/* pcu_sock.c: Connect from PCU via unix domain socket */ /* (C) 2008-2010 by Harald Welte * (C) 2009-2012 by Andreas Eversberg * (C) 2012 by Holger Hans Peter Freyther * All Rights Reserved * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * */ #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include static int pcu_sock_send(struct gsm_network *net, struct msgb *msg); static const char *sapi_string[] = { [PCU_IF_SAPI_RACH] = "RACH", [PCU_IF_SAPI_BCCH] = "BCCH", [PCU_IF_SAPI_PDTCH] = "PDTCH", [PCU_IF_SAPI_PRACH] = "PRACH", [PCU_IF_SAPI_PTCCH] = "PTCCH", [PCU_IF_SAPI_PCH_2] = "PCH_2", [PCU_IF_SAPI_AGCH_2] = "AGCH_2", }; bool pcu_connected(const struct gsm_network *net) { struct pcu_sock_state *state = net->pcu_state; if (!state) return false; if (state->upqueue.bfd.fd <= 0) return false; return true; } /* * PCU messages */ /* Set up an message buffer to package an pcu interface message */ struct msgb *pcu_msgb_alloc(uint8_t msg_type, uint8_t bts_nr) { struct msgb *msg; struct gsm_pcu_if *pcu_prim; msg = msgb_alloc(sizeof(struct gsm_pcu_if), "pcu_sock_tx"); if (!msg) return NULL; msgb_put(msg, sizeof(struct gsm_pcu_if)); pcu_prim = (struct gsm_pcu_if *) msg->data; pcu_prim->msg_type = msg_type; pcu_prim->bts_nr = bts_nr; return msg; } /* Check if the timeslot can be utilized as PDCH now * (PDCH is currently active on BTS) */ static bool ts_now_usable_as_pdch(const struct gsm_bts_trx_ts *ts) { switch (ts->pchan_is) { case GSM_PCHAN_PDCH: /* NOTE: We currently only support Ericsson RBS as a BSC * co-located BTS. This BTS only supports dynamic channels. */ return true; default: return false; } } /* Check if it is possible to use the TS as PDCH (not now, but maybe later) */ static bool ts_usable_as_pdch(const struct gsm_bts_trx_ts *ts) { switch (ts->pchan_from_config) { case GSM_PCHAN_TCH_F_PDCH: case GSM_PCHAN_OSMO_DYN: case GSM_PCHAN_PDCH: return true; default: return false; } } /* Fill the frequency hopping parameter */ static void info_ind_fill_fhp(struct gsm_pcu_if_info_trx_ts *ts_info, const struct gsm_bts_trx_ts *ts) { ts_info->maio = ts->hopping.maio; ts_info->hsn = ts->hopping.hsn; ts_info->hopping = 0x1; memcpy(&ts_info->ma, ts->hopping.ma_data, ts->hopping.ma_len); ts_info->ma_bit_len = ts->hopping.ma_len * 8 - ts->hopping.ma.cur_bit; } /* Fill the TRX parameter */ static void info_ind_fill_trx(struct gsm_pcu_if_info_trx *trx_info, const struct gsm_bts_trx *trx) { unsigned int tn; const struct gsm_bts_trx_ts *ts; trx_info->hlayer1 = 0x2342; trx_info->pdch_mask = 0; trx_info->arfcn = trx->arfcn; if (trx->mo.nm_state.operational != NM_OPSTATE_ENABLED || trx->mo.nm_state.administrative != NM_STATE_UNLOCKED) { LOG_TRX(trx, DPCU, LOGL_INFO, "unavailable for PCU (op=%s adm=%s)\n", abis_nm_opstate_name(trx->mo.nm_state.operational), abis_nm_admin_name(trx->mo.nm_state.administrative)); return; } for (tn = 0; tn < ARRAY_SIZE(trx->ts); tn++) { ts = &trx->ts[tn]; if (ts->mo.nm_state.operational != NM_OPSTATE_ENABLED) continue; if (!ts_now_usable_as_pdch(ts)) continue; trx_info->pdch_mask |= (1 << tn); trx_info->ts[tn].tsc = (ts->tsc >= 0) ? ts->tsc : trx->bts->bsic & 7; if (ts->hopping.enabled) info_ind_fill_fhp(&trx_info->ts[tn], ts); LOG_TRX(trx, DPCU, LOGL_INFO, "PDCH on ts=%u is available (tsc=%u ", ts->nr, trx_info->ts[tn].tsc); if (ts->hopping.enabled) LOGPC(DPCU, LOGL_INFO, "hopping=yes hsn=%u maio=%u