3 * Intel Management Engine Interface (Intel MEI) Linux driver
4 * Copyright (c) 2003-2012, Intel Corporation.
6 * This program is free software; you can redistribute it and/or modify it
7 * under the terms and conditions of the GNU General Public License,
8 * version 2, as published by the Free Software Foundation.
10 * This program is distributed in the hope it will be useful, but WITHOUT
11 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
12 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
17 #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
19 #include <linux/module.h>
20 #include <linux/moduleparam.h>
21 #include <linux/kernel.h>
22 #include <linux/device.h>
24 #include <linux/errno.h>
25 #include <linux/types.h>
26 #include <linux/fcntl.h>
27 #include <linux/aio.h>
28 #include <linux/pci.h>
29 #include <linux/poll.h>
30 #include <linux/init.h>
31 #include <linux/ioctl.h>
32 #include <linux/cdev.h>
33 #include <linux/sched.h>
34 #include <linux/uuid.h>
35 #include <linux/compat.h>
36 #include <linux/jiffies.h>
37 #include <linux/interrupt.h>
38 #include <linux/miscdevice.h>
41 #include <linux/mei.h>
42 #include "interface.h"
44 /* AMT device is a singleton on the platform */
45 static struct pci_dev *mei_pdev;
47 /* mei_pci_tbl - PCI Device ID Table */
48 static DEFINE_PCI_DEVICE_TABLE(mei_pci_tbl) = {
49 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_82946GZ)},
50 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_82G35)},
51 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_82Q965)},
52 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_82G965)},
53 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_82GM965)},
54 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_82GME965)},
55 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_82Q35)},
56 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_82G33)},
57 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_82Q33)},
58 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_82X38)},
59 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_3200)},
60 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_6)},
61 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_7)},
62 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_8)},
63 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_9)},
64 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9_10)},
65 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9M_1)},
66 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9M_2)},
67 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9M_3)},
68 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH9M_4)},
69 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH10_1)},
70 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH10_2)},
71 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH10_3)},
72 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_ICH10_4)},
73 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_IBXPK_1)},
74 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_IBXPK_2)},
75 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_CPT_1)},
76 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_PBG_1)},
77 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_PPT_1)},
78 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_PPT_2)},
79 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_PPT_3)},
