1 /******************************************************************************
3 * Copyright (C) 2008-2014 Broadcom Corporation
5 * Licensed under the Apache License, Version 2.0 (the "License");
6 * you may not use this file except in compliance with the License.
7 * You may obtain a copy of the License at:
9 * http://www.apache.org/licenses/LICENSE-2.0
11 * Unless required by applicable law or agreed to in writing, software
12 * distributed under the License is distributed on an "AS IS" BASIS,
13 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 * See the License for the specific language governing permissions and
15 * limitations under the License.
17 ******************************************************************************/
19 /******************************************************************************
21 * This file contains functions for BLE GAP.
23 ******************************************************************************/
25 #define LOG_TAG "bt_btm_ble"
33 #include "btm_ble_api.h"
36 #include "device/include/controller.h"
40 #if BLE_INCLUDED == TRUE
42 #include "btm_ble_int.h"
46 #include "osi/include/log.h"
48 #define BTM_BLE_NAME_SHORT 0x01
49 #define BTM_BLE_NAME_CMPL 0x02
51 #define BTM_BLE_FILTER_TARGET_UNKNOWN 0xff
52 #define BTM_BLE_POLICY_UNKNOWN 0xff
54 #define BTM_EXT_BLE_RMT_NAME_TIMEOUT 30
55 #define MIN_ADV_LENGTH 2
56 #define BTM_VSC_CHIP_CAPABILITY_RSP_LEN_L_RELEASE 9
58 static tBTM_BLE_VSC_CB cmn_ble_vsc_cb;
60 #if BLE_VND_INCLUDED == TRUE
61 static tBTM_BLE_CTRL_FEATURES_CBACK *p_ctrl_le_feature_rd_cmpl_cback = NULL;
64 /*******************************************************************************
66 *******************************************************************************/
67 static void btm_ble_update_adv_flag(UINT8 flag);
68 static void btm_ble_process_adv_pkt_cont(BD_ADDR bda, UINT8 addr_type, UINT8 evt_type, UINT8 *p);
69 UINT8 *btm_ble_build_adv_data(tBTM_BLE_AD_MASK *p_data_mask, UINT8 **p_dst,
70 tBTM_BLE_ADV_DATA *p_data);
71 static UINT8 btm_set_conn_mode_adv_init_addr(tBTM_BLE_INQ_CB *p_cb,
72 BD_ADDR_PTR p_peer_addr_ptr,
73 tBLE_ADDR_TYPE *p_peer_addr_type,
74 tBLE_ADDR_TYPE *p_own_addr_type);
75 static void btm_ble_stop_observe(void);
77 #define BTM_BLE_INQ_RESULT 0x01
78 #define BTM_BLE_OBS_RESULT 0x02
79 #define BTM_BLE_SEL_CONN_RESULT 0x04
81 /* LE states combo bit to check */
82 const UINT8 btm_le_state_combo_tbl[BTM_BLE_STATE_MAX][BTM_BLE_STATE_MAX][2] =
84 {/* single state support */
85 {HCI_SUPP_LE_STATES_CONN_ADV_MASK, HCI_SUPP_LE_STATES_CONN_ADV_OFF}, /* conn_adv */
86 {HCI_SUPP_LE_STATES_INIT_MASK, HCI_SUPP_LE_STATES_INIT_OFF}, /* init */
87 {HCI_SUPP_LE_STATES_INIT_MASK, HCI_SUPP_LE_STATES_INIT_OFF}, /* master */
88 {HCI_SUPP_LE_STATES_SLAVE_MASK, HCI_SUPP_LE_STATES_SLAVE_OFF}, /* slave */
89 {0, 0}, /* todo: lo du dir adv, not covered ? */
90 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_OFF}, /* hi duty dir adv */
91 {HCI_SUPP_LE_STATES_NON_CONN_ADV_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_OFF}, /* non connectable adv */
92 {HCI_SUPP_LE_STATES_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_OFF}, /* passive scan */
93 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_OFF}, /* active scan */
94 {HCI_SUPP_LE_STATES_SCAN_ADV_MASK, HCI_SUPP_LE_STATESSCAN_ADV_OFF} /* scanable adv */
97 {0, 0}, /* conn_adv */
98 {HCI_SUPP_LE_STATES_CONN_ADV_INIT_MASK, HCI_SUPP_LE_STATES_CONN_ADV_INIT_OFF}, /* init: 32 */
99 {HCI_SUPP_LE_STATES_CONN_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_CONN_ADV_MASTER_OFF}, /* master: 35 */
100 {HCI_SUPP_LE_STATES_CONN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_CONN_ADV_SLAVE_OFF}, /* slave: 38,*/
101 {0, 0}, /* lo du dir adv */
102 {0, 0}, /* hi duty dir adv */
103 {0, 0}, /* non connectable adv */
104 {HCI_SUPP_LE_STATES_CONN_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_CONN_ADV_PASS_SCAN_OFF}, /* passive scan */
105 {HCI_SUPP_LE_STATES_CONN_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_CONN_ADV_ACTIVE_SCAN_OFF}, /* active scan */
106 {0, 0} /* scanable adv */
109 {HCI_SUPP_LE_STATES_CONN_ADV_INIT_MASK, HCI_SUPP_LE_STATES_CONN_ADV_INIT_OFF}, /* conn_adv: 32 */
111 {HCI_SUPP_LE_STATES_INIT_MASTER_MASK, HCI_SUPP_LE_STATES_INIT_MASTER_OFF}, /* master 28 */
112 {HCI_SUPP_LE_STATES_INIT_MASTER_SLAVE_MASK, HCI_SUPP_LE_STATES_INIT_MASTER_SLAVE_OFF}, /* slave 41 */
113 {HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_INIT_MASK, HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_INIT_OFF} ,/* lo du dir adv 34 */
114 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_INIT_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_INIT_OFF}, /* hi duty dir adv 33 */
115 {HCI_SUPP_LE_STATES_NON_CONN_INIT_MASK, HCI_SUPP_LE_STATES_NON_CONN_INIT_OFF}, /* non connectable adv */
116 {HCI_SUPP_LE_STATES_PASS_SCAN_INIT_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_INIT_OFF}, /* passive scan */
117 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_INIT_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_INIT_OFF}, /* active scan */
118 {HCI_SUPP_LE_STATES_SCAN_ADV_INIT_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_INIT_OFF} /* scanable adv */
122 {HCI_SUPP_LE_STATES_CONN_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_CONN_ADV_MASTER_OFF}, /* conn_adv: 35 */
123 {HCI_SUPP_LE_STATES_INIT_MASTER_MASK, HCI_SUPP_LE_STATES_INIT_MASTER_OFF}, /* init 28 */
124 {HCI_SUPP_LE_STATES_INIT_MASTER_MASK, HCI_SUPP_LE_STATES_INIT_MASTER_OFF}, /* master 28 */
125 {HCI_SUPP_LE_STATES_CONN_ADV_INIT_MASK, HCI_SUPP_LE_STATES_CONN_ADV_INIT_OFF}, /* slave: 32 */
126 {HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_MASTER_OFF}, /* lo duty cycle adv 37 */
127 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_MASTER_OFF}, /* hi duty cycle adv 36 */
128 {HCI_SUPP_LE_STATES_NON_CONN_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_MASTER_OFF}, /* non connectable adv */
129 {HCI_SUPP_LE_STATES_PASS_SCAN_MASTER_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_MASTER_OFF}, /* passive scan */
130 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_MASTER_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_MASTER_OFF}, /* active scan */
131 {HCI_SUPP_LE_STATES_SCAN_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_MASTER_OFF} /* scanable adv */
135 {HCI_SUPP_LE_STATES_CONN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_CONN_ADV_SLAVE_OFF}, /* conn_adv: 38,*/
136 {HCI_SUPP_LE_STATES_INIT_MASTER_SLAVE_MASK, HCI_SUPP_LE_STATES_INIT_MASTER_SLAVE_OFF}, /* init 41 */
137 {HCI_SUPP_LE_STATES_INIT_MASTER_SLAVE_MASK, HCI_SUPP_LE_STATES_INIT_MASTER_SLAVE_OFF}, /* master 41 */
138 {HCI_SUPP_LE_STATES_CONN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_CONN_ADV_SLAVE_OFF}, /* slave: 38,*/
139 {HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_SLAVE_OFF}, /* lo duty cycle adv 40 */
140 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_SLAVE_OFF}, /* hi duty cycle adv 39 */
141 {HCI_SUPP_LE_STATES_NON_CONN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_SLAVE_OFF}, /* non connectable adv */
142 {HCI_SUPP_LE_STATES_PASS_SCAN_SLAVE_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_SLAVE_OFF}, /* passive scan */
143 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_SLAVE_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_SLAVE_OFF}, /* active scan */
144 {HCI_SUPP_LE_STATES_SCAN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_SLAVE_OFF} /* scanable adv */
147 { /* lo duty cycle adv */
148 {0, 0}, /* conn_adv: 38,*/
149 {HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_INIT_MASK, HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_INIT_OFF} ,/* init 34 */
150 {HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_MASTER_OFF}, /* master 37 */
151 {HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_LO_DUTY_DIR_ADV_SLAVE_OFF}, /* slave: 40 */
152 {0, 0}, /* lo duty cycle adv 40 */
153 {0, 0}, /* hi duty cycle adv 39 */
154 {0, 0}, /* non connectable adv */
155 {0, 0}, /* TODO: passive scan, not covered? */
156 {0, 0}, /* TODO: active scan, not covered? */
157 {0, 0} /* scanable adv */
159 { /* hi duty cycle adv */
160 {0, 0}, /* conn_adv: 38,*/
161 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_INIT_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_INIT_OFF}, /* init 33 */
162 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_MASTER_OFF}, /* master 36 */
163 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_SLAVE_OFF}, /* slave: 39*/
164 {0, 0}, /* lo duty cycle adv 40 */
165 {0, 0}, /* hi duty cycle adv 39 */
166 {0, 0}, /* non connectable adv */
167 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_PASS_SCAN_OFF}, /* passive scan */
168 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_ACTIVE_SCAN_OFF}, /* active scan */
169 {0, 0} /* scanable adv */
171 { /* non connectable adv */
172 {0, 0}, /* conn_adv: */
173 {HCI_SUPP_LE_STATES_NON_CONN_INIT_MASK, HCI_SUPP_LE_STATES_NON_CONN_INIT_OFF}, /* init */
174 {HCI_SUPP_LE_STATES_NON_CONN_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_MASTER_OFF}, /* master */
175 {HCI_SUPP_LE_STATES_NON_CONN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_SLAVE_OFF}, /* slave: */
176 {0, 0}, /* lo duty cycle adv */
177 {0, 0}, /* hi duty cycle adv */
178 {0, 0}, /* non connectable adv */
179 {HCI_SUPP_LE_STATES_NON_CONN_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_PASS_SCAN_OFF}, /* passive scan */
180 {HCI_SUPP_LE_STATES_NON_CONN_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_ACTIVE_SCAN_OFF}, /* active scan */
181 {0, 0} /* scanable adv */
184 {HCI_SUPP_LE_STATES_CONN_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_CONN_ADV_PASS_SCAN_OFF}, /* conn_adv: */
185 {HCI_SUPP_LE_STATES_PASS_SCAN_INIT_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_INIT_OFF}, /* init */
186 {HCI_SUPP_LE_STATES_PASS_SCAN_MASTER_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_MASTER_OFF}, /* master */
187 {HCI_SUPP_LE_STATES_PASS_SCAN_SLAVE_MASK, HCI_SUPP_LE_STATES_PASS_SCAN_SLAVE_OFF}, /* slave: */
188 {0, 0}, /* lo duty cycle adv */
189 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_PASS_SCAN_OFF}, /* hi duty cycle adv */
190 {HCI_SUPP_LE_STATES_NON_CONN_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_PASS_SCAN_OFF}, /* non connectable adv */
191 {0, 0}, /* passive scan */
192 {0, 0}, /* active scan */
193 {HCI_SUPP_LE_STATES_SCAN_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_PASS_SCAN_OFF} /* scanable adv */
196 {HCI_SUPP_LE_STATES_CONN_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_CONN_ADV_ACTIVE_SCAN_OFF}, /* conn_adv: */
197 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_INIT_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_INIT_OFF}, /* init */
198 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_MASTER_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_MASTER_OFF}, /* master */
199 {HCI_SUPP_LE_STATES_ACTIVE_SCAN_SLAVE_MASK, HCI_SUPP_LE_STATES_ACTIVE_SCAN_SLAVE_OFF}, /* slave: */
200 {0, 0}, /* lo duty cycle adv */
201 {HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_HI_DUTY_DIR_ADV_ACTIVE_SCAN_OFF}, /* hi duty cycle adv */
202 {HCI_SUPP_LE_STATES_NON_CONN_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_NON_CONN_ADV_ACTIVE_SCAN_OFF}, /* non connectable adv */
203 {0, 0}, /* TODO: passive scan */
204 {0, 0}, /* TODO: active scan */
205 {HCI_SUPP_LE_STATES_SCAN_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_ACTIVE_SCAN_OFF} /* scanable adv */
208 {0, 0}, /* conn_adv: */
209 {HCI_SUPP_LE_STATES_SCAN_ADV_INIT_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_INIT_OFF}, /* init */
210 {HCI_SUPP_LE_STATES_SCAN_ADV_MASTER_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_MASTER_OFF}, /* master */
211 {HCI_SUPP_LE_STATES_SCAN_ADV_SLAVE_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_SLAVE_OFF}, /* slave: */
212 {0, 0}, /* lo duty cycle adv */
213 {0, 0}, /* hi duty cycle adv */
214 {0, 0}, /* non connectable adv */
215 {HCI_SUPP_LE_STATES_SCAN_ADV_PASS_SCAN_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_PASS_SCAN_OFF}, /* passive scan */
216 {HCI_SUPP_LE_STATES_SCAN_ADV_ACTIVE_SCAN_MASK, HCI_SUPP_LE_STATES_SCAN_ADV_ACTIVE_SCAN_OFF}, /* active scan */
217 {0, 0} /* scanable adv */
221 /* check LE combo state supported */
222 #define BTM_LE_STATES_SUPPORTED(x, y, z) ((x)[(z)] & (y))
224 /*******************************************************************************
226 ** Function BTM_BleUpdateAdvWhitelist
228 ** Description Add or remove device from advertising white list
232 *******************************************************************************/
233 BOOLEAN BTM_BleUpdateAdvWhitelist(BOOLEAN add_remove, BD_ADDR remote_bda)
241 /*******************************************************************************
243 ** Function BTM_BleUpdateAdvFilterPolicy
245 ** Description This function update the filter policy of advertiser.
247 ** Parameter adv_policy: advertising filter policy
250 *******************************************************************************/
251 void BTM_BleUpdateAdvFilterPolicy(tBTM_BLE_AFP adv_policy)
253 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
254 tBLE_ADDR_TYPE init_addr_type = BLE_ADDR_PUBLIC;
255 BD_ADDR p_addr_ptr= {0};
256 UINT8 adv_mode = p_cb->adv_mode;
258 BTM_TRACE_EVENT ("BTM_BleUpdateAdvFilterPolicy");
260 if (!controller_get_interface()->supports_ble())
263 if (p_cb->afp != adv_policy)
265 p_cb->afp = adv_policy;
267 /* if adv active, stop and restart */
270 if (p_cb->connectable_mode & BTM_BLE_CONNECTABLE)
271 p_cb->evt_type = btm_set_conn_mode_adv_init_addr(p_cb, p_addr_ptr, &init_addr_type,
272 &p_cb->adv_addr_type);
274 btsnd_hcic_ble_write_adv_params ((UINT16)(p_cb->adv_interval_min ? p_cb->adv_interval_min :
275 BTM_BLE_GAP_ADV_SLOW_INT),
276 (UINT16)(p_cb->adv_interval_max ? p_cb->adv_interval_max :
277 BTM_BLE_GAP_ADV_SLOW_INT),
285 if (adv_mode == BTM_BLE_ADV_ENABLE)
286 btm_ble_start_adv ();
291 /*******************************************************************************
293 ** Function btm_ble_send_extended_scan_params
295 ** Description This function sends out the extended scan parameters command to the controller
297 ** Parameters scan_type - Scan type
298 ** scan_int - Scan interval
299 ** scan_win - Scan window
300 ** addr_type_own - Own address type
301 ** scan_filter_policy - Scan filter policy
303 ** Returns TRUE or FALSE
305 *******************************************************************************/
306 BOOLEAN btm_ble_send_extended_scan_params(UINT8 scan_type, UINT32 scan_int,
307 UINT32 scan_win, UINT8 addr_type_own,
308 UINT8 scan_filter_policy)
310 UINT8 scan_param[HCIC_PARAM_SIZE_BLE_WRITE_EXTENDED_SCAN_PARAM];
311 UINT8 *pp_scan = scan_param;
313 memset(scan_param, 0, HCIC_PARAM_SIZE_BLE_WRITE_EXTENDED_SCAN_PARAM);
315 UINT8_TO_STREAM(pp_scan, scan_type);
316 UINT32_TO_STREAM(pp_scan, scan_int);
317 UINT32_TO_STREAM(pp_scan, scan_win);
318 UINT8_TO_STREAM(pp_scan, addr_type_own);
319 UINT8_TO_STREAM(pp_scan, scan_filter_policy);
321 BTM_TRACE_DEBUG("%s, %d, %d", __func__, scan_int, scan_win);
322 if ((BTM_VendorSpecificCommand(HCI_BLE_EXTENDED_SCAN_PARAMS_OCF,
323 HCIC_PARAM_SIZE_BLE_WRITE_EXTENDED_SCAN_PARAM, scan_param, NULL)) != BTM_SUCCESS)
325 BTM_TRACE_ERROR("%s error sending extended scan parameters", __func__);
331 /*******************************************************************************
333 ** Function BTM_BleObserve
335 ** Description This procedure keep the device listening for advertising
336 ** events from a broadcast device.
