2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (c) 2000-2001, 2010, Code Aurora Forum. All rights reserved.
5 Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License version 2 as
9 published by the Free Software Foundation;
11 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
12 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
13 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
14 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
15 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
16 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
17 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
18 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
20 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
21 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
22 SOFTWARE IS DISCLAIMED.
25 /* Bluetooth HCI event handling. */
27 #include <linux/module.h>
29 #include <linux/types.h>
30 #include <linux/errno.h>
31 #include <linux/kernel.h>
32 #include <linux/slab.h>
33 #include <linux/poll.h>
34 #include <linux/fcntl.h>
35 #include <linux/init.h>
36 #include <linux/skbuff.h>
37 #include <linux/interrupt.h>
38 #include <linux/notifier.h>
41 #include <asm/system.h>
42 #include <asm/uaccess.h>
43 #include <asm/unaligned.h>
45 #include <net/bluetooth/bluetooth.h>
46 #include <net/bluetooth/hci_core.h>
48 /* Handle HCI Event packets */
50 static void hci_cc_inquiry_cancel(struct hci_dev *hdev, struct sk_buff *skb)
52 __u8 status = *((__u8 *) skb->data);
54 BT_DBG("%s status 0x%x", hdev->name, status);
59 clear_bit(HCI_INQUIRY, &hdev->flags);
61 hci_req_complete(hdev, status);
63 hci_conn_check_pending(hdev);
66 static void hci_cc_exit_periodic_inq(struct hci_dev *hdev, struct sk_buff *skb)
68 __u8 status = *((__u8 *) skb->data);
70 BT_DBG("%s status 0x%x", hdev->name, status);
75 clear_bit(HCI_INQUIRY, &hdev->flags);
77 hci_conn_check_pending(hdev);
80 static void hci_cc_remote_name_req_cancel(struct hci_dev *hdev, struct sk_buff *skb)
82 BT_DBG("%s", hdev->name);
85 static void hci_cc_role_discovery(struct hci_dev *hdev, struct sk_buff *skb)
87 struct hci_rp_role_discovery *rp = (void *) skb->data;
88 struct hci_conn *conn;
90 BT_DBG("%s status 0x%x", hdev->name, rp->status);
97 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(rp->handle));
100 conn->link_mode &= ~HCI_LM_MASTER;
102 conn->link_mode |= HCI_LM_MASTER;
105 hci_dev_unlock(hdev);
108 static void hci_cc_read_link_policy(struct hci_dev *hdev, struct sk_buff *skb)
110 struct hci_rp_read_link_policy *rp = (void *) skb->data;
111 struct hci_conn *conn;
113 BT_DBG("%s status 0x%x", hdev->name, rp->status);
120 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(rp->handle));
122 conn->link_policy = __le16_to_cpu(rp->policy);
124 hci_dev_unlock(hdev);
127 static void hci_cc_write_link_policy(struct hci_dev *hdev, struct sk_buff *skb)
129 struct hci_rp_write_link_policy *rp = (void *) skb->data;
130 struct hci_conn *conn;
133 BT_DBG("%s status 0x%x", hdev->name, rp->status);
138 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_LINK_POLICY);
144 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(rp->handle));
146 conn->link_policy = get_unaligned_le16(sent + 2);
148 hci_dev_unlock(hdev);
151 static void hci_cc_read_def_link_policy(struct hci_dev *hdev, struct sk_buff *skb)
153 struct hci_rp_read_def_link_policy *rp = (void *) skb->data;
155 BT_DBG("%s status 0x%x", hdev->name, rp->status);
160 hdev->link_policy = __le16_to_cpu(rp->policy);
163 static void hci_cc_write_def_link_policy(struct hci_dev *hdev, struct sk_buff *skb)
165 __u8 status = *((__u8 *) skb->data);
168 BT_DBG("%s status 0x%x", hdev->name, status);
170 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_DEF_LINK_POLICY);
175 hdev->link_policy = get_unaligned_le16(sent);
177 hci_req_complete(hdev, status);
180 static void hci_cc_reset(struct hci_dev *hdev, struct sk_buff *skb)
182 __u8 status = *((__u8 *) skb->data);
184 BT_DBG("%s status 0x%x", hdev->name, status);
186 hci_req_complete(hdev, status);
189 static void hci_cc_write_local_name(struct hci_dev *hdev, struct sk_buff *skb)
191 __u8 status = *((__u8 *) skb->data);
194 BT_DBG("%s status 0x%x", hdev->name, status);
199 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_LOCAL_NAME);
203 memcpy(hdev->dev_name, sent, 248);
206 static void hci_cc_read_local_name(struct hci_dev *hdev, struct sk_buff *skb)
208 struct hci_rp_read_local_name *rp = (void *) skb->data;
210 BT_DBG("%s status 0x%x", hdev->name, rp->status);
215 memcpy(hdev->dev_name, rp->name, 248);
218 static void hci_cc_write_auth_enable(struct hci_dev *hdev, struct sk_buff *skb)
220 __u8 status = *((__u8 *) skb->data);
223 BT_DBG("%s status 0x%x", hdev->name, status);
225 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_AUTH_ENABLE);
230 __u8 param = *((__u8 *) sent);
232 if (param == AUTH_ENABLED)
233 set_bit(HCI_AUTH, &hdev->flags);
235 clear_bit(HCI_AUTH, &hdev->flags);
238 hci_req_complete(hdev, status);
241 static void hci_cc_write_encrypt_mode(struct hci_dev *hdev, struct sk_buff *skb)
243 __u8 status = *((__u8 *) skb->data);
246 BT_DBG("%s status 0x%x", hdev->name, status);
