2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (C) 2000-2001 Qualcomm Incorporated
5 Written 2000,2001 by Maxim Krasnyansky <maxk@qualcomm.com>
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License version 2 as
9 published by the Free Software Foundation;
11 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
12 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
13 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
14 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
15 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
16 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
17 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
18 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
20 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
21 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
22 SOFTWARE IS DISCLAIMED.
25 /* Bluetooth HCI event handling. */
27 #include <linux/module.h>
29 #include <linux/types.h>
30 #include <linux/errno.h>
31 #include <linux/kernel.h>
32 #include <linux/slab.h>
33 #include <linux/poll.h>
34 #include <linux/fcntl.h>
35 #include <linux/init.h>
36 #include <linux/skbuff.h>
37 #include <linux/interrupt.h>
38 #include <linux/notifier.h>
41 #include <asm/system.h>
42 #include <asm/uaccess.h>
43 #include <asm/unaligned.h>
45 #include <net/bluetooth/bluetooth.h>
46 #include <net/bluetooth/hci_core.h>
48 /* Handle HCI Event packets */
50 static void hci_cc_inquiry_cancel(struct hci_dev
*hdev
, struct sk_buff
*skb
)
52 __u8 status
= *((__u8
*) skb
->data
);
54 BT_DBG("%s status 0x%x", hdev
->name
, status
);
59 clear_bit(HCI_INQUIRY
, &hdev
->flags
);
61 hci_req_complete(hdev
, status
);
63 hci_conn_check_pending(hdev
);
66 static void hci_cc_exit_periodic_inq(struct hci_dev
*hdev
, struct sk_buff
*skb
)
68 __u8 status
= *((__u8
*) skb
->data
);
70 BT_DBG("%s status 0x%x", hdev
->name
, status
);
75 clear_bit(HCI_INQUIRY
, &hdev
->flags
);
77 hci_conn_check_pending(hdev
);
80 static void hci_cc_remote_name_req_cancel(struct hci_dev
*hdev
, struct sk_buff
*skb
)
82 BT_DBG("%s", hdev
->name
);
85 static void hci_cc_role_discovery(struct hci_dev
*hdev
, struct sk_buff
*skb
)
87 struct hci_rp_role_discovery
*rp
= (void *) skb
->data
;
88 struct hci_conn
*conn
;
90 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
97 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(rp
->handle
));
100 conn
->link_mode
&= ~HCI_LM_MASTER
;
102 conn
->link_mode
|= HCI_LM_MASTER
;
105 hci_dev_unlock(hdev
);
108 static void hci_cc_read_link_policy(struct hci_dev
*hdev
, struct sk_buff
*skb
)
110 struct hci_rp_read_link_policy
*rp
= (void *) skb
->data
;
111 struct hci_conn
*conn
;
113 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
120 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(rp
->handle
));
122 conn
->link_policy
= __le16_to_cpu(rp
->policy
);
124 hci_dev_unlock(hdev
);
127 static void hci_cc_write_link_policy(struct hci_dev
*hdev
, struct sk_buff
*skb
)
129 struct hci_rp_write_link_policy
*rp
= (void *) skb
->data
;
130 struct hci_conn
*conn
;
133 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
138 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_LINK_POLICY
);
144 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(rp
->handle
));
146 conn
->link_policy
= get_unaligned_le16(sent
+ 2);
148 hci_dev_unlock(hdev
);
151 static void hci_cc_read_def_link_policy(struct hci_dev
*hdev
, struct sk_buff
*skb
)
153 struct hci_rp_read_def_link_policy
*rp
= (void *) skb
->data
;
155 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
160 hdev
->link_policy
= __le16_to_cpu(rp
->policy
);
163 static void hci_cc_write_def_link_policy(struct hci_dev
*hdev
, struct sk_buff
*skb
)
165 __u8 status
= *((__u8
*) skb
->data
);
168 BT_DBG("%s status 0x%x", hdev
->name
, status
);
170 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_DEF_LINK_POLICY
);
175 hdev
->link_policy
= get_unaligned_le16(sent
);
177 hci_req_complete(hdev
, status
);
180 static void hci_cc_reset(struct hci_dev
*hdev
, struct sk_buff
*skb
)
182 __u8 status
= *((__u8
*) skb
->data
);
184 BT_DBG("%s status 0x%x", hdev
->name
, status
);
186 hci_req_complete(hdev
, status
);
189 static void hci_cc_write_local_name(struct hci_dev
*hdev
, struct sk_buff
*skb
)
191 __u8 status
= *((__u8
*) skb
->data
);
194 BT_DBG("%s status 0x%x", hdev
->name
, status
);
199 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_LOCAL_NAME
);
203 memcpy(hdev
->dev_name
, sent
, 248);
206 static void hci_cc_read_local_name(struct hci_dev
*hdev
, struct sk_buff
*skb
)
208 struct hci_rp_read_local_name
*rp
= (void *) skb
->data
;
210 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
215 memcpy(hdev
->dev_name
, rp
->name
, 248);
218 static void hci_cc_write_auth_enable(struct hci_dev
*hdev
, struct sk_buff
*skb
)
220 __u8 status
= *((__u8
*) skb
->data
);
223 BT_DBG("%s status 0x%x", hdev
->name
, status
);
225 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_AUTH_ENABLE
);
230 __u8 param
= *((__u8
*) sent
);
232 if (param
== AUTH_ENABLED
)
233 set_bit(HCI_AUTH
, &hdev
->flags
);
235 clear_bit(HCI_AUTH
, &hdev
->flags
);
238 hci_req_complete(hdev
, status
);
241 static void hci_cc_write_encrypt_mode(struct hci_dev
*hdev
, struct sk_buff
*skb
)
243 __u8 status
= *((__u8
*) skb
->data
);
246 BT_DBG("%s status 0x%x", hdev
