cb18f7d12b
being polled.
- Remove the need for Giant from the USB HUB driver.
- Leave device unconfigured instead of disabling the USB port
when Huawei Autoinstall disk detection triggers. This should
fix problems that the Huawei device is not detected after
Autoinstall eject is issued.
- Reported by: Nikolay Antsiferov
- Fix memory use after free race for USB character devices.
- Reported by: Lucius Windschuh
- Factor out the enumeration lock into three functions to make the
coming newbus lock conversion more easy.
- usbd_enum_lock
- usbd_enum_unlock
- usbd_enum_is_locked
Submitted by: hps
806 lines
18 KiB
C
806 lines
18 KiB
C
/* $FreeBSD$ */
|
|
/*-
|
|
* Copyright (c) 2008 Hans Petter Selasky. All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
* SUCH DAMAGE.
|
|
*/
|
|
|
|
#include <sys/stdint.h>
|
|
#include <sys/stddef.h>
|
|
#include <sys/param.h>
|
|
#include <sys/queue.h>
|
|
#include <sys/types.h>
|
|
#include <sys/systm.h>
|
|
#include <sys/kernel.h>
|
|
#include <sys/bus.h>
|
|
#include <sys/linker_set.h>
|
|
#include <sys/module.h>
|
|
#include <sys/lock.h>
|
|
#include <sys/mutex.h>
|
|
#include <sys/condvar.h>
|
|
#include <sys/sysctl.h>
|
|
#include <sys/sx.h>
|
|
#include <sys/unistd.h>
|
|
#include <sys/callout.h>
|
|
#include <sys/malloc.h>
|
|
#include <sys/priv.h>
|
|
|
|
#include <dev/usb/usb.h>
|
|
#include <dev/usb/usbdi.h>
|
|
#include <dev/usb/usbdi_util.h>
|
|
#include "usb_if.h"
|
|
|
|
#define USB_DEBUG_VAR usb_debug
|
|
|
|
#include <dev/usb/usb_core.h>
|
|
#include <dev/usb/usb_process.h>
|
|
#include <dev/usb/usb_busdma.h>
|
|
#include <dev/usb/usb_transfer.h>
|
|
#include <dev/usb/usb_device.h>
|
|
#include <dev/usb/usb_debug.h>
|
|
#include <dev/usb/usb_dynamic.h>
|
|
#include <dev/usb/usb_hub.h>
|
|
|
|
#include <dev/usb/usb_controller.h>
|
|
#include <dev/usb/usb_bus.h>
|
|
|
|
/* function prototypes */
|
|
|
|
static uint8_t usb_handle_get_stall(struct usb_device *, uint8_t);
|
|
static usb_error_t usb_handle_remote_wakeup(struct usb_xfer *, uint8_t);
|
|
static usb_error_t usb_handle_request(struct usb_xfer *);
|
|
static usb_error_t usb_handle_set_config(struct usb_xfer *, uint8_t);
|
|
static usb_error_t usb_handle_set_stall(struct usb_xfer *, uint8_t,
|
|
uint8_t);
|
|
static usb_error_t usb_handle_iface_request(struct usb_xfer *, void **,
|
|
uint16_t *, struct usb_device_request, uint16_t,
|
|
uint8_t);
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_request_callback
|
|
*
|
|
* This function is the USB callback for generic USB Device control
|
|
* transfers.
