/******************************************************************************
*
* Copyright (C) 2006-2012 Broadcom Corporation
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at:
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
******************************************************************************/
/******************************************************************************
*
* This file contains action functions for BTA JV APIs.
*
******************************************************************************/
#include <arpa/inet.h>
#include <hardware/bluetooth.h>
#include <pthread.h>
#include <stdlib.h>
#include <string.h>
#include "avct_api.h"
#include "avdt_api.h"
#include "bt_common.h"
#include "bt_types.h"
#include "bta_api.h"
#include "bta_jv_api.h"
#include "bta_jv_co.h"
#include "bta_jv_int.h"
#include "bta_sys.h"
#include "btm_api.h"
#include "btm_int.h"
#include "gap_api.h"
#include "l2c_api.h"
#include "osi/include/allocator.h"
#include "port_api.h"
#include "rfcdefs.h"
#include "sdp_api.h"
#include "utl.h"
#include "osi/include/osi.h"
/* one of these exists for each client */
struct fc_client {
struct fc_client* next_all_list;
struct fc_client* next_chan_list;
BD_ADDR remote_addr;
uint32_t id;
tBTA_JV_L2CAP_CBACK* p_cback;
uint32_t l2cap_socket_id;
uint16_t handle;
uint16_t chan;
uint8_t sec_id;
unsigned server : 1;
unsigned init_called : 1;
};
/* one of these exists for each channel we're dealing with */
struct fc_channel {
struct fc_channel* next;
struct fc_client* clients;
uint8_t has_server : 1;
uint16_t chan;
};
static struct fc_client* fc_clients;
static struct fc_channel* fc_channels;
static uint32_t fc_next_id;
static void fcchan_conn_chng_cbk(uint16_t chan, BD_ADDR bd_addr, bool connected,
uint16_t reason, tBT_TRANSPORT);
static void fcchan_data_cbk(uint16_t chan, BD_ADDR bd_addr, BT_HDR* p_buf);
extern void uuid_to_string_legacy(bt_uuid_t* p_uuid, char* str, size_t str_len);
static inline void logu(const char* title, const uint8_t* p_uuid) {
char uuids[128];
uuid_to_string_legacy((bt_uuid_t*)p_uuid, uuids, sizeof(uuids));
APPL_TRACE_DEBUG("%s: %s", title, uuids);
}
static tBTA_JV_PCB* bta_jv_add_rfc_port(tBTA_JV_RFC_CB* p_cb,
tBTA_JV_PCB* p_pcb_open);
static tBTA_JV_STATUS bta_jv_free_set_pm_profile_cb(uint32_t jv_handle);
static void bta_jv_pm_conn_busy(tBTA_JV_PM_CB* p_cb);
static void bta_jv_pm_conn_idle(tBTA_JV_PM_CB* p_cb);
static void bta_jv_pm_state_change(tBTA_JV_PM_CB* p_cb,
const tBTA_JV_CONN_STATE state);
tBTA_JV_STATUS bta_jv_set_pm_conn_state(tBTA_JV_PM_CB* p_cb,
const tBTA_JV_CONN_STATE new_st);
/*******************************************************************************
*
* Function bta_jv_alloc_sec_id
*
* Description allocate a security id
*
* Returns
*
******************************************************************************/
uint8_t bta_jv_alloc_sec_id(void) {
uint8_t ret = 0;
int i;
for (i = 0; i < BTA_JV_NUM_SERVICE_ID; i++) {
if (0 == bta_jv_cb.sec_id[i]) {
bta_jv_cb.sec_id[i] = BTA_JV_FIRST_SERVICE_ID + i;
ret = bta_jv_cb.sec_id[i];
break;
}
}
return ret;
}
static int get_sec_id_used(void) {
int i;
int used = 0;
for (i = 0; i < BTA_JV_NUM_SERVICE_ID; i++) {
if (bta_jv_cb.sec_id[i]) used++;
}
if (used == BTA_JV_NUM_SERVICE_ID)
APPL_TRACE_ERROR("get_sec_id_used, sec id exceeds the limit:%d",
BTA_JV_NUM_SERVICE_ID);
return used;
}
static int get_rfc_cb_used(void) {
int i;
int used = 0;
for (i = 0; i < BTA_JV_MAX_RFC_CONN; i++) {
if (bta_jv_cb.rfc_cb[i].handle) used++;
}
if (used == BTA_JV_MAX_RFC_CONN)
APPL_TRACE_ERROR("get_sec_id_used, rfc ctrl block exceeds the limit:%d",
BTA_JV_MAX_RFC_CONN);
return used;
}
/*******************************************************************************
*
* Function bta_jv_free_sec_id
*
* Description free the given security id
*
* Returns
*
******************************************************************************/
static void bta_jv_free_sec_id(uint8_t* p_sec_id) {
uint8_t sec_id = *p_sec_id;
*p_sec_id = 0;
if (sec_id >= BTA_JV_FIRST_SERVICE_ID && sec_id <= BTA_JV_LAST_SERVICE_ID) {
BTM_SecClrService(sec_id);
bta_jv_cb.sec_id[sec_id - BTA_JV_FIRST_SERVICE_ID] = 0;
}
}
/*******************************************************************************
*
* Function bta_jv_alloc_rfc_cb
*
* Description allocate a control block for the given port handle
*
* Returns
*
******************************************************************************/
tBTA_JV_RFC_CB* bta_jv_alloc_rfc_cb(uint16_t port_handle,
tBTA_JV_PCB** pp_pcb) {
tBTA_JV_RFC_CB* p_cb = NULL;
tBTA_JV_PCB* p_pcb;
int i, j;
for (i = 0; i < BTA_JV_MAX_RFC_CONN; i++) {
if (0 == bta_jv_cb.rfc_cb[i].handle) {
p_cb = &bta_jv_cb.rfc_cb[i];
/* mask handle to distinguish it with L2CAP handle */
p_cb->handle = (i + 1) | BTA_JV_RFCOMM_MASK;
p_cb->max_sess = 1;
p_cb->curr_sess = 1;
for (j = 0; j < BTA_JV_MAX_RFC_SR_SESSION; j++) p_cb->rfc_hdl[j] = 0;
p_cb->rfc_hdl[0] = port_handle;
APPL_TRACE_DEBUG("bta_jv_alloc_rfc_cb port_handle:%d handle:0x%2x",
port_handle, p_cb->handle);
p_pcb = &bta_jv_cb.port_cb[port_handle - 1];
p_pcb->handle = p_cb->handle;
p_pcb->port_handle = port_handle;
p_pcb->p_pm_cb = NULL;
*pp_pcb = p_pcb;
break;
}
}
if (p_cb == NULL) {
APPL_TRACE_ERROR(
"bta_jv_alloc_rfc_cb: port_handle:%d, ctrl block exceeds "
"limit:%d",
port_handle, BTA_JV_MAX_RFC_CONN);
}
return p_cb;
}
/*******************************************************************************
*
* Function bta_jv_rfc_port_to_pcb
*
* Description find the port control block associated with the given port
* handle
*
* Returns
*
******************************************************************************/
tBTA_JV_PCB* bta_jv_rfc_port_to_pcb(uint16_t port_handle) {
tBTA_JV_PCB* p_pcb = NULL;
if ((port_handle > 0) && (port_handle <= MAX_RFC_PORTS) &&
bta_jv_cb.port_cb[port_handle - 1].handle) {
p_pcb = &bta_jv_cb.port_cb[port_handle - 1];
}
return p_pcb;
}
/*******************************************************************************
*
* Function bta_jv_rfc_port_to_cb
*
* Description find the RFCOMM control block associated with the given port
* handle
*
* Returns
*
******************************************************************************/
tBTA_JV_RFC_CB* bta_jv_rfc_port_to_cb(uint16_t port_handle) {
tBTA_JV_RFC_CB* p_cb = NULL;
uint32_t handle;
if ((port_handle > 0) && (port_handle <= MAX_RFC_PORTS) &&
bta_jv_cb.port_cb[port_handle - 1].handle) {
handle = bta_jv_cb.port_cb[port_handle - 1].handle;
handle &= BTA_JV_RFC_HDL_MASK;
handle &= ~BTA_JV_RFCOMM_MASK;
if (handle) p_cb = &bta_jv_cb.rfc_cb[handle - 1];
} else {
APPL_TRACE_WARNING(
"bta_jv_rfc_port_to_cb(port_handle:0x%x):jv handle:0x%x not"
" FOUND",
port_handle, bta_jv_cb.port_cb[port_handle - 1].handle);
}
return p_cb;
}
static tBTA_JV_STATUS bta_jv_free_rfc_cb(tBTA_JV_RFC_CB* p_cb,
tBTA_JV_PCB* p_pcb) {
tBTA_JV_STATUS status = BTA_JV_SUCCESS;
bool remove_server = false;
int close_pending = 0;
if (!p_cb || !p_pcb) {
APPL_TRACE_ERROR("bta_jv_free_sr_rfc_cb, p_cb or p_pcb cannot be null");
return BTA_JV_FAILURE;
}
APPL_TRACE_DEBUG(
"bta_jv_free_sr_rfc_cb: max_sess:%d, curr_sess:%d, p_pcb:%p, user:"
"%p, state:%d, jv handle: 0x%x",
p_cb->max_sess, p_cb->curr_sess, p_pcb, p_pcb->rfcomm_slot_id,
p_pcb->state, p_pcb->handle);
if (p_cb->curr_sess <= 0) return BTA_JV_SUCCESS;
switch (p_pcb->state) {
case BTA_JV_ST_CL_CLOSING:
case BTA_JV_ST_SR_CLOSING:
APPL_TRACE_WARNING(
"bta_jv_free_sr_rfc_cb: return on closing, port state:%d, "
"scn:%d, p_pcb:%p, user_data:%p",
p_pcb->state, p_cb->scn, p_pcb, p_pcb->rfcomm_slot_id);
status = BTA_JV_FAILURE;
return status;
case BTA_JV_ST_CL_OPEN:
case BTA_JV_ST_CL_OPENING:
APPL_TRACE_DEBUG(
"bta_jv_free_sr_rfc_cb: state: %d, scn:%d,"
" user_data:%p",
p_pcb->state, p_cb->scn, p_pcb->rfcomm_slot_id);
p_pcb->state = BTA_JV_ST_CL_CLOSING;
break;
case BTA_JV_ST_SR_LISTEN:
p_pcb->state = BTA_JV_ST_SR_CLOSING;
remove_server = true;
APPL_TRACE_DEBUG(
"bta_jv_free_sr_rfc_cb: state: BTA_JV_ST_SR_LISTEN, scn:%d,"
" user_data:%p",
p_cb->scn, p_pcb->rfcomm_slot_id);
break;
case BTA_JV_ST_SR_OPEN:
p_pcb->state = BTA_JV_ST_SR_CLOSING;
APPL_TRACE_DEBUG(
"bta_jv_free_sr_rfc_cb: state: BTA_JV_ST_SR_OPEN, scn:%d,"
" user_data:%p",
p_cb->scn, p_pcb->rfcomm_slot_id);
break;
default:
APPL_TRACE_WARNING(
"bta_jv_free_sr_rfc_cb():failed, ignore port state:%d, scn:"
"%d, p_pcb:%p, jv handle: 0x%x, port_handle: %d, user_data:%p",
p_pcb->state, p_cb->scn, p_pcb, p_pcb->handle, p_pcb->port_handle,
p_pcb->rfcomm_slot_id);
status = BTA_JV_FAILURE;
break;
}
if (BTA_JV_SUCCESS == status) {
int port_status;
if (!remove_server)
port_status = RFCOMM_RemoveConnection(p_pcb->port_handle);
else
port_status = RFCOMM_RemoveServer(p_pcb->port_handle);
if (port_status != PORT_SUCCESS) {
status = BTA_JV_FAILURE;
APPL_TRACE_WARNING(
"bta_jv_free_rfc_cb(jv handle: 0x%x, state %d)::"
"port_status: %d, port_handle: %d, close_pending: %d:Remove",
p_pcb->handle, p_pcb->state, port_status, p_pcb->port_handle,
close_pending);
}
}
if (!close_pending) {
p_pcb->port_handle = 0;
p_pcb->state = BTA_JV_ST_NONE;
bta_jv_free_set_pm_profile_cb(p_pcb->handle);
// Initialize congestion flags
p_pcb->cong = false;
p_pcb->rfcomm_slot_id = 0;
int si = BTA_JV_RFC_HDL_TO_SIDX(p_pcb->handle);
if (0 <= si && si < BTA_JV_MAX_RFC_SR_SESSION) p_cb->rfc_hdl[si] = 0;
p_pcb->handle = 0;
p_cb->curr_sess--;
if (p_cb->curr_sess == 0) {
p_cb->scn = 0;
bta_jv_free_sec_id(&p_cb->sec_id);
p_cb->p_cback = NULL;
p_cb->handle = 0;
p_cb->curr_sess = -1;
}
if (remove_server) {
bta_jv_free_sec_id(&p_cb->sec_id);
}
}
return status;
}
/*******************************************************************************
*
* Function bta_jv_free_l2c_cb
*
* Description free the given L2CAP control block
*
* Returns
*
******************************************************************************/
tBTA_JV_STATUS bta_jv_free_l2c_cb(tBTA_JV_L2C_CB* p_cb) {
tBTA_JV_STATUS status = BTA_JV_SUCCESS;
if (BTA_JV_ST_NONE != p_cb->state) {
bta_jv_free_set_pm_profile_cb((uint32_t)p_cb->handle);
if (GAP_ConnClose(p_cb->handle) != BT_PASS) status = BTA_JV_FAILURE;
}
p_cb->psm = 0;
p_cb->state = BTA_JV_ST_NONE;
p_cb->cong = false;
bta_jv_free_sec_id(&p_cb->sec_id);
p_cb->p_cback = NULL;
return status;
}
/*******************************************************************************
*
*
* Function bta_jv_clear_pm_cb
*
* Description clears jv pm control block and optionally calls
* bta_sys_conn_close()
* In general close_conn should be set to true to remove registering
* with dm pm!