->name
, status
);
248 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_ENCRYPT_MODE
);
253 __u8 param
= *((__u8
*) sent
);
256 set_bit(HCI_ENCRYPT
, &hdev
->flags
);
258 clear_bit(HCI_ENCRYPT
, &hdev
->flags
);
261 hci_req_complete(hdev
, status
);
264 static void hci_cc_write_scan_enable(struct hci_dev
*hdev
, struct sk_buff
*skb
)
266 __u8 status
= *((__u8
*) skb
->data
);
269 BT_DBG("%s status 0x%x", hdev
->name
, status
);
271 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_SCAN_ENABLE
);
276 __u8 param
= *((__u8
*) sent
);
278 clear_bit(HCI_PSCAN
, &hdev
->flags
);
279 clear_bit(HCI_ISCAN
, &hdev
->flags
);
281 if (param
& SCAN_INQUIRY
)
282 set_bit(HCI_ISCAN
, &hdev
->flags
);
284 if (param
& SCAN_PAGE
)
285 set_bit(HCI_PSCAN
, &hdev
->flags
);
288 hci_req_complete(hdev
, status
);
291 static void hci_cc_read_class_of_dev(struct hci_dev
*hdev
, struct sk_buff
*skb
)
293 struct hci_rp_read_class_of_dev
*rp
= (void *) skb
->data
;
295 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
300 memcpy(hdev
->dev_class
, rp
->dev_class
, 3);
302 BT_DBG("%s class 0x%.2x%.2x%.2x", hdev
->name
,
303 hdev
->dev_class
[2], hdev
->dev_class
[1], hdev
->dev_class
[0]);
306 static void hci_cc_write_class_of_dev(struct hci_dev
*hdev
, struct sk_buff
*skb
)
308 __u8 status
= *((__u8
*) skb
->data
);
311 BT_DBG("%s status 0x%x", hdev
->name
, status
);
316 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_CLASS_OF_DEV
);
320 memcpy(hdev
->dev_class
, sent
, 3);
323 static void hci_cc_read_voice_setting(struct hci_dev
*hdev
, struct sk_buff
*skb
)
325 struct hci_rp_read_voice_setting
*rp
= (void *) skb
->data
;
328 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
333 setting
= __le16_to_cpu(rp
->voice_setting
);
335 if (hdev
->voice_setting
== setting
)
338 hdev
->voice_setting
= setting
;
340 BT_DBG("%s voice setting 0x%04x", hdev
->name
, setting
);
343 tasklet_disable(&hdev
->tx_task
);
344 hdev
->notify(hdev
, HCI_NOTIFY_VOICE_SETTING
);
345 tasklet_enable(&hdev
->tx_task
);
349 static void hci_cc_write_voice_setting(struct hci_dev
*hdev
, struct sk_buff
*skb
)
351 __u8 status
= *((__u8
*) skb
->data
);
355 BT_DBG("%s status 0x%x", hdev
->name
, status
);
360 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_VOICE_SETTING
);
364 setting
= get_unaligned_le16(sent
);
366 if (hdev
->voice_setting
== setting
)
369 hdev
->voice_setting
= setting
;
371 BT_DBG("%s voice setting 0x%04x", hdev
->name
, setting
);
374 tasklet_disable(&hdev
->tx_task
);
375 hdev
->notify(hdev
, HCI_NOTIFY_VOICE_SETTING
);
376 tasklet_enable(&hdev
->tx_task
);
380 static void hci_cc_host_buffer_size(struct hci_dev
*hdev
, struct sk_buff
*skb
)
382 __u8 status
= *((__u8
*) skb
->data
);
384 BT_DBG("%s status 0x%x", hdev
->name
, status
);
386 hci_req_complete(hdev
, status
);
389 static void hci_cc_read_ssp_mode(struct hci_dev
*hdev
, struct sk_buff
*skb
)
391 struct hci_rp_read_ssp_mode
*rp
= (void *) skb
->data
;
393 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
398 hdev
->ssp_mode
= rp
->mode
;
401 static void hci_cc_write_ssp_mode(struct hci_dev
*hdev
, struct sk_buff
*skb
)
403 __u8 status
= *((__u8
*) skb
->data
);
406 BT_DBG("%s status 0x%x", hdev
->name
, status
);
411 sent
= hci_sent_cmd_data(hdev
, HCI_OP_WRITE_SSP_MODE
);
415 hdev
->ssp_mode
= *((__u8
*) sent
);
418 static void hci_cc_read_local_version(struct hci_dev
*hdev
, struct sk_buff
*skb
)
420 struct hci_rp_read_local_version
*rp
= (void *) skb
->data
;
422 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
427 hdev
->hci_ver
= rp
->hci_ver
;
428 hdev
->hci_rev
= __le16_to_cpu(rp
->hci_rev
);
429 hdev
->manufacturer
= __le16_to_cpu(rp
->manufacturer
);
431 BT_DBG("%s manufacturer %d hci ver %d:%d", hdev
->name
,
433 hdev
->hci_ver
, hdev
->hci_rev
);
436 static void hci_cc_read_local_commands(struct hci_dev
*hdev
, struct sk_buff
*skb
)
438 struct hci_rp_read_local_commands
*rp
= (void *) skb
->data
;
440 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
445 memcpy(hdev
->commands
, rp
->commands
, sizeof(hdev
->commands
));
448 static void hci_cc_read_local_features(struct hci_dev
*hdev
, struct sk_buff
*skb
)
450 struct hci_rp_read_local_features
*rp
= (void *) skb
->data
;
452 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
457 memcpy(hdev
->features
, rp
->features
, 8);
459 /* Adjust default settings according to features
460 * supported by device. */
462 if (hdev
->features
[0] & LMP_3SLOT
)
463 hdev
->pkt_type
|= (HCI_DM3
| HCI_DH3
);
465 if (hdev
->features
[0] & LMP_5SLOT
)
466 hdev
->pkt_type
|= (HCI_DM5
| HCI_DH5
);
468 if (hdev
->features
[1] & LMP_HV2
) {
469 hdev
->pkt_type
|= (HCI_HV2
);
470 hdev
->esco_type
|= (ESCO_HV2
);
473 if (hdev
->features
[1] & LMP_HV3
) {
474 hdev
->pkt_type
|= (HCI_HV3
);
475 hdev
->esco_type
|= (ESCO_HV3
);
478 if (hdev
->features
[3] & LMP_ESCO
)
479 hdev
->esco_type
|= (ESCO_EV3
);
481 if (hdev
->features
[4] & LMP_EV4
)
482 hdev
->esco_type
|= (ESCO_EV4
);
484 if (hdev
->features
[4] & LMP_EV5
)
485 hdev
->esco_type
|= (ESCO_EV5
);
487 if (hdev
->features
[5] & LMP_EDR_ESCO_2M
)
488 hdev
->esco_type
|= (ESCO_2EV3
);
490 if (hdev
->features
[5] & LMP_EDR_ESCO_3M
)
491 hdev
->esco_type
|= (ESCO_3EV3
);
493 if (hdev
->features
[5] & LMP_EDR_3S_ESCO
)
494 hdev
->esco_type
|= (ESCO_2EV5
| ESCO_3EV5
);