|
|
*------------------------------------------------------------------------*/
|
|
void
|
|
usb_handle_request_callback(struct usb_xfer *xfer, usb_error_t error)
|
|
{
|
|
usb_error_t err;
|
|
|
|
/* check the current transfer state */
|
|
|
|
switch (USB_GET_STATE(xfer)) {
|
|
case USB_ST_SETUP:
|
|
case USB_ST_TRANSFERRED:
|
|
|
|
/* handle the request */
|
|
err = usb_handle_request(xfer);
|
|
|
|
if (err) {
|
|
|
|
if (err == USB_ERR_BAD_CONTEXT) {
|
|
/* we need to re-setup the control transfer */
|
|
usb_needs_explore(xfer->xroot->bus, 0);
|
|
break;
|
|
}
|
|
goto tr_restart;
|
|
}
|
|
usbd_transfer_submit(xfer);
|
|
break;
|
|
|
|
default:
|
|
/* check if a control transfer is active */
|
|
if (xfer->flags_int.control_rem != 0xFFFF) {
|
|
/* handle the request */
|
|
err = usb_handle_request(xfer);
|
|
}
|
|
if (xfer->error != USB_ERR_CANCELLED) {
|
|
/* should not happen - try stalling */
|
|
goto tr_restart;
|
|
}
|
|
break;
|
|
}
|
|
return;
|
|
|
|
tr_restart:
|
|
/*
|
|
* If a control transfer is active, stall it, and wait for the
|
|
* next control transfer.
|
|
*/
|
|
usbd_xfer_set_frame_len(xfer, 0, sizeof(struct usb_device_request));
|
|
xfer->nframes = 1;
|
|
xfer->flags.manual_status = 1;
|
|
xfer->flags.force_short_xfer = 0;
|
|
usbd_xfer_set_stall(xfer); /* cancel previous transfer, if any */
|
|
usbd_transfer_submit(xfer);
|
|
}
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_set_config
|
|
*
|
|
* Returns:
|
|
* 0: Success
|
|
* Else: Failure
|
|
*------------------------------------------------------------------------*/
|
|
static usb_error_t
|
|
usb_handle_set_config(struct usb_xfer *xfer, uint8_t conf_no)
|
|
{
|
|
struct usb_device *udev = xfer->xroot->udev;
|
|
usb_error_t err = 0;
|
|
|
|
/*
|
|
* We need to protect against other threads doing probe and
|
|
* attach:
|
|
*/
|
|
USB_XFER_UNLOCK(xfer);
|
|
|
|
usbd_enum_lock(udev);
|
|
|
|
if (conf_no == USB_UNCONFIG_NO) {
|
|
conf_no = USB_UNCONFIG_INDEX;
|
|
} else {
|
|
/*
|
|
* The relationship between config number and config index
|
|
* is very simple in our case:
|
|
*/
|
|
conf_no--;
|
|
}
|
|
|
|
if (usbd_set_config_index(udev, conf_no)) {
|
|
DPRINTF("set config %d failed\n", conf_no);
|
|
err = USB_ERR_STALLED;
|
|
goto done;
|
|
}
|
|
if (usb_probe_and_attach(udev, USB_IFACE_INDEX_ANY)) {
|
|
DPRINTF("probe and attach failed\n");
|
|
err = USB_ERR_STALLED;
|
|
goto done;
|
|
}
|
|
done:
|
|
usbd_enum_unlock(udev);
|
|
USB_XFER_LOCK(xfer);
|
|
return (err);
|
|
}
|
|
|
|
static usb_error_t
|
|
usb_check_alt_setting(struct usb_device *udev,
|
|
struct usb_interface *iface, uint8_t alt_index)
|
|
{
|
|
uint8_t do_unlock;
|
|
usb_error_t err = 0;
|
|
|
|
/* automatic locking */
|
|
if (usbd_enum_is_locked(udev)) {
|
|
do_unlock = 0;
|
|
} else {
|
|
do_unlock = 1;
|
|
usbd_enum_lock(udev);
|
|
}
|
|
|
|
if (alt_index >= usbd_get_no_alts(udev->cdesc, iface->idesc))
|
|
err = USB_ERR_INVAL;
|
|
|
|
if (do_unlock)
|