338 ** Parameters start: start or stop observe.
339 ** white_list: use white list in observer mode or not.
343 *******************************************************************************/
344 tBTM_STATUS BTM_BleObserve(BOOLEAN start, UINT8 duration,
345 tBTM_INQ_RESULTS_CB *p_results_cb, tBTM_CMPL_CB *p_cmpl_cb)
347 tBTM_BLE_INQ_CB *p_inq = &btm_cb.ble_ctr_cb.inq_var;
348 tBTM_STATUS status = BTM_WRONG_MODE;
350 UINT32 scan_interval = !p_inq->scan_interval ? BTM_BLE_GAP_DISC_SCAN_INT : p_inq->scan_interval;
351 UINT32 scan_window = !p_inq->scan_window ? BTM_BLE_GAP_DISC_SCAN_WIN : p_inq->scan_window;
353 BTM_TRACE_EVENT ("%s : scan_type:%d, %d, %d", __func__, btm_cb.btm_inq_vars.scan_type,
354 p_inq->scan_interval, p_inq->scan_window);
356 if (!controller_get_interface()->supports_ble())
357 return BTM_ILLEGAL_VALUE;
361 /* shared inquiry database, do not allow observe if any inquiry is active */
362 if (BTM_BLE_IS_OBS_ACTIVE(btm_cb.ble_ctr_cb.scan_activity))
364 BTM_TRACE_ERROR("%s Observe Already Active", __func__);
368 btm_cb.ble_ctr_cb.p_obs_results_cb = p_results_cb;
369 btm_cb.ble_ctr_cb.p_obs_cmpl_cb = p_cmpl_cb;
370 status = BTM_CMD_STARTED;
372 /* scan is not started */
373 if (!BTM_BLE_IS_SCAN_ACTIVE(btm_cb.ble_ctr_cb.scan_activity))
375 /* allow config of scan type */
376 p_inq->scan_type = (p_inq->scan_type == BTM_BLE_SCAN_MODE_NONE) ?
377 BTM_BLE_SCAN_MODE_ACTI: p_inq->scan_type;
378 /* assume observe always not using white list */
379 #if (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE)
380 /* enable resolving list */
381 btm_ble_enable_resolving_list_for_platform(BTM_BLE_RL_SCAN);
384 if (cmn_ble_vsc_cb.extended_scan_support == 0)
386 btsnd_hcic_ble_set_scan_params(p_inq->scan_type, (UINT16)scan_interval,
388 btm_cb.ble_ctr_cb.addr_mgnt_cb.own_addr_type,
389 BTM_BLE_DEFAULT_SFP);
393 btm_ble_send_extended_scan_params(p_inq->scan_type, scan_interval, scan_window,
394 btm_cb.ble_ctr_cb.addr_mgnt_cb.own_addr_type,
395 BTM_BLE_DEFAULT_SFP);
398 p_inq->scan_duplicate_filter = BTM_BLE_DUPLICATE_DISABLE;
399 status = btm_ble_start_scan();
402 if (status == BTM_CMD_STARTED)
404 btm_cb.ble_ctr_cb.scan_activity |= BTM_LE_OBSERVE_ACTIVE;
406 /* start observer timer */
407 btu_start_timer (&btm_cb.ble_ctr_cb.obs_timer_ent, BTU_TTYPE_BLE_OBSERVE, duration);
410 else if (BTM_BLE_IS_OBS_ACTIVE(btm_cb.ble_ctr_cb.scan_activity))
412 status = BTM_CMD_STARTED;
413 btm_ble_stop_observe();
417 BTM_TRACE_ERROR("%s Observe not active", __func__);
424 /*******************************************************************************
426 ** Function BTM_BleBroadcast
428 ** Description This function is to start or stop broadcasting.
430 ** Parameters start: start or stop broadcasting.
434 *******************************************************************************/
435 tBTM_STATUS BTM_BleBroadcast(BOOLEAN start)
437 tBTM_STATUS status = BTM_NO_RESOURCES;
438 tBTM_LE_RANDOM_CB *p_addr_cb = &btm_cb.ble_ctr_cb.addr_mgnt_cb;
439 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
440 UINT8 evt_type = p_cb->scan_rsp ? BTM_BLE_DISCOVER_EVT: BTM_BLE_NON_CONNECT_EVT;
442 if (!controller_get_interface()->supports_ble())
443 return BTM_ILLEGAL_VALUE;
445 #ifdef BTM_BLE_PC_ADV_TEST_MODE
446 if (BTM_BLE_PC_ADV_TEST_MODE)
448 evt_type = p_cb->scan_rsp ? BTM_BLE_CONNECT_EVT: BTM_BLE_NON_CONNECT_EVT;
452 if (start && p_cb->adv_mode == BTM_BLE_ADV_DISABLE)
454 /* update adv params */
455 if (!btsnd_hcic_ble_write_adv_params ((UINT16)(p_cb->adv_interval_min ? p_cb->adv_interval_min :
456 BTM_BLE_GAP_ADV_INT),
457 (UINT16)(p_cb->adv_interval_max ? p_cb->adv_interval_max :
458 BTM_BLE_GAP_ADV_INT),
460 p_addr_cb->own_addr_type,
461 p_cb->direct_bda.type,
462 p_cb->direct_bda.bda,
466 status = BTM_NO_RESOURCES;
468 p_cb->evt_type = evt_type;
470 status = btm_ble_start_adv ();
474 status = btm_ble_stop_adv();
475 #if BLE_PRIVACY_SPT == TRUE
476 btm_ble_disable_resolving_list(BTM_BLE_RL_ADV, TRUE);
481 status = BTM_WRONG_MODE;
482 BTM_TRACE_ERROR("Can not %s Broadcast, device %s in Broadcast mode",
483 (start ? "Start" : "Stop"), (start ? "already" :"not"));
488 #if BLE_VND_INCLUDED == TRUE
489 /*******************************************************************************
491 ** Function btm_vsc_brcm_features_complete
493 ** Description Command Complete callback for HCI_BLE_VENDOR_CAP_OCF
497 *******************************************************************************/
498 static void btm_ble_vendor_capability_vsc_cmpl_cback (tBTM_VSC_CMPL *p_vcs_cplt_params)
503 BTM_TRACE_DEBUG("%s", __func__);
505 /* Check status of command complete event */
506 if ((p_vcs_cplt_params->opcode == HCI_BLE_VENDOR_CAP_OCF) &&
507 (p_vcs_cplt_params->param_len > 0))
509 p = p_vcs_cplt_params->p_param_buf;
510 STREAM_TO_UINT8(status, p);
513 if (status == HCI_SUCCESS)
515 STREAM_TO_UINT8(btm_cb.cmn_ble_vsc_cb.adv_inst_max, p);
516 STREAM_TO_UINT8(btm_cb.cmn_ble_vsc_cb.rpa_offloading, p);
517 STREAM_TO_UINT16(btm_cb.cmn_ble_vsc_cb.tot_scan_results_strg, p);
518 STREAM_TO_UINT8(btm_cb.cmn_ble_vsc_cb.max_irk_list_sz, p);
519 STREAM_TO_UINT8(btm_cb.cmn_ble_vsc_cb.filter_support, p);
520 STREAM_TO_UINT8(btm_cb.cmn_ble_vsc_cb.max_filter, p);
521 STREAM_TO_UINT8(btm_cb.cmn_ble_vsc_cb.energy_support, p);
523 if (p_vcs_cplt_params->param_len > BTM_VSC_CHIP_CAPABILITY_RSP_LEN_L_RELEASE)
525 STREAM_TO_UINT16(btm_cb.cmn_ble_vsc_cb.version_supported, p);
529 btm_cb.cmn_ble_vsc_cb.version_supported = BTM_VSC_CHIP_CAPABILITY_L_VERSION;
532 if (btm_cb.cmn_ble_vsc_cb.version_supported >= BTM_VSC_CHIP_CAPABILITY_M_VERSION)
534 STREAM_TO_UINT16(btm_cb.cmn_ble_vsc_cb.total_trackable_advertisers, p);
535 STREAM_TO_UINT16(btm_cb.cmn_ble_vsc_cb.extended_scan_support, p);
536 STREAM_TO_UINT16(btm_cb.cmn_ble_vsc_cb.debug_logging_supported, p);
538 btm_cb.cmn_ble_vsc_cb.values_read = TRUE;
541 BTM_TRACE_DEBUG("%s: stat=%d, irk=%d, ADV ins:%d, rpa=%d, ener=%d, ext_scan=%d",
542 __func__, status, btm_cb.cmn_ble_vsc_cb.max_irk_list_sz,
543 btm_cb.cmn_ble_vsc_cb.adv_inst_max, btm_cb.cmn_ble_vsc_cb.rpa_offloading,
544 btm_cb.cmn_ble_vsc_cb.energy_support, btm_cb.cmn_ble_vsc_cb.extended_scan_support);
546 if (BTM_BleMaxMultiAdvInstanceCount() > 0)
547 btm_ble_multi_adv_init();
549 if (btm_cb.cmn_ble_vsc_cb.max_filter > 0)
550 btm_ble_adv_filter_init();
552 #if (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE)
553 /* VS capability included and non-4.2 device */
554 if (btm_cb.cmn_ble_vsc_cb.max_irk_list_sz > 0 &&
555 controller_get_interface()->get_ble_resolving_list_max_size() == 0)
556 btm_ble_resolving_list_init(btm_cb.cmn_ble_vsc_cb.max_irk_list_sz);
557 #endif /* (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE) */
559 if (btm_cb.cmn_ble_vsc_cb.tot_scan_results_strg > 0)
560 btm_ble_batchscan_init();
562 if (p_ctrl_le_feature_rd_cmpl_cback != NULL)
563 p_ctrl_le_feature_rd_cmpl_cback(status);
565 #endif /* BLE_VND_INCLUDED == TRUE */
567 /*******************************************************************************
569 ** Function BTM_BleGetVendorCapabilities
571 ** Description This function reads local LE features
573 ** Parameters p_cmn_vsc_cb : Locala LE capability structure
577 *******************************************************************************/
578 extern void BTM_BleGetVendorCapabilities(tBTM_BLE_VSC_CB *p_cmn_vsc_cb)
580 BTM_TRACE_DEBUG("BTM_BleGetVendorCapabilities");
582 if (NULL != p_cmn_vsc_cb)
584 *p_cmn_vsc_cb = btm_cb.cmn_ble_vsc_cb;
588 /******************************************************************************
590 ** Function BTM_BleReadControllerFeatures
592 ** Description Reads BLE specific controller features
594 ** Parameters: tBTM_BLE_CTRL_FEATURES_CBACK : Callback to notify when features are read
598 *******************************************************************************/
599 extern void BTM_BleReadControllerFeatures(tBTM_BLE_CTRL_FEATURES_CBACK *p_vsc_cback)
601 if (TRUE == btm_cb.cmn_ble_vsc_cb.values_read)
604 #if BLE_VND_INCLUDED == TRUE
605 BTM_TRACE_DEBUG("BTM_BleReadControllerFeatures");
607 p_ctrl_le_feature_rd_cmpl_cback = p_vsc_cback;
608 if ( BTM_VendorSpecificCommand (HCI_BLE_VENDOR_CAP_OCF,
611 btm_ble_vendor_capability_vsc_cmpl_cback)
614 BTM_TRACE_ERROR("LE Get_Vendor Capabilities Command Failed.");
622 /*******************************************************************************
624 ** Function BTM_BleEnableMixedPrivacyMode
626 ** Description This function is called to enabled Mixed mode if privacy 1.2
627 ** is applicable in controller.
629 ** Parameters mixed_on: mixed mode to be used or not.
633 *******************************************************************************/
634 void BTM_BleEnableMixedPrivacyMode(BOOLEAN mixed_on)
637 #if BLE_PRIVACY_SPT == TRUE
638 btm_cb.ble_ctr_cb.mixed_mode = mixed_on;
640 /* TODO: send VSC to enabled mixed mode */
644 /*******************************************************************************
646 ** Function BTM_BleConfigPrivacy
648 ** Description This function is called to enable or disable the privacy in
649 ** LE channel of the local device.
651 ** Parameters privacy_mode: privacy mode on or off.
653 ** Returns BOOLEAN privacy mode set success; otherwise failed.
655 *******************************************************************************/
656 BOOLEAN BTM_BleConfigPrivacy(BOOLEAN privacy_mode)
658 #if BLE_PRIVACY_SPT == TRUE
659 tBTM_BLE_CB *p_cb = &btm_cb.ble_ctr_cb;
661 BTM_TRACE_EVENT ("%s", __func__);
663 /* if LE is not supported, return error */
664 if (!controller_get_interface()->supports_ble())
667 uint8_t addr_resolution = 0;
668 if(!privacy_mode)/* if privacy disabled, always use public address */
670 p_cb->addr_mgnt_cb.own_addr_type = BLE_ADDR_PUBLIC;
671 p_cb->privacy_mode = BTM_PRIVACY_NONE;
673 else /* privacy is turned on*/
675 /* always set host random address, used when privacy 1.1 or priavcy 1.2 is disabled */
676 p_cb->addr_mgnt_cb.own_addr_type = BLE_ADDR_RANDOM;
677 btm_gen_resolvable_private_addr((void *)btm_gen_resolve_paddr_low);
679 if (BTM_BleMaxMultiAdvInstanceCount() > 0)
680 btm_ble_multi_adv_enb_privacy(privacy_mode);
682 /* 4.2 controller only allow privacy 1.2 or mixed mode, resolvable private address in controller */
683 if (controller_get_interface()->supports_ble_privacy())
686 /* check vendor specific capability */
687 p_cb->privacy_mode = btm_cb.ble_ctr_cb.mixed_mode ? BTM_PRIVACY_MIXED : BTM_PRIVACY_1_2;
689 else /* 4.1/4.0 controller */
690 p_cb->privacy_mode = BTM_PRIVACY_1_1;
693 GAP_BleAttrDBUpdate (GATT_UUID_GAP_CENTRAL_ADDR_RESOL, (tGAP_BLE_ATTR_VALUE *)&addr_resolution);
701 /*******************************************************************************
703 ** Function BTM_BleMaxMultiAdvInstanceCount
705 ** Description Returns max number of multi adv instances supported by controller
707 ** Returns Max multi adv instance count
709 *******************************************************************************/
710 extern UINT8 BTM_BleMaxMultiAdvInstanceCount(void)
712 return btm_cb.cmn_ble_vsc_cb.adv_inst_max < BTM_BLE_MULTI_ADV_MAX ?
713 btm_cb.cmn_ble_vsc_cb.adv_inst_max : BTM_BLE_MULTI_ADV_MAX;
716 #if BLE_PRIVACY_SPT == TRUE
717 /*******************************************************************************
719 ** Function btm_ble_resolve_random_addr_on_adv
721 ** Description resolve random address complete callback.
725 *******************************************************************************/
726 static void btm_ble_resolve_random_addr_on_adv(void * p_rec, void *p)
728 tBTM_SEC_DEV_REC *match_rec = (tBTM_SEC_DEV_REC *) p_rec;
729 UINT8 addr_type = BLE_ADDR_RANDOM;
731 UINT8 *pp = (UINT8 *)p + 1;
734 BTM_TRACE_EVENT ("btm_ble_resolve_random_addr_on_adv ");
736 STREAM_TO_UINT8 (evt_type, pp);
737 STREAM_TO_UINT8 (addr_type, pp);
738 STREAM_TO_BDADDR (bda, pp);
742 BTM_TRACE_DEBUG("Random match");
743 match_rec->ble.active_addr_type = BTM_BLE_ADDR_RRA;
744 memcpy(match_rec->ble.cur_rand_addr, bda, BD_ADDR_LEN);
746 if (btm_ble_init_pseudo_addr(match_rec, bda))
748 memcpy(bda, match_rec->bd_addr, BD_ADDR_LEN);
750 // Assign the original address to be the current report address
751 memcpy(bda, match_rec->ble.pseudo_addr, BD_ADDR_LEN);
755 btm_ble_process_adv_pkt_cont(bda, addr_type, evt_type, pp);
761 /*******************************************************************************
763 ** Function BTM_BleLocalPrivacyEnabled
765 ** Description Checks if local device supports private address
767 ** Returns Return TRUE if local privacy is enabled else FALSE
769 *******************************************************************************/
770 BOOLEAN BTM_BleLocalPrivacyEnabled(void)
772 #if BLE_PRIVACY_SPT == TRUE
773 return (btm_cb.ble_ctr_cb.privacy_mode != BTM_PRIVACY_NONE);
779 /*******************************************************************************
781 ** Function BTM_BleSetBgConnType
783 ** Description This function is called to set BLE connectable mode for a
784 ** peripheral device.
