1 /******************************************************************************
3 * Copyright (C) 2009-2012 Broadcom Corporation
5 * Licensed under the Apache License, Version 2.0 (the "License");
6 * you may not use this file except in compliance with the License.
7 * You may obtain a copy of the License at:
9 * http://www.apache.org/licenses/LICENSE-2.0
11 * Unless required by applicable law or agreed to in writing, software
12 * distributed under the License is distributed on an "AS IS" BASIS,
13 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 * See the License for the specific language governing permissions and
15 * limitations under the License.
17 ******************************************************************************/
19 /************************************************************************************
23 * Description: Contains Device Management (DM) related functionality
26 ***********************************************************************************/
28 #define LOG_TAG "bt_btif_dm"
38 #include <sys/types.h>
42 #include <hardware/bluetooth.h>
45 #include "bta_gatt_api.h"
47 #include "btif_config.h"
50 #include "btif_storage.h"
51 #include "btif_util.h"
53 #include "bt_common.h"
54 #include "bta_gatt_api.h"
55 #include "device/include/interop.h"
56 #include "include/stack_config.h"
57 #include "osi/include/allocator.h"
58 #include "osi/include/log.h"
59 #include "osi/include/metrics.h"
60 #include "osi/include/properties.h"
61 #include "stack_config.h"
62 #include "stack/btm/btm_int.h"
64 /******************************************************************************
66 ******************************************************************************/
68 #define COD_MASK 0x07FF
70 #define COD_UNCLASSIFIED ((0x1F) << 8)
71 #define COD_HID_KEYBOARD 0x0540
72 #define COD_HID_POINTING 0x0580
73 #define COD_HID_COMBO 0x05C0
74 #define COD_HID_MAJOR 0x0500
75 #define COD_HID_MASK 0x0700
76 #define COD_AV_HEADSETS 0x0404
77 #define COD_AV_HANDSFREE 0x0408
78 #define COD_AV_HEADPHONES 0x0418
79 #define COD_AV_PORTABLE_AUDIO 0x041C
80 #define COD_AV_HIFI_AUDIO 0x0428
82 #define BTIF_DM_DEFAULT_INQ_MAX_RESULTS 0
83 #define BTIF_DM_DEFAULT_INQ_MAX_DURATION 10
84 #define BTIF_DM_MAX_SDP_ATTEMPTS_AFTER_PAIRING 2
86 #define NUM_TIMEOUT_RETRIES 5
88 #define PROPERTY_PRODUCT_MODEL "ro.product.model"
89 #define DEFAULT_LOCAL_NAME_MAX 31
90 #if (DEFAULT_LOCAL_NAME_MAX > BTM_MAX_LOC_BD_NAME_LEN)
91 #error "default btif local name size exceeds stack supported length"
94 #if (defined(BTA_HOST_INTERLEAVE_SEARCH) && BTA_HOST_INTERLEAVE_SEARCH == TRUE)
95 #define BTIF_DM_INTERLEAVE_DURATION_BR_ONE 2
96 #define BTIF_DM_INTERLEAVE_DURATION_LE_ONE 2
97 #define BTIF_DM_INTERLEAVE_DURATION_BR_TWO 3
98 #define BTIF_DM_INTERLEAVE_DURATION_LE_TWO 4
101 #define MAX_SDP_BL_ENTRIES 3
103 #define ENCRYPTED_BREDR 2
104 #define ENCRYPTED_LE 4
108 bt_bond_state_t state;
109 bt_bdaddr_t static_bdaddr;
111 tBTM_BOND_TYPE bond_type;
116 UINT8 autopair_attempts;
117 UINT8 timeout_retries;
118 UINT8 is_local_initiated;
120 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
122 BOOLEAN is_le_nc; /* LE Numeric comparison */
123 btif_dm_ble_cb_t ble;
125 } btif_dm_pairing_cb_t;
129 UINT8 ir[BT_OCTET16_LEN];
130 UINT8 irk[BT_OCTET16_LEN];
131 UINT8 dhk[BT_OCTET16_LEN];
132 }btif_dm_local_key_id_t;
137 UINT8 er[BT_OCTET16_LEN];
138 BOOLEAN is_id_keys_rcvd;
139 btif_dm_local_key_id_t id_keys; /* ID kyes */
141 }btif_dm_local_key_cb_t;
147 } btif_dm_remote_name_t;
149 /* this structure holds optional OOB data for remote device */
152 BD_ADDR bdaddr; /* peer bdaddr */
153 bt_out_of_band_data_t oob_data;
159 UINT8 transport; /* 0=Unknown, 1=BR/EDR, 2=LE */
160 } btif_dm_create_bond_cb_t;
169 uint64_t energy_used;
170 } btif_activity_energy_info_cb_t;
174 unsigned int manufact_id;
179 BTIF_DM_FUNC_CREATE_BOND,
180 BTIF_DM_FUNC_CANCEL_BOND,
181 BTIF_DM_FUNC_REMOVE_BOND,
182 BTIF_DM_FUNC_BOND_STATE_CHANGED,
183 } bt_bond_function_t;
188 bt_bond_function_t function;
189 bt_bond_state_t state;
190 struct timespec timestamp;
193 #define BTA_SERVICE_ID_TO_SERVICE_MASK(id) (1 << (id))
195 #define MAX_SDP_BL_ENTRIES 3
196 #define UUID_HUMAN_INTERFACE_DEVICE "00001124-0000-1000-8000-00805f9b34fb"
198 #define MAX_BTIF_BOND_EVENT_ENTRIES 15
200 static skip_sdp_entry_t sdp_blacklist[] = {{76}}; //Apple Mouse and Keyboard
202 /* This flag will be true if HCI_Inquiry is in progress */
203 static BOOLEAN btif_dm_inquiry_in_progress = FALSE;
205 /************************************************************************************
207 ************************************************************************************/
208 static char btif_default_local_name[DEFAULT_LOCAL_NAME_MAX+1] = {'\0'};
209 static uid_set_t* uid_set = NULL;
211 /* A circular array to keep track of the most recent bond events */
212 static btif_bond_event_t btif_dm_bond_events[MAX_BTIF_BOND_EVENT_ENTRIES + 1];
214 static pthread_mutex_t bond_event_lock;
216 /* |btif_num_bond_events| keeps track of the total number of events and can be
217 greater than |MAX_BTIF_BOND_EVENT_ENTRIES| */
218 static size_t btif_num_bond_events = 0;
219 static size_t btif_events_start_index = 0;
220 static size_t btif_events_end_index = 0;
222 /******************************************************************************
224 ******************************************************************************/
225 static btif_dm_pairing_cb_t pairing_cb;
226 static btif_dm_oob_cb_t oob_cb;
227 static void btif_dm_generic_evt(UINT16 event, char* p_param);
228 static void btif_dm_cb_create_bond(bt_bdaddr_t *bd_addr, tBTA_TRANSPORT transport);
229 static void btif_dm_cb_hid_remote_name(tBTM_REMOTE_DEV_NAME *p_remote_name);
230 static void btif_update_remote_properties(BD_ADDR bd_addr, BD_NAME bd_name,
231 DEV_CLASS dev_class, tBT_DEVICE_TYPE dev_type);
232 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
233 static btif_dm_local_key_cb_t ble_local_key_cb;
234 static void btif_dm_ble_key_notif_evt(tBTA_DM_SP_KEY_NOTIF *p_ssp_key_notif);
235 static void btif_dm_ble_auth_cmpl_evt (tBTA_DM_AUTH_CMPL *p_auth_cmpl);
236 static void btif_dm_ble_passkey_req_evt(tBTA_DM_PIN_REQ *p_pin_req);
237 static void btif_dm_ble_key_nc_req_evt(tBTA_DM_SP_KEY_NOTIF *p_notif_req) ;
238 static void btif_dm_ble_oob_req_evt(tBTA_DM_SP_RMT_OOB *req_oob_type);
241 static void bte_scan_filt_param_cfg_evt(UINT8 action_type,
242 tBTA_DM_BLE_PF_AVBL_SPACE avbl_space,
243 tBTA_DM_BLE_REF_VALUE ref_value,
246 static char* btif_get_default_local_name();
248 static void btif_stats_add_bond_event(const bt_bdaddr_t *bd_addr,
249 bt_bond_function_t function,
250 bt_bond_state_t state);
252 /******************************************************************************
254 ******************************************************************************/
255 extern UINT16 bta_service_id_to_uuid_lkup_tbl [BTA_MAX_SERVICE_ID];
256 extern bt_status_t btif_hf_execute_service(BOOLEAN b_enable);
257 extern bt_status_t btif_av_execute_service(BOOLEAN b_enable);
258 extern bt_status_t btif_av_sink_execute_service(BOOLEAN b_enable);
259 extern bt_status_t btif_hh_execute_service(BOOLEAN b_enable);
260 extern bt_status_t btif_hf_client_execute_service(BOOLEAN b_enable);
261 extern bt_status_t btif_sdp_execute_service(BOOLEAN b_enable);
262 extern int btif_hh_connect(bt_bdaddr_t *bd_addr);
263 extern void bta_gatt_convert_uuid16_to_uuid128(UINT8 uuid_128[LEN_UUID_128], UINT16 uuid_16);
265 /******************************************************************************
267 ******************************************************************************/
269 static bool is_empty_128bit(uint8_t *data)
271 static const uint8_t zero[16] = { 0 };
272 return !memcmp(zero, data, sizeof(zero));
275 static void btif_dm_data_copy(uint16_t event, char *dst, char *src)
277 tBTA_DM_SEC *dst_dm_sec = (tBTA_DM_SEC*)dst;
278 tBTA_DM_SEC *src_dm_sec = (tBTA_DM_SEC*)src;
284 maybe_non_aligned_memcpy(dst_dm_sec, src_dm_sec, sizeof(*src_dm_sec));
286 if (event == BTA_DM_BLE_KEY_EVT)
288 dst_dm_sec->ble_key.p_key_value = osi_malloc(sizeof(tBTM_LE_KEY_VALUE));
289 assert(src_dm_sec->ble_key.p_key_value);
290 memcpy(dst_dm_sec->ble_key.p_key_value, src_dm_sec->ble_key.p_key_value, sizeof(tBTM_LE_KEY_VALUE));
294 static void btif_dm_data_free(uint16_t event, tBTA_DM_SEC *dm_sec)
296 if (event == BTA_DM_BLE_KEY_EVT)
297 osi_free_and_reset((void **)&dm_sec->ble_key.p_key_value);
300 void btif_dm_init(uid_set_t* set)
303 pthread_mutex_init(&bond_event_lock, NULL);
306 void btif_dm_cleanup(void)
309 uid_set_destroy(uid_set);
312 pthread_mutex_destroy(&bond_event_lock);
315 bt_status_t btif_in_execute_service_request(tBTA_SERVICE_ID service_id,
318 BTIF_TRACE_DEBUG("%s service_id: %d", __FUNCTION__, service_id);
319 /* Check the service_ID and invoke the profile's BT state changed API */
322 case BTA_HFP_SERVICE_ID:
323 case BTA_HSP_SERVICE_ID:
325 btif_hf_execute_service(b_enable);
327 case BTA_A2DP_SOURCE_SERVICE_ID:
329 btif_av_execute_service(b_enable);
331 case BTA_A2DP_SINK_SERVICE_ID:
333 btif_av_sink_execute_service(b_enable);
335 case BTA_HID_SERVICE_ID:
337 btif_hh_execute_service(b_enable);
339 case BTA_HFP_HS_SERVICE_ID:
341 btif_hf_client_execute_service(b_enable);
343 case BTA_SDP_SERVICE_ID:
345 btif_sdp_execute_service(b_enable);
348 BTIF_TRACE_ERROR("%s: Unknown service being enabled", __FUNCTION__);
349 return BT_STATUS_FAIL;
351 return BT_STATUS_SUCCESS;
354 /*******************************************************************************
356 ** Function check_eir_remote_name
358 ** Description Check if remote name is in the EIR data
360 ** Returns TRUE if remote name found
361 ** Populate p_remote_name, if provided and remote name found
363 *******************************************************************************/
364 static BOOLEAN check_eir_remote_name(tBTA_DM_SEARCH *p_search_data,
365 UINT8 *p_remote_name, UINT8 *p_remote_name_len)
367 UINT8 *p_eir_remote_name = NULL;
368 UINT8 remote_name_len = 0;
370 /* Check EIR for remote name and services */
371 if (p_search_data->inq_res.p_eir)
373 p_eir_remote_name = BTM_CheckEirData(p_search_data->inq_res.p_eir,
374 BTM_EIR_COMPLETE_LOCAL_NAME_TYPE, &remote_name_len);
375 if (!p_eir_remote_name)
377 p_eir_remote_name = BTM_CheckEirData(p_search_data->inq_res.p_eir,
378 BTM_EIR_SHORTENED_LOCAL_NAME_TYPE, &remote_name_len);
381 if (p_eir_remote_name)
383 if (remote_name_len > BD_NAME_LEN)
384 remote_name_len = BD_NAME_LEN;
386 if (p_remote_name && p_remote_name_len)
388 memcpy(p_remote_name, p_eir_remote_name, remote_name_len);
389 *(p_remote_name + remote_name_len) = 0;
390 *p_remote_name_len = remote_name_len;
401 /*******************************************************************************
403 ** Function check_cached_remote_name
405 ** Description Check if remote name is in the NVRAM cache
407 ** Returns TRUE if remote name found
408 ** Populate p_remote_name, if provided and remote name found
410 *******************************************************************************/
411 static BOOLEAN check_cached_remote_name(tBTA_DM_SEARCH *p_search_data,
412 UINT8 *p_remote_name, UINT8 *p_remote_name_len)
415 bt_bdaddr_t remote_bdaddr;
416 bt_property_t prop_name;
418 /* check if we already have it in our btif_storage cache */
419 bdcpy(remote_bdaddr.address, p_search_data->inq_res.bd_addr);
420 BTIF_STORAGE_FILL_PROPERTY(&prop_name, BT_PROPERTY_BDNAME,
421 sizeof(bt_bdname_t), &bdname);
422 if (btif_storage_get_remote_device_property(
423 &remote_bdaddr, &prop_name) == BT_STATUS_SUCCESS)
425 if (p_remote_name && p_remote_name_len)
427 strcpy((char *)p_remote_name, (char *)bdname.name);
428 *p_remote_name_len = strlen((char *)p_remote_name);
436 static uint32_t get_cod(const bt_bdaddr_t *remote_bdaddr) {
438 bt_property_t prop_name;
440 /* check if we already have it in our btif_storage cache */
441 BTIF_STORAGE_FILL_PROPERTY(&prop_name, BT_PROPERTY_CLASS_OF_DEVICE,
442 sizeof(uint32_t), &remote_cod);
443 if (btif_storage_get_remote_device_property((bt_bdaddr_t *)remote_bdaddr, &prop_name) == BT_STATUS_SUCCESS)
445 LOG_INFO(LOG_TAG, "%s remote_cod = 0x%08x", __func__, remote_cod);
446 return remote_cod & COD_MASK;
452 BOOLEAN check_cod(const bt_bdaddr_t *remote_bdaddr, uint32_t cod)
454 return get_cod(remote_bdaddr) == cod;
457 BOOLEAN check_cod_hid(const bt_bdaddr_t *remote_bdaddr)
459 return (get_cod(remote_bdaddr) & COD_HID_MASK) == COD_HID_MAJOR;
462 BOOLEAN check_hid_le(const bt_bdaddr_t *remote_bdaddr)
464 uint32_t remote_dev_type;
465 bt_property_t prop_name;
467 /* check if we already have it in our btif_storage cache */
