source: mainline/uspace/lib/drv/generic/remote_usbhc.c@ b688fd8

lfn serial ticket/834-toolchain-update topic/msim-upgrade topic/simplify-dev-export
Last change on this file since b688fd8 was 99172baf, checked in by Martin Decky <martin@…>, 11 years ago

the error branch should terminate the function (also avoiding use after free of trans)
(detected by Coverity, CID 10449)
  • Property mode set to 100644
File size: 18.0 KB
Line 
1/*
2 * Copyright (c) 2010-2011 Vojtech Horky
3 * Copyright (c) 2011 Jan Vesely
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * - Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * - Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * - The name of the author may not be used to endorse or promote products
16 * derived from this software without specific prior written permission.
17 *
18 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
19 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
21 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
22 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
23 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
24 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
25 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
26 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
27 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
28 */
29
30/** @addtogroup libdrv
31 * @{
32 */
33/** @file
34 */
35
36#include <async.h>
37#include <errno.h>
38#include <assert.h>
39#include <macros.h>
40
41#include "usbhc_iface.h"
42#include "ddf/driver.h"
43
44#define USB_MAX_PAYLOAD_SIZE 1020
45
46/** IPC methods for communication with HC through DDF interface.
47 *
48 * Notes for async methods:
49 *
50 * Methods for sending data to device (OUT transactions)
51 * - e.g. IPC_M_USBHC_INTERRUPT_OUT -
52 * always use the same semantics:
53 * - first, IPC call with given method is made
54 * - argument #1 is target address
55 * - argument #2 is target endpoint
56 * - argument #3 is max packet size of the endpoint
57 * - this call is immediately followed by IPC data write (from caller)
58 * - the initial call (and the whole transaction) is answer after the
59 * transaction is scheduled by the HC and acknowledged by the device
60 * or immediately after error is detected
61 * - the answer carries only the error code
62 *
63 * Methods for retrieving data from device (IN transactions)
64 * - e.g. IPC_M_USBHC_INTERRUPT_IN -
65 * also use the same semantics:
66 * - first, IPC call with given method is made
67 * - argument #1 is target address
68 * - argument #2 is target endpoint
69 * - this call is immediately followed by IPC data read (async version)
70 * - the call is not answered until the device returns some data (or until
71 * error occurs)
72 *
73 * Some special methods (NO-DATA transactions) do not send any data. These
74 * might behave as both OUT or IN transactions because communication parts
75 * where actual buffers are exchanged are omitted.
76 **
77 * For all these methods, wrap functions exists. Important rule: functions
78 * for IN transactions have (as parameters) buffers where retrieved data
79 * will be stored. These buffers must be already allocated and shall not be
80 * touch until the transaction is completed
81 * (e.g. not before calling usb_wait_for() with appropriate handle).
82 * OUT transactions buffers can be freed immediately after call is dispatched
83 * (i.e. after return from wrapping function).
84 *
85 */
86typedef enum {
87 /** Asks for address assignment by host controller.
88 * Answer:
89 * - ELIMIT - host controller run out of address
90 * - EOK - address assigned
91 * Answer arguments:
92 * - assigned address
93 *
94 * The address must be released by via IPC_M_USBHC_RELEASE_ADDRESS.
95 */
96 IPC_M_USBHC_REQUEST_ADDRESS,
97
98 /** Bind USB address with devman handle.
99 * Parameters:
100 * - USB address
101 * - devman handle
102 * Answer:
103 * - EOK - address binded
104 * - ENOENT - address is not in use
105 */
106 IPC_M_USBHC_BIND_ADDRESS,
107
108 /** Get handle binded with given USB address.
109 * Parameters
110 * - USB address
111 * Answer:
112 * - EOK - address binded, first parameter is the devman handle
113 * - ENOENT - address is not in use at the moment
114 */
115 IPC_M_USBHC_GET_HANDLE_BY_ADDRESS,
116
117 /** Release address in use.
118 * Arguments:
119 * - address to be released
120 * Answer:
121 * - ENOENT - address not in use
122 * - EPERM - trying to release default USB address
123 */
124 IPC_M_USBHC_RELEASE_ADDRESS,
125
126 /** Register endpoint attributes at host controller.
127 * This is used to reserve portion of USB bandwidth.
128 * When speed is invalid, speed of the device is used.