80 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_LPT)},
81 {PCI_DEVICE(PCI_VENDOR_ID_INTEL, MEI_DEV_ID_LPT_LP)},
83 /* required last entry */
87 MODULE_DEVICE_TABLE(pci, mei_pci_tbl);
89 static DEFINE_MUTEX(mei_mutex);
93 * mei_clear_list - removes all callbacks associated with file
96 * @dev: device structure.
97 * @file: file structure
98 * @mei_cb_list: callbacks list
100 * mei_clear_list is called to clear resources associated with file
101 * when application calls close function or Ctrl-C was pressed
103 * returns true if callback removed from the list, false otherwise
105 static bool mei_clear_list(struct mei_device *dev,
106 struct file *file, struct list_head *mei_cb_list)
108 struct mei_cl_cb *cb_pos = NULL;
109 struct mei_cl_cb *cb_next = NULL;
110 struct file *file_temp;
111 bool removed = false;
113 /* list all list member */
114 list_for_each_entry_safe(cb_pos, cb_next, mei_cb_list, list) {
115 file_temp = (struct file *)cb_pos->file_object;
116 /* check if list member associated with a file */
117 if (file_temp == file) {
118 /* remove member from the list */
119 list_del(&cb_pos->list);
120 /* check if cb equal to current iamthif cb */
121 if (dev->iamthif_current_cb == cb_pos) {
122 dev->iamthif_current_cb = NULL;
123 /* send flow control to iamthif client */
124 mei_send_flow_control(dev, &dev->iamthif_cl);
126 /* free all allocated buffers */
127 mei_free_cb_private(cb_pos);
136 * mei_clear_lists - removes all callbacks associated with file
138 * @dev: device structure
139 * @file: file structure
141 * mei_clear_lists is called to clear resources associated with file
142 * when application calls close function or Ctrl-C was pressed
144 * returns true if callback removed from the list, false otherwise
146 static bool mei_clear_lists(struct mei_device *dev, struct file *file)
148 bool removed = false;
150 /* remove callbacks associated with a file */
151 mei_clear_list(dev, file, &dev->amthi_cmd_list.list);
152 if (mei_clear_list(dev, file,
153 &dev->amthi_read_complete_list.list))
156 mei_clear_list(dev, file, &dev->ctrl_rd_list.list);
158 if (mei_clear_list(dev, file, &dev->ctrl_wr_list.list))
161 if (mei_clear_list(dev, file, &dev->write_waiting_list.list))
164 if (mei_clear_list(dev, file, &dev->write_list.list))
167 /* check if iamthif_current_cb not NULL */
168 if (dev->iamthif_current_cb && !removed) {
169 /* check file and iamthif current cb association */
170 if (dev->iamthif_current_cb->file_object == file) {
172 mei_free_cb_private(dev->iamthif_current_cb);
173 dev->iamthif_current_cb = NULL;
180 * find_read_list_entry - find read list entry
182 * @dev: device structure
183 * @file: pointer to file structure
185 * returns cb on success, NULL on error
187 static struct mei_cl_cb *find_read_list_entry(
188 struct mei_device *dev,
191 struct mei_cl_cb *pos = NULL;
192 struct mei_cl_cb *next = NULL;
194 dev_dbg(&dev->pdev->dev, "remove read_list CB\n");
195 list_for_each_entry_safe(pos, next, &dev->read_list.list, list) {
196 struct mei_cl *cl_temp;
197 cl_temp = (struct mei_cl *)pos->file_private;
199 if (mei_cl_cmp_id(cl, cl_temp))
206 * mei_open - the open function
208 * @inode: pointer to inode structure
209 * @file: pointer to file structure
211 * returns 0 on success, <0 on error
213 static int mei_open(struct inode *inode, struct file *file)
216 struct mei_device *dev;
224 dev = pci_get_drvdata(mei_pdev);
228 mutex_lock(&dev->device_lock);