468 BTIF_STORAGE_FILL_PROPERTY(&prop_name,BT_PROPERTY_TYPE_OF_DEVICE,
469 sizeof(uint32_t), &remote_dev_type);
470 if (btif_storage_get_remote_device_property((bt_bdaddr_t *)remote_bdaddr,
471 &prop_name) == BT_STATUS_SUCCESS)
473 if (remote_dev_type == BT_DEVICE_DEVTYPE_BLE)
476 bdaddr_to_string(remote_bdaddr, bdstr, sizeof(bdstr));
477 if(btif_config_exist(bdstr, "HidAppId"))
484 /*****************************************************************************
486 ** Function check_sdp_bl
488 ** Description Checks if a given device is blacklisted to skip sdp
490 ** Parameters skip_sdp_entry
492 ** Returns TRUE if the device is present in blacklist, else FALSE
494 *******************************************************************************/
495 BOOLEAN check_sdp_bl(const bt_bdaddr_t *remote_bdaddr)
497 UINT16 manufacturer = 0;
499 UINT16 lmp_subver = 0;
500 bt_property_t prop_name;
501 bt_remote_version_t info;
503 if (remote_bdaddr == NULL)
506 /* fetch additional info about remote device used in iop query */
507 BTM_ReadRemoteVersion(*(BD_ADDR*)remote_bdaddr, &lmp_ver,
508 &manufacturer, &lmp_subver);
510 /* if not available yet, try fetching from config database */
511 BTIF_STORAGE_FILL_PROPERTY(&prop_name, BT_PROPERTY_REMOTE_VERSION_INFO,
512 sizeof(bt_remote_version_t), &info);
514 if (btif_storage_get_remote_device_property((bt_bdaddr_t *)remote_bdaddr,
515 &prop_name) != BT_STATUS_SUCCESS)
520 manufacturer = info.manufacturer;
522 for (int i = 0; i < MAX_SDP_BL_ENTRIES; i++)
524 if (manufacturer == sdp_blacklist[i].manufact_id)
530 static void bond_state_changed(bt_status_t status, bt_bdaddr_t *bd_addr, bt_bond_state_t state)
533 btif_stats_add_bond_event(bd_addr, BTIF_DM_FUNC_BOND_STATE_CHANGED, state);
535 // Send bonding state only once - based on outgoing/incoming we may receive duplicates
536 if ((pairing_cb.state == state) && (state == BT_BOND_STATE_BONDING))
538 // Cross key pairing so send callback for static address
539 if (!bdaddr_is_empty(&pairing_cb.static_bdaddr))
541 HAL_CBACK(bt_hal_cbacks, bond_state_changed_cb, status, bd_addr, state);
546 if (pairing_cb.bond_type == BOND_TYPE_TEMPORARY)
547 state = BT_BOND_STATE_NONE;
549 BTIF_TRACE_DEBUG("%s: state=%d, prev_state=%d, sdp_attempts = %d", __func__,
550 state, pairing_cb.state, pairing_cb.sdp_attempts);
552 HAL_CBACK(bt_hal_cbacks, bond_state_changed_cb, status, bd_addr, state);
554 if (state == BT_BOND_STATE_BONDING)
556 pairing_cb.state = state;
557 bdcpy(pairing_cb.bd_addr, bd_addr->address);
559 if (!pairing_cb.sdp_attempts)
560 memset(&pairing_cb, 0, sizeof(pairing_cb));
562 BTIF_TRACE_DEBUG("%s: BR-EDR service discovery active", __func__);
566 /* store remote version in bt config to always have access
568 static void btif_update_remote_version_property(bt_bdaddr_t *p_bd)
570 bt_property_t property;
572 UINT16 lmp_subver = 0;
574 tBTM_STATUS btm_status;
575 bt_remote_version_t info;
579 btm_status = BTM_ReadRemoteVersion(*(BD_ADDR*)p_bd, &lmp_ver,
580 &mfct_set, &lmp_subver);
582 LOG_DEBUG(LOG_TAG, "remote version info [%s]: %x, %x, %x", bdaddr_to_string(p_bd, bdstr, sizeof(bdstr)),
583 lmp_ver, mfct_set, lmp_subver);
585 if (btm_status == BTM_SUCCESS)
587 // Always update cache to ensure we have availability whenever BTM API is not populated
588 info.manufacturer = mfct_set;
589 info.sub_ver = lmp_subver;
590 info.version = lmp_ver;
591 BTIF_STORAGE_FILL_PROPERTY(&property,
592 BT_PROPERTY_REMOTE_VERSION_INFO, sizeof(bt_remote_version_t),
594 status = btif_storage_set_remote_device_property(p_bd, &property);
595 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote version", status);
599 static void btif_update_remote_properties(BD_ADDR bd_addr, BD_NAME bd_name,
600 DEV_CLASS dev_class, tBT_DEVICE_TYPE device_type)
602 int num_properties = 0;
603 bt_property_t properties[3];
607 bt_device_type_t dev_type;
609 memset(properties, 0, sizeof(properties));
610 bdcpy(bdaddr.address, bd_addr);
613 if (strlen((const char *) bd_name))
615 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
616 BT_PROPERTY_BDNAME, strlen((char *)bd_name), bd_name);
617 status = btif_storage_set_remote_device_property(&bdaddr, &properties[num_properties]);
618 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote device name", status);
622 /* class of device */
623 cod = devclass2uint(dev_class);
624 BTIF_TRACE_DEBUG("%s cod is 0x%06x", __func__, cod);
626 /* Try to retrieve cod from storage */
627 BTIF_TRACE_DEBUG("%s cod is 0, checking cod from storage", __func__);
628 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
629 BT_PROPERTY_CLASS_OF_DEVICE, sizeof(cod), &cod);
630 status = btif_storage_get_remote_device_property(&bdaddr, &properties[num_properties]);
631 BTIF_TRACE_DEBUG("%s cod retrieved from storage is 0x%06x", __func__, cod);
633 BTIF_TRACE_DEBUG("%s cod is again 0, set as unclassified", __func__);
634 cod = COD_UNCLASSIFIED;
638 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
639 BT_PROPERTY_CLASS_OF_DEVICE, sizeof(cod), &cod);
640 status = btif_storage_set_remote_device_property(&bdaddr, &properties[num_properties]);
641 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote device class", status);
645 bt_property_t prop_name;
646 uint8_t remote_dev_type;
647 BTIF_STORAGE_FILL_PROPERTY(&prop_name, BT_PROPERTY_TYPE_OF_DEVICE,
648 sizeof(uint8_t), &remote_dev_type);
649 if (btif_storage_get_remote_device_property(&bdaddr, &prop_name) == BT_STATUS_SUCCESS)
650 dev_type = remote_dev_type | device_type;
652 dev_type = device_type;
654 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
655 BT_PROPERTY_TYPE_OF_DEVICE, sizeof(dev_type), &dev_type);
656 status = btif_storage_set_remote_device_property(&bdaddr, &properties[num_properties]);
657 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote device type", status);
660 HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,
661 status, &bdaddr, num_properties, properties);
664 /*******************************************************************************
666 ** Function btif_dm_cb_hid_remote_name
668 ** Description Remote name callback for HID device. Called in btif context
669 ** Special handling for HID devices
673 *******************************************************************************/
674 static void btif_dm_cb_hid_remote_name(tBTM_REMOTE_DEV_NAME *p_remote_name)
676 BTIF_TRACE_DEBUG("%s: status=%d pairing_cb.state=%d", __FUNCTION__, p_remote_name->status, pairing_cb.state);
677 if (pairing_cb.state == BT_BOND_STATE_BONDING)
679 bt_bdaddr_t remote_bd;
681 bdcpy(remote_bd.address, pairing_cb.bd_addr);
683 if (p_remote_name->status == BTM_SUCCESS)
685 bond_state_changed(BT_STATUS_SUCCESS, &remote_bd, BT_BOND_STATE_BONDED);
688 bond_state_changed(BT_STATUS_FAIL, &remote_bd, BT_BOND_STATE_NONE);
692 /*******************************************************************************
694 ** Function btif_dm_cb_create_bond
696 ** Description Create bond initiated from the BTIF thread context
697 ** Special handling for HID devices
701 *******************************************************************************/
702 static void btif_dm_cb_create_bond(bt_bdaddr_t *bd_addr, tBTA_TRANSPORT transport)
704 BOOLEAN is_hid = check_cod(bd_addr, COD_HID_POINTING);
705 bond_state_changed(BT_STATUS_SUCCESS, bd_addr, BT_BOND_STATE_BONDING);
707 #if BLE_INCLUDED == TRUE
711 bdaddr_to_string(bd_addr, bdstr, sizeof(bdstr));
712 if (transport == BT_TRANSPORT_LE)
714 if (!btif_config_get_int((char const *)&bdstr,"DevType", &device_type))
716 btif_config_set_int(bdstr, "DevType", BT_DEVICE_TYPE_BLE);
718 if (btif_storage_get_remote_addr_type(bd_addr, &addr_type) != BT_STATUS_SUCCESS)
720 btif_storage_set_remote_addr_type(bd_addr, BLE_ADDR_PUBLIC);
723 if((btif_config_get_int((char const *)&bdstr,"DevType", &device_type) &&
724 (btif_storage_get_remote_addr_type(bd_addr, &addr_type) == BT_STATUS_SUCCESS) &&
725 (device_type & BT_DEVICE_TYPE_BLE) == BT_DEVICE_TYPE_BLE) || (transport == BT_TRANSPORT_LE))
727 BTA_DmAddBleDevice(bd_addr->address, addr_type, device_type);
731 #if BLE_INCLUDED == TRUE
732 if(is_hid && (device_type & BT_DEVICE_TYPE_BLE) == 0)
738 status = btif_hh_connect(bd_addr);
739 if(status != BT_STATUS_SUCCESS)
740 bond_state_changed(status, bd_addr, BT_BOND_STATE_NONE);
744 BTA_DmBondByTransport((UINT8 *)bd_addr->address, transport);
746 /* Track originator of bond creation */
747 pairing_cb.is_local_initiated = TRUE;
751 /*******************************************************************************
753 ** Function btif_dm_cb_remove_bond
755 ** Description remove bond initiated from the BTIF thread context
756 ** Special handling for HID devices
760 *******************************************************************************/
761 void btif_dm_cb_remove_bond(bt_bdaddr_t *bd_addr)
763 /*special handling for HID devices */
764 /* VUP needs to be sent if its a HID Device. The HID HOST module will check if there
765 is a valid hid connection with this bd_addr. If yes VUP will be issued.*/
766 #if (defined(BTA_HH_INCLUDED) && (BTA_HH_INCLUDED == TRUE))
767 if (btif_hh_virtual_unplug(bd_addr) != BT_STATUS_SUCCESS)
770 BTIF_TRACE_DEBUG("%s: Removing HH device", __func__);
771 BTA_DmRemoveDevice((UINT8 *)bd_addr->address);
775 /*******************************************************************************
777 ** Function btif_dm_get_connection_state
779 ** Description Returns whether the remote device is currently connected
780 ** and whether encryption is active for the connection
782 ** Returns 0 if not connected; 1 if connected and > 1 if connection is
785 *******************************************************************************/
786 uint16_t btif_dm_get_connection_state(const bt_bdaddr_t *bd_addr)
788 uint8_t *bda = (uint8_t*)bd_addr->address;
789 uint16_t rc = BTA_DmGetConnectionState(bda);
795 BTM_GetSecurityFlagsByTransport(bda, &flags, BT_TRANSPORT_BR_EDR);
796 BTIF_TRACE_DEBUG("%s: security flags (BR/EDR)=0x%02x", __FUNCTION__, flags);
797 if (flags & BTM_SEC_FLAG_ENCRYPTED)
798 rc |= ENCRYPTED_BREDR;
800 BTM_GetSecurityFlagsByTransport(bda, &flags, BT_TRANSPORT_LE);
801 BTIF_TRACE_DEBUG("%s: security flags (LE)=0x%02x", __FUNCTION__, flags);
802 if (flags & BTM_SEC_FLAG_ENCRYPTED)
809 /*******************************************************************************
811 ** Function search_devices_copy_cb
813 ** Description Deep copy callback for search devices event
817 *******************************************************************************/
818 static void search_devices_copy_cb(UINT16 event, char *p_dest, char *p_src)
820 tBTA_DM_SEARCH *p_dest_data = (tBTA_DM_SEARCH *) p_dest;
821 tBTA_DM_SEARCH *p_src_data = (tBTA_DM_SEARCH *) p_src;
826 BTIF_TRACE_DEBUG("%s: event=%s", __FUNCTION__, dump_dm_search_event(event));
827 maybe_non_aligned_memcpy(p_dest_data, p_src_data, sizeof(*p_src_data));
830 case BTA_DM_INQ_RES_EVT:
832 if (p_src_data->inq_res.p_eir)
834 p_dest_data->inq_res.p_eir = (UINT8 *)(p_dest + sizeof(tBTA_DM_SEARCH));
835 memcpy(p_dest_data->inq_res.p_eir, p_src_data->inq_res.p_eir, HCI_EXT_INQ_RESPONSE_LEN);
840 case BTA_DM_DISC_RES_EVT:
842 if (p_src_data->disc_res.raw_data_size && p_src_data->disc_res.p_raw_data)
844 p_dest_data->disc_res.p_raw_data = (UINT8 *)(p_dest + sizeof(tBTA_DM_SEARCH));
845 memcpy(p_dest_data->disc_res.p_raw_data,
846 p_src_data->disc_res.p_raw_data, p_src_data->disc_res.raw_data_size);
853 static void search_services_copy_cb(UINT16 event, char *p_dest, char *p_src)
855 tBTA_DM_SEARCH *p_dest_data = (tBTA_DM_SEARCH *) p_dest;
856 tBTA_DM_SEARCH *p_src_data = (tBTA_DM_SEARCH *) p_src;
860 maybe_non_aligned_memcpy(p_dest_data, p_src_data, sizeof(*p_src_data));
863 case BTA_DM_DISC_RES_EVT:
865 if (p_src_data->disc_res.result == BTA_SUCCESS)
867 if (p_src_data->disc_res.num_uuids > 0)
869 p_dest_data->disc_res.p_uuid_list =
870 (UINT8*)(p_dest + sizeof(tBTA_DM_SEARCH));
871 memcpy(p_dest_data->disc_res.p_uuid_list, p_src_data->disc_res.p_uuid_list,
872 p_src_data->disc_res.num_uuids*MAX_UUID_SIZE);
873 osi_free_and_reset((void **)&p_src_data->disc_res.p_uuid_list);
875 osi_free_and_reset((void **)&p_src_data->disc_res.p_raw_data);
880 /******************************************************************************
882 ** BTIF DM callback events
884 *****************************************************************************/
886 /*******************************************************************************
888 ** Function btif_dm_pin_req_evt
890 ** Description Executes pin request event in btif context
894 *******************************************************************************/