*
* WARNING: Make sure to clear pointer form port or l2c to this control block
* too!
*
******************************************************************************/
static void bta_jv_clear_pm_cb(tBTA_JV_PM_CB* p_pm_cb, bool close_conn) {
/* needs to be called if registered with bta pm, otherwise we may run out of
* dm pm slots! */
if (close_conn)
bta_sys_conn_close(BTA_ID_JV, p_pm_cb->app_id, p_pm_cb->peer_bd_addr);
p_pm_cb->state = BTA_JV_PM_FREE_ST;
p_pm_cb->app_id = BTA_JV_PM_ALL;
p_pm_cb->handle = BTA_JV_PM_HANDLE_CLEAR;
bdcpy(p_pm_cb->peer_bd_addr, bd_addr_null);
}
/*******************************************************************************
*
* Function bta_jv_free_set_pm_profile_cb
*
* Description free pm profile control block
*
* Returns BTA_JV_SUCCESS if cb has been freed correctly,
* BTA_JV_FAILURE in case of no profile has been registered or
* already freed
*
******************************************************************************/
static tBTA_JV_STATUS bta_jv_free_set_pm_profile_cb(uint32_t jv_handle) {
tBTA_JV_STATUS status = BTA_JV_FAILURE;
tBTA_JV_PM_CB** p_cb;
int i, j, bd_counter = 0, appid_counter = 0;
for (i = 0; i < BTA_JV_PM_MAX_NUM; i++) {
p_cb = NULL;
if ((bta_jv_cb.pm_cb[i].state != BTA_JV_PM_FREE_ST) &&
(jv_handle == bta_jv_cb.pm_cb[i].handle)) {
for (j = 0; j < BTA_JV_PM_MAX_NUM; j++) {
if (bdcmp(bta_jv_cb.pm_cb[j].peer_bd_addr,
bta_jv_cb.pm_cb[i].peer_bd_addr) == 0)
bd_counter++;
if (bta_jv_cb.pm_cb[j].app_id == bta_jv_cb.pm_cb[i].app_id)
appid_counter++;
}
APPL_TRACE_API(
"%s(jv_handle: 0x%2x), idx: %d, "
"app_id: 0x%x",
__func__, jv_handle, i, bta_jv_cb.pm_cb[i].app_id);
APPL_TRACE_API(
"%s, bd_counter = %d, "
"appid_counter = %d",
__func__, bd_counter, appid_counter);
if (bd_counter > 1) {
bta_jv_pm_conn_idle(&bta_jv_cb.pm_cb[i]);
}
if (bd_counter <= 1 || (appid_counter <= 1)) {
bta_jv_clear_pm_cb(&bta_jv_cb.pm_cb[i], true);
} else {
bta_jv_clear_pm_cb(&bta_jv_cb.pm_cb[i], false);
}
if (BTA_JV_RFCOMM_MASK & jv_handle) {
uint32_t hi =
((jv_handle & BTA_JV_RFC_HDL_MASK) & ~BTA_JV_RFCOMM_MASK) - 1;
uint32_t si = BTA_JV_RFC_HDL_TO_SIDX(jv_handle);
if (hi < BTA_JV_MAX_RFC_CONN && bta_jv_cb.rfc_cb[hi].p_cback &&
si < BTA_JV_MAX_RFC_SR_SESSION &&
bta_jv_cb.rfc_cb[hi].rfc_hdl[si]) {
tBTA_JV_PCB* p_pcb =
bta_jv_rfc_port_to_pcb(bta_jv_cb.rfc_cb[hi].rfc_hdl[si]);
if (p_pcb) {
if (NULL == p_pcb->p_pm_cb)
APPL_TRACE_WARNING(
"%s(jv_handle:"
" 0x%x):port_handle: 0x%x, p_pm_cb: %d: no link to "
"pm_cb?",
__func__, jv_handle, p_pcb->port_handle, i);
p_cb = &p_pcb->p_pm_cb;
}
}
} else {
if (jv_handle < BTA_JV_MAX_L2C_CONN) {
tBTA_JV_L2C_CB* p_l2c_cb = &bta_jv_cb.l2c_cb[jv_handle];
if (NULL == p_l2c_cb->p_pm_cb)
APPL_TRACE_WARNING(
"%s(jv_handle: "
"0x%x): p_pm_cb: %d: no link to pm_cb?",
__func__, jv_handle, i);
p_cb = &p_l2c_cb->p_pm_cb;
}
}
if (p_cb) {
*p_cb = NULL;
status = BTA_JV_SUCCESS;
}
}
}
return status;
}
/*******************************************************************************
*
* Function bta_jv_alloc_set_pm_profile_cb
*
* Description set PM profile control block
*
* Returns pointer to allocated cb or NULL in case of failure
*
******************************************************************************/
static tBTA_JV_PM_CB* bta_jv_alloc_set_pm_profile_cb(uint32_t jv_handle,
tBTA_JV_PM_ID app_id) {
bool bRfcHandle = (jv_handle & BTA_JV_RFCOMM_MASK) != 0;
BD_ADDR peer_bd_addr;
int i, j;
tBTA_JV_PM_CB** pp_cb;
for (i = 0; i < BTA_JV_PM_MAX_NUM; i++) {
pp_cb = NULL;
if (bta_jv_cb.pm_cb[i].state == BTA_JV_PM_FREE_ST) {
/* rfc handle bd addr retrieval requires core stack handle */
if (bRfcHandle) {
for (j = 0; j < BTA_JV_MAX_RFC_CONN; j++) {
if (jv_handle == bta_jv_cb.port_cb[j].handle) {
pp_cb = &bta_jv_cb.port_cb[j].p_pm_cb;
if (PORT_SUCCESS !=
PORT_CheckConnection(bta_jv_cb.port_cb[j].port_handle,
peer_bd_addr, NULL))
i = BTA_JV_PM_MAX_NUM;
break;
}
}
} else {
/* use jv handle for l2cap bd address retrieval */
for (j = 0; j < BTA_JV_MAX_L2C_CONN; j++) {
if (jv_handle == bta_jv_cb.l2c_cb[j].handle) {
pp_cb = &bta_jv_cb.l2c_cb[j].p_pm_cb;
uint8_t* p_bd_addr = GAP_ConnGetRemoteAddr((uint16_t)jv_handle);
if (NULL != p_bd_addr)
bdcpy(peer_bd_addr, p_bd_addr);
else
i = BTA_JV_PM_MAX_NUM;
break;
}
}
}
APPL_TRACE_API(
"bta_jv_alloc_set_pm_profile_cb(handle 0x%2x, app_id %d): "
"idx: %d, (BTA_JV_PM_MAX_NUM: %d), pp_cb: 0x%x",
jv_handle, app_id, i, BTA_JV_PM_MAX_NUM, pp_cb);
break;
}
}
if ((i != BTA_JV_PM_MAX_NUM) && (NULL != pp_cb)) {
*pp_cb = &bta_jv_cb.pm_cb[i];
bta_jv_cb.pm_cb[i].handle = jv_handle;
bta_jv_cb.pm_cb[i].app_id = app_id;
bdcpy(bta_jv_cb.pm_cb[i].peer_bd_addr, peer_bd_addr);
bta_jv_cb.pm_cb[i].state = BTA_JV_PM_IDLE_ST;
return &bta_jv_cb.pm_cb[i];
}
APPL_TRACE_WARNING(
"bta_jv_alloc_set_pm_profile_cb(jv_handle: 0x%x, app_id: %d) "
"return NULL",
jv_handle, app_id);
return (tBTA_JV_PM_CB*)NULL;
}
/*******************************************************************************
*
* Function bta_jv_check_psm
*
* Description for now use only the legal PSM per JSR82 spec
*
* Returns true, if allowed
*
******************************************************************************/
bool bta_jv_check_psm(uint16_t psm) {
bool ret = false;
if (L2C_IS_VALID_PSM(psm)) {
if (psm < 0x1001) {
/* see if this is defined by spec */
switch (psm) {
case SDP_PSM: /* 1 */
case BT_PSM_RFCOMM: /* 3 */
/* do not allow java app to use these 2 PSMs */
break;
case TCS_PSM_INTERCOM: /* 5 */
case TCS_PSM_CORDLESS: /* 7 */
if (false == bta_sys_is_register(BTA_ID_CT) &&
false == bta_sys_is_register(BTA_ID_CG))
ret = true;
break;
case BT_PSM_BNEP: /* F */
if (false == bta_sys_is_register(BTA_ID_PAN)) ret = true;
break;
case HID_PSM_CONTROL: /* 0x11 */
case HID_PSM_INTERRUPT: /* 0x13 */
// FIX: allow HID Device and HID Host to coexist
if (false == bta_sys_is_register(BTA_ID_HD) ||
false == bta_sys_is_register(BTA_ID_HH))
ret = true;
break;
case AVCT_PSM: /* 0x17 */
case AVDT_PSM: /* 0x19 */
if ((false == bta_sys_is_register(BTA_ID_AV)) &&
(false == bta_sys_is_register(BTA_ID_AVK)))
ret = true;
break;
default:
ret = true;
break;
}
} else {
ret = true;
}
}
return ret;
}
/*******************************************************************************
*
* Function bta_jv_enable
*
* Description Initialises the JAVA I/F
*
* Returns void
*
******************************************************************************/
void bta_jv_enable(tBTA_JV_MSG* p_data) {
tBTA_JV_STATUS status = BTA_JV_SUCCESS;
bta_jv_cb.p_dm_cback = p_data->enable.p_cback;
bta_jv_cb.p_dm_cback(BTA_JV_ENABLE_EVT, (tBTA_JV*)&status, 0);
memset(bta_jv_cb.free_psm_list, 0, sizeof(bta_jv_cb.free_psm_list));
}
/*******************************************************************************
*
* Function bta_jv_disable
*
* Description Disables the BT device manager
* free the resources used by java
*
* Returns void
*
******************************************************************************/
void bta_jv_disable(UNUSED_ATTR tBTA_JV_MSG* p_data) {
APPL_TRACE_ERROR("%s", __func__);
}
/**
* We keep a list of PSM's that have been freed from JAVA, for reuse.
