6 * SPDX-License-Identifier: BSD-2-Clause-FreeBSD
8 * Copyright (c) 2009 Maksim Yevmenkin <m_evmenkin@yahoo.com>
11 * Redistribution and use in source and binary forms, with or without
12 * modification, are permitted provided that the following conditions
14 * 1. Redistributions of source code must retain the above copyright
15 * notice, this list of conditions and the following disclaimer.
16 * 2. Redistributions in binary form must reproduce the above copyright
17 * notice, this list of conditions and the following disclaimer in the
18 * documentation and/or other materials provided with the distribution.
20 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 #include <sys/types.h>
36 #include <sys/sysctl.h>
39 #define L2CAP_SOCKET_CHECKED
40 #include <bluetooth.h>
49 #define MIN(a, b) (((a) < (b))? (a) : (b))
51 static int bt_devany_cb(int s, struct bt_devinfo const *di, void *xdevname);
52 static char * bt_dev2node (char const *devname, char *nodename, int nnlen);
53 static time_t bt_get_default_hci_command_timeout(void);
56 bt_devopen(char const *devname)
58 struct sockaddr_hci ha;
62 if (devname == NULL) {
67 memset(&ha, 0, sizeof(ha));
68 ha.hci_len = sizeof(ha);
69 ha.hci_family = AF_BLUETOOTH;
71 if (bt_aton(devname, &ba)) {
72 if (!bt_devname(ha.hci_node, &ba))
74 } else if (bt_dev2node(devname, ha.hci_node,
75 sizeof(ha.hci_node)) == NULL) {
80 s = socket(PF_BLUETOOTH, SOCK_RAW, BLUETOOTH_PROTO_HCI);
84 if (bind(s, (struct sockaddr *) &ha, sizeof(ha)) < 0 ||
85 connect(s, (struct sockaddr *) &ha, sizeof(ha)) < 0) {
100 bt_devsend(int s, uint16_t opcode, void *param, size_t plen)
106 if ((plen == 0 && param != NULL) ||
107 (plen > 0 && param == NULL) ||
114 iv[0].iov_len = sizeof(h);
117 h.type = NG_HCI_CMD_PKT;
118 h.opcode = htole16(opcode);
122 iv[1].iov_base = param;
123 iv[1].iov_len = plen;
128 while (writev(s, iv, ivn) < 0) {
129 if (errno == EAGAIN || errno == EINTR)
139 bt_devrecv(int s, void *buf, size_t size, time_t to)
143 if (buf == NULL || size == 0) {
158 while ((n = select(s + 1, &rfd, NULL, NULL, &tv)) < 0) {
159 if (errno == EAGAIN || errno == EINTR)
170 assert(FD_ISSET(s, &rfd));
173 while ((n = read(s, buf, size)) < 0) {
174 if (errno == EAGAIN || errno == EINTR)
180 switch (*((uint8_t *) buf)) {
181 case NG_HCI_CMD_PKT: {
182 ng_hci_cmd_pkt_t *h = (ng_hci_cmd_pkt_t *) buf;
184 if (n >= sizeof(*h) && n == (sizeof(*h) + h->length))
188 case NG_HCI_ACL_DATA_PKT: {
189 ng_hci_acldata_pkt_t *h = (ng_hci_acldata_pkt_t *) buf;
191 if (n >= sizeof(*h) && n == (sizeof(*h) + le16toh(h->length)))
195 case NG_HCI_SCO_DATA_PKT: {
196 ng_hci_scodata_pkt_t *h = (ng_hci_scodata_pkt_t *) buf;
198 if (n >= sizeof(*h) && n == (sizeof(*h) + h->length))
202 case NG_HCI_EVENT_PKT: {
203 ng_hci_event_pkt_t *h = (ng_hci_event_pkt_t *) buf;
205 if (n >= sizeof(*h) && n == (sizeof(*h) + h->length))
215 bt_devreq(int s, struct bt_devreq *r, time_t to)
217 uint8_t buf[320]; /* more than enough */
218 ng_hci_event_pkt_t *e = (ng_hci_event_pkt_t *) buf;
219 ng_hci_command_compl_ep *cc = (ng_hci_command_compl_ep *)(e+1);
220 ng_hci_command_status_ep *cs = (ng_hci_command_status_ep*)(e+1);
221 struct bt_devfilter old, new;
227 if (s < 0 || r == NULL || to < 0) {
232 if ((r->rlen == 0 && r->rparam != NULL) ||