|
usbd_enum_unlock(udev);
|
|
|
|
return (err);
|
|
}
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_iface_request
|
|
*
|
|
* Returns:
|
|
* 0: Success
|
|
* Else: Failure
|
|
*------------------------------------------------------------------------*/
|
|
static usb_error_t
|
|
usb_handle_iface_request(struct usb_xfer *xfer,
|
|
void **ppdata, uint16_t *plen,
|
|
struct usb_device_request req, uint16_t off, uint8_t state)
|
|
{
|
|
struct usb_interface *iface;
|
|
struct usb_interface *iface_parent; /* parent interface */
|
|
struct usb_device *udev = xfer->xroot->udev;
|
|
int error;
|
|
uint8_t iface_index;
|
|
uint8_t temp_state;
|
|
|
|
if ((req.bmRequestType & 0x1F) == UT_INTERFACE) {
|
|
iface_index = req.wIndex[0]; /* unicast */
|
|
} else {
|
|
iface_index = 0; /* broadcast */
|
|
}
|
|
|
|
/*
|
|
* We need to protect against other threads doing probe and
|
|
* attach:
|
|
*/
|
|
USB_XFER_UNLOCK(xfer);
|
|
|
|
usbd_enum_lock(udev);
|
|
|
|
error = ENXIO;
|
|
|
|
tr_repeat:
|
|
iface = usbd_get_iface(udev, iface_index);
|
|
if ((iface == NULL) ||
|
|
(iface->idesc == NULL)) {
|
|
/* end of interfaces non-existing interface */
|
|
goto tr_stalled;
|
|
}
|
|
/* set initial state */
|
|
|
|
temp_state = state;
|
|
|
|
/* forward request to interface, if any */
|
|
|
|
if ((error != 0) &&
|
|
(error != ENOTTY) &&
|
|
(iface->subdev != NULL) &&
|
|
device_is_attached(iface->subdev)) {
|
|
#if 0
|
|
DEVMETHOD(usb_handle_request, NULL); /* dummy */
|
|
#endif
|
|
error = USB_HANDLE_REQUEST(iface->subdev,
|
|
&req, ppdata, plen,
|
|
off, &temp_state);
|
|
}
|
|
iface_parent = usbd_get_iface(udev, iface->parent_iface_index);
|
|
|
|
if ((iface_parent == NULL) ||
|
|
(iface_parent->idesc == NULL)) {
|
|
/* non-existing interface */
|
|
iface_parent = NULL;
|
|
}
|
|
/* forward request to parent interface, if any */
|
|
|
|
if ((error != 0) &&
|
|
(error != ENOTTY) &&
|
|
(iface_parent != NULL) &&
|
|
(iface_parent->subdev != NULL) &&
|
|
((req.bmRequestType & 0x1F) == UT_INTERFACE) &&
|
|
(iface_parent->subdev != iface->subdev) &&
|
|
device_is_attached(iface_parent->subdev)) {
|
|
error = USB_HANDLE_REQUEST(iface_parent->subdev,
|
|
&req, ppdata, plen, off, &temp_state);
|
|
}
|
|
if (error == 0) {
|
|
/* negativly adjust pointer and length */
|
|
*ppdata = ((uint8_t *)(*ppdata)) - off;
|
|
*plen += off;
|
|
|
|
if ((state == USB_HR_NOT_COMPLETE) &&
|
|
(temp_state == USB_HR_COMPLETE_OK))
|
|
goto tr_short;
|
|
else
|
|
goto tr_valid;
|
|
} else if (error == ENOTTY) {
|
|
goto tr_stalled;
|
|
}
|
|
if ((req.bmRequestType & 0x1F) != UT_INTERFACE) {
|
|
iface_index++; /* iterate */
|
|
goto tr_repeat;
|
|
}
|
|
if (state != USB_HR_NOT_COMPLETE) {
|
|
/* we are complete */
|
|
goto tr_valid;
|
|
}
|
|
switch (req.bmRequestType) {
|
|
case UT_WRITE_INTERFACE:
|
|
switch (req.bRequest) {
|
|
case UR_SET_INTERFACE:
|
|
/*
|
|
* We assume that the endpoints are the same
|
|
* accross the alternate settings.
