Почетна Преглед Помоћ
Регистрација Пријавите се
RD_Software
/
ark1668ed-bsp
2
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: fc47107f95
Гране Ознаке
ark1668ed-bsp
/
linux
/
drivers
/
misc
/
mei
/
main.c

main.c 28 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317 
  1. // SPDX-License-Identifier: GPL-2.0
    2. 

  2. /*
    3. 

  3.  * Copyright (c) 2003-2022, Intel Corporation. All rights reserved.
    4. 

  4.  * Intel Management Engine Interface (Intel MEI) Linux driver
    5. 

  5.  */
    6. 

  6. 

  7. #include <linux/module.h>
    8. 

  8. #include <linux/moduleparam.h>
    9. 

  9. #include <linux/kernel.h>
    10. 

  10. #include <linux/device.h>
    11. 

  11. #include <linux/slab.h>
    12. 

  12. #include <linux/fs.h>
    13. 

  13. #include <linux/errno.h>
    14. 

  14. #include <linux/types.h>
    15. 

  15. #include <linux/fcntl.h>
    16. 

  16. #include <linux/poll.h>
    17. 

  17. #include <linux/init.h>
    18. 

  18. #include <linux/ioctl.h>
    19. 

  19. #include <linux/cdev.h>
    20. 

  20. #include <linux/sched/signal.h>
    21. 

  21. #include <linux/compat.h>
    22. 

  22. #include <linux/jiffies.h>
    23. 

  23. #include <linux/interrupt.h>
    24. 

  24. 

  25. #include <linux/mei.h>
    26. 

  26. 

  27. #include "mei_dev.h"
    28. 

  28. #include "client.h"
    29. 

  29. 

  30. static const struct class mei_class = {
    31. 

  31. 	.name = "mei",
    32. 

  32. };
    33. 

  33. 

  34. static dev_t mei_devt;
    35. 

  35. #define MEI_MAX_DEVS  MINORMASK
    36. 

  36. static DEFINE_MUTEX(mei_minor_lock);
    37. 

  37. static DEFINE_IDR(mei_idr);
    38. 

  38. 

  39. /**
    40. 

  40.  * mei_open - the open function
    41. 

  41.  *
    42. 

  42.  * @inode: pointer to inode structure
    43. 

  43.  * @file: pointer to file structure
    44. 

  44.  *
    45. 

  45.  * Return: 0 on success, <0 on error
    46. 

  46.  */
    47. 

  47. static int mei_open(struct inode *inode, struct file *file)
    48. 

  48. {
    49. 

  49. 	struct mei_device *dev;
    50. 

  50. 	struct mei_cl *cl;
    51. 

  51. 

  52. 	int err;
    53. 

  53. 

  54. 	dev = container_of(inode->i_cdev, struct mei_device, cdev);
    55. 

  55. 

  56. 	mutex_lock(&dev->device_lock);
    57. 

  57. 

  58. 	if (dev->dev_state != MEI_DEV_ENABLED) {
    59. 

  59. 		dev_dbg(dev->dev, "dev_state != MEI_ENABLED  dev_state = %s\n",
    60. 

  60. 		    mei_dev_state_str(dev->dev_state));
    61. 

  61. 		err = -ENODEV;
    62. 

  62. 		goto err_unlock;
    63. 

  63. 	}
    64. 

  64. 

  65. 	cl = mei_cl_alloc_linked(dev);
    66. 

  66. 	if (IS_ERR(cl)) {
    67. 

  67. 		err = PTR_ERR(cl);
    68. 

  68. 		goto err_unlock;
    69. 

  69. 	}
    70. 

  70. 

  71. 	cl->fp = file;
    72. 

  72. 	file->private_data = cl;
    73. 

  73. 

  74. 	mutex_unlock(&dev->device_lock);
    75. 

  75. 

  76. 	return nonseekable_open(inode, file);
    77. 

  77. 

  78. err_unlock:
    79. 

  79. 	mutex_unlock(&dev->device_lock);
    80. 

  80. 	return err;
    81. 

  81. }
    82. 

  82. 

  83. /**
    84. 

  84.  * mei_cl_vtag_remove_by_fp - remove vtag that corresponds to fp from list
    85. 

  85.  *
    86. 

  86.  * @cl: host client
    87. 

  87.  * @fp: pointer to file structure
    88. 

  88.  *
    89. 

  89.  */
    90. 

  90. static void mei_cl_vtag_remove_by_fp(const struct mei_cl *cl,
    91. 

  91. 				     const struct file *fp)
    92. 

  92. {
    93. 

  93. 	struct mei_cl_vtag *vtag_l, *next;
    94. 

  94. 

  95. 	list_for_each_entry_safe(vtag_l, next, &cl->vtag_map, list) {
    96. 

  96. 		if (vtag_l->fp == fp) {
    97. 

  97. 			list_del(&vtag_l->list);
    98. 

  98. 			kfree(vtag_l);
    99. 

  99. 			return;
    100. 

  100. 		}
    101. 

  101. 	}
    102. 

  102. }
    103. 

  103. 

  104. /**
    105. 

  105.  * mei_release - the release function
    106. 

  106.  *
    107. 

  107.  * @inode: pointer to inode structure
    108. 

  108.  * @file: pointer to file structure
    109. 

  109.  *
    110. 

  110.  * Return: 0 on success, <0 on error
    111. 

  111.  */
    112. 

  112. static int mei_release(struct inode *inode, struct file *file)
    113. 

  113. {
    114. 

  114. 	struct mei_cl *cl = file->private_data;
    115. 

  115. 	struct mei_device *dev;
    116. 

  116. 	int rets;
    117. 

  117. 

  118. 	if (WARN_ON(!cl || !cl->dev))
    119. 

  119. 		return -ENODEV;
    120. 

  120. 

  121. 	dev = cl->dev;
    122. 

  122. 

  123. 	mutex_lock(&dev->device_lock);
    124. 

  124. 

  125. 	mei_cl_vtag_remove_by_fp(cl, file);
    126. 

  126. 

  127. 	if (!list_empty(&cl->vtag_map)) {
    128. 

  128. 		cl_dbg(dev, cl, "not the last vtag\n");
    129. 

  129. 		mei_cl_flush_queues(cl, file);
    130. 

  130. 		rets = 0;
    131. 

  131. 		goto out;
    132. 

  132. 	}
    133. 

  133. 

  134. 	rets = mei_cl_disconnect(cl);
    135. 

  135. 	/*
    136. 

  136. 	 * Check again: This is necessary since disconnect releases the lock
    137. 

  137. 	 * and another client can connect in the meantime.
    138. 

  138. 	 */
    139. 

  139. 	if (!list_empty(&cl->vtag_map)) {
    140. 

  140. 		cl_dbg(dev, cl, "not the last vtag after disconnect\n");
    141. 

  141. 		mei_cl_flush_queues(cl, file);
    142. 

  142. 		goto out;
    143. 

  143. 	}
    144. 

  144. 

  145. 	mei_cl_flush_queues(cl, NULL);
    146. 

  146. 	cl_dbg(dev, cl, "removing\n");
    147. 

  147. 

  148. 	mei_cl_unlink(cl);
    149. 

  149. 	kfree(cl);
    150. 

  150. 

  151. out:
    152. 

  152. 	file->private_data = NULL;
    153. 

  153. 

  154. 	mutex_unlock(&dev->device_lock);
    155. 

  155. 	return rets;
    156. 

  156. }
    157. 

  157. 

  158. 

  159. /**
    160. 

  160.  * mei_read - the read function.
    161. 

  161.  *
    162. 

  162.  * @file: pointer to file structure
    163. 

  163.  * @ubuf: pointer to user buffer
    164. 

  164.  * @length: buffer length
    165. 

  165.  * @offset: data offset in buffer
    166. 

  166.  *
    167. 

  167.  * Return: >=0 data length on success , <0 on error
    168. 

  168.  */
    169. 

  169. static ssize_t mei_read(struct file *file, char __user *ubuf,
    170. 

  170. 			size_t length, loff_t *offset)
    171. 

  171. {
    172. 

  172. 	struct mei_cl *cl = file->private_data;
    173. 

  173. 	struct mei_device *dev;
    174. 

  174. 	struct mei_cl_cb *cb = NULL;
    175. 

