162306a36Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0+ 262306a36Sopenharmony_ci/* 362306a36Sopenharmony_ci * inode.c -- user mode filesystem api for usb gadget controllers 462306a36Sopenharmony_ci * 562306a36Sopenharmony_ci * Copyright (C) 2003-2004 David Brownell 662306a36Sopenharmony_ci * Copyright (C) 2003 Agilent Technologies 762306a36Sopenharmony_ci */ 862306a36Sopenharmony_ci 962306a36Sopenharmony_ci 1062306a36Sopenharmony_ci/* #define VERBOSE_DEBUG */ 1162306a36Sopenharmony_ci 1262306a36Sopenharmony_ci#include <linux/init.h> 1362306a36Sopenharmony_ci#include <linux/module.h> 1462306a36Sopenharmony_ci#include <linux/fs.h> 1562306a36Sopenharmony_ci#include <linux/fs_context.h> 1662306a36Sopenharmony_ci#include <linux/pagemap.h> 1762306a36Sopenharmony_ci#include <linux/uts.h> 1862306a36Sopenharmony_ci#include <linux/wait.h> 1962306a36Sopenharmony_ci#include <linux/compiler.h> 2062306a36Sopenharmony_ci#include <linux/uaccess.h> 2162306a36Sopenharmony_ci#include <linux/sched.h> 2262306a36Sopenharmony_ci#include <linux/slab.h> 2362306a36Sopenharmony_ci#include <linux/poll.h> 2462306a36Sopenharmony_ci#include <linux/kthread.h> 2562306a36Sopenharmony_ci#include <linux/aio.h> 2662306a36Sopenharmony_ci#include <linux/uio.h> 2762306a36Sopenharmony_ci#include <linux/refcount.h> 2862306a36Sopenharmony_ci#include <linux/delay.h> 2962306a36Sopenharmony_ci#include <linux/device.h> 3062306a36Sopenharmony_ci#include <linux/moduleparam.h> 3162306a36Sopenharmony_ci 3262306a36Sopenharmony_ci#include <linux/usb/gadgetfs.h> 3362306a36Sopenharmony_ci#include <linux/usb/gadget.h> 3462306a36Sopenharmony_ci 3562306a36Sopenharmony_ci 3662306a36Sopenharmony_ci/* 3762306a36Sopenharmony_ci * The gadgetfs API maps each endpoint to a file descriptor so that you 3862306a36Sopenharmony_ci * can use standard synchronous read/write calls for I/O. There's some 3962306a36Sopenharmony_ci * O_NONBLOCK and O_ASYNC/FASYNC style i/o support. Example usermode 4062306a36Sopenharmony_ci * drivers show how this works in practice. You can also use AIO to 4162306a36Sopenharmony_ci * eliminate I/O gaps between requests, to help when streaming data. 4262306a36Sopenharmony_ci * 4362306a36Sopenharmony_ci * Key parts that must be USB-specific are protocols defining how the 4462306a36Sopenharmony_ci * read/write operations relate to the hardware state machines. There 4562306a36Sopenharmony_ci * are two types of files. One type is for the device, implementing ep0. 4662306a36Sopenharmony_ci * The other type is for each IN or OUT endpoint. In both cases, the 4762306a36Sopenharmony_ci * user mode driver must configure the hardware before using it. 4862306a36Sopenharmony_ci * 4962306a36Sopenharmony_ci * - First, dev_config() is called when /dev/gadget/$CHIP is configured 5062306a36Sopenharmony_ci * (by writing configuration and device descriptors). Afterwards it 5162306a36Sopenharmony_ci * may serve as a source of device events, used to handle all control 5262306a36Sopenharmony_ci * requests other than basic enumeration. 5362306a36Sopenharmony_ci * 5462306a36Sopenharmony_ci * - Then, after a SET_CONFIGURATION control request, ep_config() is 5562306a36Sopenharmony_ci * called when each /dev/gadget/ep* file is configured (by writing 5662306a36Sopenharmony_ci * endpoint descriptors). Afterwards these files are used to write() 5762306a36Sopenharmony_ci * IN data or to read() OUT data. To halt the endpoint, a "wrong 5862306a36Sopenharmony_ci * direction" request is issued (like reading an IN endpoint). 5962306a36Sopenharmony_ci * 6062306a36Sopenharmony_ci * Unlike "usbfs" the only ioctl()s are for things that are rare, and maybe 6162306a36Sopenharmony_ci * not possible on all hardware. For example, precise fault handling with 6262306a36Sopenharmony_ci * respect to data left in endpoint fifos after aborted operations; or 6362306a36Sopenharmony_ci * selective clearing of endpoint halts, to implement SET_INTERFACE. 6462306a36Sopenharmony_ci */ 6562306a36Sopenharmony_ci 6662306a36Sopenharmony_ci#define DRIVER_DESC "USB Gadget filesystem" 6762306a36Sopenharmony_ci#define DRIVER_VERSION "24 Aug 2004" 6862306a36Sopenharmony_ci 6962306a36Sopenharmony_cistatic const char driver_desc [] = DRIVER_DESC; 7062306a36Sopenharmony_cistatic const char shortname [] = "gadgetfs"; 7162306a36Sopenharmony_ci 7262306a36Sopenharmony_ciMODULE_DESCRIPTION (DRIVER_DESC); 7362306a36Sopenharmony_ciMODULE_AUTHOR ("David Brownell"); 7462306a36Sopenharmony_ciMODULE_LICENSE ("GPL"); 7562306a36Sopenharmony_ci 7662306a36Sopenharmony_cistatic int ep_open(struct inode *, struct file *); 7762306a36Sopenharmony_ci 7862306a36Sopenharmony_ci 7962306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 8062306a36Sopenharmony_ci 8162306a36Sopenharmony_ci#define GADGETFS_MAGIC 0xaee71ee7 8262306a36Sopenharmony_ci 8362306a36Sopenharmony_ci/* /dev/gadget/$CHIP represents ep0 and the whole device */ 8462306a36Sopenharmony_cienum ep0_state { 8562306a36Sopenharmony_ci /* DISABLED is the initial state. */ 8662306a36Sopenharmony_ci STATE_DEV_DISABLED = 0, 8762306a36Sopenharmony_ci 8862306a36Sopenharmony_ci /* Only one open() of /dev/gadget/$CHIP; only one file tracks 8962306a36Sopenharmony_ci * ep0/device i/o modes and binding to the controller. Driver 9062306a36Sopenharmony_ci * must always write descriptors to initialize the device, then 9162306a36Sopenharmony_ci * the device becomes UNCONNECTED until enumeration. 9262306a36Sopenharmony_ci */ 9362306a36Sopenharmony_ci STATE_DEV_OPENED, 9462306a36Sopenharmony_ci 9562306a36Sopenharmony_ci /* From then on, ep0 fd is in either of two basic modes: 9662306a36Sopenharmony_ci * - (UN)CONNECTED: read usb_gadgetfs_event(s) from it 9762306a36Sopenharmony_ci * - SETUP: read/write will transfer control data and succeed; 9862306a36Sopenharmony_ci * or if "wrong direction", performs protocol stall 9962306a36Sopenharmony_ci */ 10062306a36Sopenharmony_ci STATE_DEV_UNCONNECTED, 10162306a36Sopenharmony_ci STATE_DEV_CONNECTED, 10262306a36Sopenharmony_ci STATE_DEV_SETUP, 10362306a36Sopenharmony_ci 10462306a36Sopenharmony_ci /* UNBOUND means the driver closed ep0, so the device won't be 10562306a36Sopenharmony_ci * accessible again (DEV_DISABLED) until all fds are closed. 10662306a36Sopenharmony_ci */ 10762306a36Sopenharmony_ci STATE_DEV_UNBOUND, 10862306a36Sopenharmony_ci}; 10962306a36Sopenharmony_ci 11062306a36Sopenharmony_ci/* enough for the whole queue: most events invalidate others */ 11162306a36Sopenharmony_ci#define N_EVENT 5 11262306a36Sopenharmony_ci 11362306a36Sopenharmony_ci#define RBUF_SIZE 256 11462306a36Sopenharmony_ci 11562306a36Sopenharmony_cistruct dev_data { 11662306a36Sopenharmony_ci spinlock_t lock; 11762306a36Sopenharmony_ci refcount_t count; 11862306a36Sopenharmony_ci int udc_usage; 11962306a36Sopenharmony_ci enum ep0_state state; /* P: lock */ 12062306a36Sopenharmony_ci struct usb_gadgetfs_event event [N_EVENT]; 12162306a36Sopenharmony_ci unsigned ev_next; 12262306a36Sopenharmony_ci struct fasync_struct *fasync; 12362306a36Sopenharmony_ci u8 current_config; 12462306a36Sopenharmony_ci 12562306a36Sopenharmony_ci /* drivers reading ep0 MUST handle control requests (SETUP) 12662306a36Sopenharmony_ci * reported that way; else the host will time out. 12762306a36Sopenharmony_ci */ 12862306a36Sopenharmony_ci unsigned usermode_setup : 1, 12962306a36Sopenharmony_ci setup_in : 1, 13062306a36Sopenharmony_ci setup_can_stall : 1, 13162306a36Sopenharmony_ci setup_out_ready : 1, 13262306a36Sopenharmony_ci setup_out_error : 1, 13362306a36Sopenharmony_ci setup_abort : 1, 13462306a36Sopenharmony_ci gadget_registered : 1; 13562306a36Sopenharmony_ci unsigned setup_wLength; 13662306a36Sopenharmony_ci 13762306a36Sopenharmony_ci /* the rest is basically write-once */ 13862306a36Sopenharmony_ci struct usb_config_descriptor *config, *hs_config; 13962306a36Sopenharmony_ci struct usb_device_descriptor *dev; 14062306a36Sopenharmony_ci struct usb_request *req; 14162306a36Sopenharmony_ci struct usb_gadget *gadget; 14262306a36Sopenharmony_ci struct list_head epfiles; 14362306a36Sopenharmony_ci void *buf; 14462306a36Sopenharmony_ci wait_queue_head_t wait; 14562306a36Sopenharmony_ci struct super_block *sb; 14662306a36Sopenharmony_ci struct dentry *dentry; 14762306a36Sopenharmony_ci 14862306a36Sopenharmony_ci /* except this scratch i/o buffer for ep0 */ 14962306a36Sopenharmony_ci u8 rbuf[RBUF_SIZE]; 15062306a36Sopenharmony_ci}; 15162306a36Sopenharmony_ci 15262306a36Sopenharmony_cistatic inline void get_dev (struct dev_data *data) 15362306a36Sopenharmony_ci{ 15462306a36Sopenharmony_ci refcount_inc (&data->count); 15562306a36Sopenharmony_ci} 15662306a36Sopenharmony_ci 15762306a36Sopenharmony_cistatic void put_dev (struct dev_data *data) 15862306a36Sopenharmony_ci{ 15962306a36Sopenharmony_ci if (likely (!refcount_dec_and_test (&data->count))) 16062306a36Sopenharmony_ci return; 16162306a36Sopenharmony_ci /* needs no more cleanup */ 16262306a36Sopenharmony_ci BUG_ON (waitqueue_active (&data->wait)); 16362306a36Sopenharmony_ci kfree (data); 16462306a36Sopenharmony_ci} 16562306a36Sopenharmony_ci 16662306a36Sopenharmony_cistatic struct dev_data *dev_new (void) 16762306a36Sopenharmony_ci{ 16862306a36Sopenharmony_ci struct dev_data *dev; 16962306a36Sopenharmony_ci 17062306a36Sopenharmony_ci dev = kzalloc(sizeof(*dev), GFP_KERNEL); 17162306a36Sopenharmony_ci if (!dev) 17262306a36Sopenharmony_ci return NULL; 17362306a36Sopenharmony_ci dev->state = STATE_DEV_DISABLED; 17462306a36Sopenharmony_ci refcount_set (&dev->count, 1); 17562306a36Sopenharmony_ci spin_lock_init (&dev->lock); 17662306a36Sopenharmony_ci INIT_LIST_HEAD (&dev->epfiles); 17762306a36Sopenharmony_ci init_waitqueue_head (&dev->wait); 17862306a36Sopenharmony_ci return dev; 17962306a36Sopenharmony_ci} 18062306a36Sopenharmony_ci 18162306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 18262306a36Sopenharmony_ci 18362306a36Sopenharmony_ci/* other /dev/gadget/$ENDPOINT files represent endpoints */ 18462306a36Sopenharmony_cienum ep_state { 18562306a36Sopenharmony_ci STATE_EP_DISABLED = 0, 18662306a36Sopenharmony_ci STATE_EP_READY, 18762306a36Sopenharmony_ci STATE_EP_ENABLED, 18862306a36Sopenharmony_ci STATE_EP_UNBOUND, 18962306a36Sopenharmony_ci}; 19062306a36Sopenharmony_ci 19162306a36Sopenharmony_cistruct ep_data { 19262306a36Sopenharmony_ci struct mutex lock; 19362306a36Sopenharmony_ci enum ep_state state; 19462306a36Sopenharmony_ci refcount_t count; 19562306a36Sopenharmony_ci struct dev_data *dev; 19662306a36Sopenharmony_ci /* must hold dev->lock before accessing ep or req */ 19762306a36Sopenharmony_ci struct usb_ep *ep; 19862306a36Sopenharmony_ci struct usb_request *req; 19962306a36Sopenharmony_ci ssize_t status; 20062306a36Sopenharmony_ci char name [16]; 20162306a36Sopenharmony_ci struct usb_endpoint_descriptor desc, hs_desc; 20262306a36Sopenharmony_ci struct list_head epfiles; 20362306a36Sopenharmony_ci wait_queue_head_t wait; 20462306a36Sopenharmony_ci struct dentry *dentry; 20562306a36Sopenharmony_ci}; 20662306a36Sopenharmony_ci 20762306a36Sopenharmony_cistatic inline void get_ep (struct ep_data *data) 20862306a36Sopenharmony_ci{ 20962306a36Sopenharmony_ci refcount_inc (&data->count); 21062306a36Sopenharmony_ci} 21162306a36Sopenharmony_ci 21262306a36Sopenharmony_cistatic void put_ep (struct ep_data *data) 21362306a36Sopenharmony_ci{ 21462306a36Sopenharmony_ci if (likely (!refcount_dec_and_test (&data->count))) 21562306a36Sopenharmony_ci return; 21662306a36Sopenharmony_ci put_dev (data->dev); 21762306a36Sopenharmony_ci /* needs no more cleanup */ 21862306a36Sopenharmony_ci BUG_ON (!list_empty (&data->epfiles)); 21962306a36Sopenharmony_ci BUG_ON (waitqueue_active (&data->wait)); 22062306a36Sopenharmony_ci kfree (data); 22162306a36Sopenharmony_ci} 22262306a36Sopenharmony_ci 22362306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 22462306a36Sopenharmony_ci 22562306a36Sopenharmony_ci/* most "how to use the hardware" policy choices are in userspace: 22662306a36Sopenharmony_ci * mapping endpoint roles (which the driver needs) to the capabilities 22762306a36Sopenharmony_ci * which the usb controller has. most of those capabilities are exposed 22862306a36Sopenharmony_ci * implicitly, starting with the driver name and then endpoint names. 22962306a36Sopenharmony_ci */ 23062306a36Sopenharmony_ci 23162306a36Sopenharmony_cistatic const char *CHIP; 23262306a36Sopenharmony_cistatic DEFINE_MUTEX(sb_mutex); /* Serialize superblock operations */ 23362306a36Sopenharmony_ci 23462306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 23562306a36Sopenharmony_ci 23662306a36Sopenharmony_ci/* NOTE: don't use dev_printk calls before binding to the gadget 23762306a36Sopenharmony_ci * at the end of ep0 configuration, or after unbind. 