xref: /linux/drivers/bluetooth/hci_ldisc.c (revision 802fee26d8afd073c630a74dbe1a996970f3fd90)
1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3  *
4  *  Bluetooth HCI UART driver
5  *
6  *  Copyright (C) 2000-2001  Qualcomm Incorporated
7  *  Copyright (C) 2002-2003  Maxim Krasnyansky <maxk@qualcomm.com>
8  *  Copyright (C) 2004-2005  Marcel Holtmann <marcel@holtmann.org>
9  */
10 
11 #include <linux/module.h>
12 
13 #include <linux/kernel.h>
14 #include <linux/init.h>
15 #include <linux/types.h>
16 #include <linux/fcntl.h>
17 #include <linux/interrupt.h>
18 #include <linux/ptrace.h>
19 #include <linux/poll.h>
20 
21 #include <linux/slab.h>
22 #include <linux/tty.h>
23 #include <linux/errno.h>
24 #include <linux/string.h>
25 #include <linux/signal.h>
26 #include <linux/ioctl.h>
27 #include <linux/skbuff.h>
28 #include <linux/firmware.h>
29 #include <linux/serdev.h>
30 
31 #include <net/bluetooth/bluetooth.h>
32 #include <net/bluetooth/hci_core.h>
33 
34 #include "btintel.h"
35 #include "btbcm.h"
36 #include "hci_uart.h"
37 
38 #define VERSION "2.3"
39 
40 static const struct hci_uart_proto *hup[HCI_UART_MAX_PROTO];
41 
42 int hci_uart_register_proto(const struct hci_uart_proto *p)
43 {
44 	if (p->id >= HCI_UART_MAX_PROTO)
45 		return -EINVAL;
46 
47 	if (hup[p->id])
48 		return -EEXIST;
49 
50 	hup[p->id] = p;
51 
52 	BT_INFO("HCI UART protocol %s registered", p->name);
53 
54 	return 0;
55 }
56 
57 int hci_uart_unregister_proto(const struct hci_uart_proto *p)
58 {
59 	if (p->id >= HCI_UART_MAX_PROTO)
60 		return -EINVAL;
61 
62 	if (!hup[p->id])
63 		return -EINVAL;
64 
65 	hup[p->id] = NULL;
66 
67 	return 0;
68 }
69 
70 static const struct hci_uart_proto *hci_uart_get_proto(unsigned int id)
71 {
72 	if (id >= HCI_UART_MAX_PROTO)
73 		return NULL;
74 
75 	return hup[id];
76 }
77 
78 static inline void hci_uart_tx_complete(struct hci_uart *hu, int pkt_type)
79 {
80 	struct hci_dev *hdev = hu->hdev;
81 
82 	/* Update HCI stat counters */
83 	switch (pkt_type) {
84 	case HCI_COMMAND_PKT:
85 		hdev->stat.cmd_tx++;
86 		break;
87 
88 	case HCI_ACLDATA_PKT:
89 		hdev->stat.acl_tx++;
90 		break;
91 
92 	case HCI_SCODATA_PKT:
93 		hdev->stat.sco_tx++;
94 		break;
95 	}
96 }
97 
98 static inline struct sk_buff *hci_uart_dequeue(struct hci_uart *hu)
99 {
100 	struct sk_buff *skb = hu->tx_skb;
101 
102 	if (!skb) {
103 		percpu_down_read(&hu->proto_lock);
104 
105 		if (test_bit(HCI_UART_PROTO_READY, &hu->flags))
106 			skb = hu->proto->dequeue(hu);
107 
108 		percpu_up_read(&hu->proto_lock);
109 	} else {
110 		hu->tx_skb = NULL;
111 	}
112 
113 	return skb;
114 }
115 
116 int hci_uart_tx_wakeup(struct hci_uart *hu)
117 {
118 	/* This may be called in an IRQ context, so we can't sleep. Therefore
119 	 * we try to acquire the lock only, and if that fails we assume the
120 	 * tty is being closed because that is the only time the write lock is
121 	 * acquired. If, however, at some point in the future the write lock
122 	 * is also acquired in other situations, then this must be revisited.