  175. 	bool nonblock = !!(file->f_flags & O_NONBLOCK);
    176. 

  176. 	ssize_t rets;
    177. 

  177. 

  178. 	if (WARN_ON(!cl || !cl->dev))
    179. 

  179. 		return -ENODEV;
    180. 

  180. 

  181. 	dev = cl->dev;
    182. 

  182. 

  183. 

  184. 	mutex_lock(&dev->device_lock);
    185. 

  185. 	if (dev->dev_state != MEI_DEV_ENABLED) {
    186. 

  186. 		rets = -ENODEV;
    187. 

  187. 		goto out;
    188. 

  188. 	}
    189. 

  189. 

  190. 	if (length == 0) {
    191. 

  191. 		rets = 0;
    192. 

  192. 		goto out;
    193. 

  193. 	}
    194. 

  194. 

  195. 	if (ubuf == NULL) {
    196. 

  196. 		rets = -EMSGSIZE;
    197. 

  197. 		goto out;
    198. 

  198. 	}
    199. 

  199. 

  200. 	cb = mei_cl_read_cb(cl, file);
    201. 

  201. 	if (cb)
    202. 

  202. 		goto copy_buffer;
    203. 

  203. 

  204. 	if (*offset > 0)
    205. 

  205. 		*offset = 0;
    206. 

  206. 

  207. 	rets = mei_cl_read_start(cl, length, file);
    208. 

  208. 	if (rets && rets != -EBUSY) {
    209. 

  209. 		cl_dbg(dev, cl, "mei start read failure status = %zd\n", rets);
    210. 

  210. 		goto out;
    211. 

  211. 	}
    212. 

  212. 

  213. 	if (nonblock) {
    214. 

  214. 		rets = -EAGAIN;
    215. 

  215. 		goto out;
    216. 

  216. 	}
    217. 

  217. 

  218. 	mutex_unlock(&dev->device_lock);
    219. 

  219. 	if (wait_event_interruptible(cl->rx_wait,
    220. 

  220. 				     mei_cl_read_cb(cl, file) ||
    221. 

  221. 				     !mei_cl_is_connected(cl))) {
    222. 

  222. 		if (signal_pending(current))
    223. 

  223. 			return -EINTR;
    224. 

  224. 		return -ERESTARTSYS;
    225. 

  225. 	}
    226. 

  226. 	mutex_lock(&dev->device_lock);
    227. 

  227. 

  228. 	if (!mei_cl_is_connected(cl)) {
    229. 

  229. 		rets = -ENODEV;
    230. 

  230. 		goto out;
    231. 

  231. 	}
    232. 

  232. 

  233. 	cb = mei_cl_read_cb(cl, file);
    234. 

  234. 	if (!cb) {
    235. 

  235. 		rets = 0;
    236. 

  236. 		goto out;
    237. 

  237. 	}
    238. 

  238. 

  239. copy_buffer:
    240. 

  240. 	/* now copy the data to user space */
    241. 

  241. 	if (cb->status) {
    242. 

  242. 		rets = cb->status;
    243. 

  243. 		cl_dbg(dev, cl, "read operation failed %zd\n", rets);
    244. 

  244. 		goto free;
    245. 

  245. 	}
    246. 

  246. 

  247. 	cl_dbg(dev, cl, "buf.size = %zu buf.idx = %zu offset = %lld\n",
    248. 

  248. 	       cb->buf.size, cb->buf_idx, *offset);
    249. 

  249. 	if (*offset >= cb->buf_idx) {
    250. 

  250. 		rets = 0;
    251. 

  251. 		goto free;
    252. 

  252. 	}
    253. 

  253. 

  254. 	/* length is being truncated to PAGE_SIZE,
    255. 

  255. 	 * however buf_idx may point beyond that */
    256. 

  256. 	length = min_t(size_t, length, cb->buf_idx - *offset);
    257. 

  257. 

  258. 	if (copy_to_user(ubuf, cb->buf.data + *offset, length)) {
    259. 

  259. 		dev_dbg(dev->dev, "failed to copy data to userland\n");
    260. 

  260. 		rets = -EFAULT;
    261. 

  261. 		goto free;
    262. 

  262. 	}
    263. 

  263. 

  264. 	rets = length;
    265. 

  265. 	*offset += length;
    266. 

  266. 	/* not all data was read, keep the cb */
    267. 

  267. 	if (*offset < cb->buf_idx)
    268. 

  268. 		goto out;
    269. 

  269. 

  270. free:
    271. 

  271. 	mei_cl_del_rd_completed(cl, cb);
    272. 

  272. 	*offset = 0;
    273. 

  273. 

  274. out:
    275. 

  275. 	cl_dbg(dev, cl, "end mei read rets = %zd\n", rets);
    276. 

  276. 	mutex_unlock(&dev->device_lock);
    277. 

  277. 	return rets;
    278. 

  278. }
    279. 

  279. 

  280. /**
    281. 

  281.  * mei_cl_vtag_by_fp - obtain the vtag by file pointer
    282. 

  282.  *
    283. 

  283.  * @cl: host client
    284. 

  284.  * @fp: pointer to file structure
    285. 

  285.  *
    286. 

  286.  * Return: vtag value on success, otherwise 0
    287. 

  287.  */
    288. 

  288. static u8 mei_cl_vtag_by_fp(const struct mei_cl *cl, const struct file *fp)
    289. 

  289. {
    290. 

  290. 	struct mei_cl_vtag *cl_vtag;
    291. 

  291. 

  292. 	if (!fp)
    293. 

  293. 		return 0;
    294. 

  294. 

  295. 	list_for_each_entry(cl_vtag, &cl->vtag_map, list)
    296. 

  296. 		if (cl_vtag->fp == fp)
    297. 

  297. 			return cl_vtag->vtag;
    298. 

  298. 	return 0;
    299. 

  299. }
    300. 

  300. 

  301. /**
    302. 

  302.  * mei_write - the write function.
    303. 

  303.  *
    304. 

  304.  * @file: pointer to file structure
    305. 

  305.  * @ubuf: pointer to user buffer
    306. 

  306.  * @length: buffer length
    307. 

  307.  * @offset: data offset in buffer
    308. 

  308.  *
    309. 

  309.  * Return: >=0 data length on success , <0 on error
    310. 

  310.  */
    311. 

  311. static ssize_t mei_write(struct file *file, const char __user *ubuf,
    312. 

  312. 			 size_t length, loff_t *offset)
    313. 

  313. {
    314. 

  314. 	struct mei_cl *cl = file->private_data;
    315. 

  315. 	struct mei_cl_cb *cb;
    316. 

  316. 	struct mei_device *dev;
    317. 

  317. 	ssize_t rets;
    318. 

  318. 

  319. 	if (WARN_ON(!cl || !cl->dev))
    320. 

  320. 		return -ENODEV;
    321. 

  321. 

  322. 	dev = cl->dev;
    323. 

  323. 

  324. 	mutex_lock(&dev->device_lock);
    325. 

  325. 

  326. 	if (dev->dev_state != MEI_DEV_ENABLED) {
    327. 

  327. 		rets = -ENODEV;
    328. 

  328. 		goto out;
    329. 

  329. 	}
    330. 

  330. 

  331. 	if (!mei_cl_is_connected(cl)) {
    332. 

  332. 		cl_dbg(dev, cl, "is not connected");
    333. 

  333. 		rets = -ENODEV;
    334. 

  334. 		goto out;
    335. 

  335. 	}
    336. 

  336. 

  337. 	if (!mei_me_cl_is_active(cl->me_cl)) {
    338. 

  338. 		rets = -ENOTTY;
    339. 

  339. 		goto out;
    340. 

  340. 	}
    341. 

  341. 

  342. 	if (length > mei_cl_mtu(cl)) {
    343. 

  343. 		rets = -EFBIG;
    344. 

  344. 		goto out;
    345. 

  345. 	}
    346. 

  346. 

  347. 	if (length == 0) {
    348. 

  348. 		rets = 0;
    349. 

  349. 		goto out;
    350. 

  350. 	}
    351. 

  351. 

  352. 	while (cl->tx_cb_queued >= dev->tx_queue_limit) {
    353. 

  353. 		if (file->f_flags & O_NONBLOCK) {
    354. 

