/******************************************************************************
*
* Copyright 2009-2012 Broadcom Corporation
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at:
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
******************************************************************************/
/******************************************************************************
*
* this file contains functions relating to BLE management.
*
******************************************************************************/
#define LOG_TAG "l2c_ble"
#include
#include
#include
#ifdef __ANDROID__
#include
#endif
#include "btif/include/core_callbacks.h"
#include "btif/include/stack_manager_t.h"
#include "hci/controller_interface.h"
#include "hci/hci_interface.h"
#include "internal_include/bt_target.h"
#include "main/shim/entry.h"
#include "osi/include/allocator.h"
#include "osi/include/properties.h"
#include "stack/btm/btm_ble_sec.h"
#include "stack/btm/btm_int_types.h"
#include "stack/btm/btm_sec.h"
#include "stack/btm/btm_sec_int_types.h"
#include "stack/connection_manager/connection_manager.h"
#include "stack/include/acl_api.h"
#include "stack/include/bt_psm_types.h"
#include "stack/include/bt_types.h"
#include "stack/include/btm_ble_api_types.h"
#include "stack/include/btm_client_interface.h"
#include "stack/include/btm_log_history.h"
#include "stack/include/btm_status.h"
#include "stack/include/l2cap_acl_interface.h"
#include "stack/include/l2cap_controller_interface.h"
#include "stack/include/l2cap_hci_link_interface.h"
#include "stack/include/l2cap_interface.h"
#include "stack/include/l2cdefs.h"
#include "stack/include/main_thread.h"
#include "stack/l2cap/l2c_int.h"
#include "types/raw_address.h"
using namespace bluetooth;
namespace {
constexpr char kBtmLogTag[] = "L2CAP";
}
extern tBTM_CB btm_cb;
void l2cble_start_conn_update(tL2C_LCB* p_lcb);
void L2CA_Consolidate(const RawAddress& identity_addr, const RawAddress& rpa) {
tL2C_LCB* p_lcb = l2cu_find_lcb_by_bd_addr(rpa, BT_TRANSPORT_LE);
if (p_lcb == nullptr) {
return;
}
log::info("consolidating l2c_lcb record {} -> {}", rpa, identity_addr);
p_lcb->remote_bd_addr = identity_addr;
}
hci_role_t L2CA_GetBleConnRole(const RawAddress& bd_addr) {
tL2C_LCB* p_lcb = l2cu_find_lcb_by_bd_addr(bd_addr, BT_TRANSPORT_LE);
if (p_lcb == nullptr) {
return HCI_ROLE_UNKNOWN;
}
return p_lcb->LinkRole();
}
/*******************************************************************************
*
* Function l2cble_notify_le_connection
*
* Description This function notify the l2cap connection to the app layer
*
* Returns none
*
******************************************************************************/
void l2cble_notify_le_connection(const RawAddress& bda) {
tL2C_LCB* p_lcb = l2cu_find_lcb_by_bd_addr(bda, BT_TRANSPORT_LE);
if (p_lcb == nullptr) {
log::warn("Received notification for le connection but no lcb found");
return;
}
if (get_btm_client_interface().peer.BTM_IsAclConnectionUp(bda, BT_TRANSPORT_LE) &&
p_lcb->link_state != LST_CONNECTED) {
/* update link status */
// TODO Move this back into acl layer
btm_establish_continue_from_address(bda, BT_TRANSPORT_LE);
/* update l2cap link status and send callback */
p_lcb->link_state = LST_CONNECTED;
l2cu_process_fixed_chnl_resp(p_lcb);
}
/* For all channels, send the event through their FSMs */
for (tL2C_CCB* p_ccb = p_lcb->ccb_queue.p_first_ccb; p_ccb; p_ccb = p_ccb->p_next_ccb) {
if (p_ccb->chnl_state == CST_CLOSED) {
l2c_csm_execute(p_ccb, L2CEVT_LP_CONNECT_CFM, NULL);
}
}
}
/** This function is called when an HCI Connection Complete event is received.
*/
bool l2cble_conn_comp(uint16_t handle, tHCI_ROLE role, const RawAddress& bda,
tBLE_ADDR_TYPE /* type */, uint16_t conn_interval, uint16_t conn_latency,
uint16_t conn_timeout) {
// role == HCI_ROLE_CENTRAL => scanner completed connection
// role == HCI_ROLE_PERIPHERAL => advertiser completed connection
/* See if we have a link control block for the remote device */
tL2C_LCB* p_lcb = l2cu_find_lcb_by_bd_addr(bda, BT_TRANSPORT_LE);
/* If we do not have one, create one. this is auto connection complete. */
if (!p_lcb) {
p_lcb = l2cu_allocate_lcb(bda, false, BT_TRANSPORT_LE);
if (!p_lcb) {
log::error("Unable to allocate link resource for le acl connection");
return false;
} else {
if (!l2cu_initialize_fixed_ccb(p_lcb, L2CAP_ATT_CID)) {
log::error("Unable to allocate channel resource for le acl connection");
return false;
}
}
p_lcb->link_state = LST_CONNECTING;
} else if (role == HCI_ROLE_CENTRAL && p_lcb->link_state != LST_CONNECTING) {
log::error(
"Received le acl connection as role central but not in connecting "
"state");
return false;
}
if (role == HCI_ROLE_CENTRAL) {
alarm_cancel(p_lcb->l2c_lcb_timer);
}
/* Save the handle */
l2cu_set_lcb_handle(*p_lcb, handle);
/* Connected OK. Change state to connected, we were scanning so we are central
*/
if (role == HCI_ROLE_CENTRAL) {
p_lcb->SetLinkRoleAsCentral();
} else {
p_lcb->SetLinkRoleAsPeripheral();
}
p_lcb->transport = BT_TRANSPORT_LE;
/* update link parameter, set peripheral link as non-spec default upon link up
*/
p_lcb->min_interval = p_lcb->max_interval = conn_interval;
p_lcb->timeout = conn_timeout;
p_lcb->latency = conn_latency;
p_lcb->conn_update_mask = L2C_BLE_NOT_DEFAULT_PARAM;
p_lcb->conn_update_blocked_by_profile_connection = false;
p_lcb->conn_update_blocked_by_service_discovery = false;
p_lcb->subrate_req_mask = 0;
p_lcb->subrate_min = 1;
p_lcb->subrate_max = 1;
p_lcb->max_latency = 0;
p_lcb->cont_num = 0;
p_lcb->supervision_tout = 0;
p_lcb->peer_chnl_mask[0] =
L2CAP_FIXED_CHNL_ATT_BIT | L2CAP_FIXED_CHNL_BLE_SIG_BIT | L2CAP_FIXED_CHNL_SMP_BIT;
if (role == HCI_ROLE_PERIPHERAL) {