123 	 */
124 	if (!percpu_down_read_trylock(&hu->proto_lock))
125 		return 0;
126 
127 	if (!test_bit(HCI_UART_PROTO_READY, &hu->flags))
128 		goto no_schedule;
129 
130 	if (test_and_set_bit(HCI_UART_SENDING, &hu->tx_state)) {
131 		set_bit(HCI_UART_TX_WAKEUP, &hu->tx_state);
132 		goto no_schedule;
133 	}
134 
135 	BT_DBG("");
136 
137 	schedule_work(&hu->write_work);
138 
139 no_schedule:
140 	percpu_up_read(&hu->proto_lock);
141 
142 	return 0;
143 }
144 EXPORT_SYMBOL_GPL(hci_uart_tx_wakeup);
145 
146 static void hci_uart_write_work(struct work_struct *work)
147 {
148 	struct hci_uart *hu = container_of(work, struct hci_uart, write_work);
149 	struct tty_struct *tty = hu->tty;
150 	struct hci_dev *hdev = hu->hdev;
151 	struct sk_buff *skb;
152 
153 	/* REVISIT: should we cope with bad skbs or ->write() returning
154 	 * and error value ?
155 	 */
156 
157 restart:
158 	clear_bit(HCI_UART_TX_WAKEUP, &hu->tx_state);
159 
160 	while ((skb = hci_uart_dequeue(hu))) {
161 		int len;
162 
163 		set_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
164 		len = tty->ops->write(tty, skb->data, skb->len);
165 		hdev->stat.byte_tx += len;
166 
167 		skb_pull(skb, len);
168 		if (skb->len) {
169 			hu->tx_skb = skb;
170 			break;
171 		}
172 
173 		hci_uart_tx_complete(hu, hci_skb_pkt_type(skb));
174 		kfree_skb(skb);
175 	}
176 
177 	if (test_bit(HCI_UART_TX_WAKEUP, &hu->tx_state))
178 		goto restart;
179 
180 	clear_bit(HCI_UART_SENDING, &hu->tx_state);
181 	wake_up_bit(&hu->tx_state, HCI_UART_SENDING);
182 }
183 
184 void hci_uart_init_work(struct work_struct *work)
185 {
186 	struct hci_uart *hu = container_of(work, struct hci_uart, init_ready);
187 	int err;
188 	struct hci_dev *hdev;
189 
190 	if (!test_and_clear_bit(HCI_UART_INIT_PENDING, &hu->hdev_flags))
191 		return;
192 
193 	err = hci_register_dev(hu->hdev);
194 	if (err < 0) {
195 		BT_ERR("Can't register HCI device");
196 		clear_bit(HCI_UART_PROTO_READY, &hu->flags);
197 		hu->proto->close(hu);
198 		hdev = hu->hdev;
199 		hu->hdev = NULL;
200 		hci_free_dev(hdev);
201 		return;
202 	}
203 
204 	set_bit(HCI_UART_REGISTERED, &hu->flags);
205 }
206 
207 int hci_uart_init_ready(struct hci_uart *hu)
208 {
209 	if (!test_bit(HCI_UART_INIT_PENDING, &hu->hdev_flags))
210 		return -EALREADY;
211 
212 	schedule_work(&hu->init_ready);
213 
214 	return 0;
215 }
216 
217 int hci_uart_wait_until_sent(struct hci_uart *hu)
218 {
219 	return wait_on_bit_timeout(&hu->tx_state, HCI_UART_SENDING,
220 				   TASK_INTERRUPTIBLE,
221 				   msecs_to_jiffies(2000));
222 }
223 
224 /* ------- Interface to HCI layer ------ */
225 /* Reset device */
226 static int hci_uart_flush(struct hci_dev *hdev)
227 {
228 	struct hci_uart *hu  = hci_get_drvdata(hdev);
229 	struct tty_struct *tty = hu->tty;
230 
231 	BT_DBG("hdev %p tty %p", hdev, tty);
232 
233 	if (hu->tx_skb) {
234 		kfree_skb(hu->tx_skb); hu->tx_skb = NULL;
235 	}
236 
237 	/* Flush any pending characters in the driver and discipline. */
238 	tty_ldisc_flush(tty);
239 	tty_driver_flush_buffer(tty);
240 
241 	percpu_down_read(&hu->proto_lock);
242 
243 	if (test_bit(HCI_UART_PROTO_READY, &hu->flags))
