2 * Copyright © 1999-2010 David Woodhouse <dwmw2@infradead.org>
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation; either version 2 of the License, or
7 * (at your option) any later version.
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
20 #include <linux/device.h>
23 #include <linux/err.h>
24 #include <linux/init.h>
25 #include <linux/kernel.h>
26 #include <linux/module.h>
27 #include <linux/slab.h>
28 #include <linux/sched.h>
29 #include <linux/mutex.h>
30 #include <linux/backing-dev.h>
31 #include <linux/compat.h>
32 #include <linux/mount.h>
33 #include <linux/blkpg.h>
34 #include <linux/magic.h>
35 #include <linux/major.h>
36 #include <linux/mtd/mtd.h>
37 #include <linux/mtd/partitions.h>
38 #include <linux/mtd/map.h>
40 #include <linux/uaccess.h>
44 static DEFINE_MUTEX(mtd_mutex
);
47 * Data structure to hold the pointer to the mtd device as well
48 * as mode information of various use cases.
50 struct mtd_file_info
{
52 enum mtd_file_modes mode
;
55 static loff_t
mtdchar_lseek(struct file
*file
, loff_t offset
, int orig
)
57 struct mtd_file_info
*mfi
= file
->private_data
;
58 return fixed_size_llseek(file
, offset
, orig
, mfi
->mtd
->size
);
61 static int mtdchar_open(struct inode
*inode
, struct file
*file
)
63 int minor
= iminor(inode
);
64 int devnum
= minor
>> 1;
67 struct mtd_file_info
*mfi
;
69 pr_debug("MTD_open\n");
71 /* You can't open the RO devices RW */
72 if ((file
->f_mode
& FMODE_WRITE
) && (minor
& 1))
75 mutex_lock(&mtd_mutex
);
76 mtd
= get_mtd_device(NULL
, devnum
);
83 if (mtd
->type
== MTD_ABSENT
) {
88 /* You can't open it RW if it's not a writeable device */
89 if ((file
->f_mode
& FMODE_WRITE
) && !(mtd
->flags
& MTD_WRITEABLE
)) {
94 mfi
= kzalloc(sizeof(*mfi
), GFP_KERNEL
);
100 file
->private_data
= mfi
;
101 mutex_unlock(&mtd_mutex
);
107 mutex_unlock(&mtd_mutex
);
111 /*====================================================================*/
113 static int mtdchar_close(struct inode
*inode
, struct file
*file
)
115 struct mtd_file_info
*mfi
= file
->private_data
;
116 struct mtd_info
*mtd
= mfi
->mtd
;
118 pr_debug("MTD_close\n");
120 /* Only sync if opened RW */
121 if ((file
->f_mode
& FMODE_WRITE
))
125 file
->private_data
= NULL
;
129 } /* mtdchar_close */
131 /* Back in June 2001, dwmw2 wrote:
133 * FIXME: This _really_ needs to die. In 2.5, we should lock the
134 * userspace buffer down and use it directly with readv/writev.
136 * The implementation below, using mtd_kmalloc_up_to, mitigates
137 * allocation failures when the system is under low-memory situations
138 * or if memory is highly fragmented at the cost of reducing the
139 * performance of the requested transfer due to a smaller buffer size.
141 * A more complex but more memory-efficient implementation based on
142 * get_user_pages and iovecs to cover extents of those pages is a
143 * longer-term goal, as intimated by dwmw2 above. However, for the
144 * write case, this requires yet more complex head and tail transfer
145 * handling when those head and tail offsets and sizes are such that
146 * alignment requirements are not met in the NAND subdriver.