895 static void btif_dm_pin_req_evt(tBTA_DM_PIN_REQ *p_pin_req)
900 bt_pin_code_t pin_code;
903 /* Remote properties update */
904 if (!btif_get_device_type(p_pin_req->bd_addr, &dev_type))
906 dev_type = BT_DEVICE_TYPE_BREDR;
908 btif_update_remote_properties(p_pin_req->bd_addr, p_pin_req->bd_name,
909 p_pin_req->dev_class, (tBT_DEVICE_TYPE) dev_type);
911 bdcpy(bd_addr.address, p_pin_req->bd_addr);
912 memcpy(bd_name.name, p_pin_req->bd_name, BD_NAME_LEN);
914 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
916 cod = devclass2uint(p_pin_req->dev_class);
919 BTIF_TRACE_DEBUG("%s cod is 0, set as unclassified", __func__);
920 cod = COD_UNCLASSIFIED;
923 /* check for auto pair possiblity only if bond was initiated by local device */
924 if (pairing_cb.is_local_initiated && (p_pin_req->min_16_digit == FALSE))
926 if (check_cod(&bd_addr, COD_AV_HEADSETS) ||
927 check_cod(&bd_addr, COD_AV_HANDSFREE) ||
928 check_cod(&bd_addr, COD_AV_HEADPHONES) ||
929 check_cod(&bd_addr, COD_AV_PORTABLE_AUDIO) ||
930 check_cod(&bd_addr, COD_AV_HIFI_AUDIO) ||
931 check_cod(&bd_addr, COD_HID_POINTING))
933 /* Check if this device can be auto paired */
934 if (!interop_match_addr(INTEROP_DISABLE_AUTO_PAIRING, &bd_addr) &&
935 !interop_match_name(INTEROP_DISABLE_AUTO_PAIRING, (const char *)bd_name.name) &&
936 (pairing_cb.autopair_attempts == 0))
938 BTIF_TRACE_DEBUG("%s() Attempting auto pair", __FUNCTION__);
939 pin_code.pin[0] = 0x30;
940 pin_code.pin[1] = 0x30;
941 pin_code.pin[2] = 0x30;
942 pin_code.pin[3] = 0x30;
944 pairing_cb.autopair_attempts++;
945 BTA_DmPinReply( (UINT8*)bd_addr.address, TRUE, 4, pin_code.pin);
949 else if (check_cod(&bd_addr, COD_HID_KEYBOARD) ||
950 check_cod(&bd_addr, COD_HID_COMBO))
952 if ((interop_match_addr(INTEROP_KEYBOARD_REQUIRES_FIXED_PIN, &bd_addr) == TRUE) &&
953 (pairing_cb.autopair_attempts == 0))
955 BTIF_TRACE_DEBUG("%s() Attempting auto pair", __FUNCTION__);
956 pin_code.pin[0] = 0x30;
957 pin_code.pin[1] = 0x30;
958 pin_code.pin[2] = 0x30;
959 pin_code.pin[3] = 0x30;
961 pairing_cb.autopair_attempts++;
962 BTA_DmPinReply( (UINT8*)bd_addr.address, TRUE, 4, pin_code.pin);
967 HAL_CBACK(bt_hal_cbacks, pin_request_cb,
968 &bd_addr, &bd_name, cod, p_pin_req->min_16_digit);
971 /*******************************************************************************
973 ** Function btif_dm_ssp_cfm_req_evt
975 ** Description Executes SSP confirm request event in btif context
979 *******************************************************************************/
980 static void btif_dm_ssp_cfm_req_evt(tBTA_DM_SP_CFM_REQ *p_ssp_cfm_req)
985 BOOLEAN is_incoming = !(pairing_cb.state == BT_BOND_STATE_BONDING);
988 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
990 /* Remote properties update */
991 if (!btif_get_device_type(p_ssp_cfm_req->bd_addr, &dev_type))
993 dev_type = BT_DEVICE_TYPE_BREDR;
995 btif_update_remote_properties(p_ssp_cfm_req->bd_addr, p_ssp_cfm_req->bd_name,
996 p_ssp_cfm_req->dev_class, (tBT_DEVICE_TYPE) dev_type);
998 bdcpy(bd_addr.address, p_ssp_cfm_req->bd_addr);
999 memcpy(bd_name.name, p_ssp_cfm_req->bd_name, BD_NAME_LEN);
1001 /* Set the pairing_cb based on the local & remote authentication requirements */
1002 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
1004 /* if just_works and bonding bit is not set treat this as temporary */
1005 if (p_ssp_cfm_req->just_works && !(p_ssp_cfm_req->loc_auth_req & BTM_AUTH_BONDS) &&
1006 !(p_ssp_cfm_req->rmt_auth_req & BTM_AUTH_BONDS) &&
1007 !(check_cod((bt_bdaddr_t*)&p_ssp_cfm_req->bd_addr, COD_HID_POINTING)))
1008 pairing_cb.bond_type = BOND_TYPE_TEMPORARY;
1010 pairing_cb.bond_type = BOND_TYPE_PERSISTENT;
1012 btm_set_bond_type_dev(p_ssp_cfm_req->bd_addr, pairing_cb.bond_type);
1014 pairing_cb.is_ssp = TRUE;
1016 /* If JustWorks auto-accept */
1017 if (p_ssp_cfm_req->just_works)
1019 /* Pairing consent for JustWorks needed if:
1020 * 1. Incoming (non-temporary) pairing is detected AND
1021 * 2. local IO capabilities are DisplayYesNo AND
1022 * 3. remote IO capabiltiies are DisplayOnly or NoInputNoOutput;
1024 if (is_incoming && pairing_cb.bond_type != BOND_TYPE_TEMPORARY &&
1025 ((p_ssp_cfm_req->loc_io_caps == HCI_IO_CAP_DISPLAY_YESNO) &&
1026 (p_ssp_cfm_req->rmt_io_caps == HCI_IO_CAP_DISPLAY_ONLY ||
1027 p_ssp_cfm_req->rmt_io_caps == HCI_IO_CAP_NO_IO)))
1029 BTIF_TRACE_EVENT("%s: User consent needed for incoming pairing request. loc_io_caps: %d, rmt_io_caps: %d",
1030 __FUNCTION__, p_ssp_cfm_req->loc_io_caps, p_ssp_cfm_req->rmt_io_caps);
1034 BTIF_TRACE_EVENT("%s: Auto-accept JustWorks pairing", __FUNCTION__);
1035 btif_dm_ssp_reply(&bd_addr, BT_SSP_VARIANT_CONSENT, TRUE, 0);
1040 cod = devclass2uint(p_ssp_cfm_req->dev_class);
1043 LOG_DEBUG(LOG_TAG, "%s cod is 0, set as unclassified", __func__);
1044 cod = COD_UNCLASSIFIED;
1047 pairing_cb.sdp_attempts = 0;
1048 HAL_CBACK(bt_hal_cbacks, ssp_request_cb, &bd_addr, &bd_name, cod,
1049 (p_ssp_cfm_req->just_works ? BT_SSP_VARIANT_CONSENT : BT_SSP_VARIANT_PASSKEY_CONFIRMATION),
1050 p_ssp_cfm_req->num_val);
1053 static void btif_dm_ssp_key_notif_evt(tBTA_DM_SP_KEY_NOTIF *p_ssp_key_notif)
1055 bt_bdaddr_t bd_addr;
1056 bt_bdname_t bd_name;
1060 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
1062 /* Remote properties update */
1063 if (!btif_get_device_type(p_ssp_key_notif->bd_addr, &dev_type))
1065 dev_type = BT_DEVICE_TYPE_BREDR;
1067 btif_update_remote_properties(p_ssp_key_notif->bd_addr, p_ssp_key_notif->bd_name,
1068 p_ssp_key_notif->dev_class, (tBT_DEVICE_TYPE) dev_type);
1070 bdcpy(bd_addr.address, p_ssp_key_notif->bd_addr);
1071 memcpy(bd_name.name, p_ssp_key_notif->bd_name, BD_NAME_LEN);
1073 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
1074 pairing_cb.is_ssp = TRUE;
1075 cod = devclass2uint(p_ssp_key_notif->dev_class);
1078 LOG_DEBUG(LOG_TAG, "%s cod is 0, set as unclassified", __func__);
1079 cod = COD_UNCLASSIFIED;
1082 HAL_CBACK(bt_hal_cbacks, ssp_request_cb, &bd_addr, &bd_name,
1083 cod, BT_SSP_VARIANT_PASSKEY_NOTIFICATION,
1084 p_ssp_key_notif->passkey);
1086 /*******************************************************************************
1088 ** Function btif_dm_auth_cmpl_evt
1090 ** Description Executes authentication complete event in btif context
1094 *******************************************************************************/
1095 static void btif_dm_auth_cmpl_evt (tBTA_DM_AUTH_CMPL *p_auth_cmpl)
1097 /* Save link key, if not temporary */
1098 bt_bdaddr_t bd_addr;
1099 bt_status_t status = BT_STATUS_FAIL;
1100 bt_bond_state_t state = BT_BOND_STATE_NONE;
1101 BOOLEAN skip_sdp = FALSE;
1103 BTIF_TRACE_DEBUG("%s: bond state=%d", __func__, pairing_cb.state);
1105 bdcpy(bd_addr.address, p_auth_cmpl->bd_addr);
1106 if ( (p_auth_cmpl->success == TRUE) && (p_auth_cmpl->key_present) )
1108 if ((p_auth_cmpl->key_type < HCI_LKEY_TYPE_DEBUG_COMB) ||
1109 (p_auth_cmpl->key_type == HCI_LKEY_TYPE_AUTH_COMB) ||
1110 (p_auth_cmpl->key_type == HCI_LKEY_TYPE_CHANGED_COMB) ||
1111 (p_auth_cmpl->key_type == HCI_LKEY_TYPE_AUTH_COMB_P_256) ||
1112 pairing_cb.bond_type == BOND_TYPE_PERSISTENT)
1115 BTIF_TRACE_DEBUG("%s: Storing link key. key_type=0x%x, bond_type=%d",
1116 __FUNCTION__, p_auth_cmpl->key_type, pairing_cb.bond_type);
1117 ret = btif_storage_add_bonded_device(&bd_addr,
1118 p_auth_cmpl->key, p_auth_cmpl->key_type,
1119 pairing_cb.pin_code_len);
1120 ASSERTC(ret == BT_STATUS_SUCCESS, "storing link key failed", ret);
1124 BTIF_TRACE_DEBUG("%s: Temporary key. Not storing. key_type=0x%x, bond_type=%d",
1125 __FUNCTION__, p_auth_cmpl->key_type, pairing_cb.bond_type);
1126 if(pairing_cb.bond_type == BOND_TYPE_TEMPORARY)
1128 BTIF_TRACE_DEBUG("%s: sending BT_BOND_STATE_NONE for Temp pairing",
1130 btif_storage_remove_bonded_device(&bd_addr);
1131 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_NONE);
1137 // We could have received a new link key without going through the pairing flow.
1138 // If so, we don't want to perform SDP or any other operations on the authenticated
1140 if (bdcmp(p_auth_cmpl->bd_addr, pairing_cb.bd_addr) != 0) {
1142 bt_bdaddr_t bt_bdaddr;
1144 memcpy(bt_bdaddr.address, p_auth_cmpl->bd_addr,
1145 sizeof(bt_bdaddr.address));
1146 bdaddr_to_string(&bt_bdaddr, address, sizeof(address));
1147 LOG_INFO(LOG_TAG, "%s skipping SDP since we did not initiate pairing to %s.", __func__, address);
1151 // Skip SDP for certain HID Devices
1152 if (p_auth_cmpl->success)
1154 #if BLE_INCLUDED == TRUE
1155 btif_storage_set_remote_addr_type(&bd_addr, p_auth_cmpl->addr_type);
1157 btif_update_remote_properties(p_auth_cmpl->bd_addr,
1158 p_auth_cmpl->bd_name, NULL, p_auth_cmpl->dev_type);
1159 pairing_cb.timeout_retries = 0;
1160 status = BT_STATUS_SUCCESS;
1161 state = BT_BOND_STATE_BONDED;
1162 bdcpy(bd_addr.address, p_auth_cmpl->bd_addr);
1164 if (check_sdp_bl(&bd_addr) && check_cod_hid(&bd_addr))
1166 LOG_WARN(LOG_TAG, "%s:skip SDP", __FUNCTION__);
1169 if(!pairing_cb.is_local_initiated && skip_sdp)
1171 bond_state_changed(status, &bd_addr, state);
1173 LOG_WARN(LOG_TAG, "%s: Incoming HID Connection",__FUNCTION__);
1175 bt_bdaddr_t bd_addr;
1177 char uuid_str[128] = UUID_HUMAN_INTERFACE_DEVICE;
1179 string_to_uuid(uuid_str, &uuid);
1181 prop.type = BT_PROPERTY_UUIDS;
1183 prop.len = MAX_UUID_SIZE;
1185 /* Send the event to the BTIF */
1186 HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,
1187 BT_STATUS_SUCCESS, &bd_addr, 1, &prop);
1191 /* Trigger SDP on the device */
1192 pairing_cb.sdp_attempts = 1;;
1194 #if BLE_INCLUDED == TRUE
1195 /* If bonded due to cross-key, save the static address too*/
1196 if(pairing_cb.state == BT_BOND_STATE_BONDING &&
1197 (bdcmp(p_auth_cmpl->bd_addr, pairing_cb.bd_addr) != 0))
1199 BTIF_TRACE_DEBUG("%s: bonding initiated due to cross key, adding static address",
1201 bdcpy(pairing_cb.static_bdaddr.address, p_auth_cmpl->bd_addr);
1205 // Ensure inquiry is stopped before attempting service discovery
1206 btif_dm_cancel_discovery();
1208 btif_dm_get_remote_services(&bd_addr);
1210 // Do not call bond_state_changed_cb yet. Wait until remote service discovery is complete
1214 // Map the HCI fail reason to bt status
1215 switch(p_auth_cmpl->fail_reason)
1217 case HCI_ERR_PAGE_TIMEOUT:
1218 if (interop_match_addr(INTEROP_AUTO_RETRY_PAIRING, &bd_addr)
1219 && pairing_cb.timeout_retries)
1221 BTIF_TRACE_WARNING("%s() - Pairing timeout; retrying (%d) ...", __FUNCTION__, pairing_cb.timeout_retries);
1222 --pairing_cb.timeout_retries;
1223 btif_dm_cb_create_bond (&bd_addr, BTA_TRANSPORT_UNKNOWN);
1227 case HCI_ERR_CONNECTION_TOUT:
1228 status = BT_STATUS_RMT_DEV_DOWN;
1231 case HCI_ERR_PAIRING_NOT_ALLOWED:
1232 status = BT_STATUS_AUTH_REJECTED;
1235 case HCI_ERR_LMP_RESPONSE_TIMEOUT:
1236 status = BT_STATUS_AUTH_FAILURE;
1239 /* map the auth failure codes, so we can retry pairing if necessary */
1240 case HCI_ERR_AUTH_FAILURE:
1241 case HCI_ERR_KEY_MISSING:
1242 btif_storage_remove_bonded_device(&bd_addr);
1243 case HCI_ERR_HOST_REJECT_SECURITY:
1244 case HCI_ERR_ENCRY_MODE_NOT_ACCEPTABLE:
1245 case HCI_ERR_UNIT_KEY_USED:
1246 case HCI_ERR_PAIRING_WITH_UNIT_KEY_NOT_SUPPORTED:
1247 case HCI_ERR_INSUFFCIENT_SECURITY:
1248 case HCI_ERR_PEER_USER:
1249 case HCI_ERR_UNSPECIFIED:
1250 BTIF_TRACE_DEBUG(" %s() Authentication fail reason %d",
1251 __FUNCTION__, p_auth_cmpl->fail_reason);
1252 if (pairing_cb.autopair_attempts == 1)
1254 /* Create the Bond once again */
1255 BTIF_TRACE_WARNING("%s() auto pair failed. Reinitiate Bond", __FUNCTION__);
1256 btif_dm_cb_create_bond (&bd_addr, BTA_TRANSPORT_UNKNOWN);
1261 /* if autopair attempts are more than 1, or not attempted */
1262 status = BT_STATUS_AUTH_FAILURE;
1267 status = BT_STATUS_FAIL;
1269 /* Special Handling for HID Devices */
1270 if (check_cod(&bd_addr, COD_HID_POINTING)) {
1271 /* Remove Device as bonded in nvram as authentication failed */
1272 BTIF_TRACE_DEBUG("%s(): removing hid pointing device from nvram", __FUNCTION__);
1273 btif_storage_remove_bonded_device(&bd_addr);
1275 bond_state_changed(status, &bd_addr, state);
1279 /******************************************************************************
1281 ** Function btif_dm_search_devices_evt
1283 ** Description Executes search devices callback events in btif context
1287 ******************************************************************************/
1288 static void btif_dm_search_devices_evt (UINT16 event, char *p_param)
1290 tBTA_DM_SEARCH *p_search_data;
1291 BTIF_TRACE_EVENT("%s event=%s", __FUNCTION__, dump_dm_search_event(event));
1295 case BTA_DM_DISC_RES_EVT:
1297 p_search_data = (tBTA_DM_SEARCH *)p_param;
1298 /* Remote name update */
1299 if (strlen((const char *) p_search_data->disc_res.bd_name))