248 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_ENCRYPT_MODE);
253 __u8 param = *((__u8 *) sent);
256 set_bit(HCI_ENCRYPT, &hdev->flags);
258 clear_bit(HCI_ENCRYPT, &hdev->flags);
261 hci_req_complete(hdev, status);
264 static void hci_cc_write_scan_enable(struct hci_dev *hdev, struct sk_buff *skb)
266 __u8 status = *((__u8 *) skb->data);
269 BT_DBG("%s status 0x%x", hdev->name, status);
271 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_SCAN_ENABLE);
276 __u8 param = *((__u8 *) sent);
278 clear_bit(HCI_PSCAN, &hdev->flags);
279 clear_bit(HCI_ISCAN, &hdev->flags);
281 if (param & SCAN_INQUIRY)
282 set_bit(HCI_ISCAN, &hdev->flags);
284 if (param & SCAN_PAGE)
285 set_bit(HCI_PSCAN, &hdev->flags);
288 hci_req_complete(hdev, status);
291 static void hci_cc_read_class_of_dev(struct hci_dev *hdev, struct sk_buff *skb)
293 struct hci_rp_read_class_of_dev *rp = (void *) skb->data;
295 BT_DBG("%s status 0x%x", hdev->name, rp->status);
300 memcpy(hdev->dev_class, rp->dev_class, 3);
302 BT_DBG("%s class 0x%.2x%.2x%.2x", hdev->name,
303 hdev->dev_class[2], hdev->dev_class[1], hdev->dev_class[0]);
306 static void hci_cc_write_class_of_dev(struct hci_dev *hdev, struct sk_buff *skb)
308 __u8 status = *((__u8 *) skb->data);
311 BT_DBG("%s status 0x%x", hdev->name, status);
316 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_CLASS_OF_DEV);
320 memcpy(hdev->dev_class, sent, 3);
323 static void hci_cc_read_voice_setting(struct hci_dev *hdev, struct sk_buff *skb)
325 struct hci_rp_read_voice_setting *rp = (void *) skb->data;
328 BT_DBG("%s status 0x%x", hdev->name, rp->status);
333 setting = __le16_to_cpu(rp->voice_setting);
335 if (hdev->voice_setting == setting)
338 hdev->voice_setting = setting;
340 BT_DBG("%s voice setting 0x%04x", hdev->name, setting);
343 tasklet_disable(&hdev->tx_task);
344 hdev->notify(hdev, HCI_NOTIFY_VOICE_SETTING);
345 tasklet_enable(&hdev->tx_task);
349 static void hci_cc_write_voice_setting(struct hci_dev *hdev, struct sk_buff *skb)
351 __u8 status = *((__u8 *) skb->data);
355 BT_DBG("%s status 0x%x", hdev->name, status);
360 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_VOICE_SETTING);
364 setting = get_unaligned_le16(sent);
366 if (hdev->voice_setting == setting)
369 hdev->voice_setting = setting;
371 BT_DBG("%s voice setting 0x%04x", hdev->name, setting);
374 tasklet_disable(&hdev->tx_task);
375 hdev->notify(hdev, HCI_NOTIFY_VOICE_SETTING);
376 tasklet_enable(&hdev->tx_task);
380 static void hci_cc_host_buffer_size(struct hci_dev *hdev, struct sk_buff *skb)
382 __u8 status = *((__u8 *) skb->data);
384 BT_DBG("%s status 0x%x", hdev->name, status);
386 hci_req_complete(hdev, status);
389 static void hci_cc_read_ssp_mode(struct hci_dev *hdev, struct sk_buff *skb)
391 struct hci_rp_read_ssp_mode *rp = (void *) skb->data;
393 BT_DBG("%s status 0x%x", hdev->name, rp->status);
398 hdev->ssp_mode = rp->mode;
401 static void hci_cc_write_ssp_mode(struct hci_dev *hdev, struct sk_buff *skb)
403 __u8 status = *((__u8 *) skb->data);
406 BT_DBG("%s status 0x%x", hdev->name, status);
411 sent = hci_sent_cmd_data(hdev, HCI_OP_WRITE_SSP_MODE);
415 hdev->ssp_mode = *((__u8 *) sent);
418 static void hci_cc_read_local_version(struct hci_dev *hdev, struct sk_buff *skb)
420 struct hci_rp_read_local_version *rp = (void *) skb->data;
422 BT_DBG("%s status 0x%x", hdev->name, rp->status);
427 hdev->hci_ver = rp->hci_ver;
428 hdev->hci_rev = __le16_to_cpu(rp->hci_rev);
429 hdev->manufacturer = __le16_to_cpu(rp->manufacturer);
431 BT_DBG("%s manufacturer %d hci ver %d:%d", hdev->name,
433 hdev->hci_ver, hdev->hci_rev);
436 static void hci_cc_read_local_commands(struct hci_dev *hdev, struct sk_buff *skb)
438 struct hci_rp_read_local_commands *rp = (void *) skb->data;
440 BT_DBG("%s status 0x%x", hdev->name, rp->status);
445 memcpy(hdev->commands, rp->commands, sizeof(hdev->commands));
448 static void hci_cc_read_local_features(struct hci_dev *hdev, struct sk_buff *skb)
450 struct hci_rp_read_local_features *rp = (void *) skb->data;
452 BT_DBG("%s status 0x%x", hdev->name, rp->status);
457 memcpy(hdev->features, rp->features, 8);
459 /* Adjust default settings according to features
460 * supported by device. */
462 if (hdev->features[0] & LMP_3SLOT)
463 hdev->pkt_type |= (HCI_DM3 | HCI_DH3);
465 if (hdev->features[0] & LMP_5SLOT)
466 hdev->pkt_type |= (HCI_DM5 | HCI_DH5);
468 if (hdev->features[1] & LMP_HV2) {
469 hdev->pkt_type |= (HCI_HV2);
470 hdev->esco_type |= (ESCO_HV2);
473 if (hdev->features[1] & LMP_HV3) {
474 hdev->pkt_type |= (HCI_HV3);
475 hdev->esco_type |= (ESCO_HV3);
478 if (hdev->features[3] & LMP_ESCO)
479 hdev->esco_type |= (ESCO_EV3);
481 if (hdev->features[4] & LMP_EV4)
482 hdev->esco_type |= (ESCO_EV4);
484 if (hdev->features[4] & LMP_EV5)
485 hdev->esco_type |= (ESCO_EV5);
487 if (hdev->features[5] & LMP_EDR_ESCO_2M)
488 hdev->esco_type |= (ESCO_2EV3);
490 if (hdev->features[5] & LMP_EDR_ESCO_3M)
491 hdev->esco_type |= (ESCO_3EV3);
493 if (hdev->features[5] & LMP_EDR_3S_ESCO)
494 hdev->esco_type |= (ESCO_2EV5 | ESCO_3EV5);
496 BT_DBG("%s features 0x%.2x%.2x%.2x%.2x%.2x%.2x%.2x%.2x", hdev->name,
497 hdev->features[0], hdev->features[1],