230 cl = mei_cl_allocate(dev);
235 if (dev->dev_state != MEI_DEV_ENABLED) {
236 dev_dbg(&dev->pdev->dev, "dev_state != MEI_ENABLED dev_state = %s\n",
237 mei_dev_state_str(dev->dev_state));
241 if (dev->open_handle_count >= MEI_MAX_OPEN_HANDLE_COUNT) {
242 dev_err(&dev->pdev->dev, "open_handle_count exceded %d",
243 MEI_MAX_OPEN_HANDLE_COUNT);
247 cl_id = find_first_zero_bit(dev->host_clients_map, MEI_CLIENTS_MAX);
248 if (cl_id >= MEI_CLIENTS_MAX) {
249 dev_err(&dev->pdev->dev, "client_id exceded %d",
254 cl->host_client_id = cl_id;
256 dev_dbg(&dev->pdev->dev, "client_id = %d\n", cl->host_client_id);
258 dev->open_handle_count++;
260 list_add_tail(&cl->link, &dev->file_list);
262 set_bit(cl->host_client_id, dev->host_clients_map);
263 cl->state = MEI_FILE_INITIALIZING;
266 file->private_data = cl;
267 mutex_unlock(&dev->device_lock);
269 return nonseekable_open(inode, file);
272 mutex_unlock(&dev->device_lock);
279 * mei_release - the release function
281 * @inode: pointer to inode structure
282 * @file: pointer to file structure
284 * returns 0 on success, <0 on error
286 static int mei_release(struct inode *inode, struct file *file)
288 struct mei_cl *cl = file->private_data;
289 struct mei_cl_cb *cb;
290 struct mei_device *dev;
293 if (WARN_ON(!cl || !cl->dev))
298 mutex_lock(&dev->device_lock);
299 if (cl != &dev->iamthif_cl) {
300 if (cl->state == MEI_FILE_CONNECTED) {
301 cl->state = MEI_FILE_DISCONNECTING;
302 dev_dbg(&dev->pdev->dev,
303 "disconnecting client host client = %d, "
307 rets = mei_disconnect_host_client(dev, cl);
309 mei_cl_flush_queues(cl);
310 dev_dbg(&dev->pdev->dev, "remove client host client = %d, ME client = %d\n",
314 if (dev->open_handle_count > 0) {
315 clear_bit(cl->host_client_id, dev->host_clients_map);
316 dev->open_handle_count--;
318 mei_remove_client_from_file_list(dev, cl->host_client_id);
323 cb = find_read_list_entry(dev, cl);
324 /* Remove entry from read list */
332 file->private_data = NULL;
335 mei_free_cb_private(cb);
341 if (dev->open_handle_count > 0)
342 dev->open_handle_count--;
344 if (dev->iamthif_file_object == file &&
345 dev->iamthif_state != MEI_IAMTHIF_IDLE) {
347 dev_dbg(&dev->pdev->dev, "amthi canceled iamthif state %d\n",
349 dev->iamthif_canceled = true;
350 if (dev->iamthif_state == MEI_IAMTHIF_READ_COMPLETE) {
351 dev_dbg(&dev->pdev->dev, "run next amthi iamthif cb\n");
352 mei_run_next_iamthif_cmd(dev);
356 if (mei_clear_lists(dev, file))
357 dev->iamthif_state = MEI_IAMTHIF_IDLE;
360 mutex_unlock(&dev->device_lock);
366 * mei_read - the read function.
368 * @file: pointer to file structure
369 * @ubuf: pointer to user buffer
370 * @length: buffer length
371 * @offset: data offset in buffer
373 * returns >=0 data length on success , <0 on error
375 static ssize_t mei_read(struct file *file, char __user *ubuf,
376 size_t length, loff_t *offset)
378 struct mei_cl *cl = file->private_data;
379 struct mei_cl_cb *cb_pos = NULL;
380 struct mei_cl_cb *cb = NULL;
381 struct mei_device *dev;
387 if (WARN_ON(!cl || !cl->dev))
392 mutex_lock(&dev->device_lock);
393 if (dev->dev_state != MEI_DEV_ENABLED) {
398 if ((cl->sm_state & MEI_WD_STATE_INDEPENDENCE_MSG_SENT) == 0) {
399 /* Do not allow to read watchdog client */
400 i = mei_me_cl_by_uuid(dev, &mei_wd_guid);
402 struct mei_me_client *me_client = &dev->me_clients[i];
403 if (cl->me_client_id == me_client->client_id) {
