlci->skb_list)))
1668 dev_kfree_skb(dlci->skb);
1672 static inline void dlci_get(struct gsm_dlci *dlci)
1674 tty_port_get(&dlci->port);
1677 static inline void dlci_put(struct gsm_dlci *dlci)
1679 tty_port_put(&dlci->port);
1682 static void gsm_destroy_network(struct gsm_dlci *dlci);
1685 * gsm_dlci_release - release DLCI
1686 * @dlci: DLCI to destroy
1688 * Release a DLCI. Actual free is deferred until either
1689 * mux is closed or tty is closed - whichever is last.
1693 static void gsm_dlci_release(struct gsm_dlci *dlci)
1695 struct tty_struct *tty = tty_port_tty_get(&dlci->port);
1697 mutex_lock(&dlci->mutex);
1698 gsm_destroy_network(dlci);
1699 mutex_unlock(&dlci->mutex);
1703 tty_port_tty_set(&dlci->port, NULL);
1706 dlci->state = DLCI_CLOSED;
1711 * LAPBish link layer logic
1715 * gsm_queue - a GSM frame is ready to process
1716 * @gsm: pointer to our gsm mux
1718 * At this point in time a frame has arrived and been demangled from
1719 * the line encoding. All the differences between the encodings have
1720 * been handled below us and the frame is unpacked into the structures.
1721 * The fcs holds the header FCS but any data FCS must be added here.
1724 static void gsm_queue(struct gsm_mux *gsm)
1726 struct gsm_dlci *dlci;
1729 /* We have to sneak a look at the packet body to do the FCS.
1730 A somewhat layering violation in the spec */
1732 if ((gsm->control & ~PF) == UI)
1733 gsm->fcs = gsm_fcs_add_block(gsm->fcs, gsm->buf, gsm->len);
1734 if (gsm->encoding == 0) {
1735 /* WARNING: gsm->received_fcs is used for
1736 gsm->encoding = 0 only.
1737 In this case it contain the last piece of data
1738 required to generate final CRC */
1739 gsm->fcs = gsm_fcs_add(gsm->fcs, gsm->received_fcs);
1741 if (gsm->fcs != GOOD_FCS) {
1744 pr_debug("BAD FCS %02x\n", gsm->fcs);
1747 address = gsm->address >> 1;
1748 if (address >= NUM_DLCI)
1751 cr = gsm->address & 1; /* C/R bit */
1753 gsm_print_packet("<--", address, cr, gsm->control, gsm->buf, gsm->len);
1755 cr ^= 1 - gsm->initiator; /* Flip so 1 always means command */
1756 dlci = gsm->dlci[address];
1758 switch (gsm->control) {
1763 dlci = gsm_dlci_alloc(gsm, address);
1767 gsm_response(gsm, address, DM);
1769 gsm_response(gsm, address, UA);
1770 gsm_dlci_open(dlci);
1776 if (dlci == NULL || dlci->state == DLCI_CLOSED) {
1777 gsm_response(gsm, address, DM);
1780 /* Real close complete */
1781 gsm_response(gsm, address, UA);
1782 gsm_dlci_close(dlci);
1786 if (cr == 0 || dlci == NULL)
1788 switch (dlci->state) {
1790 gsm_dlci_close(dlci);
1793 gsm_dlci_open(dlci);
1797 case DM: /* DM can be valid unsolicited */
1803 gsm_dlci_close(dlci);
1813 if (dlci == NULL || dlci->state != DLCI_OPEN) {
1814 gsm_command(gsm, address, DM|PF);
1817 dlci->data(dlci, gsm->buf, gsm->len);
1830 * gsm0_receive - perform processing for non-transparency
1831 * @gsm: gsm data for this ldisc instance
1834 * Receive bytes in gsm mode 0
1837 static void gsm0_receive(struct gsm_mux *gsm, unsigned char c)
1841 switch (gsm->state) {
1842 case GSM_SEARCH: /* SOF marker */
1843 if (c == GSM0_SOF) {
1844 gsm->state = GSM_ADDRESS;
1847 gsm->fcs = INIT_FCS;
1850 case GSM_ADDRESS: /* Address EA */
1851 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1852 if (gsm_read_ea(&gsm->address, c))
1853 gsm->state = GSM_CONTROL;
1855 case GSM_CONTROL: /* Control Byte */
1856 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1858 gsm->state = GSM_LEN0;
1860 case GSM_LEN0: /* Length EA */
1861 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1862 if (gsm_read_ea(&gsm->len, c)) {
1863 if (gsm->len > gsm->mru) {
1865 gsm->state = GSM_SEARCH;
1870 gsm->state = GSM_FCS;
1872 gsm->state = GSM_DATA;
1875 gsm->state = GSM_LEN1;
1878 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1880 gsm->len |= len << 7;
1881 if (gsm->len > gsm->mru) {
1883 gsm->state = GSM_SEARCH;
1888 gsm->state = GSM_FCS;
1890 gsm->state = GSM_DATA;
1892 case GSM_DATA: /* Data */