129 * Parameters:
130 * - USB address + endpoint number
131 * - packed as ADDR << 16 + EP
132 * - speed + transfer type + direction
133 * - packed as ( SPEED << 8 + TYPE ) << 8 + DIR
134 * - maximum packet size + interval (in milliseconds)
135 * - packed as MPS << 16 + INT
136 * Answer:
137 * - EOK - reservation successful
138 * - ELIMIT - not enough bandwidth to satisfy the request
139 */
140 IPC_M_USBHC_REGISTER_ENDPOINT,
141
142 /** Revert endpoint registration.
143 * Parameters:
144 * - USB address
145 * - endpoint number
146 * - data direction
147 * Answer:
148 * - EOK - endpoint unregistered
149 * - ENOENT - unknown endpoint
150 */
151 IPC_M_USBHC_UNREGISTER_ENDPOINT,
152
153 /** Get data from device.
154 * See explanation at usb_iface_funcs_t (IN transaction).
155 */
156 IPC_M_USBHC_READ,
157
158 /** Send data to device.
159 * See explanation at usb_iface_funcs_t (OUT transaction).
160 */
161 IPC_M_USBHC_WRITE,
162} usbhc_iface_funcs_t;
163
164int usbhc_request_address(async_exch_t *exch, usb_address_t *address,
165 bool strict, usb_speed_t speed)
166{
167 if (!exch || !address)
168 return EBADMEM;
169 sysarg_t new_address;
170 const int ret = async_req_4_1(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
171 IPC_M_USBHC_REQUEST_ADDRESS, *address, strict, speed, &new_address);
172 if (ret == EOK)
173 *address = (usb_address_t)new_address;
174 return ret;
175}
176
177int usbhc_bind_address(async_exch_t *exch, usb_address_t address,
178 devman_handle_t handle)
179{
180 if (!exch)
181 return EBADMEM;
182 return async_req_3_0(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
183 IPC_M_USBHC_BIND_ADDRESS, address, handle);
184}
185
186int usbhc_get_handle(async_exch_t *exch, usb_address_t address,
187 devman_handle_t *handle)
188{
189 if (!exch)
190 return EBADMEM;
191 sysarg_t h;
192 const int ret = async_req_2_1(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
193 IPC_M_USBHC_GET_HANDLE_BY_ADDRESS, address, &h);
194 if (ret == EOK && handle)
195 *handle = (devman_handle_t)h;
196 return ret;
197}
198
199int usbhc_release_address(async_exch_t *exch, usb_address_t address)
200{
201 if (!exch)
202 return EBADMEM;
203 return async_req_2_0(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
204 IPC_M_USBHC_RELEASE_ADDRESS, address);
205}
206
207int usbhc_register_endpoint(async_exch_t *exch, usb_address_t address,
208 usb_endpoint_t endpoint, usb_transfer_type_t type,
209 usb_direction_t direction, size_t mps, unsigned interval)
210{
211 if (!exch)
212 return EBADMEM;
213 const usb_target_t target =
214 {{ .address = address, .endpoint = endpoint }};
215#define _PACK2(high, low) (((high & 0xffff) << 16) | (low & 0xffff))
216
217 return async_req_4_0(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
218 IPC_M_USBHC_REGISTER_ENDPOINT, target.packed,
219 _PACK2(type, direction), _PACK2(mps, interval));
220
221#undef _PACK2
222}
223
224int usbhc_unregister_endpoint(async_exch_t *exch, usb_address_t address,
225 usb_endpoint_t endpoint, usb_direction_t direction)
226{
227 if (!exch)
228 return EBADMEM;
229 return async_req_4_0(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
230 IPC_M_USBHC_UNREGISTER_ENDPOINT, address, endpoint, direction);
231}
232
233int usbhc_read(async_exch_t *exch, usb_address_t address,
234 usb_endpoint_t endpoint, uint64_t setup, void *data, size_t size,
235 size_t *rec_size)
236{
237 if (!exch)
238 return EBADMEM;
239
240 if (size == 0 && setup == 0)
241 return EOK;
242
243 const usb_target_t target =
244 {{ .address = address, .endpoint = endpoint }};
245
246 /* Make call identifying target USB device and type of transfer. */
247 aid_t opening_request = async_send_4(exch,
248 DEV_IFACE_ID(USBHC_DEV_IFACE),
249 IPC_M_USBHC_READ, target.packed,
250 (setup & UINT32_MAX), (setup >> 32), NULL);
251
252 if (opening_request == 0) {
253 return ENOMEM;
254 }
255
256 /* Retrieve the data. */
257 ipc_call_t data_request_call;
258 aid_t data_request =
259 async_data_read(exch, data, size, &data_request_call);
260
261 if (data_request == 0) {
262 // FIXME: How to let the other side know that we want to abort?