498 hdev->features[2], hdev->features[3],
499 hdev->features[4], hdev->features[5],
500 hdev->features[6], hdev->features[7]);
503 static void hci_cc_read_buffer_size(struct hci_dev *hdev, struct sk_buff *skb)
505 struct hci_rp_read_buffer_size *rp = (void *) skb->data;
507 BT_DBG("%s status 0x%x", hdev->name, rp->status);
512 hdev->acl_mtu = __le16_to_cpu(rp->acl_mtu);
513 hdev->sco_mtu = rp->sco_mtu;
514 hdev->acl_pkts = __le16_to_cpu(rp->acl_max_pkt);
515 hdev->sco_pkts = __le16_to_cpu(rp->sco_max_pkt);
517 if (test_bit(HCI_QUIRK_FIXUP_BUFFER_SIZE, &hdev->quirks)) {
522 hdev->acl_cnt = hdev->acl_pkts;
523 hdev->sco_cnt = hdev->sco_pkts;
525 BT_DBG("%s acl mtu %d:%d sco mtu %d:%d", hdev->name,
526 hdev->acl_mtu, hdev->acl_pkts,
527 hdev->sco_mtu, hdev->sco_pkts);
530 static void hci_cc_read_bd_addr(struct hci_dev *hdev, struct sk_buff *skb)
532 struct hci_rp_read_bd_addr *rp = (void *) skb->data;
534 BT_DBG("%s status 0x%x", hdev->name, rp->status);
537 bacpy(&hdev->bdaddr, &rp->bdaddr);
539 hci_req_complete(hdev, rp->status);
542 static inline void hci_cs_inquiry(struct hci_dev *hdev, __u8 status)
544 BT_DBG("%s status 0x%x", hdev->name, status);
547 hci_req_complete(hdev, status);
549 hci_conn_check_pending(hdev);
551 set_bit(HCI_INQUIRY, &hdev->flags);
554 static inline void hci_cs_create_conn(struct hci_dev *hdev, __u8 status)
556 struct hci_cp_create_conn *cp;
557 struct hci_conn *conn;
559 BT_DBG("%s status 0x%x", hdev->name, status);
561 cp = hci_sent_cmd_data(hdev, HCI_OP_CREATE_CONN);
567 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &cp->bdaddr);
569 BT_DBG("%s bdaddr %s conn %p", hdev->name, batostr(&cp->bdaddr), conn);
572 if (conn && conn->state == BT_CONNECT) {
573 if (status != 0x0c || conn->attempt > 2) {
574 conn->state = BT_CLOSED;
575 hci_proto_connect_cfm(conn, status);
578 conn->state = BT_CONNECT2;
582 conn = hci_conn_add(hdev, ACL_LINK, &cp->bdaddr);
585 conn->link_mode |= HCI_LM_MASTER;
587 BT_ERR("No memory for new connection");
591 hci_dev_unlock(hdev);
594 static void hci_cs_add_sco(struct hci_dev *hdev, __u8 status)
596 struct hci_cp_add_sco *cp;
597 struct hci_conn *acl, *sco;
600 BT_DBG("%s status 0x%x", hdev->name, status);
605 cp = hci_sent_cmd_data(hdev, HCI_OP_ADD_SCO);
609 handle = __le16_to_cpu(cp->handle);
611 BT_DBG("%s handle %d", hdev->name, handle);
615 acl = hci_conn_hash_lookup_handle(hdev, handle);
616 if (acl && (sco = acl->link)) {
617 sco->state = BT_CLOSED;
619 hci_proto_connect_cfm(sco, status);
623 hci_dev_unlock(hdev);
626 static void hci_cs_auth_requested(struct hci_dev *hdev, __u8 status)
628 struct hci_cp_auth_requested *cp;
629 struct hci_conn *conn;
631 BT_DBG("%s status 0x%x", hdev->name, status);
636 cp = hci_sent_cmd_data(hdev, HCI_OP_AUTH_REQUESTED);
642 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(cp->handle));
644 if (conn->state == BT_CONFIG) {
645 hci_proto_connect_cfm(conn, status);
650 hci_dev_unlock(hdev);
653 static void hci_cs_set_conn_encrypt(struct hci_dev *hdev, __u8 status)
655 struct hci_cp_set_conn_encrypt *cp;
656 struct hci_conn *conn;
658 BT_DBG("%s status 0x%x", hdev->name, status);
663 cp = hci_sent_cmd_data(hdev, HCI_OP_SET_CONN_ENCRYPT);
669 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(cp->handle));
671 if (conn->state == BT_CONFIG) {
672 hci_proto_connect_cfm(conn, status);
677 hci_dev_unlock(hdev);
680 static void hci_cs_remote_name_req(struct hci_dev *hdev, __u8 status)
682 BT_DBG("%s status 0x%x", hdev->name, status);
685 static void hci_cs_read_remote_features(struct hci_dev *hdev, __u8 status)
687 struct hci_cp_read_remote_features *cp;
688 struct hci_conn *conn;
690 BT_DBG("%s status 0x%x", hdev->name, status);
695 cp = hci_sent_cmd_data(hdev, HCI_OP_READ_REMOTE_FEATURES);
701 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(cp->handle));
703 if (conn->state == BT_CONFIG) {
704 hci_proto_connect_cfm(conn, status);
709 hci_dev_unlock(hdev);
712 static void hci_cs_read_remote_ext_features(struct hci_dev *hdev, __u8 status)
714 struct hci_cp_read_remote_ext_features *cp;
715 struct hci_conn *conn;
717 BT_DBG("%s status 0x%x", hdev->name, status);
722 cp = hci_sent_cmd_data(hdev, HCI_OP_READ_REMOTE_EXT_FEATURES);
728 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(cp->handle));
730 if (conn->state == BT_CONFIG) {
731 hci_proto_connect_cfm(conn, status);
736 hci_dev_unlock(hdev);
739 static void hci_cs_setup_sync_conn(struct hci_dev *hdev, __u8 status)
741 struct hci_cp_setup_sync_conn *cp;
742 struct hci_conn *acl, *sco;
745 BT_DBG("%s status 0x%x", hdev->name, status);
750 cp = hci_sent_cmd_data(hdev, HCI_OP_SETUP_SYNC_CONN);
754 handle = __le16_to_cpu(cp->handle);
756 BT_DBG("%s handle %d", hdev->name, handle);
760 acl = hci_conn_hash_lookup_handle(hdev, handle);
761 if (acl && (sco = acl->link)) {
762 sco->state = BT_CLOSED;
764 hci_proto_connect_cfm(sco, status);
768 hci_dev_unlock(hdev);
771 static void hci_cs_sniff_mode(struct hci_dev *hdev, __u8 status)
773 struct hci_cp_sniff_mode *cp;
774 struct hci_conn *conn;
776 BT_DBG("%s status 0x%x", hdev->name, status);
781 cp = hci_sent_cmd_data(hdev, HCI_OP_SNIFF_MODE);
