Halaman utama Jelajahi Bantuan
Masuk
fujianhao
/
bluez5_utils-5.62
1
0
Fork 0
Berkas Masalah 0 Tarik Permintaan 0 Wiki
Cabang: master
Ranting Tag
bluez5_utils...
/
profiles
/
sap
/
server.c

server.c 32 KB
Permalink Riwayat Mentahan

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411 
  1. // SPDX-License-Identifier: GPL-2.0-or-later
    2. 

  2. /*
    3. 

  3.  *  BlueZ - Bluetooth protocol stack for Linux
    4. 

  4.  *
    5. 

  5.  *  Copyright (C) 2010 Instituto Nokia de Tecnologia - INdT
    6. 

  6.  *  Copyright (C) 2010 ST-Ericsson SA
    7. 

  7.  *  Copyright (C) 2011 Tieto Poland
    8. 

  8.  *
    9. 

  9.  *  Author: Marek Skowron <marek.skowron@tieto.com> for ST-Ericsson.
    10. 

  10.  *  Author: Waldemar Rymarkiewicz <waldemar.rymarkiewicz@tieto.com>
    11. 

  11.  *          for ST-Ericsson.
    12. 

  12.  *
    13. 

  13.  */
    14. 

  14. 

  15. #ifdef HAVE_CONFIG_H
    16. 

  16. #include <config.h>
    17. 

  17. #endif
    18. 

  18. 

  19. #include <errno.h>
    20. 

  20. #include <glib.h>
    21. 

  21. 

  22. #include "lib/sdp.h"
    23. 

  23. #include "lib/sdp_lib.h"
    24. 

  24. #include "lib/uuid.h"
    25. 

  25. 

  26. #include "gdbus/gdbus.h"
    27. 

  27. 

  28. #include "btio/btio.h"
    29. 

  29. #include "src/adapter.h"
    30. 

  30. #include "src/sdpd.h"
    31. 

  31. #include "src/log.h"
    32. 

  32. #include "src/error.h"
    33. 

  33. #include "src/dbus-common.h"
    34. 

  34. #include "src/shared/timeout.h"
    35. 

  35. #include "src/shared/util.h"
    36. 

  36. 

  37. #include "sap.h"
    38. 

  38. #include "server.h"
    39. 

  39. 

  40. #define SAP_SERVER_INTERFACE	"org.bluez.SimAccess1"
    41. 

  41. #define SAP_SERVER_CHANNEL	8
    42. 

  42. 

  43. #define PADDING4(x) ((4 - ((x) & 0x03)) & 0x03)
    44. 

  44. #define PARAMETER_SIZE(x) (sizeof(struct sap_parameter) + x + PADDING4(x))
    45. 

  45. 

  46. #define SAP_NO_REQ 0xFF
    47. 

  47. #define SAP_DISCONNECTION_TYPE_CLIENT 0xFF
    48. 

  48. 

  49. #define SAP_TIMER_GRACEFUL_DISCONNECT 30
    50. 

  50. #define SAP_TIMER_NO_ACTIVITY 30
    51. 

  51. 

  52. enum {
    53. 

  53. 	SAP_STATE_DISCONNECTED,
    54. 

  54. 	SAP_STATE_CONNECT_IN_PROGRESS,
    55. 

  55. 	SAP_STATE_CONNECT_MODEM_BUSY,
    56. 

  56. 	SAP_STATE_CONNECTED,
    57. 

  57. 	SAP_STATE_GRACEFUL_DISCONNECT,
    58. 

  58. 	SAP_STATE_IMMEDIATE_DISCONNECT,
    59. 

  59. 	SAP_STATE_CLIENT_DISCONNECT
    60. 

  60. };
    61. 

  61. 

  62. struct sap_connection {
    63. 

  63. 	GIOChannel *io;
    64. 

  64. 	uint32_t state;
    65. 

  65. 	uint8_t processing_req;
    66. 

  66. 	unsigned int timer_id;
    67. 

  67. };
    68. 

  68. 

  69. struct sap_server {
    70. 

  70. 	struct btd_adapter *adapter;
    71. 

  71. 	uint32_t record_id;
    72. 

  72. 	GIOChannel *listen_io;
    73. 

  73. 	struct sap_connection *conn;
    74. 

  74. };
    75. 

  75. 

  76. static void start_guard_timer(struct sap_server *server, guint interval);
    77. 

  77. static void stop_guard_timer(struct sap_server *server);
    78. 

  78. static bool guard_timeout(gpointer data);
    79. 

  79. 

  80. static size_t add_result_parameter(uint8_t result,
    81. 

  81. 					struct sap_parameter *param)
    82. 

  82. {
    83. 

  83. 	param->id = SAP_PARAM_ID_RESULT_CODE;
    84. 

  84. 	param->len = htons(SAP_PARAM_ID_RESULT_CODE_LEN);
    85. 

  85. 	*param->val = result;
    86. 

  86. 

  87. 	return PARAMETER_SIZE(SAP_PARAM_ID_RESULT_CODE_LEN);
    88. 

  88. }
    89. 

  89. 

  90. static int is_power_sim_off_req_allowed(uint8_t processing_req)
    91. 

  91. {
    92. 

  92. 	switch (processing_req) {
    93. 

  93. 	case SAP_NO_REQ:
    94. 

  94. 	case SAP_TRANSFER_APDU_REQ:
    95. 

  95. 	case SAP_TRANSFER_ATR_REQ:
    96. 

  96. 	case SAP_POWER_SIM_ON_REQ:
    97. 

  97. 	case SAP_RESET_SIM_REQ:
    98. 

  98. 	case SAP_TRANSFER_CARD_READER_STATUS_REQ:
    99. 

  99. 		return 1;
    100. 

  100. 	default:
    101. 

  101. 		return 0;
    102. 

  102. 	}
    103. 

  103. }
    104. 

  104. 

  105. static int is_reset_sim_req_allowed(uint8_t processing_req)
    106. 

  106. {
    107. 

  107. 	switch (processing_req) {
    108. 

  108. 	case SAP_NO_REQ:
    109. 

  109. 	case SAP_TRANSFER_APDU_REQ:
    110. 

  110. 	case SAP_TRANSFER_ATR_REQ:
    111. 

  111. 	case SAP_TRANSFER_CARD_READER_STATUS_REQ:
    112. 

  112. 		return 1;
    113. 

  113. 	default:
    114. 

  114. 		return 0;
    115. 

  115. 	}
    116. 

  116. }
    117. 

  117. 

  118. static int check_msg(struct sap_message *msg)
    119. 

  119. {
    120. 

  120. 	switch (msg->id) {
    121. 

  121. 	case SAP_CONNECT_REQ:
    122. 

  122. 		if (msg->nparam != 0x01)
    123. 

  123. 			return -EBADMSG;
    124. 

  124. 

  125. 		if (msg->param->id != SAP_PARAM_ID_MAX_MSG_SIZE)
    126. 

  126. 			return -EBADMSG;
    127. 

  127. 

  128. 		if (ntohs(msg->param->len) != SAP_PARAM_ID_MAX_MSG_SIZE_LEN)
    129. 

  129. 			return -EBADMSG;
    130. 

  130. 

  131. 		break;
    132. 

  132. 

  133. 	case SAP_TRANSFER_APDU_REQ:
    134. 

  134. 		if (msg->nparam != 0x01)
    135. 

  135. 			return -EBADMSG;
    136. 

  136. 

  137. 		if (msg->param->id != SAP_PARAM_ID_COMMAND_APDU)
    138. 

  138. 			if (msg->param->id != SAP_PARAM_ID_COMMAND_APDU7816)
    139. 

  139. 				return -EBADMSG;
    140. 

  140. 

  141. 		if (msg->param->len == 0x00)
    142. 

  142. 			return -EBADMSG;
    143. 

  143. 

  144. 		break;
    145. 

  145. 

  146. 	case SAP_SET_TRANSPORT_PROTOCOL_REQ:
    147. 

  147. 		if (msg->nparam != 0x01)
    148. 

  148. 			return -EBADMSG;
    149. 

  149. 

  150. 		if (msg->param->id != SAP_PARAM_ID_TRANSPORT_PROTOCOL)
    151. 

  151. 			return -EBADMSG;
    152. 

  152. 

  153. 		if (ntohs(msg->param->len) != SAP_PARAM_ID_TRANSPORT_PROTO_LEN)
    154. 

  154. 			return -EBADMSG;
    155. 

  155. 

  156. 		if (*msg->param->val != SAP_TRANSPORT_PROTOCOL_T0)
    157. 

  157. 			if (*msg->param->val != SAP_TRANSPORT_PROTOCOL_T1)
    158. 

  158. 				return -EBADMSG;
    159. 

  159. 

  160. 		break;
    161. 

  161. 

  162. 	case SAP_DISCONNECT_REQ:
    163. 

  163. 	case SAP_TRANSFER_ATR_REQ:
    164. 

  164. 	case SAP_POWER_SIM_OFF_REQ:
    165. 

  165. 	case SAP_POWER_SIM_ON_REQ:
    166. 

  166. 	case SAP_RESET_SIM_REQ:
    167. 

  167. 	case SAP_TRANSFER_CARD_READER_STATUS_REQ:
    168. 