496 BT_DBG("%s features 0x%.2x%.2x%.2x%.2x%.2x%.2x%.2x%.2x", hdev
->name
,
497 hdev
->features
[0], hdev
->features
[1],
498 hdev
->features
[2], hdev
->features
[3],
499 hdev
->features
[4], hdev
->features
[5],
500 hdev
->features
[6], hdev
->features
[7]);
503 static void hci_cc_read_buffer_size(struct hci_dev
*hdev
, struct sk_buff
*skb
)
505 struct hci_rp_read_buffer_size
*rp
= (void *) skb
->data
;
507 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
512 hdev
->acl_mtu
= __le16_to_cpu(rp
->acl_mtu
);
513 hdev
->sco_mtu
= rp
->sco_mtu
;
514 hdev
->acl_pkts
= __le16_to_cpu(rp
->acl_max_pkt
);
515 hdev
->sco_pkts
= __le16_to_cpu(rp
->sco_max_pkt
);
517 if (test_bit(HCI_QUIRK_FIXUP_BUFFER_SIZE
, &hdev
->quirks
)) {
522 hdev
->acl_cnt
= hdev
->acl_pkts
;
523 hdev
->sco_cnt
= hdev
->sco_pkts
;
525 BT_DBG("%s acl mtu %d:%d sco mtu %d:%d", hdev
->name
,
526 hdev
->acl_mtu
, hdev
->acl_pkts
,
527 hdev
->sco_mtu
, hdev
->sco_pkts
);
530 static void hci_cc_read_bd_addr(struct hci_dev
*hdev
, struct sk_buff
*skb
)
532 struct hci_rp_read_bd_addr
*rp
= (void *) skb
->data
;
534 BT_DBG("%s status 0x%x", hdev
->name
, rp
->status
);
537 bacpy(&hdev
->bdaddr
, &rp
->bdaddr
);
539 hci_req_complete(hdev
, rp
->status
);
542 static inline void hci_cs_inquiry(struct hci_dev
*hdev
, __u8 status
)
544 BT_DBG("%s status 0x%x", hdev
->name
, status
);
547 hci_req_complete(hdev
, status
);
549 hci_conn_check_pending(hdev
);
551 set_bit(HCI_INQUIRY
, &hdev
->flags
);
554 static inline void hci_cs_create_conn(struct hci_dev
*hdev
, __u8 status
)
556 struct hci_cp_create_conn
*cp
;
557 struct hci_conn
*conn
;
559 BT_DBG("%s status 0x%x", hdev
->name
, status
);
561 cp
= hci_sent_cmd_data(hdev
, HCI_OP_CREATE_CONN
);
567 conn
= hci_conn_hash_lookup_ba(hdev
, ACL_LINK
, &cp
->bdaddr
);
569 BT_DBG("%s bdaddr %s conn %p", hdev
->name
, batostr(&cp
->bdaddr
), conn
);
572 if (conn
&& conn
->state
== BT_CONNECT
) {
573 if (status
!= 0x0c || conn
->attempt
> 2) {
574 conn
->state
= BT_CLOSED
;
575 hci_proto_connect_cfm(conn
, status
);
578 conn
->state
= BT_CONNECT2
;
582 conn
= hci_conn_add(hdev
, ACL_LINK
, &cp
->bdaddr
);
585 conn
->link_mode
|= HCI_LM_MASTER
;
587 BT_ERR("No memmory for new connection");
591 hci_dev_unlock(hdev
);
594 static void hci_cs_add_sco(struct hci_dev
*hdev
, __u8 status
)
596 struct hci_cp_add_sco
*cp
;
597 struct hci_conn
*acl
, *sco
;
600 BT_DBG("%s status 0x%x", hdev
->name
, status
);
605 cp
= hci_sent_cmd_data(hdev
, HCI_OP_ADD_SCO
);
609 handle
= __le16_to_cpu(cp
->handle
);
611 BT_DBG("%s handle %d", hdev
->name
, handle
);
615 acl
= hci_conn_hash_lookup_handle(hdev
, handle
);
616 if (acl
&& (sco
= acl
->link
)) {
617 sco
->state
= BT_CLOSED
;
619 hci_proto_connect_cfm(sco
, status
);
623 hci_dev_unlock(hdev
);
626 static void hci_cs_auth_requested(struct hci_dev
*hdev
, __u8 status
)
628 struct hci_cp_auth_requested
*cp
;
629 struct hci_conn
*conn
;
631 BT_DBG("%s status 0x%x", hdev
->name
, status
);
636 cp
= hci_sent_cmd_data(hdev
, HCI_OP_AUTH_REQUESTED
);
642 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(cp
->handle
));
644 if (conn
->state
== BT_CONFIG
) {
645 hci_proto_connect_cfm(conn
, status
);
650 hci_dev_unlock(hdev
);
653 static void hci_cs_set_conn_encrypt(struct hci_dev
*hdev
, __u8 status
)
655 struct hci_cp_set_conn_encrypt
*cp
;
656 struct hci_conn
*conn
;
658 BT_DBG("%s status 0x%x", hdev
->name
, status
);
663 cp
= hci_sent_cmd_data(hdev
, HCI_OP_SET_CONN_ENCRYPT
);
669 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(cp
->handle
));
671 if (conn
->state
== BT_CONFIG
) {
672 hci_proto_connect_cfm(conn
, status
);
677 hci_dev_unlock(hdev
);
680 static void hci_cs_remote_name_req(struct hci_dev
*hdev
, __u8 status
)
682 BT_DBG("%s status 0x%x", hdev
->name
, status
);
685 static void hci_cs_read_remote_features(struct hci_dev
*hdev
, __u8 status
)
687 struct hci_cp_read_remote_features
*cp
;
688 struct hci_conn
*conn
;
690 BT_DBG("%s status 0x%x", hdev
->name
, status
);
695 cp
= hci_sent_cmd_data(hdev
, HCI_OP_READ_REMOTE_FEATURES
);
701 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(cp
->handle
));
703 if (conn
->state
== BT_CONFIG
) {
704 hci_proto_connect_cfm(conn
, status
);
709 hci_dev_unlock(hdev
);
712 static void hci_cs_read_remote_ext_features(struct hci_dev
*hdev
, __u8 status
)
714 struct hci_cp_read_remote_ext_features
*cp
;
715 struct hci_conn
*conn
;
717 BT_DBG("%s status 0x%x", hdev
->name
, status
);
722 cp
= hci_sent_cmd_data(hdev
, HCI_OP_READ_REMOTE_EXT_FEATURES
);
728 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(cp
->handle
));
730 if (conn
->state
== BT_CONFIG
) {
731 hci_proto_connect_cfm(conn
, status
);
736 hci_dev_unlock(hdev
);
739 static void hci_cs_setup_sync_conn(struct hci_dev
*hdev
, __u8 status
)
741 struct hci_cp_setup_sync_conn
*cp
;
742 struct hci_conn
*acl
, *sco
;
745 BT_DBG("%s status 0x%x", hdev
->name
, status
);
750 cp
= hci_sent_cmd_data(hdev
, HCI_OP_SETUP_SYNC_CONN
);
754 handle
= __le16_to_cpu(cp
->handle
);
756 BT_DBG("%s handle %d", hdev
->name
, handle
);
760 acl
= hci_conn_hash_lookup_handle(hdev
, handle
);
761 if (acl
&& (sco
= acl
->link
)) {
762 sco
->state
= BT_CLOSED
;
764 hci_proto_connect_cfm(sco
, status
);
768 hci_dev_unlock(hdev
);
771 static void hci_cs_sniff_mode(struct hci_dev
*hdev
, __u8 status
)
773 struct hci_cp_sniff_mode
*cp