149 static ssize_t
mtdchar_read(struct file
*file
, char __user
*buf
, size_t count
,
152 struct mtd_file_info
*mfi
= file
->private_data
;
153 struct mtd_info
*mtd
= mfi
->mtd
;
155 size_t total_retlen
=0;
161 pr_debug("MTD_read\n");
163 if (*ppos
+ count
> mtd
->size
) {
164 if (*ppos
< mtd
->size
)
165 count
= mtd
->size
- *ppos
;
173 kbuf
= mtd_kmalloc_up_to(mtd
, &size
);
178 len
= min_t(size_t, count
, size
);
181 case MTD_FILE_MODE_OTP_FACTORY
:
182 ret
= mtd_read_fact_prot_reg(mtd
, *ppos
, len
,
185 case MTD_FILE_MODE_OTP_USER
:
186 ret
= mtd_read_user_prot_reg(mtd
, *ppos
, len
,
189 case MTD_FILE_MODE_RAW
:
191 struct mtd_oob_ops ops
;
193 ops
.mode
= MTD_OPS_RAW
;
198 ret
= mtd_read_oob(mtd
, *ppos
, &ops
);
203 ret
= mtd_read(mtd
, *ppos
, len
, &retlen
, kbuf
);
205 /* Nand returns -EBADMSG on ECC errors, but it returns
206 * the data. For our userspace tools it is important
207 * to dump areas with ECC errors!
208 * For kernel internal usage it also might return -EUCLEAN
209 * to signal the caller that a bitflip has occurred and has
210 * been corrected by the ECC algorithm.
211 * Userspace software which accesses NAND this way
212 * must be aware of the fact that it deals with NAND
214 if (!ret
|| mtd_is_bitflip_or_eccerr(ret
)) {
216 if (copy_to_user(buf
, kbuf
, retlen
)) {
221 total_retlen
+= retlen
;
239 static ssize_t
mtdchar_write(struct file
*file
, const char __user
*buf
, size_t count
,
242 struct mtd_file_info
*mfi
= file
->private_data
;
243 struct mtd_info
*mtd
= mfi
->mtd
;
247 size_t total_retlen
=0;
251 pr_debug("MTD_write\n");
253 if (*ppos
>= mtd
->size
)
256 if (*ppos
+ count
> mtd
->size
)
257 count
= mtd
->size
- *ppos
;
262 kbuf
= mtd_kmalloc_up_to(mtd
, &size
);
267 len
= min_t(size_t, count
, size
);
269 if (copy_from_user(kbuf
, buf
, len
)) {
275 case MTD_FILE_MODE_OTP_FACTORY
:
278 case MTD_FILE_MODE_OTP_USER
:
279 ret
= mtd_write_user_prot_reg(mtd
, *ppos
, len
,
283 case MTD_FILE_MODE_RAW
:
285 struct mtd_oob_ops ops
;
287 ops
.mode
= MTD_OPS_RAW
;
293 ret
= mtd_write_oob(mtd
, *ppos
, &ops
);
299 ret
= mtd_write(mtd
, *ppos
, len
, &retlen
, kbuf
);
303 * Return -ENOSPC only if no data could be written at all.
304 * Otherwise just return the number of bytes that actually
307 if ((ret
== -ENOSPC
) && (total_retlen
))
312 total_retlen
+= retlen
;