  168. 		if (msg->nparam != 0x00)
    169. 

  169. 			return -EBADMSG;
    170. 

  170. 

  171. 		break;
    172. 

  172. 	}
    173. 

  173. 

  174. 	return 0;
    175. 

  175. }
    176. 

  176. 

  177. static sdp_record_t *create_sap_record(uint8_t channel)
    178. 

  178. {
    179. 

  179. 	sdp_list_t *apseq, *aproto, *profiles, *proto[2], *root, *svclass_id;
    180. 

  180. 	uuid_t sap_uuid, gt_uuid, root_uuid, l2cap, rfcomm;
    181. 

  181. 	sdp_profile_desc_t profile;
    182. 

  182. 	sdp_record_t *record;
    183. 

  183. 	sdp_data_t *ch;
    184. 

  184. 

  185. 	record = sdp_record_alloc();
    186. 

  186. 	if (!record)
    187. 

  187. 		return NULL;
    188. 

  188. 

  189. 	sdp_uuid16_create(&root_uuid, PUBLIC_BROWSE_GROUP);
    190. 

  190. 	root = sdp_list_append(NULL, &root_uuid);
    191. 

  191. 	sdp_set_browse_groups(record, root);
    192. 

  192. 	sdp_list_free(root, NULL);
    193. 

  193. 

  194. 	sdp_uuid16_create(&sap_uuid, SAP_SVCLASS_ID);
    195. 

  195. 	svclass_id = sdp_list_append(NULL, &sap_uuid);
    196. 

  196. 	sdp_uuid16_create(&gt_uuid, GENERIC_TELEPHONY_SVCLASS_ID);
    197. 

  197. 	svclass_id = sdp_list_append(svclass_id, &gt_uuid);
    198. 

  198. 

  199. 	sdp_set_service_classes(record, svclass_id);
    200. 

  200. 	sdp_list_free(svclass_id, NULL);
    201. 

  201. 

  202. 	sdp_uuid16_create(&profile.uuid, SAP_PROFILE_ID);
    203. 

  203. 	profile.version = SAP_VERSION;
    204. 

  204. 	profiles = sdp_list_append(NULL, &profile);
    205. 

  205. 	sdp_set_profile_descs(record, profiles);
    206. 

  206. 	sdp_list_free(profiles, NULL);
    207. 

  207. 

  208. 	sdp_uuid16_create(&l2cap, L2CAP_UUID);
    209. 

  209. 	proto[0] = sdp_list_append(NULL, &l2cap);
    210. 

  210. 	apseq = sdp_list_append(NULL, proto[0]);
    211. 

  211. 

  212. 	sdp_uuid16_create(&rfcomm, RFCOMM_UUID);
    213. 

  213. 	proto[1] = sdp_list_append(NULL, &rfcomm);
    214. 

  214. 	ch = sdp_data_alloc(SDP_UINT8, &channel);
    215. 

  215. 	proto[1] = sdp_list_append(proto[1], ch);
    216. 

  216. 	apseq = sdp_list_append(apseq, proto[1]);
    217. 

  217. 

  218. 	aproto = sdp_list_append(NULL, apseq);
    219. 

  219. 	sdp_set_access_protos(record, aproto);
    220. 

  220. 

  221. 	sdp_set_info_attr(record, "SIM Access Server", NULL, NULL);
    222. 

  222. 

  223. 	sdp_data_free(ch);
    224. 

  224. 	sdp_list_free(proto[0], NULL);
    225. 

  225. 	sdp_list_free(proto[1], NULL);
    226. 

  226. 	sdp_list_free(apseq, NULL);
    227. 

  227. 	sdp_list_free(aproto, NULL);
    228. 

  228. 

  229. 	return record;
    230. 

  230. }
    231. 

  231. 

  232. static int send_message(struct sap_connection *conn, void *buf, size_t size)
    233. 

  233. {
    234. 

  234. 	size_t written = 0;
    235. 

  235. 	GError *gerr = NULL;
    236. 

  236. 	GIOStatus gstatus;
    237. 

  237. 

  238. 	SAP_VDBG("conn %p, size %zu", conn, size);
    239. 

  239. 

  240. 	gstatus = g_io_channel_write_chars(conn->io, buf, size, &written,
    241. 

  241. 									&gerr);
    242. 

  242. 	if (gstatus != G_IO_STATUS_NORMAL) {
    243. 

  243. 		if (gerr)
    244. 

  244. 			g_error_free(gerr);
    245. 

  245. 

  246. 		error("write error (0x%02x).", gstatus);
    247. 

  247. 		return -EIO;
    248. 

  248. 	}
    249. 

  249. 

  250. 	if (written != size) {
    251. 

  251. 		error("written %zu bytes out of %zu", written, size);
    252. 

  252. 		return -EIO;
    253. 

  253. 	}
    254. 

  254. 

  255. 	return written;
    256. 

  256. }
    257. 

  257. 

  258. static int disconnect_ind(struct sap_connection *conn, uint8_t disc_type)
    259. 

  259. {
    260. 

  260. 	char buf[SAP_BUF_SIZE];
    261. 

  261. 	struct sap_message *msg = (struct sap_message *) buf;
    262. 

  262. 	struct sap_parameter *param = (struct sap_parameter *) msg->param;
    263. 

  263. 	size_t size = sizeof(struct sap_message);
    264. 

  264. 

  265. 	DBG("data %p state %d disc_type 0x%02x", conn, conn->state, disc_type);
    266. 

  266. 

  267. 	memset(buf, 0, sizeof(buf));
    268. 

  268. 	msg->id = SAP_DISCONNECT_IND;
    269. 

  269. 	msg->nparam = 0x01;
    270. 

  270. 

  271. 	/* Add disconnection type param. */
    272. 

  272. 	param->id  = SAP_PARAM_ID_DISCONNECT_IND;
    273. 

  273. 	param->len = htons(SAP_PARAM_ID_DISCONNECT_IND_LEN);
    274. 

  274. 	*param->val = disc_type;
    275. 

  275. 	size += PARAMETER_SIZE(SAP_PARAM_ID_DISCONNECT_IND_LEN);
    276. 

  276. 

  277. 	return send_message(conn, buf, size);
    278. 

  278. }
    279. 

  279. 

  280. static int sap_error_rsp(struct sap_connection *conn)
    281. 

  281. {
    282. 

  282. 	struct sap_message msg;
    283. 

  283. 

  284. 	memset(&msg, 0, sizeof(msg));
    285. 

  285. 	msg.id = SAP_ERROR_RESP;
    286. 

  286. 

  287. 	error("SAP error (state %d pr 0x%02x).", conn->state,
    288. 

  288. 							conn->processing_req);
    289. 

  289. 

  290. 	return send_message(conn, &msg, sizeof(msg));
    291. 

  291. }
    292. 

  292. 

  293. static void connect_req(struct sap_server *server,
    294. 

  294. 				struct sap_parameter *param)
    295. 

  295. {
    296. 

  296. 	struct sap_connection *conn = server->conn;
    297. 

  297. 	uint16_t maxmsgsize;
    298. 

  298. 

  299. 	DBG("conn %p state %d", conn, conn->state);
    300. 

  300. 

  301. 	if (!param)
    302. 

  302. 		goto error_rsp;
    303. 

  303. 

  304. 	if (conn->state != SAP_STATE_DISCONNECTED)
    305. 

  305. 		goto error_rsp;
    306. 

  306. 

  307. 	stop_guard_timer(server);
    308. 

  308. 

  309. 	maxmsgsize = get_be16(&param->val);
    310. 

  310. 

  311. 	DBG("Connect MaxMsgSize: 0x%04x", maxmsgsize);
    312. 

  312. 

  313. 	conn->state = SAP_STATE_CONNECT_IN_PROGRESS;
    314. 

  314. 

  315. 	if (maxmsgsize <= SAP_BUF_SIZE) {
    316. 

  316. 		conn->processing_req = SAP_CONNECT_REQ;
    317. 

  317. 		sap_connect_req(server, maxmsgsize);
    318. 

  318. 	} else {
    319. 

  319. 		sap_connect_rsp(server, SAP_STATUS_MAX_MSG_SIZE_NOT_SUPPORTED);
    320. 

  320. 	}
    321. 

  321. 

  322. 	return;
    323. 

  323. 

  324. error_rsp:
    325. 

  325. 	sap_error_rsp(conn);
    326. 

  326. }
    327. 

  327. 

  328. static int disconnect_req(struct sap_server *server, uint8_t disc_type)
    329. 

  329. {
    330. 

  330. 	struct sap_connection *conn = server->conn;
    331. 

  331. 

  332. 	DBG("conn %p state %d disc_type 0x%02x", conn, conn->state, disc_type);
    333. 

  333. 

  334. 	switch (disc_type) {
    335. 

  335. 	case SAP_DISCONNECTION_TYPE_GRACEFUL:
    336. 

  336. 		if (conn->state == SAP_STATE_DISCONNECTED ||
    337. 

  337. 				conn->state == SAP_STATE_CONNECT_IN_PROGRESS ||
    338. 

  338. 				conn->state == SAP_STATE_CONNECT_MODEM_BUSY)
    339. 