if (!bluetooth::shim::GetController()->SupportsBlePeripheralInitiatedFeaturesExchange()) {
p_lcb->link_state = LST_CONNECTED;
l2cu_process_fixed_chnl_resp(p_lcb);
}
}
return true;
}
/*******************************************************************************
*
* Function l2cble_handle_connect_rsp_neg
*
* Description This function sends error message to all the
* outstanding channels
*
* Returns void
*
******************************************************************************/
static void l2cble_handle_connect_rsp_neg(tL2C_LCB* p_lcb, tL2C_CONN_INFO* con_info) {
tL2C_CCB* temp_p_ccb = NULL;
for (int i = 0; i < p_lcb->pending_ecoc_conn_cnt; i++) {
uint16_t cid = p_lcb->pending_ecoc_connection_cids[i];
temp_p_ccb = l2cu_find_ccb_by_cid(p_lcb, cid);
l2c_csm_execute(temp_p_ccb, L2CEVT_L2CAP_CREDIT_BASED_CONNECT_RSP_NEG, con_info);
}
p_lcb->pending_ecoc_conn_cnt = 0;
memset(p_lcb->pending_ecoc_connection_cids, 0, L2CAP_CREDIT_BASED_MAX_CIDS);
}
/*******************************************************************************
*
* Function l2cble_process_sig_cmd
*
* Description This function is called when a signalling packet is received
* on the BLE signalling CID
*
* Returns void
*
******************************************************************************/
void l2cble_process_sig_cmd(tL2C_LCB* p_lcb, uint8_t* p, uint16_t pkt_len) {
uint8_t* p_pkt_end;
uint8_t cmd_code, id;
uint16_t cmd_len;
uint16_t min_interval, max_interval, latency, timeout;
uint16_t lcid = 0, rcid = 0, mtu = 0, mps = 0, initial_credit = 0;
tL2C_CCB *p_ccb = NULL, *temp_p_ccb = NULL;
tL2C_RCB* p_rcb;
uint16_t credit;
uint8_t num_of_channels;
p_pkt_end = p + pkt_len;
if (p + 4 > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT8(cmd_code, p);
STREAM_TO_UINT8(id, p);
STREAM_TO_UINT16(cmd_len, p);
/* Check command length does not exceed packet length */
if ((p + cmd_len) > p_pkt_end) {
log::warn("L2CAP - LE - format error, pkt_len: {} cmd_len: {} code: {}", pkt_len, cmd_len,
cmd_code);
return;
}
switch (cmd_code) {
case L2CAP_CMD_REJECT: {
if (p + 2 > p_pkt_end) {
log::error(
"invalid L2CAP_CMD_REJECT packet, not containing enough data for "
"`reason` field");
return;
}
uint16_t reason{};
STREAM_TO_UINT16(reason, p);
if (reason == L2CAP_CMD_REJ_NOT_UNDERSTOOD && p_lcb->pending_ecoc_conn_cnt > 0) {
tL2C_CONN_INFO con_info = {
.bd_addr{},
.hci_status{},
.psm{},
.l2cap_result =
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM),
.l2cap_status{},
.remote_cid{},
.lcids{},
.peer_mtu{},
};
l2cble_handle_connect_rsp_neg(p_lcb, &con_info);
}
} break;
case L2CAP_CMD_ECHO_REQ:
case L2CAP_CMD_ECHO_RSP:
case L2CAP_CMD_INFO_RSP:
case L2CAP_CMD_INFO_REQ:
l2cu_send_peer_cmd_reject(p_lcb, L2CAP_CMD_REJ_NOT_UNDERSTOOD, id, 0, 0);
break;
case L2CAP_CMD_BLE_UPDATE_REQ:
if (p + 8 > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT16(min_interval, p); /* 0x0006 - 0x0C80 */
STREAM_TO_UINT16(max_interval, p); /* 0x0006 - 0x0C80 */
STREAM_TO_UINT16(latency, p); /* 0x0000 - 0x03E8 */
STREAM_TO_UINT16(timeout, p); /* 0x000A - 0x0C80 */
/* If we are a central, the peripheral wants to update the parameters */
if (p_lcb->IsLinkRoleCentral()) {
stack::l2cap::get_interface().L2CA_AdjustConnectionIntervals(
&min_interval, &max_interval,
osi_property_get_int32("bluetooth.core.le.min_connection_interval",
BTM_BLE_CONN_INT_MIN_LIMIT));
if (min_interval < BTM_BLE_CONN_INT_MIN || min_interval > BTM_BLE_CONN_INT_MAX ||
max_interval < BTM_BLE_CONN_INT_MIN || max_interval > BTM_BLE_CONN_INT_MAX ||
latency > BTM_BLE_CONN_LATENCY_MAX ||
/*(timeout >= max_interval && latency > (timeout * 10/(max_interval
* 1.25) - 1)) ||*/
timeout < BTM_BLE_CONN_SUP_TOUT_MIN || timeout > BTM_BLE_CONN_SUP_TOUT_MAX ||
max_interval < min_interval) {
l2cu_send_peer_ble_par_rsp(p_lcb, tL2CAP_CFG_RESULT::L2CAP_CFG_UNACCEPTABLE_PARAMS, id);
} else {
l2cu_send_peer_ble_par_rsp(p_lcb, tL2CAP_CFG_RESULT::L2CAP_CFG_OK, id);
p_lcb->min_interval = min_interval;
p_lcb->max_interval = max_interval;
p_lcb->latency = latency;
p_lcb->timeout = timeout;
p_lcb->conn_update_mask |= L2C_BLE_NEW_CONN_PARAM;
l2cble_start_conn_update(p_lcb);
}
} else {
l2cu_send_peer_cmd_reject(p_lcb, L2CAP_CMD_REJ_NOT_UNDERSTOOD, id, 0, 0);
}
break;
case L2CAP_CMD_BLE_UPDATE_RSP:
p += 2;
break;
case L2CAP_CMD_CREDIT_BASED_CONN_REQ: {
if (p + 10 > p_pkt_end) {
log::error("invalid L2CAP_CMD_CREDIT_BASED_CONN_REQ len");
return;
}
tL2C_CONN_INFO con_info{};
STREAM_TO_UINT16(con_info.psm, p);
STREAM_TO_UINT16(mtu, p);
STREAM_TO_UINT16(mps, p);
STREAM_TO_UINT16(initial_credit, p);
/* Check how many channels remote side wants. */
num_of_channels = (p_pkt_end - p) / sizeof(uint16_t);
if (num_of_channels > L2CAP_CREDIT_BASED_MAX_CIDS) {
log::warn("L2CAP - invalid number of channels requested: {}", num_of_channels);
l2cu_reject_credit_based_conn_req(
p_lcb, id, L2CAP_CREDIT_BASED_MAX_CIDS,
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_PARAMETERS);
return;
}
log::debug(
"Recv L2CAP_CMD_CREDIT_BASED_CONN_REQ with mtu = {}, mps = {}, "
"initial credit = {}num_of_channels = {}",
mtu, mps, initial_credit, num_of_channels);
/* Check PSM Support */
p_rcb = l2cu_find_ble_rcb_by_psm(con_info.psm);
if (p_rcb == NULL) {
log::warn("L2CAP - rcvd conn req for unknown PSM: 0x{:04x}", con_info.psm);
l2cu_reject_credit_based_conn_req(p_lcb, id, num_of_channels,
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM);
return;
}
if (p_lcb->pending_ecoc_conn_cnt > 0) {
log::warn("L2CAP - L2CAP_CMD_CREDIT_BASED_CONN_REQ collision:");
if (p_rcb->api.pL2CA_CreditBasedCollisionInd_Cb && con_info.psm == BT_PSM_EATT) {
(*p_rcb->api.pL2CA_CreditBasedCollisionInd_Cb)(p_lcb->remote_bd_addr);
}
l2cu_reject_credit_based_conn_req(p_lcb, id, num_of_channels,
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES);
