w1_netlink.c 19 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740
  1. // SPDX-License-Identifier: GPL-2.0-or-later
  2. /*
  3. * Copyright (c) 2003 Evgeniy Polyakov <zbr@ioremap.net>
  4. */
  5. #include <linux/slab.h>
  6. #include <linux/skbuff.h>
  7. #include <linux/netlink.h>
  8. #include <linux/connector.h>
  9. #include "w1_internal.h"
  10. #include "w1_netlink.h"
  11. #if defined(CONFIG_W1_CON) && (defined(CONFIG_CONNECTOR) || (defined(CONFIG_CONNECTOR_MODULE) && defined(CONFIG_W1_MODULE)))
  12. /* Bundle together everything required to process a request in one memory
  13. * allocation.
  14. */
  15. struct w1_cb_block {
  16. atomic_t refcnt;
  17. u32 portid; /* Sending process port ID */
  18. /* maximum value for first_cn->len */
  19. u16 maxlen;
  20. /* pointers to building up the reply message */
  21. struct cn_msg *first_cn; /* fixed once the structure is populated */
  22. struct cn_msg *cn; /* advances as cn_msg is appeneded */
  23. struct w1_netlink_msg *msg; /* advances as w1_netlink_msg is appened */
  24. struct w1_netlink_cmd *cmd; /* advances as cmds are appened */
  25. struct w1_netlink_msg *cur_msg; /* currently message being processed */
  26. /* copy of the original request follows */
  27. struct cn_msg request_cn;
  28. /* followed by variable length:
  29. * cn_msg, data (w1_netlink_msg and w1_netlink_cmd)
  30. * one or more struct w1_cb_node
  31. * reply first_cn, data (w1_netlink_msg and w1_netlink_cmd)
  32. */
  33. };
  34. struct w1_cb_node {
  35. struct w1_async_cmd async;
  36. /* pointers within w1_cb_block and cn data */
  37. struct w1_cb_block *block;
  38. struct w1_netlink_msg *msg;
  39. struct w1_slave *sl;
  40. struct w1_master *dev;
  41. };
  42. /**
  43. * w1_reply_len() - calculate current reply length, compare to maxlen
  44. * @block: block to calculate
  45. *
  46. * Calculates the current message length including possible multiple
  47. * cn_msg and data, excludes the first sizeof(struct cn_msg). Direclty
  48. * compariable to maxlen and usable to send the message.
  49. */
  50. static u16 w1_reply_len(struct w1_cb_block *block)
  51. {
  52. if (!block->cn)
  53. return 0;
  54. return (u8 *)block->cn - (u8 *)block->first_cn + block->cn->len;
  55. }
  56. static void w1_unref_block(struct w1_cb_block *block)
  57. {
  58. if (atomic_sub_return(1, &block->refcnt) == 0) {
  59. u16 len = w1_reply_len(block);
  60. if (len) {
  61. cn_netlink_send_mult(block->first_cn, len,
  62. block->portid, 0,
  63. GFP_KERNEL, NULL, NULL);
  64. }
  65. kfree(block);
  66. }
  67. }
  68. /**
  69. * w1_reply_make_space() - send message if needed to make space
  70. * @block: block to make space on
  71. * @space: how many bytes requested
  72. *
  73. * Verify there is enough room left for the caller to add "space" bytes to the
  74. * message, if there isn't send the message and reset.