787 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(cp->handle));
789 clear_bit(HCI_CONN_MODE_CHANGE_PEND, &conn->pend);
791 if (test_and_clear_bit(HCI_CONN_SCO_SETUP_PEND, &conn->pend))
792 hci_sco_setup(conn, status);
795 hci_dev_unlock(hdev);
798 static void hci_cs_exit_sniff_mode(struct hci_dev *hdev, __u8 status)
800 struct hci_cp_exit_sniff_mode *cp;
801 struct hci_conn *conn;
803 BT_DBG("%s status 0x%x", hdev->name, status);
808 cp = hci_sent_cmd_data(hdev, HCI_OP_EXIT_SNIFF_MODE);
814 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(cp->handle));
816 clear_bit(HCI_CONN_MODE_CHANGE_PEND, &conn->pend);
818 if (test_and_clear_bit(HCI_CONN_SCO_SETUP_PEND, &conn->pend))
819 hci_sco_setup(conn, status);
822 hci_dev_unlock(hdev);
825 static inline void hci_inquiry_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
827 __u8 status = *((__u8 *) skb->data);
829 BT_DBG("%s status %d", hdev->name, status);
831 clear_bit(HCI_INQUIRY, &hdev->flags);
833 hci_req_complete(hdev, status);
835 hci_conn_check_pending(hdev);
838 static inline void hci_inquiry_result_evt(struct hci_dev *hdev, struct sk_buff *skb)
840 struct inquiry_data data;
841 struct inquiry_info *info = (void *) (skb->data + 1);
842 int num_rsp = *((__u8 *) skb->data);
844 BT_DBG("%s num_rsp %d", hdev->name, num_rsp);
851 for (; num_rsp; num_rsp--) {
852 bacpy(&data.bdaddr, &info->bdaddr);
853 data.pscan_rep_mode = info->pscan_rep_mode;
854 data.pscan_period_mode = info->pscan_period_mode;
855 data.pscan_mode = info->pscan_mode;
856 memcpy(data.dev_class, info->dev_class, 3);
857 data.clock_offset = info->clock_offset;
859 data.ssp_mode = 0x00;
861 hci_inquiry_cache_update(hdev, &data);
864 hci_dev_unlock(hdev);
867 static inline void hci_conn_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
869 struct hci_ev_conn_complete *ev = (void *) skb->data;
870 struct hci_conn *conn;
872 BT_DBG("%s", hdev->name);
876 conn = hci_conn_hash_lookup_ba(hdev, ev->link_type, &ev->bdaddr);
878 if (ev->link_type != SCO_LINK)
881 conn = hci_conn_hash_lookup_ba(hdev, ESCO_LINK, &ev->bdaddr);
885 conn->type = SCO_LINK;
889 conn->handle = __le16_to_cpu(ev->handle);
891 if (conn->type == ACL_LINK) {
892 conn->state = BT_CONFIG;
894 conn->disc_timeout = HCI_DISCONN_TIMEOUT;
896 conn->state = BT_CONNECTED;
898 hci_conn_hold_device(conn);
899 hci_conn_add_sysfs(conn);
901 if (test_bit(HCI_AUTH, &hdev->flags))
902 conn->link_mode |= HCI_LM_AUTH;
904 if (test_bit(HCI_ENCRYPT, &hdev->flags))
905 conn->link_mode |= HCI_LM_ENCRYPT;
907 /* Get remote features */
908 if (conn->type == ACL_LINK) {
909 struct hci_cp_read_remote_features cp;
910 cp.handle = ev->handle;
911 hci_send_cmd(hdev, HCI_OP_READ_REMOTE_FEATURES,
915 /* Set packet type for incoming connection */
916 if (!conn->out && hdev->hci_ver < 3) {
917 struct hci_cp_change_conn_ptype cp;
918 cp.handle = ev->handle;
919 cp.pkt_type = cpu_to_le16(conn->pkt_type);
920 hci_send_cmd(hdev, HCI_OP_CHANGE_CONN_PTYPE,
924 conn->state = BT_CLOSED;
926 if (conn->type == ACL_LINK)
927 hci_sco_setup(conn, ev->status);
930 hci_proto_connect_cfm(conn, ev->status);
932 } else if (ev->link_type != ACL_LINK)
933 hci_proto_connect_cfm(conn, ev->status);
936 hci_dev_unlock(hdev);
938 hci_conn_check_pending(hdev);
941 static inline void hci_conn_request_evt(struct hci_dev *hdev, struct sk_buff *skb)
943 struct hci_ev_conn_request *ev = (void *) skb->data;
944 int mask = hdev->link_mode;
946 BT_DBG("%s bdaddr %s type 0x%x", hdev->name,
947 batostr(&ev->bdaddr), ev->link_type);
949 mask |= hci_proto_connect_ind(hdev, &ev->bdaddr, ev->link_type);
951 if ((mask & HCI_LM_ACCEPT) && !hci_blacklist_lookup(hdev, &ev->bdaddr)) {
952 /* Connection accepted */
953 struct inquiry_entry *ie;
954 struct hci_conn *conn;
958 if ((ie = hci_inquiry_cache_lookup(hdev, &ev->bdaddr)))
959 memcpy(ie->data.dev_class, ev->dev_class, 3);
961 conn = hci_conn_hash_lookup_ba(hdev, ev->link_type, &ev->bdaddr);
963 if (!(conn = hci_conn_add(hdev, ev->link_type, &ev->bdaddr))) {
964 BT_ERR("No memory for new connection");
965 hci_dev_unlock(hdev);
970 memcpy(conn->dev_class, ev->dev_class, 3);
971 conn->state = BT_CONNECT;
973 hci_dev_unlock(hdev);
975 if (ev->link_type == ACL_LINK || !lmp_esco_capable(hdev)) {
976 struct hci_cp_accept_conn_req cp;
978 bacpy(&cp.bdaddr, &ev->bdaddr);
980 if (lmp_rswitch_capable(hdev) && (mask & HCI_LM_MASTER))
981 cp.role = 0x00; /* Become master */
983 cp.role = 0x01; /* Remain slave */
985 hci_send_cmd(hdev, HCI_OP_ACCEPT_CONN_REQ,
988 struct hci_cp_accept_sync_conn_req cp;
990 bacpy(&cp.bdaddr, &ev->bdaddr);
991 cp.pkt_type = cpu_to_le16(conn->pkt_type);
993 cp.tx_bandwidth = cpu_to_le32(0x00001f40);
994 cp.rx_bandwidth = cpu_to_le32(0x00001f40);
995 cp.max_latency = cpu_to_le16(0xffff);
996 cp.content_format = cpu_to_le16(hdev->voice_setting);
997 cp.retrans_effort = 0xff;
999 hci_send_cmd(hdev, HCI_OP_ACCEPT_SYNC_CONN_REQ,
1003 /* Connection rejected */
1004 struct hci_cp_reject_conn_req cp;
1006 bacpy(&cp.bdaddr, &ev->bdaddr);
1008 hci_send_cmd(hdev, HCI_OP_REJECT_CONN_REQ, sizeof(cp), &cp);
1012 static inline void hci_disconn_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1014 struct hci_ev_disconn_complete *ev = (void *) skb->data;