409 cl->sm_state &= ~MEI_WD_STATE_INDEPENDENCE_MSG_SENT;
412 if (cl == &dev->iamthif_cl) {
413 rets = amthi_read(dev, file, ubuf, length, offset);
417 if (cl->read_cb && cl->read_cb->buf_idx > *offset) {
420 } else if (cl->read_cb && cl->read_cb->buf_idx > 0 &&
421 cl->read_cb->buf_idx <= *offset) {
425 } else if ((!cl->read_cb || !cl->read_cb->buf_idx) && *offset > 0) {
426 /*Offset needs to be cleaned for contiguous reads*/
432 err = mei_start_read(dev, cl);
433 if (err && err != -EBUSY) {
434 dev_dbg(&dev->pdev->dev,
435 "mei start read failure with status = %d\n", err);
440 if (MEI_READ_COMPLETE != cl->reading_state &&
441 !waitqueue_active(&cl->rx_wait)) {
442 if (file->f_flags & O_NONBLOCK) {
447 mutex_unlock(&dev->device_lock);
449 if (wait_event_interruptible(cl->rx_wait,
450 (MEI_READ_COMPLETE == cl->reading_state ||
451 MEI_FILE_INITIALIZING == cl->state ||
452 MEI_FILE_DISCONNECTED == cl->state ||
453 MEI_FILE_DISCONNECTING == cl->state))) {
454 if (signal_pending(current))
459 mutex_lock(&dev->device_lock);
460 if (MEI_FILE_INITIALIZING == cl->state ||
461 MEI_FILE_DISCONNECTED == cl->state ||
462 MEI_FILE_DISCONNECTING == cl->state) {
474 if (cl->reading_state != MEI_READ_COMPLETE) {
478 /* now copy the data to user space */
480 dev_dbg(&dev->pdev->dev, "cb->response_buffer size - %d\n",
481 cb->response_buffer.size);
482 dev_dbg(&dev->pdev->dev, "cb->buf_idx - %lu\n", cb->buf_idx);
483 if (length == 0 || ubuf == NULL || *offset > cb->buf_idx) {
488 /* length is being truncated to PAGE_SIZE,
489 * however buf_idx may point beyond that */
490 length = min_t(size_t, length, cb->buf_idx - *offset);
492 if (copy_to_user(ubuf, cb->response_buffer.data + *offset, length)) {
499 if ((unsigned long)*offset < cb->buf_idx)
503 cb_pos = find_read_list_entry(dev, cl);
504 /* Remove entry from read list */
506 list_del(&cb_pos->list);
507 mei_free_cb_private(cb);
508 cl->reading_state = MEI_IDLE;
510 cl->read_pending = 0;
512 dev_dbg(&dev->pdev->dev, "end mei read rets= %d\n", rets);
513 mutex_unlock(&dev->device_lock);
518 * mei_io_cb_init - allocate and initialize io callback
521 * @file: pointer to file structure
523 * returns mei_cl_cb pointer or NULL;
525 static struct mei_cl_cb *mei_io_cb_init(struct mei_cl *cl, struct file *fp)
527 struct mei_cl_cb *cb;
528 struct mei_device *dev;
532 cb = kzalloc(sizeof(struct mei_cl_cb), GFP_KERNEL);
536 mei_io_list_init(cb);
538 cb->file_object = fp;
539 cb->file_private = cl;
546 * mei_io_cb_alloc_req_buf - allocate request buffer
548 * @cb - io callback structure
549 * @size: size of the buffer
551 * returns 0 on success
552 * -EINVAL if cb is NULL
553 * -ENOMEM if allocation failed
555 static int mei_io_cb_alloc_req_buf(struct mei_cl_cb *cb, size_t length)
563 cb->request_buffer.data = kmalloc(length, GFP_KERNEL);
564 if (!cb->request_buffer.data)
566 cb->request_buffer.size = length;
570 * mei_io_cb_alloc_req_buf - allocate respose buffer
572 * @cb - io callback structure
573 * @size: size of the buffer
575 * returns 0 on success
576 * -EINVAL if cb is NULL
577 * -ENOMEM if allocation failed
579 static int mei_io_cb_alloc_resp_buf(struct mei_cl_cb *cb, size_t length)
587 cb->response_buffer.data = kmalloc(length, GFP_KERNEL);
588 if (!cb->response_buffer.data)
590 cb->response_buffer.size = length;
595 * mei_write - the write function.
597 * @file: pointer to file structure
598 * @ubuf: pointer to user buffer