  75. */
  76. static void w1_reply_make_space(struct w1_cb_block *block, u16 space)
  77. {
  78. u16 len = w1_reply_len(block);
  79. if (len + space >= block->maxlen) {
  80. cn_netlink_send_mult(block->first_cn, len, block->portid,
  81. 0, GFP_KERNEL, NULL, NULL);
  82. block->first_cn->len = 0;
  83. block->cn = NULL;
  84. block->msg = NULL;
  85. block->cmd = NULL;
  86. }
  87. }
  88. /* Early send when replies aren't bundled. */
  89. static void w1_netlink_check_send(struct w1_cb_block *block)
  90. {
  91. if (!(block->request_cn.flags & W1_CN_BUNDLE) && block->cn)
  92. w1_reply_make_space(block, block->maxlen);
  93. }
  94. /**
  95. * w1_netlink_setup_msg() - prepare to write block->msg
  96. * @block: block to operate on
  97. * @ack: determines if cn can be reused
  98. *
  99. * block->cn will be setup with the correct ack, advancing if needed
  100. * block->cn->len does not include space for block->msg
  101. * block->msg advances but remains uninitialized
  102. */
  103. static void w1_netlink_setup_msg(struct w1_cb_block *block, u32 ack)
  104. {
  105. if (block->cn && block->cn->ack == ack) {
  106. block->msg = (struct w1_netlink_msg *)(block->cn->data + block->cn->len);
  107. } else {
  108. /* advance or set to data */
  109. if (block->cn)
  110. block->cn = (struct cn_msg *)(block->cn->data +
  111. block->cn->len);
  112. else
  113. block->cn = block->first_cn;
  114. memcpy(block->cn, &block->request_cn, sizeof(*block->cn));
  115. block->cn->len = 0;
  116. block->cn->ack = ack;
  117. block->msg = (struct w1_netlink_msg *)block->cn->data;
  118. }
  119. }
  120. /* Append cmd to msg, include cmd->data as well. This is because
  121. * any following data goes with the command and in the case of a read is
  122. * the results.
  123. */
  124. static void w1_netlink_queue_cmd(struct w1_cb_block *block,
  125. struct w1_netlink_cmd *cmd)
  126. {
  127. u32 space;
  128. w1_reply_make_space(block, sizeof(struct cn_msg) +
  129. sizeof(struct w1_netlink_msg) + sizeof(*cmd) + cmd->len);
  130. /* There's a status message sent after each command, so no point
  131. * in trying to bundle this cmd after an existing one, because
  132. * there won't be one. Allocate and copy over a new cn_msg.
  133. */
  134. w1_netlink_setup_msg(block, block->request_cn.seq + 1);
  135. memcpy(block->msg, block->cur_msg, sizeof(*block->msg));
  136. block->cn->len += sizeof(*block->msg);
  137. block->msg->len = 0;
  138. block->cmd = (struct w1_netlink_cmd *)(block->msg->data);
  139. space = sizeof(*cmd) + cmd->len;
  140. if (block->cmd != cmd)
  141. memcpy(block->cmd, cmd, space);
  142. block->cn->len += space;
  143. block->msg->len += space;
  144. }
  145. /* Append req_msg and req_cmd, no other commands and no data from req_cmd are
  146. * copied.
  147. */
  148. static void w1_netlink_queue_status(struct w1_cb_block *block,
  149. struct w1_netlink_msg *req_msg, struct w1_netlink_cmd *req_cmd,
  150. int error)
  151. {
  152. u16 space = sizeof(struct cn_msg) + sizeof(*req_msg) + sizeof(*req_cmd);
  153. w1_reply_make_space(block, space);
  154. w1_netlink_setup_msg(block, block->request_cn.ack);
  155. memcpy(block->msg, req_msg, sizeof(*req_msg));
  156. block->cn->len += sizeof(*req_msg);
  157. block->msg->len = 0;
  158. block->msg->status = (u8)-error;
  159. if (req_cmd) {
  160. struct w1_netlink_cmd *cmd = (struct w1_netlink_cmd *)block->msg->data;
  161. memcpy(cmd, req_cmd, sizeof(*cmd));
  162. block->cn->len += sizeof(*cmd);
  163. block->msg->len += sizeof(*cmd);
  164. cmd->len = 0;
  165. }
  166. w1_netlink_check_send(block);
  167. }
  168. /**
  169. * w1_netlink_send_error() - sends the error message now
  170. * @cn: original cn_msg
  171. * @msg: original w1_netlink_msg
  172. * @portid: where to send it
  173. * @error: error status
  174. *
  175. * Use when a block isn't available to queue the message to and cn, msg
  176. * might not be contiguous.