1893 gsm->buf[gsm->count++] = c;
1894 if (gsm->count == gsm->len)
1895 gsm->state = GSM_FCS;
1897 case GSM_FCS: /* FCS follows the packet */
1898 gsm->received_fcs = c;
1900 gsm->state = GSM_SSOF;
1903 if (c == GSM0_SOF) {
1904 gsm->state = GSM_SEARCH;
1912 * gsm1_receive - perform processing for non-transparency
1913 * @gsm: gsm data for this ldisc instance
1916 * Receive bytes in mode 1 (Advanced option)
1919 static void gsm1_receive(struct gsm_mux *gsm, unsigned char c)
1921 if (c == GSM1_SOF) {
1922 /* EOF is only valid in frame if we have got to the data state
1923 and received at least one byte (the FCS) */
1924 if (gsm->state == GSM_DATA && gsm->count) {
1925 /* Extract the FCS */
1927 gsm->fcs = gsm_fcs_add(gsm->fcs, gsm->buf[gsm->count]);
1928 gsm->len = gsm->count;
1930 gsm->state = GSM_START;
1933 /* Any partial frame was a runt so go back to start */
1934 if (gsm->state != GSM_START) {
1936 gsm->state = GSM_START;
1938 /* A SOF in GSM_START means we are still reading idling or
1943 if (c == GSM1_ESCAPE) {
1948 /* Only an unescaped SOF gets us out of GSM search */
1949 if (gsm->state == GSM_SEARCH)
1953 c ^= GSM1_ESCAPE_BITS;
1956 switch (gsm->state) {
1957 case GSM_START: /* First byte after SOF */
1959 gsm->state = GSM_ADDRESS;
1960 gsm->fcs = INIT_FCS;
1962 case GSM_ADDRESS: /* Address continuation */
1963 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1964 if (gsm_read_ea(&gsm->address, c))
1965 gsm->state = GSM_CONTROL;
1967 case GSM_CONTROL: /* Control Byte */
1968 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1971 gsm->state = GSM_DATA;
1973 case GSM_DATA: /* Data */
1974 if (gsm->count > gsm->mru) { /* Allow one for the FCS */
1975 gsm->state = GSM_OVERRUN;
1978 gsm->buf[gsm->count++] = c;
1980 case GSM_OVERRUN: /* Over-long - eg a dropped SOF */
1986 * gsm_error - handle tty error
1988 * @data: byte received (may be invalid)
1989 * @flag: error received
1991 * Handle an error in the receipt of data for a frame. Currently we just
1992 * go back to hunting for a SOF.
1994 * FIXME: better diagnostics ?
1997 static void gsm_error(struct gsm_mux *gsm,
1998 unsigned char data, unsigned char flag)
2000 gsm->state = GSM_SEARCH;
2004 static int gsm_disconnect(struct gsm_mux *gsm)
2006 struct gsm_dlci *dlci = gsm->dlci[0];
2007 struct gsm_control *gc;
2012 /* In theory disconnecting DLCI 0 is sufficient but for some
2013 modems this is apparently not the case. */
2014 gc = gsm_control_send(gsm, CMD_CLD, NULL, 0);
2016 gsm_control_wait(gsm, gc);
2018 del_timer_sync(&gsm->t2_timer);
2019 /* Now we are sure T2 has stopped */
2021 gsm_dlci_begin_close(dlci);
2022 wait_event_interruptible(gsm->event,
2023 dlci->state == DLCI_CLOSED);
2025 if (signal_pending(current))
2032 * gsm_cleanup_mux - generic GSM protocol cleanup
2035 * Clean up the bits of the mux which are the same for all framing
2036 * protocols. Remove the mux from the mux table, stop all the timers
2037 * and then shut down each device hanging up the channels as we go.
2040 static void gsm_cleanup_mux(struct gsm_mux *gsm)
2043 struct gsm_dlci *dlci = gsm->dlci[0];
2044 struct gsm_msg *txq, *ntxq;
2048 spin_lock(&gsm_mux_lock);
2049 for (i = 0; i < MAX_MUX; i++) {
2050 if (gsm_mux[i] == gsm) {
2055 spin_unlock(&gsm_mux_lock);
2056 /* open failed before registering => nothing to do */
2060 del_timer_sync(&gsm->t2_timer);
2061 /* Now we are sure T2 has stopped */
2065 /* Free up any link layer users */
2066 mutex_lock(&gsm->mutex);
2067 for (i = 0; i < NUM_DLCI; i++)
2069 gsm_dlci_release(gsm->dlci[i]);
2070 mutex_unlock(&gsm->mutex);
2071 /* Now wipe the queues */
2072 list_for_each_entry_safe(txq, ntxq, &gsm->tx_list, list)
2074 INIT_LIST_HEAD(&gsm->tx_list);
2078 * gsm_activate_mux - generic GSM setup
2081 * Set up the bits of the mux which are the same for all framing
2082 * protocols. Add the mux to the mux table so it can be opened and
2083 * finally kick off connecting to DLCI 0 on the modem.
