blob: 59301ae81a6807edcef019d9c2f8401ae75f49df [file] [log] [blame]
/*
* Copyright (c) 2017 Intel Corporation
*
* SPDX-License-Identifier: Apache-2.0
*/
#define LOG_LEVEL CONFIG_USB_DEVICE_NETWORK_LOG_LEVEL
#include <zephyr/logging/log.h>
LOG_MODULE_REGISTER(usb_rndis);
/* Enable verbose debug printing extra hexdumps */
#define VERBOSE_DEBUG 0
#include <zephyr/init.h>
#include <zephyr/net/ethernet.h>
#include <net_private.h>
#include <zephyr/usb/usb_device.h>
#include <zephyr/usb/class/usb_cdc.h>
#include <os_desc.h>
#include "netusb.h"
#include "function_rndis.h"
/* RNDIS handling */
#define CFG_RNDIS_TX_BUF_COUNT 5
#define CFG_RNDIS_TX_BUF_SIZE 512
NET_BUF_POOL_DEFINE(rndis_tx_pool, CFG_RNDIS_TX_BUF_COUNT,
CFG_RNDIS_TX_BUF_SIZE, 0, NULL);
static struct k_fifo rndis_tx_queue;
/* Serialize RNDIS command queue for later processing */
#define CFG_RNDIS_CMD_BUF_COUNT 2
#define CFG_RNDIS_CMD_BUF_SIZE CONFIG_USB_REQUEST_BUFFER_SIZE
NET_BUF_POOL_DEFINE(rndis_cmd_pool, CFG_RNDIS_CMD_BUF_COUNT,
CFG_RNDIS_CMD_BUF_SIZE, 0, NULL);
static struct k_fifo rndis_cmd_queue;
/*
* Stack for cmd thread
*/
static K_KERNEL_STACK_DEFINE(cmd_stack, 2048);
static struct k_thread cmd_thread_data;
struct usb_rndis_config {
struct usb_association_descriptor iad;
struct usb_if_descriptor if0;
struct cdc_header_descriptor if0_header;
struct cdc_cm_descriptor if0_cm;
struct cdc_acm_descriptor if0_acm;
struct cdc_union_descriptor if0_union;
struct usb_ep_descriptor if0_int_ep;
struct usb_if_descriptor if1;
struct usb_ep_descriptor if1_in_ep;
struct usb_ep_descriptor if1_out_ep;
} __packed;
USBD_CLASS_DESCR_DEFINE(primary, 0) struct usb_rndis_config rndis_cfg = {
.iad = {
.bLength = sizeof(struct usb_association_descriptor),
.bDescriptorType = USB_DESC_INTERFACE_ASSOC,
.bFirstInterface = 0,
.bInterfaceCount = 0x02,
.bFunctionClass = USB_BCC_CDC_CONTROL,
.bFunctionSubClass = 6,
.bFunctionProtocol = 0,
.iFunction = 0,
},
/* Interface descriptor 0 */
/* CDC Communication interface */
.if0 = {
.bLength = sizeof(struct usb_if_descriptor),
.bDescriptorType = USB_DESC_INTERFACE,
.bInterfaceNumber = 0,
.bAlternateSetting = 0,
.bNumEndpoints = 1,
.bInterfaceClass = USB_BCC_CDC_CONTROL,
.bInterfaceSubClass = ACM_SUBCLASS,
.bInterfaceProtocol = ACM_VENDOR_PROTOCOL,
.iInterface = 0,
},
/* Header Functional Descriptor */
.if0_header = {
.bFunctionLength = sizeof(struct cdc_header_descriptor),
.bDescriptorType = USB_DESC_CS_INTERFACE,
.bDescriptorSubtype = HEADER_FUNC_DESC,
.bcdCDC = sys_cpu_to_le16(USB_SRN_1_1),
},
/* Call Management Functional Descriptor */
.if0_cm = {
.bFunctionLength = sizeof(struct cdc_cm_descriptor),
.bDescriptorType = USB_DESC_CS_INTERFACE,
.bDescriptorSubtype = CALL_MANAGEMENT_FUNC_DESC,
.bmCapabilities = 0x00,
.bDataInterface = 1,
},
/* ACM Functional Descriptor */
.if0_acm = {
.bFunctionLength = sizeof(struct cdc_acm_descriptor),
.bDescriptorType = USB_DESC_CS_INTERFACE,
.bDescriptorSubtype = ACM_FUNC_DESC,
/* Device supports the request combination of:
* Set_Line_Coding,
* Set_Control_Line_State,
* Get_Line_Coding
* and the notification Serial_State
*/
.bmCapabilities = 0x00,
},
/* Union Functional Descriptor */
.if0_union = {
.bFunctionLength = sizeof(struct cdc_union_descriptor),
.bDescriptorType = USB_DESC_CS_INTERFACE,
.bDescriptorSubtype = UNION_FUNC_DESC,
.bControlInterface = 0,
.bSubordinateInterface0 = 1,
},
