2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (C) 2000-2001 Qualcomm Incorporated
4 Copyright (C) 2009-2010 Gustavo F. Padovan <gustavo@padovan.org>
5 Copyright (C) 2010 Google Inc.
6 Copyright (C) 2011 ProFUSION Embedded Systems
8 Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
10 This program is free software; you can redistribute it and/or modify
11 it under the terms of the GNU General Public License version 2 as
12 published by the Free Software Foundation;
14 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
15 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
17 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
18 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
19 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
20 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
21 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
23 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
24 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
25 SOFTWARE IS DISCLAIMED.
28 /* Bluetooth L2CAP sockets. */
30 #include <linux/module.h>
31 #include <linux/export.h>
33 #include <net/bluetooth/bluetooth.h>
34 #include <net/bluetooth/hci_core.h>
35 #include <net/bluetooth/l2cap.h>
41 static struct bt_sock_list l2cap_sk_list = {
42 .lock = __RW_LOCK_UNLOCKED(l2cap_sk_list.lock)
45 static const struct proto_ops l2cap_sock_ops;
46 static void l2cap_sock_init(struct sock *sk, struct sock *parent);
47 static struct sock *l2cap_sock_alloc(struct net *net, struct socket *sock,
48 int proto, gfp_t prio);
50 bool l2cap_is_socket(struct socket *sock)
52 return sock && sock->ops == &l2cap_sock_ops;
54 EXPORT_SYMBOL(l2cap_is_socket);
56 static int l2cap_sock_bind(struct socket *sock, struct sockaddr *addr, int alen)
58 struct sock *sk = sock->sk;
59 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
60 struct sockaddr_l2 la;
65 if (!addr || addr->sa_family != AF_BLUETOOTH)
68 memset(&la, 0, sizeof(la));
69 len = min_t(unsigned int, sizeof(la), alen);
70 memcpy(&la, addr, len);
72 if (la.l2_cid && la.l2_psm)
75 if (!bdaddr_type_is_valid(la.l2_bdaddr_type))
78 if (bdaddr_type_is_le(la.l2_bdaddr_type)) {
79 if (!enable_lecoc && la.l2_psm)
81 /* We only allow ATT user space socket */
83 la.l2_cid != __constant_cpu_to_le16(L2CAP_CID_ATT))
89 if (sk->sk_state != BT_OPEN) {
95 __u16 psm = __le16_to_cpu(la.l2_psm);
97 /* PSM must be odd and lsb of upper byte must be 0 */
98 if ((psm & 0x0101) != 0x0001) {
103 /* Restrict usage of well-known PSMs */
104 if (psm < 0x1001 && !capable(CAP_NET_BIND_SERVICE)) {
111 err = l2cap_add_scid(chan, __le16_to_cpu(la.l2_cid));
113 err = l2cap_add_psm(chan, &la.l2_bdaddr, la.l2_psm);
118 switch (chan->chan_type) {
119 case L2CAP_CHAN_CONN_LESS:
120 if (__le16_to_cpu(la.l2_psm) == L2CAP_PSM_3DSP)
121 chan->sec_level = BT_SECURITY_SDP;
123 case L2CAP_CHAN_CONN_ORIENTED:
124 if (__le16_to_cpu(la.l2_psm) == L2CAP_PSM_SDP ||
125 __le16_to_cpu(la.l2_psm) == L2CAP_PSM_RFCOMM)
126 chan->sec_level = BT_SECURITY_SDP;
130 bacpy(&chan->src, &la.l2_bdaddr);
131 chan->src_type = la.l2_bdaddr_type;
133 chan->state = BT_BOUND;
134 sk->sk_state = BT_BOUND;
141 static int l2cap_sock_connect(struct socket *sock, struct sockaddr *addr,
144 struct sock *sk = sock->sk;
145 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
146 struct sockaddr_l2 la;
151 if (!addr || alen < sizeof(addr->sa_family) ||
152 addr->sa_family != AF_BLUETOOTH)
155 memset(&la, 0, sizeof(la));
156 len = min_t(unsigned int, sizeof(la), alen);
157 memcpy(&la, addr, len);
159 if (la.l2_cid && la.l2_psm)
162 if (!bdaddr_type_is_valid(la.l2_bdaddr_type))
165 /* Check that the socket wasn't bound to something that
166 * conflicts with the address given to connect(). If chan->src
167 * is BDADDR_ANY it means bind() was never used, in which case
168 * chan->src_type and la.l2_bdaddr_type do not need to match.