return;
}
p_lcb->pending_ecoc_conn_cnt = num_of_channels;
if (!p_rcb->api.pL2CA_CreditBasedConnectInd_Cb) {
log::warn("L2CAP - rcvd conn req for outgoing-only connection PSM: {}", con_info.psm);
l2cu_reject_credit_based_conn_req(p_lcb, id, num_of_channels,
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM);
return;
}
/* validate the parameters */
if (mtu < L2CAP_CREDIT_BASED_MIN_MTU || mps < L2CAP_CREDIT_BASED_MIN_MPS ||
mps > L2CAP_LE_MAX_MPS) {
log::error("L2CAP don't like the params");
l2cu_reject_credit_based_conn_req(
p_lcb, id, num_of_channels,
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_PARAMETERS);
return;
}
bool lead_cid_set = false;
for (int i = 0; i < num_of_channels; i++) {
STREAM_TO_UINT16(rcid, p);
temp_p_ccb = l2cu_find_ccb_by_remote_cid(p_lcb, rcid);
if (temp_p_ccb) {
log::warn("L2CAP - rcvd conn req for duplicated cid: 0x{:04x}", rcid);
p_lcb->pending_ecoc_connection_cids[i] = 0;
p_lcb->pending_l2cap_result = static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_SOURCE_CID_ALREADY_ALLOCATED);
} else {
/* Allocate a ccb for this.*/
temp_p_ccb = l2cu_allocate_ccb(p_lcb, 0, con_info.psm == BT_PSM_EATT /* is_eatt */);
if (temp_p_ccb == NULL) {
log::error("L2CAP - unable to allocate CCB");
p_lcb->pending_ecoc_connection_cids[i] = 0;
p_lcb->pending_l2cap_result =
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES);
continue;
}
temp_p_ccb->ecoc = true;
temp_p_ccb->remote_id = id;
temp_p_ccb->p_rcb = p_rcb;
temp_p_ccb->remote_cid = rcid;
temp_p_ccb->peer_conn_cfg.mtu = mtu;
temp_p_ccb->peer_conn_cfg.mps = mps;
temp_p_ccb->peer_conn_cfg.credits = initial_credit;
temp_p_ccb->tx_mps = mps;
temp_p_ccb->ble_sdu = NULL;
temp_p_ccb->ble_sdu_length = 0;
temp_p_ccb->is_first_seg = true;
temp_p_ccb->peer_cfg.fcr.mode = L2CAP_FCR_LE_COC_MODE;
/* This list will be used to prepare response */
p_lcb->pending_ecoc_connection_cids[i] = temp_p_ccb->local_cid;
/*This is going to be our lead p_ccb for state machine */
if (!lead_cid_set) {
p_ccb = temp_p_ccb;
p_ccb->local_conn_cfg.mtu = L2CAP_SDU_LENGTH_LE_MAX;
p_ccb->local_conn_cfg.mps =
bluetooth::shim::GetController()->GetLeBufferSize().le_data_packet_length_;
p_lcb->pending_lead_cid = p_ccb->local_cid;
lead_cid_set = true;
}
}
}
if (!lead_cid_set) {
log::error("L2CAP - unable to allocate CCB");
l2cu_reject_credit_based_conn_req(
p_lcb, id, num_of_channels,
static_cast(p_lcb->pending_l2cap_result));
return;
}
log::debug("L2CAP - processing peer credit based connect request");
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CREDIT_BASED_CONNECT_REQ, NULL);
break;
}
case L2CAP_CMD_CREDIT_BASED_CONN_RES: {
if (p + 8 > p_pkt_end) {
log::error("invalid L2CAP_CMD_CREDIT_BASED_CONN_RES len");
return;
}
log::verbose("Recv L2CAP_CMD_CREDIT_BASED_CONN_RES");
/* For all channels, see whose identifier matches this id */
for (temp_p_ccb = p_lcb->ccb_queue.p_first_ccb; temp_p_ccb;
temp_p_ccb = temp_p_ccb->p_next_ccb) {
if (temp_p_ccb->local_id == id) {
p_ccb = temp_p_ccb;
break;
}
}
if (!p_ccb) {
tL2C_CONN_INFO con_info{};
log::verbose("Cannot find matching connection req");
con_info.l2cap_result =
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_SOURCE_CID);
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CONNECT_RSP_NEG, &con_info);
return;
}
tL2C_CONN_INFO con_info{};
STREAM_TO_UINT16(mtu, p);
STREAM_TO_UINT16(mps, p);
STREAM_TO_UINT16(initial_credit, p);
uint16_t result_u16;
STREAM_TO_UINT16(result_u16, p);
con_info.l2cap_result = static_cast(result_u16);
/* When one of these result is sent back that means,
* all the channels has been rejected
*/
if (con_info.l2cap_result ==
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM) ||
con_info.l2cap_result ==
static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_AUTHENTICATION) ||
con_info.l2cap_result ==
static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_ENCRYP) ||
con_info.l2cap_result ==
static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_AUTHORIZATION) ||
con_info.l2cap_result ==
static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_UNACCEPTABLE_PARAMETERS) ||
con_info.l2cap_result ==
static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_PARAMETERS)) {
log::error("L2CAP - not accepted. Status {}", con_info.l2cap_result);
l2cble_handle_connect_rsp_neg(p_lcb, &con_info);
return;
}
/* validate the parameters */
if (mtu < L2CAP_CREDIT_BASED_MIN_MTU || mps < L2CAP_CREDIT_BASED_MIN_MPS ||
mps > L2CAP_LE_MAX_MPS) {
log::error("L2CAP - invalid params");
con_info.l2cap_result =
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_PARAMETERS);
l2cble_handle_connect_rsp_neg(p_lcb, &con_info);
return;
}
/* At least some of the channels has been created and parameters are
* good*/
num_of_channels = (p_pkt_end - p) / sizeof(uint16_t);
if (num_of_channels != p_lcb->pending_ecoc_conn_cnt) {
log::error(
"Incorrect response.expected num of channels = {} received num of "
"channels = {}",
num_of_channels, p_lcb->pending_ecoc_conn_cnt);
return;
}
log::verbose(
"mtu = {}, mps = {}, initial_credit = {}, con_info.l2cap_result = "
"{} num_of_channels = {}",
mtu, mps, initial_credit, con_info.l2cap_result, num_of_channels);
con_info.peer_mtu = mtu;
/* Copy request data and clear it so user can perform another connect if
* needed in the callback. */
p_lcb->pending_ecoc_conn_cnt = 0;
uint16_t cids[L2CAP_CREDIT_BASED_MAX_CIDS];
std::copy_n(p_lcb->pending_ecoc_connection_cids, L2CAP_CREDIT_BASED_MAX_CIDS, cids);
std::fill_n(p_lcb->pending_ecoc_connection_cids, L2CAP_CREDIT_BASED_MAX_CIDS, 0);
for (int i = 0; i < num_of_channels; i++) {
uint16_t cid = cids[i];
STREAM_TO_UINT16(rcid, p);
if (rcid != 0) {
/* If remote cid is duplicated then disconnect original channel
