2 RFCOMM implementation for Linux Bluetooth stack (BlueZ).
3 Copyright (C) 2002 Maxim Krasnyansky <maxk@qualcomm.com>
4 Copyright (C) 2002 Marcel Holtmann <marcel@holtmann.org>
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License version 2 as
8 published by the Free Software Foundation;
10 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
11 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
12 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
13 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
14 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
15 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
16 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
17 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
20 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
21 SOFTWARE IS DISCLAIMED.
27 * $Id: sock.c,v 1.24 2002/10/03 01:00:34 maxk Exp $
30 #include <linux/config.h>
31 #include <linux/module.h>
33 #include <linux/types.h>
34 #include <linux/errno.h>
35 #include <linux/kernel.h>
36 #include <linux/major.h>
37 #include <linux/sched.h>
38 #include <linux/slab.h>
39 #include <linux/poll.h>
40 #include <linux/fcntl.h>
41 #include <linux/init.h>
42 #include <linux/interrupt.h>
43 #include <linux/socket.h>
44 #include <linux/skbuff.h>
45 #include <linux/list.h>
46 #include <linux/proc_fs.h>
47 #include <linux/seq_file.h>
50 #include <asm/system.h>
51 #include <asm/uaccess.h>
53 #include <net/bluetooth/bluetooth.h>
54 #include <net/bluetooth/rfcomm.h>
56 #ifndef CONFIG_BT_RFCOMM_DEBUG
61 static struct proto_ops rfcomm_sock_ops;
63 static struct bt_sock_list rfcomm_sk_list = {
64 .lock = RW_LOCK_UNLOCKED
67 static void rfcomm_sock_close(struct sock *sk);
68 static void rfcomm_sock_kill(struct sock *sk);
70 /* ---- DLC callbacks ----
72 * called under rfcomm_dlc_lock()
74 static void rfcomm_sk_data_ready(struct rfcomm_dlc *d, struct sk_buff *skb)
76 struct sock *sk = d->owner;
80 atomic_add(skb->len, &sk->sk_rmem_alloc);
81 skb_queue_tail(&sk->sk_receive_queue, skb);
82 sk->sk_data_ready(sk, skb->len);
84 if (atomic_read(&sk->sk_rmem_alloc) >= sk->sk_rcvbuf)
85 rfcomm_dlc_throttle(d);
88 static void rfcomm_sk_state_change(struct rfcomm_dlc *d, int err)
90 struct sock *sk = d->owner, *parent;
94 BT_DBG("dlc %p state %ld err %d", d, d->state, err);
101 sk->sk_state = d->state;
103 parent = bt_sk(sk)->parent;
105 if (d->state == BT_CLOSED) {
107 bt_accept_unlink(sk);
109 parent->sk_data_ready(parent, 0);
111 if (d->state == BT_CONNECTED)
112 rfcomm_session_getaddr(d->session, &bt_sk(sk)->src, NULL);
113 sk->sk_state_change(sk);
118 if (parent && sk->sk_zapped)
119 rfcomm_sock_kill(sk);
122 /* ---- Socket functions ---- */
123 static struct sock *__rfcomm_get_sock_by_addr(u8 channel, bdaddr_t *src)
125 struct sock *sk = NULL;
126 struct hlist_node *node;
128 sk_for_each(sk, node, &rfcomm_sk_list.head) {
129 if (rfcomm_pi(sk)->channel == channel &&
130 !bacmp(&bt_sk(sk)->src, src))
134 return node ? sk : NULL;
137 /* Find socket with channel and source bdaddr.
138 * Returns closest match.
140 static struct sock *__rfcomm_get_sock_by_channel(int state, u8 channel, bdaddr_t *src)
142 struct sock *sk = NULL, *sk1 = NULL;
143 struct hlist_node *node;
145 sk_for_each(sk, node, &rfcomm_sk_list.head) {
146 if (state && sk->sk_state != state)
149 if (rfcomm_pi(sk)->channel == channel) {
151 if (!bacmp(&bt_sk(sk)->src, src))
155 if (!bacmp(&bt_sk(sk)->src, BDADDR_ANY))
159 return node ? sk : sk1;
162 /* Find socket with given address (channel, src).