263 async_forget(opening_request);
264 return ENOMEM;
265 }
266
267 /* Wait for the answer. */
268 sysarg_t data_request_rc;
269 sysarg_t opening_request_rc;
270 async_wait_for(data_request, &data_request_rc);
271 async_wait_for(opening_request, &opening_request_rc);
272
273 if (data_request_rc != EOK) {
274 /* Prefer the return code of the opening request. */
275 if (opening_request_rc != EOK) {
276 return (int) opening_request_rc;
277 } else {
278 return (int) data_request_rc;
279 }
280 }
281 if (opening_request_rc != EOK) {
282 return (int) opening_request_rc;
283 }
284
285 *rec_size = IPC_GET_ARG2(data_request_call);
286 return EOK;
287}
288
289int usbhc_write(async_exch_t *exch, usb_address_t address,
290 usb_endpoint_t endpoint, uint64_t setup, const void *data, size_t size)
291{
292 if (!exch)
293 return EBADMEM;
294
295 if (size == 0 && setup == 0)
296 return EOK;
297
298 const usb_target_t target =
299 {{ .address = address, .endpoint = endpoint }};
300
301 aid_t opening_request = async_send_5(exch, DEV_IFACE_ID(USBHC_DEV_IFACE),
302 IPC_M_USBHC_WRITE, target.packed, size,
303 (setup & UINT32_MAX), (setup >> 32), NULL);
304
305 if (opening_request == 0) {
306 return ENOMEM;
307 }
308
309 /* Send the data if any. */
310 if (size > 0) {
311 const int ret = async_data_write_start(exch, data, size);
312 if (ret != EOK) {
313 async_forget(opening_request);
314 return ret;
315 }
316 }
317
318 /* Wait for the answer. */
319 sysarg_t opening_request_rc;
320 async_wait_for(opening_request, &opening_request_rc);
321
322 return (int) opening_request_rc;
323}
324
325
326static void remote_usbhc_request_address(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
327static void remote_usbhc_bind_address(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
328static void remote_usbhc_get_handle(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
329static void remote_usbhc_release_address(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
330static void remote_usbhc_register_endpoint(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
331static void remote_usbhc_unregister_endpoint(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
332static void remote_usbhc_read(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
333static void remote_usbhc_write(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
334//static void remote_usbhc(ddf_fun_t *, void *, ipc_callid_t, ipc_call_t *);
335
336/** Remote USB host controller interface operations. */
337static const remote_iface_func_ptr_t remote_usbhc_iface_ops[] = {
338 [IPC_M_USBHC_REQUEST_ADDRESS] = remote_usbhc_request_address,
339 [IPC_M_USBHC_RELEASE_ADDRESS] = remote_usbhc_release_address,
340 [IPC_M_USBHC_BIND_ADDRESS] = remote_usbhc_bind_address,
341 [IPC_M_USBHC_GET_HANDLE_BY_ADDRESS] = remote_usbhc_get_handle,
342
343 [IPC_M_USBHC_REGISTER_ENDPOINT] = remote_usbhc_register_endpoint,
344 [IPC_M_USBHC_UNREGISTER_ENDPOINT] = remote_usbhc_unregister_endpoint,
345
346 [IPC_M_USBHC_READ] = remote_usbhc_read,
347 [IPC_M_USBHC_WRITE] = remote_usbhc_write,
348};
349
350/** Remote USB host controller interface structure.