23862306a36Sopenharmony_ci */ 23962306a36Sopenharmony_ci 24062306a36Sopenharmony_ci/* too wordy: dev_printk(level , &(d)->gadget->dev , fmt , ## args) */ 24162306a36Sopenharmony_ci#define xprintk(d,level,fmt,args...) \ 24262306a36Sopenharmony_ci printk(level "%s: " fmt , shortname , ## args) 24362306a36Sopenharmony_ci 24462306a36Sopenharmony_ci#ifdef DEBUG 24562306a36Sopenharmony_ci#define DBG(dev,fmt,args...) \ 24662306a36Sopenharmony_ci xprintk(dev , KERN_DEBUG , fmt , ## args) 24762306a36Sopenharmony_ci#else 24862306a36Sopenharmony_ci#define DBG(dev,fmt,args...) \ 24962306a36Sopenharmony_ci do { } while (0) 25062306a36Sopenharmony_ci#endif /* DEBUG */ 25162306a36Sopenharmony_ci 25262306a36Sopenharmony_ci#ifdef VERBOSE_DEBUG 25362306a36Sopenharmony_ci#define VDEBUG DBG 25462306a36Sopenharmony_ci#else 25562306a36Sopenharmony_ci#define VDEBUG(dev,fmt,args...) \ 25662306a36Sopenharmony_ci do { } while (0) 25762306a36Sopenharmony_ci#endif /* DEBUG */ 25862306a36Sopenharmony_ci 25962306a36Sopenharmony_ci#define ERROR(dev,fmt,args...) \ 26062306a36Sopenharmony_ci xprintk(dev , KERN_ERR , fmt , ## args) 26162306a36Sopenharmony_ci#define INFO(dev,fmt,args...) \ 26262306a36Sopenharmony_ci xprintk(dev , KERN_INFO , fmt , ## args) 26362306a36Sopenharmony_ci 26462306a36Sopenharmony_ci 26562306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 26662306a36Sopenharmony_ci 26762306a36Sopenharmony_ci/* SYNCHRONOUS ENDPOINT OPERATIONS (bulk/intr/iso) 26862306a36Sopenharmony_ci * 26962306a36Sopenharmony_ci * After opening, configure non-control endpoints. Then use normal 27062306a36Sopenharmony_ci * stream read() and write() requests; and maybe ioctl() to get more 27162306a36Sopenharmony_ci * precise FIFO status when recovering from cancellation. 27262306a36Sopenharmony_ci */ 27362306a36Sopenharmony_ci 27462306a36Sopenharmony_cistatic void epio_complete (struct usb_ep *ep, struct usb_request *req) 27562306a36Sopenharmony_ci{ 27662306a36Sopenharmony_ci struct ep_data *epdata = ep->driver_data; 27762306a36Sopenharmony_ci 27862306a36Sopenharmony_ci if (!req->context) 27962306a36Sopenharmony_ci return; 28062306a36Sopenharmony_ci if (req->status) 28162306a36Sopenharmony_ci epdata->status = req->status; 28262306a36Sopenharmony_ci else 28362306a36Sopenharmony_ci epdata->status = req->actual; 28462306a36Sopenharmony_ci complete ((struct completion *)req->context); 28562306a36Sopenharmony_ci} 28662306a36Sopenharmony_ci 28762306a36Sopenharmony_ci/* tasklock endpoint, returning when it's connected. 28862306a36Sopenharmony_ci * still need dev->lock to use epdata->ep. 28962306a36Sopenharmony_ci */ 29062306a36Sopenharmony_cistatic int 29162306a36Sopenharmony_ciget_ready_ep (unsigned f_flags, struct ep_data *epdata, bool is_write) 29262306a36Sopenharmony_ci{ 29362306a36Sopenharmony_ci int val; 29462306a36Sopenharmony_ci 29562306a36Sopenharmony_ci if (f_flags & O_NONBLOCK) { 29662306a36Sopenharmony_ci if (!mutex_trylock(&epdata->lock)) 29762306a36Sopenharmony_ci goto nonblock; 29862306a36Sopenharmony_ci if (epdata->state != STATE_EP_ENABLED && 29962306a36Sopenharmony_ci (!is_write || epdata->state != STATE_EP_READY)) { 30062306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 30162306a36Sopenharmony_cinonblock: 30262306a36Sopenharmony_ci val = -EAGAIN; 30362306a36Sopenharmony_ci } else 30462306a36Sopenharmony_ci val = 0; 30562306a36Sopenharmony_ci return val; 30662306a36Sopenharmony_ci } 30762306a36Sopenharmony_ci 30862306a36Sopenharmony_ci val = mutex_lock_interruptible(&epdata->lock); 30962306a36Sopenharmony_ci if (val < 0) 31062306a36Sopenharmony_ci return val; 31162306a36Sopenharmony_ci 31262306a36Sopenharmony_ci switch (epdata->state) { 31362306a36Sopenharmony_ci case STATE_EP_ENABLED: 31462306a36Sopenharmony_ci return 0; 31562306a36Sopenharmony_ci case STATE_EP_READY: /* not configured yet */ 31662306a36Sopenharmony_ci if (is_write) 31762306a36Sopenharmony_ci return 0; 31862306a36Sopenharmony_ci fallthrough; 31962306a36Sopenharmony_ci case STATE_EP_UNBOUND: /* clean disconnect */ 32062306a36Sopenharmony_ci break; 32162306a36Sopenharmony_ci // case STATE_EP_DISABLED: /* "can't happen" */ 32262306a36Sopenharmony_ci default: /* error! */ 32362306a36Sopenharmony_ci pr_debug ("%s: ep %p not available, state %d\n", 32462306a36Sopenharmony_ci shortname, epdata, epdata->state); 32562306a36Sopenharmony_ci } 32662306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 32762306a36Sopenharmony_ci return -ENODEV; 32862306a36Sopenharmony_ci} 32962306a36Sopenharmony_ci 33062306a36Sopenharmony_cistatic ssize_t 33162306a36Sopenharmony_ciep_io (struct ep_data *epdata, void *buf, unsigned len) 33262306a36Sopenharmony_ci{ 33362306a36Sopenharmony_ci DECLARE_COMPLETION_ONSTACK (done); 33462306a36Sopenharmony_ci int value; 33562306a36Sopenharmony_ci 33662306a36Sopenharmony_ci spin_lock_irq (&epdata->dev->lock); 33762306a36Sopenharmony_ci if (likely (epdata->ep != NULL)) { 33862306a36Sopenharmony_ci struct usb_request *req = epdata->req; 33962306a36Sopenharmony_ci 34062306a36Sopenharmony_ci req->context = &done; 34162306a36Sopenharmony_ci req->complete = epio_complete; 34262306a36Sopenharmony_ci req->buf = buf; 34362306a36Sopenharmony_ci req->length = len; 34462306a36Sopenharmony_ci value = usb_ep_queue (epdata->ep, req, GFP_ATOMIC); 34562306a36Sopenharmony_ci } else 34662306a36Sopenharmony_ci value = -ENODEV; 34762306a36Sopenharmony_ci spin_unlock_irq (&epdata->dev->lock); 34862306a36Sopenharmony_ci 34962306a36Sopenharmony_ci if (likely (value == 0)) { 35062306a36Sopenharmony_ci value = wait_for_completion_interruptible(&done); 35162306a36Sopenharmony_ci if (value != 0) { 35262306a36Sopenharmony_ci spin_lock_irq (&epdata->dev->lock); 35362306a36Sopenharmony_ci if (likely (epdata->ep != NULL)) { 35462306a36Sopenharmony_ci DBG (epdata->dev, "%s i/o interrupted\n", 35562306a36Sopenharmony_ci epdata->name); 35662306a36Sopenharmony_ci usb_ep_dequeue (epdata->ep, epdata->req); 35762306a36Sopenharmony_ci spin_unlock_irq (&epdata->dev->lock); 35862306a36Sopenharmony_ci 35962306a36Sopenharmony_ci wait_for_completion(&done); 36062306a36Sopenharmony_ci if (epdata->status == -ECONNRESET) 36162306a36Sopenharmony_ci epdata->status = -EINTR; 36262306a36Sopenharmony_ci } else { 36362306a36Sopenharmony_ci spin_unlock_irq (&epdata->dev->lock); 36462306a36Sopenharmony_ci 36562306a36Sopenharmony_ci DBG (epdata->dev, "endpoint gone\n"); 36662306a36Sopenharmony_ci wait_for_completion(&done); 36762306a36Sopenharmony_ci epdata->status = -ENODEV; 36862306a36Sopenharmony_ci } 36962306a36Sopenharmony_ci } 37062306a36Sopenharmony_ci return epdata->status; 37162306a36Sopenharmony_ci } 37262306a36Sopenharmony_ci return value; 37362306a36Sopenharmony_ci} 37462306a36Sopenharmony_ci 37562306a36Sopenharmony_cistatic int 37662306a36Sopenharmony_ciep_release (struct inode *inode, struct file *fd) 37762306a36Sopenharmony_ci{ 37862306a36Sopenharmony_ci struct ep_data *data = fd->private_data; 37962306a36Sopenharmony_ci int value; 38062306a36Sopenharmony_ci 38162306a36Sopenharmony_ci value = mutex_lock_interruptible(&data->lock); 38262306a36Sopenharmony_ci if (value < 0) 38362306a36Sopenharmony_ci return value; 38462306a36Sopenharmony_ci 38562306a36Sopenharmony_ci /* clean up if this can be reopened */ 38662306a36Sopenharmony_ci if (data->state != STATE_EP_UNBOUND) { 38762306a36Sopenharmony_ci data->state = STATE_EP_DISABLED; 38862306a36Sopenharmony_ci data->desc.bDescriptorType = 0; 38962306a36Sopenharmony_ci data->hs_desc.bDescriptorType = 0; 39062306a36Sopenharmony_ci usb_ep_disable(data->ep); 39162306a36Sopenharmony_ci } 39262306a36Sopenharmony_ci mutex_unlock(&data->lock); 39362306a36Sopenharmony_ci put_ep (data); 39462306a36Sopenharmony_ci return 0; 39562306a36Sopenharmony_ci} 39662306a36Sopenharmony_ci 39762306a36Sopenharmony_cistatic long ep_ioctl(struct file *fd, unsigned code, unsigned long value) 39862306a36Sopenharmony_ci{ 39962306a36Sopenharmony_ci struct ep_data *data = fd->private_data; 40062306a36Sopenharmony_ci int status; 40162306a36Sopenharmony_ci 40262306a36Sopenharmony_ci if ((status = get_ready_ep (fd->f_flags, data, false)) < 0) 40362306a36Sopenharmony_ci return status; 40462306a36Sopenharmony_ci 40562306a36Sopenharmony_ci spin_lock_irq (&data->dev->lock); 40662306a36Sopenharmony_ci if (likely (data->ep != NULL)) { 40762306a36Sopenharmony_ci switch (code) { 40862306a36Sopenharmony_ci case GADGETFS_FIFO_STATUS: 40962306a36Sopenharmony_ci status = usb_ep_fifo_status (data->ep); 41062306a36Sopenharmony_ci break; 41162306a36Sopenharmony_ci case GADGETFS_FIFO_FLUSH: 41262306a36Sopenharmony_ci usb_ep_fifo_flush (data->ep); 41362306a36Sopenharmony_ci break; 41462306a36Sopenharmony_ci case GADGETFS_CLEAR_HALT: 41562306a36Sopenharmony_ci status = usb_ep_clear_halt (data->ep); 41662306a36Sopenharmony_ci break; 41762306a36Sopenharmony_ci default: 41862306a36Sopenharmony_ci status = -ENOTTY; 41962306a36Sopenharmony_ci } 42062306a36Sopenharmony_ci } else 42162306a36Sopenharmony_ci status = -ENODEV; 42262306a36Sopenharmony_ci spin_unlock_irq (&data->dev->lock); 42362306a36Sopenharmony_ci mutex_unlock(&data->lock); 42462306a36Sopenharmony_ci return status; 42562306a36Sopenharmony_ci} 42662306a36Sopenharmony_ci 42762306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 42862306a36Sopenharmony_ci 42962306a36Sopenharmony_ci/* ASYNCHRONOUS ENDPOINT I/O OPERATIONS (bulk/intr/iso) */ 43062306a36Sopenharmony_ci 43162306a36Sopenharmony_cistruct kiocb_priv { 43262306a36Sopenharmony_ci struct usb_request *req; 43362306a36Sopenharmony_ci struct ep_data *epdata; 43462306a36Sopenharmony_ci struct kiocb *iocb; 43562306a36Sopenharmony_ci struct mm_struct *mm; 43662306a36Sopenharmony_ci struct work_struct work; 43762306a36Sopenharmony_ci void *buf; 43862306a36Sopenharmony_ci struct iov_iter to; 43962306a36Sopenharmony_ci const void *to_free; 44062306a36Sopenharmony_ci unsigned actual; 44162306a36Sopenharmony_ci}; 44262306a36Sopenharmony_ci 44362306a36Sopenharmony_cistatic int ep_aio_cancel(struct kiocb *iocb) 44462306a36Sopenharmony_ci{ 44562306a36Sopenharmony_ci struct kiocb_priv *priv = iocb->private; 44662306a36Sopenharmony_ci struct ep_data *epdata; 44762306a36Sopenharmony_ci int value; 44862306a36Sopenharmony_ci 44962306a36Sopenharmony_ci local_irq_disable(); 45062306a36Sopenharmony_ci epdata = priv->epdata; 45162306a36Sopenharmony_ci // spin_lock(&epdata->dev->lock); 45262306a36Sopenharmony_ci if (likely(epdata && epdata->ep && priv->req)) 45362306a36Sopenharmony_ci value = usb_ep_dequeue (epdata->ep, priv->req); 45462306a36Sopenharmony_ci else 45562306a36Sopenharmony_ci value = -EINVAL; 45662306a36Sopenharmony_ci // spin_unlock(&epdata->dev->lock); 45762306a36Sopenharmony_ci local_irq_enable(); 45862306a36Sopenharmony_ci 45962306a36Sopenharmony_ci return value; 46062306a36Sopenharmony_ci} 46162306a36Sopenharmony_ci 46262306a36Sopenharmony_cistatic void ep_user_copy_worker(struct work_struct *work) 46362306a36Sopenharmony_ci{ 46462306a36Sopenharmony_ci struct kiocb_priv *priv = container_of(work, struct kiocb_priv, work); 46562306a36Sopenharmony_ci struct mm_struct *mm = priv->mm; 46662306a36Sopenharmony_ci struct kiocb *iocb = priv->iocb; 46762306a36Sopenharmony_ci size_t ret; 46862306a36Sopenharmony_ci 46962306a36Sopenharmony_ci kthread_use_mm(mm); 47062306a36Sopenharmony_ci ret = copy_to_iter(priv->buf, priv->actual, &priv->to); 47162306a36Sopenharmony_ci kthread_unuse_mm(mm); 47262306a36Sopenharmony_ci if (!ret) 47362306a36Sopenharmony_ci ret = -EFAULT; 47462306a36Sopenharmony_ci 47562306a36Sopenharmony_ci /* completing the iocb can drop the ctx and mm, don't touch mm after */ 47662306a36Sopenharmony_ci iocb->ki_complete(iocb, ret); 47762306a36Sopenharmony_ci 47862306a36Sopenharmony_ci kfree(priv->buf); 47962306a36Sopenharmony_ci kfree(priv->to_free); 48062306a36Sopenharmony_ci kfree(priv); 48162306a36Sopenharmony_ci} 48262306a36Sopenharmony_ci 48362306a36Sopenharmony_cistatic void ep_aio_complete(struct usb_ep *ep, struct usb_request *req) 48462306a36Sopenharmony_ci{ 48562306a36Sopenharmony_ci struct kiocb *iocb = req->context; 48662306a36Sopenharmony_ci struct kiocb_priv *priv = iocb->private; 48762306a36Sopenharmony_ci struct ep_data *epdata = priv->epdata; 48862306a36Sopenharmony_ci 48962306a36Sopenharmony_ci /* lock against disconnect (and ideally, cancel) */ 49062306a36Sopenharmony_ci spin_lock(&epdata->dev->lock); 49162306a36Sopenharmony_ci priv->req = NULL; 49262306a36Sopenharmony_ci priv->epdata = NULL; 49362306a36Sopenharmony_ci 49462306a36Sopenharmony_ci /* if this was a write or a read returning no data then we 49562306a36Sopenharmony_ci * don't need to copy anything to userspace, so we can 49662306a36Sopenharmony_ci * complete the aio request immediately. 49762306a36Sopenharmony_ci */ 49862306a36Sopenharmony_ci if (priv->to_free == NULL || unlikely(req->actual == 0)) { 49962306a36Sopenharmony_ci kfree(req->buf); 50062306a36Sopenharmony_ci kfree(priv->to_free); 50162306a36Sopenharmony_ci kfree(priv); 50262306a36Sopenharmony_ci iocb->private = NULL; 50362306a36Sopenharmony_ci iocb->ki_complete(iocb, 50462306a36Sopenharmony_ci req->actual ? req->actual : (long)req->status); 50562306a36Sopenharmony_ci } else { 50662306a36Sopenharmony_ci /* ep_copy_to_user() won't report both; we hide some faults */ 50762306a36Sopenharmony_ci if (unlikely(0 != req->status)) 50862306a36Sopenharmony_ci DBG(epdata->dev, "%s fault %d len %d\n", 50962306a36Sopenharmony_ci ep->name, req->status, req->actual); 51062306a36Sopenharmony_ci 51162306a36Sopenharmony_ci priv->buf = req->buf; 51262306a36Sopenharmony_ci priv->actual = req->actual; 51362306a36Sopenharmony_ci INIT_WORK(&priv->work, ep_user_copy_worker); 51462306a36Sopenharmony_ci schedule_work(&priv->work); 51562306a36Sopenharmony_ci } 51662306a36Sopenharmony_ci 51762306a36Sopenharmony_ci usb_ep_free_request(ep, req); 51862306a36Sopenharmony_ci spin_unlock(&epdata->dev->lock); 51962306a36Sopenharmony_ci put_ep(epdata); 52062306a36Sopenharmony_ci} 52162306a36Sopenharmony_ci 52262306a36Sopenharmony_cistatic ssize_t ep_aio(struct kiocb *iocb, 52362306a36Sopenharmony_ci struct kiocb_priv *priv, 52462306a36Sopenharmony_ci struct ep_data *epdata, 52562306a36Sopenharmony_ci char *buf, 52662306a36Sopenharmony_ci size_t len) 52762306a36Sopenharmony_ci{ 52862306a36Sopenharmony_ci struct usb_request *req; 52962306a36Sopenharmony_ci ssize_t value; 53062306a36Sopenharmony_ci 53162306a36Sopenharmony_ci iocb->private = priv; 53262306a36Sopenharmony_ci priv->iocb = iocb; 53362306a36Sopenharmony_ci 53462306a36Sopenharmony_ci kiocb_set_cancel_fn(iocb, ep_aio_cancel); 53562306a36Sopenharmony_ci get_ep(epdata); 53662306a36Sopenharmony_ci priv->epdata = epdata; 53762306a36Sopenharmony_ci priv->actual = 0; 53862306a36Sopenharmony_ci priv->mm = current->mm; /* mm teardown waits for iocbs in exit_aio() */ 53962306a36Sopenharmony_ci 54062306a36Sopenharmony_ci /* each kiocb is coupled to one usb_request, but we can't 54162306a36Sopenharmony_ci * allocate or submit those if the host disconnected. 