/* Notification EP Descriptor */
.if0_int_ep = {
.bLength = sizeof(struct usb_ep_descriptor),
.bDescriptorType = USB_DESC_ENDPOINT,
.bEndpointAddress = RNDIS_INT_EP_ADDR,
.bmAttributes = USB_DC_EP_INTERRUPT,
.wMaxPacketSize =
sys_cpu_to_le16(CONFIG_RNDIS_INTERRUPT_EP_MPS),
.bInterval = 0x09,
},
/* Interface descriptor 1 */
/* CDC Data Interface */
.if1 = {
.bLength = sizeof(struct usb_if_descriptor),
.bDescriptorType = USB_DESC_INTERFACE,
.bInterfaceNumber = 1,
.bAlternateSetting = 0,
.bNumEndpoints = 2,
.bInterfaceClass = USB_BCC_CDC_DATA,
.bInterfaceSubClass = 0,
.bInterfaceProtocol = 0,
.iInterface = 0,
},
/* Data Endpoint IN */
.if1_in_ep = {
.bLength = sizeof(struct usb_ep_descriptor),
.bDescriptorType = USB_DESC_ENDPOINT,
.bEndpointAddress = RNDIS_IN_EP_ADDR,
.bmAttributes = USB_DC_EP_BULK,
.wMaxPacketSize =
sys_cpu_to_le16(CONFIG_RNDIS_BULK_EP_MPS),
.bInterval = 0x00,
},
/* Data Endpoint OUT */
.if1_out_ep = {
.bLength = sizeof(struct usb_ep_descriptor),
.bDescriptorType = USB_DESC_ENDPOINT,
.bEndpointAddress = RNDIS_OUT_EP_ADDR,
.bmAttributes = USB_DC_EP_BULK,
.wMaxPacketSize =
sys_cpu_to_le16(CONFIG_RNDIS_BULK_EP_MPS),
.bInterval = 0x00,
},
};
/*
* TLV structure is used for data encapsulation parsing
*/
struct tlv {
uint32_t type;
uint32_t len;
uint8_t data[];
} __packed;
static struct __rndis {
uint32_t net_filter;
enum {
UNINITIALIZED,
INITIALIZED,
} state;
struct net_pkt *in_pkt; /* Pointer to pkt assembling at the moment */
int in_pkt_len; /* Packet length to be assembled */
int skip_bytes; /* In case of low memory, skip bytes */
uint16_t mtu;
uint16_t speed; /* TODO: Calculate right speed */
/* Statistics */
uint32_t rx_err;
uint32_t tx_err;
uint32_t rx_no_buf;
atomic_t notify_count;
uint8_t mac[6];
uint8_t media_status;
} rndis = {
.mac = { 0x00, 0x00, 0x5E, 0x00, 0x53, 0x01 },
.mtu = 1500, /* Ethernet frame */
.media_status = RNDIS_OBJECT_ID_MEDIA_DISCONNECTED,
.state = UNINITIALIZED,
.skip_bytes = 0,
.speed = 0,
};
static uint8_t manufacturer[] = CONFIG_USB_DEVICE_MANUFACTURER;
static uint32_t drv_version = 1U;
static uint8_t tx_buf[NET_ETH_MAX_FRAME_SIZE +
sizeof(struct rndis_payload_packet)];
static uint32_t object_id_supported[] = {
RNDIS_OBJECT_ID_GEN_SUPP_LIST,
RNDIS_OBJECT_ID_GEN_HW_STATUS,
RNDIS_OBJECT_ID_GEN_SUPP_MEDIA,
RNDIS_OBJECT_ID_GEN_IN_USE_MEDIA,
RNDIS_OBJECT_ID_GEN_MAX_FRAME_SIZE,
RNDIS_OBJECT_ID_GEN_LINK_SPEED,
RNDIS_OBJECT_ID_GEN_BLOCK_TX_SIZE,
RNDIS_OBJECT_ID_GEN_BLOCK_RX_SIZE,
RNDIS_OBJECT_ID_GEN_VENDOR_ID,
RNDIS_OBJECT_ID_GEN_VENDOR_DESC,
RNDIS_OBJECT_ID_GEN_VENDOR_DRV_VER,
RNDIS_OBJECT_ID_GEN_PKT_FILTER,
RNDIS_OBJECT_ID_GEN_MAX_TOTAL_SIZE,
RNDIS_OBJECT_ID_GEN_CONN_MEDIA_STATUS,
RNDIS_OBJECT_ID_GEN_PHYSICAL_MEDIUM,
#if defined(USE_RNDIS_STATISTICS)
/* Using RNDIS statistics puts heavy load on
* USB bus, disable it for now
*/
RNDIS_OBJECT_ID_GEN_TRANSMIT_OK,
RNDIS_OBJECT_ID_GEN_RECEIVE_OK,
RNDIS_OBJECT_ID_GEN_TRANSMIT_ERROR,
RNDIS_OBJECT_ID_GEN_RECEIVE_ERROR,
RNDIS_OBJECT_ID_GEN_RECEIVE_NO_BUF,
#endif /* USE_RNDIS_STATISTICS */
RNDIS_OBJECT_ID_802_3_PERMANENT_ADDRESS,
RNDIS_OBJECT_ID_802_3_CURR_ADDRESS,
RNDIS_OBJECT_ID_802_3_MCAST_LIST,
RNDIS_OBJECT_ID_802_3_MAX_LIST_SIZE,
RNDIS_OBJECT_ID_802_3_MAC_OPTIONS,
};
#define RNDIS_INT_EP_IDX 0
#define RNDIS_OUT_EP_IDX 1
#define RNDIS_IN_EP_IDX 2
static void rndis_bulk_out(uint8_t ep, enum usb_dc_ep_cb_status_code ep_status);