244 		hu->proto->flush(hu);
245 
246 	percpu_up_read(&hu->proto_lock);
247 
248 	return 0;
249 }
250 
251 /* Initialize device */
252 static int hci_uart_open(struct hci_dev *hdev)
253 {
254 	BT_DBG("%s %p", hdev->name, hdev);
255 
256 	/* Undo clearing this from hci_uart_close() */
257 	hdev->flush = hci_uart_flush;
258 
259 	return 0;
260 }
261 
262 /* Close device */
263 static int hci_uart_close(struct hci_dev *hdev)
264 {
265 	BT_DBG("hdev %p", hdev);
266 
267 	hci_uart_flush(hdev);
268 	hdev->flush = NULL;
269 	return 0;
270 }
271 
272 /* Send frames from HCI layer */
273 static int hci_uart_send_frame(struct hci_dev *hdev, struct sk_buff *skb)
274 {
275 	struct hci_uart *hu = hci_get_drvdata(hdev);
276 
277 	BT_DBG("%s: type %d len %d", hdev->name, hci_skb_pkt_type(skb),
278 	       skb->len);
279 
280 	percpu_down_read(&hu->proto_lock);
281 
282 	if (!test_bit(HCI_UART_PROTO_READY, &hu->flags)) {
283 		percpu_up_read(&hu->proto_lock);
284 		return -EUNATCH;
285 	}
286 
287 	hu->proto->enqueue(hu, skb);
288 	percpu_up_read(&hu->proto_lock);
289 
290 	hci_uart_tx_wakeup(hu);
291 
292 	return 0;
293 }
294 
295 /* Check the underlying device or tty has flow control support */
296 bool hci_uart_has_flow_control(struct hci_uart *hu)
297 {
298 	/* serdev nodes check if the needed operations are present */
299 	if (hu->serdev)
300 		return true;
301 
302 	if (hu->tty->driver->ops->tiocmget && hu->tty->driver->ops->tiocmset)
303 		return true;
304 
305 	return false;
306 }
307 
308 /* Flow control or un-flow control the device */
309 void hci_uart_set_flow_control(struct hci_uart *hu, bool enable)
310 {
311 	struct tty_struct *tty = hu->tty;
312 	struct ktermios ktermios;
313 	int status;
314 	unsigned int set = 0;
315 	unsigned int clear = 0;
316 
317 	if (hu->serdev) {
318 		serdev_device_set_flow_control(hu->serdev, !enable);
319 		serdev_device_set_rts(hu->serdev, !enable);
320 		return;
321 	}
322 
323 	if (enable) {
324 		/* Disable hardware flow control */
325 		ktermios = tty->termios;
326 		ktermios.c_cflag &= ~CRTSCTS;
327 		status = tty_set_termios(tty, &ktermios);
328 		BT_DBG("Disabling hardware flow control: %s",
329 		       status ? "failed" : "success");
330 
331 		/* Clear RTS to prevent the device from sending */
332 		/* Most UARTs need OUT2 to enable interrupts */
333 		status = tty->driver->ops->tiocmget(tty);
334 		BT_DBG("Current tiocm 0x%x", status);
335 
336 		set &= ~(TIOCM_OUT2 | TIOCM_RTS);
337 		clear = ~set;
338 		set &= TIOCM_DTR | TIOCM_RTS | TIOCM_OUT1 |
339 		       TIOCM_OUT2 | TIOCM_LOOP;
340 		clear &= TIOCM_DTR | TIOCM_RTS | TIOCM_OUT1 |
341 			 TIOCM_OUT2 | TIOCM_LOOP;
342 		status = tty->driver->ops->tiocmset(tty, set, clear);
343 		BT_DBG("Clearing RTS: %s", status ? "failed" : "success");
344 	} else {
345 		/* Set RTS to allow the device to send again */
346 		status = tty->driver->ops->tiocmget(tty);
347 		BT_DBG("Current tiocm 0x%x", status);
348 
349 		set |= (TIOCM_OUT2 | TIOCM_RTS);
350 		clear = ~set;
351 		set &= TIOCM_DTR | TIOCM_RTS | TIOCM_OUT1 |
352 		       TIOCM_OUT2 | TIOCM_LOOP;
353 		clear &= TIOCM_DTR | TIOCM_RTS | TIOCM_OUT1 |
