| /* |
| * |
| * BlueZ - Bluetooth protocol stack for Linux |
| * |
| * Copyright (C) 2011-2012 Intel Corporation |
| * Copyright (C) 2004-2010 Marcel Holtmann <marcel@holtmann.org> |
| * |
| * |
| * This program is free software; you can redistribute it and/or modify |
| * it under the terms of the GNU General Public License as published by |
| * the Free Software Foundation; either version 2 of the License, or |
| * (at your option) any later version. |
| * |
| * This program is distributed in the hope that it will be useful, |
| * but WITHOUT ANY WARRANTY; without even the implied warranty of |
| * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| * GNU General Public License for more details. |
| * |
| * You should have received a copy of the GNU General Public License |
| * along with this program; if not, write to the Free Software |
| * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA |
| * |
| */ |
| |
| #ifdef HAVE_CONFIG_H |
| #include <config.h> |
| #endif |
| |
| #include <stdio.h> |
| #include <ctype.h> |
| #include <stdlib.h> |
| #include <string.h> |
| |
| #include "monitor/bt.h" |
| #include "btdev.h" |
| |
| #define le16_to_cpu(val) (val) |
| #define le32_to_cpu(val) (val) |
| #define cpu_to_le16(val) (val) |
| #define cpu_to_le32(val) (val) |
| |
| #define has_bredr(btdev) (!((btdev)->features[4] & 0x20)) |
| #define has_le(btdev) (!!((btdev)->features[4] & 0x40)) |
| |
| struct btdev { |
| enum btdev_type type; |
| |
| struct btdev *conn; |
| |
| btdev_send_func send_handler; |
| void *send_data; |
| |
| uint16_t manufacturer; |
| uint8_t version; |
| uint16_t revision; |
| uint8_t commands[64]; |
| uint8_t features[8]; |
| uint16_t acl_mtu; |
| uint16_t acl_max_pkt; |
| uint8_t country_code; |
| uint8_t bdaddr[6]; |
| uint8_t le_features[8]; |
| uint8_t le_states[8]; |
| |
| uint16_t default_link_policy; |
| uint8_t event_mask[8]; |
| uint8_t event_filter; |
| uint8_t name[248]; |
| uint8_t dev_class[3]; |
| uint16_t voice_setting; |
| uint16_t conn_accept_timeout; |
| uint16_t page_timeout; |
| uint8_t scan_enable; |
| uint8_t auth_enable; |
| uint8_t inquiry_mode; |
| uint8_t afh_assess_mode; |
| uint8_t ext_inquiry_fec; |
| uint8_t ext_inquiry_rsp[240]; |
| uint8_t simple_pairing_mode; |
| uint8_t le_supported; |
| uint8_t le_simultaneous; |
| uint8_t le_event_mask[8]; |
| }; |
| |
| #define MAX_BTDEV_ENTRIES 16 |
| |
| static struct btdev *btdev_list[MAX_BTDEV_ENTRIES] = { }; |
| |
| static inline int add_btdev(struct btdev *btdev) |
| { |
| int i, index = -1; |
| |
| for (i = 0; i < MAX_BTDEV_ENTRIES; i++) { |
| if (btdev_list[i] == NULL) { |
| index = i; |
| btdev_list[index] = btdev; |
| break; |
| } |
| } |
| |
| return index; |
| } |
| |
| static inline int del_btdev(struct btdev *btdev) |
| { |
| int i, index = -1; |
| |
| for (i = 0; i < MAX_BTDEV_ENTRIES; i++) { |
| if (btdev_list[i] == btdev) { |
| index = i; |
| btdev_list[index] = NULL; |
| break; |
| } |
| } |
| |
| return index; |
| } |
| |
| static inline struct btdev *find_btdev_by_bdaddr(const uint8_t *bdaddr) |
| { |
| int i; |
| |
| for (i = 0; i < MAX_BTDEV_ENTRIES; i++) { |
| if (btdev_list[i] && !memcmp(btdev_list[i]->bdaddr, bdaddr, 6)) |
| return btdev_list[i]; |
| } |
| |
| return NULL; |
| } |
| |
| static void hexdump(const unsigned char *buf, uint16_t len) |
| { |
| static const char hexdigits[] = "0123456789abcdef"; |
| char str[68]; |
| uint16_t i; |
| |
| if (!len) |
| return; |
| |
| for (i = 0; i < len; i++) { |
| str[((i % 16) * 3) + 0] = hexdigits[buf[i] >> 4]; |
| str[((i % 16) * 3) + 1] = hexdigits[buf[i] & 0xf]; |
| str[((i % 16) * 3) + 2] = ' '; |
| str[(i % 16) + 49] = isprint(buf[i]) ? buf[i] : '.'; |
| |
| if ((i + 1) % 16 == 0) { |
| str[47] = ' '; |
| str[48] = ' '; |
| str[65] = '\0'; |
| printf("%-12c%s\n", ' ', str); |
| str[0] = ' '; |
| } |
| } |
| |
| if (i % 16 > 0) { |
| uint16_t j; |
| for (j = (i % 16); j < 16; j++) { |
| str[(j * 3) + 0] = ' '; |
| str[(j * 3) + 1] = ' '; |
| str[(j * 3) + 2] = ' '; |