324 } /* mtdchar_write */
326 /*======================================================================
328 IOCTL calls for getting device parameters.
330 ======================================================================*/
331 static void mtdchar_erase_callback (struct erase_info
*instr
)
333 wake_up((wait_queue_head_t
*)instr
->priv
);
336 static int otp_select_filemode(struct mtd_file_info
*mfi
, int mode
)
338 struct mtd_info
*mtd
= mfi
->mtd
;
342 case MTD_OTP_FACTORY
:
343 if (mtd_read_fact_prot_reg(mtd
, -1, 0, &retlen
, NULL
) ==
347 mfi
->mode
= MTD_FILE_MODE_OTP_FACTORY
;
350 if (mtd_read_user_prot_reg(mtd
, -1, 0, &retlen
, NULL
) ==
354 mfi
->mode
= MTD_FILE_MODE_OTP_USER
;
357 mfi
->mode
= MTD_FILE_MODE_NORMAL
;
366 static int mtdchar_writeoob(struct file
*file
, struct mtd_info
*mtd
,
367 uint64_t start
, uint32_t length
, void __user
*ptr
,
368 uint32_t __user
*retp
)
370 struct mtd_file_info
*mfi
= file
->private_data
;
371 struct mtd_oob_ops ops
;
375 if (!(file
->f_mode
& FMODE_WRITE
))
381 if (!mtd
->_write_oob
)
384 ret
= access_ok(VERIFY_READ
, ptr
, length
) ? 0 : -EFAULT
;
390 ops
.ooboffs
= start
& (mtd
->writesize
- 1);
392 ops
.mode
= (mfi
->mode
== MTD_FILE_MODE_RAW
) ? MTD_OPS_RAW
:
395 if (ops
.ooboffs
&& ops
.ooblen
> (mtd
->oobsize
- ops
.ooboffs
))
398 ops
.oobbuf
= memdup_user(ptr
, length
);
399 if (IS_ERR(ops
.oobbuf
))
400 return PTR_ERR(ops
.oobbuf
);
402 start
&= ~((uint64_t)mtd
->writesize
- 1);
403 ret
= mtd_write_oob(mtd
, start
, &ops
);
405 if (ops
.oobretlen
> 0xFFFFFFFFU
)
407 retlen
= ops
.oobretlen
;
408 if (copy_to_user(retp
, &retlen
, sizeof(length
)))
415 static int mtdchar_readoob(struct file
*file
, struct mtd_info
*mtd
,
416 uint64_t start
, uint32_t length
, void __user
*ptr
,
417 uint32_t __user
*retp
)
419 struct mtd_file_info
*mfi
= file
->private_data
;
420 struct mtd_oob_ops ops
;
426 if (!access_ok(VERIFY_WRITE
, ptr
, length
))
430 ops
.ooboffs
= start
& (mtd
->writesize
- 1);
432 ops
.mode
= (mfi
->mode
== MTD_FILE_MODE_RAW
) ? MTD_OPS_RAW
:
435 if (ops
.ooboffs
&& ops
.ooblen
> (mtd
->oobsize
- ops
.ooboffs
))
438 ops
.oobbuf
= kmalloc(length
, GFP_KERNEL
);
442 start
&= ~((uint64_t)mtd
->writesize
- 1);
443 ret
= mtd_read_oob(mtd
, start
, &ops
);
445 if (put_user(ops
.oobretlen
, retp
))
447 else if (ops
.oobretlen
&& copy_to_user(ptr
, ops
.oobbuf
,
454 * NAND returns -EBADMSG on ECC errors, but it returns the OOB
455 * data. For our userspace tools it is important to dump areas
457 * For kernel internal usage it also might return -EUCLEAN
458 * to signal the caller that a bitflip has occurred and has
459 * been corrected by the ECC algorithm.
461 * Note: currently the standard NAND function, nand_read_oob_std,
462 * does not calculate ECC for the OOB area, so do not rely on
463 * this behavior unless you have replaced it with your own.
465 if (mtd_is_bitflip_or_eccerr(ret
))
472 * Copies (and truncates, if necessary) OOB layout information to the
473 * deprecated layout struct, nand_ecclayout_user. This is necessary only to
474 * support the deprecated API ioctl ECCGETLAYOUT while allowing all new
475 * functionality to use mtd_ooblayout_ops flexibly (i.e. mtd_ooblayout_ops
476 * can describe any kind of OOB layout with almost zero overhead from a
477 * memory usage point of view).