170 if (chan->src_type == BDADDR_BREDR && bacmp(&chan->src, BDADDR_ANY) &&
171 bdaddr_type_is_le(la.l2_bdaddr_type)) {
172 /* Old user space versions will try to incorrectly bind
173 * the ATT socket using BDADDR_BREDR. We need to accept
174 * this and fix up the source address type only when
175 * both the source CID and destination CID indicate
176 * ATT. Anything else is an invalid combination.
178 if (chan->scid != L2CAP_CID_ATT ||
179 la.l2_cid != __constant_cpu_to_le16(L2CAP_CID_ATT))
182 /* We don't have the hdev available here to make a
183 * better decision on random vs public, but since all
184 * user space versions that exhibit this issue anyway do
185 * not support random local addresses assuming public
186 * here is good enough.
188 chan->src_type = BDADDR_LE_PUBLIC;
191 if (chan->src_type != BDADDR_BREDR && la.l2_bdaddr_type == BDADDR_BREDR)
194 if (bdaddr_type_is_le(la.l2_bdaddr_type)) {
195 if (!enable_lecoc && la.l2_psm)
197 /* We only allow ATT user space socket */
199 la.l2_cid != __constant_cpu_to_le16(L2CAP_CID_ATT))
203 err = l2cap_chan_connect(chan, la.l2_psm, __le16_to_cpu(la.l2_cid),
204 &la.l2_bdaddr, la.l2_bdaddr_type);
210 err = bt_sock_wait_state(sk, BT_CONNECTED,
211 sock_sndtimeo(sk, flags & O_NONBLOCK));
218 static int l2cap_sock_listen(struct socket *sock, int backlog)
220 struct sock *sk = sock->sk;
221 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
224 BT_DBG("sk %p backlog %d", sk, backlog);
228 if (sk->sk_state != BT_BOUND) {
233 if (sk->sk_type != SOCK_SEQPACKET && sk->sk_type != SOCK_STREAM) {
238 switch (chan->mode) {
239 case L2CAP_MODE_BASIC:
241 case L2CAP_MODE_ERTM:
242 case L2CAP_MODE_STREAMING:
251 sk->sk_max_ack_backlog = backlog;
252 sk->sk_ack_backlog = 0;
254 chan->state = BT_LISTEN;
255 sk->sk_state = BT_LISTEN;
262 static int l2cap_sock_accept(struct socket *sock, struct socket *newsock,
265 DECLARE_WAITQUEUE(wait, current);
266 struct sock *sk = sock->sk, *nsk;
270 lock_sock_nested(sk, SINGLE_DEPTH_NESTING);
272 timeo = sock_rcvtimeo(sk, flags & O_NONBLOCK);
274 BT_DBG("sk %p timeo %ld", sk, timeo);
276 /* Wait for an incoming connection. (wake-one). */
277 add_wait_queue_exclusive(sk_sleep(sk), &wait);
279 set_current_state(TASK_INTERRUPTIBLE);
281 if (sk->sk_state != BT_LISTEN) {
286 nsk = bt_accept_dequeue(sk, newsock);
295 if (signal_pending(current)) {
296 err = sock_intr_errno(timeo);
301 timeo = schedule_timeout(timeo);
302 lock_sock_nested(sk, SINGLE_DEPTH_NESTING);
304 __set_current_state(TASK_RUNNING);
305 remove_wait_queue(sk_sleep(sk), &wait);
310 newsock->state = SS_CONNECTED;
312 BT_DBG("new socket %p", nsk);
319 static int l2cap_sock_getname(struct socket *sock, struct sockaddr *addr,
322 struct sockaddr_l2 *la = (struct sockaddr_l2 *) addr;
323 struct sock *sk = sock->sk;
324 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
326 BT_DBG("sock %p, sk %p", sock, sk);
328 memset(la, 0, sizeof(struct sockaddr_l2));
329 addr->sa_family = AF_BLUETOOTH;
330 *len = sizeof(struct sockaddr_l2);
333 la->l2_psm = chan->psm;
334 bacpy(&la->l2_bdaddr, &chan->dst);
335 la->l2_cid = cpu_to_le16(chan->dcid);
336 la->l2_bdaddr_type = chan->dst_type;
338 la->l2_psm = chan->sport;
339 bacpy(&la->l2_bdaddr, &chan->src);