599 * @length: buffer length
600 * @offset: data offset in buffer
602 * returns >=0 data length on success , <0 on error
604 static ssize_t mei_write(struct file *file, const char __user *ubuf,
605 size_t length, loff_t *offset)
607 struct mei_cl *cl = file->private_data;
608 struct mei_cl_cb *write_cb = NULL;
609 struct mei_msg_hdr mei_hdr;
610 struct mei_device *dev;
611 unsigned long timeout = 0;
615 if (WARN_ON(!cl || !cl->dev))
620 mutex_lock(&dev->device_lock);
622 if (dev->dev_state != MEI_DEV_ENABLED) {
627 i = mei_me_cl_by_id(dev, cl->me_client_id);
632 if (length > dev->me_clients[i].props.max_msg_length || length <= 0) {
637 if (cl->state != MEI_FILE_CONNECTED) {
639 dev_err(&dev->pdev->dev, "host client = %d, is not connected to ME client = %d",
640 cl->host_client_id, cl->me_client_id);
643 if (cl == &dev->iamthif_cl) {
644 write_cb = find_amthi_read_list_entry(dev, file);
647 timeout = write_cb->read_time +
648 msecs_to_jiffies(IAMTHIF_READ_TIMER);
650 if (time_after(jiffies, timeout) ||
651 cl->reading_state == MEI_READ_COMPLETE) {
653 list_del(&write_cb->list);
654 mei_free_cb_private(write_cb);
660 /* free entry used in read */
661 if (cl->reading_state == MEI_READ_COMPLETE) {
663 write_cb = find_read_list_entry(dev, cl);
665 list_del(&write_cb->list);
666 mei_free_cb_private(write_cb);
668 cl->reading_state = MEI_IDLE;
670 cl->read_pending = 0;
672 } else if (cl->reading_state == MEI_IDLE && !cl->read_pending)
676 write_cb = mei_io_cb_init(cl, file);
678 dev_err(&dev->pdev->dev, "write cb allocation failed\n");
682 rets = mei_io_cb_alloc_req_buf(write_cb, length);
686 dev_dbg(&dev->pdev->dev, "cb request size = %zd\n", length);
688 rets = copy_from_user(write_cb->request_buffer.data, ubuf, length);
694 ((memcmp(mei_wd_state_independence_msg[0],
695 write_cb->request_buffer.data, 4) == 0) ||
696 (memcmp(mei_wd_state_independence_msg[1],
697 write_cb->request_buffer.data, 4) == 0) ||
698 (memcmp(mei_wd_state_independence_msg[2],
699 write_cb->request_buffer.data, 4) == 0)))
700 cl->sm_state |= MEI_WD_STATE_INDEPENDENCE_MSG_SENT;
702 if (cl == &dev->iamthif_cl) {
703 rets = mei_io_cb_alloc_resp_buf(write_cb, dev->iamthif_mtu);
707 write_cb->major_file_operations = MEI_IOCTL;
709 if (!list_empty(&dev->amthi_cmd_list.list) ||
710 dev->iamthif_state != MEI_IAMTHIF_IDLE) {
711 dev_dbg(&dev->pdev->dev, "amthi_state = %d\n",
712 (int) dev->iamthif_state);
713 dev_dbg(&dev->pdev->dev, "add amthi cb to amthi cmd waiting list\n");
714 list_add_tail(&write_cb->list, &dev->amthi_cmd_list.list);
716 dev_dbg(&dev->pdev->dev, "call amthi write\n");
717 rets = amthi_write(dev, write_cb);
720 dev_err(&dev->pdev->dev, "amthi write failed with status = %d\n",
725 mutex_unlock(&dev->device_lock);
729 write_cb->major_file_operations = MEI_WRITE;
731 dev_dbg(&dev->pdev->dev, "host client = %d, ME client = %d\n",
732 cl->host_client_id, cl->me_client_id);
733 rets = mei_flow_ctrl_creds(dev, cl);
737 if (rets && dev->mei_host_buffer_is_empty) {
739 dev->mei_host_buffer_is_empty = false;
740 if (length > mei_hbuf_max_data(dev)) {
741 mei_hdr.length = mei_hbuf_max_data(dev);
742 mei_hdr.msg_complete = 0;
744 mei_hdr.length = length;
745 mei_hdr.msg_complete = 1;
747 mei_hdr.host_addr = cl->host_client_id;
748 mei_hdr.me_addr = cl->me_client_id;
749 mei_hdr.reserved = 0;
750 dev_dbg(&dev->pdev->dev, "call mei_write_message header=%08x.\n",
751 *((u32 *) &mei_hdr));