351 */
352const remote_iface_t remote_usbhc_iface = {
353 .method_count = ARRAY_SIZE(remote_usbhc_iface_ops),
354 .methods = remote_usbhc_iface_ops
355};
356
357typedef struct {
358 ipc_callid_t caller;
359 ipc_callid_t data_caller;
360 void *buffer;
361} async_transaction_t;
362
363static void async_transaction_destroy(async_transaction_t *trans)
364{
365 if (trans == NULL)
366 return;
367
368 if (trans->buffer != NULL)
369 free(trans->buffer);
370
371 free(trans);
372}
373
374static async_transaction_t *async_transaction_create(ipc_callid_t caller)
375{
376 async_transaction_t *trans = malloc(sizeof(async_transaction_t));
377 if (trans == NULL) {
378 return NULL;
379 }
380
381 trans->caller = caller;
382 trans->data_caller = 0;
383 trans->buffer = NULL;
384
385 return trans;
386}
387
388void remote_usbhc_request_address(ddf_fun_t *fun, void *iface,
389 ipc_callid_t callid, ipc_call_t *call)
390{
391 const usbhc_iface_t *usb_iface = iface;
392
393 if (!usb_iface->request_address) {
394 async_answer_0(callid, ENOTSUP);
395 return;
396 }
397
398 usb_address_t address = DEV_IPC_GET_ARG1(*call);
399 const bool strict = DEV_IPC_GET_ARG2(*call);
400 const usb_speed_t speed = DEV_IPC_GET_ARG3(*call);
401
402 const int rc = usb_iface->request_address(fun, &address, strict, speed);
403 if (rc != EOK) {
404 async_answer_0(callid, rc);
405 } else {
406 async_answer_1(callid, EOK, (sysarg_t) address);
407 }
408}
409
410void remote_usbhc_bind_address(ddf_fun_t *fun, void *iface,
411 ipc_callid_t callid, ipc_call_t *call)
412{
413 const usbhc_iface_t *usb_iface = iface;
414
415 if (!usb_iface->bind_address) {
416 async_answer_0(callid, ENOTSUP);
417 return;
418 }
419
420 const usb_address_t address = (usb_address_t) DEV_IPC_GET_ARG1(*call);
421 const devman_handle_t handle = (devman_handle_t) DEV_IPC_GET_ARG2(*call);
422
423 const int ret = usb_iface->bind_address(fun, address, handle);
424 async_answer_0(callid, ret);
425}
426
427void remote_usbhc_get_handle(ddf_fun_t *fun, void *iface,
428 ipc_callid_t callid, ipc_call_t *call)
429{
430 const usbhc_iface_t *usb_iface = iface;
431
432 if (!usb_iface->get_handle) {
433 async_answer_0(callid, ENOTSUP);
434 return;
435 }
436
437 const usb_address_t address = (usb_address_t) DEV_IPC_GET_ARG1(*call);
438 devman_handle_t handle;
439 const int ret = usb_iface->get_handle(fun, address, &handle);
440
441 if (ret == EOK) {
442 async_answer_1(callid, ret, handle);
443 } else {
444 async_answer_0(callid, ret);
445 }
446}
447
448void remote_usbhc_release_address(ddf_fun_t *fun, void *iface,
449 ipc_callid_t callid, ipc_call_t *call)
450{
451 const usbhc_iface_t *usb_iface = iface;
452
453 if (!usb_iface->release_address) {
454 async_answer_0(callid, ENOTSUP);
455 return;
456 }
457
458 const usb_address_t address = (usb_address_t) DEV_IPC_GET_ARG1(*call);
459
460 const int ret = usb_iface->release_address(fun, address);
461 async_answer_0(callid, ret);
462}
463
464static void callback_out(ddf_fun_t *fun,
465 int outcome, void *arg)
466{
467 async_transaction_t *trans = arg;
468
469 async_answer_0(trans->caller, outcome);
470
471 async_transaction_destroy(trans);
472}
473
474static void callback_in(ddf_fun_t *fun,
475 int outcome, size_t actual_size, void *arg)
476{
477 async_transaction_t *trans = (async_transaction_t *)arg;
478
479 if (outcome != EOK) {
480 async_answer_0(trans->caller, outcome);
481 if (trans->data_caller) {
482 async_answer_0(trans->data_caller, EINTR);
483 }
484 async_transaction_destroy(trans);
485 return;
486 }
487
488 if (trans->data_caller) {
489 async_data_read_finalize(trans->data_caller,
490 trans->buffer, actual_size);
491 }
492
493 async_answer_0(trans->caller, EOK);
494
495 async_transaction_destroy(trans);
496}
497
498void remote_usbhc_register_endpoint(ddf_fun_t *fun, void *iface,
499 ipc_callid_t callid, ipc_call_t *call)
500{
501 usbhc_iface_t *usb_iface = (usbhc_iface_t *) iface;
502
503 if (!usb_iface->register_endpoint) {
504 async_answer_0(callid, ENOTSUP);