  177. */
  178. static void w1_netlink_send_error(struct cn_msg *cn, struct w1_netlink_msg *msg,
  179. int portid, int error)
  180. {
  181. DEFINE_RAW_FLEX(struct cn_msg, packet, data,
  182. sizeof(struct w1_netlink_msg));
  183. struct w1_netlink_msg *pkt_msg = (struct w1_netlink_msg *)packet->data;
  184. *packet = *cn;
  185. *pkt_msg = *msg;
  186. packet->len = sizeof(*pkt_msg);
  187. pkt_msg->len = 0;
  188. pkt_msg->status = (u8)-error;
  189. cn_netlink_send(packet, portid, 0, GFP_KERNEL);
  190. }
  191. /**
  192. * w1_netlink_send() - sends w1 netlink notifications
  193. * @dev: w1_master the even is associated with or for
  194. * @msg: w1_netlink_msg message to be sent
  195. *
  196. * This are notifications generated from the kernel.
  197. */
  198. void w1_netlink_send(struct w1_master *dev, struct w1_netlink_msg *msg)
  199. {
  200. DEFINE_RAW_FLEX(struct cn_msg, packet, data,
  201. sizeof(struct w1_netlink_msg));
  202. struct w1_netlink_msg *pkt_msg = (struct w1_netlink_msg *)packet->data;
  203. packet->id.idx = CN_W1_IDX;
  204. packet->id.val = CN_W1_VAL;
  205. packet->seq = dev->seq++;
  206. packet->len = sizeof(*msg);
  207. *pkt_msg = *msg;
  208. pkt_msg->len = 0;
  209. cn_netlink_send(packet, 0, 0, GFP_KERNEL);
  210. }
  211. static void w1_send_slave(struct w1_master *dev, u64 rn)
  212. {
  213. struct w1_cb_block *block = dev->priv;
  214. struct w1_netlink_cmd *cache_cmd = block->cmd;
  215. u64 *data;
  216. w1_reply_make_space(block, sizeof(*data));
  217. /* Add cmd back if the packet was sent */
  218. if (!block->cmd) {
  219. cache_cmd->len = 0;
  220. w1_netlink_queue_cmd(block, cache_cmd);
  221. }
  222. data = (u64 *)(block->cmd->data + block->cmd->len);
  223. *data = rn;
  224. block->cn->len += sizeof(*data);
  225. block->msg->len += sizeof(*data);
  226. block->cmd->len += sizeof(*data);
  227. }
  228. static void w1_found_send_slave(struct w1_master *dev, u64 rn)
  229. {
  230. /* update kernel slave list */
  231. w1_slave_found(dev, rn);
  232. w1_send_slave(dev, rn);
  233. }
  234. /* Get the current slave list, or search (with or without alarm) */
  235. static int w1_get_slaves(struct w1_master *dev, struct w1_netlink_cmd *req_cmd)
  236. {
  237. struct w1_slave *sl;
  238. req_cmd->len = 0;
  239. w1_netlink_queue_cmd(dev->priv, req_cmd);
  240. if (req_cmd->cmd == W1_CMD_LIST_SLAVES) {
  241. u64 rn;
  242. mutex_lock(&dev->list_mutex);
  243. list_for_each_entry(sl, &dev->slist, w1_slave_entry) {
  244. memcpy(&rn, &sl->reg_num, sizeof(rn));
  245. w1_send_slave(dev, rn);
  246. }
  247. mutex_unlock(&dev->list_mutex);
  248. } else {
  249. w1_search_process_cb(dev, req_cmd->cmd == W1_CMD_ALARM_SEARCH ?