479 static int shrink_ecclayout(struct mtd_info
*mtd
,
480 struct nand_ecclayout_user
*to
)
482 struct mtd_oob_region oobregion
;
483 int i
, section
= 0, ret
;
488 memset(to
, 0, sizeof(*to
));
491 for (i
= 0; i
< MTD_MAX_ECCPOS_ENTRIES
;) {
494 ret
= mtd_ooblayout_ecc(mtd
, section
++, &oobregion
);
502 eccpos
= oobregion
.offset
;
503 for (; i
< MTD_MAX_ECCPOS_ENTRIES
&&
504 eccpos
< oobregion
.offset
+ oobregion
.length
; i
++) {
505 to
->eccpos
[i
] = eccpos
++;
510 for (i
= 0; i
< MTD_MAX_OOBFREE_ENTRIES
; i
++) {
511 ret
= mtd_ooblayout_free(mtd
, i
, &oobregion
);
519 to
->oobfree
[i
].offset
= oobregion
.offset
;
520 to
->oobfree
[i
].length
= oobregion
.length
;
521 to
->oobavail
+= to
->oobfree
[i
].length
;
527 static int get_oobinfo(struct mtd_info
*mtd
, struct nand_oobinfo
*to
)
529 struct mtd_oob_region oobregion
;
530 int i
, section
= 0, ret
;
535 memset(to
, 0, sizeof(*to
));
538 for (i
= 0; i
< ARRAY_SIZE(to
->eccpos
);) {
541 ret
= mtd_ooblayout_ecc(mtd
, section
++, &oobregion
);
549 if (oobregion
.length
+ i
> ARRAY_SIZE(to
->eccpos
))
552 eccpos
= oobregion
.offset
;
553 for (; eccpos
< oobregion
.offset
+ oobregion
.length
; i
++) {
554 to
->eccpos
[i
] = eccpos
++;
559 for (i
= 0; i
< 8; i
++) {
560 ret
= mtd_ooblayout_free(mtd
, i
, &oobregion
);
568 to
->oobfree
[i
][0] = oobregion
.offset
;
569 to
->oobfree
[i
][1] = oobregion
.length
;
572 to
->useecc
= MTD_NANDECC_AUTOPLACE
;
577 static int mtdchar_blkpg_ioctl(struct mtd_info
*mtd
,
578 struct blkpg_ioctl_arg
*arg
)
580 struct blkpg_partition p
;
582 if (!capable(CAP_SYS_ADMIN
))
585 if (copy_from_user(&p
, arg
->data
, sizeof(p
)))
589 case BLKPG_ADD_PARTITION
:
591 /* Only master mtd device must be used to add partitions */
592 if (mtd_is_partition(mtd
))
595 /* Sanitize user input */
596 p
.devname
[BLKPG_DEVNAMELTH
- 1] = '\0';
598 return mtd_add_partition(mtd
, p
.devname
, p
.start
, p
.length
);
600 case BLKPG_DEL_PARTITION
:
605 return mtd_del_partition(mtd
, p
.pno
);
612 static int mtdchar_write_ioctl(struct mtd_info
*mtd
,
613 struct mtd_write_req __user
*argp
)
615 struct mtd_write_req req
;
616 struct mtd_oob_ops ops
;
617 const void __user
*usr_data
, *usr_oob
;
620 if (copy_from_user(&req
, argp
, sizeof(req
)))
623 usr_data
= (const void __user
*)(uintptr_t)req
.usr_data
;
624 usr_oob
= (const void __user
*)(uintptr_t)req
.usr_oob
;
625 if (!access_ok(VERIFY_READ
, usr_data
, req
.len
) ||
626 !access_ok(VERIFY_READ
, usr_oob
, req
.ooblen
))
629 if (!mtd
->_write_oob
)
633 ops
.len
= (size_t)req
.len
;
634 ops
.ooblen
= (size_t)req
.ooblen