| str[j + 49] = ' '; |
| } |
| str[47] = ' '; |
| str[48] = ' '; |
| str[65] = '\0'; |
| printf("%-12c%s\n", ' ', str); |
| } |
| } |
| |
| static void get_bdaddr(uint16_t id, uint8_t index, uint8_t *bdaddr) |
| { |
| bdaddr[0] = id & 0xff; |
| bdaddr[1] = id >> 8; |
| bdaddr[2] = index; |
| bdaddr[3] = 0x01; |
| bdaddr[4] = 0xaa; |
| bdaddr[5] = 0x00; |
| } |
| |
| static void set_bredr_features(struct btdev *btdev) |
| { |
| btdev->features[0] |= 0x04; /* Encryption */ |
| btdev->features[0] |= 0x20; /* Role switch */ |
| btdev->features[0] |= 0x80; /* Sniff mode */ |
| btdev->features[1] |= 0x08; /* SCO link */ |
| btdev->features[3] |= 0x40; /* RSSI with inquiry results */ |
| btdev->features[3] |= 0x80; /* Extended SCO link */ |
| btdev->features[4] |= 0x08; /* AFH capable slave */ |
| btdev->features[4] |= 0x10; /* AFH classification slave */ |
| btdev->features[4] |= 0x40; /* LE Supported */ |
| btdev->features[5] |= 0x02; /* Sniff subrating */ |
| btdev->features[5] |= 0x04; /* Pause encryption */ |
| btdev->features[5] |= 0x08; /* AFH capable master */ |
| btdev->features[5] |= 0x10; /* AFH classification master */ |
| btdev->features[6] |= 0x01; /* Extended Inquiry Response */ |
| btdev->features[6] |= 0x02; /* Simultaneous LE and BR/EDR */ |
| btdev->features[6] |= 0x08; /* Secure Simple Pairing */ |
| btdev->features[6] |= 0x10; /* Encapsulated PDU */ |
| btdev->features[6] |= 0x20; /* Erroneous Data Reporting */ |
| btdev->features[6] |= 0x40; /* Non-flushable Packet Boundary Flag */ |
| btdev->features[7] |= 0x01; /* Link Supervision Timeout Event */ |
| btdev->features[7] |= 0x02; /* Inquiry TX Power Level */ |
| btdev->features[7] |= 0x80; /* Extended features */ |
| } |
| |
| static void set_le_features(struct btdev *btdev) |
| { |
| btdev->features[4] |= 0x20; /* BR/EDR Not Supported */ |
| btdev->features[4] |= 0x40; /* LE Supported */ |
| btdev->features[7] |= 0x80; /* Extended features */ |
| } |
| |
| static void set_amp_features(struct btdev *btdev) |
| { |
| } |
| |
| struct btdev *btdev_create(enum btdev_type type, uint16_t id) |
| { |
| struct btdev *btdev; |
| int index; |
| |
| btdev = malloc(sizeof(*btdev)); |
| if (!btdev) |
| return NULL; |
| |
| memset(btdev, 0, sizeof(*btdev)); |
| btdev->type = type; |
| |
| btdev->manufacturer = 63; |
| btdev->version = 0x06; |
| btdev->revision = 0x0000; |
| |
| switch (btdev->type) { |
| case BTDEV_TYPE_BREDR: |
| set_bredr_features(btdev); |
| break; |
| case BTDEV_TYPE_LE: |
| set_le_features(btdev); |
| break; |
| case BTDEV_TYPE_AMP: |
| set_amp_features(btdev); |
| break; |
| } |
| |
| btdev->acl_mtu = 192; |
| btdev->acl_max_pkt = 1; |
| |
| btdev->country_code = 0x00; |
| |
| index = add_btdev(btdev); |
| if (index < 0) { |
| free(btdev); |
| return NULL; |
| } |
| |
| get_bdaddr(id, index, btdev->bdaddr); |
| |
| return btdev; |
| } |
| |
| void btdev_destroy(struct btdev *btdev) |
| { |
| if (!btdev) |
| return; |
| |
| del_btdev(btdev); |
| |
| free(btdev); |
| } |
| |
| void btdev_set_send_handler(struct btdev *btdev, btdev_send_func handler, |
| void *user_data) |
| { |
| if (!btdev) |
| return; |
| |
| btdev->send_handler = handler; |
| btdev->send_data = user_data; |
| } |
| |
| static void send_packet(struct btdev *btdev, const void *data, uint16_t len) |
| { |
| if (!btdev->send_handler) |
| return; |
| |
| btdev->send_handler(data, len, btdev->send_data); |
| } |
| |
| static void send_event(struct btdev *btdev, uint8_t event, |
| const void *data, uint8_t len) |
| { |
| struct bt_hci_evt_hdr *hdr; |
| uint16_t pkt_len; |
| void *pkt_data; |
| |
| pkt_len = 1 + sizeof(*hdr) + len; |
| |
| pkt_data = malloc(pkt_len); |
| if (!pkt_data) |
| return; |
| |
| ((uint8_t *) pkt_data)[0] = BT_H4_EVT_PKT; |
| |
| hdr = pkt_data + 1; |
| hdr->evt = event; |
| hdr->plen = len; |
| |
| if (len > 0) |
| memcpy(pkt_data + 1 + sizeof(*hdr), data, len); |
| |
| send_packet(btdev, pkt_data, pkt_len); |
| |
| free(pkt_data); |
| } |
| |