2086 static int gsm_activate_mux(struct gsm_mux *gsm)
2088 struct gsm_dlci *dlci;
2091 timer_setup(&gsm->t2_timer, gsm_control_retransmit, 0);
2092 init_waitqueue_head(&gsm->event);
2093 spin_lock_init(&gsm->control_lock);
2094 spin_lock_init(&gsm->tx_lock);
2096 if (gsm->encoding == 0)
2097 gsm->receive = gsm0_receive;
2099 gsm->receive = gsm1_receive;
2100 gsm->error = gsm_error;
2102 spin_lock(&gsm_mux_lock);
2103 for (i = 0; i < MAX_MUX; i++) {
2104 if (gsm_mux[i] == NULL) {
2110 spin_unlock(&gsm_mux_lock);
2114 dlci = gsm_dlci_alloc(gsm, 0);
2117 gsm->dead = 0; /* Tty opens are now permissible */
2122 * gsm_free_mux - free up a mux
2125 * Dispose of allocated resources for a dead mux
2127 static void gsm_free_mux(struct gsm_mux *gsm)
2129 kfree(gsm->txframe);
2135 * gsm_free_muxr - free up a mux
2138 * Dispose of allocated resources for a dead mux
2140 static void gsm_free_muxr(struct kref *ref)
2142 struct gsm_mux *gsm = container_of(ref, struct gsm_mux, ref);
2146 static inline void mux_get(struct gsm_mux *gsm)
2148 kref_get(&gsm->ref);
2151 static inline void mux_put(struct gsm_mux *gsm)
2153 kref_put(&gsm->ref, gsm_free_muxr);
2157 * gsm_alloc_mux - allocate a mux
2159 * Creates a new mux ready for activation.
2162 static struct gsm_mux *gsm_alloc_mux(void)
2164 struct gsm_mux *gsm = kzalloc(sizeof(struct gsm_mux), GFP_KERNEL);
2167 gsm->buf = kmalloc(MAX_MRU + 1, GFP_KERNEL);
2168 if (gsm->buf == NULL) {
2172 gsm->txframe = kmalloc(2 * MAX_MRU + 2, GFP_KERNEL);
2173 if (gsm->txframe == NULL) {
2178 spin_lock_init(&gsm->lock);
2179 mutex_init(&gsm->mutex);
2180 kref_init(&gsm->ref);
2181 INIT_LIST_HEAD(&gsm->tx_list);
2189 gsm->mru = 64; /* Default to encoding 1 so these should be 64 */
2191 gsm->dead = 1; /* Avoid early tty opens */
2197 * gsmld_output - write to link
2199 * @data: bytes to output
2202 * Write a block of data from the GSM mux to the data channel. This
2203 * will eventually be serialized from above but at the moment isn't.
2206 static int gsmld_output(struct gsm_mux *gsm, u8 *data, int len)
2208 if (tty_write_room(gsm->tty) < len) {
2209 set_bit(TTY_DO_WRITE_WAKEUP, &gsm->tty->flags);
2213 print_hex_dump_bytes("gsmld_output: ", DUMP_PREFIX_OFFSET,
2215 gsm->tty->ops->write(gsm->tty, data, len);
2220 * gsmld_attach_gsm - mode set up
2221 * @tty: our tty structure
2224 * Set up the MUX for basic mode and commence connecting to the
2225 * modem. Currently called from the line discipline set up but
2226 * will need moving to an ioctl path.
2229 static int gsmld_attach_gsm(struct tty_struct *tty, struct gsm_mux *gsm)
2233 gsm->tty = tty_kref_get(tty);
2234 gsm->output = gsmld_output;
2235 ret = gsm_activate_mux(gsm);
2237 tty_kref_put(gsm->tty);
2239 /* Don't register device 0 - this is the control channel and not
2240 a usable tty interface */
2241 base = gsm->num << 6; /* Base for this MUX */
2242 for (i = 1; i < NUM_DLCI; i++)
2243 tty_register_device(gsm_tty_driver, base + i, NULL);
2250 * gsmld_detach_gsm - stop doing 0710 mux
2251 * @tty: tty attached to the mux
2254 * Shutdown and then clean up the resources used by the line discipline
2257 static void gsmld_detach_gsm(struct tty_struct *tty, struct gsm_mux *gsm)
2260 int base = gsm->num << 6; /* Base for this MUX */
2262 WARN_ON(tty != gsm->tty);
2263 for (i = 1; i < NUM_DLCI; i++)
2264 tty_unregister_device(gsm_tty_driver, base + i);
2265 gsm_cleanup_mux(gsm);
2266 tty_kref_put(gsm->tty);
2270 static void gsmld_receive_buf(struct tty_struct *tty, const unsigned char *cp,
2271 char *fp, int count)
2273 struct gsm_mux *gsm = tty->disc_data;
2274 const unsigned char *dp;
2277 char flags = TTY_NORMAL;
2280 print_hex_dump_bytes("gsmld_receive: ", DUMP_PREFIX_OFFSET,
2283 for (i = count, dp = cp, f = fp; i; i--, dp++) {
2288 gsm->receive(gsm, *dp);
2294 gsm->error(gsm, *dp, flags);
2297 WARN_ONCE(1, "%s: unknown flag %d\n",
2298 tty_name(tty), flags);
2302 /* FASYNC if needed ? */
2303 /* If clogged call tty_throttle(tty); */
2307 * gsmld_flush_buffer - clean input queue
2308 * @tty: terminal device
2310 * Flush the input buffer. Called when the line discipline is
2311 * being closed, when the tty layer wants the buffer flushed (eg
2315 static void gsmld_flush_buffer(struct tty_struct *tty)
2320 * gsmld_close - close the ldisc for this tty
2323 * Called from the terminal layer when this line discipline is
2324 * being shut down, either because of a close or becsuse of a
2325 * discipline change. The function will not be called while other
2326 * ldisc methods are in progress.