static struct usb_ep_cfg_data rndis_ep_data[] = {
{
.ep_cb = usb_transfer_ep_callback,
.ep_addr = RNDIS_INT_EP_ADDR
},
{
.ep_cb = rndis_bulk_out,
.ep_addr = RNDIS_OUT_EP_ADDR
},
{
.ep_cb = usb_transfer_ep_callback,
.ep_addr = RNDIS_IN_EP_ADDR
},
};
static int parse_rndis_header(const uint8_t *buffer, uint32_t buf_len)
{
struct rndis_payload_packet *hdr = (void *)buffer;
uint32_t len;
if (buf_len < sizeof(*hdr)) {
LOG_ERR("Too small packet len %u", buf_len);
return -EINVAL;
}
if (hdr->type != sys_cpu_to_le32(RNDIS_DATA_PACKET)) {
LOG_ERR("Wrong data packet type 0x%x",
sys_le32_to_cpu(hdr->type));
return -EINVAL;
}
len = sys_le32_to_cpu(hdr->len);
/*
* Calculate additional offset since payload_offset is calculated
* from the start of itself ;)
*/
if (len < sys_le32_to_cpu(hdr->payload_offset) +
sys_le32_to_cpu(hdr->payload_len) +
offsetof(struct rndis_payload_packet, payload_offset)) {
LOG_ERR("Incorrect RNDIS packet");
return -EINVAL;
}
LOG_DBG("Parsing packet: len %u payload offset %u payload len %u",
len, sys_le32_to_cpu(hdr->payload_offset),
sys_le32_to_cpu(hdr->payload_len));
return len;
}
void rndis_clean(void)
{
LOG_DBG("");
if (rndis.in_pkt) {
net_pkt_unref(rndis.in_pkt);
rndis.in_pkt = NULL;
rndis.in_pkt_len = 0;
}
rndis.skip_bytes = 0;
}
static void rndis_bulk_out(uint8_t ep, enum usb_dc_ep_cb_status_code ep_status)
{
uint8_t buffer[CONFIG_RNDIS_BULK_EP_MPS];
uint32_t hdr_offset = 0U;
uint32_t len, read;
usb_read(ep, NULL, 0, &len);
LOG_DBG("EP 0x%x status %d len %u", ep, ep_status, len);
if (len > CONFIG_RNDIS_BULK_EP_MPS) {
LOG_WRN("Limit read len %u to MPS %u", len,
CONFIG_RNDIS_BULK_EP_MPS);
len = CONFIG_RNDIS_BULK_EP_MPS;
}
usb_read(ep, buffer, len, &read);
if (len != read) {
LOG_ERR("Read %u instead of expected %u, skip the rest",
read, len);
rndis.skip_bytes = len - read;
return;
}
/* We already use frame keeping with len, warn here about
* receiving frame delimiter
*/
if (len == 1U && !buffer[0]) {
LOG_DBG("Got frame delimiter, skip");
return;
}
/* Handle skip bytes */
if (rndis.skip_bytes) {
LOG_WRN("Skip %u bytes out of remaining %d bytes",
len, rndis.skip_bytes);
rndis.skip_bytes -= len;
if (rndis.skip_bytes < 0) {
LOG_ERR("Error skipping bytes");
rndis.skip_bytes = 0;
}
return;
}
/* Start new packet */
if (!rndis.in_pkt) {
struct net_pkt *pkt;
/* Append data only, skipping RNDIS header */
hdr_offset = sizeof(struct rndis_payload_packet);
rndis.in_pkt_len = parse_rndis_header(buffer, len);
if (rndis.in_pkt_len < 0) {
LOG_ERR("Error parsing RNDIS header");
rndis.rx_err++;
return;
}
pkt = net_pkt_rx_alloc_with_buffer(netusb_net_iface(),
rndis.in_pkt_len, AF_UNSPEC,
0, K_NO_WAIT);
if (!pkt) {
/* In case of low memory: skip the whole packet
* hoping to get buffers for later ones
*/
rndis.skip_bytes = rndis.in_pkt_len - len;
rndis.rx_no_buf++;
LOG_ERR("Not enough pkt buffers, len %u, skip %u",
rndis.in_pkt_len, rndis.skip_bytes);
return;
}
rndis.in_pkt = pkt;
}
if (net_pkt_write(rndis.in_pkt,
buffer + hdr_offset, len - hdr_offset)) {
LOG_ERR("Error writing data to pkt: %p", rndis.in_pkt);
rndis_clean();
rndis.rx_err++;
return;
}
LOG_DBG("To assemble %d bytes, reading %u bytes",
rndis.in_pkt_len, len);
rndis.in_pkt_len -= len;
if (!rndis.in_pkt_len) {
LOG_DBG("Assembled full RNDIS packet");
if (VERBOSE_DEBUG) {
net_pkt_hexdump(rndis.in_pkt, ">");
}
/* Queue data to iface */