  250. W1_ALARM_SEARCH : W1_SEARCH, w1_found_send_slave);
  251. }
  252. return 0;
  253. }
  254. static int w1_process_command_io(struct w1_master *dev,
  255. struct w1_netlink_cmd *cmd)
  256. {
  257. int err = 0;
  258. switch (cmd->cmd) {
  259. case W1_CMD_TOUCH:
  260. w1_touch_block(dev, cmd->data, cmd->len);
  261. w1_netlink_queue_cmd(dev->priv, cmd);
  262. break;
  263. case W1_CMD_READ:
  264. w1_read_block(dev, cmd->data, cmd->len);
  265. w1_netlink_queue_cmd(dev->priv, cmd);
  266. break;
  267. case W1_CMD_WRITE:
  268. w1_write_block(dev, cmd->data, cmd->len);
  269. break;
  270. default:
  271. err = -EINVAL;
  272. break;
  273. }
  274. return err;
  275. }
  276. static int w1_process_command_addremove(struct w1_master *dev,
  277. struct w1_netlink_cmd *cmd)
  278. {
  279. struct w1_slave *sl;
  280. int err = 0;
  281. struct w1_reg_num *id;
  282. if (cmd->len != sizeof(*id))
  283. return -EINVAL;
  284. id = (struct w1_reg_num *)cmd->data;
  285. sl = w1_slave_search_device(dev, id);
  286. switch (cmd->cmd) {
  287. case W1_CMD_SLAVE_ADD:
  288. if (sl)
  289. err = -EINVAL;
  290. else
  291. err = w1_attach_slave_device(dev, id);
  292. break;
  293. case W1_CMD_SLAVE_REMOVE:
  294. if (sl)
  295. w1_slave_detach(sl);
  296. else
  297. err = -EINVAL;
  298. break;
  299. default:
  300. err = -EINVAL;
  301. break;
  302. }
  303. return err;
  304. }
  305. static int w1_process_command_master(struct w1_master *dev,
  306. struct w1_netlink_cmd *req_cmd)
  307. {
  308. int err = -EINVAL;
  309. /* drop bus_mutex for search (does it's own locking), and add/remove
  310. * which doesn't use the bus
  311. */
  312. switch (req_cmd->cmd) {
  313. case W1_CMD_SEARCH:
  314. case W1_CMD_ALARM_SEARCH:
  315. case W1_CMD_LIST_SLAVES:
  316. mutex_unlock(&dev->bus_mutex);
  317. err = w1_get_slaves(dev, req_cmd);
  318. mutex_lock(&dev->bus_mutex);
  319. break;
  320. case W1_CMD_READ:
  321. case W1_CMD_WRITE:
  322. case W1_CMD_TOUCH:
  323. err = w1_process_command_io(dev, req_cmd);
  324. break;
  325. case W1_CMD_RESET:
  326. err = w1_reset_bus(dev);
  327. break;
  328. case W1_CMD_SLAVE_ADD:
  329. case W1_CMD_SLAVE_REMOVE:
  330. mutex_unlock(&dev->bus_mutex);
  331. mutex_lock(&dev->mutex);
  332. err = w1_process_command_addremove(dev, req_cmd);
  333. mutex_unlock(&dev->mutex);
  334. mutex_lock(&dev->bus_mutex);
  335. break;
  336. default:
  337. err = -EINVAL;
  338. break;
  339. }
  340. return err;
  341. }
  342. static int w1_process_command_slave(struct w1_slave *sl,
  343. struct w1_netlink_cmd *cmd)
  344. {
  345. dev_dbg(&sl->master->dev, "%s: %02x.%012llx.%02x: cmd=%02x, len=%u.\n",
  346. __func__, sl->reg_num.family, (unsigned long long)sl->reg_num.id,
  347. sl->reg_num.crc, cmd->cmd, cmd->len);
  348. return w1_process_command_io(sl->master, cmd);
  349. }
  350. static int w1_process_command_root(struct cn_msg *req_cn, u32 portid)
  351. {
  352. struct w1_master *dev;
  353. struct cn_msg *cn;
  354. struct w1_netlink_msg *msg;
  355. u32 *id;
  356. cn = kmalloc(PAGE_SIZE, GFP_KERNEL);
  357. if (!cn)
  358. return -ENOMEM;
  359. cn->id.idx = CN_W1_IDX;
  360. cn->id.val = CN_W1_VAL;
  361. cn->seq = req_cn->seq;