;
638 ops
.datbuf
= memdup_user(usr_data
, ops
.len
);
639 if (IS_ERR(ops
.datbuf
))
640 return PTR_ERR(ops
.datbuf
);
646 ops
.oobbuf
= memdup_user(usr_oob
, ops
.ooblen
);
647 if (IS_ERR(ops
.oobbuf
)) {
649 return PTR_ERR(ops
.oobbuf
);
655 ret
= mtd_write_oob(mtd
, (loff_t
)req
.start
, &ops
);
663 static int mtdchar_ioctl(struct file
*file
, u_int cmd
, u_long arg
)
665 struct mtd_file_info
*mfi
= file
->private_data
;
666 struct mtd_info
*mtd
= mfi
->mtd
;
667 void __user
*argp
= (void __user
*)arg
;
670 struct mtd_info_user info
;
672 pr_debug("MTD_ioctl\n");
674 size
= (cmd
& IOCSIZE_MASK
) >> IOCSIZE_SHIFT
;
676 if (!access_ok(VERIFY_READ
, argp
, size
))
680 if (!access_ok(VERIFY_WRITE
, argp
, size
))
685 case MEMGETREGIONCOUNT
:
686 if (copy_to_user(argp
, &(mtd
->numeraseregions
), sizeof(int)))
690 case MEMGETREGIONINFO
:
693 struct mtd_erase_region_info
*kr
;
694 struct region_info_user __user
*ur
= argp
;
696 if (get_user(ur_idx
, &(ur
->regionindex
)))
699 if (ur_idx
>= mtd
->numeraseregions
)
702 kr
= &(mtd
->eraseregions
[ur_idx
]);
704 if (put_user(kr
->offset
, &(ur
->offset
))
705 || put_user(kr
->erasesize
, &(ur
->erasesize
))
706 || put_user(kr
->numblocks
, &(ur
->numblocks
)))
713 memset(&info
, 0, sizeof(info
));
714 info
.type
= mtd
->type
;
715 info
.flags
= mtd
->flags
;
716 info
.size
= mtd
->size
;
717 info
.erasesize
= mtd
->erasesize
;
718 info
.writesize
= mtd
->writesize
;
719 info
.oobsize
= mtd
->oobsize
;
720 /* The below field is obsolete */
722 if (copy_to_user(argp
, &info
, sizeof(struct mtd_info_user
)))
729 struct erase_info
*erase
;
731 if(!(file
->f_mode
& FMODE_WRITE
))
734 erase
=kzalloc(sizeof(struct erase_info
),GFP_KERNEL
);
738 wait_queue_head_t waitq
;
739 DECLARE_WAITQUEUE(wait
, current
);
741 init_waitqueue_head(&waitq
);
743 if (cmd
== MEMERASE64
) {
744 struct erase_info_user64 einfo64
;
746 if (copy_from_user(&einfo64
, argp
,
747 sizeof(struct erase_info_user64
))) {
751 erase
->addr
= einfo64
.start
;
752 erase
->len
= einfo64
.length
;
754 struct erase_info_user einfo32
;
756 if (copy_from_user(&einfo32
, argp
,
757 sizeof(struct erase_info_user
))) {
761 erase
->addr
= einfo32
.start
;
762 erase
->len
= einfo32
.length
;
765 erase
->callback
= mtdchar_erase_callback
;
766 erase
->priv
= (unsigned long)&waitq
;
769 FIXME: Allow INTERRUPTIBLE. Which means
770 not having the wait_queue head on the stack.
772 If the wq_head is on the stack, and we
773 leave because we got interrupted, then the
774 wq_head is no longer there when the
775 callback routine tries to wake us up.