* and current channel by sending event to upper layer
*/
temp_p_ccb = l2cu_find_ccb_by_remote_cid(p_lcb, rcid);
if (temp_p_ccb != nullptr) {
log::error(
"Already Allocated Destination cid. rcid = {} send "
"peer_disc_req",
rcid);
l2cu_send_peer_disc_req(temp_p_ccb);
temp_p_ccb = l2cu_find_ccb_by_cid(p_lcb, cid);
con_info.l2cap_result = static_cast(
tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_UNACCEPTABLE_PARAMETERS);
l2c_csm_execute(temp_p_ccb, L2CEVT_L2CAP_CREDIT_BASED_CONNECT_RSP_NEG, &con_info);
continue;
}
}
temp_p_ccb = l2cu_find_ccb_by_cid(p_lcb, cid);
temp_p_ccb->remote_cid = rcid;
log::verbose("local cid = {} remote cid = {}", cid, temp_p_ccb->remote_cid);
/* Check if peer accepted channel, if not release the one not
* created
*/
if (temp_p_ccb->remote_cid == 0) {
l2c_csm_execute(temp_p_ccb, L2CEVT_L2CAP_CREDIT_BASED_CONNECT_RSP_NEG, &con_info);
} else {
temp_p_ccb->tx_mps = mps;
temp_p_ccb->ble_sdu = NULL;
temp_p_ccb->ble_sdu_length = 0;
temp_p_ccb->is_first_seg = true;
temp_p_ccb->peer_cfg.fcr.mode = L2CAP_FCR_LE_COC_MODE;
temp_p_ccb->peer_conn_cfg.mtu = mtu;
temp_p_ccb->peer_conn_cfg.mps = mps;
temp_p_ccb->peer_conn_cfg.credits = initial_credit;
l2c_csm_execute(temp_p_ccb, L2CEVT_L2CAP_CREDIT_BASED_CONNECT_RSP, &con_info);
}
}
} break;
case L2CAP_CMD_CREDIT_BASED_RECONFIG_REQ: {
if (p + 6 > p_pkt_end) {
l2cu_send_ble_reconfig_rsp(p_lcb, id,
tL2CAP_RECONFIG_RESULT::L2CAP_RECONFIG_UNACCAPTED_PARAM);
return;
}
STREAM_TO_UINT16(mtu, p);
STREAM_TO_UINT16(mps, p);
/* validate the parameters */
if (mtu < L2CAP_CREDIT_BASED_MIN_MTU || mps < L2CAP_CREDIT_BASED_MIN_MPS ||
mps > L2CAP_LE_MAX_MPS) {
log::error("L2CAP - invalid params");
l2cu_send_ble_reconfig_rsp(p_lcb, id,
tL2CAP_RECONFIG_RESULT::L2CAP_RECONFIG_UNACCAPTED_PARAM);
return;
}
/* Check how many channels remote side wants to reconfigure */
num_of_channels = (p_pkt_end - p) / sizeof(uint16_t);
log::verbose(
"Recv L2CAP_CMD_CREDIT_BASED_RECONFIG_REQ with mtu = {}, mps = {}, "
"num_of_channels = {}",
mtu, mps, num_of_channels);
uint8_t* p_tmp = p;
for (int i = 0; i < num_of_channels; i++) {
STREAM_TO_UINT16(rcid, p_tmp);
p_ccb = l2cu_find_ccb_by_remote_cid(p_lcb, rcid);
if (!p_ccb) {
log::warn("L2CAP - rcvd config req for non existing cid: 0x{:04x}", rcid);
l2cu_send_ble_reconfig_rsp(p_lcb, id,
tL2CAP_RECONFIG_RESULT::L2CAP_RECONFIG_INVALID_DCID);
return;
}
if (p_ccb->peer_conn_cfg.mtu > mtu) {
log::warn("L2CAP - rcvd config req mtu reduction new mtu < mtu ({} < {})", mtu,
p_ccb->peer_conn_cfg.mtu);
l2cu_send_ble_reconfig_rsp(
p_lcb, id, tL2CAP_RECONFIG_RESULT::L2CAP_RECONFIG_REDUCTION_MTU_NO_ALLOWED);
return;
}
if (p_ccb->peer_conn_cfg.mps > mps && num_of_channels > 1) {
log::warn("L2CAP - rcvd config req mps reduction new mps < mps ({} < {})", mtu,
p_ccb->peer_conn_cfg.mtu);
l2cu_send_ble_reconfig_rsp(
p_lcb, id, tL2CAP_RECONFIG_RESULT::L2CAP_RECONFIG_REDUCTION_MPS_NO_ALLOWED);
return;
}
}
for (int i = 0; i < num_of_channels; i++) {
STREAM_TO_UINT16(rcid, p);
/* Store new values */
p_ccb = l2cu_find_ccb_by_remote_cid(p_lcb, rcid);
p_ccb->peer_conn_cfg.mtu = mtu;
p_ccb->peer_conn_cfg.mps = mps;
p_ccb->tx_mps = mps;
tL2CAP_LE_CFG_INFO le_cfg;
le_cfg.mps = mps;
le_cfg.mtu = mtu;
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CREDIT_BASED_RECONFIG_REQ, &le_cfg);
}
l2cu_send_ble_reconfig_rsp(p_lcb, id, tL2CAP_RECONFIG_RESULT::L2CAP_RECONFIG_SUCCEED);
break;
}
case L2CAP_CMD_CREDIT_BASED_RECONFIG_RES: {
uint16_t result_u16;
if (p + sizeof(tL2CAP_CFG_RESULT) > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT16(result_u16, p);
tL2CAP_CFG_RESULT result = static_cast(result_u16);
log::verbose("Recv L2CAP_CMD_CREDIT_BASED_RECONFIG_RES for result:{}",
l2cap_cfg_result_text(result));
p_lcb->pending_ecoc_reconfig_cfg.result = result;
/* All channels which are in reconfiguration state are marked with
* reconfig_started flag. Find it and send response
*/
for (temp_p_ccb = p_lcb->ccb_queue.p_first_ccb; temp_p_ccb;
temp_p_ccb = temp_p_ccb->p_next_ccb) {
if ((temp_p_ccb->in_use) && (temp_p_ccb->reconfig_started)) {
l2c_csm_execute(temp_p_ccb, L2CEVT_L2CAP_CREDIT_BASED_RECONFIG_RSP,
&p_lcb->pending_ecoc_reconfig_cfg);
temp_p_ccb->reconfig_started = false;
if (result == tL2CAP_CFG_RESULT::L2CAP_CFG_OK) {
temp_p_ccb->local_conn_cfg = p_lcb->pending_ecoc_reconfig_cfg;
}
}
}
break;
}
case L2CAP_CMD_BLE_CREDIT_BASED_CONN_REQ: {
tL2C_CONN_INFO con_info{};
if (p + 10 > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT16(con_info.psm, p);
STREAM_TO_UINT16(rcid, p);
STREAM_TO_UINT16(mtu, p);
STREAM_TO_UINT16(mps, p);
STREAM_TO_UINT16(initial_credit, p);
log::verbose(
"Recv L2CAP_CMD_BLE_CREDIT_BASED_CONN_REQ with mtu = {}, mps = {}, "
"initial credit = {}",
mtu, mps, initial_credit);
p_ccb = l2cu_find_ccb_by_remote_cid(p_lcb, rcid);
if (p_ccb) {
log::warn("L2CAP - rcvd conn req for duplicated cid: 0x{:04x}", rcid);
l2cu_reject_ble_coc_connection(
p_lcb, id, tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_SOURCE_CID_ALREADY_ALLOCATED);
break;
}
p_rcb = l2cu_find_ble_rcb_by_psm(con_info.psm);
if (p_rcb == NULL) {
log::warn("L2CAP - rcvd conn req for unknown PSM: 0x{:04x}", con_info.psm);
l2cu_reject_ble_coc_connection(p_lcb, id, tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM);
break;
} else {
if (!p_rcb->api.pL2CA_ConnectInd_Cb) {
log::warn("L2CAP - rcvd conn req for outgoing-only connection PSM: {}", con_info.psm);
l2cu_reject_ble_coc_connection(p_lcb, id, tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM);
break;
}
}
/* Allocate a ccb for this.*/
p_ccb = l2cu_allocate_ccb(p_lcb, 0, con_info.psm == BT_PSM_EATT /* is_eatt */);
if (p_ccb == NULL) {
log::error("L2CAP - unable to allocate CCB");