  339. 			return -EPERM;
    340. 

  340. 

  341. 		if (conn->state == SAP_STATE_CONNECTED) {
    342. 

  342. 			conn->state = SAP_STATE_GRACEFUL_DISCONNECT;
    343. 

  343. 			conn->processing_req = SAP_NO_REQ;
    344. 

  344. 

  345. 			disconnect_ind(conn, disc_type);
    346. 

  346. 			/* Timer will disconnect if client won't do.*/
    347. 

  347. 			start_guard_timer(server,
    348. 

  348. 					SAP_TIMER_GRACEFUL_DISCONNECT);
    349. 

  349. 		}
    350. 

  350. 

  351. 		return 0;
    352. 

  352. 

  353. 	case SAP_DISCONNECTION_TYPE_IMMEDIATE:
    354. 

  354. 		if (conn->state == SAP_STATE_DISCONNECTED ||
    355. 

  355. 				conn->state == SAP_STATE_CONNECT_IN_PROGRESS ||
    356. 

  356. 				conn->state == SAP_STATE_CONNECT_MODEM_BUSY)
    357. 

  357. 			return -EPERM;
    358. 

  358. 

  359. 		if (conn->state == SAP_STATE_CONNECTED ||
    360. 

  360. 				conn->state == SAP_STATE_GRACEFUL_DISCONNECT) {
    361. 

  361. 			conn->state = SAP_STATE_IMMEDIATE_DISCONNECT;
    362. 

  362. 			conn->processing_req = SAP_NO_REQ;
    363. 

  363. 

  364. 			stop_guard_timer(server);
    365. 

  365. 			disconnect_ind(conn, disc_type);
    366. 

  366. 			sap_disconnect_req(server, 0);
    367. 

  367. 		}
    368. 

  368. 

  369. 		return 0;
    370. 

  370. 

  371. 	case SAP_DISCONNECTION_TYPE_CLIENT:
    372. 

  372. 		if (conn->state != SAP_STATE_CONNECTED &&
    373. 

  373. 				conn->state != SAP_STATE_GRACEFUL_DISCONNECT) {
    374. 

  374. 			sap_error_rsp(conn);
    375. 

  375. 			return -EPERM;
    376. 

  376. 		}
    377. 

  377. 

  378. 		conn->state = SAP_STATE_CLIENT_DISCONNECT;
    379. 

  379. 		conn->processing_req = SAP_NO_REQ;
    380. 

  380. 

  381. 		stop_guard_timer(server);
    382. 

  382. 		sap_disconnect_req(server, 0);
    383. 

  383. 

  384. 		return 0;
    385. 

  385. 

  386. 	default:
    387. 

  387. 		error("Unknown disconnection type (0x%02x).", disc_type);
    388. 

  388. 		return -EINVAL;
    389. 

  389. 	}
    390. 

  390. }
    391. 

  391. 

  392. static void transfer_apdu_req(struct sap_server *server,
    393. 

  393. 					struct sap_parameter *param)
    394. 

  394. {
    395. 

  395. 	struct sap_connection *conn = server->conn;
    396. 

  396. 

  397. 	SAP_VDBG("conn %p state %d", conn, conn->state);
    398. 

  398. 

  399. 	if (!param)
    400. 

  400. 		goto error_rsp;
    401. 

  401. 

  402. 	param->len = ntohs(param->len);
    403. 

  403. 

  404. 	if (conn->state != SAP_STATE_CONNECTED &&
    405. 

  405. 			conn->state != SAP_STATE_GRACEFUL_DISCONNECT)
    406. 

  406. 		goto error_rsp;
    407. 

  407. 

  408. 	if (conn->processing_req != SAP_NO_REQ)
    409. 

  409. 		goto error_rsp;
    410. 

  410. 

  411. 	conn->processing_req = SAP_TRANSFER_APDU_REQ;
    412. 

  412. 	sap_transfer_apdu_req(server, param);
    413. 

  413. 

  414. 	return;
    415. 

  415. 

  416. error_rsp:
    417. 

  417. 	sap_error_rsp(conn);
    418. 

  418. }
    419. 

  419. 

  420. static void transfer_atr_req(struct sap_server *server)
    421. 

  421. {
    422. 

  422. 	struct sap_connection *conn = server->conn;
    423. 

  423. 

  424. 	DBG("conn %p state %d", conn, conn->state);
    425. 

  425. 

  426. 	if (conn->state != SAP_STATE_CONNECTED)
    427. 

  427. 		goto error_rsp;
    428. 

  428. 

  429. 	if (conn->processing_req != SAP_NO_REQ)
    430. 

  430. 		goto error_rsp;
    431. 

  431. 

  432. 	conn->processing_req = SAP_TRANSFER_ATR_REQ;
    433. 

  433. 	sap_transfer_atr_req(server);
    434. 

  434. 

  435. 	return;
    436. 

  436. 

  437. error_rsp:
    438. 

  438. 	sap_error_rsp(conn);
    439. 

  439. }
    440. 

  440. 

  441. static void power_sim_off_req(struct sap_server *server)
    442. 

  442. {
    443. 

  443. 	struct sap_connection *conn = server->conn;
    444. 

  444. 

  445. 	DBG("conn %p state %d", conn, conn->state);
    446. 

  446. 

  447. 	if (conn->state != SAP_STATE_CONNECTED)
    448. 

  448. 		goto error_rsp;
    449. 

  449. 

  450. 	if (!is_power_sim_off_req_allowed(conn->processing_req))
    451. 

  451. 		goto error_rsp;
    452. 

  452. 

  453. 	conn->processing_req = SAP_POWER_SIM_OFF_REQ;
    454. 

  454. 	sap_power_sim_off_req(server);
    455. 

  455. 

  456. 	return;
    457. 

  457. 

  458. error_rsp:
    459. 

  459. 	sap_error_rsp(conn);
    460. 

  460. }
    461. 

  461. 

  462. static void power_sim_on_req(struct sap_server *server)
    463. 

  463. {
    464. 

  464. 	struct sap_connection *conn = server->conn;
    465. 

  465. 

  466. 	DBG("conn %p state %d", conn, conn->state);
    467. 

  467. 

  468. 	if (conn->state != SAP_STATE_CONNECTED)
    469. 

  469. 		goto error_rsp;
    470. 

  470. 

  471. 	if (conn->processing_req != SAP_NO_REQ)
    472. 

  472. 		goto error_rsp;
    473. 

  473. 

  474. 	conn->processing_req = SAP_POWER_SIM_ON_REQ;
    475. 

  475. 	sap_power_sim_on_req(server);
    476. 

  476. 

  477. 	return;
    478. 

  478. 

  479. error_rsp:
    480. 

  480. 	sap_error_rsp(conn);
    481. 

  481. }
    482. 

  482. 

  483. static void reset_sim_req(struct sap_server *server)
    484. 

  484. {
    485. 

  485. 	struct sap_connection *conn = server->conn;
    486. 

  486. 

  487. 	DBG("conn %p state %d", conn, conn->state);
    488. 

  488. 

  489. 	if (conn->state != SAP_STATE_CONNECTED)
    490. 

  490. 		goto error_rsp;
    491. 

  491. 

  492. 	if (!is_reset_sim_req_allowed(conn->processing_req))
    493. 

  493. 		goto error_rsp;
    494. 

  494. 

  495. 	conn->processing_req = SAP_RESET_SIM_REQ;
    496. 

  496. 	sap_reset_sim_req(server);
    497. 

  497. 

  498. 	return;
    499. 

  499. 

  500. error_rsp:
    501. 

  501. 	sap_error_rsp(conn);
    502. 

  502. }
    503. 

  503. 

  504. static void transfer_card_reader_status_req(struct sap_server *server)
    505. 

  505. {
    506. 

  506. 	struct sap_connection *conn = server->conn;
    507. 

  507. 

  508. 	DBG("conn %p state %d", conn, conn->state);
    509. 

  509. 

  510. 	if (conn->state != SAP_STATE_CONNECTED)
    511. 

  511. 		goto error_rsp;
    512. 

  512. 

  513. 	if (conn->processing_req != SAP_NO_REQ)
    514. 

  514. 		goto error_rsp;
    515. 

  515. 

  516. 	conn->processing_req = SAP_TRANSFER_CARD_READER_STATUS_REQ;
    517. 

  517. 	sap_transfer_card_reader_status_req(server);
    518. 

  518. 

  519. 	return;
    520. 

  520. 

  521. error_rsp:
    522. 

  522. 	sap_error_rsp(conn);
    523. 

  523. }
    524. 

  524. 

  525. static void set_transport_protocol_req(struct sap_server *server,
    526. 

  526. 					struct sap_parameter *param)
    527. 

  527. {
    528. 

  528. 	struct sap_connection *conn = server->conn;
    529. 

  529. 

  530. 	if (!param)
    531. 

  531. 		goto error_rsp;
    532. 

  532. 

  533. 	DBG("conn %p state %d param %p", conn, conn->state, param);
    534. 

  534. 

  535. 	if (conn->state != SAP_STATE_CONNECTED)
    536. 

  536. 		goto error_rsp;
    537. 

  537. 

