xref: /openbmc/linux/net/nfc/netlink.c (revision 6c33a6f4) 
1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3  * Copyright (C) 2011 Instituto Nokia de Tecnologia
4  *
5  * Authors:
6  *    Lauro Ramos Venancio <lauro.venancio@openbossa.org>
7  *    Aloisio Almeida Jr <aloisio.almeida@openbossa.org>
8  *
9  * Vendor commands implementation based on net/wireless/nl80211.c
10  * which is:
11  *
12  * Copyright 2006-2010	Johannes Berg <johannes@sipsolutions.net>
13  * Copyright 2013-2014  Intel Mobile Communications GmbH
14  */
15 
16 #define pr_fmt(fmt) KBUILD_MODNAME ": %s: " fmt, __func__
17 
18 #include <net/genetlink.h>
19 #include <linux/nfc.h>
20 #include <linux/slab.h>
21 
22 #include "nfc.h"
23 #include "llcp.h"
24 
25 static const struct genl_multicast_group nfc_genl_mcgrps[] = {
26 	{ .name = NFC_GENL_MCAST_EVENT_NAME, },
27 };
28 
29 static struct genl_family nfc_genl_family;
30 static const struct nla_policy nfc_genl_policy[NFC_ATTR_MAX + 1] = {
31 	[NFC_ATTR_DEVICE_INDEX] = { .type = NLA_U32 },
32 	[NFC_ATTR_DEVICE_NAME] = { .type = NLA_STRING,
33 				.len = NFC_DEVICE_NAME_MAXSIZE },
34 	[NFC_ATTR_PROTOCOLS] = { .type = NLA_U32 },
35 	[NFC_ATTR_TARGET_INDEX] = { .type = NLA_U32 },
36 	[NFC_ATTR_COMM_MODE] = { .type = NLA_U8 },
37 	[NFC_ATTR_RF_MODE] = { .type = NLA_U8 },
38 	[NFC_ATTR_DEVICE_POWERED] = { .type = NLA_U8 },
39 	[NFC_ATTR_IM_PROTOCOLS] = { .type = NLA_U32 },
40 	[NFC_ATTR_TM_PROTOCOLS] = { .type = NLA_U32 },
41 	[NFC_ATTR_LLC_PARAM_LTO] = { .type = NLA_U8 },
42 	[NFC_ATTR_LLC_PARAM_RW] = { .type = NLA_U8 },
43 	[NFC_ATTR_LLC_PARAM_MIUX] = { .type = NLA_U16 },
44 	[NFC_ATTR_LLC_SDP] = { .type = NLA_NESTED },
45 	[NFC_ATTR_FIRMWARE_NAME] = { .type = NLA_STRING,
46 				     .len = NFC_FIRMWARE_NAME_MAXSIZE },
47 	[NFC_ATTR_SE_INDEX] = { .type = NLA_U32 },
48 	[NFC_ATTR_SE_APDU] = { .type = NLA_BINARY },
49 	[NFC_ATTR_VENDOR_ID] = { .type = NLA_U32 },
50 	[NFC_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
51 	[NFC_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
52 
53 };
54 
55 static const struct nla_policy nfc_sdp_genl_policy[NFC_SDP_ATTR_MAX + 1] = {
56 	[NFC_SDP_ATTR_URI] = { .type = NLA_STRING,
57 			       .len = U8_MAX - 4 },
58 	[NFC_SDP_ATTR_SAP] = { .type = NLA_U8 },
59 };
60 
61 static int nfc_genl_send_target(struct sk_buff *msg, struct nfc_target *target,
62 				struct netlink_callback *cb, int flags)
63 {
64 	void *hdr;
65 
66 	hdr = genlmsg_put(msg, NETLINK_CB(cb->skb).portid, cb->nlh->nlmsg_seq,
67 			  &nfc_genl_family, flags, NFC_CMD_GET_TARGET);
68 	if (!hdr)
69 		return -EMSGSIZE;
70 
71 	genl_dump_check_consistent(cb, hdr);
72 
73 	if (nla_put_u32(msg, NFC_ATTR_TARGET_INDEX, target->idx) ||
74 	    nla_put_u32(msg, NFC_ATTR_PROTOCOLS, target->supported_protocols) ||
75 	    nla_put_u16(msg, NFC_ATTR_TARGET_SENS_RES, target->sens_res) ||
76 	    nla_put_u8(msg, NFC_ATTR_TARGET_SEL_RES, target->sel_res))
77 		goto nla_put_failure;
78 	if (target->nfcid1_len > 0 &&
79 	    nla_put(msg, NFC_ATTR_TARGET_NFCID1, target->nfcid1_len,
80 		    target->nfcid1))
81 		goto nla_put_failure;
82 	if (target->sensb_res_len > 0 &&
83 	    nla_put(msg, NFC_ATTR_TARGET_SENSB_RES, target->sensb_res_len,
84 		    target->sensb_res))
85 		goto nla_put_failure;
86 	if (target->sensf_res_len > 0 &&
87 	    nla_put(msg, NFC_ATTR_TARGET_SENSF_RES, target->sensf_res_len,
88 		    target->sensf_res))
89 		goto nla_put_failure;
90 
91 	if (target->is_iso15693) {
92 		if (nla_put_u8(msg, NFC_ATTR_TARGET_ISO15693_DSFID,
93 			       target->iso15693_dsfid) ||
94 		    nla_put(msg, NFC_ATTR_TARGET_ISO15693_UID,
95 			    sizeof(target->iso15693_uid), target->iso15693_uid))
96 			goto nla_put_failure;
97 	}
98 
99 	genlmsg_end(msg, hdr);
100 	return 0;
101 
102 nla_put_failure:
103 	genlmsg_cancel(msg, hdr);
104 	return -EMSGSIZE;
105 }
106 
107 static struct nfc_dev *__get_device_from_cb(struct netlink_callback *cb)
108 {
109 	const struct genl_dumpit_info *info = genl_dumpit_info(cb);
110 	struct nfc_dev *dev;
111 	u32 idx;
112 
113 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX])
114 		return ERR_PTR(-EINVAL);
115 
116 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
117 
118 	dev = nfc_get_device(idx);
119 	if (!dev)
120 		return ERR_PTR(-ENODEV);
121 
122 	return dev;
123 }
124 
125 static int nfc_genl_dump_targets(struct sk_buff *skb,
126 				 struct netlink_callback *cb)
127 {
128 	int i = cb->args[0];
129 	struct nfc_dev *dev = (struct nfc_dev *) cb->args[1];
130 	int rc;
131 
132 	if (!dev) {
133 		dev = __get_device_from_cb(cb);
134 		if (IS_ERR(dev))
135 			return PTR_ERR(dev);
136 
137 		cb->args[1] = (long) dev;
138 	}
139 
140 	device_lock(&dev->dev);
141 
142 	cb->seq = dev->targets_generation;
143 
144 	while (i < dev->n_targets) {
145 		rc = nfc_genl_send_target(skb, &dev->targets[i], cb,
146 					  NLM_F_MULTI);
147 		if (rc < 0)
148 			break;
149 
150 		i++;
151 	}
152 
153 	device_unlock(&dev->dev);
154 
155 	cb->args[0] = i;
156 
157 	return skb->len;
158 }
159 
160 static int nfc_genl_dump_targets_done(struct netlink_callback *cb)
161 {
162 	struct nfc_dev *dev = (struct nfc_dev *) cb->args[1];
163 
164 	if (dev)
165 		nfc_put_device(dev);
166 
167 	return 0;
168 }
169 
170 int nfc_genl_targets_found(struct nfc_dev *dev)
171 {
172 	struct sk_buff *msg;
173 	void *hdr;
174 
175 	dev->genl_data.poll_req_portid = 0;
176 
177 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
178 	if (!msg)
179 		return -ENOMEM;
180 
181 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
182 			  NFC_EVENT_TARGETS_FOUND);
183 	if (!hdr)
184 		goto free_msg;
185 
186 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
187 		goto nla_put_failure;
188 
189 	genlmsg_end(msg, hdr);
190 
191 	return genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_ATOMIC);
192 
193 nla_put_failure:
194 free_msg:
195 	nlmsg_free(msg);
196 	return -EMSGSIZE;
197 }
198 
199 int nfc_genl_target_lost(struct nfc_dev *dev, u32 target_idx)
200 {
201 	struct sk_buff *msg;
202 	void *hdr;
203 
204 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