1301 bt_property_t properties[1];
1305 properties[0].type = BT_PROPERTY_BDNAME;
1306 properties[0].val = p_search_data->disc_res.bd_name;
1307 properties[0].len = strlen((char *)p_search_data->disc_res.bd_name);
1308 bdcpy(bdaddr.address, p_search_data->disc_res.bd_addr);
1310 status = btif_storage_set_remote_device_property(&bdaddr, &properties[0]);
1311 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote device property", status);
1312 HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,
1313 status, &bdaddr, 1, properties);
1315 /* TODO: Services? */
1319 case BTA_DM_INQ_RES_EVT:
1321 /* inquiry result */
1325 UINT8 remote_name_len;
1326 tBTA_SERVICE_MASK services = 0;
1329 p_search_data = (tBTA_DM_SEARCH *)p_param;
1330 bdcpy(bdaddr.address, p_search_data->inq_res.bd_addr);
1332 BTIF_TRACE_DEBUG("%s() %s device_type = 0x%x\n", __FUNCTION__, bdaddr_to_string(&bdaddr, bdstr, sizeof(bdstr)),
1333 #if (BLE_INCLUDED == TRUE)
1334 p_search_data->inq_res.device_type);
1336 BT_DEVICE_TYPE_BREDR);
1340 cod = devclass2uint (p_search_data->inq_res.dev_class);
1343 LOG_DEBUG(LOG_TAG, "%s cod is 0, set as unclassified", __func__);
1344 cod = COD_UNCLASSIFIED;
1347 if (!check_eir_remote_name(p_search_data, bdname.name, &remote_name_len))
1348 check_cached_remote_name(p_search_data, bdname.name, &remote_name_len);
1350 /* Check EIR for remote name and services */
1351 if (p_search_data->inq_res.p_eir)
1353 BTA_GetEirService(p_search_data->inq_res.p_eir, &services);
1354 BTIF_TRACE_DEBUG("%s()EIR BTA services = %08X", __FUNCTION__, (UINT32)services);
1355 /* TODO: Get the service list and check to see which uuids we got and send it back to the client. */
1359 bt_property_t properties[5];
1360 bt_device_type_t dev_type;
1361 uint32_t num_properties = 0;
1365 memset(properties, 0, sizeof(properties));
1367 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
1368 BT_PROPERTY_BDADDR, sizeof(bdaddr), &bdaddr);
1371 /* Don't send BDNAME if it is empty */
1374 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
1376 strlen((char *)bdname.name), &bdname);
1381 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
1382 BT_PROPERTY_CLASS_OF_DEVICE, sizeof(cod), &cod);
1385 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1386 /* FixMe: Assumption is that bluetooth.h and BTE enums match */
1388 /* Verify if the device is dual mode in NVRAM */
1389 int stored_device_type = 0;
1390 if (btif_get_device_type(bdaddr.address, &stored_device_type) &&
1391 ((stored_device_type != BT_DEVICE_TYPE_BREDR &&
1392 p_search_data->inq_res.device_type == BT_DEVICE_TYPE_BREDR) ||
1393 (stored_device_type != BT_DEVICE_TYPE_BLE &&
1394 p_search_data->inq_res.device_type == BT_DEVICE_TYPE_BLE))) {
1395 dev_type = BT_DEVICE_TYPE_DUMO;
1397 dev_type = p_search_data->inq_res.device_type;
1400 if (p_search_data->inq_res.device_type == BT_DEVICE_TYPE_BLE)
1401 addr_type = p_search_data->inq_res.ble_addr_type;
1403 dev_type = BT_DEVICE_TYPE_BREDR;
1405 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
1406 BT_PROPERTY_TYPE_OF_DEVICE, sizeof(dev_type), &dev_type);
1409 BTIF_STORAGE_FILL_PROPERTY(&properties[num_properties],
1410 BT_PROPERTY_REMOTE_RSSI, sizeof(int8_t),
1411 &(p_search_data->inq_res.rssi));
1414 status = btif_storage_add_remote_device(&bdaddr, num_properties, properties);
1415 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote device (inquiry)", status);
1416 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1417 status = btif_storage_set_remote_addr_type(&bdaddr, addr_type);
1418 ASSERTC(status == BT_STATUS_SUCCESS, "failed to save remote addr type (inquiry)", status);
1420 /* Callback to notify upper layer of device */
1421 HAL_CBACK(bt_hal_cbacks, device_found_cb,
1422 num_properties, properties);
1427 case BTA_DM_INQ_CMPL_EVT:
1429 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1430 tBTA_DM_BLE_PF_FILT_PARAMS adv_filt_param;
1431 memset(&adv_filt_param, 0, sizeof(tBTA_DM_BLE_PF_FILT_PARAMS));
1432 BTA_DmBleScanFilterSetup(BTA_DM_BLE_SCAN_COND_DELETE, 0, &adv_filt_param, NULL,
1433 bte_scan_filt_param_cfg_evt, 0);
1437 case BTA_DM_DISC_CMPL_EVT:
1439 HAL_CBACK(bt_hal_cbacks, discovery_state_changed_cb, BT_DISCOVERY_STOPPED);
1442 case BTA_DM_SEARCH_CANCEL_CMPL_EVT:
1444 /* if inquiry is not in progress and we get a cancel event, then
1445 * it means we are done with inquiry, but remote_name fetches are in
1448 * if inquiry is in progress, then we don't want to act on this cancel_cmpl_evt
1449 * but instead wait for the cancel_cmpl_evt via the Busy Level
1452 if (btif_dm_inquiry_in_progress == FALSE)
1454 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1455 tBTA_DM_BLE_PF_FILT_PARAMS adv_filt_param;
1456 memset(&adv_filt_param, 0, sizeof(tBTA_DM_BLE_PF_FILT_PARAMS));
1457 BTA_DmBleScanFilterSetup(BTA_DM_BLE_SCAN_COND_DELETE, 0, &adv_filt_param, NULL,
1458 bte_scan_filt_param_cfg_evt, 0);
1460 HAL_CBACK(bt_hal_cbacks, discovery_state_changed_cb, BT_DISCOVERY_STOPPED);
1467 /*******************************************************************************
1469 ** Function btif_dm_search_services_evt
1471 ** Description Executes search services event in btif context
1475 *******************************************************************************/
1476 static void btif_dm_search_services_evt(UINT16 event, char *p_param)
1478 tBTA_DM_SEARCH *p_data = (tBTA_DM_SEARCH*)p_param;
1480 BTIF_TRACE_EVENT("%s: event = %d", __FUNCTION__, event);
1483 case BTA_DM_DISC_RES_EVT:
1487 bt_bdaddr_t bd_addr;
1490 bdcpy(bd_addr.address, p_data->disc_res.bd_addr);
1492 BTIF_TRACE_DEBUG("%s:(result=0x%x, services 0x%x)", __FUNCTION__,
1493 p_data->disc_res.result, p_data->disc_res.services);
1494 if ((p_data->disc_res.result != BTA_SUCCESS) &&
1495 (pairing_cb.state == BT_BOND_STATE_BONDING ) &&
1496 (pairing_cb.sdp_attempts < BTIF_DM_MAX_SDP_ATTEMPTS_AFTER_PAIRING))
1498 BTIF_TRACE_WARNING("%s:SDP failed after bonding re-attempting", __FUNCTION__);
1499 pairing_cb.sdp_attempts++;
1500 btif_dm_get_remote_services(&bd_addr);
1503 prop.type = BT_PROPERTY_UUIDS;
1505 if ((p_data->disc_res.result == BTA_SUCCESS) && (p_data->disc_res.num_uuids > 0))
1507 prop.val = p_data->disc_res.p_uuid_list;
1508 prop.len = p_data->disc_res.num_uuids * MAX_UUID_SIZE;
1509 for (i=0; i < p_data->disc_res.num_uuids; i++)
1512 uuid_to_string_legacy((bt_uuid_t*)(p_data->disc_res.p_uuid_list + (i*MAX_UUID_SIZE)), temp);
1513 LOG_INFO(LOG_TAG, "%s index:%d uuid:%s", __func__, i, temp);
1517 /* onUuidChanged requires getBondedDevices to be populated.
1518 ** bond_state_changed needs to be sent prior to remote_device_property
1520 if ((pairing_cb.state == BT_BOND_STATE_BONDING) &&
1521 ((bdcmp(p_data->disc_res.bd_addr, pairing_cb.bd_addr) == 0) ||
1522 (bdcmp(p_data->disc_res.bd_addr, pairing_cb.static_bdaddr.address) == 0)) &&
1523 pairing_cb.sdp_attempts > 0)
1525 BTIF_TRACE_DEBUG("%s Remote Service SDP done. Call bond_state_changed_cb BONDED",
1527 pairing_cb.sdp_attempts = 0;
1529 // If bonding occured due to cross-key pairing, send bonding callback
1530 // for static address now
1531 if (bdcmp(p_data->disc_res.bd_addr, pairing_cb.static_bdaddr.address) == 0)
1532 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
1534 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDED);
1537 if (p_data->disc_res.num_uuids != 0)
1539 /* Also write this to the NVRAM */
1540 ret = btif_storage_set_remote_device_property(&bd_addr, &prop);
1541 ASSERTC(ret == BT_STATUS_SUCCESS, "storing remote services failed", ret);
1542 /* Send the event to the BTIF */
1543 HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,
1544 BT_STATUS_SUCCESS, &bd_addr, 1, &prop);
1549 case BTA_DM_DISC_CMPL_EVT:
1553 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1554 case BTA_DM_DISC_BLE_RES_EVT:
1555 BTIF_TRACE_DEBUG("%s:, services 0x%x)", __FUNCTION__,
1556 p_data->disc_ble_res.service.uu.uuid16);
1560 if (p_data->disc_ble_res.service.uu.uuid16 == UUID_SERVCLASS_LE_HID)
1562 BTIF_TRACE_DEBUG("%s: Found HOGP UUID",__FUNCTION__);
1564 bt_bdaddr_t bd_addr;
1568 bta_gatt_convert_uuid16_to_uuid128(uuid.uu,p_data->disc_ble_res.service.uu.uuid16);
1572 unsigned char c = uuid.uu[j];
1573 uuid.uu[j] = uuid.uu[i];
1579 uuid_to_string_legacy(&uuid, temp);
1580 LOG_INFO(LOG_TAG, "%s uuid:%s", __func__, temp);
1582 bdcpy(bd_addr.address, p_data->disc_ble_res.bd_addr);
1583 prop.type = BT_PROPERTY_UUIDS;
1585 prop.len = MAX_UUID_SIZE;
1587 /* Also write this to the NVRAM */
1588 ret = btif_storage_set_remote_device_property(&bd_addr, &prop);
1589 ASSERTC(ret == BT_STATUS_SUCCESS, "storing remote services failed", ret);
1591 /* Send the event to the BTIF */
1592 HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,
1593 BT_STATUS_SUCCESS, &bd_addr, 1, &prop);
1597 #endif /* BLE_INCLUDED */
1601 ASSERTC(0, "unhandled search services event", event);
1607 /*******************************************************************************
1609 ** Function btif_dm_remote_service_record_evt
1611 ** Description Executes search service record event in btif context
1615 *******************************************************************************/
1616 static void btif_dm_remote_service_record_evt(UINT16 event, char *p_param)
1618 tBTA_DM_SEARCH *p_data = (tBTA_DM_SEARCH*)p_param;
1620 BTIF_TRACE_EVENT("%s: event = %d", __FUNCTION__, event);
1623 case BTA_DM_DISC_RES_EVT:
1625 bt_service_record_t rec;
1627 bt_bdaddr_t bd_addr;
1629 memset(&rec, 0, sizeof(bt_service_record_t));
1630 bdcpy(bd_addr.address, p_data->disc_res.bd_addr);
1632 BTIF_TRACE_DEBUG("%s:(result=0x%x, services 0x%x)", __FUNCTION__,
1633 p_data->disc_res.result, p_data->disc_res.services);
1634 prop.type = BT_PROPERTY_SERVICE_RECORD;
1635 prop.val = (void*)&rec;
1636 prop.len = sizeof(rec);
1638 /* disc_res.result is overloaded with SCN. Cannot check result */
1639 p_data->disc_res.services &= ~BTA_USER_SERVICE_MASK;
1640 /* TODO: Get the UUID as well */
1641 rec.channel = p_data->disc_res.result - 3;
1642 /* TODO: Need to get the service name using p_raw_data */
1645 HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,
1646 BT_STATUS_SUCCESS, &bd_addr, 1, &prop);
1652 ASSERTC(0, "unhandled remote service record event", event);
1658 /*******************************************************************************
1660 ** Function btif_dm_upstreams_cback
1662 ** Description Executes UPSTREAMS events in btif context
1666 *******************************************************************************/
1667 static void btif_dm_upstreams_evt(UINT16 event, char* p_param)
1669 tBTA_DM_SEC *p_data = (tBTA_DM_SEC*)p_param;
1670 tBTA_SERVICE_MASK service_mask;
1672 bt_bdaddr_t bd_addr;
1674 BTIF_TRACE_EVENT("btif_dm_upstreams_cback ev: %s", dump_dm_event(event));
1678 case BTA_DM_ENABLE_EVT:
1683 prop.type = BT_PROPERTY_BDNAME;
1684 prop.len = BD_NAME_LEN;
1685 prop.val = (void*)bdname;
1687 status = btif_storage_get_adapter_property(&prop);
1688 if (status == BT_STATUS_SUCCESS)
1690 /* A name exists in the storage. Make this the device name */
1691 BTA_DmSetDeviceName((char*)prop.val);
1695 /* Storage does not have a name yet.
1696 * Use the default name and write it to the chip
1698 BTA_DmSetDeviceName(btif_get_default_local_name());
1701 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1702 /* Enable local privacy */
1703 BTA_DmBleConfigLocalPrivacy(BLE_LOCAL_PRIVACY_ENABLED);
1706 /* for each of the enabled services in the mask, trigger the profile
1708 service_mask = btif_get_enabled_services_mask();
1709 for (i=0; i <= BTA_MAX_SERVICE_ID; i++)
1712 (tBTA_SERVICE_MASK)(BTA_SERVICE_ID_TO_SERVICE_MASK(i)))
1714 btif_in_execute_service_request(i, TRUE);
1717 /* clear control blocks */
1718 memset(&pairing_cb, 0, sizeof(btif_dm_pairing_cb_t));
1719 pairing_cb.bond_type = BOND_TYPE_PERSISTENT;
1721 /* This function will also trigger the adapter_properties_cb
1722 ** and bonded_devices_info_cb
1724 btif_storage_load_bonded_devices();
1726 btif_enable_bluetooth_evt(p_data->enable.status);
1730 case BTA_DM_DISABLE_EVT:
1731 /* for each of the enabled services in the mask, trigger the profile
1733 service_mask = btif_get_enabled_services_mask();
1734 for (i=0; i <= BTA_MAX_SERVICE_ID; i++)
1737 (tBTA_SERVICE_MASK)(BTA_SERVICE_ID_TO_SERVICE_MASK(i)))
1739 btif_in_execute_service_request(i, FALSE);
1742 btif_disable_bluetooth_evt();
1745 case BTA_DM_PIN_REQ_EVT:
1746 btif_dm_pin_req_evt(&p_data->pin_req);
1749 case BTA_DM_AUTH_CMPL_EVT:
1750 btif_dm_auth_cmpl_evt(&p_data->auth_cmpl);
1753 case BTA_DM_BOND_CANCEL_CMPL_EVT:
1754 if (pairing_cb.state == BT_BOND_STATE_BONDING)
1756 bdcpy(bd_addr.address, pairing_cb.bd_addr);