  538. 	if (conn->processing_req != SAP_NO_REQ)
    539. 

  539. 		goto error_rsp;
    540. 

  540. 

  541. 	conn->processing_req = SAP_SET_TRANSPORT_PROTOCOL_REQ;
    542. 

  542. 	sap_set_transport_protocol_req(server, param);
    543. 

  543. 

  544. 	return;
    545. 

  545. 

  546. error_rsp:
    547. 

  547. 	sap_error_rsp(conn);
    548. 

  548. }
    549. 

  549. 

  550. static void start_guard_timer(struct sap_server *server, guint interval)
    551. 

  551. {
    552. 

  552. 	struct sap_connection *conn = server->conn;
    553. 

  553. 

  554. 	if (!conn)
    555. 

  555. 		return;
    556. 

  556. 

  557. 	if (!conn->timer_id)
    558. 

  558. 		conn->timer_id = timeout_add_seconds(interval, guard_timeout,
    559. 

  559. 								server, NULL);
    560. 

  560. 	else
    561. 

  561. 		error("Timer is already active.");
    562. 

  562. }
    563. 

  563. 

  564. static void stop_guard_timer(struct sap_server *server)
    565. 

  565. {
    566. 

  566. 	struct sap_connection *conn = server->conn;
    567. 

  567. 

  568. 	if (conn  && conn->timer_id) {
    569. 

  569. 		timeout_remove(conn->timer_id);
    570. 

  570. 		conn->timer_id = 0;
    571. 

  571. 	}
    572. 

  572. }
    573. 

  573. 

  574. static bool guard_timeout(gpointer data)
    575. 

  575. {
    576. 

  576. 	struct sap_server *server = data;
    577. 

  577. 	struct sap_connection *conn = server->conn;
    578. 

  578. 

  579. 	if (!conn)
    580. 

  580. 		return FALSE;
    581. 

  581. 

  582. 	DBG("conn %p state %d pr 0x%02x", conn, conn->state,
    583. 

  583. 						conn->processing_req);
    584. 

  584. 

  585. 	conn->timer_id = 0;
    586. 

  586. 

  587. 	switch (conn->state) {
    588. 

  588. 	case SAP_STATE_DISCONNECTED:
    589. 

  589. 		/* Client opened RFCOMM channel but didn't send CONNECT_REQ,
    590. 

  590. 		 * in fixed time or client disconnected SAP connection but
    591. 

  591. 		 * didn't closed RFCOMM channel in fixed time.*/
    592. 

  592. 		if (conn->io) {
    593. 

  593. 			g_io_channel_shutdown(conn->io, TRUE, NULL);
    594. 

  594. 			g_io_channel_unref(conn->io);
    595. 

  595. 			conn->io = NULL;
    596. 

  596. 		}
    597. 

  597. 		break;
    598. 

  598. 

  599. 	case SAP_STATE_GRACEFUL_DISCONNECT:
    600. 

  600. 		/* Client didn't disconnect SAP connection in fixed time,
    601. 

  601. 		 * so close SAP connection immediately. */
    602. 

  602. 		disconnect_req(server, SAP_DISCONNECTION_TYPE_IMMEDIATE);
    603. 

  603. 		break;
    604. 

  604. 

  605. 	default:
    606. 

  606. 		error("Unexpected state (%d).", conn->state);
    607. 

  607. 		break;
    608. 

  608. 	}
    609. 

  609. 

  610. 	return FALSE;
    611. 

  611. }
    612. 

  612. 

  613. static void sap_set_connected(struct sap_server *server)
    614. 

  614. {
    615. 

  615. 	server->conn->state = SAP_STATE_CONNECTED;
    616. 

  616. 

  617. 	g_dbus_emit_property_changed(btd_get_dbus_connection(),
    618. 

  618. 					adapter_get_path(server->adapter),
    619. 

  619. 					SAP_SERVER_INTERFACE, "Connected");
    620. 

  620. }
    621. 

  621. 

  622. int sap_connect_rsp(void *sap_device, uint8_t status)
    623. 

  623. {
    624. 

  624. 	struct sap_server *server = sap_device;
    625. 

  625. 	struct sap_connection *conn = server->conn;
    626. 

  626. 	char buf[SAP_BUF_SIZE];
    627. 

  627. 	struct sap_message *msg = (struct sap_message *) buf;
    628. 

  628. 	struct sap_parameter *param = (struct sap_parameter *) msg->param;
    629. 

  629. 	size_t size = sizeof(struct sap_message);
    630. 

  630. 

  631. 	if (!conn)
    632. 

  632. 		return -EINVAL;
    633. 

  633. 

  634. 	DBG("state %d pr 0x%02x status 0x%02x", conn->state,
    635. 

  635. 						conn->processing_req, status);
    636. 

  636. 

  637. 	if (conn->state != SAP_STATE_CONNECT_IN_PROGRESS)
    638. 

  638. 		return -EPERM;
    639. 

  639. 

  640. 	memset(buf, 0, sizeof(buf));
    641. 

  641. 	msg->id = SAP_CONNECT_RESP;
    642. 

  642. 	msg->nparam = 0x01;
    643. 

  643. 

  644. 	/* Add connection status */
    645. 

  645. 	param->id = SAP_PARAM_ID_CONN_STATUS;
    646. 

  646. 	param->len = htons(SAP_PARAM_ID_CONN_STATUS_LEN);
    647. 

  647. 	*param->val = status;
    648. 

  648. 	size += PARAMETER_SIZE(SAP_PARAM_ID_CONN_STATUS_LEN);
    649. 

  649. 

  650. 

  651. 	switch (status) {
    652. 

  652. 	case SAP_STATUS_OK:
    653. 

  653. 		sap_set_connected(server);
    654. 

  654. 		break;
    655. 

  655. 	case SAP_STATUS_OK_ONGOING_CALL:
    656. 

  656. 		DBG("ongoing call. Wait for reset indication!");
    657. 

  657. 		conn->state = SAP_STATE_CONNECT_MODEM_BUSY;
    658. 

  658. 		break;
    659. 

  659. 	case SAP_STATUS_MAX_MSG_SIZE_NOT_SUPPORTED: /* Add MaxMsgSize */
    660. 

  660. 		msg->nparam++;
    661. 

  661. 		param = (struct sap_parameter *) &buf[size];
    662. 

  662. 		param->id = SAP_PARAM_ID_MAX_MSG_SIZE;
    663. 

  663. 		param->len = htons(SAP_PARAM_ID_MAX_MSG_SIZE_LEN);
    664. 

  664. 		put_be16(SAP_BUF_SIZE, &param->val);
    665. 

  665. 		size += PARAMETER_SIZE(SAP_PARAM_ID_MAX_MSG_SIZE_LEN);
    666. 

  666. 		/* fall through */
    667. 

  667. 	default:
    668. 

  668. 		conn->state = SAP_STATE_DISCONNECTED;
    669. 

  669. 

  670. 		/* Timer will shutdown channel if client doesn't send
    671. 

  671. 		 * CONNECT_REQ or doesn't shutdown channel itself.*/
    672. 

  672. 		start_guard_timer(server, SAP_TIMER_NO_ACTIVITY);
    673. 

  673. 		break;
    674. 

  674. 	}
    675. 

  675. 

  676. 	conn->processing_req = SAP_NO_REQ;
    677. 

  677. 

  678. 	return send_message(conn, buf, size);
    679. 

  679. }
    680. 

  680. 

  681. int sap_disconnect_rsp(void *sap_device)
    682. 

  682. {
    683. 

  683. 	struct sap_server *server = sap_device;
    684. 

  684. 	struct sap_connection *conn = server->conn;
    685. 

  685. 	struct sap_message msg;
    686. 

  686. 

  687. 	if (!conn)
    688. 

  688. 		return -EINVAL;
    689. 

  689. 

  690. 	DBG("state %d pr 0x%02x", conn->state, conn->processing_req);
    691. 

  691. 

  692. 	switch (conn->state) {
    693. 

  693. 	case SAP_STATE_CLIENT_DISCONNECT:
    694. 

  694. 		memset(&msg, 0, sizeof(msg));
    695. 

  695. 		msg.id = SAP_DISCONNECT_RESP;
    696. 

  696. 

  697. 		conn->state = SAP_STATE_DISCONNECTED;
    698. 

  698. 		conn->processing_req = SAP_NO_REQ;
    699. 

  699. 

  700. 		/* Timer will close channel if client doesn't do it.*/
    701. 

  701. 		start_guard_timer(server, SAP_TIMER_NO_ACTIVITY);
    702. 

  702. 

  703. 		return send_message(conn, &msg, sizeof(msg));
    704. 

  704. 

  705. 	case SAP_STATE_IMMEDIATE_DISCONNECT:
    706. 

  706. 		conn->state = SAP_STATE_DISCONNECTED;
    707. 

  707. 		conn->processing_req = SAP_NO_REQ;
    708. 

  708. 

  709. 		if (conn->io) {
    710. 

  710. 			g_io_channel_shutdown(conn->io, TRUE, NULL);
    711. 

  711. 			g_io_channel_unref(conn->io);
    712. 

  712. 			conn->io = NULL;
    713. 

  713. 		}
    714. 

  714. 