ma_bit_len=%u)\n", ts->hopping.hsn, ts->hopping.maio, trx_info->ts[tn].ma_bit_len); else LOGPC(DPCU, LOGL_INFO, "hopping=no arfcn=%u)\n", trx->arfcn); } } /* Send BTS properties to the PCU */ static int pcu_tx_info_ind(struct gsm_bts *bts) { struct msgb *msg; struct gsm_pcu_if *pcu_prim; struct gsm_pcu_if_info_ind *info_ind; struct gprs_rlc_cfg *rlcc; struct gsm_bts_sm *bts_sm; struct gsm_gprs_nsvc *nsvc; struct gsm_bts_trx *trx; int i; bts_sm = bts->site_mgr; LOG_BTS(bts, DPCU, LOGL_INFO, "Sending info for BTS\n"); rlcc = &bts->gprs.cell.rlc_cfg; msg = pcu_msgb_alloc(PCU_IF_MSG_INFO_IND, bts->nr); if (!msg) return -ENOMEM; pcu_prim = (struct gsm_pcu_if *) msg->data; info_ind = &pcu_prim->u.info_ind; info_ind->version = PCU_IF_VERSION; info_ind->flags |= PCU_IF_FLAG_ACTIVE; info_ind->flags |= PCU_IF_FLAG_DIRECT_PHY; /* RAI */ info_ind->mcc = bts->network->plmn.mcc; info_ind->mnc = bts->network->plmn.mnc; info_ind->mnc_3_digits = bts->network->plmn.mnc_3_digits; info_ind->lac = bts->location_area_code; info_ind->rac = bts->gprs.rac; /* NSE */ info_ind->nsei = bts_sm->gprs.nse.nsei; memcpy(info_ind->nse_timer, bts_sm->gprs.nse.timer, 7); memcpy(info_ind->cell_timer, bts->gprs.cell.timer, 11); /* cell attributes */ info_ind->bsic = bts->bsic; info_ind->cell_id = bts->cell_identity; info_ind->repeat_time = rlcc->paging.repeat_time; info_ind->repeat_count = rlcc->paging.repeat_count; info_ind->bvci = bts->gprs.cell.bvci; info_ind->t3142 = rlcc->parameter[RLC_T3142]; info_ind->t3169 = rlcc->parameter[RLC_T3169]; info_ind->t3191 = rlcc->parameter[RLC_T3191]; info_ind->t3193_10ms = rlcc->parameter[RLC_T3193]; info_ind->t3195 = rlcc->parameter[RLC_T3195]; info_ind->n3101 = rlcc->parameter[RLC_N3101]; info_ind->n3103 = rlcc->parameter[RLC_N3103]; info_ind->n3105 = rlcc->parameter[RLC_N3105]; info_ind->cv_countdown = rlcc->parameter[CV_COUNTDOWN]; if (rlcc->cs_mask & (1 << GPRS_CS1)) info_ind->flags |= PCU_IF_FLAG_CS1; if (rlcc->cs_mask & (1 << GPRS_CS2)) info_ind->flags |= PCU_IF_FLAG_CS2; if (rlcc->cs_mask & (1 << GPRS_CS3)) info_ind->flags |= PCU_IF_FLAG_CS3; if (rlcc->cs_mask & (1 << GPRS_CS4)) info_ind->flags |= PCU_IF_FLAG_CS4; if (bts->gprs.mode == BTS_GPRS_EGPRS) { if (rlcc->cs_mask & (1 << GPRS_MCS1)) info_ind->flags |= PCU_IF_FLAG_MCS1; if (rlcc->cs_mask & (1 << GPRS_MCS2)) info_ind->flags |= PCU_IF_FLAG_MCS2; if (rlcc->cs_mask & (1 << GPRS_MCS3)) info_ind->flags |= PCU_IF_FLAG_MCS3; if (rlcc->cs_mask & (1 << GPRS_MCS4)) info_ind->flags |= PCU_IF_FLAG_MCS4; if (rlcc->cs_mask & (1 << GPRS_MCS5)) info_ind->flags |= PCU_IF_FLAG_MCS5; if (rlcc->cs_mask & (1 << GPRS_MCS6)) info_ind->flags |= PCU_IF_FLAG_MCS6; if (rlcc->cs_mask & (1 << GPRS_MCS7)) info_ind->flags |= PCU_IF_FLAG_MCS7; if (rlcc->cs_mask & (1 << GPRS_MCS8)) info_ind->flags |= PCU_IF_FLAG_MCS8; if (rlcc->cs_mask & (1 << GPRS_MCS9)) info_ind->flags |= PCU_IF_FLAG_MCS9; } /* TODO: isn't dl_tbf_ext wrong?: * 10 and no ntohs */ info_ind->dl_tbf_ext = rlcc->parameter[T_DL_TBF_EXT]; /* TODO: isn't ul_tbf_ext wrong?: * 10 and no ntohs */ info_ind->ul_tbf_ext = rlcc->parameter[T_UL_TBF_EXT]; info_ind->initial_cs = rlcc->initial_cs; info_ind->initial_mcs = rlcc->initial_mcs; /* NSVC */ for (i = 0; i < ARRAY_SIZE(info_ind->nsvci); i++) { nsvc = &bts->site_mgr->gprs.nsvc[i]; info_ind->nsvci[i] = nsvc->nsvci; info_ind->local_port[i] = nsvc->local_port; switch (nsvc->remote.u.sas.ss_family) { case AF_INET: info_ind->address_type[i] = PCU_IF_ADDR_TYPE_IPV4; info_ind->remote_ip[i].v4 = nsvc->remote.u.sin.sin_addr; info_ind->remote_port[i] = ntohs(nsvc->remote.u.sin.sin_port); break; case AF_INET6: info_ind->address_type[i] = PCU_IF_ADDR_TYPE_IPV6; memcpy(&info_ind->remote_ip[i].v6, &nsvc->remote.u.sin6.sin6_addr, sizeof(struct in6_addr)); info_ind->remote_port[i] = ntohs(nsvc->remote.u.sin6.sin6_port); break; default: info_ind->address_type[i] = PCU_IF_ADDR_TYPE_UNSPEC; break; } } for (i = 0; i < ARRAY_SIZE(info_ind->trx); i++) { trx = gsm_bts_trx_num(bts, i); if (!trx) continue; if (trx->nr >= ARRAY_SIZE(info_ind->trx)) { LOG_TRX(trx, DPCU, LOGL_NOTICE, "PCU interface (version %u) " "cannot handle more than %zu transceivers => skipped\n", PCU_IF_VERSION, ARRAY_SIZE(info_ind->trx)); break; } info_ind_fill_trx(&info_ind->trx[trx->nr], trx); } switch (bts->type) { case GSM_BTS_TYPE_RBS2000: info_ind->bts_model = PCU_IF_BTS_MODEL_RBS; break; default: info_ind->bts_model = PCU_IF_BTS_MODEL_UNSPEC; } return pcu_sock_send(bts->network, msg); } static int pcu_tx_e1_ccu_ind(struct gsm_bts *bts) { struct gsm_bts_trx *trx; llist_for_each_entry(trx, &bts->trx_list, list) { struct gsm_pcu_if_e1_ccu_ind *e1_ccu_ind; int i; if (trx->nr >= PCU_IF_NUM_TRX) { LOG_TRX(trx, DPCU, LOGL_NOTICE, "PCU interface (version %u) " "cannot handle more than %u transceivers => skipped\n", PCU_IF_VERSION, PCU_IF_NUM_TRX); continue; } for (i = 0; i < ARRAY_SIZE(trx->ts); i++) { struct gsm_pcu_if *pcu_prim; struct gsm_bts_trx_ts *ts; struct msgb *msg; int rc; ts = &trx->ts[i]; if (ts->mo.nm_state.operational != NM_OPSTATE_ENABLED) continue; if (!ts_usable_as_pdch(ts)) continue; msg = pcu_msgb_alloc(PCU_IF_MSG_E1_CCU_IND, bts->nr); if (!msg) return -ENOMEM; pcu_prim = (struct gsm_pcu_if *)msg->data; e1_ccu_ind = &pcu_prim->u.e1_ccu_ind; e1_ccu_ind->ts_nr = ts->nr; e1_ccu_ind->trx_nr = trx->nr; e1_ccu_ind->e1_nr = ts->e1_link.e1_nr; e1_ccu_ind->e1_ts = ts->e1_link.e1_ts; e1_ccu_ind->e1_ts_ss = ts->e1_link.e1_ts_ss; LOG_TRX(trx, DPCU, LOGL_INFO, "Sending E1 CCU info for TS %d\n", e1_ccu_ind->ts_nr); rc = pcu_sock_send(bts->network, msg); if (rc < 0) return -EINVAL; } } return 0; } /* Allow test to overwrite it */ __attribute__((weak)) void pcu_info_update(struct gsm_bts *bts) { if (!pcu_connected(bts->network)) return; if (!bsc_co_located_pcu(bts)) return; if (bts->nr > 0xff) { /* OS#6565 */ LOG_BTS(bts, DPCU, LOGL_ERROR, "bts id > 255 cannot be configured over PCUIF! GPRS won't work for this BTS!"); return; } /* In cases where the CCU is connected via an E1 line, we transmit the connection parameters for the * PDCH before we announce the other BTS related parameters. */ if (is_e1_bts(bts)) pcu_tx_e1_ccu_ind(bts); pcu_tx_info_ind(bts); } static int pcu_tx_data_ind(struct gsm_bts_trx_ts *ts, uint8_t sapi, uint32_t fn, uint16_t arfcn, uint8_t block_nr, uint8_t *data, uint8_t len, int8_t rssi, uint16_t ber10k, int16_t bto, int16_t lqual) { struct msgb *msg; struct gsm_pcu_if *pcu_prim; struct gsm_pcu_if_data *data_ind; struct gsm_bts *bts = ts->trx->bts; LOGP(DPCU, LOGL_DEBUG, "Sending data indication: sapi=%s arfcn=%d block=%d data=%s\n", sapi_string[sapi], arfcn, block_nr, osmo_hexdump(data, len)); msg = pcu_msgb_alloc(PCU_IF_MSG_DATA_IND, bts->nr); if (!msg) return -ENOMEM; pcu_prim = (struct gsm_pcu_if *) msg->data; data_ind = &pcu_prim->u.data_ind; data_ind->sapi = sapi; data_ind->rssi = rssi; data_ind->fn = fn; data_ind->arfcn = arfcn; data_ind->trx_nr = ts->trx->nr; data_ind->ts_nr = ts->nr; data_ind->block_nr = block_nr; data_ind->ber10k = ber10k; data_ind->ta_offs_qbits = bto; data_ind->lqual_cb = lqual; if (len) memcpy(data_ind->data, data, len); data_ind->len = len; return pcu_sock_send(bts->network, msg); } /* Forward rach indication to PCU */ int pcu_tx_rach_ind(struct gsm_bts *bts, int16_t qta, uint16_t ra, uint32_t fn, uint8_t is_11bit, enum ph_burst_type burst_type) { struct msgb *msg; struct gsm_pcu_if *pcu_prim; struct gsm_pcu_if_rach_ind *rach_ind; /* Bail if no PCU is connected */ if (!pcu_connected(bts->network)) { LOG_BTS(bts, DPCU, LOGL_ERROR, "CHAN RQD(GPRS) but PCU not connected!\n"); return -ENODEV; } if (!bsc_co_located_pcu(bts)) { LOG_BTS(bts, DPCU, LOGL_ERROR, "CHAN RQD(GPRS) on BTS whose PCU is not BSC-colocated!\n"); return -EINVAL; } if (bts->nr > 0xff) { /* OS#6565 */ LOG_BTS(bts, DPCU, LOGL_ERROR, "CHAN RQD(GPRS) on bts id > 255 cannot be sent over PCUIF! GPRS won't work for this BTS!"); return -EINVAL; } LOG_BTS(bts, DPCU, LOGL_INFO, "Sending RACH indication: qta=%d, ra=%d, " "fn=%d\n", qta, ra, fn); msg = pcu_msgb_alloc(PCU_IF_MSG_RACH_IND, bts->nr); if (!msg) return -ENOMEM; pcu_prim = (struct gsm_pcu_if *) msg->data; rach_ind = &pcu_prim->u.rach_ind; rach_ind->sapi = PCU_IF_SAPI_RACH; rach_ind->ra = ra; rach_ind->qta = qta; rach_ind->fn = fn; rach_ind->is_11bit = is_11bit; rach_ind->burst_type = burst_type; return pcu_sock_send(bts->network, msg); } int pcu_tx_data_cnf(struct gsm_bts *bts, uint32_t msg_id, uint8_t sapi) { struct msgb *msg; struct gsm_pcu_if *pcu_prim; struct gsm_pcu_if_data_cnf *data_cnf; LOGP(DPCU, LOGL_DEBUG, "Sending DATA.cnf: sapi=%s msg_id=%08x\n", sapi_string[sapi], msg_id); msg = pcu_msgb_alloc(PCU_IF_MSG_DATA_CNF_2, bts->nr); if (!msg) return -ENOMEM; pcu_prim = (struct gsm_pcu_if *) msg->data; data_cnf = &pcu_prim->u.data_cnf2; data_cnf->sapi = sapi; data_cnf->msg_id = msg_id; return pcu_sock_send(bts->network, msg); } /* we need to decode the raw RR paging message (see PCU code * Encoding::write_paging_request) and extract the mobile identity * (P-TMSI) from it */ static int pcu_rx_rr_paging_pch(struct gsm_bts *bts, uint8_t paging_group, const struct gsm_pcu_if_pch *pch) { struct gsm48_paging1 *p1 = (struct gsm48_paging1 *) pch->data; uint8_t chan_needed; struct osmo_mobile_identity mi; int rc; switch (p1->msg_type) { case GSM48_MT_RR_PAG_REQ_1: chan_needed = (p1->cneed2 << 2) | p1->cneed1; rc = osmo_mobile_identity_decode(&mi, p1->data+1, p1->data[0], false); if (rc) { LOG_BTS(bts, DPCU, LOGL_ERROR, "PCU Sends paging " "request type %02x (chan_needed=%02x): Unable to decode Mobile Identity\n", p1->msg_type, chan_needed); rc = -EINVAL; break; } LOG_BTS(bts, DPCU, LOGL_ERROR, "PCU Sends paging " "request type %02x (chan_needed=%02x, mi=%s)\n", p1->msg_type, chan_needed, osmo_mobile_identity_to_str_c(OTC_SELECT, &mi)); /* NOTE: We will have to add 2 to mi_len and subtract 2 from * the mi pointer because rsl_paging_cmd() will perform the * reverse operations. This is because rsl_paging_cmd() is * normally expected to chop off the element identifier (0xC0) * and the length field. In our parameter, we do not have * those fields included. */ rc = rsl_paging_cmd(bts, paging_group, &mi, chan_needed, true); break; case GSM48_MT_RR_PAG_REQ_2: case GSM48_MT_RR_PAG_REQ_3: LOG_BTS(bts, DPCU, LOGL_ERROR, "PCU Sends unsupported paging " "request type %02x\n", p1->msg_type); rc = -EINVAL; break; default: LOG_BTS(bts, DPCU, LOGL_ERROR, "PCU Sends unknown paging " "request type %02x\n", p1->msg_type); rc = -EINVAL; break; } return rc; } static int pcu_rx_rr_imm_ass_pch(struct gsm_bts *bts, uint8_t paging_group, const struct gsm_pcu_if_pch *pch, bool confirm) { LOG_BTS(bts, DPCU, LOGL_DEBUG, "PCU Sends immediate assignment via PCH (msg_id=0x%08x, IMSI=%s, Paging group=0x%02x)\n", pch->msg_id, pch->imsi, paging_group); /* NOTE: Sending an IMMEDIATE ASSIGNMENT via PCH became necessary with GPRS in order to be able to * assign downlink TBFs directly through the paging channel. However, this method never became part * of the RSL specs. This means that each BTS vendor has to come up with a proprietary method. At * the moment we only support Ericsson RBS here. */ if (is_ericsson_bts(bts)) return rsl_ericsson_imm_assign_cmd(bts, pch->msg_id, sizeof(pch->data), pch->data, paging_group, confirm); LOG_BTS(bts, DPCU, LOGL_ERROR, "BTS model does not support sending immediate assignment via PCH!\n"); return -ENOTSUP; } static int pcu_rx_data_req(struct gsm_bts *bts, uint8_t msg_type, struct gsm_pcu_if_data *data_req) { uint8_t pag_grp; int rc = 0; const struct gsm_pcu_if_pch *pch; const struct gsm_pcu_if_agch *agch; const struct gsm48_imm_ass *gsm48_imm_ass; LOG_BTS(bts, DPCU, LOGL_DEBUG, "Data request received: sapi=%s arfcn=%d " "block=%d data=%s\n", sapi_string[data_req->sapi], data_req->arfcn, data_req->block_nr, osmo_hexdump(data_req->data, data_req->len)); switch (data_req->sapi) { case PCU_IF_SAPI_AGCH_2: if (data_req->len < sizeof(struct gsm_pcu_if_agch)) { LOG_BTS(bts, DPCU, LOGL_ERROR, "Received PCU data request with invalid/small length %d\n", data_req->len); break; } agch = (struct gsm_pcu_if_agch *)data_req->data; if (rsl_imm_assign_cmd(bts, GSM_MACBLOCK_LEN, agch->data)) return -EIO; /* Send the confirmation immediately. This is as accurate as we can get since from this point on the * BTS hardware is responsible to schedule the sending of the IMMEDIATE ASSIGNMENT */ if (agch->confirm) return pcu_tx_data_cnf(bts, agch->msg_id, PCU_IF_SAPI_AGCH_2); break; case PCU_IF_SAPI_PCH_2: if (data_req->len < sizeof(struct gsm_pcu_if_pch)) { LOG_BTS(bts, DPCU, LOGL_ERROR, "Received PCU data request with invalid/small length %d\n", data_req->len); break; } pch = (struct gsm_pcu_if_pch *)data_req->data; pag_grp = gsm0502_calc_paging_group(&bts->si_common.chan_desc, str_to_imsi(pch->imsi)); gsm48_imm_ass = (struct gsm48_imm_ass *)pch->data; if (gsm48_imm_ass->msg_type == GSM48_MT_RR_IMM_ASS) return pcu_rx_rr_imm_ass_pch(bts, pag_grp, pch, pch->confirm); if (pcu_rx_rr_paging_pch(bts, pag_grp, pch)) return -EIO; if (pch->confirm) return pcu_tx_data_cnf(bts, pch->msg_id, PCU_IF_SAPI_PCH_2); break; default: LOG_BTS(bts, DPCU, LOGL_ERROR, "Received PCU data request with " "unsupported sapi %d\n", data_req->sapi); rc = -EINVAL; } return rc; } static int pcu_tx_si(const struct gsm_bts *bts, enum osmo_sysinfo_type si_type, bool enable) { /* the SI is per-BTS so it doesn't matter which TRX we use */ struct gsm_bts_trx *trx = bts->c0; uint8_t si_buf[GSM_MACBLOCK_LEN]; uint8_t len; int rc; if (enable) { memcpy(si_buf, GSM_BTS_SI(bts, si_type), GSM_MACBLOCK_LEN); len = GSM_MACBLOCK_LEN; LOG_BTS(bts, DPCU, LOGL_DEBUG, "Updating SI%s to PCU: %s\n", get_value_string(osmo_sitype_strs, si_type), osmo_hexdump_nospc(si_buf, GSM_MACBLOCK_LEN)); } else { si_buf[0] = si_type; len = 1; /* Note: SI13 is the only system information type that is revked * by just sending a completely empty message. This is due to * historical reasons */ if (si_type != SYSINFO_TYPE_13) len = 0; LOG_BTS(bts, DPCU, LOGL_DEBUG, "Revoking SI%s from PCU\n", get_value_string(osmo_sitype_strs, si_buf[0])); } /* The low-level data like FN, ARFCN etc will be ignored but we have to * set lqual high enough to bypass the check at lower levels */ rc = pcu_tx_data_ind(&trx->ts[0], PCU_IF_SAPI_BCCH, 0, 0, 0, si_buf, len, 0, 0, 0, INT16_MAX); if (rc < 0) LOG_BTS(bts, DPCU, LOGL_NOTICE, "Failed to send SI%s to PCU: rc=%d\n", get_value_string(osmo_sitype_strs, si_type), rc); return rc; } static int pcu_tx_si_all(struct gsm_bts *bts) { const enum osmo_sysinfo_type si_types[] = { SYSINFO_TYPE_1, SYSINFO_TYPE_2, SYSINFO_TYPE_3, SYSINFO_TYPE_13 }; unsigned int i; int rc = 0; for (i = 0; i < ARRAY_SIZE(si_types); i++) { if (GSM_BTS_HAS_SI(bts, si_types[i])) { rc = pcu_tx_si(bts, si_types[i], true); if (rc < 0) return rc; } else { LOG_BTS(bts, DPCU, LOGL_INFO, "SI%s is not available on PCU connection\n", get_value_string(osmo_sitype_strs, si_types[i])); } } return 0; } static int pcu_rx_txt_ind(struct gsm_network *net, struct gsm_bts *bts, const struct gsm_pcu_if_txt_ind *txt) { int rc = 0; switch (txt->type) { case PCU_VERSION: LOGP(DPCU, LOGL_INFO, "OsmoPCU version %s connected\n", txt->text); /* we use the reception of the PCU_VERSION as a trigger to make the PCU available for * all BTSs handled by this process (currently this is exactly one BTS, see FIXME notes) */ llist_for_each_entry(bts, &net->bts_list, list) { if (bsc_co_located_pcu(bts)) { if (pcu_tx_si_all(bts) < 0) rc = -EINVAL; } } if (rc < 0) return -EINVAL; break; case PCU_OML_ALERT: OSMO_ASSERT(bts); LOG_BTS(bts, DPCU, LOGL_ERROR, "PCU external alarm: %s\n", txt->text); break; default: LOGP(DPCU, LOGL_ERROR, "Unknown TXT_IND type %u received\n", txt->type); return -EINVAL; } return 0; } #define CHECK_IF_MSG_SIZE(prim_len, prim_msg) \ do { \ size_t _len = PCUIF_HDR_SIZE + sizeof(prim_msg); \ if (prim_len < _len) { \ LOGP(DPCU, LOGL_ERROR, "Received %zu bytes on PCU Socket, but primitive %s " \ "size is %zu, discarding\n", prim_len, #prim_msg, _len); \ return -EINVAL; \ } \ } while (0) #define ENSURE_BTS_OBJECT(bts) \ do { \ if ((bts = gsm_bts_num(net, pcu_prim->bts_nr)) == NULL) { \ LOGP(DPCU, LOGL_ERROR, "Received PCU Prim for non-existent BTS %u\n", pcu_prim->bts_nr); \ return -EINVAL; \ } \ } while (0) static int pcu_rx(struct gsm_network *net, uint8_t msg_type, struct gsm_pcu_if *pcu_prim, size_t prim_len) { int rc = 0; struct gsm_bts *bts; switch (msg_type) { case PCU_IF_MSG_DATA_REQ: case PCU_IF_MSG_PAG_REQ: CHECK_IF_MSG_SIZE(prim_len, pcu_prim->u.data_req); ENSURE_BTS_OBJECT(bts); rc = pcu_rx_data_req(bts, msg_type, &pcu_prim->u.data_req); break; case PCU_IF_MSG_TXT_IND: CHECK_IF_MSG_SIZE(prim_len, pcu_prim->u.txt_ind); if (pcu_prim->u.txt_ind.type == PCU_VERSION) { /* A TXT indication that carries the PCU_VERSION is always addressed to the * receiving process as a whole, which means we will not resolve a specific * BTS object in this case. */ rc = pcu_rx_txt_ind(net, NULL, &pcu_prim->u.txt_ind); } else { ENSURE_BTS_OBJECT(bts); rc = pcu_rx_txt_ind(NULL, bts, &pcu_prim->u.txt_ind); } break; default: LOGP(DPCU, LOGL_ERROR, "Received unknown PCU msg type %d\n", msg_type); rc = -EINVAL; } return rc; } static void pcu_sock_close(struct pcu_sock_state *state); /* * PCU socket interface */ static int pcu_sock_send(struct gsm_network *net, struct msgb *msg) { struct pcu_sock_state *state = net->pcu_state; struct osmo_fd *conn_bfd; struct gsm_pcu_if *pcu_prim = (struct gsm_pcu_if *) msg->data; int rc; if (!state) { if (pcu_prim->msg_type != PCU_IF_MSG_TIME_IND) LOGP(DPCU, LOGL_INFO, "PCU socket not created, " "dropping message\n"); msgb_free(msg); return -EINVAL; } conn_bfd = &state->upqueue.bfd; if (conn_bfd->fd <= 0) { if (pcu_prim->msg_type != PCU_IF_MSG_TIME_IND) LOGP(DPCU, LOGL_NOTICE, "PCU socket not connected, " "dropping message\n"); msgb_free(msg); return -EIO; } rc = osmo_wqueue_enqueue(&state->upqueue, msg); if (rc < 0) { if (rc == -ENOSPC) LOGP(DPCU, LOGL_NOTICE, "PCU not reacting (more than %u messages waiting). Closing connection\n", state->upqueue.max_length); pcu_sock_close(state); msgb_free(msg); return rc; } return 0; } static void pdch_deact_bts(struct gsm_bts *bts) { struct gsm_bts_trx *trx; int j; #if 0 /* remove si13, ... */ bts->si_valid &= ~(1 << SYSINFO_TYPE_13); osmo_signal_dispatch(SS_GLOBAL, S_NEW_SYSINFO, bts); #endif /* release PDCH */ llist_for_each_entry(trx, &bts->trx_list, list) { for (j = 0; j < ARRAY_SIZE(trx->ts); j++) { struct gsm_bts_trx_ts *ts = &trx->ts[j]; /* BSC co-located PCU applies only to Ericsson RBS, which supports only GSM_PCHAN_OSMO_DYN. * So we need to deact only on this pchan kind. */ if (ts->mo.nm_state.operational == NM_OPSTATE_ENABLED && ts->pchan_on_init == GSM_PCHAN_OSMO_DYN) { ts_pdch_deact(ts); } } } } static void pcu_sock_close(struct pcu_sock_state *state) { struct osmo_fd *bfd = &state->upqueue.bfd; struct gsm_bts *bts; LOGP(DPCU, LOGL_NOTICE, "PCU socket has LOST connection\n"); osmo_fd_unregister(bfd); close(bfd->fd); bfd->fd = -1; /* re-enable the generation of ACCEPT for new connections */ osmo_fd_read_enable(&state->listen_bfd); /* Disable all PDCHs on all BTSs that are served by the PCU */ llist_for_each_entry(bts, &state->net->bts_list, list) { if (bsc_co_located_pcu(bts)) pdch_deact_bts(bts); } /* flush the queue */ osmo_wqueue_clear(&state->upqueue); } static int pcu_sock_read(struct osmo_fd *bfd) { struct pcu_sock_state *state = (struct pcu_sock_state *)bfd->data; struct gsm_pcu_if *pcu_prim; struct msgb *msg; int rc; msg = msgb_alloc(sizeof(*pcu_prim) + 1000, "pcu_sock_rx"); if (!msg) return -ENOMEM; pcu_prim = (struct gsm_pcu_if *) msg->tail; rc = recv(bfd->fd, msg->tail, msgb_tailroom(msg), 0); if (rc == 0) goto close; if (rc < 0) { if (errno == EAGAIN) { msgb_free(msg); return 0; } goto close; } if (rc < PCUIF_HDR_SIZE) { LOGP(DPCU, LOGL_ERROR, "Received %d bytes on PCU Socket, but primitive hdr size " "is %zu, discarding\n", rc, PCUIF_HDR_SIZE); msgb_free(msg); return 0; } rc = pcu_rx(state->net, pcu_prim->msg_type, pcu_prim, rc); /* as we always synchronously process the message in pcu_rx() and * its callbacks, we can free the message here. */ msgb_free(msg); return rc; close: msgb_free(msg); pcu_sock_close(state); return -1; } static int pcu_sock_write(struct osmo_fd *bfd, struct msgb *msg) { struct pcu_sock_state *state = bfd->data; int rc; /* bug hunter 8-): maybe someone forgot msgb_put(...) ? */ OSMO_ASSERT(msgb_length(msg) > 