* This function will return a free PSM, and delete it from the free
* list.
* If no free PSMs exist, 0 will be returned.
*/
static uint16_t bta_jv_get_free_psm() {
const int cnt =
sizeof(bta_jv_cb.free_psm_list) / sizeof(bta_jv_cb.free_psm_list[0]);
for (int i = 0; i < cnt; i++) {
uint16_t psm = bta_jv_cb.free_psm_list[i];
if (psm != 0) {
APPL_TRACE_DEBUG("%s(): Reusing PSM: 0x%04d", __func__, psm)
bta_jv_cb.free_psm_list[i] = 0;
return psm;
}
}
return 0;
}
static void bta_jv_set_free_psm(uint16_t psm) {
int free_index = -1;
const int cnt =
sizeof(bta_jv_cb.free_psm_list) / sizeof(bta_jv_cb.free_psm_list[0]);
for (int i = 0; i < cnt; i++) {
if (bta_jv_cb.free_psm_list[i] == 0) {
free_index = i;
} else if (psm == bta_jv_cb.free_psm_list[i]) {
return; // PSM already freed?
}
}
if (free_index != -1) {
bta_jv_cb.free_psm_list[free_index] = psm;
APPL_TRACE_DEBUG("%s(): Recycling PSM: 0x%04d", __func__, psm)
} else {
APPL_TRACE_ERROR("%s unable to free psm 0x%x no more free slots", __func__,
psm);
}
}
/*******************************************************************************
*
* Function bta_jv_get_channel_id
*
* Description Obtain a free SCN (Server Channel Number)
* (RFCOMM channel or L2CAP PSM)
*
* Returns void
*
******************************************************************************/
void bta_jv_get_channel_id(tBTA_JV_MSG* p_data) {
uint16_t psm = 0;
switch (p_data->alloc_channel.type) {
case BTA_JV_CONN_TYPE_RFCOMM: {
int32_t channel = p_data->alloc_channel.channel;
uint8_t scn = 0;
if (channel > 0) {
if (BTM_TryAllocateSCN(channel) == false) {
APPL_TRACE_ERROR("rfc channel:%d already in use or invalid", channel);
channel = 0;
}
} else {
channel = BTM_AllocateSCN();
if (channel == 0) {
APPL_TRACE_ERROR("run out of rfc channels");
channel = 0;
}
}
if (channel != 0) {
bta_jv_cb.scn[channel - 1] = true;
scn = (uint8_t)channel;
}
if (bta_jv_cb.p_dm_cback)
bta_jv_cb.p_dm_cback(BTA_JV_GET_SCN_EVT, (tBTA_JV*)&scn,
p_data->alloc_channel.rfcomm_slot_id);
return;
}
case BTA_JV_CONN_TYPE_L2CAP:
psm = bta_jv_get_free_psm();
if (psm == 0) {
psm = L2CA_AllocatePSM();
APPL_TRACE_DEBUG("%s() returned PSM: 0x%04x", __func__, psm);
}
break;
case BTA_JV_CONN_TYPE_L2CAP_LE:
break;
default:
break;
}
if (bta_jv_cb.p_dm_cback)
bta_jv_cb.p_dm_cback(BTA_JV_GET_PSM_EVT, (tBTA_JV*)&psm,
p_data->alloc_channel.l2cap_socket_id);
}
/*******************************************************************************
*
* Function bta_jv_free_scn
*
* Description free a SCN
*
* Returns void
*
******************************************************************************/
void bta_jv_free_scn(tBTA_JV_MSG* p_data) {
uint16_t scn = p_data->free_channel.scn;
switch (p_data->free_channel.type) {
case BTA_JV_CONN_TYPE_RFCOMM: {
if (scn > 0 && scn <= BTA_JV_MAX_SCN && bta_jv_cb.scn[scn - 1]) {
/* this scn is used by JV */
bta_jv_cb.scn[scn - 1] = false;
BTM_FreeSCN(scn);
}
break;
}
case BTA_JV_CONN_TYPE_L2CAP:
bta_jv_set_free_psm(scn);
break;
case BTA_JV_CONN_TYPE_L2CAP_LE:
// TODO: Not yet implemented...
break;
default:
break;
}
}
static inline tBT_UUID shorten_sdp_uuid(const tBT_UUID* u) {
static uint8_t bt_base_uuid[] = {0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0x10, 0x00, 0x80, 0x00, 0x00, 0x80,
0x5F, 0x9B, 0x34, 0xFB};
logu("in, uuid:", u->uu.uuid128);
APPL_TRACE_DEBUG("uuid len:%d", u->len);
if (u->len == 16) {
if (memcmp(&u->uu.uuid128[4], &bt_base_uuid[4], 12) == 0) {
tBT_UUID su;
memset(&su, 0, sizeof(su));
if (u->uu.uuid128[0] == 0 && u->uu.uuid128[1] == 0) {
su.len = 2;
uint16_t u16;
memcpy(&u16, &u->uu.uuid128[2], sizeof(u16));
su.uu.uuid16 = ntohs(u16);
APPL_TRACE_DEBUG("shorten to 16 bits uuid: %x", su.uu.uuid16);
} else {
su.len = 4;
uint32_t u32;
memcpy(&u32, &u->uu.uuid128[0], sizeof(u32));
su.uu.uuid32 = ntohl(u32);
APPL_TRACE_DEBUG("shorten to 32 bits uuid: %x", su.uu.uuid32);
}
return su;
}
}
APPL_TRACE_DEBUG("cannot shorten none-reserved 128 bits uuid");
return *u;
}
/*******************************************************************************
*
* Function bta_jv_start_discovery_cback
*
* Description Callback for Start Discovery
*
* Returns void
*
******************************************************************************/
static void bta_jv_start_discovery_cback(uint16_t result, void* user_data) {
tBTA_JV_STATUS status;
uint32_t* p_rfcomm_slot_id = static_cast<uint32_t*>(user_data);
APPL_TRACE_DEBUG("bta_jv_start_discovery_cback res: 0x%x", result);
bta_jv_cb.sdp_active = BTA_JV_SDP_ACT_NONE;
if (bta_jv_cb.p_dm_cback) {
tBTA_JV_DISCOVERY_COMP dcomp;
dcomp.scn = 0;
status = BTA_JV_FAILURE;
if (result == SDP_SUCCESS || result == SDP_DB_FULL) {
tSDP_DISC_REC* p_sdp_rec = NULL;
tSDP_PROTOCOL_ELEM pe;
logu("bta_jv_cb.uuid", bta_jv_cb.uuid.uu.uuid128);
tBT_UUID su = shorten_sdp_uuid(&bta_jv_cb.uuid);
logu("shorten uuid:", su.uu.uuid128);
p_sdp_rec =
SDP_FindServiceUUIDInDb(p_bta_jv_cfg->p_sdp_db, &su, p_sdp_rec);
APPL_TRACE_DEBUG("p_sdp_rec:%p", p_sdp_rec);
if (p_sdp_rec &&
SDP_FindProtocolListElemInRec(p_sdp_rec, UUID_PROTOCOL_RFCOMM, &pe)) {
dcomp.scn = (uint8_t)pe.params[0];
status = BTA_JV_SUCCESS;
}
}
dcomp.status = status;
bta_jv_cb.p_dm_cback(BTA_JV_DISCOVERY_COMP_EVT, (tBTA_JV*)&dcomp,
*p_rfcomm_slot_id);
osi_free(p_rfcomm_slot_id);
}
}
/*******************************************************************************
*
* Function bta_jv_start_discovery
*
* Description Discovers services on a remote device
*
* Returns void
*
******************************************************************************/
void bta_jv_start_discovery(tBTA_JV_MSG* p_data) {
tBTA_JV_STATUS status = BTA_JV_FAILURE;
APPL_TRACE_DEBUG("bta_jv_start_discovery in, sdp_active:%d",
bta_jv_cb.sdp_active);
if (bta_jv_cb.sdp_active != BTA_JV_SDP_ACT_NONE) {
/* SDP is still in progress */
status = BTA_JV_BUSY;
if (bta_jv_cb.p_dm_cback)
bta_jv_cb.p_dm_cback(BTA_JV_DISCOVERY_COMP_EVT, (tBTA_JV*)&status,
p_data->start_discovery.rfcomm_slot_id);
return;
}
/* init the database/set up the filter */
APPL_TRACE_DEBUG(
"call SDP_InitDiscoveryDb, p_data->start_discovery.num_uuid:%d",
p_data->start_discovery.num_uuid);
SDP_InitDiscoveryDb(p_bta_jv_cfg->p_sdp_db, p_bta_jv_cfg->sdp_db_size,
p_data->start_discovery.num_uuid,
p_data->start_discovery.uuid_list, 0, NULL);
/* tell SDP to keep the raw data */
p_bta_jv_cfg->p_sdp_db->raw_data = p_bta_jv_cfg->p_sdp_raw_data;
p_bta_jv_cfg->p_sdp_db->raw_size = p_bta_jv_cfg->sdp_raw_size;
bta_jv_cb.p_sel_raw_data = 0;
bta_jv_cb.uuid = p_data->start_discovery.uuid_list[0];
bta_jv_cb.sdp_active = BTA_JV_SDP_ACT_YES;
uint32_t* rfcomm_slot_id = (uint32_t*)osi_malloc(sizeof(uint32_t));
*rfcomm_slot_id = p_data->start_discovery.rfcomm_slot_id;
if (!SDP_ServiceSearchAttributeRequest2(
p_data->start_discovery.bd_addr, p_bta_jv_cfg->p_sdp_db,
bta_jv_start_discovery_cback, (void*)rfcomm_slot_id)) {
bta_jv_cb.sdp_active = BTA_JV_SDP_ACT_NONE;
/* failed to start SDP. report the failure right away */
if (bta_jv_cb.p_dm_cback)
bta_jv_cb.p_dm_cback(BTA_JV_DISCOVERY_COMP_EVT, (tBTA_JV*)&status,
p_data->start_discovery.rfcomm_slot_id);
}
/*
else report the result when the cback is called
*/
}
/*******************************************************************************
*
* Function bta_jv_create_record
*
* Description Create an SDP record with the given attributes
*
* Returns void
*
******************************************************************************/
void bta_jv_create_record(tBTA_JV_MSG* p_data) {
tBTA_JV_API_CREATE_RECORD* cr = &(p_data->create_record);
tBTA_JV_CREATE_RECORD evt_data;
evt_data.status = BTA_JV_SUCCESS;
if (bta_jv_cb.p_dm_cback)
// callback user immediately to create his own sdp record in stack thread
// context
bta_jv_cb.p_dm_cback(BTA_JV_CREATE_RECORD_EVT, (tBTA_JV*)&evt_data,
cr->rfcomm_slot_id);
}
/*******************************************************************************
*
* Function bta_jv_delete_record
*
* Description Delete an SDP record
*
*
* Returns void
*
******************************************************************************/
void bta_jv_delete_record(tBTA_JV_MSG* p_data) {
tBTA_JV_API_ADD_ATTRIBUTE* dr = &(p_data->add_attr);
if (dr->handle) {
/* this is a record created by btif layer*/
SDP_DeleteRecord(dr->handle);
}
}
/*******************************************************************************
*
* Function bta_jv_l2cap_client_cback
*
* Description handles the l2cap client events
*
* Returns void
*
******************************************************************************/
static void bta_jv_l2cap_client_cback(uint16_t gap_handle, uint16_t event) {
tBTA_JV_L2C_CB* p_cb = &bta_jv_cb.l2c_cb[gap_handle];
tBTA_JV evt_data;
if (gap_handle >= BTA_JV_MAX_L2C_CONN && !p_cb->p_cback) return;
APPL_TRACE_DEBUG("%s: %d evt:x%x", __func__, gap_handle, event);
evt_data.l2c_open.status = BTA_JV_SUCCESS;
evt_data.l2c_open.handle = gap_handle;
switch (event) {
case GAP_EVT_CONN_OPENED:
bdcpy(evt_data.l2c_open.rem_bda, GAP_ConnGetRemoteAddr(gap_handle));
evt_data.l2c_open.tx_mtu = GAP_ConnGetRemMtuSize(gap_handle);