|
|
*
|
|
* Reset the endpoints, because re-attaching
|
|
* only a part of the device is not possible.
|
|
*/
|
|
error = usb_check_alt_setting(udev,
|
|
iface, req.wValue[0]);
|
|
if (error) {
|
|
DPRINTF("alt setting does not exist %s\n",
|
|
usbd_errstr(error));
|
|
goto tr_stalled;
|
|
}
|
|
error = usb_reset_iface_endpoints(udev, iface_index);
|
|
if (error) {
|
|
DPRINTF("alt setting failed %s\n",
|
|
usbd_errstr(error));
|
|
goto tr_stalled;
|
|
}
|
|
/* update the current alternate setting */
|
|
iface->alt_index = req.wValue[0];
|
|
break;
|
|
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
|
|
case UT_READ_INTERFACE:
|
|
switch (req.bRequest) {
|
|
case UR_GET_INTERFACE:
|
|
*ppdata = &iface->alt_index;
|
|
*plen = 1;
|
|
break;
|
|
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
tr_valid:
|
|
usbd_enum_unlock(udev);
|
|
USB_XFER_LOCK(xfer);
|
|
return (0);
|
|
|
|
tr_short:
|
|
usbd_enum_unlock(udev);
|
|
USB_XFER_LOCK(xfer);
|
|
return (USB_ERR_SHORT_XFER);
|
|
|
|
tr_stalled:
|
|
usbd_enum_unlock(udev);
|
|
USB_XFER_LOCK(xfer);
|
|
return (USB_ERR_STALLED);
|
|
}
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_stall
|
|
*
|
|
* Returns:
|
|
* 0: Success
|
|
* Else: Failure
|
|
*------------------------------------------------------------------------*/
|
|
static usb_error_t
|
|
usb_handle_set_stall(struct usb_xfer *xfer, uint8_t ep, uint8_t do_stall)
|
|
{
|
|
struct usb_device *udev = xfer->xroot->udev;
|
|
usb_error_t err;
|
|
|
|
USB_XFER_UNLOCK(xfer);
|
|
err = usbd_set_endpoint_stall(udev,
|
|
usbd_get_ep_by_addr(udev, ep), do_stall);
|
|
USB_XFER_LOCK(xfer);
|
|
return (err);
|
|
}
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_get_stall
|
|
*
|
|
* Returns:
|
|
* 0: Success
|
|
* Else: Failure
|
|
*------------------------------------------------------------------------*/
|
|
static uint8_t
|
|
usb_handle_get_stall(struct usb_device *udev, uint8_t ea_val)
|
|
{
|
|
struct usb_endpoint *ep;
|
|
uint8_t halted;
|
|
|
|
ep = usbd_get_ep_by_addr(udev, ea_val);
|
|
if (ep == NULL) {
|
|
/* nothing to do */
|
|
return (0);
|
|
}
|
|
USB_BUS_LOCK(udev->bus);
|
|
halted = ep->is_stalled;
|
|
USB_BUS_UNLOCK(udev->bus);
|
|
|
|
return (halted);
|
|
}
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_remote_wakeup
|
|
*
|
|
* Returns:
|
|
* 0: Success
|
|
* Else: Failure
|
|
*------------------------------------------------------------------------*/
|
|
static usb_error_t
|
|
usb_handle_remote_wakeup(struct usb_xfer *xfer, uint8_t is_on)
|
|
{
|
|
struct usb_device *udev;
|
|
struct usb_bus *bus;
|
|
|
|
udev = xfer->xroot->udev;
|
|
bus = udev->bus;
|
|
|
|
USB_BUS_LOCK(bus);
|
|
|
|
if (is_on) {
|
|
udev->flags.remote_wakeup = 1;
|
|
} else {
|
|
udev->flags.remote_wakeup = 0;
|
|
}
|
|
|
|
USB_BUS_UNLOCK(bus);
|
|
|
|
/* In case we are out of sync, update the power state. */
