1746ccb7eSMatthias Ringwald /* 2746ccb7eSMatthias Ringwald * Copyright (C) 2014 BlueKitchen GmbH 3746ccb7eSMatthias Ringwald * 4746ccb7eSMatthias Ringwald * Redistribution and use in source and binary forms, with or without 5746ccb7eSMatthias Ringwald * modification, are permitted provided that the following conditions 6746ccb7eSMatthias Ringwald * are met: 7746ccb7eSMatthias Ringwald * 8746ccb7eSMatthias Ringwald * 1. Redistributions of source code must retain the above copyright 9746ccb7eSMatthias Ringwald * notice, this list of conditions and the following disclaimer. 10746ccb7eSMatthias Ringwald * 2. Redistributions in binary form must reproduce the above copyright 11746ccb7eSMatthias Ringwald * notice, this list of conditions and the following disclaimer in the 12746ccb7eSMatthias Ringwald * documentation and/or other materials provided with the distribution. 13746ccb7eSMatthias Ringwald * 3. Neither the name of the copyright holders nor the names of 14746ccb7eSMatthias Ringwald * contributors may be used to endorse or promote products derived 15746ccb7eSMatthias Ringwald * from this software without specific prior written permission. 16746ccb7eSMatthias Ringwald * 4. Any redistribution, use, or modification is done solely for 17746ccb7eSMatthias Ringwald * personal benefit and not for any commercial purpose or for 18746ccb7eSMatthias Ringwald * monetary gain. 19746ccb7eSMatthias Ringwald * 20746ccb7eSMatthias Ringwald * THIS SOFTWARE IS PROVIDED BY BLUEKITCHEN GMBH AND CONTRIBUTORS 21746ccb7eSMatthias Ringwald * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 22746ccb7eSMatthias Ringwald * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS 23746ccb7eSMatthias Ringwald * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL MATTHIAS 24746ccb7eSMatthias Ringwald * RINGWALD OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 25746ccb7eSMatthias Ringwald * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 26746ccb7eSMatthias Ringwald * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS 27746ccb7eSMatthias Ringwald * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 28746ccb7eSMatthias Ringwald * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 29746ccb7eSMatthias Ringwald * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF 30746ccb7eSMatthias Ringwald * THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31746ccb7eSMatthias Ringwald * SUCH DAMAGE. 32746ccb7eSMatthias Ringwald * 33746ccb7eSMatthias Ringwald * Please inquire about commercial licensing options at 34746ccb7eSMatthias Ringwald * [email protected] 35746ccb7eSMatthias Ringwald * 36746ccb7eSMatthias Ringwald */ 37746ccb7eSMatthias Ringwald 38ab2c6ae4SMatthias Ringwald #define __BTSTACK_FILE__ "sdp_server.c" 39ab2c6ae4SMatthias Ringwald 40746ccb7eSMatthias Ringwald /* 41746ccb7eSMatthias Ringwald * Implementation of the Service Discovery Protocol Server 42746ccb7eSMatthias Ringwald */ 43746ccb7eSMatthias Ringwald 44746ccb7eSMatthias Ringwald #include <stdio.h> 45746ccb7eSMatthias Ringwald #include <string.h> 46746ccb7eSMatthias Ringwald 4703751aa7SMatthias Ringwald #include "bluetooth.h" 48235946f1SMatthias Ringwald #include "bluetooth_sdp.h" 49746ccb7eSMatthias Ringwald #include "btstack_debug.h" 500e2df43fSMatthias Ringwald #include "btstack_event.h" 5159c6af15SMatthias Ringwald #include "btstack_memory.h" 5259c6af15SMatthias Ringwald #include "classic/core.h" 53746ccb7eSMatthias Ringwald #include "classic/sdp_server.h" 54746ccb7eSMatthias Ringwald #include "classic/sdp_util.h" 5559c6af15SMatthias Ringwald #include "hci_dump.h" 5603751aa7SMatthias Ringwald #include "hci.h" 5759c6af15SMatthias Ringwald #include "l2cap.h" 58746ccb7eSMatthias Ringwald 59*7616f654SMatthias Ringwald // max number of incoming l2cap connections that can be queued instead of getting rejected 60*7616f654SMatthias Ringwald #ifndef SDP_WAITING_LIST_MAX_COUNT 61*7616f654SMatthias Ringwald #define SDP_WAITING_LIST_MAX_COUNT 8 62*7616f654SMatthias Ringwald #endif 63*7616f654SMatthias Ringwald 64746ccb7eSMatthias Ringwald // max reserved ServiceRecordHandle 65746ccb7eSMatthias Ringwald #define maxReservedServiceRecordHandle 0xffff 66746ccb7eSMatthias Ringwald 67746ccb7eSMatthias Ringwald // max SDP response matches L2CAP PDU -- allow to use smaller buffer 68746ccb7eSMatthias Ringwald #ifndef SDP_RESPONSE_BUFFER_SIZE 6903751aa7SMatthias Ringwald #define SDP_RESPONSE_BUFFER_SIZE (HCI_ACL_PAYLOAD_SIZE-L2CAP_HEADER_SIZE) 70746ccb7eSMatthias Ringwald #endif 71746ccb7eSMatthias Ringwald 72746ccb7eSMatthias Ringwald static void sdp_packet_handler(uint8_t packet_type, uint16_t channel, uint8_t *packet, uint16_t size); 73746ccb7eSMatthias Ringwald 74746ccb7eSMatthias Ringwald // registered service records 75746ccb7eSMatthias Ringwald static btstack_linked_list_t sdp_service_records = NULL; 76746ccb7eSMatthias Ringwald 77746ccb7eSMatthias Ringwald // our handles start