163 * Returns locked socket */
164 static inline struct sock *rfcomm_get_sock_by_channel(int state, u8 channel, bdaddr_t *src)
167 read_lock(&rfcomm_sk_list.lock);
168 s = __rfcomm_get_sock_by_channel(state, channel, src);
169 if (s) bh_lock_sock(s);
170 read_unlock(&rfcomm_sk_list.lock);
174 static void rfcomm_sock_destruct(struct sock *sk)
176 struct rfcomm_dlc *d = rfcomm_pi(sk)->dlc;
178 BT_DBG("sk %p dlc %p", sk, d);
180 skb_queue_purge(&sk->sk_receive_queue);
181 skb_queue_purge(&sk->sk_write_queue);
184 rfcomm_pi(sk)->dlc = NULL;
186 /* Detach DLC if it's owned by this socket */
189 rfcomm_dlc_unlock(d);
194 kfree(sk->sk_protinfo);
197 static void rfcomm_sock_cleanup_listen(struct sock *parent)
201 BT_DBG("parent %p", parent);
203 /* Close not yet accepted dlcs */
204 while ((sk = bt_accept_dequeue(parent, NULL))) {
205 rfcomm_sock_close(sk);
206 rfcomm_sock_kill(sk);
209 parent->sk_state = BT_CLOSED;
210 parent->sk_zapped = 1;
213 /* Kill socket (only if zapped and orphan)
214 * Must be called on unlocked socket.
216 static void rfcomm_sock_kill(struct sock *sk)
218 if (!sk->sk_zapped || sk->sk_socket)
221 BT_DBG("sk %p state %d refcnt %d", sk, sk->sk_state, atomic_read(&sk->sk_refcnt));
223 /* Kill poor orphan */
224 bt_sock_unlink(&rfcomm_sk_list, sk);
225 sock_set_flag(sk, SOCK_DEAD);
229 static void __rfcomm_sock_close(struct sock *sk)
231 struct rfcomm_dlc *d = rfcomm_pi(sk)->dlc;
233 BT_DBG("sk %p state %d socket %p", sk, sk->sk_state, sk->sk_socket);
235 switch (sk->sk_state) {
237 rfcomm_sock_cleanup_listen(sk);
244 rfcomm_dlc_close(d, 0);
253 * Must be called on unlocked socket.
255 static void rfcomm_sock_close(struct sock *sk)
258 __rfcomm_sock_close(sk);
262 static void rfcomm_sock_init(struct sock *sk, struct sock *parent)
267 sk->sk_type = parent->sk_type;
270 static struct sock *rfcomm_sock_alloc(struct socket *sock, int proto, int prio)
272 struct rfcomm_dlc *d;
275 sk = bt_sock_alloc(sock, BTPROTO_RFCOMM, sizeof(struct rfcomm_pinfo), prio);
279 sk_set_owner(sk, THIS_MODULE);
281 d = rfcomm_dlc_alloc(prio);
286 d->data_ready = rfcomm_sk_data_ready;
287 d->state_change = rfcomm_sk_state_change;
289 rfcomm_pi(sk)->dlc = d;
292 sk->sk_destruct = rfcomm_sock_destruct;
293 sk->sk_sndtimeo = RFCOMM_CONN_TIMEOUT;
295 sk->sk_sndbuf = RFCOMM_MAX_CREDITS * RFCOMM_DEFAULT_MTU * 10;
296 sk->sk_rcvbuf = RFCOMM_MAX_CREDITS * RFCOMM_DEFAULT_MTU * 10;
298 sk->sk_protocol = proto;
299 sk->sk_state = BT_OPEN;
301 bt_sock_link(&rfcomm_sk_list, sk);
307 static int rfcomm_sock_create(struct socket *sock, int protocol)
311 BT_DBG("sock %p", sock);
313 sock->state = SS_UNCONNECTED;
315 if (sock->type != SOCK_STREAM && sock->type != SOCK_RAW)
316 return -ESOCKTNOSUPPORT;
318 sock->ops = &rfcomm_sock_ops;
320 if (!(sk = rfcomm_sock_alloc(sock, protocol, GFP_KERNEL)))
323 rfcomm_sock_init(sk, NULL);
327 static int rfcomm_sock_bind(struct socket *sock, struct sockaddr *addr, int addr_len)
329 struct sockaddr_rc *sa = (struct sockaddr_rc *) addr;
330 struct sock *sk = sock->sk;
333 BT_DBG("sk %p %s", sk, batostr(&sa->rc_bdaddr));
335 if (!addr || addr->sa_family != AF_BLUETOOTH)
340 if (sk->sk_state != BT_OPEN) {
345 write_lock_bh(&rfcomm_sk_list.lock);
347 if (sa->rc_channel && __rfcomm_get_sock_by_addr(sa->rc_channel, &sa->rc_bdaddr)) {
