1 // SPDX-License-Identifier: GPL-2.0
2 /*
3 * n_gsm.c GSM 0710 tty multiplexor
4 * Copyright (c) 2009/10 Intel Corporation
5 *
6 * * THIS IS A DEVELOPMENT SNAPSHOT IT IS NOT A FINAL RELEASE *
7 *
8 * TO DO:
9 * Mostly done: ioctls for setting modes/timing
10 * Partly done: hooks so you can pull off frames to non tty devs
11 * Restart DLCI 0 when it closes ?
12 * Improve the tx engine
13 * Resolve tx side locking by adding a queue_head and routing
14 * all control traffic via it
15 * General tidy/document
16 * Review the locking/move to refcounts more (mux now moved to an
17 * alloc/free model ready)
18 * Use newest tty open/close port helpers and install hooks
19 * What to do about power functions ?
20 * Termios setting and negotiation
21 * Do we need a 'which mux are you' ioctl to correlate mux and tty sets
22 *
23 */
24
25 #include <linux/types.h>
26 #include <linux/major.h>
27 #include <linux/errno.h>
28 #include <linux/signal.h>
29 #include <linux/fcntl.h>
30 #include <linux/sched/signal.h>
31 #include <linux/interrupt.h>
32 #include <linux/tty.h>
33 #include <linux/ctype.h>
34 #include <linux/mm.h>
35 #include <linux/string.h>
36 #include <linux/slab.h>
37 #include <linux/poll.h>
38 #include <linux/bitops.h>
39 #include <linux/file.h>
40 #include <linux/uaccess.h>
41 #include <linux/module.h>
42 #include <linux/timer.h>
43 #include <linux/tty_flip.h>
44 #include <linux/tty_driver.h>
45 #include <linux/serial.h>
46 #include <linux/kfifo.h>
47 #include <linux/skbuff.h>
48 #include <net/arp.h>
49 #include <linux/ip.h>
50 #include <linux/netdevice.h>
51 #include <linux/etherdevice.h>
52 #include <linux/gsmmux.h>
53
54 static int debug;
55 module_param(debug, int, 0600);
56
57 /* Defaults: these are from the specification */
58
59 #define T1 10 /* 100mS */
60 #define T2 34 /* 333mS */
61 #define N2 3 /* Retry 3 times */
62
63 /* Use long timers for testing at low speed with debug on */
64 #ifdef DEBUG_TIMING
65 #define T1 100
66 #define T2 200
67 #endif
68
69 /*
70 * Semi-arbitrary buffer size limits. 0710 is normally run with 32-64 byte
71 * limits so this is plenty
72 */
73 #define MAX_MRU 1500
74 #define MAX_MTU 1500
75 #define GSM_NET_TX_TIMEOUT (HZ*10)
76
77 /**
78 * struct gsm_mux_net - network interface
79 * @struct gsm_dlci* dlci
80 *
81 * Created when net interface is initialized.
82 **/
83 struct gsm_mux_net {
84 struct kref ref;
85 struct gsm_dlci *dlci;
86 };
87
88 /*
89 * Each block of data we have queued to go out is in the form of
90 * a gsm_msg which holds everything we need in a link layer independent
91 * format
92 */
93
94 struct gsm_msg {
95 struct list_head list;
96 u8 addr; /* DLCI address + flags */
97 u8 ctrl; /* Control byte + flags */
98 unsigned int len; /* Length of data block (can be zero) */
99 unsigned char *data; /* Points into buffer but not at the start */
100 unsigned char buffer[0];
101 };
102
103 /*
104 * Each active data link has a gsm_dlci structure associated which ties
105 * the link layer to an optional tty (if the tty side is open). To avoid
106 * complexity right now these are only ever freed up when the mux is
107 * shut down.
108 *
109 * At the moment we don't free DLCI objects until the mux is torn down
110 * this avoid object life time issues but might be worth review later.
111 */
112
113 struct gsm_dlci {
114 struct gsm_mux *gsm;
115 int addr;
116 int state;
117 #define DLCI_CLOSED 0
118 #define DLCI_OPENING 1 /* Sending SABM not seen UA */
119 #define DLCI_OPEN 2 /* SABM/UA complete */
120 #define DLCI_CLOSING 3 /* Sending DISC not seen UA/DM */
121 struct mutex mutex;
122
123 /* Link layer */
124 int mode;
125 #define DLCI_MODE_ABM 0 /* Normal Asynchronous Balanced Mode */
126 #define DLCI_MODE_ADM 1 /* Asynchronous Disconnected Mode */
127 spinlock_t lock; /* Protects the internal state */
128 struct timer_list t1; /* Retransmit timer for SABM and UA */
129 int retries;
130 /* Uplink tty if active */
131 struct tty_port port; /* The tty bound to this DLCI if there is one */
132 struct kfifo *fifo; /* Queue fifo for the DLCI */
133 struct kfifo _fifo; /* For new fifo API porting only */
134 int adaption; /* Adaption layer in use */
135 int prev_adaption;
136 u32 modem_rx; /* Our incoming virtual modem lines */
137 u32 modem_tx; /* Our outgoing modem lines */
138 int dead; /* Refuse re-open */
139 /* Flow control */
140 int throttled; /* Private copy of throttle state */
141 int constipated; /* Throttle status for outgoing */
142 /* Packetised I/O */
143 struct sk_buff *skb; /* Frame being sent */
144 struct sk_buff_head skb_list; /* Queued frames */
145 /* Data handling callback */
146 void (*data)(struct gsm_dlci *dlci, u8 *data, int len);
147 void (*prev_data)(struct gsm_dlci *dlci, u8 *data, int len);
148 struct net_device *net; /* network interface, if created */
149 };
150
151 /* DLCI 0, 62/63 are special or reserved see gsmtty_open */
152
153 #define NUM_DLCI 64
154
155 /*
156 * DLCI 0 is used to pass control blocks out of band of the data
157 * flow (and with a higher link priority). One command can be outstanding
158 * at a time and we use this structure to manage them. They are created
159 * and destroyed by the user context, and updated by the receive paths
160 * and timers
161 */
162
163 struct gsm_control {
164 u8 cmd; /* Command we are issuing */
165 u8 *data; /* Data for the command in case we retransmit */
166 int len; /* Length of block for retransmission */
167 int done; /* Done flag */
168 int error; /* Error if any */
169 };
170
171 /*
172 * Each GSM mux we have is represented by this structure. If we are
173 * operating as an ldisc then we use this structure as our ldisc
174 * state. We need to sort out lifetimes and locking with respect
175 * to the gsm mux array. For now we don't free DLCI objects that
176 * have been instantiated until the mux itself is terminated.
177 *
178 * To consider further: tty open versus mux shutdown.
179 */
180
181 struct gsm_mux {
182 struct tty_struct *tty; /* The tty our ldisc is bound to */
183 spinlock_t lock;
184 struct mutex mutex;
185 unsigned int num;
186 struct kref ref;
187
188 /* Events on the GSM channel */
189 wait_queue_head_t event;
190
191 /* Bits for GSM mode decoding */
192
193 /* Framing Layer */
194 unsigned char *buf;
195 int state;
196 #define GSM_SEARCH 0
197 #define GSM_START 1
198 #define GSM_ADDRESS 2
199 #define GSM_CONTROL 3
200 #define GSM_LEN 4
201 #define GSM_DATA 5
202 #define GSM_FCS 6
203 #define GSM_OVERRUN 7
204 #define GSM_LEN0 8
205 #define GSM_LEN1 9
206 #define GSM_SSOF 10
207 unsigned int len;
208 unsigned int address;
209 unsigned int count;
210 int escape;
211 int encoding;
212 u8 control;
213 u8 fcs;
214 u8 received_fcs;
215 u8 *txframe; /* TX framing buffer */
216
217 /* Methods for the receiver side */
218 void (*receive)(struct gsm_mux *gsm, u8 ch);
219 void (*error)(struct gsm_mux *gsm, u8 ch, u8 flag);
220 /* And transmit side */
221 int (*output)(struct gsm_mux *mux, u8 *data, int len);
222
223 /* Link Layer */
224 unsigned int mru;
225 unsigned int mtu;
226 int initiator; /* Did we initiate connection */
227 int dead; /* Has the mux been shut down */
228 struct gsm_dlci *dlci[NUM_DLCI];
229 int constipated; /* Asked by remote to shut up */
230
231 spinlock_t tx_lock;
232 unsigned int tx_bytes; /* TX data outstanding */
233 #define TX_THRESH_HI 8192
234 #define TX_THRESH_LO 2048
235 struct list_head tx_list; /* Pending data packets */
236
237 /* Control messages */
238 struct timer_list t2_timer; /* Retransmit timer for commands */
239 int cretries; /* Command retry counter */
240 struct gsm_control *pending_cmd;/* Our current pending command */
241 spinlock_t control_lock; /* Protects the pending command */
242
243 /* Configuration */
244 int adaption; /* 1 or 2 supported */
245 u8 ftype; /* UI or UIH */
246 int t1, t2; /* Timers in 1/100th of a sec */
247 int n2; /* Retry count */
248
249 /* Statistics (not currently exposed) */
250 unsigned long bad_fcs;
251 unsigned long malformed;
252 unsigned long io_error;
253 unsigned long bad_size;
254 unsigned long unsupported;
255 };
256
257
258 /*
259 * Mux objects - needed so that we can translate a tty index into the
260 * relevant mux and DLCI.
261 */
262
263 #define MAX_MUX 4 /* 256 minors */
264 static struct gsm_mux *gsm_mux[MAX_MUX]; /* GSM muxes */
265 static spinlock_t gsm_mux_lock;
266
267 static struct tty_driver *gsm_tty_driver;
268
269 /*
270 * This section of the driver logic implements the GSM encodings
271 * both the basic and the 'advanced'. Reliable transport is not
272 * supported.
273 */
274
275 #define CR 0x02
276 #define EA 0x01
277 #define PF 0x10
278
279 /* I is special: the rest are ..*/
280 #define RR 0x01
281 #define UI 0x03
282 #define RNR 0x05
283 #define REJ 0x09
284 #define DM 0x0F
285 #define SABM 0x2F
286 #define DISC 0x43
287 #define UA 0x63
288 #define UIH 0xEF
289
290 /* Channel commands */
291 #define CMD_NSC 0x09
292 #define CMD_TEST 0x11
293 #define CMD_PSC 0x21
294 #define CMD_RLS 0x29
295 #define CMD_FCOFF 0x31
296 #define CMD_PN 0x41
297 #define CMD_RPN 0x49
298 #define CMD_FCON 0x51
299 #define CMD_CLD 0x61
300 #define CMD_SNC 0x69
301 #define CMD_MSC 0x71
302
303 /* Virtual modem bits */
304 #define MDM_FC 0x01
305 #define MDM_RTC 0x02
306 #define MDM_RTR 0x04
307 #define MDM_IC 0x20
308 #define MDM_DV 0x40
309
310 #define GSM0_SOF 0xF9
311 #define GSM1_SOF 0x7E
312 #define GSM1_ESCAPE 0x7D
313 #define GSM1_ESCAPE_BITS 0x20
314 #define XON 0x11
315 #define XOFF 0x13
316
317 static const struct tty_port_operations gsm_port_ops;
318
319 /*
320 * CRC table for GSM 0710
321 */
322
323 static const u8 gsm_fcs8[256] = {
324 0x00, 0x91, 0xE3, 0x72, 0x07, 0x96, 0xE4, 0x75,
325 0x0E, 0x9F, 0xED, 0x7C, 0x09, 0x98, 0xEA, 0x7B,
326 0x1C, 0x8D, 0xFF, 0x6E, 0x1B, 0x8A, 0xF8, 0x69,
327 0x12, 0x83, 0xF1, 0x60, 0x15, 0x84, 0xF6, 0x67,
328 0x38, 0xA9, 0xDB, 0x4A, 0x3F, 0xAE, 0xDC, 0x4D,
329 0x36, 0xA7, 0xD5, 0x44, 0x31, 0xA0, 0xD2, 0x43,
330 0x24, 0xB5, 0xC7, 0x56, 0x23, 0xB2, 0xC0, 0x51,
331 0x2A, 0xBB, 0xC9, 0x58, 0x2D, 0xBC, 0xCE, 0x5F,
332 0x70, 0xE1, 0x93, 0x02, 0x77, 0xE6, 0x94, 0x05,
333 0x7E, 0xEF, 0x9D, 0x0C, 0x79, 0xE8, 0x9A, 0x0B,
334 0x6C, 0xFD, 0x8F, 0x1E, 0x6B, 0xFA, 0x88, 0x19,
335 0x62, 0xF3, 0x81, 0x10, 0x65, 0xF4, 0x86, 0x17,
336 0x48, 0xD9, 0xAB, 0x3A, 0x4F, 0xDE, 0xAC, 0x3D,
337 0x46, 0xD7, 0xA5, 0x34, 0x41, 0xD0, 0xA2, 0x33,
338 0x54, 0xC5, 0xB7, 0x26, 0x53, 0xC2, 0xB0, 0x21,
339 0x5A, 0xCB, 0xB9, 0x28, 0x5D, 0xCC, 0xBE, 0x2F,
340 0xE0, 0x71, 0x03, 0x92, 0xE7, 0x76, 0x04, 0x95,
341 0xEE, 0x7F, 0x0D, 0x9C, 0xE9, 0x78, 0x0A, 0x9B,
342 0xFC, 0x6D, 0x1F, 0x8E, 0xFB, 0x6A, 0x18, 0x89,
343 0xF2, 0x63, 0x11, 0x80, 0xF5, 0x64, 0x16, 0x87,
344 0xD8, 0x49, 0x3B, 0xAA, 0xDF, 0x4E, 0x3C, 0xAD,
345 0xD6, 0x47, 0x35, 0xA4, 0xD1, 0x40, 0x32, 0xA3,
346 0xC4, 0x55, 0x27, 0xB6, 0xC3, 0x52, 0x20, 0xB1,
347 0xCA, 0x5B, 0x29, 0xB8, 0xCD, 0x5C, 0x2E, 0xBF,
348 0x90, 0x01, 0x73, 0xE2, 0x97, 0x06, 0x74, 0xE5,
349 0x9E, 0x0F, 0x7D, 0xEC, 0x99, 0x08, 0x7A, 0xEB,
350 0x8C, 0x1D, 0x6F, 0xFE, 0x8B, 0x1A, 0x68, 0xF9,
351 0x82, 0x13, 0x61, 0xF0, 0x85, 0x14, 0x66, 0xF7,
352 0xA8, 0x39, 0x4B, 0xDA, 0xAF, 0x3E, 0x4C, 0xDD,
353 0xA6, 0x37, 0x45, 0xD4, 0xA1, 0x30, 0x42, 0xD3,
354 0xB4, 0x25, 0x57, 0xC6, 0xB3, 0x22, 0x50, 0xC1,
355 0xBA, 0x2B, 0x59, 0xC8, 0xBD, 0x2C, 0x5E, 0xCF
356 };
357
358 #define INIT_FCS 0xFF
359 #define GOOD_FCS 0xCF
360
361 /**
362 * gsm_fcs_add - update FCS
363 * @fcs: Current FCS
364 * @c: Next data
365 *
366 * Update the FCS to include c. Uses the algorithm in the specification
367 * notes.
368 */
369
gsm_fcs_add(u8 fcs,u8 c)370 static inline u8 gsm_fcs_add(u8 fcs, u8 c)
371 {
372 return gsm_fcs8[fcs ^ c];
373 }
374
375 /**
376 * gsm_fcs_add_block - update FCS for a block
377 * @fcs: Current FCS
378 * @c: buffer of data
379 * @len: length of buffer
380 *
381 * Update the FCS to include c. Uses the algorithm in the specification
382 * notes.