1757 btm_set_bond_type_dev(pairing_cb.bd_addr, BOND_TYPE_UNKNOWN);
1758 bond_state_changed(p_data->bond_cancel_cmpl.result, &bd_addr, BT_BOND_STATE_NONE);
1762 case BTA_DM_SP_CFM_REQ_EVT:
1763 btif_dm_ssp_cfm_req_evt(&p_data->cfm_req);
1765 case BTA_DM_SP_KEY_NOTIF_EVT:
1766 btif_dm_ssp_key_notif_evt(&p_data->key_notif);
1769 case BTA_DM_DEV_UNPAIRED_EVT:
1770 bdcpy(bd_addr.address, p_data->link_down.bd_addr);
1771 btm_set_bond_type_dev(p_data->link_down.bd_addr, BOND_TYPE_UNKNOWN);
1773 /*special handling for HID devices */
1774 #if (defined(BTA_HH_INCLUDED) && (BTA_HH_INCLUDED == TRUE))
1775 btif_hh_remove_device(bd_addr);
1777 btif_storage_remove_bonded_device(&bd_addr);
1778 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_NONE);
1781 case BTA_DM_BUSY_LEVEL_EVT:
1784 if (p_data->busy_level.level_flags & BTM_BL_INQUIRY_PAGING_MASK)
1786 if (p_data->busy_level.level_flags == BTM_BL_INQUIRY_STARTED)
1788 HAL_CBACK(bt_hal_cbacks, discovery_state_changed_cb,
1789 BT_DISCOVERY_STARTED);
1790 btif_dm_inquiry_in_progress = TRUE;
1792 else if (p_data->busy_level.level_flags == BTM_BL_INQUIRY_CANCELLED)
1794 HAL_CBACK(bt_hal_cbacks, discovery_state_changed_cb,
1795 BT_DISCOVERY_STOPPED);
1796 btif_dm_inquiry_in_progress = FALSE;
1798 else if (p_data->busy_level.level_flags == BTM_BL_INQUIRY_COMPLETE)
1800 btif_dm_inquiry_in_progress = FALSE;
1805 case BTA_DM_LINK_UP_EVT:
1806 bdcpy(bd_addr.address, p_data->link_up.bd_addr);
1807 BTIF_TRACE_DEBUG("BTA_DM_LINK_UP_EVT. Sending BT_ACL_STATE_CONNECTED");
1809 btif_update_remote_version_property(&bd_addr);
1811 HAL_CBACK(bt_hal_cbacks, acl_state_changed_cb, BT_STATUS_SUCCESS,
1812 &bd_addr, BT_ACL_STATE_CONNECTED);
1815 case BTA_DM_LINK_DOWN_EVT:
1816 bdcpy(bd_addr.address, p_data->link_down.bd_addr);
1817 btm_set_bond_type_dev(p_data->link_down.bd_addr, BOND_TYPE_UNKNOWN);
1818 BTIF_TRACE_DEBUG("BTA_DM_LINK_DOWN_EVT. Sending BT_ACL_STATE_DISCONNECTED");
1819 HAL_CBACK(bt_hal_cbacks, acl_state_changed_cb, BT_STATUS_SUCCESS,
1820 &bd_addr, BT_ACL_STATE_DISCONNECTED);
1823 case BTA_DM_HW_ERROR_EVT:
1824 BTIF_TRACE_ERROR("Received H/W Error. ");
1825 /* Flush storage data */
1826 btif_config_flush();
1827 usleep(100000); /* 100milliseconds */
1828 /* Killing the process to force a restart as part of fault tolerance */
1829 kill(getpid(), SIGKILL);
1832 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
1833 case BTA_DM_BLE_KEY_EVT:
1834 BTIF_TRACE_DEBUG("BTA_DM_BLE_KEY_EVT key_type=0x%02x ", p_data->ble_key.key_type);
1836 /* If this pairing is by-product of local initiated GATT client Read or Write,
1837 BTA would not have sent BTA_DM_BLE_SEC_REQ_EVT event and Bond state would not
1838 have setup properly. Setup pairing_cb and notify App about Bonding state now*/
1839 if (pairing_cb.state != BT_BOND_STATE_BONDING)
1841 BTIF_TRACE_DEBUG("Bond state not sent to App so far.Notify the app now");
1842 bond_state_changed(BT_STATUS_SUCCESS, (bt_bdaddr_t*)p_data->ble_key.bd_addr,
1843 BT_BOND_STATE_BONDING);
1845 else if (memcmp (pairing_cb.bd_addr, p_data->ble_key.bd_addr, BD_ADDR_LEN)!=0)
1847 BTIF_TRACE_ERROR("BD mismatch discard BLE key_type=%d ",p_data->ble_key.key_type);
1851 switch (p_data->ble_key.key_type)
1853 case BTA_LE_KEY_PENC:
1854 BTIF_TRACE_DEBUG("Rcv BTA_LE_KEY_PENC");
1855 pairing_cb.ble.is_penc_key_rcvd = TRUE;
1856 pairing_cb.ble.penc_key = p_data->ble_key.p_key_value->penc_key;
1859 case BTA_LE_KEY_PID:
1860 BTIF_TRACE_DEBUG("Rcv BTA_LE_KEY_PID");
1861 pairing_cb.ble.is_pid_key_rcvd = TRUE;
1862 pairing_cb.ble.pid_key = p_data->ble_key.p_key_value->pid_key;
1865 case BTA_LE_KEY_PCSRK:
1866 BTIF_TRACE_DEBUG("Rcv BTA_LE_KEY_PCSRK");
1867 pairing_cb.ble.is_pcsrk_key_rcvd = TRUE;
1868 pairing_cb.ble.pcsrk_key = p_data->ble_key.p_key_value->pcsrk_key;
1871 case BTA_LE_KEY_LENC:
1872 BTIF_TRACE_DEBUG("Rcv BTA_LE_KEY_LENC");
1873 pairing_cb.ble.is_lenc_key_rcvd = TRUE;
1874 pairing_cb.ble.lenc_key = p_data->ble_key.p_key_value->lenc_key;
1877 case BTA_LE_KEY_LCSRK:
1878 BTIF_TRACE_DEBUG("Rcv BTA_LE_KEY_LCSRK");
1879 pairing_cb.ble.is_lcsrk_key_rcvd = TRUE;
1880 pairing_cb.ble.lcsrk_key = p_data->ble_key.p_key_value->lcsrk_key;
1883 case BTA_LE_KEY_LID:
1884 BTIF_TRACE_DEBUG("Rcv BTA_LE_KEY_LID");
1885 pairing_cb.ble.is_lidk_key_rcvd = TRUE;
1889 BTIF_TRACE_ERROR("unknown BLE key type (0x%02x)", p_data->ble_key.key_type);
1893 case BTA_DM_BLE_SEC_REQ_EVT:
1894 BTIF_TRACE_DEBUG("BTA_DM_BLE_SEC_REQ_EVT. ");
1895 btif_dm_ble_sec_req_evt(&p_data->ble_req);
1897 case BTA_DM_BLE_PASSKEY_NOTIF_EVT:
1898 BTIF_TRACE_DEBUG("BTA_DM_BLE_PASSKEY_NOTIF_EVT. ");
1899 btif_dm_ble_key_notif_evt(&p_data->key_notif);
1901 case BTA_DM_BLE_PASSKEY_REQ_EVT:
1902 BTIF_TRACE_DEBUG("BTA_DM_BLE_PASSKEY_REQ_EVT. ");
1903 btif_dm_ble_passkey_req_evt(&p_data->pin_req);
1905 case BTA_DM_BLE_NC_REQ_EVT:
1906 BTIF_TRACE_DEBUG("BTA_DM_BLE_PASSKEY_REQ_EVT. ");
1907 btif_dm_ble_key_nc_req_evt(&p_data->key_notif);
1909 case BTA_DM_BLE_OOB_REQ_EVT:
1910 BTIF_TRACE_DEBUG("BTA_DM_BLE_OOB_REQ_EVT. ");
1911 btif_dm_ble_oob_req_evt(&p_data->rmt_oob);
1913 case BTA_DM_BLE_LOCAL_IR_EVT:
1914 BTIF_TRACE_DEBUG("BTA_DM_BLE_LOCAL_IR_EVT. ");
1915 ble_local_key_cb.is_id_keys_rcvd = TRUE;
1916 memcpy(&ble_local_key_cb.id_keys.irk[0],
1917 &p_data->ble_id_keys.irk[0], sizeof(BT_OCTET16));
1918 memcpy(&ble_local_key_cb.id_keys.ir[0],
1919 &p_data->ble_id_keys.ir[0], sizeof(BT_OCTET16));
1920 memcpy(&ble_local_key_cb.id_keys.dhk[0],
1921 &p_data->ble_id_keys.dhk[0], sizeof(BT_OCTET16));
1922 btif_storage_add_ble_local_key( (char *)&ble_local_key_cb.id_keys.irk[0],
1923 BTIF_DM_LE_LOCAL_KEY_IRK,
1925 btif_storage_add_ble_local_key( (char *)&ble_local_key_cb.id_keys.ir[0],
1926 BTIF_DM_LE_LOCAL_KEY_IR,
1928 btif_storage_add_ble_local_key( (char *)&ble_local_key_cb.id_keys.dhk[0],
1929 BTIF_DM_LE_LOCAL_KEY_DHK,
1932 case BTA_DM_BLE_LOCAL_ER_EVT:
1933 BTIF_TRACE_DEBUG("BTA_DM_BLE_LOCAL_ER_EVT. ");
1934 ble_local_key_cb.is_er_rcvd = TRUE;
1935 memcpy(&ble_local_key_cb.er[0], &p_data->ble_er[0], sizeof(BT_OCTET16));
1936 btif_storage_add_ble_local_key( (char *)&ble_local_key_cb.er[0],
1937 BTIF_DM_LE_LOCAL_KEY_ER,
1941 case BTA_DM_BLE_AUTH_CMPL_EVT:
1942 BTIF_TRACE_DEBUG("BTA_DM_BLE_AUTH_CMPL_EVT. ");
1943 btif_dm_ble_auth_cmpl_evt(&p_data->auth_cmpl);
1946 case BTA_DM_LE_FEATURES_READ:
1948 tBTM_BLE_VSC_CB cmn_vsc_cb;
1949 bt_local_le_features_t local_le_features;
1952 prop.type = BT_PROPERTY_LOCAL_LE_FEATURES;
1953 prop.val = (void*)buf;
1954 prop.len = sizeof(buf);
1956 /* LE features are not stored in storage. Should be retrived from stack */
1957 BTM_BleGetVendorCapabilities(&cmn_vsc_cb);
1958 local_le_features.local_privacy_enabled = BTM_BleLocalPrivacyEnabled();
1960 prop.len = sizeof (bt_local_le_features_t);
1961 if (cmn_vsc_cb.filter_support == 1)
1962 local_le_features.max_adv_filter_supported = cmn_vsc_cb.max_filter;
1964 local_le_features.max_adv_filter_supported = 0;
1965 local_le_features.max_adv_instance = cmn_vsc_cb.adv_inst_max;
1966 local_le_features.max_irk_list_size = cmn_vsc_cb.max_irk_list_sz;
1967 local_le_features.rpa_offload_supported = cmn_vsc_cb.rpa_offloading;
1968 local_le_features.activity_energy_info_supported = cmn_vsc_cb.energy_support;
1969 local_le_features.scan_result_storage_size = cmn_vsc_cb.tot_scan_results_strg;
1970 local_le_features.version_supported = cmn_vsc_cb.version_supported;
1971 local_le_features.total_trackable_advertisers =
1972 cmn_vsc_cb.total_trackable_advertisers;
1974 local_le_features.extended_scan_support = cmn_vsc_cb.extended_scan_support > 0;
1975 local_le_features.debug_logging_supported = cmn_vsc_cb.debug_logging_supported > 0;
1977 memcpy(prop.val, &local_le_features, prop.len);
1978 HAL_CBACK(bt_hal_cbacks, adapter_properties_cb, BT_STATUS_SUCCESS, 1, &prop);
1982 case BTA_DM_ENER_INFO_READ:
1984 btif_activity_energy_info_cb_t *p_ener_data = (btif_activity_energy_info_cb_t*) p_param;
1985 bt_activity_energy_info energy_info;
1986 energy_info.status = p_ener_data->status;
1987 energy_info.ctrl_state = p_ener_data->ctrl_state;
1988 energy_info.rx_time = p_ener_data->rx_time;
1989 energy_info.tx_time = p_ener_data->tx_time;
1990 energy_info.idle_time = p_ener_data->idle_time;
1991 energy_info.energy_used = p_ener_data->energy_used;
1993 bt_uid_traffic_t* data = uid_set_read_and_clear(uid_set);
1994 HAL_CBACK(bt_hal_cbacks, energy_info_cb, &energy_info, data);
2000 case BTA_DM_AUTHORIZE_EVT:
2001 case BTA_DM_SIG_STRENGTH_EVT:
2002 case BTA_DM_SP_RMT_OOB_EVT:
2003 case BTA_DM_SP_KEYPRESS_EVT:
2004 case BTA_DM_ROLE_CHG_EVT:
2007 BTIF_TRACE_WARNING( "btif_dm_cback : unhandled event (%d)", event );
2011 btif_dm_data_free(event, p_data);
2014 /*******************************************************************************
2016 ** Function btif_dm_generic_evt
2018 ** Description Executes non-BTA upstream events in BTIF context
2022 *******************************************************************************/
2023 static void btif_dm_generic_evt(UINT16 event, char* p_param)
2025 BTIF_TRACE_EVENT("%s: event=%d", __FUNCTION__, event);
2028 case BTIF_DM_CB_DISCOVERY_STARTED:
2030 HAL_CBACK(bt_hal_cbacks, discovery_state_changed_cb, BT_DISCOVERY_STARTED);
2034 case BTIF_DM_CB_CREATE_BOND:
2036 pairing_cb.timeout_retries = NUM_TIMEOUT_RETRIES;
2037 btif_dm_create_bond_cb_t *create_bond_cb = (btif_dm_create_bond_cb_t*)p_param;
2038 btif_dm_cb_create_bond(&create_bond_cb->bdaddr, create_bond_cb->transport);
2042 case BTIF_DM_CB_REMOVE_BOND:
2044 btif_dm_cb_remove_bond((bt_bdaddr_t *)p_param);
2048 case BTIF_DM_CB_HID_REMOTE_NAME:
2050 btif_dm_cb_hid_remote_name((tBTM_REMOTE_DEV_NAME *)p_param);
2054 case BTIF_DM_CB_BOND_STATE_BONDING:
2056 bond_state_changed(BT_STATUS_SUCCESS, (bt_bdaddr_t *)p_param, BT_BOND_STATE_BONDING);
2059 case BTIF_DM_CB_LE_TX_TEST:
2060 case BTIF_DM_CB_LE_RX_TEST:
2063 STREAM_TO_UINT8(status, p_param);
2064 HAL_CBACK(bt_hal_cbacks, le_test_mode_cb,
2065 (status == 0) ? BT_STATUS_SUCCESS : BT_STATUS_FAIL, 0);
2068 case BTIF_DM_CB_LE_TEST_END:
2072 STREAM_TO_UINT8(status, p_param);
2074 STREAM_TO_UINT16(count, p_param);
2075 HAL_CBACK(bt_hal_cbacks, le_test_mode_cb,
2076 (status == 0) ? BT_STATUS_SUCCESS : BT_STATUS_FAIL, count);
2081 BTIF_TRACE_WARNING("%s : Unknown event 0x%x", __FUNCTION__, event);
2087 /*******************************************************************************
2089 ** Function bte_dm_evt
2091 ** Description Switches context from BTE to BTIF for all DM events
2095 *******************************************************************************/
2097 void bte_dm_evt(tBTA_DM_SEC_EVT event, tBTA_DM_SEC *p_data)
2099 /* switch context to btif task context (copy full union size for convenience) */
2100 bt_status_t status = btif_transfer_context(btif_dm_upstreams_evt, (uint16_t)event,
2101 (void*)p_data, sizeof(tBTA_DM_SEC), btif_dm_data_copy);
2103 /* catch any failed context transfers */
2104 ASSERTC(status == BT_STATUS_SUCCESS, "context transfer failed", status);
2107 /*******************************************************************************
2109 ** Function bte_search_devices_evt
2111 ** Description Switches context from BTE to BTIF for DM search events
2115 *******************************************************************************/
2116 static void bte_search_devices_evt(tBTA_DM_SEARCH_EVT event, tBTA_DM_SEARCH *p_data)
2118 UINT16 param_len = 0;
2121 param_len += sizeof(tBTA_DM_SEARCH);
2122 /* Allocate buffer to hold the pointers (deep copy). The pointers will point to the end of the tBTA_DM_SEARCH */
2125 case BTA_DM_INQ_RES_EVT:
2127 if (p_data->inq_res.p_eir)
2128 param_len += HCI_EXT_INQ_RESPONSE_LEN;
2132 case BTA_DM_DISC_RES_EVT:
2134 if (p_data->disc_res.raw_data_size && p_data->disc_res.p_raw_data)
2135 param_len += p_data->disc_res.raw_data_size;
2139 BTIF_TRACE_DEBUG("%s event=%s param_len=%d", __FUNCTION__, dump_dm_search_event(event), param_len);
2141 /* if remote name is available in EIR, set teh flag so that stack doesnt trigger RNR */
2142 if (event == BTA_DM_INQ_RES_EVT)
2143 p_data->inq_res.remt_name_not_required = check_eir_remote_name(p_data, NULL, NULL);
2145 btif_transfer_context (btif_dm_search_devices_evt , (UINT16) event, (void *)p_data, param_len,
2146 (param_len > sizeof(tBTA_DM_SEARCH)) ? search_devices_copy_cb : NULL);
2149 /*******************************************************************************
2151 ** Function bte_dm_search_services_evt
2153 ** Description Switches context from BTE to BTIF for DM search services
2158 *******************************************************************************/
2159 static void bte_dm_search_services_evt(tBTA_DM_SEARCH_EVT event, tBTA_DM_SEARCH *p_data)
