1 // SPDX-License-Identifier: GPL-2.0
2 // Copyright (c) 2010-2011 EIA Electronics,
3 // Kurt Van Dijck <kurt.van.dijck@eia.be>
4 // Copyright (c) 2018 Protonic,
5 // Robin van der Gracht <robin@protonic.nl>
6 // Copyright (c) 2017-2019 Pengutronix,
7 // Marc Kleine-Budde <kernel@pengutronix.de>
8 // Copyright (c) 2017-2019 Pengutronix,
9 // Oleksij Rempel <kernel@pengutronix.de>
11 #include <linux/can/skb.h>
13 #include "j1939-priv.h"
15 #define J1939_XTP_TX_RETRY_LIMIT 100
17 #define J1939_ETP_PGN_CTL 0xc800
18 #define J1939_ETP_PGN_DAT 0xc700
19 #define J1939_TP_PGN_CTL 0xec00
20 #define J1939_TP_PGN_DAT 0xeb00
22 #define J1939_TP_CMD_RTS 0x10
23 #define J1939_TP_CMD_CTS 0x11
24 #define J1939_TP_CMD_EOMA 0x13
25 #define J1939_TP_CMD_BAM 0x20
26 #define J1939_TP_CMD_ABORT 0xff
28 #define J1939_ETP_CMD_RTS 0x14
29 #define J1939_ETP_CMD_CTS 0x15
30 #define J1939_ETP_CMD_DPO 0x16
31 #define J1939_ETP_CMD_EOMA 0x17
32 #define J1939_ETP_CMD_ABORT 0xff
34 enum j1939_xtp_abort {
35 J1939_XTP_NO_ABORT = 0,
36 J1939_XTP_ABORT_BUSY = 1,
37 /* Already in one or more connection managed sessions and
38 * cannot support another.
41 * Operation already in progress
44 J1939_XTP_ABORT_RESOURCE = 2,
45 /* System resources were needed for another task so this
46 * connection managed session was terminated.
49 * The socket type requires that message be sent atomically,
50 * and the size of the message to be sent made this
54 J1939_XTP_ABORT_TIMEOUT = 3,
55 /* A timeout occurred and this is the connection abort to
59 * The destination host cannot be reached (probably because
60 * the host is down or a remote router cannot reach it).
63 J1939_XTP_ABORT_GENERIC = 4,
64 /* CTS messages received when data transfer is in progress
70 J1939_XTP_ABORT_FAULT = 5,
71 /* Maximal retransmit request limit reached
74 * State not recoverable
77 J1939_XTP_ABORT_UNEXPECTED_DATA = 6,
78 /* Unexpected data transfer packet
81 * Transport endpoint is not connected
84 J1939_XTP_ABORT_BAD_SEQ = 7,
85 /* Bad sequence number (and software is not able to recover)
88 * Illegal byte sequence
91 J1939_XTP_ABORT_DUP_SEQ = 8,
92 /* Duplicate sequence number (and software is not able to
96 J1939_XTP_ABORT_EDPO_UNEXPECTED = 9,
97 /* Unexpected EDPO packet (ETP) or Message size > 1785 bytes
101 J1939_XTP_ABORT_BAD_EDPO_PGN = 10,
102 /* Unexpected EDPO PGN (PGN in EDPO is bad) */
104 J1939_XTP_ABORT_EDPO_OUTOF_CTS = 11,
105 /* EDPO number of packets is greater than CTS */
107 J1939_XTP_ABORT_BAD_EDPO_OFFSET = 12,
108 /* Bad EDPO offset */
110 J1939_XTP_ABORT_OTHER_DEPRECATED = 13,
111 /* Deprecated. Use 250 instead (Any other reason) */
113 J1939_XTP_ABORT_ECTS_UNXPECTED_PGN = 14,
114 /* Unexpected ECTS PGN (PGN in ECTS is bad) */
116 J1939_XTP_ABORT_ECTS_TOO_BIG = 15,
117 /* ECTS requested packets exceeds message size */
119 J1939_XTP_ABORT_OTHER = 250,
120 /* Any other reason (if a Connection Abort reason is
121 * identified that is not listed in the table use code 250)
125 static unsigned int j1939_tp_block = 255;
126 static unsigned int j1939_tp_packet_delay;
127 static unsigned int j1939_tp_padding = 1;
130 static const char *j1939_xtp_abort_to_str(enum j1939_xtp_abort abort)
133 case J1939_XTP_ABORT_BUSY:
134 return "Already in one or more connection managed sessions and cannot support another.";
135 case J1939_XTP_ABORT_RESOURCE:
136 return "System resources were needed for another task so this connection managed session was terminated.";
137 case J1939_XTP_ABORT_TIMEOUT:
138 return "A timeout occurred and this is the connection abort to close the session.";
139 case J1939_XTP_ABORT_GENERIC:
140 return "CTS messages received when data transfer is in progress";
141 case J1939_XTP_ABORT_FAULT:
142 return "Maximal retransmit request limit reached";
143 case J1939_XTP_ABORT_UNEXPECTED_DATA:
144 return "Unexpected data transfer packet";
145 case J1939_XTP_ABORT_BAD_SEQ:
146 return "Bad sequence number (and software is not able to recover)";
147 case J1939_XTP_ABORT_DUP_SEQ:
148 return "Duplicate sequence number (and software is not able to recover)";
149 case J1939_XTP_ABORT_EDPO_UNEXPECTED:
150 return "Unexpected EDPO packet (ETP) or Message size > 1785 bytes (TP)";
151 case J1939_XTP_ABORT_BAD_EDPO_PGN:
152 return "Unexpected EDPO PGN (PGN in EDPO is bad)";
153 case J1939_XTP_ABORT_EDPO_OUTOF_CTS:
154 return "EDPO number of packets is greater than CTS";
155 case J1939_XTP_ABORT_BAD_EDPO_OFFSET:
156 return "Bad EDPO offset";
157 case J1939_XTP_ABORT_OTHER_DEPRECATED:
158 return "Deprecated. Use 250 instead (Any other reason)";
159 case J1939_XTP_ABORT_ECTS_UNXPECTED_PGN:
160 return "Unexpected ECTS PGN (PGN in ECTS is bad)";
161 case J1939_XTP_ABORT_ECTS_TOO_BIG:
162 return "ECTS requested packets exceeds message size";
163 case J1939_XTP_ABORT_OTHER:
164 return "Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)";
170 static int j1939_xtp_abort_to_errno(struct j1939_priv *priv,
171 enum j1939_xtp_abort abort)
176 case J1939_XTP_NO_ABORT:
177 WARN_ON_ONCE(abort == J1939_XTP_NO_ABORT);
180 case J1939_XTP_ABORT_BUSY:
183 case J1939_XTP_ABORT_RESOURCE:
186 case J1939_XTP_ABORT_TIMEOUT:
189 case J1939_XTP_ABORT_GENERIC:
192 case J1939_XTP_ABORT_FAULT:
193 err = ENOTRECOVERABLE;
195 case J1939_XTP_ABORT_UNEXPECTED_DATA:
198 case J1939_XTP_ABORT_BAD_SEQ:
201 case J1939_XTP_ABORT_DUP_SEQ:
204 case J1939_XTP_ABORT_EDPO_UNEXPECTED:
207 case J1939_XTP_ABORT_BAD_EDPO_PGN:
210 case J1939_XTP_ABORT_EDPO_OUTOF_CTS:
213 case J1939_XTP_ABORT_BAD_EDPO_OFFSET:
216 case J1939_XTP_ABORT_OTHER_DEPRECATED:
219 case J1939_XTP_ABORT_ECTS_UNXPECTED_PGN:
222 case J1939_XTP_ABORT_ECTS_TOO_BIG:
225 case J1939_XTP_ABORT_OTHER:
229 netdev_warn(priv->ndev, "Unknown abort code %i", abort);
236 static inline void j1939_session_list_lock(struct j1939_priv *priv)
238 spin_lock_bh(&priv->active_session_list_lock);
241 static inline void j1939_session_list_unlock(struct j1939_priv *priv)
243 spin_unlock_bh(&priv->active_session_list_lock);
246 void j1939_session_get(struct j1939_session *session)
248 kref_get(&session->kref);
251 /* session completion functions */
252 static void __j1939_session_drop(struct j1939_session *session)
254 if (!session->transmission)
257 j1939_sock_pending_del(session->sk);
258 sock_put(session->sk);
261 static void j1939_session_destroy(struct j1939_session *session)
265 if (session->transmission) {
267 j1939_sk_errqueue(session, J1939_ERRQUEUE_TX_ABORT);
269 j1939_sk_errqueue(session, J1939_ERRQUEUE_TX_ACK);
270 } else if (session->err) {
271 j1939_sk_errqueue(session, J1939_ERRQUEUE_RX_ABORT);
274 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