1015 struct hci_conn *conn;
1017 BT_DBG("%s status %d", hdev->name, ev->status);
1024 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1026 conn->state = BT_CLOSED;
1028 hci_proto_disconn_cfm(conn, ev->reason);
1032 hci_dev_unlock(hdev);
1035 static inline void hci_auth_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1037 struct hci_ev_auth_complete *ev = (void *) skb->data;
1038 struct hci_conn *conn;
1040 BT_DBG("%s status %d", hdev->name, ev->status);
1044 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1047 conn->link_mode |= HCI_LM_AUTH;
1049 conn->sec_level = BT_SECURITY_LOW;
1051 clear_bit(HCI_CONN_AUTH_PEND, &conn->pend);
1053 if (conn->state == BT_CONFIG) {
1054 if (!ev->status && hdev->ssp_mode > 0 &&
1055 conn->ssp_mode > 0) {
1056 struct hci_cp_set_conn_encrypt cp;
1057 cp.handle = ev->handle;
1059 hci_send_cmd(hdev, HCI_OP_SET_CONN_ENCRYPT,
1062 conn->state = BT_CONNECTED;
1063 hci_proto_connect_cfm(conn, ev->status);
1067 hci_auth_cfm(conn, ev->status);
1069 hci_conn_hold(conn);
1070 conn->disc_timeout = HCI_DISCONN_TIMEOUT;
1074 if (test_bit(HCI_CONN_ENCRYPT_PEND, &conn->pend)) {
1076 struct hci_cp_set_conn_encrypt cp;
1077 cp.handle = ev->handle;
1079 hci_send_cmd(hdev, HCI_OP_SET_CONN_ENCRYPT,
1082 clear_bit(HCI_CONN_ENCRYPT_PEND, &conn->pend);
1083 hci_encrypt_cfm(conn, ev->status, 0x00);
1088 hci_dev_unlock(hdev);
1091 static inline void hci_remote_name_evt(struct hci_dev *hdev, struct sk_buff *skb)
1093 BT_DBG("%s", hdev->name);
1095 hci_conn_check_pending(hdev);
1098 static inline void hci_encrypt_change_evt(struct hci_dev *hdev, struct sk_buff *skb)
1100 struct hci_ev_encrypt_change *ev = (void *) skb->data;
1101 struct hci_conn *conn;
1103 BT_DBG("%s status %d", hdev->name, ev->status);
1107 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1111 /* Encryption implies authentication */
1112 conn->link_mode |= HCI_LM_AUTH;
1113 conn->link_mode |= HCI_LM_ENCRYPT;
1115 conn->link_mode &= ~HCI_LM_ENCRYPT;
1118 clear_bit(HCI_CONN_ENCRYPT_PEND, &conn->pend);
1120 if (conn->state == BT_CONFIG) {
1122 conn->state = BT_CONNECTED;
1124 hci_proto_connect_cfm(conn, ev->status);
1127 hci_encrypt_cfm(conn, ev->status, ev->encrypt);
1130 hci_dev_unlock(hdev);
1133 static inline void hci_change_link_key_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1135 struct hci_ev_change_link_key_complete *ev = (void *) skb->data;
1136 struct hci_conn *conn;
1138 BT_DBG("%s status %d", hdev->name, ev->status);
1142 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1145 conn->link_mode |= HCI_LM_SECURE;
1147 clear_bit(HCI_CONN_AUTH_PEND, &conn->pend);
1149 hci_key_change_cfm(conn, ev->status);
1152 hci_dev_unlock(hdev);
1155 static inline void hci_remote_features_evt(struct hci_dev *hdev, struct sk_buff *skb)
1157 struct hci_ev_remote_features *ev = (void *) skb->data;
1158 struct hci_conn *conn;
1160 BT_DBG("%s status %d", hdev->name, ev->status);
1164 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1167 memcpy(conn->features, ev->features, 8);
1169 if (conn->state == BT_CONFIG) {
1170 if (!ev->status && lmp_ssp_capable(hdev) &&
1171 lmp_ssp_capable(conn)) {
1172 struct hci_cp_read_remote_ext_features cp;
1173 cp.handle = ev->handle;
1176 HCI_OP_READ_REMOTE_EXT_FEATURES,
1178 } else if (!ev->status && conn->out &&
1179 conn->sec_level == BT_SECURITY_HIGH) {
1180 struct hci_cp_auth_requested cp;
1181 cp.handle = ev->handle;
1182 hci_send_cmd(hdev, HCI_OP_AUTH_REQUESTED,
1185 conn->state = BT_CONNECTED;
1186 hci_proto_connect_cfm(conn, ev->status);
1192 hci_dev_unlock(hdev);
1195 static inline void hci_remote_version_evt(struct hci_dev *hdev, struct sk_buff *skb)
1197 BT_DBG("%s", hdev->name);
1200 static inline void hci_qos_setup_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1202 BT_DBG("%s", hdev->name);
1205 static inline void hci_cmd_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1207 struct hci_ev_cmd_complete *ev = (void *) skb->data;
1210 skb_pull(skb, sizeof(*ev));
1212 opcode = __le16_to_cpu(ev->opcode);
1215 case HCI_OP_INQUIRY_CANCEL:
1216 hci_cc_inquiry_cancel(hdev, skb);
1219 case HCI_OP_EXIT_PERIODIC_INQ:
1220 hci_cc_exit_periodic_inq(hdev, skb);
1223 case HCI_OP_REMOTE_NAME_REQ_CANCEL:
1224 hci_cc_remote_name_req_cancel(hdev, skb);
1227 case HCI_OP_ROLE_DISCOVERY:
1228 hci_cc_role_discovery(hdev, skb);
1231 case HCI_OP_READ_LINK_POLICY:
1232 hci_cc_read_link_policy(hdev, skb);
1235 case HCI_OP_WRITE_LINK_POLICY:
1236 hci_cc_write_link_policy(hdev, skb);
1239 case HCI_OP_READ_DEF_LINK_POLICY:
1240 hci_cc_read_def_link_policy(hdev, skb);
1243 case HCI_OP_WRITE_DEF_LINK_POLICY:
1244 hci_cc_write_def_link_policy(hdev, skb);
1248 hci_cc_reset(hdev, skb);
1251 case HCI_OP_WRITE_LOCAL_NAME:
1252 hci_cc_write_local_name(hdev, skb);
1255 case HCI_OP_READ_LOCAL_NAME:
1256 hci_cc_read_local_name(hdev, skb);
1259 case HCI_OP_WRITE_AUTH_ENABLE:
1260 hci_cc_write_auth_enable(hdev, skb);
1263 case HCI_OP_WRITE_ENCRYPT_MODE:
1264 hci_cc_write_encrypt_mode(hdev, skb);
1267 case HCI_OP_WRITE_SCAN_ENABLE:
1268 hci_cc_write_scan_enable(hdev, skb);
1271 case HCI_OP_READ_CLASS_OF_DEV:
1272 hci_cc_read_class_of_dev(hdev, skb);