205 	if (!msg)
206 		return -ENOMEM;
207 
208 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
209 			  NFC_EVENT_TARGET_LOST);
210 	if (!hdr)
211 		goto free_msg;
212 
213 	if (nla_put_string(msg, NFC_ATTR_DEVICE_NAME, nfc_device_name(dev)) ||
214 	    nla_put_u32(msg, NFC_ATTR_TARGET_INDEX, target_idx))
215 		goto nla_put_failure;
216 
217 	genlmsg_end(msg, hdr);
218 
219 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
220 
221 	return 0;
222 
223 nla_put_failure:
224 free_msg:
225 	nlmsg_free(msg);
226 	return -EMSGSIZE;
227 }
228 
229 int nfc_genl_tm_activated(struct nfc_dev *dev, u32 protocol)
230 {
231 	struct sk_buff *msg;
232 	void *hdr;
233 
234 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
235 	if (!msg)
236 		return -ENOMEM;
237 
238 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
239 			  NFC_EVENT_TM_ACTIVATED);
240 	if (!hdr)
241 		goto free_msg;
242 
243 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
244 		goto nla_put_failure;
245 	if (nla_put_u32(msg, NFC_ATTR_TM_PROTOCOLS, protocol))
246 		goto nla_put_failure;
247 
248 	genlmsg_end(msg, hdr);
249 
250 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
251 
252 	return 0;
253 
254 nla_put_failure:
255 free_msg:
256 	nlmsg_free(msg);
257 	return -EMSGSIZE;
258 }
259 
260 int nfc_genl_tm_deactivated(struct nfc_dev *dev)
261 {
262 	struct sk_buff *msg;
263 	void *hdr;
264 
265 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
266 	if (!msg)
267 		return -ENOMEM;
268 
269 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
270 			  NFC_EVENT_TM_DEACTIVATED);
271 	if (!hdr)
272 		goto free_msg;
273 
274 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
275 		goto nla_put_failure;
276 
277 	genlmsg_end(msg, hdr);
278 
279 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
280 
281 	return 0;
282 
283 nla_put_failure:
284 free_msg:
285 	nlmsg_free(msg);
286 	return -EMSGSIZE;
287 }
288 
289 static int nfc_genl_setup_device_added(struct nfc_dev *dev, struct sk_buff *msg)
290 {
291 	if (nla_put_string(msg, NFC_ATTR_DEVICE_NAME, nfc_device_name(dev)) ||
292 	    nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx) ||
293 	    nla_put_u32(msg, NFC_ATTR_PROTOCOLS, dev->supported_protocols) ||
294 	    nla_put_u8(msg, NFC_ATTR_DEVICE_POWERED, dev->dev_up) ||
295 	    nla_put_u8(msg, NFC_ATTR_RF_MODE, dev->rf_mode))
296 		return -1;
297 	return 0;
298 }
299 
300 int nfc_genl_device_added(struct nfc_dev *dev)
301 {
302 	struct sk_buff *msg;
303 	void *hdr;
304 
305 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
306 	if (!msg)
307 		return -ENOMEM;
308 
309 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
310 			  NFC_EVENT_DEVICE_ADDED);
311 	if (!hdr)
312 		goto free_msg;
313 
314 	if (nfc_genl_setup_device_added(dev, msg))
315 		goto nla_put_failure;
316 
317 	genlmsg_end(msg, hdr);
318 
319 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
320 
321 	return 0;
322 
323 nla_put_failure:
324 free_msg:
325 	nlmsg_free(msg);
326 	return -EMSGSIZE;
327 }
328 
329 int nfc_genl_device_removed(struct nfc_dev *dev)
330 {
331 	struct sk_buff *msg;
332 	void *hdr;
333 
334 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
335 	if (!msg)
336 		return -ENOMEM;
337 
338 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
339 			  NFC_EVENT_DEVICE_REMOVED);
340 	if (!hdr)
341 		goto free_msg;
342 
343 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
344 		goto nla_put_failure;
345 
346 	genlmsg_end(msg, hdr);
347 
348 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
349 
350 	return 0;
351 
352 nla_put_failure:
353 free_msg:
354 	nlmsg_free(msg);
355 	return -EMSGSIZE;
356 }
357 
358 int nfc_genl_llc_send_sdres(struct nfc_dev *dev, struct hlist_head *sdres_list)
359 {
360 	struct sk_buff *msg;
361 	struct nlattr *sdp_attr, *uri_attr;
362 	struct nfc_llcp_sdp_tlv *sdres;
363 	struct hlist_node *n;
364 	void *hdr;
365 	int rc = -EMSGSIZE;
366 	int i;
367 
368 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
369 	if (!msg)
370 		return -ENOMEM;
371 
372 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
373 			  NFC_EVENT_LLC_SDRES);
374 	if (!hdr)
375 		goto free_msg;
376 
377 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
378 		goto nla_put_failure;
379 
380 	sdp_attr = nla_nest_start_noflag(msg, NFC_ATTR_LLC_SDP);
381 	if (sdp_attr == NULL) {
382 		rc = -ENOMEM;
383 		goto nla_put_failure;
384 	}
385 
386 	i = 1;
387 	hlist_for_each_entry_safe(sdres, n, sdres_list, node) {
388 		pr_debug("uri: %s, sap: %d\n", sdres->uri, sdres->sap);
389 
390 		uri_attr = nla_nest_start_noflag(msg, i++);
391 		if (uri_attr == NULL) {
392 			rc = -ENOMEM;
393 			goto nla_put_failure;
394 		}
395 
396 		if (nla_put_u8(msg, NFC_SDP_ATTR_SAP, sdres->sap))
397 			goto nla_put_failure;
398 
399 		if (nla_put_string(msg, NFC_SDP_ATTR_URI, sdres->uri))
400 			goto nla_put_failure;
401 
402 		nla_nest_end(msg, uri_attr);
403 
404 		hlist_del(&sdres->node);
405 
406 		nfc_llcp_free_sdp_tlv(sdres);
407 	}
408 
409 	nla_nest_end(msg, sdp_attr);
410 
411 	genlmsg_end(msg, hdr);
412 
413 	return genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_ATOMIC);
414 
415 nla_put_failure:
416 free_msg:
417 	nlmsg_free(msg);
418 
419 	nfc_llcp_free_sdp_tlv_list(sdres_list);
420 
421 	return rc;
422 }
423 
424 int nfc_genl_se_added(struct nfc_dev *dev, u32 se_idx, u16 type)
425 {
426 	struct sk_buff *msg;
427 	void *hdr;
428 
429 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
430 	if (!msg)
431 		return -ENOMEM;
432 
433 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
434 			  NFC_EVENT_SE_ADDED);
435 	if (!hdr)
436 		goto free_msg;
437 
438 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx) ||
439 	    nla_put_u32(msg, NFC_ATTR_SE_INDEX, se_idx) ||
440 	    nla_put_u8(msg, NFC_ATTR_SE_TYPE, type))
441 		goto nla_put_failure;
442 
443 	genlmsg_end(msg, hdr);
444 
445 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
446 
447 	return 0;
448 
449 nla_put_failure:
450 free_msg:
451 	nlmsg_free(msg);
452 	return -EMSGSIZE;
453 }
454 