276 WARN_ON_ONCE(!list_empty(&session->sk_session_queue_entry));
277 WARN_ON_ONCE(!list_empty(&session->active_session_list_entry));
279 while ((skb = skb_dequeue(&session->skb_queue)) != NULL) {
280 /* drop ref taken in j1939_session_skb_queue() */
284 __j1939_session_drop(session);
285 j1939_priv_put(session->priv);
289 static void __j1939_session_release(struct kref *kref)
291 struct j1939_session *session = container_of(kref, struct j1939_session,
294 j1939_session_destroy(session);
297 void j1939_session_put(struct j1939_session *session)
299 kref_put(&session->kref, __j1939_session_release);
302 static void j1939_session_txtimer_cancel(struct j1939_session *session)
304 if (hrtimer_cancel(&session->txtimer))
305 j1939_session_put(session);
308 static void j1939_session_rxtimer_cancel(struct j1939_session *session)
310 if (hrtimer_cancel(&session->rxtimer))
311 j1939_session_put(session);
314 void j1939_session_timers_cancel(struct j1939_session *session)
316 j1939_session_txtimer_cancel(session);
317 j1939_session_rxtimer_cancel(session);
320 static inline bool j1939_cb_is_broadcast(const struct j1939_sk_buff_cb *skcb)
322 return (!skcb->addr.dst_name && (skcb->addr.da == 0xff));
325 static void j1939_session_skb_drop_old(struct j1939_session *session)
327 struct sk_buff *do_skb;
328 struct j1939_sk_buff_cb *do_skcb;
329 unsigned int offset_start;
332 if (skb_queue_len(&session->skb_queue) < 2)
335 offset_start = session->pkt.tx_acked * 7;
337 spin_lock_irqsave(&session->skb_queue.lock, flags);
338 do_skb = skb_peek(&session->skb_queue);
339 do_skcb = j1939_skb_to_cb(do_skb);
341 if ((do_skcb->offset + do_skb->len) < offset_start) {
342 __skb_unlink(do_skb, &session->skb_queue);
343 /* drop ref taken in j1939_session_skb_queue() */
345 spin_unlock_irqrestore(&session->skb_queue.lock, flags);
349 spin_unlock_irqrestore(&session->skb_queue.lock, flags);
353 void j1939_session_skb_queue(struct j1939_session *session,
356 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
357 struct j1939_priv *priv = session->priv;
359 j1939_ac_fixup(priv, skb);
361 if (j1939_address_is_unicast(skcb->addr.da) &&
362 priv->ents[skcb->addr.da].nusers)
363 skcb->flags |= J1939_ECU_LOCAL_DST;
365 skcb->flags |= J1939_ECU_LOCAL_SRC;
368 skb_queue_tail(&session->skb_queue, skb);
372 sk_buff *j1939_session_skb_get_by_offset(struct j1939_session *session,
373 unsigned int offset_start)
375 struct j1939_priv *priv = session->priv;
376 struct j1939_sk_buff_cb *do_skcb;
377 struct sk_buff *skb = NULL;
378 struct sk_buff *do_skb;
381 spin_lock_irqsave(&session->skb_queue.lock, flags);
382 skb_queue_walk(&session->skb_queue, do_skb) {
383 do_skcb = j1939_skb_to_cb(do_skb);
385 if (offset_start >= do_skcb->offset &&
386 offset_start < (do_skcb->offset + do_skb->len)) {
394 spin_unlock_irqrestore(&session->skb_queue.lock, flags);
397 netdev_dbg(priv->ndev, "%s: 0x%p: no skb found for start: %i, queue size: %i\n",
398 __func__, session, offset_start,
399 skb_queue_len(&session->skb_queue));
404 static struct sk_buff *j1939_session_skb_get(struct j1939_session *session)
406 unsigned int offset_start;
408 offset_start = session->pkt.dpo * 7;
409 return j1939_session_skb_get_by_offset(session, offset_start);
412 /* see if we are receiver
413 * returns 0 for broadcasts, although we will receive them
415 static inline int j1939_tp_im_receiver(const struct j1939_sk_buff_cb *skcb)
417 return skcb->flags & J1939_ECU_LOCAL_DST;
420 /* see if we are sender */
421 static inline int j1939_tp_im_transmitter(const struct j1939_sk_buff_cb *skcb)
423 return skcb->flags & J1939_ECU_LOCAL_SRC;
426 /* see if we are involved as either receiver or transmitter */
427 static int j1939_tp_im_involved(const struct j1939_sk_buff_cb *skcb, bool swap)
430 return j1939_tp_im_receiver(skcb);
432 return j1939_tp_im_transmitter(skcb);
435 static int j1939_tp_im_involved_anydir(struct j1939_sk_buff_cb *skcb)
437 return skcb->flags & (J1939_ECU_LOCAL_SRC | J1939_ECU_LOCAL_DST);
440 /* extract pgn from flow-ctl message */
441 static inline pgn_t j1939_xtp_ctl_to_pgn(const u8 *dat)
445 pgn = (dat[7] << 16) | (dat[6] << 8) | (dat[5] << 0);
446 if (j1939_pgn_is_pdu1(pgn))
451 static inline unsigned int j1939_tp_ctl_to_size(const u8 *dat)
453 return (dat[2] << 8) + (dat[1] << 0);
456 static inline unsigned int j1939_etp_ctl_to_packet(const u8 *dat)
458 return (dat[4] << 16) | (dat[3] << 8) | (dat[2] << 0);
461 static inline unsigned int j1939_etp_ctl_to_size(const u8 *dat)
463 return (dat[4] << 24) | (dat[3] << 16) |
464 (dat[2] << 8) | (dat[1] << 0);
467 /* find existing session:
468 * reverse: swap cb's src & dst
469 * there is no problem with matching broadcasts, since
470 * broadcasts (no dst, no da) would never call this
471 * with reverse == true
473 static bool j1939_session_match(struct j1939_addr *se_addr,
474 struct j1939_addr *sk_addr, bool reverse)
476 if (se_addr->type != sk_addr->type)
480 if (se_addr->src_name) {
481 if (se_addr->src_name != sk_addr->dst_name)
483 } else if (se_addr->sa != sk_addr->da) {
487 if (se_addr->dst_name) {
488 if (se_addr->dst_name != sk_addr->src_name)
490 } else if (se_addr->da != sk_addr->sa) {
494 if (se_addr->src_name) {
495 if (se_addr->src_name != sk_addr->src_name)
497 } else if (se_addr->sa != sk_addr->sa) {
501 if (se_addr->dst_name) {
502 if (se_addr->dst_name != sk_addr->dst_name)
504 } else if (se_addr->da != sk_addr->da) {
513 j1939_session *j1939_session_get_by_addr_locked(struct j1939_priv *priv,
514 struct list_head *root,
515 struct j1939_addr *addr,
516 bool reverse, bool transmitter)
518 struct j1939_session *session;
520 lockdep_assert_held(&priv->active_session_list_lock);
522 list_for_each_entry(session, root, active_session_list_entry) {
523 j1939_session_get(session);
524 if (j1939_session_match(&session->skcb.addr, addr, reverse) &&
525 session->transmission == transmitter)
527 j1939_session_put(session);
534 j1939_session *j1939_session_get_simple(struct j1939_priv *priv,
537 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
538 struct j1939_session *session;
540 lockdep_assert_held(&priv->active_session_list_lock);
542 list_for_each_entry(session, &priv->active_session_list,
543 active_session_list_entry) {
544 j1939_session_get(session);
545 if (session->skcb.addr.type == J1939_SIMPLE &&
546 session->tskey == skcb->tskey && session->sk == skb->sk)
548 j1939_session_put(session);
555 j1939_session *j1939_session_get_by_addr(struct j1939_priv *priv,
556 struct j1939_addr *addr,
557 bool reverse, bool transmitter)
559 struct j1939_session *session;
561 j1939_session_list_lock(priv);