| static void cmd_complete(struct btdev *btdev, uint16_t opcode, |
| const void *data, uint8_t len) |
| { |
| struct bt_hci_evt_hdr *hdr; |
| struct bt_hci_evt_cmd_complete *cc; |
| uint16_t pkt_len; |
| void *pkt_data; |
| |
| pkt_len = 1 + sizeof(*hdr) + sizeof(*cc) + len; |
| |
| pkt_data = malloc(pkt_len); |
| if (!pkt_data) |
| return; |
| |
| ((uint8_t *) pkt_data)[0] = BT_H4_EVT_PKT; |
| |
| hdr = pkt_data + 1; |
| hdr->evt = BT_HCI_EVT_CMD_COMPLETE; |
| hdr->plen = sizeof(*cc) + len; |
| |
| cc = pkt_data + 1 + sizeof(*hdr); |
| cc->ncmd = 0x01; |
| cc->opcode = cpu_to_le16(opcode); |
| |
| if (len > 0) |
| memcpy(pkt_data + 1 + sizeof(*hdr) + sizeof(*cc), data, len); |
| |
| send_packet(btdev, pkt_data, pkt_len); |
| |
| free(pkt_data); |
| } |
| |
| static void cmd_status(struct btdev *btdev, uint8_t status, uint16_t opcode) |
| { |
| struct bt_hci_evt_cmd_status cs; |
| |
| cs.status = status; |
| cs.ncmd = 0x01; |
| cs.opcode = cpu_to_le16(opcode); |
| |
| send_event(btdev, BT_HCI_EVT_CMD_STATUS, &cs, sizeof(cs)); |
| } |
| |
| static void num_completed_packets(struct btdev *btdev) |
| { |
| if (btdev->conn) { |
| struct bt_hci_evt_num_completed_packets ncp; |
| |
| ncp.num_handles = 1; |
| ncp.handle = cpu_to_le16(42); |
| ncp.count = cpu_to_le16(1); |
| |
| send_event(btdev, BT_HCI_EVT_NUM_COMPLETED_PACKETS, |
| &ncp, sizeof(ncp)); |
| } |
| } |
| |
| static void inquiry_complete(struct btdev *btdev, uint8_t status) |
| { |
| struct bt_hci_evt_inquiry_complete ic; |
| int i; |
| |
| for (i = 0; i < MAX_BTDEV_ENTRIES; i++) { |
| if (!btdev_list[i] || btdev_list[i] == btdev) |
| continue; |
| |
| if (!(btdev_list[i]->scan_enable & 0x02)) |
| continue; |
| |
| if (btdev->inquiry_mode == 0x02 && |
| btdev_list[i]->ext_inquiry_rsp[0]) { |
| struct bt_hci_evt_ext_inquiry_result ir; |
| |
| ir.num_resp = 0x01; |
| memcpy(ir.bdaddr, btdev_list[i]->bdaddr, 6); |
| ir.pscan_rep_mode = 0x00; |
| ir.pscan_period_mode = 0x00; |
| memcpy(ir.dev_class, btdev_list[i]->dev_class, 3); |
| ir.rssi = -60; |
| memcpy(ir.data, btdev_list[i]->ext_inquiry_rsp, 240); |
| |
| send_event(btdev, BT_HCI_EVT_EXT_INQUIRY_RESULT, |
| &ir, sizeof(ir)); |
| continue; |
| } |
| |
| if (btdev->inquiry_mode > 0x00) { |
| struct bt_hci_evt_inquiry_result_with_rssi ir; |
| |
| ir.num_resp = 0x01; |
| memcpy(ir.bdaddr, btdev_list[i]->bdaddr, 6); |
| ir.pscan_rep_mode = 0x00; |
| ir.pscan_period_mode = 0x00; |
| memcpy(ir.dev_class, btdev_list[i]->dev_class, 3); |
| ir.rssi = -60; |
| |
| send_event(btdev, BT_HCI_EVT_INQUIRY_RESULT_WITH_RSSI, |
| &ir, sizeof(ir)); |
| } else { |
| struct bt_hci_evt_inquiry_result ir; |
| |
| ir.num_resp = 0x01; |
| memcpy(ir.bdaddr, btdev_list[i]->bdaddr, 6); |
| ir.pscan_rep_mode = 0x00; |
| ir.pscan_period_mode = 0x00; |
| ir.pscan_mode = 0x00; |
| memcpy(ir.dev_class, btdev_list[i]->dev_class, 3); |
| |
| send_event(btdev, BT_HCI_EVT_INQUIRY_RESULT, |
| &ir, sizeof(ir)); |
| } |
| } |
| |
| ic.status = status; |
| |
| send_event(btdev, BT_HCI_EVT_INQUIRY_COMPLETE, &ic, sizeof(ic)); |
| } |
| |
| static void conn_complete(struct btdev *btdev, |
| const uint8_t *bdaddr, uint8_t status) |
| { |
| struct bt_hci_evt_conn_complete cc; |
| |
| if (!status) { |
| struct btdev *remote = find_btdev_by_bdaddr(bdaddr); |
| |
| btdev->conn = remote; |
| remote->conn = btdev; |
| |
| cc.status = status; |
| memcpy(cc.bdaddr, btdev->bdaddr, 6); |
| cc.encr_mode = 0x00; |
| |
| cc.handle = cpu_to_le16(42); |
| cc.link_type = 0x01; |
| |
| send_event(remote, BT_HCI_EVT_CONN_COMPLETE, &cc, sizeof(cc)); |
| |
| cc.handle = cpu_to_le16(42); |
| cc.link_type = 0x01; |
| } else { |
| cc.handle = cpu_to_le16(0x0000); |
| cc.link_type = 0x01; |
| } |
| |
| cc.status = status; |
| memcpy(cc.bdaddr, bdaddr, 6); |
| cc.encr_mode = 0x00; |
| |
| send_event(btdev, BT_HCI_EVT_CONN_COMPLETE, &cc, sizeof(cc)); |
| } |
| |
| static void conn_request(struct btdev *btdev, const uint8_t *bdaddr) |
| { |
| struct btdev *remote = find_btdev_by_bdaddr(bdaddr); |
| |
| if (remote) { |