2161 UINT16 param_len = 0;
2163 param_len += sizeof(tBTA_DM_SEARCH);
2166 case BTA_DM_DISC_RES_EVT:
2168 if ((p_data->disc_res.result == BTA_SUCCESS) && (p_data->disc_res.num_uuids > 0)) {
2169 param_len += (p_data->disc_res.num_uuids * MAX_UUID_SIZE);
2173 /* TODO: The only other member that needs a deep copy is the p_raw_data. But not sure
2174 * if raw_data is needed. */
2175 btif_transfer_context(btif_dm_search_services_evt, event, (char*)p_data, param_len,
2176 (param_len > sizeof(tBTA_DM_SEARCH)) ? search_services_copy_cb : NULL);
2179 /*******************************************************************************
2181 ** Function bte_dm_remote_service_record_evt
2183 ** Description Switches context from BTE to BTIF for DM search service
2188 *******************************************************************************/
2189 static void bte_dm_remote_service_record_evt(tBTA_DM_SEARCH_EVT event, tBTA_DM_SEARCH *p_data)
2191 /* TODO: The only member that needs a deep copy is the p_raw_data. But not sure yet if this is needed. */
2192 btif_transfer_context(btif_dm_remote_service_record_evt, event, (char*)p_data, sizeof(tBTA_DM_SEARCH), NULL);
2195 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
2196 /*******************************************************************************
2198 ** Function bta_energy_info_cb
2200 ** Description Switches context from BTE to BTIF for DM energy info event
2204 *******************************************************************************/
2205 static void bta_energy_info_cb(tBTA_DM_BLE_TX_TIME_MS tx_time, tBTA_DM_BLE_RX_TIME_MS rx_time,
2206 tBTA_DM_BLE_IDLE_TIME_MS idle_time,
2207 tBTA_DM_BLE_ENERGY_USED energy_used,
2208 tBTA_DM_CONTRL_STATE ctrl_state, tBTA_STATUS status)
2210 BTIF_TRACE_DEBUG("energy_info_cb-Status:%d,state=%d,tx_t=%ld, rx_t=%ld, idle_time=%ld,used=%ld",
2211 status, ctrl_state, tx_time, rx_time, idle_time, energy_used);
2213 btif_activity_energy_info_cb_t btif_cb;
2214 btif_cb.status = status;
2215 btif_cb.ctrl_state = ctrl_state;
2216 btif_cb.tx_time = (uint64_t) tx_time;
2217 btif_cb.rx_time = (uint64_t) rx_time;
2218 btif_cb.idle_time =(uint64_t) idle_time;
2219 btif_cb.energy_used =(uint64_t) energy_used;
2220 btif_transfer_context(btif_dm_upstreams_evt, BTA_DM_ENER_INFO_READ,
2221 (char*) &btif_cb, sizeof(btif_activity_energy_info_cb_t), NULL);
2225 /*******************************************************************************
2227 ** Function bte_scan_filt_param_cfg_evt
2229 ** Description Scan filter param config event
2233 *******************************************************************************/
2234 static void bte_scan_filt_param_cfg_evt(UINT8 action_type,
2235 tBTA_DM_BLE_PF_AVBL_SPACE avbl_space,
2236 tBTA_DM_BLE_REF_VALUE ref_value, tBTA_STATUS status)
2238 /* This event occurs on calling BTA_DmBleCfgFilterCondition internally,
2239 ** and that is why there is no HAL callback
2241 if(BTA_SUCCESS != status)
2243 BTIF_TRACE_ERROR("%s, %d", __FUNCTION__, status);
2247 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
2251 /*****************************************************************************
2253 ** btif api functions (no context switch)
2255 *****************************************************************************/
2257 /*******************************************************************************
2259 ** Function btif_dm_start_discovery
2261 ** Description Start device discovery/inquiry
2263 ** Returns bt_status_t
2265 *******************************************************************************/
2266 bt_status_t btif_dm_start_discovery(void)
2268 tBTA_DM_INQ inq_params;
2269 tBTA_SERVICE_MASK services = 0;
2270 tBTA_DM_BLE_PF_FILT_PARAMS adv_filt_param;
2272 BTIF_TRACE_EVENT("%s", __FUNCTION__);
2274 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
2275 memset(&adv_filt_param, 0, sizeof(tBTA_DM_BLE_PF_FILT_PARAMS));
2276 /* Cleanup anything remaining on index 0 */
2277 BTA_DmBleScanFilterSetup(BTA_DM_BLE_SCAN_COND_DELETE, 0, &adv_filt_param, NULL,
2278 bte_scan_filt_param_cfg_evt, 0);
2280 /* Add an allow-all filter on index 0*/
2281 adv_filt_param.dely_mode = IMMEDIATE_DELY_MODE;
2282 adv_filt_param.feat_seln = ALLOW_ALL_FILTER;
2283 adv_filt_param.filt_logic_type = BTA_DM_BLE_PF_FILT_LOGIC_OR;
2284 adv_filt_param.list_logic_type = BTA_DM_BLE_PF_LIST_LOGIC_OR;
2285 adv_filt_param.rssi_low_thres = LOWEST_RSSI_VALUE;
2286 adv_filt_param.rssi_high_thres = LOWEST_RSSI_VALUE;
2287 BTA_DmBleScanFilterSetup(BTA_DM_BLE_SCAN_COND_ADD, 0, &adv_filt_param, NULL,
2288 bte_scan_filt_param_cfg_evt, 0);
2290 /* TODO: Do we need to handle multiple inquiries at the same time? */
2292 /* Set inquiry params and call API */
2293 inq_params.mode = BTA_DM_GENERAL_INQUIRY|BTA_BLE_GENERAL_INQUIRY;
2294 #if (defined(BTA_HOST_INTERLEAVE_SEARCH) && BTA_HOST_INTERLEAVE_SEARCH == TRUE)
2295 inq_params.intl_duration[0]= BTIF_DM_INTERLEAVE_DURATION_BR_ONE;
2296 inq_params.intl_duration[1]= BTIF_DM_INTERLEAVE_DURATION_LE_ONE;
2297 inq_params.intl_duration[2]= BTIF_DM_INTERLEAVE_DURATION_BR_TWO;
2298 inq_params.intl_duration[3]= BTIF_DM_INTERLEAVE_DURATION_LE_TWO;
2301 inq_params.mode = BTA_DM_GENERAL_INQUIRY;
2303 inq_params.duration = BTIF_DM_DEFAULT_INQ_MAX_DURATION;
2305 inq_params.max_resps = BTIF_DM_DEFAULT_INQ_MAX_RESULTS;
2306 inq_params.report_dup = TRUE;
2308 inq_params.filter_type = BTA_DM_INQ_CLR;
2309 /* TODO: Filter device by BDA needs to be implemented here */
2311 /* Will be enabled to TRUE once inquiry busy level has been received */
2312 btif_dm_inquiry_in_progress = FALSE;
2313 /* find nearby devices */
2314 BTA_DmSearch(&inq_params, services, bte_search_devices_evt);
2316 return BT_STATUS_SUCCESS;
2319 /*******************************************************************************
2321 ** Function btif_dm_cancel_discovery
2323 ** Description Cancels search
2325 ** Returns bt_status_t
2327 *******************************************************************************/
2328 bt_status_t btif_dm_cancel_discovery(void)
2330 BTIF_TRACE_EVENT("%s", __FUNCTION__);
2331 BTA_DmSearchCancel();
2332 return BT_STATUS_SUCCESS;
2335 /*******************************************************************************
2337 ** Function btif_dm_create_bond
2339 ** Description Initiate bonding with the specified device
2341 ** Returns bt_status_t
2343 *******************************************************************************/
2344 bt_status_t btif_dm_create_bond(const bt_bdaddr_t *bd_addr, int transport)
2346 btif_dm_create_bond_cb_t create_bond_cb;
2347 create_bond_cb.transport = transport;
2348 bdcpy(create_bond_cb.bdaddr.address, bd_addr->address);
2351 BTIF_TRACE_EVENT("%s: bd_addr=%s, transport=%d", __FUNCTION__, bdaddr_to_string(bd_addr, bdstr, sizeof(bdstr)), transport);
2352 if (pairing_cb.state != BT_BOND_STATE_NONE)
2353 return BT_STATUS_BUSY;
2355 btif_stats_add_bond_event(bd_addr, BTIF_DM_FUNC_CREATE_BOND, pairing_cb.state);
2357 btif_transfer_context(btif_dm_generic_evt, BTIF_DM_CB_CREATE_BOND,
2358 (char *)&create_bond_cb, sizeof(btif_dm_create_bond_cb_t), NULL);
2360 return BT_STATUS_SUCCESS;
2363 /*******************************************************************************
2365 ** Function btif_dm_create_bond_out_of_band
2367 ** Description Initiate bonding with the specified device using out of band data
2369 ** Returns bt_status_t
2371 *******************************************************************************/
2372 bt_status_t btif_dm_create_bond_out_of_band(const bt_bdaddr_t *bd_addr, int transport, const bt_out_of_band_data_t *oob_data)
2374 bdcpy(oob_cb.bdaddr, bd_addr->address);
2375 memcpy(&oob_cb.oob_data, oob_data, sizeof(bt_out_of_band_data_t));
2378 BTIF_TRACE_EVENT("%s: bd_addr=%s, transport=%d", __FUNCTION__, bdaddr_to_string(bd_addr, bdstr, sizeof(bdstr)), transport);
2379 return btif_dm_create_bond(bd_addr, transport);
2382 /*******************************************************************************
2384 ** Function btif_dm_cancel_bond
2386 ** Description Initiate bonding with the specified device
2388 ** Returns bt_status_t
2390 *******************************************************************************/
2392 bt_status_t btif_dm_cancel_bond(const bt_bdaddr_t *bd_addr)
2396 BTIF_TRACE_EVENT("%s: bd_addr=%s", __FUNCTION__, bdaddr_to_string(bd_addr, bdstr, sizeof(bdstr)));
2398 btif_stats_add_bond_event(bd_addr, BTIF_DM_FUNC_CANCEL_BOND, pairing_cb.state);
2401 ** 1. Restore scan modes
2402 ** 2. special handling for HID devices
2404 if (pairing_cb.state == BT_BOND_STATE_BONDING)
2407 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
2409 if (pairing_cb.is_ssp)
2411 if (pairing_cb.is_le_only)
2413 BTA_DmBleSecurityGrant((UINT8 *)bd_addr->address,BTA_DM_SEC_PAIR_NOT_SPT);
2417 BTA_DmConfirm( (UINT8 *)bd_addr->address, FALSE);
2418 BTA_DmBondCancel ((UINT8 *)bd_addr->address);
2419 btif_storage_remove_bonded_device((bt_bdaddr_t *)bd_addr);
2424 if (pairing_cb.is_le_only)
2426 BTA_DmBondCancel ((UINT8 *)bd_addr->address);
2430 BTA_DmPinReply( (UINT8 *)bd_addr->address, FALSE, 0, NULL);
2432 /* Cancel bonding, in case it is in ACL connection setup state */
2433 BTA_DmBondCancel ((UINT8 *)bd_addr->address);
2437 if (pairing_cb.is_ssp)
2439 BTA_DmConfirm( (UINT8 *)bd_addr->address, FALSE);
2443 BTA_DmPinReply( (UINT8 *)bd_addr->address, FALSE, 0, NULL);
2445 /* Cancel bonding, in case it is in ACL connection setup state */
2446 BTA_DmBondCancel ((UINT8 *)bd_addr->address);
2447 btif_storage_remove_bonded_device((bt_bdaddr_t *)bd_addr);
2451 return BT_STATUS_SUCCESS;
2454 /*******************************************************************************
2456 ** Function btif_dm_hh_open_failed
2458 ** Description informs the upper layers if the HH have failed during bonding
2462 *******************************************************************************/
2464 void btif_dm_hh_open_failed(bt_bdaddr_t *bdaddr)
2466 if (pairing_cb.state == BT_BOND_STATE_BONDING &&
2467 bdcmp(bdaddr->address, pairing_cb.bd_addr) == 0)
2469 bond_state_changed(BT_STATUS_FAIL, bdaddr, BT_BOND_STATE_NONE);
2473 /*******************************************************************************
2475 ** Function btif_dm_remove_bond
2477 ** Description Removes bonding with the specified device
2479 ** Returns bt_status_t
2481 *******************************************************************************/
2483 bt_status_t btif_dm_remove_bond(const bt_bdaddr_t *bd_addr)
2487 BTIF_TRACE_EVENT("%s: bd_addr=%s", __FUNCTION__, bdaddr_to_string(bd_addr, bdstr, sizeof(bdstr)));
2489 btif_stats_add_bond_event(bd_addr, BTIF_DM_FUNC_REMOVE_BOND, pairing_cb.state);
2491 btif_transfer_context(btif_dm_generic_evt, BTIF_DM_CB_REMOVE_BOND,
2492 (char *)bd_addr, sizeof(bt_bdaddr_t), NULL);
2494 return BT_STATUS_SUCCESS;
2497 /*******************************************************************************
2499 ** Function btif_dm_pin_reply
2501 ** Description BT legacy pairing - PIN code reply
2503 ** Returns bt_status_t
2505 *******************************************************************************/
2507 bt_status_t btif_dm_pin_reply( const bt_bdaddr_t *bd_addr, uint8_t accept,
2508 uint8_t pin_len, bt_pin_code_t *pin_code)
2510 BTIF_TRACE_EVENT("%s: accept=%d", __FUNCTION__, accept);
2511 if (pin_code == NULL || pin_len > PIN_CODE_LEN)
2512 return BT_STATUS_FAIL;
2513 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
2515 if (pairing_cb.is_le_only)
2519 int multi[] = {100000, 10000, 1000, 100, 10,1};
2520 BD_ADDR remote_bd_addr;
2521 bdcpy(remote_bd_addr, bd_addr->address);
2522 for (i = 0; i < 6; i++)
2524 passkey += (multi[i] * (pin_code->pin[i] - '0'));
2526 BTIF_TRACE_DEBUG("btif_dm_pin_reply: passkey: %d", passkey);
2527 BTA_DmBlePasskeyReply(remote_bd_addr, accept, passkey);
2532 BTA_DmPinReply( (UINT8 *)bd_addr->address, accept, pin_len, pin_code->pin);
2534 pairing_cb.pin_code_len = pin_len;
2537 BTA_DmPinReply( (UINT8 *)bd_addr->address, accept, pin_len, pin_code->pin);
2540 pairing_cb.pin_code_len = pin_len;
2542 return BT_STATUS_SUCCESS;
2545 /*******************************************************************************
2547 ** Function btif_dm_ssp_reply
2549 ** Description BT SSP Reply - Just Works, Numeric Comparison & Passkey Entry
2551 ** Returns bt_status_t
2553 *******************************************************************************/
2554 bt_status_t btif_dm_ssp_reply(const bt_bdaddr_t *bd_addr,
2555 bt_ssp_variant_t variant, uint8_t accept,
2560 if (variant == BT_SSP_VARIANT_PASSKEY_ENTRY)
2562 /* This is not implemented in the stack.