562 session = j1939_session_get_by_addr_locked(priv,
563 &priv->active_session_list,
564 addr, reverse, transmitter);
565 j1939_session_list_unlock(priv);
570 static void j1939_skbcb_swap(struct j1939_sk_buff_cb *skcb)
574 swap(skcb->addr.dst_name, skcb->addr.src_name);
575 swap(skcb->addr.da, skcb->addr.sa);
577 /* swap SRC and DST flags, leave other untouched */
578 if (skcb->flags & J1939_ECU_LOCAL_SRC)
579 tmp |= J1939_ECU_LOCAL_DST;
580 if (skcb->flags & J1939_ECU_LOCAL_DST)
581 tmp |= J1939_ECU_LOCAL_SRC;
582 skcb->flags &= ~(J1939_ECU_LOCAL_SRC | J1939_ECU_LOCAL_DST);
587 sk_buff *j1939_tp_tx_dat_new(struct j1939_priv *priv,
588 const struct j1939_sk_buff_cb *re_skcb,
593 struct j1939_sk_buff_cb *skcb;
595 skb = alloc_skb(sizeof(struct can_frame) + sizeof(struct can_skb_priv),
598 return ERR_PTR(-ENOMEM);
600 skb->dev = priv->ndev;
601 can_skb_reserve(skb);
602 can_skb_prv(skb)->ifindex = priv->ndev->ifindex;
603 can_skb_prv(skb)->skbcnt = 0;
604 /* reserve CAN header */
605 skb_reserve(skb, offsetof(struct can_frame, data));
607 /* skb->cb must be large enough to hold a j1939_sk_buff_cb structure */
608 BUILD_BUG_ON(sizeof(skb->cb) < sizeof(*re_skcb));
610 memcpy(skb->cb, re_skcb, sizeof(*re_skcb));
611 skcb = j1939_skb_to_cb(skb);
613 j1939_skbcb_swap(skcb);
616 if (skcb->addr.type == J1939_ETP)
617 skcb->addr.pgn = J1939_ETP_PGN_CTL;
619 skcb->addr.pgn = J1939_TP_PGN_CTL;
621 if (skcb->addr.type == J1939_ETP)
622 skcb->addr.pgn = J1939_ETP_PGN_DAT;
624 skcb->addr.pgn = J1939_TP_PGN_DAT;
630 /* TP transmit packet functions */
631 static int j1939_tp_tx_dat(struct j1939_session *session,
632 const u8 *dat, int len)
634 struct j1939_priv *priv = session->priv;
637 skb = j1939_tp_tx_dat_new(priv, &session->skcb,
642 skb_put_data(skb, dat, len);
643 if (j1939_tp_padding && len < 8)
644 memset(skb_put(skb, 8 - len), 0xff, 8 - len);
646 return j1939_send_one(priv, skb);
649 static int j1939_xtp_do_tx_ctl(struct j1939_priv *priv,
650 const struct j1939_sk_buff_cb *re_skcb,
651 bool swap_src_dst, pgn_t pgn, const u8 *dat)
656 if (!j1939_tp_im_involved(re_skcb, swap_src_dst))
659 skb = j1939_tp_tx_dat_new(priv, re_skcb, true, swap_src_dst);
663 skdat = skb_put(skb, 8);
664 memcpy(skdat, dat, 5);
665 skdat[5] = (pgn >> 0);
666 skdat[6] = (pgn >> 8);
667 skdat[7] = (pgn >> 16);
669 return j1939_send_one(priv, skb);
672 static inline int j1939_tp_tx_ctl(struct j1939_session *session,
673 bool swap_src_dst, const u8 *dat)
675 struct j1939_priv *priv = session->priv;
677 return j1939_xtp_do_tx_ctl(priv, &session->skcb,
679 session->skcb.addr.pgn, dat);
682 static int j1939_xtp_tx_abort(struct j1939_priv *priv,
683 const struct j1939_sk_buff_cb *re_skcb,
685 enum j1939_xtp_abort err,
690 if (!j1939_tp_im_involved(re_skcb, swap_src_dst))
693 memset(dat, 0xff, sizeof(dat));
694 dat[0] = J1939_TP_CMD_ABORT;
696 return j1939_xtp_do_tx_ctl(priv, re_skcb, swap_src_dst, pgn, dat);
699 void j1939_tp_schedule_txtimer(struct j1939_session *session, int msec)
701 j1939_session_get(session);
702 hrtimer_start(&session->txtimer, ms_to_ktime(msec),
703 HRTIMER_MODE_REL_SOFT);
706 static inline void j1939_tp_set_rxtimeout(struct j1939_session *session,
709 j1939_session_rxtimer_cancel(session);
710 j1939_session_get(session);
711 hrtimer_start(&session->rxtimer, ms_to_ktime(msec),
712 HRTIMER_MODE_REL_SOFT);
715 static int j1939_session_tx_rts(struct j1939_session *session)
720 memset(dat, 0xff, sizeof(dat));
722 dat[1] = (session->total_message_size >> 0);
723 dat[2] = (session->total_message_size >> 8);
724 dat[3] = session->pkt.total;
726 if (session->skcb.addr.type == J1939_ETP) {
727 dat[0] = J1939_ETP_CMD_RTS;
728 dat[1] = (session->total_message_size >> 0);
729 dat[2] = (session->total_message_size >> 8);
730 dat[3] = (session->total_message_size >> 16);
731 dat[4] = (session->total_message_size >> 24);
732 } else if (j1939_cb_is_broadcast(&session->skcb)) {
733 dat[0] = J1939_TP_CMD_BAM;
734 /* fake cts for broadcast */
737 dat[0] = J1939_TP_CMD_RTS;
741 if (dat[0] == session->last_txcmd)
745 ret = j1939_tp_tx_ctl(session, false, dat);
749 session->last_txcmd = dat[0];
750 if (dat[0] == J1939_TP_CMD_BAM) {
751 j1939_tp_schedule_txtimer(session, 50);
752 j1939_tp_set_rxtimeout(session, 250);
754 j1939_tp_set_rxtimeout(session, 1250);
757 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
762 static int j1939_session_tx_dpo(struct j1939_session *session)
768 memset(dat, 0xff, sizeof(dat));
770 dat[0] = J1939_ETP_CMD_DPO;
771 session->pkt.dpo = session->pkt.tx_acked;
772 pkt = session->pkt.dpo;
773 dat[1] = session->pkt.last - session->pkt.tx_acked;
776 dat[4] = (pkt >> 16);
778 ret = j1939_tp_tx_ctl(session, false, dat);
782 session->last_txcmd = dat[0];
783 j1939_tp_set_rxtimeout(session, 1250);
784 session->pkt.tx = session->pkt.tx_acked;
786 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
791 static int j1939_session_tx_dat(struct j1939_session *session)
793 struct j1939_priv *priv = session->priv;
794 struct j1939_sk_buff_cb *se_skcb;
795 int offset, pkt_done, pkt_end;
796 unsigned int len, pdelay;
797 struct sk_buff *se_skb;
802 se_skb = j1939_session_skb_get_by_offset(session, session->pkt.tx * 7);
806 se_skcb = j1939_skb_to_cb(se_skb);
807 tpdat = se_skb->data;
810 if (session->skcb.addr.type != J1939_ETP &&
811 j1939_cb_is_broadcast(&session->skcb))
812 pkt_end = session->pkt.total;
814 pkt_end = session->pkt.last;
816 while (session->pkt.tx < pkt_end) {
817 dat[0] = session->pkt.tx - session->pkt.dpo + 1;
818 offset = (session->pkt.tx * 7) - se_skcb->offset;
819 len = se_skb->len - offset;
823 if (offset + len > se_skb->len) {
824 netdev_err_once(priv->ndev,
825 "%s: 0x%p: requested data outside of queued buffer: offset %i, len %i, pkt.tx: %i\n",
826 __func__, session, se_skcb->offset,
827 se_skb->len , session->pkt.tx);
837 memcpy(&dat[1], &tpdat[offset], len);
838 ret = j1939_tp_tx_dat(session, dat, len + 1);
840 /* ENOBUFS == CAN interface TX queue is full */
842 netdev_alert(priv->ndev,
843 "%s: 0x%p: queue data error: %i\n",
844 __func__, session, ret);
848 session->last_txcmd = 0xff;
851 pdelay = j1939_cb_is_broadcast(&session->skcb) ? 50 :
852 j1939_tp_packet_delay;
854 if (session->pkt.tx < session->pkt.total && pdelay) {
855 j1939_tp_schedule_txtimer(session, pdelay);
861 j1939_tp_set_rxtimeout(session, 250);
872 static int j1939_xtp_txnext_transmiter(struct j1939_session *session)
874 struct j1939_priv *priv = session->priv;
877 if (!j1939_tp_im_transmitter(&session->skcb)) {
878 netdev_alert(priv->ndev, "%s: 0x%p: called by not transmitter!\n",
883 switch (session->last_cmd) {