383 */
384
gsm_fcs_add_block(u8 fcs,u8 * c,int len)385 static inline u8 gsm_fcs_add_block(u8 fcs, u8 *c, int len)
386 {
387 while (len--)
388 fcs = gsm_fcs8[fcs ^ *c++];
389 return fcs;
390 }
391
392 /**
393 * gsm_read_ea - read a byte into an EA
394 * @val: variable holding value
395 * c: byte going into the EA
396 *
397 * Processes one byte of an EA. Updates the passed variable
398 * and returns 1 if the EA is now completely read
399 */
400
gsm_read_ea(unsigned int * val,u8 c)401 static int gsm_read_ea(unsigned int *val, u8 c)
402 {
403 /* Add the next 7 bits into the value */
404 *val <<= 7;
405 *val |= c >> 1;
406 /* Was this the last byte of the EA 1 = yes*/
407 return c & EA;
408 }
409
410 /**
411 * gsm_encode_modem - encode modem data bits
412 * @dlci: DLCI to encode from
413 *
414 * Returns the correct GSM encoded modem status bits (6 bit field) for
415 * the current status of the DLCI and attached tty object
416 */
417
gsm_encode_modem(const struct gsm_dlci * dlci)418 static u8 gsm_encode_modem(const struct gsm_dlci *dlci)
419 {
420 u8 modembits = 0;
421 /* FC is true flow control not modem bits */
422 if (dlci->throttled)
423 modembits |= MDM_FC;
424 if (dlci->modem_tx & TIOCM_DTR)
425 modembits |= MDM_RTC;
426 if (dlci->modem_tx & TIOCM_RTS)
427 modembits |= MDM_RTR;
428 if (dlci->modem_tx & TIOCM_RI)
429 modembits |= MDM_IC;
430 if (dlci->modem_tx & TIOCM_CD)
431 modembits |= MDM_DV;
432 return modembits;
433 }
434
435 /**
436 * gsm_print_packet - display a frame for debug
437 * @hdr: header to print before decode
438 * @addr: address EA from the frame
439 * @cr: C/R bit from the frame
440 * @control: control including PF bit
441 * @data: following data bytes
442 * @dlen: length of data
443 *
444 * Displays a packet in human readable format for debugging purposes. The
445 * style is based on amateur radio LAP-B dump display.
446 */
447
gsm_print_packet(const char * hdr,int addr,int cr,u8 control,const u8 * data,int dlen)448 static void gsm_print_packet(const char *hdr, int addr, int cr,
449 u8 control, const u8 *data, int dlen)
450 {
451 if (!(debug & 1))
452 return;
453
454 pr_info("%s %d) %c: ", hdr, addr, "RC"[cr]);
455
456 switch (control & ~PF) {
457 case SABM:
458 pr_cont("SABM");
459 break;
460 case UA:
461 pr_cont("UA");
462 break;
463 case DISC:
464 pr_cont("DISC");
465 break;
466 case DM:
467 pr_cont("DM");
468 break;
469 case UI:
470 pr_cont("UI");
471 break;
472 case UIH:
473 pr_cont("UIH");
474 break;
475 default:
476 if (!(control & 0x01)) {
477 pr_cont("I N(S)%d N(R)%d",
478 (control & 0x0E) >> 1, (control & 0xE0) >> 5);
479 } else switch (control & 0x0F) {
480 case RR:
481 pr_cont("RR(%d)", (control & 0xE0) >> 5);
482 break;
483 case RNR:
484 pr_cont("RNR(%d)", (control & 0xE0) >> 5);
485 break;
486 case REJ:
487 pr_cont("REJ(%d)", (control & 0xE0) >> 5);
488 break;
489 default:
490 pr_cont("[%02X]", control);
491 }
492 }
493
494 if (control & PF)
495 pr_cont("(P)");
496 else
497 pr_cont("(F)");
498
499 if (dlen) {
500 int ct = 0;
501 while (dlen--) {
502 if (ct % 8 == 0) {
503 pr_cont("\n");
504 pr_debug(" ");
505 }
506 pr_cont("%02X ", *data++);
507 ct++;
508 }
509 }
510 pr_cont("\n");
511 }
512
513
514 /*
515 * Link level transmission side
516 */
517
518 /**
519 * gsm_stuff_packet - bytestuff a packet
520 * @ibuf: input
521 * @obuf: output
522 * @len: length of input
523 *
524 * Expand a buffer by bytestuffing it. The worst case size change
525 * is doubling and the caller is responsible for handing out
526 * suitable sized buffers.
527 */
528
gsm_stuff_frame(const u8 * input,u8 * output,int len)529 static int gsm_stuff_frame(const u8 *input, u8 *output, int len)
530 {
531 int olen = 0;
532 while (len--) {
533 if (*input == GSM1_SOF || *input == GSM1_ESCAPE
534 || *input == XON || *input == XOFF) {
535 *output++ = GSM1_ESCAPE;
536 *output++ = *input++ ^ GSM1_ESCAPE_BITS;
537 olen++;
538 } else
539 *output++ = *input++;
540 olen++;
541 }
542 return olen;
543 }
544
545 /**
546 * gsm_send - send a control frame
547 * @gsm: our GSM mux
548 * @addr: address for control frame
549 * @cr: command/response bit
550 * @control: control byte including PF bit
551 *
552 * Format up and transmit a control frame. These do not go via the
553 * queueing logic as they should be transmitted ahead of data when
554 * they are needed.
555 *
556 * FIXME: Lock versus data TX path
557 */
558
gsm_send(struct gsm_mux * gsm,int addr,int cr,int control)559 static void gsm_send(struct gsm_mux *gsm, int addr, int cr, int control)
560 {
561 int len;
562 u8 cbuf[10];
563 u8 ibuf[3];
564
565 switch (gsm->encoding) {
566 case 0:
567 cbuf[0] = GSM0_SOF;
568 cbuf[1] = (addr << 2) | (cr << 1) | EA;
569 cbuf[2] = control;
570 cbuf[3] = EA; /* Length of data = 0 */
571 cbuf[4] = 0xFF - gsm_fcs_add_block(INIT_FCS, cbuf + 1, 3);
572 cbuf[5] = GSM0_SOF;
573 len = 6;
574 break;
575 case 1:
576 case 2:
577 /* Control frame + packing (but not frame stuffing) in mode 1 */
578 ibuf[0] = (addr << 2) | (cr << 1) | EA;
579 ibuf[1] = control;
580 ibuf[2] = 0xFF - gsm_fcs_add_block(INIT_FCS, ibuf, 2);
581 /* Stuffing may double the size worst case */
582 len = gsm_stuff_frame(ibuf, cbuf + 1, 3);
583 /* Now add the SOF markers */
584 cbuf[0] = GSM1_SOF;
585 cbuf[len + 1] = GSM1_SOF;
586 /* FIXME: we can omit the lead one in many cases */
587 len += 2;
588 break;
589 default:
590 WARN_ON(1);
591 return;
592 }
593 gsm->output(gsm, cbuf, len);
594 gsm_print_packet("-->", addr, cr, control, NULL, 0);
595 }
596
597 /**
598 * gsm_response - send a control response
599 * @gsm: our GSM mux
600 * @addr: address for control frame
601 * @control: control byte including PF bit
602 *
603 * Format up and transmit a link level response frame.
604 */
605
gsm_response(struct gsm_mux * gsm,int addr,int control)606 static inline void gsm_response(struct gsm_mux *gsm, int addr, int control)
607 {
608 gsm_send(gsm, addr, 0, control);
609 }
610
611 /**
612 * gsm_command - send a control command
613 * @gsm: our GSM mux
614 * @addr: address for control frame
615 * @control: control byte including PF bit
616 *
617 * Format up and transmit a link level command frame.
618 */
619
gsm_command(struct gsm_mux * gsm,int addr,int control)620 static inline void gsm_command(struct gsm_mux *gsm, int addr, int control)
621 {
622 gsm_send(gsm, addr, 1, control);
623 }
624
625 /* Data transmission */
626
627 #define HDR_LEN 6 /* ADDR CTRL [LEN.2] DATA FCS */
628
629 /**
630 * gsm_data_alloc - allocate data frame
631 * @gsm: GSM mux
632 * @addr: DLCI address
633 * @len: length excluding header and FCS
634 * @ctrl: control byte
635 *
636 * Allocate a new data buffer for sending frames with data. Space is left
637 * at the front for header bytes but that is treated as an implementation
638 * detail and not for the high level code to use
639 */
640
gsm_data_alloc(struct gsm_mux * gsm,u8 addr,int len,u8 ctrl)641 static struct gsm_msg *gsm_data_alloc(struct gsm_mux *gsm, u8 addr, int len,
642 u8 ctrl)
643 {
644 struct gsm_msg *m = kmalloc(sizeof(struct gsm_msg) + len + HDR_LEN,
645 GFP_ATOMIC);
646 if (m == NULL)
647 return NULL;
648 m->data = m->buffer + HDR_LEN - 1; /* Allow for FCS */
649 m->len = len;
650 m->addr = addr;
651 m->ctrl = ctrl;
652 INIT_LIST_HEAD(&m->list);
653 return m;
654 }
655
656 /**
657 * gsm_data_kick - poke the queue
658 * @gsm: GSM Mux
659 *
660 * The tty device has called us to indicate that room has appeared in
661 * the transmit queue. Ram more data into the pipe if we have any
662 * If we have been flow-stopped by a CMD_FCOFF, then we can only
663 * send messages on DLCI0 until CMD_FCON
664 *
665 * FIXME: lock against link layer control transmissions
666 */
667
gsm_data_kick(struct gsm_mux * gsm,struct gsm_dlci * dlci)668 static void gsm_data_kick(struct gsm_mux *gsm, struct gsm_dlci *dlci)
669 {
670 struct gsm_msg *msg, *nmsg;
671 int len;
672
673 list_for_each_entry_safe(msg, nmsg, &gsm->tx_list, list) {
674 if (gsm->constipated && msg->addr)
675 continue;
676 if (gsm->encoding != 0) {
677 gsm->txframe[0] = GSM1_SOF;
678 len = gsm_stuff_frame(msg->data,
679 gsm->txframe + 1, msg->len);
680 gsm->txframe[len + 1] = GSM1_SOF;
681 len += 2;
682 } else {
683 gsm->txframe[0] = GSM0_SOF;
684 memcpy(gsm->txframe + 1 , msg->data, msg->len);
685 gsm->txframe[msg->len + 1] = GSM0_SOF;
686 len = msg->len + 2;
687 }
688
689 if (debug & 4)
690 print_hex_dump_bytes("gsm_data_kick: ",
691 DUMP_PREFIX_OFFSET,
692 gsm->txframe, len);
693 if (gsm->output(gsm, gsm->txframe, len) < 0)
694 break;
695 /* FIXME: Can eliminate one SOF in many more cases */
696 gsm->tx_bytes -= msg->len;
697
698 list_del(&msg->list);
699 kfree(msg);
700
701 if (dlci) {
702 tty_port_tty_wakeup(&dlci->port);
703 } else {
704 int i = 0;
705
706 for (i = 0; i < NUM_DLCI; i++)
707 if (gsm->dlci[i])
708 tty_port_tty_wakeup(&gsm->dlci[i]->port);
709 }
710 }
711 }
712
713 /**
714 * __gsm_data_queue - queue a UI or UIH frame
715 * @dlci: DLCI sending the data
716 * @msg: message queued
717 *
718 * Add data to the transmit queue and try and get stuff moving
719 * out of the mux tty if not already doing so. The Caller must hold
720 * the gsm tx lock.
721 */
722
__gsm_data_queue(struct gsm_dlci * dlci,struct gsm_msg * msg)723 static void __gsm_data_queue(struct gsm_dlci *dlci, struct gsm_msg *msg)
724 {
725 struct gsm_mux *gsm = dlci->gsm;
726 u8 *dp = msg->data;
727 u8 *fcs = dp + msg->len;
728
729 /* Fill in the header */
730 if (gsm->encoding == 0) {
731 if (msg->len < 128)
732 *--dp = (msg->len << 1) | EA;
733 else {
734 *--dp = (msg->len >> 7); /* bits 7 - 15 */
735 *--dp = (msg->len & 127) << 1; /* bits 0 - 6 */
736 }
737 }
738
739 *--dp = msg->ctrl;
740 if (gsm->initiator)
741 *--dp = (msg->addr << 2) | 2 | EA;
742 else
743 *--dp = (msg->addr << 2) | EA;
744 *fcs = gsm_fcs_add_block(INIT_FCS, dp , msg->data - dp);
745 /* Ugly protocol layering violation */
746 if (msg->ctrl == UI || msg->ctrl == (UI|PF))
747 *fcs = gsm_fcs_add_block(*fcs, msg->data, msg->len);
748 *fcs = 0xFF - *fcs;
749
750 gsm_print_packet("Q> ", msg->addr, gsm->initiator, msg->ctrl,
751 msg->data, msg->len);
752
753 /* Move the header back and adjust the length, also allow for the FCS
754 now tacked on the end */
755 msg->len += (msg->data - dp) + 1;
756 msg->data = dp;
757
758 /* Add to the actual output queue */
759 list_add_tail(&msg->list, &gsm->tx_list);
760 gsm->tx_bytes += msg->len;
761 gsm_data_kick(gsm, dlci);
762 }
763
764 /**
765 * gsm_data_queue - queue a UI or UIH frame
766 * @dlci: DLCI sending the data
767 * @msg: message queued
768 *
769 * Add data to the transmit queue and try and get stuff moving
770 * out of the mux tty if not already doing so. Take the
771 * the gsm tx lock and dlci lock.
772 */
773
gsm_data_queue(struct gsm_dlci * dlci,struct gsm_msg * msg)774 static void gsm_data_queue(struct gsm_dlci *dlci, struct gsm_msg *msg)
775 {
776 unsigned long flags;
777 spin_lock_irqsave(&dlci->gsm->tx_lock, flags);
778 __gsm_data_queue(dlci, msg);
779 spin_unlock_irqrestore(&dlci->gsm->tx_lock, flags);
780 }
781
782 /**
783 * gsm_dlci_data_output - try and push data out of a DLCI
784 * @gsm: mux
785 * @dlci: the DLCI to pull data from
786 *
787 * Pull data from a DLCI and send it into the transmit queue if there
788 * is data. Keep to the MRU of the mux. This path handles the usual tty
789 * interface which is a byte stream with optional modem data.
790 *
791 * Caller must hold the tx_lock of the mux.
792 */
793
gsm_dlci_data_output(struct gsm_mux * gsm,struct gsm_dlci * dlci)794 static int gsm_dlci_data_output(struct gsm_mux *gsm, struct gsm_dlci *dlci)
795 {
796 struct gsm_msg *msg;
797 u8 *dp;
798 int len, total_size, size;
799 int h = dlci->adaption - 1;
800
801 total_size = 0;
802 while (1) {
803 len = kfifo_len(dlci->fifo);
804 if (len == 0)
805 return total_size;
806
807 /* MTU/MRU count only the data bits */
808 if (len > gsm->mtu)
809 len = gsm->mtu;
810
811 size = len + h;
812
813 msg = gsm_data_alloc(gsm, dlci->addr, size, gsm->ftype);
814 /* FIXME: need a timer or something to kick this so it can't
815 get stuck with no work outstanding and no buffer free */
816 if (msg == NULL)
817 return -ENOMEM;
818 dp = msg->data;
819 switch (dlci->adaption) {
820 case 1: /* Unstructured */
821 break;
822 case 2: /* Unstructed with modem bits.