752 if (mei_write_message(dev, &mei_hdr,
753 (unsigned char *) (write_cb->request_buffer.data),
758 cl->writing_state = MEI_WRITING;
759 write_cb->buf_idx = mei_hdr.length;
760 if (mei_hdr.msg_complete) {
761 if (mei_flow_ctrl_reduce(dev, cl)) {
765 list_add_tail(&write_cb->list, &dev->write_waiting_list.list);
767 list_add_tail(&write_cb->list, &dev->write_list.list);
772 write_cb->buf_idx = 0;
773 cl->writing_state = MEI_WRITING;
774 list_add_tail(&write_cb->list, &dev->write_list.list);
776 mutex_unlock(&dev->device_lock);
780 mutex_unlock(&dev->device_lock);
781 mei_free_cb_private(write_cb);
787 * mei_ioctl - the IOCTL function
789 * @file: pointer to file structure
790 * @cmd: ioctl command
791 * @data: pointer to mei message structure
793 * returns 0 on success , <0 on error
795 static long mei_ioctl(struct file *file, unsigned int cmd, unsigned long data)
797 struct mei_device *dev;
798 struct mei_cl *cl = file->private_data;
799 struct mei_connect_client_data *connect_data = NULL;
802 if (cmd != IOCTL_MEI_CONNECT_CLIENT)
805 if (WARN_ON(!cl || !cl->dev))
810 dev_dbg(&dev->pdev->dev, "IOCTL cmd = 0x%x", cmd);
812 mutex_lock(&dev->device_lock);
813 if (dev->dev_state != MEI_DEV_ENABLED) {
818 dev_dbg(&dev->pdev->dev, ": IOCTL_MEI_CONNECT_CLIENT.\n");
820 connect_data = kzalloc(sizeof(struct mei_connect_client_data),
826 dev_dbg(&dev->pdev->dev, "copy connect data from user\n");
827 if (copy_from_user(connect_data, (char __user *)data,
828 sizeof(struct mei_connect_client_data))) {
829 dev_dbg(&dev->pdev->dev, "failed to copy data from userland\n");
833 rets = mei_ioctl_connect_client(file, connect_data);
835 /* if all is ok, copying the data back to user. */
839 dev_dbg(&dev->pdev->dev, "copy connect data to user\n");
840 if (copy_to_user((char __user *)data, connect_data,
841 sizeof(struct mei_connect_client_data))) {
842 dev_dbg(&dev->pdev->dev, "failed to copy data to userland\n");
849 mutex_unlock(&dev->device_lock);
854 * mei_compat_ioctl - the compat IOCTL function
856 * @file: pointer to file structure
857 * @cmd: ioctl command
858 * @data: pointer to mei message structure
860 * returns 0 on success , <0 on error
863 static long mei_compat_ioctl(struct file *file,
864 unsigned int cmd, unsigned long data)
866 return mei_ioctl(file, cmd, (unsigned long)compat_ptr(data));
872 * mei_poll - the poll function
874 * @file: pointer to file structure
875 * @wait: pointer to poll_table structure
879 static unsigned int mei_poll(struct file *file, poll_table *wait)
881 struct mei_cl *cl = file->private_data;
882 struct mei_device *dev;
883 unsigned int mask = 0;
885 if (WARN_ON(!cl || !cl->dev))
890 mutex_lock(&dev->device_lock);
892 if (dev->dev_state != MEI_DEV_ENABLED)
896 if (cl == &dev->iamthif_cl) {
897 mutex_unlock(&dev->device_lock);
898 poll_wait(file, &dev->iamthif_cl.wait, wait);
899 mutex_lock(&dev->device_lock);
900 if (dev->iamthif_state == MEI_IAMTHIF_READ_COMPLETE &&
901 dev->iamthif_file_object == file) {
902 mask |= (POLLIN | POLLRDNORM);
903 dev_dbg(&dev->pdev->dev, "run next amthi cb\n");
904 mei_run_next_iamthif_cmd(dev);
909 mutex_unlock(&dev->device_lock);
910 poll_wait(file, &cl->tx_wait, wait);
911 mutex_lock(&dev->device_lock);
912 if (MEI_WRITE_COMPLETE == cl->writing_state)
913 mask |= (POLLIN | POLLRDNORM);
916 mutex_unlock(&dev->device_lock);
921 * file operations structure will be used for mei char device.