| if (remote->scan_enable & 0x01) { |
| struct bt_hci_evt_conn_request cr; |
| |
| memcpy(cr.bdaddr, btdev->bdaddr, 6); |
| memcpy(cr.dev_class, btdev->dev_class, 3); |
| cr.link_type = 0x01; |
| |
| send_event(remote, BT_HCI_EVT_CONN_REQUEST, |
| &cr, sizeof(cr)); |
| } else |
| conn_complete(btdev, bdaddr, BT_HCI_ERR_PAGE_TIMEOUT); |
| } else |
| conn_complete(btdev, bdaddr, BT_HCI_ERR_UNKNOWN_CONN_ID); |
| } |
| |
| static void disconnect_complete(struct btdev *btdev, uint16_t handle, |
| uint8_t reason) |
| { |
| struct bt_hci_evt_disconnect_complete dc; |
| struct btdev *remote; |
| |
| if (!btdev) { |
| dc.status = BT_HCI_ERR_UNKNOWN_CONN_ID; |
| dc.handle = cpu_to_le16(handle); |
| dc.reason = 0x00; |
| |
| send_event(btdev, BT_HCI_EVT_DISCONNECT_COMPLETE, |
| &dc, sizeof(dc)); |
| return; |
| } |
| |
| dc.status = BT_HCI_ERR_SUCCESS; |
| dc.handle = cpu_to_le16(handle); |
| dc.reason = reason; |
| |
| remote = btdev->conn; |
| |
| btdev->conn = NULL; |
| remote->conn = NULL; |
| |
| send_event(btdev, BT_HCI_EVT_DISCONNECT_COMPLETE, &dc, sizeof(dc)); |
| send_event(remote, BT_HCI_EVT_DISCONNECT_COMPLETE, &dc, sizeof(dc)); |
| } |
| |
| static void name_request_complete(struct btdev *btdev, |
| const uint8_t *bdaddr, uint8_t status) |
| { |
| struct bt_hci_evt_remote_name_request_complete nc; |
| |
| nc.status = status; |
| memcpy(nc.bdaddr, bdaddr, 6); |
| memset(nc.name, 0, 248); |
| |
| if (!status) { |
| struct btdev *remote = find_btdev_by_bdaddr(bdaddr); |
| |
| if (remote) |
| memcpy(nc.name, remote->name, 248); |
| else |
| nc.status = BT_HCI_ERR_UNKNOWN_CONN_ID; |
| } |
| |
| send_event(btdev, BT_HCI_EVT_REMOTE_NAME_REQUEST_COMPLETE, |
| &nc, sizeof(nc)); |
| } |
| |
| static void remote_features_complete(struct btdev *btdev, uint16_t handle) |
| { |
| struct bt_hci_evt_remote_features_complete rfc; |
| |
| if (btdev->conn) { |
| rfc.status = BT_HCI_ERR_SUCCESS; |
| rfc.handle = cpu_to_le16(handle); |
| memcpy(rfc.features, btdev->conn->features, 8); |
| } else { |
| rfc.status = BT_HCI_ERR_UNKNOWN_CONN_ID; |
| rfc.handle = cpu_to_le16(handle); |
| memset(rfc.features, 0, 8); |
| } |
| |
| send_event(btdev, BT_HCI_EVT_REMOTE_FEATURES_COMPLETE, |
| &rfc, sizeof(rfc)); |
| } |
| |
| static void remote_ext_features_complete(struct btdev *btdev, uint16_t handle, |
| uint8_t page) |
| { |
| struct bt_hci_evt_remote_ext_features_complete refc; |
| |
| if (btdev->conn && page < 0x02) { |
| refc.handle = cpu_to_le16(handle); |
| refc.page = page; |
| refc.max_page = 0x01; |
| |
| switch (page) { |
| case 0x00: |
| refc.status = BT_HCI_ERR_SUCCESS; |
| memcpy(refc.features, btdev->conn->features, 8); |
| break; |
| case 0x01: |
| refc.status = BT_HCI_ERR_SUCCESS; |
| memset(refc.features, 0, 8); |
| break; |
| default: |
| refc.status = BT_HCI_ERR_INVALID_PARAMETERS; |
| memset(refc.features, 0, 8); |
| break; |
| } |
| } else { |
| refc.status = BT_HCI_ERR_UNKNOWN_CONN_ID; |
| refc.handle = cpu_to_le16(handle); |
| refc.page = page; |
| refc.max_page = 0x01; |
| memset(refc.features, 0, 8); |
| } |
| |
| send_event(btdev, BT_HCI_EVT_REMOTE_EXT_FEATURES_COMPLETE, |
| &refc, sizeof(refc)); |
| } |
| |
| static void remote_version_complete(struct btdev *btdev, uint16_t handle) |
| { |
| struct bt_hci_evt_remote_version_complete rvc; |
| |
| if (btdev->conn) { |
| rvc.status = BT_HCI_ERR_SUCCESS; |
| rvc.handle = cpu_to_le16(handle); |
| rvc.lmp_ver = btdev->conn->version; |
| rvc.manufacturer = cpu_to_le16(btdev->conn->manufacturer); |
| rvc.lmp_subver = cpu_to_le16(btdev->conn->revision); |
| } else { |
| rvc.status = BT_HCI_ERR_UNKNOWN_CONN_ID; |
| rvc.handle = cpu_to_le16(handle); |
| rvc.lmp_ver = 0x00; |
| rvc.manufacturer = cpu_to_le16(0); |
| rvc.lmp_subver = cpu_to_le16(0); |
| } |
| |
| send_event(btdev, BT_HCI_EVT_REMOTE_VERSION_COMPLETE, |
| &rvc, sizeof(rvc)); |
| } |
| |
| static void process_cmd(struct btdev *btdev, const void *data, uint16_t len) |
| { |
| const struct bt_hci_cmd_hdr *hdr = data; |