p_cb->state = BTA_JV_ST_CL_OPEN;
p_cb->p_cback(BTA_JV_L2CAP_OPEN_EVT, &evt_data, p_cb->l2cap_socket_id);
break;
case GAP_EVT_CONN_CLOSED:
p_cb->state = BTA_JV_ST_NONE;
bta_jv_free_sec_id(&p_cb->sec_id);
evt_data.l2c_close.async = true;
p_cb->p_cback(BTA_JV_L2CAP_CLOSE_EVT, &evt_data, p_cb->l2cap_socket_id);
p_cb->p_cback = NULL;
break;
case GAP_EVT_CONN_DATA_AVAIL:
evt_data.data_ind.handle = gap_handle;
/* Reset idle timer to avoid requesting sniff mode while receiving data */
bta_jv_pm_conn_busy(p_cb->p_pm_cb);
p_cb->p_cback(BTA_JV_L2CAP_DATA_IND_EVT, &evt_data,
p_cb->l2cap_socket_id);
bta_jv_pm_conn_idle(p_cb->p_pm_cb);
break;
case GAP_EVT_TX_EMPTY:
bta_jv_pm_conn_idle(p_cb->p_pm_cb);
break;
case GAP_EVT_CONN_CONGESTED:
case GAP_EVT_CONN_UNCONGESTED:
p_cb->cong = (event == GAP_EVT_CONN_CONGESTED) ? true : false;
evt_data.l2c_cong.cong = p_cb->cong;
p_cb->p_cback(BTA_JV_L2CAP_CONG_EVT, &evt_data, p_cb->l2cap_socket_id);
break;
default:
break;
}
}
/*******************************************************************************
*
* Function bta_jv_l2cap_connect
*
* Description makes an l2cap client connection
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_connect(tBTA_JV_MSG* p_data) {
tBTA_JV_L2C_CB* p_cb;
tBTA_JV_L2CAP_CL_INIT evt_data;
uint16_t handle = GAP_INVALID_HANDLE;
uint8_t sec_id;
tL2CAP_CFG_INFO cfg;
tBTA_JV_API_L2CAP_CONNECT* cc = &(p_data->l2cap_connect);
uint8_t chan_mode_mask = GAP_FCR_CHAN_OPT_BASIC;
tL2CAP_ERTM_INFO* ertm_info = NULL;
memset(&cfg, 0, sizeof(tL2CAP_CFG_INFO));
if (cc->has_cfg == true) {
cfg = cc->cfg;
if (cfg.fcr_present && cfg.fcr.mode == L2CAP_FCR_ERTM_MODE) {
chan_mode_mask = GAP_FCR_CHAN_OPT_ERTM;
}
}
if (cc->has_ertm_info == true) {
ertm_info = &(cc->ertm_info);
}
/* We need to use this value for MTU to be able to handle cases where cfg is
* not set in req. */
cfg.mtu_present = true;
cfg.mtu = cc->rx_mtu;
/* TODO: DM role manager
L2CA_SetDesireRole(cc->role);
*/
sec_id = bta_jv_alloc_sec_id();
evt_data.sec_id = sec_id;
evt_data.status = BTA_JV_FAILURE;
if (sec_id) {
/* PSM checking is not required for LE COC */
if ((cc->type != BTA_JV_CONN_TYPE_L2CAP) ||
(bta_jv_check_psm(cc->remote_psm))) /* allowed */
{
handle = GAP_ConnOpen("", sec_id, 0, cc->peer_bd_addr, cc->remote_psm,
&cfg, ertm_info, cc->sec_mask, chan_mode_mask,
bta_jv_l2cap_client_cback, cc->type);
if (handle != GAP_INVALID_HANDLE) {
evt_data.status = BTA_JV_SUCCESS;
}
}
}
if (evt_data.status == BTA_JV_SUCCESS) {
p_cb = &bta_jv_cb.l2c_cb[handle];
p_cb->handle = handle;
p_cb->p_cback = cc->p_cback;
p_cb->l2cap_socket_id = cc->l2cap_socket_id;
p_cb->psm = 0; /* not a server */
p_cb->sec_id = sec_id;
p_cb->state = BTA_JV_ST_CL_OPENING;
} else {
bta_jv_free_sec_id(&sec_id);
}
evt_data.handle = handle;
if (cc->p_cback)
cc->p_cback(BTA_JV_L2CAP_CL_INIT_EVT, (tBTA_JV*)&evt_data,
cc->l2cap_socket_id);
}
/*******************************************************************************
*
* Function bta_jv_l2cap_close
*
* Description Close an L2CAP client connection
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_close(tBTA_JV_MSG* p_data) {
tBTA_JV_L2CAP_CLOSE evt_data;
tBTA_JV_API_L2CAP_CLOSE* cc = &(p_data->l2cap_close);
tBTA_JV_L2CAP_CBACK* p_cback = cc->p_cb->p_cback;
uint32_t l2cap_socket_id = cc->p_cb->l2cap_socket_id;
evt_data.handle = cc->handle;
evt_data.status = bta_jv_free_l2c_cb(cc->p_cb);
evt_data.async = false;
if (p_cback)
p_cback(BTA_JV_L2CAP_CLOSE_EVT, (tBTA_JV*)&evt_data, l2cap_socket_id);
}
/*******************************************************************************
*
* Function bta_jv_l2cap_server_cback
*
* Description handles the l2cap server callback
*
* Returns void
*
******************************************************************************/
static void bta_jv_l2cap_server_cback(uint16_t gap_handle, uint16_t event) {
tBTA_JV_L2C_CB* p_cb = &bta_jv_cb.l2c_cb[gap_handle];
tBTA_JV evt_data;
tBTA_JV_L2CAP_CBACK* p_cback;
uint32_t socket_id;
if (gap_handle >= BTA_JV_MAX_L2C_CONN && !p_cb->p_cback) return;
APPL_TRACE_DEBUG("%s: %d evt:x%x", __func__, gap_handle, event);
evt_data.l2c_open.status = BTA_JV_SUCCESS;
evt_data.l2c_open.handle = gap_handle;
switch (event) {
case GAP_EVT_CONN_OPENED:
bdcpy(evt_data.l2c_open.rem_bda, GAP_ConnGetRemoteAddr(gap_handle));
evt_data.l2c_open.tx_mtu = GAP_ConnGetRemMtuSize(gap_handle);
p_cb->state = BTA_JV_ST_SR_OPEN;
p_cb->p_cback(BTA_JV_L2CAP_OPEN_EVT, &evt_data, p_cb->l2cap_socket_id);
break;
case GAP_EVT_CONN_CLOSED:
evt_data.l2c_close.async = true;
evt_data.l2c_close.handle = p_cb->handle;
p_cback = p_cb->p_cback;
socket_id = p_cb->l2cap_socket_id;
evt_data.l2c_close.status = bta_jv_free_l2c_cb(p_cb);
p_cback(BTA_JV_L2CAP_CLOSE_EVT, &evt_data, socket_id);
break;
case GAP_EVT_CONN_DATA_AVAIL:
evt_data.data_ind.handle = gap_handle;
/* Reset idle timer to avoid requesting sniff mode while receiving data */
bta_jv_pm_conn_busy(p_cb->p_pm_cb);
p_cb->p_cback(BTA_JV_L2CAP_DATA_IND_EVT, &evt_data,
p_cb->l2cap_socket_id);
bta_jv_pm_conn_idle(p_cb->p_pm_cb);
break;
case GAP_EVT_TX_EMPTY:
bta_jv_pm_conn_idle(p_cb->p_pm_cb);
break;
case GAP_EVT_CONN_CONGESTED:
case GAP_EVT_CONN_UNCONGESTED:
p_cb->cong = (event == GAP_EVT_CONN_CONGESTED) ? true : false;
evt_data.l2c_cong.cong = p_cb->cong;
p_cb->p_cback(BTA_JV_L2CAP_CONG_EVT, &evt_data, p_cb->l2cap_socket_id);
break;
default:
break;
}
}
/*******************************************************************************
*
* Function bta_jv_l2cap_start_server
*
* Description starts an L2CAP server
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_start_server(tBTA_JV_MSG* p_data) {
tBTA_JV_L2C_CB* p_cb;
uint8_t sec_id;
uint16_t handle;
tL2CAP_CFG_INFO cfg;
tBTA_JV_L2CAP_START evt_data;
tBTA_JV_API_L2CAP_SERVER* ls = &(p_data->l2cap_server);
uint8_t chan_mode_mask = GAP_FCR_CHAN_OPT_BASIC;
tL2CAP_ERTM_INFO* ertm_info = NULL;
memset(&cfg, 0, sizeof(tL2CAP_CFG_INFO));
if (ls->has_cfg == true) {
cfg = ls->cfg;
if (cfg.fcr_present && cfg.fcr.mode == L2CAP_FCR_ERTM_MODE) {
chan_mode_mask = GAP_FCR_CHAN_OPT_ERTM;
}
}
if (ls->has_ertm_info == true) {
ertm_info = &(ls->ertm_info);
}
// FIX: MTU=0 means not present
if (ls->rx_mtu > 0) {
cfg.mtu_present = true;
cfg.mtu = ls->rx_mtu;
} else {
cfg.mtu_present = false;
cfg.mtu = 0;
}
/* TODO DM role manager
L2CA_SetDesireRole(ls->role);
*/
sec_id = bta_jv_alloc_sec_id();
/* PSM checking is not required for LE COC */
if (0 == sec_id || ((ls->type == BTA_JV_CONN_TYPE_L2CAP) &&
(false == bta_jv_check_psm(ls->local_psm))) ||
(handle = GAP_ConnOpen("JV L2CAP", sec_id, 1, 0, ls->local_psm, &cfg,
ertm_info, ls->sec_mask, chan_mode_mask,
bta_jv_l2cap_server_cback, ls->type)) ==
GAP_INVALID_HANDLE) {
bta_jv_free_sec_id(&sec_id);
evt_data.status = BTA_JV_FAILURE;
} else {
p_cb = &bta_jv_cb.l2c_cb[handle];
evt_data.status = BTA_JV_SUCCESS;
evt_data.handle = handle;
evt_data.sec_id = sec_id;
p_cb->p_cback = ls->p_cback;
p_cb->l2cap_socket_id = ls->l2cap_socket_id;
p_cb->handle = handle;
p_cb->sec_id = sec_id;
p_cb->state = BTA_JV_ST_SR_LISTEN;
p_cb->psm = ls->local_psm;
}
if (ls->p_cback)
ls->p_cback(BTA_JV_L2CAP_START_EVT, (tBTA_JV*)&evt_data,
ls->l2cap_socket_id);
}
/*******************************************************************************
*
* Function bta_jv_l2cap_stop_server
*
* Description stops an L2CAP server
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_stop_server(tBTA_JV_MSG* p_data) {
tBTA_JV_L2C_CB* p_cb;
tBTA_JV_L2CAP_CLOSE evt_data;
tBTA_JV_API_L2CAP_SERVER* ls = &(p_data->l2cap_server);
tBTA_JV_L2CAP_CBACK* p_cback;
for (int i = 0; i < BTA_JV_MAX_L2C_CONN; i++) {
if (bta_jv_cb.l2c_cb[i].psm == ls->local_psm) {
p_cb = &bta_jv_cb.l2c_cb[i];
p_cback = p_cb->p_cback;
uint32_t l2cap_socket_id = p_cb->l2cap_socket_id;
evt_data.handle = p_cb->handle;
evt_data.status = bta_jv_free_l2c_cb(p_cb);
evt_data.async = false;
if (p_cback)
p_cback(BTA_JV_L2CAP_CLOSE_EVT, (tBTA_JV*)&evt_data, l2cap_socket_id);
break;
}
}
}
/*******************************************************************************
*
* Function bta_jv_l2cap_read
*
* Description Read data from an L2CAP connection
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_read(tBTA_JV_MSG* p_data) {
tBTA_JV_L2CAP_READ evt_data;
tBTA_JV_API_L2CAP_READ* rc = &(p_data->l2cap_read);
evt_data.status = BTA_JV_FAILURE;
evt_data.handle = rc->handle;
evt_data.req_id = rc->req_id;
evt_data.p_data = rc->p_data;
evt_data.len = 0;
if (BT_PASS ==
GAP_ConnReadData(rc->handle, rc->p_data, rc->len, &evt_data.len)) {
evt_data.status = BTA_JV_SUCCESS;
}
rc->p_cback(BTA_JV_L2CAP_READ_EVT, (tBTA_JV*)&evt_data, rc->l2cap_socket_id);
}
/*******************************************************************************
*
* Function bta_jv_l2cap_write
*
* Description Write data to an L2CAP connection
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_write(tBTA_JV_MSG* p_data) {
tBTA_JV_L2CAP_WRITE evt_data;
tBTA_JV_API_L2CAP_WRITE* ls = &(p_data->l2cap_write);
/* As we check this callback exists before the tBTA_JV_API_L2CAP_WRITE can be
* send through the
* API this check should not be needed.