786 ** Parameters bg_conn_type: it can be auto connection, or selective connection.
787 ** p_select_cback: callback function when selective connection procedure
792 *******************************************************************************/
793 BOOLEAN BTM_BleSetBgConnType(tBTM_BLE_CONN_TYPE bg_conn_type,
794 tBTM_BLE_SEL_CBACK *p_select_cback)
796 BOOLEAN started = TRUE;
798 BTM_TRACE_EVENT ("BTM_BleSetBgConnType ");
799 if (!controller_get_interface()->supports_ble())
802 if (btm_cb.ble_ctr_cb.bg_conn_type != bg_conn_type)
804 switch (bg_conn_type)
806 case BTM_BLE_CONN_AUTO:
807 btm_ble_start_auto_conn(TRUE);
810 case BTM_BLE_CONN_SELECTIVE:
811 if (btm_cb.ble_ctr_cb.bg_conn_type == BTM_BLE_CONN_AUTO)
813 btm_ble_start_auto_conn(FALSE);
815 btm_ble_start_select_conn(TRUE, p_select_cback);
818 case BTM_BLE_CONN_NONE:
819 if (btm_cb.ble_ctr_cb.bg_conn_type == BTM_BLE_CONN_AUTO)
821 btm_ble_start_auto_conn(FALSE);
823 else if (btm_cb.ble_ctr_cb.bg_conn_type == BTM_BLE_CONN_SELECTIVE)
825 btm_ble_start_select_conn(FALSE, NULL);
831 BTM_TRACE_ERROR("invalid bg connection type : %d ", bg_conn_type);
837 btm_cb.ble_ctr_cb.bg_conn_type = bg_conn_type;
842 /*******************************************************************************
844 ** Function BTM_BleClearBgConnDev
846 ** Description This function is called to clear the whitelist,
847 ** end any pending whitelist connections,
848 * and reset the local bg device list.
854 *******************************************************************************/
855 void BTM_BleClearBgConnDev(void)
857 btm_ble_start_auto_conn(FALSE);
858 btm_ble_clear_white_list();
859 gatt_reset_bgdev_list();
862 /*******************************************************************************
864 ** Function BTM_BleUpdateBgConnDev
866 ** Description This function is called to add or remove a device into/from
867 ** background connection procedure. The background connection
868 * procedure is decided by the background connection type, it can be
869 * auto connection, or selective connection.
871 ** Parameters add_remove: TRUE to add; FALSE to remove.
872 ** remote_bda: device address to add/remove.
876 *******************************************************************************/
877 BOOLEAN BTM_BleUpdateBgConnDev(BOOLEAN add_remove, BD_ADDR remote_bda)
879 BTM_TRACE_EVENT("%s() add=%d", __func__, add_remove);
880 return btm_update_dev_to_white_list(add_remove, remote_bda);
883 /*******************************************************************************
885 ** Function BTM_BleSetConnectableMode
887 ** Description This function is called to set BLE connectable mode for a
888 ** peripheral device.
890 ** Parameters conn_mode: directed connectable mode, or non-directed.It can
891 ** be BTM_BLE_CONNECT_EVT, BTM_BLE_CONNECT_DIR_EVT or
892 ** BTM_BLE_CONNECT_LO_DUTY_DIR_EVT
894 ** Returns BTM_ILLEGAL_VALUE if controller does not support BLE.
895 ** BTM_SUCCESS is status set successfully; otherwise failure.
897 *******************************************************************************/
898 tBTM_STATUS BTM_BleSetConnectableMode(tBTM_BLE_CONN_MODE connectable_mode)
900 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
902 BTM_TRACE_EVENT ("%s connectable_mode = %d ", __func__, connectable_mode);
903 if (!controller_get_interface()->supports_ble())
904 return BTM_ILLEGAL_VALUE;
906 p_cb->directed_conn = connectable_mode;
907 return btm_ble_set_connectability( p_cb->connectable_mode);
910 /*******************************************************************************
912 ** Function btm_set_conn_mode_adv_init_addr
914 ** Description set initator address type and local address type based on adv
918 *******************************************************************************/
919 static UINT8 btm_set_conn_mode_adv_init_addr(tBTM_BLE_INQ_CB *p_cb,
920 BD_ADDR_PTR p_peer_addr_ptr,
921 tBLE_ADDR_TYPE *p_peer_addr_type,
922 tBLE_ADDR_TYPE *p_own_addr_type)
924 UINT8 evt_type, i = BTM_SEC_MAX_DEVICE_RECORDS;
925 tBTM_SEC_DEV_REC *p_dev_rec;
927 evt_type = (p_cb->connectable_mode == BTM_BLE_NON_CONNECTABLE) ? \
928 ((p_cb->scan_rsp) ? BTM_BLE_DISCOVER_EVT : BTM_BLE_NON_CONNECT_EVT )\
929 : BTM_BLE_CONNECT_EVT;
931 if (evt_type == BTM_BLE_CONNECT_EVT)
933 evt_type = p_cb->directed_conn;
935 if ( p_cb->directed_conn == BTM_BLE_CONNECT_DIR_EVT ||
936 p_cb->directed_conn == BTM_BLE_CONNECT_LO_DUTY_DIR_EVT)
939 #if BLE_PRIVACY_SPT == TRUE
940 /* for privacy 1.2, convert peer address as static, own address set as ID addr */
941 if (btm_cb.ble_ctr_cb.privacy_mode == BTM_PRIVACY_1_2 ||
942 btm_cb.ble_ctr_cb.privacy_mode == BTM_PRIVACY_MIXED)
944 /* only do so for bonded device */
945 if ((p_dev_rec = btm_find_or_alloc_dev (p_cb->direct_bda.bda)) != NULL &&
946 p_dev_rec->ble.in_controller_list & BTM_RESOLVING_LIST_BIT)
948 btm_ble_enable_resolving_list(BTM_BLE_RL_ADV);
949 memcpy(p_peer_addr_ptr, p_dev_rec->ble.static_addr, BD_ADDR_LEN);
950 *p_peer_addr_type = p_dev_rec->ble.static_addr_type;
951 *p_own_addr_type = BLE_ADDR_RANDOM_ID;
954 /* otherwise fall though as normal directed adv */
957 btm_ble_disable_resolving_list(BTM_BLE_RL_ADV, TRUE);
961 /* direct adv mode does not have privacy, if privacy is not enabled */
962 *p_peer_addr_type = p_cb->direct_bda.type;
963 memcpy(p_peer_addr_ptr, p_cb->direct_bda.bda, BD_ADDR_LEN);
968 /* undirect adv mode or non-connectable mode*/
969 #if BLE_PRIVACY_SPT == TRUE
970 /* when privacy 1.2 privacy only mode is used, or mixed mode */
971 if ((btm_cb.ble_ctr_cb.privacy_mode == BTM_PRIVACY_1_2 && p_cb->afp != AP_SCAN_CONN_ALL) ||
972 btm_cb.ble_ctr_cb.privacy_mode == BTM_PRIVACY_MIXED)
974 /* if enhanced privacy is required, set Identity address and matching IRK peer */
975 for (i = 0; i < BTM_SEC_MAX_DEVICE_RECORDS; i ++)
977 if ((btm_cb.sec_dev_rec[i].sec_flags & BTM_SEC_IN_USE) != 0 &&
978 (btm_cb.sec_dev_rec[i].ble.in_controller_list & BTM_RESOLVING_LIST_BIT) != 0)
980 memcpy(p_peer_addr_ptr, btm_cb.sec_dev_rec[i].ble.static_addr, BD_ADDR_LEN);
981 *p_peer_addr_type = btm_cb.sec_dev_rec[i].ble.static_addr_type;
986 if (i != BTM_SEC_MAX_DEVICE_RECORDS)
987 *p_own_addr_type = BLE_ADDR_RANDOM_ID;
989 /* resolving list is empty, not enabled */
990 *p_own_addr_type = BLE_ADDR_RANDOM;
992 /* privacy 1.1, or privacy 1.2, general discoverable/connectable mode, disable privacy in */
993 /* controller fall back to host based privacy */
994 else if (btm_cb.ble_ctr_cb.privacy_mode != BTM_PRIVACY_NONE)
996 *p_own_addr_type = BLE_ADDR_RANDOM;
1000 /* if no privacy,do not set any peer address,*/
1001 /* local address type go by global privacy setting */
1005 /*******************************************************************************
1007 ** Function BTM_BleSetAdvParams
1009 ** Description This function is called to set advertising parameters.
1011 ** Parameters adv_int_min: minimum advertising interval
1012 ** adv_int_max: maximum advertising interval
1013 ** p_dir_bda: connectable direct initiator's LE device address
1014 ** chnl_map: advertising channel map.
1018 *******************************************************************************/
1019 tBTM_STATUS BTM_BleSetAdvParams(UINT16 adv_int_min, UINT16 adv_int_max,
1020 tBLE_BD_ADDR *p_dir_bda,
1021 tBTM_BLE_ADV_CHNL_MAP chnl_map)
1023 tBTM_LE_RANDOM_CB *p_addr_cb = &btm_cb.ble_ctr_cb.addr_mgnt_cb;
1024 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
1025 tBTM_STATUS status = BTM_SUCCESS;
1026 BD_ADDR p_addr_ptr = {0};
1027 tBLE_ADDR_TYPE init_addr_type = BLE_ADDR_PUBLIC;
1028 tBLE_ADDR_TYPE own_addr_type = p_addr_cb->own_addr_type;
1029 UINT8 adv_mode = p_cb->adv_mode;
1031 BTM_TRACE_EVENT ("BTM_BleSetAdvParams");
1033 if (!controller_get_interface()->supports_ble())
1034 return BTM_ILLEGAL_VALUE;
1036 if (!BTM_BLE_ISVALID_PARAM(adv_int_min, BTM_BLE_ADV_INT_MIN, BTM_BLE_ADV_INT_MAX) ||
1037 !BTM_BLE_ISVALID_PARAM(adv_int_max, BTM_BLE_ADV_INT_MIN, BTM_BLE_ADV_INT_MAX))
1039 return BTM_ILLEGAL_VALUE;
1042 p_cb->adv_interval_min = adv_int_min;
1043 p_cb->adv_interval_max = adv_int_max;
1044 p_cb->adv_chnl_map = chnl_map;
1048 memcpy(&p_cb->direct_bda, p_dir_bda, sizeof(tBLE_BD_ADDR));
1051 BTM_TRACE_EVENT ("update params for an active adv");
1055 p_cb->evt_type = btm_set_conn_mode_adv_init_addr(p_cb, p_addr_ptr, &init_addr_type,
1058 /* update adv params */
1059 btsnd_hcic_ble_write_adv_params (p_cb->adv_interval_min,
1060 p_cb->adv_interval_max,
1068 if (adv_mode == BTM_BLE_ADV_ENABLE)
1069 btm_ble_start_adv();
1074 /*******************************************************************************
1076 ** Function BTM_BleReadAdvParams
1078 ** Description This function is called to set advertising parameters.
1080 ** Parameters adv_int_min: minimum advertising interval
1081 ** adv_int_max: maximum advertising interval
1082 ** p_dir_bda: connectable direct initiator's LE device address
1083 ** chnl_map: advertising channel map.
1087 *******************************************************************************/
1088 void BTM_BleReadAdvParams (UINT16 *adv_int_min, UINT16 *adv_int_max,
1089 tBLE_BD_ADDR *p_dir_bda, tBTM_BLE_ADV_CHNL_MAP *p_chnl_map)
1091 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
1093 BTM_TRACE_EVENT ("BTM_BleReadAdvParams ");
1094 if (!controller_get_interface()->supports_ble())
1097 *adv_int_min = p_cb->adv_interval_min;
1098 *adv_int_max = p_cb->adv_interval_max;
1099 *p_chnl_map = p_cb->adv_chnl_map;
1101 if (p_dir_bda != NULL)
1103 memcpy(p_dir_bda, &p_cb->direct_bda, sizeof(tBLE_BD_ADDR));
1107 /*******************************************************************************
1109 ** Function BTM_BleSetScanParams
1111 ** Description This function is called to set scan parameters.
1113 ** Parameters client_if - Client IF
1114 ** scan_interval - Scan interval
1115 ** scan_window - Scan window
1116 ** scan_mode - Scan mode
1117 ** scan_setup_status_cback - Scan param setup status callback
1121 *******************************************************************************/
1122 void BTM_BleSetScanParams(tGATT_IF client_if, UINT32 scan_interval, UINT32 scan_window,
1123 tBLE_SCAN_MODE scan_mode,
1124 tBLE_SCAN_PARAM_SETUP_CBACK scan_setup_status_cback)
1126 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
1127 UINT32 max_scan_interval;
1128 UINT32 max_scan_window;
1130 BTM_TRACE_EVENT ("%s", __func__);
1131 if (!controller_get_interface()->supports_ble())
1134 /* If not supporting extended scan support, use the older range for checking */
1135 if (btm_cb.cmn_ble_vsc_cb.extended_scan_support == 0)
1137 max_scan_interval = BTM_BLE_SCAN_INT_MAX;
1138 max_scan_window = BTM_BLE_SCAN_WIN_MAX;
1142 /* If supporting extended scan support, use the new extended range for checking */
1143 max_scan_interval = BTM_BLE_EXT_SCAN_INT_MAX;
1144 max_scan_window = BTM_BLE_EXT_SCAN_WIN_MAX;
1147 if (BTM_BLE_ISVALID_PARAM(scan_interval, BTM_BLE_SCAN_INT_MIN, max_scan_interval) &&
1148 BTM_BLE_ISVALID_PARAM(scan_window, BTM_BLE_SCAN_WIN_MIN, max_scan_window) &&
1149 (scan_mode == BTM_BLE_SCAN_MODE_ACTI || scan_mode == BTM_BLE_SCAN_MODE_PASS))
1151 p_cb->scan_type = scan_mode;
1152 p_cb->scan_interval = scan_interval;
1153 p_cb->scan_window = scan_window;
1155 if (scan_setup_status_cback != NULL)
1156 scan_setup_status_cback(client_if, BTM_SUCCESS);
1160 if (scan_setup_status_cback != NULL)
1161 scan_setup_status_cback(client_if, BTM_ILLEGAL_VALUE);
1163 BTM_TRACE_ERROR("Illegal params: scan_interval = %d scan_window = %d",
1164 scan_interval, scan_window);
1169 /*******************************************************************************
1171 ** Function BTM_BleWriteScanRsp
1173 ** Description This function is called to write LE scan response.
1175 ** Parameters: p_scan_rsp: scan response information.
1179 *******************************************************************************/
1180 tBTM_STATUS BTM_BleWriteScanRsp(tBTM_BLE_AD_MASK data_mask, tBTM_BLE_ADV_DATA *p_data)
1182 tBTM_STATUS status = BTM_NO_RESOURCES;
1183 UINT8 rsp_data[BTM_BLE_AD_DATA_LEN],
1186 BTM_TRACE_EVENT ("%s: data_mask:%08x", __func__, data_mask);
1187 if (!controller_get_interface()->supports_ble())
1188 return BTM_ILLEGAL_VALUE;
1190 memset(rsp_data, 0, BTM_BLE_AD_DATA_LEN);
1191 btm_ble_build_adv_data(&data_mask, &p, p_data);
1193 if (btsnd_hcic_ble_set_scan_rsp_data((UINT8)(p - rsp_data), rsp_data))
1195 status = BTM_SUCCESS;
1198 btm_cb.ble_ctr_cb.inq_var.scan_rsp = TRUE;
1200 btm_cb.ble_ctr_cb.inq_var.scan_rsp = FALSE;
1203 status = BTM_ILLEGAL_VALUE;
1208 /*******************************************************************************
1210 ** Function BTM_BleWriteAdvData
1212 ** Description This function is called to write advertising data.
1214 ** Parameters: None.