after the reserved range 78746ccb7eSMatthias Ringwald static uint32_t sdp_next_service_record_handle = ((uint32_t) maxReservedServiceRecordHandle) + 2; 79746ccb7eSMatthias Ringwald 80746ccb7eSMatthias Ringwald static uint8_t sdp_response_buffer[SDP_RESPONSE_BUFFER_SIZE]; 81746ccb7eSMatthias Ringwald 82746ccb7eSMatthias Ringwald static uint16_t l2cap_cid = 0; 83746ccb7eSMatthias Ringwald static uint16_t sdp_response_size = 0; 84*7616f654SMatthias Ringwald static uint16_t l2cap_waiting_list_cids[SDP_WAITING_LIST_MAX_COUNT]; 85*7616f654SMatthias Ringwald static int l2cap_waiting_list_count; 86746ccb7eSMatthias Ringwald 87746ccb7eSMatthias Ringwald void sdp_init(void){ 88746ccb7eSMatthias Ringwald // register with l2cap psm sevices - max MTU 89235946f1SMatthias Ringwald l2cap_register_service(sdp_packet_handler, BLUETOOTH_PROTOCOL_SDP, 0xffff, LEVEL_0); 90*7616f654SMatthias Ringwald l2cap_waiting_list_count = 0; 91746ccb7eSMatthias Ringwald } 92746ccb7eSMatthias Ringwald 93746ccb7eSMatthias Ringwald uint32_t sdp_get_service_record_handle(const uint8_t * record){ 94746ccb7eSMatthias Ringwald // TODO: make sdp_get_attribute_value_for_attribute_id accept const data to remove cast 95235946f1SMatthias Ringwald uint8_t * serviceRecordHandleAttribute = sdp_get_attribute_value_for_attribute_id((uint8_t *)record, BLUETOOTH_ATTRIBUTE_SERVICE_RECORD_HANDLE); 96746ccb7eSMatthias Ringwald if (!serviceRecordHandleAttribute) return 0; 97746ccb7eSMatthias Ringwald if (de_get_element_type(serviceRecordHandleAttribute) != DE_UINT) return 0; 98746ccb7eSMatthias Ringwald if (de_get_size_type(serviceRecordHandleAttribute) != DE_SIZE_32) return 0; 99c9b8fdd9SMatthias Ringwald return big_endian_read_32(serviceRecordHandleAttribute, 1); 100746ccb7eSMatthias Ringwald } 101746ccb7eSMatthias Ringwald 102746ccb7eSMatthias Ringwald static service_record_item_t * sdp_get_record_item_for_handle(uint32_t handle){ 103746ccb7eSMatthias Ringwald btstack_linked_item_t *it; 104746ccb7eSMatthias Ringwald for (it = (btstack_linked_item_t *) sdp_service_records; it ; it = it->next){ 105746ccb7eSMatthias Ringwald service_record_item_t * item = (service_record_item_t *) it; 106746ccb7eSMatthias Ringwald if (item->service_record_handle == handle){ 107746ccb7eSMatthias Ringwald return item; 108746ccb7eSMatthias Ringwald } 109746ccb7eSMatthias Ringwald } 110746ccb7eSMatthias Ringwald return NULL; 111746ccb7eSMatthias Ringwald } 112746ccb7eSMatthias Ringwald 113746ccb7eSMatthias Ringwald uint8_t * sdp_get_record_for_handle(uint32_t handle){ 114746ccb7eSMatthias Ringwald service_record_item_t * record_item = sdp_get_record_item_for_handle(handle); 115746ccb7eSMatthias Ringwald if (!record_item) return 0; 116746ccb7eSMatthias Ringwald return record_item->service_record; 117746ccb7eSMatthias Ringwald } 118746ccb7eSMatthias Ringwald 119746ccb7eSMatthias Ringwald // get next free, unregistered service record handle 120746ccb7eSMatthias Ringwald uint32_t sdp_create_service_record_handle(void){ 121746ccb7eSMatthias Ringwald uint32_t handle = 0; 122746ccb7eSMatthias Ringwald do { 123746ccb7eSMatthias Ringwald handle = sdp_next_service_record_handle++; 124746ccb7eSMatthias Ringwald if (sdp_get_record_item_for_handle(handle)) handle = 0; 125746ccb7eSMatthias Ringwald } while (handle == 0); 126746ccb7eSMatthias Ringwald return handle; 127746ccb7eSMatthias Ringwald } 128746ccb7eSMatthias Ringwald 129746ccb7eSMatthias Ringwald /** 130746ccb7eSMatthias Ringwald * @brief Register Service Record with database using ServiceRecordHandle stored in record 131746ccb7eSMatthias Ringwald * @pre AttributeIDs are in ascending order 132746ccb7eSMatthias Ringwald * @pre ServiceRecordHandle is first attribute and valid 133746ccb7eSMatthias Ringwald * @param record is not copied! 134746ccb7eSMatthias Ringwald * @result status 135746ccb7eSMatthias Ringwald */ 136746ccb7eSMatthias Ringwald uint8_t sdp_register_service(const uint8_t * record){ 137746ccb7eSMatthias Ringwald 138746ccb7eSMatthias Ringwald // validate service record handle. it must: exist, be in valid range, not have been already used 139746ccb7eSMatthias Ringwald uint32_t record_handle = sdp_get_service_record_handle(record); 140746ccb7eSMatthias Ringwald if (!record_handle) return SDP_HANDLE_INVALID; 141746ccb7eSMatthias Ringwald if (record_handle <= maxReservedServiceRecordHandle) return SDP_HANDLE_INVALID; 142746ccb7eSMatthias Ringwald if (sdp_get_record_item_for_handle(record_handle)) return SDP_HANDLE_ALREADY_REGISTERED; 143746ccb7eSMatthias Ringwald 144746ccb7eSMatthias Ringwald // alloc memory for new service_record_item 145746ccb7eSMatthias Ringwald service_record_item_t * newRecordItem = btstack_memory_service_record_item_get(); 146746ccb7eSMatthias Ringwald if (!newRecordItem) return BTSTACK_MEMORY_ALLOC_FAILED; 147746ccb7eSMatthias Ringwald 148746ccb7eSMatthias Ringwald // set handle and record 149746ccb7eSMatthias Ringwald