  354. 			rets = -EAGAIN;
    355. 

  355. 			goto out;
    356. 

  356. 		}
    357. 

  357. 		mutex_unlock(&dev->device_lock);
    358. 

  358. 		rets = wait_event_interruptible(cl->tx_wait,
    359. 

  359. 				cl->writing_state == MEI_WRITE_COMPLETE ||
    360. 

  360. 				(!mei_cl_is_connected(cl)));
    361. 

  361. 		mutex_lock(&dev->device_lock);
    362. 

  362. 		if (rets) {
    363. 

  363. 			if (signal_pending(current))
    364. 

  364. 				rets = -EINTR;
    365. 

  365. 			goto out;
    366. 

  366. 		}
    367. 

  367. 		if (!mei_cl_is_connected(cl)) {
    368. 

  368. 			rets = -ENODEV;
    369. 

  369. 			goto out;
    370. 

  370. 		}
    371. 

  371. 	}
    372. 

  372. 

  373. 	cb = mei_cl_alloc_cb(cl, length, MEI_FOP_WRITE, file);
    374. 

  374. 	if (!cb) {
    375. 

  375. 		rets = -ENOMEM;
    376. 

  376. 		goto out;
    377. 

  377. 	}
    378. 

  378. 	cb->vtag = mei_cl_vtag_by_fp(cl, file);
    379. 

  379. 

  380. 	rets = copy_from_user(cb->buf.data, ubuf, length);
    381. 

  381. 	if (rets) {
    382. 

  382. 		dev_dbg(dev->dev, "failed to copy data from userland\n");
    383. 

  383. 		rets = -EFAULT;
    384. 

  384. 		mei_io_cb_free(cb);
    385. 

  385. 		goto out;
    386. 

  386. 	}
    387. 

  387. 

  388. 	rets = mei_cl_write(cl, cb, MAX_SCHEDULE_TIMEOUT);
    389. 

  389. out:
    390. 

  390. 	mutex_unlock(&dev->device_lock);
    391. 

  391. 	return rets;
    392. 

  392. }
    393. 

  393. 

  394. /**
    395. 

  395.  * mei_ioctl_connect_client - the connect to fw client IOCTL function
    396. 

  396.  *
    397. 

  397.  * @file: private data of the file object
    398. 

  398.  * @in_client_uuid: requested UUID for connection
    399. 

  399.  * @client: IOCTL connect data, output parameters
    400. 

  400.  *
    401. 

  401.  * Locking: called under "dev->device_lock" lock
    402. 

  402.  *
    403. 

  403.  * Return: 0 on success, <0 on failure.
    404. 

  404.  */
    405. 

  405. static int mei_ioctl_connect_client(struct file *file,
    406. 

  406. 				    const uuid_le *in_client_uuid,
    407. 

  407. 				    struct mei_client *client)
    408. 

  408. {
    409. 

  409. 	struct mei_device *dev;
    410. 

  410. 	struct mei_me_client *me_cl;
    411. 

  411. 	struct mei_cl *cl;
    412. 

  412. 	int rets;
    413. 

  413. 

  414. 	cl = file->private_data;
    415. 

  415. 	dev = cl->dev;
    416. 

  416. 

  417. 	if (cl->state != MEI_FILE_INITIALIZING &&
    418. 

  418. 	    cl->state != MEI_FILE_DISCONNECTED)
    419. 

  419. 		return  -EBUSY;
    420. 

  420. 

  421. 	/* find ME client we're trying to connect to */
    422. 

  422. 	me_cl = mei_me_cl_by_uuid(dev, in_client_uuid);
    423. 

  423. 	if (!me_cl) {
    424. 

  424. 		dev_dbg(dev->dev, "Cannot connect to FW Client UUID = %pUl\n",
    425. 

  425. 			in_client_uuid);
    426. 

  426. 		rets = -ENOTTY;
    427. 

  427. 		goto end;
    428. 

  428. 	}
    429. 

  429. 

  430. 	if (me_cl->props.fixed_address) {
    431. 

  431. 		bool forbidden = dev->override_fixed_address ?
    432. 

  432. 			 !dev->allow_fixed_address : !dev->hbm_f_fa_supported;
    433. 

  433. 		if (forbidden) {
    434. 

  434. 			dev_dbg(dev->dev, "Connection forbidden to FW Client UUID = %pUl\n",
    435. 

  435. 				in_client_uuid);
    436. 

  436. 			rets = -ENOTTY;
    437. 

  437. 			goto end;
    438. 

  438. 		}
    439. 

  439. 	}
    440. 

  440. 

  441. 	dev_dbg(dev->dev, "Connect to FW Client ID = %d\n",
    442. 

  442. 			me_cl->client_id);
    443. 

  443. 	dev_dbg(dev->dev, "FW Client - Protocol Version = %d\n",
    444. 

  444. 			me_cl->props.protocol_version);
    445. 

  445. 	dev_dbg(dev->dev, "FW Client - Max Msg Len = %d\n",
    446. 

  446. 			me_cl->props.max_msg_length);
    447. 

  447. 

  448. 	/* prepare the output buffer */
    449. 

  449. 	client->max_msg_length = me_cl->props.max_msg_length;
    450. 

  450. 	client->protocol_version = me_cl->props.protocol_version;
    451. 

  451. 	dev_dbg(dev->dev, "Can connect?\n");
    452. 

  452. 

  453. 	rets = mei_cl_connect(cl, me_cl, file);
    454. 

  454. 

  455. end:
    456. 

  456. 	mei_me_cl_put(me_cl);
    457. 

  457. 	return rets;
    458. 

  458. }
    459. 

  459. 

  460. /**
    461. 

  461.  * mei_vt_support_check - check if client support vtags
    462. 

  462.  *
    463. 

  463.  * @dev: mei_device
    464. 

  464.  * @uuid: client UUID
    465. 

  465.  *
    466. 

  466.  * Locking: called under "dev->device_lock" lock
    467. 

  467.  *
    468. 

  468.  * Return:
    469. 

  469.  *	0 - supported
    470. 

  470.  *	-ENOTTY - no such client
    471. 

  471.  *	-EOPNOTSUPP - vtags are not supported by client
    472. 

  472.  */
    473. 

  473. static int mei_vt_support_check(struct mei_device *dev, const uuid_le *uuid)
    474. 

  474. {
    475. 

  475. 	struct mei_me_client *me_cl;
    476. 

  476. 	int ret;
    477. 

  477. 

  478. 	if (!dev->hbm_f_vt_supported)
    479. 

  479. 		return -EOPNOTSUPP;
    480. 

  480. 

  481. 	me_cl = mei_me_cl_by_uuid(dev, uuid);
    482. 

  482. 	if (!me_cl) {
    483. 

  483. 		dev_dbg(dev->dev, "Cannot connect to FW Client UUID = %pUl\n",
    484. 

  484. 			uuid);
    485. 

  485. 		return -ENOTTY;
    486. 

  486. 	}
    487. 

  487. 	ret = me_cl->props.vt_supported ? 0 : -EOPNOTSUPP;
    488. 

  488. 	mei_me_cl_put(me_cl);
    489. 

  489. 

  490. 	return ret;
    491. 

  491. }
    492. 

  492. 

  493. /**
    494. 

  494.  * mei_ioctl_connect_vtag - connect to fw client with vtag IOCTL function
    495. 

  495.  *
    496. 

  496.  * @file: private data of the file object
    497. 

  497.  * @in_client_uuid: requested UUID for connection
    498. 

  498.  * @client: IOCTL connect data, output parameters
    499. 

  499.  * @vtag: vm tag
    500. 

  500.  *
    501. 

  501.  * Locking: called under "dev->device_lock" lock
    502. 

  502.  *
    503. 

  503.  * Return: 0 on success, <0 on failure.
    504. 

  504.  */
    505. 

  505. static int mei_ioctl_connect_vtag(struct file *file,
    506. 

  506. 				  const uuid_le *in_client_uuid,
    507. 

  507. 				  struct mei_client *client,
    508. 

  508. 				  u8 vtag)
    509. 

  509. {
    510. 

  510. 	struct mei_device *dev;
    511. 

  511. 	struct mei_cl *cl;
    512. 

  512. 	struct mei_cl *pos;
    513. 