netusb_recv(rndis.in_pkt);
/* Start over for new packets */
rndis.in_pkt = NULL;
} else if (rndis.in_pkt_len < 0) {
LOG_ERR("Error assembling packet, drop and start over");
rndis_clean();
}
}
static void rndis_notify_cb(uint8_t ep, int size, void *priv)
{
LOG_DBG("ep %x size %u", ep, size);
atomic_dec(&rndis.notify_count);
}
static void rndis_queue_rsp(struct net_buf *rsp)
{
if (!k_fifo_is_empty(&rndis_tx_queue)) {
LOG_WRN("Transmit response queue is not empty");
}
LOG_DBG("Queued response pkt %p", rsp);
net_buf_put(&rndis_tx_queue, rsp);
}
/* Notify host about available data */
static void rndis_notify_rsp(void)
{
static uint32_t buf[2] = {
sys_cpu_to_le32(0x01),
sys_cpu_to_le32(0x00)
};
int ret;
LOG_DBG("count %lu", atomic_get(&rndis.notify_count));
if (atomic_get(&rndis.notify_count)) {
LOG_WRN("Notification is already sent");
return;
}
atomic_inc(&rndis.notify_count);
ret = usb_transfer(rndis_ep_data[RNDIS_INT_EP_IDX].ep_addr,
(uint8_t *)buf, sizeof(buf),
USB_TRANS_WRITE | USB_TRANS_NO_ZLP,
rndis_notify_cb, NULL);
if (ret < 0) {
LOG_ERR("Transfer failure, ret %d", ret);
}
}
static int rndis_init_handle(uint8_t *data, uint32_t len)
{
struct rndis_init_cmd *cmd = (void *)data;
struct rndis_init_cmd_complete *rsp;
struct net_buf *buf;
LOG_DBG("req_id 0x%x", cmd->req_id);
buf = net_buf_alloc(&rndis_tx_pool, K_NO_WAIT);
if (!buf) {
LOG_ERR("Cannot get free buffer");
return -ENOMEM;
}
rsp = net_buf_add(buf, sizeof(*rsp));
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_SUCCESS);
rsp->type = sys_cpu_to_le32(RNDIS_CMD_INITIALIZE_COMPLETE);
rsp->len = sys_cpu_to_le32(sizeof(*rsp));
rsp->req_id = cmd->req_id;
rsp->major_ver = sys_cpu_to_le32(RNDIS_MAJOR_VERSION);
rsp->minor_ver = sys_cpu_to_le32(RNDIS_MINOR_VERSION);
rsp->flags = sys_cpu_to_le32(RNDIS_FLAG_CONNECTIONLESS);
rsp->medium = sys_cpu_to_le32(RNDIS_MEDIUM_WIRED_ETHERNET);
rsp->max_packets = sys_cpu_to_le32(1);
rsp->max_transfer_size = sys_cpu_to_le32(rndis.mtu +
sizeof(struct net_eth_hdr) +
sizeof(struct
rndis_payload_packet));
rsp->pkt_align_factor = sys_cpu_to_le32(0);
(void)memset(rsp->__reserved, 0, sizeof(rsp->__reserved));
rndis.state = INITIALIZED;
rndis_queue_rsp(buf);
/* Notify about ready reply */
rndis_notify_rsp();
return 0;
}
static int rndis_halt_handle(void)
{
LOG_DBG("");
rndis.state = UNINITIALIZED;
/* TODO: Stop networking */
return 0;
}
static uint32_t rndis_query_add_supp_list(struct net_buf *buf)
{
for (int i = 0; i < ARRAY_SIZE(object_id_supported); i++) {
net_buf_add_le32(buf, object_id_supported[i]);
}
return sizeof(object_id_supported);
}
static int rndis_query_handle(uint8_t *data, uint32_t len)
{
struct rndis_query_cmd *cmd = (void *)data;
struct rndis_query_cmd_complete *rsp;
struct net_buf *buf;
uint32_t object_id, buf_len = 0U;
buf = net_buf_alloc(&rndis_tx_pool, K_NO_WAIT);
if (!buf) {
LOG_ERR("Cannot get free buffer");
return -ENOMEM;
}
object_id = sys_le32_to_cpu(cmd->object_id);
LOG_DBG("req_id 0x%x Object ID 0x%x buf_len %u buf_offset %u",
sys_le32_to_cpu(cmd->req_id),
object_id,
sys_le32_to_cpu(cmd->buf_len),
sys_le32_to_cpu(cmd->buf_offset));
rsp = net_buf_add(buf, sizeof(*rsp));
rsp->type = sys_cpu_to_le32(RNDIS_CMD_QUERY_COMPLETE);
rsp->req_id = cmd->req_id;
/* offset is from the beginning of the req_id field */
rsp->buf_offset = sys_cpu_to_le32(16);
switch (object_id) {
case RNDIS_OBJECT_ID_GEN_SUPP_LIST:
LOG_DBG("RNDIS_OBJECT_ID_GEN_SUPP_LIST");
rndis_query_add_supp_list(buf);
break;
case RNDIS_OBJECT_ID_GEN_PHYSICAL_MEDIUM:
LOG_DBG("RNDIS_OBJECT_ID_GEN_PHYSICAL_MEDIUM");
net_buf_add_le32(buf, RNDIS_PHYSICAL_MEDIUM_TYPE_UNSPECIFIED);
break;
case RNDIS_OBJECT_ID_GEN_MAX_FRAME_SIZE:
LOG_DBG("RNDIS_OBJECT_ID_GEN_MAX_FRAME_SIZE");
net_buf_add_le32(buf, rndis.mtu);
break;
case RNDIS_OBJECT_ID_GEN_LINK_SPEED:
LOG_DBG("RNDIS_OBJECT_ID_GEN_LINK_SPEED");
if (rndis.media_status == RNDIS_OBJECT_ID_MEDIA_DISCONNECTED) {
net_buf_add_le32(buf, 0);
} else {
net_buf_add_le32(buf, rndis.speed);
}
break;
case RNDIS_OBJECT_ID_GEN_CONN_MEDIA_STATUS:
LOG_DBG("RNDIS_OBJECT_ID_GEN_CONN_MEDIA_STATUS");
net_buf_add_le32(buf, rndis.media_status);
break;
case RNDIS_OBJECT_ID_GEN_MAX_TOTAL_SIZE:
LOG_DBG("RNDIS_OBJECT_ID_GEN_MAX_TOTAL_SIZE");
net_buf_add_le32(buf, RNDIS_GEN_MAX_TOTAL_SIZE);
break;
/* Statistics stuff */
case RNDIS_OBJECT_ID_GEN_TRANSMIT_ERROR:
LOG_DBG("RNDIS_OBJECT_ID_GEN_TRANSMIT_ERROR: %u", rndis.tx_err);
net_buf_add_le32(buf, rndis.tx_err);
break;
case RNDIS_OBJECT_ID_GEN_RECEIVE_ERROR:
LOG_DBG("RNDIS_OBJECT_ID_GEN_RECEIVE_ERROR: %u", rndis.rx_err);
net_buf_add_le32(buf, rndis.rx_err);
break;
case RNDIS_OBJECT_ID_GEN_RECEIVE_NO_BUF:
LOG_DBG("RNDIS_OBJECT_ID_GEN_RECEIVE_NO_BUF: %u",
rndis.rx_no_buf);
net_buf_add_le32(buf, rndis.rx_no_buf);
break;
/* IEEE 802.3 */
case RNDIS_OBJECT_ID_802_3_PERMANENT_ADDRESS:
LOG_DBG("RNDIS_OBJECT_ID_802_3_PERMANENT_ADDRESS");
memcpy(net_buf_add(buf, sizeof(rndis.mac)), rndis.mac,
sizeof(rndis.mac));
break;
case RNDIS_OBJECT_ID_802_3_CURR_ADDRESS:
LOG_DBG("RNDIS_OBJECT_ID_802_3_CURR_ADDRESS");
memcpy(net_buf_add(buf, sizeof(rndis.mac)), rndis.mac,
sizeof(rndis.mac));
break;
case RNDIS_OBJECT_ID_802_3_MCAST_LIST:
LOG_DBG("RNDIS_OBJECT_ID_802_3_MCAST_LIST");
net_buf_add_le32(buf, 0xE0000000); /* 224.0.0.0 */
break;
case RNDIS_OBJECT_ID_802_3_MAX_LIST_SIZE:
LOG_DBG("RNDIS_OBJECT_ID_802_3_MAX_LIST_SIZE");
net_buf_add_le32(buf, 1); /* one address */
break;
/* Vendor information */
case RNDIS_OBJECT_ID_GEN_VENDOR_ID:
LOG_DBG("RNDIS_OBJECT_ID_GEN_VENDOR_ID");
net_buf_add_le32(buf, CONFIG_USB_DEVICE_VID);
break;
case RNDIS_OBJECT_ID_GEN_VENDOR_DESC:
LOG_DBG("RNDIS_OBJECT_ID_GEN_VENDOR_DESC");
memcpy(net_buf_add(buf, sizeof(manufacturer) - 1), manufacturer,
sizeof(manufacturer) - 1);
break;
case RNDIS_OBJECT_ID_GEN_VENDOR_DRV_VER:
LOG_DBG("RNDIS_OBJECT_ID_GEN_VENDOR_DRV_VER");
net_buf_add_le32(buf, drv_version);
break;
default:
LOG_WRN("Unhandled query for Object ID 0x%x", object_id);
break;
}
buf_len = buf->len - sizeof(*rsp);
if (buf_len) {
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_SUCCESS);
} else {
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_NOT_SUPP);
}
/* Can be zero if object_id not handled / found */
rsp->buf_len = sys_cpu_to_le32(buf_len);
rsp->len = sys_cpu_to_le32(buf_len + sizeof(*rsp));
LOG_DBG("buf_len %u rsp->len %u buf->len %u",
buf_len, rsp->len, buf->len);
rndis_queue_rsp(buf);
/* Notify about ready reply */
rndis_notify_rsp();
return 0;
}
static int rndis_set_handle(uint8_t *data, uint32_t len)
{
struct rndis_set_cmd *cmd = (void *)data;
struct rndis_set_cmd_complete *rsp;
struct net_buf *buf;
uint32_t object_id;
uint8_t *param;
if (len < sizeof(*cmd)) {
LOG_ERR("Packet is shorter then header");
return -EINVAL;
}
/* Parameter starts at offset buf_offset of the req_id field ;) */