340 la->l2_cid = cpu_to_le16(chan->scid);
341 la->l2_bdaddr_type = chan->src_type;
347 static int l2cap_sock_getsockopt_old(struct socket *sock, int optname,
348 char __user *optval, int __user *optlen)
350 struct sock *sk = sock->sk;
351 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
352 struct l2cap_options opts;
353 struct l2cap_conninfo cinfo;
359 if (get_user(len, optlen))
366 memset(&opts, 0, sizeof(opts));
367 opts.imtu = chan->imtu;
368 opts.omtu = chan->omtu;
369 opts.flush_to = chan->flush_to;
370 opts.mode = chan->mode;
371 opts.fcs = chan->fcs;
372 opts.max_tx = chan->max_tx;
373 opts.txwin_size = chan->tx_win;
375 len = min_t(unsigned int, len, sizeof(opts));
376 if (copy_to_user(optval, (char *) &opts, len))
382 switch (chan->sec_level) {
383 case BT_SECURITY_LOW:
386 case BT_SECURITY_MEDIUM:
387 opt = L2CAP_LM_AUTH | L2CAP_LM_ENCRYPT;
389 case BT_SECURITY_HIGH:
390 opt = L2CAP_LM_AUTH | L2CAP_LM_ENCRYPT |
398 if (test_bit(FLAG_ROLE_SWITCH, &chan->flags))
399 opt |= L2CAP_LM_MASTER;
401 if (test_bit(FLAG_FORCE_RELIABLE, &chan->flags))
402 opt |= L2CAP_LM_RELIABLE;
404 if (put_user(opt, (u32 __user *) optval))
409 if (sk->sk_state != BT_CONNECTED &&
410 !(sk->sk_state == BT_CONNECT2 &&
411 test_bit(BT_SK_DEFER_SETUP, &bt_sk(sk)->flags))) {
416 memset(&cinfo, 0, sizeof(cinfo));
417 cinfo.hci_handle = chan->conn->hcon->handle;
418 memcpy(cinfo.dev_class, chan->conn->hcon->dev_class, 3);
420 len = min_t(unsigned int, len, sizeof(cinfo));
421 if (copy_to_user(optval, (char *) &cinfo, len))
435 static int l2cap_sock_getsockopt(struct socket *sock, int level, int optname,
436 char __user *optval, int __user *optlen)
438 struct sock *sk = sock->sk;
439 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
440 struct bt_security sec;
446 if (level == SOL_L2CAP)
447 return l2cap_sock_getsockopt_old(sock, optname, optval, optlen);
449 if (level != SOL_BLUETOOTH)
452 if (get_user(len, optlen))
459 if (chan->chan_type != L2CAP_CHAN_CONN_ORIENTED &&
460 chan->chan_type != L2CAP_CHAN_RAW) {
465 memset(&sec, 0, sizeof(sec));
467 sec.level = chan->conn->hcon->sec_level;
469 if (sk->sk_state == BT_CONNECTED)
470 sec.key_size = chan->conn->hcon->enc_key_size;
472 sec.level = chan->sec_level;
475 len = min_t(unsigned int, len, sizeof(sec));
476 if (copy_to_user(optval, (char *) &sec, len))
482 if (sk->sk_state != BT_BOUND && sk->sk_state != BT_LISTEN) {
487 if (put_user(test_bit(BT_SK_DEFER_SETUP, &bt_sk(sk)->flags),
488 (u32 __user *) optval))
494 if (put_user(test_bit(FLAG_FLUSHABLE, &chan->flags),
495 (u32 __user *) optval))
501 if (sk->sk_type != SOCK_SEQPACKET && sk->sk_type != SOCK_STREAM
502 && sk->sk_type != SOCK_RAW) {
507 pwr.force_active = test_bit(FLAG_FORCE_ACTIVE, &chan->flags);
509 len = min_t(unsigned int, len, sizeof(pwr));
510 if (copy_to_user(optval, (char *) &pwr, len))
515 case BT_CHANNEL_POLICY:
516 if (put_user(chan->chan_policy, (u32 __user *) optval))
529 static bool l2cap_valid_mtu(struct l2cap_chan *chan, u16 mtu)
531 switch (chan->scid) {
533 if (mtu < L2CAP_LE_MIN_MTU)
538 if (mtu < L2CAP_DEFAULT_MIN_MTU)
545 static int l2cap_sock_setsockopt_old(struct socket *sock, int optname,
546 char __user *optval, unsigned int optlen)
548 struct sock *sk = sock->sk;
549 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