* But the API is not designed to be used (safely at least) in a
* multi-threaded scheduler, hence
* if the peer device disconnects the l2cap link after the API is called, but
* before this
* message is handled, the ->p_cback will be cleared at this point. At first
* glanch this seems
* highly unlikely, but for all obex-profiles with two channels connected -
* e.g. MAP, this
* happens around 1 of 4 disconnects, as a disconnect on the server channel
* causes a disconnect
* to be send on the client (notification) channel, but at the peer typically
* disconnects both
* the OBEX disconnect request crosses the incoming l2cap disconnect.
* If p_cback is cleared, we simply discard the data.
* RISK: The caller must handle any cleanup based on another signal than
* BTA_JV_L2CAP_WRITE_EVT,
* which is typically not possible, as the pointer to the allocated
* buffer is stored
* in this message, and can therefore not be freed, hence we have a
* mem-leak-by-design.*/
if (ls->p_cb->p_cback != NULL) {
evt_data.status = BTA_JV_FAILURE;
evt_data.handle = ls->handle;
evt_data.req_id = ls->req_id;
evt_data.p_data = ls->p_data;
evt_data.cong = ls->p_cb->cong;
evt_data.len = 0;
bta_jv_pm_conn_busy(ls->p_cb->p_pm_cb);
if (!evt_data.cong &&
BT_PASS ==
GAP_ConnWriteData(ls->handle, ls->p_data, ls->len, &evt_data.len)) {
evt_data.status = BTA_JV_SUCCESS;
}
ls->p_cb->p_cback(BTA_JV_L2CAP_WRITE_EVT, (tBTA_JV*)&evt_data, ls->user_id);
} else {
/* As this pointer is checked in the API function, this occurs only when the
* channel is
* disconnected after the API function is called, but before the message is
* handled. */
APPL_TRACE_ERROR("%s() ls->p_cb->p_cback == NULL", __func__);
}
}
/*******************************************************************************
*
* Function bta_jv_l2cap_write_fixed
*
* Description Write data to an L2CAP connection using Fixed channels
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_write_fixed(tBTA_JV_MSG* p_data) {
tBTA_JV_L2CAP_WRITE_FIXED evt_data;
tBTA_JV_API_L2CAP_WRITE_FIXED* ls = &(p_data->l2cap_write_fixed);
BT_HDR* msg =
(BT_HDR*)osi_malloc(sizeof(BT_HDR) + ls->len + L2CAP_MIN_OFFSET);
evt_data.status = BTA_JV_FAILURE;
evt_data.channel = ls->channel;
memcpy(evt_data.addr, ls->addr, sizeof(evt_data.addr));
evt_data.req_id = ls->req_id;
evt_data.p_data = ls->p_data;
evt_data.len = 0;
memcpy(((uint8_t*)(msg + 1)) + L2CAP_MIN_OFFSET, ls->p_data, ls->len);
msg->len = ls->len;
msg->offset = L2CAP_MIN_OFFSET;
L2CA_SendFixedChnlData(ls->channel, ls->addr, msg);
ls->p_cback(BTA_JV_L2CAP_WRITE_FIXED_EVT, (tBTA_JV*)&evt_data, ls->user_id);
}
/*******************************************************************************
*
* Function bta_jv_port_data_co_cback
*
* Description port data callback function of rfcomm
* connections
*
* Returns void
*
******************************************************************************/
static int bta_jv_port_data_co_cback(uint16_t port_handle, uint8_t* buf,
uint16_t len, int type) {
tBTA_JV_RFC_CB* p_cb = bta_jv_rfc_port_to_cb(port_handle);
tBTA_JV_PCB* p_pcb = bta_jv_rfc_port_to_pcb(port_handle);
APPL_TRACE_DEBUG("%s, p_cb:%p, p_pcb:%p, len:%d, type:%d", __func__, p_cb,
p_pcb, len, type);
if (p_pcb != NULL) {
switch (type) {
case DATA_CO_CALLBACK_TYPE_INCOMING:
return bta_co_rfc_data_incoming(p_pcb->rfcomm_slot_id, (BT_HDR*)buf);
case DATA_CO_CALLBACK_TYPE_OUTGOING_SIZE:
return bta_co_rfc_data_outgoing_size(p_pcb->rfcomm_slot_id, (int*)buf);
case DATA_CO_CALLBACK_TYPE_OUTGOING:
return bta_co_rfc_data_outgoing(p_pcb->rfcomm_slot_id, buf, len);
default:
APPL_TRACE_ERROR("unknown callout type:%d", type);
break;
}
}
return 0;
}
/*******************************************************************************
*
* Function bta_jv_port_mgmt_cl_cback
*
* Description callback for port mamangement function of rfcomm
* client connections
*
* Returns void
*
******************************************************************************/
static void bta_jv_port_mgmt_cl_cback(uint32_t code, uint16_t port_handle) {
tBTA_JV_RFC_CB* p_cb = bta_jv_rfc_port_to_cb(port_handle);
tBTA_JV_PCB* p_pcb = bta_jv_rfc_port_to_pcb(port_handle);
tBTA_JV evt_data;
BD_ADDR rem_bda;
uint16_t lcid;
tBTA_JV_RFCOMM_CBACK* p_cback; /* the callback function */
APPL_TRACE_DEBUG("bta_jv_port_mgmt_cl_cback:code:%d, port_handle%d", code,
port_handle);
if (NULL == p_cb || NULL == p_cb->p_cback) return;
APPL_TRACE_DEBUG("bta_jv_port_mgmt_cl_cback code=%d port_handle:%d handle:%d",
code, port_handle, p_cb->handle);
PORT_CheckConnection(port_handle, rem_bda, &lcid);
if (code == PORT_SUCCESS) {
evt_data.rfc_open.handle = p_cb->handle;
evt_data.rfc_open.status = BTA_JV_SUCCESS;
bdcpy(evt_data.rfc_open.rem_bda, rem_bda);
p_pcb->state = BTA_JV_ST_CL_OPEN;
p_cb->p_cback(BTA_JV_RFCOMM_OPEN_EVT, &evt_data, p_pcb->rfcomm_slot_id);
} else {
evt_data.rfc_close.handle = p_cb->handle;
evt_data.rfc_close.status = BTA_JV_FAILURE;
evt_data.rfc_close.port_status = code;
evt_data.rfc_close.async = true;
if (p_pcb->state == BTA_JV_ST_CL_CLOSING) {
evt_data.rfc_close.async = false;
}
// p_pcb->state = BTA_JV_ST_NONE;
// p_pcb->cong = false;
p_cback = p_cb->p_cback;
p_cback(BTA_JV_RFCOMM_CLOSE_EVT, &evt_data, p_pcb->rfcomm_slot_id);
// bta_jv_free_rfc_cb(p_cb, p_pcb);
}
}
/*******************************************************************************
*
* Function bta_jv_port_event_cl_cback
*
* Description Callback for RFCOMM client port events
*
* Returns void
*
******************************************************************************/
static void bta_jv_port_event_cl_cback(uint32_t code, uint16_t port_handle) {
tBTA_JV_RFC_CB* p_cb = bta_jv_rfc_port_to_cb(port_handle);
tBTA_JV_PCB* p_pcb = bta_jv_rfc_port_to_pcb(port_handle);
tBTA_JV evt_data;
APPL_TRACE_DEBUG("bta_jv_port_event_cl_cback:%d", port_handle);
if (NULL == p_cb || NULL == p_cb->p_cback) return;
APPL_TRACE_DEBUG(
"bta_jv_port_event_cl_cback code=x%x port_handle:%d handle:%d", code,
port_handle, p_cb->handle);
if (code & PORT_EV_RXCHAR) {
evt_data.data_ind.handle = p_cb->handle;
p_cb->p_cback(BTA_JV_RFCOMM_DATA_IND_EVT, &evt_data, p_pcb->rfcomm_slot_id);
}
if (code & PORT_EV_FC) {
p_pcb->cong = (code & PORT_EV_FCS) ? false : true;
evt_data.rfc_cong.cong = p_pcb->cong;
evt_data.rfc_cong.handle = p_cb->handle;
evt_data.rfc_cong.status = BTA_JV_SUCCESS;
p_cb->p_cback(BTA_JV_RFCOMM_CONG_EVT, &evt_data, p_pcb->rfcomm_slot_id);
}
if (code & PORT_EV_TXEMPTY) {
bta_jv_pm_conn_idle(p_pcb->p_pm_cb);
}
}
/*******************************************************************************
*
* Function bta_jv_rfcomm_connect
*
* Description Client initiates an RFCOMM connection
*
* Returns void
*
******************************************************************************/
void bta_jv_rfcomm_connect(tBTA_JV_MSG* p_data) {
uint16_t handle = 0;
uint32_t event_mask = BTA_JV_RFC_EV_MASK;
tPORT_STATE port_state;
uint8_t sec_id = 0;
tBTA_JV_RFC_CB* p_cb = NULL;
tBTA_JV_PCB* p_pcb;
tBTA_JV_API_RFCOMM_CONNECT* cc = &(p_data->rfcomm_connect);
tBTA_JV_RFCOMM_CL_INIT evt_data;
/* TODO DM role manager
L2CA_SetDesireRole(cc->role);
*/
sec_id = bta_jv_alloc_sec_id();
memset(&evt_data, 0, sizeof(evt_data));
evt_data.sec_id = sec_id;
evt_data.status = BTA_JV_SUCCESS;
if (0 == sec_id ||
BTM_SetSecurityLevel(true, "", sec_id, cc->sec_mask, BT_PSM_RFCOMM,
BTM_SEC_PROTO_RFCOMM, cc->remote_scn) == false) {
evt_data.status = BTA_JV_FAILURE;
APPL_TRACE_ERROR(
"sec_id:%d is zero or BTM_SetSecurityLevel failed, remote_scn:%d",
sec_id, cc->remote_scn);
}
if (evt_data.status == BTA_JV_SUCCESS &&
RFCOMM_CreateConnection(UUID_SERVCLASS_SERIAL_PORT, cc->remote_scn, false,