1275 case HCI_OP_WRITE_CLASS_OF_DEV:
1276 hci_cc_write_class_of_dev(hdev, skb);
1279 case HCI_OP_READ_VOICE_SETTING:
1280 hci_cc_read_voice_setting(hdev, skb);
1283 case HCI_OP_WRITE_VOICE_SETTING:
1284 hci_cc_write_voice_setting(hdev, skb);
1287 case HCI_OP_HOST_BUFFER_SIZE:
1288 hci_cc_host_buffer_size(hdev, skb);
1291 case HCI_OP_READ_SSP_MODE:
1292 hci_cc_read_ssp_mode(hdev, skb);
1295 case HCI_OP_WRITE_SSP_MODE:
1296 hci_cc_write_ssp_mode(hdev, skb);
1299 case HCI_OP_READ_LOCAL_VERSION:
1300 hci_cc_read_local_version(hdev, skb);
1303 case HCI_OP_READ_LOCAL_COMMANDS:
1304 hci_cc_read_local_commands(hdev, skb);
1307 case HCI_OP_READ_LOCAL_FEATURES:
1308 hci_cc_read_local_features(hdev, skb);
1311 case HCI_OP_READ_BUFFER_SIZE:
1312 hci_cc_read_buffer_size(hdev, skb);
1315 case HCI_OP_READ_BD_ADDR:
1316 hci_cc_read_bd_addr(hdev, skb);
1320 BT_DBG("%s opcode 0x%x", hdev->name, opcode);
1325 atomic_set(&hdev->cmd_cnt, 1);
1326 if (!skb_queue_empty(&hdev->cmd_q))
1327 tasklet_schedule(&hdev->cmd_task);
1331 static inline void hci_cmd_status_evt(struct hci_dev *hdev, struct sk_buff *skb)
1333 struct hci_ev_cmd_status *ev = (void *) skb->data;
1336 skb_pull(skb, sizeof(*ev));
1338 opcode = __le16_to_cpu(ev->opcode);
1341 case HCI_OP_INQUIRY:
1342 hci_cs_inquiry(hdev, ev->status);
1345 case HCI_OP_CREATE_CONN:
1346 hci_cs_create_conn(hdev, ev->status);
1349 case HCI_OP_ADD_SCO:
1350 hci_cs_add_sco(hdev, ev->status);
1353 case HCI_OP_AUTH_REQUESTED:
1354 hci_cs_auth_requested(hdev, ev->status);
1357 case HCI_OP_SET_CONN_ENCRYPT:
1358 hci_cs_set_conn_encrypt(hdev, ev->status);
1361 case HCI_OP_REMOTE_NAME_REQ:
1362 hci_cs_remote_name_req(hdev, ev->status);
1365 case HCI_OP_READ_REMOTE_FEATURES:
1366 hci_cs_read_remote_features(hdev, ev->status);
1369 case HCI_OP_READ_REMOTE_EXT_FEATURES:
1370 hci_cs_read_remote_ext_features(hdev, ev->status);
1373 case HCI_OP_SETUP_SYNC_CONN:
1374 hci_cs_setup_sync_conn(hdev, ev->status);
1377 case HCI_OP_SNIFF_MODE:
1378 hci_cs_sniff_mode(hdev, ev->status);
1381 case HCI_OP_EXIT_SNIFF_MODE:
1382 hci_cs_exit_sniff_mode(hdev, ev->status);
1386 BT_DBG("%s opcode 0x%x", hdev->name, opcode);
1391 atomic_set(&hdev->cmd_cnt, 1);
1392 if (!skb_queue_empty(&hdev->cmd_q))
1393 tasklet_schedule(&hdev->cmd_task);
1397 static inline void hci_role_change_evt(struct hci_dev *hdev, struct sk_buff *skb)
1399 struct hci_ev_role_change *ev = (void *) skb->data;
1400 struct hci_conn *conn;
1402 BT_DBG("%s status %d", hdev->name, ev->status);
1406 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &ev->bdaddr);
1410 conn->link_mode &= ~HCI_LM_MASTER;
1412 conn->link_mode |= HCI_LM_MASTER;
1415 clear_bit(HCI_CONN_RSWITCH_PEND, &conn->pend);
1417 hci_role_switch_cfm(conn, ev->status, ev->role);
1420 hci_dev_unlock(hdev);
1423 static inline void hci_num_comp_pkts_evt(struct hci_dev *hdev, struct sk_buff *skb)
1425 struct hci_ev_num_comp_pkts *ev = (void *) skb->data;
1429 skb_pull(skb, sizeof(*ev));
1431 BT_DBG("%s num_hndl %d", hdev->name, ev->num_hndl);
1433 if (skb->len < ev->num_hndl * 4) {
1434 BT_DBG("%s bad parameters", hdev->name);
1438 tasklet_disable(&hdev->tx_task);
1440 for (i = 0, ptr = (__le16 *) skb->data; i < ev->num_hndl; i++) {
1441 struct hci_conn *conn;
1442 __u16 handle, count;
1444 handle = get_unaligned_le16(ptr++);
1445 count = get_unaligned_le16(ptr++);
1447 conn = hci_conn_hash_lookup_handle(hdev, handle);
1449 conn->sent -= count;
1451 if (conn->type == ACL_LINK) {
1452 if ((hdev->acl_cnt += count) > hdev->acl_pkts)
1453 hdev->acl_cnt = hdev->acl_pkts;
1455 if ((hdev->sco_cnt += count) > hdev->sco_pkts)
1456 hdev->sco_cnt = hdev->sco_pkts;
1461 tasklet_schedule(&hdev->tx_task);
1463 tasklet_enable(&hdev->tx_task);
1466 static inline void hci_mode_change_evt(struct hci_dev *hdev, struct sk_buff *skb)
1468 struct hci_ev_mode_change *ev = (void *) skb->data;
1469 struct hci_conn *conn;
1471 BT_DBG("%s status %d", hdev->name, ev->status);
1475 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1477 conn->mode = ev->mode;
1478 conn->interval = __le16_to_cpu(ev->interval);
1480 if (!test_and_clear_bit(HCI_CONN_MODE_CHANGE_PEND, &conn->pend)) {
1481 if (conn->mode == HCI_CM_ACTIVE)
1482 conn->power_save = 1;
1484 conn->power_save = 0;
1487 if (test_and_clear_bit(HCI_CONN_SCO_SETUP_PEND, &conn->pend))
1488 hci_sco_setup(conn, ev->status);
1491 hci_dev_unlock(hdev);
1494 static inline void hci_pin_code_request_evt(struct hci_dev *hdev, struct sk_buff *skb)
1496 struct hci_ev_pin_code_req *ev = (void *) skb->data;
1497 struct hci_conn *conn;
1499 BT_DBG("%s", hdev->name);
1503 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &ev->bdaddr);
1504 if (conn && conn->state == BT_CONNECTED) {
1505 hci_conn_hold(conn);
1506 conn->disc_timeout = HCI_PAIRING_TIMEOUT;
1510 hci_dev_unlock(hdev);
1513 static inline void hci_link_key_request_evt(struct hci_dev *hdev, struct sk_buff *skb)
1515 BT_DBG("%s", hdev->name);
1518 static inline void hci_link_key_notify_evt(struct hci_dev *hdev, struct sk_buff *skb)
1520 struct hci_ev_link_key_notify *ev = (void *) skb->data;
1521 struct hci_conn *conn;
1523 BT_DBG("%s", hdev->name);