2563 * For devices with display, this is not needed
2565 BTIF_TRACE_WARNING("%s: Not implemented", __FUNCTION__);
2566 return BT_STATUS_FAIL;
2568 /* BT_SSP_VARIANT_CONSENT & BT_SSP_VARIANT_PASSKEY_CONFIRMATION supported */
2569 BTIF_TRACE_EVENT("%s: accept=%d", __FUNCTION__, accept);
2570 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
2571 if (pairing_cb.is_le_only)
2573 if(pairing_cb.is_le_nc)
2575 BTA_DmBleConfirmReply((UINT8 *)bd_addr->address,accept);
2578 BTA_DmBleSecurityGrant((UINT8 *)bd_addr->address,BTA_DM_SEC_GRANTED);
2580 BTA_DmBleSecurityGrant((UINT8 *)bd_addr->address,BTA_DM_SEC_PAIR_NOT_SPT);
2583 BTA_DmConfirm( (UINT8 *)bd_addr->address, accept);
2586 BTA_DmConfirm( (UINT8 *)bd_addr->address, accept);
2588 return BT_STATUS_SUCCESS;
2591 /*******************************************************************************
2593 ** Function btif_dm_get_adapter_property
2595 ** Description Queries the BTA for the adapter property
2597 ** Returns bt_status_t
2599 *******************************************************************************/
2600 bt_status_t btif_dm_get_adapter_property(bt_property_t *prop)
2602 BTIF_TRACE_EVENT("%s: type=0x%x", __FUNCTION__, prop->type);
2605 case BT_PROPERTY_BDNAME:
2607 bt_bdname_t *bd_name = (bt_bdname_t*)prop->val;
2608 strncpy((char *)bd_name->name, (char *)btif_get_default_local_name(),
2609 sizeof(bd_name->name) - 1);
2610 bd_name->name[sizeof(bd_name->name) - 1] = 0;
2611 prop->len = strlen((char *)bd_name->name);
2615 case BT_PROPERTY_ADAPTER_SCAN_MODE:
2617 /* if the storage does not have it. Most likely app never set it. Default is NONE */
2618 bt_scan_mode_t *mode = (bt_scan_mode_t*)prop->val;
2619 *mode = BT_SCAN_MODE_NONE;
2620 prop->len = sizeof(bt_scan_mode_t);
2624 case BT_PROPERTY_ADAPTER_DISCOVERY_TIMEOUT:
2626 uint32_t *tmt = (uint32_t*)prop->val;
2627 *tmt = 120; /* default to 120s, if not found in NV */
2628 prop->len = sizeof(uint32_t);
2634 return BT_STATUS_FAIL;
2636 return BT_STATUS_SUCCESS;
2639 /*******************************************************************************
2641 ** Function btif_dm_get_remote_services
2643 ** Description Start SDP to get remote services
2645 ** Returns bt_status_t
2647 *******************************************************************************/
2648 bt_status_t btif_dm_get_remote_services(bt_bdaddr_t *remote_addr)
2652 BTIF_TRACE_EVENT("%s: remote_addr=%s", __FUNCTION__, bdaddr_to_string(remote_addr, bdstr, sizeof(bdstr)));
2654 BTA_DmDiscover(remote_addr->address, BTA_ALL_SERVICE_MASK,
2655 bte_dm_search_services_evt, TRUE);
2657 return BT_STATUS_SUCCESS;
2660 /*******************************************************************************
2662 ** Function btif_dm_get_remote_services_transport
2664 ** Description Start SDP to get remote services by transport
2666 ** Returns bt_status_t
2668 *******************************************************************************/
2669 bt_status_t btif_dm_get_remote_services_by_transport(bt_bdaddr_t *remote_addr, const int transport)
2671 BTIF_TRACE_EVENT("%s", __func__);
2673 /* Set the mask extension */
2674 tBTA_SERVICE_MASK_EXT mask_ext;
2675 mask_ext.num_uuid = 0;
2676 mask_ext.p_uuid = NULL;
2677 mask_ext.srvc_mask = BTA_ALL_SERVICE_MASK;
2679 BTA_DmDiscoverByTransport(remote_addr->address, &mask_ext,
2680 bte_dm_search_services_evt, TRUE, transport);
2682 return BT_STATUS_SUCCESS;
2685 /*******************************************************************************
2687 ** Function btif_dm_get_remote_service_record
2689 ** Description Start SDP to get remote service record
2692 ** Returns bt_status_t
2693 *******************************************************************************/
2694 bt_status_t btif_dm_get_remote_service_record(bt_bdaddr_t *remote_addr,
2700 BTIF_TRACE_EVENT("%s: remote_addr=%s", __FUNCTION__, bdaddr_to_string(remote_addr, bdstr, sizeof(bdstr)));
2702 sdp_uuid.len = MAX_UUID_SIZE;
2703 memcpy(sdp_uuid.uu.uuid128, uuid->uu, MAX_UUID_SIZE);
2705 BTA_DmDiscoverUUID(remote_addr->address, &sdp_uuid,
2706 bte_dm_remote_service_record_evt, TRUE);
2708 return BT_STATUS_SUCCESS;
2711 void btif_dm_execute_service_request(UINT16 event, char *p_param)
2713 BOOLEAN b_enable = FALSE;
2715 if (event == BTIF_DM_ENABLE_SERVICE)
2719 status = btif_in_execute_service_request(*((tBTA_SERVICE_ID*)p_param), b_enable);
2720 if (status == BT_STATUS_SUCCESS)
2722 bt_property_t property;
2723 bt_uuid_t local_uuids[BT_MAX_NUM_UUIDS];
2725 /* Now send the UUID_PROPERTY_CHANGED event to the upper layer */
2726 BTIF_STORAGE_FILL_PROPERTY(&property, BT_PROPERTY_UUIDS,
2727 sizeof(local_uuids), local_uuids);
2728 btif_storage_get_adapter_property(&property);
2729 HAL_CBACK(bt_hal_cbacks, adapter_properties_cb,
2730 BT_STATUS_SUCCESS, 1, &property);
2735 void btif_dm_proc_io_req(BD_ADDR bd_addr, tBTA_IO_CAP *p_io_cap, tBTA_OOB_DATA *p_oob_data,
2736 tBTA_AUTH_REQ *p_auth_req, BOOLEAN is_orig)
2738 UINT8 yes_no_bit = BTA_AUTH_SP_YES & *p_auth_req;
2739 /* if local initiated:
2741 ** if remote initiated:
2742 ** 1. Copy over the auth_req from peer's io_rsp
2743 ** 2. Set the MITM if peer has it set or if peer has DisplayYesNo (iPhone)
2744 ** as a fallback set MITM+GB if peer had MITM set
2748 UNUSED (p_oob_data);
2750 BTIF_TRACE_DEBUG("+%s: p_auth_req=%d", __FUNCTION__, *p_auth_req);
2751 if(pairing_cb.is_local_initiated)
2753 /* if initing/responding to a dedicated bonding, use dedicate bonding bit */
2754 *p_auth_req = BTA_AUTH_DD_BOND | BTA_AUTH_SP_YES;
2758 /* peer initiated paring. They probably know what they want.
2759 ** Copy the mitm from peer device.
2761 BTIF_TRACE_DEBUG("%s: setting p_auth_req to peer's: %d",
2762 __FUNCTION__, pairing_cb.auth_req);
2763 *p_auth_req = (pairing_cb.auth_req & BTA_AUTH_BONDS);
2765 /* copy over the MITM bit as well. In addition if the peer has DisplayYesNo, force MITM */
2766 if ((yes_no_bit) || (pairing_cb.io_cap & BTM_IO_CAP_IO) )
2767 *p_auth_req |= BTA_AUTH_SP_YES;
2769 else if (yes_no_bit)
2771 /* set the general bonding bit for stored device */
2772 *p_auth_req = BTA_AUTH_GEN_BOND | yes_no_bit;
2774 BTIF_TRACE_DEBUG("-%s: p_auth_req=%d", __FUNCTION__, *p_auth_req);
2777 void btif_dm_proc_io_rsp(BD_ADDR bd_addr, tBTA_IO_CAP io_cap,
2778 tBTA_OOB_DATA oob_data, tBTA_AUTH_REQ auth_req)
2783 if(auth_req & BTA_AUTH_BONDS)
2785 BTIF_TRACE_DEBUG("%s auth_req:%d", __FUNCTION__, auth_req);
2786 pairing_cb.auth_req = auth_req;
2787 pairing_cb.io_cap = io_cap;
2791 void btif_dm_set_oob_for_io_req(tBTA_OOB_DATA *p_has_oob_data)
2793 if (is_empty_128bit(oob_cb.oob_data.c192))
2795 *p_has_oob_data = FALSE;
2799 *p_has_oob_data = TRUE;
2801 BTIF_TRACE_DEBUG("%s: *p_has_oob_data=%d", __func__, *p_has_oob_data);
2804 void btif_dm_set_oob_for_le_io_req(BD_ADDR bd_addr, tBTA_OOB_DATA *p_has_oob_data,
2805 tBTA_LE_AUTH_REQ *p_auth_req)
2808 /* We currently support only Security Manager TK as OOB data for LE transport.
2809 If it's not present mark no OOB data.
2811 if (!is_empty_128bit(oob_cb.oob_data.sm_tk))
2813 /* make sure OOB data is for this particular device */
2814 if (memcmp(bd_addr, oob_cb.bdaddr, BD_ADDR_LEN) == 0) {
2815 // When using OOB with TK, SC Secure Connections bit must be disabled.
2816 tBTA_LE_AUTH_REQ mask = ~BTM_LE_AUTH_REQ_SC_ONLY;
2817 *p_auth_req = ((*p_auth_req) & mask);
2819 *p_has_oob_data = TRUE;
2823 *p_has_oob_data = FALSE;
2824 BTIF_TRACE_WARNING("%s: remote address didn't match OOB data address",
2830 *p_has_oob_data = FALSE;
2832 BTIF_TRACE_DEBUG("%s *p_has_oob_data=%d", __func__, *p_has_oob_data);
2835 #ifdef BTIF_DM_OOB_TEST
2836 void btif_dm_load_local_oob(void)
2838 char prop_oob[PROPERTY_VALUE_MAX];
2839 osi_property_get("service.brcm.bt.oob", prop_oob, "3");
2840 BTIF_TRACE_DEBUG("%s: prop_oob = %s", __func__, prop_oob);
2841 if (prop_oob[0] != '3')
2843 if (is_empty_128bit(oob_cb.oob_data.c192))
2845 BTIF_TRACE_DEBUG("%s: read OOB, call BTA_DmLocalOob()", __func__);
2851 void btif_dm_proc_loc_oob(BOOLEAN valid, BT_OCTET16 c, BT_OCTET16 r)
2854 char *path_a = "/data/misc/bluedroid/LOCAL/a.key";
2855 char *path_b = "/data/misc/bluedroid/LOCAL/b.key";
2857 char prop_oob[PROPERTY_VALUE_MAX];
2858 BTIF_TRACE_DEBUG("%s: valid=%d", __func__, valid);
2859 if (is_empty_128bit(oob_cb.oob_data.c192) && valid)
2861 BTIF_TRACE_DEBUG("save local OOB data in memory");
2862 memcpy(oob_cb.oob_data.c192, c, BT_OCTET16_LEN);
2863 memcpy(oob_cb.oob_data.r192, r, BT_OCTET16_LEN);
2864 osi_property_get("service.brcm.bt.oob", prop_oob, "3");
2865 BTIF_TRACE_DEBUG("%s: prop_oob = %s", __func__, prop_oob);
2866 if (prop_oob[0] == '1')
2868 else if (prop_oob[0] == '2')
2872 fp = fopen(path, "wb+");
2875 BTIF_TRACE_DEBUG("%s: failed to save local OOB data to %s", __func__, path);
2879 BTIF_TRACE_DEBUG("%s: save local OOB data into file %s", __func__, path);
2880 fwrite (c , 1 , BT_OCTET16_LEN , fp );
2881 fwrite (r , 1 , BT_OCTET16_LEN , fp );
2888 BOOLEAN btif_dm_proc_rmt_oob(BD_ADDR bd_addr, BT_OCTET16 p_c, BT_OCTET16 p_r)
2892 char *path_a = "/data/misc/bluedroid/LOCAL/a.key";
2893 char *path_b = "/data/misc/bluedroid/LOCAL/b.key";
2895 char prop_oob[PROPERTY_VALUE_MAX];
2896 BOOLEAN result = FALSE;
2897 bt_bdaddr_t bt_bd_addr;
2898 bdcpy(oob_cb.bdaddr, bd_addr);
2899 osi_property_get("service.brcm.bt.oob", prop_oob, "3");
2900 BTIF_TRACE_DEBUG("%s: prop_oob = %s", __func__, prop_oob);
2901 if (prop_oob[0] == '1')
2903 else if (prop_oob[0] == '2')
2907 fp = fopen(path, "rb");
2910 BTIF_TRACE_DEBUG("%s: failed to read OOB keys from %s", __func__, path);
2915 BTIF_TRACE_DEBUG("%s: read OOB data from %s", __func__, path);
2916 fread (p_c , 1 , BT_OCTET16_LEN , fp );
2917 fread (p_r , 1 , BT_OCTET16_LEN , fp );
2920 BTIF_TRACE_DEBUG("----%s: TRUE", __func__);
2921 sprintf(t, "%02x:%02x:%02x:%02x:%02x:%02x",
2922 oob_cb.bdaddr[0], oob_cb.bdaddr[1], oob_cb.bdaddr[2],
2923 oob_cb.bdaddr[3], oob_cb.bdaddr[4], oob_cb.bdaddr[5]);
2924 BTIF_TRACE_DEBUG("----%s: peer_bdaddr = %s", __func__, t);
2925 sprintf(t, "%02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x",
2926 p_c[0], p_c[1], p_c[2], p_c[3], p_c[4], p_c[5], p_c[6], p_c[7],
2927 p_c[8], p_c[9], p_c[10], p_c[11], p_c[12], p_c[13], p_c[14], p_c[15]);
2928 BTIF_TRACE_DEBUG("----%s: c = %s", __func__, t);
2929 sprintf(t, "%02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x %02x",
2930 p_r[0], p_r[1], p_r[2], p_r[3], p_r[4], p_r[5], p_r[6], p_r[7],
2931 p_r[8], p_r[9], p_r[10], p_r[11], p_r[12], p_r[13], p_r[14], p_r[15]);
2932 BTIF_TRACE_DEBUG("----%s: r = %s", __func__, t);
2933 bdcpy(bt_bd_addr.address, bd_addr);
2934 btif_transfer_context(btif_dm_generic_evt, BTIF_DM_CB_BOND_STATE_BONDING,
2935 (char *)&bt_bd_addr, sizeof(bt_bdaddr_t), NULL);
2938 BTIF_TRACE_DEBUG("%s: result=%d", __func__, result);
2941 #endif /* BTIF_DM_OOB_TEST */
2942 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
2944 static void btif_dm_ble_key_notif_evt(tBTA_DM_SP_KEY_NOTIF *p_ssp_key_notif)
2946 bt_bdaddr_t bd_addr;
2947 bt_bdname_t bd_name;
2951 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
2953 /* Remote name update */
2954 if (!btif_get_device_type(p_ssp_key_notif->bd_addr, &dev_type))
2956 dev_type = BT_DEVICE_TYPE_BLE;
2958 btif_dm_update_ble_remote_properties(p_ssp_key_notif->bd_addr , p_ssp_key_notif->bd_name,
2959 (tBT_DEVICE_TYPE) dev_type);
2960 bdcpy(bd_addr.address, p_ssp_key_notif->bd_addr);
2961 memcpy(bd_name.name, p_ssp_key_notif->bd_name, BD_NAME_LEN);
2963 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
2964 pairing_cb.is_ssp = FALSE;
2965 cod = COD_UNCLASSIFIED;
2967 HAL_CBACK(bt_hal_cbacks, ssp_request_cb, &bd_addr, &bd_name,
2968 cod, BT_SSP_VARIANT_PASSKEY_NOTIFICATION,
2969 p_ssp_key_notif->passkey);
2972 /*******************************************************************************
2974 ** Function btif_dm_ble_auth_cmpl_evt
2976 ** Description Executes authentication complete event in btif context
2980 *******************************************************************************/
2981 static void btif_dm_ble_auth_cmpl_evt (tBTA_DM_AUTH_CMPL *p_auth_cmpl)
2983 /* Save link key, if not temporary */
2984 bt_bdaddr_t bd_addr;
2985 bt_status_t status = BT_STATUS_FAIL;
2986 bt_bond_state_t state = BT_BOND_STATE_NONE;
2988 bdcpy(bd_addr.address, p_auth_cmpl->bd_addr);
2990 /* Clear OOB data */
2991 memset(&oob_cb, 0, sizeof(oob_cb));
2993 if ( (p_auth_cmpl->success == TRUE) && (p_auth_cmpl->key_present) )
2997 if (p_auth_cmpl->success)
2999 status = BT_STATUS_SUCCESS;
3000 state = BT_BOND_STATE_BONDED;
3003 bdcpy(bdaddr.address, p_auth_cmpl->bd_addr);
3004 if (btif_storage_get_remote_addr_type(&bdaddr, &addr_type) != BT_STATUS_SUCCESS)
3005 btif_storage_set_remote_addr_type(&bdaddr, p_auth_cmpl->addr_type);
3007 /* Test for temporary bonding */
3008 if (btm_get_bond_type_dev(p_auth_cmpl->bd_addr) == BOND_TYPE_TEMPORARY) {
3009 BTIF_TRACE_DEBUG("%s: sending BT_BOND_STATE_NONE for Temp pairing",
3011 btif_storage_remove_bonded_device(&bdaddr);
3012 state = BT_BOND_STATE_NONE;
3014 btif_dm_save_ble_bonding_keys();
3015 BTA_GATTC_Refresh(bd_addr.address);
3016 btif_dm_get_remote_services_by_transport(&bd_addr, BTA_GATT_TRANSPORT_LE);
3021 /*Map the HCI fail reason to bt status */