l2cu_reject_ble_connection(p_ccb, id, tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES);
break;
}
/* validate the parameters */
if (mtu < L2CAP_LE_MIN_MTU || mps < L2CAP_LE_MIN_MPS || mps > L2CAP_LE_MAX_MPS) {
log::error("L2CAP do not like the params");
l2cu_reject_ble_connection(p_ccb, id, tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES);
break;
}
p_ccb->remote_id = id;
p_ccb->p_rcb = p_rcb;
p_ccb->remote_cid = rcid;
if (com::android::bluetooth::flags::socket_settings_api()) { // Added with aosp/3349377
p_ccb->local_conn_cfg.mtu = p_rcb->coc_cfg.mtu;
p_ccb->local_conn_cfg.mps = p_rcb->coc_cfg.mps;
} else {
p_ccb->local_conn_cfg.mtu = L2CAP_SDU_LENGTH_LE_MAX;
p_ccb->local_conn_cfg.mps =
bluetooth::shim::GetController()->GetLeBufferSize().le_data_packet_length_;
}
if (com::android::bluetooth::flags::socket_settings_api()) { // Added with aosp/3349376
p_ccb->local_conn_cfg.credits = p_rcb->coc_cfg.credits;
p_ccb->remote_credit_count = p_rcb->coc_cfg.credits;
} else {
p_ccb->local_conn_cfg.credits = L2CA_LeCreditDefault();
p_ccb->remote_credit_count = L2CA_LeCreditDefault();
}
p_ccb->peer_conn_cfg.mtu = mtu;
p_ccb->peer_conn_cfg.mps = mps;
p_ccb->peer_conn_cfg.credits = initial_credit;
p_ccb->tx_mps = mps;
p_ccb->ble_sdu = NULL;
p_ccb->ble_sdu_length = 0;
p_ccb->is_first_seg = true;
p_ccb->peer_cfg.fcr.mode = L2CAP_FCR_LE_COC_MODE;
p_ccb->connection_initiator = L2CAP_INITIATOR_REMOTE;
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CONNECT_REQ, &con_info);
} break;
case L2CAP_CMD_BLE_CREDIT_BASED_CONN_RES: {
tL2C_CONN_INFO con_info{};
log::verbose("Recv L2CAP_CMD_BLE_CREDIT_BASED_CONN_RES");
/* For all channels, see whose identifier matches this id */
for (temp_p_ccb = p_lcb->ccb_queue.p_first_ccb; temp_p_ccb;
temp_p_ccb = temp_p_ccb->p_next_ccb) {
if (temp_p_ccb->local_id == id) {
p_ccb = temp_p_ccb;
break;
}
}
if (p_ccb) {
log::verbose("I remember the connection req");
if (p + 10 > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT16(p_ccb->remote_cid, p);
STREAM_TO_UINT16(p_ccb->peer_conn_cfg.mtu, p);
STREAM_TO_UINT16(p_ccb->peer_conn_cfg.mps, p);
STREAM_TO_UINT16(p_ccb->peer_conn_cfg.credits, p);
uint16_t result_u16;
STREAM_TO_UINT16(result_u16, p);
con_info.l2cap_result = static_cast(result_u16);
con_info.remote_cid = p_ccb->remote_cid;
log::verbose(
"remote_cid = {}, mtu = {}, mps = {}, initial_credit = {}, "
"con_info.l2cap_result = {}",
p_ccb->remote_cid, p_ccb->peer_conn_cfg.mtu, p_ccb->peer_conn_cfg.mps,
p_ccb->peer_conn_cfg.credits, con_info.l2cap_result);
/* validate the parameters */
if (p_ccb->peer_conn_cfg.mtu < L2CAP_LE_MIN_MTU ||
p_ccb->peer_conn_cfg.mps < L2CAP_LE_MIN_MPS ||
p_ccb->peer_conn_cfg.mps > L2CAP_LE_MAX_MPS) {
log::error("L2CAP do not like the params");
con_info.l2cap_result =
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES);
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CONNECT_RSP_NEG, &con_info);
break;
}
p_ccb->tx_mps = p_ccb->peer_conn_cfg.mps;
p_ccb->ble_sdu = NULL;
p_ccb->ble_sdu_length = 0;
p_ccb->is_first_seg = true;
p_ccb->peer_cfg.fcr.mode = L2CAP_FCR_LE_COC_MODE;
if (con_info.l2cap_result ==
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_CONN_OK)) {
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CONNECT_RSP, &con_info);
} else {
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CONNECT_RSP_NEG, &con_info);
}
} else {
log::verbose("I DO NOT remember the connection req");
con_info.l2cap_result =
static_cast(tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_SOURCE_CID);
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_CONNECT_RSP_NEG, &con_info);
}
} break;
case L2CAP_CMD_BLE_FLOW_CTRL_CREDIT:
if (p + 4 > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT16(lcid, p);
p_ccb = l2cu_find_ccb_by_remote_cid(p_lcb, lcid);
if (p_ccb == NULL) {
log::verbose("Credit received for unknown channel id {}", lcid);
break;
}
STREAM_TO_UINT16(credit, p);
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_RECV_FLOW_CONTROL_CREDIT, &credit);
log::verbose("Credit received");
break;
case L2CAP_CMD_DISC_REQ:
if (p + 4 > p_pkt_end) {
return;
}
STREAM_TO_UINT16(lcid, p);
STREAM_TO_UINT16(rcid, p);
p_ccb = l2cu_find_ccb_by_cid(p_lcb, lcid);
if (p_ccb != NULL) {
if (p_ccb->remote_cid == rcid) {
p_ccb->remote_id = id;
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_DISCONNECT_REQ, NULL);
}
} else {
l2cu_send_peer_cmd_reject(p_lcb, L2CAP_CMD_REJ_INVALID_CID, id, 0, 0);
}
break;
case L2CAP_CMD_DISC_RSP:
if (p + 4 > p_pkt_end) {
log::error("invalid read");
return;
}
STREAM_TO_UINT16(rcid, p);
STREAM_TO_UINT16(lcid, p);
p_ccb = l2cu_find_ccb_by_cid(p_lcb, lcid);
if (p_ccb != NULL) {
if ((p_ccb->remote_cid == rcid) && (p_ccb->local_id == id)) {
l2c_csm_execute(p_ccb, L2CEVT_L2CAP_DISCONNECT_RSP, NULL);
}
}
break;
default:
log::warn("L2CAP - LE - unknown cmd code: {}", cmd_code);
l2cu_send_peer_cmd_reject(p_lcb, L2CAP_CMD_REJ_NOT_UNDERSTOOD, id, 0, 0);
break;
}
}
/** This function is to initiate a direct connection. Returns true if connection
* initiated, false otherwise. */
bool l2cble_create_conn(tL2C_LCB* p_lcb) {
if (!connection_manager::create_le_connection(CONN_MGR_ID_L2CAP, p_lcb->remote_bd_addr)) {
return false;
}
p_lcb->link_state = LST_CONNECTING;
// TODO: we should not need this timer at all, the connection failure should
// be reported from lower layer
alarm_set_on_mloop(p_lcb->l2c_lcb_timer, L2CAP_BLE_LINK_CONNECT_TIMEOUT_MS, l2c_lcb_timer_timeout,
p_lcb);
return true;
}
/*******************************************************************************
*
* Function l2c_link_process_ble_num_bufs
*
* Description This function is called when a "controller buffer size"
* event is first received from the controller. It updates
* the L2CAP values.