777 ret
= mtd_erase(mtd
, erase
);
779 set_current_state(TASK_UNINTERRUPTIBLE
);
780 add_wait_queue(&waitq
, &wait
);
781 if (erase
->state
!= MTD_ERASE_DONE
&&
782 erase
->state
!= MTD_ERASE_FAILED
)
784 remove_wait_queue(&waitq
, &wait
);
785 set_current_state(TASK_RUNNING
);
787 ret
= (erase
->state
== MTD_ERASE_FAILED
)?-EIO
:0;
796 struct mtd_oob_buf buf
;
797 struct mtd_oob_buf __user
*buf_user
= argp
;
799 /* NOTE: writes return length to buf_user->length */
800 if (copy_from_user(&buf
, argp
, sizeof(buf
)))
803 ret
= mtdchar_writeoob(file
, mtd
, buf
.start
, buf
.length
,
804 buf
.ptr
, &buf_user
->length
);
810 struct mtd_oob_buf buf
;
811 struct mtd_oob_buf __user
*buf_user
= argp
;
813 /* NOTE: writes return length to buf_user->start */
814 if (copy_from_user(&buf
, argp
, sizeof(buf
)))
817 ret
= mtdchar_readoob(file
, mtd
, buf
.start
, buf
.length
,
818 buf
.ptr
, &buf_user
->start
);
824 struct mtd_oob_buf64 buf
;
825 struct mtd_oob_buf64 __user
*buf_user
= argp
;
827 if (copy_from_user(&buf
, argp
, sizeof(buf
)))
830 ret
= mtdchar_writeoob(file
, mtd
, buf
.start
, buf
.length
,
831 (void __user
*)(uintptr_t)buf
.usr_ptr
,
838 struct mtd_oob_buf64 buf
;
839 struct mtd_oob_buf64 __user
*buf_user
= argp
;
841 if (copy_from_user(&buf
, argp
, sizeof(buf
)))
844 ret
= mtdchar_readoob(file
, mtd
, buf
.start
, buf
.length
,
845 (void __user
*)(uintptr_t)buf
.usr_ptr
,
852 ret
= mtdchar_write_ioctl(mtd
,
853 (struct mtd_write_req __user
*)arg
);
859 struct erase_info_user einfo
;
861 if (copy_from_user(&einfo
, argp
, sizeof(einfo
)))
864 ret
= mtd_lock(mtd
, einfo
.start
, einfo
.length
);
870 struct erase_info_user einfo
;
872 if (copy_from_user(&einfo
, argp
, sizeof(einfo
)))
875 ret
= mtd_unlock(mtd
, einfo
.start
, einfo
.length
);
881 struct erase_info_user einfo
;
883 if (copy_from_user(&einfo
, argp
, sizeof(einfo
)))
886 ret
= mtd_is_locked(mtd
, einfo
.start
, einfo
.length
);
890 /* Legacy interface */
893 struct nand_oobinfo oi
;
898 ret
= get_oobinfo(mtd
, &oi
);
902 if (copy_to_user(argp
, &oi
, sizeof(struct nand_oobinfo
)))
911 if (copy_from_user(&offs
, argp
, sizeof(loff_t
)))
913 return mtd_block_isbad(mtd
, offs
);
921 if (copy_from_user(&offs
, argp
, sizeof(loff_t
)))
923 return mtd_block_markbad(mtd
, offs
);
930 if (copy_from_user(&mode
, argp
, sizeof(int)))
933 mfi
->mode
= MTD_FILE_MODE_NORMAL
;
935 ret
= otp_select_filemode(mfi
, mode
);
941 case OTPGETREGIONCOUNT
:
942 case OTPGETREGIONINFO
:
944 struct otp_info
*buf
= kmalloc(4096, GFP_KERNEL
);
949 case MTD_FILE_MODE_OTP_FACTORY
:
950 ret
= mtd_get_fact_prot_info(mtd
, 4096, &retlen
, buf
);
952 case MTD_FILE_MODE_OTP_USER
:
953 ret
= mtd_get_user_prot_info(mtd
, 4096, &retlen
, buf
);
960 if (cmd
== OTPGETREGIONCOUNT
) {