233 (r->rlen > 0 && r->rparam == NULL)) {
238 memset(&new, 0, sizeof(new));
239 bt_devfilter_pkt_set(&new, NG_HCI_EVENT_PKT);
240 bt_devfilter_evt_set(&new, NG_HCI_EVENT_COMMAND_COMPL);
241 bt_devfilter_evt_set(&new, NG_HCI_EVENT_COMMAND_STATUS);
243 bt_devfilter_evt_set(&new, r->event);
245 if (bt_devfilter(s, &new, &old) < 0)
250 n = bt_devsend(s, r->opcode, r->cparam, r->clen);
256 opcode = htole16(r->opcode);
257 t_end = time(NULL) + to;
260 to = t_end - time(NULL);
264 n = bt_devrecv(s, buf, sizeof(buf), to);
270 if (e->type != NG_HCI_EVENT_PKT) {
278 case NG_HCI_EVENT_COMMAND_COMPL:
279 if (cc->opcode == opcode) {
284 memcpy(r->rparam, cc + 1, r->rlen);
291 case NG_HCI_EVENT_COMMAND_STATUS:
292 if (cs->opcode == opcode) {
293 if (r->event != NG_HCI_EVENT_COMMAND_STATUS) {
294 if (cs->status != 0) {
301 memcpy(r->rparam, cs, r->rlen);
310 if (e->event == r->event) {
313 memcpy(r->rparam, e + 1, r->rlen);
324 bt_devfilter(s, &old, NULL);
335 bt_devfilter(int s, struct bt_devfilter const *new, struct bt_devfilter *old)
337 struct ng_btsocket_hci_raw_filter f;
340 if (new == NULL && old == NULL) {
347 if (getsockopt(s, SOL_HCI_RAW, SO_HCI_RAW_FILTER, &f, &len) < 0)
350 memset(old, 0, sizeof(*old));
351 memcpy(old->packet_mask, &f.packet_mask,
352 MIN(sizeof(old->packet_mask), sizeof(f.packet_mask)));
353 memcpy(old->event_mask, &f.event_mask,
354 MIN(sizeof(old->event_mask), sizeof(f.packet_mask)));
358 memset(&f, 0, sizeof(f));
359 memcpy(&f.packet_mask, new->packet_mask,
360 MIN(sizeof(f.packet_mask), sizeof(new->event_mask)));
361 memcpy(&f.event_mask, new->event_mask,
362 MIN(sizeof(f.event_mask), sizeof(new->event_mask)));
365 if (setsockopt(s, SOL_HCI_RAW, SO_HCI_RAW_FILTER, &f, len) < 0)
373 bt_devfilter_pkt_set(struct bt_devfilter *filter, uint8_t type)
375 bit_set(filter->packet_mask, type - 1);
379 bt_devfilter_pkt_clr(struct bt_devfilter *filter, uint8_t type)
381 bit_clear(filter->packet_mask, type - 1);
385 bt_devfilter_pkt_tst(struct bt_devfilter const *filter, uint8_t type)
387 return (bit_test(filter->packet_mask, type - 1));
391 bt_devfilter_evt_set(struct bt_devfilter *filter, uint8_t event)
393 bit_set(filter->event_mask, event - 1);
397 bt_devfilter_evt_clr(struct bt_devfilter *filter, uint8_t event)
399 bit_clear(filter->event_mask, event - 1);
403 bt_devfilter_evt_tst(struct bt_devfilter const *filter, uint8_t event)
405 return (bit_test(filter->event_mask, event - 1));
409 bt_devinquiry(char const *devname, time_t length, int num_rsp,
410 struct bt_devinquiry **ii)
413 char _devname[HCI_DEVNAME_SIZE];
414 struct bt_devfilter f;
415 ng_hci_inquiry_cp *cp = (ng_hci_inquiry_cp *) buf;
416 ng_hci_event_pkt_t *e = (ng_hci_event_pkt_t *) buf;
417 ng_hci_inquiry_result_ep *ep = (ng_hci_inquiry_result_ep *)(e+1);
418 ng_hci_inquiry_response *ir;
419 struct bt_devinquiry *i;
427 if (devname == NULL) {
428 memset(_devname, 0, sizeof(_devname));
431 n = bt_devenum(bt_devany_cb, _devname);
440 s = bt_devopen(devname);
444 if (bt_devfilter(s, NULL, &f) < 0) {
449 bt_devfilter_evt_set(&f, NG_HCI_EVENT_INQUIRY_COMPL);
450 bt_devfilter_evt_set(&f, NG_HCI_EVENT_INQUIRY_RESULT);
452 if (bt_devfilter(s, &f, NULL) < 0) {
457 /* Always use GIAC LAP */
463 * Calculate inquire length in 1.28 second units