550 struct l2cap_options opts;
560 if (sk->sk_state == BT_CONNECTED) {
565 opts.imtu = chan->imtu;
566 opts.omtu = chan->omtu;
567 opts.flush_to = chan->flush_to;
568 opts.mode = chan->mode;
569 opts.fcs = chan->fcs;
570 opts.max_tx = chan->max_tx;
571 opts.txwin_size = chan->tx_win;
573 len = min_t(unsigned int, sizeof(opts), optlen);
574 if (copy_from_user((char *) &opts, optval, len)) {
579 if (opts.txwin_size > L2CAP_DEFAULT_EXT_WINDOW) {
584 if (!l2cap_valid_mtu(chan, opts.imtu)) {
589 chan->mode = opts.mode;
590 switch (chan->mode) {
591 case L2CAP_MODE_BASIC:
592 clear_bit(CONF_STATE2_DEVICE, &chan->conf_state);
594 case L2CAP_MODE_ERTM:
595 case L2CAP_MODE_STREAMING:
604 chan->imtu = opts.imtu;
605 chan->omtu = opts.omtu;
606 chan->fcs = opts.fcs;
607 chan->max_tx = opts.max_tx;
608 chan->tx_win = opts.txwin_size;
609 chan->flush_to = opts.flush_to;
613 if (get_user(opt, (u32 __user *) optval)) {
618 if (opt & L2CAP_LM_AUTH)
619 chan->sec_level = BT_SECURITY_LOW;
620 if (opt & L2CAP_LM_ENCRYPT)
621 chan->sec_level = BT_SECURITY_MEDIUM;
622 if (opt & L2CAP_LM_SECURE)
623 chan->sec_level = BT_SECURITY_HIGH;
625 if (opt & L2CAP_LM_MASTER)
626 set_bit(FLAG_ROLE_SWITCH, &chan->flags);
628 clear_bit(FLAG_ROLE_SWITCH, &chan->flags);
630 if (opt & L2CAP_LM_RELIABLE)
631 set_bit(FLAG_FORCE_RELIABLE, &chan->flags);
633 clear_bit(FLAG_FORCE_RELIABLE, &chan->flags);
645 static int l2cap_sock_setsockopt(struct socket *sock, int level, int optname,
646 char __user *optval, unsigned int optlen)
648 struct sock *sk = sock->sk;
649 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
650 struct bt_security sec;
652 struct l2cap_conn *conn;
658 if (level == SOL_L2CAP)
659 return l2cap_sock_setsockopt_old(sock, optname, optval, optlen);
661 if (level != SOL_BLUETOOTH)
668 if (chan->chan_type != L2CAP_CHAN_CONN_ORIENTED &&
669 chan->chan_type != L2CAP_CHAN_RAW) {
674 sec.level = BT_SECURITY_LOW;
676 len = min_t(unsigned int, sizeof(sec), optlen);
677 if (copy_from_user((char *) &sec, optval, len)) {
682 if (sec.level < BT_SECURITY_LOW ||
683 sec.level > BT_SECURITY_HIGH) {
688 chan->sec_level = sec.level;
695 /*change security for LE channels */
696 if (chan->scid == L2CAP_CID_ATT) {
697 if (!conn->hcon->out) {
702 if (smp_conn_security(conn->hcon, sec.level))
704 sk->sk_state = BT_CONFIG;
705 chan->state = BT_CONFIG;
707 /* or for ACL link */
708 } else if ((sk->sk_state == BT_CONNECT2 &&
709 test_bit(BT_SK_DEFER_SETUP, &bt_sk(sk)->flags)) ||
710 sk->sk_state == BT_CONNECTED) {
711 if (!l2cap_chan_check_security(chan))
712 set_bit(BT_SK_SUSPEND, &bt_sk(sk)->flags);
714 sk->sk_state_change(sk);
721 if (sk->sk_state != BT_BOUND && sk->sk_state != BT_LISTEN) {
726 if (get_user(opt, (u32 __user *) optval)) {
732 set_bit(BT_SK_DEFER_SETUP, &bt_sk(sk)->flags);
733 set_bit(FLAG_DEFER_SETUP, &chan->flags);
735 clear_bit(BT_SK_DEFER_SETUP, &bt_sk(sk)->flags);
736 clear_bit(FLAG_DEFER_SETUP, &chan->flags);
741 if (get_user(opt, (u32 __user *) optval)) {
746 if (opt > BT_FLUSHABLE_ON) {
751 if (opt == BT_FLUSHABLE_OFF) {
753 /* proceed further only when we have l2cap_conn and
754 No Flush support in the LM */
755 if (!conn || !lmp_no_flush_capable(conn->hcon->hdev)) {
762 set_bit(FLAG_FLUSHABLE, &chan->flags);