param = (uint8_t *)&cmd->req_id + sys_le32_to_cpu(cmd->buf_offset);
if (len - ((uint32_t)param - (uint32_t)cmd) !=
sys_le32_to_cpu(cmd->buf_len)) {
LOG_ERR("Packet parsing error");
return -EINVAL;
}
buf = net_buf_alloc(&rndis_tx_pool, K_NO_WAIT);
if (!buf) {
LOG_ERR("Cannot get free buffer");
return -ENOMEM;
}
object_id = sys_le32_to_cpu(cmd->object_id);
LOG_DBG("req_id 0x%x Object ID 0x%x buf_len %u buf_offset %u",
sys_le32_to_cpu(cmd->req_id), object_id,
sys_le32_to_cpu(cmd->buf_len),
sys_le32_to_cpu(cmd->buf_offset));
rsp = net_buf_add(buf, sizeof(*rsp));
rsp->type = sys_cpu_to_le32(RNDIS_CMD_SET_COMPLETE);
rsp->len = sys_cpu_to_le32(sizeof(*rsp));
rsp->req_id = cmd->req_id; /* same endianness */
switch (object_id) {
case RNDIS_OBJECT_ID_GEN_PKT_FILTER:
if (sys_le32_to_cpu(cmd->buf_len) < sizeof(rndis.net_filter)) {
LOG_ERR("Packet is too small");
rsp->status = RNDIS_CMD_STATUS_INVALID_DATA;
break;
}
rndis.net_filter = sys_get_le32(param);
LOG_DBG("RNDIS_OBJECT_ID_GEN_PKT_FILTER 0x%x",
rndis.net_filter);
/* TODO: Start / Stop networking here */
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_SUCCESS);
break;
case RNDIS_OBJECT_ID_802_3_MCAST_LIST:
LOG_DBG("RNDIS_OBJECT_ID_802_3_MCAST_LIST");
/* ignore for now */
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_SUCCESS);
break;
default:
LOG_ERR("Unhandled object_id 0x%x", object_id);
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_NOT_SUPP);
break;
}
rndis_queue_rsp(buf);
/* Notify about ready reply */
rndis_notify_rsp();
return 0;
}
static int rndis_reset_handle(uint8_t *data, uint32_t len)
{
struct rndis_reset_cmd_complete *rsp;
struct net_buf *buf;
buf = net_buf_alloc(&rndis_tx_pool, K_NO_WAIT);
if (!buf) {
LOG_ERR("Cannot get free buffer");
return -ENOMEM;
}
LOG_DBG("");
rsp = net_buf_add(buf, sizeof(*rsp));
rsp->type = sys_cpu_to_le32(RNDIS_CMD_RESET_COMPLETE);
rsp->len = sys_cpu_to_le32(sizeof(*rsp));
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_SUCCESS);
rsp->addr_reset = sys_cpu_to_le32(1);
rndis_queue_rsp(buf);
/* Notify about ready reply */
rndis_notify_rsp();
return 0;
}
static int rndis_keepalive_handle(uint8_t *data, uint32_t len)
{
struct rndis_keepalive_cmd *cmd = (void *)data;
struct rndis_keepalive_cmd_complete *rsp;
struct net_buf *buf;
buf = net_buf_alloc(&rndis_tx_pool, K_NO_WAIT);
if (!buf) {
LOG_ERR("Cannot get free buffer");
return -ENOMEM;
}
LOG_DBG("");
rsp = net_buf_add(buf, sizeof(*rsp));
rsp->type = sys_cpu_to_le32(RNDIS_CMD_KEEPALIVE_COMPLETE);
rsp->len = sys_cpu_to_le32(sizeof(*rsp));
rsp->req_id = cmd->req_id; /* same order */
rsp->status = sys_cpu_to_le32(RNDIS_CMD_STATUS_SUCCESS);
rndis_queue_rsp(buf);
/* Notify about ready reply */
rndis_notify_rsp();
return 0;
}
static int queue_encapsulated_cmd(uint8_t *data, uint32_t len)
{
struct net_buf *buf;
buf = net_buf_alloc(&rndis_cmd_pool, K_NO_WAIT);
if (!buf) {
LOG_ERR("Cannot get free buffer");
return -ENOMEM;
}
memcpy(net_buf_add(buf, len), data, len);
net_buf_put(&rndis_cmd_queue, buf);
LOG_DBG("queued buf %p", buf);
return 0;
}
static int handle_encapsulated_cmd(uint8_t *data, uint32_t len)
{
struct tlv *msg = (void *)data;
if (VERBOSE_DEBUG) {
net_hexdump("CMD >", data, len);
}
if (len != msg->len) {
LOG_WRN("Total len is different then command len %u %u",
len, msg->len);
/* TODO: need actions? */
}