2329 static void gsmld_close(struct tty_struct *tty)
2331 struct gsm_mux *gsm = tty->disc_data;
2333 gsmld_detach_gsm(tty, gsm);
2335 gsmld_flush_buffer(tty);
2336 /* Do other clean up here */
2341 * gsmld_open - open an ldisc
2342 * @tty: terminal to open
2344 * Called when this line discipline is being attached to the
2345 * terminal device. Can sleep. Called serialized so that no
2346 * other events will occur in parallel. No further open will occur
2350 static int gsmld_open(struct tty_struct *tty)
2352 struct gsm_mux *gsm;
2355 if (tty->ops->write == NULL)
2358 /* Attach our ldisc data */
2359 gsm = gsm_alloc_mux();
2363 tty->disc_data = gsm;
2364 tty->receive_room = 65536;
2366 /* Attach the initial passive connection */
2369 ret = gsmld_attach_gsm(tty, gsm);
2371 gsm_cleanup_mux(gsm);
2378 * gsmld_write_wakeup - asynchronous I/O notifier
2381 * Required for the ptys, serial driver etc. since processes
2382 * that attach themselves to the master and rely on ASYNC
2383 * IO must be woken up
2386 static void gsmld_write_wakeup(struct tty_struct *tty)
2388 struct gsm_mux *gsm = tty->disc_data;
2389 unsigned long flags;
2392 clear_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
2393 spin_lock_irqsave(&gsm->tx_lock, flags);
2395 if (gsm->tx_bytes < TX_THRESH_LO) {
2396 gsm_dlci_data_sweep(gsm);
2398 spin_unlock_irqrestore(&gsm->tx_lock, flags);
2402 * gsmld_read - read function for tty
2404 * @file: file object
2405 * @buf: userspace buffer pointer
2408 * Perform reads for the line discipline. We are guaranteed that the
2409 * line discipline will not be closed under us but we may get multiple
2410 * parallel readers and must handle this ourselves. We may also get
2411 * a hangup. Always called in user context, may sleep.
2413 * This code must be sure never to sleep through a hangup.
2416 static ssize_t gsmld_read(struct tty_struct *tty, struct file *file,
2417 unsigned char __user *buf, size_t nr)
2423 * gsmld_write - write function for tty
2425 * @file: file object
2426 * @buf: userspace buffer pointer
2429 * Called when the owner of the device wants to send a frame
2430 * itself (or some other control data). The data is transferred
2431 * as-is and must be properly framed and checksummed as appropriate
2432 * by userspace. Frames are either sent whole or not at all as this
2433 * avoids pain user side.
2436 static ssize_t gsmld_write(struct tty_struct *tty, struct file *file,
2437 const unsigned char *buf, size_t nr)
2439 int space = tty_write_room(tty);
2441 return tty->ops->write(tty, buf, nr);
2442 set_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
2447 * gsmld_poll - poll method for N_GSM0710
2448 * @tty: terminal device
2449 * @file: file accessing it
2452 * Called when the line discipline is asked to poll() for data or
2453 * for special events. This code is not serialized with respect to
2454 * other events save open/close.
2456 * This code must be sure never to sleep through a hangup.
2457 * Called without the kernel lock held - fine
2460 static unsigned int gsmld_poll(struct tty_struct *tty, struct file *file,
2463 unsigned int mask = 0;
2464 struct gsm_mux *gsm = tty->disc_data;
2466 poll_wait(file, &tty->read_wait, wait);
2467 poll_wait(file, &tty->write_wait, wait);
2468 if (tty_hung_up_p(file))
2470 if (!tty_is_writelocked(tty) && tty_write_room(tty) > 0)
2471 mask |= POLLOUT | POLLWRNORM;
2477 static int gsmld_config(struct tty_struct *tty, struct gsm_mux *gsm,
2478 struct gsm_config *c)
2481 int need_restart = 0;
2483 /* Stuff we don't support yet - UI or I frame transport, windowing */
2484 if ((c->adaption != 1 && c->adaption != 2) || c->k)
2486 /* Check the MRU/MTU range looks sane */
2487 if (c->mru > MAX_MRU || c->mtu > MAX_MTU || c->mru < 8 || c->mtu < 8)
2491 if (c->encapsulation > 1) /* Basic, advanced, no I */
2493 if (c->initiator > 1)
2495 if (c->i == 0 || c->i > 2) /* UIH and UI only */
2498 * See what is needed for reconfiguration
2502 if (c->t1 != 0 && c->t1 != gsm->t1)