764 clear_bit(FLAG_FLUSHABLE, &chan->flags);
768 if (chan->chan_type != L2CAP_CHAN_CONN_ORIENTED &&
769 chan->chan_type != L2CAP_CHAN_RAW) {
774 pwr.force_active = BT_POWER_FORCE_ACTIVE_ON;
776 len = min_t(unsigned int, sizeof(pwr), optlen);
777 if (copy_from_user((char *) &pwr, optval, len)) {
782 if (pwr.force_active)
783 set_bit(FLAG_FORCE_ACTIVE, &chan->flags);
785 clear_bit(FLAG_FORCE_ACTIVE, &chan->flags);
788 case BT_CHANNEL_POLICY:
789 if (get_user(opt, (u32 __user *) optval)) {
794 if (opt > BT_CHANNEL_POLICY_AMP_PREFERRED) {
799 if (chan->mode != L2CAP_MODE_ERTM &&
800 chan->mode != L2CAP_MODE_STREAMING) {
805 chan->chan_policy = (u8) opt;
807 if (sk->sk_state == BT_CONNECTED &&
808 chan->move_role == L2CAP_MOVE_ROLE_NONE)
809 l2cap_move_start(chan);
822 static int l2cap_sock_sendmsg(struct kiocb *iocb, struct socket *sock,
823 struct msghdr *msg, size_t len)
825 struct sock *sk = sock->sk;
826 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
829 BT_DBG("sock %p, sk %p", sock, sk);
831 err = sock_error(sk);
835 if (msg->msg_flags & MSG_OOB)
838 if (sk->sk_state != BT_CONNECTED)
842 err = bt_sock_wait_ready(sk, msg->msg_flags);
847 l2cap_chan_lock(chan);
848 err = l2cap_chan_send(chan, msg, len, sk->sk_priority);
849 l2cap_chan_unlock(chan);
854 static int l2cap_sock_recvmsg(struct kiocb *iocb, struct socket *sock,
855 struct msghdr *msg, size_t len, int flags)
857 struct sock *sk = sock->sk;
858 struct l2cap_pinfo *pi = l2cap_pi(sk);
863 if (sk->sk_state == BT_CONNECT2 && test_bit(BT_SK_DEFER_SETUP,
864 &bt_sk(sk)->flags)) {
865 sk->sk_state = BT_CONFIG;
866 pi->chan->state = BT_CONFIG;
868 __l2cap_connect_rsp_defer(pi->chan);
875 if (sock->type == SOCK_STREAM)
876 err = bt_sock_stream_recvmsg(iocb, sock, msg, len, flags);
878 err = bt_sock_recvmsg(iocb, sock, msg, len, flags);
880 if (pi->chan->mode != L2CAP_MODE_ERTM)
883 /* Attempt to put pending rx data in the socket buffer */
887 if (!test_bit(CONN_LOCAL_BUSY, &pi->chan->conn_state))
890 if (pi->rx_busy_skb) {
891 if (!sock_queue_rcv_skb(sk, pi->rx_busy_skb))
892 pi->rx_busy_skb = NULL;
897 /* Restore data flow when half of the receive buffer is
898 * available. This avoids resending large numbers of
901 if (atomic_read(&sk->sk_rmem_alloc) <= sk->sk_rcvbuf >> 1)
902 l2cap_chan_busy(pi->chan, 0);
909 /* Kill socket (only if zapped and orphan)
910 * Must be called on unlocked socket.
912 static void l2cap_sock_kill(struct sock *sk)
914 if (!sock_flag(sk, SOCK_ZAPPED) || sk->sk_socket)
917 BT_DBG("sk %p state %s", sk, state_to_string(sk->sk_state));
919 /* Kill poor orphan */
921 l2cap_chan_put(l2cap_pi(sk)->chan);
922 sock_set_flag(sk, SOCK_DEAD);
926 static int __l2cap_wait_ack(struct sock *sk)
928 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
929 DECLARE_WAITQUEUE(wait, current);
933 add_wait_queue(sk_sleep(sk), &wait);
934 set_current_state(TASK_INTERRUPTIBLE);
935 while (chan->unacked_frames > 0 && chan->conn) {
939 if (signal_pending(current)) {
940 err = sock_intr_errno(timeo);
945 timeo = schedule_timeout(timeo);
947 set_current_state(TASK_INTERRUPTIBLE);
949 err = sock_error(sk);
953 set_current_state(TASK_RUNNING);
954 remove_wait_queue(sk_sleep(sk), &wait);
958 static int l2cap_sock_shutdown(struct socket *sock, int how)