350 /* Save source address */
351 bacpy(&bt_sk(sk)->src, &sa->rc_bdaddr);
352 rfcomm_pi(sk)->channel = sa->rc_channel;
353 sk->sk_state = BT_BOUND;
356 write_unlock_bh(&rfcomm_sk_list.lock);
363 static int rfcomm_sock_connect(struct socket *sock, struct sockaddr *addr, int alen, int flags)
365 struct sockaddr_rc *sa = (struct sockaddr_rc *) addr;
366 struct sock *sk = sock->sk;
367 struct rfcomm_dlc *d = rfcomm_pi(sk)->dlc;
372 if (addr->sa_family != AF_BLUETOOTH || alen < sizeof(struct sockaddr_rc))
375 if (sk->sk_state != BT_OPEN && sk->sk_state != BT_BOUND)
378 if (sk->sk_type != SOCK_STREAM)
383 sk->sk_state = BT_CONNECT;
384 bacpy(&bt_sk(sk)->dst, &sa->rc_bdaddr);
385 rfcomm_pi(sk)->channel = sa->rc_channel;
387 err = rfcomm_dlc_open(d, &bt_sk(sk)->src, &sa->rc_bdaddr, sa->rc_channel);
389 err = bt_sock_wait_state(sk, BT_CONNECTED,
390 sock_sndtimeo(sk, flags & O_NONBLOCK));
396 int rfcomm_sock_listen(struct socket *sock, int backlog)
398 struct sock *sk = sock->sk;
401 BT_DBG("sk %p backlog %d", sk, backlog);
405 if (sk->sk_state != BT_BOUND) {
410 if (!rfcomm_pi(sk)->channel) {
411 bdaddr_t *src = &bt_sk(sk)->src;
416 write_lock_bh(&rfcomm_sk_list.lock);
418 for (channel = 1; channel < 31; channel++)
419 if (!__rfcomm_get_sock_by_addr(channel, src)) {
420 rfcomm_pi(sk)->channel = channel;
425 write_unlock_bh(&rfcomm_sk_list.lock);
431 sk->sk_max_ack_backlog = backlog;
432 sk->sk_ack_backlog = 0;
433 sk->sk_state = BT_LISTEN;
440 int rfcomm_sock_accept(struct socket *sock, struct socket *newsock, int flags)
442 DECLARE_WAITQUEUE(wait, current);
443 struct sock *sk = sock->sk, *nsk;
449 if (sk->sk_state != BT_LISTEN) {
454 timeo = sock_rcvtimeo(sk, flags & O_NONBLOCK);
456 BT_DBG("sk %p timeo %ld", sk, timeo);
458 /* Wait for an incoming connection. (wake-one). */
459 add_wait_queue_exclusive(sk->sk_sleep, &wait);
460 while (!(nsk = bt_accept_dequeue(sk, newsock))) {
461 set_current_state(TASK_INTERRUPTIBLE);
468 timeo = schedule_timeout(timeo);
471 if (sk->sk_state != BT_LISTEN) {
476 if (signal_pending(current)) {
477 err = sock_intr_errno(timeo);
481 set_current_state(TASK_RUNNING);
482 remove_wait_queue(sk->sk_sleep, &wait);
487 newsock->state = SS_CONNECTED;
489 BT_DBG("new socket %p", nsk);
496 static int rfcomm_sock_getname(struct socket *sock, struct sockaddr *addr, int *len, int peer)
498 struct sockaddr_rc *sa = (struct sockaddr_rc *) addr;
499 struct sock *sk = sock->sk;
501 BT_DBG("sock %p, sk %p", sock, sk);
503 sa->rc_family = AF_BLUETOOTH;
504 sa->rc_channel = rfcomm_pi(sk)->channel;
506 bacpy(&sa->rc_bdaddr, &bt_sk(sk)->dst);
508 bacpy(&sa->rc_bdaddr, &bt_sk(sk)->src);
510 *len = sizeof(struct sockaddr_rc);
514 static int rfcomm_sock_sendmsg(struct kiocb *iocb, struct socket *sock,
515 struct msghdr *msg, size_t len)
517 struct sock *sk = sock->sk;
518 struct rfcomm_dlc *d = rfcomm_pi(sk)->dlc;
523 if (msg->msg_flags & MSG_OOB)
526 if (sk->sk_shutdown & SEND_SHUTDOWN)
529 BT_DBG("sock %p, sk %p", sock, sk);
534 size_t size = min_t(size_t, len, d->mtu);
536 skb = sock_alloc_send_skb(sk, size + RFCOMM_SKB_RESERVE,
537 msg->msg_flags & MSG_DONTWAIT, &err);
540 skb_reserve(skb, RFCOMM_SKB_HEAD_RESERVE);
542 err = memcpy_fromiovec(skb_put(skb, size), msg->msg_iov, size);