1218 *******************************************************************************/
1219 tBTM_STATUS BTM_BleWriteAdvData(tBTM_BLE_AD_MASK data_mask, tBTM_BLE_ADV_DATA *p_data)
1221 tBTM_BLE_LOCAL_ADV_DATA *p_cb_data = &btm_cb.ble_ctr_cb.inq_var.adv_data;
1223 tBTM_BLE_AD_MASK mask = data_mask;
1225 BTM_TRACE_EVENT ("BTM_BleWriteAdvData ");
1227 if (!controller_get_interface()->supports_ble())
1228 return BTM_ILLEGAL_VALUE;
1230 memset(p_cb_data, 0, sizeof(tBTM_BLE_LOCAL_ADV_DATA));
1231 p = p_cb_data->ad_data;
1232 p_cb_data->data_mask = data_mask;
1234 p_cb_data->p_flags = btm_ble_build_adv_data(&mask, &p, p_data);
1236 p_cb_data->p_pad = p;
1240 BTM_TRACE_ERROR("Partial data write into ADV");
1243 p_cb_data->data_mask &= ~mask;
1245 if (btsnd_hcic_ble_set_adv_data((UINT8)(p_cb_data->p_pad - p_cb_data->ad_data),
1246 p_cb_data->ad_data))
1249 return BTM_NO_RESOURCES;
1253 /*******************************************************************************
1255 ** Function BTM_CheckAdvData
1257 ** Description This function is called to get ADV data for a specific type.
1259 ** Parameters p_adv - pointer of ADV data
1260 ** type - finding ADV data type
1261 ** p_length - return the length of ADV data not including type
1263 ** Returns pointer of ADV data
1265 *******************************************************************************/
1266 UINT8 *BTM_CheckAdvData( UINT8 *p_adv, UINT8 type, UINT8 *p_length)
1271 BTM_TRACE_API("%s: type=0x%02x", __func__, type);
1273 STREAM_TO_UINT8(length, p);
1275 while ( length && (p - p_adv <= BTM_BLE_CACHE_ADV_DATA_MAX))
1277 STREAM_TO_UINT8(adv_type, p);
1279 if ( adv_type == type )
1281 /* length doesn't include itself */
1282 *p_length = length - 1; /* minus the length of type */
1285 p += length - 1; /* skip the length of data */
1286 STREAM_TO_UINT8(length, p);
1293 /*******************************************************************************
1295 ** Function BTM__BLEReadDiscoverability
1297 ** Description This function is called to read the current LE discoverability
1298 ** mode of the device.
1300 ** Returns BTM_BLE_NON_DISCOVERABLE ,BTM_BLE_LIMITED_DISCOVERABLE or
1301 ** BTM_BLE_GENRAL_DISCOVERABLE
1303 *******************************************************************************/
1304 UINT16 BTM_BleReadDiscoverability()
1306 BTM_TRACE_API("%s", __FUNCTION__);
1308 return (btm_cb.ble_ctr_cb.inq_var.discoverable_mode);
1311 /*******************************************************************************
1313 ** Function BTM__BLEReadConnectability
1315 ** Description This function is called to read the current LE connectibility
1316 ** mode of the device.
1318 ** Returns BTM_BLE_NON_CONNECTABLE or BTM_BLE_CONNECTABLE
1320 *******************************************************************************/
1321 UINT16 BTM_BleReadConnectability()
1323 BTM_TRACE_API ("%s", __FUNCTION__);
1325 return (btm_cb.ble_ctr_cb.inq_var.connectable_mode);
1328 /*******************************************************************************
1330 ** Function btm_ble_build_adv_data
1332 ** Description This function is called build the adv data and rsp data.
1333 *******************************************************************************/
1334 UINT8 *btm_ble_build_adv_data(tBTM_BLE_AD_MASK *p_data_mask, UINT8 **p_dst,
1335 tBTM_BLE_ADV_DATA *p_data)
1337 UINT32 data_mask = *p_data_mask;
1340 UINT16 len = BTM_BLE_AD_DATA_LEN, cp_len = 0;
1342 tBTM_BLE_PROP_ELEM *p_elem;
1344 BTM_TRACE_EVENT (" btm_ble_build_adv_data");
1346 /* build the adv data structure and build the data string */
1350 if (data_mask & BTM_BLE_AD_BIT_FLAGS)
1352 *p++ = MIN_ADV_LENGTH;
1353 *p++ = BTM_BLE_AD_TYPE_FLAG;
1356 *p++ = p_data->flag;
1362 data_mask &= ~BTM_BLE_AD_BIT_FLAGS;
1364 /* appearance data */
1365 if (len > 3 && data_mask & BTM_BLE_AD_BIT_APPEARANCE)
1367 *p++ = 3; /* length */
1368 *p++ = BTM_BLE_AD_TYPE_APPEARANCE;
1369 UINT16_TO_STREAM(p, p_data->appearance);
1372 data_mask &= ~BTM_BLE_AD_BIT_APPEARANCE;
1375 #if BTM_MAX_LOC_BD_NAME_LEN > 0
1376 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_DEV_NAME)
1378 if (strlen(btm_cb.cfg.bd_name) > (UINT16)(len - MIN_ADV_LENGTH))
1380 *p++ = len - MIN_ADV_LENGTH + 1;
1381 *p++ = BTM_BLE_AD_TYPE_NAME_SHORT;
1382 ARRAY_TO_STREAM(p, btm_cb.cfg.bd_name, len - MIN_ADV_LENGTH);
1386 cp_len = (UINT16)strlen(btm_cb.cfg.bd_name);
1388 *p++ = BTM_BLE_AD_TYPE_NAME_CMPL;
1389 ARRAY_TO_STREAM(p, btm_cb.cfg.bd_name, cp_len);
1391 len -= (cp_len + MIN_ADV_LENGTH);
1392 data_mask &= ~BTM_BLE_AD_BIT_DEV_NAME;
1395 /* manufacturer data */
1396 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_MANU &&
1397 p_data && p_data->manu.len != 0)
1399 if (p_data->manu.len > (len - MIN_ADV_LENGTH))
1400 cp_len = len - MIN_ADV_LENGTH;
1402 cp_len = p_data->manu.len;
1405 *p++ = BTM_BLE_AD_TYPE_MANU;
1406 ARRAY_TO_STREAM(p, p_data->manu.val, cp_len);
1408 len -= (cp_len + MIN_ADV_LENGTH);
1409 data_mask &= ~BTM_BLE_AD_BIT_MANU;
1412 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_TX_PWR)
1414 *p++ = MIN_ADV_LENGTH;
1415 *p++ = BTM_BLE_AD_TYPE_TX_PWR;
1416 if (p_data->tx_power > BTM_BLE_ADV_TX_POWER_MAX)
1417 p_data->tx_power = BTM_BLE_ADV_TX_POWER_MAX;
1418 *p++ = btm_ble_map_adv_tx_power(p_data->tx_power);
1420 data_mask &= ~BTM_BLE_AD_BIT_TX_PWR;
1422 /* 16 bits services */
1423 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_SERVICE &&
1424 p_data && p_data->services.num_service != 0)
1426 if (p_data->services.num_service * LEN_UUID_16 > (len - MIN_ADV_LENGTH))
1428 cp_len = (len - MIN_ADV_LENGTH)/LEN_UUID_16;
1429 *p ++ = 1 + cp_len * LEN_UUID_16;
1430 *p++ = BTM_BLE_AD_TYPE_16SRV_PART;
1434 cp_len = p_data->services.num_service;
1435 *p++ = 1 + cp_len * LEN_UUID_16;
1436 *p++ = BTM_BLE_AD_TYPE_16SRV_CMPL;
1438 for (i = 0; i < cp_len; i ++)
1440 UINT16_TO_STREAM(p, *(p_data->services.uuid + i));
1443 len -= (cp_len * MIN_ADV_LENGTH + MIN_ADV_LENGTH);
1444 data_mask &= ~BTM_BLE_AD_BIT_SERVICE;
1446 /* 32 bits service uuid */
1447 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_SERVICE_32 &&
1448 p_data && p_data->service_32b.num_service != 0)
1450 if ((p_data->service_32b.num_service * LEN_UUID_32) > (len - MIN_ADV_LENGTH))
1452 cp_len = (len - MIN_ADV_LENGTH)/LEN_UUID_32;
1453 *p ++ = 1 + cp_len * LEN_UUID_32;
1454 *p++ = BTM_BLE_AD_TYPE_32SRV_PART;
1458 cp_len = p_data->service_32b.num_service;
1459 *p++ = 1 + cp_len * LEN_UUID_32;
1460 *p++ = BTM_BLE_AD_TYPE_32SRV_CMPL;
1462 for (i = 0; i < cp_len; i ++)
1464 UINT32_TO_STREAM(p, *(p_data->service_32b.uuid + i));
1467 len -= (cp_len * LEN_UUID_32 + MIN_ADV_LENGTH);
1468 data_mask &= ~BTM_BLE_AD_BIT_SERVICE_32;
1470 /* 128 bits services */
1471 if (len >= (MAX_UUID_SIZE + 2) && data_mask & BTM_BLE_AD_BIT_SERVICE_128 &&
1472 p_data && p_data->services_128b.num_service)
1474 *p ++ = 1 + MAX_UUID_SIZE;
1475 if (!p_data->services_128b.list_cmpl)
1476 *p++ = BTM_BLE_AD_TYPE_128SRV_PART;
1478 *p++ = BTM_BLE_AD_TYPE_128SRV_CMPL;
1480 ARRAY_TO_STREAM(p, p_data->services_128b.uuid128, MAX_UUID_SIZE);
1482 len -= (MAX_UUID_SIZE + MIN_ADV_LENGTH);
1483 data_mask &= ~BTM_BLE_AD_BIT_SERVICE_128;
1485 /* 32 bits Service Solicitation UUIDs */
1486 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_SERVICE_32SOL &&
1487 p_data->sol_service_32b.num_service != 0)
1489 if ((p_data->sol_service_32b.num_service * LEN_UUID_32) > (len - MIN_ADV_LENGTH))
1491 cp_len = (len - MIN_ADV_LENGTH)/LEN_UUID_32;
1492 *p ++ = 1 + cp_len * LEN_UUID_32;
1496 cp_len = p_data->sol_service_32b.num_service;
1497 *p++ = 1 + cp_len * LEN_UUID_32;
1500 *p++ = BTM_BLE_AD_TYPE_32SOL_SRV_UUID;
1501 for (i = 0; i < cp_len; i ++)
1503 UINT32_TO_STREAM(p, *(p_data->sol_service_32b.uuid + i));
1506 len -= (cp_len * LEN_UUID_32 + MIN_ADV_LENGTH);
1507 data_mask &= ~BTM_BLE_AD_BIT_SERVICE_32SOL;
1509 /* 128 bits Solicitation services UUID */
1510 if (len >= (MAX_UUID_SIZE + MIN_ADV_LENGTH) && data_mask & BTM_BLE_AD_BIT_SERVICE_128SOL &&
1511 p_data && p_data->sol_service_128b.num_service)
1513 *p ++ = 1 + MAX_UUID_SIZE;
1514 *p++ = BTM_BLE_AD_TYPE_128SOL_SRV_UUID;
1515 ARRAY_TO_STREAM(p, p_data->sol_service_128b.uuid128, MAX_UUID_SIZE);
1516 len -= (MAX_UUID_SIZE + MIN_ADV_LENGTH);
1517 data_mask &= ~BTM_BLE_AD_BIT_SERVICE_128SOL;
1519 /* 16bits/32bits/128bits Service Data */
1520 if (len > MIN_ADV_LENGTH && data_mask & BTM_BLE_AD_BIT_SERVICE_DATA &&
1521 p_data && p_data->service_data.len != 0)
1523 if (len > (p_data->service_data.service_uuid.len + MIN_ADV_LENGTH))
1525 if (p_data->service_data.len > (len - MIN_ADV_LENGTH))
1526 cp_len = len - MIN_ADV_LENGTH- p_data->service_data.service_uuid.len;
1528 cp_len = p_data->service_data.len;
1530 *p++ = cp_len + 1 + p_data->service_data.service_uuid.len;
1531 if (p_data->service_data.service_uuid.len == LEN_UUID_16)
1533 *p++ = BTM_BLE_AD_TYPE_SERVICE_DATA;
1534 UINT16_TO_STREAM(p, p_data->service_data.service_uuid.uu.uuid16);
1536 else if (p_data->service_data.service_uuid.len == LEN_UUID_32)
1538 *p++ = BTM_BLE_AD_TYPE_32SERVICE_DATA;
1539 UINT32_TO_STREAM(p, p_data->service_data.service_uuid.uu.uuid32);
1543 *p++ = BTM_BLE_AD_TYPE_128SERVICE_DATA;
1544 ARRAY_TO_STREAM(p, p_data->service_data.service_uuid.uu.uuid128,
1548 ARRAY_TO_STREAM(p, p_data->service_data.val, cp_len);
1550 len -= (cp_len + MIN_ADV_LENGTH + p_data->service_data.service_uuid.len);
1551 data_mask &= ~BTM_BLE_AD_BIT_SERVICE_DATA;
1555 BTM_TRACE_WARNING("service data does not fit");
1559 if (len >= 6 && data_mask & BTM_BLE_AD_BIT_INT_RANGE &&
1563 *p++ = BTM_BLE_AD_TYPE_INT_RANGE;
1564 UINT16_TO_STREAM(p, p_data->int_range.low);
1565 UINT16_TO_STREAM(p, p_data->int_range.hi);
1567 data_mask &= ~BTM_BLE_AD_BIT_INT_RANGE;
1569 if (data_mask & BTM_BLE_AD_BIT_PROPRIETARY && p_data)
1571 for (i = 0; i < p_data->proprietary.num_elem; ++i)
1573 p_elem = &p_data->proprietary.elem[i];
1575 if (len >= (MIN_ADV_LENGTH + p_elem->len))/* len byte(1) + ATTR type(1) + Uuid len(2)
1578 *p ++ = p_elem->len + 1; /* Uuid len + value length */
1579 *p ++ = p_elem->adv_type;
1580 ARRAY_TO_STREAM(p, p_elem->val, p_elem->len);
1582 len -= (MIN_ADV_LENGTH + p_elem->len);
1586 BTM_TRACE_WARNING("data exceed max adv packet length");
1590 data_mask &= ~BTM_BLE_AD_BIT_PROPRIETARY;
1594 *p_data_mask = data_mask;
1599 /*******************************************************************************
1601 ** Function btm_ble_select_adv_interval
1603 ** Description select adv interval based on device mode
1607 *******************************************************************************/
1608 void btm_ble_select_adv_interval(tBTM_BLE_INQ_CB *p_cb, UINT8 evt_type, UINT16 *p_adv_int_min, UINT16 *p_adv_int_max)
1610 if (p_cb->adv_interval_min && p_cb->adv_interval_max)
1612 *p_adv_int_min = p_cb->adv_interval_min;
1613 *p_adv_int_max = p_cb->adv_interval_max;
1619 case BTM_BLE_CONNECT_EVT:
1620 case BTM_BLE_CONNECT_LO_DUTY_DIR_EVT:
1621 *p_adv_int_min = *p_adv_int_max = BTM_BLE_GAP_ADV_FAST_INT_1;
1624 case BTM_BLE_NON_CONNECT_EVT:
1625 case BTM_BLE_DISCOVER_EVT:
1626 *p_adv_int_min = *p_adv_int_max = BTM_BLE_GAP_ADV_FAST_INT_2;
1629 /* connectable directed event */
1630 case BTM_BLE_CONNECT_DIR_EVT:
1631 *p_adv_int_min = BTM_BLE_GAP_ADV_DIR_MIN_INT;
1632 *p_adv_int_max = BTM_BLE_GAP_ADV_DIR_MAX_INT;
1636 *p_adv_int_min = *p_adv_int_max = BTM_BLE_GAP_ADV_SLOW_INT;
1643 /*******************************************************************************
1645 ** Function btm_ble_update_dmt_flag_bits
1647 ** Description Obtain updated adv flag value based on connect and discoverability mode.
1648 ** Also, setup DMT support value in the flag based on whether the controller
1649 ** supports both LE and BR/EDR.
1651 ** Parameters: flag_value (Input / Output) - flag value
1652 ** connect_mode (Input) - Connect mode value
1653 ** disc_mode (Input) - discoverability mode
1657 *******************************************************************************/
1658 void btm_ble_update_dmt_flag_bits(UINT8 *adv_flag_value, const UINT16 connect_mode,
1659 const UINT16 disc_mode)
1661 /* BR/EDR non-discoverable , non-connectable */
1662 if ((disc_mode & BTM_DISCOVERABLE_MASK) == 0 &&
1663 (connect_mode & BTM_CONNECTABLE_MASK) == 0)
1664 *adv_flag_value |= BTM_BLE_BREDR_NOT_SPT;
1666 *adv_flag_value &= ~BTM_BLE_BREDR_NOT_SPT;
1668 /* if local controller support, mark both controller and host support in flag */
1669 if (controller_get_interface()->supports_simultaneous_le_bredr())
1670 *adv_flag_value |= (BTM_BLE_DMT_CONTROLLER_SPT|BTM_BLE_DMT_HOST_SPT);
1672 *adv_flag_value &= ~(BTM_BLE_DMT_CONTROLLER_SPT|BTM_BLE_DMT_HOST_SPT);
1675 /*******************************************************************************
1677 ** Function btm_ble_set_adv_flag
1679 ** Description Set adv flag in adv data.