newRecordItem->service_record_handle = record_handle; 150746ccb7eSMatthias Ringwald newRecordItem->service_record = (uint8_t*) record; 151746ccb7eSMatthias Ringwald 152746ccb7eSMatthias Ringwald // add to linked list 153746ccb7eSMatthias Ringwald btstack_linked_list_add(&sdp_service_records, (btstack_linked_item_t *) newRecordItem); 154746ccb7eSMatthias Ringwald 155746ccb7eSMatthias Ringwald return 0; 156746ccb7eSMatthias Ringwald } 157746ccb7eSMatthias Ringwald 158746ccb7eSMatthias Ringwald // 159746ccb7eSMatthias Ringwald // unregister service record 160746ccb7eSMatthias Ringwald // 161746ccb7eSMatthias Ringwald void sdp_unregister_service(uint32_t service_record_handle){ 162746ccb7eSMatthias Ringwald service_record_item_t * record_item = sdp_get_record_item_for_handle(service_record_handle); 163746ccb7eSMatthias Ringwald if (!record_item) return; 164746ccb7eSMatthias Ringwald btstack_linked_list_remove(&sdp_service_records, (btstack_linked_item_t *) record_item); 165c0a6fc5dSMatthias Ringwald btstack_memory_service_record_item_free(record_item); 166746ccb7eSMatthias Ringwald } 167746ccb7eSMatthias Ringwald 168746ccb7eSMatthias Ringwald // PDU 169746ccb7eSMatthias Ringwald // PDU ID (1), Transaction ID (2), Param Length (2), Param 1, Param 2, .. 170746ccb7eSMatthias Ringwald 171746ccb7eSMatthias Ringwald static int sdp_create_error_response(uint16_t transaction_id, uint16_t error_code){ 172746ccb7eSMatthias Ringwald sdp_response_buffer[0] = SDP_ErrorResponse; 173746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 1, transaction_id); 174746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 3, 2); 175746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 5, error_code); // invalid syntax 176746ccb7eSMatthias Ringwald return 7; 177746ccb7eSMatthias Ringwald } 178746ccb7eSMatthias Ringwald 179746ccb7eSMatthias Ringwald int sdp_handle_service_search_request(uint8_t * packet, uint16_t remote_mtu){ 180746ccb7eSMatthias Ringwald 181746ccb7eSMatthias Ringwald // get request details 182746ccb7eSMatthias Ringwald uint16_t transaction_id = big_endian_read_16(packet, 1); 1834443af49SMatthias Ringwald uint16_t param_len = big_endian_read_16(packet, 3); 184746ccb7eSMatthias Ringwald uint8_t * serviceSearchPattern = &packet[5]; 1854443af49SMatthias Ringwald uint16_t serviceSearchPatternLen = de_get_len_safe(serviceSearchPattern, param_len); 1864443af49SMatthias Ringwald // assert service search pattern is contained 1874443af49SMatthias Ringwald if (!serviceSearchPatternLen) return 0; 1884443af49SMatthias Ringwald param_len -= serviceSearchPatternLen; 1894443af49SMatthias Ringwald // assert max record count is contained 1904443af49SMatthias Ringwald if (param_len < 2) return 0; 191746ccb7eSMatthias Ringwald uint16_t maximumServiceRecordCount = big_endian_read_16(packet, 5 + serviceSearchPatternLen); 1924443af49SMatthias Ringwald param_len -= 2; 1934443af49SMatthias Ringwald // assert continuation state len is contained in param_len 1944443af49SMatthias Ringwald if (param_len < 1) return 0; 195746ccb7eSMatthias Ringwald uint8_t * continuationState = &packet[5+serviceSearchPatternLen+2]; 1964443af49SMatthias Ringwald // assert continuation state is contained in param_len 1974443af49SMatthias Ringwald if (1 + continuationState[0] > param_len) return 0; 198746ccb7eSMatthias Ringwald 1994443af49SMatthias Ringwald // calc maximumServiceRecordCount based on remote MTU 200746ccb7eSMatthias Ringwald uint16_t maxNrServiceRecordsPerResponse = (remote_mtu - (9+3))/4; 201746ccb7eSMatthias Ringwald 202746ccb7eSMatthias Ringwald // continuation state contains index of next service record to examine 203746ccb7eSMatthias Ringwald int continuation = 0; 204746ccb7eSMatthias Ringwald uint16_t continuation_index = 0; 205746ccb7eSMatthias Ringwald if (continuationState[0] == 2){ 206746ccb7eSMatthias Ringwald continuation_index = big_endian_read_16(continuationState, 1); 207746ccb7eSMatthias Ringwald } 208746ccb7eSMatthias Ringwald 209746ccb7eSMatthias Ringwald // get and limit total count 210746ccb7eSMatthias Ringwald btstack_linked_item_t *it; 211746ccb7eSMatthias Ringwald uint16_t total_service_count = 0; 212746ccb7eSMatthias Ringwald for (it = (btstack_linked_item_t *) sdp_service_records; it ; it = it->next){ 213746ccb7eSMatthias Ringwald service_record_item_t * item = (service_record_item_t *) it; 214746ccb7eSMatthias Ringwald if (!sdp_record_matches_service_search_pattern(item->service_record, serviceSearchPattern)) continue; 215746ccb7eSMatthias Ringwald total_service_count++; 216746ccb7eSMatthias Ringwald } 217746ccb7eSMatthias Ringwald if (total_service_count > maximumServiceRecordCount){ 218746ccb7eSMatthias Ringwald total_service_count = maximumServiceRecordCount; 219746ccb7eSMatthias Ringwald } 220746ccb7eSMatthias Ringwald 221746ccb7eSMatthias Ringwald // ServiceRecordHandleList at 9 222746ccb7eSMatthias Ringwald uint16_t pos = 9; 