0); /* try to send it over the socket */ rc = write(bfd->fd, msgb_data(msg), msgb_length(msg)); if (OSMO_UNLIKELY(rc == 0)) goto close; if (OSMO_UNLIKELY(rc < 0)) { if (errno == EAGAIN) return -EAGAIN; return -1; } return 0; close: pcu_sock_close(state); return -1; } static void pdch_act_bts(struct gsm_bts *bts) { struct gsm_bts_trx *trx; int j; if (bts->nr > 0xff) { /* OS#6565 */ LOG_BTS(bts, DPCU, LOGL_ERROR, "bts id > 255 cannot be configured over PCUIF! GPRS won't work for this BTS!"); return; } /* activate PDCH */ llist_for_each_entry(trx, &bts->trx_list, list) { for (j = 0; j < ARRAY_SIZE(trx->ts); j++) { struct gsm_bts_trx_ts *ts = &trx->ts[j]; /* (See comment in pdch_deact_bts above) */ if (ts->mo.nm_state.operational == NM_OPSTATE_ENABLED && ts->pchan_on_init == GSM_PCHAN_OSMO_DYN) { ts_pdch_act(ts); } } } } /* accept connection coming from PCU */ static int pcu_sock_accept(struct osmo_fd *bfd, unsigned int flags) { struct pcu_sock_state *state = (struct pcu_sock_state *)bfd->data; struct osmo_fd *conn_bfd = &state->upqueue.bfd; struct sockaddr_un un_addr; struct gsm_bts *bts; socklen_t len; int fd; len = sizeof(un_addr); fd = accept(bfd->fd, (struct sockaddr *)&un_addr, &len); if (fd < 0) { LOGP(DPCU, LOGL_ERROR, "Failed to accept a new connection\n"); return -1; } if (conn_bfd->fd >= 0) { LOGP(DPCU, LOGL_NOTICE, "PCU connects but we already have another active connection ?!?\n"); /* We already have one PCU connected, this is all we support */ osmo_fd_read_disable(&state->listen_bfd); close(fd); return 0; } osmo_fd_setup(conn_bfd, fd, OSMO_FD_READ, osmo_wqueue_bfd_cb, state, 0); if (osmo_fd_register(conn_bfd) != 0) { LOGP(DPCU, LOGL_ERROR, "Failed to register new connection fd\n"); close(conn_bfd->fd); conn_bfd->fd = -1; return -1; } LOGP(DPCU, LOGL_NOTICE, "PCU socket connected to external PCU\n"); /* Activate all PDCHs on all BTSs that are served by the PCU */ llist_for_each_entry(bts, &state->net->bts_list, list) { if (bsc_co_located_pcu(bts)) pdch_act_bts(bts); } return 0; } /* Open connection to PCU */ int pcu_sock_init(struct gsm_network *net) { struct pcu_sock_state *state; struct osmo_fd *bfd; int rc; state = talloc_zero(NULL, struct pcu_sock_state); if (!state) return -ENOMEM; osmo_wqueue_init(&state->upqueue, net->pcu_sock_wqueue_len_max); state->upqueue.read_cb = pcu_sock_read; state->upqueue.write_cb = pcu_sock_write; state->upqueue.bfd.fd = -1; state->net = net; bfd = &state->listen_bfd; rc = osmo_sock_unix_init(SOCK_SEQPACKET, 0, net->pcu_sock_path, OSMO_SOCK_F_BIND); if (rc < 0) { LOGP(DPCU, LOGL_ERROR, "Could not create unix socket: %s\n", strerror(errno)); talloc_free(state); return -1; } osmo_fd_setup(bfd, rc, OSMO_FD_READ, pcu_sock_accept, state, 0); rc = osmo_fd_register(bfd); if (rc < 0) { LOGP(DPCU, LOGL_ERROR, "Could not register listen fd: %d\n", rc); close(bfd->fd); talloc_free(state); return rc; } LOGP(DPCU, LOGL_INFO, "Started listening on PCU socket (PCU IF v%u): %s\n", PCU_IF_VERSION, net->pcu_sock_path); net->pcu_state = state; return 0; } /* Close connection to PCU */ void pcu_sock_exit(struct gsm_network *net) { struct pcu_sock_state *state = net->pcu_state; struct osmo_fd *bfd, *conn_bfd; if (!state) return; conn_bfd = &state->upqueue.bfd; if (conn_bfd->fd > 0) pcu_sock_close(state); bfd = &state->listen_bfd; osmo_fd_unregister(bfd); close(bfd->fd); talloc_free(state); net->pcu_state = NULL; }