1681 ** Parameters: connect_mode (Input)- Connect mode value
1682 ** disc_mode (Input) - discoverability mode
1686 *******************************************************************************/
1687 void btm_ble_set_adv_flag(UINT16 connect_mode, UINT16 disc_mode)
1689 UINT8 flag = 0, old_flag = 0;
1690 tBTM_BLE_LOCAL_ADV_DATA *p_adv_data = &btm_cb.ble_ctr_cb.inq_var.adv_data;
1692 if (p_adv_data->p_flags != NULL)
1693 flag = old_flag = *(p_adv_data->p_flags);
1695 btm_ble_update_dmt_flag_bits (&flag, connect_mode, disc_mode);
1697 LOG_DEBUG(LOG_TAG, "disc_mode %04x", disc_mode);
1698 /* update discoverable flag */
1699 if (disc_mode & BTM_BLE_LIMITED_DISCOVERABLE)
1701 flag &= ~BTM_BLE_GEN_DISC_FLAG;
1702 flag |= BTM_BLE_LIMIT_DISC_FLAG;
1704 else if (disc_mode & BTM_BLE_GENERAL_DISCOVERABLE)
1706 flag |= BTM_BLE_GEN_DISC_FLAG;
1707 flag &= ~BTM_BLE_LIMIT_DISC_FLAG;
1709 else /* remove all discoverable flags */
1711 flag &= ~(BTM_BLE_LIMIT_DISC_FLAG|BTM_BLE_GEN_DISC_FLAG);
1714 if (flag != old_flag)
1716 btm_ble_update_adv_flag(flag);
1719 /*******************************************************************************
1721 ** Function btm_ble_set_discoverability
1723 ** Description This function is called to set BLE discoverable mode.
1725 ** Parameters: combined_mode: discoverability mode.
1727 ** Returns BTM_SUCCESS is status set successfully; otherwise failure.
1729 *******************************************************************************/
1730 tBTM_STATUS btm_ble_set_discoverability(UINT16 combined_mode)
1732 tBTM_LE_RANDOM_CB *p_addr_cb = &btm_cb.ble_ctr_cb.addr_mgnt_cb;
1733 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
1734 UINT16 mode = (combined_mode & BTM_BLE_DISCOVERABLE_MASK);
1735 UINT8 new_mode = BTM_BLE_ADV_ENABLE;
1737 tBTM_STATUS status = BTM_SUCCESS;
1738 BD_ADDR p_addr_ptr= {0};
1739 tBLE_ADDR_TYPE init_addr_type = BLE_ADDR_PUBLIC,
1740 own_addr_type = p_addr_cb->own_addr_type;
1741 UINT16 adv_int_min, adv_int_max;
1743 BTM_TRACE_EVENT ("%s mode=0x%0x combined_mode=0x%x", __FUNCTION__, mode, combined_mode);
1745 /*** Check mode parameter ***/
1746 if (mode > BTM_BLE_MAX_DISCOVERABLE)
1747 return(BTM_ILLEGAL_VALUE);
1749 p_cb->discoverable_mode = mode;
1751 evt_type = btm_set_conn_mode_adv_init_addr(p_cb, p_addr_ptr, &init_addr_type, &own_addr_type);
1753 if (p_cb->connectable_mode == BTM_BLE_NON_CONNECTABLE && mode == BTM_BLE_NON_DISCOVERABLE)
1754 new_mode = BTM_BLE_ADV_DISABLE;
1756 btm_ble_select_adv_interval(p_cb, evt_type, &adv_int_min, &adv_int_max);
1758 btu_stop_timer(&p_cb->fast_adv_timer);
1760 /* update adv params if start advertising */
1761 BTM_TRACE_EVENT ("evt_type=0x%x p-cb->evt_type=0x%x ", evt_type, p_cb->evt_type);
1763 if (new_mode == BTM_BLE_ADV_ENABLE)
1765 btm_ble_set_adv_flag (btm_cb.btm_inq_vars.connectable_mode, combined_mode);
1767 if (evt_type != p_cb->evt_type ||p_cb->adv_addr_type != own_addr_type
1768 || !p_cb->fast_adv_on)
1772 /* update adv params */
1773 if (!btsnd_hcic_ble_write_adv_params (adv_int_min,
1782 status = BTM_NO_RESOURCES;
1786 p_cb->evt_type = evt_type;
1787 p_cb->adv_addr_type = own_addr_type;
1792 if (status == BTM_SUCCESS && p_cb->adv_mode != new_mode)
1794 if (new_mode == BTM_BLE_ADV_ENABLE)
1795 status = btm_ble_start_adv();
1797 status = btm_ble_stop_adv();
1800 if (p_cb->adv_mode == BTM_BLE_ADV_ENABLE)
1802 p_cb->fast_adv_on = TRUE;
1803 /* start initial GAP mode adv timer */
1804 btu_start_timer (&p_cb->fast_adv_timer, BTU_TTYPE_BLE_GAP_FAST_ADV,
1805 BTM_BLE_GAP_FAST_ADV_TOUT);
1809 #if BLE_PRIVACY_SPT == TRUE
1810 btm_ble_disable_resolving_list(BTM_BLE_RL_ADV, TRUE);
1814 /* set up stop advertising timer */
1815 if (status == BTM_SUCCESS && mode == BTM_BLE_LIMITED_DISCOVERABLE)
1817 BTM_TRACE_EVENT ("start timer for limited disc mode duration=%d (180 secs)", BTM_BLE_GAP_LIM_TOUT);
1818 /* start Tgap(lim_timeout) */
1819 btu_start_timer (&p_cb->inq_timer_ent, BTU_TTYPE_BLE_GAP_LIM_DISC,
1820 BTM_BLE_GAP_LIM_TOUT);
1825 /*******************************************************************************
1827 ** Function btm_ble_set_connectability
1829 ** Description This function is called to set BLE connectability mode.
1831 ** Parameters: combined_mode: connectability mode.
1833 ** Returns BTM_SUCCESS is status set successfully; otherwise failure.
1835 *******************************************************************************/
1836 tBTM_STATUS btm_ble_set_connectability(UINT16 combined_mode)
1838 tBTM_LE_RANDOM_CB *p_addr_cb = &btm_cb.ble_ctr_cb.addr_mgnt_cb;
1839 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
1840 UINT16 mode = (combined_mode & BTM_BLE_CONNECTABLE_MASK);
1841 UINT8 new_mode = BTM_BLE_ADV_ENABLE;
1843 tBTM_STATUS status = BTM_SUCCESS;
1844 BD_ADDR p_addr_ptr = {0};
1845 tBLE_ADDR_TYPE peer_addr_type = BLE_ADDR_PUBLIC,
1846 own_addr_type = p_addr_cb->own_addr_type;
1847 UINT16 adv_int_min, adv_int_max;
1849 BTM_TRACE_EVENT ("%s mode=0x%0x combined_mode=0x%x", __FUNCTION__, mode, combined_mode);
1851 /*** Check mode parameter ***/
1852 if (mode > BTM_BLE_MAX_CONNECTABLE)
1853 return(BTM_ILLEGAL_VALUE);
1855 p_cb->connectable_mode = mode;
1857 evt_type = btm_set_conn_mode_adv_init_addr(p_cb, p_addr_ptr, &peer_addr_type, &own_addr_type);
1859 if (mode == BTM_BLE_NON_CONNECTABLE && p_cb->discoverable_mode == BTM_BLE_NON_DISCOVERABLE)
1860 new_mode = BTM_BLE_ADV_DISABLE;
1862 btm_ble_select_adv_interval(p_cb, evt_type, &adv_int_min, &adv_int_max);
1864 btu_stop_timer(&p_cb->fast_adv_timer);
1865 /* update adv params if needed */
1866 if (new_mode == BTM_BLE_ADV_ENABLE)
1868 btm_ble_set_adv_flag (combined_mode, btm_cb.btm_inq_vars.discoverable_mode);
1869 if (p_cb->evt_type != evt_type || p_cb->adv_addr_type != p_addr_cb->own_addr_type
1870 || !p_cb->fast_adv_on)
1874 if (!btsnd_hcic_ble_write_adv_params (adv_int_min,
1883 status = BTM_NO_RESOURCES;
1887 p_cb->evt_type = evt_type;
1888 p_cb->adv_addr_type = own_addr_type;
1893 /* update advertising mode */
1894 if (status == BTM_SUCCESS && new_mode != p_cb->adv_mode)
1896 if (new_mode == BTM_BLE_ADV_ENABLE)
1897 status = btm_ble_start_adv();
1899 status = btm_ble_stop_adv();
1902 if (p_cb->adv_mode == BTM_BLE_ADV_ENABLE)
1904 p_cb->fast_adv_on = TRUE;
1905 /* start initial GAP mode adv timer */
1906 btu_start_timer (&p_cb->fast_adv_timer, BTU_TTYPE_BLE_GAP_FAST_ADV,
1907 BTM_BLE_GAP_FAST_ADV_TOUT);
1911 #if BLE_PRIVACY_SPT == TRUE
1912 btm_ble_disable_resolving_list(BTM_BLE_RL_ADV, TRUE);
1918 /*******************************************************************************
1920 ** Function btm_ble_start_inquiry
1922 ** Description This function is called to start BLE inquiry procedure.
1923 ** If the duration is zero, the periodic inquiry mode is cancelled.
1925 ** Parameters: mode - GENERAL or LIMITED inquiry
1926 ** p_inq_params - pointer to the BLE inquiry parameter.
1927 ** p_results_cb - callback returning pointer to results (tBTM_INQ_RESULTS)
1928 ** p_cmpl_cb - callback indicating the end of an inquiry
1932 ** Returns BTM_CMD_STARTED if successfully started
1933 ** BTM_NO_RESOURCES if could not allocate a message buffer
1934 ** BTM_BUSY - if an inquiry is already active
1936 *******************************************************************************/
1937 tBTM_STATUS btm_ble_start_inquiry (UINT8 mode, UINT8 duration)
1939 tBTM_STATUS status = BTM_CMD_STARTED;
1940 tBTM_BLE_CB *p_ble_cb = &btm_cb.ble_ctr_cb;
1941 tBTM_INQUIRY_VAR_ST *p_inq = &btm_cb.btm_inq_vars;
1943 BTM_TRACE_DEBUG("btm_ble_start_inquiry: mode = %02x inq_active = 0x%02x", mode, btm_cb.btm_inq_vars.inq_active);
1945 /* if selective connection is active, or inquiry is already active, reject it */
1946 if (BTM_BLE_IS_INQ_ACTIVE(p_ble_cb->scan_activity) ||
1947 BTM_BLE_IS_SEL_CONN_ACTIVE (p_ble_cb->scan_activity))
1949 BTM_TRACE_ERROR("LE Inquiry is active, can not start inquiry");
1953 if (!BTM_BLE_IS_SCAN_ACTIVE(p_ble_cb->scan_activity))
1955 btsnd_hcic_ble_set_scan_params(BTM_BLE_SCAN_MODE_ACTI,
1956 BTM_BLE_LOW_LATENCY_SCAN_INT,
1957 BTM_BLE_LOW_LATENCY_SCAN_WIN,
1958 btm_cb.ble_ctr_cb.addr_mgnt_cb.own_addr_type,
1960 #if (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE)
1961 /* enable IRK list */
1962 btm_ble_enable_resolving_list_for_platform(BTM_BLE_RL_SCAN);
1964 p_ble_cb->inq_var.scan_duplicate_filter = BTM_BLE_DUPLICATE_DISABLE;
1965 status = btm_ble_start_scan();
1967 else if ((p_ble_cb->inq_var.scan_interval != BTM_BLE_LOW_LATENCY_SCAN_INT) ||
1968 (p_ble_cb->inq_var.scan_window != BTM_BLE_LOW_LATENCY_SCAN_WIN)) {
1969 BTM_TRACE_DEBUG("%s, restart LE scan with low latency scan params", __FUNCTION__);
1970 btsnd_hcic_ble_set_scan_enable(BTM_BLE_SCAN_DISABLE, BTM_BLE_DUPLICATE_ENABLE);
1971 btsnd_hcic_ble_set_scan_params(BTM_BLE_SCAN_MODE_ACTI,
1972 BTM_BLE_LOW_LATENCY_SCAN_INT,
1973 BTM_BLE_LOW_LATENCY_SCAN_WIN,
1974 btm_cb.ble_ctr_cb.addr_mgnt_cb.own_addr_type,
1976 btsnd_hcic_ble_set_scan_enable(BTM_BLE_SCAN_ENABLE, BTM_BLE_DUPLICATE_DISABLE);
1979 if (status == BTM_CMD_STARTED)
1981 p_inq->inq_active |= mode;
1982 p_ble_cb->scan_activity |= mode;
1984 BTM_TRACE_DEBUG("btm_ble_start_inquiry inq_active = 0x%02x", p_inq->inq_active);
1988 /* start inquiry timer */
1989 btu_start_timer (&p_ble_cb->inq_var.inq_timer_ent, BTU_TTYPE_BLE_INQUIRY, duration);
1997 /*******************************************************************************
1999 ** Function btm_ble_read_remote_name_cmpl
2001 ** Description This function is called when BLE remote name is received.
2005 *******************************************************************************/
2006 void btm_ble_read_remote_name_cmpl(BOOLEAN status, BD_ADDR bda, UINT16 length, char *p_name)
2008 UINT8 hci_status = HCI_SUCCESS;
2011 memset(bd_name, 0, (BD_NAME_LEN + 1));
2012 if (length > BD_NAME_LEN)
2014 length = BD_NAME_LEN;
2016 memcpy((UINT8*)bd_name, p_name, length);
2018 if ((!status) || (length==0))
2020 hci_status = HCI_ERR_HOST_TIMEOUT;
2023 btm_process_remote_name(bda, bd_name, length +1, hci_status);
2024 btm_sec_rmt_name_request_complete (bda, (UINT8 *)p_name, hci_status);
2027 /*******************************************************************************
2029 ** Function btm_ble_read_remote_name
2031 ** Description This function read remote LE device name using GATT read
2034 ** Parameters: None.
2038 *******************************************************************************/
2039 tBTM_STATUS btm_ble_read_remote_name(BD_ADDR remote_bda, tBTM_INQ_INFO *p_cur, tBTM_CMPL_CB *p_cb)
2041 tBTM_INQUIRY_VAR_ST *p_inq = &btm_cb.btm_inq_vars;
2043 if (!controller_get_interface()->supports_ble())
2044 return BTM_ERR_PROCESSING;
2047 p_cur->results.ble_evt_type != BTM_BLE_EVT_CONN_ADV &&
2048 p_cur->results.ble_evt_type != BTM_BLE_EVT_CONN_DIR_ADV)
2050 BTM_TRACE_DEBUG("name request to non-connectable device failed.");
2051 return BTM_ERR_PROCESSING;
2054 /* read remote device name using GATT procedure */
2055 if (p_inq->remname_active)
2058 if (!GAP_BleReadPeerDevName(remote_bda, btm_ble_read_remote_name_cmpl))
2061 p_inq->p_remname_cmpl_cb = p_cb;
2062 p_inq->remname_active = TRUE;
2064 memcpy(p_inq->remname_bda, remote_bda, BD_ADDR_LEN);
2066 btu_start_timer (&p_inq->rmt_name_timer_ent,
2067 BTU_TTYPE_BTM_RMT_NAME,
2068 BTM_EXT_BLE_RMT_NAME_TIMEOUT);
2070 return BTM_CMD_STARTED;
2073 /*******************************************************************************
2075 ** Function btm_ble_cancel_remote_name
2077 ** Description This function cancel read remote LE device name.
2079 ** Parameters: None.
2083 *******************************************************************************/
2084 BOOLEAN btm_ble_cancel_remote_name(BD_ADDR remote_bda)
2086 tBTM_INQUIRY_VAR_ST *p_inq = &btm_cb.btm_inq_vars;
2089 status = GAP_BleCancelReadPeerDevName(remote_bda);
2091 p_inq->remname_active = FALSE;
2092 memset(p_inq->remname_bda, 0, BD_ADDR_LEN);
2093 btu_stop_timer(&p_inq->rmt_name_timer_ent);
2098 /*******************************************************************************
2100 ** Function btm_ble_update_adv_flag
2102 ** Description This function update the limited discoverable flag in the adv
2105 ** Parameters: None.