3022 switch (p_auth_cmpl->fail_reason)
3024 case BTA_DM_AUTH_SMP_PAIR_AUTH_FAIL:
3025 case BTA_DM_AUTH_SMP_CONFIRM_VALUE_FAIL:
3026 btif_dm_remove_ble_bonding_keys();
3027 status = BT_STATUS_AUTH_FAILURE;
3029 case BTA_DM_AUTH_SMP_PAIR_NOT_SUPPORT:
3030 status = BT_STATUS_AUTH_REJECTED;
3033 btif_dm_remove_ble_bonding_keys();
3034 status = BT_STATUS_FAIL;
3038 bond_state_changed(status, &bd_addr, state);
3041 void btif_dm_load_ble_local_keys(void)
3043 memset(&ble_local_key_cb, 0, sizeof(btif_dm_local_key_cb_t));
3045 if (btif_storage_get_ble_local_key(BTIF_DM_LE_LOCAL_KEY_ER,(char*)&ble_local_key_cb.er[0],
3046 BT_OCTET16_LEN)== BT_STATUS_SUCCESS)
3048 ble_local_key_cb.is_er_rcvd = TRUE;
3049 BTIF_TRACE_DEBUG("%s BLE ER key loaded",__FUNCTION__ );
3052 if ((btif_storage_get_ble_local_key(BTIF_DM_LE_LOCAL_KEY_IR,(char*)&ble_local_key_cb.id_keys.ir[0],
3053 BT_OCTET16_LEN)== BT_STATUS_SUCCESS )&&
3054 (btif_storage_get_ble_local_key(BTIF_DM_LE_LOCAL_KEY_IRK, (char*)&ble_local_key_cb.id_keys.irk[0],
3055 BT_OCTET16_LEN)== BT_STATUS_SUCCESS)&&
3056 (btif_storage_get_ble_local_key(BTIF_DM_LE_LOCAL_KEY_DHK,(char*)&ble_local_key_cb.id_keys.dhk[0],
3057 BT_OCTET16_LEN)== BT_STATUS_SUCCESS))
3059 ble_local_key_cb.is_id_keys_rcvd = TRUE;
3060 BTIF_TRACE_DEBUG("%s BLE ID keys loaded",__FUNCTION__ );
3064 void btif_dm_get_ble_local_keys(tBTA_DM_BLE_LOCAL_KEY_MASK *p_key_mask, BT_OCTET16 er,
3065 tBTA_BLE_LOCAL_ID_KEYS *p_id_keys)
3067 if (ble_local_key_cb.is_er_rcvd )
3069 memcpy(&er[0], &ble_local_key_cb.er[0], sizeof(BT_OCTET16));
3070 *p_key_mask |= BTA_BLE_LOCAL_KEY_TYPE_ER;
3073 if (ble_local_key_cb.is_id_keys_rcvd)
3075 memcpy(&p_id_keys->ir[0], &ble_local_key_cb.id_keys.ir[0], sizeof(BT_OCTET16));
3076 memcpy(&p_id_keys->irk[0], &ble_local_key_cb.id_keys.irk[0], sizeof(BT_OCTET16));
3077 memcpy(&p_id_keys->dhk[0], &ble_local_key_cb.id_keys.dhk[0], sizeof(BT_OCTET16));
3078 *p_key_mask |= BTA_BLE_LOCAL_KEY_TYPE_ID;
3080 BTIF_TRACE_DEBUG("%s *p_key_mask=0x%02x",__FUNCTION__, *p_key_mask);
3083 void btif_dm_save_ble_bonding_keys(void)
3086 bt_bdaddr_t bd_addr;
3088 BTIF_TRACE_DEBUG("%s",__FUNCTION__ );
3090 bdcpy(bd_addr.address, pairing_cb.bd_addr);
3092 if (pairing_cb.ble.is_penc_key_rcvd)
3094 btif_storage_add_ble_bonding_key(&bd_addr,
3095 (char *) &pairing_cb.ble.penc_key,
3096 BTIF_DM_LE_KEY_PENC,
3097 sizeof(tBTM_LE_PENC_KEYS));
3100 if (pairing_cb.ble.is_pid_key_rcvd)
3102 btif_storage_add_ble_bonding_key(&bd_addr,
3103 (char *) &pairing_cb.ble.pid_key,
3105 sizeof(tBTM_LE_PID_KEYS));
3108 if (pairing_cb.ble.is_pcsrk_key_rcvd)
3110 btif_storage_add_ble_bonding_key(&bd_addr,
3111 (char *) &pairing_cb.ble.pcsrk_key,
3112 BTIF_DM_LE_KEY_PCSRK,
3113 sizeof(tBTM_LE_PCSRK_KEYS));
3116 if (pairing_cb.ble.is_lenc_key_rcvd)
3118 btif_storage_add_ble_bonding_key(&bd_addr,
3119 (char *) &pairing_cb.ble.lenc_key,
3120 BTIF_DM_LE_KEY_LENC,
3121 sizeof(tBTM_LE_LENC_KEYS));
3124 if (pairing_cb.ble.is_lcsrk_key_rcvd)
3126 btif_storage_add_ble_bonding_key(&bd_addr,
3127 (char *) &pairing_cb.ble.lcsrk_key,
3128 BTIF_DM_LE_KEY_LCSRK,
3129 sizeof(tBTM_LE_LCSRK_KEYS));
3132 if (pairing_cb.ble.is_lidk_key_rcvd)
3134 btif_storage_add_ble_bonding_key(&bd_addr,
3142 void btif_dm_remove_ble_bonding_keys(void)
3144 bt_bdaddr_t bd_addr;
3146 BTIF_TRACE_DEBUG("%s",__FUNCTION__ );
3148 bdcpy(bd_addr.address, pairing_cb.bd_addr);
3149 btif_storage_remove_ble_bonding_keys(&bd_addr);
3152 /*******************************************************************************
3154 ** Function btif_dm_ble_sec_req_evt
3156 ** Description Eprocess security request event in btif context
3160 *******************************************************************************/
3161 void btif_dm_ble_sec_req_evt(tBTA_DM_BLE_SEC_REQ *p_ble_req)
3163 bt_bdaddr_t bd_addr;
3164 bt_bdname_t bd_name;
3168 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
3170 if (pairing_cb.state == BT_BOND_STATE_BONDING)
3172 BTIF_TRACE_DEBUG("%s Discard security request", __FUNCTION__);
3176 /* Remote name update */
3177 if (!btif_get_device_type(p_ble_req->bd_addr, &dev_type))
3179 dev_type = BT_DEVICE_TYPE_BLE;
3181 btif_dm_update_ble_remote_properties(p_ble_req->bd_addr, p_ble_req->bd_name,
3182 (tBT_DEVICE_TYPE) dev_type);
3184 bdcpy(bd_addr.address, p_ble_req->bd_addr);
3185 memcpy(bd_name.name, p_ble_req->bd_name, BD_NAME_LEN);
3187 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
3189 pairing_cb.bond_type = BOND_TYPE_PERSISTENT;
3190 pairing_cb.is_le_only = TRUE;
3191 pairing_cb.is_le_nc = FALSE;
3192 pairing_cb.is_ssp = TRUE;
3193 btm_set_bond_type_dev(p_ble_req->bd_addr, pairing_cb.bond_type);
3195 cod = COD_UNCLASSIFIED;
3197 HAL_CBACK(bt_hal_cbacks, ssp_request_cb, &bd_addr, &bd_name, cod,
3198 BT_SSP_VARIANT_CONSENT, 0);
3201 /*******************************************************************************
3203 ** Function btif_dm_ble_passkey_req_evt
3205 ** Description Executes pin request event in btif context
3209 *******************************************************************************/
3210 static void btif_dm_ble_passkey_req_evt(tBTA_DM_PIN_REQ *p_pin_req)
3212 bt_bdaddr_t bd_addr;
3213 bt_bdname_t bd_name;
3217 /* Remote name update */
3218 if (!btif_get_device_type(p_pin_req->bd_addr, &dev_type))
3220 dev_type = BT_DEVICE_TYPE_BLE;
3222 btif_dm_update_ble_remote_properties(p_pin_req->bd_addr,p_pin_req->bd_name,
3223 (tBT_DEVICE_TYPE) dev_type);
3225 bdcpy(bd_addr.address, p_pin_req->bd_addr);
3226 memcpy(bd_name.name, p_pin_req->bd_name, BD_NAME_LEN);
3228 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
3229 pairing_cb.is_le_only = TRUE;
3231 cod = COD_UNCLASSIFIED;
3233 HAL_CBACK(bt_hal_cbacks, pin_request_cb,
3234 &bd_addr, &bd_name, cod, FALSE);
3236 static void btif_dm_ble_key_nc_req_evt(tBTA_DM_SP_KEY_NOTIF *p_notif_req)
3238 /* TODO implement key notification for numeric comparison */
3239 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
3241 /* Remote name update */
3242 btif_update_remote_properties(p_notif_req->bd_addr , p_notif_req->bd_name,
3243 NULL, BT_DEVICE_TYPE_BLE);
3245 bt_bdaddr_t bd_addr;
3246 bdcpy(bd_addr.address, p_notif_req->bd_addr);
3248 bt_bdname_t bd_name;
3249 memcpy(bd_name.name, p_notif_req->bd_name, BD_NAME_LEN);
3251 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
3252 pairing_cb.is_ssp = FALSE;
3253 pairing_cb.is_le_only = TRUE;
3254 pairing_cb.is_le_nc = TRUE;
3256 HAL_CBACK(bt_hal_cbacks, ssp_request_cb, &bd_addr, &bd_name,
3257 COD_UNCLASSIFIED, BT_SSP_VARIANT_PASSKEY_CONFIRMATION,
3258 p_notif_req->passkey);
3261 static void btif_dm_ble_oob_req_evt(tBTA_DM_SP_RMT_OOB *req_oob_type)
3263 BTIF_TRACE_DEBUG("%s", __FUNCTION__);
3265 bt_bdaddr_t bd_addr;
3266 bdcpy(bd_addr.address, req_oob_type->bd_addr);
3268 /* We currently support only Security Manager TK as OOB data. We already
3269 * checked if it's present in btif_dm_set_oob_for_le_io_req, but check here
3270 * again. If it's not present do nothing, pairing will timeout.
3272 if (is_empty_128bit(oob_cb.oob_data.sm_tk)) {
3276 /* make sure OOB data is for this particular device */
3277 if (memcmp(req_oob_type->bd_addr, oob_cb.bdaddr, BD_ADDR_LEN) != 0) {
3278 BTIF_TRACE_WARNING("%s: remote address didn't match OOB data address", __func__);
3282 /* Remote name update */
3283 btif_update_remote_properties(req_oob_type->bd_addr , req_oob_type->bd_name,
3284 NULL, BT_DEVICE_TYPE_BLE);
3286 bond_state_changed(BT_STATUS_SUCCESS, &bd_addr, BT_BOND_STATE_BONDING);
3287 pairing_cb.is_ssp = FALSE;
3288 pairing_cb.is_le_only = TRUE;
3289 pairing_cb.is_le_nc = FALSE;
3291 BTM_BleOobDataReply(req_oob_type->bd_addr, 0, 16, oob_cb.oob_data.sm_tk);
3294 void btif_dm_update_ble_remote_properties( BD_ADDR bd_addr, BD_NAME bd_name,
3295 tBT_DEVICE_TYPE dev_type)
3297 btif_update_remote_properties(bd_addr,bd_name,NULL,dev_type);
3300 static void btif_dm_ble_tx_test_cback(void *p)
3302 btif_transfer_context(btif_dm_generic_evt, BTIF_DM_CB_LE_TX_TEST,
3303 (char *)p, 1, NULL);
3306 static void btif_dm_ble_rx_test_cback(void *p)
3308 btif_transfer_context(btif_dm_generic_evt, BTIF_DM_CB_LE_RX_TEST,
3309 (char *)p, 1, NULL);
3312 static void btif_dm_ble_test_end_cback(void *p)
3314 btif_transfer_context(btif_dm_generic_evt, BTIF_DM_CB_LE_TEST_END,
3315 (char *)p, 3, NULL);
3317 /*******************************************************************************
3319 ** Function btif_le_test_mode
3321 ** Description Sends a HCI BLE Test command to the Controller
3323 ** Returns BT_STATUS_SUCCESS on success
3325 *******************************************************************************/
3326 bt_status_t btif_le_test_mode(uint16_t opcode, uint8_t *buf, uint8_t len)
3329 case HCI_BLE_TRANSMITTER_TEST:
3330 if (len != 3) return BT_STATUS_PARM_INVALID;
3331 BTM_BleTransmitterTest(buf[0],buf[1],buf[2], btif_dm_ble_tx_test_cback);
3333 case HCI_BLE_RECEIVER_TEST:
3334 if (len != 1) return BT_STATUS_PARM_INVALID;
3335 BTM_BleReceiverTest(buf[0], btif_dm_ble_rx_test_cback);
3337 case HCI_BLE_TEST_END:
3338 BTM_BleTestEnd((tBTM_CMPL_CB*) btif_dm_ble_test_end_cback);
3341 BTIF_TRACE_ERROR("%s: Unknown LE Test Mode Command 0x%x", __FUNCTION__, opcode);
3342 return BT_STATUS_UNSUPPORTED;
3344 return BT_STATUS_SUCCESS;
3348 void btif_dm_on_disable()
3350 /* cancel any pending pairing requests */
3351 if (pairing_cb.state == BT_BOND_STATE_BONDING)
3353 bt_bdaddr_t bd_addr;
3355 BTIF_TRACE_DEBUG("%s: Cancel pending pairing request", __FUNCTION__);
3356 bdcpy(bd_addr.address, pairing_cb.bd_addr);
3357 btif_dm_cancel_bond(&bd_addr);
3361 /*******************************************************************************
3363 ** Function btif_dm_read_energy_info
3365 ** Description Reads the energy info from controller
3369 *******************************************************************************/
3370 void btif_dm_read_energy_info()
3372 #if (defined(BLE_INCLUDED) && (BLE_INCLUDED == TRUE))
3373 BTA_DmBleGetEnergyInfo(bta_energy_info_cb);
3377 static char* btif_get_default_local_name() {
3378 if (btif_default_local_name[0] == '\0')
3380 int max_len = sizeof(btif_default_local_name) - 1;
3381 if (BTM_DEF_LOCAL_NAME[0] != '\0')
3383 strncpy(btif_default_local_name, BTM_DEF_LOCAL_NAME, max_len);
3387 char prop_model[PROPERTY_VALUE_MAX];
3388 osi_property_get(PROPERTY_PRODUCT_MODEL, prop_model, "");
3389 strncpy(btif_default_local_name, prop_model, max_len);
3391 btif_default_local_name[max_len] = '\0';
3393 return btif_default_local_name;
3396 static void btif_stats_add_bond_event(const bt_bdaddr_t *bd_addr,
3397 bt_bond_function_t function,
3398 bt_bond_state_t state) {
3399 pthread_mutex_lock(&bond_event_lock);
3401 btif_bond_event_t* event = &btif_dm_bond_events[btif_events_end_index];
3402 memcpy(&event->bd_addr, bd_addr, sizeof(bt_bdaddr_t));
3403 event->function = function;
3404 event->state = state;
3405 clock_gettime(CLOCK_REALTIME, &event->timestamp);
3407 btif_num_bond_events++;
3408 btif_events_end_index = (btif_events_end_index + 1) % (MAX_BTIF_BOND_EVENT_ENTRIES + 1);
3409 if (btif_events_end_index == btif_events_start_index) {
3410 btif_events_start_index = (btif_events_start_index + 1) % (MAX_BTIF_BOND_EVENT_ENTRIES + 1);
3414 btif_get_device_type(bd_addr->address, &type);
3416 device_type_t device_type;
3418 case BT_DEVICE_TYPE_BREDR:
3419 device_type = DEVICE_TYPE_BREDR;
3421 case BT_DEVICE_TYPE_BLE:
3422 device_type = DEVICE_TYPE_LE;
3424 case BT_DEVICE_TYPE_DUMO:
3425 device_type = DEVICE_TYPE_DUMO;
3428 device_type = DEVICE_TYPE_UNKNOWN;
3432 uint32_t cod = get_cod(bd_addr);
3433 uint64_t ts = event->timestamp.tv_sec * 1000 +
3434 event->timestamp.tv_nsec / 1000000;
3435 metrics_pair_event(0, ts, cod, device_type);
3437 pthread_mutex_unlock(&bond_event_lock);
3440 void btif_debug_bond_event_dump(int fd) {
3441 pthread_mutex_lock(&bond_event_lock);
3442 dprintf(fd, "\nBond Events: \n");
3443 dprintf(fd, " Total Number of events: %zu\n", btif_num_bond_events);
3444 if (btif_num_bond_events > 0)
3445 dprintf(fd, " Time BD_ADDR Function State\n");
3447 for (size_t i = btif_events_start_index; i != btif_events_end_index;
3448 i = (i + 1) % (MAX_BTIF_BOND_EVENT_ENTRIES + 1)) {
3449 btif_bond_event_t* event = &btif_dm_bond_events[i];
3452 struct tm *tstamp = localtime(&event->timestamp.tv_sec);
3453 strftime(eventtime, sizeof(eventtime), "%H:%M:%S.%%03u", tstamp);
3454 snprintf(eventtime, sizeof(eventtime), eventtime, (event->timestamp.tv_nsec) / 1000000);
3457 bdaddr_to_string(&event->bd_addr, bdaddr, sizeof(bdaddr));
3460 switch (event->function) {
3461 case BTIF_DM_FUNC_CREATE_BOND:
3462 func_name = "btif_dm_create_bond";
3464 case BTIF_DM_FUNC_REMOVE_BOND:
3465 func_name = "btif_dm_remove_bond";
3467 case BTIF_DM_FUNC_BOND_STATE_CHANGED:
3468 func_name = "bond_state_changed ";
3471 func_name = "Invalid value ";
3476 switch (event->state) {
3477 case BT_BOND_STATE_NONE:
3478 bond_state = "BOND_STATE_NONE";
3480 case BT_BOND_STATE_BONDING:
3481 bond_state = "BOND_STATE_BONDING";
3483 case BT_BOND_STATE_BONDED:
3484 bond_state = "BOND_STATE_BONDED";
3487 bond_state = "Invalid bond state";
3490 dprintf(fd, " %s %s %s %s\n", eventtime, bdaddr, func_name, bond_state);
3492 pthread_mutex_unlock(&bond_event_lock);
OSDN Git Service