  715. 		return 0;
    716. 

  716. 

  717. 	default:
    718. 

  718. 		break;
    719. 

  719. 	}
    720. 

  720. 

  721. 	return 0;
    722. 

  722. }
    723. 

  723. 

  724. int sap_transfer_apdu_rsp(void *sap_device, uint8_t result, uint8_t *apdu,
    725. 

  725. 					uint16_t length)
    726. 

  726. {
    727. 

  727. 	struct sap_server *server = sap_device;
    728. 

  728. 	struct sap_connection *conn = server->conn;
    729. 

  729. 	char buf[SAP_BUF_SIZE];
    730. 

  730. 	struct sap_message *msg = (struct sap_message *) buf;
    731. 

  731. 	struct sap_parameter *param = (struct sap_parameter *) msg->param;
    732. 

  732. 	size_t size = sizeof(struct sap_message);
    733. 

  733. 

  734. 	if (!conn)
    735. 

  735. 		return -EINVAL;
    736. 

  736. 

  737. 	SAP_VDBG("state %d pr 0x%02x", conn->state, conn->processing_req);
    738. 

  738. 

  739. 	if (conn->processing_req != SAP_TRANSFER_APDU_REQ)
    740. 

  740. 		return 0;
    741. 

  741. 

  742. 	if (result == SAP_RESULT_OK && (!apdu || (apdu && length == 0x00)))
    743. 

  743. 		return -EINVAL;
    744. 

  744. 

  745. 	memset(buf, 0, sizeof(buf));
    746. 

  746. 	msg->id = SAP_TRANSFER_APDU_RESP;
    747. 

  747. 	msg->nparam = 0x01;
    748. 

  748. 	size += add_result_parameter(result, param);
    749. 

  749. 

  750. 	/* Add APDU response. */
    751. 

  751. 	if (result == SAP_RESULT_OK) {
    752. 

  752. 		msg->nparam++;
    753. 

  753. 		param = (struct sap_parameter *) &buf[size];
    754. 

  754. 		param->id = SAP_PARAM_ID_RESPONSE_APDU;
    755. 

  755. 		param->len = htons(length);
    756. 

  756. 

  757. 		size += PARAMETER_SIZE(length);
    758. 

  758. 

  759. 		if (size > SAP_BUF_SIZE)
    760. 

  760. 			return -EOVERFLOW;
    761. 

  761. 

  762. 		memcpy(param->val, apdu, length);
    763. 

  763. 	}
    764. 

  764. 

  765. 	conn->processing_req = SAP_NO_REQ;
    766. 

  766. 

  767. 	return send_message(conn, buf, size);
    768. 

  768. }
    769. 

  769. 

  770. int sap_transfer_atr_rsp(void *sap_device, uint8_t result, uint8_t *atr,
    771. 

  771. 					uint16_t length)
    772. 

  772. {
    773. 

  773. 	struct sap_server *server = sap_device;
    774. 

  774. 	struct sap_connection *conn = server->conn;
    775. 

  775. 	char buf[SAP_BUF_SIZE];
    776. 

  776. 	struct sap_message *msg = (struct sap_message *) buf;
    777. 

  777. 	struct sap_parameter *param = (struct sap_parameter *) msg->param;
    778. 

  778. 	size_t size = sizeof(struct sap_message);
    779. 

  779. 

  780. 	if (!conn)
    781. 

  781. 		return -EINVAL;
    782. 

  782. 

  783. 	DBG("result 0x%02x state %d pr 0x%02x len %d", result, conn->state,
    784. 

  784. 			conn->processing_req, length);
    785. 

  785. 

  786. 	if (conn->processing_req != SAP_TRANSFER_ATR_REQ)
    787. 

  787. 		return 0;
    788. 

  788. 

  789. 	if (result == SAP_RESULT_OK && (!atr || (atr && length == 0x00)))
    790. 

  790. 		return -EINVAL;
    791. 

  791. 

  792. 	memset(buf, 0, sizeof(buf));
    793. 

  793. 	msg->id = SAP_TRANSFER_ATR_RESP;
    794. 

  794. 	msg->nparam = 0x01;
    795. 

  795. 	size += add_result_parameter(result, param);
    796. 

  796. 

  797. 	/* Add ATR response */
    798. 

  798. 	if (result == SAP_RESULT_OK) {
    799. 

  799. 		msg->nparam++;
    800. 

  800. 		param = (struct sap_parameter *) &buf[size];
    801. 

  801. 		param->id = SAP_PARAM_ID_ATR;
    802. 

  802. 		param->len = htons(length);
    803. 

  803. 		size += PARAMETER_SIZE(length);
    804. 

  804. 

  805. 		if (size > SAP_BUF_SIZE)
    806. 

  806. 			return -EOVERFLOW;
    807. 

  807. 

  808. 		memcpy(param->val, atr, length);
    809. 

  809. 	}
    810. 

  810. 

  811. 	conn->processing_req = SAP_NO_REQ;
    812. 

  812. 

  813. 	return send_message(conn, buf, size);
    814. 

  814. }
    815. 

  815. 

  816. int sap_power_sim_off_rsp(void *sap_device, uint8_t result)
    817. 

  817. {
    818. 

  818. 	struct sap_server *server = sap_device;
    819. 

  819. 	struct sap_connection *conn = server->conn;
    820. 

  820. 	char buf[SAP_BUF_SIZE];
    821. 

  821. 	struct sap_message *msg = (struct sap_message *) buf;
    822. 

  822. 	size_t size = sizeof(struct sap_message);
    823. 

  823. 

  824. 	if (!conn)
    825. 

  825. 		return -EINVAL;
    826. 

  826. 

  827. 	DBG("state %d pr 0x%02x", conn->state, conn->processing_req);
    828. 

  828. 

  829. 	if (conn->processing_req != SAP_POWER_SIM_OFF_REQ)
    830. 

  830. 		return 0;
    831. 

  831. 

  832. 	memset(buf, 0, sizeof(buf));
    833. 

  833. 	msg->id = SAP_POWER_SIM_OFF_RESP;
    834. 

  834. 	msg->nparam = 0x01;
    835. 

  835. 	size += add_result_parameter(result, msg->param);
    836. 

  836. 

  837. 	conn->processing_req = SAP_NO_REQ;
    838. 

  838. 

  839. 	return send_message(conn, buf, size);
    840. 

  840. }
    841. 

  841. 

  842. int sap_power_sim_on_rsp(void *sap_device, uint8_t result)
    843. 

  843. {
    844. 

  844. 	struct sap_server *server = sap_device;
    845. 

  845. 	struct sap_connection *conn = server->conn;
    846. 

  846. 	char buf[SAP_BUF_SIZE];
    847. 

  847. 	struct sap_message *msg = (struct sap_message *) buf;
    848. 

  848. 	size_t size = sizeof(struct sap_message);
    849. 

  849. 

  850. 	if (!conn)
    851. 

  851. 		return -EINVAL;
    852. 

  852. 

  853. 	DBG("state %d pr 0x%02x", conn->state, conn->processing_req);
    854. 

  854. 

  855. 	if (conn->processing_req != SAP_POWER_SIM_ON_REQ)
    856. 

  856. 		return 0;
    857. 

  857. 

  858. 	memset(buf, 0, sizeof(buf));
    859. 

  859. 	msg->id = SAP_POWER_SIM_ON_RESP;
    860. 

  860. 	msg->nparam = 0x01;
    861. 

  861. 	size += add_result_parameter(result, msg->param);
    862. 

  862. 

  863. 	conn->processing_req = SAP_NO_REQ;
    864. 

  864. 

  865. 	return send_message(conn, buf, size);
    866. 

  866. }
    867. 

  867. 

  868. int sap_reset_sim_rsp(void *sap_device, uint8_t result)
    869. 

  869. {
    870. 

  870. 	struct sap_server *server = sap_device;
    871. 

  871. 	struct sap_connection *conn = server->conn;
    872. 

  872. 	char buf[SAP_BUF_SIZE];
    873. 

  873. 	struct sap_message *msg = (struct sap_message *) buf;
    874. 

  874. 	size_t size = sizeof(struct sap_message);
    875. 

  875. 

  876. 	if (!conn)
    877. 

  877. 		return -EINVAL;
    878. 

  878. 

  879. 	DBG("state %d pr 0x%02x result 0x%02x", conn->state,
    880. 

  880. 						conn->processing_req, result);
    881. 

  881. 

  882. 	if (conn->processing_req != SAP_RESET_SIM_REQ)
    883. 

  883. 		return 0;
    884. 

  884. 

  885. 	memset(buf, 0, sizeof(buf));
    886. 

  886. 	msg->id = SAP_RESET_SIM_RESP;
    887. 

  887. 	msg->nparam = 0x01;
    888. 

  888. 	size += add_result_parameter(result, msg->param);
    889. 

  889. 

  890. 	conn->processing_req = SAP_NO_REQ;
    891. 

  891. 

  892. 	return send_message(conn, buf, size);
    893. 

  893. }
    894. 

  894. 

  895. int sap_transfer_card_reader_status_rsp(void *sap_device, uint8_t result,
    896. 

  896. 						uint8_t status)
    897. 

  897. {
    898. 