2109 *******************************************************************************/
2110 static void btm_ble_update_adv_flag(UINT8 flag)
2112 tBTM_BLE_LOCAL_ADV_DATA *p_adv_data = &btm_cb.ble_ctr_cb.inq_var.adv_data;
2115 BTM_TRACE_DEBUG ("btm_ble_update_adv_flag new=0x%x", flag);
2117 if (p_adv_data->p_flags != NULL)
2119 BTM_TRACE_DEBUG ("btm_ble_update_adv_flag old=0x%x", *p_adv_data->p_flags);
2120 *p_adv_data->p_flags = flag;
2122 else /* no FLAGS in ADV data*/
2124 p = (p_adv_data->p_pad == NULL) ? p_adv_data->ad_data : p_adv_data->p_pad;
2125 /* need 3 bytes space to stuff in the flags, if not */
2126 /* erase all written data, just for flags */
2127 if ((BTM_BLE_AD_DATA_LEN - (p - p_adv_data->ad_data)) < 3)
2129 p = p_adv_data->p_pad = p_adv_data->ad_data;
2130 memset(p_adv_data->ad_data, 0, BTM_BLE_AD_DATA_LEN);
2134 *p++ = BTM_BLE_AD_TYPE_FLAG;
2135 p_adv_data->p_flags = p;
2137 p_adv_data->p_pad = p;
2140 if (btsnd_hcic_ble_set_adv_data((UINT8)(p_adv_data->p_pad - p_adv_data->ad_data),
2141 p_adv_data->ad_data))
2142 p_adv_data->data_mask |= BTM_BLE_AD_BIT_FLAGS;
2147 /*******************************************************************************
2149 ** Function btm_ble_parse_adv_data
2151 ** Description This function parse the adv data into a structure.
2153 ** Returns pointer to entry, or NULL if not found
2155 *******************************************************************************/
2156 static void btm_ble_parse_adv_data(tBTM_INQ_INFO *p_info, UINT8 *p_data,
2157 UINT8 len, tBTM_BLE_INQ_DATA *p_adv_data, UINT8 *p_buf)
2159 UINT8 *p_cur = p_data;
2160 UINT8 ad_len, ad_type, ad_flag;
2162 BTM_TRACE_EVENT (" btm_ble_parse_adv_data");
2166 BTM_TRACE_DEBUG("btm_ble_parse_adv_data: len = %d", len);
2167 if ((ad_len = *p_cur ++) == 0)
2170 ad_type = *p_cur ++;
2172 BTM_TRACE_DEBUG(" ad_type = %02x ad_len = %d", ad_type, ad_len);
2176 case BTM_BLE_AD_TYPE_NAME_SHORT:
2178 case BTM_BLE_AD_TYPE_NAME_CMPL:
2179 p_adv_data->ad_mask |= BTM_BLE_AD_BIT_DEV_NAME;
2182 p_info->remote_name_type =(ad_type == BTM_BLE_AD_TYPE_NAME_SHORT) ?
2183 BTM_BLE_NAME_SHORT: BTM_BLE_NAME_CMPL;
2184 memcpy(p_info->remote_name, p_cur, ad_len -1);
2185 p_info->remote_name[ad_len] = 0;
2186 p_adv_data->p_remote_name = p_info->remote_name;
2187 p_info->remote_name_len = p_adv_data->remote_name_len = ad_len - 1;
2188 BTM_TRACE_DEBUG("BTM_BLE_AD_TYPE_NAME name = %s",p_adv_data->p_remote_name);
2190 p_cur += (ad_len -1);
2194 case BTM_BLE_AD_TYPE_FLAG:
2195 p_adv_data->ad_mask |= BTM_BLE_AD_BIT_FLAGS;
2196 ad_flag = *p_cur ++;
2197 p_adv_data->flag = (UINT8)(ad_flag & BTM_BLE_ADV_FLAG_MASK) ;
2198 BTM_TRACE_DEBUG("BTM_BLE_AD_TYPE_FLAG flag = %s | %s | %s",
2199 (p_adv_data->flag & BTM_BLE_LIMIT_DISC_FLAG)? "LE_LIMIT_DISC" : "",
2200 (p_adv_data->flag & BTM_BLE_GEN_DISC_FLAG)? "LE_GENERAL_DISC" : "",
2201 (p_adv_data->flag & BTM_BLE_BREDR_NOT_SPT)? "LE Only device" : "");
2204 case BTM_BLE_AD_TYPE_TX_PWR:
2205 p_adv_data->ad_mask |= BTM_BLE_AD_BIT_TX_PWR;
2206 p_adv_data->tx_power_level = (INT8)*p_cur ++;
2207 BTM_TRACE_DEBUG("BTM_BLE_AD_TYPE_TX_PWR tx_level = %d", p_adv_data->tx_power_level);
2210 case BTM_BLE_AD_TYPE_MANU:
2212 case BTM_BLE_AD_TYPE_16SRV_PART:
2213 case BTM_BLE_AD_TYPE_16SRV_CMPL:
2214 p_adv_data->ad_mask |= BTM_BLE_AD_BIT_SERVICE;
2215 /* need allocate memory to store UUID list */
2216 p_adv_data->service.num_service = (ad_len - 1)/2;
2217 BTM_TRACE_DEBUG("service UUID list, num = %d", p_adv_data->service.num_service);
2218 p_cur += (ad_len - 1);
2221 case BTM_BLE_AD_TYPE_SOL_SRV_UUID:
2222 p_adv_data->ad_mask |= BTM_BLE_AD_BIT_SERVICE_SOL;
2223 /* need allocate memory to store UUID list */
2224 p_adv_data->service.num_service = (ad_len - 1)/2;
2225 BTM_TRACE_DEBUG("service UUID list, num = %d", p_adv_data->service.num_service);
2226 p_cur += (ad_len - 1);
2229 case BTM_BLE_AD_TYPE_128SOL_SRV_UUID:
2230 p_adv_data->ad_mask |= BTM_BLE_AD_BIT_SERVICE_128SOL;
2231 /* need allocate memory to store UUID list */
2232 p_adv_data->service.num_service = (ad_len - 1)/16;
2233 BTM_TRACE_DEBUG("service UUID list, num = %d", p_adv_data->service.num_service);
2234 p_cur += (ad_len - 1);
2237 case BTM_BLE_AD_TYPE_APPEARANCE:
2238 case BTM_BLE_AD_TYPE_PUBLIC_TARGET:
2239 case BTM_BLE_AD_TYPE_RANDOM_TARGET:
2243 len -= (ad_len + 1);
2248 /*******************************************************************************
2250 ** Function btm_ble_cache_adv_data
2252 ** Description Update advertising cache data.
2256 *******************************************************************************/
2257 void btm_ble_cache_adv_data(tBTM_INQ_RESULTS *p_cur, UINT8 data_len, UINT8 *p, UINT8 evt_type)
2259 tBTM_BLE_INQ_CB *p_le_inq_cb = &btm_cb.ble_ctr_cb.inq_var;
2264 /* cache adv report/scan response data */
2265 if (evt_type != BTM_BLE_SCAN_RSP_EVT)
2267 p_le_inq_cb->adv_len = 0;
2268 memset(p_le_inq_cb->adv_data_cache, 0, BTM_BLE_CACHE_ADV_DATA_MAX);
2273 p_cache = &p_le_inq_cb->adv_data_cache[p_le_inq_cb->adv_len];
2274 STREAM_TO_UINT8(length, p);
2275 while ( length && ((p_le_inq_cb->adv_len + length + 1) <= BTM_BLE_CACHE_ADV_DATA_MAX))
2277 /* copy from the length byte & data into cache */
2278 memcpy(p_cache, p-1, length+1);
2279 /* advance the cache pointer past data */
2280 p_cache += length+1;
2281 /* increment cache length */
2282 p_le_inq_cb->adv_len += length+1;
2283 /* skip the length of data */
2285 STREAM_TO_UINT8(length, p);
2289 /* parse service UUID from adv packet and save it in inq db eir_uuid */
2293 /*******************************************************************************
2295 ** Function btm_ble_is_discoverable
2297 ** Description check ADV flag to make sure device is discoverable and match
2298 ** the search condition
2304 *******************************************************************************/
2305 UINT8 btm_ble_is_discoverable(BD_ADDR bda, UINT8 evt_type, UINT8 *p)
2307 UINT8 *p_flag, flag = 0, rt = 0;
2309 tBTM_INQ_PARMS *p_cond = &btm_cb.btm_inq_vars.inqparms;
2310 tBTM_BLE_INQ_CB *p_le_inq_cb = &btm_cb.ble_ctr_cb.inq_var;
2314 /* for observer, always "discoverable */
2315 if (BTM_BLE_IS_OBS_ACTIVE(btm_cb.ble_ctr_cb.scan_activity))
2316 rt |= BTM_BLE_OBS_RESULT;
2318 if (BTM_BLE_IS_SEL_CONN_ACTIVE(btm_cb.ble_ctr_cb.scan_activity) &&
2319 (evt_type == BTM_BLE_CONNECT_EVT || evt_type == BTM_BLE_CONNECT_DIR_EVT))
2320 rt |= BTM_BLE_SEL_CONN_RESULT;
2322 /* does not match filter condition */
2323 if (p_cond->filter_cond_type == BTM_FILTER_COND_BD_ADDR &&
2324 memcmp(bda, p_cond->filter_cond.bdaddr_cond, BD_ADDR_LEN) != 0)
2326 BTM_TRACE_DEBUG("BD ADDR does not meet filter condition");
2330 if (p_le_inq_cb->adv_len != 0)
2332 if ((p_flag = BTM_CheckAdvData(p_le_inq_cb->adv_data_cache,
2333 BTM_BLE_AD_TYPE_FLAG, &data_len)) != NULL)
2337 if ((btm_cb.btm_inq_vars.inq_active & BTM_BLE_GENERAL_INQUIRY) &&
2338 (flag & (BTM_BLE_LIMIT_DISC_FLAG|BTM_BLE_GEN_DISC_FLAG)) != 0)
2340 BTM_TRACE_DEBUG("Find Generable Discoverable device");
2341 rt |= BTM_BLE_INQ_RESULT;
2344 else if (btm_cb.btm_inq_vars.inq_active & BTM_BLE_LIMITED_INQUIRY &&
2345 (flag & BTM_BLE_LIMIT_DISC_FLAG) != 0)
2347 BTM_TRACE_DEBUG("Find limited discoverable device");
2348 rt |= BTM_BLE_INQ_RESULT;
2355 static void btm_ble_appearance_to_cod(UINT16 appearance, UINT8 *dev_class)
2361 case BTM_BLE_APPEARANCE_GENERIC_PHONE:
2362 dev_class[1] = BTM_COD_MAJOR_PHONE;
2363 dev_class[2] = BTM_COD_MINOR_UNCLASSIFIED;
2365 case BTM_BLE_APPEARANCE_GENERIC_COMPUTER:
2366 dev_class[1] = BTM_COD_MAJOR_COMPUTER;
2367 dev_class[2] = BTM_COD_MINOR_UNCLASSIFIED;
2369 case BTM_BLE_APPEARANCE_GENERIC_REMOTE:
2370 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2371 dev_class[2] = BTM_COD_MINOR_REMOTE_CONTROL;
2373 case BTM_BLE_APPEARANCE_GENERIC_THERMOMETER:
2374 case BTM_BLE_APPEARANCE_THERMOMETER_EAR:
2375 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2376 dev_class[2] = BTM_COD_MINOR_THERMOMETER;
2378 case BTM_BLE_APPEARANCE_GENERIC_HEART_RATE:
2379 case BTM_BLE_APPEARANCE_HEART_RATE_BELT:
2380 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2381 dev_class[2] = BTM_COD_MINOR_HEART_PULSE_MONITOR;
2383 case BTM_BLE_APPEARANCE_GENERIC_BLOOD_PRESSURE:
2384 case BTM_BLE_APPEARANCE_BLOOD_PRESSURE_ARM:
2385 case BTM_BLE_APPEARANCE_BLOOD_PRESSURE_WRIST:
2386 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2387 dev_class[2] = BTM_COD_MINOR_BLOOD_MONITOR;
2389 case BTM_BLE_APPEARANCE_GENERIC_PULSE_OXIMETER:
2390 case BTM_BLE_APPEARANCE_PULSE_OXIMETER_FINGERTIP:
2391 case BTM_BLE_APPEARANCE_PULSE_OXIMETER_WRIST:
2392 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2393 dev_class[2] = BTM_COD_MINOR_PULSE_OXIMETER;
2395 case BTM_BLE_APPEARANCE_GENERIC_GLUCOSE:
2396 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2397 dev_class[2] = BTM_COD_MINOR_GLUCOSE_METER;
2399 case BTM_BLE_APPEARANCE_GENERIC_WEIGHT:
2400 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2401 dev_class[2] = BTM_COD_MINOR_WEIGHING_SCALE;
2403 case BTM_BLE_APPEARANCE_GENERIC_WALKING:
2404 case BTM_BLE_APPEARANCE_WALKING_IN_SHOE:
2405 case BTM_BLE_APPEARANCE_WALKING_ON_SHOE:
2406 case BTM_BLE_APPEARANCE_WALKING_ON_HIP:
2407 dev_class[1] = BTM_COD_MAJOR_HEALTH;
2408 dev_class[2] = BTM_COD_MINOR_STEP_COUNTER;
2410 case BTM_BLE_APPEARANCE_GENERIC_WATCH:
2411 case BTM_BLE_APPEARANCE_SPORTS_WATCH:
2412 dev_class[1] = BTM_COD_MAJOR_WEARABLE;
2413 dev_class[2] = BTM_COD_MINOR_WRIST_WATCH;
2415 case BTM_BLE_APPEARANCE_GENERIC_EYEGLASSES:
2416 dev_class[1] = BTM_COD_MAJOR_WEARABLE;
2417 dev_class[2] = BTM_COD_MINOR_GLASSES;
2419 case BTM_BLE_APPEARANCE_GENERIC_DISPLAY:
2420 dev_class[1] = BTM_COD_MAJOR_IMAGING;
2421 dev_class[2] = BTM_COD_MINOR_DISPLAY;
2423 case BTM_BLE_APPEARANCE_GENERIC_MEDIA_PLAYER:
2424 dev_class[1] = BTM_COD_MAJOR_AUDIO;
2425 dev_class[2] = BTM_COD_MINOR_UNCLASSIFIED;
2427 case BTM_BLE_APPEARANCE_GENERIC_BARCODE_SCANNER:
2428 case BTM_BLE_APPEARANCE_HID_BARCODE_SCANNER:
2429 case BTM_BLE_APPEARANCE_GENERIC_HID:
2430 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2431 dev_class[2] = BTM_COD_MINOR_UNCLASSIFIED;
2433 case BTM_BLE_APPEARANCE_HID_KEYBOARD:
2434 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2435 dev_class[2] = BTM_COD_MINOR_KEYBOARD;
2437 case BTM_BLE_APPEARANCE_HID_MOUSE:
2438 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2439 dev_class[2] = BTM_COD_MINOR_POINTING;
2441 case BTM_BLE_APPEARANCE_HID_JOYSTICK:
2442 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2443 dev_class[2] = BTM_COD_MINOR_JOYSTICK;
2445 case BTM_BLE_APPEARANCE_HID_GAMEPAD:
2446 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2447 dev_class[2] = BTM_COD_MINOR_GAMEPAD;
2449 case BTM_BLE_APPEARANCE_HID_DIGITIZER_TABLET:
2450 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2451 dev_class[2] = BTM_COD_MINOR_DIGITIZING_TABLET;
2453 case BTM_BLE_APPEARANCE_HID_CARD_READER:
2454 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2455 dev_class[2] = BTM_COD_MINOR_CARD_READER;
2457 case BTM_BLE_APPEARANCE_HID_DIGITAL_PEN:
2458 dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2459 dev_class[2] = BTM_COD_MINOR_DIGITAL_PAN;
2461 case BTM_BLE_APPEARANCE_UKNOWN:
2462 case BTM_BLE_APPEARANCE_GENERIC_CLOCK:
2463 case BTM_BLE_APPEARANCE_GENERIC_TAG:
2464 case BTM_BLE_APPEARANCE_GENERIC_KEYRING:
2465 case BTM_BLE_APPEARANCE_GENERIC_CYCLING:
2466 case BTM_BLE_APPEARANCE_CYCLING_COMPUTER:
2467 case BTM_BLE_APPEARANCE_CYCLING_SPEED:
2468 case BTM_BLE_APPEARANCE_CYCLING_CADENCE:
2469 case BTM_BLE_APPEARANCE_CYCLING_POWER:
2470 case BTM_BLE_APPEARANCE_CYCLING_SPEED_CADENCE:
2471 case BTM_BLE_APPEARANCE_GENERIC_OUTDOOR_SPORTS:
2472 case BTM_BLE_APPEARANCE_OUTDOOR_SPORTS_LOCATION:
2473 case BTM_BLE_APPEARANCE_OUTDOOR_SPORTS_LOCATION_AND_NAV:
2474 case BTM_BLE_APPEARANCE_OUTDOOR_SPORTS_LOCATION_POD:
2475 case BTM_BLE_APPEARANCE_OUTDOOR_SPORTS_LOCATION_POD_AND_NAV:
2477 dev_class[1] = BTM_COD_MAJOR_UNCLASSIFIED;
2478 dev_class[2] = BTM_COD_MINOR_UNCLASSIFIED;
2482 /*******************************************************************************
2484 ** Function btm_ble_update_inq_result
2486 ** Description Update adv packet information into inquiry result.