885 ret = j1939_session_tx_rts(session);
888 case J1939_ETP_CMD_CTS:
889 if (session->last_txcmd != J1939_ETP_CMD_DPO) {
890 ret = j1939_session_tx_dpo(session);
896 case J1939_TP_CMD_CTS:
897 case 0xff: /* did some data */
898 case J1939_ETP_CMD_DPO:
899 case J1939_TP_CMD_BAM:
900 ret = j1939_session_tx_dat(session);
904 netdev_alert(priv->ndev, "%s: 0x%p: unexpected last_cmd: %x\n",
905 __func__, session, session->last_cmd);
911 static int j1939_session_tx_cts(struct j1939_session *session)
913 struct j1939_priv *priv = session->priv;
914 unsigned int pkt, len;
918 if (!j1939_sk_recv_match(priv, &session->skcb))
921 len = session->pkt.total - session->pkt.rx;
922 len = min3(len, session->pkt.block, j1939_tp_block ?: 255);
923 memset(dat, 0xff, sizeof(dat));
925 if (session->skcb.addr.type == J1939_ETP) {
926 pkt = session->pkt.rx + 1;
927 dat[0] = J1939_ETP_CMD_CTS;
931 dat[4] = (pkt >> 16);
933 dat[0] = J1939_TP_CMD_CTS;
935 dat[2] = session->pkt.rx + 1;
938 if (dat[0] == session->last_txcmd)
942 ret = j1939_tp_tx_ctl(session, true, dat);
947 /* only mark cts done when len is set */
948 session->last_txcmd = dat[0];
949 j1939_tp_set_rxtimeout(session, 1250);
951 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
956 static int j1939_session_tx_eoma(struct j1939_session *session)
958 struct j1939_priv *priv = session->priv;
962 if (!j1939_sk_recv_match(priv, &session->skcb))
965 memset(dat, 0xff, sizeof(dat));
967 if (session->skcb.addr.type == J1939_ETP) {
968 dat[0] = J1939_ETP_CMD_EOMA;
969 dat[1] = session->total_message_size >> 0;
970 dat[2] = session->total_message_size >> 8;
971 dat[3] = session->total_message_size >> 16;
972 dat[4] = session->total_message_size >> 24;
974 dat[0] = J1939_TP_CMD_EOMA;
975 dat[1] = session->total_message_size;
976 dat[2] = session->total_message_size >> 8;
977 dat[3] = session->pkt.total;
980 if (dat[0] == session->last_txcmd)
984 ret = j1939_tp_tx_ctl(session, true, dat);
988 session->last_txcmd = dat[0];
990 /* wait for the EOMA packet to come in */
991 j1939_tp_set_rxtimeout(session, 1250);
993 netdev_dbg(session->priv->ndev, "%p: 0x%p\n", __func__, session);
998 static int j1939_xtp_txnext_receiver(struct j1939_session *session)
1000 struct j1939_priv *priv = session->priv;
1003 if (!j1939_tp_im_receiver(&session->skcb)) {
1004 netdev_alert(priv->ndev, "%s: 0x%p: called by not receiver!\n",
1009 switch (session->last_cmd) {
1010 case J1939_TP_CMD_RTS:
1011 case J1939_ETP_CMD_RTS:
1012 ret = j1939_session_tx_cts(session);
1015 case J1939_ETP_CMD_CTS:
1016 case J1939_TP_CMD_CTS:
1017 case 0xff: /* did some data */
1018 case J1939_ETP_CMD_DPO:
1019 if ((session->skcb.addr.type == J1939_TP &&
1020 j1939_cb_is_broadcast(&session->skcb)))
1023 if (session->pkt.rx >= session->pkt.total) {
1024 ret = j1939_session_tx_eoma(session);
1025 } else if (session->pkt.rx >= session->pkt.last) {
1026 session->last_txcmd = 0;
1027 ret = j1939_session_tx_cts(session);
1031 netdev_alert(priv->ndev, "%s: 0x%p: unexpected last_cmd: %x\n",
1032 __func__, session, session->last_cmd);
1038 static int j1939_simple_txnext(struct j1939_session *session)
1040 struct j1939_priv *priv = session->priv;
1041 struct sk_buff *se_skb = j1939_session_skb_get(session);
1042 struct sk_buff *skb;
1048 skb = skb_clone(se_skb, GFP_ATOMIC);
1054 can_skb_set_owner(skb, se_skb->sk);
1056 j1939_tp_set_rxtimeout(session, J1939_SIMPLE_ECHO_TIMEOUT_MS);
1058 ret = j1939_send_one(priv, skb);
1062 j1939_sk_errqueue(session, J1939_ERRQUEUE_TX_SCHED);
1063 j1939_sk_queue_activate_next(session);
1069 consume_skb(se_skb);
1074 static bool j1939_session_deactivate_locked(struct j1939_session *session)
1076 bool active = false;
1078 lockdep_assert_held(&session->priv->active_session_list_lock);
1080 if (session->state >= J1939_SESSION_ACTIVE &&
1081 session->state < J1939_SESSION_ACTIVE_MAX) {
1084 list_del_init(&session->active_session_list_entry);
1085 session->state = J1939_SESSION_DONE;
1086 j1939_session_put(session);
1092 static bool j1939_session_deactivate(struct j1939_session *session)
1094 struct j1939_priv *priv = session->priv;
1097 j1939_session_list_lock(priv);
1098 active = j1939_session_deactivate_locked(session);
1099 j1939_session_list_unlock(priv);
1105 j1939_session_deactivate_activate_next(struct j1939_session *session)
1107 if (j1939_session_deactivate(session))
1108 j1939_sk_queue_activate_next(session);
1111 static void __j1939_session_cancel(struct j1939_session *session,
1112 enum j1939_xtp_abort err)
1114 struct j1939_priv *priv = session->priv;
1117 lockdep_assert_held(&session->priv->active_session_list_lock);
1119 session->err = j1939_xtp_abort_to_errno(priv, err);
1120 session->state = J1939_SESSION_WAITING_ABORT;
1121 /* do not send aborts on incoming broadcasts */
1122 if (!j1939_cb_is_broadcast(&session->skcb)) {
1123 j1939_xtp_tx_abort(priv, &session->skcb,
1124 !session->transmission,
1125 err, session->skcb.addr.pgn);
1129 j1939_sk_send_loop_abort(session->sk, session->err);
1132 static void j1939_session_cancel(struct j1939_session *session,
1133 enum j1939_xtp_abort err)
1135 j1939_session_list_lock(session->priv);
1137 if (session->state >= J1939_SESSION_ACTIVE &&
1138 session->state < J1939_SESSION_WAITING_ABORT) {
1139 j1939_tp_set_rxtimeout(session, J1939_XTP_ABORT_TIMEOUT_MS);
1140 __j1939_session_cancel(session, err);
1143 j1939_session_list_unlock(session->priv);
1146 j1939_sk_errqueue(session, J1939_ERRQUEUE_RX_ABORT);
1149 static enum hrtimer_restart j1939_tp_txtimer(struct hrtimer *hrtimer)
1151 struct j1939_session *session =
1152 container_of(hrtimer, struct j1939_session, txtimer);
1153 struct j1939_priv *priv = session->priv;
1156 if (session->skcb.addr.type == J1939_SIMPLE) {
1157 ret = j1939_simple_txnext(session);
1159 if (session->transmission)
1160 ret = j1939_xtp_txnext_transmiter(session);
1162 ret = j1939_xtp_txnext_receiver(session);
1167 /* Retry limit is currently arbitrary chosen */
1168 if (session->tx_retry < J1939_XTP_TX_RETRY_LIMIT) {
1169 session->tx_retry++;
1170 j1939_tp_schedule_txtimer(session,
1171 10 + prandom_u32_max(16));
1173 netdev_alert(priv->ndev, "%s: 0x%p: tx retry count reached\n",
1175 session->err = -ENETUNREACH;
1176 j1939_session_rxtimer_cancel(session);
1177 j1939_session_deactivate_activate_next(session);
1181 /* In this case we should get a netdev_event(), all active
1182 * sessions will be cleared by
1183 * j1939_cancel_all_active_sessions(). So handle this as an
1184 * error, but let j1939_cancel_all_active_sessions() do the
1185 * cleanup including propagation of the error to user space.