  513. 	struct mei_cl_vtag *cl_vtag;
    514. 

  514. 

  515. 	cl = file->private_data;
    516. 

  516. 	dev = cl->dev;
    517. 

  517. 

  518. 	dev_dbg(dev->dev, "FW Client %pUl vtag %d\n", in_client_uuid, vtag);
    519. 

  519. 

  520. 	switch (cl->state) {
    521. 

  521. 	case MEI_FILE_DISCONNECTED:
    522. 

  522. 		if (mei_cl_vtag_by_fp(cl, file) != vtag) {
    523. 

  523. 			dev_err(dev->dev, "reconnect with different vtag\n");
    524. 

  524. 			return -EINVAL;
    525. 

  525. 		}
    526. 

  526. 		break;
    527. 

  527. 	case MEI_FILE_INITIALIZING:
    528. 

  528. 		/* malicious connect from another thread may push vtag */
    529. 

  529. 		if (!IS_ERR(mei_cl_fp_by_vtag(cl, vtag))) {
    530. 

  530. 			dev_err(dev->dev, "vtag already filled\n");
    531. 

  531. 			return -EINVAL;
    532. 

  532. 		}
    533. 

  533. 

  534. 		list_for_each_entry(pos, &dev->file_list, link) {
    535. 

  535. 			if (pos == cl)
    536. 

  536. 				continue;
    537. 

  537. 			if (!pos->me_cl)
    538. 

  538. 				continue;
    539. 

  539. 

  540. 			/* only search for same UUID */
    541. 

  541. 			if (uuid_le_cmp(*mei_cl_uuid(pos), *in_client_uuid))
    542. 

  542. 				continue;
    543. 

  543. 

  544. 			/* if tag already exist try another fp */
    545. 

  545. 			if (!IS_ERR(mei_cl_fp_by_vtag(pos, vtag)))
    546. 

  546. 				continue;
    547. 

  547. 

  548. 			/* replace cl with acquired one */
    549. 

  549. 			dev_dbg(dev->dev, "replacing with existing cl\n");
    550. 

  550. 			mei_cl_unlink(cl);
    551. 

  551. 			kfree(cl);
    552. 

  552. 			file->private_data = pos;
    553. 

  553. 			cl = pos;
    554. 

  554. 			break;
    555. 

  555. 		}
    556. 

  556. 

  557. 		cl_vtag = mei_cl_vtag_alloc(file, vtag);
    558. 

  558. 		if (IS_ERR(cl_vtag))
    559. 

  559. 			return -ENOMEM;
    560. 

  560. 

  561. 		list_add_tail(&cl_vtag->list, &cl->vtag_map);
    562. 

  562. 		break;
    563. 

  563. 	default:
    564. 

  564. 		return -EBUSY;
    565. 

  565. 	}
    566. 

  566. 

  567. 	while (cl->state != MEI_FILE_INITIALIZING &&
    568. 

  568. 	       cl->state != MEI_FILE_DISCONNECTED &&
    569. 

  569. 	       cl->state != MEI_FILE_CONNECTED) {
    570. 

  570. 		mutex_unlock(&dev->device_lock);
    571. 

  571. 		wait_event_timeout(cl->wait,
    572. 

  572. 				   (cl->state == MEI_FILE_CONNECTED ||
    573. 

  573. 				    cl->state == MEI_FILE_DISCONNECTED ||
    574. 

  574. 				    cl->state == MEI_FILE_DISCONNECT_REQUIRED ||
    575. 

  575. 				    cl->state == MEI_FILE_DISCONNECT_REPLY),
    576. 

  576. 				   dev->timeouts.cl_connect);
    577. 

  577. 		mutex_lock(&dev->device_lock);
    578. 

  578. 	}
    579. 

  579. 

  580. 	if (!mei_cl_is_connected(cl))
    581. 

  581. 		return mei_ioctl_connect_client(file, in_client_uuid, client);
    582. 

  582. 

  583. 	client->max_msg_length = cl->me_cl->props.max_msg_length;
    584. 

  584. 	client->protocol_version = cl->me_cl->props.protocol_version;
    585. 

  585. 

  586. 	return 0;
    587. 

  587. }
    588. 

  588. 

  589. /**
    590. 

  590.  * mei_ioctl_client_notify_request - propagate event notification
    591. 

  591.  *                                   request to client
    592. 

  592.  *
    593. 

  593.  * @file: pointer to file structure
    594. 

  594.  * @request: 0 - disable, 1 - enable
    595. 

  595.  *
    596. 

  596.  * Return: 0 on success , <0 on error
    597. 

  597.  */
    598. 

  598. static int mei_ioctl_client_notify_request(const struct file *file, u32 request)
    599. 

  599. {
    600. 

  600. 	struct mei_cl *cl = file->private_data;
    601. 

  601. 

  602. 	if (request != MEI_HBM_NOTIFICATION_START &&
    603. 

  603. 	    request != MEI_HBM_NOTIFICATION_STOP)
    604. 

  604. 		return -EINVAL;
    605. 

  605. 

  606. 	return mei_cl_notify_request(cl, file, (u8)request);
    607. 

  607. }
    608. 

  608. 

  609. /**
    610. 

  610.  * mei_ioctl_client_notify_get -  wait for notification request
    611. 

  611.  *
    612. 

  612.  * @file: pointer to file structure
    613. 

  613.  * @notify_get: 0 - disable, 1 - enable
    614. 

  614.  *
    615. 

  615.  * Return: 0 on success , <0 on error
    616. 

  616.  */
    617. 

  617. static int mei_ioctl_client_notify_get(const struct file *file, u32 *notify_get)
    618. 

  618. {
    619. 

  619. 	struct mei_cl *cl = file->private_data;
    620. 

  620. 	bool notify_ev;
    621. 

  621. 	bool block = (file->f_flags & O_NONBLOCK) == 0;
    622. 

  622. 	int rets;
    623. 

  623. 

  624. 	rets = mei_cl_notify_get(cl, block, &notify_ev);
    625. 

  625. 	if (rets)
    626. 

  626. 		return rets;
    627. 

  627. 

  628. 	*notify_get = notify_ev ? 1 : 0;
    629. 

  629. 	return 0;
    630. 

  630. }
    631. 

  631. 

  632. /**
    633. 

  633.  * mei_ioctl - the IOCTL function
    634. 

  634.  *
    635. 

  635.  * @file: pointer to file structure
    636. 

  636.  * @cmd: ioctl command
    637. 

  637.  * @data: pointer to mei message structure
    638. 

  638.  *
    639. 

  639.  * Return: 0 on success , <0 on error
    640. 

  640.  */
    641. 

  641. static long mei_ioctl(struct file *file, unsigned int cmd, unsigned long data)
    642. 

  642. {
    643. 

  643. 	struct mei_device *dev;
    644. 

  644. 	struct mei_cl *cl = file->private_data;
    645. 

  645. 	struct mei_connect_client_data conn;
    646. 

  646. 	struct mei_connect_client_data_vtag conn_vtag;
    647. 

  647. 	const uuid_le *cl_uuid;
    648. 

  648. 	struct mei_client *props;
    649. 

  649. 	u8 vtag;
    650. 

  650. 	u32 notify_get, notify_req;
    651. 

  651. 	int rets;
    652. 

  652. 

  653. 

  654. 	if (WARN_ON(!cl || !cl->dev))
    655. 

  655. 		return -ENODEV;
    656. 

  656. 

  657. 	dev = cl->dev;
    658. 

  658. 

  659. 	dev_dbg(dev->dev, "IOCTL cmd = 0x%x", cmd);
    660. 

  660. 

  661. 	mutex_lock(&dev->device_lock);
    662. 

  662. 	if (dev->dev_state != MEI_DEV_ENABLED) {
    663. 

  663. 		rets = -ENODEV;
    664. 

  664. 		goto out;
    665. 

  665. 	}
    666. 

  666. 

  667. 	switch (cmd) {
    668. 

  668. 	case IOCTL_MEI_CONNECT_CLIENT:
    669. 

  669. 		dev_dbg(dev->dev, ": IOCTL_MEI_CONNECT_CLIENT.\n");
    670. 

  670. 		if (copy_from_user(&conn, (char __user *)data, sizeof(conn))) {
    671. 