BTA_JV_DEF_RFC_MTU, cc->peer_bd_addr, &handle,
bta_jv_port_mgmt_cl_cback) != PORT_SUCCESS) {
APPL_TRACE_ERROR("bta_jv_rfcomm_connect, RFCOMM_CreateConnection failed");
evt_data.status = BTA_JV_FAILURE;
}
if (evt_data.status == BTA_JV_SUCCESS) {
p_cb = bta_jv_alloc_rfc_cb(handle, &p_pcb);
if (p_cb) {
p_cb->p_cback = cc->p_cback;
p_cb->sec_id = sec_id;
p_cb->scn = 0;
p_pcb->state = BTA_JV_ST_CL_OPENING;
p_pcb->rfcomm_slot_id = cc->rfcomm_slot_id;
evt_data.use_co = true;
PORT_SetEventCallback(handle, bta_jv_port_event_cl_cback);
PORT_SetEventMask(handle, event_mask);
PORT_SetDataCOCallback(handle, bta_jv_port_data_co_cback);
PORT_GetState(handle, &port_state);
port_state.fc_type = (PORT_FC_CTS_ON_INPUT | PORT_FC_CTS_ON_OUTPUT);
PORT_SetState(handle, &port_state);
evt_data.handle = p_cb->handle;
} else {
evt_data.status = BTA_JV_FAILURE;
APPL_TRACE_ERROR("run out of rfc control block");
}
}
cc->p_cback(BTA_JV_RFCOMM_CL_INIT_EVT, (tBTA_JV*)&evt_data,
cc->rfcomm_slot_id);
if (evt_data.status == BTA_JV_FAILURE) {
if (sec_id) bta_jv_free_sec_id(&sec_id);
if (handle) RFCOMM_RemoveConnection(handle);
}
}
static int find_rfc_pcb(uint32_t rfcomm_slot_id, tBTA_JV_RFC_CB** cb,
tBTA_JV_PCB** pcb) {
*cb = NULL;
*pcb = NULL;
int i;
for (i = 0; i < MAX_RFC_PORTS; i++) {
uint32_t rfc_handle = bta_jv_cb.port_cb[i].handle & BTA_JV_RFC_HDL_MASK;
rfc_handle &= ~BTA_JV_RFCOMM_MASK;
if (rfc_handle && bta_jv_cb.port_cb[i].rfcomm_slot_id == rfcomm_slot_id) {
*pcb = &bta_jv_cb.port_cb[i];
*cb = &bta_jv_cb.rfc_cb[rfc_handle - 1];
APPL_TRACE_DEBUG(
"find_rfc_pcb(): FOUND rfc_cb_handle 0x%x, port.jv_handle:"
" 0x%x, state: %d, rfc_cb->handle: 0x%x",
rfc_handle, (*pcb)->handle, (*pcb)->state, (*cb)->handle);
return 1;
}
}
APPL_TRACE_DEBUG("find_rfc_pcb: cannot find rfc_cb from user data: %u",
rfcomm_slot_id);
return 0;
}
/*******************************************************************************
*
* Function bta_jv_rfcomm_close
*
* Description Close an RFCOMM connection
*
* Returns void
*
******************************************************************************/
void bta_jv_rfcomm_close(tBTA_JV_MSG* p_data) {
tBTA_JV_API_RFCOMM_CLOSE* cc = &(p_data->rfcomm_close);
tBTA_JV_RFC_CB* p_cb = NULL;
tBTA_JV_PCB* p_pcb = NULL;
APPL_TRACE_DEBUG("bta_jv_rfcomm_close, rfc handle:%d", cc->handle);
if (!cc->handle) {
APPL_TRACE_ERROR("bta_jv_rfcomm_close, rfc handle is null");
return;
}
if (!find_rfc_pcb(cc->rfcomm_slot_id, &p_cb, &p_pcb)) return;
bta_jv_free_rfc_cb(p_cb, p_pcb);
APPL_TRACE_DEBUG("bta_jv_rfcomm_close: sec id in use:%d, rfc_cb in use:%d",
get_sec_id_used(), get_rfc_cb_used());
}
/*******************************************************************************
*
* Function bta_jv_port_mgmt_sr_cback
*
* Description callback for port mamangement function of rfcomm
* server connections
*
* Returns void
*
******************************************************************************/
static void bta_jv_port_mgmt_sr_cback(uint32_t code, uint16_t port_handle) {
tBTA_JV_PCB* p_pcb = bta_jv_rfc_port_to_pcb(port_handle);
tBTA_JV_RFC_CB* p_cb = bta_jv_rfc_port_to_cb(port_handle);
tBTA_JV evt_data;
BD_ADDR rem_bda;
uint16_t lcid;
APPL_TRACE_DEBUG("bta_jv_port_mgmt_sr_cback, code:%d, port_handle:%d", code,
port_handle);
if (NULL == p_cb || NULL == p_cb->p_cback) {
APPL_TRACE_ERROR("bta_jv_port_mgmt_sr_cback, p_cb:%p, p_cb->p_cback%p",
p_cb, p_cb ? p_cb->p_cback : NULL);
return;
}
uint32_t rfcomm_slot_id = p_pcb->rfcomm_slot_id;
APPL_TRACE_DEBUG(
"bta_jv_port_mgmt_sr_cback code=%d port_handle:0x%x handle:0x%x, "
"p_pcb:%p, user:%d",
code, port_handle, p_cb->handle, p_pcb, p_pcb->rfcomm_slot_id);
PORT_CheckConnection(port_handle, rem_bda, &lcid);
int failed = true;
if (code == PORT_SUCCESS) {
evt_data.rfc_srv_open.handle = p_pcb->handle;
evt_data.rfc_srv_open.status = BTA_JV_SUCCESS;
bdcpy(evt_data.rfc_srv_open.rem_bda, rem_bda);
tBTA_JV_PCB* p_pcb_new_listen = bta_jv_add_rfc_port(p_cb, p_pcb);
if (p_pcb_new_listen) {
evt_data.rfc_srv_open.new_listen_handle = p_pcb_new_listen->handle;
p_pcb_new_listen->rfcomm_slot_id =
p_cb->p_cback(BTA_JV_RFCOMM_SRV_OPEN_EVT, &evt_data, rfcomm_slot_id);
APPL_TRACE_DEBUG("PORT_SUCCESS: curr_sess:%d, max_sess:%d",
p_cb->curr_sess, p_cb->max_sess);
failed = false;
} else
APPL_TRACE_ERROR("bta_jv_add_rfc_port failed to create new listen port");
}
if (failed) {
evt_data.rfc_close.handle = p_cb->handle;
evt_data.rfc_close.status = BTA_JV_FAILURE;
evt_data.rfc_close.async = true;
evt_data.rfc_close.port_status = code;
p_pcb->cong = false;
tBTA_JV_RFCOMM_CBACK* p_cback = p_cb->p_cback;
APPL_TRACE_DEBUG(
"PORT_CLOSED before BTA_JV_RFCOMM_CLOSE_EVT: curr_sess:%d, max_sess:%d",
p_cb->curr_sess, p_cb->max_sess);
if (BTA_JV_ST_SR_CLOSING == p_pcb->state) {
evt_data.rfc_close.async = false;
evt_data.rfc_close.status = BTA_JV_SUCCESS;
}
// p_pcb->state = BTA_JV_ST_NONE;
p_cback(BTA_JV_RFCOMM_CLOSE_EVT, &evt_data, rfcomm_slot_id);
// bta_jv_free_rfc_cb(p_cb, p_pcb);
APPL_TRACE_DEBUG(
"PORT_CLOSED after BTA_JV_RFCOMM_CLOSE_EVT: curr_sess:%d, max_sess:%d",
p_cb->curr_sess, p_cb->max_sess);
}
}
/*******************************************************************************
*
* Function bta_jv_port_event_sr_cback
*
* Description Callback for RFCOMM server port events
*
* Returns void
*
******************************************************************************/
static void bta_jv_port_event_sr_cback(uint32_t code, uint16_t port_handle) {
tBTA_JV_PCB* p_pcb = bta_jv_rfc_port_to_pcb(port_handle);
tBTA_JV_RFC_CB* p_cb = bta_jv_rfc_port_to_cb(port_handle);
tBTA_JV evt_data;
if (NULL == p_cb || NULL == p_cb->p_cback) return;
APPL_TRACE_DEBUG(
"bta_jv_port_event_sr_cback code=x%x port_handle:%d handle:%d", code,
port_handle, p_cb->handle);
uint32_t user_data = p_pcb->rfcomm_slot_id;
if (code & PORT_EV_RXCHAR) {
evt_data.data_ind.handle = p_cb->handle;
p_cb->p_cback(BTA_JV_RFCOMM_DATA_IND_EVT, &evt_data, user_data);
}
if (code & PORT_EV_FC) {
p_pcb->cong = (code & PORT_EV_FCS) ? false : true;
evt_data.rfc_cong.cong = p_pcb->cong;
evt_data.rfc_cong.handle = p_cb->handle;
evt_data.rfc_cong.status = BTA_JV_SUCCESS;
p_cb->p_cback(BTA_JV_RFCOMM_CONG_EVT, &evt_data, user_data);
}
if (code & PORT_EV_TXEMPTY) {
bta_jv_pm_conn_idle(p_pcb->p_pm_cb);
}
}
/*******************************************************************************
*
* Function bta_jv_add_rfc_port
*
* Description add a port for server when the existing posts is open
*
* Returns return a pointer to tBTA_JV_PCB just added
*
******************************************************************************/
static tBTA_JV_PCB* bta_jv_add_rfc_port(tBTA_JV_RFC_CB* p_cb,
tBTA_JV_PCB* p_pcb_open) {
uint8_t used = 0, i, listen = 0;
uint32_t si = 0;
tPORT_STATE port_state;
uint32_t event_mask = BTA_JV_RFC_EV_MASK;
tBTA_JV_PCB* p_pcb = NULL;
if (p_cb->max_sess > 1) {
for (i = 0; i < p_cb->max_sess; i++) {
if (p_cb->rfc_hdl[i] != 0) {
p_pcb = &bta_jv_cb.port_cb[p_cb->rfc_hdl[i] - 1];
if (p_pcb->state == BTA_JV_ST_SR_LISTEN) {
listen++;
if (p_pcb_open == p_pcb) {
APPL_TRACE_DEBUG(
"bta_jv_add_rfc_port, port_handle:%d, change the listen port "
"to open state",
p_pcb->port_handle);
p_pcb->state = BTA_JV_ST_SR_OPEN;
} else {
APPL_TRACE_ERROR(
"bta_jv_add_rfc_port, open pcb not matching listen one,"
"listen count:%d, listen pcb handle:%d, open pcb:%d",
listen, p_pcb->port_handle, p_pcb_open->handle);
return NULL;
}
}
used++;
} else if (si == 0) {
si = i + 1;
}
}
APPL_TRACE_DEBUG(
"bta_jv_add_rfc_port max_sess=%d used:%d curr_sess:%d, listen:%d si:%d",
p_cb->max_sess, used, p_cb->curr_sess, listen, si);