|
|
usb_bus_power_update(udev->bus);
|
|
return (0); /* success */
|
|
}
|
|
|
|
/*------------------------------------------------------------------------*
|
|
* usb_handle_request
|
|
*
|
|
* Internal state sequence:
|
|
*
|
|
* USB_HR_NOT_COMPLETE -> USB_HR_COMPLETE_OK v USB_HR_COMPLETE_ERR
|
|
*
|
|
* Returns:
|
|
* 0: Ready to start hardware
|
|
* Else: Stall current transfer, if any
|
|
*------------------------------------------------------------------------*/
|
|
static usb_error_t
|
|
usb_handle_request(struct usb_xfer *xfer)
|
|
{
|
|
struct usb_device_request req;
|
|
struct usb_device *udev;
|
|
const void *src_zcopy; /* zero-copy source pointer */
|
|
const void *src_mcopy; /* non zero-copy source pointer */
|
|
uint16_t off; /* data offset */
|
|
uint16_t rem; /* data remainder */
|
|
uint16_t max_len; /* max fragment length */
|
|
uint16_t wValue;
|
|
uint16_t wIndex;
|
|
uint8_t state;
|
|
uint8_t is_complete = 1;
|
|
usb_error_t err;
|
|
union {
|
|
uWord wStatus;
|
|
uint8_t buf[2];
|
|
} temp;
|
|
|
|
/*
|
|
* Filter the USB transfer state into
|
|
* something which we understand:
|
|
*/
|
|
|
|
switch (USB_GET_STATE(xfer)) {
|
|
case USB_ST_SETUP:
|
|
state = USB_HR_NOT_COMPLETE;
|
|
|
|
if (!xfer->flags_int.control_act) {
|
|
/* nothing to do */
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
case USB_ST_TRANSFERRED:
|
|
if (!xfer->flags_int.control_act) {
|
|
state = USB_HR_COMPLETE_OK;
|
|
} else {
|
|
state = USB_HR_NOT_COMPLETE;
|
|
}
|
|
break;
|
|
default:
|
|
state = USB_HR_COMPLETE_ERR;
|
|
break;
|
|
}
|
|
|
|
/* reset frame stuff */
|
|
|
|
usbd_xfer_set_frame_len(xfer, 0, 0);
|
|
|
|
usbd_xfer_set_frame_offset(xfer, 0, 0);
|
|
usbd_xfer_set_frame_offset(xfer, sizeof(req), 1);
|
|
|
|
/* get the current request, if any */
|
|
|
|
usbd_copy_out(xfer->frbuffers, 0, &req, sizeof(req));
|
|
|
|
if (xfer->flags_int.control_rem == 0xFFFF) {
|
|
/* first time - not initialised */
|
|
rem = UGETW(req.wLength);
|
|
off = 0;
|
|
} else {
|
|
/* not first time - initialised */
|
|
rem = xfer->flags_int.control_rem;
|
|
off = UGETW(req.wLength) - rem;
|
|
}
|
|
|
|
/* set some defaults */
|
|
|
|
max_len = 0;
|
|
src_zcopy = NULL;
|
|
src_mcopy = NULL;
|
|
udev = xfer->xroot->udev;
|
|
|
|
/* get some request fields decoded */
|
|
|
|
wValue = UGETW(req.wValue);
|
|
wIndex = UGETW(req.wIndex);
|
|
|
|
DPRINTF("req 0x%02x 0x%02x 0x%04x 0x%04x "
|
|
"off=0x%x rem=0x%x, state=%d\n", req.bmRequestType,
|
|
req.bRequest, wValue, wIndex, off, rem, state);
|
|
|
|
/* demultiplex the control request */
|
|
|
|
switch (req.bmRequestType) {
|
|
case UT_READ_DEVICE:
|
|
if (state != USB_HR_NOT_COMPLETE) {
|
|
break;
|
|
}
|
|
switch (req.bRequest) {
|
|
case UR_GET_DESCRIPTOR:
|
|
goto tr_handle_get_descriptor;
|
|
case UR_GET_CONFIG:
|
|
goto tr_handle_get_config;
|
|
case UR_GET_STATUS:
|
|
goto tr_handle_get_status;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
|
|
case UT_WRITE_DEVICE:
|
|
switch (req.bRequest) {
|
|
case UR_SET_ADDRESS:
|
|
goto tr_handle_set_address;
|
|
case UR_SET_CONFIG:
|
|
goto tr_handle_set_config;
|
|
case UR_CLEAR_FEATURE:
|
|
switch (wValue) {
|
|
case UF_DEVICE_REMOTE_WAKEUP:
|
|
goto tr_handle_clear_wakeup;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
case UR_SET_FEATURE:
|
|
switch (wValue) {
|
|
case UF_DEVICE_REMOTE_WAKEUP:
|
|
goto tr_handle_set_wakeup;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
|
|
case UT_WRITE_ENDPOINT:
|
|
switch (req.bRequest) {
|
|
case UR_CLEAR_FEATURE:
|
|
switch (wValue) {
|
|
case UF_ENDPOINT_HALT:
|
|
goto tr_handle_clear_halt;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
case UR_SET_FEATURE:
|
|
switch (wValue) {
|
|
case UF_ENDPOINT_HALT:
|
|
goto tr_handle_set_halt;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
|
|
case UT_READ_ENDPOINT:
|
|
switch (req.bRequest) {
|
|
case UR_GET_STATUS:
|
|
goto tr_handle_get_ep_status;
|
|
default:
|
|
goto tr_stalled;
|
|
}
|
|
break;
|
|
default:
|
|
/* we use "USB_ADD_BYTES" to de-const the src_zcopy */
|
|
err = usb_handle_iface_request(xfer,
|
|
USB_ADD_BYTES(&src_zcopy, 0),
|
|
&max_len, req, off, state);
|
|
if (err == 0) {
|
|
is_complete = 0;
|
|
goto tr_valid;
|
|
} else if (err == USB_ERR_SHORT_XFER) {
|
|
goto tr_valid;
|
|
}
|
|
/*
|
|
* Reset zero-copy pointer and max length
|
|
* variable in case they were unintentionally
|
|
* set:
|
|
*/
|
|
src_zcopy = NULL;
|
|
max_len = 0;
|
|
|
|
/*
|
|
* Check if we have a vendor specific
|
|
* descriptor:
|
|
*/
|
|
goto tr_handle_get_descriptor;
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_get_descriptor:
|
|
err = (usb_temp_get_desc_p) (udev, &req, &src_zcopy, &max_len);
|
|
if (err)
|
|
goto tr_stalled;
|
|
if (src_zcopy == NULL)
|
|
goto tr_stalled;
|
|
goto tr_valid;
|
|
|
|
tr_handle_get_config:
|
|
temp.buf[0] = udev->curr_config_no;
|
|
src_mcopy = temp.buf;
|
|
max_len = 1;
|
|
goto tr_valid;
|
|
|
|
tr_handle_get_status:
|
|
|
|
wValue = 0;
|
|
|
|
USB_BUS_LOCK(udev->bus);
|
|
if (udev->flags.remote_wakeup) {
|
|
wValue |= UDS_REMOTE_WAKEUP;
|
|
}
|
|
if (udev->flags.self_powered) {
|
|
wValue |= UDS_SELF_POWERED;
|
|
}
|
|
USB_BUS_UNLOCK(udev->bus);
|
|
|
|
USETW(temp.wStatus, wValue);
|
|
src_mcopy = temp.wStatus;
|
|
max_len = sizeof(temp.wStatus);
|
|
goto tr_valid;
|
|
|
|
tr_handle_set_address:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
if (wValue >= 0x80) {
|
|
/* invalid value */
|
|
goto tr_stalled;
|
|
} else if (udev->curr_config_no != 0) {
|
|
/* we are configured ! */
|
|
goto tr_stalled;
|
|
}
|
|
} else if (state != USB_HR_NOT_COMPLETE) {
|
|
udev->address = (wValue & 0x7F);
|
|
goto tr_bad_context;