  898. 	struct sap_server *server = sap_device;
    899. 

  899. 	struct sap_connection *conn = server->conn;
    900. 

  900. 	char buf[SAP_BUF_SIZE];
    901. 

  901. 	struct sap_message *msg = (struct sap_message *) buf;
    902. 

  902. 	struct sap_parameter *param = (struct sap_parameter *) msg->param;
    903. 

  903. 	size_t size = sizeof(struct sap_message);
    904. 

  904. 

  905. 	if (!conn)
    906. 

  906. 		return -EINVAL;
    907. 

  907. 

  908. 	DBG("state %d pr 0x%02x result 0x%02x", conn->state,
    909. 

  909. 						conn->processing_req, result);
    910. 

  910. 

  911. 	if (conn->processing_req != SAP_TRANSFER_CARD_READER_STATUS_REQ)
    912. 

  912. 		return 0;
    913. 

  913. 

  914. 	memset(buf, 0, sizeof(buf));
    915. 

  915. 	msg->id = SAP_TRANSFER_CARD_READER_STATUS_RESP;
    916. 

  916. 	msg->nparam = 0x01;
    917. 

  917. 	size += add_result_parameter(result, param);
    918. 

  918. 

  919. 	/* Add card reader status. */
    920. 

  920. 	if (result == SAP_RESULT_OK) {
    921. 

  921. 		msg->nparam++;
    922. 

  922. 		param = (struct sap_parameter *) &buf[size];
    923. 

  923. 		param->id = SAP_PARAM_ID_CARD_READER_STATUS;
    924. 

  924. 		param->len = htons(SAP_PARAM_ID_CARD_READER_STATUS_LEN);
    925. 

  925. 		*param->val = status;
    926. 

  926. 		size += PARAMETER_SIZE(SAP_PARAM_ID_CARD_READER_STATUS_LEN);
    927. 

  927. 	}
    928. 

  928. 

  929. 	conn->processing_req = SAP_NO_REQ;
    930. 

  930. 

  931. 	return send_message(conn, buf, size);
    932. 

  932. }
    933. 

  933. 

  934. int sap_transport_protocol_rsp(void *sap_device, uint8_t result)
    935. 

  935. {
    936. 

  936. 	struct sap_server *server = sap_device;
    937. 

  937. 	struct sap_connection *conn = server->conn;
    938. 

  938. 	char buf[SAP_BUF_SIZE];
    939. 

  939. 	struct sap_message *msg = (struct sap_message *) buf;
    940. 

  940. 	size_t size = sizeof(struct sap_message);
    941. 

  941. 

  942. 	if (!conn)
    943. 

  943. 		return -EINVAL;
    944. 

  944. 

  945. 	DBG("state %d pr 0x%02x result 0x%02x", conn->state,
    946. 

  946. 						conn->processing_req, result);
    947. 

  947. 

  948. 	if (conn->processing_req != SAP_SET_TRANSPORT_PROTOCOL_REQ)
    949. 

  949. 		return 0;
    950. 

  950. 

  951. 	memset(buf, 0, sizeof(buf));
    952. 

  952. 	msg->id = SAP_SET_TRANSPORT_PROTOCOL_RESP;
    953. 

  953. 	msg->nparam = 0x01;
    954. 

  954. 	size += add_result_parameter(result, msg->param);
    955. 

  955. 

  956. 	conn->processing_req = SAP_NO_REQ;
    957. 

  957. 

  958. 	return send_message(conn, buf, size);
    959. 

  959. }
    960. 

  960. 

  961. int sap_status_ind(void *sap_device, uint8_t status_change)
    962. 

  962. {
    963. 

  963. 	struct sap_server *server = sap_device;
    964. 

  964. 	struct sap_connection *conn = server->conn;
    965. 

  965. 	char buf[SAP_BUF_SIZE];
    966. 

  966. 	struct sap_message *msg = (struct sap_message *) buf;
    967. 

  967. 	struct sap_parameter *param = (struct sap_parameter *) msg->param;
    968. 

  968. 	size_t size = sizeof(struct sap_message);
    969. 

  969. 

  970. 	if (!conn)
    971. 

  971. 		return -EINVAL;
    972. 

  972. 

  973. 	DBG("state %d pr 0x%02x sc 0x%02x", conn->state, conn->processing_req,
    974. 

  974. 								status_change);
    975. 

  975. 

  976. 	switch (conn->state) {
    977. 

  977. 	case SAP_STATE_CONNECT_MODEM_BUSY:
    978. 

  978. 		if (status_change != SAP_STATUS_CHANGE_CARD_RESET)
    979. 

  979. 			break;
    980. 

  980. 

  981. 		/* Change state to connected after ongoing call ended */
    982. 

  982. 		sap_set_connected(server);
    983. 

  983. 		/* fall through */
    984. 

  984. 	case SAP_STATE_CONNECTED:
    985. 

  985. 	case SAP_STATE_GRACEFUL_DISCONNECT:
    986. 

  986. 		memset(buf, 0, sizeof(buf));
    987. 

  987. 		msg->id = SAP_STATUS_IND;
    988. 

  988. 		msg->nparam = 0x01;
    989. 

  989. 

  990. 		/* Add status change. */
    991. 

  991. 		param->id  = SAP_PARAM_ID_STATUS_CHANGE;
    992. 

  992. 		param->len = htons(SAP_PARAM_ID_STATUS_CHANGE_LEN);
    993. 

  993. 		*param->val = status_change;
    994. 

  994. 		size += PARAMETER_SIZE(SAP_PARAM_ID_STATUS_CHANGE_LEN);
    995. 

  995. 

  996. 		return send_message(conn, buf, size);
    997. 

  997. 	case SAP_STATE_DISCONNECTED:
    998. 

  998. 	case SAP_STATE_CONNECT_IN_PROGRESS:
    999. 

  999. 	case SAP_STATE_IMMEDIATE_DISCONNECT:
    1000. 

  1000. 	case SAP_STATE_CLIENT_DISCONNECT:
    1001. 

  1001. 		break;
    1002. 

  1002. 	}
    1003. 

  1003. 

  1004. 	return 0;
    1005. 

  1005. }
    1006. 

  1006. 

  1007. int sap_disconnect_ind(void *sap_device, uint8_t disc_type)
    1008. 

  1008. {
    1009. 

  1009. 	return disconnect_req(sap_device, SAP_DISCONNECTION_TYPE_IMMEDIATE);
    1010. 

  1010. }
    1011. 

  1011. 

  1012. static int handle_cmd(struct sap_server *server, void *buf, size_t size)
    1013. 

  1013. {
    1014. 

  1014. 	struct sap_connection *conn = server->conn;
    1015. 

  1015. 	struct sap_message *msg = buf;
    1016. 

  1016. 

  1017. 	if (!conn)
    1018. 

  1018. 		return -EINVAL;
    1019. 

  1019. 

  1020. 	if (size < sizeof(struct sap_message))
    1021. 

  1021. 		goto error_rsp;
    1022. 

  1022. 

  1023. 	if (msg->nparam != 0 && size < (sizeof(struct sap_message) +
    1024. 

  1024. 					sizeof(struct sap_parameter) + 4))
    1025. 

  1025. 		goto error_rsp;
    1026. 

  1026. 

  1027. 	if (check_msg(msg) < 0)
    1028. 

  1028. 		goto error_rsp;
    1029. 

  1029. 

  1030. 	switch (msg->id) {
    1031. 

  1031. 	case SAP_CONNECT_REQ:
    1032. 

  1032. 		connect_req(server, msg->param);
    1033. 

  1033. 		return 0;
    1034. 

  1034. 	case SAP_DISCONNECT_REQ:
    1035. 

  1035. 		disconnect_req(server, SAP_DISCONNECTION_TYPE_CLIENT);
    1036. 

  1036. 		return 0;
    1037. 

  1037. 	case SAP_TRANSFER_APDU_REQ:
    1038. 

  1038. 		transfer_apdu_req(server, msg->param);
    1039. 

  1039. 		return 0;
    1040. 

  1040. 	case SAP_TRANSFER_ATR_REQ:
    1041. 

  1041. 		transfer_atr_req(server);
    1042. 

  1042. 		return 0;
    1043. 

  1043. 	case SAP_POWER_SIM_OFF_REQ:
    1044. 

  1044. 		power_sim_off_req(server);
    1045. 

  1045. 		return 0;
    1046. 

  1046. 	case SAP_POWER_SIM_ON_REQ:
    1047. 

  1047. 		power_sim_on_req(server);
    1048. 

  1048. 		return 0;
    1049. 

  1049. 	case SAP_RESET_SIM_REQ:
    1050. 

  1050. 		reset_sim_req(server);
    1051. 

  1051. 		return 0;
    1052. 

  1052. 	case SAP_TRANSFER_CARD_READER_STATUS_REQ:
    1053. 

  1053. 		transfer_card_reader_status_req(server);
    1054. 

  1054. 		return 0;
    1055. 

  1055. 	case SAP_SET_TRANSPORT_PROTOCOL_REQ:
    1056. 

  1056. 		set_transport_protocol_req(server, msg->param);
    1057. 

  1057. 		return 0;
    1058. 