| const struct bt_hci_cmd_create_conn *cc; |
| const struct bt_hci_cmd_disconnect *dc; |
| const struct bt_hci_cmd_create_conn_cancel *ccc; |
| const struct bt_hci_cmd_accept_conn_request *acr; |
| const struct bt_hci_cmd_reject_conn_request *rcr; |
| const struct bt_hci_cmd_remote_name_request *rnr; |
| const struct bt_hci_cmd_remote_name_request_cancel *rnrc; |
| const struct bt_hci_cmd_read_remote_features *rrf; |
| const struct bt_hci_cmd_read_remote_ext_features *rref; |
| const struct bt_hci_cmd_read_remote_version *rrv; |
| const struct bt_hci_cmd_write_default_link_policy *wdlp; |
| const struct bt_hci_cmd_set_event_mask *sem; |
| const struct bt_hci_cmd_set_event_filter *sef; |
| const struct bt_hci_cmd_write_local_name *wln; |
| const struct bt_hci_cmd_write_conn_accept_timeout *wcat; |
| const struct bt_hci_cmd_write_page_timeout *wpt; |
| const struct bt_hci_cmd_write_scan_enable *wse; |
| const struct bt_hci_cmd_write_auth_enable *wae; |
| const struct bt_hci_cmd_write_class_of_dev *wcod; |
| const struct bt_hci_cmd_write_voice_setting *wvs; |
| const struct bt_hci_cmd_write_inquiry_mode *wim; |
| const struct bt_hci_cmd_write_afh_assess_mode *waam; |
| const struct bt_hci_cmd_write_ext_inquiry_response *weir; |
| const struct bt_hci_cmd_write_simple_pairing_mode *wspm; |
| const struct bt_hci_cmd_write_le_host_supported *wlhs; |
| const struct bt_hci_cmd_le_set_event_mask *lsem; |
| struct bt_hci_rsp_read_default_link_policy rdlp; |
| struct bt_hci_rsp_read_stored_link_key rslk; |
| struct bt_hci_rsp_write_stored_link_key wslk; |
| struct bt_hci_rsp_delete_stored_link_key dslk; |
| struct bt_hci_rsp_read_local_name rln; |
| struct bt_hci_rsp_read_conn_accept_timeout rcat; |
| struct bt_hci_rsp_read_page_timeout rpt; |
| struct bt_hci_rsp_read_scan_enable rse; |
| struct bt_hci_rsp_read_auth_enable rae; |
| struct bt_hci_rsp_read_class_of_dev rcod; |
| struct bt_hci_rsp_read_voice_setting rvs; |
| struct bt_hci_rsp_read_inquiry_mode rim; |
| struct bt_hci_rsp_read_afh_assess_mode raam; |
| struct bt_hci_rsp_read_ext_inquiry_response reir; |
| struct bt_hci_rsp_read_simple_pairing_mode rspm; |
| struct bt_hci_rsp_read_inquiry_resp_tx_power rirtp; |
| struct bt_hci_rsp_read_le_host_supported rlhs; |
| struct bt_hci_rsp_read_local_version rlv; |
| struct bt_hci_rsp_read_local_commands rlc; |
| struct bt_hci_rsp_read_local_features rlf; |
| struct bt_hci_rsp_read_local_ext_features rlef; |
| struct bt_hci_rsp_read_buffer_size rbs; |
| struct bt_hci_rsp_read_country_code rcc; |
| struct bt_hci_rsp_read_bd_addr rba; |
| struct bt_hci_rsp_read_data_block_size rdbs; |
| struct bt_hci_rsp_read_local_amp_info rlai; |
| struct bt_hci_rsp_le_read_buffer_size lrbs; |
| struct bt_hci_rsp_le_read_local_features lrlf; |
| struct bt_hci_rsp_le_read_adv_tx_power lratp; |
| struct bt_hci_rsp_le_read_supported_states lrss; |
| uint16_t opcode; |
| uint8_t status, page; |
| |
| if (len < sizeof(*hdr)) |
| return; |
| |
| opcode = le16_to_cpu(hdr->opcode); |
| |
| switch (opcode) { |
| case BT_HCI_CMD_INQUIRY: |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| inquiry_complete(btdev, BT_HCI_ERR_SUCCESS); |
| break; |
| |
| case BT_HCI_CMD_INQUIRY_CANCEL: |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_CREATE_CONN: |
| cc = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| conn_request(btdev, cc->bdaddr); |
| break; |
| |
| case BT_HCI_CMD_DISCONNECT: |
| dc = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| disconnect_complete(btdev, le16_to_cpu(dc->handle), dc->reason); |
| break; |
| |
| case BT_HCI_CMD_CREATE_CONN_CANCEL: |
| ccc = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| conn_complete(btdev, ccc->bdaddr, BT_HCI_ERR_UNKNOWN_CONN_ID); |
| break; |
| |
| case BT_HCI_CMD_ACCEPT_CONN_REQUEST: |
| acr = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| conn_complete(btdev, acr->bdaddr, BT_HCI_ERR_SUCCESS); |
| break; |
| |
| case BT_HCI_CMD_REJECT_CONN_REQUEST: |