354 			 TIOCM_OUT2 | TIOCM_LOOP;
355 		status = tty->driver->ops->tiocmset(tty, set, clear);
356 		BT_DBG("Setting RTS: %s", status ? "failed" : "success");
357 
358 		/* Re-enable hardware flow control */
359 		ktermios = tty->termios;
360 		ktermios.c_cflag |= CRTSCTS;
361 		status = tty_set_termios(tty, &ktermios);
362 		BT_DBG("Enabling hardware flow control: %s",
363 		       status ? "failed" : "success");
364 	}
365 }
366 
367 void hci_uart_set_speeds(struct hci_uart *hu, unsigned int init_speed,
368 			 unsigned int oper_speed)
369 {
370 	hu->init_speed = init_speed;
371 	hu->oper_speed = oper_speed;
372 }
373 
374 void hci_uart_set_baudrate(struct hci_uart *hu, unsigned int speed)
375 {
376 	struct tty_struct *tty = hu->tty;
377 	struct ktermios ktermios;
378 
379 	ktermios = tty->termios;
380 	ktermios.c_cflag &= ~CBAUD;
381 	tty_termios_encode_baud_rate(&ktermios, speed, speed);
382 
383 	/* tty_set_termios() return not checked as it is always 0 */
384 	tty_set_termios(tty, &ktermios);
385 
386 	BT_DBG("%s: New tty speeds: %d/%d", hu->hdev->name,
387 	       tty->termios.c_ispeed, tty->termios.c_ospeed);
388 }
389 
390 static int hci_uart_setup(struct hci_dev *hdev)
391 {
392 	struct hci_uart *hu = hci_get_drvdata(hdev);
393 	struct hci_rp_read_local_version *ver;
394 	struct sk_buff *skb;
395 	unsigned int speed;
396 	int err;
397 
398 	/* Init speed if any */
399 	if (hu->init_speed)
400 		speed = hu->init_speed;
401 	else if (hu->proto->init_speed)
402 		speed = hu->proto->init_speed;
403 	else
404 		speed = 0;
405 
406 	if (speed)
407 		hci_uart_set_baudrate(hu, speed);
408 
409 	/* Operational speed if any */
410 	if (hu->oper_speed)
411 		speed = hu->oper_speed;
412 	else if (hu->proto->oper_speed)
413 		speed = hu->proto->oper_speed;
414 	else
415 		speed = 0;
416 
417 	if (hu->proto->set_baudrate && speed) {
418 		err = hu->proto->set_baudrate(hu, speed);
419 		if (!err)
420 			hci_uart_set_baudrate(hu, speed);
421 	}
422 
423 	if (hu->proto->setup)
424 		return hu->proto->setup(hu);
425 
426 	if (!test_bit(HCI_UART_VND_DETECT, &hu->hdev_flags))
427 		return 0;
428 
429 	skb = __hci_cmd_sync(hdev, HCI_OP_READ_LOCAL_VERSION, 0, NULL,
430 			     HCI_INIT_TIMEOUT);
431 	if (IS_ERR(skb)) {
432 		BT_ERR("%s: Reading local version information failed (%ld)",
433 		       hdev->name, PTR_ERR(skb));
434 		return 0;
435 	}
436 
437 	if (skb->len != sizeof(*ver)) {
438 		BT_ERR("%s: Event length mismatch for version information",
439 		       hdev->name);
440 		goto done;
441 	}
442 
443 	ver = (struct hci_rp_read_local_version *)skb->data;
444 
445 	switch (le16_to_cpu(ver->manufacturer)) {
446 #ifdef CONFIG_BT_HCIUART_INTEL
447 	case 2:
448 		hdev->set_bdaddr = btintel_set_bdaddr;
449 		btintel_check_bdaddr(hdev);
450 		break;
451 #endif
452 #ifdef CONFIG_BT_HCIUART_BCM
453 	case 15:
454 		hdev->set_bdaddr = btbcm_set_bdaddr;
455 		btbcm_check_bdaddr(hdev);
456 		break;
457 #endif
458 	default:
459 		break;
460 	}
461 
462 done:
463 	kfree_skb(skb);
464 	return 0;
465 }
466 
467 /* ------ LDISC part ------ */
468 /* hci_uart_tty_open
469  *
470  *     Called when line discipline changed to HCI_UART.