455 int nfc_genl_se_removed(struct nfc_dev *dev, u32 se_idx)
456 {
457 	struct sk_buff *msg;
458 	void *hdr;
459 
460 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
461 	if (!msg)
462 		return -ENOMEM;
463 
464 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
465 			  NFC_EVENT_SE_REMOVED);
466 	if (!hdr)
467 		goto free_msg;
468 
469 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx) ||
470 	    nla_put_u32(msg, NFC_ATTR_SE_INDEX, se_idx))
471 		goto nla_put_failure;
472 
473 	genlmsg_end(msg, hdr);
474 
475 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
476 
477 	return 0;
478 
479 nla_put_failure:
480 free_msg:
481 	nlmsg_free(msg);
482 	return -EMSGSIZE;
483 }
484 
485 int nfc_genl_se_transaction(struct nfc_dev *dev, u8 se_idx,
486 			    struct nfc_evt_transaction *evt_transaction)
487 {
488 	struct nfc_se *se;
489 	struct sk_buff *msg;
490 	void *hdr;
491 
492 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
493 	if (!msg)
494 		return -ENOMEM;
495 
496 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
497 			  NFC_EVENT_SE_TRANSACTION);
498 	if (!hdr)
499 		goto free_msg;
500 
501 	se = nfc_find_se(dev, se_idx);
502 	if (!se)
503 		goto free_msg;
504 
505 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx) ||
506 	    nla_put_u32(msg, NFC_ATTR_SE_INDEX, se_idx) ||
507 	    nla_put_u8(msg, NFC_ATTR_SE_TYPE, se->type) ||
508 	    nla_put(msg, NFC_ATTR_SE_AID, evt_transaction->aid_len,
509 		    evt_transaction->aid) ||
510 	    nla_put(msg, NFC_ATTR_SE_PARAMS, evt_transaction->params_len,
511 		    evt_transaction->params))
512 		goto nla_put_failure;
513 
514 	/* evt_transaction is no more used */
515 	devm_kfree(&dev->dev, evt_transaction);
516 
517 	genlmsg_end(msg, hdr);
518 
519 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
520 
521 	return 0;
522 
523 nla_put_failure:
524 free_msg:
525 	/* evt_transaction is no more used */
526 	devm_kfree(&dev->dev, evt_transaction);
527 	nlmsg_free(msg);
528 	return -EMSGSIZE;
529 }
530 
531 int nfc_genl_se_connectivity(struct nfc_dev *dev, u8 se_idx)
532 {
533 	struct nfc_se *se;
534 	struct sk_buff *msg;
535 	void *hdr;
536 
537 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
538 	if (!msg)
539 		return -ENOMEM;
540 
541 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
542 			  NFC_EVENT_SE_CONNECTIVITY);
543 	if (!hdr)
544 		goto free_msg;
545 
546 	se = nfc_find_se(dev, se_idx);
547 	if (!se)
548 		goto free_msg;
549 
550 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx) ||
551 	    nla_put_u32(msg, NFC_ATTR_SE_INDEX, se_idx) ||
552 	    nla_put_u8(msg, NFC_ATTR_SE_TYPE, se->type))
553 		goto nla_put_failure;
554 
555 	genlmsg_end(msg, hdr);
556 
557 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
558 
559 	return 0;
560 
561 nla_put_failure:
562 free_msg:
563 	nlmsg_free(msg);
564 	return -EMSGSIZE;
565 }
566 
567 static int nfc_genl_send_device(struct sk_buff *msg, struct nfc_dev *dev,
568 				u32 portid, u32 seq,
569 				struct netlink_callback *cb,
570 				int flags)
571 {
572 	void *hdr;
573 
574 	hdr = genlmsg_put(msg, portid, seq, &nfc_genl_family, flags,
575 			  NFC_CMD_GET_DEVICE);
576 	if (!hdr)
577 		return -EMSGSIZE;
578 
579 	if (cb)
580 		genl_dump_check_consistent(cb, hdr);
581 
582 	if (nfc_genl_setup_device_added(dev, msg))
583 		goto nla_put_failure;
584 
585 	genlmsg_end(msg, hdr);
586 	return 0;
587 
588 nla_put_failure:
589 	genlmsg_cancel(msg, hdr);
590 	return -EMSGSIZE;
591 }
592 
593 static int nfc_genl_dump_devices(struct sk_buff *skb,
594 				 struct netlink_callback *cb)
595 {
596 	struct class_dev_iter *iter = (struct class_dev_iter *) cb->args[0];
597 	struct nfc_dev *dev = (struct nfc_dev *) cb->args[1];
598 	bool first_call = false;
599 
600 	if (!iter) {
601 		first_call = true;
602 		iter = kmalloc(sizeof(struct class_dev_iter), GFP_KERNEL);
603 		if (!iter)
604 			return -ENOMEM;
605 		cb->args[0] = (long) iter;
606 	}
607 
608 	mutex_lock(&nfc_devlist_mutex);
609 
610 	cb->seq = nfc_devlist_generation;
611 
612 	if (first_call) {
613 		nfc_device_iter_init(iter);
614 		dev = nfc_device_iter_next(iter);
615 	}
616 
617 	while (dev) {
618 		int rc;
619 
620 		rc = nfc_genl_send_device(skb, dev, NETLINK_CB(cb->skb).portid,
621 					  cb->nlh->nlmsg_seq, cb, NLM_F_MULTI);
622 		if (rc < 0)
623 			break;
624 
625 		dev = nfc_device_iter_next(iter);
626 	}
627 
628 	mutex_unlock(&nfc_devlist_mutex);
629 
630 	cb->args[1] = (long) dev;
631 
632 	return skb->len;
633 }
634 
635 static int nfc_genl_dump_devices_done(struct netlink_callback *cb)
636 {
637 	struct class_dev_iter *iter = (struct class_dev_iter *) cb->args[0];
638 
639 	nfc_device_iter_exit(iter);
640 	kfree(iter);
641 
642 	return 0;
643 }
644 
645 int nfc_genl_dep_link_up_event(struct nfc_dev *dev, u32 target_idx,
646 			       u8 comm_mode, u8 rf_mode)
647 {
648 	struct sk_buff *msg;
649 	void *hdr;
650 
651 	pr_debug("DEP link is up\n");
652 
653 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
654 	if (!msg)
655 		return -ENOMEM;
656 
657 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0, NFC_CMD_DEP_LINK_UP);
658 	if (!hdr)
659 		goto free_msg;
660 
661 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
662 		goto nla_put_failure;
663 	if (rf_mode == NFC_RF_INITIATOR &&
664 	    nla_put_u32(msg, NFC_ATTR_TARGET_INDEX, target_idx))
665 		goto nla_put_failure;
666 	if (nla_put_u8(msg, NFC_ATTR_COMM_MODE, comm_mode) ||
667 	    nla_put_u8(msg, NFC_ATTR_RF_MODE, rf_mode))
668 		goto nla_put_failure;
669 
670 	genlmsg_end(msg, hdr);
671 
672 	dev->dep_link_up = true;
673 
674 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_ATOMIC);
675 
676 	return 0;
677 
678 nla_put_failure:
679 free_msg:
680 	nlmsg_free(msg);
681 	return -EMSGSIZE;
682 }
683 
684 int nfc_genl_dep_link_down_event(struct nfc_dev *dev)
685 {
686 	struct sk_buff *msg;
687 	void *hdr;
688 
689 	pr_debug("DEP link is down\n");
690 
691 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
692 	if (!msg)
693 		return -ENOMEM;
694 
695 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