2492 *******************************************************************************/
2493 BOOLEAN btm_ble_update_inq_result(tINQ_DB_ENT *p_i, UINT8 addr_type, UINT8 evt_type, UINT8 *p)
2495 BOOLEAN to_report = TRUE;
2496 tBTM_INQ_RESULTS *p_cur = &p_i->inq_info.results;
2499 tBTM_INQUIRY_VAR_ST *p_inq = &btm_cb.btm_inq_vars;
2500 UINT8 data_len, rssi;
2501 tBTM_BLE_INQ_CB *p_le_inq_cb = &btm_cb.ble_ctr_cb.inq_var;
2505 STREAM_TO_UINT8 (data_len, p);
2507 if (data_len > BTM_BLE_ADV_DATA_LEN_MAX)
2509 BTM_TRACE_WARNING("EIR data too long %d. discard", data_len);
2512 btm_ble_cache_adv_data(p_cur, data_len, p, evt_type);
2514 p1 = (p + data_len);
2515 STREAM_TO_UINT8 (rssi, p1);
2518 p_cur->inq_result_type = BTM_INQ_RESULT_BLE;
2519 p_cur->ble_addr_type = addr_type;
2522 /* active scan, always wait until get scan_rsp to report the result */
2523 if ((btm_cb.ble_ctr_cb.inq_var.scan_type == BTM_BLE_SCAN_MODE_ACTI &&
2524 (evt_type == BTM_BLE_CONNECT_EVT || evt_type == BTM_BLE_DISCOVER_EVT)))
2526 BTM_TRACE_DEBUG("btm_ble_update_inq_result scan_rsp=false, to_report=false,\
2527 scan_type_active=%d", btm_cb.ble_ctr_cb.inq_var.scan_type);
2528 p_i->scan_rsp = FALSE;
2532 p_i->scan_rsp = TRUE;
2534 if (p_i->inq_count != p_inq->inq_counter)
2535 p_cur->device_type = BT_DEVICE_TYPE_BLE;
2537 p_cur->device_type |= BT_DEVICE_TYPE_BLE;
2539 if (evt_type != BTM_BLE_SCAN_RSP_EVT)
2540 p_cur->ble_evt_type = evt_type;
2542 p_i->inq_count = p_inq->inq_counter; /* Mark entry for current inquiry */
2544 if (p_le_inq_cb->adv_len != 0)
2546 if ((p_flag = BTM_CheckAdvData(p_le_inq_cb->adv_data_cache, BTM_BLE_AD_TYPE_FLAG, &len)) != NULL)
2547 p_cur->flag = * p_flag;
2550 if (p_le_inq_cb->adv_len != 0)
2552 /* Check to see the BLE device has the Appearance UUID in the advertising data. If it does
2553 * then try to convert the appearance value to a class of device value Bluedroid can use.
2554 * Otherwise fall back to trying to infer if it is a HID device based on the service class.
2556 p_uuid16 = BTM_CheckAdvData(p_le_inq_cb->adv_data_cache, BTM_BLE_AD_TYPE_APPEARANCE, &len);
2557 if (p_uuid16 && len == 2)
2559 btm_ble_appearance_to_cod((UINT16)p_uuid16[0] | (p_uuid16[1] << 8), p_cur->dev_class);
2563 if ((p_uuid16 = BTM_CheckAdvData(p_le_inq_cb->adv_data_cache,
2564 BTM_BLE_AD_TYPE_16SRV_CMPL, &len)) != NULL)
2567 for (i = 0; i + 2 <= len; i = i + 2)
2569 /* if this BLE device support HID over LE, set HID Major in class of device */
2570 if ((p_uuid16[i] | (p_uuid16[i+1] << 8)) == UUID_SERVCLASS_LE_HID)
2572 p_cur->dev_class[0] = 0;
2573 p_cur->dev_class[1] = BTM_COD_MAJOR_PERIPHERAL;
2574 p_cur->dev_class[2] = 0;
2582 /* if BR/EDR not supported is not set, assume is a DUMO device */
2583 if ((p_cur->flag & BTM_BLE_BREDR_NOT_SPT) == 0 &&
2584 evt_type != BTM_BLE_CONNECT_DIR_EVT)
2586 if (p_cur->ble_addr_type != BLE_ADDR_RANDOM)
2588 BTM_TRACE_DEBUG("BR/EDR NOT support bit not set, treat as DUMO");
2589 p_cur->device_type |= BT_DEVICE_TYPE_DUMO;
2591 BTM_TRACE_DEBUG("Random address, treating device as LE only");
2596 BTM_TRACE_DEBUG("BR/EDR NOT SUPPORT bit set, LE only device");
2603 /*******************************************************************************
2605 ** Function btm_clear_all_pending_le_entry
2607 ** Description This function is called to clear all LE pending entry in
2608 ** inquiry database.
2612 *******************************************************************************/
2613 void btm_clear_all_pending_le_entry(void)
2616 tINQ_DB_ENT *p_ent = btm_cb.btm_inq_vars.inq_db;
2618 for (xx = 0; xx < BTM_INQ_DB_SIZE; xx++, p_ent++)
2620 /* mark all pending LE entry as unused if an LE only device has scan response outstanding */
2621 if ((p_ent->in_use) &&
2622 (p_ent->inq_info.results.device_type == BT_DEVICE_TYPE_BLE) &&
2624 p_ent->in_use = FALSE;
2628 /*******************************************************************************
2630 ** Function btm_send_sel_conn_callback
2632 ** Description send selection connection request callback.
2638 *******************************************************************************/
2639 void btm_send_sel_conn_callback(BD_ADDR remote_bda, UINT8 evt_type, UINT8 *p_data, UINT8 addr_type)
2641 UINT8 data_len, len;
2642 UINT8 *p_dev_name, remname[31] = {0};
2645 if (btm_cb.ble_ctr_cb.p_select_cback == NULL ||
2646 /* non-connectable device */
2647 (evt_type != BTM_BLE_EVT_CONN_ADV && evt_type != BTM_BLE_EVT_CONN_DIR_ADV))
2650 STREAM_TO_UINT8 (data_len, p_data);
2652 /* get the device name if exist in ADV data */
2655 p_dev_name = BTM_CheckAdvData(p_data, BTM_BLE_AD_TYPE_NAME_CMPL, &len);
2657 if (p_dev_name == NULL)
2658 p_dev_name = BTM_CheckAdvData(p_data, BTM_BLE_AD_TYPE_NAME_SHORT, &len);
2661 memcpy(remname, p_dev_name, len);
2663 /* allow connection */
2664 if ((* btm_cb.ble_ctr_cb.p_select_cback)(remote_bda, remname))
2666 /* terminate selective connection, initiate connection */
2667 btm_ble_initiate_select_conn(remote_bda);
2671 /*******************************************************************************
2673 ** Function btm_ble_process_adv_pkt
2675 ** Description This function is called when adv packet report events are
2676 ** received from the device. It updates the inquiry database.
2677 ** If the inquiry database is full, the oldest entry is discarded.
2683 *******************************************************************************/
2684 void btm_ble_process_adv_pkt (UINT8 *p_data)
2687 UINT8 evt_type = 0, *p = p_data;
2688 UINT8 addr_type = 0;
2691 #if (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE)
2692 BOOLEAN match = FALSE;
2695 /* Only process the results if the inquiry is still active */
2696 if (!BTM_BLE_IS_SCAN_ACTIVE(btm_cb.ble_ctr_cb.scan_activity))
2699 /* Extract the number of reports in this event. */
2700 STREAM_TO_UINT8(num_reports, p);
2702 while (num_reports--)
2704 /* Extract inquiry results */
2705 STREAM_TO_UINT8 (evt_type, p);
2706 STREAM_TO_UINT8 (addr_type, p);
2707 STREAM_TO_BDADDR (bda, p);
2709 #if (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE)
2710 /* map address to security record */
2711 match = btm_identity_addr_to_random_pseudo(bda, &addr_type, FALSE);
2713 BTM_TRACE_DEBUG("btm_ble_process_adv_pkt:bda= %0x:%0x:%0x:%0x:%0x:%0x",
2714 bda[0],bda[1],bda[2],bda[3],bda[4],bda[5]);
2715 /* always do RRA resolution on host */
2716 if (!match && BTM_BLE_IS_RESOLVE_BDA(bda))
2718 btm_ble_resolve_random_addr(bda, btm_ble_resolve_random_addr_on_adv, p_data);
2722 btm_ble_process_adv_pkt_cont(bda, addr_type, evt_type, p);
2724 STREAM_TO_UINT8(data_len, p);
2726 /* Advance to the next event data_len + rssi byte */
2731 /*******************************************************************************
2733 ** Function btm_ble_process_adv_pkt_cont
2735 ** Description This function is called after random address resolution is
2736 ** done, and proceed to process adv packet.
2742 *******************************************************************************/
2743 static void btm_ble_process_adv_pkt_cont(BD_ADDR bda, UINT8 addr_type, UINT8 evt_type, UINT8 *p)
2746 tBTM_INQUIRY_VAR_ST *p_inq = &btm_cb.btm_inq_vars;
2747 tBTM_INQ_RESULTS_CB *p_inq_results_cb = p_inq->p_inq_results_cb;
2748 tBTM_INQ_RESULTS_CB *p_obs_results_cb = btm_cb.ble_ctr_cb.p_obs_results_cb;
2749 tBTM_BLE_INQ_CB *p_le_inq_cb = &btm_cb.ble_ctr_cb.inq_var;
2750 BOOLEAN update = TRUE;
2753 p_i = btm_inq_db_find (bda);
2755 /* Check if this address has already been processed for this inquiry */
2756 if (btm_inq_find_bdaddr(bda))
2758 /* never been report as an LE device */
2760 (!(p_i->inq_info.results.device_type & BT_DEVICE_TYPE_BLE) ||
2761 /* scan repsonse to be updated */
2766 else if (BTM_BLE_IS_OBS_ACTIVE(btm_cb.ble_ctr_cb.scan_activity))
2772 /* if yes, skip it */
2773 return; /* assumption: one result per event */
2776 /* If existing entry, use that, else get a new one (possibly reusing the oldest) */
2779 if ((p_i = btm_inq_db_new (bda)) != NULL)
2781 p_inq->inq_cmpl_info.num_resp++;
2786 else if (p_i->inq_count != p_inq->inq_counter) /* first time seen in this inquiry */
2788 p_inq->inq_cmpl_info.num_resp++;
2790 /* update the LE device information in inquiry database */
2791 if (!btm_ble_update_inq_result(p_i, addr_type, evt_type, p))
2794 if ((result = btm_ble_is_discoverable(bda, evt_type, p)) == 0)
2796 LOG_WARN(LOG_TAG, "%s device is no longer discoverable so discarding advertising packet pkt",
2801 result &= ~BTM_BLE_INQ_RESULT;
2802 /* If the number of responses found and limited, issue a cancel inquiry */
2803 if (p_inq->inqparms.max_resps &&
2804 p_inq->inq_cmpl_info.num_resp == p_inq->inqparms.max_resps)
2808 /* assume a DUMO device, BR/EDR inquiry is always active */
2810 (p_i->inq_info.results.device_type & BT_DEVICE_TYPE_BLE) == BT_DEVICE_TYPE_BLE &&
2813 BTM_TRACE_WARNING("INQ RES: Extra Response Received...cancelling inquiry..");
2815 /* if is non-periodic inquiry active, cancel now */
2816 if ((p_inq->inq_active & BTM_BR_INQ_ACTIVE_MASK) != 0 &&
2817 (p_inq->inq_active & BTM_PERIODIC_INQUIRY_ACTIVE) == 0)
2818 btsnd_hcic_inq_cancel();
2820 btm_ble_stop_inquiry();
2822 btm_acl_update_busy_level (BTM_BLI_INQ_DONE_EVT);
2825 /* background connection in selective connection mode */
2826 if (btm_cb.ble_ctr_cb.bg_conn_type == BTM_BLE_CONN_SELECTIVE)
2828 if (result & BTM_BLE_SEL_CONN_RESULT)
2829 btm_send_sel_conn_callback(bda, evt_type, p, addr_type);
2832 BTM_TRACE_DEBUG("None LE device, can not initiate selective connection");
2837 if (p_inq_results_cb && (result & BTM_BLE_INQ_RESULT))
2839 (p_inq_results_cb)((tBTM_INQ_RESULTS *) &p_i->inq_info.results, p_le_inq_cb->adv_data_cache);
2841 if (p_obs_results_cb && (result & BTM_BLE_OBS_RESULT))
2843 (p_obs_results_cb)((tBTM_INQ_RESULTS *) &p_i->inq_info.results, p_le_inq_cb->adv_data_cache);
2848 /*******************************************************************************
2850 ** Function btm_ble_start_scan
2852 ** Description Start the BLE scan.
2856 *******************************************************************************/
2857 tBTM_STATUS btm_ble_start_scan(void)
2859 tBTM_BLE_INQ_CB *p_inq = &btm_cb.ble_ctr_cb.inq_var;
2860 tBTM_STATUS status = BTM_CMD_STARTED;
2862 /* start scan, disable duplicate filtering */
2863 if (!btsnd_hcic_ble_set_scan_enable (BTM_BLE_SCAN_ENABLE, p_inq->scan_duplicate_filter))
2865 status = BTM_NO_RESOURCES;
2869 if (p_inq->scan_type == BTM_BLE_SCAN_MODE_ACTI)
2870 btm_ble_set_topology_mask(BTM_BLE_STATE_ACTIVE_SCAN_BIT);
2872 btm_ble_set_topology_mask(BTM_BLE_STATE_PASSIVE_SCAN_BIT);
2877 /*******************************************************************************
2879 ** Function btm_ble_stop_scan
2881 ** Description Stop the BLE scan.
2885 *******************************************************************************/
2886 void btm_ble_stop_scan(void)
2888 BTM_TRACE_EVENT ("btm_ble_stop_scan ");
2890 /* Clear the inquiry callback if set */
2891 btm_cb.ble_ctr_cb.inq_var.scan_type = BTM_BLE_SCAN_MODE_NONE;
2893 /* stop discovery now */
2894 btsnd_hcic_ble_set_scan_enable (BTM_BLE_SCAN_DISABLE, BTM_BLE_DUPLICATE_ENABLE);
2896 btm_update_scanner_filter_policy(SP_ADV_ALL);
2898 btm_cb.ble_ctr_cb.wl_state &= ~BTM_BLE_WL_SCAN;
2900 /*******************************************************************************
2902 ** Function btm_ble_stop_inquiry
2904 ** Description Stop the BLE Inquiry.
2908 *******************************************************************************/
2909 void btm_ble_stop_inquiry(void)
2911 tBTM_INQUIRY_VAR_ST *p_inq = &btm_cb.btm_inq_vars;
2912 tBTM_BLE_CB *p_ble_cb = &btm_cb.ble_ctr_cb;
2914 btu_stop_timer (&p_ble_cb->inq_var.inq_timer_ent);
2916 p_ble_cb->scan_activity &= ~BTM_BLE_INQUIRY_MASK;
2918 /* If no more scan activity, stop LE scan now */
2919 if (!BTM_BLE_IS_SCAN_ACTIVE(p_ble_cb->scan_activity))
2920 btm_ble_stop_scan();
2921 else if((p_ble_cb->inq_var.scan_interval != BTM_BLE_LOW_LATENCY_SCAN_INT) ||
2922 (p_ble_cb->inq_var.scan_window != BTM_BLE_LOW_LATENCY_SCAN_WIN))
2924 BTM_TRACE_DEBUG("%s: setting default params for ongoing observe", __FUNCTION__);
2925 btm_ble_stop_scan();
2926 btm_ble_start_scan();
2929 /* If we have a callback registered for inquiry complete, call it */
2930 BTM_TRACE_DEBUG ("BTM Inq Compl Callback: status 0x%02x, num results %d",
2931 p_inq->inq_cmpl_info.status, p_inq->inq_cmpl_info.num_resp);
2933 btm_process_inq_complete(HCI_SUCCESS, (UINT8)(p_inq->inqparms.mode & BTM_BLE_INQUIRY_MASK));
2936 /*******************************************************************************
2938 ** Function btm_ble_stop_observe
2940 ** Description Stop the BLE Observe.
2944 *******************************************************************************/
2945 static void btm_ble_stop_observe(void)
2947 tBTM_BLE_CB *p_ble_cb = & btm_cb.ble_ctr_cb;
2948 tBTM_CMPL_CB *p_obs_cb = p_ble_cb->p_obs_cmpl_cb;
2950 btu_stop_timer (&p_ble_cb->obs_timer_ent);
2952 p_ble_cb->scan_activity &= ~BTM_LE_OBSERVE_ACTIVE;
2954 p_ble_cb->p_obs_results_cb = NULL;
2955 p_ble_cb->p_obs_cmpl_cb = NULL;
2957 if (!BTM_BLE_IS_SCAN_ACTIVE(p_ble_cb->scan_activity))
2958 btm_ble_stop_scan();
2961 (p_obs_cb)((tBTM_INQUIRY_CMPL *) &btm_cb.btm_inq_vars.inq_cmpl_info);
2963 /*******************************************************************************
2965 ** Function btm_ble_adv_states_operation
2967 ** Description Set or clear adv states in topology mask
2969 ** Returns operation status. TRUE if sucessful, FALSE otherwise.