471  *
472  * Arguments:
473  *     tty    pointer to tty info structure
474  * Return Value:
475  *     0 if success, otherwise error code
476  */
477 static int hci_uart_tty_open(struct tty_struct *tty)
478 {
479 	struct hci_uart *hu;
480 
481 	BT_DBG("tty %p", tty);
482 
483 	/* Error if the tty has no write op instead of leaving an exploitable
484 	 * hole
485 	 */
486 	if (tty->ops->write == NULL)
487 		return -EOPNOTSUPP;
488 
489 	hu = kzalloc(sizeof(struct hci_uart), GFP_KERNEL);
490 	if (!hu) {
491 		BT_ERR("Can't allocate control structure");
492 		return -ENFILE;
493 	}
494 
495 	tty->disc_data = hu;
496 	hu->tty = tty;
497 	tty->receive_room = 65536;
498 
499 	/* disable alignment support by default */
500 	hu->alignment = 1;
501 	hu->padding = 0;
502 
503 	INIT_WORK(&hu->init_ready, hci_uart_init_work);
504 	INIT_WORK(&hu->write_work, hci_uart_write_work);
505 
506 	percpu_init_rwsem(&hu->proto_lock);
507 
508 	/* Flush any pending characters in the driver */
509 	tty_driver_flush_buffer(tty);
510 
511 	return 0;
512 }
513 
514 /* hci_uart_tty_close()
515  *
516  *    Called when the line discipline is changed to something
517  *    else, the tty is closed, or the tty detects a hangup.
518  */
519 static void hci_uart_tty_close(struct tty_struct *tty)
520 {
521 	struct hci_uart *hu = tty->disc_data;
522 	struct hci_dev *hdev;
523 
524 	BT_DBG("tty %p", tty);
525 
526 	/* Detach from the tty */
527 	tty->disc_data = NULL;
528 
529 	if (!hu)
530 		return;
531 
532 	hdev = hu->hdev;
533 	if (hdev)
534 		hci_uart_close(hdev);
535 
536 	if (test_bit(HCI_UART_PROTO_READY, &hu->flags)) {
537 		percpu_down_write(&hu->proto_lock);
538 		clear_bit(HCI_UART_PROTO_READY, &hu->flags);
539 		percpu_up_write(&hu->proto_lock);
540 
541 		cancel_work_sync(&hu->init_ready);
542 		cancel_work_sync(&hu->write_work);
543 
544 		if (hdev) {
545 			if (test_bit(HCI_UART_REGISTERED, &hu->flags))
546 				hci_unregister_dev(hdev);
547 			hci_free_dev(hdev);
548 		}
549 		hu->proto->close(hu);
550 	}
551 	clear_bit(HCI_UART_PROTO_SET, &hu->flags);
552 
553 	percpu_free_rwsem(&hu->proto_lock);
554 
555 	kfree(hu);
556 }
557 
558 /* hci_uart_tty_wakeup()
559  *
560  *    Callback for transmit wakeup. Called when low level
561  *    device driver can accept more send data.
562  *
563  * Arguments:        tty    pointer to associated tty instance data
564  * Return Value:    None
565  */
566 static void hci_uart_tty_wakeup(struct tty_struct *tty)
567 {
568 	struct hci_uart *hu = tty->disc_data;
569 
570 	BT_DBG("");
571 
572 	if (!hu)
573 		return;
574 
575 	clear_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
576 
577 	if (tty != hu->tty)
578 		return;
579 
580 	if (test_bit(HCI_UART_PROTO_READY, &hu->flags))
581 		hci_uart_tx_wakeup(hu);
582 }
583 
584 /* hci_uart_tty_receive()
585  *
586  *     Called by tty low level driver when receive data is
587  *     available.