  1058. 	default:
    1059. 

  1059. 		DBG("Unknown SAP message id 0x%02x.", msg->id);
    1060. 

  1060. 		break;
    1061. 

  1061. 	}
    1062. 

  1062. 

  1063. error_rsp:
    1064. 

  1064. 	DBG("Invalid SAP message format.");
    1065. 

  1065. 	sap_error_rsp(conn);
    1066. 

  1066. 	return -EBADMSG;
    1067. 

  1067. }
    1068. 

  1068. 

  1069. static void sap_server_remove_conn(struct sap_server *server)
    1070. 

  1070. {
    1071. 

  1071. 	struct sap_connection *conn = server->conn;
    1072. 

  1072. 

  1073. 	DBG("conn %p", conn);
    1074. 

  1074. 

  1075. 	if (!conn)
    1076. 

  1076. 		return;
    1077. 

  1077. 

  1078. 	if (conn->io) {
    1079. 

  1079. 		g_io_channel_shutdown(conn->io, TRUE, NULL);
    1080. 

  1080. 		g_io_channel_unref(conn->io);
    1081. 

  1081. 	}
    1082. 

  1082. 

  1083. 	g_free(conn);
    1084. 

  1084. 	server->conn = NULL;
    1085. 

  1085. }
    1086. 

  1086. 

  1087. static gboolean sap_io_cb(GIOChannel *io, GIOCondition cond, gpointer data)
    1088. 

  1088. {
    1089. 

  1089. 	char buf[SAP_BUF_SIZE];
    1090. 

  1090. 	size_t bytes_read = 0;
    1091. 

  1091. 	GError *gerr = NULL;
    1092. 

  1092. 	GIOStatus gstatus;
    1093. 

  1093. 

  1094. 	SAP_VDBG("conn %p io %p", conn, io);
    1095. 

  1095. 

  1096. 	if (cond & G_IO_NVAL) {
    1097. 

  1097. 		DBG("ERR (G_IO_NVAL) on rfcomm socket.");
    1098. 

  1098. 		return FALSE;
    1099. 

  1099. 	}
    1100. 

  1100. 

  1101. 	if (cond & G_IO_ERR) {
    1102. 

  1102. 		DBG("ERR (G_IO_ERR) on rfcomm socket.");
    1103. 

  1103. 		return FALSE;
    1104. 

  1104. 	}
    1105. 

  1105. 

  1106. 	if (cond & G_IO_HUP) {
    1107. 

  1107. 		DBG("HUP on rfcomm socket.");
    1108. 

  1108. 		return FALSE;
    1109. 

  1109. 	}
    1110. 

  1110. 

  1111. 	gstatus = g_io_channel_read_chars(io, buf, sizeof(buf) - 1,
    1112. 

  1112. 							&bytes_read, &gerr);
    1113. 

  1113. 	if (gstatus != G_IO_STATUS_NORMAL) {
    1114. 

  1114. 		if (gerr)
    1115. 

  1115. 			g_error_free(gerr);
    1116. 

  1116. 

  1117. 		return TRUE;
    1118. 

  1118. 	}
    1119. 

  1119. 

  1120. 	if (handle_cmd(data, buf, bytes_read) < 0)
    1121. 

  1121. 		error("SAP protocol processing failure.");
    1122. 

  1122. 

  1123. 	return TRUE;
    1124. 

  1124. }
    1125. 

  1125. 

  1126. static void sap_io_destroy(void *data)
    1127. 

  1127. {
    1128. 

  1128. 	struct sap_server *server = data;
    1129. 

  1129. 	struct sap_connection *conn = server->conn;
    1130. 

  1130. 

  1131. 	DBG("conn %p", conn);
    1132. 

  1132. 

  1133. 	if (!conn || !conn->io)
    1134. 

  1134. 		return;
    1135. 

  1135. 

  1136. 	stop_guard_timer(server);
    1137. 

  1137. 

  1138. 	if (conn->state != SAP_STATE_CONNECT_IN_PROGRESS &&
    1139. 

  1139. 				conn->state != SAP_STATE_CONNECT_MODEM_BUSY)
    1140. 

  1140. 		g_dbus_emit_property_changed(btd_get_dbus_connection(),
    1141. 

  1141. 					adapter_get_path(server->adapter),
    1142. 

  1142. 					SAP_SERVER_INTERFACE,
    1143. 

  1143. 					"Connected");
    1144. 

  1144. 

  1145. 	if (conn->state == SAP_STATE_CONNECT_IN_PROGRESS ||
    1146. 

  1146. 			conn->state == SAP_STATE_CONNECT_MODEM_BUSY ||
    1147. 

  1147. 			conn->state == SAP_STATE_CONNECTED ||
    1148. 

  1148. 			conn->state == SAP_STATE_GRACEFUL_DISCONNECT)
    1149. 

  1149. 		sap_disconnect_req(server, 1);
    1150. 

  1150. 

  1151. 	sap_server_remove_conn(server);
    1152. 

  1152. }
    1153. 

  1153. 

  1154. static void sap_connect_cb(GIOChannel *io, GError *gerr, gpointer data)
    1155. 

  1155. {
    1156. 

  1156. 	struct sap_server *server = data;
    1157. 

  1157. 	struct sap_connection *conn = server->conn;
    1158. 

  1158. 

  1159. 	DBG("conn %p, io %p", conn, io);
    1160. 

  1160. 

  1161. 	if (!conn)
    1162. 

  1162. 		return;
    1163. 

  1163. 

  1164. 	/* Timer will shutdown the channel in case of lack of client
    1165. 

  1165. 	   activity */
    1166. 

  1166. 	start_guard_timer(server, SAP_TIMER_NO_ACTIVITY);
    1167. 

  1167. 

  1168. 	g_io_add_watch_full(io, G_PRIORITY_DEFAULT,
    1169. 

  1169. 			G_IO_IN | G_IO_ERR | G_IO_HUP | G_IO_NVAL,
    1170. 

  1170. 			sap_io_cb, server, sap_io_destroy);
    1171. 

  1171. }
    1172. 

  1172. 

  1173. static void connect_auth_cb(DBusError *derr, void *data)
    1174. 

  1174. {
    1175. 

  1175. 	struct sap_server *server = data;
    1176. 

  1176. 	struct sap_connection *conn = server->conn;
    1177. 

  1177. 	GError *gerr = NULL;
    1178. 

  1178. 

  1179. 	DBG("conn %p", conn);
    1180. 

  1180. 

  1181. 	if (!conn)
    1182. 

  1182. 		return;
    1183. 

  1183. 

  1184. 	if (derr && dbus_error_is_set(derr)) {
    1185. 

  1185. 		error("Access has been denied (%s)", derr->message);
    1186. 

  1186. 		sap_server_remove_conn(server);
    1187. 

  1187. 		return;
    1188. 

  1188. 	}
    1189. 

  1189. 

  1190. 	if (!bt_io_accept(conn->io, sap_connect_cb, server, NULL, &gerr)) {
    1191. 

  1191. 		error("bt_io_accept: %s", gerr->message);
    1192. 

  1192. 		g_error_free(gerr);
    1193. 

  1193. 		sap_server_remove_conn(server);
    1194. 

  1194. 		return;
    1195. 

  1195. 	}
    1196. 

  1196. 

  1197. 	DBG("Access has been granted.");
    1198. 

  1198. }
    1199. 

  1199. 

  1200. static void connect_confirm_cb(GIOChannel *io, gpointer data)
    1201. 

  1201. {
    1202. 

  1202. 	struct sap_server *server = data;
    1203. 

  1203. 	struct sap_connection *conn = server->conn;
    1204. 

  1204. 	GError *gerr = NULL;
    1205. 

  1205. 	bdaddr_t src, dst;
    1206. 

  1206. 	char dstaddr[18];
    1207. 

  1207. 	guint ret;
    1208. 

  1208. 

  1209. 	DBG("conn %p io %p", conn, io);
    1210. 

  1210. 

  1211. 	if (!io)
    1212. 

  1212. 		return;
    1213. 

  1213. 

  1214. 	if (conn) {
    1215. 

  1215. 		DBG("Another SAP connection already exists.");
    1216. 

  1216. 		g_io_channel_shutdown(io, TRUE, NULL);
    1217. 

  1217. 		return;
    1218. 

  1218. 	}
    1219. 

  1219. 

  1220. 	conn = g_try_new0(struct sap_connection, 1);
    1221. 

  1221. 	if (!conn) {
    1222. 

  1222. 		error("Can't allocate memory for incoming SAP connection.");
    1223. 

  1223. 		g_io_channel_shutdown(io, TRUE, NULL);
    1224. 

  1224. 		return;
    1225. 

  1225. 	}
    1226. 

  1226. 

  1227. 	g_io_channel_set_encoding(io, NULL, NULL);
    1228. 

  1228. 	g_io_channel_set_buffered(io, FALSE);
    1229. 

  1229. 

  1230. 	server->conn = conn;
    1231. 

  1231. 	conn->io = g_io_channel_ref(io);
    1232. 

  1232. 	conn->state = SAP_STATE_DISCONNECTED;
    1233. 

  1233. 

  1234. 	bt_io_get(io, &gerr,
    1235. 