;
774 struct hci_conn
*conn
;
776 BT_DBG("%s status 0x%x", hdev
->name
, status
);
781 cp
= hci_sent_cmd_data(hdev
, HCI_OP_SNIFF_MODE
);
787 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(cp
->handle
));
789 clear_bit(HCI_CONN_MODE_CHANGE_PEND
, &conn
->pend
);
791 hci_dev_unlock(hdev
);
794 static void hci_cs_exit_sniff_mode(struct hci_dev
*hdev
, __u8 status
)
796 struct hci_cp_exit_sniff_mode
*cp
;
797 struct hci_conn
*conn
;
799 BT_DBG("%s status 0x%x", hdev
->name
, status
);
804 cp
= hci_sent_cmd_data(hdev
, HCI_OP_EXIT_SNIFF_MODE
);
810 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(cp
->handle
));
812 clear_bit(HCI_CONN_MODE_CHANGE_PEND
, &conn
->pend
);
814 hci_dev_unlock(hdev
);
817 static inline void hci_inquiry_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
819 __u8 status
= *((__u8
*) skb
->data
);
821 BT_DBG("%s status %d", hdev
->name
, status
);
823 clear_bit(HCI_INQUIRY
, &hdev
->flags
);
825 hci_req_complete(hdev
, status
);
827 hci_conn_check_pending(hdev
);
830 static inline void hci_inquiry_result_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
832 struct inquiry_data data
;
833 struct inquiry_info
*info
= (void *) (skb
->data
+ 1);
834 int num_rsp
= *((__u8
*) skb
->data
);
836 BT_DBG("%s num_rsp %d", hdev
->name
, num_rsp
);
843 for (; num_rsp
; num_rsp
--) {
844 bacpy(&data
.bdaddr
, &info
->bdaddr
);
845 data
.pscan_rep_mode
= info
->pscan_rep_mode
;
846 data
.pscan_period_mode
= info
->pscan_period_mode
;
847 data
.pscan_mode
= info
->pscan_mode
;
848 memcpy(data
.dev_class
, info
->dev_class
, 3);
849 data
.clock_offset
= info
->clock_offset
;
851 data
.ssp_mode
= 0x00;
853 hci_inquiry_cache_update(hdev
, &data
);
856 hci_dev_unlock(hdev
);
859 static inline void hci_conn_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
861 struct hci_ev_conn_complete
*ev
= (void *) skb
->data
;
862 struct hci_conn
*conn
;
864 BT_DBG("%s", hdev
->name
);
868 conn
= hci_conn_hash_lookup_ba(hdev
, ev
->link_type
, &ev
->bdaddr
);
870 if (ev
->link_type
!= SCO_LINK
)
873 conn
= hci_conn_hash_lookup_ba(hdev
, ESCO_LINK
, &ev
->bdaddr
);
877 conn
->type
= SCO_LINK
;
881 conn
->handle
= __le16_to_cpu(ev
->handle
);
883 if (conn
->type
== ACL_LINK
) {
884 conn
->state
= BT_CONFIG
;
886 conn
->disc_timeout
= HCI_DISCONN_TIMEOUT
;
888 conn
->state
= BT_CONNECTED
;
890 hci_conn_hold_device(conn
);
891 hci_conn_add_sysfs(conn
);
893 if (test_bit(HCI_AUTH
, &hdev
->flags
))
894 conn
->link_mode
|= HCI_LM_AUTH
;
896 if (test_bit(HCI_ENCRYPT
, &hdev
->flags
))
897 conn
->link_mode
|= HCI_LM_ENCRYPT
;
899 /* Get remote features */
900 if (conn
->type
== ACL_LINK
) {
901 struct hci_cp_read_remote_features cp
;
902 cp
.handle
= ev
->handle
;
903 hci_send_cmd(hdev
, HCI_OP_READ_REMOTE_FEATURES
,
907 /* Set packet type for incoming connection */
908 if (!conn
->out
&& hdev
->hci_ver
< 3) {
909 struct hci_cp_change_conn_ptype cp
;
910 cp
.handle
= ev
->handle
;
911 cp
.pkt_type
= cpu_to_le16(conn
->pkt_type
);
912 hci_send_cmd(hdev
, HCI_OP_CHANGE_CONN_PTYPE
,
916 conn
->state
= BT_CLOSED
;
918 if (conn
->type
== ACL_LINK
) {
919 struct hci_conn
*sco
= conn
->link
;
922 if (lmp_esco_capable(hdev
))
923 hci_setup_sync(sco
, conn
->handle
);
925 hci_add_sco(sco
, conn
->handle
);
927 hci_proto_connect_cfm(sco
, ev
->status
);
934 hci_proto_connect_cfm(conn
, ev
->status
);
936 } else if (ev
->link_type
!= ACL_LINK
)
937 hci_proto_connect_cfm(conn
, ev
->status
);
940 hci_dev_unlock(hdev
);
942 hci_conn_check_pending(hdev
);
945 static inline void hci_conn_request_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
947 struct hci_ev_conn_request
*ev
= (void *) skb
->data
;
948 int mask
= hdev
->link_mode
;
950 BT_DBG("%s bdaddr %s type 0x%x", hdev
->name
,
951 batostr(&ev
->bdaddr
), ev
->link_type
);
953 mask
|= hci_proto_connect_ind(hdev
, &ev
->bdaddr
, ev
->link_type
);
955 if (mask
& HCI_LM_ACCEPT
) {
956 /* Connection accepted */
957 struct inquiry_entry
*ie
;
958 struct hci_conn
*conn
;
962 if ((ie
= hci_inquiry_cache_lookup(hdev
, &ev
->bdaddr
)))
963 memcpy(ie
->data
.dev_class
, ev
->dev_class
, 3);
965 conn
= hci_conn_hash_lookup_ba(hdev
, ev
->link_type
, &ev
->bdaddr
);
967 if (!(conn
= hci_conn_add(hdev
, ev
->link_type
, &ev
->bdaddr
))) {
968 BT_ERR("No memmory for new connection");
969 hci_dev_unlock(hdev
);
974 memcpy(conn
->dev_class
, ev
->dev_class
, 3);
975 conn
->state
= BT_CONNECT
;
977 hci_dev_unlock(hdev
);
979 if (ev
->link_type
== ACL_LINK
|| !lmp_esco_capable(hdev
)) {
980 struct hci_cp_accept_conn_req cp
;
982 bacpy(&cp
.bdaddr
, &ev
->bdaddr
);
984 if (lmp_rswitch_capable(hdev
) && (mask
& HCI_LM_MASTER
))
985 cp
.role
= 0x00; /* Become master */
987 cp
.role
= 0x01; /* Remain slave */
989 hci_send_cmd(hdev
, HCI_OP_ACCEPT_CONN_REQ
,
992 struct hci_cp_accept_sync_conn_req cp
;
994 bacpy(&cp
.bdaddr
, &ev
->bdaddr
);
995 cp
.pkt_type
= cpu_to_le16(conn
->pkt_type
);
997 cp
.tx_bandwidth
= cpu_to_le32(0x00001f40);
998 cp
.rx_bandwidth
= cpu_to_le32(0x00001f40);
999 cp
.max_latency
= cpu_to_le16(0xffff);
1000 cp
.content_format
= cpu_to_le16(hdev
->voice_setting
);
1001 cp
.retrans_effort
= 0xff;
1003 hci_send_cmd(hdev
, HCI_OP_ACCEPT_SYNC_CONN_REQ
,
1007 /* Connection rejected */
1008 struct hci_cp_reject_conn_req cp
;
1010 bacpy(&cp
.bdaddr
, &ev
->bdaddr
);
1012 hci_send_cmd(hdev