823 Always one byte as we never send inline break data */
824 *dp++ = gsm_encode_modem(dlci);
825 break;
826 }
827 WARN_ON(kfifo_out_locked(dlci->fifo, dp , len, &dlci->lock) != len);
828 __gsm_data_queue(dlci, msg);
829 total_size += size;
830 }
831 /* Bytes of data we used up */
832 return total_size;
833 }
834
835 /**
836 * gsm_dlci_data_output_framed - try and push data out of a DLCI
837 * @gsm: mux
838 * @dlci: the DLCI to pull data from
839 *
840 * Pull data from a DLCI and send it into the transmit queue if there
841 * is data. Keep to the MRU of the mux. This path handles framed data
842 * queued as skbuffs to the DLCI.
843 *
844 * Caller must hold the tx_lock of the mux.
845 */
846
gsm_dlci_data_output_framed(struct gsm_mux * gsm,struct gsm_dlci * dlci)847 static int gsm_dlci_data_output_framed(struct gsm_mux *gsm,
848 struct gsm_dlci *dlci)
849 {
850 struct gsm_msg *msg;
851 u8 *dp;
852 int len, size;
853 int last = 0, first = 0;
854 int overhead = 0;
855
856 /* One byte per frame is used for B/F flags */
857 if (dlci->adaption == 4)
858 overhead = 1;
859
860 /* dlci->skb is locked by tx_lock */
861 if (dlci->skb == NULL) {
862 dlci->skb = skb_dequeue_tail(&dlci->skb_list);
863 if (dlci->skb == NULL)
864 return 0;
865 first = 1;
866 }
867 len = dlci->skb->len + overhead;
868
869 /* MTU/MRU count only the data bits */
870 if (len > gsm->mtu) {
871 if (dlci->adaption == 3) {
872 /* Over long frame, bin it */
873 dev_kfree_skb_any(dlci->skb);
874 dlci->skb = NULL;
875 return 0;
876 }
877 len = gsm->mtu;
878 } else
879 last = 1;
880
881 size = len + overhead;
882 msg = gsm_data_alloc(gsm, dlci->addr, size, gsm->ftype);
883
884 /* FIXME: need a timer or something to kick this so it can't
885 get stuck with no work outstanding and no buffer free */
886 if (msg == NULL) {
887 skb_queue_tail(&dlci->skb_list, dlci->skb);
888 dlci->skb = NULL;
889 return -ENOMEM;
890 }
891 dp = msg->data;
892
893 if (dlci->adaption == 4) { /* Interruptible framed (Packetised Data) */
894 /* Flag byte to carry the start/end info */
895 *dp++ = last << 7 | first << 6 | 1; /* EA */
896 len--;
897 }
898 memcpy(dp, dlci->skb->data, len);
899 skb_pull(dlci->skb, len);
900 __gsm_data_queue(dlci, msg);
901 if (last) {
902 dev_kfree_skb_any(dlci->skb);
903 dlci->skb = NULL;
904 }
905 return size;
906 }
907
908 /**
909 * gsm_dlci_data_sweep - look for data to send
910 * @gsm: the GSM mux
911 *
912 * Sweep the GSM mux channels in priority order looking for ones with
913 * data to send. We could do with optimising this scan a bit. We aim
914 * to fill the queue totally or up to TX_THRESH_HI bytes. Once we hit
915 * TX_THRESH_LO we get called again
916 *
917 * FIXME: We should round robin between groups and in theory you can
918 * renegotiate DLCI priorities with optional stuff. Needs optimising.
919 */
920
gsm_dlci_data_sweep(struct gsm_mux * gsm)921 static void gsm_dlci_data_sweep(struct gsm_mux *gsm)
922 {
923 int len;
924 /* Priority ordering: We should do priority with RR of the groups */
925 int i = 1;
926
927 while (i < NUM_DLCI) {
928 struct gsm_dlci *dlci;
929
930 if (gsm->tx_bytes > TX_THRESH_HI)
931 break;
932 dlci = gsm->dlci[i];
933 if (dlci == NULL || dlci->constipated) {
934 i++;
935 continue;
936 }
937 if (dlci->adaption < 3 && !dlci->net)
938 len = gsm_dlci_data_output(gsm, dlci);
939 else
940 len = gsm_dlci_data_output_framed(gsm, dlci);
941 if (len < 0)
942 break;
943 /* DLCI empty - try the next */
944 if (len == 0)
945 i++;
946 }
947 }
948
949 /**
950 * gsm_dlci_data_kick - transmit if possible
951 * @dlci: DLCI to kick
952 *
953 * Transmit data from this DLCI if the queue is empty. We can't rely on
954 * a tty wakeup except when we filled the pipe so we need to fire off
955 * new data ourselves in other cases.
956 */
957
gsm_dlci_data_kick(struct gsm_dlci * dlci)958 static void gsm_dlci_data_kick(struct gsm_dlci *dlci)
959 {
960 unsigned long flags;
961 int sweep;
962
963 if (dlci->constipated)
964 return;
965
966 spin_lock_irqsave(&dlci->gsm->tx_lock, flags);
967 /* If we have nothing running then we need to fire up */
968 sweep = (dlci->gsm->tx_bytes < TX_THRESH_LO);
969 if (dlci->gsm->tx_bytes == 0) {
970 if (dlci->net)
971 gsm_dlci_data_output_framed(dlci->gsm, dlci);
972 else
973 gsm_dlci_data_output(dlci->gsm, dlci);
974 }
975 if (sweep)
976 gsm_dlci_data_sweep(dlci->gsm);
977 spin_unlock_irqrestore(&dlci->gsm->tx_lock, flags);
978 }
979
980 /*
981 * Control message processing
982 */
983
984
985 /**
986 * gsm_control_reply - send a response frame to a control
987 * @gsm: gsm channel
988 * @cmd: the command to use
989 * @data: data to follow encoded info
990 * @dlen: length of data
991 *
992 * Encode up and queue a UI/UIH frame containing our response.
993 */
994
gsm_control_reply(struct gsm_mux * gsm,int cmd,u8 * data,int dlen)995 static void gsm_control_reply(struct gsm_mux *gsm, int cmd, u8 *data,
996 int dlen)
997 {
998 struct gsm_msg *msg;
999 msg = gsm_data_alloc(gsm, 0, dlen + 2, gsm->ftype);
1000 if (msg == NULL)
1001 return;
1002 msg->data[0] = (cmd & 0xFE) << 1 | EA; /* Clear C/R */
1003 msg->data[1] = (dlen << 1) | EA;
1004 memcpy(msg->data + 2, data, dlen);
1005 gsm_data_queue(gsm->dlci[0], msg);
1006 }
1007
1008 /**
1009 * gsm_process_modem - process received modem status
1010 * @tty: virtual tty bound to the DLCI
1011 * @dlci: DLCI to affect
1012 * @modem: modem bits (full EA)
1013 *
1014 * Used when a modem control message or line state inline in adaption
1015 * layer 2 is processed. Sort out the local modem state and throttles
1016 */
1017
gsm_process_modem(struct tty_struct * tty,struct gsm_dlci * dlci,u32 modem,int clen)1018 static void gsm_process_modem(struct tty_struct *tty, struct gsm_dlci *dlci,
1019 u32 modem, int clen)
1020 {
1021 int mlines = 0;
1022 u8 brk = 0;
1023 int fc;
1024
1025 /* The modem status command can either contain one octet (v.24 signals)
1026 or two octets (v.24 signals + break signals). The length field will
1027 either be 2 or 3 respectively. This is specified in section
1028 5.4.6.3.7 of the 27.010 mux spec. */
1029
1030 if (clen == 2)
1031 modem = modem & 0x7f;
1032 else {
1033 brk = modem & 0x7f;
1034 modem = (modem >> 7) & 0x7f;
1035 }
1036
1037 /* Flow control/ready to communicate */
1038 fc = (modem & MDM_FC) || !(modem & MDM_RTR);
1039 if (fc && !dlci->constipated) {
1040 /* Need to throttle our output on this device */
1041 dlci->constipated = 1;
1042 } else if (!fc && dlci->constipated) {
1043 dlci->constipated = 0;
1044 gsm_dlci_data_kick(dlci);
1045 }
1046
1047 /* Map modem bits */
1048 if (modem & MDM_RTC)
1049 mlines |= TIOCM_DSR | TIOCM_DTR;
1050 if (modem & MDM_RTR)
1051 mlines |= TIOCM_RTS | TIOCM_CTS;
1052 if (modem & MDM_IC)
1053 mlines |= TIOCM_RI;
1054 if (modem & MDM_DV)
1055 mlines |= TIOCM_CD;
1056
1057 /* Carrier drop -> hangup */
1058 if (tty) {
1059 if ((mlines & TIOCM_CD) == 0 && (dlci->modem_rx & TIOCM_CD))
1060 if (!C_CLOCAL(tty))
1061 tty_hangup(tty);
1062 }
1063 if (brk & 0x01)
1064 tty_insert_flip_char(&dlci->port, 0, TTY_BREAK);
1065 dlci->modem_rx = mlines;
1066 }
1067
1068 /**
1069 * gsm_control_modem - modem status received
1070 * @gsm: GSM channel
1071 * @data: data following command
1072 * @clen: command length
1073 *
1074 * We have received a modem status control message. This is used by
1075 * the GSM mux protocol to pass virtual modem line status and optionally
1076 * to indicate break signals. Unpack it, convert to Linux representation
1077 * and if need be stuff a break message down the tty.
1078 */
1079
gsm_control_modem(struct gsm_mux * gsm,u8 * data,int clen)1080 static void gsm_control_modem(struct gsm_mux *gsm, u8 *data, int clen)
1081 {
1082 unsigned int addr = 0;
1083 unsigned int modem = 0;
1084 unsigned int brk = 0;
1085 struct gsm_dlci *dlci;
1086 int len = clen;
1087 u8 *dp = data;
1088 struct tty_struct *tty;
1089
1090 while (gsm_read_ea(&addr, *dp++) == 0) {
1091 len--;
1092 if (len == 0)
1093 return;
1094 }
1095 /* Must be at least one byte following the EA */
1096 len--;
1097 if (len <= 0)
1098 return;
1099
1100 addr >>= 1;
1101 /* Closed port, or invalid ? */
1102 if (addr == 0 || addr >= NUM_DLCI || gsm->dlci[addr] == NULL)
1103 return;
1104 dlci = gsm->dlci[addr];
1105
1106 while (gsm_read_ea(&modem, *dp++) == 0) {
1107 len--;
1108 if (len == 0)
1109 return;
1110 }
1111 len--;
1112 if (len > 0) {
1113 while (gsm_read_ea(&brk, *dp++) == 0) {
1114 len--;
1115 if (len == 0)
1116 return;
1117 }
1118 modem <<= 7;
1119 modem |= (brk & 0x7f);
1120 }
1121 tty = tty_port_tty_get(&dlci->port);
1122 gsm_process_modem(tty, dlci, modem, clen);
1123 if (tty) {
1124 tty_wakeup(tty);
1125 tty_kref_put(tty);
1126 }
1127 gsm_control_reply(gsm, CMD_MSC, data, clen);
1128 }
1129
1130 /**
1131 * gsm_control_rls - remote line status
1132 * @gsm: GSM channel
1133 * @data: data bytes
1134 * @clen: data length
1135 *
1136 * The modem sends us a two byte message on the control channel whenever
1137 * it wishes to send us an error state from the virtual link. Stuff
1138 * this into the uplink tty if present
1139 */
1140
gsm_control_rls(struct gsm_mux * gsm,u8 * data,int clen)1141 static void gsm_control_rls(struct gsm_mux *gsm, u8 *data, int clen)
1142 {
1143 struct tty_port *port;
1144 unsigned int addr = 0;
1145 u8 bits;
1146 int len = clen;
1147 u8 *dp = data;
1148
1149 while (gsm_read_ea(&addr, *dp++) == 0) {
1150 len--;
1151 if (len == 0)
1152 return;
1153 }
1154 /* Must be at least one byte following ea */
1155 len--;
1156 if (len <= 0)
1157 return;
1158 addr >>= 1;
1159 /* Closed port, or invalid ? */
1160 if (addr == 0 || addr >= NUM_DLCI || gsm->dlci[addr] == NULL)
1161 return;
1162 /* No error ? */
1163 bits = *dp;
1164 if ((bits & 1) == 0)
1165 return;
1166
1167 port = &gsm->dlci[addr]->port;
1168
1169 if (bits & 2)
1170 tty_insert_flip_char(port, 0, TTY_OVERRUN);
1171 if (bits & 4)
1172 tty_insert_flip_char(port, 0, TTY_PARITY);
1173 if (bits & 8)
1174 tty_insert_flip_char(port, 0, TTY_FRAME);
1175
1176 tty_flip_buffer_push(port);
1177
1178 gsm_control_reply(gsm, CMD_RLS, data, clen);
1179 }
1180
1181 static void gsm_dlci_begin_close(struct gsm_dlci *dlci);
1182
1183 /**
1184 * gsm_control_message - DLCI 0 control processing
1185 * @gsm: our GSM mux
1186 * @command: the command EA
1187 * @data: data beyond the command/length EAs
1188 * @clen: length
1189 *
1190 * Input processor for control messages from the other end of the link.