54262306a36Sopenharmony_ci */ 54362306a36Sopenharmony_ci spin_lock_irq(&epdata->dev->lock); 54462306a36Sopenharmony_ci value = -ENODEV; 54562306a36Sopenharmony_ci if (unlikely(epdata->ep == NULL)) 54662306a36Sopenharmony_ci goto fail; 54762306a36Sopenharmony_ci 54862306a36Sopenharmony_ci req = usb_ep_alloc_request(epdata->ep, GFP_ATOMIC); 54962306a36Sopenharmony_ci value = -ENOMEM; 55062306a36Sopenharmony_ci if (unlikely(!req)) 55162306a36Sopenharmony_ci goto fail; 55262306a36Sopenharmony_ci 55362306a36Sopenharmony_ci priv->req = req; 55462306a36Sopenharmony_ci req->buf = buf; 55562306a36Sopenharmony_ci req->length = len; 55662306a36Sopenharmony_ci req->complete = ep_aio_complete; 55762306a36Sopenharmony_ci req->context = iocb; 55862306a36Sopenharmony_ci value = usb_ep_queue(epdata->ep, req, GFP_ATOMIC); 55962306a36Sopenharmony_ci if (unlikely(0 != value)) { 56062306a36Sopenharmony_ci usb_ep_free_request(epdata->ep, req); 56162306a36Sopenharmony_ci goto fail; 56262306a36Sopenharmony_ci } 56362306a36Sopenharmony_ci spin_unlock_irq(&epdata->dev->lock); 56462306a36Sopenharmony_ci return -EIOCBQUEUED; 56562306a36Sopenharmony_ci 56662306a36Sopenharmony_cifail: 56762306a36Sopenharmony_ci spin_unlock_irq(&epdata->dev->lock); 56862306a36Sopenharmony_ci kfree(priv->to_free); 56962306a36Sopenharmony_ci kfree(priv); 57062306a36Sopenharmony_ci put_ep(epdata); 57162306a36Sopenharmony_ci return value; 57262306a36Sopenharmony_ci} 57362306a36Sopenharmony_ci 57462306a36Sopenharmony_cistatic ssize_t 57562306a36Sopenharmony_ciep_read_iter(struct kiocb *iocb, struct iov_iter *to) 57662306a36Sopenharmony_ci{ 57762306a36Sopenharmony_ci struct file *file = iocb->ki_filp; 57862306a36Sopenharmony_ci struct ep_data *epdata = file->private_data; 57962306a36Sopenharmony_ci size_t len = iov_iter_count(to); 58062306a36Sopenharmony_ci ssize_t value; 58162306a36Sopenharmony_ci char *buf; 58262306a36Sopenharmony_ci 58362306a36Sopenharmony_ci if ((value = get_ready_ep(file->f_flags, epdata, false)) < 0) 58462306a36Sopenharmony_ci return value; 58562306a36Sopenharmony_ci 58662306a36Sopenharmony_ci /* halt any endpoint by doing a "wrong direction" i/o call */ 58762306a36Sopenharmony_ci if (usb_endpoint_dir_in(&epdata->desc)) { 58862306a36Sopenharmony_ci if (usb_endpoint_xfer_isoc(&epdata->desc) || 58962306a36Sopenharmony_ci !is_sync_kiocb(iocb)) { 59062306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 59162306a36Sopenharmony_ci return -EINVAL; 59262306a36Sopenharmony_ci } 59362306a36Sopenharmony_ci DBG (epdata->dev, "%s halt\n", epdata->name); 59462306a36Sopenharmony_ci spin_lock_irq(&epdata->dev->lock); 59562306a36Sopenharmony_ci if (likely(epdata->ep != NULL)) 59662306a36Sopenharmony_ci usb_ep_set_halt(epdata->ep); 59762306a36Sopenharmony_ci spin_unlock_irq(&epdata->dev->lock); 59862306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 59962306a36Sopenharmony_ci return -EBADMSG; 60062306a36Sopenharmony_ci } 60162306a36Sopenharmony_ci 60262306a36Sopenharmony_ci buf = kmalloc(len, GFP_KERNEL); 60362306a36Sopenharmony_ci if (unlikely(!buf)) { 60462306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 60562306a36Sopenharmony_ci return -ENOMEM; 60662306a36Sopenharmony_ci } 60762306a36Sopenharmony_ci if (is_sync_kiocb(iocb)) { 60862306a36Sopenharmony_ci value = ep_io(epdata, buf, len); 60962306a36Sopenharmony_ci if (value >= 0 && (copy_to_iter(buf, value, to) != value)) 61062306a36Sopenharmony_ci value = -EFAULT; 61162306a36Sopenharmony_ci } else { 61262306a36Sopenharmony_ci struct kiocb_priv *priv = kzalloc(sizeof *priv, GFP_KERNEL); 61362306a36Sopenharmony_ci value = -ENOMEM; 61462306a36Sopenharmony_ci if (!priv) 61562306a36Sopenharmony_ci goto fail; 61662306a36Sopenharmony_ci priv->to_free = dup_iter(&priv->to, to, GFP_KERNEL); 61762306a36Sopenharmony_ci if (!iter_is_ubuf(&priv->to) && !priv->to_free) { 61862306a36Sopenharmony_ci kfree(priv); 61962306a36Sopenharmony_ci goto fail; 62062306a36Sopenharmony_ci } 62162306a36Sopenharmony_ci value = ep_aio(iocb, priv, epdata, buf, len); 62262306a36Sopenharmony_ci if (value == -EIOCBQUEUED) 62362306a36Sopenharmony_ci buf = NULL; 62462306a36Sopenharmony_ci } 62562306a36Sopenharmony_cifail: 62662306a36Sopenharmony_ci kfree(buf); 62762306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 62862306a36Sopenharmony_ci return value; 62962306a36Sopenharmony_ci} 63062306a36Sopenharmony_ci 63162306a36Sopenharmony_cistatic ssize_t ep_config(struct ep_data *, const char *, size_t); 63262306a36Sopenharmony_ci 63362306a36Sopenharmony_cistatic ssize_t 63462306a36Sopenharmony_ciep_write_iter(struct kiocb *iocb, struct iov_iter *from) 63562306a36Sopenharmony_ci{ 63662306a36Sopenharmony_ci struct file *file = iocb->ki_filp; 63762306a36Sopenharmony_ci struct ep_data *epdata = file->private_data; 63862306a36Sopenharmony_ci size_t len = iov_iter_count(from); 63962306a36Sopenharmony_ci bool configured; 64062306a36Sopenharmony_ci ssize_t value; 64162306a36Sopenharmony_ci char *buf; 64262306a36Sopenharmony_ci 64362306a36Sopenharmony_ci if ((value = get_ready_ep(file->f_flags, epdata, true)) < 0) 64462306a36Sopenharmony_ci return value; 64562306a36Sopenharmony_ci 64662306a36Sopenharmony_ci configured = epdata->state == STATE_EP_ENABLED; 64762306a36Sopenharmony_ci 64862306a36Sopenharmony_ci /* halt any endpoint by doing a "wrong direction" i/o call */ 64962306a36Sopenharmony_ci if (configured && !usb_endpoint_dir_in(&epdata->desc)) { 65062306a36Sopenharmony_ci if (usb_endpoint_xfer_isoc(&epdata->desc) || 65162306a36Sopenharmony_ci !is_sync_kiocb(iocb)) { 65262306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 65362306a36Sopenharmony_ci return -EINVAL; 65462306a36Sopenharmony_ci } 65562306a36Sopenharmony_ci DBG (epdata->dev, "%s halt\n", epdata->name); 65662306a36Sopenharmony_ci spin_lock_irq(&epdata->dev->lock); 65762306a36Sopenharmony_ci if (likely(epdata->ep != NULL)) 65862306a36Sopenharmony_ci usb_ep_set_halt(epdata->ep); 65962306a36Sopenharmony_ci spin_unlock_irq(&epdata->dev->lock); 66062306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 66162306a36Sopenharmony_ci return -EBADMSG; 66262306a36Sopenharmony_ci } 66362306a36Sopenharmony_ci 66462306a36Sopenharmony_ci buf = kmalloc(len, GFP_KERNEL); 66562306a36Sopenharmony_ci if (unlikely(!buf)) { 66662306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 66762306a36Sopenharmony_ci return -ENOMEM; 66862306a36Sopenharmony_ci } 66962306a36Sopenharmony_ci 67062306a36Sopenharmony_ci if (unlikely(!copy_from_iter_full(buf, len, from))) { 67162306a36Sopenharmony_ci value = -EFAULT; 67262306a36Sopenharmony_ci goto out; 67362306a36Sopenharmony_ci } 67462306a36Sopenharmony_ci 67562306a36Sopenharmony_ci if (unlikely(!configured)) { 67662306a36Sopenharmony_ci value = ep_config(epdata, buf, len); 67762306a36Sopenharmony_ci } else if (is_sync_kiocb(iocb)) { 67862306a36Sopenharmony_ci value = ep_io(epdata, buf, len); 67962306a36Sopenharmony_ci } else { 68062306a36Sopenharmony_ci struct kiocb_priv *priv = kzalloc(sizeof *priv, GFP_KERNEL); 68162306a36Sopenharmony_ci value = -ENOMEM; 68262306a36Sopenharmony_ci if (priv) { 68362306a36Sopenharmony_ci value = ep_aio(iocb, priv, epdata, buf, len); 68462306a36Sopenharmony_ci if (value == -EIOCBQUEUED) 68562306a36Sopenharmony_ci buf = NULL; 68662306a36Sopenharmony_ci } 68762306a36Sopenharmony_ci } 68862306a36Sopenharmony_ciout: 68962306a36Sopenharmony_ci kfree(buf); 69062306a36Sopenharmony_ci mutex_unlock(&epdata->lock); 69162306a36Sopenharmony_ci return value; 69262306a36Sopenharmony_ci} 69362306a36Sopenharmony_ci 69462306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 69562306a36Sopenharmony_ci 69662306a36Sopenharmony_ci/* used after endpoint configuration */ 69762306a36Sopenharmony_cistatic const struct file_operations ep_io_operations = { 69862306a36Sopenharmony_ci .owner = THIS_MODULE, 69962306a36Sopenharmony_ci 70062306a36Sopenharmony_ci .open = ep_open, 70162306a36Sopenharmony_ci .release = ep_release, 70262306a36Sopenharmony_ci .llseek = no_llseek, 70362306a36Sopenharmony_ci .unlocked_ioctl = ep_ioctl, 70462306a36Sopenharmony_ci .read_iter = ep_read_iter, 70562306a36Sopenharmony_ci .write_iter = ep_write_iter, 70662306a36Sopenharmony_ci}; 70762306a36Sopenharmony_ci 70862306a36Sopenharmony_ci/* ENDPOINT INITIALIZATION 70962306a36Sopenharmony_ci * 71062306a36Sopenharmony_ci * fd = open ("/dev/gadget/$ENDPOINT", O_RDWR) 71162306a36Sopenharmony_ci * status = write (fd, descriptors, sizeof descriptors) 71262306a36Sopenharmony_ci * 71362306a36Sopenharmony_ci * That write establishes the endpoint configuration, configuring 71462306a36Sopenharmony_ci * the controller to process bulk, interrupt, or isochronous transfers 71562306a36Sopenharmony_ci * at the right maxpacket size, and so on. 71662306a36Sopenharmony_ci * 71762306a36Sopenharmony_ci * The descriptors are message type 1, identified by a host order u32 71862306a36Sopenharmony_ci * at the beginning of what's written. Descriptor order is: full/low 71962306a36Sopenharmony_ci * speed descriptor, then optional high speed descriptor. 72062306a36Sopenharmony_ci */ 72162306a36Sopenharmony_cistatic ssize_t 72262306a36Sopenharmony_ciep_config (struct ep_data *data, const char *buf, size_t len) 72362306a36Sopenharmony_ci{ 72462306a36Sopenharmony_ci struct usb_ep *ep; 72562306a36Sopenharmony_ci u32 tag; 72662306a36Sopenharmony_ci int value, length = len; 72762306a36Sopenharmony_ci 72862306a36Sopenharmony_ci if (data->state != STATE_EP_READY) { 72962306a36Sopenharmony_ci value = -EL2HLT; 73062306a36Sopenharmony_ci goto fail; 73162306a36Sopenharmony_ci } 73262306a36Sopenharmony_ci 73362306a36Sopenharmony_ci value = len; 73462306a36Sopenharmony_ci if (len < USB_DT_ENDPOINT_SIZE + 4) 73562306a36Sopenharmony_ci goto fail0; 73662306a36Sopenharmony_ci 73762306a36Sopenharmony_ci /* we might need to change message format someday */ 73862306a36Sopenharmony_ci memcpy(&tag, buf, 4); 73962306a36Sopenharmony_ci if (tag != 1) { 74062306a36Sopenharmony_ci DBG(data->dev, "config %s, bad tag %d\n", data->name, tag); 74162306a36Sopenharmony_ci goto fail0; 74262306a36Sopenharmony_ci } 74362306a36Sopenharmony_ci buf += 4; 74462306a36Sopenharmony_ci len -= 4; 74562306a36Sopenharmony_ci 74662306a36Sopenharmony_ci /* NOTE: audio endpoint extensions not accepted here; 74762306a36Sopenharmony_ci * just don't include the extra bytes. 74862306a36Sopenharmony_ci */ 74962306a36Sopenharmony_ci 75062306a36Sopenharmony_ci /* full/low speed descriptor, then high speed */ 75162306a36Sopenharmony_ci memcpy(&data->desc, buf, USB_DT_ENDPOINT_SIZE); 75262306a36Sopenharmony_ci if (data->desc.bLength != USB_DT_ENDPOINT_SIZE 75362306a36Sopenharmony_ci || data->desc.bDescriptorType != USB_DT_ENDPOINT) 75462306a36Sopenharmony_ci goto fail0; 75562306a36Sopenharmony_ci if (len != USB_DT_ENDPOINT_SIZE) { 75662306a36Sopenharmony_ci if (len != 2 * USB_DT_ENDPOINT_SIZE) 75762306a36Sopenharmony_ci goto fail0; 75862306a36Sopenharmony_ci memcpy(&data->hs_desc, buf + USB_DT_ENDPOINT_SIZE, 75962306a36Sopenharmony_ci USB_DT_ENDPOINT_SIZE); 76062306a36Sopenharmony_ci if (data->hs_desc.bLength != USB_DT_ENDPOINT_SIZE 76162306a36Sopenharmony_ci || data->hs_desc.bDescriptorType 76262306a36Sopenharmony_ci != USB_DT_ENDPOINT) { 76362306a36Sopenharmony_ci DBG(data->dev, "config %s, bad hs length or type\n", 76462306a36Sopenharmony_ci data->name); 76562306a36Sopenharmony_ci goto fail0; 76662306a36Sopenharmony_ci } 76762306a36Sopenharmony_ci } 76862306a36Sopenharmony_ci 76962306a36Sopenharmony_ci spin_lock_irq (&data->dev->lock); 77062306a36Sopenharmony_ci if (data->dev->state == STATE_DEV_UNBOUND) { 77162306a36Sopenharmony_ci value = -ENOENT; 77262306a36Sopenharmony_ci goto gone; 77362306a36Sopenharmony_ci } else { 77462306a36Sopenharmony_ci ep = data->ep; 77562306a36Sopenharmony_ci if (ep == NULL) { 77662306a36Sopenharmony_ci value = -ENODEV; 77762306a36Sopenharmony_ci goto gone; 77862306a36Sopenharmony_ci } 77962306a36Sopenharmony_ci } 78062306a36Sopenharmony_ci switch (data->dev->gadget->speed) { 78162306a36Sopenharmony_ci case USB_SPEED_LOW: 78262306a36Sopenharmony_ci case USB_SPEED_FULL: 78362306a36Sopenharmony_ci ep->desc = &data->desc; 78462306a36Sopenharmony_ci break; 78562306a36Sopenharmony_ci case USB_SPEED_HIGH: 78662306a36Sopenharmony_ci /* fails if caller didn't provide that descriptor... */ 78762306a36Sopenharmony_ci ep->desc = &data->hs_desc; 78862306a36Sopenharmony_ci break; 78962306a36Sopenharmony_ci default: 79062306a36Sopenharmony_ci DBG(data->dev, "unconnected, %s init abandoned\n", 79162306a36Sopenharmony_ci data->name); 79262306a36Sopenharmony_ci value = -EINVAL; 79362306a36Sopenharmony_ci goto gone; 79462306a36Sopenharmony_ci } 79562306a36Sopenharmony_ci value = usb_ep_enable(ep); 79662306a36Sopenharmony_ci if (value == 0) { 79762306a36Sopenharmony_ci data->state = STATE_EP_ENABLED; 79862306a36Sopenharmony_ci value = length; 79962306a36Sopenharmony_ci } 80062306a36Sopenharmony_cigone: 80162306a36Sopenharmony_ci spin_unlock_irq (&data->dev->lock); 80262306a36Sopenharmony_ci if (value < 0) { 80362306a36Sopenharmony_cifail: 80462306a36Sopenharmony_ci data->desc.bDescriptorType = 0; 80562306a36Sopenharmony_ci data->hs_desc.bDescriptorType = 0; 80662306a36Sopenharmony_ci } 80762306a36Sopenharmony_ci return value; 80862306a36Sopenharmony_cifail0: 80962306a36Sopenharmony_ci value = -EINVAL; 81062306a36Sopenharmony_ci goto fail; 81162306a36Sopenharmony_ci} 81262306a36Sopenharmony_ci 81362306a36Sopenharmony_cistatic int 81462306a36Sopenharmony_ciep_open (struct inode *inode, struct file *fd) 81562306a36Sopenharmony_ci{ 81662306a36Sopenharmony_ci struct ep_data *data = inode->i_private; 81762306a36Sopenharmony_ci int value = -EBUSY; 81862306a36Sopenharmony_ci 81962306a36Sopenharmony_ci if (mutex_lock_interruptible(&data->lock) != 0) 82062306a36Sopenharmony_ci return -EINTR; 82162306a36Sopenharmony_ci spin_lock_irq (&data->dev->lock); 82262306a36Sopenharmony_ci if (data->dev->state == STATE_DEV_UNBOUND) 82362306a36Sopenharmony_ci value = -ENOENT; 82462306a36Sopenharmony_ci else if (data->state == STATE_EP_DISABLED) { 82562306a36Sopenharmony_ci value = 0; 82662306a36Sopenharmony_ci data->state = STATE_EP_READY; 82762306a36Sopenharmony_ci get_ep (data); 82862306a36Sopenharmony_ci fd->private_data = data; 82962306a36Sopenharmony_ci VDEBUG (data->dev, "%s ready\n", data->name); 83062306a36Sopenharmony_ci } else 83162306a36Sopenharmony_ci DBG (data->dev, "%s state %d\n", 83262306a36Sopenharmony_ci data->name, data->state); 83362306a36Sopenharmony_ci spin_unlock_irq (&data->dev->lock); 83462306a36Sopenharmony_ci mutex_unlock(&data->lock); 83562306a36Sopenharmony_ci return value; 83662306a36Sopenharmony_ci} 83762306a36Sopenharmony_ci 83862306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 83962306a36Sopenharmony_ci 84062306a36Sopenharmony_ci/* EP0 IMPLEMENTATION can be partly in userspace. 84162306a36Sopenharmony_ci * 84262306a36Sopenharmony_ci * Drivers that use this facility receive various events, including 84362306a36Sopenharmony_ci * control requests the kernel doesn't handle. Drivers that don't 84462306a36Sopenharmony_ci * use this facility may be too simple-minded for real applications. 84562306a36Sopenharmony_ci */ 84662306a36Sopenharmony_ci 84762306a36Sopenharmony_cistatic inline void ep0_readable (struct dev_data *dev) 84862306a36Sopenharmony_ci{ 84962306a36Sopenharmony_ci wake_up (&dev->wait); 85062306a36Sopenharmony_ci kill_fasync (&dev->fasync, SIGIO, POLL_IN); 85162306a36Sopenharmony_ci} 85262306a36Sopenharmony_ci 85362306a36Sopenharmony_cistatic void clean_req (struct usb_ep *ep, struct usb_request *req) 85462306a36Sopenharmony_ci{ 85562306a36Sopenharmony_ci struct dev_data *dev = ep->driver_data; 85662306a36Sopenharmony_ci 85762306a36Sopenharmony_ci if (req->buf != dev->rbuf) { 85862306a36Sopenharmony_ci kfree(req->buf); 85962306a36Sopenharmony_ci req->buf = dev->rbuf; 86062306a36Sopenharmony_ci } 86162306a36Sopenharmony_ci req->complete = epio_complete; 86262306a36Sopenharmony_ci dev->setup_out_ready = 0; 86362306a36Sopenharmony_ci} 86462306a36Sopenharmony_ci 86562306a36Sopenharmony_cistatic void ep0_complete (struct usb_ep *ep, struct usb_request *req) 86662306a36Sopenharmony_ci{ 86762306a36Sopenharmony_ci struct dev_data *dev = ep->driver_data; 86862306a36Sopenharmony_ci unsigned long flags; 86962306a36Sopenharmony_ci int free = 1; 87062306a36Sopenharmony_ci 87162306a36Sopenharmony_ci /* for control OUT, data must still get to userspace */ 87262306a36Sopenharmony_ci spin_lock_irqsave(&dev->lock, flags); 87362306a36Sopenharmony_ci if (!dev->setup_in) { 87462306a36Sopenharmony_ci dev->setup_out_error = (req->status != 0); 87562306a36Sopenharmony_ci if (!dev->setup_out_error) 87662306a36Sopenharmony_ci free = 0; 87762306a36Sopenharmony_ci dev->setup_out_ready = 1; 87862306a36Sopenharmony_ci ep0_readable (dev); 87962306a36Sopenharmony_ci } 88062306a36Sopenharmony_ci 88162306a36Sopenharmony_ci /* clean up as appropriate */ 88262306a36Sopenharmony_ci if (free && req->buf != &dev->rbuf) 88362306a36Sopenharmony_ci clean_req (ep, req); 88462306a36Sopenharmony_ci req->complete = epio_complete; 88562306a36Sopenharmony_ci spin_unlock_irqrestore(&dev->lock, flags); 88662306a36Sopenharmony_ci} 88762306a36Sopenharmony_ci 88862306a36Sopenharmony_cistatic int setup_req (struct usb_ep *ep, struct usb_request *req, u16 len) 88962306a36Sopenharmony_ci{ 89062306a36Sopenharmony_ci struct dev_data *dev = ep->driver_data; 89162306a36Sopenharmony_ci 89262306a36Sopenharmony_ci if (dev->setup_out_ready) { 89362306a36Sopenharmony_ci DBG (dev, "ep0 request busy!\n"); 89462306a36Sopenharmony_ci return -EBUSY; 89562306a36Sopenharmony_ci } 89662306a36Sopenharmony_ci if (len > sizeof (dev->rbuf)) 89762306a36Sopenharmony_ci req->buf = kmalloc(len, GFP_ATOMIC); 89862306a36Sopenharmony_ci if (req->buf == NULL) { 89962306a36Sopenharmony_ci req->buf = dev->rbuf; 90062306a36Sopenharmony_ci return -ENOMEM; 90162306a36Sopenharmony_ci } 90262306a36Sopenharmony_ci req->complete = ep0_complete; 90362306a36Sopenharmony_ci req->length = len; 90462306a36Sopenharmony_ci req->zero = 0; 90562306a36Sopenharmony_ci return 0; 90662306a36Sopenharmony_ci} 90762306a36Sopenharmony_ci 90862306a36Sopenharmony_cistatic ssize_t 90962306a36Sopenharmony_ciep0_read (struct file *fd, char __user *buf, size_t len, loff_t *ptr) 91062306a36Sopenharmony_ci{ 91162306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 91262306a36Sopenharmony_ci ssize_t retval; 91362306a36Sopenharmony_ci enum ep0_state state; 91462306a36Sopenharmony_ci 91562306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 91662306a36Sopenharmony_ci if (dev->state <= STATE_DEV_OPENED) { 91762306a36Sopenharmony_ci retval = -EINVAL; 91862306a36Sopenharmony_ci goto done; 91962306a36Sopenharmony_ci } 92062306a36Sopenharmony_ci 92162306a36Sopenharmony_ci /* report fd mode change before acting on it */ 92262306a36Sopenharmony_ci if (dev->setup_abort) { 92362306a36Sopenharmony_ci dev->setup_abort = 0; 92462306a36Sopenharmony_ci retval = -EIDRM; 92562306a36Sopenharmony_ci goto done; 92662306a36Sopenharmony_ci } 92762306a36Sopenharmony_ci 92862306a36Sopenharmony_ci /* control DATA stage */ 92962306a36Sopenharmony_ci if ((state = dev->state) == STATE_DEV_SETUP) { 93062306a36Sopenharmony_ci 93162306a36Sopenharmony_ci if (dev->setup_in) { /* stall IN */ 93262306a36Sopenharmony_ci VDEBUG(dev, "ep0in stall\n"); 93362306a36Sopenharmony_ci (void) usb_ep_set_halt (dev->gadget->ep0); 93462306a36Sopenharmony_ci retval = -EL2HLT; 93562306a36Sopenharmony_ci dev->state = STATE_DEV_CONNECTED; 93662306a36Sopenharmony_ci 93762306a36Sopenharmony_ci } else if (len == 0) { /* ack SET_CONFIGURATION etc */ 93862306a36Sopenharmony_ci struct usb_ep *ep = dev->gadget->ep0; 93962306a36Sopenharmony_ci struct usb_request *req = dev->req; 94062306a36Sopenharmony_ci 94162306a36Sopenharmony_ci if ((retval = setup_req (ep, req, 0)) == 0) { 94262306a36Sopenharmony_ci ++dev->udc_usage; 94362306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 94462306a36Sopenharmony_ci retval = usb_ep_queue (ep, req, GFP_KERNEL); 94562306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 94662306a36Sopenharmony_ci --dev->udc_usage; 94762306a36Sopenharmony_ci } 94862306a36Sopenharmony_ci dev->state = STATE_DEV_CONNECTED; 94962306a36Sopenharmony_ci 95062306a36Sopenharmony_ci /* assume that was SET_CONFIGURATION */ 95162306a36Sopenharmony_ci if (dev->current_config) { 95262306a36Sopenharmony_ci unsigned power; 95362306a36Sopenharmony_ci 95462306a36Sopenharmony_ci if (gadget_is_dualspeed(dev->gadget) 95562306a36Sopenharmony_ci && (dev->gadget->speed 95662306a36Sopenharmony_ci == USB_SPEED_HIGH)) 95762306a36Sopenharmony_ci power = dev->hs_config->bMaxPower; 95862306a36Sopenharmony_ci else 95962306a36Sopenharmony_ci power = dev->config->bMaxPower; 96062306a36Sopenharmony_ci usb_gadget_vbus_draw(dev->gadget, 2 * power); 96162306a36Sopenharmony_ci } 96262306a36Sopenharmony_ci 96362306a36Sopenharmony_ci } else { /* collect OUT data */ 96462306a36Sopenharmony_ci if ((fd->f_flags & O_NONBLOCK) != 0 96562306a36Sopenharmony_ci && !dev->setup_out_ready) { 96662306a36Sopenharmony_ci retval = -EAGAIN; 96762306a36Sopenharmony_ci goto done; 96862306a36Sopenharmony_ci } 96962306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 97062306a36Sopenharmony_ci retval = wait_event_interruptible (dev->wait, 97162306a36Sopenharmony_ci dev->setup_out_ready != 0); 97262306a36Sopenharmony_ci 97362306a36Sopenharmony_ci /* FIXME state could change from under us */ 97462306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 97562306a36Sopenharmony_ci if (retval) 97662306a36Sopenharmony_ci goto done; 97762306a36Sopenharmony_ci 97862306a36Sopenharmony_ci if (dev->state != STATE_DEV_SETUP) { 97962306a36Sopenharmony_ci retval = -ECANCELED; 98062306a36Sopenharmony_ci goto done; 98162306a36Sopenharmony_ci } 98262306a36Sopenharmony_ci dev->state = STATE_DEV_CONNECTED; 98362306a36Sopenharmony_ci 98462306a36Sopenharmony_ci if (dev->setup_out_error) 98562306a36Sopenharmony_ci retval = -EIO; 98662306a36Sopenharmony_ci else { 98762306a36Sopenharmony_ci len = min (len, (size_t)dev->req->actual); 98862306a36Sopenharmony_ci ++dev->udc_usage; 98962306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 99062306a36Sopenharmony_ci if (copy_to_user (buf, dev->req->buf, len)) 99162306a36Sopenharmony_ci retval = -EFAULT; 99262306a36Sopenharmony_ci else 99362306a36Sopenharmony_ci retval = len; 99462306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 99562306a36Sopenharmony_ci --dev->udc_usage; 99662306a36Sopenharmony_ci clean_req (dev->gadget->ep0, dev->req); 99762306a36Sopenharmony_ci /* NOTE userspace can't yet choose to stall */ 99862306a36Sopenharmony_ci } 99962306a36Sopenharmony_ci } 100062306a36Sopenharmony_ci goto done; 100162306a36Sopenharmony_ci } 100262306a36Sopenharmony_ci 100362306a36Sopenharmony_ci /* else normal: return event data */ 100462306a36Sopenharmony_ci if (len < sizeof dev->event [0]) { 100562306a36Sopenharmony_ci retval = -EINVAL; 100662306a36Sopenharmony_ci goto done; 100762306a36Sopenharmony_ci } 100862306a36Sopenharmony_ci len -= len % sizeof (struct usb_gadgetfs_event); 100962306a36Sopenharmony_ci dev->usermode_setup = 1; 101062306a36Sopenharmony_ci 101162306a36Sopenharmony_ciscan: 101262306a36Sopenharmony_ci /* return queued events right away */ 101362306a36Sopenharmony_ci if (dev->ev_next != 0) { 101462306a36Sopenharmony_ci unsigned i, n; 101562306a36Sopenharmony_ci 101662306a36Sopenharmony_ci n = len / sizeof (struct usb_gadgetfs_event); 101762306a36Sopenharmony_ci if (dev->ev_next < n) 101862306a36Sopenharmony_ci n = dev->ev_next; 101962306a36Sopenharmony_ci 102062306a36Sopenharmony_ci /* ep0 i/o has special semantics during STATE_DEV_SETUP */ 102162306a36Sopenharmony_ci for (i = 0; i < n; i++) { 102262306a36Sopenharmony_ci if (dev->event [i].type == GADGETFS_SETUP) { 102362306a36Sopenharmony_ci dev->state = STATE_DEV_SETUP; 102462306a36Sopenharmony_ci n = i + 1; 102562306a36Sopenharmony_ci break; 102662306a36Sopenharmony_ci } 102762306a36Sopenharmony_ci } 102862306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 102962306a36Sopenharmony_ci len = n * sizeof (struct usb_gadgetfs_event); 103062306a36Sopenharmony_ci if (copy_to_user (buf, &dev->event, len)) 103162306a36Sopenharmony_ci retval = -EFAULT; 103262306a36Sopenharmony_ci else 103362306a36Sopenharmony_ci retval = len; 103462306a36Sopenharmony_ci if (len > 0) { 103562306a36Sopenharmony_ci /* NOTE this doesn't guard against broken drivers; 103662306a36Sopenharmony_ci * concurrent ep0 readers may lose events. 