588  *
589  * Arguments:  tty          pointer to tty isntance data
590  *             data         pointer to received data
591  *             flags        pointer to flags for data
592  *             count        count of received data in bytes
593  *
594  * Return Value:    None
595  */
596 static void hci_uart_tty_receive(struct tty_struct *tty, const u8 *data,
597 				 char *flags, int count)
598 {
599 	struct hci_uart *hu = tty->disc_data;
600 
601 	if (!hu || tty != hu->tty)
602 		return;
603 
604 	percpu_down_read(&hu->proto_lock);
605 
606 	if (!test_bit(HCI_UART_PROTO_READY, &hu->flags)) {
607 		percpu_up_read(&hu->proto_lock);
608 		return;
609 	}
610 
611 	/* It does not need a lock here as it is already protected by a mutex in
612 	 * tty caller
613 	 */
614 	hu->proto->recv(hu, data, count);
615 	percpu_up_read(&hu->proto_lock);
616 
617 	if (hu->hdev)
618 		hu->hdev->stat.byte_rx += count;
619 
620 	tty_unthrottle(tty);
621 }
622 
623 static int hci_uart_register_dev(struct hci_uart *hu)
624 {
625 	struct hci_dev *hdev;
626 	int err;
627 
628 	BT_DBG("");
629 
630 	/* Initialize and register HCI device */
631 	hdev = hci_alloc_dev();
632 	if (!hdev) {
633 		BT_ERR("Can't allocate HCI device");
634 		return -ENOMEM;
635 	}
636 
637 	hu->hdev = hdev;
638 
639 	hdev->bus = HCI_UART;
640 	hci_set_drvdata(hdev, hu);
641 
642 	/* Only when vendor specific setup callback is provided, consider
643 	 * the manufacturer information valid. This avoids filling in the
644 	 * value for Ericsson when nothing is specified.
645 	 */
646 	if (hu->proto->setup)
647 		hdev->manufacturer = hu->proto->manufacturer;
648 
649 	hdev->open  = hci_uart_open;
650 	hdev->close = hci_uart_close;
651 	hdev->flush = hci_uart_flush;
652 	hdev->send  = hci_uart_send_frame;
653 	hdev->setup = hci_uart_setup;
654 	SET_HCIDEV_DEV(hdev, hu->tty->dev);
655 
656 	if (test_bit(HCI_UART_RAW_DEVICE, &hu->hdev_flags))
657 		set_bit(HCI_QUIRK_RAW_DEVICE, &hdev->quirks);
658 
659 	if (test_bit(HCI_UART_EXT_CONFIG, &hu->hdev_flags))
660 		set_bit(HCI_QUIRK_EXTERNAL_CONFIG, &hdev->quirks);
661 
662 	if (!test_bit(HCI_UART_RESET_ON_INIT, &hu->hdev_flags))
663 		set_bit(HCI_QUIRK_RESET_ON_CLOSE, &hdev->quirks);
664 
665 	if (test_bit(HCI_UART_CREATE_AMP, &hu->hdev_flags))
666 		hdev->dev_type = HCI_AMP;
667 	else
668 		hdev->dev_type = HCI_PRIMARY;
669 
670 	/* Only call open() for the protocol after hdev is fully initialized as
671 	 * open() (or a timer/workqueue it starts) may attempt to reference it.