LOG_DBG("RNDIS type 0x%x len %u total len %u",
msg->type, msg->len, len);
switch (msg->type) {
case RNDIS_CMD_INITIALIZE:
return rndis_init_handle(data, len);
case RNDIS_CMD_HALT:
return rndis_halt_handle();
case RNDIS_CMD_QUERY:
return rndis_query_handle(data, len);
case RNDIS_CMD_SET:
return rndis_set_handle(data, len);
case RNDIS_CMD_RESET:
return rndis_reset_handle(data, len);
case RNDIS_CMD_KEEPALIVE:
return rndis_keepalive_handle(data, len);
default:
LOG_ERR("Message 0x%x unhandled", msg->type);
return -ENOTSUP;
}
return 0;
}
static int handle_encapsulated_rsp(uint8_t **data, uint32_t *len)
{
struct net_buf *buf;
LOG_DBG("");
buf = net_buf_get(&rndis_tx_queue, K_NO_WAIT);
if (!buf) {
LOG_ERR("Error getting response buffer");
*len = 0U;
return -ENODATA;
}
if (VERBOSE_DEBUG) {
net_hexdump("RSP <", buf->data, buf->len);
}
memcpy(*data, buf->data, buf->len);
*len = buf->len;
net_buf_unref(buf);
return 0;
}
static int rndis_class_handler(struct usb_setup_packet *setup, int32_t *len,
uint8_t **data)
{
LOG_DBG("len %d req_type 0x%x req 0x%x enabled %u",
*len, setup->bmRequestType, setup->bRequest,
netusb_enabled());
if (!netusb_enabled()) {
LOG_ERR("interface disabled");
return -ENODEV;
}
if (usb_reqtype_is_to_device(setup)) {
if (setup->bRequest == CDC_SEND_ENC_CMD) {
/*
* Instead of handling here, queue
* handle_encapsulated_cmd(*data, *len);
*/
return queue_encapsulated_cmd(*data, *len);
}
} else {
if (setup->bRequest == CDC_GET_ENC_RSP) {
return handle_encapsulated_rsp(data, len);
}
}
LOG_WRN("Unknown USB packet req 0x%x type 0x%x",
setup->bRequest, setup->bmRequestType);
return -ENOTSUP;
}
static void cmd_thread(void)
{
LOG_INF("Command thread started");
while (true) {
struct net_buf *buf;
buf = net_buf_get(&rndis_cmd_queue, K_FOREVER);
LOG_DBG("got buf %p", buf);
handle_encapsulated_cmd(buf->data, buf->len);
net_buf_unref(buf);
k_yield();
}
}
/*
* RNDIS Send functions
*/
static void rndis_hdr_add(uint8_t *buf, uint32_t len)
{
struct rndis_payload_packet *hdr = (void *)buf;
uint32_t offset = offsetof(struct rndis_payload_packet, payload_offset);
(void)memset(hdr, 0, sizeof(*hdr));
hdr->type = sys_cpu_to_le32(RNDIS_DATA_PACKET);
hdr->len = sys_cpu_to_le32(len + sizeof(*hdr));
hdr->payload_offset = sys_cpu_to_le32(sizeof(*hdr) - offset);
hdr->payload_len = sys_cpu_to_le32(len);
LOG_DBG("type %u len %u payload offset %u payload len %u",
hdr->type, hdr->len, hdr->payload_offset, hdr->payload_len);
}
static int rndis_send(struct net_pkt *pkt)
{
size_t len = net_pkt_get_len(pkt);
int ret;
LOG_DBG("send pkt %p len %u", pkt, len);
if (rndis.media_status == RNDIS_OBJECT_ID_MEDIA_DISCONNECTED) {
LOG_DBG("Media disconnected, drop pkt %p", pkt);
return -EPIPE;
}
if (VERBOSE_DEBUG) {
net_pkt_hexdump(pkt, "<");
}
if (len + sizeof(struct rndis_payload_packet) > sizeof(tx_buf)) {
LOG_WRN("Trying to send too large packet, drop");
return -ENOMEM;
}
rndis_hdr_add(tx_buf, len);
ret = net_pkt_read(pkt,
tx_buf + sizeof(struct rndis_payload_packet),
len);
if (ret < 0) {
return ret;
}
ret = usb_transfer_sync(rndis_ep_data[RNDIS_IN_EP_IDX].ep_addr, tx_buf,
len + sizeof(struct rndis_payload_packet),
USB_TRANS_WRITE);
if (ret != len + sizeof(struct rndis_payload_packet)) {
LOG_ERR("Transfer failure");
return ret;
}
return 0;
}
#if defined(CONFIG_USB_DEVICE_OS_DESC)
/* This string descriptor would be read the first time device is plugged in.