103762306a36Sopenharmony_ci */ 103862306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 103962306a36Sopenharmony_ci if (dev->ev_next > n) { 104062306a36Sopenharmony_ci memmove(&dev->event[0], &dev->event[n], 104162306a36Sopenharmony_ci sizeof (struct usb_gadgetfs_event) 104262306a36Sopenharmony_ci * (dev->ev_next - n)); 104362306a36Sopenharmony_ci } 104462306a36Sopenharmony_ci dev->ev_next -= n; 104562306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 104662306a36Sopenharmony_ci } 104762306a36Sopenharmony_ci return retval; 104862306a36Sopenharmony_ci } 104962306a36Sopenharmony_ci if (fd->f_flags & O_NONBLOCK) { 105062306a36Sopenharmony_ci retval = -EAGAIN; 105162306a36Sopenharmony_ci goto done; 105262306a36Sopenharmony_ci } 105362306a36Sopenharmony_ci 105462306a36Sopenharmony_ci switch (state) { 105562306a36Sopenharmony_ci default: 105662306a36Sopenharmony_ci DBG (dev, "fail %s, state %d\n", __func__, state); 105762306a36Sopenharmony_ci retval = -ESRCH; 105862306a36Sopenharmony_ci break; 105962306a36Sopenharmony_ci case STATE_DEV_UNCONNECTED: 106062306a36Sopenharmony_ci case STATE_DEV_CONNECTED: 106162306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 106262306a36Sopenharmony_ci DBG (dev, "%s wait\n", __func__); 106362306a36Sopenharmony_ci 106462306a36Sopenharmony_ci /* wait for events */ 106562306a36Sopenharmony_ci retval = wait_event_interruptible (dev->wait, 106662306a36Sopenharmony_ci dev->ev_next != 0); 106762306a36Sopenharmony_ci if (retval < 0) 106862306a36Sopenharmony_ci return retval; 106962306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 107062306a36Sopenharmony_ci goto scan; 107162306a36Sopenharmony_ci } 107262306a36Sopenharmony_ci 107362306a36Sopenharmony_cidone: 107462306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 107562306a36Sopenharmony_ci return retval; 107662306a36Sopenharmony_ci} 107762306a36Sopenharmony_ci 107862306a36Sopenharmony_cistatic struct usb_gadgetfs_event * 107962306a36Sopenharmony_cinext_event (struct dev_data *dev, enum usb_gadgetfs_event_type type) 108062306a36Sopenharmony_ci{ 108162306a36Sopenharmony_ci struct usb_gadgetfs_event *event; 108262306a36Sopenharmony_ci unsigned i; 108362306a36Sopenharmony_ci 108462306a36Sopenharmony_ci switch (type) { 108562306a36Sopenharmony_ci /* these events purge the queue */ 108662306a36Sopenharmony_ci case GADGETFS_DISCONNECT: 108762306a36Sopenharmony_ci if (dev->state == STATE_DEV_SETUP) 108862306a36Sopenharmony_ci dev->setup_abort = 1; 108962306a36Sopenharmony_ci fallthrough; 109062306a36Sopenharmony_ci case GADGETFS_CONNECT: 109162306a36Sopenharmony_ci dev->ev_next = 0; 109262306a36Sopenharmony_ci break; 109362306a36Sopenharmony_ci case GADGETFS_SETUP: /* previous request timed out */ 109462306a36Sopenharmony_ci case GADGETFS_SUSPEND: /* same effect */ 109562306a36Sopenharmony_ci /* these events can't be repeated */ 109662306a36Sopenharmony_ci for (i = 0; i != dev->ev_next; i++) { 109762306a36Sopenharmony_ci if (dev->event [i].type != type) 109862306a36Sopenharmony_ci continue; 109962306a36Sopenharmony_ci DBG(dev, "discard old event[%d] %d\n", i, type); 110062306a36Sopenharmony_ci dev->ev_next--; 110162306a36Sopenharmony_ci if (i == dev->ev_next) 110262306a36Sopenharmony_ci break; 110362306a36Sopenharmony_ci /* indices start at zero, for simplicity */ 110462306a36Sopenharmony_ci memmove (&dev->event [i], &dev->event [i + 1], 110562306a36Sopenharmony_ci sizeof (struct usb_gadgetfs_event) 110662306a36Sopenharmony_ci * (dev->ev_next - i)); 110762306a36Sopenharmony_ci } 110862306a36Sopenharmony_ci break; 110962306a36Sopenharmony_ci default: 111062306a36Sopenharmony_ci BUG (); 111162306a36Sopenharmony_ci } 111262306a36Sopenharmony_ci VDEBUG(dev, "event[%d] = %d\n", dev->ev_next, type); 111362306a36Sopenharmony_ci event = &dev->event [dev->ev_next++]; 111462306a36Sopenharmony_ci BUG_ON (dev->ev_next > N_EVENT); 111562306a36Sopenharmony_ci memset (event, 0, sizeof *event); 111662306a36Sopenharmony_ci event->type = type; 111762306a36Sopenharmony_ci return event; 111862306a36Sopenharmony_ci} 111962306a36Sopenharmony_ci 112062306a36Sopenharmony_cistatic ssize_t 112162306a36Sopenharmony_ciep0_write (struct file *fd, const char __user *buf, size_t len, loff_t *ptr) 112262306a36Sopenharmony_ci{ 112362306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 112462306a36Sopenharmony_ci ssize_t retval = -ESRCH; 112562306a36Sopenharmony_ci 112662306a36Sopenharmony_ci /* report fd mode change before acting on it */ 112762306a36Sopenharmony_ci if (dev->setup_abort) { 112862306a36Sopenharmony_ci dev->setup_abort = 0; 112962306a36Sopenharmony_ci retval = -EIDRM; 113062306a36Sopenharmony_ci 113162306a36Sopenharmony_ci /* data and/or status stage for control request */ 113262306a36Sopenharmony_ci } else if (dev->state == STATE_DEV_SETUP) { 113362306a36Sopenharmony_ci 113462306a36Sopenharmony_ci len = min_t(size_t, len, dev->setup_wLength); 113562306a36Sopenharmony_ci if (dev->setup_in) { 113662306a36Sopenharmony_ci retval = setup_req (dev->gadget->ep0, dev->req, len); 113762306a36Sopenharmony_ci if (retval == 0) { 113862306a36Sopenharmony_ci dev->state = STATE_DEV_CONNECTED; 113962306a36Sopenharmony_ci ++dev->udc_usage; 114062306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 114162306a36Sopenharmony_ci if (copy_from_user (dev->req->buf, buf, len)) 114262306a36Sopenharmony_ci retval = -EFAULT; 114362306a36Sopenharmony_ci else { 114462306a36Sopenharmony_ci if (len < dev->setup_wLength) 114562306a36Sopenharmony_ci dev->req->zero = 1; 114662306a36Sopenharmony_ci retval = usb_ep_queue ( 114762306a36Sopenharmony_ci dev->gadget->ep0, dev->req, 114862306a36Sopenharmony_ci GFP_KERNEL); 114962306a36Sopenharmony_ci } 115062306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 115162306a36Sopenharmony_ci --dev->udc_usage; 115262306a36Sopenharmony_ci if (retval < 0) { 115362306a36Sopenharmony_ci clean_req (dev->gadget->ep0, dev->req); 115462306a36Sopenharmony_ci } else 115562306a36Sopenharmony_ci retval = len; 115662306a36Sopenharmony_ci 115762306a36Sopenharmony_ci return retval; 115862306a36Sopenharmony_ci } 115962306a36Sopenharmony_ci 116062306a36Sopenharmony_ci /* can stall some OUT transfers */ 116162306a36Sopenharmony_ci } else if (dev->setup_can_stall) { 116262306a36Sopenharmony_ci VDEBUG(dev, "ep0out stall\n"); 116362306a36Sopenharmony_ci (void) usb_ep_set_halt (dev->gadget->ep0); 116462306a36Sopenharmony_ci retval = -EL2HLT; 116562306a36Sopenharmony_ci dev->state = STATE_DEV_CONNECTED; 116662306a36Sopenharmony_ci } else { 116762306a36Sopenharmony_ci DBG(dev, "bogus ep0out stall!\n"); 116862306a36Sopenharmony_ci } 116962306a36Sopenharmony_ci } else 117062306a36Sopenharmony_ci DBG (dev, "fail %s, state %d\n", __func__, dev->state); 117162306a36Sopenharmony_ci 117262306a36Sopenharmony_ci return retval; 117362306a36Sopenharmony_ci} 117462306a36Sopenharmony_ci 117562306a36Sopenharmony_cistatic int 117662306a36Sopenharmony_ciep0_fasync (int f, struct file *fd, int on) 117762306a36Sopenharmony_ci{ 117862306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 117962306a36Sopenharmony_ci // caller must F_SETOWN before signal delivery happens 118062306a36Sopenharmony_ci VDEBUG (dev, "%s %s\n", __func__, on ? "on" : "off"); 118162306a36Sopenharmony_ci return fasync_helper (f, fd, on, &dev->fasync); 118262306a36Sopenharmony_ci} 118362306a36Sopenharmony_ci 118462306a36Sopenharmony_cistatic struct usb_gadget_driver gadgetfs_driver; 118562306a36Sopenharmony_ci 118662306a36Sopenharmony_cistatic int 118762306a36Sopenharmony_cidev_release (struct inode *inode, struct file *fd) 118862306a36Sopenharmony_ci{ 118962306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 119062306a36Sopenharmony_ci 119162306a36Sopenharmony_ci /* closing ep0 === shutdown all */ 119262306a36Sopenharmony_ci 119362306a36Sopenharmony_ci if (dev->gadget_registered) { 119462306a36Sopenharmony_ci usb_gadget_unregister_driver (&gadgetfs_driver); 119562306a36Sopenharmony_ci dev->gadget_registered = false; 119662306a36Sopenharmony_ci } 119762306a36Sopenharmony_ci 119862306a36Sopenharmony_ci /* at this point "good" hardware has disconnected the 119962306a36Sopenharmony_ci * device from USB; the host won't see it any more. 120062306a36Sopenharmony_ci * alternatively, all host requests will time out. 120162306a36Sopenharmony_ci */ 120262306a36Sopenharmony_ci 120362306a36Sopenharmony_ci kfree (dev->buf); 120462306a36Sopenharmony_ci dev->buf = NULL; 120562306a36Sopenharmony_ci 120662306a36Sopenharmony_ci /* other endpoints were all decoupled from this device */ 120762306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 120862306a36Sopenharmony_ci dev->state = STATE_DEV_DISABLED; 120962306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 121062306a36Sopenharmony_ci 121162306a36Sopenharmony_ci put_dev (dev); 121262306a36Sopenharmony_ci return 0; 121362306a36Sopenharmony_ci} 121462306a36Sopenharmony_ci 121562306a36Sopenharmony_cistatic __poll_t 121662306a36Sopenharmony_ciep0_poll (struct file *fd, poll_table *wait) 121762306a36Sopenharmony_ci{ 121862306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 121962306a36Sopenharmony_ci __poll_t mask = 0; 122062306a36Sopenharmony_ci 122162306a36Sopenharmony_ci if (dev->state <= STATE_DEV_OPENED) 122262306a36Sopenharmony_ci return DEFAULT_POLLMASK; 122362306a36Sopenharmony_ci 122462306a36Sopenharmony_ci poll_wait(fd, &dev->wait, wait); 122562306a36Sopenharmony_ci 122662306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 122762306a36Sopenharmony_ci 122862306a36Sopenharmony_ci /* report fd mode change before acting on it */ 122962306a36Sopenharmony_ci if (dev->setup_abort) { 123062306a36Sopenharmony_ci dev->setup_abort = 0; 123162306a36Sopenharmony_ci mask = EPOLLHUP; 123262306a36Sopenharmony_ci goto out; 123362306a36Sopenharmony_ci } 123462306a36Sopenharmony_ci 123562306a36Sopenharmony_ci if (dev->state == STATE_DEV_SETUP) { 123662306a36Sopenharmony_ci if (dev->setup_in || dev->setup_can_stall) 123762306a36Sopenharmony_ci mask = EPOLLOUT; 123862306a36Sopenharmony_ci } else { 123962306a36Sopenharmony_ci if (dev->ev_next != 0) 124062306a36Sopenharmony_ci mask = EPOLLIN; 124162306a36Sopenharmony_ci } 124262306a36Sopenharmony_ciout: 124362306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 124462306a36Sopenharmony_ci return mask; 124562306a36Sopenharmony_ci} 124662306a36Sopenharmony_ci 124762306a36Sopenharmony_cistatic long gadget_dev_ioctl (struct file *fd, unsigned code, unsigned long value) 124862306a36Sopenharmony_ci{ 124962306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 125062306a36Sopenharmony_ci struct usb_gadget *gadget = dev->gadget; 125162306a36Sopenharmony_ci long ret = -ENOTTY; 125262306a36Sopenharmony_ci 125362306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 125462306a36Sopenharmony_ci if (dev->state == STATE_DEV_OPENED || 125562306a36Sopenharmony_ci dev->state == STATE_DEV_UNBOUND) { 125662306a36Sopenharmony_ci /* Not bound to a UDC */ 125762306a36Sopenharmony_ci } else if (gadget->ops->ioctl) { 125862306a36Sopenharmony_ci ++dev->udc_usage; 125962306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 126062306a36Sopenharmony_ci 126162306a36Sopenharmony_ci ret = gadget->ops->ioctl (gadget, code, value); 126262306a36Sopenharmony_ci 126362306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 126462306a36Sopenharmony_ci --dev->udc_usage; 126562306a36Sopenharmony_ci } 126662306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 126762306a36Sopenharmony_ci 126862306a36Sopenharmony_ci return ret; 126962306a36Sopenharmony_ci} 127062306a36Sopenharmony_ci 127162306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 127262306a36Sopenharmony_ci 127362306a36Sopenharmony_ci/* The in-kernel gadget driver handles most ep0 issues, in particular 127462306a36Sopenharmony_ci * enumerating the single configuration (as provided from user space). 127562306a36Sopenharmony_ci * 127662306a36Sopenharmony_ci * Unrecognized ep0 requests may be handled in user space. 127762306a36Sopenharmony_ci */ 127862306a36Sopenharmony_ci 127962306a36Sopenharmony_cistatic void make_qualifier (struct dev_data *dev) 128062306a36Sopenharmony_ci{ 128162306a36Sopenharmony_ci struct usb_qualifier_descriptor qual; 128262306a36Sopenharmony_ci struct usb_device_descriptor *desc; 128362306a36Sopenharmony_ci 128462306a36Sopenharmony_ci qual.bLength = sizeof qual; 128562306a36Sopenharmony_ci qual.bDescriptorType = USB_DT_DEVICE_QUALIFIER; 128662306a36Sopenharmony_ci qual.bcdUSB = cpu_to_le16 (0x0200); 128762306a36Sopenharmony_ci 128862306a36Sopenharmony_ci desc = dev->dev; 128962306a36Sopenharmony_ci qual.bDeviceClass = desc->bDeviceClass; 129062306a36Sopenharmony_ci qual.bDeviceSubClass = desc->bDeviceSubClass; 129162306a36Sopenharmony_ci qual.bDeviceProtocol = desc->bDeviceProtocol; 129262306a36Sopenharmony_ci 129362306a36Sopenharmony_ci /* assumes ep0 uses the same value for both speeds ... */ 129462306a36Sopenharmony_ci qual.bMaxPacketSize0 = dev->gadget->ep0->maxpacket; 129562306a36Sopenharmony_ci 129662306a36Sopenharmony_ci qual.bNumConfigurations = 1; 129762306a36Sopenharmony_ci qual.bRESERVED = 0; 129862306a36Sopenharmony_ci 129962306a36Sopenharmony_ci memcpy (dev->rbuf, &qual, sizeof qual); 130062306a36Sopenharmony_ci} 130162306a36Sopenharmony_ci 130262306a36Sopenharmony_cistatic int 130362306a36Sopenharmony_ciconfig_buf (struct dev_data *dev, u8 type, unsigned index) 130462306a36Sopenharmony_ci{ 130562306a36Sopenharmony_ci int len; 130662306a36Sopenharmony_ci int hs = 0; 130762306a36Sopenharmony_ci 130862306a36Sopenharmony_ci /* only one configuration */ 130962306a36Sopenharmony_ci if (index > 0) 131062306a36Sopenharmony_ci return -EINVAL; 131162306a36Sopenharmony_ci 131262306a36Sopenharmony_ci if (gadget_is_dualspeed(dev->gadget)) { 131362306a36Sopenharmony_ci hs = (dev->gadget->speed == USB_SPEED_HIGH); 131462306a36Sopenharmony_ci if (type == USB_DT_OTHER_SPEED_CONFIG) 131562306a36Sopenharmony_ci hs = !hs; 131662306a36Sopenharmony_ci } 131762306a36Sopenharmony_ci if (hs) { 131862306a36Sopenharmony_ci dev->req->buf = dev->hs_config; 131962306a36Sopenharmony_ci len = le16_to_cpu(dev->hs_config->wTotalLength); 132062306a36Sopenharmony_ci } else { 132162306a36Sopenharmony_ci dev->req->buf = dev->config; 132262306a36Sopenharmony_ci len = le16_to_cpu(dev->config->wTotalLength); 132362306a36Sopenharmony_ci } 132462306a36Sopenharmony_ci ((u8 *)dev->req->buf) [1] = type; 132562306a36Sopenharmony_ci return len; 132662306a36Sopenharmony_ci} 132762306a36Sopenharmony_ci 132862306a36Sopenharmony_cistatic int 132962306a36Sopenharmony_cigadgetfs_setup (struct usb_gadget *gadget, const struct usb_ctrlrequest *ctrl) 133062306a36Sopenharmony_ci{ 133162306a36Sopenharmony_ci struct dev_data *dev = get_gadget_data (gadget); 133262306a36Sopenharmony_ci struct usb_request *req = dev->req; 133362306a36Sopenharmony_ci int value = -EOPNOTSUPP; 133462306a36Sopenharmony_ci struct usb_gadgetfs_event *event; 133562306a36Sopenharmony_ci u16 w_value = le16_to_cpu(ctrl->wValue); 133662306a36Sopenharmony_ci u16 w_length = le16_to_cpu(ctrl->wLength); 133762306a36Sopenharmony_ci 133862306a36Sopenharmony_ci if (w_length > RBUF_SIZE) { 133962306a36Sopenharmony_ci if (ctrl->bRequestType & USB_DIR_IN) { 134062306a36Sopenharmony_ci /* Cast away the const, we are going to overwrite on purpose. */ 134162306a36Sopenharmony_ci __le16 *temp = (__le16 *)&ctrl->wLength; 134262306a36Sopenharmony_ci 134362306a36Sopenharmony_ci *temp = cpu_to_le16(RBUF_SIZE); 134462306a36Sopenharmony_ci w_length = RBUF_SIZE; 134562306a36Sopenharmony_ci } else { 134662306a36Sopenharmony_ci return value; 134762306a36Sopenharmony_ci } 134862306a36Sopenharmony_ci } 134962306a36Sopenharmony_ci 135062306a36Sopenharmony_ci spin_lock (&dev->lock); 135162306a36Sopenharmony_ci dev->setup_abort = 0; 135262306a36Sopenharmony_ci if (dev->state == STATE_DEV_UNCONNECTED) { 135362306a36Sopenharmony_ci if (gadget_is_dualspeed(gadget) 135462306a36Sopenharmony_ci && gadget->speed == USB_SPEED_HIGH 135562306a36Sopenharmony_ci && dev->hs_config == NULL) { 135662306a36Sopenharmony_ci spin_unlock(&dev->lock); 135762306a36Sopenharmony_ci ERROR (dev, "no high speed config??