  362. cn->ack = req_cn->seq + 1;
  363. cn->len = sizeof(struct w1_netlink_msg);
  364. msg = (struct w1_netlink_msg *)cn->data;
  365. msg->type = W1_LIST_MASTERS;
  366. msg->status = 0;
  367. msg->len = 0;
  368. id = (u32 *)msg->data;
  369. mutex_lock(&w1_mlock);
  370. list_for_each_entry(dev, &w1_masters, w1_master_entry) {
  371. if (cn->len + sizeof(*id) > PAGE_SIZE - sizeof(struct cn_msg)) {
  372. cn_netlink_send(cn, portid, 0, GFP_KERNEL);
  373. cn->len = sizeof(struct w1_netlink_msg);
  374. msg->len = 0;
  375. id = (u32 *)msg->data;
  376. }
  377. *id = dev->id;
  378. msg->len += sizeof(*id);
  379. cn->len += sizeof(*id);
  380. id++;
  381. }
  382. cn_netlink_send(cn, portid, 0, GFP_KERNEL);
  383. mutex_unlock(&w1_mlock);
  384. kfree(cn);
  385. return 0;
  386. }
  387. static void w1_process_cb(struct w1_master *dev, struct w1_async_cmd *async_cmd)
  388. {
  389. struct w1_cb_node *node = container_of(async_cmd, struct w1_cb_node,
  390. async);
  391. u16 mlen = node->msg->len;
  392. u16 len;
  393. int err = 0;
  394. struct w1_slave *sl = node->sl;
  395. struct w1_netlink_cmd *cmd = (struct w1_netlink_cmd *)node->msg->data;
  396. mutex_lock(&dev->bus_mutex);
  397. dev->priv = node->block;
  398. if (sl && w1_reset_select_slave(sl))
  399. err = -ENODEV;
  400. node->block->cur_msg = node->msg;
  401. while (mlen && !err) {
  402. if (cmd->len + sizeof(struct w1_netlink_cmd) > mlen) {
  403. err = -E2BIG;
  404. break;
  405. }
  406. if (sl)
  407. err = w1_process_command_slave(sl, cmd);
  408. else
  409. err = w1_process_command_master(dev, cmd);
  410. w1_netlink_check_send(node->block);
  411. w1_netlink_queue_status(node->block, node->msg, cmd, err);
  412. err = 0;
  413. len = sizeof(*cmd) + cmd->len;
  414. cmd = (struct w1_netlink_cmd *)((u8 *)cmd + len);
  415. mlen -= len;
  416. }
  417. if (!cmd || err)
  418. w1_netlink_queue_status(node->block, node->msg, cmd, err);
  419. /* ref taken in w1_search_slave or w1_search_master_id when building
  420. * the block
  421. */
  422. if (sl)
  423. w1_unref_slave(sl);
  424. else
  425. atomic_dec(&dev->refcnt);
  426. dev->priv = NULL;
  427. mutex_unlock(&dev->bus_mutex);
  428. mutex_lock(&dev->list_mutex);
  429. list_del(&async_cmd->async_entry);
  430. mutex_unlock(&dev->list_mutex);
  431. w1_unref_block(node->block);
  432. }
  433. static void w1_list_count_cmds(struct w1_netlink_msg *msg, int *cmd_count,
  434. u16 *slave_len)
  435. {
  436. struct w1_netlink_cmd *cmd = (struct w1_netlink_cmd *)msg->data;
  437. u16 mlen = msg->len;
  438. u16 len;
  439. int slave_list = 0;
  440. while (mlen) {
  441. if (cmd->len + sizeof(struct w1_netlink_cmd) > mlen)
  442. break;
  443. switch (cmd->cmd) {
  444. case W1_CMD_SEARCH:
  445. case W1_CMD_ALARM_SEARCH:
  446. case W1_CMD_LIST_SLAVES:
  447. ++slave_list;
  448. }
  449. ++*cmd_count;
  450. len = sizeof(*cmd) + cmd->len;
  451. cmd = (struct w1_netlink_cmd *)((u8 *)cmd + len);
  452. mlen -= len;
  453. }
  454. if (slave_list) {
  455. struct w1_master *dev = w1_search_master_id(msg->id.mst.id);
  456. if (dev) {
  457. /* Bytes, and likely an overstimate, and if it isn't
  458. * the results can still be split between packets.