* It is Microsoft extension called an OS String Descriptor
*/
#define MSOS_STRING_LENGTH 18
static struct string_desc {
uint8_t bLength;
uint8_t bDescriptorType;
uint8_t bString[MSOS_STRING_LENGTH - 4];
uint8_t bMS_VendorCode;
uint8_t bPad;
} __packed msosv1_string_descriptor = {
.bLength = MSOS_STRING_LENGTH,
.bDescriptorType = USB_DESC_STRING,
/* Signature MSFT100 */
.bString = {
'M', 0x00, 'S', 0x00, 'F', 0x00, 'T', 0x00,
'1', 0x00, '0', 0x00, '0', 0x00
},
.bMS_VendorCode = 0x03, /* Vendor Code, used for a control request */
.bPad = 0x00, /* Padding byte for VendorCode look as UTF16 */
};
static struct compat_id_desc {
/* MS OS 1.0 Header Section */
uint32_t dwLength;
uint16_t bcdVersion;
uint16_t wIndex;
uint8_t bCount;
uint8_t Reserved[7];
/* MS OS 1.0 Function Section */
struct compat_id_func {
uint8_t bFirstInterfaceNumber;
uint8_t Reserved1;
uint8_t compatibleID[8];
uint8_t subCompatibleID[8];
uint8_t Reserved2[6];
} __packed func[1];
} __packed msosv1_compatid_descriptor = {
.dwLength = sys_cpu_to_le32(40),
.bcdVersion = sys_cpu_to_le16(0x0100),
.wIndex = sys_cpu_to_le16(USB_OSDESC_EXTENDED_COMPAT_ID),
.bCount = 0x01, /* One function section */
.Reserved = {
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
},
.func = {
{
.bFirstInterfaceNumber = 0x00,
.Reserved1 = 0x01,
.compatibleID = {
'R', 'N', 'D', 'I', 'S', 0x00, 0x00, 0x00
},
.subCompatibleID = {
'5', '1', '6', '2', '0', '0', '1', 0x00
},
.Reserved2 = {
0x00, 0x00, 0x00, 0x00, 0x00, 0x00
}
},
}
};
static struct usb_os_descriptor os_desc = {
.string = (uint8_t *)&msosv1_string_descriptor,
.string_len = sizeof(msosv1_string_descriptor),
.vendor_code = 0x03,
.compat_id = (uint8_t *)&msosv1_compatid_descriptor,
.compat_id_len = sizeof(msosv1_compatid_descriptor),
};
#endif /* CONFIG_USB_DEVICE_OS_DESC */
static int rndis_init(const struct device *arg)
{
ARG_UNUSED(arg);
LOG_DBG("RNDIS initialization");
/* Transmit queue init */
k_fifo_init(&rndis_tx_queue);
/* Command queue init */
k_fifo_init(&rndis_cmd_queue);
/* Register MS OS Descriptor */
usb_register_os_desc(&os_desc);
k_thread_create(&cmd_thread_data, cmd_stack,
K_KERNEL_STACK_SIZEOF(cmd_stack),
(k_thread_entry_t)cmd_thread,
NULL, NULL, NULL, K_PRIO_COOP(8), 0, K_NO_WAIT);
k_thread_name_set(&cmd_thread_data, "usb_rndis");
return 0;
}
static int rndis_connect_media(bool status)
{
if (status) {
rndis.media_status = RNDIS_OBJECT_ID_MEDIA_CONNECTED;
} else {
rndis.media_status = RNDIS_OBJECT_ID_MEDIA_DISCONNECTED;
}
return 0;
}
static struct netusb_function rndis_function = {
.connect_media = rndis_connect_media,
.send_pkt = rndis_send,
};
static void rndis_status_cb(struct usb_cfg_data *cfg,
enum usb_dc_status_code status,
const uint8_t *param)
{
ARG_UNUSED(cfg);
/* Check the USB status and do needed action if required */
switch (status) {
case USB_DC_CONFIGURED:
LOG_DBG("USB device configured");
netusb_enable(&rndis_function);
break;
case USB_DC_DISCONNECTED:
LOG_DBG("USB device disconnected");
netusb_disable();
break;
case USB_DC_ERROR:
case USB_DC_RESET:
case USB_DC_CONNECTED:
case USB_DC_SUSPEND:
case USB_DC_RESUME:
case USB_DC_INTERFACE:
LOG_DBG("USB unhandled state: %d", status);
break;
case USB_DC_SOF:
break;
case USB_DC_UNKNOWN:
default:
LOG_DBG("USB unknown state %d", status);
break;
}
}
static void netusb_interface_config(struct usb_desc_header *head,
uint8_t bInterfaceNumber)
{
ARG_UNUSED(head);
rndis_cfg.if0.bInterfaceNumber = bInterfaceNumber;
rndis_cfg.if0_union.bControlInterface = bInterfaceNumber;
rndis_cfg.if0_union.bSubordinateInterface0 = bInterfaceNumber + 1;
rndis_cfg.if1.bInterfaceNumber = bInterfaceNumber + 1;
rndis_cfg.iad.bFirstInterface = bInterfaceNumber;
}
USBD_DEFINE_CFG_DATA(rndis_config) = {
.usb_device_description = NULL,
.interface_config = netusb_interface_config,
.interface_descriptor = &rndis_cfg.if0,
.cb_usb_status = rndis_status_cb,
.interface = {
.class_handler = rndis_class_handler,
.custom_handler = NULL,
.vendor_handler = NULL,
},
.num_endpoints = ARRAY_SIZE(rndis_ep_data),
.endpoint = rndis_ep_data,
};
/* Initialize this before eth_netusb device init */
SYS_INIT(rndis_init, POST_KERNEL, 0);