\n"); 135862306a36Sopenharmony_ci return -EINVAL; 135962306a36Sopenharmony_ci } 136062306a36Sopenharmony_ci 136162306a36Sopenharmony_ci dev->state = STATE_DEV_CONNECTED; 136262306a36Sopenharmony_ci 136362306a36Sopenharmony_ci INFO (dev, "connected\n"); 136462306a36Sopenharmony_ci event = next_event (dev, GADGETFS_CONNECT); 136562306a36Sopenharmony_ci event->u.speed = gadget->speed; 136662306a36Sopenharmony_ci ep0_readable (dev); 136762306a36Sopenharmony_ci 136862306a36Sopenharmony_ci /* host may have given up waiting for response. we can miss control 136962306a36Sopenharmony_ci * requests handled lower down (device/endpoint status and features); 137062306a36Sopenharmony_ci * then ep0_{read,write} will report the wrong status. controller 137162306a36Sopenharmony_ci * driver will have aborted pending i/o. 137262306a36Sopenharmony_ci */ 137362306a36Sopenharmony_ci } else if (dev->state == STATE_DEV_SETUP) 137462306a36Sopenharmony_ci dev->setup_abort = 1; 137562306a36Sopenharmony_ci 137662306a36Sopenharmony_ci req->buf = dev->rbuf; 137762306a36Sopenharmony_ci req->context = NULL; 137862306a36Sopenharmony_ci switch (ctrl->bRequest) { 137962306a36Sopenharmony_ci 138062306a36Sopenharmony_ci case USB_REQ_GET_DESCRIPTOR: 138162306a36Sopenharmony_ci if (ctrl->bRequestType != USB_DIR_IN) 138262306a36Sopenharmony_ci goto unrecognized; 138362306a36Sopenharmony_ci switch (w_value >> 8) { 138462306a36Sopenharmony_ci 138562306a36Sopenharmony_ci case USB_DT_DEVICE: 138662306a36Sopenharmony_ci value = min (w_length, (u16) sizeof *dev->dev); 138762306a36Sopenharmony_ci dev->dev->bMaxPacketSize0 = dev->gadget->ep0->maxpacket; 138862306a36Sopenharmony_ci req->buf = dev->dev; 138962306a36Sopenharmony_ci break; 139062306a36Sopenharmony_ci case USB_DT_DEVICE_QUALIFIER: 139162306a36Sopenharmony_ci if (!dev->hs_config) 139262306a36Sopenharmony_ci break; 139362306a36Sopenharmony_ci value = min (w_length, (u16) 139462306a36Sopenharmony_ci sizeof (struct usb_qualifier_descriptor)); 139562306a36Sopenharmony_ci make_qualifier (dev); 139662306a36Sopenharmony_ci break; 139762306a36Sopenharmony_ci case USB_DT_OTHER_SPEED_CONFIG: 139862306a36Sopenharmony_ci case USB_DT_CONFIG: 139962306a36Sopenharmony_ci value = config_buf (dev, 140062306a36Sopenharmony_ci w_value >> 8, 140162306a36Sopenharmony_ci w_value & 0xff); 140262306a36Sopenharmony_ci if (value >= 0) 140362306a36Sopenharmony_ci value = min (w_length, (u16) value); 140462306a36Sopenharmony_ci break; 140562306a36Sopenharmony_ci case USB_DT_STRING: 140662306a36Sopenharmony_ci goto unrecognized; 140762306a36Sopenharmony_ci 140862306a36Sopenharmony_ci default: // all others are errors 140962306a36Sopenharmony_ci break; 141062306a36Sopenharmony_ci } 141162306a36Sopenharmony_ci break; 141262306a36Sopenharmony_ci 141362306a36Sopenharmony_ci /* currently one config, two speeds */ 141462306a36Sopenharmony_ci case USB_REQ_SET_CONFIGURATION: 141562306a36Sopenharmony_ci if (ctrl->bRequestType != 0) 141662306a36Sopenharmony_ci goto unrecognized; 141762306a36Sopenharmony_ci if (0 == (u8) w_value) { 141862306a36Sopenharmony_ci value = 0; 141962306a36Sopenharmony_ci dev->current_config = 0; 142062306a36Sopenharmony_ci usb_gadget_vbus_draw(gadget, 8 /* mA */ ); 142162306a36Sopenharmony_ci // user mode expected to disable endpoints 142262306a36Sopenharmony_ci } else { 142362306a36Sopenharmony_ci u8 config, power; 142462306a36Sopenharmony_ci 142562306a36Sopenharmony_ci if (gadget_is_dualspeed(gadget) 142662306a36Sopenharmony_ci && gadget->speed == USB_SPEED_HIGH) { 142762306a36Sopenharmony_ci config = dev->hs_config->bConfigurationValue; 142862306a36Sopenharmony_ci power = dev->hs_config->bMaxPower; 142962306a36Sopenharmony_ci } else { 143062306a36Sopenharmony_ci config = dev->config->bConfigurationValue; 143162306a36Sopenharmony_ci power = dev->config->bMaxPower; 143262306a36Sopenharmony_ci } 143362306a36Sopenharmony_ci 143462306a36Sopenharmony_ci if (config == (u8) w_value) { 143562306a36Sopenharmony_ci value = 0; 143662306a36Sopenharmony_ci dev->current_config = config; 143762306a36Sopenharmony_ci usb_gadget_vbus_draw(gadget, 2 * power); 143862306a36Sopenharmony_ci } 143962306a36Sopenharmony_ci } 144062306a36Sopenharmony_ci 144162306a36Sopenharmony_ci /* report SET_CONFIGURATION like any other control request, 144262306a36Sopenharmony_ci * except that usermode may not stall this. the next 144362306a36Sopenharmony_ci * request mustn't be allowed start until this finishes: 144462306a36Sopenharmony_ci * endpoints and threads set up, etc. 144562306a36Sopenharmony_ci * 144662306a36Sopenharmony_ci * NOTE: older PXA hardware (before PXA 255: without UDCCFR) 144762306a36Sopenharmony_ci * has bad/racey automagic that prevents synchronizing here. 144862306a36Sopenharmony_ci * even kernel mode drivers often miss them. 144962306a36Sopenharmony_ci */ 145062306a36Sopenharmony_ci if (value == 0) { 145162306a36Sopenharmony_ci INFO (dev, "configuration #%d\n", dev->current_config); 145262306a36Sopenharmony_ci usb_gadget_set_state(gadget, USB_STATE_CONFIGURED); 145362306a36Sopenharmony_ci if (dev->usermode_setup) { 145462306a36Sopenharmony_ci dev->setup_can_stall = 0; 145562306a36Sopenharmony_ci goto delegate; 145662306a36Sopenharmony_ci } 145762306a36Sopenharmony_ci } 145862306a36Sopenharmony_ci break; 145962306a36Sopenharmony_ci 146062306a36Sopenharmony_ci#ifndef CONFIG_USB_PXA25X 146162306a36Sopenharmony_ci /* PXA automagically handles this request too */ 146262306a36Sopenharmony_ci case USB_REQ_GET_CONFIGURATION: 146362306a36Sopenharmony_ci if (ctrl->bRequestType != 0x80) 146462306a36Sopenharmony_ci goto unrecognized; 146562306a36Sopenharmony_ci *(u8 *)req->buf = dev->current_config; 146662306a36Sopenharmony_ci value = min (w_length, (u16) 1); 146762306a36Sopenharmony_ci break; 146862306a36Sopenharmony_ci#endif 146962306a36Sopenharmony_ci 147062306a36Sopenharmony_ci default: 147162306a36Sopenharmony_ciunrecognized: 147262306a36Sopenharmony_ci VDEBUG (dev, "%s req%02x.%02x v%04x i%04x l%d\n", 147362306a36Sopenharmony_ci dev->usermode_setup ? "delegate" : "fail", 147462306a36Sopenharmony_ci ctrl->bRequestType, ctrl->bRequest, 147562306a36Sopenharmony_ci w_value, le16_to_cpu(ctrl->wIndex), w_length); 147662306a36Sopenharmony_ci 147762306a36Sopenharmony_ci /* if there's an ep0 reader, don't stall */ 147862306a36Sopenharmony_ci if (dev->usermode_setup) { 147962306a36Sopenharmony_ci dev->setup_can_stall = 1; 148062306a36Sopenharmony_cidelegate: 148162306a36Sopenharmony_ci dev->setup_in = (ctrl->bRequestType & USB_DIR_IN) 148262306a36Sopenharmony_ci ? 1 : 0; 148362306a36Sopenharmony_ci dev->setup_wLength = w_length; 148462306a36Sopenharmony_ci dev->setup_out_ready = 0; 148562306a36Sopenharmony_ci dev->setup_out_error = 0; 148662306a36Sopenharmony_ci 148762306a36Sopenharmony_ci /* read DATA stage for OUT right away */ 148862306a36Sopenharmony_ci if (unlikely (!dev->setup_in && w_length)) { 148962306a36Sopenharmony_ci value = setup_req (gadget->ep0, dev->req, 149062306a36Sopenharmony_ci w_length); 149162306a36Sopenharmony_ci if (value < 0) 149262306a36Sopenharmony_ci break; 149362306a36Sopenharmony_ci 149462306a36Sopenharmony_ci ++dev->udc_usage; 149562306a36Sopenharmony_ci spin_unlock (&dev->lock); 149662306a36Sopenharmony_ci value = usb_ep_queue (gadget->ep0, dev->req, 149762306a36Sopenharmony_ci GFP_KERNEL); 149862306a36Sopenharmony_ci spin_lock (&dev->lock); 149962306a36Sopenharmony_ci --dev->udc_usage; 150062306a36Sopenharmony_ci if (value < 0) { 150162306a36Sopenharmony_ci clean_req (gadget->ep0, dev->req); 150262306a36Sopenharmony_ci break; 150362306a36Sopenharmony_ci } 150462306a36Sopenharmony_ci 150562306a36Sopenharmony_ci /* we can't currently stall these */ 150662306a36Sopenharmony_ci dev->setup_can_stall = 0; 150762306a36Sopenharmony_ci } 150862306a36Sopenharmony_ci 150962306a36Sopenharmony_ci /* state changes when reader collects event */ 151062306a36Sopenharmony_ci event = next_event (dev, GADGETFS_SETUP); 151162306a36Sopenharmony_ci event->u.setup = *ctrl; 151262306a36Sopenharmony_ci ep0_readable (dev); 151362306a36Sopenharmony_ci spin_unlock (&dev->lock); 151462306a36Sopenharmony_ci return 0; 151562306a36Sopenharmony_ci } 151662306a36Sopenharmony_ci } 151762306a36Sopenharmony_ci 151862306a36Sopenharmony_ci /* proceed with data transfer and status phases? */ 151962306a36Sopenharmony_ci if (value >= 0 && dev->state != STATE_DEV_SETUP) { 152062306a36Sopenharmony_ci req->length = value; 152162306a36Sopenharmony_ci req->zero = value < w_length; 152262306a36Sopenharmony_ci 152362306a36Sopenharmony_ci ++dev->udc_usage; 152462306a36Sopenharmony_ci spin_unlock (&dev->lock); 152562306a36Sopenharmony_ci value = usb_ep_queue (gadget->ep0, req, GFP_KERNEL); 152662306a36Sopenharmony_ci spin_lock(&dev->lock); 152762306a36Sopenharmony_ci --dev->udc_usage; 152862306a36Sopenharmony_ci spin_unlock(&dev->lock); 152962306a36Sopenharmony_ci if (value < 0) { 153062306a36Sopenharmony_ci DBG (dev, "ep_queue --> %d\n", value); 153162306a36Sopenharmony_ci req->status = 0; 153262306a36Sopenharmony_ci } 153362306a36Sopenharmony_ci return value; 153462306a36Sopenharmony_ci } 153562306a36Sopenharmony_ci 153662306a36Sopenharmony_ci /* device stalls when value < 0 */ 153762306a36Sopenharmony_ci spin_unlock (&dev->lock); 153862306a36Sopenharmony_ci return value; 153962306a36Sopenharmony_ci} 154062306a36Sopenharmony_ci 154162306a36Sopenharmony_cistatic void destroy_ep_files (struct dev_data *dev) 154262306a36Sopenharmony_ci{ 154362306a36Sopenharmony_ci DBG (dev, "%s %d\n", __func__, dev->state); 154462306a36Sopenharmony_ci 154562306a36Sopenharmony_ci /* dev->state must prevent interference */ 154662306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 154762306a36Sopenharmony_ci while (!list_empty(&dev->epfiles)) { 154862306a36Sopenharmony_ci struct ep_data *ep; 154962306a36Sopenharmony_ci struct inode *parent; 155062306a36Sopenharmony_ci struct dentry *dentry; 155162306a36Sopenharmony_ci 155262306a36Sopenharmony_ci /* break link to FS */ 155362306a36Sopenharmony_ci ep = list_first_entry (&dev->epfiles, struct ep_data, epfiles); 155462306a36Sopenharmony_ci list_del_init (&ep->epfiles); 155562306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 155662306a36Sopenharmony_ci 155762306a36Sopenharmony_ci dentry = ep->dentry; 155862306a36Sopenharmony_ci ep->dentry = NULL; 155962306a36Sopenharmony_ci parent = d_inode(dentry->d_parent); 156062306a36Sopenharmony_ci 156162306a36Sopenharmony_ci /* break link to controller */ 156262306a36Sopenharmony_ci mutex_lock(&ep->lock); 156362306a36Sopenharmony_ci if (ep->state == STATE_EP_ENABLED) 156462306a36Sopenharmony_ci (void) usb_ep_disable (ep->ep); 156562306a36Sopenharmony_ci ep->state = STATE_EP_UNBOUND; 156662306a36Sopenharmony_ci usb_ep_free_request (ep->ep, ep->req); 156762306a36Sopenharmony_ci ep->ep = NULL; 156862306a36Sopenharmony_ci mutex_unlock(&ep->lock); 156962306a36Sopenharmony_ci 157062306a36Sopenharmony_ci wake_up (&ep->wait); 157162306a36Sopenharmony_ci put_ep (ep); 157262306a36Sopenharmony_ci 157362306a36Sopenharmony_ci /* break link to dcache */ 157462306a36Sopenharmony_ci inode_lock(parent); 157562306a36Sopenharmony_ci d_delete (dentry); 157662306a36Sopenharmony_ci dput (dentry); 157762306a36Sopenharmony_ci inode_unlock(parent); 157862306a36Sopenharmony_ci 157962306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 158062306a36Sopenharmony_ci } 158162306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 158262306a36Sopenharmony_ci} 158362306a36Sopenharmony_ci 158462306a36Sopenharmony_ci 158562306a36Sopenharmony_cistatic struct dentry * 158662306a36Sopenharmony_cigadgetfs_create_file (struct super_block *sb, char const *name, 158762306a36Sopenharmony_ci void *data, const struct file_operations *fops); 158862306a36Sopenharmony_ci 158962306a36Sopenharmony_cistatic int activate_ep_files (struct dev_data *dev) 159062306a36Sopenharmony_ci{ 159162306a36Sopenharmony_ci struct usb_ep *ep; 159262306a36Sopenharmony_ci struct ep_data *data; 159362306a36Sopenharmony_ci 159462306a36Sopenharmony_ci gadget_for_each_ep (ep, dev->gadget) { 159562306a36Sopenharmony_ci 159662306a36Sopenharmony_ci data = kzalloc(sizeof(*data), GFP_KERNEL); 159762306a36Sopenharmony_ci if (!data) 159862306a36Sopenharmony_ci goto enomem0; 159962306a36Sopenharmony_ci data->state = STATE_EP_DISABLED; 160062306a36Sopenharmony_ci mutex_init(&data->lock); 160162306a36Sopenharmony_ci init_waitqueue_head (&data->wait); 160262306a36Sopenharmony_ci 160362306a36Sopenharmony_ci strncpy (data->name, ep->name, sizeof (data->name) - 1); 160462306a36Sopenharmony_ci refcount_set (&data->count, 