| rcr = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| conn_complete(btdev, rcr->bdaddr, BT_HCI_ERR_UNKNOWN_CONN_ID); |
| break; |
| |
| case BT_HCI_CMD_REMOTE_NAME_REQUEST: |
| rnr = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| name_request_complete(btdev, rnr->bdaddr, BT_HCI_ERR_SUCCESS); |
| break; |
| |
| case BT_HCI_CMD_REMOTE_NAME_REQUEST_CANCEL: |
| rnrc = data + sizeof(*hdr); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| name_request_complete(btdev, rnrc->bdaddr, |
| BT_HCI_ERR_UNKNOWN_CONN_ID); |
| break; |
| |
| case BT_HCI_CMD_READ_REMOTE_FEATURES: |
| rrf = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| remote_features_complete(btdev, le16_to_cpu(rrf->handle)); |
| break; |
| |
| case BT_HCI_CMD_READ_REMOTE_EXT_FEATURES: |
| rref = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| remote_ext_features_complete(btdev, le16_to_cpu(rref->handle), |
| rref->page); |
| break; |
| |
| case BT_HCI_CMD_READ_REMOTE_VERSION: |
| rrv = data + sizeof(*hdr); |
| cmd_status(btdev, BT_HCI_ERR_SUCCESS, opcode); |
| remote_version_complete(btdev, le16_to_cpu(rrv->handle)); |
| break; |
| |
| case BT_HCI_CMD_READ_DEFAULT_LINK_POLICY: |
| rdlp.status = BT_HCI_ERR_SUCCESS; |
| rdlp.policy = cpu_to_le16(btdev->default_link_policy); |
| cmd_complete(btdev, opcode, &rdlp, sizeof(rdlp)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_DEFAULT_LINK_POLICY: |
| wdlp = data + sizeof(*hdr); |
| btdev->default_link_policy = le16_to_cpu(wdlp->policy); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_SET_EVENT_MASK: |
| sem = data + sizeof(*hdr); |
| memcpy(btdev->event_mask, sem->mask, 8); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_RESET: |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_SET_EVENT_FILTER: |
| sef = data + sizeof(*hdr); |
| btdev->event_filter = sef->type; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_STORED_LINK_KEY: |
| rslk.status = BT_HCI_ERR_SUCCESS; |
| rslk.max_num_keys = cpu_to_le16(0); |
| rslk.num_keys = cpu_to_le16(0); |
| cmd_complete(btdev, opcode, &rslk, sizeof(rslk)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_STORED_LINK_KEY: |
| wslk.status = BT_HCI_ERR_SUCCESS; |
| wslk.num_keys = 0; |
| cmd_complete(btdev, opcode, &wslk, sizeof(wslk)); |
| break; |
| |
| case BT_HCI_CMD_DELETE_STORED_LINK_KEY: |
| dslk.status = BT_HCI_ERR_SUCCESS; |
| dslk.num_keys = cpu_to_le16(0); |
| cmd_complete(btdev, opcode, &dslk, sizeof(dslk)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_LOCAL_NAME: |
| wln = data + sizeof(*hdr); |
| memcpy(btdev->name, wln->name, 248); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_LOCAL_NAME: |
| rln.status = BT_HCI_ERR_SUCCESS; |
| memcpy(rln.name, btdev->name, 248); |
| cmd_complete(btdev, opcode, &rln, sizeof(rln)); |
| break; |
| |
| case BT_HCI_CMD_READ_CONN_ACCEPT_TIMEOUT: |
| rcat.status = BT_HCI_ERR_SUCCESS; |
| rcat.timeout = cpu_to_le16(btdev->conn_accept_timeout); |
| cmd_complete(btdev, opcode, &rcat, sizeof(rcat)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_CONN_ACCEPT_TIMEOUT: |
| wcat = data + sizeof(*hdr); |
| btdev->conn_accept_timeout = le16_to_cpu(wcat->timeout); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_PAGE_TIMEOUT: |
| rpt.status = BT_HCI_ERR_SUCCESS; |
| rpt.timeout = cpu_to_le16(btdev->page_timeout); |
| cmd_complete(btdev, opcode, &rpt, sizeof(rpt)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_PAGE_TIMEOUT: |
| wpt = data + sizeof(*hdr); |
| btdev->page_timeout = le16_to_cpu(wpt->timeout); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_SCAN_ENABLE: |
| rse.status = BT_HCI_ERR_SUCCESS; |
| rse.enable = btdev->scan_enable; |
| cmd_complete(btdev, opcode, &rse, sizeof(rse)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_SCAN_ENABLE: |
| wse = data + sizeof(*hdr); |
| btdev->scan_enable = wse->enable; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_AUTH_ENABLE: |
| rae.status = BT_HCI_ERR_SUCCESS; |
| rae.enable = btdev->auth_enable; |
| cmd_complete(btdev, opcode, &rae, sizeof(rae)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_AUTH_ENABLE: |