505 return;
506 }
507
508#define _INIT_FROM_HIGH_DATA2(type, var, arg_no) \
509 type var = (type) (DEV_IPC_GET_ARG##arg_no(*call) >> 16)
510#define _INIT_FROM_LOW_DATA2(type, var, arg_no) \
511 type var = (type) (DEV_IPC_GET_ARG##arg_no(*call) & 0xffff)
512
513 const usb_target_t target = { .packed = DEV_IPC_GET_ARG1(*call) };
514
515 _INIT_FROM_HIGH_DATA2(usb_transfer_type_t, transfer_type, 2);
516 _INIT_FROM_LOW_DATA2(usb_direction_t, direction, 2);
517
518 _INIT_FROM_HIGH_DATA2(size_t, max_packet_size, 3);
519 _INIT_FROM_LOW_DATA2(unsigned int, interval, 3);
520
521#undef _INIT_FROM_HIGH_DATA2
522#undef _INIT_FROM_LOW_DATA2
523
524 int rc = usb_iface->register_endpoint(fun, target.address,
525 target.endpoint, transfer_type, direction, max_packet_size, interval);
526
527 async_answer_0(callid, rc);
528}
529
530void remote_usbhc_unregister_endpoint(ddf_fun_t *fun, void *iface,
531 ipc_callid_t callid, ipc_call_t *call)
532{
533 usbhc_iface_t *usb_iface = (usbhc_iface_t *) iface;
534
535 if (!usb_iface->unregister_endpoint) {
536 async_answer_0(callid, ENOTSUP);
537 return;
538 }
539
540 usb_address_t address = (usb_address_t) DEV_IPC_GET_ARG1(*call);
541 usb_endpoint_t endpoint = (usb_endpoint_t) DEV_IPC_GET_ARG2(*call);
542 usb_direction_t direction = (usb_direction_t) DEV_IPC_GET_ARG3(*call);
543
544 int rc = usb_iface->unregister_endpoint(fun,
545 address, endpoint, direction);
546
547 async_answer_0(callid, rc);
548}
549
550void remote_usbhc_read(
551 ddf_fun_t *fun, void *iface, ipc_callid_t callid, ipc_call_t *call)
552{
553 assert(fun);
554 assert(iface);
555 assert(call);
556
557 const usbhc_iface_t *hc_iface = iface;
558
559 if (!hc_iface->read) {
560 async_answer_0(callid, ENOTSUP);
561 return;
562 }
563
564 const usb_target_t target = { .packed = DEV_IPC_GET_ARG1(*call) };
565 const uint64_t setup =
566 ((uint64_t)DEV_IPC_GET_ARG2(*call)) |
567 (((uint64_t)DEV_IPC_GET_ARG3(*call)) << 32);
568
569 async_transaction_t *trans = async_transaction_create(callid);
570 if (trans == NULL) {
571 async_answer_0(callid, ENOMEM);
572 return;
573 }
574
575 size_t size = 0;
576 if (!async_data_read_receive(&trans->data_caller, &size)) {
577 async_answer_0(callid, EPARTY);
578 return;
579 }
580
581 trans->buffer = malloc(size);
582 if (trans->buffer == NULL) {
583 async_answer_0(trans->data_caller, ENOMEM);
584 async_answer_0(callid, ENOMEM);
585 async_transaction_destroy(trans);
586 return;
587 }
588
589 const int rc = hc_iface->read(
590 fun, target, setup, trans->buffer, size, callback_in, trans);
591
592 if (rc != EOK) {
593 async_answer_0(trans->data_caller, rc);
594 async_answer_0(callid, rc);
595 async_transaction_destroy(trans);
596 }
597}
598
599void remote_usbhc_write(
600 ddf_fun_t *fun, void *iface, ipc_callid_t callid, ipc_call_t *call)
601{
602 assert(fun);
603 assert(iface);
604 assert(call);
605
606 const usbhc_iface_t *hc_iface = iface;
607
608 if (!hc_iface->write) {
609 async_answer_0(callid, ENOTSUP);
610 return;
611 }
612
613 const usb_target_t target = { .packed = DEV_IPC_GET_ARG1(*call) };
614 const size_t data_buffer_len = DEV_IPC_GET_ARG2(*call);
615 const uint64_t setup =
616 ((uint64_t)DEV_IPC_GET_ARG3(*call)) |
617 (((uint64_t)DEV_IPC_GET_ARG4(*call)) << 32);
618
619 async_transaction_t *trans = async_transaction_create(callid);
620 if (trans == NULL) {
621 async_answer_0(callid, ENOMEM);
622 return;
623 }
624
625 size_t size = 0;
626 if (data_buffer_len > 0) {
627 const int rc = async_data_write_accept(&trans->buffer, false,
628 1, USB_MAX_PAYLOAD_SIZE,
629 0, &size);
630
631 if (rc != EOK) {
632 async_answer_0(callid, rc);
633 async_transaction_destroy(trans);
634 return;
635 }
636 }
637
638 const int rc = hc_iface->write(
639 fun, target, setup, trans->buffer, size, callback_out, trans);
640
641 if (rc != EOK) {
642 async_answer_0(callid, rc);
643 async_transaction_destroy(trans);
644 }
645}
646/**
647 * @}
648 */
Note: See TracBrowser for help on using the repository browser.