1527 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &ev->bdaddr);
1529 hci_conn_hold(conn);
1530 conn->disc_timeout = HCI_DISCONN_TIMEOUT;
1534 hci_dev_unlock(hdev);
1537 static inline void hci_clock_offset_evt(struct hci_dev *hdev, struct sk_buff *skb)
1539 struct hci_ev_clock_offset *ev = (void *) skb->data;
1540 struct hci_conn *conn;
1542 BT_DBG("%s status %d", hdev->name, ev->status);
1546 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1547 if (conn && !ev->status) {
1548 struct inquiry_entry *ie;
1550 if ((ie = hci_inquiry_cache_lookup(hdev, &conn->dst))) {
1551 ie->data.clock_offset = ev->clock_offset;
1552 ie->timestamp = jiffies;
1556 hci_dev_unlock(hdev);
1559 static inline void hci_pkt_type_change_evt(struct hci_dev *hdev, struct sk_buff *skb)
1561 struct hci_ev_pkt_type_change *ev = (void *) skb->data;
1562 struct hci_conn *conn;
1564 BT_DBG("%s status %d", hdev->name, ev->status);
1568 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1569 if (conn && !ev->status)
1570 conn->pkt_type = __le16_to_cpu(ev->pkt_type);
1572 hci_dev_unlock(hdev);
1575 static inline void hci_pscan_rep_mode_evt(struct hci_dev *hdev, struct sk_buff *skb)
1577 struct hci_ev_pscan_rep_mode *ev = (void *) skb->data;
1578 struct inquiry_entry *ie;
1580 BT_DBG("%s", hdev->name);
1584 if ((ie = hci_inquiry_cache_lookup(hdev, &ev->bdaddr))) {
1585 ie->data.pscan_rep_mode = ev->pscan_rep_mode;
1586 ie->timestamp = jiffies;
1589 hci_dev_unlock(hdev);
1592 static inline void hci_inquiry_result_with_rssi_evt(struct hci_dev *hdev, struct sk_buff *skb)
1594 struct inquiry_data data;
1595 int num_rsp = *((__u8 *) skb->data);
1597 BT_DBG("%s num_rsp %d", hdev->name, num_rsp);
1604 if ((skb->len - 1) / num_rsp != sizeof(struct inquiry_info_with_rssi)) {
1605 struct inquiry_info_with_rssi_and_pscan_mode *info = (void *) (skb->data + 1);
1607 for (; num_rsp; num_rsp--) {
1608 bacpy(&data.bdaddr, &info->bdaddr);
1609 data.pscan_rep_mode = info->pscan_rep_mode;
1610 data.pscan_period_mode = info->pscan_period_mode;
1611 data.pscan_mode = info->pscan_mode;
1612 memcpy(data.dev_class, info->dev_class, 3);
1613 data.clock_offset = info->clock_offset;
1614 data.rssi = info->rssi;
1615 data.ssp_mode = 0x00;
1617 hci_inquiry_cache_update(hdev, &data);
1620 struct inquiry_info_with_rssi *info = (void *) (skb->data + 1);
1622 for (; num_rsp; num_rsp--) {
1623 bacpy(&data.bdaddr, &info->bdaddr);
1624 data.pscan_rep_mode = info->pscan_rep_mode;
1625 data.pscan_period_mode = info->pscan_period_mode;
1626 data.pscan_mode = 0x00;
1627 memcpy(data.dev_class, info->dev_class, 3);
1628 data.clock_offset = info->clock_offset;
1629 data.rssi = info->rssi;
1630 data.ssp_mode = 0x00;
1632 hci_inquiry_cache_update(hdev, &data);
1636 hci_dev_unlock(hdev);
1639 static inline void hci_remote_ext_features_evt(struct hci_dev *hdev, struct sk_buff *skb)
1641 struct hci_ev_remote_ext_features *ev = (void *) skb->data;
1642 struct hci_conn *conn;
1644 BT_DBG("%s", hdev->name);
1648 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1650 if (!ev->status && ev->page == 0x01) {
1651 struct inquiry_entry *ie;
1653 if ((ie = hci_inquiry_cache_lookup(hdev, &conn->dst)))
1654 ie->data.ssp_mode = (ev->features[0] & 0x01);
1656 conn->ssp_mode = (ev->features[0] & 0x01);
1659 if (conn->state == BT_CONFIG) {
1660 if (!ev->status && hdev->ssp_mode > 0 &&
1661 conn->ssp_mode > 0 && conn->out &&
1662 conn->sec_level != BT_SECURITY_SDP) {
1663 struct hci_cp_auth_requested cp;
1664 cp.handle = ev->handle;
1665 hci_send_cmd(hdev, HCI_OP_AUTH_REQUESTED,
1668 conn->state = BT_CONNECTED;
1669 hci_proto_connect_cfm(conn, ev->status);
1675 hci_dev_unlock(hdev);
1678 static inline void hci_sync_conn_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1680 struct hci_ev_sync_conn_complete *ev = (void *) skb->data;
1681 struct hci_conn *conn;
1683 BT_DBG("%s status %d", hdev->name, ev->status);
1687 conn = hci_conn_hash_lookup_ba(hdev, ev->link_type, &ev->bdaddr);
1689 if (ev->link_type == ESCO_LINK)
1692 conn = hci_conn_hash_lookup_ba(hdev, ESCO_LINK, &ev->bdaddr);
1696 conn->type = SCO_LINK;
1699 switch (ev->status) {
1701 conn->handle = __le16_to_cpu(ev->handle);
1702 conn->state = BT_CONNECTED;
1704 hci_conn_hold_device(conn);
1705 hci_conn_add_sysfs(conn);
1708 case 0x11: /* Unsupported Feature or Parameter Value */
1709 case 0x1c: /* SCO interval rejected */
1710 case 0x1a: /* Unsupported Remote Feature */
1711 case 0x1f: /* Unspecified error */
1712 if (conn->out && conn->attempt < 2) {
1713 conn->pkt_type = (hdev->esco_type & SCO_ESCO_MASK) |
1714 (hdev->esco_type & EDR_ESCO_MASK);
1715 hci_setup_sync(conn, conn->link->handle);
1721 conn->state = BT_CLOSED;
1725 hci_proto_connect_cfm(conn, ev->status);
1730 hci_dev_unlock(hdev);
1733 static inline void hci_sync_conn_changed_evt(struct hci_dev *hdev, struct sk_buff *skb)
1735 BT_DBG("%s", hdev->name);
1738 static inline void hci_sniff_subrate_evt(struct hci_dev *hdev, struct sk_buff *skb)
1740 struct hci_ev_sniff_subrate *ev = (void *) skb->data;
1741 struct hci_conn *conn;
1743 BT_DBG("%s status %d", hdev->name, ev->status);
1747 conn = hci_conn_hash_lookup_handle(hdev, __le16_to_cpu(ev->handle));