2504 if (c->t2 != 0 && c->t2 != gsm->t2)
2506 if (c->encapsulation != gsm->encoding)
2508 if (c->adaption != gsm->adaption)
2511 if (c->initiator != gsm->initiator)
2513 if (c->mru != gsm->mru)
2515 if (c->mtu != gsm->mtu)
2519 * Close down what is needed, restart and initiate the new
2523 if (need_close || need_restart) {
2526 ret = gsm_disconnect(gsm);
2532 gsm_cleanup_mux(gsm);
2534 gsm->initiator = c->initiator;
2537 gsm->encoding = c->encapsulation;
2538 gsm->adaption = c->adaption;
2551 /* FIXME: We need to separate activation/deactivation from adding
2552 and removing from the mux array */
2554 gsm_activate_mux(gsm);
2555 if (gsm->initiator && need_close)
2556 gsm_dlci_begin_open(gsm->dlci[0]);
2560 static int gsmld_ioctl(struct tty_struct *tty, struct file *file,
2561 unsigned int cmd, unsigned long arg)
2563 struct gsm_config c;
2564 struct gsm_mux *gsm = tty->disc_data;
2567 case GSMIOC_GETCONF:
2568 memset(&c, 0, sizeof(c));
2569 c.adaption = gsm->adaption;
2570 c.encapsulation = gsm->encoding;
2571 c.initiator = gsm->initiator;
2574 c.t3 = 0; /* Not supported */
2576 if (gsm->ftype == UIH)
2580 pr_debug("Ftype %d i %d\n", gsm->ftype, c.i);
2584 if (copy_to_user((void *)arg, &c, sizeof(c)))
2587 case GSMIOC_SETCONF:
2588 if (copy_from_user(&c, (void *)arg, sizeof(c)))
2590 return gsmld_config(tty, gsm, &c);
2592 return n_tty_ioctl_helper(tty, file, cmd, arg);
2596 #ifdef CONFIG_COMPAT
2597 static long gsmld_compat_ioctl(struct tty_struct *tty, struct file *file,
2598 unsigned int cmd, unsigned long arg)
2600 return gsmld_ioctl(tty, file, cmd, arg);
2609 static int gsm_mux_net_open(struct net_device *net)
2611 pr_debug("%s called\n", __func__);
2612 netif_start_queue(net);
2616 static int gsm_mux_net_close(struct net_device *net)
2618 netif_stop_queue(net);
2622 static void dlci_net_free(struct gsm_dlci *dlci)
2628 dlci->adaption = dlci->prev_adaption;
2629 dlci->data = dlci->prev_data;
2630 free_netdev(dlci->net);
2633 static void net_free(struct kref *ref)
2635 struct gsm_mux_net *mux_net;
2636 struct gsm_dlci *dlci;
2638 mux_net = container_of(ref, struct gsm_mux_net, ref);
2639 dlci = mux_net->dlci;
2642 unregister_netdev(dlci->net);
2643 dlci_net_free(dlci);
2647 static inline void muxnet_get(struct gsm_mux_net *mux_net)
2649 kref_get(&mux_net->ref);
2652 static inline void muxnet_put(struct gsm_mux_net *mux_net)
2654 kref_put(&mux_net->ref, net_free);
2657 static int gsm_mux_net_start_xmit(struct sk_buff *skb,
2658 struct net_device *net)
2660 struct gsm_mux_net *mux_net = netdev_priv(net);
2661 struct gsm_dlci *dlci = mux_net->dlci;
2662 muxnet_get(mux_net);
2664 skb_queue_head(&dlci->skb_list, skb);
2665 net->stats.tx_packets++;
2666 net->stats.tx_bytes += skb->len;
2667 gsm_dlci_data_kick(dlci);
2668 /* And tell the kernel when the last transmit started. */
2669 netif_trans_update(net);
2670 muxnet_put(mux_net);
2671 return NETDEV_TX_OK;
2674 /* called when a packet did not ack after watchdogtimeout */
2675 static void gsm_mux_net_tx_timeout(struct net_device *net)
2677 /* Tell syslog we are hosed. */
2678 dev_dbg(&net->dev, "Tx timed out.\n");
2680 /* Update statistics */
2681 net->stats.tx_errors++;
2684 static void gsm_mux_rx_netchar(struct gsm_dlci *dlci,
2685 unsigned char *in_buf, int size)
2687 struct net_device *net = dlci->net;
2688 struct sk_buff *skb;
2689 struct gsm_mux_net *mux_net = netdev_priv(net);
2690 muxnet_get(mux_net);
2692 /* Allocate an sk_buff */
2693 skb = dev_alloc_skb(size + NET_IP_ALIGN);
2695 /* We got no receive buffer. */
2696 net->stats.rx_dropped++;
2697 muxnet_put(mux_net);
2700 skb_reserve(skb, NET_IP_ALIGN);
2701 skb_put_data(skb, in_buf, size);
2704 skb->protocol = htons(ETH_P_IP);
2706 /* Ship it off to the kernel */
2709 /* update out statistics */
2710 net->stats.rx_packets++;
2711 net->stats.rx_bytes += size;
2712 muxnet_put(mux_net);
2716 static void gsm_mux_net_init(struct net_device *net)
2718 static const struct net_device_ops gsm_netdev_ops = {