*
* Returns void
*
******************************************************************************/
void l2c_link_process_ble_num_bufs(uint16_t num_lm_ble_bufs) {
if (num_lm_ble_bufs == 0) {
num_lm_ble_bufs = L2C_DEF_NUM_BLE_BUF_SHARED;
l2cb.num_lm_acl_bufs -= L2C_DEF_NUM_BLE_BUF_SHARED;
}
l2cb.num_lm_ble_bufs = num_lm_ble_bufs;
l2cb.controller_le_xmit_window = num_lm_ble_bufs;
}
/*******************************************************************************
*
* Function l2c_ble_link_adjust_allocation
*
* Description This function is called when a link is created or removed
* to calculate the amount of packets each link may send to
* the HCI without an ack coming back.
*
* Currently, this is a simple allocation, dividing the
* number of Controller Packets by the number of links. In
* the future, QOS configuration should be examined.
*
* Returns void
*
******************************************************************************/
void l2c_ble_link_adjust_allocation(void) {
uint16_t qq, yy, qq_remainder;
tL2C_LCB* p_lcb;
uint16_t hi_quota, low_quota;
uint16_t num_lowpri_links = 0;
uint16_t num_hipri_links = 0;
uint16_t controller_xmit_quota = l2cb.num_lm_ble_bufs;
uint16_t high_pri_link_quota = L2CAP_HIGH_PRI_MIN_XMIT_QUOTA_A;
/* If no links active, reset buffer quotas and controller buffers */
if (l2cb.num_ble_links_active == 0) {
l2cb.controller_le_xmit_window = l2cb.num_lm_ble_bufs;
l2cb.ble_round_robin_quota = l2cb.ble_round_robin_unacked = 0;
return;
}
/* First, count the links */
for (yy = 0, p_lcb = &l2cb.lcb_pool[0]; yy < MAX_L2CAP_LINKS; yy++, p_lcb++) {
if (p_lcb->in_use && p_lcb->transport == BT_TRANSPORT_LE) {
if (p_lcb->acl_priority == L2CAP_PRIORITY_HIGH) {
num_hipri_links++;
} else {
num_lowpri_links++;
}
}
}
/* now adjust high priority link quota */
low_quota = num_lowpri_links ? 1 : 0;
while ((num_hipri_links * high_pri_link_quota + low_quota) > controller_xmit_quota) {
high_pri_link_quota--;
}
/* Work out the xmit quota and buffer quota high and low priorities */
hi_quota = num_hipri_links * high_pri_link_quota;
low_quota = (hi_quota < controller_xmit_quota) ? controller_xmit_quota - hi_quota : 1;
/* Work out and save the HCI xmit quota for each low priority link */
/* If each low priority link cannot have at least one buffer */
if (num_lowpri_links > low_quota) {
l2cb.ble_round_robin_quota = low_quota;
qq = qq_remainder = 0;
} else if (num_lowpri_links > 0) {
/* If each low priority link can have at least one buffer */
l2cb.ble_round_robin_quota = 0;
l2cb.ble_round_robin_unacked = 0;
qq = low_quota / num_lowpri_links;
qq_remainder = low_quota % num_lowpri_links;
} else {
/* If no low priority link */
l2cb.ble_round_robin_quota = 0;
l2cb.ble_round_robin_unacked = 0;
qq = qq_remainder = 0;
}
log::verbose(
"l2c_ble_link_adjust_allocation num_hipri: {} num_lowpri: {} "
"low_quota: {} round_robin_quota: {} qq: {}",
num_hipri_links, num_lowpri_links, low_quota, l2cb.ble_round_robin_quota, qq);
/* Now, assign the quotas to each link */
for (yy = 0, p_lcb = &l2cb.lcb_pool[0]; yy < MAX_L2CAP_LINKS; yy++, p_lcb++) {
if (p_lcb->in_use && p_lcb->transport == BT_TRANSPORT_LE) {
if (p_lcb->acl_priority == L2CAP_PRIORITY_HIGH) {
p_lcb->link_xmit_quota = high_pri_link_quota;
} else {
/* Safety check in case we switched to round-robin with something
* outstanding */
/* if sent_not_acked is added into round_robin_unacked then do not add
* it again */
/* l2cap keeps updating sent_not_acked for exiting from round robin */
if ((p_lcb->link_xmit_quota > 0) && (qq == 0)) {
l2cb.ble_round_robin_unacked += p_lcb->sent_not_acked;
}
p_lcb->link_xmit_quota = qq;
if (qq_remainder > 0) {
p_lcb->link_xmit_quota++;
qq_remainder--;
}
}
log::verbose("l2c_ble_link_adjust_allocation LCB {} Priority: {} XmitQuota: {}", yy,
p_lcb->acl_priority, p_lcb->link_xmit_quota);
log::verbose("SentNotAcked: {} RRUnacked: {}", p_lcb->sent_not_acked,
l2cb.round_robin_unacked);
/* There is a special case where we have readjusted the link quotas and */
/* this link may have sent anything but some other link sent packets so */
/* so we may need a timer to kick off this link's transmissions. */
if (p_lcb->link_xmit_data_q != nullptr) {
if ((p_lcb->link_state == LST_CONNECTED) &&
!list_is_empty(p_lcb->link_xmit_data_q) &&
(p_lcb->sent_not_acked < p_lcb->link_xmit_quota)) {
alarm_set_on_mloop(p_lcb->l2c_lcb_timer, L2CAP_LINK_FLOW_CONTROL_TIMEOUT_MS,
l2c_lcb_timer_timeout, p_lcb);
}
} else {
log::warn("link_xmit_data_q is null");
}
}
}
}
/*******************************************************************************
*
* Function l2cble_update_data_length
*
* Description This function update link tx data length if applicable
*
* Returns void
*
******************************************************************************/
void l2cble_update_data_length(tL2C_LCB* p_lcb) {
uint16_t tx_mtu = 0;
uint16_t i = 0;
log::verbose("");
/* See if we have a link control block for the connection */
if (p_lcb == NULL) {
return;
}
for (i = 0; i < L2CAP_NUM_FIXED_CHNLS; i++) {
if (i + L2CAP_FIRST_FIXED_CHNL != L2CAP_BLE_SIGNALLING_CID) {
if ((p_lcb->p_fixed_ccbs[i] != NULL) &&
(tx_mtu < (p_lcb->p_fixed_ccbs[i]->tx_data_len + L2CAP_PKT_OVERHEAD))) {
tx_mtu = p_lcb->p_fixed_ccbs[i]->tx_data_len + L2CAP_PKT_OVERHEAD;
}
}
}
if (tx_mtu > BTM_BLE_DATA_SIZE_MAX) {
tx_mtu = BTM_BLE_DATA_SIZE_MAX;
}
/* update TX data length if changed */
if (p_lcb->tx_data_len != tx_mtu) {
if (get_btm_client_interface().ble.BTM_SetBleDataLength(p_lcb->remote_bd_addr, tx_mtu) !=
tBTM_STATUS::BTM_SUCCESS) {
log::warn("Unable to set BLE data length peer:{} mtu:{}", p_lcb->remote_bd_addr, tx_mtu);
}
}
}
/*******************************************************************************
*
* Function l2cble_process_data_length_change_evt
*
* Description This function process the data length change event
*
* Returns void
*