  671. 			dev_dbg(dev->dev, "failed to copy data from userland\n");
    672. 

  672. 			rets = -EFAULT;
    673. 

  673. 			goto out;
    674. 

  674. 		}
    675. 

  675. 		cl_uuid = &conn.in_client_uuid;
    676. 

  676. 		props = &conn.out_client_properties;
    677. 

  677. 		vtag = 0;
    678. 

  678. 

  679. 		rets = mei_vt_support_check(dev, cl_uuid);
    680. 

  680. 		if (rets == -ENOTTY)
    681. 

  681. 			goto out;
    682. 

  682. 		if (!rets)
    683. 

  683. 			rets = mei_ioctl_connect_vtag(file, cl_uuid, props,
    684. 

  684. 						      vtag);
    685. 

  685. 		else
    686. 

  686. 			rets = mei_ioctl_connect_client(file, cl_uuid, props);
    687. 

  687. 		if (rets)
    688. 

  688. 			goto out;
    689. 

  689. 

  690. 		/* if all is ok, copying the data back to user. */
    691. 

  691. 		if (copy_to_user((char __user *)data, &conn, sizeof(conn))) {
    692. 

  692. 			dev_dbg(dev->dev, "failed to copy data to userland\n");
    693. 

  693. 			rets = -EFAULT;
    694. 

  694. 			goto out;
    695. 

  695. 		}
    696. 

  696. 

  697. 		break;
    698. 

  698. 

  699. 	case IOCTL_MEI_CONNECT_CLIENT_VTAG:
    700. 

  700. 		dev_dbg(dev->dev, "IOCTL_MEI_CONNECT_CLIENT_VTAG\n");
    701. 

  701. 		if (copy_from_user(&conn_vtag, (char __user *)data,
    702. 

  702. 				   sizeof(conn_vtag))) {
    703. 

  703. 			dev_dbg(dev->dev, "failed to copy data from userland\n");
    704. 

  704. 			rets = -EFAULT;
    705. 

  705. 			goto out;
    706. 

  706. 		}
    707. 

  707. 

  708. 		cl_uuid = &conn_vtag.connect.in_client_uuid;
    709. 

  709. 		props = &conn_vtag.out_client_properties;
    710. 

  710. 		vtag = conn_vtag.connect.vtag;
    711. 

  711. 

  712. 		rets = mei_vt_support_check(dev, cl_uuid);
    713. 

  713. 		if (rets == -EOPNOTSUPP)
    714. 

  714. 			dev_dbg(dev->dev, "FW Client %pUl does not support vtags\n",
    715. 

  715. 				cl_uuid);
    716. 

  716. 		if (rets)
    717. 

  717. 			goto out;
    718. 

  718. 

  719. 		if (!vtag) {
    720. 

  720. 			dev_dbg(dev->dev, "vtag can't be zero\n");
    721. 

  721. 			rets = -EINVAL;
    722. 

  722. 			goto out;
    723. 

  723. 		}
    724. 

  724. 

  725. 		rets = mei_ioctl_connect_vtag(file, cl_uuid, props, vtag);
    726. 

  726. 		if (rets)
    727. 

  727. 			goto out;
    728. 

  728. 

  729. 		/* if all is ok, copying the data back to user. */
    730. 

  730. 		if (copy_to_user((char __user *)data, &conn_vtag,
    731. 

  731. 				 sizeof(conn_vtag))) {
    732. 

  732. 			dev_dbg(dev->dev, "failed to copy data to userland\n");
    733. 

  733. 			rets = -EFAULT;
    734. 

  734. 			goto out;
    735. 

  735. 		}
    736. 

  736. 

  737. 		break;
    738. 

  738. 

  739. 	case IOCTL_MEI_NOTIFY_SET:
    740. 

  740. 		dev_dbg(dev->dev, ": IOCTL_MEI_NOTIFY_SET.\n");
    741. 

  741. 		if (copy_from_user(&notify_req,
    742. 

  742. 				   (char __user *)data, sizeof(notify_req))) {
    743. 

  743. 			dev_dbg(dev->dev, "failed to copy data from userland\n");
    744. 

  744. 			rets = -EFAULT;
    745. 

  745. 			goto out;
    746. 

  746. 		}
    747. 

  747. 		rets = mei_ioctl_client_notify_request(file, notify_req);
    748. 

  748. 		break;
    749. 

  749. 

  750. 	case IOCTL_MEI_NOTIFY_GET:
    751. 

  751. 		dev_dbg(dev->dev, ": IOCTL_MEI_NOTIFY_GET.\n");
    752. 

  752. 		rets = mei_ioctl_client_notify_get(file, &notify_get);
    753. 

  753. 		if (rets)
    754. 

  754. 			goto out;
    755. 

  755. 

  756. 		dev_dbg(dev->dev, "copy connect data to user\n");
    757. 

  757. 		if (copy_to_user((char __user *)data,
    758. 

  758. 				&notify_get, sizeof(notify_get))) {
    759. 

  759. 			dev_dbg(dev->dev, "failed to copy data to userland\n");
    760. 

  760. 			rets = -EFAULT;
    761. 

  761. 			goto out;
    762. 

  762. 

  763. 		}
    764. 

  764. 		break;
    765. 

  765. 

  766. 	default:
    767. 

  767. 		rets = -ENOIOCTLCMD;
    768. 

  768. 	}
    769. 

  769. 

  770. out:
    771. 

  771. 	mutex_unlock(&dev->device_lock);
    772. 

  772. 	return rets;
    773. 

  773. }
    774. 

  774. 

  775. /**
    776. 

  776.  * mei_poll - the poll function
    777. 

  777.  *
    778. 

  778.  * @file: pointer to file structure
    779. 

  779.  * @wait: pointer to poll_table structure
    780. 

  780.  *
    781. 

  781.  * Return: poll mask
    782. 

  782.  */
    783. 

  783. static __poll_t mei_poll(struct file *file, poll_table *wait)
    784. 

  784. {
    785. 

  785. 	__poll_t req_events = poll_requested_events(wait);
    786. 

  786. 	struct mei_cl *cl = file->private_data;
    787. 

  787. 	struct mei_device *dev;
    788. 

  788. 	__poll_t mask = 0;
    789. 

  789. 	bool notify_en;
    790. 

  790. 

  791. 	if (WARN_ON(!cl || !cl->dev))
    792. 

  792. 		return EPOLLERR;
    793. 

  793. 

  794. 	dev = cl->dev;
    795. 

  795. 

  796. 	mutex_lock(&dev->device_lock);
    797. 

  797. 

  798. 	notify_en = cl->notify_en && (req_events & EPOLLPRI);
    799. 

  799. 

  800. 	if (dev->dev_state != MEI_DEV_ENABLED ||
    801. 

  801. 	    !mei_cl_is_connected(cl)) {
    802. 

  802. 		mask = EPOLLERR;
    803. 

  803. 		goto out;
    804. 

  804. 	}
    805. 

  805. 

  806. 	if (notify_en) {
    807. 

  807. 		poll_wait(file, &cl->ev_wait, wait);
    808. 

  808. 		if (cl->notify_ev)
    809. 

  809. 			mask |= EPOLLPRI;
    810. 

  810. 	}
    811. 

  811. 

  812. 	if (req_events & (EPOLLIN | EPOLLRDNORM)) {
    813. 

  813. 		poll_wait(file, &cl->rx_wait, wait);
    814. 

  814. 

  815. 		if (mei_cl_read_cb(cl, file))
    816. 

  816. 			mask |= EPOLLIN | EPOLLRDNORM;
    817. 

  817. 		else
    818. 

  818. 			mei_cl_read_start(cl, mei_cl_mtu(cl), file);
    819. 

  819. 	}
    820. 

  820. 

  821. 	if (req_events & (EPOLLOUT | EPOLLWRNORM)) {
    822. 

  822. 		poll_wait(file, &cl->tx_wait, wait);
    823. 

  823. 		if (cl->tx_cb_queued < dev->tx_queue_limit)
    824. 

  824. 			mask |= EPOLLOUT | EPOLLWRNORM;
    825. 

  825. 	}
    826. 

  826. 

  827. out:
    828. 

  828. 	mutex_unlock(&dev->device_lock);
    829. 

  829. 	return mask;
    830. 

  830. }
    831. 