2719 .ndo_open = gsm_mux_net_open,
2720 .ndo_stop = gsm_mux_net_close,
2721 .ndo_start_xmit = gsm_mux_net_start_xmit,
2722 .ndo_tx_timeout = gsm_mux_net_tx_timeout,
2725 net->netdev_ops = &gsm_netdev_ops;
2727 /* fill in the other fields */
2728 net->watchdog_timeo = GSM_NET_TX_TIMEOUT;
2729 net->flags = IFF_POINTOPOINT | IFF_NOARP | IFF_MULTICAST;
2730 net->type = ARPHRD_NONE;
2731 net->tx_queue_len = 10;
2735 /* caller holds the dlci mutex */
2736 static void gsm_destroy_network(struct gsm_dlci *dlci)
2738 struct gsm_mux_net *mux_net;
2740 pr_debug("destroy network interface");
2743 mux_net = netdev_priv(dlci->net);
2744 muxnet_put(mux_net);
2748 /* caller holds the dlci mutex */
2749 static int gsm_create_network(struct gsm_dlci *dlci, struct gsm_netconfig *nc)
2753 struct net_device *net;
2754 struct gsm_mux_net *mux_net;
2756 if (!capable(CAP_NET_ADMIN))
2759 /* Already in a non tty mode */
2760 if (dlci->adaption > 2)
2763 if (nc->protocol != htons(ETH_P_IP))
2764 return -EPROTONOSUPPORT;
2766 if (nc->adaption != 3 && nc->adaption != 4)
2767 return -EPROTONOSUPPORT;
2769 pr_debug("create network interface");
2772 if (nc->if_name[0] != '\0')
2773 netname = nc->if_name;
2774 net = alloc_netdev(sizeof(struct gsm_mux_net), netname,
2775 NET_NAME_UNKNOWN, gsm_mux_net_init);
2777 pr_err("alloc_netdev failed");
2780 net->mtu = dlci->gsm->mtu;
2782 net->max_mtu = dlci->gsm->mtu;
2783 mux_net = netdev_priv(net);
2784 mux_net->dlci = dlci;
2785 kref_init(&mux_net->ref);
2786 strncpy(nc->if_name, net->name, IFNAMSIZ); /* return net name */
2788 /* reconfigure dlci for network */
2789 dlci->prev_adaption = dlci->adaption;
2790 dlci->prev_data = dlci->data;
2791 dlci->adaption = nc->adaption;
2792 dlci->data = gsm_mux_rx_netchar;
2795 pr_debug("register netdev");
2796 retval = register_netdev(net);
2798 pr_err("network register fail %d\n", retval);
2799 dlci_net_free(dlci);
2802 return net->ifindex; /* return network index */
2805 /* Line discipline for real tty */
2806 static struct tty_ldisc_ops tty_ldisc_packet = {
2807 .owner = THIS_MODULE,
2808 .magic = TTY_LDISC_MAGIC,
2811 .close = gsmld_close,
2812 .flush_buffer = gsmld_flush_buffer,
2814 .write = gsmld_write,
2815 #ifdef CONFIG_COMPAT
2816 .compat_ioctl = gsmld_compat_ioctl,
2818 .ioctl = gsmld_ioctl,
2820 .receive_buf = gsmld_receive_buf,
2821 .write_wakeup = gsmld_write_wakeup
2830 static int gsmtty_modem_update(struct gsm_dlci *dlci, u8 brk)
2833 struct gsm_control *ctrl;
2839 modembits[0] = len << 1 | EA; /* Data bytes */
2840 modembits[1] = dlci->addr << 2 | 3; /* DLCI, EA, 1 */
2841 modembits[2] = gsm_encode_modem(dlci) << 1 | EA;
2843 modembits[3] = brk << 4 | 2 | EA; /* Valid, EA */
2844 ctrl = gsm_control_send(dlci->gsm, CMD_MSC, modembits, len + 1);
2847 return gsm_control_wait(dlci->gsm, ctrl);
2850 static int gsm_carrier_raised(struct tty_port *port)
2852 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
2853 /* Not yet open so no carrier info */
2854 if (dlci->state != DLCI_OPEN)
2858 return dlci->modem_rx & TIOCM_CD;
2861 static void gsm_dtr_rts(struct tty_port *port, int onoff)
2863 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
2864 unsigned int modem_tx = dlci->modem_tx;
2866 modem_tx |= TIOCM_DTR | TIOCM_RTS;
2868 modem_tx &= ~(TIOCM_DTR | TIOCM_RTS);
2869 if (modem_tx != dlci->modem_tx) {
2870 dlci->modem_tx = modem_tx;
2871 gsmtty_modem_update(dlci, 0);
2875 static const struct tty_port_operations gsm_port_ops = {
2876 .carrier_raised = gsm_carrier_raised,
2877 .dtr_rts = gsm_dtr_rts,
2878 .destruct = gsm_dlci_free,
2881 static int gsmtty_install(struct tty_driver *driver, struct tty_struct *tty)
2883 struct gsm_mux *gsm;
2884 struct gsm_dlci *dlci;
2885 unsigned int line = tty->index;
2886 unsigned int mux = line >> 6;
2894 /* FIXME: we need to lock gsm_mux for lifetimes of ttys eventually */
2895 if (gsm_mux[mux] == NULL)
2897 if (line == 0 || line > 61) /* 62/63 reserved */
2902 /* If DLCI 0 is not yet fully open return an error.