if (used < p_cb->max_sess && listen == 1 && si) {
si--;
if (RFCOMM_CreateConnection(p_cb->sec_id, p_cb->scn, true,
BTA_JV_DEF_RFC_MTU, (uint8_t*)bd_addr_any,
&(p_cb->rfc_hdl[si]),
bta_jv_port_mgmt_sr_cback) == PORT_SUCCESS) {
p_cb->curr_sess++;
p_pcb = &bta_jv_cb.port_cb[p_cb->rfc_hdl[si] - 1];
p_pcb->state = BTA_JV_ST_SR_LISTEN;
p_pcb->port_handle = p_cb->rfc_hdl[si];
p_pcb->rfcomm_slot_id = p_pcb_open->rfcomm_slot_id;
PORT_ClearKeepHandleFlag(p_pcb->port_handle);
PORT_SetEventCallback(p_pcb->port_handle, bta_jv_port_event_sr_cback);
PORT_SetDataCOCallback(p_pcb->port_handle, bta_jv_port_data_co_cback);
PORT_SetEventMask(p_pcb->port_handle, event_mask);
PORT_GetState(p_pcb->port_handle, &port_state);
port_state.fc_type = (PORT_FC_CTS_ON_INPUT | PORT_FC_CTS_ON_OUTPUT);
PORT_SetState(p_pcb->port_handle, &port_state);
p_pcb->handle = BTA_JV_RFC_H_S_TO_HDL(p_cb->handle, si);
APPL_TRACE_DEBUG(
"bta_jv_add_rfc_port: p_pcb->handle:0x%x, curr_sess:%d",
p_pcb->handle, p_cb->curr_sess);
}
} else
APPL_TRACE_ERROR(
"bta_jv_add_rfc_port, cannot create new rfc listen port");
}
APPL_TRACE_DEBUG("bta_jv_add_rfc_port: sec id in use:%d, rfc_cb in use:%d",
get_sec_id_used(), get_rfc_cb_used());
return p_pcb;
}
/*******************************************************************************
*
* Function bta_jv_rfcomm_start_server
*
* Description waits for an RFCOMM client to connect
*
*
* Returns void
*
******************************************************************************/
void bta_jv_rfcomm_start_server(tBTA_JV_MSG* p_data) {
uint16_t handle = 0;
uint32_t event_mask = BTA_JV_RFC_EV_MASK;
tPORT_STATE port_state;
uint8_t sec_id = 0;
tBTA_JV_RFC_CB* p_cb = NULL;
tBTA_JV_PCB* p_pcb;
tBTA_JV_API_RFCOMM_SERVER* rs = &(p_data->rfcomm_server);
tBTA_JV_RFCOMM_START evt_data;
/* TODO DM role manager
L2CA_SetDesireRole(rs->role);
*/
memset(&evt_data, 0, sizeof(evt_data));
evt_data.status = BTA_JV_FAILURE;
APPL_TRACE_DEBUG(
"bta_jv_rfcomm_start_server: sec id in use:%d, rfc_cb in use:%d",
get_sec_id_used(), get_rfc_cb_used());
do {
sec_id = bta_jv_alloc_sec_id();
if (0 == sec_id ||
BTM_SetSecurityLevel(false, "JV PORT", sec_id, rs->sec_mask,
BT_PSM_RFCOMM, BTM_SEC_PROTO_RFCOMM,
rs->local_scn) == false) {
APPL_TRACE_ERROR("bta_jv_rfcomm_start_server, run out of sec_id");
break;
}
if (RFCOMM_CreateConnection(sec_id, rs->local_scn, true, BTA_JV_DEF_RFC_MTU,
(uint8_t*)bd_addr_any, &handle,
bta_jv_port_mgmt_sr_cback) != PORT_SUCCESS) {
APPL_TRACE_ERROR(
"bta_jv_rfcomm_start_server, RFCOMM_CreateConnection failed");
break;
}
p_cb = bta_jv_alloc_rfc_cb(handle, &p_pcb);
if (!p_cb) {
APPL_TRACE_ERROR(
"bta_jv_rfcomm_start_server, run out of rfc control block");
break;
}
p_cb->max_sess = rs->max_session;
p_cb->p_cback = rs->p_cback;
p_cb->sec_id = sec_id;
p_cb->scn = rs->local_scn;
p_pcb->state = BTA_JV_ST_SR_LISTEN;
p_pcb->rfcomm_slot_id = rs->rfcomm_slot_id;
evt_data.status = BTA_JV_SUCCESS;
evt_data.handle = p_cb->handle;
evt_data.sec_id = sec_id;
evt_data.use_co = true;
PORT_ClearKeepHandleFlag(handle);
PORT_SetEventCallback(handle, bta_jv_port_event_sr_cback);
PORT_SetEventMask(handle, event_mask);
PORT_GetState(handle, &port_state);
port_state.fc_type = (PORT_FC_CTS_ON_INPUT | PORT_FC_CTS_ON_OUTPUT);
PORT_SetState(handle, &port_state);
} while (0);
rs->p_cback(BTA_JV_RFCOMM_START_EVT, (tBTA_JV*)&evt_data, rs->rfcomm_slot_id);
if (evt_data.status == BTA_JV_SUCCESS) {
PORT_SetDataCOCallback(handle, bta_jv_port_data_co_cback);
} else {
if (sec_id) bta_jv_free_sec_id(&sec_id);
if (handle) RFCOMM_RemoveConnection(handle);
}
}
/*******************************************************************************
*
* Function bta_jv_rfcomm_stop_server
*
* Description stops an RFCOMM server
*
* Returns void
*
******************************************************************************/
void bta_jv_rfcomm_stop_server(tBTA_JV_MSG* p_data) {
tBTA_JV_API_RFCOMM_SERVER* ls = &(p_data->rfcomm_server);
tBTA_JV_RFC_CB* p_cb = NULL;
tBTA_JV_PCB* p_pcb = NULL;
APPL_TRACE_DEBUG("bta_jv_rfcomm_stop_server");
if (!ls->handle) {
APPL_TRACE_ERROR("bta_jv_rfcomm_stop_server, jv handle is null");
return;
}
if (!find_rfc_pcb(ls->rfcomm_slot_id, &p_cb, &p_pcb)) return;
APPL_TRACE_DEBUG("bta_jv_rfcomm_stop_server: p_pcb:%p, p_pcb->port_handle:%d",
p_pcb, p_pcb->port_handle);
bta_jv_free_rfc_cb(p_cb, p_pcb);
APPL_TRACE_DEBUG(
"bta_jv_rfcomm_stop_server: sec id in use:%d, rfc_cb in use:%d",
get_sec_id_used(), get_rfc_cb_used());
}
/*******************************************************************************
*
* Function bta_jv_rfcomm_write
*
* Description write data to an RFCOMM connection
*
* Returns void
*
******************************************************************************/
void bta_jv_rfcomm_write(tBTA_JV_MSG* p_data) {
tBTA_JV_API_RFCOMM_WRITE* wc = &(p_data->rfcomm_write);
tBTA_JV_RFC_CB* p_cb = wc->p_cb;
tBTA_JV_PCB* p_pcb = wc->p_pcb;
if (p_pcb->state == BTA_JV_ST_NONE) {
APPL_TRACE_ERROR("%s in state BTA_JV_ST_NONE - cannot write", __func__);
return;
}
tBTA_JV_RFCOMM_WRITE evt_data;
evt_data.status = BTA_JV_FAILURE;
evt_data.handle = p_cb->handle;
evt_data.req_id = wc->req_id;
evt_data.cong = p_pcb->cong;
evt_data.len = 0;
bta_jv_pm_conn_busy(p_pcb->p_pm_cb);
if (!evt_data.cong &&
PORT_WriteDataCO(p_pcb->port_handle, &evt_data.len) == PORT_SUCCESS) {
evt_data.status = BTA_JV_SUCCESS;
}
// Update congestion flag
evt_data.cong = p_pcb->cong;
if (p_cb->p_cback) {
p_cb->p_cback(BTA_JV_RFCOMM_WRITE_EVT, (tBTA_JV*)&evt_data,
p_pcb->rfcomm_slot_id);
} else {
APPL_TRACE_ERROR("%s No JV callback set", __func__);
}
}
/*******************************************************************************
*
* Function bta_jv_set_pm_profile
*
* Description Set or free power mode profile for a JV application
*
* Returns void
*
******************************************************************************/
void bta_jv_set_pm_profile(tBTA_JV_MSG* p_data) {
tBTA_JV_STATUS status;
tBTA_JV_PM_CB* p_cb;
APPL_TRACE_API("bta_jv_set_pm_profile(handle: 0x%x, app_id: %d, init_st: %d)",
p_data->set_pm.handle, p_data->set_pm.app_id,
p_data->set_pm.init_st);
/* clear PM control block */
if (p_data->set_pm.app_id == BTA_JV_PM_ID_CLEAR) {
status = bta_jv_free_set_pm_profile_cb(p_data->set_pm.handle);
if (status != BTA_JV_SUCCESS) {
APPL_TRACE_WARNING("bta_jv_set_pm_profile() free pm cb failed: reason %d",
status);
}
} else /* set PM control block */
{
p_cb = bta_jv_alloc_set_pm_profile_cb(p_data->set_pm.handle,
p_data->set_pm.app_id);
if (NULL != p_cb)
bta_jv_pm_state_change(p_cb, p_data->set_pm.init_st);
else
APPL_TRACE_WARNING("bta_jv_alloc_set_pm_profile_cb() failed");
}
}
/*******************************************************************************
*
* Function bta_jv_change_pm_state
*
* Description change jv pm connect state, used internally
*
* Returns void
*
******************************************************************************/
void bta_jv_change_pm_state(tBTA_JV_MSG* p_data) {
tBTA_JV_API_PM_STATE_CHANGE* p_msg = (tBTA_JV_API_PM_STATE_CHANGE*)p_data;
if (p_msg->p_cb) bta_jv_pm_state_change(p_msg->p_cb, p_msg->state);
}
/*******************************************************************************
*
* Function bta_jv_set_pm_conn_state
*
* Description Send pm event state change to jv state machine to serialize jv pm
* changes in relation to other jv messages. internal API use
* mainly.
*
* Params: p_cb: jv pm control block, NULL pointer returns failure
* new_state: new PM connections state, setting is forced by action
* function
*
* Returns BTA_JV_SUCCESS, BTA_JV_FAILURE (buffer allocation, or NULL ptr!)