464 * v2.x specification says that 1.28 -> 61.44 seconds
465 * range is acceptable
470 else if (length == 1)
472 else if (length > 62)
475 cp->inquiry_length = (uint8_t)((length * 100) / 128);
477 if (num_rsp <= 0 || num_rsp > 255)
479 cp->num_responses = (uint8_t) num_rsp;
481 i = *ii = calloc(num_rsp, sizeof(struct bt_devinquiry));
489 NG_HCI_OPCODE(NG_HCI_OGF_LINK_CONTROL, NG_HCI_OCF_INQUIRY),
490 cp, sizeof(*cp)) < 0) {
498 n = bt_devrecv(s, buf, sizeof(buf), length);
505 if (n < sizeof(ng_hci_event_pkt_t)) {
513 case NG_HCI_EVENT_INQUIRY_COMPL:
516 case NG_HCI_EVENT_INQUIRY_RESULT:
517 ir = (ng_hci_inquiry_response *)(ep + 1);
519 for (n = 0; n < MIN(ep->num_responses, num_rsp); n ++) {
520 bdaddr_copy(&i->bdaddr, &ir->bdaddr);
521 i->pscan_rep_mode = ir->page_scan_rep_mode;
522 i->pscan_period_mode = ir->page_scan_period_mode;
523 memcpy(i->dev_class, ir->uclass, sizeof(i->dev_class));
524 i->clock_offset = le16toh(ir->clock_offset);
543 bt_devremote_name(char const *devname, const bdaddr_t *remote, time_t to,
544 uint16_t clk_off, uint8_t ps_rep_mode, uint8_t ps_mode)
546 char _devname[HCI_DEVNAME_SIZE];
548 ng_hci_remote_name_req_cp cp;
549 ng_hci_remote_name_req_compl_ep ep;
551 char *remote_name = NULL;
553 if (remote == NULL || to < 0) {
559 to = bt_get_default_hci_command_timeout();
565 if (devname == NULL) {
566 memset(_devname, 0, sizeof(_devname));
568 if (bt_devenum(bt_devany_cb, _devname) <= 0)
572 memset(&r, 0, sizeof(r));
573 memset(&cp, 0, sizeof(cp));
574 memset(&ep, 0, sizeof(ep));
575 cp.clock_offset = htole16(clk_off);
576 cp.page_scan_rep_mode = ps_rep_mode;
577 cp.page_scan_mode = ps_mode;
578 bdaddr_copy(&cp.bdaddr, remote);
579 r.opcode = NG_HCI_OPCODE(NG_HCI_OGF_LINK_CONTROL,
580 NG_HCI_OCF_REMOTE_NAME_REQ);
581 r.event = NG_HCI_EVENT_REMOTE_NAME_REQ_COMPL;
587 s = bt_devopen(devname);
591 if (bt_devreq(s, &r, to) == 0 || ep.status == 0x00)
592 remote_name = strndup((const char *)&ep.name, sizeof(ep.name));
596 return (remote_name);
600 bt_devinfo(struct bt_devinfo *di)
603 struct ng_btsocket_hci_raw_node_state r0;
604 struct ng_btsocket_hci_raw_node_bdaddr r1;
605 struct ng_btsocket_hci_raw_node_features r2;
606 struct ng_btsocket_hci_raw_node_buffer r3;
607 struct ng_btsocket_hci_raw_node_stat r4;
608 struct ng_btsocket_hci_raw_node_link_policy_mask r5;
609 struct ng_btsocket_hci_raw_node_packet_mask r6;
610 struct ng_btsocket_hci_raw_node_role_switch r7;
611 struct ng_btsocket_hci_raw_node_debug r8;
613 struct sockaddr_hci ha;
622 s = bt_devopen(di->devname);
629 if (getsockname(s, (struct sockaddr *) &ha, &halen) < 0)
631 strlcpy(di->devname, ha.hci_node, sizeof(di->devname));
633 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_STATE, &rp.r0, sizeof(rp.r0)) < 0)
635 di->state = rp.r0.state;
637 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_BDADDR, &rp.r1, sizeof(rp.r1)) < 0)
639 bdaddr_copy(&di->bdaddr, &rp.r1.bdaddr);
641 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_FEATURES, &rp.r2, sizeof(rp.r2)) < 0)
643 memcpy(di->features, rp.r2.features, sizeof(di->features));
645 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_BUFFER, &rp.r3, sizeof(rp.r3)) < 0)
647 di->cmd_free = rp.r3.buffer.cmd_free;