1); 160562306a36Sopenharmony_ci data->dev = dev; 160662306a36Sopenharmony_ci get_dev (dev); 160762306a36Sopenharmony_ci 160862306a36Sopenharmony_ci data->ep = ep; 160962306a36Sopenharmony_ci ep->driver_data = data; 161062306a36Sopenharmony_ci 161162306a36Sopenharmony_ci data->req = usb_ep_alloc_request (ep, GFP_KERNEL); 161262306a36Sopenharmony_ci if (!data->req) 161362306a36Sopenharmony_ci goto enomem1; 161462306a36Sopenharmony_ci 161562306a36Sopenharmony_ci data->dentry = gadgetfs_create_file (dev->sb, data->name, 161662306a36Sopenharmony_ci data, &ep_io_operations); 161762306a36Sopenharmony_ci if (!data->dentry) 161862306a36Sopenharmony_ci goto enomem2; 161962306a36Sopenharmony_ci list_add_tail (&data->epfiles, &dev->epfiles); 162062306a36Sopenharmony_ci } 162162306a36Sopenharmony_ci return 0; 162262306a36Sopenharmony_ci 162362306a36Sopenharmony_cienomem2: 162462306a36Sopenharmony_ci usb_ep_free_request (ep, data->req); 162562306a36Sopenharmony_cienomem1: 162662306a36Sopenharmony_ci put_dev (dev); 162762306a36Sopenharmony_ci kfree (data); 162862306a36Sopenharmony_cienomem0: 162962306a36Sopenharmony_ci DBG (dev, "%s enomem\n", __func__); 163062306a36Sopenharmony_ci destroy_ep_files (dev); 163162306a36Sopenharmony_ci return -ENOMEM; 163262306a36Sopenharmony_ci} 163362306a36Sopenharmony_ci 163462306a36Sopenharmony_cistatic void 163562306a36Sopenharmony_cigadgetfs_unbind (struct usb_gadget *gadget) 163662306a36Sopenharmony_ci{ 163762306a36Sopenharmony_ci struct dev_data *dev = get_gadget_data (gadget); 163862306a36Sopenharmony_ci 163962306a36Sopenharmony_ci DBG (dev, "%s\n", __func__); 164062306a36Sopenharmony_ci 164162306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 164262306a36Sopenharmony_ci dev->state = STATE_DEV_UNBOUND; 164362306a36Sopenharmony_ci while (dev->udc_usage > 0) { 164462306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 164562306a36Sopenharmony_ci usleep_range(1000, 2000); 164662306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 164762306a36Sopenharmony_ci } 164862306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 164962306a36Sopenharmony_ci 165062306a36Sopenharmony_ci destroy_ep_files (dev); 165162306a36Sopenharmony_ci gadget->ep0->driver_data = NULL; 165262306a36Sopenharmony_ci set_gadget_data (gadget, NULL); 165362306a36Sopenharmony_ci 165462306a36Sopenharmony_ci /* we've already been disconnected ... no i/o is active */ 165562306a36Sopenharmony_ci if (dev->req) 165662306a36Sopenharmony_ci usb_ep_free_request (gadget->ep0, dev->req); 165762306a36Sopenharmony_ci DBG (dev, "%s done\n", __func__); 165862306a36Sopenharmony_ci put_dev (dev); 165962306a36Sopenharmony_ci} 166062306a36Sopenharmony_ci 166162306a36Sopenharmony_cistatic struct dev_data *the_device; 166262306a36Sopenharmony_ci 166362306a36Sopenharmony_cistatic int gadgetfs_bind(struct usb_gadget *gadget, 166462306a36Sopenharmony_ci struct usb_gadget_driver *driver) 166562306a36Sopenharmony_ci{ 166662306a36Sopenharmony_ci struct dev_data *dev = the_device; 166762306a36Sopenharmony_ci 166862306a36Sopenharmony_ci if (!dev) 166962306a36Sopenharmony_ci return -ESRCH; 167062306a36Sopenharmony_ci if (0 != strcmp (CHIP, gadget->name)) { 167162306a36Sopenharmony_ci pr_err("%s expected %s controller not %s\n", 167262306a36Sopenharmony_ci shortname, CHIP, gadget->name); 167362306a36Sopenharmony_ci return -ENODEV; 167462306a36Sopenharmony_ci } 167562306a36Sopenharmony_ci 167662306a36Sopenharmony_ci set_gadget_data (gadget, dev); 167762306a36Sopenharmony_ci dev->gadget = gadget; 167862306a36Sopenharmony_ci gadget->ep0->driver_data = dev; 167962306a36Sopenharmony_ci 168062306a36Sopenharmony_ci /* preallocate control response and buffer */ 168162306a36Sopenharmony_ci dev->req = usb_ep_alloc_request (gadget->ep0, GFP_KERNEL); 168262306a36Sopenharmony_ci if (!dev->req) 168362306a36Sopenharmony_ci goto enomem; 168462306a36Sopenharmony_ci dev->req->context = NULL; 168562306a36Sopenharmony_ci dev->req->complete = epio_complete; 168662306a36Sopenharmony_ci 168762306a36Sopenharmony_ci if (activate_ep_files (dev) < 0) 168862306a36Sopenharmony_ci goto enomem; 168962306a36Sopenharmony_ci 169062306a36Sopenharmony_ci INFO (dev, "bound to %s driver\n", gadget->name); 169162306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 169262306a36Sopenharmony_ci dev->state = STATE_DEV_UNCONNECTED; 169362306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 169462306a36Sopenharmony_ci get_dev (dev); 169562306a36Sopenharmony_ci return 0; 169662306a36Sopenharmony_ci 169762306a36Sopenharmony_cienomem: 169862306a36Sopenharmony_ci gadgetfs_unbind (gadget); 169962306a36Sopenharmony_ci return -ENOMEM; 170062306a36Sopenharmony_ci} 170162306a36Sopenharmony_ci 170262306a36Sopenharmony_cistatic void 170362306a36Sopenharmony_cigadgetfs_disconnect (struct usb_gadget *gadget) 170462306a36Sopenharmony_ci{ 170562306a36Sopenharmony_ci struct dev_data *dev = get_gadget_data (gadget); 170662306a36Sopenharmony_ci unsigned long flags; 170762306a36Sopenharmony_ci 170862306a36Sopenharmony_ci spin_lock_irqsave (&dev->lock, flags); 170962306a36Sopenharmony_ci if (dev->state == STATE_DEV_UNCONNECTED) 171062306a36Sopenharmony_ci goto exit; 171162306a36Sopenharmony_ci dev->state = STATE_DEV_UNCONNECTED; 171262306a36Sopenharmony_ci 171362306a36Sopenharmony_ci INFO (dev, "disconnected\n"); 171462306a36Sopenharmony_ci next_event (dev, GADGETFS_DISCONNECT); 171562306a36Sopenharmony_ci ep0_readable (dev); 171662306a36Sopenharmony_ciexit: 171762306a36Sopenharmony_ci spin_unlock_irqrestore (&dev->lock, flags); 171862306a36Sopenharmony_ci} 171962306a36Sopenharmony_ci 172062306a36Sopenharmony_cistatic void 172162306a36Sopenharmony_cigadgetfs_suspend (struct usb_gadget *gadget) 172262306a36Sopenharmony_ci{ 172362306a36Sopenharmony_ci struct dev_data *dev = get_gadget_data (gadget); 172462306a36Sopenharmony_ci unsigned long flags; 172562306a36Sopenharmony_ci 172662306a36Sopenharmony_ci INFO (dev, "suspended from state %d\n", dev->state); 172762306a36Sopenharmony_ci spin_lock_irqsave(&dev->lock, flags); 172862306a36Sopenharmony_ci switch (dev->state) { 172962306a36Sopenharmony_ci case STATE_DEV_SETUP: // VERY odd... host died?? 173062306a36Sopenharmony_ci case STATE_DEV_CONNECTED: 173162306a36Sopenharmony_ci case STATE_DEV_UNCONNECTED: 173262306a36Sopenharmony_ci next_event (dev, GADGETFS_SUSPEND); 173362306a36Sopenharmony_ci ep0_readable (dev); 173462306a36Sopenharmony_ci fallthrough; 173562306a36Sopenharmony_ci default: 173662306a36Sopenharmony_ci break; 173762306a36Sopenharmony_ci } 173862306a36Sopenharmony_ci spin_unlock_irqrestore(&dev->lock, flags); 173962306a36Sopenharmony_ci} 174062306a36Sopenharmony_ci 174162306a36Sopenharmony_cistatic struct usb_gadget_driver gadgetfs_driver = { 174262306a36Sopenharmony_ci .function = (char *) driver_desc, 174362306a36Sopenharmony_ci .bind = gadgetfs_bind, 174462306a36Sopenharmony_ci .unbind = gadgetfs_unbind, 174562306a36Sopenharmony_ci .setup = gadgetfs_setup, 174662306a36Sopenharmony_ci .reset = gadgetfs_disconnect, 174762306a36Sopenharmony_ci .disconnect = gadgetfs_disconnect, 174862306a36Sopenharmony_ci .suspend = gadgetfs_suspend, 174962306a36Sopenharmony_ci 175062306a36Sopenharmony_ci .driver = { 175162306a36Sopenharmony_ci .name = shortname, 175262306a36Sopenharmony_ci }, 175362306a36Sopenharmony_ci}; 175462306a36Sopenharmony_ci 175562306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 175662306a36Sopenharmony_ci/* DEVICE INITIALIZATION 175762306a36Sopenharmony_ci * 175862306a36Sopenharmony_ci * fd = open ("/dev/gadget/$CHIP", O_RDWR) 175962306a36Sopenharmony_ci * status = write (fd, descriptors, sizeof descriptors) 176062306a36Sopenharmony_ci * 176162306a36Sopenharmony_ci * That write establishes the device configuration, so the kernel can 176262306a36Sopenharmony_ci * bind to the controller ... guaranteeing it can handle enumeration 176362306a36Sopenharmony_ci * at all necessary speeds. Descriptor order is: 176462306a36Sopenharmony_ci * 176562306a36Sopenharmony_ci * . message tag (u32, host order) ... for now, must be zero; it 176662306a36Sopenharmony_ci * would change to support features like multi-config devices 176762306a36Sopenharmony_ci * . full/low speed config ... all wTotalLength bytes (with interface, 176862306a36Sopenharmony_ci * class, altsetting, endpoint, and other descriptors) 176962306a36Sopenharmony_ci * . high speed config ... all descriptors, for high speed operation; 177062306a36Sopenharmony_ci * this one's optional except for high-speed hardware 177162306a36Sopenharmony_ci * . device descriptor 177262306a36Sopenharmony_ci * 177362306a36Sopenharmony_ci * Endpoints are not yet enabled. Drivers must wait until device 177462306a36Sopenharmony_ci * configuration and interface altsetting changes create 177562306a36Sopenharmony_ci * the need to configure (or unconfigure) them. 177662306a36Sopenharmony_ci * 177762306a36Sopenharmony_ci * After initialization, the device stays active for as long as that 177862306a36Sopenharmony_ci * $CHIP file is open. Events must then be read from that descriptor, 177962306a36Sopenharmony_ci * such as configuration notifications. 178062306a36Sopenharmony_ci */ 178162306a36Sopenharmony_ci 178262306a36Sopenharmony_cistatic int is_valid_config(struct usb_config_descriptor *config, 178362306a36Sopenharmony_ci unsigned int total) 178462306a36Sopenharmony_ci{ 178562306a36Sopenharmony_ci return config->bDescriptorType == USB_DT_CONFIG 178662306a36Sopenharmony_ci && config->bLength == USB_DT_CONFIG_SIZE 178762306a36Sopenharmony_ci && total >= USB_DT_CONFIG_SIZE 178862306a36Sopenharmony_ci && config->bConfigurationValue != 0 178962306a36Sopenharmony_ci && (config->bmAttributes & USB_CONFIG_ATT_ONE) != 0 179062306a36Sopenharmony_ci && (config->bmAttributes & USB_CONFIG_ATT_WAKEUP) == 0; 179162306a36Sopenharmony_ci /* FIXME if gadget->is_otg, _must_ include an otg descriptor */ 179262306a36Sopenharmony_ci /* FIXME check lengths: walk to end */ 179362306a36Sopenharmony_ci} 179462306a36Sopenharmony_ci 179562306a36Sopenharmony_cistatic ssize_t 179662306a36Sopenharmony_cidev_config (struct file *fd, const char __user *buf, size_t len, loff_t *ptr) 179762306a36Sopenharmony_ci{ 179862306a36Sopenharmony_ci struct dev_data *dev = fd->private_data; 179962306a36Sopenharmony_ci ssize_t value, length = len; 180062306a36Sopenharmony_ci unsigned total; 180162306a36Sopenharmony_ci u32 tag; 180262306a36Sopenharmony_ci char *kbuf; 180362306a36Sopenharmony_ci 180462306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 180562306a36Sopenharmony_ci if (dev->state > STATE_DEV_OPENED) { 180662306a36Sopenharmony_ci value = ep0_write(fd, buf, len, ptr); 180762306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 180862306a36Sopenharmony_ci return value; 180962306a36Sopenharmony_ci } 181062306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 181162306a36Sopenharmony_ci 181262306a36Sopenharmony_ci if ((len < (USB_DT_CONFIG_SIZE + USB_DT_DEVICE_SIZE + 4)) || 181362306a36Sopenharmony_ci (len > PAGE_SIZE * 4)) 181462306a36Sopenharmony_ci return -EINVAL; 181562306a36Sopenharmony_ci 181662306a36Sopenharmony_ci /* we might need to change message format someday */ 181762306a36Sopenharmony_ci if (copy_from_user (&tag, buf, 4)) 181862306a36Sopenharmony_ci return -EFAULT; 181962306a36Sopenharmony_ci if (tag != 0) 182062306a36Sopenharmony_ci return -EINVAL; 182162306a36Sopenharmony_ci buf += 4; 182262306a36Sopenharmony_ci length -= 4; 182362306a36Sopenharmony_ci 182462306a36Sopenharmony_ci kbuf = memdup_user(buf, length); 182562306a36Sopenharmony_ci if (IS_ERR(kbuf)) 182662306a36Sopenharmony_ci return PTR_ERR(kbuf); 182762306a36Sopenharmony_ci 182862306a36Sopenharmony_ci spin_lock_irq (&dev->lock); 182962306a36Sopenharmony_ci value = -EINVAL; 183062306a36Sopenharmony_ci if (dev->buf) { 183162306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 183262306a36Sopenharmony_ci kfree(kbuf); 183362306a36Sopenharmony_ci return value; 183462306a36Sopenharmony_ci } 183562306a36Sopenharmony_ci dev->buf = kbuf; 183662306a36Sopenharmony_ci 183762306a36Sopenharmony_ci /* full or low speed config */ 183862306a36Sopenharmony_ci dev->config = (void *) kbuf; 183962306a36Sopenharmony_ci total = le16_to_cpu(dev->config->wTotalLength); 184062306a36Sopenharmony_ci if (!is_valid_config(dev->config, total) || 184162306a36Sopenharmony_ci total > length - USB_DT_DEVICE_SIZE) 184262306a36Sopenharmony_ci goto fail; 184362306a36Sopenharmony_ci kbuf += total; 184462306a36Sopenharmony_ci length -= total; 184562306a36Sopenharmony_ci 184662306a36Sopenharmony_ci /* optional high speed config */ 184762306a36Sopenharmony_ci if (kbuf [1] == USB_DT_CONFIG) { 184862306a36Sopenharmony_ci dev->hs_config = (void *) kbuf; 184962306a36Sopenharmony_ci total = le16_to_cpu(dev->hs_config->wTotalLength); 185062306a36Sopenharmony_ci if (!is_valid_config(dev->hs_config, total) || 185162306a36Sopenharmony_ci total > length - USB_DT_DEVICE_SIZE) 185262306a36Sopenharmony_ci goto fail; 185362306a36Sopenharmony_ci kbuf += total; 185462306a36Sopenharmony_ci length -= total; 185562306a36Sopenharmony_ci } else { 185662306a36Sopenharmony_ci dev->hs_config = NULL; 185762306a36Sopenharmony_ci } 185862306a36Sopenharmony_ci 185962306a36Sopenharmony_ci /* could support multiple configs, using another encoding! */ 186062306a36Sopenharmony_ci 186162306a36Sopenharmony_ci /* device descriptor (tweaked for paranoia) */ 186262306a36Sopenharmony_ci if (length != USB_DT_DEVICE_SIZE) 186362306a36Sopenharmony_ci goto fail; 186462306a36Sopenharmony_ci dev->dev = (void *)kbuf; 186562306a36Sopenharmony_ci if (dev->dev->bLength != USB_DT_DEVICE_SIZE 186662306a36Sopenharmony_ci || dev->dev->bDescriptorType != USB_DT_DEVICE 186762306a36Sopenharmony_ci || dev->dev->bNumConfigurations != 1) 186862306a36Sopenharmony_ci goto fail; 186962306a36Sopenharmony_ci dev->dev->bcdUSB = cpu_to_le16 (0x0200); 187062306a36Sopenharmony_ci 187162306a36Sopenharmony_ci /* triggers gadgetfs_bind(); then we can enumerate. */ 187262306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 187362306a36Sopenharmony_ci if (dev->hs_config) 187462306a36Sopenharmony_ci gadgetfs_driver.max_speed = USB_SPEED_HIGH; 187562306a36Sopenharmony_ci else 187662306a36Sopenharmony_ci gadgetfs_driver.max_speed = USB_SPEED_FULL; 187762306a36Sopenharmony_ci 187862306a36Sopenharmony_ci value = usb_gadget_register_driver(&gadgetfs_driver); 187962306a36Sopenharmony_ci if (value != 0) { 188062306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 188162306a36Sopenharmony_ci goto fail; 188262306a36Sopenharmony_ci } else { 188362306a36Sopenharmony_ci /* at this point "good" hardware has for the first time 188462306a36Sopenharmony_ci * let the USB the host see us. alternatively, if users 188562306a36Sopenharmony_ci * unplug/replug that will clear all the error state. 