2903 This is ok from a locking
2904 perspective as we don't have to worry about this
2906 mutex_lock(&gsm->mutex);
2907 if (gsm->dlci[0] && gsm->dlci[0]->state != DLCI_OPEN) {
2908 mutex_unlock(&gsm->mutex);
2911 dlci = gsm->dlci[line];
2914 dlci = gsm_dlci_alloc(gsm, line);
2917 mutex_unlock(&gsm->mutex);
2920 ret = tty_port_install(&dlci->port, driver, tty);
2924 mutex_unlock(&gsm->mutex);
2929 dlci_get(gsm->dlci[0]);
2931 tty->driver_data = dlci;
2932 mutex_unlock(&gsm->mutex);
2937 static int gsmtty_open(struct tty_struct *tty, struct file *filp)
2939 struct gsm_dlci *dlci = tty->driver_data;
2940 struct tty_port *port = &dlci->port;
2943 tty_port_tty_set(port, tty);
2946 /* We could in theory open and close before we wait - eg if we get
2947 a DM straight back. This is ok as that will have caused a hangup */
2948 tty_port_set_initialized(port, 1);
2949 /* Start sending off SABM messages */
2950 gsm_dlci_begin_open(dlci);
2951 /* And wait for virtual carrier */
2952 return tty_port_block_til_ready(port, tty, filp);
2955 static void gsmtty_close(struct tty_struct *tty, struct file *filp)
2957 struct gsm_dlci *dlci = tty->driver_data;
2958 struct gsm_mux *gsm;
2962 if (dlci->state == DLCI_CLOSED)
2964 mutex_lock(&dlci->mutex);
2965 gsm_destroy_network(dlci);
2966 mutex_unlock(&dlci->mutex);
2968 if (tty_port_close_start(&dlci->port, tty, filp) == 0)
2970 gsm_dlci_begin_close(dlci);
2971 if (tty_port_initialized(&dlci->port) && C_HUPCL(tty))
2972 tty_port_lower_dtr_rts(&dlci->port);
2973 tty_port_close_end(&dlci->port, tty);
2974 tty_port_tty_set(&dlci->port, NULL);
2978 static void gsmtty_hangup(struct tty_struct *tty)
2980 struct gsm_dlci *dlci = tty->driver_data;
2981 if (dlci->state == DLCI_CLOSED)
2983 tty_port_hangup(&dlci->port);
2984 gsm_dlci_begin_close(dlci);
2987 static int gsmtty_write(struct tty_struct *tty, const unsigned char *buf,
2991 struct gsm_dlci *dlci = tty->driver_data;
2992 if (dlci->state == DLCI_CLOSED)
2994 /* Stuff the bytes into the fifo queue */
2995 sent = kfifo_in_locked(dlci->fifo, buf, len, &dlci->lock);
2996 /* Need to kick the channel */
2997 gsm_dlci_data_kick(dlci);
3001 static int gsmtty_write_room(struct tty_struct *tty)
3003 struct gsm_dlci *dlci = tty->driver_data;
3004 if (dlci->state == DLCI_CLOSED)
3006 return TX_SIZE - kfifo_len(dlci->fifo);
3009 static int gsmtty_chars_in_buffer(struct tty_struct *tty)
3011 struct gsm_dlci *dlci = tty->driver_data;
3012 if (dlci->state == DLCI_CLOSED)
3014 return kfifo_len(dlci->fifo);
3017 static void gsmtty_flush_buffer(struct tty_struct *tty)
3019 struct gsm_dlci *dlci = tty->driver_data;
3020 if (dlci->state == DLCI_CLOSED)
3022 /* Caution needed: If we implement reliable transport classes
3023 then the data being transmitted can't simply be junked once
3024 it has first hit the stack. Until then we can just blow it
3026 kfifo_reset(dlci->fifo);
3027 /* Need to unhook this DLCI from the transmit queue logic */
3030 static void gsmtty_wait_until_sent(struct tty_struct *tty, int timeout)
3032 /* The FIFO handles the queue so the kernel will do the right
3033 thing waiting on chars_in_buffer before calling us. No work
3037 static int gsmtty_tiocmget(struct tty_struct *tty)
3039 struct gsm_dlci *dlci = tty->driver_data;
3040 if (dlci->state == DLCI_CLOSED)
3042 return dlci->modem_rx;
3045 static int gsmtty_tiocmset(struct tty_struct *tty,
3046 unsigned int set, unsigned int clear)
3048 struct gsm_dlci *dlci = tty->driver_data;
3049 unsigned int modem_tx = dlci->modem_tx;
3051 if (dlci->state == DLCI_CLOSED)
3056 if (modem_tx != dlci->modem_tx) {
3057 dlci->modem_tx = modem_tx;
3058 return gsmtty_modem_update(dlci, 0);
3064 static int gsmtty_ioctl(struct tty_struct *tty,
3065 unsigned int cmd, unsigned long arg)
3067 struct gsm_dlci *dlci = tty->driver_data;
3068 struct gsm_netconfig nc;
3071 if (dlci->state == DLCI_CLOSED)
3074 case GSMIOC_ENABLE_NET:
3075 if (copy_from_user(&nc, (void __user *)arg, sizeof(nc)))
3077 nc.if_name[IFNAMSIZ-1] = '\0';
3078 /* return net interface index or error code */
3079 mutex_lock(&dlci->mutex);
3080 index = gsm_create_network(dlci, &nc);
3081 mutex_unlock(&dlci->mutex);
3082 if (copy_to_user((void __user *)arg, &nc, sizeof(nc)))