549 err = rfcomm_dlc_send(d, skb);
561 return sent ? sent : err;
564 static long rfcomm_sock_data_wait(struct sock *sk, long timeo)
566 DECLARE_WAITQUEUE(wait, current);
568 add_wait_queue(sk->sk_sleep, &wait);
570 set_current_state(TASK_INTERRUPTIBLE);
572 if (skb_queue_len(&sk->sk_receive_queue) || sk->sk_err || (sk->sk_shutdown & RCV_SHUTDOWN) ||
573 signal_pending(current) || !timeo)
576 set_bit(SOCK_ASYNC_WAITDATA, &sk->sk_socket->flags);
578 timeo = schedule_timeout(timeo);
580 clear_bit(SOCK_ASYNC_WAITDATA, &sk->sk_socket->flags);
583 __set_current_state(TASK_RUNNING);
584 remove_wait_queue(sk->sk_sleep, &wait);
588 static int rfcomm_sock_recvmsg(struct kiocb *iocb, struct socket *sock,
589 struct msghdr *msg, size_t size, int flags)
591 struct sock *sk = sock->sk;
593 size_t target, copied = 0;
599 msg->msg_namelen = 0;
601 BT_DBG("sk %p size %d", sk, size);
605 target = sock_rcvlowat(sk, flags & MSG_WAITALL, size);
606 timeo = sock_rcvtimeo(sk, flags & MSG_DONTWAIT);
612 skb = skb_dequeue(&sk->sk_receive_queue);
614 if (copied >= target)
617 if ((err = sock_error(sk)) != 0)
619 if (sk->sk_shutdown & RCV_SHUTDOWN)
626 timeo = rfcomm_sock_data_wait(sk, timeo);
628 if (signal_pending(current)) {
629 err = sock_intr_errno(timeo);
635 chunk = min_t(unsigned int, skb->len, size);
636 if (memcpy_toiovec(msg->msg_iov, skb->data, chunk)) {
637 skb_queue_head(&sk->sk_receive_queue, skb);
645 if (!(flags & MSG_PEEK)) {
646 atomic_sub(chunk, &sk->sk_rmem_alloc);
648 skb_pull(skb, chunk);
650 skb_queue_head(&sk->sk_receive_queue, skb);
656 /* put message back and return */
657 skb_queue_head(&sk->sk_receive_queue, skb);
663 if (atomic_read(&sk->sk_rmem_alloc) <= (sk->sk_rcvbuf >> 2))
664 rfcomm_dlc_unthrottle(rfcomm_pi(sk)->dlc);
667 return copied ? : err;
670 static int rfcomm_sock_setsockopt(struct socket *sock, int level, int optname, char __user *optval, int optlen)
672 struct sock *sk = sock->sk;
689 static int rfcomm_sock_getsockopt(struct socket *sock, int level, int optname, char __user *optval, int __user *optlen)
691 struct sock *sk = sock->sk;
696 if (get_user(len, optlen))
711 static int rfcomm_sock_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
713 struct sock *sk = sock->sk;
718 #ifdef CONFIG_BT_RFCOMM_TTY
719 err = rfcomm_dev_ioctl(sk, cmd, (void __user *)arg);
728 static int rfcomm_sock_shutdown(struct socket *sock, int how)
730 struct sock *sk = sock->sk;
733 BT_DBG("sock %p, sk %p", sock, sk);
738 if (!sk->sk_shutdown) {
739 sk->sk_shutdown = SHUTDOWN_MASK;
740 __rfcomm_sock_close(sk);
742 if (sock_flag(sk, SOCK_LINGER) && sk->sk_lingertime)
743 err = bt_sock_wait_state(sk, BT_CLOSED, sk->sk_lingertime);
749 static int rfcomm_sock_release(struct socket *sock)
751 struct sock *sk = sock->sk;
754 BT_DBG("sock %p, sk %p", sock, sk);
759 err = rfcomm_sock_shutdown(sock, 2);
762 rfcomm_sock_kill(sk);
766 /* ---- RFCOMM core layer callbacks ----
768 * called under rfcomm_lock()
770 int rfcomm_connect_ind(struct rfcomm_session *s, u8 channel, struct rfcomm_dlc **d)
772 struct sock *sk, *parent;
776 BT_DBG("session %p channel %d", s, channel);
778 rfcomm_session_getaddr(s, &src, &dst);
780 /* Check if we have socket listening on channel */
781 parent = rfcomm_get_sock_by_channel(BT_LISTEN, channel, &src);