******************************************************************************/
static bool is_legal_tx_data_len(const uint16_t& tx_data_len) {
return tx_data_len >= 0x001B && tx_data_len <= 0x00FB;
}
void l2cble_process_data_length_change_event(uint16_t handle, uint16_t tx_data_len,
uint16_t /* rx_data_len */) {
tL2C_LCB* p_lcb = l2cu_find_lcb_by_handle(handle);
if (p_lcb == nullptr) {
log::warn("Received data length change event for unknown ACL handle:0x{:04x}", handle);
return;
}
if (is_legal_tx_data_len(tx_data_len)) {
if (p_lcb->tx_data_len != tx_data_len) {
log::debug(
"Received data length change event for device:{} tx_data_len:{} => "
"{}",
p_lcb->remote_bd_addr, p_lcb->tx_data_len, tx_data_len);
BTM_LogHistory(kBtmLogTag, p_lcb->remote_bd_addr, "LE Data length change",
base::StringPrintf("tx_octets:%hu => %hu", p_lcb->tx_data_len, tx_data_len));
p_lcb->tx_data_len = tx_data_len;
} else {
log::debug(
"Received duplicated data length change event for device:{} "
"tx_data_len:{}",
p_lcb->remote_bd_addr, tx_data_len);
}
} else {
log::warn(
"Received illegal data length change event for device:{} "
"tx_data_len:{}",
p_lcb->remote_bd_addr, tx_data_len);
}
/* ignore rx_data len for now */
}
/*******************************************************************************
*
* Function l2cble_credit_based_conn_req
*
* Description This function sends LE Credit Based Connection Request for
* LE connection oriented channels.
*
* Returns void
*
******************************************************************************/
void l2cble_credit_based_conn_req(tL2C_CCB* p_ccb) {
if (!p_ccb) {
return;
}
if (p_ccb->p_lcb && p_ccb->p_lcb->transport != BT_TRANSPORT_LE) {
log::warn("LE link doesn't exist");
return;
}
if (p_ccb->ecoc) {
l2cu_send_peer_credit_based_conn_req(p_ccb);
} else {
l2cu_send_peer_ble_credit_based_conn_req(p_ccb);
}
return;
}
/*******************************************************************************
*
* Function l2cble_credit_based_conn_res
*
* Description This function sends LE Credit Based Connection Response for
* LE connection oriented channels.
*
* Returns void
*
******************************************************************************/
void l2cble_credit_based_conn_res(tL2C_CCB* p_ccb, tL2CAP_LE_RESULT_CODE result) {
if (!p_ccb) {
return;
}
if (p_ccb->p_lcb && p_ccb->p_lcb->transport != BT_TRANSPORT_LE) {
log::warn("LE link doesn't exist");
return;
}
l2cu_send_peer_ble_credit_based_conn_res(p_ccb, result);
return;
}
/*******************************************************************************
*
* Function l2cble_send_flow_control_credit
*
* Description This function sends flow control credits for
* LE connection oriented channels.
*
* Returns void
*
******************************************************************************/
void l2cble_send_flow_control_credit(tL2C_CCB* p_ccb, uint16_t credit_value) {
if (!p_ccb) {
return;
}
if (p_ccb->p_lcb && p_ccb->p_lcb->transport != BT_TRANSPORT_LE) {
log::warn("LE link doesn't exist");
return;
}
l2cu_send_peer_ble_flow_control_credit(p_ccb, credit_value);
return;
}
/*******************************************************************************
*
* Function l2cble_send_peer_disc_req
*
* Description This function sends disconnect request
* to the peer LE device
*
* Returns void
*
******************************************************************************/
void l2cble_send_peer_disc_req(tL2C_CCB* p_ccb) {
log::verbose("");
if (!p_ccb) {
return;
}
if (p_ccb->p_lcb && p_ccb->p_lcb->transport != BT_TRANSPORT_LE) {
log::warn("LE link doesn't exist");
return;
}
l2cu_send_peer_ble_credit_based_disconn_req(p_ccb);
return;
}
/*******************************************************************************
*
* Function l2cble_sec_comp
*
* Description This function is called when security procedure for an LE
* COC link is done
*
* Returns void
*
******************************************************************************/
static void l2cble_sec_comp(RawAddress bda, tBT_TRANSPORT transport, void* /* p_ref_data */,
tBTM_STATUS btm_status) {
tL2C_LCB* p_lcb = l2cu_find_lcb_by_bd_addr(bda, BT_TRANSPORT_LE);
tL2CAP_SEC_DATA* p_buf = NULL;
uint8_t sec_act;
if (!p_lcb) {
log::warn("security complete for unknown device. bda={}", bda);
return;
}
sec_act = p_lcb->sec_act;
p_lcb->sec_act = 0;
if (!fixed_queue_is_empty(p_lcb->le_sec_pending_q)) {
p_buf = (tL2CAP_SEC_DATA*)fixed_queue_dequeue(p_lcb->le_sec_pending_q);
if (!p_buf) {
log::warn("Security complete for request not initiated from L2CAP");
return;
}
if (btm_status != tBTM_STATUS::BTM_SUCCESS) {
(*(p_buf->p_callback))(bda, BT_TRANSPORT_LE, p_buf->p_ref_data, btm_status);
osi_free(p_buf);
} else {
if (sec_act == BTM_SEC_ENCRYPT_MITM) {
if (BTM_IsLinkKeyAuthed(bda, transport)) {
(*(p_buf->p_callback))(bda, BT_TRANSPORT_LE, p_buf->p_ref_data, btm_status);
} else {
log::verbose("MITM Protection Not present");
(*(p_buf->p_callback))(bda, BT_TRANSPORT_LE, p_buf->p_ref_data,
tBTM_STATUS::BTM_FAILED_ON_SECURITY);
}
} else {
log::verbose("MITM Protection not required sec_act = {}", p_lcb->sec_act);
(*(p_buf->p_callback))(bda, BT_TRANSPORT_LE, p_buf->p_ref_data, btm_status);
}
osi_free(p_buf);
}
} else {
log::warn("Security complete for request not initiated from L2CAP");
return;
}
while (!fixed_queue_is_empty(p_lcb->le_sec_pending_q)) {
p_buf = (tL2CAP_SEC_DATA*)fixed_queue_dequeue(p_lcb->le_sec_pending_q);
if (btm_status != tBTM_STATUS::BTM_SUCCESS) {
(*(p_buf->p_callback))(bda, BT_TRANSPORT_LE, p_buf->p_ref_data, btm_status);
osi_free(p_buf);
} else {
l2ble_sec_access_req(bda, p_buf->psm, p_buf->is_originator, p_buf->p_callback,
p_buf->p_ref_data);
osi_free(p_buf);
break;
}
}
}
/*******************************************************************************
*
* Function l2ble_sec_access_req
*
* Description This function is called by LE COC link to meet the
* security requirement for the link
*
* Returns Returns - L2CAP LE Connection Response Result Code.