648 di->sco_size = rp.r3.buffer.sco_size;
649 di->sco_pkts = rp.r3.buffer.sco_pkts;
650 di->sco_free = rp.r3.buffer.sco_free;
651 di->acl_size = rp.r3.buffer.acl_size;
652 di->acl_pkts = rp.r3.buffer.acl_pkts;
653 di->acl_free = rp.r3.buffer.acl_free;
655 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_STAT, &rp.r4, sizeof(rp.r4)) < 0)
657 di->cmd_sent = rp.r4.stat.cmd_sent;
658 di->evnt_recv = rp.r4.stat.evnt_recv;
659 di->acl_recv = rp.r4.stat.acl_recv;
660 di->acl_sent = rp.r4.stat.acl_sent;
661 di->sco_recv = rp.r4.stat.sco_recv;
662 di->sco_sent = rp.r4.stat.sco_sent;
663 di->bytes_recv = rp.r4.stat.bytes_recv;
664 di->bytes_sent = rp.r4.stat.bytes_sent;
666 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_LINK_POLICY_MASK,
667 &rp.r5, sizeof(rp.r5)) < 0)
669 di->link_policy_info = rp.r5.policy_mask;
671 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_PACKET_MASK,
672 &rp.r6, sizeof(rp.r6)) < 0)
674 di->packet_type_info = rp.r6.packet_mask;
676 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_ROLE_SWITCH,
677 &rp.r7, sizeof(rp.r7)) < 0)
679 di->role_switch_info = rp.r7.role_switch;
681 if (ioctl(s, SIOC_HCI_RAW_NODE_GET_DEBUG, &rp.r8, sizeof(rp.r8)) < 0)
683 di->debug = rp.r8.debug;
693 bt_devenum(bt_devenum_cb_t cb, void *arg)
695 struct ng_btsocket_hci_raw_node_list_names rp;
696 struct bt_devinfo di;
697 struct sockaddr_hci ha;
700 rp.num_names = HCI_DEVMAX;
701 rp.names = (struct nodeinfo *) calloc(rp.num_names,
702 sizeof(struct nodeinfo));
703 if (rp.names == NULL) {
708 memset(&ha, 0, sizeof(ha));
709 ha.hci_len = sizeof(ha);
710 ha.hci_family = AF_BLUETOOTH;
711 ha.hci_node[0] = 'x';
713 s = socket(PF_BLUETOOTH, SOCK_RAW, BLUETOOTH_PROTO_HCI);
720 if (bind(s, (struct sockaddr *) &ha, sizeof(ha)) < 0 ||
721 connect(s, (struct sockaddr *) &ha, sizeof(ha)) < 0 ||
722 ioctl(s, SIOC_HCI_RAW_NODE_LIST_NAMES, &rp, sizeof(rp)) < 0) {
729 for (count = 0, i = 0; i < rp.num_names; i ++) {
730 strlcpy(di.devname, rp.names[i].name, sizeof(di.devname));
731 if (bt_devinfo(&di) < 0)
739 strlcpy(ha.hci_node, rp.names[i].name, sizeof(ha.hci_node));
740 if (bind(s, (struct sockaddr *) &ha, sizeof(ha)) < 0 ||
741 connect(s, (struct sockaddr *) &ha, sizeof(ha)) < 0)
744 if ((*cb)(s, &di, arg) > 0)
755 bt_devany_cb(int s, struct bt_devinfo const *di, void *xdevname)
757 strlcpy((char *) xdevname, di->devname, HCI_DEVNAME_SIZE);
762 bt_dev2node(char const *devname, char *nodename, int nnlen)
764 static char const * bt_dev_prefix[] = {
765 "btccc", /* 3Com Bluetooth PC-CARD */
766 "h4", /* UART/serial Bluetooth devices */
767 "ubt", /* Bluetooth USB devices */
768 NULL /* should be last */
771 static char _nodename[HCI_DEVNAME_SIZE];
776 if (nodename == NULL) {
777 nodename = _nodename;
778 nnlen = HCI_DEVNAME_SIZE;
781 for (p = bt_dev_prefix; *p != NULL; p ++) {
783 if (strncmp(devname, *p, plen) != 0)
786 unit = strtoul(devname + plen, &ep, 10);
788 strcmp(ep, "hci") != 0 &&
789 strcmp(ep, "l2cap") != 0)
790 return (NULL); /* can't make sense of device name */
792 snprintf(nodename, nnlen, "%s%uhci", *p, unit);
801 bt_get_default_hci_command_timeout(void)
804 size_t to_size = sizeof(to);
806 if (sysctlbyname("net.bluetooth.hci.command_timeout",
807 &to, &to_size, NULL, 0) < 0)
810 /* Should not happen */