/*
*
* BlueZ - Bluetooth protocol stack for Linux
*
* Copyright (C) 2010 Nokia Corporation
* Copyright (C) 2010 Marcel Holtmann <marcel@holtmann.org>
*
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
*
*/
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <errno.h>
#include <unistd.h>
#include <sys/socket.h>
#include <sys/ioctl.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <sys/wait.h>
#include <fcntl.h>
#include <bluetooth/bluetooth.h>
#include <bluetooth/rfcomm.h>
#include <bluetooth/sdp.h>
#include <bluetooth/sdp_lib.h>
#include <glib.h>
#include <gdbus.h>
#include "plugin.h"
#include "sdpd.h"
#include "btio.h"
#include "adapter.h"
#include "log.h"
/* FIXME: This location should be build-time configurable */
#define PNATD "/usr/bin/phonet-at"
#define DUN_CHANNEL 1
#define DUN_UUID "00001103-0000-1000-8000-00805F9B34FB"
#define TTY_TIMEOUT 100
#define TTY_TRIES 10
struct dun_client {
bdaddr_t bda;
GIOChannel *io; /* Client socket */
guint io_watch; /* Client IO watch id */
guint tty_timer;
int tty_tries;
gboolean tty_open;
int tty_id;
char tty_name[PATH_MAX];
GPid pnatd_pid;
};
struct dun_server {
bdaddr_t bda; /* Local adapter address */
uint32_t record_handle; /* Local SDP record handle */
GIOChannel *server; /* Server socket */
int rfcomm_ctl;
struct dun_client client;
};
static GSList *servers = NULL;
static void disconnect(struct dun_server *server)
{
struct dun_client *client = &server->client;
if (!client->io)
return;
if (client->io_watch > 0) {
g_source_remove(client->io_watch);
client->io_watch = 0;
}
g_io_channel_shutdown(client->io, TRUE, NULL);
g_io_channel_unref(client->io);
client->io = NULL;
if (client->pnatd_pid > 0) {
kill(client->pnatd_pid, SIGTERM);
client->pnatd_pid = 0;
}
if (client->tty_timer > 0) {
g_source_remove(client->tty_timer);
client->tty_timer = 0;
}
if (client->tty_id >= 0) {
struct rfcomm_dev_req req;
memset(&req, 0, sizeof(req));
req.dev_id = client->tty_id;
req.flags = (1 << RFCOMM_HANGUP_NOW);
ioctl(server->rfcomm_ctl, RFCOMMRELEASEDEV, &req);
client->tty_name[0] = '\0';
client->tty_open = FALSE;
client->tty_id = -1;
}
}
static gboolean client_event(GIOChannel *chan,
GIOCondition cond, gpointer data)
{
struct dun_server *server = data;
struct dun_client *client = &server->client;
char addr[18];
ba2str(&client->bda, addr);
DBG("Disconnected DUN from %s (%s)", addr, client->tty_name);
client->io_watch = 0;
disconnect(server);
return FALSE;
}
static void pnatd_exit(GPid pid, gint status, gpointer user_data)
{
struct dun_server *server = user_data;
struct dun_client *client = &server->client;
if (WIFEXITED(status))
DBG("pnatd (%d) exited with status %d", pid,
WEXITSTATUS(status));
else
DBG("pnatd (%d) was killed by signal %d", pid,
WTERMSIG(status));
g_spawn_close_pid(pid);
if (pid != client->pnatd_pid)
return;
/* So disconnect() doesn't send SIGTERM to a non-existing process */
client->pnatd_pid = 0;
disconnect(server);
}
static gboolean start_pnatd(struct dun_server *server)
{
struct dun_client *client = &server->client;
GSpawnFlags flags = G_SPAWN_DO_NOT_REAP_CHILD | G_SPAWN_SEARCH_PATH;
char *argv[] = { PNATD, client->tty_name, NULL };
GError *err = NULL;
GPid pid;
g_spawn_async(NULL, argv, NULL, flags, NULL, NULL, &pid, &err);
if (err != NULL) {
error("Unable to spawn pnatd: %s", err->message);
g_error_free(err);
return FALSE;
}
DBG("pnatd started for %s with pid %d", client->tty_name, pid);
client->pnatd_pid = pid;
/* We do not store the GSource id since g_remove_source doesn't
* make sense for a child watch. If the callback gets removed
* waitpid won't be called and the child remains as a zombie)
*/