961 int nbr
= retlen
/ sizeof(struct otp_info
);
962 ret
= copy_to_user(argp
, &nbr
, sizeof(int));
964 ret
= copy_to_user(argp
, buf
, retlen
);
974 struct otp_info oinfo
;
976 if (mfi
->mode
!= MTD_FILE_MODE_OTP_USER
)
978 if (copy_from_user(&oinfo
, argp
, sizeof(oinfo
)))
980 ret
= mtd_lock_user_prot_reg(mtd
, oinfo
.start
, oinfo
.length
);
984 /* This ioctl is being deprecated - it truncates the ECC layout */
987 struct nand_ecclayout_user
*usrlay
;
992 usrlay
= kmalloc(sizeof(*usrlay
), GFP_KERNEL
);
996 shrink_ecclayout(mtd
, usrlay
);
998 if (copy_to_user(argp
, usrlay
, sizeof(*usrlay
)))
1006 if (copy_to_user(argp
, &mtd
->ecc_stats
,
1007 sizeof(struct mtd_ecc_stats
)))
1017 case MTD_FILE_MODE_OTP_FACTORY
:
1018 case MTD_FILE_MODE_OTP_USER
:
1019 ret
= otp_select_filemode(mfi
, arg
);
1022 case MTD_FILE_MODE_RAW
:
1023 if (!mtd_has_oob(mtd
))
1027 case MTD_FILE_MODE_NORMAL
:
1038 struct blkpg_ioctl_arg __user
*blk_arg
= argp
;
1039 struct blkpg_ioctl_arg a
;
1041 if (copy_from_user(&a
, blk_arg
, sizeof(a
)))
1044 ret
= mtdchar_blkpg_ioctl(mtd
, &a
);
1050 /* No reread partition feature. Just return ok */
1060 } /* memory_ioctl */
1062 static long mtdchar_unlocked_ioctl(struct file
*file
, u_int cmd
, u_long arg
)
1066 mutex_lock(&mtd_mutex
);
1067 ret
= mtdchar_ioctl(file
, cmd
, arg
);
1068 mutex_unlock(&mtd_mutex
);
1073 #ifdef CONFIG_COMPAT
1075 struct mtd_oob_buf32
{
1078 compat_caddr_t ptr
; /* unsigned char* */
1081 #define MEMWRITEOOB32 _IOWR('M', 3, struct mtd_oob_buf32)
1082 #define MEMREADOOB32 _IOWR('M', 4, struct mtd_oob_buf32)
1084 static long mtdchar_compat_ioctl(struct file
*file
, unsigned int cmd
,
1087 struct mtd_file_info
*mfi
= file
->private_data
;
1088 struct mtd_info
*mtd
= mfi
->mtd
;
1089 void __user
*argp
= compat_ptr(arg
);
1092 mutex_lock(&mtd_mutex
);
1097 struct mtd_oob_buf32 buf
;
1098 struct mtd_oob_buf32 __user
*buf_user
= argp
;
1100 if (copy_from_user(&buf
, argp
, sizeof(buf
)))
1103 ret
= mtdchar_writeoob(file
, mtd
, buf
.start
,
1104 buf
.length
, compat_ptr(buf
.ptr
),
1111 struct mtd_oob_buf32 buf
;
1112 struct mtd_oob_buf32 __user
*buf_user
= argp
;
1114 /* NOTE: writes return length to buf->start */
1115 if (copy_from_user(&buf
, argp
, sizeof(buf
)))
1118 ret
= mtdchar_readoob(file
, mtd
, buf
.start
,
1119 buf
.length
, compat_ptr(buf
.ptr
),
1126 /* Convert from blkpg_compat_ioctl_arg to blkpg_ioctl_arg */
1127 struct blkpg_compat_ioctl_arg __user
*uarg
= argp
;
1128 struct blkpg_compat_ioctl_arg compat_arg
;
1129 struct blkpg_ioctl_arg a
;
1131 if (copy_from_user(&compat_arg
, uarg
, sizeof(compat_arg
))) {
1136 memset(&a
, 0, sizeof(a
));
1137 a
.op
= compat_arg
.op
;
1138 a
.flags
= compat_arg
.flags
;
1139 a
.datalen
= compat_arg
.datalen
;
1140 a
.data