*
******************************************************************************/
tBTA_JV_STATUS bta_jv_set_pm_conn_state(tBTA_JV_PM_CB* p_cb,
const tBTA_JV_CONN_STATE new_st) {
if (p_cb == NULL) return BTA_JV_FAILURE;
APPL_TRACE_API("%s: handle:0x%x, state: %d", __func__, p_cb->handle, new_st);
tBTA_JV_API_PM_STATE_CHANGE* p_msg = (tBTA_JV_API_PM_STATE_CHANGE*)osi_malloc(
sizeof(tBTA_JV_API_PM_STATE_CHANGE));
p_msg->hdr.event = BTA_JV_API_PM_STATE_CHANGE_EVT;
p_msg->p_cb = p_cb;
p_msg->state = new_st;
bta_sys_sendmsg(p_msg);
return BTA_JV_SUCCESS;
}
/*******************************************************************************
*
* Function bta_jv_pm_conn_busy
*
* Description set pm connection busy state (input param safe)
*
* Params p_cb: pm control block of jv connection
*
* Returns void
*
******************************************************************************/
static void bta_jv_pm_conn_busy(tBTA_JV_PM_CB* p_cb) {
if ((NULL != p_cb) && (BTA_JV_PM_IDLE_ST == p_cb->state))
bta_jv_pm_state_change(p_cb, BTA_JV_CONN_BUSY);
}
/*******************************************************************************
*
* Function bta_jv_pm_conn_busy
*
* Description set pm connection busy state (input param safe)
*
* Params p_cb: pm control block of jv connection
*
* Returns void
*
******************************************************************************/
static void bta_jv_pm_conn_idle(tBTA_JV_PM_CB* p_cb) {
if ((NULL != p_cb) && (BTA_JV_PM_IDLE_ST != p_cb->state))
bta_jv_pm_state_change(p_cb, BTA_JV_CONN_IDLE);
}
/*******************************************************************************
*
* Function bta_jv_pm_state_change
*
* Description Notify power manager there is state change
*
* Params p_cb: must be NONE NULL
*
* Returns void
*
******************************************************************************/
static void bta_jv_pm_state_change(tBTA_JV_PM_CB* p_cb,
const tBTA_JV_CONN_STATE state) {
APPL_TRACE_API(
"bta_jv_pm_state_change(p_cb: 0x%x, handle: 0x%x, busy/idle_state: %d"
", app_id: %d, conn_state: %d)",
p_cb, p_cb->handle, p_cb->state, p_cb->app_id, state);
switch (state) {
case BTA_JV_CONN_OPEN:
bta_sys_conn_open(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_CONN_CLOSE:
bta_sys_conn_close(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_APP_OPEN:
bta_sys_app_open(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_APP_CLOSE:
bta_sys_app_close(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_SCO_OPEN:
bta_sys_sco_open(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_SCO_CLOSE:
bta_sys_sco_close(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_CONN_IDLE:
p_cb->state = BTA_JV_PM_IDLE_ST;
bta_sys_idle(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
case BTA_JV_CONN_BUSY:
p_cb->state = BTA_JV_PM_BUSY_ST;
bta_sys_busy(BTA_ID_JV, p_cb->app_id, p_cb->peer_bd_addr);
break;
default:
APPL_TRACE_WARNING("bta_jv_pm_state_change(state: %d): Invalid state",
state);
break;
}
}
/******************************************************************************/
static struct fc_channel* fcchan_get(uint16_t chan, char create) {
struct fc_channel* t = fc_channels;
static tL2CAP_FIXED_CHNL_REG fcr = {
.pL2CA_FixedConn_Cb = fcchan_conn_chng_cbk,
.pL2CA_FixedData_Cb = fcchan_data_cbk,
.default_idle_tout = 0xffff,
.fixed_chnl_opts =
{
.mode = L2CAP_FCR_BASIC_MODE,
.max_transmit = 0xFF,
.rtrans_tout = 2000,
.mon_tout = 12000,
.mps = 670,
.tx_win_sz = 1,
},
};
while (t && t->chan != chan) t = t->next;
if (t)
return t;
else if (!create)
return NULL; /* we cannot alloc a struct if not asked to */
t = static_cast<struct fc_channel*>(osi_calloc(sizeof(*t)));
t->chan = chan;
if (!L2CA_RegisterFixedChannel(chan, &fcr)) {
osi_free(t);
return NULL;
}
// link it in
t->next = fc_channels;
fc_channels = t;
return t;
}
/* pass NULL to find servers */
static struct fc_client* fcclient_find_by_addr(struct fc_client* start,
BD_ADDR addr) {
struct fc_client* t = start;
while (t) {
/* match client if have addr */
if (addr && !memcmp(addr, &t->remote_addr, sizeof(t->remote_addr))) break;
/* match server if do not have addr */
if (!addr && t->server) break;
t = t->next_all_list;
}
return t;
}
static struct fc_client* fcclient_find_by_id(uint32_t id) {
struct fc_client* t = fc_clients;
while (t && t->id != id) t = t->next_all_list;
return t;
}
static struct fc_client* fcclient_alloc(uint16_t chan, char server,
const uint8_t* sec_id_to_use) {
struct fc_channel* fc = fcchan_get(chan, true);
struct fc_client* t;
uint8_t sec_id;
if (!fc) return NULL;
if (fc->has_server && server)
return NULL; /* no way to have multiple servers on same channel */
if (sec_id_to_use)
sec_id = *sec_id_to_use;
else
sec_id = bta_jv_alloc_sec_id();
t = static_cast<fc_client*>(osi_calloc(sizeof(*t)));
// Allocate it a unique ID
do {
t->id = ++fc_next_id;
} while (!t->id || fcclient_find_by_id(t->id));
// Populate some params
t->chan = chan;
t->server = server;
// Get a security id
t->sec_id = sec_id;
// Link it in to global list
t->next_all_list = fc_clients;
fc_clients = t;
// Link it in to channel list
t->next_chan_list = fc->clients;
fc->clients = t;
// Update channel if needed
if (server) fc->has_server = true;
return t;
}
static void fcclient_free(struct fc_client* fc) {
struct fc_client* t = fc_clients;
struct fc_channel* tc = fcchan_get(fc->chan, false);
// remove from global list
while (t && t->next_all_list != fc) t = t->next_all_list;
if (!t && fc != fc_clients) return; /* prevent double-free */
if (t)
t->next_all_list = fc->next_all_list;
else
fc_clients = fc->next_all_list;
// remove from channel list
if (tc) {
t = tc->clients;
while (t && t->next_chan_list != fc) t = t->next_chan_list;
if (t)
t->next_chan_list = fc->next_chan_list;
else
tc->clients = fc->next_chan_list;
// if was server then channel no longer has a server
if (fc->server) tc->has_server = false;
}
// free security id
bta_jv_free_sec_id(&fc->sec_id);
osi_free(fc);
}
static void fcchan_conn_chng_cbk(uint16_t chan, BD_ADDR bd_addr, bool connected,
uint16_t reason, tBT_TRANSPORT transport) {
tBTA_JV init_evt;
tBTA_JV open_evt;
struct fc_channel* tc;
struct fc_client *t = NULL, *new_conn;
tBTA_JV_L2CAP_CBACK* p_cback = NULL;
char call_init = false;
uint32_t l2cap_socket_id;
tc = fcchan_get(chan, false);
if (tc) {
t = fcclient_find_by_addr(
tc->clients, bd_addr); // try to find an open socked for that addr
if (t) {
p_cback = t->p_cback;
l2cap_socket_id = t->l2cap_socket_id;
} else {
t = fcclient_find_by_addr(
tc->clients,
NULL); // try to find a listening socked for that channel
if (t) {
// found: create a normal connection socket and assign the connection to
// it
new_conn = fcclient_alloc(chan, false, &t->sec_id);
if (new_conn) {
memcpy(&new_conn->remote_addr, bd_addr,
sizeof(new_conn->remote_addr));
new_conn->p_cback = NULL; // for now
new_conn->init_called = true; /*nop need to do it again */
p_cback = t->p_cback;
l2cap_socket_id = t->l2cap_socket_id;
t = new_conn;
}
} else {
// drop it
return;
}
}
}
if (t) {
if (!t->init_called) {
call_init = true;
t->init_called = true;
init_evt.l2c_cl_init.handle = t->id;
init_evt.l2c_cl_init.status = BTA_JV_SUCCESS;
init_evt.l2c_cl_init.sec_id = t->sec_id;
}
open_evt.l2c_open.handle = t->id;
open_evt.l2c_open.tx_mtu = 23; /* 23, why not ?*/
memcpy(&open_evt.l2c_le_open.rem_bda, &t->remote_addr,
sizeof(open_evt.l2c_le_open.rem_bda));
// TODO: (apanicke) Change the way these functions work so that casting
// isn't needed
open_evt.l2c_le_open.p_p_cback = (void**)&t->p_cback;
open_evt.l2c_le_open.p_user_data = (void**)&t->l2cap_socket_id;
open_evt.l2c_le_open.status = BTA_JV_SUCCESS;
if (connected) {
open_evt.l2c_open.status = BTA_JV_SUCCESS;
} else {
fcclient_free(t);
open_evt.l2c_open.status = BTA_JV_FAILURE;
}
}
if (call_init) p_cback(BTA_JV_L2CAP_CL_INIT_EVT, &init_evt, l2cap_socket_id);
// call this with lock taken so socket does not disappear from under us */
if (p_cback) {
p_cback(BTA_JV_L2CAP_OPEN_EVT, &open_evt, l2cap_socket_id);
if (!t->p_cback) /* no callback set, means they do not want this one... */
fcclient_free(t);
}
}
static void fcchan_data_cbk(uint16_t chan, BD_ADDR bd_addr, BT_HDR* p_buf) {
tBTA_JV evt_data;
struct fc_channel* tc;
struct fc_client* t = NULL;
tBTA_JV_L2CAP_CBACK* sock_cback = NULL;
uint32_t sock_id;
tc = fcchan_get(chan, false);
if (tc) {
t = fcclient_find_by_addr(
tc->clients,
bd_addr); // try to find an open socked for that addr and channel
if (!t) {
// no socket -> drop it
return;
}
}
sock_cback = t->p_cback;
sock_id = t->l2cap_socket_id;
evt_data.le_data_ind.handle = t->id;
evt_data.le_data_ind.p_buf = p_buf;
if (sock_cback) sock_cback(BTA_JV_L2CAP_DATA_IND_EVT, &evt_data, sock_id);
}
/*******************************************************************************
*
* Function bta_jv_l2cap_connect_le
*
* Description makes an le l2cap client connection
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_connect_le(tBTA_JV_MSG* p_data) {
tBTA_JV_API_L2CAP_CONNECT* cc = &(p_data->l2cap_connect);
tBTA_JV evt;
uint32_t id;
char call_init_f = true;
struct fc_client* t;
evt.l2c_cl_init.handle = GAP_INVALID_HANDLE;
evt.l2c_cl_init.status = BTA_JV_FAILURE;
t = fcclient_alloc(cc->remote_chan, false, NULL);
if (!t) {
cc->p_cback(BTA_JV_L2CAP_CL_INIT_EVT, &evt, cc->l2cap_socket_id);
return;
}
t->p_cback = cc->p_cback;
t->l2cap_socket_id = cc->l2cap_socket_id;
memcpy(&t->remote_addr, &cc->peer_bd_addr, sizeof(t->remote_addr));
id = t->id;
t->init_called = false;
if (L2CA_ConnectFixedChnl(t->chan, t->remote_addr)) {
evt.l2c_cl_init.status = BTA_JV_SUCCESS;
evt.l2c_cl_init.handle = id;
}
// it could have been deleted/moved from under us, so re-find it */
t = fcclient_find_by_id(id);
if (t) {
if (evt.l2c_cl_init.status == BTA_JV_SUCCESS)
call_init_f = !t->init_called;
else
fcclient_free(t);
}
if (call_init_f)
cc->p_cback(BTA_JV_L2CAP_CL_INIT_EVT, &evt, cc->l2cap_socket_id);
t->init_called = true;
}
/*******************************************************************************
*
* Function bta_jv_l2cap_stop_server_le
*
* Description stops an LE L2CAP server
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_stop_server_le(tBTA_JV_MSG* p_data) {
tBTA_JV evt;
tBTA_JV_API_L2CAP_SERVER* ls = &(p_data->l2cap_server);
tBTA_JV_L2CAP_CBACK* p_cback = NULL;
struct fc_channel* fcchan;
struct fc_client* fcclient;
uint32_t l2cap_socket_id;
evt.l2c_close.status = BTA_JV_FAILURE;
evt.l2c_close.async = false;
evt.l2c_close.handle = GAP_INVALID_HANDLE;
fcchan = fcchan_get(ls->local_chan, false);
if (fcchan) {
while ((fcclient = fcchan->clients)) {
p_cback = fcclient->p_cback;
l2cap_socket_id = fcclient->l2cap_socket_id;
evt.l2c_close.handle = fcclient->id;
evt.l2c_close.status = BTA_JV_SUCCESS;
evt.l2c_close.async = false;
fcclient_free(fcclient);
if (p_cback) p_cback(BTA_JV_L2CAP_CLOSE_EVT, &evt, l2cap_socket_id);
}
}
}
/*******************************************************************************
*
* Function bta_jv_l2cap_start_server_le
*
* Description starts an LE L2CAP server
*
* Returns void
*
******************************************************************************/
void bta_jv_l2cap_start_server_le(tBTA_JV_MSG* p_data) {
tBTA_JV_API_L2CAP_SERVER* ss = &(p_data->l2cap_server);
tBTA_JV_L2CAP_START evt_data;
struct fc_client* t;
evt_data.handle = GAP_INVALID_HANDLE;
evt_data.status = BTA_JV_FAILURE;
t = fcclient_alloc(ss->local_chan, true, NULL);
if (!t) goto out;
t->p_cback = ss->p_cback;
t->l2cap_socket_id = ss->l2cap_socket_id;
// if we got here, we're registered...
evt_data.status = BTA_JV_SUCCESS;
evt_data.handle = t->id;
evt_data.sec_id = t->sec_id;
out:
ss->p_cback(BTA_JV_L2CAP_START_EVT, (tBTA_JV*)&evt_data, ss->l2cap_socket_id);
}
/*******************************************************************************
*
* Function bta_jv_l2cap_close_fixed
*
* Description close a fixed channel connection. calls no callbacks. idempotent
*
* Returns void
*
******************************************************************************/
extern void bta_jv_l2cap_close_fixed(tBTA_JV_MSG* p_data) {
tBTA_JV_API_L2CAP_CLOSE* cc = &(p_data->l2cap_close);
struct fc_client* t;
t = fcclient_find_by_id(cc->handle);
if (t) fcclient_free(t);
}