g_child_watch_add(pid, pnatd_exit, server);
return TRUE;
}
static gboolean tty_try_open(gpointer user_data)
{
struct dun_server *server = user_data;
struct dun_client *client = &server->client;
int tty_fd;
tty_fd = open(client->tty_name, O_RDONLY | O_NOCTTY);
if (tty_fd < 0) {
if (errno == EACCES)
goto disconnect;
client->tty_tries--;
if (client->tty_tries <= 0)
goto disconnect;
return TRUE;
}
DBG("%s created for DUN", client->tty_name);
client->tty_open = TRUE;
client->tty_timer = 0;
g_io_channel_unref(client->io);
g_source_remove(client->io_watch);
client->io = g_io_channel_unix_new(tty_fd);
client->io_watch = g_io_add_watch(client->io,
G_IO_HUP | G_IO_ERR | G_IO_NVAL,
client_event, server);
if (!start_pnatd(server))
goto disconnect;
return FALSE;
disconnect:
client->tty_timer = 0;
disconnect(server);
return FALSE;
}
static gboolean create_tty(struct dun_server *server)
{
struct dun_client *client = &server->client;
struct rfcomm_dev_req req;
int sk = g_io_channel_unix_get_fd(client->io);
memset(&req, 0, sizeof(req));
req.dev_id = -1;
req.flags = (1 << RFCOMM_REUSE_DLC) | (1 << RFCOMM_RELEASE_ONHUP);
bacpy(&req.src, &server->bda);
bacpy(&req.dst, &client->bda);
bt_io_get(client->io, BT_IO_RFCOMM, NULL,
BT_IO_OPT_DEST_CHANNEL, &req.channel,
BT_IO_OPT_INVALID);
client->tty_id = ioctl(sk, RFCOMMCREATEDEV, &req);
if (client->tty_id < 0) {
error("Can't create RFCOMM TTY: %s", strerror(errno));
return FALSE;
}
snprintf(client->tty_name, PATH_MAX - 1, "/dev/rfcomm%d",
client->tty_id);
client->tty_tries = TTY_TRIES;
tty_try_open(server);
if (!client->tty_open && client->tty_tries > 0)
client->tty_timer = g_timeout_add(TTY_TIMEOUT,
tty_try_open, server);
return TRUE;
}
static void connect_cb(GIOChannel *io, GError *err, gpointer user_data)
{
struct dun_server *server = user_data;
if (err) {
error("Accepting DUN connection failed: %s", err->message);
disconnect(server);
return;
}
if (!create_tty(server)) {
error("Device creation failed");
disconnect(server);
}
}
static void auth_cb(DBusError *derr, void *user_data)
{
struct dun_server *server = user_data;
struct dun_client *client = &server->client;
GError *err = NULL;
if (derr && dbus_error_is_set(derr)) {
error("DUN access denied: %s", derr->message);
goto drop;
}
if (!bt_io_accept(client->io, connect_cb, server, NULL, &err)) {
error("bt_io_accept: %s", err->message);
g_error_free(err);
goto drop;
}
return;
drop:
disconnect(server);
}
static gboolean auth_watch(GIOChannel *chan, GIOCondition cond, gpointer data)
{
struct dun_server *server = data;
struct dun_client *client = &server->client;
error("DUN client disconnected while waiting for authorization");
btd_cancel_authorization(&server->bda, &client->bda);
disconnect(server);
return FALSE;
}
static void confirm_cb(GIOChannel *io, gpointer user_data)
{
struct dun_server *server = user_data;
struct dun_client *client = &server->client;
GError *err = NULL;
if (client->io) {
error("Rejecting DUN connection since one already exists");
return;
}
bt_io_get(io, BT_IO_RFCOMM, &err,
BT_IO_OPT_DEST_BDADDR, &client->bda,
BT_IO_OPT_INVALID);
if (err != NULL) {
error("Unable to get DUN source and dest address: %s",
err->message);
g_error_free(err);
return;
}
if (btd_request_authorization(&server->bda, &client->bda, DUN_UUID,
auth_cb, user_data) < 0) {
error("Requesting DUN authorization failed");
return;
}
client->io_watch = g_io_add_watch(io, G_IO_ERR | G_IO_HUP | G_IO_NVAL,
(GIOFunc) auth_watch, server);
client->io = g_io_channel_ref(io);
}
static sdp_record_t *dun_record(uint8_t ch)
{
sdp_list_t *svclass_id, *pfseq, *apseq, *root, *aproto;
uuid_t root_uuid, dun, gn, l2cap, rfcomm;