  1235. 			BT_IO_OPT_SOURCE_BDADDR, &src,
    1236. 

  1236. 			BT_IO_OPT_DEST_BDADDR, &dst,
    1237. 

  1237. 			BT_IO_OPT_INVALID);
    1238. 

  1238. 	if (gerr) {
    1239. 

  1239. 		error("%s", gerr->message);
    1240. 

  1240. 		g_error_free(gerr);
    1241. 

  1241. 		sap_server_remove_conn(server);
    1242. 

  1242. 		return;
    1243. 

  1243. 	}
    1244. 

  1244. 

  1245. 	ba2str(&dst, dstaddr);
    1246. 

  1246. 

  1247. 	ret = btd_request_authorization(&src, &dst, SAP_UUID, connect_auth_cb,
    1248. 

  1248. 								server);
    1249. 

  1249. 	if (ret == 0) {
    1250. 

  1250. 		error("Authorization failure");
    1251. 

  1251. 		sap_server_remove_conn(server);
    1252. 

  1252. 		return;
    1253. 

  1253. 	}
    1254. 

  1254. 

  1255. 	DBG("Authorizing incoming SAP connection from %s", dstaddr);
    1256. 

  1256. }
    1257. 

  1257. 

  1258. static DBusMessage *disconnect(DBusConnection *conn, DBusMessage *msg,
    1259. 

  1259. 								void *data)
    1260. 

  1260. {
    1261. 

  1261. 	struct sap_server *server = data;
    1262. 

  1262. 

  1263. 	if (!server)
    1264. 

  1264. 		return btd_error_failed(msg, "Server internal error.");
    1265. 

  1265. 

  1266. 	DBG("conn %p", server->conn);
    1267. 

  1267. 

  1268. 	if (!server->conn)
    1269. 

  1269. 		return btd_error_failed(msg, "Client already disconnected");
    1270. 

  1270. 

  1271. 	if (disconnect_req(server, SAP_DISCONNECTION_TYPE_GRACEFUL) < 0)
    1272. 

  1272. 		return btd_error_failed(msg, "There is no active connection");
    1273. 

  1273. 

  1274. 	return dbus_message_new_method_return(msg);
    1275. 

  1275. }
    1276. 

  1276. 

  1277. static gboolean server_property_get_connected(
    1278. 

  1278. 					const GDBusPropertyTable *property,
    1279. 

  1279. 					DBusMessageIter *iter, void *data)
    1280. 

  1280. {
    1281. 

  1281. 	struct sap_server *server = data;
    1282. 

  1282. 	struct sap_connection *conn = server->conn;
    1283. 

  1283. 	dbus_bool_t connected;
    1284. 

  1284. 

  1285. 	if (!conn) {
    1286. 

  1286. 		connected = FALSE;
    1287. 

  1287. 		goto append;
    1288. 

  1288. 	}
    1289. 

  1289. 

  1290. 	connected = (conn->state == SAP_STATE_CONNECTED ||
    1291. 

  1291. 				conn->state == SAP_STATE_GRACEFUL_DISCONNECT);
    1292. 

  1292. 

  1293. append:
    1294. 

  1294. 	dbus_message_iter_append_basic(iter, DBUS_TYPE_BOOLEAN, &connected);
    1295. 

  1295. 

  1296. 	return TRUE;
    1297. 

  1297. }
    1298. 

  1298. 

  1299. static const GDBusMethodTable server_methods[] = {
    1300. 

  1300. 	{ GDBUS_METHOD("Disconnect", NULL, NULL, disconnect) },
    1301. 

  1301. 	{ }
    1302. 

  1302. };
    1303. 

  1303. 

  1304. static const GDBusPropertyTable server_properties[] = {
    1305. 

  1305. 	{ "Connected", "b", server_property_get_connected },
    1306. 

  1306. 	{ }
    1307. 

  1307. };
    1308. 

  1308. 

  1309. static void server_remove(struct sap_server *server)
    1310. 

  1310. {
    1311. 

  1311. 	if (!server)
    1312. 

  1312. 		return;
    1313. 

  1313. 

  1314. 	sap_server_remove_conn(server);
    1315. 

  1315. 

  1316. 	adapter_service_remove(server->adapter, server->record_id);
    1317. 

  1317. 

  1318. 	if (server->listen_io) {
    1319. 

  1319. 		g_io_channel_shutdown(server->listen_io, TRUE, NULL);
    1320. 

  1320. 		g_io_channel_unref(server->listen_io);
    1321. 

  1321. 		server->listen_io = NULL;
    1322. 

  1322. 	}
    1323. 

  1323. 

  1324. 	btd_adapter_unref(server->adapter);
    1325. 

  1325. 	g_free(server);
    1326. 

  1326. }
    1327. 

  1327. 

  1328. static void destroy_sap_interface(void *data)
    1329. 

  1329. {
    1330. 

  1330. 	struct sap_server *server = data;
    1331. 

  1331. 

  1332. 	DBG("Unregistered interface %s on path %s", SAP_SERVER_INTERFACE,
    1333. 

  1333. 					adapter_get_path(server->adapter));
    1334. 

  1334. 

  1335. 	server_remove(server);
    1336. 

  1336. }
    1337. 

  1337. 

  1338. int sap_server_register(struct btd_adapter *adapter)
    1339. 

  1339. {
    1340. 

  1340. 	sdp_record_t *record = NULL;
    1341. 

  1341. 	GError *gerr = NULL;
    1342. 

  1342. 	GIOChannel *io;
    1343. 

  1343. 	struct sap_server *server;
    1344. 

  1344. 

  1345. 	if (sap_init() < 0) {
    1346. 

  1346. 		error("Sap driver initialization failed.");
    1347. 

  1347. 		return -1;
    1348. 

  1348. 	}
    1349. 

  1349. 

  1350. 	record = create_sap_record(SAP_SERVER_CHANNEL);
    1351. 

  1351. 	if (!record) {
    1352. 

  1352. 		error("Creating SAP SDP record failed.");
    1353. 

  1353. 		goto sdp_err;
    1354. 

  1354. 	}
    1355. 

  1355. 

  1356. 	if (adapter_service_add(adapter, record) < 0) {
    1357. 

  1357. 		error("Adding SAP SDP record to the SDP server failed.");
    1358. 

  1358. 		sdp_record_free(record);
    1359. 

  1359. 		goto sdp_err;
    1360. 

  1360. 	}
    1361. 

  1361. 

  1362. 	server = g_new0(struct sap_server, 1);
    1363. 

  1363. 	server->adapter = btd_adapter_ref(adapter);
    1364. 

  1364. 	server->record_id = record->handle;
    1365. 

  1365. 

  1366. 	io = bt_io_listen(NULL, connect_confirm_cb, server,
    1367. 

  1367. 			NULL, &gerr,
    1368. 

  1368. 			BT_IO_OPT_SOURCE_BDADDR,
    1369. 

  1369. 			btd_adapter_get_address(adapter),
    1370. 

  1370. 			BT_IO_OPT_CHANNEL, SAP_SERVER_CHANNEL,
    1371. 

  1371. 			BT_IO_OPT_SEC_LEVEL, BT_IO_SEC_HIGH,
    1372. 

  1372. 			BT_IO_OPT_CENTRAL, TRUE,
    1373. 

  1373. 			BT_IO_OPT_INVALID);
    1374. 

  1374. 	if (!io) {
    1375. 

  1375. 		error("Can't listen at channel %d.", SAP_SERVER_CHANNEL);
    1376. 

  1376. 		g_error_free(gerr);
    1377. 

  1377. 		goto server_err;
    1378. 

  1378. 	}
    1379. 

  1379. 	server->listen_io = io;
    1380. 

  1380. 

  1381. 	if (!g_dbus_register_interface(btd_get_dbus_connection(),
    1382. 

  1382. 					adapter_get_path(server->adapter),
    1383. 

  1383. 					SAP_SERVER_INTERFACE,
    1384. 

  1384. 					server_methods, NULL,
    1385. 

  1385. 					server_properties, server,
    1386. 

  1386. 					destroy_sap_interface)) {
    1387. 

  1387. 		error("D-Bus failed to register %s interface",
    1388. 

  1388. 							SAP_SERVER_INTERFACE);
    1389. 

  1389. 		goto server_err;
    1390. 

  1390. 	}
    1391. 

  1391. 

  1392. 	DBG("server %p, listen socket 0x%02x", server,
    1393. 

  1393. 						g_io_channel_unix_get_fd(io));
    1394. 

  1394. 

  1395. 	return 0;
    1396. 

  1396. 

  1397. server_err:
    1398. 

  1398. 	server_remove(server);
    1399. 

  1399. sdp_err:
    1400. 

  1400. 	sap_exit();
    1401. 

  1401. 

  1402. 	return -1;
    1403. 

  1403. }
    1404. 

  1404. 

  1405. void sap_server_unregister(const char *path)
    1406. 

  1406. {
    1407. 

  1407. 	g_dbus_unregister_interface(btd_get_dbus_connection(),
    1408. 

  1408. 						path, SAP_SERVER_INTERFACE);
    1409. 

  1409. 

  1410. 	sap_exit();
    1411. 

  1411. }
    1412.