3085 case GSMIOC_DISABLE_NET:
3086 if (!capable(CAP_NET_ADMIN))
3088 mutex_lock(&dlci->mutex);
3089 gsm_destroy_network(dlci);
3090 mutex_unlock(&dlci->mutex);
3093 return -ENOIOCTLCMD;
3097 static void gsmtty_set_termios(struct tty_struct *tty, struct ktermios *old)
3099 struct gsm_dlci *dlci = tty->driver_data;
3100 if (dlci->state == DLCI_CLOSED)
3102 /* For the moment its fixed. In actual fact the speed information
3103 for the virtual channel can be propogated in both directions by
3104 the RPN control message. This however rapidly gets nasty as we
3105 then have to remap modem signals each way according to whether
3106 our virtual cable is null modem etc .. */
3107 tty_termios_copy_hw(&tty->termios, old);
3110 static void gsmtty_throttle(struct tty_struct *tty)
3112 struct gsm_dlci *dlci = tty->driver_data;
3113 if (dlci->state == DLCI_CLOSED)
3116 dlci->modem_tx &= ~TIOCM_DTR;
3117 dlci->throttled = 1;
3118 /* Send an MSC with DTR cleared */
3119 gsmtty_modem_update(dlci, 0);
3122 static void gsmtty_unthrottle(struct tty_struct *tty)
3124 struct gsm_dlci *dlci = tty->driver_data;
3125 if (dlci->state == DLCI_CLOSED)
3128 dlci->modem_tx |= TIOCM_DTR;
3129 dlci->throttled = 0;
3130 /* Send an MSC with DTR set */
3131 gsmtty_modem_update(dlci, 0);
3134 static int gsmtty_break_ctl(struct tty_struct *tty, int state)
3136 struct gsm_dlci *dlci = tty->driver_data;
3137 int encode = 0; /* Off */
3138 if (dlci->state == DLCI_CLOSED)
3141 if (state == -1) /* "On indefinitely" - we can't encode this
3144 else if (state > 0) {
3145 encode = state / 200; /* mS to encoding */
3147 encode = 0x0F; /* Best effort */
3149 return gsmtty_modem_update(dlci, encode);
3152 static void gsmtty_cleanup(struct tty_struct *tty)
3154 struct gsm_dlci *dlci = tty->driver_data;
3155 struct gsm_mux *gsm = dlci->gsm;
3158 dlci_put(gsm->dlci[0]);
3162 /* Virtual ttys for the demux */
3163 static const struct tty_operations gsmtty_ops = {
3164 .install = gsmtty_install,
3165 .open = gsmtty_open,
3166 .close = gsmtty_close,
3167 .write = gsmtty_write,
3168 .write_room = gsmtty_write_room,
3169 .chars_in_buffer = gsmtty_chars_in_buffer,
3170 .flush_buffer = gsmtty_flush_buffer,
3171 .ioctl = gsmtty_ioctl,
3172 .throttle = gsmtty_throttle,
3173 .unthrottle = gsmtty_unthrottle,
3174 .set_termios = gsmtty_set_termios,
3175 .hangup = gsmtty_hangup,
3176 .wait_until_sent = gsmtty_wait_until_sent,
3177 .tiocmget = gsmtty_tiocmget,
3178 .tiocmset = gsmtty_tiocmset,
3179 .break_ctl = gsmtty_break_ctl,
3180 .cleanup = gsmtty_cleanup,
3185 static int __init gsm_init(void)
3187 /* Fill in our line protocol discipline, and register it */
3188 int status = tty_register_ldisc(N_GSM0710, &tty_ldisc_packet);
3190 pr_err("n_gsm: can't register line discipline (err = %d)\n",
3195 gsm_tty_driver = alloc_tty_driver(256);
3196 if (!gsm_tty_driver) {
3197 tty_unregister_ldisc(N_GSM0710);
3198 pr_err("gsm_init: tty allocation failed.\n");
3201 gsm_tty_driver->driver_name = "gsmtty";
3202 gsm_tty_driver->name = "gsmtty";
3203 gsm_tty_driver->major = 0; /* Dynamic */
3204 gsm_tty_driver->minor_start = 0;
3205 gsm_tty_driver->type = TTY_DRIVER_TYPE_SERIAL;
3206 gsm_tty_driver->subtype = SERIAL_TYPE_NORMAL;
3207 gsm_tty_driver->flags = TTY_DRIVER_REAL_RAW | TTY_DRIVER_DYNAMIC_DEV
3208 | TTY_DRIVER_HARDWARE_BREAK;
3209 gsm_tty_driver->init_termios = tty_std_termios;
3211 gsm_tty_driver->init_termios.c_lflag &= ~ECHO;
3212 tty_set_operations(gsm_tty_driver, &gsmtty_ops);
3214 spin_lock_init(&gsm_mux_lock);
3216 if (tty_register_driver(gsm_tty_driver)) {
3217 put_tty_driver(gsm_tty_driver);
3218 tty_unregister_ldisc(N_GSM0710);
3219 pr_err("gsm_init: tty registration failed.\n");
3222 pr_debug("gsm_init: loaded as %d,%d.\n",
3223 gsm_tty_driver->major, gsm_tty_driver->minor_start);
3227 static void __exit gsm_exit(void)
3229 int status = tty_unregister_ldisc(N_GSM0710);
3231 pr_err("n_gsm: can't unregister line discipline (err = %d)\n",
3233 tty_unregister_driver(gsm_tty_driver);
3234 put_tty_driver(gsm_tty_driver);
3237 module_init(gsm_init);
3238 module_exit(gsm_exit);
3241 MODULE_LICENSE("GPL");
3242 MODULE_ALIAS_LDISC(N_GSM0710);
git.samba.org / sfrench / cifs-2.6.git / blob