785 /* Check for backlog size */
786 if (parent->sk_ack_backlog > parent->sk_max_ack_backlog) {
787 BT_DBG("backlog full %d", parent->sk_ack_backlog);
791 sk = rfcomm_sock_alloc(NULL, BTPROTO_RFCOMM, GFP_ATOMIC);
795 rfcomm_sock_init(sk, parent);
796 bacpy(&bt_sk(sk)->src, &src);
797 bacpy(&bt_sk(sk)->dst, &dst);
798 rfcomm_pi(sk)->channel = channel;
800 sk->sk_state = BT_CONFIG;
801 bt_accept_enqueue(parent, sk);
803 /* Accept connection and return socket DLC */
804 *d = rfcomm_pi(sk)->dlc;
808 bh_unlock_sock(parent);
812 /* ---- Proc fs support ---- */
813 #ifdef CONFIG_PROC_FS
814 static void *rfcomm_seq_start(struct seq_file *seq, loff_t *pos)
817 struct hlist_node *node;
820 read_lock_bh(&rfcomm_sk_list.lock);
822 sk_for_each(sk, node, &rfcomm_sk_list.head)
828 static void *rfcomm_seq_next(struct seq_file *seq, void *e, loff_t *pos)
835 static void rfcomm_seq_stop(struct seq_file *seq, void *e)
837 read_unlock_bh(&rfcomm_sk_list.lock);
840 static int rfcomm_seq_show(struct seq_file *seq, void *e)
843 seq_printf(seq, "%s %s %d %d\n",
844 batostr(&bt_sk(sk)->src), batostr(&bt_sk(sk)->dst),
845 sk->sk_state, rfcomm_pi(sk)->channel);
849 static struct seq_operations rfcomm_seq_ops = {
850 .start = rfcomm_seq_start,
851 .next = rfcomm_seq_next,
852 .stop = rfcomm_seq_stop,
853 .show = rfcomm_seq_show
856 static int rfcomm_seq_open(struct inode *inode, struct file *file)
858 return seq_open(file, &rfcomm_seq_ops);
861 static struct file_operations rfcomm_seq_fops = {
862 .owner = THIS_MODULE,
863 .open = rfcomm_seq_open,
866 .release = seq_release,
869 static int __init rfcomm_sock_proc_init(void)
871 struct proc_dir_entry *p = create_proc_entry("sock", S_IRUGO, proc_bt_rfcomm);
874 p->proc_fops = &rfcomm_seq_fops;
878 static void __exit rfcomm_sock_proc_cleanup(void)
880 remove_proc_entry("sock", proc_bt_rfcomm);
883 #else /* CONFIG_PROC_FS */
885 static int __init rfcomm_sock_proc_init(void)
890 static void __exit rfcomm_sock_proc_cleanup(void)
894 #endif /* CONFIG_PROC_FS */
896 static struct proto_ops rfcomm_sock_ops = {
897 .family = PF_BLUETOOTH,
898 .owner = THIS_MODULE,
899 .release = rfcomm_sock_release,
900 .bind = rfcomm_sock_bind,
901 .connect = rfcomm_sock_connect,
902 .listen = rfcomm_sock_listen,
903 .accept = rfcomm_sock_accept,
904 .getname = rfcomm_sock_getname,
905 .sendmsg = rfcomm_sock_sendmsg,
906 .recvmsg = rfcomm_sock_recvmsg,
907 .shutdown = rfcomm_sock_shutdown,
908 .setsockopt = rfcomm_sock_setsockopt,
909 .getsockopt = rfcomm_sock_getsockopt,
910 .ioctl = rfcomm_sock_ioctl,
911 .poll = bt_sock_poll,
912 .socketpair = sock_no_socketpair,
916 static struct net_proto_family rfcomm_sock_family_ops = {
917 .family = PF_BLUETOOTH,
918 .owner = THIS_MODULE,
919 .create = rfcomm_sock_create
922 int __init rfcomm_init_sockets(void)
926 if ((err = bt_sock_register(BTPROTO_RFCOMM, &rfcomm_sock_family_ops))) {
927 BT_ERR("RFCOMM socket layer registration failed. %d", err);
931 rfcomm_sock_proc_init();
933 BT_INFO("RFCOMM socket layer initialized");
937 void __exit rfcomm_cleanup_sockets(void)
941 rfcomm_sock_proc_cleanup();
943 /* Unregister socket, protocol and notifier */
944 if ((err = bt_sock_unregister(BTPROTO_RFCOMM)))
945 BT_ERR("RFCOMM socket layer unregistration failed. %d", err);