696 			  NFC_CMD_DEP_LINK_DOWN);
697 	if (!hdr)
698 		goto free_msg;
699 
700 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
701 		goto nla_put_failure;
702 
703 	genlmsg_end(msg, hdr);
704 
705 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_ATOMIC);
706 
707 	return 0;
708 
709 nla_put_failure:
710 free_msg:
711 	nlmsg_free(msg);
712 	return -EMSGSIZE;
713 }
714 
715 static int nfc_genl_get_device(struct sk_buff *skb, struct genl_info *info)
716 {
717 	struct sk_buff *msg;
718 	struct nfc_dev *dev;
719 	u32 idx;
720 	int rc = -ENOBUFS;
721 
722 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX])
723 		return -EINVAL;
724 
725 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
726 
727 	dev = nfc_get_device(idx);
728 	if (!dev)
729 		return -ENODEV;
730 
731 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
732 	if (!msg) {
733 		rc = -ENOMEM;
734 		goto out_putdev;
735 	}
736 
737 	rc = nfc_genl_send_device(msg, dev, info->snd_portid, info->snd_seq,
738 				  NULL, 0);
739 	if (rc < 0)
740 		goto out_free;
741 
742 	nfc_put_device(dev);
743 
744 	return genlmsg_reply(msg, info);
745 
746 out_free:
747 	nlmsg_free(msg);
748 out_putdev:
749 	nfc_put_device(dev);
750 	return rc;
751 }
752 
753 static int nfc_genl_dev_up(struct sk_buff *skb, struct genl_info *info)
754 {
755 	struct nfc_dev *dev;
756 	int rc;
757 	u32 idx;
758 
759 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX])
760 		return -EINVAL;
761 
762 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
763 
764 	dev = nfc_get_device(idx);
765 	if (!dev)
766 		return -ENODEV;
767 
768 	rc = nfc_dev_up(dev);
769 
770 	nfc_put_device(dev);
771 	return rc;
772 }
773 
774 static int nfc_genl_dev_down(struct sk_buff *skb, struct genl_info *info)
775 {
776 	struct nfc_dev *dev;
777 	int rc;
778 	u32 idx;
779 
780 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX])
781 		return -EINVAL;
782 
783 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
784 
785 	dev = nfc_get_device(idx);
786 	if (!dev)
787 		return -ENODEV;
788 
789 	rc = nfc_dev_down(dev);
790 
791 	nfc_put_device(dev);
792 	return rc;
793 }
794 
795 static int nfc_genl_start_poll(struct sk_buff *skb, struct genl_info *info)
796 {
797 	struct nfc_dev *dev;
798 	int rc;
799 	u32 idx;
800 	u32 im_protocols = 0, tm_protocols = 0;
801 
802 	pr_debug("Poll start\n");
803 
804 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
805 	    ((!info->attrs[NFC_ATTR_IM_PROTOCOLS] &&
806 	      !info->attrs[NFC_ATTR_PROTOCOLS]) &&
807 	      !info->attrs[NFC_ATTR_TM_PROTOCOLS]))
808 		return -EINVAL;
809 
810 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
811 
812 	if (info->attrs[NFC_ATTR_TM_PROTOCOLS])
813 		tm_protocols = nla_get_u32(info->attrs[NFC_ATTR_TM_PROTOCOLS]);
814 
815 	if (info->attrs[NFC_ATTR_IM_PROTOCOLS])
816 		im_protocols = nla_get_u32(info->attrs[NFC_ATTR_IM_PROTOCOLS]);
817 	else if (info->attrs[NFC_ATTR_PROTOCOLS])
818 		im_protocols = nla_get_u32(info->attrs[NFC_ATTR_PROTOCOLS]);
819 
820 	dev = nfc_get_device(idx);
821 	if (!dev)
822 		return -ENODEV;
823 
824 	mutex_lock(&dev->genl_data.genl_data_mutex);
825 
826 	rc = nfc_start_poll(dev, im_protocols, tm_protocols);
827 	if (!rc)
828 		dev->genl_data.poll_req_portid = info->snd_portid;
829 
830 	mutex_unlock(&dev->genl_data.genl_data_mutex);
831 
832 	nfc_put_device(dev);
833 	return rc;
834 }
835 
836 static int nfc_genl_stop_poll(struct sk_buff *skb, struct genl_info *info)
837 {
838 	struct nfc_dev *dev;
839 	int rc;
840 	u32 idx;
841 
842 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX])
843 		return -EINVAL;
844 
845 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
846 
847 	dev = nfc_get_device(idx);
848 	if (!dev)
849 		return -ENODEV;
850 
851 	device_lock(&dev->dev);
852 
853 	if (!dev->polling) {
854 		device_unlock(&dev->dev);
855 		return -EINVAL;
856 	}
857 
858 	device_unlock(&dev->dev);
859 
860 	mutex_lock(&dev->genl_data.genl_data_mutex);
861 
862 	if (dev->genl_data.poll_req_portid != info->snd_portid) {
863 		rc = -EBUSY;
864 		goto out;
865 	}
866 
867 	rc = nfc_stop_poll(dev);
868 	dev->genl_data.poll_req_portid = 0;
869 
870 out:
871 	mutex_unlock(&dev->genl_data.genl_data_mutex);
872 	nfc_put_device(dev);
873 	return rc;
874 }
875 
876 static int nfc_genl_activate_target(struct sk_buff *skb, struct genl_info *info)
877 {
878 	struct nfc_dev *dev;
879 	u32 device_idx, target_idx, protocol;
880 	int rc;
881 
882 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
883 	    !info->attrs[NFC_ATTR_TARGET_INDEX] ||
884 	    !info->attrs[NFC_ATTR_PROTOCOLS])
885 		return -EINVAL;
886 
887 	device_idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
888 
889 	dev = nfc_get_device(device_idx);
890 	if (!dev)
891 		return -ENODEV;
892 
893 	target_idx = nla_get_u32(info->attrs[NFC_ATTR_TARGET_INDEX]);
894 	protocol = nla_get_u32(info->attrs[NFC_ATTR_PROTOCOLS]);
895 
896 	nfc_deactivate_target(dev, target_idx, NFC_TARGET_MODE_SLEEP);
897 	rc = nfc_activate_target(dev, target_idx, protocol);
898 
899 	nfc_put_device(dev);
900 	return rc;
901 }
902 
903 static int nfc_genl_deactivate_target(struct sk_buff *skb,
904 				      struct genl_info *info)
905 {
906 	struct nfc_dev *dev;
907 	u32 device_idx, target_idx;
908 	int rc;
909 
910 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
911 	    !info->attrs[NFC_ATTR_TARGET_INDEX])
912 		return -EINVAL;
913 
914 	device_idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
915 
916 	dev = nfc_get_device(device_idx);
917 	if (!dev)
918 		return -ENODEV;
919 
920 	target_idx = nla_get_u32(info->attrs[NFC_ATTR_TARGET_INDEX]);
921 
922 	rc = nfc_deactivate_target(dev, target_idx, NFC_TARGET_MODE_SLEEP);
923 
924 	nfc_put_device(dev);
925 	return rc;
926 }
927 
928 static int nfc_genl_dep_link_up(struct sk_buff *skb, struct genl_info *info)
929 {
930 	struct nfc_dev *dev;
931 	int rc, tgt_idx;
932 	u32 idx;
933 	u8 comm;
934 
935 	pr_debug("DEP link up\n");
936 
937 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
938 	    !info->attrs[NFC_ATTR_COMM_MODE])
939 		return -EINVAL;
940 