923 static const struct file_operations mei_fops = {
924 .owner = THIS_MODULE,
926 .unlocked_ioctl = mei_ioctl,
928 .compat_ioctl = mei_compat_ioctl,
931 .release = mei_release,
941 static struct miscdevice mei_misc_device = {
944 .minor = MISC_DYNAMIC_MINOR,
948 * mei_quirk_probe - probe for devices that doesn't valid ME interface
949 * @pdev: PCI device structure
950 * @ent: entry into pci_device_table
952 * returns true if ME Interface is valid, false otherwise
954 static bool __devinit mei_quirk_probe(struct pci_dev *pdev,
955 const struct pci_device_id *ent)
958 if (ent->device == MEI_DEV_ID_PBG_1) {
959 pci_read_config_dword(pdev, 0x48, ®);
960 /* make sure that bit 9 is up and bit 10 is down */
961 if ((reg & 0x600) == 0x200) {
962 dev_info(&pdev->dev, "Device doesn't have valid ME Interface\n");
969 * mei_probe - Device Initialization Routine
971 * @pdev: PCI device structure
972 * @ent: entry in kcs_pci_tbl
974 * returns 0 on success, <0 on failure.
976 static int __devinit mei_probe(struct pci_dev *pdev,
977 const struct pci_device_id *ent)
979 struct mei_device *dev;
982 mutex_lock(&mei_mutex);
984 if (!mei_quirk_probe(pdev, ent)) {
994 err = pci_enable_device(pdev);
996 dev_err(&pdev->dev, "failed to enable pci device.\n");
999 /* set PCI host mastering */
1000 pci_set_master(pdev);
1001 /* pci request regions for mei driver */
1002 err = pci_request_regions(pdev, KBUILD_MODNAME);
1004 dev_err(&pdev->dev, "failed to get pci regions.\n");
1005 goto disable_device;
1007 /* allocates and initializes the mei dev structure */
1008 dev = mei_device_init(pdev);
1011 goto release_regions;
1013 /* mapping IO device memory */
1014 dev->mem_addr = pci_iomap(pdev, 0, 0);
1015 if (!dev->mem_addr) {
1016 dev_err(&pdev->dev, "mapping I/O device memory failure.\n");
1020 pci_enable_msi(pdev);
1022 /* request and enable interrupt */
1023 if (pci_dev_msi_enabled(pdev))
1024 err = request_threaded_irq(pdev->irq,
1026 mei_interrupt_thread_handler,
1027 IRQF_ONESHOT, KBUILD_MODNAME, dev);
1029 err = request_threaded_irq(pdev->irq,
1030 mei_interrupt_quick_handler,
1031 mei_interrupt_thread_handler,
1032 IRQF_SHARED, KBUILD_MODNAME, dev);
1035 dev_err(&pdev->dev, "request_threaded_irq failure. irq = %d\n",
1039 INIT_DELAYED_WORK(&dev->timer_work, mei_timer);
1040 if (mei_hw_init(dev)) {
1041 dev_err(&pdev->dev, "init hw failure.\n");
1046 err = misc_register(&mei_misc_device);
1051 pci_set_drvdata(pdev, dev);
1054 schedule_delayed_work(&dev->timer_work, HZ);
1056 mutex_unlock(&mei_mutex);
1058 pr_debug("initialization successful.\n");
1063 /* disable interrupts */
1064 dev->host_hw_state = mei_hcsr_read(dev);
1065 mei_disable_interrupts(dev);
1066 flush_scheduled_work();
1067 free_irq(pdev->irq, dev);
1069 pci_disable_msi(pdev);
1070 pci_iounmap(pdev, dev->mem_addr);
1074 pci_release_regions(pdev);
1076 pci_disable_device(pdev);
1078 mutex_unlock(&mei_mutex);
1079 dev_err(&pdev->dev, "initialization failed.\n");
1084 * mei_remove - Device Removal Routine
1086 * @pdev: PCI device structure
1088 * mei_remove is called by the PCI subsystem to alert the driver
1089 * that it should release a PCI device.