  459. */
  460. *slave_len += sizeof(struct w1_reg_num) * slave_list *
  461. (dev->slave_count + dev->max_slave_count);
  462. /* search incremented it */
  463. atomic_dec(&dev->refcnt);
  464. }
  465. }
  466. }
  467. static void w1_cn_callback(struct cn_msg *cn, struct netlink_skb_parms *nsp)
  468. {
  469. struct w1_netlink_msg *msg = (struct w1_netlink_msg *)(cn + 1);
  470. struct w1_slave *sl;
  471. struct w1_master *dev;
  472. u16 msg_len;
  473. u16 slave_len = 0;
  474. int err = 0;
  475. struct w1_cb_block *block = NULL;
  476. struct w1_cb_node *node = NULL;
  477. int node_count = 0;
  478. int cmd_count = 0;
  479. /* If any unknown flag is set let the application know, that way
  480. * applications can detect the absence of features in kernels that
  481. * don't know about them. http://lwn.net/Articles/587527/
  482. */
  483. if (cn->flags & ~(W1_CN_BUNDLE)) {
  484. w1_netlink_send_error(cn, msg, nsp->portid, -EINVAL);
  485. return;
  486. }
  487. /* Count the number of master or slave commands there are to allocate
  488. * space for one cb_node each.
  489. */
  490. msg_len = cn->len;
  491. while (msg_len && !err) {
  492. if (msg->len + sizeof(struct w1_netlink_msg) > msg_len) {
  493. err = -E2BIG;
  494. break;
  495. }
  496. /* count messages for nodes and allocate any additional space
  497. * required for slave lists
  498. */
  499. if (msg->type == W1_MASTER_CMD || msg->type == W1_SLAVE_CMD) {
  500. ++node_count;
  501. w1_list_count_cmds(msg, &cmd_count, &slave_len);
  502. }
  503. msg_len -= sizeof(struct w1_netlink_msg) + msg->len;
  504. msg = (struct w1_netlink_msg *)(((u8 *)msg) +
  505. sizeof(struct w1_netlink_msg) + msg->len);
  506. }
  507. msg = (struct w1_netlink_msg *)(cn + 1);
  508. if (node_count) {
  509. int size;
  510. int reply_size = sizeof(*cn) + cn->len + slave_len;
  511. if (cn->flags & W1_CN_BUNDLE) {
  512. /* bundling duplicats some of the messages */
  513. reply_size += 2 * cmd_count * (sizeof(struct cn_msg) +
  514. sizeof(struct w1_netlink_msg) +
  515. sizeof(struct w1_netlink_cmd));
  516. }
  517. reply_size = min(CONNECTOR_MAX_MSG_SIZE, reply_size);
  518. /* allocate space for the block, a copy of the original message,
  519. * one node per cmd to point into the original message,
  520. * space for replies which is the original message size plus
  521. * space for any list slave data and status messages
  522. * cn->len doesn't include itself which is part of the block
  523. * */
  524. size = /* block + original message */
  525. sizeof(struct w1_cb_block) + sizeof(*cn) + cn->len +
  526. /* space for nodes */
  527. node_count * sizeof(struct w1_cb_node) +
  528. /* replies */
  529. sizeof(struct cn_msg) + reply_size;
  530. block = kzalloc(size, GFP_KERNEL);
  531. if (!block) {
  532. /* if the system is already out of memory,
  533. * (A) will this work, and (B) would it be better
  534. * to not try?
  535. */
  536. w1_netlink_send_error(cn, msg, nsp->portid, -ENOMEM);
  537. return;
  538. }
  539. atomic_set(&block->refcnt, 1);
  540. block->portid = nsp->portid;
  541. block->request_cn = *cn;
  542. memcpy(block->request_cn.data, cn->data, cn->len);
  543. node = (struct w1_cb_node *)(block->request_cn.data + cn->len);
  544. /* Sneeky, when not bundling, reply_size is the allocated space
  545. * required for the reply, cn_msg isn't part of maxlen so
  546. * it should be reply_size - sizeof(struct cn_msg), however
  547. * when checking if there is enough space, w1_reply_make_space
  548. * is called with the full message size including cn_msg,
  549. * because it isn't known at that time if an additional cn_msg
  550. * will need to be allocated. So an extra cn_msg is added
  551. * above in "size".