1191 * Processes the incoming request and queues a response frame or an
1192 * NSC response if not supported
1193 */
1194
gsm_control_message(struct gsm_mux * gsm,unsigned int command,u8 * data,int clen)1195 static void gsm_control_message(struct gsm_mux *gsm, unsigned int command,
1196 u8 *data, int clen)
1197 {
1198 u8 buf[1];
1199 unsigned long flags;
1200
1201 switch (command) {
1202 case CMD_CLD: {
1203 struct gsm_dlci *dlci = gsm->dlci[0];
1204 /* Modem wishes to close down */
1205 if (dlci) {
1206 dlci->dead = 1;
1207 gsm->dead = 1;
1208 gsm_dlci_begin_close(dlci);
1209 }
1210 }
1211 break;
1212 case CMD_TEST:
1213 /* Modem wishes to test, reply with the data */
1214 gsm_control_reply(gsm, CMD_TEST, data, clen);
1215 break;
1216 case CMD_FCON:
1217 /* Modem can accept data again */
1218 gsm->constipated = 0;
1219 gsm_control_reply(gsm, CMD_FCON, NULL, 0);
1220 /* Kick the link in case it is idling */
1221 spin_lock_irqsave(&gsm->tx_lock, flags);
1222 gsm_data_kick(gsm, NULL);
1223 spin_unlock_irqrestore(&gsm->tx_lock, flags);
1224 break;
1225 case CMD_FCOFF:
1226 /* Modem wants us to STFU */
1227 gsm->constipated = 1;
1228 gsm_control_reply(gsm, CMD_FCOFF, NULL, 0);
1229 break;
1230 case CMD_MSC:
1231 /* Out of band modem line change indicator for a DLCI */
1232 gsm_control_modem(gsm, data, clen);
1233 break;
1234 case CMD_RLS:
1235 /* Out of band error reception for a DLCI */
1236 gsm_control_rls(gsm, data, clen);
1237 break;
1238 case CMD_PSC:
1239 /* Modem wishes to enter power saving state */
1240 gsm_control_reply(gsm, CMD_PSC, NULL, 0);
1241 break;
1242 /* Optional unsupported commands */
1243 case CMD_PN: /* Parameter negotiation */
1244 case CMD_RPN: /* Remote port negotiation */
1245 case CMD_SNC: /* Service negotiation command */
1246 default:
1247 /* Reply to bad commands with an NSC */
1248 buf[0] = command;
1249 gsm_control_reply(gsm, CMD_NSC, buf, 1);
1250 break;
1251 }
1252 }
1253
1254 /**
1255 * gsm_control_response - process a response to our control
1256 * @gsm: our GSM mux
1257 * @command: the command (response) EA
1258 * @data: data beyond the command/length EA
1259 * @clen: length
1260 *
1261 * Process a response to an outstanding command. We only allow a single
1262 * control message in flight so this is fairly easy. All the clean up
1263 * is done by the caller, we just update the fields, flag it as done
1264 * and return
1265 */
1266
gsm_control_response(struct gsm_mux * gsm,unsigned int command,u8 * data,int clen)1267 static void gsm_control_response(struct gsm_mux *gsm, unsigned int command,
1268 u8 *data, int clen)
1269 {
1270 struct gsm_control *ctrl;
1271 unsigned long flags;
1272
1273 spin_lock_irqsave(&gsm->control_lock, flags);
1274
1275 ctrl = gsm->pending_cmd;
1276 /* Does the reply match our command */
1277 command |= 1;
1278 if (ctrl != NULL && (command == ctrl->cmd || command == CMD_NSC)) {
1279 /* Our command was replied to, kill the retry timer */
1280 del_timer(&gsm->t2_timer);
1281 gsm->pending_cmd = NULL;
1282 /* Rejected by the other end */
1283 if (command == CMD_NSC)
1284 ctrl->error = -EOPNOTSUPP;
1285 ctrl->done = 1;
1286 wake_up(&gsm->event);
1287 }
1288 spin_unlock_irqrestore(&gsm->control_lock, flags);
1289 }
1290
1291 /**
1292 * gsm_control_transmit - send control packet
1293 * @gsm: gsm mux
1294 * @ctrl: frame to send
1295 *
1296 * Send out a pending control command (called under control lock)
1297 */
1298
gsm_control_transmit(struct gsm_mux * gsm,struct gsm_control * ctrl)1299 static void gsm_control_transmit(struct gsm_mux *gsm, struct gsm_control *ctrl)
1300 {
1301 struct gsm_msg *msg = gsm_data_alloc(gsm, 0, ctrl->len + 1, gsm->ftype);
1302 if (msg == NULL)
1303 return;
1304 msg->data[0] = (ctrl->cmd << 1) | 2 | EA; /* command */
1305 memcpy(msg->data + 1, ctrl->data, ctrl->len);
1306 gsm_data_queue(gsm->dlci[0], msg);
1307 }
1308
1309 /**
1310 * gsm_control_retransmit - retransmit a control frame
1311 * @data: pointer to our gsm object
1312 *
1313 * Called off the T2 timer expiry in order to retransmit control frames
1314 * that have been lost in the system somewhere. The control_lock protects
1315 * us from colliding with another sender or a receive completion event.
1316 * In that situation the timer may still occur in a small window but
1317 * gsm->pending_cmd will be NULL and we just let the timer expire.
1318 */
1319
gsm_control_retransmit(struct timer_list * t)1320 static void gsm_control_retransmit(struct timer_list *t)
1321 {
1322 struct gsm_mux *gsm = from_timer(gsm, t, t2_timer);
1323 struct gsm_control *ctrl;
1324 unsigned long flags;
1325 spin_lock_irqsave(&gsm->control_lock, flags);
1326 ctrl = gsm->pending_cmd;
1327 if (ctrl) {
1328 gsm->cretries--;
1329 if (gsm->cretries == 0) {
1330 gsm->pending_cmd = NULL;
1331 ctrl->error = -ETIMEDOUT;
1332 ctrl->done = 1;
1333 spin_unlock_irqrestore(&gsm->control_lock, flags);
1334 wake_up(&gsm->event);
1335 return;
1336 }
1337 gsm_control_transmit(gsm, ctrl);
1338 mod_timer(&gsm->t2_timer, jiffies + gsm->t2 * HZ / 100);
1339 }
1340 spin_unlock_irqrestore(&gsm->control_lock, flags);
1341 }
1342
1343 /**
1344 * gsm_control_send - send a control frame on DLCI 0
1345 * @gsm: the GSM channel
1346 * @command: command to send including CR bit
1347 * @data: bytes of data (must be kmalloced)
1348 * @len: length of the block to send
1349 *
1350 * Queue and dispatch a control command. Only one command can be
1351 * active at a time. In theory more can be outstanding but the matching
1352 * gets really complicated so for now stick to one outstanding.
1353 */
1354
gsm_control_send(struct gsm_mux * gsm,unsigned int command,u8 * data,int clen)1355 static struct gsm_control *gsm_control_send(struct gsm_mux *gsm,
1356 unsigned int command, u8 *data, int clen)
1357 {
1358 struct gsm_control *ctrl = kzalloc(sizeof(struct gsm_control),
1359 GFP_KERNEL);
1360 unsigned long flags;
1361 if (ctrl == NULL)
1362 return NULL;
1363 retry:
1364 wait_event(gsm->event, gsm->pending_cmd == NULL);
1365 spin_lock_irqsave(&gsm->control_lock, flags);
1366 if (gsm->pending_cmd != NULL) {
1367 spin_unlock_irqrestore(&gsm->control_lock, flags);
1368 goto retry;
1369 }
1370 ctrl->cmd = command;
1371 ctrl->data = data;
1372 ctrl->len = clen;
1373 gsm->pending_cmd = ctrl;
1374
1375 /* If DLCI0 is in ADM mode skip retries, it won't respond */
1376 if (gsm->dlci[0]->mode == DLCI_MODE_ADM)
1377 gsm->cretries = 1;
1378 else
1379 gsm->cretries = gsm->n2;
1380
1381 mod_timer(&gsm->t2_timer, jiffies + gsm->t2 * HZ / 100);
1382 gsm_control_transmit(gsm, ctrl);
1383 spin_unlock_irqrestore(&gsm->control_lock, flags);
1384 return ctrl;
1385 }
1386
1387 /**
1388 * gsm_control_wait - wait for a control to finish
1389 * @gsm: GSM mux
1390 * @control: control we are waiting on
1391 *
1392 * Waits for the control to complete or time out. Frees any used
1393 * resources and returns 0 for success, or an error if the remote
1394 * rejected or ignored the request.
1395 */
1396
gsm_control_wait(struct gsm_mux * gsm,struct gsm_control * control)1397 static int gsm_control_wait(struct gsm_mux *gsm, struct gsm_control *control)
1398 {
1399 int err;
1400 wait_event(gsm->event, control->done == 1);
1401 err = control->error;
1402 kfree(control);
1403 return err;
1404 }
1405
1406
1407 /*
1408 * DLCI level handling: Needs krefs
1409 */
1410
1411 /*
1412 * State transitions and timers
1413 */
1414
1415 /**
1416 * gsm_dlci_close - a DLCI has closed
1417 * @dlci: DLCI that closed
1418 *
1419 * Perform processing when moving a DLCI into closed state. If there
1420 * is an attached tty this is hung up
1421 */
1422
gsm_dlci_close(struct gsm_dlci * dlci)1423 static void gsm_dlci_close(struct gsm_dlci *dlci)
1424 {
1425 del_timer(&dlci->t1);
1426 if (debug & 8)
1427 pr_debug("DLCI %d goes closed.\n", dlci->addr);
1428 dlci->state = DLCI_CLOSED;
1429 if (dlci->addr != 0) {
1430 tty_port_tty_hangup(&dlci->port, false);
1431 kfifo_reset(dlci->fifo);
1432 } else
1433 dlci->gsm->dead = 1;
1434 wake_up(&dlci->gsm->event);
1435 /* A DLCI 0 close is a MUX termination so we need to kick that
1436 back to userspace somehow */
1437 }
1438
1439 /**
1440 * gsm_dlci_open - a DLCI has opened
1441 * @dlci: DLCI that opened
1442 *
1443 * Perform processing when moving a DLCI into open state.
1444 */
1445
gsm_dlci_open(struct gsm_dlci * dlci)1446 static void gsm_dlci_open(struct gsm_dlci *dlci)
1447 {
1448 /* Note that SABM UA .. SABM UA first UA lost can mean that we go
1449 open -> open */
1450 del_timer(&dlci->t1);
1451 /* This will let a tty open continue */
1452 dlci->state = DLCI_OPEN;
1453 if (debug & 8)
1454 pr_debug("DLCI %d goes open.\n", dlci->addr);
1455 wake_up(&dlci->gsm->event);
1456 }
1457
1458 /**
1459 * gsm_dlci_t1 - T1 timer expiry
1460 * @dlci: DLCI that opened
1461 *
1462 * The T1 timer handles retransmits of control frames (essentially of
1463 * SABM and DISC). We resend the command until the retry count runs out
1464 * in which case an opening port goes back to closed and a closing port
1465 * is simply put into closed state (any further frames from the other
1466 * end will get a DM response)
1467 *
1468 * Some control dlci can stay in ADM mode with other dlci working just
1469 * fine. In that case we can just keep the control dlci open after the
1470 * DLCI_OPENING retries time out.
1471 */
1472
gsm_dlci_t1(struct timer_list * t)1473 static void gsm_dlci_t1(struct timer_list *t)
1474 {
1475 struct gsm_dlci *dlci = from_timer(dlci, t, t1);
1476 struct gsm_mux *gsm = dlci->gsm;
1477
1478 switch (dlci->state) {
1479 case DLCI_OPENING:
1480 dlci->retries--;
1481 if (dlci->retries) {
1482 gsm_command(dlci->gsm, dlci->addr, SABM|PF);
1483 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1484 } else if (!dlci->addr && gsm->control == (DM | PF)) {
1485 if (debug & 8)
1486 pr_info("DLCI %d opening in ADM mode.\n",
1487 dlci->addr);
1488 dlci->mode = DLCI_MODE_ADM;
1489 gsm_dlci_open(dlci);
1490 } else {
1491 gsm_dlci_close(dlci);
1492 }
1493
1494 break;
1495 case DLCI_CLOSING:
1496 dlci->retries--;
1497 if (dlci->retries) {
1498 gsm_command(dlci->gsm, dlci->addr, DISC|PF);
1499 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1500 } else
1501 gsm_dlci_close(dlci);
1502 break;
1503 }
1504 }
1505
1506 /**
1507 * gsm_dlci_begin_open - start channel open procedure
1508 * @dlci: DLCI to open
1509 *
1510 * Commence opening a DLCI from the Linux side. We issue SABM messages
1511 * to the modem which should then reply with a UA or ADM, at which point
1512 * we will move into open state. Opening is done asynchronously with retry
1513 * running off timers and the responses.
1514 */
1515
gsm_dlci_begin_open(struct gsm_dlci * dlci)1516 static void gsm_dlci_begin_open(struct gsm_dlci *dlci)
1517 {
1518 struct gsm_mux *gsm = dlci->gsm;
1519 if (dlci->state == DLCI_OPEN || dlci->state == DLCI_OPENING)
1520 return;
1521 dlci->retries = gsm->n2;
1522 dlci->state = DLCI_OPENING;
1523 gsm_command(dlci->gsm, dlci->addr, SABM|PF);
1524 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1525 }
1526
1527 /**
1528 * gsm_dlci_begin_close - start channel open procedure
1529 * @dlci: DLCI to open
1530 *
1531 * Commence closing a DLCI from the Linux side. We issue DISC messages
1532 * to the modem which should then reply with a UA, at which point we
1533 * will move into closed state. Closing is done asynchronously with retry
1534 * off timers. We may also receive a DM reply from the other end which
1535 * indicates the channel was already closed.
1536 */
1537
gsm_dlci_begin_close(struct gsm_dlci * dlci)1538 static void gsm_dlci_begin_close(struct gsm_dlci *dlci)
1539 {
1540 struct gsm_mux *gsm = dlci->gsm;
1541 if (dlci->state == DLCI_CLOSED || dlci->state == DLCI_CLOSING)
1542 return;
1543 dlci->retries = gsm->n2;
1544 dlci->state = DLCI_CLOSING;
1545 gsm_command(dlci->gsm, dlci->addr, DISC|PF);
1546 mod_timer(&dlci->t1, jiffies + gsm->t1 * HZ / 100);
1547 }
1548
1549 /**
1550 * gsm_dlci_data - data arrived
1551 * @dlci: channel
1552 * @data: block of bytes received
1553 * @len: length of received block
1554 *
1555 * A UI or UIH frame has arrived which contains data for a channel
1556 * other than the control channel. If the relevant virtual tty is
1557 * open we shovel the bits down it, if not we drop them.
1558 */
1559
gsm_dlci_data(struct gsm_dlci * dlci,u8 * data,int clen)1560 static void gsm_dlci_data(struct gsm_dlci *dlci, u8 *data, int clen)
1561 {
1562 /* krefs .. */
1563 struct tty_port *port = &dlci->port;
1564 struct tty_struct *tty;
1565 unsigned int modem = 0;
1566 int len = clen;
1567
1568 if (debug & 16)
1569 pr_debug("%d bytes for tty\n", len);
1570 switch (dlci->adaption) {
1571 /* Unsupported types */
1572 /* Packetised interruptible data */
1573 case 4:
1574 break;
1575 /* Packetised uininterruptible voice/data */
1576 case 3:
1577 break;
1578 /* Asynchronous serial with line state in each frame */
1579 case 2:
1580 while (gsm_read_ea(&modem, *data++) == 0) {
1581 len--;
1582 if (len == 0)
1583 return;
1584 }
1585 tty = tty_port_tty_get(port);
1586 if (tty) {
1587 gsm_process_modem(tty, dlci, modem, clen);
1588 tty_kref_put(tty);
1589 }
1590 /* Line state will go via DLCI 0 controls only */
1591 case 1:
1592 default:
1593 tty_insert_flip_string(port, data, len);
1594 tty_flip_buffer_push(port);
1595 }
1596 }
1597
1598 /**
1599 * gsm_dlci_control - data arrived on control channel
1600 * @dlci: channel
1601 * @data: block of bytes received
1602 * @len: length of received block
1603 *
1604 * A UI or UIH frame has arrived which contains data for DLCI 0 the
1605 * control channel. This should contain a command EA followed by
1606 * control data bytes. The command EA contains a command/response bit
1607 * and we divide up the work accordingly.
1608 */
1609
gsm_dlci_command(struct gsm_dlci * dlci,u8 * data,int len)1610 static void gsm_dlci_command(struct gsm_dlci *dlci, u8 *data, int len)
1611 {
1612 /* See what command is involved */
1613 unsigned int command = 0;
1614 while (len-- > 0) {
1615 if (gsm_read_ea(&command, *data++) == 1) {
1616 int clen = *data++;
1617 len--;
1618 /* FIXME: this is properly an EA */
1619 clen >>= 1;
1620 /* Malformed command ? */
1621 if (clen > len)
1622 return;
1623 if (command & 1)
1624 gsm_control_message(dlci->gsm, command,
1625 data, clen);
1626 else
1627 gsm_control_response(dlci->gsm, command,
1628 data, clen);
1629 return;
1630 }
1631 }
1632 }
1633
1634 /*
1635 * Allocate/Free DLCI channels
1636 */
1637
1638 /**
1639 * gsm_dlci_alloc - allocate a DLCI
1640 * @gsm: GSM mux
1641 * @addr: address of the DLCI
1642 *
1643 * Allocate and install a new DLCI object into the GSM mux.