*
******************************************************************************/
tL2CAP_LE_RESULT_CODE l2ble_sec_access_req(const RawAddress& bd_addr, uint16_t psm,
bool is_originator, tBTM_SEC_CALLBACK* p_callback,
void* p_ref_data) {
tL2C_LCB* p_lcb = NULL;
if (!p_callback) {
log::error("No callback function");
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES;
}
p_lcb = l2cu_find_lcb_by_bd_addr(bd_addr, BT_TRANSPORT_LE);
if (!p_lcb) {
log::error("Security check for unknown device");
p_callback(bd_addr, BT_TRANSPORT_LE, p_ref_data, tBTM_STATUS::BTM_UNKNOWN_ADDR);
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES;
}
tL2CAP_SEC_DATA* p_buf = (tL2CAP_SEC_DATA*)osi_malloc((uint16_t)sizeof(tL2CAP_SEC_DATA));
if (!p_buf) {
log::error("No resources for connection");
p_callback(bd_addr, BT_TRANSPORT_LE, p_ref_data, tBTM_STATUS::BTM_NO_RESOURCES);
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_RESOURCES;
}
p_buf->psm = psm;
p_buf->is_originator = is_originator;
p_buf->p_callback = p_callback;
p_buf->p_ref_data = p_ref_data;
fixed_queue_enqueue(p_lcb->le_sec_pending_q, p_buf);
tBTM_STATUS result =
btm_ble_start_sec_check(bd_addr, psm, is_originator, &l2cble_sec_comp, p_ref_data);
switch (result) {
case tBTM_STATUS::BTM_SUCCESS:
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_CONN_OK;
case tBTM_STATUS::BTM_ILLEGAL_VALUE:
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_NO_PSM;
case tBTM_STATUS::BTM_NOT_AUTHENTICATED:
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_AUTHENTICATION;
case tBTM_STATUS::BTM_NOT_ENCRYPTED:
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_ENCRYP;
case tBTM_STATUS::BTM_NOT_AUTHORIZED:
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_AUTHORIZATION;
case tBTM_STATUS::BTM_INSUFFICIENT_ENCRYPT_KEY_SIZE:
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INSUFFICIENT_ENCRYP_KEY_SIZE;
default:
log::error("unexpected return value: {}", btm_status_text(result));
return tL2CAP_LE_RESULT_CODE::L2CAP_LE_RESULT_INVALID_PARAMETERS;
}
}
/* This function is called to adjust the connection intervals based on various
* constraints. For example, when there is at least one Hearing Aid device
* bonded, the minimum interval is raised. On return, min_interval and
* max_interval are updated. */
void L2CA_AdjustConnectionIntervals(uint16_t* min_interval, uint16_t* max_interval,
uint16_t floor_interval) {
// Allow for customization by systemprops for mainline
uint16_t phone_min_interval = floor_interval;
#ifdef __ANDROID__
phone_min_interval =
android::sysprop::BluetoothProperties::getGapLeConnMinLimit().value_or(floor_interval);
#else
phone_min_interval = (uint16_t)osi_property_get_int32("bluetooth.core.gap.le.conn.min.limit",
(int32_t)floor_interval);
#endif
if (GetInterfaceToProfiles()->profileSpecific_HACK->GetHearingAidDeviceCount()) {
// When there are bonded Hearing Aid devices, we will constrained this
// minimum interval.
phone_min_interval = BTM_BLE_CONN_INT_MIN_HEARINGAID;
log::verbose("Have Hearing Aids. Min. interval is set to {}", phone_min_interval);
}
if (!com::android::bluetooth::flags::l2cap_le_do_not_adjust_min_interval() &&
*min_interval < phone_min_interval) {
log::verbose("requested min_interval={} too small. Set to {}", *min_interval,
phone_min_interval);
*min_interval = phone_min_interval;
}
// While this could result in connection parameters that fall
// outside fo the range requested, this will allow the connection
// to remain established.
// In other words, this is a workaround for certain peripherals.
if (*max_interval < phone_min_interval) {
log::verbose("requested max_interval={} too small. Set to {}", *max_interval,
phone_min_interval);
*max_interval = phone_min_interval;
}
}
void L2CA_SetEcosystemBaseInterval(uint32_t base_interval) {
if (!com::android::bluetooth::flags::le_audio_base_ecosystem_interval()) {
return;
}
log::info("base_interval: {}ms", base_interval);
bluetooth::shim::GetHciLayer()->EnqueueCommand(
bluetooth::hci::SetEcosystemBaseIntervalBuilder::Create(base_interval),
get_main_thread()->BindOnce([](bluetooth::hci::CommandCompleteView view) {
ASSERT(view.IsValid());
auto status_view = bluetooth::hci::SetEcosystemBaseIntervalCompleteView::Create(
bluetooth::hci::SetEcosystemBaseIntervalCompleteView::Create(view));
ASSERT(status_view.IsValid());
if (status_view.GetStatus() != bluetooth::hci::ErrorCode::SUCCESS) {
log::warn("Set Ecosystem Base Interval status {}",
ErrorCodeText(status_view.GetStatus()));
return;
}
}));
if (com::android::bluetooth::flags::l2cap_update_existing_conn_interval_with_base_interval() &&
base_interval != 0) {
tL2C_LCB* p_lcb = &l2cb.lcb_pool[0];
for (int i = 0; i < MAX_L2CAP_LINKS; i++, p_lcb++) {
if ((p_lcb->in_use) && p_lcb->transport == BT_TRANSPORT_LE) {
bool ret = L2CA_UpdateBleConnParams(p_lcb->remote_bd_addr, p_lcb->min_interval,
p_lcb->max_interval, p_lcb->latency, p_lcb->timeout,
p_lcb->min_ce_len, p_lcb->max_ce_len);
if (!ret) {
log::warn("Unable to update BLE connection parameters peer:{}", p_lcb->remote_bd_addr);
}
}
}
}
}