941 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
942 	if (!info->attrs[NFC_ATTR_TARGET_INDEX])
943 		tgt_idx = NFC_TARGET_IDX_ANY;
944 	else
945 		tgt_idx = nla_get_u32(info->attrs[NFC_ATTR_TARGET_INDEX]);
946 
947 	comm = nla_get_u8(info->attrs[NFC_ATTR_COMM_MODE]);
948 
949 	if (comm != NFC_COMM_ACTIVE && comm != NFC_COMM_PASSIVE)
950 		return -EINVAL;
951 
952 	dev = nfc_get_device(idx);
953 	if (!dev)
954 		return -ENODEV;
955 
956 	rc = nfc_dep_link_up(dev, tgt_idx, comm);
957 
958 	nfc_put_device(dev);
959 
960 	return rc;
961 }
962 
963 static int nfc_genl_dep_link_down(struct sk_buff *skb, struct genl_info *info)
964 {
965 	struct nfc_dev *dev;
966 	int rc;
967 	u32 idx;
968 
969 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
970 	    !info->attrs[NFC_ATTR_TARGET_INDEX])
971 		return -EINVAL;
972 
973 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
974 
975 	dev = nfc_get_device(idx);
976 	if (!dev)
977 		return -ENODEV;
978 
979 	rc = nfc_dep_link_down(dev);
980 
981 	nfc_put_device(dev);
982 	return rc;
983 }
984 
985 static int nfc_genl_send_params(struct sk_buff *msg,
986 				struct nfc_llcp_local *local,
987 				u32 portid, u32 seq)
988 {
989 	void *hdr;
990 
991 	hdr = genlmsg_put(msg, portid, seq, &nfc_genl_family, 0,
992 			  NFC_CMD_LLC_GET_PARAMS);
993 	if (!hdr)
994 		return -EMSGSIZE;
995 
996 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, local->dev->idx) ||
997 	    nla_put_u8(msg, NFC_ATTR_LLC_PARAM_LTO, local->lto) ||
998 	    nla_put_u8(msg, NFC_ATTR_LLC_PARAM_RW, local->rw) ||
999 	    nla_put_u16(msg, NFC_ATTR_LLC_PARAM_MIUX, be16_to_cpu(local->miux)))
1000 		goto nla_put_failure;
1001 
1002 	genlmsg_end(msg, hdr);
1003 	return 0;
1004 
1005 nla_put_failure:
1006 	genlmsg_cancel(msg, hdr);
1007 	return -EMSGSIZE;
1008 }
1009 
1010 static int nfc_genl_llc_get_params(struct sk_buff *skb, struct genl_info *info)
1011 {
1012 	struct nfc_dev *dev;
1013 	struct nfc_llcp_local *local;
1014 	int rc = 0;
1015 	struct sk_buff *msg = NULL;
1016 	u32 idx;
1017 
1018 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1019 	    !info->attrs[NFC_ATTR_FIRMWARE_NAME])
1020 		return -EINVAL;
1021 
1022 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1023 
1024 	dev = nfc_get_device(idx);
1025 	if (!dev)
1026 		return -ENODEV;
1027 
1028 	device_lock(&dev->dev);
1029 
1030 	local = nfc_llcp_find_local(dev);
1031 	if (!local) {
1032 		rc = -ENODEV;
1033 		goto exit;
1034 	}
1035 
1036 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
1037 	if (!msg) {
1038 		rc = -ENOMEM;
1039 		goto exit;
1040 	}
1041 
1042 	rc = nfc_genl_send_params(msg, local, info->snd_portid, info->snd_seq);
1043 
1044 exit:
1045 	device_unlock(&dev->dev);
1046 
1047 	nfc_put_device(dev);
1048 
1049 	if (rc < 0) {
1050 		if (msg)
1051 			nlmsg_free(msg);
1052 
1053 		return rc;
1054 	}
1055 
1056 	return genlmsg_reply(msg, info);
1057 }
1058 
1059 static int nfc_genl_llc_set_params(struct sk_buff *skb, struct genl_info *info)
1060 {
1061 	struct nfc_dev *dev;
1062 	struct nfc_llcp_local *local;
1063 	u8 rw = 0;
1064 	u16 miux = 0;
1065 	u32 idx;
1066 	int rc = 0;
1067 
1068 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1069 	    (!info->attrs[NFC_ATTR_LLC_PARAM_LTO] &&
1070 	     !info->attrs[NFC_ATTR_LLC_PARAM_RW] &&
1071 	     !info->attrs[NFC_ATTR_LLC_PARAM_MIUX]))
1072 		return -EINVAL;
1073 
1074 	if (info->attrs[NFC_ATTR_LLC_PARAM_RW]) {
1075 		rw = nla_get_u8(info->attrs[NFC_ATTR_LLC_PARAM_RW]);
1076 
1077 		if (rw > LLCP_MAX_RW)
1078 			return -EINVAL;
1079 	}
1080 
1081 	if (info->attrs[NFC_ATTR_LLC_PARAM_MIUX]) {
1082 		miux = nla_get_u16(info->attrs[NFC_ATTR_LLC_PARAM_MIUX]);
1083 
1084 		if (miux > LLCP_MAX_MIUX)
1085 			return -EINVAL;
1086 	}
1087 
1088 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1089 
1090 	dev = nfc_get_device(idx);
1091 	if (!dev)
1092 		return -ENODEV;
1093 
1094 	device_lock(&dev->dev);
1095 
1096 	local = nfc_llcp_find_local(dev);
1097 	if (!local) {
1098 		rc = -ENODEV;
1099 		goto exit;
1100 	}
1101 
1102 	if (info->attrs[NFC_ATTR_LLC_PARAM_LTO]) {
1103 		if (dev->dep_link_up) {
1104 			rc = -EINPROGRESS;
1105 			goto exit;
1106 		}
1107 
1108 		local->lto = nla_get_u8(info->attrs[NFC_ATTR_LLC_PARAM_LTO]);
1109 	}
1110 
1111 	if (info->attrs[NFC_ATTR_LLC_PARAM_RW])
1112 		local->rw = rw;
1113 
1114 	if (info->attrs[NFC_ATTR_LLC_PARAM_MIUX])
1115 		local->miux = cpu_to_be16(miux);
1116 
1117 exit:
1118 	device_unlock(&dev->dev);
1119 
1120 	nfc_put_device(dev);
1121 
1122 	return rc;
1123 }
1124 
1125 static int nfc_genl_llc_sdreq(struct sk_buff *skb, struct genl_info *info)
1126 {
1127 	struct nfc_dev *dev;
1128 	struct nfc_llcp_local *local;
1129 	struct nlattr *attr, *sdp_attrs[NFC_SDP_ATTR_MAX+1];
1130 	u32 idx;
1131 	u8 tid;
1132 	char *uri;
1133 	int rc = 0, rem;
1134 	size_t uri_len, tlvs_len;
1135 	struct hlist_head sdreq_list;
1136 	struct nfc_llcp_sdp_tlv *sdreq;
1137 
1138 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1139 	    !info->attrs[NFC_ATTR_LLC_SDP])
1140 		return -EINVAL;
1141 
1142 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1143 
1144 	dev = nfc_get_device(idx);
1145 	if (!dev)
1146 		return -ENODEV;
1147 
1148 	device_lock(&dev->dev);
1149 
1150 	if (dev->dep_link_up == false) {
1151 		rc = -ENOLINK;
1152 		goto exit;
1153 	}
1154 
1155 	local = nfc_llcp_find_local(dev);
1156 	if (!local) {
1157 		rc = -ENODEV;
1158 		goto exit;
1159 	}
1160 
1161 	INIT_HLIST_HEAD(&sdreq_list);
1162 
1163 	tlvs_len = 0;
1164 
1165 	nla_for_each_nested(attr, info->attrs[NFC_ATTR_LLC_SDP], rem) {
1166 		rc = nla_parse_nested_deprecated(sdp_attrs, NFC_SDP_ATTR_MAX,
1167 						 attr, nfc_sdp_genl_policy,
1168 						 info->extack);
1169 
1170 		if (rc != 0) {
1171 			rc = -EINVAL;
1172 			goto exit;
1173 		}
1174 
1175 		if (!sdp_attrs[NFC_SDP_ATTR_URI])
1176 			continue;
1177 
1178 		uri_len = nla_len(sdp_attrs[NFC_SDP_ATTR_URI]);
1179 		if (uri_len == 0)
1180 			continue;
1181 
1182 		uri = nla_data(sdp_attrs[NFC_SDP_ATTR_URI]);
1183 		if (uri == NULL || *uri == 0)
1184 			continue;