960 struct sock *sk = sock->sk;
961 struct l2cap_chan *chan;
962 struct l2cap_conn *conn;
965 BT_DBG("sock %p, sk %p", sock, sk);
970 chan = l2cap_pi(sk)->chan;
974 mutex_lock(&conn->chan_lock);
976 l2cap_chan_lock(chan);
979 if (!sk->sk_shutdown) {
980 if (chan->mode == L2CAP_MODE_ERTM)
981 err = __l2cap_wait_ack(sk);
983 sk->sk_shutdown = SHUTDOWN_MASK;
986 l2cap_chan_close(chan, 0);
989 if (sock_flag(sk, SOCK_LINGER) && sk->sk_lingertime)
990 err = bt_sock_wait_state(sk, BT_CLOSED,
994 if (!err && sk->sk_err)
998 l2cap_chan_unlock(chan);
1001 mutex_unlock(&conn->chan_lock);
1006 static int l2cap_sock_release(struct socket *sock)
1008 struct sock *sk = sock->sk;
1011 BT_DBG("sock %p, sk %p", sock, sk);
1016 bt_sock_unlink(&l2cap_sk_list, sk);
1018 err = l2cap_sock_shutdown(sock, 2);
1021 l2cap_sock_kill(sk);
1025 static void l2cap_sock_cleanup_listen(struct sock *parent)
1029 BT_DBG("parent %p", parent);
1031 /* Close not yet accepted channels */
1032 while ((sk = bt_accept_dequeue(parent, NULL))) {
1033 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
1035 l2cap_chan_lock(chan);
1036 __clear_chan_timer(chan);
1037 l2cap_chan_close(chan, ECONNRESET);
1038 l2cap_chan_unlock(chan);
1040 l2cap_sock_kill(sk);
1044 static struct l2cap_chan *l2cap_sock_new_connection_cb(struct l2cap_chan *chan)
1046 struct sock *sk, *parent = chan->data;
1050 /* Check for backlog size */
1051 if (sk_acceptq_is_full(parent)) {
1052 BT_DBG("backlog full %d", parent->sk_ack_backlog);
1056 sk = l2cap_sock_alloc(sock_net(parent), NULL, BTPROTO_L2CAP,
1061 bt_sock_reclassify_lock(sk, BTPROTO_L2CAP);
1063 l2cap_sock_init(sk, parent);
1065 bt_accept_enqueue(parent, sk);
1067 release_sock(parent);
1069 return l2cap_pi(sk)->chan;
1072 static int l2cap_sock_recv_cb(struct l2cap_chan *chan, struct sk_buff *skb)
1074 struct sock *sk = chan->data;
1079 if (l2cap_pi(sk)->rx_busy_skb) {
1084 err = sock_queue_rcv_skb(sk, skb);
1086 /* For ERTM, handle one skb that doesn't fit into the recv
1087 * buffer. This is important to do because the data frames
1088 * have already been acked, so the skb cannot be discarded.
1090 * Notify the l2cap core that the buffer is full, so the
1091 * LOCAL_BUSY state is entered and no more frames are
1092 * acked and reassembled until there is buffer space
1095 if (err < 0 && chan->mode == L2CAP_MODE_ERTM) {
1096 l2cap_pi(sk)->rx_busy_skb = skb;
1097 l2cap_chan_busy(chan, 1);
1107 static void l2cap_sock_close_cb(struct l2cap_chan *chan)
1109 struct sock *sk = chan->data;
1111 l2cap_sock_kill(sk);
1114 static void l2cap_sock_teardown_cb(struct l2cap_chan *chan, int err)
1116 struct sock *sk = chan->data;
1117 struct sock *parent;
1121 parent = bt_sk(sk)->parent;
1123 sock_set_flag(sk, SOCK_ZAPPED);
1125 switch (chan->state) {
1131 l2cap_sock_cleanup_listen(sk);
1132 sk->sk_state = BT_CLOSED;
1133 chan->state = BT_CLOSED;
1137 sk->sk_state = BT_CLOSED;
1138 chan->state = BT_CLOSED;
1143 bt_accept_unlink(sk);
1144 parent->sk_data_ready(parent, 0);
1146 sk->sk_state_change(sk);
1155 static void l2cap_sock_state_change_cb(struct l2cap_chan *chan, int state,
1158 struct sock *sk = chan->data;
1160 sk->sk_state = state;
1166 static struct sk_buff *l2cap_sock_alloc_skb_cb(struct l2cap_chan *chan,