1091 static void __devexit mei_remove(struct pci_dev *pdev)
1093 struct mei_device *dev;
1095 if (mei_pdev != pdev)
1098 dev = pci_get_drvdata(pdev);
1102 mutex_lock(&dev->device_lock);
1104 cancel_delayed_work(&dev->timer_work);
1110 if (dev->iamthif_cl.state == MEI_FILE_CONNECTED) {
1111 dev->iamthif_cl.state = MEI_FILE_DISCONNECTING;
1112 mei_disconnect_host_client(dev, &dev->iamthif_cl);
1114 if (dev->wd_cl.state == MEI_FILE_CONNECTED) {
1115 dev->wd_cl.state = MEI_FILE_DISCONNECTING;
1116 mei_disconnect_host_client(dev, &dev->wd_cl);
1119 /* Unregistering watchdog device */
1120 mei_watchdog_unregister(dev);
1122 /* remove entry if already in list */
1123 dev_dbg(&pdev->dev, "list del iamthif and wd file list.\n");
1124 mei_remove_client_from_file_list(dev, dev->wd_cl.host_client_id);
1125 mei_remove_client_from_file_list(dev, dev->iamthif_cl.host_client_id);
1127 dev->iamthif_current_cb = NULL;
1128 dev->me_clients_num = 0;
1130 mutex_unlock(&dev->device_lock);
1132 flush_scheduled_work();
1134 /* disable interrupts */
1135 mei_disable_interrupts(dev);
1137 free_irq(pdev->irq, dev);
1138 pci_disable_msi(pdev);
1139 pci_set_drvdata(pdev, NULL);
1142 pci_iounmap(pdev, dev->mem_addr);
1146 pci_release_regions(pdev);
1147 pci_disable_device(pdev);
1149 misc_deregister(&mei_misc_device);
1152 static int mei_pci_suspend(struct device *device)
1154 struct pci_dev *pdev = to_pci_dev(device);
1155 struct mei_device *dev = pci_get_drvdata(pdev);
1160 mutex_lock(&dev->device_lock);
1162 cancel_delayed_work(&dev->timer_work);
1164 /* Stop watchdog if exists */
1165 err = mei_wd_stop(dev);
1166 /* Set new mei state */
1167 if (dev->dev_state == MEI_DEV_ENABLED ||
1168 dev->dev_state == MEI_DEV_RECOVERING_FROM_RESET) {
1169 dev->dev_state = MEI_DEV_POWER_DOWN;
1172 mutex_unlock(&dev->device_lock);
1174 free_irq(pdev->irq, dev);
1175 pci_disable_msi(pdev);
1180 static int mei_pci_resume(struct device *device)
1182 struct pci_dev *pdev = to_pci_dev(device);
1183 struct mei_device *dev;
1186 dev = pci_get_drvdata(pdev);
1190 pci_enable_msi(pdev);
1192 /* request and enable interrupt */
1193 if (pci_dev_msi_enabled(pdev))
1194 err = request_threaded_irq(pdev->irq,
1196 mei_interrupt_thread_handler,
1197 IRQF_ONESHOT, KBUILD_MODNAME, dev);
1199 err = request_threaded_irq(pdev->irq,
1200 mei_interrupt_quick_handler,
1201 mei_interrupt_thread_handler,
1202 IRQF_SHARED, KBUILD_MODNAME, dev);
1205 dev_err(&pdev->dev, "request_threaded_irq failed: irq = %d.\n",
1210 mutex_lock(&dev->device_lock);
1211 dev->dev_state = MEI_DEV_POWER_UP;
1213 mutex_unlock(&dev->device_lock);
1215 /* Start timer if stopped in suspend */
1216 schedule_delayed_work(&dev->timer_work, HZ);
1220 static SIMPLE_DEV_PM_OPS(mei_pm_ops, mei_pci_suspend, mei_pci_resume);
1221 #define MEI_PM_OPS (&mei_pm_ops)
1223 #define MEI_PM_OPS NULL
1224 #endif /* CONFIG_PM */
1226 * PCI driver structure
1228 static struct pci_driver mei_driver = {
1229 .name = KBUILD_MODNAME,
1230 .id_table = mei_pci_tbl,
1232 .remove = __devexit_p(mei_remove),
1233 .shutdown = __devexit_p(mei_remove),
1234 .driver.pm = MEI_PM_OPS,
1237 module_pci_driver(mei_driver);
1239 MODULE_AUTHOR("Intel Corporation");
1240 MODULE_DESCRIPTION("Intel(R) Management Engine Interface");
1241 MODULE_LICENSE("GPL v2");
projects / firefly-linux-kernel-4.4.55.git / blob