| wae = data + sizeof(*hdr); |
| btdev->auth_enable = wae->enable; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_CLASS_OF_DEV: |
| rcod.status = BT_HCI_ERR_SUCCESS; |
| memcpy(rcod.dev_class, btdev->dev_class, 3); |
| cmd_complete(btdev, opcode, &rcod, sizeof(rcod)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_CLASS_OF_DEV: |
| wcod = data + sizeof(*hdr); |
| memcpy(btdev->dev_class, wcod->dev_class, 3); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_VOICE_SETTING: |
| rvs.status = BT_HCI_ERR_SUCCESS; |
| rvs.setting = cpu_to_le16(btdev->voice_setting); |
| cmd_complete(btdev, opcode, &rvs, sizeof(rvs)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_VOICE_SETTING: |
| wvs = data + sizeof(*hdr); |
| btdev->voice_setting = le16_to_cpu(wvs->setting); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_INQUIRY_MODE: |
| rim.status = BT_HCI_ERR_SUCCESS; |
| rim.mode = btdev->inquiry_mode; |
| cmd_complete(btdev, opcode, &rim, sizeof(rim)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_INQUIRY_MODE: |
| wim = data + sizeof(*hdr); |
| btdev->inquiry_mode = wim->mode; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_AFH_ASSESS_MODE: |
| raam.status = BT_HCI_ERR_SUCCESS; |
| raam.mode = btdev->afh_assess_mode; |
| cmd_complete(btdev, opcode, &raam, sizeof(raam)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_AFH_ASSESS_MODE: |
| waam = data + sizeof(*hdr); |
| btdev->afh_assess_mode = waam->mode; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_EXT_INQUIRY_RESPONSE: |
| reir.status = BT_HCI_ERR_SUCCESS; |
| reir.fec = btdev->ext_inquiry_fec; |
| memcpy(reir.data, btdev->ext_inquiry_rsp, 240); |
| cmd_complete(btdev, opcode, &reir, sizeof(reir)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_EXT_INQUIRY_RESPONSE: |
| weir = data + sizeof(*hdr); |
| btdev->ext_inquiry_fec = weir->fec; |
| memcpy(btdev->ext_inquiry_rsp, weir->data, 240); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_SIMPLE_PAIRING_MODE: |
| rspm.status = BT_HCI_ERR_SUCCESS; |
| rspm.mode = btdev->simple_pairing_mode; |
| cmd_complete(btdev, opcode, &rspm, sizeof(rspm)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_SIMPLE_PAIRING_MODE: |
| wspm = data + sizeof(*hdr); |
| btdev->simple_pairing_mode = wspm->mode; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_INQUIRY_RESP_TX_POWER: |
| rirtp.status = BT_HCI_ERR_SUCCESS; |
| rirtp.level = 0; |
| cmd_complete(btdev, opcode, &rirtp, sizeof(rirtp)); |
| break; |
| |
| case BT_HCI_CMD_READ_LE_HOST_SUPPORTED: |
| rlhs.status = BT_HCI_ERR_SUCCESS; |
| rlhs.supported = btdev->le_supported; |
| rlhs.simultaneous = btdev->le_simultaneous; |
| cmd_complete(btdev, opcode, &rlhs, sizeof(rlhs)); |
| break; |
| |
| case BT_HCI_CMD_WRITE_LE_HOST_SUPPORTED: |
| wlhs = data + sizeof(*hdr); |
| btdev->le_supported = wlhs->supported; |
| btdev->le_simultaneous = wlhs->simultaneous; |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_READ_LOCAL_VERSION: |
| rlv.status = BT_HCI_ERR_SUCCESS; |
| rlv.hci_ver = btdev->version; |
| rlv.hci_rev = cpu_to_le16(btdev->revision); |
| rlv.lmp_ver = btdev->version; |
| rlv.manufacturer = cpu_to_le16(btdev->manufacturer); |
| rlv.lmp_subver = cpu_to_le16(btdev->revision); |
| cmd_complete(btdev, opcode, &rlv, sizeof(rlv)); |
| break; |
| |
| case BT_HCI_CMD_READ_LOCAL_COMMANDS: |
| rlc.status = BT_HCI_ERR_SUCCESS; |
| memcpy(rlc.commands, btdev->commands, 64); |
| cmd_complete(btdev, opcode, &rlc, sizeof(rlc)); |
| break; |
| |
| case BT_HCI_CMD_READ_LOCAL_FEATURES: |
| rlf.status = BT_HCI_ERR_SUCCESS; |
| memcpy(rlf.features, btdev->features, 8); |
| cmd_complete(btdev, opcode, &rlf, sizeof(rlf)); |
| break; |
| |
| case BT_HCI_CMD_READ_LOCAL_EXT_FEATURES: |
| page = ((const uint8_t *) data)[sizeof(*hdr)]; |
| switch (page) { |
| case 0x00: |
| rlef.status = BT_HCI_ERR_SUCCESS; |
| rlef.page = 0x00; |
| rlef.max_page = 0x01; |
| memcpy(rlef.features, btdev->features, 8); |
| break; |
| case 0x01: |