1167 unsigned long len, int nb)
1169 struct sock *sk = chan->data;
1170 struct sk_buff *skb;
1173 l2cap_chan_unlock(chan);
1174 skb = bt_skb_send_alloc(sk, len, nb, &err);
1175 l2cap_chan_lock(chan);
1178 return ERR_PTR(err);
1180 bt_cb(skb)->chan = chan;
1185 static void l2cap_sock_ready_cb(struct l2cap_chan *chan)
1187 struct sock *sk = chan->data;
1188 struct sock *parent;
1192 parent = bt_sk(sk)->parent;
1194 BT_DBG("sk %p, parent %p", sk, parent);
1196 sk->sk_state = BT_CONNECTED;
1197 sk->sk_state_change(sk);
1200 parent->sk_data_ready(parent, 0);
1205 static void l2cap_sock_defer_cb(struct l2cap_chan *chan)
1207 struct sock *parent, *sk = chan->data;
1211 parent = bt_sk(sk)->parent;
1213 parent->sk_data_ready(parent, 0);
1218 static void l2cap_sock_resume_cb(struct l2cap_chan *chan)
1220 struct sock *sk = chan->data;
1222 clear_bit(BT_SK_SUSPEND, &bt_sk(sk)->flags);
1223 sk->sk_state_change(sk);
1226 static void l2cap_sock_set_shutdown_cb(struct l2cap_chan *chan)
1228 struct sock *sk = chan->data;
1231 sk->sk_shutdown = SHUTDOWN_MASK;
1235 static long l2cap_sock_get_sndtimeo_cb(struct l2cap_chan *chan)
1237 struct sock *sk = chan->data;
1239 return sk->sk_sndtimeo;
1242 static struct l2cap_ops l2cap_chan_ops = {
1243 .name = "L2CAP Socket Interface",
1244 .new_connection = l2cap_sock_new_connection_cb,
1245 .recv = l2cap_sock_recv_cb,
1246 .close = l2cap_sock_close_cb,
1247 .teardown = l2cap_sock_teardown_cb,
1248 .state_change = l2cap_sock_state_change_cb,
1249 .ready = l2cap_sock_ready_cb,
1250 .defer = l2cap_sock_defer_cb,
1251 .resume = l2cap_sock_resume_cb,
1252 .set_shutdown = l2cap_sock_set_shutdown_cb,
1253 .get_sndtimeo = l2cap_sock_get_sndtimeo_cb,
1254 .alloc_skb = l2cap_sock_alloc_skb_cb,
1257 static void l2cap_sock_destruct(struct sock *sk)
1259 BT_DBG("sk %p", sk);
1261 if (l2cap_pi(sk)->chan)
1262 l2cap_chan_put(l2cap_pi(sk)->chan);
1264 if (l2cap_pi(sk)->rx_busy_skb) {
1265 kfree_skb(l2cap_pi(sk)->rx_busy_skb);
1266 l2cap_pi(sk)->rx_busy_skb = NULL;
1269 skb_queue_purge(&sk->sk_receive_queue);
1270 skb_queue_purge(&sk->sk_write_queue);
1273 static void l2cap_skb_msg_name(struct sk_buff *skb, void *msg_name,
1276 struct sockaddr_l2 *la = (struct sockaddr_l2 *) msg_name;
1278 memset(la, 0, sizeof(struct sockaddr_l2));
1279 la->l2_family = AF_BLUETOOTH;
1280 la->l2_psm = bt_cb(skb)->psm;
1281 bacpy(&la->l2_bdaddr, &bt_cb(skb)->bdaddr);
1283 *msg_namelen = sizeof(struct sockaddr_l2);
1286 static void l2cap_sock_init(struct sock *sk, struct sock *parent)
1288 struct l2cap_chan *chan = l2cap_pi(sk)->chan;
1290 BT_DBG("sk %p", sk);
1293 struct l2cap_chan *pchan = l2cap_pi(parent)->chan;
1295 sk->sk_type = parent->sk_type;
1296 bt_sk(sk)->flags = bt_sk(parent)->flags;
1298 chan->chan_type = pchan->chan_type;
1299 chan->imtu = pchan->imtu;
1300 chan->omtu = pchan->omtu;
1301 chan->conf_state = pchan->conf_state;
1302 chan->mode = pchan->mode;
1303 chan->fcs = pchan->fcs;
1304 chan->max_tx = pchan->max_tx;
1305 chan->tx_win = pchan->tx_win;
1306 chan->tx_win_max = pchan->tx_win_max;
1307 chan->sec_level = pchan->sec_level;
1308 chan->flags = pchan->flags;
1310 security_sk_clone(parent, sk);
1312 switch (sk->sk_type) {
1314 chan->chan_type = L2CAP_CHAN_RAW;