, HCI_OP_REJECT_CONN_REQ
, sizeof(cp
), &cp
);
1016 static inline void hci_disconn_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1018 struct hci_ev_disconn_complete
*ev
= (void *) skb
->data
;
1019 struct hci_conn
*conn
;
1021 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1028 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1030 conn
->state
= BT_CLOSED
;
1032 hci_proto_disconn_cfm(conn
, ev
->reason
);
1036 hci_dev_unlock(hdev
);
1039 static inline void hci_auth_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1041 struct hci_ev_auth_complete
*ev
= (void *) skb
->data
;
1042 struct hci_conn
*conn
;
1044 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1048 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1051 conn
->link_mode
|= HCI_LM_AUTH
;
1053 clear_bit(HCI_CONN_AUTH_PEND
, &conn
->pend
);
1055 if (conn
->state
== BT_CONFIG
) {
1056 if (!ev
->status
&& hdev
->ssp_mode
> 0 &&
1057 conn
->ssp_mode
> 0) {
1058 struct hci_cp_set_conn_encrypt cp
;
1059 cp
.handle
= ev
->handle
;
1061 hci_send_cmd(hdev
, HCI_OP_SET_CONN_ENCRYPT
,
1064 conn
->state
= BT_CONNECTED
;
1065 hci_proto_connect_cfm(conn
, ev
->status
);
1069 hci_auth_cfm(conn
, ev
->status
);
1071 hci_conn_hold(conn
);
1072 conn
->disc_timeout
= HCI_DISCONN_TIMEOUT
;
1076 if (test_bit(HCI_CONN_ENCRYPT_PEND
, &conn
->pend
)) {
1078 struct hci_cp_set_conn_encrypt cp
;
1079 cp
.handle
= ev
->handle
;
1081 hci_send_cmd(hdev
, HCI_OP_SET_CONN_ENCRYPT
,
1084 clear_bit(HCI_CONN_ENCRYPT_PEND
, &conn
->pend
);
1085 hci_encrypt_cfm(conn
, ev
->status
, 0x00);
1090 hci_dev_unlock(hdev
);
1093 static inline void hci_remote_name_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1095 BT_DBG("%s", hdev
->name
);
1097 hci_conn_check_pending(hdev
);
1100 static inline void hci_encrypt_change_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1102 struct hci_ev_encrypt_change
*ev
= (void *) skb
->data
;
1103 struct hci_conn
*conn
;
1105 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1109 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1113 /* Encryption implies authentication */
1114 conn
->link_mode
|= HCI_LM_AUTH
;
1115 conn
->link_mode
|= HCI_LM_ENCRYPT
;
1117 conn
->link_mode
&= ~HCI_LM_ENCRYPT
;
1120 clear_bit(HCI_CONN_ENCRYPT_PEND
, &conn
->pend
);
1122 if (conn
->state
== BT_CONFIG
) {
1124 conn
->state
= BT_CONNECTED
;
1126 hci_proto_connect_cfm(conn
, ev
->status
);
1129 hci_encrypt_cfm(conn
, ev
->status
, ev
->encrypt
);
1132 hci_dev_unlock(hdev
);
1135 static inline void hci_change_link_key_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1137 struct hci_ev_change_link_key_complete
*ev
= (void *) skb
->data
;
1138 struct hci_conn
*conn
;
1140 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1144 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1147 conn
->link_mode
|= HCI_LM_SECURE
;
1149 clear_bit(HCI_CONN_AUTH_PEND
, &conn
->pend
);
1151 hci_key_change_cfm(conn
, ev
->status
);
1154 hci_dev_unlock(hdev
);
1157 static inline void hci_remote_features_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1159 struct hci_ev_remote_features
*ev
= (void *) skb
->data
;
1160 struct hci_conn
*conn
;
1162 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1166 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1169 memcpy(conn
->features
, ev
->features
, 8);
1171 if (conn
->state
== BT_CONFIG
) {
1172 if (!ev
->status
&& lmp_ssp_capable(hdev
) &&
1173 lmp_ssp_capable(conn
)) {
1174 struct hci_cp_read_remote_ext_features cp
;
1175 cp
.handle
= ev
->handle
;
1178 HCI_OP_READ_REMOTE_EXT_FEATURES
,
1181 conn
->state
= BT_CONNECTED
;
1182 hci_proto_connect_cfm(conn
, ev
->status
);
1188 hci_dev_unlock(hdev
);
1191 static inline void hci_remote_version_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1193 BT_DBG("%s", hdev
->name
);
1196 static inline void hci_qos_setup_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1198 BT_DBG("%s", hdev
->name
);
1201 static inline void hci_cmd_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1203 struct hci_ev_cmd_complete
*ev
= (void *) skb
->data
;
1206 skb_pull(skb
, sizeof(*ev
));
1208 opcode
= __le16_to_cpu(ev
->opcode
);
1211 case HCI_OP_INQUIRY_CANCEL
:
1212 hci_cc_inquiry_cancel(hdev
, skb
);
1215 case HCI_OP_EXIT_PERIODIC_INQ
:
1216 hci_cc_exit_periodic_inq(hdev
, skb
);
1219 case HCI_OP_REMOTE_NAME_REQ_CANCEL
:
1220 hci_cc_remote_name_req_cancel(hdev
, skb
);
1223 case HCI_OP_ROLE_DISCOVERY
:
1224 hci_cc_role_discovery(hdev
, skb
);
1227 case HCI_OP_READ_LINK_POLICY
:
1228 hci_cc_read_link_policy(hdev
, skb
);
1231 case HCI_OP_WRITE_LINK_POLICY
:
1232 hci_cc_write_link_policy(hdev
, skb
);
1235 case HCI_OP_READ_DEF_LINK_POLICY
:
1236 hci_cc_read_def_link_policy(hdev
, skb
);
1239 case HCI_OP_WRITE_DEF_LINK_POLICY
:
1240 hci_cc_write_def_link_policy(hdev
, skb
);
1244 hci_cc_reset(hdev
, skb
);
1247 case HCI_OP_WRITE_LOCAL_NAME
:
1248 hci_cc_write_local_name(hdev
, skb
);
1251 case HCI_OP_READ_LOCAL_NAME
:
1252 hci_cc_read_local_name(hdev
, skb
);
1255 case HCI_OP_WRITE_AUTH_ENABLE
:
1256 hci_cc_write_auth_enable(hdev
, skb
);
1259 case HCI_OP_WRITE_ENCRYPT_MODE
:
1260 hci_cc_write_encrypt_mode(hdev
, skb
);
1263 case HCI_OP_WRITE_SCAN_ENABLE
:
1264 hci_cc_write_scan_enable(hdev
, skb
);
1267 case HCI_OP_READ_CLASS_OF_DEV
:
1268 hci_cc_read_class_of_dev(hdev
, skb
);