1189 j1939_session_cancel(session, J1939_XTP_ABORT_ECTS_TOO_BIG);
1192 session->tx_retry = 0;
1195 netdev_alert(priv->ndev, "%s: 0x%p: tx aborted with unknown reason: %i\n",
1196 __func__, session, ret);
1197 if (session->skcb.addr.type != J1939_SIMPLE) {
1198 j1939_session_cancel(session, J1939_XTP_ABORT_OTHER);
1201 j1939_session_rxtimer_cancel(session);
1202 j1939_session_deactivate_activate_next(session);
1206 j1939_session_put(session);
1208 return HRTIMER_NORESTART;
1211 static void j1939_session_completed(struct j1939_session *session)
1213 struct sk_buff *se_skb;
1215 if (!session->transmission) {
1216 se_skb = j1939_session_skb_get(session);
1217 /* distribute among j1939 receivers */
1218 j1939_sk_recv(session->priv, se_skb);
1219 consume_skb(se_skb);
1222 j1939_session_deactivate_activate_next(session);
1225 static enum hrtimer_restart j1939_tp_rxtimer(struct hrtimer *hrtimer)
1227 struct j1939_session *session = container_of(hrtimer,
1228 struct j1939_session,
1230 struct j1939_priv *priv = session->priv;
1232 if (session->state == J1939_SESSION_WAITING_ABORT) {
1233 netdev_alert(priv->ndev, "%s: 0x%p: abort rx timeout. Force session deactivation\n",
1236 j1939_session_deactivate_activate_next(session);
1238 } else if (session->skcb.addr.type == J1939_SIMPLE) {
1239 netdev_alert(priv->ndev, "%s: 0x%p: Timeout. Failed to send simple message.\n",
1242 /* The message is probably stuck in the CAN controller and can
1243 * be send as soon as CAN bus is in working state again.
1245 session->err = -ETIME;
1246 j1939_session_deactivate(session);
1248 j1939_session_list_lock(session->priv);
1249 if (session->state >= J1939_SESSION_ACTIVE &&
1250 session->state < J1939_SESSION_ACTIVE_MAX) {
1251 netdev_alert(priv->ndev, "%s: 0x%p: rx timeout, send abort\n",
1253 j1939_session_get(session);
1254 hrtimer_start(&session->rxtimer,
1255 ms_to_ktime(J1939_XTP_ABORT_TIMEOUT_MS),
1256 HRTIMER_MODE_REL_SOFT);
1257 __j1939_session_cancel(session, J1939_XTP_ABORT_TIMEOUT);
1259 j1939_session_list_unlock(session->priv);
1262 j1939_sk_errqueue(session, J1939_ERRQUEUE_RX_ABORT);
1265 j1939_session_put(session);
1267 return HRTIMER_NORESTART;
1270 static bool j1939_xtp_rx_cmd_bad_pgn(struct j1939_session *session,
1271 const struct sk_buff *skb)
1273 const struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1274 pgn_t pgn = j1939_xtp_ctl_to_pgn(skb->data);
1275 struct j1939_priv *priv = session->priv;
1276 enum j1939_xtp_abort abort = J1939_XTP_NO_ABORT;
1277 u8 cmd = skb->data[0];
1279 if (session->skcb.addr.pgn == pgn)
1283 case J1939_TP_CMD_BAM:
1284 abort = J1939_XTP_NO_ABORT;
1287 case J1939_ETP_CMD_RTS:
1289 case J1939_TP_CMD_RTS:
1290 abort = J1939_XTP_ABORT_BUSY;
1293 case J1939_ETP_CMD_CTS:
1295 case J1939_TP_CMD_CTS:
1296 abort = J1939_XTP_ABORT_ECTS_UNXPECTED_PGN;
1299 case J1939_ETP_CMD_DPO:
1300 abort = J1939_XTP_ABORT_BAD_EDPO_PGN;
1303 case J1939_ETP_CMD_EOMA:
1305 case J1939_TP_CMD_EOMA:
1306 abort = J1939_XTP_ABORT_OTHER;
1309 case J1939_ETP_CMD_ABORT: /* && J1939_TP_CMD_ABORT */
1310 abort = J1939_XTP_NO_ABORT;
1318 netdev_warn(priv->ndev, "%s: 0x%p: CMD 0x%02x with PGN 0x%05x for running session with different PGN 0x%05x.\n",
1319 __func__, session, cmd, pgn, session->skcb.addr.pgn);
1320 if (abort != J1939_XTP_NO_ABORT)
1321 j1939_xtp_tx_abort(priv, skcb, true, abort, pgn);
1326 static void j1939_xtp_rx_abort_one(struct j1939_priv *priv, struct sk_buff *skb,
1327 bool reverse, bool transmitter)
1329 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1330 struct j1939_session *session;
1331 u8 abort = skb->data[1];
1333 session = j1939_session_get_by_addr(priv, &skcb->addr, reverse,
1338 if (j1939_xtp_rx_cmd_bad_pgn(session, skb))
1341 netdev_info(priv->ndev, "%s: 0x%p: 0x%05x: (%u) %s\n", __func__,
1342 session, j1939_xtp_ctl_to_pgn(skb->data), abort,
1343 j1939_xtp_abort_to_str(abort));
1345 j1939_session_timers_cancel(session);
1346 session->err = j1939_xtp_abort_to_errno(priv, abort);
1348 j1939_sk_send_loop_abort(session->sk, session->err);
1350 j1939_sk_errqueue(session, J1939_ERRQUEUE_RX_ABORT);
1351 j1939_session_deactivate_activate_next(session);
1354 j1939_session_put(session);
1357 /* abort packets may come in 2 directions */
1359 j1939_xtp_rx_abort(struct j1939_priv *priv, struct sk_buff *skb,
1362 j1939_xtp_rx_abort_one(priv, skb, false, transmitter);
1363 j1939_xtp_rx_abort_one(priv, skb, true, transmitter);
1367 j1939_xtp_rx_eoma_one(struct j1939_session *session, struct sk_buff *skb)
1369 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1373 if (j1939_xtp_rx_cmd_bad_pgn(session, skb))
1378 if (skcb->addr.type == J1939_ETP)
1379 len = j1939_etp_ctl_to_size(dat);
1381 len = j1939_tp_ctl_to_size(dat);
1383 if (session->total_message_size != len) {
1384 netdev_warn_once(session->priv->ndev,
1385 "%s: 0x%p: Incorrect size. Expected: %i; got: %i.\n",
1386 __func__, session, session->total_message_size,
1390 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
1392 session->pkt.tx_acked = session->pkt.total;
1393 j1939_session_timers_cancel(session);
1394 /* transmitted without problems */
1395 j1939_session_completed(session);
1399 j1939_xtp_rx_eoma(struct j1939_priv *priv, struct sk_buff *skb,
1402 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1403 struct j1939_session *session;
1405 session = j1939_session_get_by_addr(priv, &skcb->addr, true,
1410 j1939_xtp_rx_eoma_one(session, skb);
1411 j1939_session_put(session);
1415 j1939_xtp_rx_cts_one(struct j1939_session *session, struct sk_buff *skb)
1417 enum j1939_xtp_abort err = J1939_XTP_ABORT_FAULT;
1423 if (j1939_xtp_rx_cmd_bad_pgn(session, skb))
1426 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
1428 if (session->last_cmd == dat[0]) {
1429 err = J1939_XTP_ABORT_DUP_SEQ;
1430 goto out_session_cancel;
1433 if (session->skcb.addr.type == J1939_ETP)
1434 pkt = j1939_etp_ctl_to_packet(dat);
1439 goto out_session_cancel;
1440 else if (dat[1] > session->pkt.block /* 0xff for etp */)
1441 goto out_session_cancel;
1443 /* set packet counters only when not CTS(0) */
1444 session->pkt.tx_acked = pkt - 1;
1445 j1939_session_skb_drop_old(session);
1446 session->pkt.last = session->pkt.tx_acked + dat[1];
1447 if (session->pkt.last > session->pkt.total)
1448 /* safety measure */
1449 session->pkt.last = session->pkt.total;