223746ccb7eSMatthias Ringwald uint16_t current_service_count = 0; 224746ccb7eSMatthias Ringwald uint16_t current_service_index = 0; 225746ccb7eSMatthias Ringwald uint16_t matching_service_count = 0; 226746ccb7eSMatthias Ringwald for (it = (btstack_linked_item_t *) sdp_service_records; it ; it = it->next, ++current_service_index){ 227746ccb7eSMatthias Ringwald service_record_item_t * item = (service_record_item_t *) it; 228746ccb7eSMatthias Ringwald 229746ccb7eSMatthias Ringwald if (!sdp_record_matches_service_search_pattern(item->service_record, serviceSearchPattern)) continue; 230746ccb7eSMatthias Ringwald matching_service_count++; 231746ccb7eSMatthias Ringwald 232746ccb7eSMatthias Ringwald if (current_service_index < continuation_index) continue; 233746ccb7eSMatthias Ringwald 234746ccb7eSMatthias Ringwald big_endian_store_32(sdp_response_buffer, pos, item->service_record_handle); 235746ccb7eSMatthias Ringwald pos += 4; 236746ccb7eSMatthias Ringwald current_service_count++; 237746ccb7eSMatthias Ringwald 238746ccb7eSMatthias Ringwald if (matching_service_count >= total_service_count) break; 239746ccb7eSMatthias Ringwald 240746ccb7eSMatthias Ringwald if (current_service_count >= maxNrServiceRecordsPerResponse){ 241746ccb7eSMatthias Ringwald continuation = 1; 242746ccb7eSMatthias Ringwald continuation_index = current_service_index + 1; 243746ccb7eSMatthias Ringwald break; 244746ccb7eSMatthias Ringwald } 245746ccb7eSMatthias Ringwald } 246746ccb7eSMatthias Ringwald 247746ccb7eSMatthias Ringwald // Store continuation state 248746ccb7eSMatthias Ringwald if (continuation) { 249746ccb7eSMatthias Ringwald sdp_response_buffer[pos++] = 2; 250746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, pos, continuation_index); 251746ccb7eSMatthias Ringwald pos += 2; 252746ccb7eSMatthias Ringwald } else { 253746ccb7eSMatthias Ringwald sdp_response_buffer[pos++] = 0; 254746ccb7eSMatthias Ringwald } 255746ccb7eSMatthias Ringwald 256746ccb7eSMatthias Ringwald // header 257746ccb7eSMatthias Ringwald sdp_response_buffer[0] = SDP_ServiceSearchResponse; 258746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 1, transaction_id); 259746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 3, pos - 5); // size of variable payload 260746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 5, total_service_count); 261746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 7, current_service_count); 262746ccb7eSMatthias Ringwald 263746ccb7eSMatthias Ringwald return pos; 264746ccb7eSMatthias Ringwald } 265746ccb7eSMatthias Ringwald 266746ccb7eSMatthias Ringwald int sdp_handle_service_attribute_request(uint8_t * packet, uint16_t remote_mtu){ 267746ccb7eSMatthias Ringwald 268746ccb7eSMatthias Ringwald // get request details 269746ccb7eSMatthias Ringwald uint16_t transaction_id = big_endian_read_16(packet, 1); 2704443af49SMatthias Ringwald uint16_t param_len = big_endian_read_16(packet, 3); 2714443af49SMatthias Ringwald // assert serviceRecordHandle and maximumAttributeByteCount are in param_len 2724443af49SMatthias Ringwald if (param_len < 6) return 0; 273c9b8fdd9SMatthias Ringwald uint32_t serviceRecordHandle = big_endian_read_32(packet, 5); 274746ccb7eSMatthias Ringwald uint16_t maximumAttributeByteCount = big_endian_read_16(packet, 9); 2754443af49SMatthias Ringwald param_len -= 6; 276746ccb7eSMatthias Ringwald uint8_t * attributeIDList = &packet[11]; 2774443af49SMatthias Ringwald uint16_t attributeIDListLen = de_get_len_safe(attributeIDList, param_len); 2784443af49SMatthias Ringwald // assert attributeIDList are in param_len 2794443af49SMatthias Ringwald if (!attributeIDListLen) return 0; 2804443af49SMatthias Ringwald param_len -= attributeIDListLen; 2814443af49SMatthias Ringwald // assert continuation state len is contained in param_len 2824443af49SMatthias Ringwald if (param_len < 1) return 0; 283746ccb7eSMatthias Ringwald uint8_t * continuationState = &packet[11+attributeIDListLen]; 2844443af49SMatthias Ringwald // assert continuation state is contained in param_len 2854443af49SMatthias Ringwald if (1 + continuationState[0] > param_len) return 0; 286746ccb7eSMatthias Ringwald 287746ccb7eSMatthias Ringwald // calc maximumAttributeByteCount based on remote MTU 288746ccb7eSMatthias Ringwald uint16_t maximumAttributeByteCount2 = remote_mtu - (7+3); 289746ccb7eSMatthias Ringwald if (maximumAttributeByteCount2 < maximumAttributeByteCount) { 290746ccb7eSMatthias Ringwald maximumAttributeByteCount = maximumAttributeByteCount2; 291746ccb7eSMatthias Ringwald } 292746ccb7eSMatthias Ringwald 293746ccb7eSMatthias Ringwald // continuation state contains the offset into the complete response 294746ccb7eSMatthias Ringwald uint16_t continuation_offset = 0; 295746ccb7eSMatthias Ringwald if (continuationState[0] == 2){ 296746ccb7eSMatthias Ringwald continuation_offset = big_endian_read_16(continuationState, 1); 297746ccb7eSMatthias Ringwald } 