1271 case HCI_OP_WRITE_CLASS_OF_DEV
:
1272 hci_cc_write_class_of_dev(hdev
, skb
);
1275 case HCI_OP_READ_VOICE_SETTING
:
1276 hci_cc_read_voice_setting(hdev
, skb
);
1279 case HCI_OP_WRITE_VOICE_SETTING
:
1280 hci_cc_write_voice_setting(hdev
, skb
);
1283 case HCI_OP_HOST_BUFFER_SIZE
:
1284 hci_cc_host_buffer_size(hdev
, skb
);
1287 case HCI_OP_READ_SSP_MODE
:
1288 hci_cc_read_ssp_mode(hdev
, skb
);
1291 case HCI_OP_WRITE_SSP_MODE
:
1292 hci_cc_write_ssp_mode(hdev
, skb
);
1295 case HCI_OP_READ_LOCAL_VERSION
:
1296 hci_cc_read_local_version(hdev
, skb
);
1299 case HCI_OP_READ_LOCAL_COMMANDS
:
1300 hci_cc_read_local_commands(hdev
, skb
);
1303 case HCI_OP_READ_LOCAL_FEATURES
:
1304 hci_cc_read_local_features(hdev
, skb
);
1307 case HCI_OP_READ_BUFFER_SIZE
:
1308 hci_cc_read_buffer_size(hdev
, skb
);
1311 case HCI_OP_READ_BD_ADDR
:
1312 hci_cc_read_bd_addr(hdev
, skb
);
1316 BT_DBG("%s opcode 0x%x", hdev
->name
, opcode
);
1321 atomic_set(&hdev
->cmd_cnt
, 1);
1322 if (!skb_queue_empty(&hdev
->cmd_q
))
1323 tasklet_schedule(&hdev
->cmd_task
);
1327 static inline void hci_cmd_status_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1329 struct hci_ev_cmd_status
*ev
= (void *) skb
->data
;
1332 skb_pull(skb
, sizeof(*ev
));
1334 opcode
= __le16_to_cpu(ev
->opcode
);
1337 case HCI_OP_INQUIRY
:
1338 hci_cs_inquiry(hdev
, ev
->status
);
1341 case HCI_OP_CREATE_CONN
:
1342 hci_cs_create_conn(hdev
, ev
->status
);
1345 case HCI_OP_ADD_SCO
:
1346 hci_cs_add_sco(hdev
, ev
->status
);
1349 case HCI_OP_AUTH_REQUESTED
:
1350 hci_cs_auth_requested(hdev
, ev
->status
);
1353 case HCI_OP_SET_CONN_ENCRYPT
:
1354 hci_cs_set_conn_encrypt(hdev
, ev
->status
);
1357 case HCI_OP_REMOTE_NAME_REQ
:
1358 hci_cs_remote_name_req(hdev
, ev
->status
);
1361 case HCI_OP_READ_REMOTE_FEATURES
:
1362 hci_cs_read_remote_features(hdev
, ev
->status
);
1365 case HCI_OP_READ_REMOTE_EXT_FEATURES
:
1366 hci_cs_read_remote_ext_features(hdev
, ev
->status
);
1369 case HCI_OP_SETUP_SYNC_CONN
:
1370 hci_cs_setup_sync_conn(hdev
, ev
->status
);
1373 case HCI_OP_SNIFF_MODE
:
1374 hci_cs_sniff_mode(hdev
, ev
->status
);
1377 case HCI_OP_EXIT_SNIFF_MODE
:
1378 hci_cs_exit_sniff_mode(hdev
, ev
->status
);
1382 BT_DBG("%s opcode 0x%x", hdev
->name
, opcode
);
1387 atomic_set(&hdev
->cmd_cnt
, 1);
1388 if (!skb_queue_empty(&hdev
->cmd_q
))
1389 tasklet_schedule(&hdev
->cmd_task
);
1393 static inline void hci_role_change_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1395 struct hci_ev_role_change
*ev
= (void *) skb
->data
;
1396 struct hci_conn
*conn
;
1398 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1402 conn
= hci_conn_hash_lookup_ba(hdev
, ACL_LINK
, &ev
->bdaddr
);
1406 conn
->link_mode
&= ~HCI_LM_MASTER
;
1408 conn
->link_mode
|= HCI_LM_MASTER
;
1411 clear_bit(HCI_CONN_RSWITCH_PEND
, &conn
->pend
);
1413 hci_role_switch_cfm(conn
, ev
->status
, ev
->role
);
1416 hci_dev_unlock(hdev
);
1419 static inline void hci_num_comp_pkts_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1421 struct hci_ev_num_comp_pkts
*ev
= (void *) skb
->data
;
1425 skb_pull(skb
, sizeof(*ev
));
1427 BT_DBG("%s num_hndl %d", hdev
->name
, ev
->num_hndl
);
1429 if (skb
->len
< ev
->num_hndl
* 4) {
1430 BT_DBG("%s bad parameters", hdev
->name
);
1434 tasklet_disable(&hdev
->tx_task
);
1436 for (i
= 0, ptr
= (__le16
*) skb
->data
; i
< ev
->num_hndl
; i
++) {
1437 struct hci_conn
*conn
;
1438 __u16 handle
, count
;
1440 handle
= get_unaligned_le16(ptr
++);
1441 count
= get_unaligned_le16(ptr
++);
1443 conn
= hci_conn_hash_lookup_handle(hdev
, handle
);
1445 conn
->sent
-= count
;
1447 if (conn
->type
== ACL_LINK
) {
1448 if ((hdev
->acl_cnt
+= count
) > hdev
->acl_pkts
)
1449 hdev
->acl_cnt
= hdev
->acl_pkts
;
1451 if ((hdev
->sco_cnt
+= count
) > hdev
->sco_pkts
)
1452 hdev
->sco_cnt
= hdev
->sco_pkts
;
1457 tasklet_schedule(&hdev
->tx_task
);
1459 tasklet_enable(&hdev
->tx_task
);
1462 static inline void hci_mode_change_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1464 struct hci_ev_mode_change
*ev
= (void *) skb
->data
;
1465 struct hci_conn
*conn
;
1467 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1471 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1473 conn
->mode
= ev
->mode
;
1474 conn
->interval
= __le16_to_cpu(ev
->interval
);
1476 if (!test_and_clear_bit(HCI_CONN_MODE_CHANGE_PEND
, &conn
->pend
)) {
1477 if (conn
->mode
== HCI_CM_ACTIVE
)
1478 conn
->power_save
= 1;
1480 conn
->power_save
= 0;
1484 hci_dev_unlock(hdev
);
1487 static inline void hci_pin_code_request_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1489 struct hci_ev_pin_code_req
*ev
= (void *) skb
->data
;
1490 struct hci_conn
*conn
;
1492 BT_DBG("%s", hdev
->name
);
1496 conn
= hci_conn_hash_lookup_ba(hdev
, ACL_LINK
, &ev
->bdaddr
);
1497 if (conn
&& conn
->state
== BT_CONNECTED
) {
1498 hci_conn_hold(conn
);
1499 conn
->disc_timeout
= HCI_PAIRING_TIMEOUT
;
1503 hci_dev_unlock(hdev
);
1506 static inline void hci_link_key_request_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1508 BT_DBG("%s", hdev
->name
);
1511 static inline void hci_link_key_notify_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1513 struct hci_ev_link_key_notify
*ev
= (void *) skb
->data
;
1514 struct hci_conn
*conn
;
1516 BT_DBG("%s", hdev
->name
);
1520 conn
= hci_conn_hash_lookup_ba(hdev
, ACL_LINK
, &ev
->bdaddr