2971 *******************************************************************************/
2972 typedef BOOLEAN (BTM_TOPOLOGY_FUNC_PTR)(tBTM_BLE_STATE_MASK);
2973 static BOOLEAN btm_ble_adv_states_operation(BTM_TOPOLOGY_FUNC_PTR *p_handler, UINT8 adv_evt)
2979 case BTM_BLE_CONNECT_EVT:
2980 rt = (*p_handler)(BTM_BLE_STATE_CONN_ADV_BIT);
2983 case BTM_BLE_NON_CONNECT_EVT:
2984 rt = (*p_handler) (BTM_BLE_STATE_NON_CONN_ADV_BIT);
2986 case BTM_BLE_CONNECT_DIR_EVT:
2987 rt = (*p_handler) (BTM_BLE_STATE_HI_DUTY_DIR_ADV_BIT);
2990 case BTM_BLE_DISCOVER_EVT:
2991 rt = (*p_handler) (BTM_BLE_STATE_SCAN_ADV_BIT);
2994 case BTM_BLE_CONNECT_LO_DUTY_DIR_EVT:
2995 rt = (*p_handler) (BTM_BLE_STATE_LO_DUTY_DIR_ADV_BIT);
2999 BTM_TRACE_ERROR("unknown adv event : %d", adv_evt);
3006 /*******************************************************************************
3008 ** Function btm_ble_start_adv
3010 ** Description start the BLE advertising.
3014 *******************************************************************************/
3015 tBTM_STATUS btm_ble_start_adv(void)
3017 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
3018 tBTM_STATUS rt = BTM_NO_RESOURCES;
3020 if (!btm_ble_adv_states_operation (btm_ble_topology_check, p_cb->evt_type))
3021 return BTM_WRONG_MODE;
3023 #if (defined BLE_PRIVACY_SPT && BLE_PRIVACY_SPT == TRUE)
3024 /* To relax resolving list, always have resolving list enabled, unless directed adv */
3025 if (p_cb->evt_type != BTM_BLE_CONNECT_LO_DUTY_DIR_EVT &&
3026 p_cb->evt_type != BTM_BLE_CONNECT_DIR_EVT)
3027 /* enable resolving list is desired */
3028 btm_ble_enable_resolving_list_for_platform(BTM_BLE_RL_ADV);
3030 if (p_cb->afp != AP_SCAN_CONN_ALL)
3032 btm_execute_wl_dev_operation();
3033 btm_cb.ble_ctr_cb.wl_state |= BTM_BLE_WL_ADV;
3036 if (btsnd_hcic_ble_set_adv_enable (BTM_BLE_ADV_ENABLE))
3038 p_cb->adv_mode = BTM_BLE_ADV_ENABLE;
3039 btm_ble_adv_states_operation(btm_ble_set_topology_mask, p_cb->evt_type);
3044 p_cb->adv_mode = BTM_BLE_ADV_DISABLE;
3045 btm_cb.ble_ctr_cb.wl_state &= ~BTM_BLE_WL_ADV;
3050 /*******************************************************************************
3052 ** Function btm_ble_stop_adv
3054 ** Description Stop the BLE advertising.
3058 *******************************************************************************/
3059 tBTM_STATUS btm_ble_stop_adv(void)
3061 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
3062 tBTM_STATUS rt = BTM_SUCCESS;
3064 if (p_cb->adv_mode == BTM_BLE_ADV_ENABLE)
3066 if (btsnd_hcic_ble_set_adv_enable (BTM_BLE_ADV_DISABLE))
3068 p_cb->fast_adv_on = FALSE;
3069 p_cb->adv_mode = BTM_BLE_ADV_DISABLE;
3070 btm_cb.ble_ctr_cb.wl_state &= ~BTM_BLE_WL_ADV;
3072 /* clear all adv states */
3073 btm_ble_clear_topology_mask (BTM_BLE_STATE_ALL_ADV_MASK);
3076 rt = BTM_NO_RESOURCES;
3081 /*******************************************************************************
3083 ** Function btm_ble_start_slow_adv
3085 ** Description Restart adv with slow adv interval
3089 *******************************************************************************/
3090 static void btm_ble_start_slow_adv (void)
3092 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
3094 if (p_cb->adv_mode == BTM_BLE_ADV_ENABLE)
3096 tBTM_LE_RANDOM_CB *p_addr_cb = &btm_cb.ble_ctr_cb.addr_mgnt_cb;
3097 BD_ADDR p_addr_ptr = {0};
3098 tBLE_ADDR_TYPE init_addr_type = BLE_ADDR_PUBLIC;
3099 tBLE_ADDR_TYPE own_addr_type = p_addr_cb->own_addr_type;
3103 p_cb->evt_type = btm_set_conn_mode_adv_init_addr(p_cb, p_addr_ptr, &init_addr_type,
3106 /* slow adv mode never goes into directed adv */
3107 btsnd_hcic_ble_write_adv_params (BTM_BLE_GAP_ADV_SLOW_INT, BTM_BLE_GAP_ADV_SLOW_INT,
3108 p_cb->evt_type, own_addr_type,
3109 init_addr_type, p_addr_ptr,
3110 p_cb->adv_chnl_map, p_cb->afp);
3112 btm_ble_start_adv();
3115 /*******************************************************************************
3117 ** Function btm_ble_timeout
3119 ** Description Called when BTM BLE inquiry timer expires
3123 *******************************************************************************/
3124 void btm_ble_timeout(TIMER_LIST_ENT *p_tle)
3126 BTM_TRACE_EVENT ("btm_ble_timeout");
3128 switch (p_tle->event)
3130 case BTU_TTYPE_BLE_OBSERVE:
3131 btm_ble_stop_observe();
3134 case BTU_TTYPE_BLE_INQUIRY:
3135 btm_ble_stop_inquiry();
3138 case BTU_TTYPE_BLE_GAP_LIM_DISC:
3139 /* lim_timeout expiried, limited discovery should exit now */
3140 btm_cb.btm_inq_vars.discoverable_mode &= ~BTM_BLE_LIMITED_DISCOVERABLE;
3141 btm_ble_set_adv_flag(btm_cb.btm_inq_vars.connectable_mode, btm_cb.btm_inq_vars.discoverable_mode);
3144 case BTU_TTYPE_BLE_RANDOM_ADDR:
3145 if (btm_cb.ble_ctr_cb.addr_mgnt_cb.own_addr_type == BLE_ADDR_RANDOM)
3147 if (NULL == (void *)(p_tle->param))
3149 /* refresh the random addr */
3150 btm_gen_resolvable_private_addr((void *)btm_gen_resolve_paddr_low);
3154 if (BTM_BleMaxMultiAdvInstanceCount() > 0)
3155 btm_ble_multi_adv_configure_rpa((tBTM_BLE_MULTI_ADV_INST*)p_tle->param);
3160 case BTU_TTYPE_BLE_GAP_FAST_ADV:
3161 /* fast adv is completed, fall back to slow adv interval */
3162 btm_ble_start_slow_adv();
3171 /*******************************************************************************
3173 ** Function btm_ble_read_remote_features_complete
3175 ** Description This function is called when the command complete message
3176 ** is received from the HCI for the read LE remote feature supported
3181 *******************************************************************************/
3182 void btm_ble_read_remote_features_complete(UINT8 *p)
3184 tACL_CONN *p_acl_cb = &btm_cb.acl_db[0];
3189 BTM_TRACE_EVENT ("btm_ble_read_remote_features_complete ");
3191 STREAM_TO_UINT8(status, p);
3193 // if LE read remote feature failed for HCI_ERR_CONN_FAILED_ESTABLISHMENT,
3194 // expect disconnect complete to be received
3195 if (status != HCI_ERR_CONN_FAILED_ESTABLISHMENT)
3197 STREAM_TO_UINT16 (handle, p);
3199 /* Look up the connection by handle and copy features */
3200 for (xx = 0; xx < MAX_L2CAP_LINKS; xx++, p_acl_cb++)
3202 if ((p_acl_cb->in_use) && (p_acl_cb->hci_handle == handle))
3204 STREAM_TO_ARRAY(p_acl_cb->peer_le_features, p, BD_FEATURES_LEN);
3205 /*notify link up here */
3206 l2cble_notify_le_connection (p_acl_cb->remote_addr);
3214 /*******************************************************************************
3216 ** Function btm_ble_write_adv_enable_complete
3218 ** Description This function process the write adv enable command complete.
3222 *******************************************************************************/
3223 void btm_ble_write_adv_enable_complete(UINT8 * p)
3225 tBTM_BLE_INQ_CB *p_cb = &btm_cb.ble_ctr_cb.inq_var;
3227 /* if write adv enable/disbale not succeed */
3228 if (*p != HCI_SUCCESS)
3230 /* toggle back the adv mode */
3231 p_cb->adv_mode = !p_cb->adv_mode;
3235 /*******************************************************************************
3237 ** Function btm_ble_dir_adv_tout
3239 ** Description when directed adv time out
3243 *******************************************************************************/
3244 void btm_ble_dir_adv_tout(void)
3246 btm_cb.ble_ctr_cb.inq_var.adv_mode = BTM_BLE_ADV_DISABLE;
3248 /* make device fall back into undirected adv mode by default */
3249 btm_cb.ble_ctr_cb.inq_var.directed_conn = FALSE;
3252 /*******************************************************************************
3254 ** Function btm_ble_set_topology_mask
3256 ** Description set BLE topology mask
3258 ** Returns TRUE is request is allowed, FALSE otherwise.
3260 *******************************************************************************/
3261 BOOLEAN btm_ble_set_topology_mask(tBTM_BLE_STATE_MASK request_state_mask)
3263 request_state_mask &= BTM_BLE_STATE_ALL_MASK;
3264 btm_cb.ble_ctr_cb.cur_states |= (request_state_mask & BTM_BLE_STATE_ALL_MASK);
3268 /*******************************************************************************
3270 ** Function btm_ble_clear_topology_mask
3272 ** Description Clear BLE topology bit mask
3274 ** Returns TRUE is request is allowed, FALSE otherwise.
3276 *******************************************************************************/
3277 BOOLEAN btm_ble_clear_topology_mask (tBTM_BLE_STATE_MASK request_state_mask)
3279 request_state_mask &= BTM_BLE_STATE_ALL_MASK;
3280 btm_cb.ble_ctr_cb.cur_states &= ~request_state_mask;
3284 /*******************************************************************************
3286 ** Function btm_ble_update_link_topology_mask
3288 ** Description This function update the link topology mask
3292 *******************************************************************************/
3293 void btm_ble_update_link_topology_mask(UINT8 link_role, BOOLEAN increase)
3295 btm_ble_clear_topology_mask (BTM_BLE_STATE_ALL_CONN_MASK);
3298 btm_cb.ble_ctr_cb.link_count[link_role]++;
3299 else if (btm_cb.ble_ctr_cb.link_count[link_role] > 0)
3300 btm_cb.ble_ctr_cb.link_count[link_role]--;
3302 if (btm_cb.ble_ctr_cb.link_count[HCI_ROLE_MASTER])
3303 btm_ble_set_topology_mask (BTM_BLE_STATE_MASTER_BIT);
3305 if (btm_cb.ble_ctr_cb.link_count[HCI_ROLE_SLAVE])
3306 btm_ble_set_topology_mask(BTM_BLE_STATE_SLAVE_BIT);
3308 if (link_role == HCI_ROLE_SLAVE && increase)
3310 btm_cb.ble_ctr_cb.inq_var.adv_mode = BTM_BLE_ADV_DISABLE;
3311 /* make device fall back into undirected adv mode by default */
3312 btm_cb.ble_ctr_cb.inq_var.directed_conn = BTM_BLE_CONNECT_EVT;
3313 /* clear all adv states */
3314 btm_ble_clear_topology_mask(BTM_BLE_STATE_ALL_ADV_MASK);
3318 /*******************************************************************************
3320 ** Function btm_ble_update_mode_operation
3322 ** Description This function update the GAP role operation when a link status
3327 *******************************************************************************/
3328 void btm_ble_update_mode_operation(UINT8 link_role, BD_ADDR bd_addr, UINT8 status)
3330 if (status == HCI_ERR_DIRECTED_ADVERTISING_TIMEOUT)
3332 btm_cb.ble_ctr_cb.inq_var.adv_mode = BTM_BLE_ADV_DISABLE;
3333 /* make device fall back into undirected adv mode by default */
3334 btm_cb.ble_ctr_cb.inq_var.directed_conn = BTM_BLE_CONNECT_EVT;
3335 /* clear all adv states */
3336 btm_ble_clear_topology_mask (BTM_BLE_STATE_ALL_ADV_MASK);
3339 if (btm_cb.ble_ctr_cb.inq_var.connectable_mode == BTM_BLE_CONNECTABLE)
3341 btm_ble_set_connectability(btm_cb.btm_inq_vars.connectable_mode |
3342 btm_cb.ble_ctr_cb.inq_var.connectable_mode);
3345 /* when no connection is attempted, and controller is not rejecting last request
3346 due to resource limitation, start next direct connection or background connection
3348 if (btm_ble_get_conn_st() == BLE_CONN_IDLE && status != HCI_ERR_HOST_REJECT_RESOURCES &&
3349 !btm_send_pending_direct_conn())
3351 btm_ble_resume_bg_conn();
3355 /*******************************************************************************
3357 ** Function btm_ble_init
3359 ** Description Initialize the control block variable values.
3363 *******************************************************************************/
3364 void btm_ble_init (void)
3366 tBTM_BLE_CB *p_cb = &btm_cb.ble_ctr_cb;
3368 BTM_TRACE_DEBUG("%s", __func__);
3370 memset(p_cb, 0, sizeof(tBTM_BLE_CB));
3371 memset(&(btm_cb.cmn_ble_vsc_cb), 0 , sizeof(tBTM_BLE_VSC_CB));
3372 btm_cb.cmn_ble_vsc_cb.values_read = FALSE;
3373 p_cb->cur_states = 0;
3375 p_cb->inq_var.adv_mode = BTM_BLE_ADV_DISABLE;
3376 p_cb->inq_var.scan_type = BTM_BLE_SCAN_MODE_NONE;
3377 p_cb->inq_var.adv_chnl_map = BTM_BLE_DEFAULT_ADV_CHNL_MAP;
3378 p_cb->inq_var.afp = BTM_BLE_DEFAULT_AFP;
3379 p_cb->inq_var.sfp = BTM_BLE_DEFAULT_SFP;
3380 p_cb->inq_var.connectable_mode = BTM_BLE_NON_CONNECTABLE;
3381 p_cb->inq_var.discoverable_mode = BTM_BLE_NON_DISCOVERABLE;
3383 /* for background connection, reset connection params to be undefined */
3384 p_cb->scan_int = p_cb->scan_win = BTM_BLE_SCAN_PARAM_UNDEF;
3386 p_cb->inq_var.evt_type = BTM_BLE_NON_CONNECT_EVT;
3388 #if BLE_VND_INCLUDED == FALSE
3389 btm_ble_adv_filter_init();
3393 /*******************************************************************************
3395 ** Function btm_ble_topology_check
3397 ** Description check to see requested state is supported. One state check at
3398 ** a time is supported
3400 ** Returns TRUE is request is allowed, FALSE otherwise.
3402 *******************************************************************************/
3403 BOOLEAN btm_ble_topology_check(tBTM_BLE_STATE_MASK request_state_mask)
3407 UINT8 state_offset = 0;
3408 UINT16 cur_states = btm_cb.ble_ctr_cb.cur_states;
3410 UINT8 request_state = 0;
3412 /* check only one bit is set and within valid range */
3413 if (request_state_mask == BTM_BLE_STATE_INVALID ||
3414 request_state_mask > BTM_BLE_STATE_SCAN_ADV_BIT ||
3415 (request_state_mask & (request_state_mask -1 )) != 0)
3417 BTM_TRACE_ERROR("illegal state requested: %d", request_state_mask);
3421 while (request_state_mask)
3423 request_state_mask >>= 1;
3427 /* check if the requested state is supported or not */
3428 mask = btm_le_state_combo_tbl[0][request_state - 1][0];
3429 offset = btm_le_state_combo_tbl[0][request_state-1][1];
3431 const uint8_t *ble_supported_states = controller_get_interface()->get_ble_supported_states();
3433 if (!BTM_LE_STATES_SUPPORTED(ble_supported_states, mask, offset))
3435 BTM_TRACE_ERROR("state requested not supported: %d", request_state);
3440 /* make sure currently active states are all supported in conjunction with the requested
3441 state. If the bit in table is not set, the combination is not supported */
3442 while (cur_states != 0)
3444 if (cur_states & 0x01)
3446 mask = btm_le_state_combo_tbl[request_state][state_offset][0];
3447 offset = btm_le_state_combo_tbl[request_state][state_offset][1];
3449 if (mask != 0 && offset != 0)
3451 if (!BTM_LE_STATES_SUPPORTED(ble_supported_states, mask, offset))
3464 #endif /* BLE_INCLUDED */