  831. 

  832. /**
    833. 

  833.  * mei_cl_is_write_queued - check if the client has pending writes.
    834. 

  834.  *
    835. 

  835.  * @cl: writing host client
    836. 

  836.  *
    837. 

  837.  * Return: true if client is writing, false otherwise.
    838. 

  838.  */
    839. 

  839. static bool mei_cl_is_write_queued(struct mei_cl *cl)
    840. 

  840. {
    841. 

  841. 	struct mei_device *dev = cl->dev;
    842. 

  842. 	struct mei_cl_cb *cb;
    843. 

  843. 

  844. 	list_for_each_entry(cb, &dev->write_list, list)
    845. 

  845. 		if (cb->cl == cl)
    846. 

  846. 			return true;
    847. 

  847. 	list_for_each_entry(cb, &dev->write_waiting_list, list)
    848. 

  848. 		if (cb->cl == cl)
    849. 

  849. 			return true;
    850. 

  850. 	return false;
    851. 

  851. }
    852. 

  852. 

  853. /**
    854. 

  854.  * mei_fsync - the fsync handler
    855. 

  855.  *
    856. 

  856.  * @fp:       pointer to file structure
    857. 

  857.  * @start:    unused
    858. 

  858.  * @end:      unused
    859. 

  859.  * @datasync: unused
    860. 

  860.  *
    861. 

  861.  * Return: 0 on success, -ENODEV if client is not connected
    862. 

  862.  */
    863. 

  863. static int mei_fsync(struct file *fp, loff_t start, loff_t end, int datasync)
    864. 

  864. {
    865. 

  865. 	struct mei_cl *cl = fp->private_data;
    866. 

  866. 	struct mei_device *dev;
    867. 

  867. 	int rets;
    868. 

  868. 

  869. 	if (WARN_ON(!cl || !cl->dev))
    870. 

  870. 		return -ENODEV;
    871. 

  871. 

  872. 	dev = cl->dev;
    873. 

  873. 

  874. 	mutex_lock(&dev->device_lock);
    875. 

  875. 

  876. 	if (dev->dev_state != MEI_DEV_ENABLED || !mei_cl_is_connected(cl)) {
    877. 

  877. 		rets = -ENODEV;
    878. 

  878. 		goto out;
    879. 

  879. 	}
    880. 

  880. 

  881. 	while (mei_cl_is_write_queued(cl)) {
    882. 

  882. 		mutex_unlock(&dev->device_lock);
    883. 

  883. 		rets = wait_event_interruptible(cl->tx_wait,
    884. 

  884. 				cl->writing_state == MEI_WRITE_COMPLETE ||
    885. 

  885. 				!mei_cl_is_connected(cl));
    886. 

  886. 		mutex_lock(&dev->device_lock);
    887. 

  887. 		if (rets) {
    888. 

  888. 			if (signal_pending(current))
    889. 

  889. 				rets = -EINTR;
    890. 

  890. 			goto out;
    891. 

  891. 		}
    892. 

  892. 		if (!mei_cl_is_connected(cl)) {
    893. 

  893. 			rets = -ENODEV;
    894. 

  894. 			goto out;
    895. 

  895. 		}
    896. 

  896. 	}
    897. 

  897. 	rets = 0;
    898. 

  898. out:
    899. 

  899. 	mutex_unlock(&dev->device_lock);
    900. 

  900. 	return rets;
    901. 

  901. }
    902. 

  902. 

  903. /**
    904. 

  904.  * mei_fasync - asynchronous io support
    905. 

  905.  *
    906. 

  906.  * @fd: file descriptor
    907. 

  907.  * @file: pointer to file structure
    908. 

  908.  * @band: band bitmap
    909. 

  909.  *
    910. 

  910.  * Return: negative on error,
    911. 

  911.  *         0 if it did no changes,
    912. 

  912.  *         and positive a process was added or deleted
    913. 

  913.  */
    914. 

  914. static int mei_fasync(int fd, struct file *file, int band)
    915. 

  915. {
    916. 

  916. 

  917. 	struct mei_cl *cl = file->private_data;
    918. 

  918. 

  919. 	if (!mei_cl_is_connected(cl))
    920. 

  920. 		return -ENODEV;
    921. 

  921. 

  922. 	return fasync_helper(fd, file, band, &cl->ev_async);
    923. 

  923. }
    924. 

  924. 

  925. /**
    926. 

  926.  * trc_show - mei device trc attribute show method
    927. 

  927.  *
    928. 

  928.  * @device: device pointer
    929. 

  929.  * @attr: attribute pointer
    930. 

  930.  * @buf:  char out buffer
    931. 

  931.  *
    932. 

  932.  * Return: number of the bytes printed into buf or error
    933. 

  933.  */
    934. 

  934. static ssize_t trc_show(struct device *device,
    935. 

  935. 			struct device_attribute *attr, char *buf)
    936. 

  936. {
    937. 

  937. 	struct mei_device *dev = dev_get_drvdata(device);
    938. 

  938. 	u32 trc;
    939. 

  939. 	int ret;
    940. 

  940. 

  941. 	ret = mei_trc_status(dev, &trc);
    942. 

  942. 	if (ret)
    943. 

  943. 		return ret;
    944. 

  944. 	return sprintf(buf, "%08X\n", trc);
    945. 

  945. }
    946. 

  946. static DEVICE_ATTR_RO(trc);
    947. 

  947. 

  948. /**
    949. 

  949.  * fw_status_show - mei device fw_status attribute show method
    950. 

  950.  *
    951. 

  951.  * @device: device pointer
    952. 

  952.  * @attr: attribute pointer
    953. 

  953.  * @buf:  char out buffer
    954. 

  954.  *
    955. 

  955.  * Return: number of the bytes printed into buf or error
    956. 

  956.  */
    957. 

  957. static ssize_t fw_status_show(struct device *device,
    958. 

  958. 		struct device_attribute *attr, char *buf)
    959. 

  959. {
    960. 

  960. 	struct mei_device *dev = dev_get_drvdata(device);
    961. 

  961. 	struct mei_fw_status fw_status;
    962. 

  962. 	int err, i;
    963. 

  963. 	ssize_t cnt = 0;
    964. 

  964. 

  965. 	mutex_lock(&dev->device_lock);
    966. 

  966. 	err = mei_fw_status(dev, &fw_status);
    967. 

  967. 	mutex_unlock(&dev->device_lock);
    968. 

  968. 	if (err) {
    969. 

  969. 		dev_err(device, "read fw_status error = %d\n", err);
    970. 

  970. 		return err;
    971. 

  971. 	}
    972. 

  972. 

  973. 	for (i = 0; i < fw_status.count; i++)
    974. 

  974. 		cnt += scnprintf(buf + cnt, PAGE_SIZE - cnt, "%08X\n",
    975. 

  975. 				fw_status.status[i]);
    976. 

  976. 	return cnt;
    977. 

  977. }
    978. 

  978. static DEVICE_ATTR_RO(fw_status);
    979. 

  979. 

  980. /**
    981. 

  981.  * hbm_ver_show - display HBM protocol version negotiated with FW
    982. 

  982.  *
    983. 

  983.  * @device: device pointer
    984. 

  984.  * @attr: attribute pointer
    985. 

  985.  * @buf:  char out buffer
    986. 

  986.  *
    987. 

  987.  * Return: number of the bytes printed into buf or error
    988. 

  988.  */
    989. 

  989. static ssize_t hbm_ver_show(struct device *device,
    990. 

  990. 			    struct device_attribute *attr, char *buf)
    991. 

  991. {
    992. 

  992. 	struct mei_device *dev = dev_get_drvdata(device);
    993. 

  993. 	struct hbm_version ver;
    994. 

  994. 

  995. 	mutex_lock(&dev->device_lock);
    996. 

  996. 	ver = dev->version;
    997. 

  997. 	mutex_unlock(&dev->device_lock);
    998. 

  998. 

  999. 	return sprintf(buf, "%u.%u\n", ver.major_version, ver.minor_version);
    1000. 

  1000. }
    1001. 

  1001. static DEVICE_ATTR_RO(hbm_ver);
    1002. 

  1002. 

  1003. /**
    1004. 

  1004.  * hbm_ver_drv_show - display HBM protocol version advertised by driver
    1005. 