188662306a36Sopenharmony_ci * 188762306a36Sopenharmony_ci * note: everything running before here was guaranteed 188862306a36Sopenharmony_ci * to choke driver model style diagnostics. from here 188962306a36Sopenharmony_ci * on, they can work ... except in cleanup paths that 189062306a36Sopenharmony_ci * kick in after the ep0 descriptor is closed. 189162306a36Sopenharmony_ci */ 189262306a36Sopenharmony_ci value = len; 189362306a36Sopenharmony_ci dev->gadget_registered = true; 189462306a36Sopenharmony_ci } 189562306a36Sopenharmony_ci return value; 189662306a36Sopenharmony_ci 189762306a36Sopenharmony_cifail: 189862306a36Sopenharmony_ci dev->config = NULL; 189962306a36Sopenharmony_ci dev->hs_config = NULL; 190062306a36Sopenharmony_ci dev->dev = NULL; 190162306a36Sopenharmony_ci spin_unlock_irq (&dev->lock); 190262306a36Sopenharmony_ci pr_debug ("%s: %s fail %zd, %p\n", shortname, __func__, value, dev); 190362306a36Sopenharmony_ci kfree (dev->buf); 190462306a36Sopenharmony_ci dev->buf = NULL; 190562306a36Sopenharmony_ci return value; 190662306a36Sopenharmony_ci} 190762306a36Sopenharmony_ci 190862306a36Sopenharmony_cistatic int 190962306a36Sopenharmony_cigadget_dev_open (struct inode *inode, struct file *fd) 191062306a36Sopenharmony_ci{ 191162306a36Sopenharmony_ci struct dev_data *dev = inode->i_private; 191262306a36Sopenharmony_ci int value = -EBUSY; 191362306a36Sopenharmony_ci 191462306a36Sopenharmony_ci spin_lock_irq(&dev->lock); 191562306a36Sopenharmony_ci if (dev->state == STATE_DEV_DISABLED) { 191662306a36Sopenharmony_ci dev->ev_next = 0; 191762306a36Sopenharmony_ci dev->state = STATE_DEV_OPENED; 191862306a36Sopenharmony_ci fd->private_data = dev; 191962306a36Sopenharmony_ci get_dev (dev); 192062306a36Sopenharmony_ci value = 0; 192162306a36Sopenharmony_ci } 192262306a36Sopenharmony_ci spin_unlock_irq(&dev->lock); 192362306a36Sopenharmony_ci return value; 192462306a36Sopenharmony_ci} 192562306a36Sopenharmony_ci 192662306a36Sopenharmony_cistatic const struct file_operations ep0_operations = { 192762306a36Sopenharmony_ci .llseek = no_llseek, 192862306a36Sopenharmony_ci 192962306a36Sopenharmony_ci .open = gadget_dev_open, 193062306a36Sopenharmony_ci .read = ep0_read, 193162306a36Sopenharmony_ci .write = dev_config, 193262306a36Sopenharmony_ci .fasync = ep0_fasync, 193362306a36Sopenharmony_ci .poll = ep0_poll, 193462306a36Sopenharmony_ci .unlocked_ioctl = gadget_dev_ioctl, 193562306a36Sopenharmony_ci .release = dev_release, 193662306a36Sopenharmony_ci}; 193762306a36Sopenharmony_ci 193862306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 193962306a36Sopenharmony_ci 194062306a36Sopenharmony_ci/* FILESYSTEM AND SUPERBLOCK OPERATIONS 194162306a36Sopenharmony_ci * 194262306a36Sopenharmony_ci * Mounting the filesystem creates a controller file, used first for 194362306a36Sopenharmony_ci * device configuration then later for event monitoring. 194462306a36Sopenharmony_ci */ 194562306a36Sopenharmony_ci 194662306a36Sopenharmony_ci 194762306a36Sopenharmony_ci/* FIXME PAM etc could set this security policy without mount options 194862306a36Sopenharmony_ci * if epfiles inherited ownership and permissons from ep0 ... 194962306a36Sopenharmony_ci */ 195062306a36Sopenharmony_ci 195162306a36Sopenharmony_cistatic unsigned default_uid; 195262306a36Sopenharmony_cistatic unsigned default_gid; 195362306a36Sopenharmony_cistatic unsigned default_perm = S_IRUSR | S_IWUSR; 195462306a36Sopenharmony_ci 195562306a36Sopenharmony_cimodule_param (default_uid, uint, 0644); 195662306a36Sopenharmony_cimodule_param (default_gid, uint, 0644); 195762306a36Sopenharmony_cimodule_param (default_perm, uint, 0644); 195862306a36Sopenharmony_ci 195962306a36Sopenharmony_ci 196062306a36Sopenharmony_cistatic struct inode * 196162306a36Sopenharmony_cigadgetfs_make_inode (struct super_block *sb, 196262306a36Sopenharmony_ci void *data, const struct file_operations *fops, 196362306a36Sopenharmony_ci int mode) 196462306a36Sopenharmony_ci{ 196562306a36Sopenharmony_ci struct inode *inode = new_inode (sb); 196662306a36Sopenharmony_ci 196762306a36Sopenharmony_ci if (inode) { 196862306a36Sopenharmony_ci inode->i_ino = get_next_ino(); 196962306a36Sopenharmony_ci inode->i_mode = mode; 197062306a36Sopenharmony_ci inode->i_uid = make_kuid(&init_user_ns, default_uid); 197162306a36Sopenharmony_ci inode->i_gid = make_kgid(&init_user_ns, default_gid); 197262306a36Sopenharmony_ci inode->i_atime = inode->i_mtime = inode_set_ctime_current(inode); 197362306a36Sopenharmony_ci inode->i_private = data; 197462306a36Sopenharmony_ci inode->i_fop = fops; 197562306a36Sopenharmony_ci } 197662306a36Sopenharmony_ci return inode; 197762306a36Sopenharmony_ci} 197862306a36Sopenharmony_ci 197962306a36Sopenharmony_ci/* creates in fs root directory, so non-renamable and non-linkable. 198062306a36Sopenharmony_ci * so inode and dentry are paired, until device reconfig. 198162306a36Sopenharmony_ci */ 198262306a36Sopenharmony_cistatic struct dentry * 198362306a36Sopenharmony_cigadgetfs_create_file (struct super_block *sb, char const *name, 198462306a36Sopenharmony_ci void *data, const struct file_operations *fops) 198562306a36Sopenharmony_ci{ 198662306a36Sopenharmony_ci struct dentry *dentry; 198762306a36Sopenharmony_ci struct inode *inode; 198862306a36Sopenharmony_ci 198962306a36Sopenharmony_ci dentry = d_alloc_name(sb->s_root, name); 199062306a36Sopenharmony_ci if (!dentry) 199162306a36Sopenharmony_ci return NULL; 199262306a36Sopenharmony_ci 199362306a36Sopenharmony_ci inode = gadgetfs_make_inode (sb, data, fops, 199462306a36Sopenharmony_ci S_IFREG | (default_perm & S_IRWXUGO)); 199562306a36Sopenharmony_ci if (!inode) { 199662306a36Sopenharmony_ci dput(dentry); 199762306a36Sopenharmony_ci return NULL; 199862306a36Sopenharmony_ci } 199962306a36Sopenharmony_ci d_add (dentry, inode); 200062306a36Sopenharmony_ci return dentry; 200162306a36Sopenharmony_ci} 200262306a36Sopenharmony_ci 200362306a36Sopenharmony_cistatic const struct super_operations gadget_fs_operations = { 200462306a36Sopenharmony_ci .statfs = simple_statfs, 200562306a36Sopenharmony_ci .drop_inode = generic_delete_inode, 200662306a36Sopenharmony_ci}; 200762306a36Sopenharmony_ci 200862306a36Sopenharmony_cistatic int 200962306a36Sopenharmony_cigadgetfs_fill_super (struct super_block *sb, struct fs_context *fc) 201062306a36Sopenharmony_ci{ 201162306a36Sopenharmony_ci struct inode *inode; 201262306a36Sopenharmony_ci struct dev_data *dev; 201362306a36Sopenharmony_ci int rc; 201462306a36Sopenharmony_ci 201562306a36Sopenharmony_ci mutex_lock(&sb_mutex); 201662306a36Sopenharmony_ci 201762306a36Sopenharmony_ci if (the_device) { 201862306a36Sopenharmony_ci rc = -ESRCH; 201962306a36Sopenharmony_ci goto Done; 202062306a36Sopenharmony_ci } 202162306a36Sopenharmony_ci 202262306a36Sopenharmony_ci CHIP = usb_get_gadget_udc_name(); 202362306a36Sopenharmony_ci if (!CHIP) { 202462306a36Sopenharmony_ci rc = -ENODEV; 202562306a36Sopenharmony_ci goto Done; 202662306a36Sopenharmony_ci } 202762306a36Sopenharmony_ci 202862306a36Sopenharmony_ci /* superblock */ 202962306a36Sopenharmony_ci sb->s_blocksize = PAGE_SIZE; 203062306a36Sopenharmony_ci sb->s_blocksize_bits = PAGE_SHIFT; 203162306a36Sopenharmony_ci sb->s_magic = GADGETFS_MAGIC; 203262306a36Sopenharmony_ci sb->s_op = &gadget_fs_operations; 203362306a36Sopenharmony_ci sb->s_time_gran = 1; 203462306a36Sopenharmony_ci 203562306a36Sopenharmony_ci /* root inode */ 203662306a36Sopenharmony_ci inode = gadgetfs_make_inode (sb, 203762306a36Sopenharmony_ci NULL, &simple_dir_operations, 203862306a36Sopenharmony_ci S_IFDIR | S_IRUGO | S_IXUGO); 203962306a36Sopenharmony_ci if (!inode) 204062306a36Sopenharmony_ci goto Enomem; 204162306a36Sopenharmony_ci inode->i_op = &simple_dir_inode_operations; 204262306a36Sopenharmony_ci if (!(sb->s_root = d_make_root (inode))) 204362306a36Sopenharmony_ci goto Enomem; 204462306a36Sopenharmony_ci 204562306a36Sopenharmony_ci /* the ep0 file is named after the controller we expect; 204662306a36Sopenharmony_ci * user mode code can use it for sanity checks, like we do. 204762306a36Sopenharmony_ci */ 204862306a36Sopenharmony_ci dev = dev_new (); 204962306a36Sopenharmony_ci if (!dev) 205062306a36Sopenharmony_ci goto Enomem; 205162306a36Sopenharmony_ci 205262306a36Sopenharmony_ci dev->sb = sb; 205362306a36Sopenharmony_ci dev->dentry = gadgetfs_create_file(sb, CHIP, dev, &ep0_operations); 205462306a36Sopenharmony_ci if (!dev->dentry) { 205562306a36Sopenharmony_ci put_dev(dev); 205662306a36Sopenharmony_ci goto Enomem; 205762306a36Sopenharmony_ci } 205862306a36Sopenharmony_ci 205962306a36Sopenharmony_ci /* other endpoint files are available after hardware setup, 206062306a36Sopenharmony_ci * from binding to a controller. 206162306a36Sopenharmony_ci */ 206262306a36Sopenharmony_ci the_device = dev; 206362306a36Sopenharmony_ci rc = 0; 206462306a36Sopenharmony_ci goto Done; 206562306a36Sopenharmony_ci 206662306a36Sopenharmony_ci Enomem: 206762306a36Sopenharmony_ci kfree(CHIP); 206862306a36Sopenharmony_ci CHIP = NULL; 206962306a36Sopenharmony_ci rc = -ENOMEM; 207062306a36Sopenharmony_ci 207162306a36Sopenharmony_ci Done: 207262306a36Sopenharmony_ci mutex_unlock(&sb_mutex); 207362306a36Sopenharmony_ci return rc; 207462306a36Sopenharmony_ci} 207562306a36Sopenharmony_ci 207662306a36Sopenharmony_ci/* "mount -t gadgetfs path /dev/gadget" ends up here */ 207762306a36Sopenharmony_cistatic int gadgetfs_get_tree(struct fs_context *fc) 207862306a36Sopenharmony_ci{ 207962306a36Sopenharmony_ci return get_tree_single(fc, gadgetfs_fill_super); 208062306a36Sopenharmony_ci} 208162306a36Sopenharmony_ci 208262306a36Sopenharmony_cistatic const struct fs_context_operations gadgetfs_context_ops = { 208362306a36Sopenharmony_ci .get_tree = gadgetfs_get_tree, 208462306a36Sopenharmony_ci}; 208562306a36Sopenharmony_ci 208662306a36Sopenharmony_cistatic int gadgetfs_init_fs_context(struct fs_context *fc) 208762306a36Sopenharmony_ci{ 208862306a36Sopenharmony_ci fc->ops = &gadgetfs_context_ops; 208962306a36Sopenharmony_ci return 0; 209062306a36Sopenharmony_ci} 209162306a36Sopenharmony_ci 209262306a36Sopenharmony_cistatic void 209362306a36Sopenharmony_cigadgetfs_kill_sb (struct super_block *sb) 209462306a36Sopenharmony_ci{ 209562306a36Sopenharmony_ci mutex_lock(&sb_mutex); 209662306a36Sopenharmony_ci kill_litter_super (sb); 209762306a36Sopenharmony_ci if (the_device) { 209862306a36Sopenharmony_ci put_dev (the_device); 209962306a36Sopenharmony_ci the_device = NULL; 210062306a36Sopenharmony_ci } 210162306a36Sopenharmony_ci kfree(CHIP); 210262306a36Sopenharmony_ci CHIP = NULL; 210362306a36Sopenharmony_ci mutex_unlock(&sb_mutex); 210462306a36Sopenharmony_ci} 210562306a36Sopenharmony_ci 210662306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 210762306a36Sopenharmony_ci 210862306a36Sopenharmony_cistatic struct file_system_type gadgetfs_type = { 210962306a36Sopenharmony_ci .owner = THIS_MODULE, 211062306a36Sopenharmony_ci .name = shortname, 211162306a36Sopenharmony_ci .init_fs_context = gadgetfs_init_fs_context, 211262306a36Sopenharmony_ci .kill_sb = gadgetfs_kill_sb, 211362306a36Sopenharmony_ci}; 211462306a36Sopenharmony_ciMODULE_ALIAS_FS("gadgetfs"); 211562306a36Sopenharmony_ci 211662306a36Sopenharmony_ci/*----------------------------------------------------------------------*/ 211762306a36Sopenharmony_ci 211862306a36Sopenharmony_cistatic int __init gadgetfs_init (void) 211962306a36Sopenharmony_ci{ 212062306a36Sopenharmony_ci int status; 212162306a36Sopenharmony_ci 212262306a36Sopenharmony_ci status = register_filesystem (&gadgetfs_type); 212362306a36Sopenharmony_ci if (status == 0) 212462306a36Sopenharmony_ci pr_info ("%s: %s, version " DRIVER_VERSION "\n", 212562306a36Sopenharmony_ci shortname, driver_desc); 212662306a36Sopenharmony_ci return status; 212762306a36Sopenharmony_ci} 212862306a36Sopenharmony_cimodule_init (gadgetfs_init); 212962306a36Sopenharmony_ci 213062306a36Sopenharmony_cistatic void __exit gadgetfs_cleanup (void) 213162306a36Sopenharmony_ci{ 213262306a36Sopenharmony_ci pr_debug ("unregister %s\n", shortname); 213362306a36Sopenharmony_ci unregister_filesystem (&gadgetfs_type); 213462306a36Sopenharmony_ci} 213562306a36Sopenharmony_cimodule_exit (gadgetfs_cleanup); 213662306a36Sopenharmony_ci 2137