1185 
1186 		tid = local->sdreq_next_tid++;
1187 
1188 		sdreq = nfc_llcp_build_sdreq_tlv(tid, uri, uri_len);
1189 		if (sdreq == NULL) {
1190 			rc = -ENOMEM;
1191 			goto exit;
1192 		}
1193 
1194 		tlvs_len += sdreq->tlv_len;
1195 
1196 		hlist_add_head(&sdreq->node, &sdreq_list);
1197 	}
1198 
1199 	if (hlist_empty(&sdreq_list)) {
1200 		rc = -EINVAL;
1201 		goto exit;
1202 	}
1203 
1204 	rc = nfc_llcp_send_snl_sdreq(local, &sdreq_list, tlvs_len);
1205 exit:
1206 	device_unlock(&dev->dev);
1207 
1208 	nfc_put_device(dev);
1209 
1210 	return rc;
1211 }
1212 
1213 static int nfc_genl_fw_download(struct sk_buff *skb, struct genl_info *info)
1214 {
1215 	struct nfc_dev *dev;
1216 	int rc;
1217 	u32 idx;
1218 	char firmware_name[NFC_FIRMWARE_NAME_MAXSIZE + 1];
1219 
1220 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX])
1221 		return -EINVAL;
1222 
1223 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1224 
1225 	dev = nfc_get_device(idx);
1226 	if (!dev)
1227 		return -ENODEV;
1228 
1229 	nla_strlcpy(firmware_name, info->attrs[NFC_ATTR_FIRMWARE_NAME],
1230 		    sizeof(firmware_name));
1231 
1232 	rc = nfc_fw_download(dev, firmware_name);
1233 
1234 	nfc_put_device(dev);
1235 	return rc;
1236 }
1237 
1238 int nfc_genl_fw_download_done(struct nfc_dev *dev, const char *firmware_name,
1239 			      u32 result)
1240 {
1241 	struct sk_buff *msg;
1242 	void *hdr;
1243 
1244 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
1245 	if (!msg)
1246 		return -ENOMEM;
1247 
1248 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
1249 			  NFC_CMD_FW_DOWNLOAD);
1250 	if (!hdr)
1251 		goto free_msg;
1252 
1253 	if (nla_put_string(msg, NFC_ATTR_FIRMWARE_NAME, firmware_name) ||
1254 	    nla_put_u32(msg, NFC_ATTR_FIRMWARE_DOWNLOAD_STATUS, result) ||
1255 	    nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx))
1256 		goto nla_put_failure;
1257 
1258 	genlmsg_end(msg, hdr);
1259 
1260 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
1261 
1262 	return 0;
1263 
1264 nla_put_failure:
1265 free_msg:
1266 	nlmsg_free(msg);
1267 	return -EMSGSIZE;
1268 }
1269 
1270 static int nfc_genl_enable_se(struct sk_buff *skb, struct genl_info *info)
1271 {
1272 	struct nfc_dev *dev;
1273 	int rc;
1274 	u32 idx, se_idx;
1275 
1276 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1277 	    !info->attrs[NFC_ATTR_SE_INDEX])
1278 		return -EINVAL;
1279 
1280 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1281 	se_idx = nla_get_u32(info->attrs[NFC_ATTR_SE_INDEX]);
1282 
1283 	dev = nfc_get_device(idx);
1284 	if (!dev)
1285 		return -ENODEV;
1286 
1287 	rc = nfc_enable_se(dev, se_idx);
1288 
1289 	nfc_put_device(dev);
1290 	return rc;
1291 }
1292 
1293 static int nfc_genl_disable_se(struct sk_buff *skb, struct genl_info *info)
1294 {
1295 	struct nfc_dev *dev;
1296 	int rc;
1297 	u32 idx, se_idx;
1298 
1299 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1300 	    !info->attrs[NFC_ATTR_SE_INDEX])
1301 		return -EINVAL;
1302 
1303 	idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1304 	se_idx = nla_get_u32(info->attrs[NFC_ATTR_SE_INDEX]);
1305 
1306 	dev = nfc_get_device(idx);
1307 	if (!dev)
1308 		return -ENODEV;
1309 
1310 	rc = nfc_disable_se(dev, se_idx);
1311 
1312 	nfc_put_device(dev);
1313 	return rc;
1314 }
1315 
1316 static int nfc_genl_send_se(struct sk_buff *msg, struct nfc_dev *dev,
1317 				u32 portid, u32 seq,
1318 				struct netlink_callback *cb,
1319 				int flags)
1320 {
1321 	void *hdr;
1322 	struct nfc_se *se, *n;
1323 
1324 	list_for_each_entry_safe(se, n, &dev->secure_elements, list) {
1325 		hdr = genlmsg_put(msg, portid, seq, &nfc_genl_family, flags,
1326 				  NFC_CMD_GET_SE);
1327 		if (!hdr)
1328 			goto nla_put_failure;
1329 
1330 		if (cb)
1331 			genl_dump_check_consistent(cb, hdr);
1332 
1333 		if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, dev->idx) ||
1334 		    nla_put_u32(msg, NFC_ATTR_SE_INDEX, se->idx) ||
1335 		    nla_put_u8(msg, NFC_ATTR_SE_TYPE, se->type))
1336 			goto nla_put_failure;
1337 
1338 		genlmsg_end(msg, hdr);
1339 	}
1340 
1341 	return 0;
1342 
1343 nla_put_failure:
1344 	genlmsg_cancel(msg, hdr);
1345 	return -EMSGSIZE;
1346 }
1347 
1348 static int nfc_genl_dump_ses(struct sk_buff *skb,
1349 				 struct netlink_callback *cb)
1350 {
1351 	struct class_dev_iter *iter = (struct class_dev_iter *) cb->args[0];
1352 	struct nfc_dev *dev = (struct nfc_dev *) cb->args[1];
1353 	bool first_call = false;
1354 
1355 	if (!iter) {
1356 		first_call = true;
1357 		iter = kmalloc(sizeof(struct class_dev_iter), GFP_KERNEL);
1358 		if (!iter)
1359 			return -ENOMEM;
1360 		cb->args[0] = (long) iter;
1361 	}
1362 
1363 	mutex_lock(&nfc_devlist_mutex);
1364 
1365 	cb->seq = nfc_devlist_generation;
1366 
1367 	if (first_call) {
1368 		nfc_device_iter_init(iter);
1369 		dev = nfc_device_iter_next(iter);
1370 	}
1371 
1372 	while (dev) {
1373 		int rc;
1374 
1375 		rc = nfc_genl_send_se(skb, dev, NETLINK_CB(cb->skb).portid,
1376 					  cb->nlh->nlmsg_seq, cb, NLM_F_MULTI);
1377 		if (rc < 0)
1378 			break;
1379 
1380 		dev = nfc_device_iter_next(iter);
1381 	}
1382 
1383 	mutex_unlock(&nfc_devlist_mutex);
1384 
1385 	cb->args[1] = (long) dev;
1386 
1387 	return skb->len;
1388 }
1389 
1390 static int nfc_genl_dump_ses_done(struct netlink_callback *cb)
1391 {
1392 	struct class_dev_iter *iter = (struct class_dev_iter *) cb->args[0];
1393 
1394 	nfc_device_iter_exit(iter);
1395 	kfree(iter);
1396 
1397 	return 0;
1398 }
1399 
1400 static int nfc_se_io(struct nfc_dev *dev, u32 se_idx,
1401 		     u8 *apdu, size_t apdu_length,
1402 		     se_io_cb_t cb, void *cb_context)
1403 {
1404 	struct nfc_se *se;
1405 	int rc;
1406 
1407 	pr_debug("%s se index %d\n", dev_name(&dev->dev), se_idx);
1408 
1409 	device_lock(&dev->dev);
1410 
1411 	if (!device_is_registered(&dev->dev)) {
1412 		rc = -ENODEV;
1413 		goto error;
1414 	}
1415 
1416 	if (!dev->dev_up) {
1417 		rc = -ENODEV;
1418 		goto error;
1419 	}
1420 
1421 	if (!dev->ops->se_io) {
1422 		rc = -EOPNOTSUPP;
1423 		goto error;
1424 	}
1425 
1426 	se = nfc_find_se(dev, se_idx);