1644 *
1645 * FIXME: review locking races
1646 */
1647
gsm_dlci_alloc(struct gsm_mux * gsm,int addr)1648 static struct gsm_dlci *gsm_dlci_alloc(struct gsm_mux *gsm, int addr)
1649 {
1650 struct gsm_dlci *dlci = kzalloc(sizeof(struct gsm_dlci), GFP_ATOMIC);
1651 if (dlci == NULL)
1652 return NULL;
1653 spin_lock_init(&dlci->lock);
1654 mutex_init(&dlci->mutex);
1655 dlci->fifo = &dlci->_fifo;
1656 if (kfifo_alloc(&dlci->_fifo, 4096, GFP_KERNEL) < 0) {
1657 kfree(dlci);
1658 return NULL;
1659 }
1660
1661 skb_queue_head_init(&dlci->skb_list);
1662 timer_setup(&dlci->t1, gsm_dlci_t1, 0);
1663 tty_port_init(&dlci->port);
1664 dlci->port.ops = &gsm_port_ops;
1665 dlci->gsm = gsm;
1666 dlci->addr = addr;
1667 dlci->adaption = gsm->adaption;
1668 dlci->state = DLCI_CLOSED;
1669 if (addr)
1670 dlci->data = gsm_dlci_data;
1671 else
1672 dlci->data = gsm_dlci_command;
1673 gsm->dlci[addr] = dlci;
1674 return dlci;
1675 }
1676
1677 /**
1678 * gsm_dlci_free - free DLCI
1679 * @dlci: DLCI to free
1680 *
1681 * Free up a DLCI.
1682 *
1683 * Can sleep.
1684 */
gsm_dlci_free(struct tty_port * port)1685 static void gsm_dlci_free(struct tty_port *port)
1686 {
1687 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
1688
1689 del_timer_sync(&dlci->t1);
1690 dlci->gsm->dlci[dlci->addr] = NULL;
1691 kfifo_free(dlci->fifo);
1692 while ((dlci->skb = skb_dequeue(&dlci->skb_list)))
1693 dev_kfree_skb(dlci->skb);
1694 kfree(dlci);
1695 }
1696
dlci_get(struct gsm_dlci * dlci)1697 static inline void dlci_get(struct gsm_dlci *dlci)
1698 {
1699 tty_port_get(&dlci->port);
1700 }
1701
dlci_put(struct gsm_dlci * dlci)1702 static inline void dlci_put(struct gsm_dlci *dlci)
1703 {
1704 tty_port_put(&dlci->port);
1705 }
1706
1707 static void gsm_destroy_network(struct gsm_dlci *dlci);
1708
1709 /**
1710 * gsm_dlci_release - release DLCI
1711 * @dlci: DLCI to destroy
1712 *
1713 * Release a DLCI. Actual free is deferred until either
1714 * mux is closed or tty is closed - whichever is last.
1715 *
1716 * Can sleep.
1717 */
gsm_dlci_release(struct gsm_dlci * dlci)1718 static void gsm_dlci_release(struct gsm_dlci *dlci)
1719 {
1720 struct tty_struct *tty = tty_port_tty_get(&dlci->port);
1721 if (tty) {
1722 mutex_lock(&dlci->mutex);
1723 gsm_destroy_network(dlci);
1724 mutex_unlock(&dlci->mutex);
1725
1726 tty_vhangup(tty);
1727
1728 tty_port_tty_set(&dlci->port, NULL);
1729 tty_kref_put(tty);
1730 }
1731 dlci->state = DLCI_CLOSED;
1732 dlci_put(dlci);
1733 }
1734
1735 /*
1736 * LAPBish link layer logic
1737 */
1738
1739 /**
1740 * gsm_queue - a GSM frame is ready to process
1741 * @gsm: pointer to our gsm mux
1742 *
1743 * At this point in time a frame has arrived and been demangled from
1744 * the line encoding. All the differences between the encodings have
1745 * been handled below us and the frame is unpacked into the structures.
1746 * The fcs holds the header FCS but any data FCS must be added here.
1747 */
1748
gsm_queue(struct gsm_mux * gsm)1749 static void gsm_queue(struct gsm_mux *gsm)
1750 {
1751 struct gsm_dlci *dlci;
1752 u8 cr;
1753 int address;
1754 /* We have to sneak a look at the packet body to do the FCS.
1755 A somewhat layering violation in the spec */
1756
1757 if ((gsm->control & ~PF) == UI)
1758 gsm->fcs = gsm_fcs_add_block(gsm->fcs, gsm->buf, gsm->len);
1759 if (gsm->encoding == 0) {
1760 /* WARNING: gsm->received_fcs is used for
1761 gsm->encoding = 0 only.
1762 In this case it contain the last piece of data
1763 required to generate final CRC */
1764 gsm->fcs = gsm_fcs_add(gsm->fcs, gsm->received_fcs);
1765 }
1766 if (gsm->fcs != GOOD_FCS) {
1767 gsm->bad_fcs++;
1768 if (debug & 4)
1769 pr_debug("BAD FCS %02x\n", gsm->fcs);
1770 return;
1771 }
1772 address = gsm->address >> 1;
1773 if (address >= NUM_DLCI)
1774 goto invalid;
1775
1776 cr = gsm->address & 1; /* C/R bit */
1777
1778 gsm_print_packet("<--", address, cr, gsm->control, gsm->buf, gsm->len);
1779
1780 cr ^= 1 - gsm->initiator; /* Flip so 1 always means command */
1781 dlci = gsm->dlci[address];
1782
1783 switch (gsm->control) {
1784 case SABM|PF:
1785 if (cr == 0)
1786 goto invalid;
1787 if (dlci == NULL)
1788 dlci = gsm_dlci_alloc(gsm, address);
1789 if (dlci == NULL)
1790 return;
1791 if (dlci->dead)
1792 gsm_response(gsm, address, DM);
1793 else {
1794 gsm_response(gsm, address, UA);
1795 gsm_dlci_open(dlci);
1796 }
1797 break;
1798 case DISC|PF:
1799 if (cr == 0)
1800 goto invalid;
1801 if (dlci == NULL || dlci->state == DLCI_CLOSED) {
1802 gsm_response(gsm, address, DM);
1803 return;
1804 }
1805 /* Real close complete */
1806 gsm_response(gsm, address, UA);
1807 gsm_dlci_close(dlci);
1808 break;
1809 case UA:
1810 case UA|PF:
1811 if (cr == 0 || dlci == NULL)
1812 break;
1813 switch (dlci->state) {
1814 case DLCI_CLOSING:
1815 gsm_dlci_close(dlci);
1816 break;
1817 case DLCI_OPENING:
1818 gsm_dlci_open(dlci);
1819 break;
1820 }
1821 break;
1822 case DM: /* DM can be valid unsolicited */
1823 case DM|PF:
1824 if (cr)
1825 goto invalid;
1826 if (dlci == NULL)
1827 return;
1828 gsm_dlci_close(dlci);
1829 break;
1830 case UI:
1831 case UI|PF:
1832 case UIH:
1833 case UIH|PF:
1834 #if 0
1835 if (cr)
1836 goto invalid;
1837 #endif
1838 if (dlci == NULL || dlci->state != DLCI_OPEN) {
1839 gsm_command(gsm, address, DM|PF);
1840 return;
1841 }
1842 dlci->data(dlci, gsm->buf, gsm->len);
1843 break;
1844 default:
1845 goto invalid;
1846 }
1847 return;
1848 invalid:
1849 gsm->malformed++;
1850 return;
1851 }
1852
1853
1854 /**
1855 * gsm0_receive - perform processing for non-transparency
1856 * @gsm: gsm data for this ldisc instance
1857 * @c: character
1858 *
1859 * Receive bytes in gsm mode 0
1860 */
1861
gsm0_receive(struct gsm_mux * gsm,unsigned char c)1862 static void gsm0_receive(struct gsm_mux *gsm, unsigned char c)
1863 {
1864 unsigned int len;
1865
1866 switch (gsm->state) {
1867 case GSM_SEARCH: /* SOF marker */
1868 if (c == GSM0_SOF) {
1869 gsm->state = GSM_ADDRESS;
1870 gsm->address = 0;
1871 gsm->len = 0;
1872 gsm->fcs = INIT_FCS;
1873 }
1874 break;
1875 case GSM_ADDRESS: /* Address EA */
1876 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1877 if (gsm_read_ea(&gsm->address, c))
1878 gsm->state = GSM_CONTROL;
1879 break;
1880 case GSM_CONTROL: /* Control Byte */
1881 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1882 gsm->control = c;
1883 gsm->state = GSM_LEN0;
1884 break;
1885 case GSM_LEN0: /* Length EA */
1886 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1887 if (gsm_read_ea(&gsm->len, c)) {
1888 if (gsm->len > gsm->mru) {
1889 gsm->bad_size++;
1890 gsm->state = GSM_SEARCH;
1891 break;
1892 }
1893 gsm->count = 0;
1894 if (!gsm->len)
1895 gsm->state = GSM_FCS;
1896 else
1897 gsm->state = GSM_DATA;
1898 break;
1899 }
1900 gsm->state = GSM_LEN1;
1901 break;
1902 case GSM_LEN1:
1903 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1904 len = c;
1905 gsm->len |= len << 7;
1906 if (gsm->len > gsm->mru) {
1907 gsm->bad_size++;
1908 gsm->state = GSM_SEARCH;
1909 break;
1910 }
1911 gsm->count = 0;
1912 if (!gsm->len)
1913 gsm->state = GSM_FCS;
1914 else
1915 gsm->state = GSM_DATA;
1916 break;
1917 case GSM_DATA: /* Data */
1918 gsm->buf[gsm->count++] = c;
1919 if (gsm->count == gsm->len)
1920 gsm->state = GSM_FCS;
1921 break;
1922 case GSM_FCS: /* FCS follows the packet */
1923 gsm->received_fcs = c;
1924 gsm_queue(gsm);
1925 gsm->state = GSM_SSOF;
1926 break;
1927 case GSM_SSOF:
1928 if (c == GSM0_SOF) {
1929 gsm->state = GSM_SEARCH;
1930 break;
1931 }
1932 break;
1933 }
1934 }
1935
1936 /**
1937 * gsm1_receive - perform processing for non-transparency
1938 * @gsm: gsm data for this ldisc instance
1939 * @c: character
1940 *
1941 * Receive bytes in mode 1 (Advanced option)
1942 */
1943
gsm1_receive(struct gsm_mux * gsm,unsigned char c)1944 static void gsm1_receive(struct gsm_mux *gsm, unsigned char c)
1945 {
1946 if (c == GSM1_SOF) {
1947 /* EOF is only valid in frame if we have got to the data state
1948 and received at least one byte (the FCS) */
1949 if (gsm->state == GSM_DATA && gsm->count) {
1950 /* Extract the FCS */
1951 gsm->count--;
1952 gsm->fcs = gsm_fcs_add(gsm->fcs, gsm->buf[gsm->count]);
1953 gsm->len = gsm->count;
1954 gsm_queue(gsm);
1955 gsm->state = GSM_START;
1956 return;
1957 }
1958 /* Any partial frame was a runt so go back to start */
1959 if (gsm->state != GSM_START) {
1960 gsm->malformed++;
1961 gsm->state = GSM_START;
1962 }
1963 /* A SOF in GSM_START means we are still reading idling or
1964 framing bytes */
1965 return;
1966 }
1967
1968 if (c == GSM1_ESCAPE) {
1969 gsm->escape = 1;
1970 return;
1971 }
1972
1973 /* Only an unescaped SOF gets us out of GSM search */
1974 if (gsm->state == GSM_SEARCH)
1975 return;
1976
1977 if (gsm->escape) {
1978 c ^= GSM1_ESCAPE_BITS;
1979 gsm->escape = 0;
1980 }
1981 switch (gsm->state) {
1982 case GSM_START: /* First byte after SOF */
1983 gsm->address = 0;
1984 gsm->state = GSM_ADDRESS;
1985 gsm->fcs = INIT_FCS;
1986 /* Drop through */
1987 case GSM_ADDRESS: /* Address continuation */
1988 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1989 if (gsm_read_ea(&gsm->address, c))
1990 gsm->state = GSM_CONTROL;
1991 break;
1992 case GSM_CONTROL: /* Control Byte */
1993 gsm->fcs = gsm_fcs_add(gsm->fcs, c);
1994 gsm->control = c;
1995 gsm->count = 0;
1996 gsm->state = GSM_DATA;
1997 break;
1998 case GSM_DATA: /* Data */
1999 if (gsm->count > gsm->mru) { /* Allow one for the FCS */
2000 gsm->state = GSM_OVERRUN;
2001 gsm->bad_size++;
2002 } else
2003 gsm->buf[gsm->count++] = c;
2004 break;
2005 case GSM_OVERRUN: /* Over-long - eg a dropped SOF */
2006 break;
2007 }
2008 }
2009
2010 /**
2011 * gsm_error - handle tty error
2012 * @gsm: ldisc data
2013 * @data: byte received (may be invalid)
2014 * @flag: error received
2015 *
2016 * Handle an error in the receipt of data for a frame. Currently we just
2017 * go back to hunting for a SOF.
2018 *
2019 * FIXME: better diagnostics ?
2020 */
2021
gsm_error(struct gsm_mux * gsm,unsigned char data,unsigned char flag)2022 static void gsm_error(struct gsm_mux *gsm,
2023 unsigned char data, unsigned char flag)
2024 {
2025 gsm->state = GSM_SEARCH;
2026 gsm->io_error++;
2027 }
2028
gsm_disconnect(struct gsm_mux * gsm)2029 static int gsm_disconnect(struct gsm_mux *gsm)
2030 {
2031 struct gsm_dlci *dlci = gsm->dlci[0];
2032 struct gsm_control *gc;
2033
2034 if (!dlci)
2035 return 0;
2036
2037 /* In theory disconnecting DLCI 0 is sufficient but for some
2038 modems this is apparently not the case. */
2039 gc = gsm_control_send(gsm, CMD_CLD, NULL, 0);
2040 if (gc)
2041 gsm_control_wait(gsm, gc);
2042
2043 del_timer_sync(&gsm->t2_timer);
2044 /* Now we are sure T2 has stopped */
2045
2046 gsm_dlci_begin_close(dlci);
2047 wait_event_interruptible(gsm->event,
2048 dlci->state == DLCI_CLOSED);
2049
2050 if (signal_pending(current))
2051 return -EINTR;
2052
2053 return 0;
2054 }
2055
2056 /**
2057 * gsm_cleanup_mux - generic GSM protocol cleanup
2058 * @gsm: our mux
2059 *
2060 * Clean up the bits of the mux which are the same for all framing
2061 * protocols. Remove the mux from the mux table, stop all the timers
2062 * and then shut down each device hanging up the channels as we go.
2063 */
2064
gsm_cleanup_mux(struct gsm_mux * gsm)2065 static void gsm_cleanup_mux(struct gsm_mux *gsm)
2066 {
2067 int i;
2068 struct gsm_dlci *dlci = gsm->dlci[0];
2069 struct gsm_msg *txq, *ntxq;
2070
2071 gsm->dead = 1;
2072
2073 spin_lock(&gsm_mux_lock);
2074 for (i = 0; i < MAX_MUX; i++) {
2075 if (gsm_mux[i] == gsm) {
2076 gsm_mux[i] = NULL;
2077 break;
2078 }
2079 }
2080 spin_unlock(&gsm_mux_lock);
2081 /* open failed before registering => nothing to do */
2082 if (i == MAX_MUX)
2083 return;
2084
2085 del_timer_sync(&gsm->t2_timer);
2086 /* Now we are sure T2 has stopped */
2087 if (dlci)
2088 dlci->dead = 1;
2089
2090 /* Free up any link layer users */
2091 mutex_lock(&gsm->mutex);
2092 for (i = 0; i < NUM_DLCI; i++)
2093 if (gsm->dlci[i])
2094 gsm_dlci_release(gsm->dlci[i]);
2095 mutex_unlock(&gsm->mutex);
2096 /* Now wipe the queues */
2097 list_for_each_entry_safe(txq, ntxq, &gsm->tx_list, list)
2098 kfree(txq);
2099 INIT_LIST_HEAD(&gsm->tx_list);
2100 }
2101
2102 /**
2103 * gsm_activate_mux - generic GSM setup
2104 * @gsm: our mux
2105 *
2106 * Set up the bits of the mux which are the same for all framing
2107 * protocols. Add the mux to the mux table so it can be opened and
2108 * finally kick off connecting to DLCI 0 on the modem.