  1005.  *
    1006. 

  1006.  * @device: device pointer
    1007. 

  1007.  * @attr: attribute pointer
    1008. 

  1008.  * @buf:  char out buffer
    1009. 

  1009.  *
    1010. 

  1010.  * Return: number of the bytes printed into buf or error
    1011. 

  1011.  */
    1012. 

  1012. static ssize_t hbm_ver_drv_show(struct device *device,
    1013. 

  1013. 				struct device_attribute *attr, char *buf)
    1014. 

  1014. {
    1015. 

  1015. 	return sprintf(buf, "%u.%u\n", HBM_MAJOR_VERSION, HBM_MINOR_VERSION);
    1016. 

  1016. }
    1017. 

  1017. static DEVICE_ATTR_RO(hbm_ver_drv);
    1018. 

  1018. 

  1019. static ssize_t tx_queue_limit_show(struct device *device,
    1020. 

  1020. 				   struct device_attribute *attr, char *buf)
    1021. 

  1021. {
    1022. 

  1022. 	struct mei_device *dev = dev_get_drvdata(device);
    1023. 

  1023. 	u8 size = 0;
    1024. 

  1024. 

  1025. 	mutex_lock(&dev->device_lock);
    1026. 

  1026. 	size = dev->tx_queue_limit;
    1027. 

  1027. 	mutex_unlock(&dev->device_lock);
    1028. 

  1028. 

  1029. 	return sysfs_emit(buf, "%u\n", size);
    1030. 

  1030. }
    1031. 

  1031. 

  1032. static ssize_t tx_queue_limit_store(struct device *device,
    1033. 

  1033. 				    struct device_attribute *attr,
    1034. 

  1034. 				    const char *buf, size_t count)
    1035. 

  1035. {
    1036. 

  1036. 	struct mei_device *dev = dev_get_drvdata(device);
    1037. 

  1037. 	u8 limit;
    1038. 

  1038. 	unsigned int inp;
    1039. 

  1039. 	int err;
    1040. 

  1040. 

  1041. 	err = kstrtouint(buf, 10, &inp);
    1042. 

  1042. 	if (err)
    1043. 

  1043. 		return err;
    1044. 

  1044. 	if (inp > MEI_TX_QUEUE_LIMIT_MAX || inp < MEI_TX_QUEUE_LIMIT_MIN)
    1045. 

  1045. 		return -EINVAL;
    1046. 

  1046. 	limit = inp;
    1047. 

  1047. 

  1048. 	mutex_lock(&dev->device_lock);
    1049. 

  1049. 	dev->tx_queue_limit = limit;
    1050. 

  1050. 	mutex_unlock(&dev->device_lock);
    1051. 

  1051. 

  1052. 	return count;
    1053. 

  1053. }
    1054. 

  1054. static DEVICE_ATTR_RW(tx_queue_limit);
    1055. 

  1055. 

  1056. /**
    1057. 

  1057.  * fw_ver_show - display ME FW version
    1058. 

  1058.  *
    1059. 

  1059.  * @device: device pointer
    1060. 

  1060.  * @attr: attribute pointer
    1061. 

  1061.  * @buf:  char out buffer
    1062. 

  1062.  *
    1063. 

  1063.  * Return: number of the bytes printed into buf or error
    1064. 

  1064.  */
    1065. 

  1065. static ssize_t fw_ver_show(struct device *device,
    1066. 

  1066. 			   struct device_attribute *attr, char *buf)
    1067. 

  1067. {
    1068. 

  1068. 	struct mei_device *dev = dev_get_drvdata(device);
    1069. 

  1069. 	struct mei_fw_version *ver;
    1070. 

  1070. 	ssize_t cnt = 0;
    1071. 

  1071. 	int i;
    1072. 

  1072. 

  1073. 	ver = dev->fw_ver;
    1074. 

  1074. 

  1075. 	for (i = 0; i < MEI_MAX_FW_VER_BLOCKS; i++)
    1076. 

  1076. 		cnt += scnprintf(buf + cnt, PAGE_SIZE - cnt, "%u:%u.%u.%u.%u\n",
    1077. 

  1077. 				 ver[i].platform, ver[i].major, ver[i].minor,
    1078. 

  1078. 				 ver[i].hotfix, ver[i].buildno);
    1079. 

  1079. 	return cnt;
    1080. 

  1080. }
    1081. 

  1081. static DEVICE_ATTR_RO(fw_ver);
    1082. 

  1082. 

  1083. /**
    1084. 

  1084.  * dev_state_show - display device state
    1085. 

  1085.  *
    1086. 

  1086.  * @device: device pointer
    1087. 

  1087.  * @attr: attribute pointer
    1088. 

  1088.  * @buf:  char out buffer
    1089. 

  1089.  *
    1090. 

  1090.  * Return: number of the bytes printed into buf or error
    1091. 

  1091.  */
    1092. 

  1092. static ssize_t dev_state_show(struct device *device,
    1093. 

  1093. 			      struct device_attribute *attr, char *buf)
    1094. 

  1094. {
    1095. 

  1095. 	struct mei_device *dev = dev_get_drvdata(device);
    1096. 

  1096. 	enum mei_dev_state dev_state;
    1097. 

  1097. 

  1098. 	mutex_lock(&dev->device_lock);
    1099. 

  1099. 	dev_state = dev->dev_state;
    1100. 

  1100. 	mutex_unlock(&dev->device_lock);
    1101. 

  1101. 

  1102. 	return sprintf(buf, "%s", mei_dev_state_str(dev_state));
    1103. 

  1103. }
    1104. 

  1104. static DEVICE_ATTR_RO(dev_state);
    1105. 

  1105. 

  1106. /**
    1107. 

  1107.  * mei_set_devstate: set to new device state and notify sysfs file.
    1108. 

  1108.  *
    1109. 

  1109.  * @dev: mei_device
    1110. 

  1110.  * @state: new device state
    1111. 

  1111.  */
    1112. 

  1112. void mei_set_devstate(struct mei_device *dev, enum mei_dev_state state)
    1113. 

  1113. {
    1114. 

  1114. 	struct device *clsdev;
    1115. 

  1115. 

  1116. 	if (dev->dev_state == state)
    1117. 

  1117. 		return;
    1118. 

  1118. 

  1119. 	dev->dev_state = state;
    1120. 

  1120. 

  1121. 	clsdev = class_find_device_by_devt(&mei_class, dev->cdev.dev);
    1122. 

  1122. 	if (clsdev) {
    1123. 

  1123. 		sysfs_notify(&clsdev->kobj, NULL, "dev_state");
    1124. 

  1124. 		put_device(clsdev);
    1125. 

  1125. 	}
    1126. 

  1126. }
    1127. 

  1127. 

  1128. /**
    1129. 

  1129.  * kind_show - display device kind
    1130. 

  1130.  *
    1131. 

  1131.  * @device: device pointer
    1132. 

  1132.  * @attr: attribute pointer
    1133. 

  1133.  * @buf: char out buffer
    1134. 

  1134.  *
    1135. 

  1135.  * Return: number of the bytes printed into buf or error
    1136. 

  1136.  */
    1137. 

  1137. static ssize_t kind_show(struct device *device,
    1138. 

  1138. 			 struct device_attribute *attr, char *buf)
    1139. 

  1139. {
    1140. 

  1140. 	struct mei_device *dev = dev_get_drvdata(device);
    1141. 

  1141. 	ssize_t ret;
    1142. 

  1142. 

  1143. 	if (dev->kind)
    1144. 

  1144. 		ret = sprintf(buf, "%s\n", dev->kind);
    1145. 

  1145. 	else
    1146. 

  1146. 		ret = sprintf(buf, "%s\n", "mei");
    1147. 

  1147. 

  1148. 	return ret;
    1149. 

  1149. }
    1150. 

  1150. static DEVICE_ATTR_RO(kind);
    1151. 

  1151. 

  1152. static struct attribute *mei_attrs[] = {
    1153. 

  1153. 	&dev_attr_fw_status.attr,
    1154. 

  1154. 	&dev_attr_hbm_ver.attr,
    1155. 

  1155. 	&dev_attr_hbm_ver_drv.attr,
    1156. 

  1156. 	&dev_attr_tx_queue_limit.attr,
    1157. 