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_set_config:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
if (usb_handle_set_config(xfer, req.wValue[0])) {
|
|
goto tr_stalled;
|
|
}
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_clear_halt:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
if (usb_handle_set_stall(xfer, req.wIndex[0], 0)) {
|
|
goto tr_stalled;
|
|
}
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_clear_wakeup:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
if (usb_handle_remote_wakeup(xfer, 0)) {
|
|
goto tr_stalled;
|
|
}
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_set_halt:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
if (usb_handle_set_stall(xfer, req.wIndex[0], 1)) {
|
|
goto tr_stalled;
|
|
}
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_set_wakeup:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
if (usb_handle_remote_wakeup(xfer, 1)) {
|
|
goto tr_stalled;
|
|
}
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_handle_get_ep_status:
|
|
if (state == USB_HR_NOT_COMPLETE) {
|
|
temp.wStatus[0] =
|
|
usb_handle_get_stall(udev, req.wIndex[0]);
|
|
temp.wStatus[1] = 0;
|
|
src_mcopy = temp.wStatus;
|
|
max_len = sizeof(temp.wStatus);
|
|
}
|
|
goto tr_valid;
|
|
|
|
tr_valid:
|
|
if (state != USB_HR_NOT_COMPLETE) {
|
|
goto tr_stalled;
|
|
}
|
|
/* subtract offset from length */
|
|
|
|
max_len -= off;
|
|
|
|
/* Compute the real maximum data length */
|
|
|
|
if (max_len > xfer->max_data_length) {
|
|
max_len = usbd_xfer_max_len(xfer);
|
|
}
|
|
if (max_len > rem) {
|
|
max_len = rem;
|
|
}
|
|
/*
|
|
* If the remainder is greater than the maximum data length,
|
|
* we need to truncate the value for the sake of the
|
|
* comparison below:
|
|
*/
|
|
if (rem > xfer->max_data_length) {
|
|
rem = usbd_xfer_max_len(xfer);
|
|
}
|
|
if ((rem != max_len) && (is_complete != 0)) {
|
|
/*
|
|
* If we don't transfer the data we can transfer, then
|
|
* the transfer is short !
|
|
*/
|
|
xfer->flags.force_short_xfer = 1;
|
|
xfer->nframes = 2;
|
|
} else {
|
|
/*
|
|
* Default case
|
|
*/
|
|
xfer->flags.force_short_xfer = 0;
|
|
xfer->nframes = max_len ? 2 : 1;
|
|
}
|
|
if (max_len > 0) {
|
|
if (src_mcopy) {
|
|
src_mcopy = USB_ADD_BYTES(src_mcopy, off);
|
|
usbd_copy_in(xfer->frbuffers + 1, 0,
|
|
src_mcopy, max_len);
|
|
usbd_xfer_set_frame_len(xfer, 1, max_len);
|
|
} else {
|
|
usbd_xfer_set_frame_data(xfer, 1,
|
|
USB_ADD_BYTES(src_zcopy, off), max_len);
|
|
}
|
|
} else {
|
|
/* the end is reached, send status */
|
|
xfer->flags.manual_status = 0;
|
|
usbd_xfer_set_frame_len(xfer, 1, 0);
|
|
}
|
|
DPRINTF("success\n");
|
|
return (0); /* success */
|
|
|
|
tr_stalled:
|
|
DPRINTF("%s\n", (state != USB_HR_NOT_COMPLETE) ?
|
|
"complete" : "stalled");
|
|
return (USB_ERR_STALLED);
|
|
|
|
tr_bad_context:
|
|
DPRINTF("bad context\n");
|
|
return (USB_ERR_BAD_CONTEXT);
|
|
}
|