2109 */
2110
gsm_activate_mux(struct gsm_mux * gsm)2111 static int gsm_activate_mux(struct gsm_mux *gsm)
2112 {
2113 struct gsm_dlci *dlci;
2114 int i = 0;
2115
2116 timer_setup(&gsm->t2_timer, gsm_control_retransmit, 0);
2117 init_waitqueue_head(&gsm->event);
2118 spin_lock_init(&gsm->control_lock);
2119 spin_lock_init(&gsm->tx_lock);
2120
2121 if (gsm->encoding == 0)
2122 gsm->receive = gsm0_receive;
2123 else
2124 gsm->receive = gsm1_receive;
2125 gsm->error = gsm_error;
2126
2127 spin_lock(&gsm_mux_lock);
2128 for (i = 0; i < MAX_MUX; i++) {
2129 if (gsm_mux[i] == NULL) {
2130 gsm->num = i;
2131 gsm_mux[i] = gsm;
2132 break;
2133 }
2134 }
2135 spin_unlock(&gsm_mux_lock);
2136 if (i == MAX_MUX)
2137 return -EBUSY;
2138
2139 dlci = gsm_dlci_alloc(gsm, 0);
2140 if (dlci == NULL)
2141 return -ENOMEM;
2142 gsm->dead = 0; /* Tty opens are now permissible */
2143 return 0;
2144 }
2145
2146 /**
2147 * gsm_free_mux - free up a mux
2148 * @mux: mux to free
2149 *
2150 * Dispose of allocated resources for a dead mux
2151 */
gsm_free_mux(struct gsm_mux * gsm)2152 static void gsm_free_mux(struct gsm_mux *gsm)
2153 {
2154 kfree(gsm->txframe);
2155 kfree(gsm->buf);
2156 kfree(gsm);
2157 }
2158
2159 /**
2160 * gsm_free_muxr - free up a mux
2161 * @mux: mux to free
2162 *
2163 * Dispose of allocated resources for a dead mux
2164 */
gsm_free_muxr(struct kref * ref)2165 static void gsm_free_muxr(struct kref *ref)
2166 {
2167 struct gsm_mux *gsm = container_of(ref, struct gsm_mux, ref);
2168 gsm_free_mux(gsm);
2169 }
2170
mux_get(struct gsm_mux * gsm)2171 static inline void mux_get(struct gsm_mux *gsm)
2172 {
2173 kref_get(&gsm->ref);
2174 }
2175
mux_put(struct gsm_mux * gsm)2176 static inline void mux_put(struct gsm_mux *gsm)
2177 {
2178 kref_put(&gsm->ref, gsm_free_muxr);
2179 }
2180
2181 /**
2182 * gsm_alloc_mux - allocate a mux
2183 *
2184 * Creates a new mux ready for activation.
2185 */
2186
gsm_alloc_mux(void)2187 static struct gsm_mux *gsm_alloc_mux(void)
2188 {
2189 struct gsm_mux *gsm = kzalloc(sizeof(struct gsm_mux), GFP_KERNEL);
2190 if (gsm == NULL)
2191 return NULL;
2192 gsm->buf = kmalloc(MAX_MRU + 1, GFP_KERNEL);
2193 if (gsm->buf == NULL) {
2194 kfree(gsm);
2195 return NULL;
2196 }
2197 gsm->txframe = kmalloc(2 * MAX_MRU + 2, GFP_KERNEL);
2198 if (gsm->txframe == NULL) {
2199 kfree(gsm->buf);
2200 kfree(gsm);
2201 return NULL;
2202 }
2203 spin_lock_init(&gsm->lock);
2204 mutex_init(&gsm->mutex);
2205 kref_init(&gsm->ref);
2206 INIT_LIST_HEAD(&gsm->tx_list);
2207
2208 gsm->t1 = T1;
2209 gsm->t2 = T2;
2210 gsm->n2 = N2;
2211 gsm->ftype = UIH;
2212 gsm->adaption = 1;
2213 gsm->encoding = 1;
2214 gsm->mru = 64; /* Default to encoding 1 so these should be 64 */
2215 gsm->mtu = 64;
2216 gsm->dead = 1; /* Avoid early tty opens */
2217
2218 return gsm;
2219 }
2220
2221 /**
2222 * gsmld_output - write to link
2223 * @gsm: our mux
2224 * @data: bytes to output
2225 * @len: size
2226 *
2227 * Write a block of data from the GSM mux to the data channel. This
2228 * will eventually be serialized from above but at the moment isn't.
2229 */
2230
gsmld_output(struct gsm_mux * gsm,u8 * data,int len)2231 static int gsmld_output(struct gsm_mux *gsm, u8 *data, int len)
2232 {
2233 if (tty_write_room(gsm->tty) < len) {
2234 set_bit(TTY_DO_WRITE_WAKEUP, &gsm->tty->flags);
2235 return -ENOSPC;
2236 }
2237 if (debug & 4)
2238 print_hex_dump_bytes("gsmld_output: ", DUMP_PREFIX_OFFSET,
2239 data, len);
2240 gsm->tty->ops->write(gsm->tty, data, len);
2241 return len;
2242 }
2243
2244 /**
2245 * gsmld_attach_gsm - mode set up
2246 * @tty: our tty structure
2247 * @gsm: our mux
2248 *
2249 * Set up the MUX for basic mode and commence connecting to the
2250 * modem. Currently called from the line discipline set up but
2251 * will need moving to an ioctl path.
2252 */
2253
gsmld_attach_gsm(struct tty_struct * tty,struct gsm_mux * gsm)2254 static int gsmld_attach_gsm(struct tty_struct *tty, struct gsm_mux *gsm)
2255 {
2256 int ret, i, base;
2257
2258 gsm->tty = tty_kref_get(tty);
2259 gsm->output = gsmld_output;
2260 ret = gsm_activate_mux(gsm);
2261 if (ret != 0)
2262 tty_kref_put(gsm->tty);
2263 else {
2264 /* Don't register device 0 - this is the control channel and not
2265 a usable tty interface */
2266 base = gsm->num << 6; /* Base for this MUX */
2267 for (i = 1; i < NUM_DLCI; i++)
2268 tty_register_device(gsm_tty_driver, base + i, NULL);
2269 }
2270 return ret;
2271 }
2272
2273
2274 /**
2275 * gsmld_detach_gsm - stop doing 0710 mux
2276 * @tty: tty attached to the mux
2277 * @gsm: mux
2278 *
2279 * Shutdown and then clean up the resources used by the line discipline
2280 */
2281
gsmld_detach_gsm(struct tty_struct * tty,struct gsm_mux * gsm)2282 static void gsmld_detach_gsm(struct tty_struct *tty, struct gsm_mux *gsm)
2283 {
2284 int i;
2285 int base = gsm->num << 6; /* Base for this MUX */
2286
2287 WARN_ON(tty != gsm->tty);
2288 for (i = 1; i < NUM_DLCI; i++)
2289 tty_unregister_device(gsm_tty_driver, base + i);
2290 gsm_cleanup_mux(gsm);
2291 tty_kref_put(gsm->tty);
2292 gsm->tty = NULL;
2293 }
2294
gsmld_receive_buf(struct tty_struct * tty,const unsigned char * cp,char * fp,int count)2295 static void gsmld_receive_buf(struct tty_struct *tty, const unsigned char *cp,
2296 char *fp, int count)
2297 {
2298 struct gsm_mux *gsm = tty->disc_data;
2299 const unsigned char *dp;
2300 char *f;
2301 int i;
2302 char flags = TTY_NORMAL;
2303
2304 if (debug & 4)
2305 print_hex_dump_bytes("gsmld_receive: ", DUMP_PREFIX_OFFSET,
2306 cp, count);
2307
2308 for (i = count, dp = cp, f = fp; i; i--, dp++) {
2309 if (f)
2310 flags = *f++;
2311 switch (flags) {
2312 case TTY_NORMAL:
2313 gsm->receive(gsm, *dp);
2314 break;
2315 case TTY_OVERRUN:
2316 case TTY_BREAK:
2317 case TTY_PARITY:
2318 case TTY_FRAME:
2319 gsm->error(gsm, *dp, flags);
2320 break;
2321 default:
2322 WARN_ONCE(1, "%s: unknown flag %d\n",
2323 tty_name(tty), flags);
2324 break;
2325 }
2326 }
2327 /* FASYNC if needed ? */
2328 /* If clogged call tty_throttle(tty); */
2329 }
2330
2331 /**
2332 * gsmld_flush_buffer - clean input queue
2333 * @tty: terminal device
2334 *
2335 * Flush the input buffer. Called when the line discipline is
2336 * being closed, when the tty layer wants the buffer flushed (eg
2337 * at hangup).
2338 */
2339
gsmld_flush_buffer(struct tty_struct * tty)2340 static void gsmld_flush_buffer(struct tty_struct *tty)
2341 {
2342 }
2343
2344 /**
2345 * gsmld_close - close the ldisc for this tty
2346 * @tty: device
2347 *
2348 * Called from the terminal layer when this line discipline is
2349 * being shut down, either because of a close or becsuse of a
2350 * discipline change. The function will not be called while other
2351 * ldisc methods are in progress.
2352 */
2353
gsmld_close(struct tty_struct * tty)2354 static void gsmld_close(struct tty_struct *tty)
2355 {
2356 struct gsm_mux *gsm = tty->disc_data;
2357
2358 gsmld_detach_gsm(tty, gsm);
2359
2360 gsmld_flush_buffer(tty);
2361 /* Do other clean up here */
2362 mux_put(gsm);
2363 }
2364
2365 /**
2366 * gsmld_open - open an ldisc
2367 * @tty: terminal to open
2368 *
2369 * Called when this line discipline is being attached to the
2370 * terminal device. Can sleep. Called serialized so that no
2371 * other events will occur in parallel. No further open will occur
2372 * until a close.
2373 */
2374
gsmld_open(struct tty_struct * tty)2375 static int gsmld_open(struct tty_struct *tty)
2376 {
2377 struct gsm_mux *gsm;
2378 int ret;
2379
2380 if (tty->ops->write == NULL)
2381 return -EINVAL;
2382
2383 /* Attach our ldisc data */
2384 gsm = gsm_alloc_mux();
2385 if (gsm == NULL)
2386 return -ENOMEM;
2387
2388 tty->disc_data = gsm;
2389 tty->receive_room = 65536;
2390
2391 /* Attach the initial passive connection */
2392 gsm->encoding = 1;
2393
2394 ret = gsmld_attach_gsm(tty, gsm);
2395 if (ret != 0) {
2396 gsm_cleanup_mux(gsm);
2397 mux_put(gsm);
2398 }
2399 return ret;
2400 }
2401
2402 /**
2403 * gsmld_write_wakeup - asynchronous I/O notifier
2404 * @tty: tty device
2405 *
2406 * Required for the ptys, serial driver etc. since processes
2407 * that attach themselves to the master and rely on ASYNC
2408 * IO must be woken up
2409 */
2410
gsmld_write_wakeup(struct tty_struct * tty)2411 static void gsmld_write_wakeup(struct tty_struct *tty)
2412 {
2413 struct gsm_mux *gsm = tty->disc_data;
2414 unsigned long flags;
2415
2416 /* Queue poll */
2417 clear_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
2418 spin_lock_irqsave(&gsm->tx_lock, flags);
2419 gsm_data_kick(gsm, NULL);
2420 if (gsm->tx_bytes < TX_THRESH_LO) {
2421 gsm_dlci_data_sweep(gsm);
2422 }
2423 spin_unlock_irqrestore(&gsm->tx_lock, flags);
2424 }
2425
2426 /**
2427 * gsmld_read - read function for tty
2428 * @tty: tty device
2429 * @file: file object
2430 * @buf: userspace buffer pointer
2431 * @nr: size of I/O
2432 *
2433 * Perform reads for the line discipline. We are guaranteed that the
2434 * line discipline will not be closed under us but we may get multiple
2435 * parallel readers and must handle this ourselves. We may also get
2436 * a hangup. Always called in user context, may sleep.
2437 *
2438 * This code must be sure never to sleep through a hangup.
2439 */
2440
gsmld_read(struct tty_struct * tty,struct file * file,unsigned char __user * buf,size_t nr)2441 static ssize_t gsmld_read(struct tty_struct *tty, struct file *file,
2442 unsigned char __user *buf, size_t nr)
2443 {
2444 return -EOPNOTSUPP;
2445 }
2446
2447 /**
2448 * gsmld_write - write function for tty
2449 * @tty: tty device
2450 * @file: file object
2451 * @buf: userspace buffer pointer
2452 * @nr: size of I/O
2453 *
2454 * Called when the owner of the device wants to send a frame
2455 * itself (or some other control data). The data is transferred
2456 * as-is and must be properly framed and checksummed as appropriate
2457 * by userspace. Frames are either sent whole or not at all as this
2458 * avoids pain user side.
2459 */
2460
gsmld_write(struct tty_struct * tty,struct file * file,const unsigned char * buf,size_t nr)2461 static ssize_t gsmld_write(struct tty_struct *tty, struct file *file,
2462 const unsigned char *buf, size_t nr)
2463 {
2464 int space = tty_write_room(tty);
2465 if (space >= nr)
2466 return tty->ops->write(tty, buf, nr);
2467 set_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
2468 return -ENOBUFS;
2469 }
2470
2471 /**
2472 * gsmld_poll - poll method for N_GSM0710
2473 * @tty: terminal device
2474 * @file: file accessing it
2475 * @wait: poll table
2476 *
2477 * Called when the line discipline is asked to poll() for data or
2478 * for special events. This code is not serialized with respect to
2479 * other events save open/close.
2480 *
2481 * This code must be sure never to sleep through a hangup.