1450 /* TODO: do not set tx here, do it in txtimer */
1451 session->pkt.tx = session->pkt.tx_acked;
1453 session->last_cmd = dat[0];
1455 j1939_tp_set_rxtimeout(session, 1250);
1456 if (session->transmission) {
1457 if (session->pkt.tx_acked)
1458 j1939_sk_errqueue(session,
1459 J1939_ERRQUEUE_TX_SCHED);
1460 j1939_session_txtimer_cancel(session);
1461 j1939_tp_schedule_txtimer(session, 0);
1465 j1939_tp_set_rxtimeout(session, 550);
1470 j1939_session_timers_cancel(session);
1471 j1939_session_cancel(session, err);
1475 j1939_xtp_rx_cts(struct j1939_priv *priv, struct sk_buff *skb, bool transmitter)
1477 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1478 struct j1939_session *session;
1480 session = j1939_session_get_by_addr(priv, &skcb->addr, true,
1484 j1939_xtp_rx_cts_one(session, skb);
1485 j1939_session_put(session);
1488 static struct j1939_session *j1939_session_new(struct j1939_priv *priv,
1489 struct sk_buff *skb, size_t size)
1491 struct j1939_session *session;
1492 struct j1939_sk_buff_cb *skcb;
1494 session = kzalloc(sizeof(*session), gfp_any());
1498 INIT_LIST_HEAD(&session->active_session_list_entry);
1499 INIT_LIST_HEAD(&session->sk_session_queue_entry);
1500 kref_init(&session->kref);
1502 j1939_priv_get(priv);
1503 session->priv = priv;
1504 session->total_message_size = size;
1505 session->state = J1939_SESSION_NEW;
1507 skb_queue_head_init(&session->skb_queue);
1508 skb_queue_tail(&session->skb_queue, skb);
1510 skcb = j1939_skb_to_cb(skb);
1511 memcpy(&session->skcb, skcb, sizeof(session->skcb));
1513 hrtimer_init(&session->txtimer, CLOCK_MONOTONIC,
1514 HRTIMER_MODE_REL_SOFT);
1515 session->txtimer.function = j1939_tp_txtimer;
1516 hrtimer_init(&session->rxtimer, CLOCK_MONOTONIC,
1517 HRTIMER_MODE_REL_SOFT);
1518 session->rxtimer.function = j1939_tp_rxtimer;
1520 netdev_dbg(priv->ndev, "%s: 0x%p: sa: %02x, da: %02x\n",
1521 __func__, session, skcb->addr.sa, skcb->addr.da);
1527 j1939_session *j1939_session_fresh_new(struct j1939_priv *priv,
1529 const struct j1939_sk_buff_cb *rel_skcb)
1531 struct sk_buff *skb;
1532 struct j1939_sk_buff_cb *skcb;
1533 struct j1939_session *session;
1535 skb = alloc_skb(size + sizeof(struct can_skb_priv), GFP_ATOMIC);
1539 skb->dev = priv->ndev;
1540 can_skb_reserve(skb);
1541 can_skb_prv(skb)->ifindex = priv->ndev->ifindex;
1542 can_skb_prv(skb)->skbcnt = 0;
1543 skcb = j1939_skb_to_cb(skb);
1544 memcpy(skcb, rel_skcb, sizeof(*skcb));
1546 session = j1939_session_new(priv, skb, size);
1552 /* alloc data area */
1554 /* skb is recounted in j1939_session_new() */
1558 int j1939_session_activate(struct j1939_session *session)
1560 struct j1939_priv *priv = session->priv;
1561 struct j1939_session *active = NULL;
1564 j1939_session_list_lock(priv);
1565 if (session->skcb.addr.type != J1939_SIMPLE)
1566 active = j1939_session_get_by_addr_locked(priv,
1567 &priv->active_session_list,
1568 &session->skcb.addr, false,
1569 session->transmission);
1571 j1939_session_put(active);
1574 WARN_ON_ONCE(session->state != J1939_SESSION_NEW);
1575 list_add_tail(&session->active_session_list_entry,
1576 &priv->active_session_list);
1577 j1939_session_get(session);
1578 session->state = J1939_SESSION_ACTIVE;
1580 netdev_dbg(session->priv->ndev, "%s: 0x%p\n",
1583 j1939_session_list_unlock(priv);
1589 j1939_session *j1939_xtp_rx_rts_session_new(struct j1939_priv *priv,
1590 struct sk_buff *skb)
1592 enum j1939_xtp_abort abort = J1939_XTP_NO_ABORT;
1593 struct j1939_sk_buff_cb skcb = *j1939_skb_to_cb(skb);
1594 struct j1939_session *session;
1599 netdev_dbg(priv->ndev, "%s\n", __func__);
1602 pgn = j1939_xtp_ctl_to_pgn(dat);
1603 skcb.addr.pgn = pgn;
1605 if (!j1939_sk_recv_match(priv, &skcb))
1608 if (skcb.addr.type == J1939_ETP) {
1609 len = j1939_etp_ctl_to_size(dat);
1610 if (len > J1939_MAX_ETP_PACKET_SIZE)
1611 abort = J1939_XTP_ABORT_FAULT;
1612 else if (len > priv->tp_max_packet_size)
1613 abort = J1939_XTP_ABORT_RESOURCE;
1614 else if (len <= J1939_MAX_TP_PACKET_SIZE)
1615 abort = J1939_XTP_ABORT_FAULT;
1617 len = j1939_tp_ctl_to_size(dat);
1618 if (len > J1939_MAX_TP_PACKET_SIZE)
1619 abort = J1939_XTP_ABORT_FAULT;
1620 else if (len > priv->tp_max_packet_size)
1621 abort = J1939_XTP_ABORT_RESOURCE;
1622 else if (len < J1939_MIN_TP_PACKET_SIZE)
1623 abort = J1939_XTP_ABORT_FAULT;
1626 if (abort != J1939_XTP_NO_ABORT) {
1627 j1939_xtp_tx_abort(priv, &skcb, true, abort, pgn);
1631 session = j1939_session_fresh_new(priv, len, &skcb);
1633 j1939_xtp_tx_abort(priv, &skcb, true,
1634 J1939_XTP_ABORT_RESOURCE, pgn);
1638 /* initialize the control buffer: plain copy */
1639 session->pkt.total = (len + 6) / 7;
1640 session->pkt.block = 0xff;
1641 if (skcb.addr.type != J1939_ETP) {
1642 if (dat[3] != session->pkt.total)
1643 netdev_alert(priv->ndev, "%s: 0x%p: strange total, %u != %u\n",
1644 __func__, session, session->pkt.total,
1646 session->pkt.total = dat[3];
1647 session->pkt.block = min(dat[3], dat[4]);
1650 session->pkt.rx = 0;
1651 session->pkt.tx = 0;
1653 session->tskey = priv->rx_tskey++;
1654 j1939_sk_errqueue(session, J1939_ERRQUEUE_RX_RTS);
1656 WARN_ON_ONCE(j1939_session_activate(session));
1661 static int j1939_xtp_rx_rts_session_active(struct j1939_session *session,
1662 struct sk_buff *skb)
1664 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1665 struct j1939_priv *priv = session->priv;
1667 if (!session->transmission) {
1668 if (j1939_xtp_rx_cmd_bad_pgn(session, skb))
1671 /* RTS on active session */
1672 j1939_session_timers_cancel(session);
1673 j1939_session_cancel(session, J1939_XTP_ABORT_BUSY);
1676 if (session->last_cmd != 0) {
1677 /* we received a second rts on the same connection */
1678 netdev_alert(priv->ndev, "%s: 0x%p: connection exists (%02x %02x). last cmd: %x\n",
1679 __func__, session, skcb->addr.sa, skcb->addr.da,
1682 j1939_session_timers_cancel(session);
1683 j1939_session_cancel(session, J1939_XTP_ABORT_BUSY);
1688 if (session->skcb.addr.sa != skcb->addr.sa ||
1689 session->skcb.addr.da != skcb->addr.da)
1690 netdev_warn(priv->ndev, "%s: 0x%p: session->skcb.addr.sa=0x%02x skcb->addr.sa=0x%02x session->skcb.addr.da=0x%02x skcb->addr.da=0x%02x\n",
1692 session->skcb.addr.sa, skcb->addr.sa,
1693 session->skcb.addr.da, skcb->addr.da);
1694 /* make sure 'sa' & 'da' are correct !