672 	 */
673 	err = hu->proto->open(hu);
674 	if (err) {
675 		hu->hdev = NULL;
676 		hci_free_dev(hdev);
677 		return err;
678 	}
679 
680 	if (test_bit(HCI_UART_INIT_PENDING, &hu->hdev_flags))
681 		return 0;
682 
683 	if (hci_register_dev(hdev) < 0) {
684 		BT_ERR("Can't register HCI device");
685 		hu->proto->close(hu);
686 		hu->hdev = NULL;
687 		hci_free_dev(hdev);
688 		return -ENODEV;
689 	}
690 
691 	set_bit(HCI_UART_REGISTERED, &hu->flags);
692 
693 	return 0;
694 }
695 
696 static int hci_uart_set_proto(struct hci_uart *hu, int id)
697 {
698 	const struct hci_uart_proto *p;
699 	int err;
700 
701 	p = hci_uart_get_proto(id);
702 	if (!p)
703 		return -EPROTONOSUPPORT;
704 
705 	hu->proto = p;
706 
707 	err = hci_uart_register_dev(hu);
708 	if (err) {
709 		return err;
710 	}
711 
712 	set_bit(HCI_UART_PROTO_READY, &hu->flags);
713 	return 0;
714 }
715 
716 static int hci_uart_set_flags(struct hci_uart *hu, unsigned long flags)
717 {
718 	unsigned long valid_flags = BIT(HCI_UART_RAW_DEVICE) |
719 				    BIT(HCI_UART_RESET_ON_INIT) |
720 				    BIT(HCI_UART_CREATE_AMP) |
721 				    BIT(HCI_UART_INIT_PENDING) |
722 				    BIT(HCI_UART_EXT_CONFIG) |
723 				    BIT(HCI_UART_VND_DETECT);
724 
725 	if (flags & ~valid_flags)
726 		return -EINVAL;
727 
728 	hu->hdev_flags = flags;
729 
730 	return 0;
731 }
732 
733 /* hci_uart_tty_ioctl()
734  *
735  *    Process IOCTL system call for the tty device.
736  *
737  * Arguments:
738  *
739  *    tty        pointer to tty instance data
740  *    file       pointer to open file object for device
741  *    cmd        IOCTL command code
742  *    arg        argument for IOCTL call (cmd dependent)
743  *
744  * Return Value:    Command dependent
745  */
746 static int hci_uart_tty_ioctl(struct tty_struct *tty, struct file *file,
747 			      unsigned int cmd, unsigned long arg)
748 {
749 	struct hci_uart *hu = tty->disc_data;
750 	int err = 0;
751 
752 	BT_DBG("");
753 
754 	/* Verify the status of the device */
755 	if (!hu)
756 		return -EBADF;
757 
758 	switch (cmd) {
759 	case HCIUARTSETPROTO:
760 		if (!test_and_set_bit(HCI_UART_PROTO_SET, &hu->flags)) {
761 			err = hci_uart_set_proto(hu, arg);
762 			if (err)
763 				clear_bit(HCI_UART_PROTO_SET, &hu->flags);
764 		} else
765 			err = -EBUSY;
766 		break;
767 
768 	case HCIUARTGETPROTO:
769 		if (test_bit(HCI_UART_PROTO_SET, &hu->flags))
770 			err = hu->proto->id;
771 		else
772 			err = -EUNATCH;
773 		break;
774 
775 	case HCIUARTGETDEVICE:
776 		if (test_bit(HCI_UART_REGISTERED, &hu->flags))
777 			err = hu->hdev->id;
778 		else
779 			err = -EUNATCH;
780 		break;
781 
782 	case HCIUARTSETFLAGS:
783 		if (test_bit(HCI_UART_PROTO_SET, &hu->flags))
784 			err = -EBUSY;
785 		else
786 			err = hci_uart_set_flags(hu, arg);
787 		break;
788 
789 	case HCIUARTGETFLAGS:
790 		err = hu->hdev_flags;
791 		break;
792 
793 	default:
794 		err = n_tty_ioctl_helper(tty, file, cmd, arg);
795 		break;
796 	}
797 
798 	return err;
799 }
800 
801 /*
802  * We don't provide read/write/poll interface for user space.