2482 * Called without the kernel lock held - fine
2483 */
2484
gsmld_poll(struct tty_struct * tty,struct file * file,poll_table * wait)2485 static __poll_t gsmld_poll(struct tty_struct *tty, struct file *file,
2486 poll_table *wait)
2487 {
2488 __poll_t mask = 0;
2489 struct gsm_mux *gsm = tty->disc_data;
2490
2491 poll_wait(file, &tty->read_wait, wait);
2492 poll_wait(file, &tty->write_wait, wait);
2493 if (tty_hung_up_p(file))
2494 mask |= EPOLLHUP;
2495 if (!tty_is_writelocked(tty) && tty_write_room(tty) > 0)
2496 mask |= EPOLLOUT | EPOLLWRNORM;
2497 if (gsm->dead)
2498 mask |= EPOLLHUP;
2499 return mask;
2500 }
2501
gsmld_config(struct tty_struct * tty,struct gsm_mux * gsm,struct gsm_config * c)2502 static int gsmld_config(struct tty_struct *tty, struct gsm_mux *gsm,
2503 struct gsm_config *c)
2504 {
2505 int need_close = 0;
2506 int need_restart = 0;
2507
2508 /* Stuff we don't support yet - UI or I frame transport, windowing */
2509 if ((c->adaption != 1 && c->adaption != 2) || c->k)
2510 return -EOPNOTSUPP;
2511 /* Check the MRU/MTU range looks sane */
2512 if (c->mru > MAX_MRU || c->mtu > MAX_MTU || c->mru < 8 || c->mtu < 8)
2513 return -EINVAL;
2514 if (c->n2 < 3)
2515 return -EINVAL;
2516 if (c->encapsulation > 1) /* Basic, advanced, no I */
2517 return -EINVAL;
2518 if (c->initiator > 1)
2519 return -EINVAL;
2520 if (c->i == 0 || c->i > 2) /* UIH and UI only */
2521 return -EINVAL;
2522 /*
2523 * See what is needed for reconfiguration
2524 */
2525
2526 /* Timing fields */
2527 if (c->t1 != 0 && c->t1 != gsm->t1)
2528 need_restart = 1;
2529 if (c->t2 != 0 && c->t2 != gsm->t2)
2530 need_restart = 1;
2531 if (c->encapsulation != gsm->encoding)
2532 need_restart = 1;
2533 if (c->adaption != gsm->adaption)
2534 need_restart = 1;
2535 /* Requires care */
2536 if (c->initiator != gsm->initiator)
2537 need_close = 1;
2538 if (c->mru != gsm->mru)
2539 need_restart = 1;
2540 if (c->mtu != gsm->mtu)
2541 need_restart = 1;
2542
2543 /*
2544 * Close down what is needed, restart and initiate the new
2545 * configuration
2546 */
2547
2548 if (need_close || need_restart) {
2549 int ret;
2550
2551 ret = gsm_disconnect(gsm);
2552
2553 if (ret)
2554 return ret;
2555 }
2556 if (need_restart)
2557 gsm_cleanup_mux(gsm);
2558
2559 gsm->initiator = c->initiator;
2560 gsm->mru = c->mru;
2561 gsm->mtu = c->mtu;
2562 gsm->encoding = c->encapsulation;
2563 gsm->adaption = c->adaption;
2564 gsm->n2 = c->n2;
2565
2566 if (c->i == 1)
2567 gsm->ftype = UIH;
2568 else if (c->i == 2)
2569 gsm->ftype = UI;
2570
2571 if (c->t1)
2572 gsm->t1 = c->t1;
2573 if (c->t2)
2574 gsm->t2 = c->t2;
2575
2576 /* FIXME: We need to separate activation/deactivation from adding
2577 and removing from the mux array */
2578 if (need_restart)
2579 gsm_activate_mux(gsm);
2580 if (gsm->initiator && need_close)
2581 gsm_dlci_begin_open(gsm->dlci[0]);
2582 return 0;
2583 }
2584
gsmld_ioctl(struct tty_struct * tty,struct file * file,unsigned int cmd,unsigned long arg)2585 static int gsmld_ioctl(struct tty_struct *tty, struct file *file,
2586 unsigned int cmd, unsigned long arg)
2587 {
2588 struct gsm_config c;
2589 struct gsm_mux *gsm = tty->disc_data;
2590
2591 switch (cmd) {
2592 case GSMIOC_GETCONF:
2593 memset(&c, 0, sizeof(c));
2594 c.adaption = gsm->adaption;
2595 c.encapsulation = gsm->encoding;
2596 c.initiator = gsm->initiator;
2597 c.t1 = gsm->t1;
2598 c.t2 = gsm->t2;
2599 c.t3 = 0; /* Not supported */
2600 c.n2 = gsm->n2;
2601 if (gsm->ftype == UIH)
2602 c.i = 1;
2603 else
2604 c.i = 2;
2605 pr_debug("Ftype %d i %d\n", gsm->ftype, c.i);
2606 c.mru = gsm->mru;
2607 c.mtu = gsm->mtu;
2608 c.k = 0;
2609 if (copy_to_user((void *)arg, &c, sizeof(c)))
2610 return -EFAULT;
2611 return 0;
2612 case GSMIOC_SETCONF:
2613 if (copy_from_user(&c, (void *)arg, sizeof(c)))
2614 return -EFAULT;
2615 return gsmld_config(tty, gsm, &c);
2616 default:
2617 return n_tty_ioctl_helper(tty, file, cmd, arg);
2618 }
2619 }
2620
2621 #ifdef CONFIG_COMPAT
gsmld_compat_ioctl(struct tty_struct * tty,struct file * file,unsigned int cmd,unsigned long arg)2622 static long gsmld_compat_ioctl(struct tty_struct *tty, struct file *file,
2623 unsigned int cmd, unsigned long arg)
2624 {
2625 return gsmld_ioctl(tty, file, cmd, arg);
2626 }
2627 #endif
2628
2629 /*
2630 * Network interface
2631 *
2632 */
2633
gsm_mux_net_open(struct net_device * net)2634 static int gsm_mux_net_open(struct net_device *net)
2635 {
2636 pr_debug("%s called\n", __func__);
2637 netif_start_queue(net);
2638 return 0;
2639 }
2640
gsm_mux_net_close(struct net_device * net)2641 static int gsm_mux_net_close(struct net_device *net)
2642 {
2643 netif_stop_queue(net);
2644 return 0;
2645 }
2646
dlci_net_free(struct gsm_dlci * dlci)2647 static void dlci_net_free(struct gsm_dlci *dlci)
2648 {
2649 if (!dlci->net) {
2650 WARN_ON(1);
2651 return;
2652 }
2653 dlci->adaption = dlci->prev_adaption;
2654 dlci->data = dlci->prev_data;
2655 free_netdev(dlci->net);
2656 dlci->net = NULL;
2657 }
net_free(struct kref * ref)2658 static void net_free(struct kref *ref)
2659 {
2660 struct gsm_mux_net *mux_net;
2661 struct gsm_dlci *dlci;
2662
2663 mux_net = container_of(ref, struct gsm_mux_net, ref);
2664 dlci = mux_net->dlci;
2665
2666 if (dlci->net) {
2667 unregister_netdev(dlci->net);
2668 dlci_net_free(dlci);
2669 }
2670 }
2671
muxnet_get(struct gsm_mux_net * mux_net)2672 static inline void muxnet_get(struct gsm_mux_net *mux_net)
2673 {
2674 kref_get(&mux_net->ref);
2675 }
2676
muxnet_put(struct gsm_mux_net * mux_net)2677 static inline void muxnet_put(struct gsm_mux_net *mux_net)
2678 {
2679 kref_put(&mux_net->ref, net_free);
2680 }
2681
gsm_mux_net_start_xmit(struct sk_buff * skb,struct net_device * net)2682 static netdev_tx_t gsm_mux_net_start_xmit(struct sk_buff *skb,
2683 struct net_device *net)
2684 {
2685 struct gsm_mux_net *mux_net = netdev_priv(net);
2686 struct gsm_dlci *dlci = mux_net->dlci;
2687 muxnet_get(mux_net);
2688
2689 skb_queue_head(&dlci->skb_list, skb);
2690 net->stats.tx_packets++;
2691 net->stats.tx_bytes += skb->len;
2692 gsm_dlci_data_kick(dlci);
2693 /* And tell the kernel when the last transmit started. */
2694 netif_trans_update(net);
2695 muxnet_put(mux_net);
2696 return NETDEV_TX_OK;
2697 }
2698
2699 /* called when a packet did not ack after watchdogtimeout */
gsm_mux_net_tx_timeout(struct net_device * net)2700 static void gsm_mux_net_tx_timeout(struct net_device *net)
2701 {
2702 /* Tell syslog we are hosed. */
2703 dev_dbg(&net->dev, "Tx timed out.\n");
2704
2705 /* Update statistics */
2706 net->stats.tx_errors++;
2707 }
2708
gsm_mux_rx_netchar(struct gsm_dlci * dlci,unsigned char * in_buf,int size)2709 static void gsm_mux_rx_netchar(struct gsm_dlci *dlci,
2710 unsigned char *in_buf, int size)
2711 {
2712 struct net_device *net = dlci->net;
2713 struct sk_buff *skb;
2714 struct gsm_mux_net *mux_net = netdev_priv(net);
2715 muxnet_get(mux_net);
2716
2717 /* Allocate an sk_buff */
2718 skb = dev_alloc_skb(size + NET_IP_ALIGN);
2719 if (!skb) {
2720 /* We got no receive buffer. */
2721 net->stats.rx_dropped++;
2722 muxnet_put(mux_net);
2723 return;
2724 }
2725 skb_reserve(skb, NET_IP_ALIGN);
2726 skb_put_data(skb, in_buf, size);
2727
2728 skb->dev = net;
2729 skb->protocol = htons(ETH_P_IP);
2730
2731 /* Ship it off to the kernel */
2732 netif_rx(skb);
2733
2734 /* update out statistics */
2735 net->stats.rx_packets++;
2736 net->stats.rx_bytes += size;
2737 muxnet_put(mux_net);
2738 return;
2739 }
2740
gsm_mux_net_init(struct net_device * net)2741 static void gsm_mux_net_init(struct net_device *net)
2742 {
2743 static const struct net_device_ops gsm_netdev_ops = {
2744 .ndo_open = gsm_mux_net_open,
2745 .ndo_stop = gsm_mux_net_close,
2746 .ndo_start_xmit = gsm_mux_net_start_xmit,
2747 .ndo_tx_timeout = gsm_mux_net_tx_timeout,
2748 };
2749
2750 net->netdev_ops = &gsm_netdev_ops;
2751
2752 /* fill in the other fields */
2753 net->watchdog_timeo = GSM_NET_TX_TIMEOUT;
2754 net->flags = IFF_POINTOPOINT | IFF_NOARP | IFF_MULTICAST;
2755 net->type = ARPHRD_NONE;
2756 net->tx_queue_len = 10;
2757 }
2758
2759
2760 /* caller holds the dlci mutex */
gsm_destroy_network(struct gsm_dlci * dlci)2761 static void gsm_destroy_network(struct gsm_dlci *dlci)
2762 {
2763 struct gsm_mux_net *mux_net;
2764
2765 pr_debug("destroy network interface");
2766 if (!dlci->net)
2767 return;
2768 mux_net = netdev_priv(dlci->net);
2769 muxnet_put(mux_net);
2770 }
2771
2772
2773 /* caller holds the dlci mutex */
gsm_create_network(struct gsm_dlci * dlci,struct gsm_netconfig * nc)2774 static int gsm_create_network(struct gsm_dlci *dlci, struct gsm_netconfig *nc)
2775 {
2776 char *netname;
2777 int retval = 0;
2778 struct net_device *net;
2779 struct gsm_mux_net *mux_net;
2780
2781 if (!capable(CAP_NET_ADMIN))
2782 return -EPERM;
2783
2784 /* Already in a non tty mode */
2785 if (dlci->adaption > 2)
2786 return -EBUSY;
2787
2788 if (nc->protocol != htons(ETH_P_IP))
2789 return -EPROTONOSUPPORT;
2790
2791 if (nc->adaption != 3 && nc->adaption != 4)
2792 return -EPROTONOSUPPORT;
2793
2794 pr_debug("create network interface");
2795
2796 netname = "gsm%d";
2797 if (nc->if_name[0] != '\0')
2798 netname = nc->if_name;
2799 net = alloc_netdev(sizeof(struct gsm_mux_net), netname,
2800 NET_NAME_UNKNOWN, gsm_mux_net_init);
2801 if (!net) {
2802 pr_err("alloc_netdev failed");
2803 return -ENOMEM;
2804 }
2805 net->mtu = dlci->gsm->mtu;
2806 net->min_mtu = 8;
2807 net->max_mtu = dlci->gsm->mtu;
2808 mux_net = netdev_priv(net);
2809 mux_net->dlci = dlci;
2810 kref_init(&mux_net->ref);
2811 strncpy(nc->if_name, net->name, IFNAMSIZ); /* return net name */
2812
2813 /* reconfigure dlci for network */
2814 dlci->prev_adaption = dlci->adaption;
2815 dlci->prev_data = dlci->data;
2816 dlci->adaption = nc->adaption;
2817 dlci->data = gsm_mux_rx_netchar;
2818 dlci->net = net;
2819
2820 pr_debug("register netdev");
2821 retval = register_netdev(net);
2822 if (retval) {
2823 pr_err("network register fail %d\n", retval);
2824 dlci_net_free(dlci);
2825 return retval;
2826 }
2827 return net->ifindex; /* return network index */
2828 }
2829
2830 /* Line discipline for real tty */
2831 static struct tty_ldisc_ops tty_ldisc_packet = {
2832 .owner = THIS_MODULE,
2833 .magic = TTY_LDISC_MAGIC,
2834 .name = "n_gsm",
2835 .open = gsmld_open,
2836 .close = gsmld_close,
2837 .flush_buffer = gsmld_flush_buffer,
2838 .read = gsmld_read,
2839 .write = gsmld_write,
2840 #ifdef CONFIG_COMPAT
2841 .compat_ioctl = gsmld_compat_ioctl,
2842 #endif
2843 .ioctl = gsmld_ioctl,
2844 .poll = gsmld_poll,
2845 .receive_buf = gsmld_receive_buf,
2846 .write_wakeup = gsmld_write_wakeup
2847 };
2848
2849 /*
2850 * Virtual tty side
2851 */
2852
2853 #define TX_SIZE 512
2854
gsmtty_modem_update(struct gsm_dlci * dlci,u8 brk)2855 static int gsmtty_modem_update(struct gsm_dlci *dlci, u8 brk)
2856 {
2857 u8 modembits[5];
2858 struct gsm_control *ctrl;
2859 int len = 2;
2860
2861 if (brk)
2862 len++;
2863
2864 modembits[0] = len << 1 | EA; /* Data bytes */
2865 modembits[1] = dlci->addr << 2 | 3; /* DLCI, EA, 1 */
2866 modembits[2] = gsm_encode_modem(dlci) << 1 | EA;
2867 if (brk)
2868 modembits[3] = brk << 4 | 2 | EA; /* Valid, EA */
2869 ctrl = gsm_control_send(dlci->gsm, CMD_MSC, modembits, len + 1);
2870 if (ctrl == NULL)
2871 return -ENOMEM;
2872 return gsm_control_wait(dlci->gsm, ctrl);
2873 }
2874
gsm_carrier_raised(struct tty_port * port)2875 static int gsm_carrier_raised(struct tty_port *port)
2876 {
2877 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
2878 struct gsm_mux *gsm = dlci->gsm;
2879
2880 /* Not yet open so no carrier info */
2881 if (dlci->state != DLCI_OPEN)
2882 return 0;
2883 if (debug & 2)
2884 return 1;
2885
2886 /*
2887 * Basic mode with control channel in ADM mode may not respond
2888 * to CMD_MSC at all and modem_rx is empty.
2889 */
2890 if (gsm->encoding == 0 && gsm->dlci[0]->mode == DLCI_MODE_ADM &&
2891 !dlci->modem_rx)
2892 return 1;
2893
2894 return dlci->modem_rx & TIOCM_CD;
2895 }
2896
gsm_dtr_rts(struct tty_port * port,int onoff)2897 static void gsm_dtr_rts(struct tty_port *port, int onoff)
2898 {
2899 struct gsm_dlci *dlci = container_of(port, struct gsm_dlci, port);
2900 unsigned int modem_tx = dlci->modem_tx;
2901 if (onoff)
2902 modem_tx |= TIOCM_DTR | TIOCM_RTS;
2903 else
2904 modem_tx &= ~(TIOCM_DTR | TIOCM_RTS);
2905 if (modem_tx != dlci->modem_tx) {
2906 dlci->modem_tx = modem_tx;
2907 gsmtty_modem_update(dlci, 0);
2908 }
2909 }
2910
2911 static const struct tty_port_operations gsm_port_ops = {
2912 .carrier_raised = gsm_carrier_raised,
2913 .dtr_rts = gsm_dtr_rts,
2914 .destruct = gsm_dlci_free,
2915 };
2916
gsmtty_install(struct tty_driver * driver,struct tty_struct * tty)2917 static int gsmtty_install(struct tty_driver *driver, struct tty_struct *tty)
2918 {
2919 struct gsm_mux *gsm;
2920 struct gsm_dlci *dlci;
2921 unsigned int line = tty->index;
2922 unsigned int mux = line >> 6;
2923 bool alloc = false;
2924 int ret;
2925
2926 line = line & 0x3F;
2927
2928 if (mux >= MAX_MUX)
2929 return -ENXIO;
2930 /* FIXME: we need to lock gsm_mux for lifetimes of ttys eventually */
2931 if (gsm_mux[mux] == NULL)
2932 return -EUNATCH;
2933 if (line == 0 || line > 61) /* 62/63 reserved */
2934 return -ECHRNG;
2935 gsm = gsm_mux[mux];
2936 if (gsm->dead)
2937 return -EL2HLT;
2938 /* If DLCI 0 is not yet fully open return an error.