1317 chan->chan_type = L2CAP_CHAN_CONN_LESS;
1318 bt_sk(sk)->skb_msg_name = l2cap_skb_msg_name;
1320 case SOCK_SEQPACKET:
1322 chan->chan_type = L2CAP_CHAN_CONN_ORIENTED;
1326 chan->imtu = L2CAP_DEFAULT_MTU;
1328 if (!disable_ertm && sk->sk_type == SOCK_STREAM) {
1329 chan->mode = L2CAP_MODE_ERTM;
1330 set_bit(CONF_STATE2_DEVICE, &chan->conf_state);
1332 chan->mode = L2CAP_MODE_BASIC;
1335 l2cap_chan_set_defaults(chan);
1338 /* Default config options */
1339 chan->flush_to = L2CAP_DEFAULT_FLUSH_TO;
1342 chan->ops = &l2cap_chan_ops;
1345 static struct proto l2cap_proto = {
1347 .owner = THIS_MODULE,
1348 .obj_size = sizeof(struct l2cap_pinfo)
1351 static struct sock *l2cap_sock_alloc(struct net *net, struct socket *sock,
1352 int proto, gfp_t prio)
1355 struct l2cap_chan *chan;
1357 sk = sk_alloc(net, PF_BLUETOOTH, prio, &l2cap_proto);
1361 sock_init_data(sock, sk);
1362 INIT_LIST_HEAD(&bt_sk(sk)->accept_q);
1364 sk->sk_destruct = l2cap_sock_destruct;
1365 sk->sk_sndtimeo = L2CAP_CONN_TIMEOUT;
1367 sock_reset_flag(sk, SOCK_ZAPPED);
1369 sk->sk_protocol = proto;
1370 sk->sk_state = BT_OPEN;
1372 chan = l2cap_chan_create();
1378 l2cap_chan_hold(chan);
1380 l2cap_pi(sk)->chan = chan;
1385 static int l2cap_sock_create(struct net *net, struct socket *sock, int protocol,
1390 BT_DBG("sock %p", sock);
1392 sock->state = SS_UNCONNECTED;
1394 if (sock->type != SOCK_SEQPACKET && sock->type != SOCK_STREAM &&
1395 sock->type != SOCK_DGRAM && sock->type != SOCK_RAW)
1396 return -ESOCKTNOSUPPORT;
1398 if (sock->type == SOCK_RAW && !kern && !capable(CAP_NET_RAW))
1401 sock->ops = &l2cap_sock_ops;
1403 sk = l2cap_sock_alloc(net, sock, protocol, GFP_ATOMIC);
1407 l2cap_sock_init(sk, NULL);
1408 bt_sock_link(&l2cap_sk_list, sk);
1412 static const struct proto_ops l2cap_sock_ops = {
1413 .family = PF_BLUETOOTH,
1414 .owner = THIS_MODULE,
1415 .release = l2cap_sock_release,
1416 .bind = l2cap_sock_bind,
1417 .connect = l2cap_sock_connect,
1418 .listen = l2cap_sock_listen,
1419 .accept = l2cap_sock_accept,
1420 .getname = l2cap_sock_getname,
1421 .sendmsg = l2cap_sock_sendmsg,
1422 .recvmsg = l2cap_sock_recvmsg,
1423 .poll = bt_sock_poll,
1424 .ioctl = bt_sock_ioctl,
1425 .mmap = sock_no_mmap,
1426 .socketpair = sock_no_socketpair,
1427 .shutdown = l2cap_sock_shutdown,
1428 .setsockopt = l2cap_sock_setsockopt,
1429 .getsockopt = l2cap_sock_getsockopt
1432 static const struct net_proto_family l2cap_sock_family_ops = {
1433 .family = PF_BLUETOOTH,
1434 .owner = THIS_MODULE,
1435 .create = l2cap_sock_create,
1438 int __init l2cap_init_sockets(void)
1442 err = proto_register(&l2cap_proto, 0);
1446 err = bt_sock_register(BTPROTO_L2CAP, &l2cap_sock_family_ops);
1448 BT_ERR("L2CAP socket registration failed");
1452 err = bt_procfs_init(&init_net, "l2cap", &l2cap_sk_list,
1455 BT_ERR("Failed to create L2CAP proc file");
1456 bt_sock_unregister(BTPROTO_L2CAP);
1460 BT_INFO("L2CAP socket layer initialized");
1465 proto_unregister(&l2cap_proto);
1469 void l2cap_cleanup_sockets(void)
1471 bt_procfs_cleanup(&init_net, "l2cap");
1472 bt_sock_unregister(BTPROTO_L2CAP);
1473 proto_unregister(&l2cap_proto);
1476 module_param(enable_lecoc, bool, 0644);
1477 MODULE_PARM_DESC(enable_lecoc, "Enable support for LE CoC");
projects / karo-tx-linux.git / blob