803  */
804 static ssize_t hci_uart_tty_read(struct tty_struct *tty, struct file *file,
805 				 unsigned char __user *buf, size_t nr)
806 {
807 	return 0;
808 }
809 
810 static ssize_t hci_uart_tty_write(struct tty_struct *tty, struct file *file,
811 				  const unsigned char *data, size_t count)
812 {
813 	return 0;
814 }
815 
816 static __poll_t hci_uart_tty_poll(struct tty_struct *tty,
817 				      struct file *filp, poll_table *wait)
818 {
819 	return 0;
820 }
821 
822 static int __init hci_uart_init(void)
823 {
824 	static struct tty_ldisc_ops hci_uart_ldisc;
825 	int err;
826 
827 	BT_INFO("HCI UART driver ver %s", VERSION);
828 
829 	/* Register the tty discipline */
830 
831 	memset(&hci_uart_ldisc, 0, sizeof(hci_uart_ldisc));
832 	hci_uart_ldisc.magic		= TTY_LDISC_MAGIC;
833 	hci_uart_ldisc.name		= "n_hci";
834 	hci_uart_ldisc.open		= hci_uart_tty_open;
835 	hci_uart_ldisc.close		= hci_uart_tty_close;
836 	hci_uart_ldisc.read		= hci_uart_tty_read;
837 	hci_uart_ldisc.write		= hci_uart_tty_write;
838 	hci_uart_ldisc.ioctl		= hci_uart_tty_ioctl;
839 	hci_uart_ldisc.compat_ioctl	= hci_uart_tty_ioctl;
840 	hci_uart_ldisc.poll		= hci_uart_tty_poll;
841 	hci_uart_ldisc.receive_buf	= hci_uart_tty_receive;
842 	hci_uart_ldisc.write_wakeup	= hci_uart_tty_wakeup;
843 	hci_uart_ldisc.owner		= THIS_MODULE;
844 
845 	err = tty_register_ldisc(N_HCI, &hci_uart_ldisc);
846 	if (err) {
847 		BT_ERR("HCI line discipline registration failed. (%d)", err);
848 		return err;
849 	}
850 
851 #ifdef CONFIG_BT_HCIUART_H4
852 	h4_init();
853 #endif
854 #ifdef CONFIG_BT_HCIUART_BCSP
855 	bcsp_init();
856 #endif
857 #ifdef CONFIG_BT_HCIUART_LL
858 	ll_init();
859 #endif
860 #ifdef CONFIG_BT_HCIUART_ATH3K
861 	ath_init();
862 #endif
863 #ifdef CONFIG_BT_HCIUART_3WIRE
864 	h5_init();
865 #endif
866 #ifdef CONFIG_BT_HCIUART_INTEL
867 	intel_init();
868 #endif
869 #ifdef CONFIG_BT_HCIUART_BCM
870 	bcm_init();
871 #endif
872 #ifdef CONFIG_BT_HCIUART_QCA
873 	qca_init();
874 #endif
875 #ifdef CONFIG_BT_HCIUART_AG6XX
876 	ag6xx_init();
877 #endif
878 #ifdef CONFIG_BT_HCIUART_MRVL
879 	mrvl_init();
880 #endif
881 
882 	return 0;
883 }
884 
885 static void __exit hci_uart_exit(void)
886 {
887 	int err;
888 
889 #ifdef CONFIG_BT_HCIUART_H4
890 	h4_deinit();
891 #endif
892 #ifdef CONFIG_BT_HCIUART_BCSP
893 	bcsp_deinit();
894 #endif
895 #ifdef CONFIG_BT_HCIUART_LL
896 	ll_deinit();
897 #endif
898 #ifdef CONFIG_BT_HCIUART_ATH3K
899 	ath_deinit();
900 #endif
901 #ifdef CONFIG_BT_HCIUART_3WIRE
902 	h5_deinit();
903 #endif
904 #ifdef CONFIG_BT_HCIUART_INTEL
905 	intel_deinit();
906 #endif
907 #ifdef CONFIG_BT_HCIUART_BCM
908 	bcm_deinit();
909 #endif
910 #ifdef CONFIG_BT_HCIUART_QCA
911 	qca_deinit();
912 #endif
913 #ifdef CONFIG_BT_HCIUART_AG6XX
914 	ag6xx_deinit();
915 #endif
916 #ifdef CONFIG_BT_HCIUART_MRVL
917 	mrvl_deinit();
918 #endif
919 
920 	/* Release tty registration of line discipline */
921 	err = tty_unregister_ldisc(N_HCI);
922 	if (err)
923 		BT_ERR("Can't unregister HCI line discipline (%d)", err);
924 }
925 
926 module_init(hci_uart_init);
927 module_exit(hci_uart_exit);
928 
929 MODULE_AUTHOR("Marcel Holtmann <marcel@holtmann.org>");
930 MODULE_DESCRIPTION("Bluetooth HCI UART driver ver " VERSION);
931 MODULE_VERSION(VERSION);
932 MODULE_LICENSE("GPL");
933 MODULE_ALIAS_LDISC(N_HCI);
934