298746ccb7eSMatthias Ringwald 299746ccb7eSMatthias Ringwald // get service record 300746ccb7eSMatthias Ringwald service_record_item_t * item = sdp_get_record_item_for_handle(serviceRecordHandle); 301746ccb7eSMatthias Ringwald if (!item){ 302746ccb7eSMatthias Ringwald // service record handle doesn't exist 303746ccb7eSMatthias Ringwald return sdp_create_error_response(transaction_id, 0x0002); /// invalid Service Record Handle 304746ccb7eSMatthias Ringwald } 305746ccb7eSMatthias Ringwald 306746ccb7eSMatthias Ringwald 307746ccb7eSMatthias Ringwald // AttributeList - starts at offset 7 308746ccb7eSMatthias Ringwald uint16_t pos = 7; 309746ccb7eSMatthias Ringwald 310746ccb7eSMatthias Ringwald if (continuation_offset == 0){ 311746ccb7eSMatthias Ringwald 312746ccb7eSMatthias Ringwald // get size of this record 313746ccb7eSMatthias Ringwald uint16_t filtered_attributes_size = spd_get_filtered_size(item->service_record, attributeIDList); 314746ccb7eSMatthias Ringwald 315746ccb7eSMatthias Ringwald // store DES 316746ccb7eSMatthias Ringwald de_store_descriptor_with_len(&sdp_response_buffer[pos], DE_DES, DE_SIZE_VAR_16, filtered_attributes_size); 317746ccb7eSMatthias Ringwald maximumAttributeByteCount -= 3; 318746ccb7eSMatthias Ringwald pos += 3; 319746ccb7eSMatthias Ringwald } 320746ccb7eSMatthias Ringwald 321746ccb7eSMatthias Ringwald // copy maximumAttributeByteCount from record 322746ccb7eSMatthias Ringwald uint16_t bytes_used; 323746ccb7eSMatthias Ringwald int complete = sdp_filter_attributes_in_attributeIDList(item->service_record, attributeIDList, continuation_offset, maximumAttributeByteCount, &bytes_used, &sdp_response_buffer[pos]); 324746ccb7eSMatthias Ringwald pos += bytes_used; 325746ccb7eSMatthias Ringwald 326746ccb7eSMatthias Ringwald uint16_t attributeListByteCount = pos - 7; 327746ccb7eSMatthias Ringwald 328746ccb7eSMatthias Ringwald if (complete) { 329746ccb7eSMatthias Ringwald sdp_response_buffer[pos++] = 0; 330746ccb7eSMatthias Ringwald } else { 331746ccb7eSMatthias Ringwald continuation_offset += bytes_used; 332746ccb7eSMatthias Ringwald sdp_response_buffer[pos++] = 2; 333746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, pos, continuation_offset); 334746ccb7eSMatthias Ringwald pos += 2; 335746ccb7eSMatthias Ringwald } 336746ccb7eSMatthias Ringwald 337746ccb7eSMatthias Ringwald // header 338746ccb7eSMatthias Ringwald sdp_response_buffer[0] = SDP_ServiceAttributeResponse; 339746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 1, transaction_id); 340746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 3, pos - 5); // size of variable payload 341746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 5, attributeListByteCount); 342746ccb7eSMatthias Ringwald 343746ccb7eSMatthias Ringwald return pos; 344746ccb7eSMatthias Ringwald } 345746ccb7eSMatthias Ringwald 346746ccb7eSMatthias Ringwald static uint16_t sdp_get_size_for_service_search_attribute_response(uint8_t * serviceSearchPattern, uint8_t * attributeIDList){ 347746ccb7eSMatthias Ringwald uint16_t total_response_size = 0; 348746ccb7eSMatthias Ringwald btstack_linked_item_t *it; 349746ccb7eSMatthias Ringwald for (it = (btstack_linked_item_t *) sdp_service_records; it ; it = it->next){ 350746ccb7eSMatthias Ringwald service_record_item_t * item = (service_record_item_t *) it; 351746ccb7eSMatthias Ringwald 352746ccb7eSMatthias Ringwald if (!sdp_record_matches_service_search_pattern(item->service_record, serviceSearchPattern)) continue; 353746ccb7eSMatthias Ringwald 354746ccb7eSMatthias Ringwald // for all service records that match 355746ccb7eSMatthias Ringwald total_response_size += 3 + spd_get_filtered_size(item->service_record, attributeIDList); 356746ccb7eSMatthias Ringwald } 357746ccb7eSMatthias Ringwald return total_response_size; 358746ccb7eSMatthias Ringwald } 359746ccb7eSMatthias Ringwald 360746ccb7eSMatthias Ringwald int sdp_handle_service_search_attribute_request(uint8_t * packet, uint16_t remote_mtu){ 361746ccb7eSMatthias Ringwald 362746ccb7eSMatthias Ringwald // SDP header before attribute sevice list: 7 363746ccb7eSMatthias Ringwald // Continuation, worst case: 5 364746ccb7eSMatthias Ringwald 365746ccb7eSMatthias Ringwald // get request details 366746ccb7eSMatthias Ringwald uint16_t transaction_id = big_endian_read_16(packet, 1); 3674443af49SMatthias Ringwald uint16_t param_len = big_endian_read_16(packet, 3); 368746ccb7eSMatthias Ringwald uint8_t * serviceSearchPattern = &packet[5]; 3694443af49SMatthias Ringwald uint16_t serviceSearchPatternLen = de_get_len_safe(serviceSearchPattern, param_len); 3704443af49SMatthias Ringwald // assert serviceSearchPattern header is contained in param_len 3714443af49SMatthias Ringwald if (!serviceSearchPatternLen) return 0; 3724443af49SMatthias Ringwald param_len -= serviceSearchPatternLen; 3734443af49SMatthias Ringwald // assert maximumAttributeByteCount contained in param_len 3744443af49SMatthias Ringwald if (param_len < 2) return 0; 375746ccb7eSMatthias Ringwald uint16_t maximumAttributeByteCount = big_endian_read_16(packet, 5 + serviceSearchPatternLen); 3764443af49SMatthias Ringwald param_len -= 2; 377746ccb7eSMatthias Ringwald uint8_t * attributeIDList = &packet[5+serviceSearchPatternLen+2]; 3784443af49SMatthias Ringwald uint16_t attributeIDListLen = de_get_len_safe(attributeIDList, param_len); 3794443af49SMatthias Ringwald // assert attributeIDList is contained in param_len 3804443af49SMatthias Ringwald if (!attributeIDListLen) return 0; 3814443af49SMatthias Ringwald // assert continuation state len is contained in param_len 3824443af49SMatthias Ringwald if (param_len < 1) return 0; 383746ccb7eSMatthias Ringwald uint8_t * continuationState = &packet[5+serviceSearchPatternLen+2+attributeIDListLen]; 3844443af49SMatthias Ringwald // assert continuation state is contained in param_len 3854443af49SMatthias Ringwald if (1 + continuationState[0] > param_len) return 0; 386746ccb7eSMatthias Ringwald 387746ccb7eSMatthias Ringwald // calc maximumAttributeByteCount based on remote MTU, SDP header and reserved Continuation block 388746ccb7eSMatthias Ringwald uint16_t maximumAttributeByteCount2 = remote_mtu - 12; 389746ccb7eSMatthias Ringwald if (maximumAttributeByteCount2 < maximumAttributeByteCount) { 390746ccb7eSMatthias Ringwald maximumAttributeByteCount = maximumAttributeByteCount2; 391746ccb7eSMatthias Ringwald } 392746ccb7eSMatthias Ringwald 393746ccb7eSMatthias Ringwald // continuation state contains: index of next service record to examine 394746ccb7eSMatthias Ringwald // continuation state contains: byte offset into this service record 395746ccb7eSMatthias Ringwald uint16_t continuation_service_index = 0; 396746ccb7eSMatthias Ringwald uint16_t continuation_offset = 0; 397746ccb7eSMatthias Ringwald if (continuationState[0] == 4){ 398746ccb7eSMatthias Ringwald continuation_service_index = big_endian_read_16(continuationState, 1); 399746ccb7eSMatthias Ringwald continuation_offset = big_endian_read_16(continuationState, 3); 400746ccb7eSMatthias Ringwald } 401746ccb7eSMatthias Ringwald 402746ccb7eSMatthias Ringwald // log_info("--> sdp_handle_service_search_attribute_request, cont %u/%u, max %u", continuation_service_index, continuation_offset, maximumAttributeByteCount); 403746ccb7eSMatthias Ringwald 404746ccb7eSMatthias Ringwald // AttributeLists - starts at offset 7 405746ccb7eSMatthias Ringwald uint16_t pos = 7; 406746ccb7eSMatthias Ringwald 407746ccb7eSMatthias Ringwald // add DES with total size for first request 408746ccb7eSMatthias Ringwald if (continuation_service_index == 0 && continuation_offset == 0){ 409746ccb7eSMatthias Ringwald uint16_t total_response_size = sdp_get_size_for_service_search_attribute_response(serviceSearchPattern, attributeIDList); 410746ccb7eSMatthias Ringwald de_store_descriptor_with_len(&sdp_response_buffer[pos], DE_DES, DE_SIZE_VAR_16, total_response_size); 411746ccb7eSMatthias Ringwald // log_info("total response size %u", total_response_size); 412746ccb7eSMatthias Ringwald pos += 3; 413746ccb7eSMatthias Ringwald maximumAttributeByteCount -= 3; 414746ccb7eSMatthias Ringwald } 415746ccb7eSMatthias Ringwald 416746ccb7eSMatthias Ringwald // create attribute list 417746ccb7eSMatthias Ringwald int first_answer = 1; 418746ccb7eSMatthias Ringwald int continuation = 0; 419746ccb7eSMatthias Ringwald uint16_t current_service_index = 0; 420746ccb7eSMatthias Ringwald btstack_linked_item_t *it = (btstack_linked_item_t *) sdp_service_records; 421746ccb7eSMatthias Ringwald for ( ; it ; it = it->next, ++current_service_index){ 422746ccb7eSMatthias Ringwald service_record_item_t * item = (service_record_item_t *) it; 423746ccb7eSMatthias Ringwald 424746ccb7eSMatthias Ringwald if (current_service_index < continuation_service_index ) continue; 425746ccb7eSMatthias Ringwald if (!sdp_record_matches_service_search_pattern(item->service_record, serviceSearchPattern)) continue; 426746ccb7eSMatthias Ringwald 427746ccb7eSMatthias Ringwald if (continuation_offset == 0){ 428746ccb7eSMatthias Ringwald 429746ccb7eSMatthias Ringwald // get size of this record 430746ccb7eSMatthias Ringwald uint16_t filtered_attributes_size = spd_get_filtered_size(item->service_record, attributeIDList); 431746ccb7eSMatthias Ringwald 432746ccb7eSMatthias Ringwald // stop if complete record doesn't fits into response but we already have a partial response 433746ccb7eSMatthias Ringwald if ((filtered_attributes_size + 3 > maximumAttributeByteCount) && !first_answer) { 434746ccb7eSMatthias Ringwald continuation = 1; 435746ccb7eSMatthias Ringwald break; 436746ccb7eSMatthias Ringwald } 437746ccb7eSMatthias Ringwald 438746ccb7eSMatthias Ringwald // store DES 439746ccb7eSMatthias Ringwald de_store_descriptor_with_len(&sdp_response_buffer[pos], DE_DES, DE_SIZE_VAR_16, filtered_attributes_size); 440746ccb7eSMatthias Ringwald pos += 3; 441746ccb7eSMatthias