2939 This is ok from a locking
2940 perspective as we don't have to worry about this
2941 if DLCI0 is lost */
2942 mutex_lock(&gsm->mutex);
2943 if (gsm->dlci[0] && gsm->dlci[0]->state != DLCI_OPEN) {
2944 mutex_unlock(&gsm->mutex);
2945 return -EL2NSYNC;
2946 }
2947 dlci = gsm->dlci[line];
2948 if (dlci == NULL) {
2949 alloc = true;
2950 dlci = gsm_dlci_alloc(gsm, line);
2951 }
2952 if (dlci == NULL) {
2953 mutex_unlock(&gsm->mutex);
2954 return -ENOMEM;
2955 }
2956 ret = tty_port_install(&dlci->port, driver, tty);
2957 if (ret) {
2958 if (alloc)
2959 dlci_put(dlci);
2960 mutex_unlock(&gsm->mutex);
2961 return ret;
2962 }
2963
2964 dlci_get(dlci);
2965 dlci_get(gsm->dlci[0]);
2966 mux_get(gsm);
2967 tty->driver_data = dlci;
2968 mutex_unlock(&gsm->mutex);
2969
2970 return 0;
2971 }
2972
gsmtty_open(struct tty_struct * tty,struct file * filp)2973 static int gsmtty_open(struct tty_struct *tty, struct file *filp)
2974 {
2975 struct gsm_dlci *dlci = tty->driver_data;
2976 struct tty_port *port = &dlci->port;
2977
2978 port->count++;
2979 tty_port_tty_set(port, tty);
2980
2981 dlci->modem_rx = 0;
2982 /* We could in theory open and close before we wait - eg if we get
2983 a DM straight back. This is ok as that will have caused a hangup */
2984 tty_port_set_initialized(port, 1);
2985 /* Start sending off SABM messages */
2986 gsm_dlci_begin_open(dlci);
2987 /* And wait for virtual carrier */
2988 return tty_port_block_til_ready(port, tty, filp);
2989 }
2990
gsmtty_close(struct tty_struct * tty,struct file * filp)2991 static void gsmtty_close(struct tty_struct *tty, struct file *filp)
2992 {
2993 struct gsm_dlci *dlci = tty->driver_data;
2994
2995 if (dlci == NULL)
2996 return;
2997 if (dlci->state == DLCI_CLOSED)
2998 return;
2999 mutex_lock(&dlci->mutex);
3000 gsm_destroy_network(dlci);
3001 mutex_unlock(&dlci->mutex);
3002 if (tty_port_close_start(&dlci->port, tty, filp) == 0)
3003 return;
3004 gsm_dlci_begin_close(dlci);
3005 if (tty_port_initialized(&dlci->port) && C_HUPCL(tty))
3006 tty_port_lower_dtr_rts(&dlci->port);
3007 tty_port_close_end(&dlci->port, tty);
3008 tty_port_tty_set(&dlci->port, NULL);
3009 return;
3010 }
3011
gsmtty_hangup(struct tty_struct * tty)3012 static void gsmtty_hangup(struct tty_struct *tty)
3013 {
3014 struct gsm_dlci *dlci = tty->driver_data;
3015 if (dlci->state == DLCI_CLOSED)
3016 return;
3017 tty_port_hangup(&dlci->port);
3018 gsm_dlci_begin_close(dlci);
3019 }
3020
gsmtty_write(struct tty_struct * tty,const unsigned char * buf,int len)3021 static int gsmtty_write(struct tty_struct *tty, const unsigned char *buf,
3022 int len)
3023 {
3024 int sent;
3025 struct gsm_dlci *dlci = tty->driver_data;
3026 if (dlci->state == DLCI_CLOSED)
3027 return -EINVAL;
3028 /* Stuff the bytes into the fifo queue */
3029 sent = kfifo_in_locked(dlci->fifo, buf, len, &dlci->lock);
3030 /* Need to kick the channel */
3031 gsm_dlci_data_kick(dlci);
3032 return sent;
3033 }
3034
gsmtty_write_room(struct tty_struct * tty)3035 static int gsmtty_write_room(struct tty_struct *tty)
3036 {
3037 struct gsm_dlci *dlci = tty->driver_data;
3038 if (dlci->state == DLCI_CLOSED)
3039 return -EINVAL;
3040 return TX_SIZE - kfifo_len(dlci->fifo);
3041 }
3042
gsmtty_chars_in_buffer(struct tty_struct * tty)3043 static int gsmtty_chars_in_buffer(struct tty_struct *tty)
3044 {
3045 struct gsm_dlci *dlci = tty->driver_data;
3046 if (dlci->state == DLCI_CLOSED)
3047 return -EINVAL;
3048 return kfifo_len(dlci->fifo);
3049 }
3050
gsmtty_flush_buffer(struct tty_struct * tty)3051 static void gsmtty_flush_buffer(struct tty_struct *tty)
3052 {
3053 struct gsm_dlci *dlci = tty->driver_data;
3054 if (dlci->state == DLCI_CLOSED)
3055 return;
3056 /* Caution needed: If we implement reliable transport classes
3057 then the data being transmitted can't simply be junked once
3058 it has first hit the stack. Until then we can just blow it
3059 away */
3060 kfifo_reset(dlci->fifo);
3061 /* Need to unhook this DLCI from the transmit queue logic */
3062 }
3063
gsmtty_wait_until_sent(struct tty_struct * tty,int timeout)3064 static void gsmtty_wait_until_sent(struct tty_struct *tty, int timeout)
3065 {
3066 /* The FIFO handles the queue so the kernel will do the right
3067 thing waiting on chars_in_buffer before calling us. No work
3068 to do here */
3069 }
3070
gsmtty_tiocmget(struct tty_struct * tty)3071 static int gsmtty_tiocmget(struct tty_struct *tty)
3072 {
3073 struct gsm_dlci *dlci = tty->driver_data;
3074 if (dlci->state == DLCI_CLOSED)
3075 return -EINVAL;
3076 return dlci->modem_rx;
3077 }
3078
gsmtty_tiocmset(struct tty_struct * tty,unsigned int set,unsigned int clear)3079 static int gsmtty_tiocmset(struct tty_struct *tty,
3080 unsigned int set, unsigned int clear)
3081 {
3082 struct gsm_dlci *dlci = tty->driver_data;
3083 unsigned int modem_tx = dlci->modem_tx;
3084
3085 if (dlci->state == DLCI_CLOSED)
3086 return -EINVAL;
3087 modem_tx &= ~clear;
3088 modem_tx |= set;
3089
3090 if (modem_tx != dlci->modem_tx) {
3091 dlci->modem_tx = modem_tx;
3092 return gsmtty_modem_update(dlci, 0);
3093 }
3094 return 0;
3095 }
3096
3097
gsmtty_ioctl(struct tty_struct * tty,unsigned int cmd,unsigned long arg)3098 static int gsmtty_ioctl(struct tty_struct *tty,
3099 unsigned int cmd, unsigned long arg)
3100 {
3101 struct gsm_dlci *dlci = tty->driver_data;
3102 struct gsm_netconfig nc;
3103 int index;
3104
3105 if (dlci->state == DLCI_CLOSED)
3106 return -EINVAL;
3107 switch (cmd) {
3108 case GSMIOC_ENABLE_NET:
3109 if (copy_from_user(&nc, (void __user *)arg, sizeof(nc)))
3110 return -EFAULT;
3111 nc.if_name[IFNAMSIZ-1] = '\0';
3112 /* return net interface index or error code */
3113 mutex_lock(&dlci->mutex);
3114 index = gsm_create_network(dlci, &nc);
3115 mutex_unlock(&dlci->mutex);
3116 if (copy_to_user((void __user *)arg, &nc, sizeof(nc)))
3117 return -EFAULT;
3118 return index;
3119 case GSMIOC_DISABLE_NET:
3120 if (!capable(CAP_NET_ADMIN))
3121 return -EPERM;
3122 mutex_lock(&dlci->mutex);
3123 gsm_destroy_network(dlci);
3124 mutex_unlock(&dlci->mutex);
3125 return 0;
3126 default:
3127 return -ENOIOCTLCMD;
3128 }
3129 }
3130
gsmtty_set_termios(struct tty_struct * tty,struct ktermios * old)3131 static void gsmtty_set_termios(struct tty_struct *tty, struct ktermios *old)
3132 {
3133 struct gsm_dlci *dlci = tty->driver_data;
3134 if (dlci->state == DLCI_CLOSED)
3135 return;
3136 /* For the moment its fixed. In actual fact the speed information
3137 for the virtual channel can be propogated in both directions by
3138 the RPN control message. This however rapidly gets nasty as we
3139 then have to remap modem signals each way according to whether
3140 our virtual cable is null modem etc .. */
3141 tty_termios_copy_hw(&tty->termios, old);
3142 }
3143
gsmtty_throttle(struct tty_struct * tty)3144 static void gsmtty_throttle(struct tty_struct *tty)
3145 {
3146 struct gsm_dlci *dlci = tty->driver_data;
3147 if (dlci->state == DLCI_CLOSED)
3148 return;
3149 if (C_CRTSCTS(tty))
3150 dlci->modem_tx &= ~TIOCM_DTR;
3151 dlci->throttled = 1;
3152 /* Send an MSC with DTR cleared */
3153 gsmtty_modem_update(dlci, 0);
3154 }
3155
gsmtty_unthrottle(struct tty_struct * tty)3156 static void gsmtty_unthrottle(struct tty_struct *tty)
3157 {
3158 struct gsm_dlci *dlci = tty->driver_data;
3159 if (dlci->state == DLCI_CLOSED)
3160 return;
3161 if (C_CRTSCTS(tty))
3162 dlci->modem_tx |= TIOCM_DTR;
3163 dlci->throttled = 0;
3164 /* Send an MSC with DTR set */
3165 gsmtty_modem_update(dlci, 0);
3166 }
3167
gsmtty_break_ctl(struct tty_struct * tty,int state)3168 static int gsmtty_break_ctl(struct tty_struct *tty, int state)
3169 {
3170 struct gsm_dlci *dlci = tty->driver_data;
3171 int encode = 0; /* Off */
3172 if (dlci->state == DLCI_CLOSED)
3173 return -EINVAL;
3174
3175 if (state == -1) /* "On indefinitely" - we can't encode this
3176 properly */
3177 encode = 0x0F;
3178 else if (state > 0) {
3179 encode = state / 200; /* mS to encoding */
3180 if (encode > 0x0F)
3181 encode = 0x0F; /* Best effort */
3182 }
3183 return gsmtty_modem_update(dlci, encode);
3184 }
3185
gsmtty_cleanup(struct tty_struct * tty)3186 static void gsmtty_cleanup(struct tty_struct *tty)
3187 {
3188 struct gsm_dlci *dlci = tty->driver_data;
3189 struct gsm_mux *gsm = dlci->gsm;
3190
3191 dlci_put(dlci);
3192 dlci_put(gsm->dlci[0]);
3193 mux_put(gsm);
3194 }
3195
3196 /* Virtual ttys for the demux */
3197 static const struct tty_operations gsmtty_ops = {
3198 .install = gsmtty_install,
3199 .open = gsmtty_open,
3200 .close = gsmtty_close,
3201 .write = gsmtty_write,
3202 .write_room = gsmtty_write_room,
3203 .chars_in_buffer = gsmtty_chars_in_buffer,
3204 .flush_buffer = gsmtty_flush_buffer,
3205 .ioctl = gsmtty_ioctl,
3206 .throttle = gsmtty_throttle,
3207 .unthrottle = gsmtty_unthrottle,
3208 .set_termios = gsmtty_set_termios,
3209 .hangup = gsmtty_hangup,
3210 .wait_until_sent = gsmtty_wait_until_sent,
3211 .tiocmget = gsmtty_tiocmget,
3212 .tiocmset = gsmtty_tiocmset,
3213 .break_ctl = gsmtty_break_ctl,
3214 .cleanup = gsmtty_cleanup,
3215 };
3216
3217
3218
gsm_init(void)3219 static int __init gsm_init(void)
3220 {
3221 /* Fill in our line protocol discipline, and register it */
3222 int status = tty_register_ldisc(N_GSM0710, &tty_ldisc_packet);
3223 if (status != 0) {
3224 pr_err("n_gsm: can't register line discipline (err = %d)\n",
3225 status);
3226 return status;
3227 }
3228
3229 gsm_tty_driver = alloc_tty_driver(256);
3230 if (!gsm_tty_driver) {
3231 tty_unregister_ldisc(N_GSM0710);
3232 pr_err("gsm_init: tty allocation failed.\n");
3233 return -EINVAL;
3234 }
3235 gsm_tty_driver->driver_name = "gsmtty";
3236 gsm_tty_driver->name = "gsmtty";
3237 gsm_tty_driver->major = 0; /* Dynamic */
3238 gsm_tty_driver->minor_start = 0;
3239 gsm_tty_driver->type = TTY_DRIVER_TYPE_SERIAL;
3240 gsm_tty_driver->subtype = SERIAL_TYPE_NORMAL;
3241 gsm_tty_driver->flags = TTY_DRIVER_REAL_RAW | TTY_DRIVER_DYNAMIC_DEV
3242 | TTY_DRIVER_HARDWARE_BREAK;
3243 gsm_tty_driver->init_termios = tty_std_termios;
3244 /* Fixme */
3245 gsm_tty_driver->init_termios.c_lflag &= ~ECHO;
3246 tty_set_operations(gsm_tty_driver, &gsmtty_ops);
3247
3248 spin_lock_init(&gsm_mux_lock);
3249
3250 if (tty_register_driver(gsm_tty_driver)) {
3251 put_tty_driver(gsm_tty_driver);
3252 tty_unregister_ldisc(N_GSM0710);
3253 pr_err("gsm_init: tty registration failed.\n");
3254 return -EBUSY;
3255 }
3256 pr_debug("gsm_init: loaded as %d,%d.\n",
3257 gsm_tty_driver->major, gsm_tty_driver->minor_start);
3258 return 0;
3259 }
3260
gsm_exit(void)3261 static void __exit gsm_exit(void)
3262 {
3263 int status = tty_unregister_ldisc(N_GSM0710);
3264 if (status != 0)
3265 pr_err("n_gsm: can't unregister line discipline (err = %d)\n",
3266 status);
3267 tty_unregister_driver(gsm_tty_driver);
3268 put_tty_driver(gsm_tty_driver);
3269 }
3270
3271 module_init(gsm_init);
3272 module_exit(gsm_exit);
3273
3274
3275 MODULE_LICENSE("GPL");
3276 MODULE_ALIAS_LDISC(N_GSM0710);
3277