| rlef.status = BT_HCI_ERR_SUCCESS; |
| rlef.page = 0x01; |
| rlef.max_page = 0x01; |
| memset(rlef.features, 0, 8); |
| if (btdev->simple_pairing_mode) |
| rlef.features[0] |= 0x01; |
| if (btdev->le_supported) |
| rlef.features[0] |= 0x02; |
| if (btdev->le_simultaneous) |
| rlef.features[0] |= 0x04; |
| break; |
| default: |
| rlef.status = BT_HCI_ERR_INVALID_PARAMETERS; |
| rlef.page = page; |
| rlef.max_page = 0x01; |
| memset(rlef.features, 0, 8); |
| break; |
| } |
| cmd_complete(btdev, opcode, &rlef, sizeof(rlef)); |
| break; |
| |
| case BT_HCI_CMD_READ_BUFFER_SIZE: |
| rbs.status = BT_HCI_ERR_SUCCESS; |
| rbs.acl_mtu = cpu_to_le16(btdev->acl_mtu); |
| rbs.sco_mtu = 0; |
| rbs.acl_max_pkt = cpu_to_le16(btdev->acl_max_pkt); |
| rbs.sco_max_pkt = cpu_to_le16(0); |
| cmd_complete(btdev, opcode, &rbs, sizeof(rbs)); |
| break; |
| |
| case BT_HCI_CMD_READ_COUNTRY_CODE: |
| rcc.status = BT_HCI_ERR_SUCCESS; |
| rcc.code = btdev->country_code; |
| cmd_complete(btdev, opcode, &rcc, sizeof(rcc)); |
| break; |
| |
| case BT_HCI_CMD_READ_BD_ADDR: |
| rba.status = BT_HCI_ERR_SUCCESS; |
| memcpy(rba.bdaddr, btdev->bdaddr, 6); |
| cmd_complete(btdev, opcode, &rba, sizeof(rba)); |
| break; |
| |
| case BT_HCI_CMD_READ_DATA_BLOCK_SIZE: |
| rdbs.status = BT_HCI_ERR_SUCCESS; |
| rdbs.max_acl_len = cpu_to_le16(btdev->acl_mtu); |
| rdbs.block_len = cpu_to_le16(btdev->acl_mtu); |
| rdbs.num_blocks = cpu_to_le16(btdev->acl_max_pkt); |
| cmd_complete(btdev, opcode, &rdbs, sizeof(rdbs)); |
| break; |
| |
| case BT_HCI_CMD_READ_LOCAL_AMP_INFO: |
| rlai.status = BT_HCI_ERR_SUCCESS; |
| rlai.amp_status = 0x01; /* Used for Bluetooth only */ |
| rlai.total_bw = cpu_to_le32(0); |
| rlai.max_bw = cpu_to_le32(0); |
| rlai.min_latency = cpu_to_le32(0); |
| rlai.max_pdu = cpu_to_le32(672); |
| rlai.amp_type = 0x01; /* 802.11 AMP Controller */ |
| rlai.pal_cap = cpu_to_le16(0x0000); |
| rlai.max_assoc_len = cpu_to_le16(672); |
| rlai.max_flush_to = cpu_to_le32(0xffffffff); |
| rlai.be_flush_to = cpu_to_le32(0xffffffff); |
| cmd_complete(btdev, opcode, &rlai, sizeof(rlai)); |
| break; |
| |
| case BT_HCI_CMD_LE_SET_EVENT_MASK: |
| lsem = data + sizeof(*hdr); |
| memcpy(btdev->le_event_mask, lsem->mask, 8); |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_LE_READ_BUFFER_SIZE: |
| lrbs.status = BT_HCI_ERR_SUCCESS; |
| lrbs.le_mtu = cpu_to_le16(btdev->acl_mtu); |
| lrbs.le_max_pkt = btdev->acl_max_pkt; |
| cmd_complete(btdev, opcode, &lrbs, sizeof(lrbs)); |
| break; |
| |
| case BT_HCI_CMD_LE_READ_LOCAL_FEATURES: |
| lrlf.status = BT_HCI_ERR_SUCCESS; |
| memcpy(lrlf.features, btdev->le_features, 8); |
| cmd_complete(btdev, opcode, &lrlf, sizeof(lrlf)); |
| break; |
| |
| case BT_HCI_CMD_LE_READ_ADV_TX_POWER: |
| lratp.status = BT_HCI_ERR_SUCCESS; |
| lratp.level = 0; |
| cmd_complete(btdev, opcode, &lratp, sizeof(lratp)); |
| break; |
| |
| case BT_HCI_CMD_LE_SET_SCAN_PARAMETERS: |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_LE_SET_SCAN_ENABLE: |
| status = BT_HCI_ERR_SUCCESS; |
| cmd_complete(btdev, opcode, &status, sizeof(status)); |
| break; |
| |
| case BT_HCI_CMD_LE_READ_SUPPORTED_STATES: |
| lrss.status = BT_HCI_ERR_SUCCESS; |
| memcpy(lrss.states, btdev->le_states, 8); |
| cmd_complete(btdev, opcode, &lrss, sizeof(lrss)); |
| break; |
| |
| default: |
| printf("Unsupported command 0x%4.4x\n", opcode); |
| hexdump(data, len); |
| cmd_status(btdev, BT_HCI_ERR_UNKNOWN_COMMAND, opcode); |
| break; |
| } |
| } |
| |
| void btdev_receive_h4(struct btdev *btdev, const void *data, uint16_t len) |
| { |
| uint8_t pkt_type; |
| |
| if (!btdev) |
| return; |
| |
| if (len < 1) |
| return; |
| |
| pkt_type = ((const uint8_t *) data)[0]; |
| |
| switch (pkt_type) { |
| case BT_H4_CMD_PKT: |
| process_cmd(btdev, data + 1, len - 1); |
| break; |
| case BT_H4_ACL_PKT: |
| if (btdev->conn) |
| send_packet(btdev->conn, data, len); |
| num_completed_packets(btdev); |
| break; |
| default: |
| printf("Unsupported packet 0x%2.2x\n", pkt_type); |
| break; |
| } |
| } |