Ringwald maximumAttributeByteCount -= 3; 442746ccb7eSMatthias Ringwald } 443746ccb7eSMatthias Ringwald 444746ccb7eSMatthias Ringwald first_answer = 0; 445746ccb7eSMatthias Ringwald 446746ccb7eSMatthias Ringwald // copy maximumAttributeByteCount from record 447746ccb7eSMatthias Ringwald uint16_t bytes_used; 448746ccb7eSMatthias Ringwald int complete = sdp_filter_attributes_in_attributeIDList(item->service_record, attributeIDList, continuation_offset, maximumAttributeByteCount, &bytes_used, &sdp_response_buffer[pos]); 449746ccb7eSMatthias Ringwald pos += bytes_used; 450746ccb7eSMatthias Ringwald maximumAttributeByteCount -= bytes_used; 451746ccb7eSMatthias Ringwald 452746ccb7eSMatthias Ringwald if (complete) { 453746ccb7eSMatthias Ringwald continuation_offset = 0; 454746ccb7eSMatthias Ringwald continue; 455746ccb7eSMatthias Ringwald } 456746ccb7eSMatthias Ringwald 457746ccb7eSMatthias Ringwald continuation = 1; 458746ccb7eSMatthias Ringwald continuation_offset += bytes_used; 459746ccb7eSMatthias Ringwald break; 460746ccb7eSMatthias Ringwald } 461746ccb7eSMatthias Ringwald 462746ccb7eSMatthias Ringwald uint16_t attributeListsByteCount = pos - 7; 463746ccb7eSMatthias Ringwald 464746ccb7eSMatthias Ringwald // Continuation State 465746ccb7eSMatthias Ringwald if (continuation){ 466746ccb7eSMatthias Ringwald sdp_response_buffer[pos++] = 4; 467746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, pos, (uint16_t) current_service_index); 468746ccb7eSMatthias Ringwald pos += 2; 469746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, pos, continuation_offset); 470746ccb7eSMatthias Ringwald pos += 2; 471746ccb7eSMatthias Ringwald } else { 472746ccb7eSMatthias Ringwald // complete 473746ccb7eSMatthias Ringwald sdp_response_buffer[pos++] = 0; 474746ccb7eSMatthias Ringwald } 475746ccb7eSMatthias Ringwald 476746ccb7eSMatthias Ringwald // create SDP header 477746ccb7eSMatthias Ringwald sdp_response_buffer[0] = SDP_ServiceSearchAttributeResponse; 478746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 1, transaction_id); 479746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 3, pos - 5); // size of variable payload 480746ccb7eSMatthias Ringwald big_endian_store_16(sdp_response_buffer, 5, attributeListsByteCount); 481746ccb7eSMatthias Ringwald 482746ccb7eSMatthias Ringwald return pos; 483746ccb7eSMatthias Ringwald } 484746ccb7eSMatthias Ringwald 485aed68c56SMatthias Ringwald static void sdp_respond(void){ 486746ccb7eSMatthias Ringwald if (!sdp_response_size ) return; 487746ccb7eSMatthias Ringwald if (!l2cap_cid) return; 488746ccb7eSMatthias Ringwald 489746ccb7eSMatthias Ringwald // update state before sending packet (avoid getting called when new l2cap credit gets emitted) 490746ccb7eSMatthias Ringwald uint16_t size = sdp_response_size; 491746ccb7eSMatthias Ringwald sdp_response_size = 0; 492746ccb7eSMatthias Ringwald l2cap_send(l2cap_cid, sdp_response_buffer, size); 493746ccb7eSMatthias Ringwald } 494746ccb7eSMatthias Ringwald 495*7616f654SMatthias Ringwald // @pre space in list 496*7616f654SMatthias Ringwald static void sdp_waiting_list_add(uint16_t cid){ 497*7616f654SMatthias Ringwald l2cap_waiting_list_cids[l2cap_waiting_list_count++] = cid; 498*7616f654SMatthias Ringwald } 499*7616f654SMatthias Ringwald 500*7616f654SMatthias Ringwald // @pre at least one item in list 501*7616f654SMatthias Ringwald static uint16_t sdp_waiting_list_get(void){ 502*7616f654SMatthias Ringwald uint16_t cid = l2cap_waiting_list_cids[0]; 503*7616f654SMatthias Ringwald l2cap_waiting_list_count--; 504*7616f654SMatthias Ringwald if (l2cap_waiting_list_count){ 505*7616f654SMatthias Ringwald memmove(&l2cap_waiting_list_cids[0], &l2cap_waiting_list_cids[1], l2cap_waiting_list_count * sizeof(uint16_t)); 506*7616f654SMatthias Ringwald } 507*7616f654SMatthias Ringwald return cid; 508*7616f654SMatthias Ringwald } 509*7616f654SMatthias Ringwald 510746ccb7eSMatthias Ringwald // we assume that we don't get two requests in a row 511746ccb7eSMatthias Ringwald static void sdp_packet_handler(uint8_t packet_type, uint16_t channel, uint8_t *packet, uint16_t size){ 512746ccb7eSMatthias Ringwald uint16_t transaction_id; 513746ccb7eSMatthias Ringwald SDP_PDU_ID_t pdu_id; 514746ccb7eSMatthias Ringwald uint16_t remote_mtu; 5154443af49SMatthias Ringwald uint16_t param_len; 516746ccb7eSMatthias Ringwald 517746ccb7eSMatthias Ringwald switch (packet_type) { 518746ccb7eSMatthias Ringwald 519746ccb7eSMatthias Ringwald case L2CAP_DATA_PACKET: 520746ccb7eSMatthias Ringwald pdu_id = (SDP_PDU_ID_t) packet[0]; 521746ccb7eSMatthias Ringwald transaction_id = big_endian_read_16(packet, 1); 5224443af49SMatthias Ringwald param_len = big_endian_read_16(packet, 3); 523746ccb7eSMatthias Ringwald remote_mtu = l2cap_get_remote_mtu_for_local_cid(channel); 524746ccb7eSMatthias Ringwald // account for our buffer 525746ccb7eSMatthias Ringwald if (remote_mtu > SDP_RESPONSE_BUFFER_SIZE){ 