1695 * They may be 'not filled in yet' for sending
1696 * skb's, since they did not pass the Address Claim ever.
1698 session->skcb.addr.sa = skcb->addr.sa;
1699 session->skcb.addr.da = skcb->addr.da;
1701 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
1706 static void j1939_xtp_rx_rts(struct j1939_priv *priv, struct sk_buff *skb,
1709 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1710 struct j1939_session *session;
1711 u8 cmd = skb->data[0];
1713 session = j1939_session_get_by_addr(priv, &skcb->addr, false,
1718 /* If we're the transmitter and this function is called,
1719 * we received our own RTS. A session has already been
1722 * For some reasons however it might have been destroyed
1723 * already. So don't create a new one here (using
1724 * "j1939_xtp_rx_rts_session_new()") as this will be a
1727 * The reasons the session is already destroyed might
1729 * - user space closed socket was and the session was
1731 * - session was aborted due to external abort message
1735 session = j1939_xtp_rx_rts_session_new(priv, skb);
1737 if (cmd == J1939_TP_CMD_BAM && j1939_sk_recv_match(priv, skcb))
1738 netdev_info(priv->ndev, "%s: failed to create TP BAM session\n",
1743 if (j1939_xtp_rx_rts_session_active(session, skb)) {
1744 j1939_session_put(session);
1748 session->last_cmd = cmd;
1750 if (cmd == J1939_TP_CMD_BAM) {
1751 if (!session->transmission)
1752 j1939_tp_set_rxtimeout(session, 750);
1754 if (!session->transmission) {
1755 j1939_session_txtimer_cancel(session);
1756 j1939_tp_schedule_txtimer(session, 0);
1758 j1939_tp_set_rxtimeout(session, 1250);
1761 j1939_session_put(session);
1764 static void j1939_xtp_rx_dpo_one(struct j1939_session *session,
1765 struct sk_buff *skb)
1767 const u8 *dat = skb->data;
1769 if (j1939_xtp_rx_cmd_bad_pgn(session, skb))
1772 netdev_dbg(session->priv->ndev, "%s: 0x%p\n", __func__, session);
1774 /* transmitted without problems */
1775 session->pkt.dpo = j1939_etp_ctl_to_packet(skb->data);
1776 session->last_cmd = dat[0];
1777 j1939_tp_set_rxtimeout(session, 750);
1779 if (!session->transmission)
1780 j1939_sk_errqueue(session, J1939_ERRQUEUE_RX_DPO);
1783 static void j1939_xtp_rx_dpo(struct j1939_priv *priv, struct sk_buff *skb,
1786 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1787 struct j1939_session *session;
1789 session = j1939_session_get_by_addr(priv, &skcb->addr, false,
1792 netdev_info(priv->ndev,
1793 "%s: no connection found\n", __func__);
1797 j1939_xtp_rx_dpo_one(session, skb);
1798 j1939_session_put(session);
1801 static void j1939_xtp_rx_dat_one(struct j1939_session *session,
1802 struct sk_buff *skb)
1804 enum j1939_xtp_abort abort = J1939_XTP_ABORT_FAULT;
1805 struct j1939_priv *priv = session->priv;
1806 struct j1939_sk_buff_cb *skcb, *se_skcb;
1807 struct sk_buff *se_skb = NULL;
1813 bool remain = false;
1814 bool do_cts_eoma = false;
1817 skcb = j1939_skb_to_cb(skb);
1819 if (skb->len != 8) {
1820 /* makes no sense */
1821 abort = J1939_XTP_ABORT_UNEXPECTED_DATA;
1822 goto out_session_cancel;
1825 switch (session->last_cmd) {
1828 case J1939_ETP_CMD_DPO:
1829 if (skcb->addr.type == J1939_ETP)
1832 case J1939_TP_CMD_BAM:
1834 case J1939_TP_CMD_CTS:
1835 if (skcb->addr.type != J1939_ETP)
1839 netdev_info(priv->ndev, "%s: 0x%p: last %02x\n", __func__,
1840 session, session->last_cmd);
1841 goto out_session_cancel;
1844 packet = (dat[0] - 1 + session->pkt.dpo);
1845 if (packet > session->pkt.total ||
1846 (session->pkt.rx + 1) > session->pkt.total) {
1847 netdev_info(priv->ndev, "%s: 0x%p: should have been completed\n",
1849 goto out_session_cancel;
1852 se_skb = j1939_session_skb_get_by_offset(session, packet * 7);
1854 netdev_warn(priv->ndev, "%s: 0x%p: no skb found\n", __func__,
1856 goto out_session_cancel;
1859 se_skcb = j1939_skb_to_cb(se_skb);
1860 offset = packet * 7 - se_skcb->offset;
1861 nbytes = se_skb->len - offset;
1864 if (nbytes <= 0 || (nbytes + 1) > skb->len) {
1865 netdev_info(priv->ndev, "%s: 0x%p: nbytes %i, len %i\n",
1866 __func__, session, nbytes, skb->len);
1867 goto out_session_cancel;
1870 tpdat = se_skb->data;
1871 if (!session->transmission) {
1872 memcpy(&tpdat[offset], &dat[1], nbytes);
1876 err = memcmp(&tpdat[offset], &dat[1], nbytes);
1878 netdev_err_once(priv->ndev,
1879 "%s: 0x%p: Data of RX-looped back packet (%*ph) doesn't match TX data (%*ph)!\n",
1882 nbytes, &tpdat[offset]);
1885 if (packet == session->pkt.rx)
1888 if (se_skcb->addr.type != J1939_ETP &&
1889 j1939_cb_is_broadcast(&session->skcb)) {
1890 if (session->pkt.rx >= session->pkt.total)
1895 /* never final, an EOMA must follow */
1896 if (session->pkt.rx >= session->pkt.last)
1901 j1939_session_timers_cancel(session);
1902 j1939_session_completed(session);
1903 } else if (remain) {
1904 if (!session->transmission)
1905 j1939_tp_set_rxtimeout(session, 750);
1906 } else if (do_cts_eoma) {
1907 j1939_tp_set_rxtimeout(session, 1250);
1908 if (!session->transmission)
1909 j1939_tp_schedule_txtimer(session, 0);
1911 j1939_tp_set_rxtimeout(session, 750);
1913 session->last_cmd = 0xff;
1914 consume_skb(se_skb);
1915 j1939_session_put(session);
1921 j1939_session_timers_cancel(session);
1922 j1939_session_cancel(session, abort);
1923 j1939_session_put(session);
1926 static void j1939_xtp_rx_dat(struct j1939_priv *priv, struct sk_buff *skb)
1928 struct j1939_sk_buff_cb *skcb;
1929 struct j1939_session *session;
1931 skcb = j1939_skb_to_cb(skb);
1933 if (j1939_tp_im_transmitter(skcb)) {
1934 session = j1939_session_get_by_addr(priv, &skcb->addr, false,
1937 netdev_info(priv->ndev, "%s: no tx connection found\n",
1940 j1939_xtp_rx_dat_one(session, skb);
1943 if (j1939_tp_im_receiver(skcb)) {
1944 session = j1939_session_get_by_addr(priv, &skcb->addr, false,
1947 netdev_info(priv->ndev, "%s: no rx connection found\n",
1950 j1939_xtp_rx_dat_one(session, skb);
1953 if (j1939_cb_is_broadcast(skcb)) {