= compat_ptr(compat_arg
.data
);
1142 ret
= mtdchar_blkpg_ioctl(mtd
, &a
);
1147 ret
= mtdchar_ioctl(file
, cmd
, (unsigned long)argp
);
1150 mutex_unlock(&mtd_mutex
);
1155 #endif /* CONFIG_COMPAT */
1158 * try to determine where a shared mapping can be made
1159 * - only supported for NOMMU at the moment (MMU can't doesn't copy private
1163 static unsigned long mtdchar_get_unmapped_area(struct file
*file
,
1166 unsigned long pgoff
,
1167 unsigned long flags
)
1169 struct mtd_file_info
*mfi
= file
->private_data
;
1170 struct mtd_info
*mtd
= mfi
->mtd
;
1171 unsigned long offset
;
1175 return (unsigned long) -EINVAL
;
1177 if (len
> mtd
->size
|| pgoff
>= (mtd
->size
>> PAGE_SHIFT
))
1178 return (unsigned long) -EINVAL
;
1180 offset
= pgoff
<< PAGE_SHIFT
;
1181 if (offset
> mtd
->size
- len
)
1182 return (unsigned long) -EINVAL
;
1184 ret
= mtd_get_unmapped_area(mtd
, len
, offset
, flags
);
1185 return ret
== -EOPNOTSUPP
? -ENODEV
: ret
;
1188 static unsigned mtdchar_mmap_capabilities(struct file
*file
)
1190 struct mtd_file_info
*mfi
= file
->private_data
;
1192 return mtd_mmap_capabilities(mfi
->mtd
);
1197 * set up a mapping for shared memory segments
1199 static int mtdchar_mmap(struct file
*file
, struct vm_area_struct
*vma
)
1202 struct mtd_file_info
*mfi
= file
->private_data
;
1203 struct mtd_info
*mtd
= mfi
->mtd
;
1204 struct map_info
*map
= mtd
->priv
;
1206 /* This is broken because it assumes the MTD device is map-based
1207 and that mtd->priv is a valid struct map_info. It should be
1208 replaced with something that uses the mtd_get_unmapped_area()
1209 operation properly. */
1210 if (0 /*mtd->type == MTD_RAM || mtd->type == MTD_ROM*/) {
1211 #ifdef pgprot_noncached
1212 if (file
->f_flags
& O_DSYNC
|| map
->phys
>= __pa(high_memory
))
1213 vma
->vm_page_prot
= pgprot_noncached(vma
->vm_page_prot
);
1215 return vm_iomap_memory(vma
, map
->phys
, map
->size
);
1219 return vma
->vm_flags
& VM_SHARED
? 0 : -EACCES
;
1223 static const struct file_operations mtd_fops
= {
1224 .owner
= THIS_MODULE
,
1225 .llseek
= mtdchar_lseek
,
1226 .read
= mtdchar_read
,
1227 .write
= mtdchar_write
,
1228 .unlocked_ioctl
= mtdchar_unlocked_ioctl
,
1229 #ifdef CONFIG_COMPAT
1230 .compat_ioctl
= mtdchar_compat_ioctl
,
1232 .open
= mtdchar_open
,
1233 .release
= mtdchar_close
,
1234 .mmap
= mtdchar_mmap
,
1236 .get_unmapped_area
= mtdchar_get_unmapped_area
,
1237 .mmap_capabilities
= mtdchar_mmap_capabilities
,
1241 int __init
init_mtdchar(void)
1245 ret
= __register_chrdev(MTD_CHAR_MAJOR
, 0, 1 << MINORBITS
,
1248 pr_err("Can't allocate major number %d for MTD\n",
1256 void __exit
cleanup_mtdchar(void)
1258 __unregister_chrdev(MTD_CHAR_MAJOR
, 0, 1 << MINORBITS
, "mtd");
1261 MODULE_ALIAS_CHARDEV_MAJOR(MTD_CHAR_MAJOR
);