1427 	if (!se) {
1428 		rc = -EINVAL;
1429 		goto error;
1430 	}
1431 
1432 	if (se->state != NFC_SE_ENABLED) {
1433 		rc = -ENODEV;
1434 		goto error;
1435 	}
1436 
1437 	rc = dev->ops->se_io(dev, se_idx, apdu,
1438 			apdu_length, cb, cb_context);
1439 
1440 error:
1441 	device_unlock(&dev->dev);
1442 	return rc;
1443 }
1444 
1445 struct se_io_ctx {
1446 	u32 dev_idx;
1447 	u32 se_idx;
1448 };
1449 
1450 static void se_io_cb(void *context, u8 *apdu, size_t apdu_len, int err)
1451 {
1452 	struct se_io_ctx *ctx = context;
1453 	struct sk_buff *msg;
1454 	void *hdr;
1455 
1456 	msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
1457 	if (!msg) {
1458 		kfree(ctx);
1459 		return;
1460 	}
1461 
1462 	hdr = genlmsg_put(msg, 0, 0, &nfc_genl_family, 0,
1463 			  NFC_CMD_SE_IO);
1464 	if (!hdr)
1465 		goto free_msg;
1466 
1467 	if (nla_put_u32(msg, NFC_ATTR_DEVICE_INDEX, ctx->dev_idx) ||
1468 	    nla_put_u32(msg, NFC_ATTR_SE_INDEX, ctx->se_idx) ||
1469 	    nla_put(msg, NFC_ATTR_SE_APDU, apdu_len, apdu))
1470 		goto nla_put_failure;
1471 
1472 	genlmsg_end(msg, hdr);
1473 
1474 	genlmsg_multicast(&nfc_genl_family, msg, 0, 0, GFP_KERNEL);
1475 
1476 	kfree(ctx);
1477 
1478 	return;
1479 
1480 nla_put_failure:
1481 free_msg:
1482 	nlmsg_free(msg);
1483 	kfree(ctx);
1484 
1485 	return;
1486 }
1487 
1488 static int nfc_genl_se_io(struct sk_buff *skb, struct genl_info *info)
1489 {
1490 	struct nfc_dev *dev;
1491 	struct se_io_ctx *ctx;
1492 	u32 dev_idx, se_idx;
1493 	u8 *apdu;
1494 	size_t apdu_len;
1495 
1496 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1497 	    !info->attrs[NFC_ATTR_SE_INDEX] ||
1498 	    !info->attrs[NFC_ATTR_SE_APDU])
1499 		return -EINVAL;
1500 
1501 	dev_idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1502 	se_idx = nla_get_u32(info->attrs[NFC_ATTR_SE_INDEX]);
1503 
1504 	dev = nfc_get_device(dev_idx);
1505 	if (!dev)
1506 		return -ENODEV;
1507 
1508 	if (!dev->ops || !dev->ops->se_io)
1509 		return -ENOTSUPP;
1510 
1511 	apdu_len = nla_len(info->attrs[NFC_ATTR_SE_APDU]);
1512 	if (apdu_len == 0)
1513 		return -EINVAL;
1514 
1515 	apdu = nla_data(info->attrs[NFC_ATTR_SE_APDU]);
1516 	if (!apdu)
1517 		return -EINVAL;
1518 
1519 	ctx = kzalloc(sizeof(struct se_io_ctx), GFP_KERNEL);
1520 	if (!ctx)
1521 		return -ENOMEM;
1522 
1523 	ctx->dev_idx = dev_idx;
1524 	ctx->se_idx = se_idx;
1525 
1526 	return nfc_se_io(dev, se_idx, apdu, apdu_len, se_io_cb, ctx);
1527 }
1528 
1529 static int nfc_genl_vendor_cmd(struct sk_buff *skb,
1530 			       struct genl_info *info)
1531 {
1532 	struct nfc_dev *dev;
1533 	struct nfc_vendor_cmd *cmd;
1534 	u32 dev_idx, vid, subcmd;
1535 	u8 *data;
1536 	size_t data_len;
1537 	int i, err;
1538 
1539 	if (!info->attrs[NFC_ATTR_DEVICE_INDEX] ||
1540 	    !info->attrs[NFC_ATTR_VENDOR_ID] ||
1541 	    !info->attrs[NFC_ATTR_VENDOR_SUBCMD])
1542 		return -EINVAL;
1543 
1544 	dev_idx = nla_get_u32(info->attrs[NFC_ATTR_DEVICE_INDEX]);
1545 	vid = nla_get_u32(info->attrs[NFC_ATTR_VENDOR_ID]);
1546 	subcmd = nla_get_u32(info->attrs[NFC_ATTR_VENDOR_SUBCMD]);
1547 
1548 	dev = nfc_get_device(dev_idx);
1549 	if (!dev || !dev->vendor_cmds || !dev->n_vendor_cmds)
1550 		return -ENODEV;
1551 
1552 	if (info->attrs[NFC_ATTR_VENDOR_DATA]) {
1553 		data = nla_data(info->attrs[NFC_ATTR_VENDOR_DATA]);
1554 		data_len = nla_len(info->attrs[NFC_ATTR_VENDOR_DATA]);
1555 		if (data_len == 0)
1556 			return -EINVAL;
1557 	} else {
1558 		data = NULL;
1559 		data_len = 0;
1560 	}
1561 
1562 	for (i = 0; i < dev->n_vendor_cmds; i++) {
1563 		cmd = &dev->vendor_cmds[i];
1564 
1565 		if (cmd->vendor_id != vid || cmd->subcmd != subcmd)
1566 			continue;
1567 
1568 		dev->cur_cmd_info = info;
1569 		err = cmd->doit(dev, data, data_len);
1570 		dev->cur_cmd_info = NULL;
1571 		return err;
1572 	}
1573 
1574 	return -EOPNOTSUPP;
1575 }
1576 
1577 /* message building helper */
1578 static inline void *nfc_hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
1579 				int flags, u8 cmd)
1580 {
1581 	/* since there is no private header just add the generic one */
1582 	return genlmsg_put(skb, portid, seq, &nfc_genl_family, flags, cmd);
1583 }
1584 
1585 static struct sk_buff *
1586 __nfc_alloc_vendor_cmd_skb(struct nfc_dev *dev, int approxlen,
1587 			   u32 portid, u32 seq,
1588 			   enum nfc_attrs attr,
1589 			   u32 oui, u32 subcmd, gfp_t gfp)
1590 {
1591 	struct sk_buff *skb;
1592 	void *hdr;
1593 
1594 	skb = nlmsg_new(approxlen + 100, gfp);
1595 	if (!skb)
1596 		return NULL;
1597 
1598 	hdr = nfc_hdr_put(skb, portid, seq, 0, NFC_CMD_VENDOR);
1599 	if (!hdr) {
1600 		kfree_skb(skb);
1601 		return NULL;
1602 	}
1603 
1604 	if (nla_put_u32(skb, NFC_ATTR_DEVICE_INDEX, dev->idx))
1605 		goto nla_put_failure;
1606 	if (nla_put_u32(skb, NFC_ATTR_VENDOR_ID, oui))
1607 		goto nla_put_failure;
1608 	if (nla_put_u32(skb, NFC_ATTR_VENDOR_SUBCMD, subcmd))
1609 		goto nla_put_failure;
1610 
1611 	((void **)skb->cb)[0] = dev;
1612 	((void **)skb->cb)[1] = hdr;
1613 
1614 	return skb;
1615 
1616 nla_put_failure:
1617 	kfree_skb(skb);
1618 	return NULL;
1619 }
1620 
1621 struct sk_buff *__nfc_alloc_vendor_cmd_reply_skb(struct nfc_dev *dev,
1622 						 enum nfc_attrs attr,
1623 						 u32 oui, u32 subcmd,
1624 						 int approxlen)
1625 {
1626 	if (WARN_ON(!dev->cur_cmd_info))
1627 		return NULL;
1628 
1629 	return __nfc_alloc_vendor_cmd_skb(dev, approxlen,
1630 					  dev->cur_cmd_info->snd_portid,
1631 					  dev->cur_cmd_info->snd_seq, attr,
1632 					  oui, subcmd, GFP_KERNEL);
1633 }
1634 EXPORT_SYMBOL(__nfc_alloc_vendor_cmd_reply_skb);
1635 
1636 int nfc_vendor_cmd_reply(struct sk_buff *skb)
1637 {
1638 	struct nfc_dev *dev = ((void **)skb->cb)[0];
1639 	void *hdr = ((void **)skb->cb)[1];
1640 
1641 	/* clear CB data for netlink core to own from now on */
1642 	memset(skb->cb, 0, sizeof(skb->cb));
1643 
1644 	if (WARN_ON(!dev->cur_cmd_info)) {
1645 		kfree_skb(skb);
1646 		return -EINVAL;
1647 	}
1648 
1649 	genlmsg_end(skb, hdr);
1650 	return genlmsg_reply(skb, dev->cur_cmd_info);
1651 }
1652 EXPORT_SYMBOL(nfc_vendor_cmd_reply);
1653 