);
1522 hci_conn_hold(conn
);
1523 conn
->disc_timeout
= HCI_DISCONN_TIMEOUT
;
1527 hci_dev_unlock(hdev
);
1530 static inline void hci_clock_offset_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1532 struct hci_ev_clock_offset
*ev
= (void *) skb
->data
;
1533 struct hci_conn
*conn
;
1535 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1539 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1540 if (conn
&& !ev
->status
) {
1541 struct inquiry_entry
*ie
;
1543 if ((ie
= hci_inquiry_cache_lookup(hdev
, &conn
->dst
))) {
1544 ie
->data
.clock_offset
= ev
->clock_offset
;
1545 ie
->timestamp
= jiffies
;
1549 hci_dev_unlock(hdev
);
1552 static inline void hci_pkt_type_change_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1554 struct hci_ev_pkt_type_change
*ev
= (void *) skb
->data
;
1555 struct hci_conn
*conn
;
1557 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1561 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1562 if (conn
&& !ev
->status
)
1563 conn
->pkt_type
= __le16_to_cpu(ev
->pkt_type
);
1565 hci_dev_unlock(hdev
);
1568 static inline void hci_pscan_rep_mode_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1570 struct hci_ev_pscan_rep_mode
*ev
= (void *) skb
->data
;
1571 struct inquiry_entry
*ie
;
1573 BT_DBG("%s", hdev
->name
);
1577 if ((ie
= hci_inquiry_cache_lookup(hdev
, &ev
->bdaddr
))) {
1578 ie
->data
.pscan_rep_mode
= ev
->pscan_rep_mode
;
1579 ie
->timestamp
= jiffies
;
1582 hci_dev_unlock(hdev
);
1585 static inline void hci_inquiry_result_with_rssi_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1587 struct inquiry_data data
;
1588 int num_rsp
= *((__u8
*) skb
->data
);
1590 BT_DBG("%s num_rsp %d", hdev
->name
, num_rsp
);
1597 if ((skb
->len
- 1) / num_rsp
!= sizeof(struct inquiry_info_with_rssi
)) {
1598 struct inquiry_info_with_rssi_and_pscan_mode
*info
= (void *) (skb
->data
+ 1);
1600 for (; num_rsp
; num_rsp
--) {
1601 bacpy(&data
.bdaddr
, &info
->bdaddr
);
1602 data
.pscan_rep_mode
= info
->pscan_rep_mode
;
1603 data
.pscan_period_mode
= info
->pscan_period_mode
;
1604 data
.pscan_mode
= info
->pscan_mode
;
1605 memcpy(data
.dev_class
, info
->dev_class
, 3);
1606 data
.clock_offset
= info
->clock_offset
;
1607 data
.rssi
= info
->rssi
;
1608 data
.ssp_mode
= 0x00;
1610 hci_inquiry_cache_update(hdev
, &data
);
1613 struct inquiry_info_with_rssi
*info
= (void *) (skb
->data
+ 1);
1615 for (; num_rsp
; num_rsp
--) {
1616 bacpy(&data
.bdaddr
, &info
->bdaddr
);
1617 data
.pscan_rep_mode
= info
->pscan_rep_mode
;
1618 data
.pscan_period_mode
= info
->pscan_period_mode
;
1619 data
.pscan_mode
= 0x00;
1620 memcpy(data
.dev_class
, info
->dev_class
, 3);
1621 data
.clock_offset
= info
->clock_offset
;
1622 data
.rssi
= info
->rssi
;
1623 data
.ssp_mode
= 0x00;
1625 hci_inquiry_cache_update(hdev
, &data
);
1629 hci_dev_unlock(hdev
);
1632 static inline void hci_remote_ext_features_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1634 struct hci_ev_remote_ext_features
*ev
= (void *) skb
->data
;
1635 struct hci_conn
*conn
;
1637 BT_DBG("%s", hdev
->name
);
1641 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1643 if (!ev
->status
&& ev
->page
== 0x01) {
1644 struct inquiry_entry
*ie
;
1646 if ((ie
= hci_inquiry_cache_lookup(hdev
, &conn
->dst
)))
1647 ie
->data
.ssp_mode
= (ev
->features
[0] & 0x01);
1649 conn
->ssp_mode
= (ev
->features
[0] & 0x01);
1652 if (conn
->state
== BT_CONFIG
) {
1653 if (!ev
->status
&& hdev
->ssp_mode
> 0 &&
1654 conn
->ssp_mode
> 0 && conn
->out
&&
1655 conn
->sec_level
!= BT_SECURITY_SDP
) {
1656 struct hci_cp_auth_requested cp
;
1657 cp
.handle
= ev
->handle
;
1658 hci_send_cmd(hdev
, HCI_OP_AUTH_REQUESTED
,
1661 conn
->state
= BT_CONNECTED
;
1662 hci_proto_connect_cfm(conn
, ev
->status
);
1668 hci_dev_unlock(hdev
);
1671 static inline void hci_sync_conn_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1673 struct hci_ev_sync_conn_complete
*ev
= (void *) skb
->data
;
1674 struct hci_conn
*conn
;
1676 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1680 conn
= hci_conn_hash_lookup_ba(hdev
, ev
->link_type
, &ev
->bdaddr
);
1682 if (ev
->link_type
== ESCO_LINK
)
1685 conn
= hci_conn_hash_lookup_ba(hdev
, ESCO_LINK
, &ev
->bdaddr
);
1689 conn
->type
= SCO_LINK
;
1692 switch (ev
->status
) {
1694 conn
->handle
= __le16_to_cpu(ev
->handle
);
1695 conn
->state
= BT_CONNECTED
;
1697 hci_conn_hold_device(conn
);
1698 hci_conn_add_sysfs(conn
);
1701 case 0x1c: /* SCO interval rejected */
1702 case 0x1a: /* Unsupported Remote Feature */
1703 case 0x1f: /* Unspecified error */
1704 if (conn
->out
&& conn
->attempt
< 2) {
1705 conn
->pkt_type
= (hdev
->esco_type
& SCO_ESCO_MASK
) |
1706 (hdev
->esco_type
& EDR_ESCO_MASK
);
1707 hci_setup_sync(conn
, conn
->link
->handle
);
1713 conn
->state
= BT_CLOSED
;
1717 hci_proto_connect_cfm(conn
, ev
->status
);
1722 hci_dev_unlock(hdev
);
1725 static inline void hci_sync_conn_changed_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1727 BT_DBG("%s", hdev
->name
);
1730 static inline void hci_sniff_subrate_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1732 struct hci_ev_sniff_subrate
*ev
= (void *) skb
->data
;
1733 struct hci_conn
*conn
;
1735 BT_DBG("%s status %d", hdev
->name
, ev
->status
);
1739 conn
= hci_conn_hash_lookup_handle(hdev
, __le16_to_cpu(ev
->handle
));
1743 hci_dev_unlock(hdev