526746ccb7eSMatthias Ringwald remote_mtu = SDP_RESPONSE_BUFFER_SIZE; 527746ccb7eSMatthias Ringwald } 5284443af49SMatthias Ringwald // validate parm_len against packet size 5294443af49SMatthias Ringwald if (param_len + 5 > size) { 5304443af49SMatthias Ringwald // just clear pdu_id 5314443af49SMatthias Ringwald pdu_id = SDP_ErrorResponse; 5324443af49SMatthias Ringwald } 533746ccb7eSMatthias Ringwald 534746ccb7eSMatthias Ringwald // log_info("SDP Request: type %u, transaction id %u, len %u, mtu %u", pdu_id, transaction_id, param_len, remote_mtu); 535746ccb7eSMatthias Ringwald switch (pdu_id){ 536746ccb7eSMatthias Ringwald 537746ccb7eSMatthias Ringwald case SDP_ServiceSearchRequest: 538746ccb7eSMatthias Ringwald sdp_response_size = sdp_handle_service_search_request(packet, remote_mtu); 539746ccb7eSMatthias Ringwald break; 540746ccb7eSMatthias Ringwald 541746ccb7eSMatthias Ringwald case SDP_ServiceAttributeRequest: 542746ccb7eSMatthias Ringwald sdp_response_size = sdp_handle_service_attribute_request(packet, remote_mtu); 543746ccb7eSMatthias Ringwald break; 544746ccb7eSMatthias Ringwald 545746ccb7eSMatthias Ringwald case SDP_ServiceSearchAttributeRequest: 546746ccb7eSMatthias Ringwald sdp_response_size = sdp_handle_service_search_attribute_request(packet, remote_mtu); 547746ccb7eSMatthias Ringwald break; 548746ccb7eSMatthias Ringwald 549746ccb7eSMatthias Ringwald default: 550746ccb7eSMatthias Ringwald sdp_response_size = sdp_create_error_response(transaction_id, 0x0003); // invalid syntax 551746ccb7eSMatthias Ringwald break; 552746ccb7eSMatthias Ringwald } 553aed68c56SMatthias Ringwald if (!sdp_response_size) break; 554a145b392SMatthias Ringwald l2cap_request_can_send_now_event(l2cap_cid); 555746ccb7eSMatthias Ringwald break; 556746ccb7eSMatthias Ringwald 557746ccb7eSMatthias Ringwald case HCI_EVENT_PACKET: 558746ccb7eSMatthias Ringwald 5590e2df43fSMatthias Ringwald switch (hci_event_packet_get_type(packet)) { 560746ccb7eSMatthias Ringwald 561746ccb7eSMatthias Ringwald case L2CAP_EVENT_INCOMING_CONNECTION: 562746ccb7eSMatthias Ringwald if (l2cap_cid) { 563*7616f654SMatthias Ringwald // try to queue up 564*7616f654SMatthias Ringwald if (l2cap_waiting_list_count < SDP_WAITING_LIST_MAX_COUNT){ 565*7616f654SMatthias Ringwald sdp_waiting_list_add(channel); 566*7616f654SMatthias Ringwald log_info("busy, queing incoming cid 0x%04x, now %u waiting", channel, l2cap_waiting_list_count); 567*7616f654SMatthias Ringwald break; 568*7616f654SMatthias Ringwald } 569*7616f654SMatthias Ringwald 570746ccb7eSMatthias Ringwald // CONNECTION REJECTED DUE TO LIMITED RESOURCES 5717ef6a7bbSMatthias Ringwald l2cap_decline_connection(channel); 572746ccb7eSMatthias Ringwald break; 573746ccb7eSMatthias Ringwald } 574746ccb7eSMatthias Ringwald // accept 575746ccb7eSMatthias Ringwald l2cap_cid = channel; 576746ccb7eSMatthias Ringwald sdp_response_size = 0; 577*7616f654SMatthias Ringwald l2cap_accept_connection(l2cap_cid); 578746ccb7eSMatthias Ringwald break; 579746ccb7eSMatthias Ringwald 580746ccb7eSMatthias Ringwald case L2CAP_EVENT_CHANNEL_OPENED: 581746ccb7eSMatthias Ringwald if (packet[2]) { 582746ccb7eSMatthias Ringwald // open failed -> reset 583746ccb7eSMatthias Ringwald l2cap_cid = 0; 584746ccb7eSMatthias Ringwald } 585746ccb7eSMatthias Ringwald break; 586746ccb7eSMatthias Ringwald 587746ccb7eSMatthias Ringwald case L2CAP_EVENT_CAN_SEND_NOW: 588aed68c56SMatthias Ringwald sdp_respond(); 589746ccb7eSMatthias Ringwald break; 590746ccb7eSMatthias Ringwald 591746ccb7eSMatthias Ringwald case L2CAP_EVENT_CHANNEL_CLOSED: 592746ccb7eSMatthias Ringwald if (channel == l2cap_cid){ 593746ccb7eSMatthias Ringwald // reset 594746ccb7eSMatthias Ringwald l2cap_cid = 0; 595*7616f654SMatthias Ringwald 596*7616f654SMatthias Ringwald // other request queued? 597*7616f654SMatthias Ringwald if (!l2cap_waiting_list_count) break; 598*7616f654SMatthias Ringwald 599*7616f654SMatthias Ringwald // get first item 600*7616f654SMatthias Ringwald l2cap_cid = sdp_waiting_list_get(); 601*7616f654SMatthias Ringwald 602*7616f654SMatthias Ringwald log_info("disconnect, accept queued cid 0x%04x, now %u waiting", l2cap_cid, l2cap_waiting_list_count); 603*7616f654SMatthias Ringwald 604*7616f654SMatthias Ringwald // accept connection 605*7616f654SMatthias Ringwald sdp_response_size = 0; 606*7616f654SMatthias Ringwald l2cap_accept_connection(l2cap_cid); 607746ccb7eSMatthias Ringwald } 608746ccb7eSMatthias Ringwald break; 609746ccb7eSMatthias Ringwald 610746ccb7eSMatthias Ringwald default: 611746ccb7eSMatthias Ringwald // other event 612746ccb7eSMatthias Ringwald break; 613746ccb7eSMatthias Ringwald } 614746ccb7eSMatthias Ringwald break; 615746ccb7eSMatthias Ringwald 616746ccb7eSMatthias Ringwald default: 617746ccb7eSMatthias Ringwald // other packet type 618746ccb7eSMatthias Ringwald break; 619746ccb7eSMatthias Ringwald } 620746ccb7eSMatthias Ringwald } 621746ccb7eSMatthias Ringwald 622