sdp_profile_desc_t profile;
sdp_list_t *proto[2];
sdp_record_t *record;
sdp_data_t *channel;
record = sdp_record_alloc();
if (!record)
return NULL;
sdp_uuid16_create(&root_uuid, PUBLIC_BROWSE_GROUP);
root = sdp_list_append(NULL, &root_uuid);
sdp_set_browse_groups(record, root);
sdp_uuid16_create(&dun, DIALUP_NET_SVCLASS_ID);
svclass_id = sdp_list_append(NULL, &dun);
sdp_uuid16_create(&gn, GENERIC_NETWORKING_SVCLASS_ID);
svclass_id = sdp_list_append(svclass_id, &gn);
sdp_set_service_classes(record, svclass_id);
sdp_uuid16_create(&profile.uuid, DIALUP_NET_PROFILE_ID);
profile.version = 0x0100;
pfseq = sdp_list_append(NULL, &profile);
sdp_set_profile_descs(record, pfseq);
sdp_uuid16_create(&l2cap, L2CAP_UUID);
proto[0] = sdp_list_append(NULL, &l2cap);
apseq = sdp_list_append(NULL, proto[0]);
sdp_uuid16_create(&rfcomm, RFCOMM_UUID);
proto[1] = sdp_list_append(NULL, &rfcomm);
channel = sdp_data_alloc(SDP_UINT8, &ch);
proto[1] = sdp_list_append(proto[1], channel);
apseq = sdp_list_append(apseq, proto[1]);
aproto = sdp_list_append(0, apseq);
sdp_set_access_protos(record, aproto);
sdp_set_info_attr(record, "Dial-Up Networking", 0, 0);
sdp_data_free(channel);
sdp_list_free(root, NULL);
sdp_list_free(svclass_id, NULL);
sdp_list_free(proto[0], NULL);
sdp_list_free(proto[1], NULL);
sdp_list_free(pfseq, NULL);
sdp_list_free(apseq, NULL);
sdp_list_free(aproto, NULL);
return record;
}
static gint server_cmp(gconstpointer a, gconstpointer b)
{
const struct dun_server *server = a;
const bdaddr_t *src = b;
return bacmp(src, &server->bda);
}
static int pnat_probe(struct btd_adapter *adapter)
{
struct dun_server *server;
GIOChannel *io;
GError *err = NULL;
sdp_record_t *record;
bdaddr_t src;
adapter_get_address(adapter, &src);
server = g_new0(struct dun_server, 1);
io = bt_io_listen(BT_IO_RFCOMM, NULL, confirm_cb, server, NULL, &err,
BT_IO_OPT_SOURCE_BDADDR, &src,
BT_IO_OPT_CHANNEL, DUN_CHANNEL,
BT_IO_OPT_INVALID);
if (err != NULL) {
error("Failed to start DUN server: %s", err->message);
g_error_free(err);
goto fail;
}
record = dun_record(DUN_CHANNEL);
if (!record) {
error("Unable to allocate new service record");
goto fail;
}
if (add_record_to_server(&src, record) < 0) {
error("Unable to register DUN service record");
goto fail;
}
server->rfcomm_ctl = socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_RFCOMM);
if (server->rfcomm_ctl < 0) {
error("Unable to create RFCOMM control socket: %s (%d)",
strerror(errno), errno);
goto fail;
}
server->server = io;
server->record_handle = record->handle;
bacpy(&server->bda, &src);
servers = g_slist_append(servers, server);
return 0;
fail:
if (io != NULL)
g_io_channel_unref(io);
g_free(server);
return -EIO;
}
static void pnat_remove(struct btd_adapter *adapter)
{
struct dun_server *server;
GSList *match;
bdaddr_t src;
adapter_get_address(adapter, &src);
match = g_slist_find_custom(servers, &src, server_cmp);
if (match == NULL)
return;
server = match->data;
servers = g_slist_delete_link(servers, match);
disconnect(server);
remove_record_from_server(server->record_handle);
close(server->rfcomm_ctl);
g_io_channel_shutdown(server->server, TRUE, NULL);
g_io_channel_unref(server->server);
g_free(server);
}
static struct btd_adapter_driver pnat_server = {
.name = "pnat-server",
.probe = pnat_probe,
.remove = pnat_remove,
};
static int pnat_init(void)
{
DBG("Setup Phonet AT (DUN) plugin");
return btd_register_adapter_driver(&pnat_server);
}
static void pnat_exit(void)
{
DBG("Cleanup Phonet AT (DUN) plugin");
btd_unregister_adapter_driver(&pnat_server);
}
BLUETOOTH_PLUGIN_DEFINE(pnat, VERSION,
BLUETOOTH_PLUGIN_PRIORITY_DEFAULT,
pnat_init, pnat_exit)