);
1746 static inline void hci_extended_inquiry_result_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1748 struct inquiry_data data
;
1749 struct extended_inquiry_info
*info
= (void *) (skb
->data
+ 1);
1750 int num_rsp
= *((__u8
*) skb
->data
);
1752 BT_DBG("%s num_rsp %d", hdev
->name
, num_rsp
);
1759 for (; num_rsp
; num_rsp
--) {
1760 bacpy(&data
.bdaddr
, &info
->bdaddr
);
1761 data
.pscan_rep_mode
= info
->pscan_rep_mode
;
1762 data
.pscan_period_mode
= info
->pscan_period_mode
;
1763 data
.pscan_mode
= 0x00;
1764 memcpy(data
.dev_class
, info
->dev_class
, 3);
1765 data
.clock_offset
= info
->clock_offset
;
1766 data
.rssi
= info
->rssi
;
1767 data
.ssp_mode
= 0x01;
1769 hci_inquiry_cache_update(hdev
, &data
);
1772 hci_dev_unlock(hdev
);
1775 static inline void hci_io_capa_request_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1777 struct hci_ev_io_capa_request
*ev
= (void *) skb
->data
;
1778 struct hci_conn
*conn
;
1780 BT_DBG("%s", hdev
->name
);
1784 conn
= hci_conn_hash_lookup_ba(hdev
, ACL_LINK
, &ev
->bdaddr
);
1786 hci_conn_hold(conn
);
1788 hci_dev_unlock(hdev
);
1791 static inline void hci_simple_pair_complete_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1793 struct hci_ev_simple_pair_complete
*ev
= (void *) skb
->data
;
1794 struct hci_conn
*conn
;
1796 BT_DBG("%s", hdev
->name
);
1800 conn
= hci_conn_hash_lookup_ba(hdev
, ACL_LINK
, &ev
->bdaddr
);
1804 hci_dev_unlock(hdev
);
1807 static inline void hci_remote_host_features_evt(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1809 struct hci_ev_remote_host_features
*ev
= (void *) skb
->data
;
1810 struct inquiry_entry
*ie
;
1812 BT_DBG("%s", hdev
->name
);
1816 if ((ie
= hci_inquiry_cache_lookup(hdev
, &ev
->bdaddr
)))
1817 ie
->data
.ssp_mode
= (ev
->features
[0] & 0x01);
1819 hci_dev_unlock(hdev
);
1822 void hci_event_packet(struct hci_dev
*hdev
, struct sk_buff
*skb
)
1824 struct hci_event_hdr
*hdr
= (void *) skb
->data
;
1825 __u8 event
= hdr
->evt
;
1827 skb_pull(skb
, HCI_EVENT_HDR_SIZE
);
1830 case HCI_EV_INQUIRY_COMPLETE
:
1831 hci_inquiry_complete_evt(hdev
, skb
);
1834 case HCI_EV_INQUIRY_RESULT
:
1835 hci_inquiry_result_evt(hdev
, skb
);
1838 case HCI_EV_CONN_COMPLETE
:
1839 hci_conn_complete_evt(hdev
, skb
);
1842 case HCI_EV_CONN_REQUEST
:
1843 hci_conn_request_evt(hdev
, skb
);
1846 case HCI_EV_DISCONN_COMPLETE
:
1847 hci_disconn_complete_evt(hdev
, skb
);
1850 case HCI_EV_AUTH_COMPLETE
:
1851 hci_auth_complete_evt(hdev
, skb
);
1854 case HCI_EV_REMOTE_NAME
:
1855 hci_remote_name_evt(hdev
, skb
);
1858 case HCI_EV_ENCRYPT_CHANGE
:
1859 hci_encrypt_change_evt(hdev
, skb
);
1862 case HCI_EV_CHANGE_LINK_KEY_COMPLETE
:
1863 hci_change_link_key_complete_evt(hdev
, skb
);
1866 case HCI_EV_REMOTE_FEATURES
:
1867 hci_remote_features_evt(hdev
, skb
);
1870 case HCI_EV_REMOTE_VERSION
:
1871 hci_remote_version_evt(hdev
, skb
);
1874 case HCI_EV_QOS_SETUP_COMPLETE
:
1875 hci_qos_setup_complete_evt(hdev
, skb
);
1878 case HCI_EV_CMD_COMPLETE
:
1879 hci_cmd_complete_evt(hdev
, skb
);
1882 case HCI_EV_CMD_STATUS
:
1883 hci_cmd_status_evt(hdev
, skb
);
1886 case HCI_EV_ROLE_CHANGE
:
1887 hci_role_change_evt(hdev
, skb
);
1890 case HCI_EV_NUM_COMP_PKTS
:
1891 hci_num_comp_pkts_evt(hdev
, skb
);
1894 case HCI_EV_MODE_CHANGE
:
1895 hci_mode_change_evt(hdev
, skb
);
1898 case HCI_EV_PIN_CODE_REQ
:
1899 hci_pin_code_request_evt(hdev
, skb
);
1902 case HCI_EV_LINK_KEY_REQ
:
1903 hci_link_key_request_evt(hdev
, skb
);
1906 case HCI_EV_LINK_KEY_NOTIFY
:
1907 hci_link_key_notify_evt(hdev
, skb
);
1910 case HCI_EV_CLOCK_OFFSET
:
1911 hci_clock_offset_evt(hdev
, skb
);
1914 case HCI_EV_PKT_TYPE_CHANGE
:
1915 hci_pkt_type_change_evt(hdev
, skb
);
1918 case HCI_EV_PSCAN_REP_MODE
:
1919 hci_pscan_rep_mode_evt(hdev
, skb
);
1922 case HCI_EV_INQUIRY_RESULT_WITH_RSSI
:
1923 hci_inquiry_result_with_rssi_evt(hdev
, skb
);
1926 case HCI_EV_REMOTE_EXT_FEATURES
:
1927 hci_remote_ext_features_evt(hdev
, skb
);
1930 case HCI_EV_SYNC_CONN_COMPLETE
:
1931 hci_sync_conn_complete_evt(hdev
, skb
);
1934 case HCI_EV_SYNC_CONN_CHANGED
:
1935 hci_sync_conn_changed_evt(hdev
, skb
);
1938 case HCI_EV_SNIFF_SUBRATE
:
1939 hci_sniff_subrate_evt(hdev
, skb
);
1942 case HCI_EV_EXTENDED_INQUIRY_RESULT
:
1943 hci_extended_inquiry_result_evt(hdev
, skb
);
1946 case HCI_EV_IO_CAPA_REQUEST
:
1947 hci_io_capa_request_evt(hdev
, skb
);
1950 case HCI_EV_SIMPLE_PAIR_COMPLETE
:
1951 hci_simple_pair_complete_evt(hdev
, skb
);
1954 case HCI_EV_REMOTE_HOST_FEATURES
:
1955 hci_remote_host_features_evt(hdev
, skb
);
1959 BT_DBG("%s event 0x%x", hdev
->name
, event
);
1964 hdev
->stat
.evt_rx
++;
1967 /* Generate internal stack event */
1968 void hci_si_event(struct hci_dev
*hdev
, int type
, int dlen
, void *data
)
1970 struct hci_event_hdr
*hdr
;
1971 struct hci_ev_stack_internal
*ev
;
1972 struct sk_buff
*skb
;
1974 skb
= bt_skb_alloc(HCI_EVENT_HDR_SIZE
+ sizeof(*ev
) + dlen
, GFP_ATOMIC
);
1978 hdr
= (void *) skb_put(skb
, HCI_EVENT_HDR_SIZE
);
1979 hdr
->evt
= HCI_EV_STACK_INTERNAL
;
1980 hdr
->plen
= sizeof(*ev
) + dlen
;
1982 ev
= (void *) skb_put(skb
, sizeof(*ev
) + dlen
);
1984 memcpy(ev
->data
, data
, dlen
);
1986 bt_cb(skb
)->incoming
= 1;
1987 __net_timestamp(skb
);
1989 bt_cb(skb
)->pkt_type
= HCI_EVENT_PKT
;
1990 skb
->dev
= (void *) hdev
;
1991 hci_send_to_sock(hdev
, skb
);