  1157. 	&dev_attr_fw_ver.attr,
    1158. 

  1158. 	&dev_attr_dev_state.attr,
    1159. 

  1159. 	&dev_attr_trc.attr,
    1160. 

  1160. 	&dev_attr_kind.attr,
    1161. 

  1161. 	NULL
    1162. 

  1162. };
    1163. 

  1163. ATTRIBUTE_GROUPS(mei);
    1164. 

  1164. 

  1165. /*
    1166. 

  1166.  * file operations structure will be used for mei char device.
    1167. 

  1167.  */
    1168. 

  1168. static const struct file_operations mei_fops = {
    1169. 

  1169. 	.owner = THIS_MODULE,
    1170. 

  1170. 	.read = mei_read,
    1171. 

  1171. 	.unlocked_ioctl = mei_ioctl,
    1172. 

  1172. 	.compat_ioctl = compat_ptr_ioctl,
    1173. 

  1173. 	.open = mei_open,
    1174. 

  1174. 	.release = mei_release,
    1175. 

  1175. 	.write = mei_write,
    1176. 

  1176. 	.poll = mei_poll,
    1177. 

  1177. 	.fsync = mei_fsync,
    1178. 

  1178. 	.fasync = mei_fasync,
    1179. 

  1179. };
    1180. 

  1180. 

  1181. /**
    1182. 

  1182.  * mei_minor_get - obtain next free device minor number
    1183. 

  1183.  *
    1184. 

  1184.  * @dev:  device pointer
    1185. 

  1185.  *
    1186. 

  1186.  * Return: allocated minor, or -ENOSPC if no free minor left
    1187. 

  1187.  */
    1188. 

  1188. static int mei_minor_get(struct mei_device *dev)
    1189. 

  1189. {
    1190. 

  1190. 	int ret;
    1191. 

  1191. 

  1192. 	mutex_lock(&mei_minor_lock);
    1193. 

  1193. 	ret = idr_alloc(&mei_idr, dev, 0, MEI_MAX_DEVS, GFP_KERNEL);
    1194. 

  1194. 	if (ret >= 0)
    1195. 

  1195. 		dev->minor = ret;
    1196. 

  1196. 	else if (ret == -ENOSPC)
    1197. 

  1197. 		dev_err(dev->dev, "too many mei devices\n");
    1198. 

  1198. 

  1199. 	mutex_unlock(&mei_minor_lock);
    1200. 

  1200. 	return ret;
    1201. 

  1201. }
    1202. 

  1202. 

  1203. /**
    1204. 

  1204.  * mei_minor_free - mark device minor number as free
    1205. 

  1205.  *
    1206. 

  1206.  * @dev:  device pointer
    1207. 

  1207.  */
    1208. 

  1208. static void mei_minor_free(struct mei_device *dev)
    1209. 

  1209. {
    1210. 

  1210. 	mutex_lock(&mei_minor_lock);
    1211. 

  1211. 	idr_remove(&mei_idr, dev->minor);
    1212. 

  1212. 	mutex_unlock(&mei_minor_lock);
    1213. 

  1213. }
    1214. 

  1214. 

  1215. int mei_register(struct mei_device *dev, struct device *parent)
    1216. 

  1216. {
    1217. 

  1217. 	struct device *clsdev; /* class device */
    1218. 

  1218. 	int ret, devno;
    1219. 

  1219. 

  1220. 	ret = mei_minor_get(dev);
    1221. 

  1221. 	if (ret < 0)
    1222. 

  1222. 		return ret;
    1223. 

  1223. 

  1224. 	/* Fill in the data structures */
    1225. 

  1225. 	devno = MKDEV(MAJOR(mei_devt), dev->minor);
    1226. 

  1226. 	cdev_init(&dev->cdev, &mei_fops);
    1227. 

  1227. 	dev->cdev.owner = parent->driver->owner;
    1228. 

  1228. 

  1229. 	/* Add the device */
    1230. 

  1230. 	ret = cdev_add(&dev->cdev, devno, 1);
    1231. 

  1231. 	if (ret) {
    1232. 

  1232. 		dev_err(parent, "unable to add device %d:%d\n",
    1233. 

  1233. 			MAJOR(mei_devt), dev->minor);
    1234. 

  1234. 		goto err_dev_add;
    1235. 

  1235. 	}
    1236. 

  1236. 

  1237. 	clsdev = device_create_with_groups(&mei_class, parent, devno,
    1238. 

  1238. 					   dev, mei_groups,
    1239. 

  1239. 					   "mei%d", dev->minor);
    1240. 

  1240. 

  1241. 	if (IS_ERR(clsdev)) {
    1242. 

  1242. 		dev_err(parent, "unable to create device %d:%d\n",
    1243. 

  1243. 			MAJOR(mei_devt), dev->minor);
    1244. 

  1244. 		ret = PTR_ERR(clsdev);
    1245. 

  1245. 		goto err_dev_create;
    1246. 

  1246. 	}
    1247. 

  1247. 

  1248. 	mei_dbgfs_register(dev, dev_name(clsdev));
    1249. 

  1249. 

  1250. 	return 0;
    1251. 

  1251. 

  1252. err_dev_create:
    1253. 

  1253. 	cdev_del(&dev->cdev);
    1254. 

  1254. err_dev_add:
    1255. 

  1255. 	mei_minor_free(dev);
    1256. 

  1256. 	return ret;
    1257. 

  1257. }
    1258. 

  1258. EXPORT_SYMBOL_GPL(mei_register);
    1259. 

  1259. 

  1260. void mei_deregister(struct mei_device *dev)
    1261. 

  1261. {
    1262. 

  1262. 	int devno;
    1263. 

  1263. 

  1264. 	devno = dev->cdev.dev;
    1265. 

  1265. 	cdev_del(&dev->cdev);
    1266. 

  1266. 

  1267. 	mei_dbgfs_deregister(dev);
    1268. 

  1268. 

  1269. 	device_destroy(&mei_class, devno);
    1270. 

  1270. 

  1271. 	mei_minor_free(dev);
    1272. 

  1272. }
    1273. 

  1273. EXPORT_SYMBOL_GPL(mei_deregister);
    1274. 

  1274. 

  1275. static int __init mei_init(void)
    1276. 

  1276. {
    1277. 

  1277. 	int ret;
    1278. 

  1278. 

  1279. 	ret = class_register(&mei_class);
    1280. 

  1280. 	if (ret)
    1281. 

  1281. 		return ret;
    1282. 

  1282. 

  1283. 	ret = alloc_chrdev_region(&mei_devt, 0, MEI_MAX_DEVS, "mei");
    1284. 

  1284. 	if (ret < 0) {
    1285. 

  1285. 		pr_err("unable to allocate char dev region\n");
    1286. 

  1286. 		goto err_class;
    1287. 

  1287. 	}
    1288. 

  1288. 

  1289. 	ret = mei_cl_bus_init();
    1290. 

  1290. 	if (ret < 0) {
    1291. 

  1291. 		pr_err("unable to initialize bus\n");
    1292. 

  1292. 		goto err_chrdev;
    1293. 

  1293. 	}
    1294. 

  1294. 

  1295. 	return 0;
    1296. 

  1296. 

  1297. err_chrdev:
    1298. 

  1298. 	unregister_chrdev_region(mei_devt, MEI_MAX_DEVS);
    1299. 

  1299. err_class:
    1300. 

  1300. 	class_unregister(&mei_class);
    1301. 

  1301. 	return ret;
    1302. 

  1302. }
    1303. 

  1303. 

  1304. static void __exit mei_exit(void)
    1305. 

  1305. {
    1306. 

  1306. 	unregister_chrdev_region(mei_devt, MEI_MAX_DEVS);
    1307. 

  1307. 	class_unregister(&mei_class);
    1308. 

  1308. 	mei_cl_bus_exit();
    1309. 

  1309. }
    1310. 

  1310. 

  1311. module_init(mei_init);
    1312. 

  1312. module_exit(mei_exit);
    1313. 

  1313. 

  1314. MODULE_AUTHOR("Intel Corporation");
    1315. 

  1315. MODULE_DESCRIPTION("Intel(R) Management Engine Interface");
    1316. 

  1316. MODULE_LICENSE("GPL v2");
    1317. 

  1317.