  552. */
  553. block->maxlen = reply_size;
  554. block->first_cn = (struct cn_msg *)(node + node_count);
  555. memset(block->first_cn, 0, sizeof(*block->first_cn));
  556. }
  557. msg_len = cn->len;
  558. while (msg_len && !err) {
  559. dev = NULL;
  560. sl = NULL;
  561. if (msg->len + sizeof(struct w1_netlink_msg) > msg_len) {
  562. err = -E2BIG;
  563. break;
  564. }
  565. /* execute on this thread, no need to process later */
  566. if (msg->type == W1_LIST_MASTERS) {
  567. err = w1_process_command_root(cn, nsp->portid);
  568. goto out_cont;
  569. }
  570. /* All following message types require additional data,
  571. * check here before references are taken.
  572. */
  573. if (!msg->len) {
  574. err = -EPROTO;
  575. goto out_cont;
  576. }
  577. /* both search calls take references */
  578. if (msg->type == W1_MASTER_CMD) {
  579. dev = w1_search_master_id(msg->id.mst.id);
  580. } else if (msg->type == W1_SLAVE_CMD) {
  581. sl = w1_search_slave((struct w1_reg_num *)msg->id.id);
  582. if (sl)
  583. dev = sl->master;
  584. } else {
  585. pr_notice("%s: cn: %x.%x, wrong type: %u, len: %u.\n",
  586. __func__, cn->id.idx, cn->id.val,
  587. msg->type, msg->len);
  588. err = -EPROTO;
  589. goto out_cont;
  590. }
  591. if (!dev) {
  592. err = -ENODEV;
  593. goto out_cont;
  594. }
  595. err = 0;
  596. atomic_inc(&block->refcnt);
  597. node->async.cb = w1_process_cb;
  598. node->block = block;
  599. node->msg = (struct w1_netlink_msg *)((u8 *)&block->request_cn +
  600. (size_t)((u8 *)msg - (u8 *)cn));
  601. node->sl = sl;
  602. node->dev = dev;
  603. mutex_lock(&dev->list_mutex);
  604. list_add_tail(&node->async.async_entry, &dev->async_list);
  605. wake_up_process(dev->thread);
  606. mutex_unlock(&dev->list_mutex);
  607. ++node;
  608. out_cont:
  609. /* Can't queue because that modifies block and another
  610. * thread could be processing the messages by now and
  611. * there isn't a lock, send directly.
  612. */
  613. if (err)
  614. w1_netlink_send_error(cn, msg, nsp->portid, err);
  615. msg_len -= sizeof(struct w1_netlink_msg) + msg->len;
  616. msg = (struct w1_netlink_msg *)(((u8 *)msg) +
  617. sizeof(struct w1_netlink_msg) + msg->len);
  618. /*
  619. * Let's allow requests for nonexisting devices.
  620. */
  621. if (err == -ENODEV)
  622. err = 0;
  623. }
  624. if (block)
  625. w1_unref_block(block);
  626. }
  627. int w1_init_netlink(void)
  628. {
  629. struct cb_id w1_id = {.idx = CN_W1_IDX, .val = CN_W1_VAL};
  630. return cn_add_callback(&w1_id, "w1", &w1_cn_callback);
  631. }
  632. void w1_fini_netlink(void)
  633. {
  634. struct cb_id w1_id = {.idx = CN_W1_IDX, .val = CN_W1_VAL};
  635. cn_del_callback(&w1_id);
  636. }
  637. #else
  638. void w1_netlink_send(struct w1_master *dev, struct w1_netlink_msg *cn)
  639. {
  640. }
  641. int w1_init_netlink(void)
  642. {
  643. return 0;
  644. }
  645. void w1_fini_netlink(void)
  646. {
  647. }
  648. #endif