1654 static const struct genl_ops nfc_genl_ops[] = {
1655 	{
1656 		.cmd = NFC_CMD_GET_DEVICE,
1657 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1658 		.doit = nfc_genl_get_device,
1659 		.dumpit = nfc_genl_dump_devices,
1660 		.done = nfc_genl_dump_devices_done,
1661 	},
1662 	{
1663 		.cmd = NFC_CMD_DEV_UP,
1664 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1665 		.doit = nfc_genl_dev_up,
1666 	},
1667 	{
1668 		.cmd = NFC_CMD_DEV_DOWN,
1669 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1670 		.doit = nfc_genl_dev_down,
1671 	},
1672 	{
1673 		.cmd = NFC_CMD_START_POLL,
1674 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1675 		.doit = nfc_genl_start_poll,
1676 	},
1677 	{
1678 		.cmd = NFC_CMD_STOP_POLL,
1679 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1680 		.doit = nfc_genl_stop_poll,
1681 	},
1682 	{
1683 		.cmd = NFC_CMD_DEP_LINK_UP,
1684 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1685 		.doit = nfc_genl_dep_link_up,
1686 	},
1687 	{
1688 		.cmd = NFC_CMD_DEP_LINK_DOWN,
1689 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1690 		.doit = nfc_genl_dep_link_down,
1691 	},
1692 	{
1693 		.cmd = NFC_CMD_GET_TARGET,
1694 		.validate = GENL_DONT_VALIDATE_STRICT |
1695 			    GENL_DONT_VALIDATE_DUMP_STRICT,
1696 		.dumpit = nfc_genl_dump_targets,
1697 		.done = nfc_genl_dump_targets_done,
1698 	},
1699 	{
1700 		.cmd = NFC_CMD_LLC_GET_PARAMS,
1701 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1702 		.doit = nfc_genl_llc_get_params,
1703 	},
1704 	{
1705 		.cmd = NFC_CMD_LLC_SET_PARAMS,
1706 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1707 		.doit = nfc_genl_llc_set_params,
1708 	},
1709 	{
1710 		.cmd = NFC_CMD_LLC_SDREQ,
1711 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1712 		.doit = nfc_genl_llc_sdreq,
1713 	},
1714 	{
1715 		.cmd = NFC_CMD_FW_DOWNLOAD,
1716 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1717 		.doit = nfc_genl_fw_download,
1718 	},
1719 	{
1720 		.cmd = NFC_CMD_ENABLE_SE,
1721 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1722 		.doit = nfc_genl_enable_se,
1723 	},
1724 	{
1725 		.cmd = NFC_CMD_DISABLE_SE,
1726 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1727 		.doit = nfc_genl_disable_se,
1728 	},
1729 	{
1730 		.cmd = NFC_CMD_GET_SE,
1731 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1732 		.dumpit = nfc_genl_dump_ses,
1733 		.done = nfc_genl_dump_ses_done,
1734 	},
1735 	{
1736 		.cmd = NFC_CMD_SE_IO,
1737 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1738 		.doit = nfc_genl_se_io,
1739 	},
1740 	{
1741 		.cmd = NFC_CMD_ACTIVATE_TARGET,
1742 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1743 		.doit = nfc_genl_activate_target,
1744 	},
1745 	{
1746 		.cmd = NFC_CMD_VENDOR,
1747 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1748 		.doit = nfc_genl_vendor_cmd,
1749 	},
1750 	{
1751 		.cmd = NFC_CMD_DEACTIVATE_TARGET,
1752 		.validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
1753 		.doit = nfc_genl_deactivate_target,
1754 	},
1755 };
1756 
1757 static struct genl_family nfc_genl_family __ro_after_init = {
1758 	.hdrsize = 0,
1759 	.name = NFC_GENL_NAME,
1760 	.version = NFC_GENL_VERSION,
1761 	.maxattr = NFC_ATTR_MAX,
1762 	.policy = nfc_genl_policy,
1763 	.module = THIS_MODULE,
1764 	.ops = nfc_genl_ops,
1765 	.n_ops = ARRAY_SIZE(nfc_genl_ops),
1766 	.mcgrps = nfc_genl_mcgrps,
1767 	.n_mcgrps = ARRAY_SIZE(nfc_genl_mcgrps),
1768 };
1769 
1770 
1771 struct urelease_work {
1772 	struct	work_struct w;
1773 	u32	portid;
1774 };
1775 
1776 static void nfc_urelease_event_work(struct work_struct *work)
1777 {
1778 	struct urelease_work *w = container_of(work, struct urelease_work, w);
1779 	struct class_dev_iter iter;
1780 	struct nfc_dev *dev;
1781 
1782 	pr_debug("portid %d\n", w->portid);
1783 
1784 	mutex_lock(&nfc_devlist_mutex);
1785 
1786 	nfc_device_iter_init(&iter);
1787 	dev = nfc_device_iter_next(&iter);
1788 
1789 	while (dev) {
1790 		mutex_lock(&dev->genl_data.genl_data_mutex);
1791 
1792 		if (dev->genl_data.poll_req_portid == w->portid) {
1793 			nfc_stop_poll(dev);
1794 			dev->genl_data.poll_req_portid = 0;
1795 		}
1796 
1797 		mutex_unlock(&dev->genl_data.genl_data_mutex);
1798 
1799 		dev = nfc_device_iter_next(&iter);
1800 	}
1801 
1802 	nfc_device_iter_exit(&iter);
1803 
1804 	mutex_unlock(&nfc_devlist_mutex);
1805 
1806 	kfree(w);
1807 }
1808 
1809 static int nfc_genl_rcv_nl_event(struct notifier_block *this,
1810 				 unsigned long event, void *ptr)
1811 {
1812 	struct netlink_notify *n = ptr;
1813 	struct urelease_work *w;
1814 
1815 	if (event != NETLINK_URELEASE || n->protocol != NETLINK_GENERIC)
1816 		goto out;
1817 
1818 	pr_debug("NETLINK_URELEASE event from id %d\n", n->portid);
1819 
1820 	w = kmalloc(sizeof(*w), GFP_ATOMIC);
1821 	if (w) {
1822 		INIT_WORK((struct work_struct *) w, nfc_urelease_event_work);
1823 		w->portid = n->portid;
1824 		schedule_work((struct work_struct *) w);
1825 	}
1826 
1827 out:
1828 	return NOTIFY_DONE;
1829 }
1830 
1831 void nfc_genl_data_init(struct nfc_genl_data *genl_data)
1832 {
1833 	genl_data->poll_req_portid = 0;
1834 	mutex_init(&genl_data->genl_data_mutex);
1835 }
1836 
1837 void nfc_genl_data_exit(struct nfc_genl_data *genl_data)
1838 {
1839 	mutex_destroy(&genl_data->genl_data_mutex);
1840 }
1841 
1842 static struct notifier_block nl_notifier = {
1843 	.notifier_call  = nfc_genl_rcv_nl_event,
1844 };
1845 
1846 /**
1847  * nfc_genl_init() - Initialize netlink interface
1848  *
1849  * This initialization function registers the nfc netlink family.
1850  */
1851 int __init nfc_genl_init(void)
1852 {
1853 	int rc;
1854 
1855 	rc = genl_register_family(&nfc_genl_family);
1856 	if (rc)
1857 		return rc;
1858 
1859 	netlink_register_notifier(&nl_notifier);
1860 
1861 	return 0;
1862 }
1863 
1864 /**
1865  * nfc_genl_exit() - Deinitialize netlink interface
1866  *
1867  * This exit function unregisters the nfc netlink family.
1868  */
1869 void nfc_genl_exit(void)
1870 {
1871 	netlink_unregister_notifier(&nl_notifier);
1872 	genl_unregister_family(&nfc_genl_family);
1873 }
1874