1954 session = j1939_session_get_by_addr(priv, &skcb->addr, false,
1957 j1939_xtp_rx_dat_one(session, skb);
1961 /* j1939 main intf */
1962 struct j1939_session *j1939_tp_send(struct j1939_priv *priv,
1963 struct sk_buff *skb, size_t size)
1965 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
1966 struct j1939_session *session;
1969 if (skcb->addr.pgn == J1939_TP_PGN_DAT ||
1970 skcb->addr.pgn == J1939_TP_PGN_CTL ||
1971 skcb->addr.pgn == J1939_ETP_PGN_DAT ||
1972 skcb->addr.pgn == J1939_ETP_PGN_CTL)
1973 /* avoid conflict */
1974 return ERR_PTR(-EDOM);
1976 if (size > priv->tp_max_packet_size)
1977 return ERR_PTR(-EMSGSIZE);
1980 skcb->addr.type = J1939_SIMPLE;
1981 else if (size > J1939_MAX_TP_PACKET_SIZE)
1982 skcb->addr.type = J1939_ETP;
1984 skcb->addr.type = J1939_TP;
1986 if (skcb->addr.type == J1939_ETP &&
1987 j1939_cb_is_broadcast(skcb))
1988 return ERR_PTR(-EDESTADDRREQ);
1990 /* fill in addresses from names */
1991 ret = j1939_ac_fixup(priv, skb);
1993 return ERR_PTR(ret);
1995 /* fix DST flags, it may be used there soon */
1996 if (j1939_address_is_unicast(skcb->addr.da) &&
1997 priv->ents[skcb->addr.da].nusers)
1998 skcb->flags |= J1939_ECU_LOCAL_DST;
2000 /* src is always local, I'm sending ... */
2001 skcb->flags |= J1939_ECU_LOCAL_SRC;
2003 /* prepare new session */
2004 session = j1939_session_new(priv, skb, size);
2006 return ERR_PTR(-ENOMEM);
2008 /* skb is recounted in j1939_session_new() */
2010 session->sk = skb->sk;
2011 session->transmission = true;
2012 session->pkt.total = (size + 6) / 7;
2013 session->pkt.block = skcb->addr.type == J1939_ETP ? 255 :
2014 min(j1939_tp_block ?: 255, session->pkt.total);
2016 if (j1939_cb_is_broadcast(&session->skcb))
2017 /* set the end-packet for broadcast */
2018 session->pkt.last = session->pkt.total;
2020 skcb->tskey = atomic_inc_return(&session->sk->sk_tskey) - 1;
2021 session->tskey = skcb->tskey;
2026 static void j1939_tp_cmd_recv(struct j1939_priv *priv, struct sk_buff *skb)
2028 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
2029 int extd = J1939_TP;
2030 u8 cmd = skb->data[0];
2033 case J1939_ETP_CMD_RTS:
2036 case J1939_TP_CMD_BAM:
2037 if (cmd == J1939_TP_CMD_BAM && !j1939_cb_is_broadcast(skcb)) {
2038 netdev_err_once(priv->ndev, "%s: BAM to unicast (%02x), ignoring!\n",
2039 __func__, skcb->addr.sa);
2043 case J1939_TP_CMD_RTS:
2044 if (skcb->addr.type != extd)
2047 if (cmd == J1939_TP_CMD_RTS && j1939_cb_is_broadcast(skcb)) {
2048 netdev_alert(priv->ndev, "%s: rts without destination (%02x)\n",
2049 __func__, skcb->addr.sa);
2053 if (j1939_tp_im_transmitter(skcb))
2054 j1939_xtp_rx_rts(priv, skb, true);
2056 if (j1939_tp_im_receiver(skcb) || j1939_cb_is_broadcast(skcb))
2057 j1939_xtp_rx_rts(priv, skb, false);
2061 case J1939_ETP_CMD_CTS:
2064 case J1939_TP_CMD_CTS:
2065 if (skcb->addr.type != extd)
2068 if (j1939_tp_im_transmitter(skcb))
2069 j1939_xtp_rx_cts(priv, skb, false);
2071 if (j1939_tp_im_receiver(skcb))
2072 j1939_xtp_rx_cts(priv, skb, true);
2076 case J1939_ETP_CMD_DPO:
2077 if (skcb->addr.type != J1939_ETP)
2080 if (j1939_tp_im_transmitter(skcb))
2081 j1939_xtp_rx_dpo(priv, skb, true);
2083 if (j1939_tp_im_receiver(skcb))
2084 j1939_xtp_rx_dpo(priv, skb, false);
2088 case J1939_ETP_CMD_EOMA:
2091 case J1939_TP_CMD_EOMA:
2092 if (skcb->addr.type != extd)
2095 if (j1939_tp_im_transmitter(skcb))
2096 j1939_xtp_rx_eoma(priv, skb, false);
2098 if (j1939_tp_im_receiver(skcb))
2099 j1939_xtp_rx_eoma(priv, skb, true);
2103 case J1939_ETP_CMD_ABORT: /* && J1939_TP_CMD_ABORT */
2104 if (j1939_cb_is_broadcast(skcb)) {
2105 netdev_err_once(priv->ndev, "%s: abort to broadcast (%02x), ignoring!\n",
2106 __func__, skcb->addr.sa);
2110 if (j1939_tp_im_transmitter(skcb))
2111 j1939_xtp_rx_abort(priv, skb, true);
2113 if (j1939_tp_im_receiver(skcb))
2114 j1939_xtp_rx_abort(priv, skb, false);
2122 int j1939_tp_recv(struct j1939_priv *priv, struct sk_buff *skb)
2124 struct j1939_sk_buff_cb *skcb = j1939_skb_to_cb(skb);
2126 if (!j1939_tp_im_involved_anydir(skcb) && !j1939_cb_is_broadcast(skcb))
2129 switch (skcb->addr.pgn) {
2130 case J1939_ETP_PGN_DAT:
2131 skcb->addr.type = J1939_ETP;
2133 case J1939_TP_PGN_DAT:
2134 j1939_xtp_rx_dat(priv, skb);
2137 case J1939_ETP_PGN_CTL:
2138 skcb->addr.type = J1939_ETP;
2140 case J1939_TP_PGN_CTL:
2142 return 0; /* Don't care. Nothing to extract here */
2144 j1939_tp_cmd_recv(priv, skb);
2147 return 0; /* no problem */
2149 return 1; /* "I processed the message" */
2152 void j1939_simple_recv(struct j1939_priv *priv, struct sk_buff *skb)
2154 struct j1939_session *session;
2159 if (skb->sk->sk_family != AF_CAN ||
2160 skb->sk->sk_protocol != CAN_J1939)
2163 j1939_session_list_lock(priv);
2164 session = j1939_session_get_simple(priv, skb);
2165 j1939_session_list_unlock(priv);
2167 netdev_warn(priv->ndev,
2168 "%s: Received already invalidated message\n",
2173 j1939_session_timers_cancel(session);
2174 j1939_session_deactivate(session);
2175 j1939_session_put(session);
2178 int j1939_cancel_active_session(struct j1939_priv *priv, struct sock *sk)
2180 struct j1939_session *session, *saved;
2182 netdev_dbg(priv->ndev, "%s, sk: %p\n", __func__, sk);
2183 j1939_session_list_lock(priv);
2184 list_for_each_entry_safe(session, saved,
2185 &priv->active_session_list,
2186 active_session_list_entry) {
2187 if (!sk || sk == session->sk) {
2188 if (hrtimer_try_to_cancel(&session->txtimer) == 1)
2189 j1939_session_put(session);
2190 if (hrtimer_try_to_cancel(&session->rxtimer) == 1)
2191 j1939_session_put(session);
2193 session->err = ESHUTDOWN;
2194 j1939_session_deactivate_locked(session);
2197 j1939_session_list_unlock(priv);
2201 void j1939_tp_init(struct j1939_priv *priv)
2203 spin_lock_init(&priv->active_session_list_lock);
2204 INIT_LIST_HEAD(&priv->active_session_list);
2205 priv->tp_max_packet_size = J1939_MAX_ETP_PACKET_SIZE;