1751 hci_dev_unlock(hdev);
1754 static inline void hci_extended_inquiry_result_evt(struct hci_dev *hdev, struct sk_buff *skb)
1756 struct inquiry_data data;
1757 struct extended_inquiry_info *info = (void *) (skb->data + 1);
1758 int num_rsp = *((__u8 *) skb->data);
1760 BT_DBG("%s num_rsp %d", hdev->name, num_rsp);
1767 for (; num_rsp; num_rsp--) {
1768 bacpy(&data.bdaddr, &info->bdaddr);
1769 data.pscan_rep_mode = info->pscan_rep_mode;
1770 data.pscan_period_mode = info->pscan_period_mode;
1771 data.pscan_mode = 0x00;
1772 memcpy(data.dev_class, info->dev_class, 3);
1773 data.clock_offset = info->clock_offset;
1774 data.rssi = info->rssi;
1775 data.ssp_mode = 0x01;
1777 hci_inquiry_cache_update(hdev, &data);
1780 hci_dev_unlock(hdev);
1783 static inline void hci_io_capa_request_evt(struct hci_dev *hdev, struct sk_buff *skb)
1785 struct hci_ev_io_capa_request *ev = (void *) skb->data;
1786 struct hci_conn *conn;
1788 BT_DBG("%s", hdev->name);
1792 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &ev->bdaddr);
1794 hci_conn_hold(conn);
1796 hci_dev_unlock(hdev);
1799 static inline void hci_simple_pair_complete_evt(struct hci_dev *hdev, struct sk_buff *skb)
1801 struct hci_ev_simple_pair_complete *ev = (void *) skb->data;
1802 struct hci_conn *conn;
1804 BT_DBG("%s", hdev->name);
1808 conn = hci_conn_hash_lookup_ba(hdev, ACL_LINK, &ev->bdaddr);
1812 hci_dev_unlock(hdev);
1815 static inline void hci_remote_host_features_evt(struct hci_dev *hdev, struct sk_buff *skb)
1817 struct hci_ev_remote_host_features *ev = (void *) skb->data;
1818 struct inquiry_entry *ie;
1820 BT_DBG("%s", hdev->name);
1824 if ((ie = hci_inquiry_cache_lookup(hdev, &ev->bdaddr)))
1825 ie->data.ssp_mode = (ev->features[0] & 0x01);
1827 hci_dev_unlock(hdev);
1830 void hci_event_packet(struct hci_dev *hdev, struct sk_buff *skb)
1832 struct hci_event_hdr *hdr = (void *) skb->data;
1833 __u8 event = hdr->evt;
1835 skb_pull(skb, HCI_EVENT_HDR_SIZE);
1838 case HCI_EV_INQUIRY_COMPLETE:
1839 hci_inquiry_complete_evt(hdev, skb);
1842 case HCI_EV_INQUIRY_RESULT:
1843 hci_inquiry_result_evt(hdev, skb);
1846 case HCI_EV_CONN_COMPLETE:
1847 hci_conn_complete_evt(hdev, skb);
1850 case HCI_EV_CONN_REQUEST:
1851 hci_conn_request_evt(hdev, skb);
1854 case HCI_EV_DISCONN_COMPLETE:
1855 hci_disconn_complete_evt(hdev, skb);
1858 case HCI_EV_AUTH_COMPLETE:
1859 hci_auth_complete_evt(hdev, skb);
1862 case HCI_EV_REMOTE_NAME:
1863 hci_remote_name_evt(hdev, skb);
1866 case HCI_EV_ENCRYPT_CHANGE:
1867 hci_encrypt_change_evt(hdev, skb);
1870 case HCI_EV_CHANGE_LINK_KEY_COMPLETE:
1871 hci_change_link_key_complete_evt(hdev, skb);
1874 case HCI_EV_REMOTE_FEATURES:
1875 hci_remote_features_evt(hdev, skb);
1878 case HCI_EV_REMOTE_VERSION:
1879 hci_remote_version_evt(hdev, skb);
1882 case HCI_EV_QOS_SETUP_COMPLETE:
1883 hci_qos_setup_complete_evt(hdev, skb);
1886 case HCI_EV_CMD_COMPLETE:
1887 hci_cmd_complete_evt(hdev, skb);
1890 case HCI_EV_CMD_STATUS:
1891 hci_cmd_status_evt(hdev, skb);
1894 case HCI_EV_ROLE_CHANGE:
1895 hci_role_change_evt(hdev, skb);
1898 case HCI_EV_NUM_COMP_PKTS:
1899 hci_num_comp_pkts_evt(hdev, skb);
1902 case HCI_EV_MODE_CHANGE:
1903 hci_mode_change_evt(hdev, skb);
1906 case HCI_EV_PIN_CODE_REQ:
1907 hci_pin_code_request_evt(hdev, skb);
1910 case HCI_EV_LINK_KEY_REQ:
1911 hci_link_key_request_evt(hdev, skb);
1914 case HCI_EV_LINK_KEY_NOTIFY:
1915 hci_link_key_notify_evt(hdev, skb);
1918 case HCI_EV_CLOCK_OFFSET:
1919 hci_clock_offset_evt(hdev, skb);
1922 case HCI_EV_PKT_TYPE_CHANGE:
1923 hci_pkt_type_change_evt(hdev, skb);
1926 case HCI_EV_PSCAN_REP_MODE:
1927 hci_pscan_rep_mode_evt(hdev, skb);
1930 case HCI_EV_INQUIRY_RESULT_WITH_RSSI:
1931 hci_inquiry_result_with_rssi_evt(hdev, skb);
1934 case HCI_EV_REMOTE_EXT_FEATURES:
1935 hci_remote_ext_features_evt(hdev, skb);
1938 case HCI_EV_SYNC_CONN_COMPLETE:
1939 hci_sync_conn_complete_evt(hdev, skb);
1942 case HCI_EV_SYNC_CONN_CHANGED:
1943 hci_sync_conn_changed_evt(hdev, skb);
1946 case HCI_EV_SNIFF_SUBRATE:
1947 hci_sniff_subrate_evt(hdev, skb);
1950 case HCI_EV_EXTENDED_INQUIRY_RESULT:
1951 hci_extended_inquiry_result_evt(hdev, skb);
1954 case HCI_EV_IO_CAPA_REQUEST:
1955 hci_io_capa_request_evt(hdev, skb);
1958 case HCI_EV_SIMPLE_PAIR_COMPLETE:
1959 hci_simple_pair_complete_evt(hdev, skb);
1962 case HCI_EV_REMOTE_HOST_FEATURES:
1963 hci_remote_host_features_evt(hdev, skb);
1967 BT_DBG("%s event 0x%x", hdev->name, event);
1972 hdev->stat.evt_rx++;
1975 /* Generate internal stack event */
1976 void hci_si_event(struct hci_dev *hdev, int type, int dlen, void *data)
1978 struct hci_event_hdr *hdr;
1979 struct hci_ev_stack_internal *ev;
1980 struct sk_buff *skb;
1982 skb = bt_skb_alloc(HCI_EVENT_HDR_SIZE + sizeof(*ev) + dlen, GFP_ATOMIC);
1986 hdr = (void *) skb_put(skb, HCI_EVENT_HDR_SIZE);
1987 hdr->evt = HCI_EV_STACK_INTERNAL;
1988 hdr->plen = sizeof(*ev) + dlen;
1990 ev = (void *) skb_put(skb, sizeof(*ev) + dlen);
1992 memcpy(ev->data, data, dlen);
1994 bt_cb(skb)->incoming = 1;
1995 __net_timestamp(skb);
1997 bt_cb(skb)->pkt_type = HCI_EVENT_PKT;
1998 skb->dev = (void *) hdev;
1999 hci_send_to_sock(hdev, skb);
git://bbs.cooldavid.org / net-next-2.6.git / blob