* [PATCH -v2 1/2] Bluetooth: notify userspace of security level change
@ 2012-05-07 6:07 Gustavo Padovan
2012-05-07 6:07 ` [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt Gustavo Padovan
` (2 more replies)
0 siblings, 3 replies; 5+ messages in thread
From: Gustavo Padovan @ 2012-05-07 6:07 UTC (permalink / raw)
To: linux-bluetooth
When the userspace request a security level change it needs to be notified
of when the change is complete.
This patch make the socket non writable while the security request is
ongoing. If it succeeds POLL_OUT is emitted, otherwise the channel is
disconnected.
Signed-off-by: Gustavo Padovan <gustavo@padovan.org>
---
include/net/bluetooth/bluetooth.h | 1 +
net/bluetooth/af_bluetooth.c | 2 +-
net/bluetooth/hci_event.c | 7 +++++++
net/bluetooth/l2cap_core.c | 5 +++++
net/bluetooth/l2cap_sock.c | 15 ++++++++++-----
5 files changed, 24 insertions(+), 6 deletions(-)
diff --git a/include/net/bluetooth/bluetooth.h b/include/net/bluetooth/bluetooth.h
index 2fb268f..c34a9a6 100644
--- a/include/net/bluetooth/bluetooth.h
+++ b/include/net/bluetooth/bluetooth.h
@@ -195,6 +195,7 @@ struct bt_sock {
struct list_head accept_q;
struct sock *parent;
u32 defer_setup;
+ bool suspended;
};
struct bt_sock_list {
diff --git a/net/bluetooth/af_bluetooth.c b/net/bluetooth/af_bluetooth.c
index 72eb187..6fb68a9 100644
--- a/net/bluetooth/af_bluetooth.c
+++ b/net/bluetooth/af_bluetooth.c
@@ -450,7 +450,7 @@ unsigned int bt_sock_poll(struct file *file, struct socket *sock, poll_table *wa
sk->sk_state == BT_CONFIG)
return mask;
- if (sock_writeable(sk))
+ if (!bt_sk(sk)->suspended && sock_writeable(sk))
mask |= POLLOUT | POLLWRNORM | POLLWRBAND;
else
set_bit(SOCK_ASYNC_NOSPACE, &sk->sk_socket->flags);
diff --git a/net/bluetooth/hci_event.c b/net/bluetooth/hci_event.c
index b739baf..4d44aaa 100644
--- a/net/bluetooth/hci_event.c
+++ b/net/bluetooth/hci_event.c
@@ -2062,6 +2062,12 @@ static inline void hci_encrypt_change_evt(struct hci_dev *hdev, struct sk_buff *
clear_bit(HCI_CONN_ENCRYPT_PEND, &conn->flags);
+ if (ev->status && conn->state == BT_CONNECTED) {
+ hci_acl_disconn(conn, 0x13);
+ hci_conn_put(conn);
+ goto unlock;
+ }
+
if (conn->state == BT_CONFIG) {
if (!ev->status)
conn->state = BT_CONNECTED;
@@ -2072,6 +2078,7 @@ static inline void hci_encrypt_change_evt(struct hci_dev *hdev, struct sk_buff *
hci_encrypt_cfm(conn, ev->status, ev->encrypt);
}
+unlock:
hci_dev_unlock(hdev);
}
diff --git a/net/bluetooth/l2cap_core.c b/net/bluetooth/l2cap_core.c
index 66a1a55..7a90b00 100644
--- a/net/bluetooth/l2cap_core.c
+++ b/net/bluetooth/l2cap_core.c
@@ -4912,6 +4912,11 @@ int l2cap_security_cfm(struct hci_conn *hcon, u8 status, u8 encrypt)
if (!status && (chan->state == BT_CONNECTED ||
chan->state == BT_CONFIG)) {
+ struct sock *sk = chan->sk;
+
+ bt_sk(sk)->suspended = false;
+ sk->sk_state_change(sk);
+
l2cap_check_encryption(chan, encrypt);
l2cap_chan_unlock(chan);
continue;
diff --git a/net/bluetooth/l2cap_sock.c b/net/bluetooth/l2cap_sock.c
index 82b6368..85dbe64 100644
--- a/net/bluetooth/l2cap_sock.c
+++ b/net/bluetooth/l2cap_sock.c
@@ -596,11 +596,16 @@ static int l2cap_sock_setsockopt(struct socket *sock, int level, int optname, ch
sk->sk_state = BT_CONFIG;
chan->state = BT_CONFIG;
- /* or for ACL link, under defer_setup time */
- } else if (sk->sk_state == BT_CONNECT2 &&
- bt_sk(sk)->defer_setup) {
- err = l2cap_chan_check_security(chan);
- } else {
+ /* or for ACL link */
+ } else if ((sk->sk_state == BT_CONNECT2 &&
+ bt_sk(sk)->defer_setup) ||
+ sk->sk_state == BT_CONNECTED) {
+ if (!l2cap_chan_check_security(chan))
+ bt_sk(sk)->suspended = true;
+ else
+ sk->sk_state_change(sk);
+ }
+ else {
err = -EINVAL;
}
break;
--
1.7.10
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt
2012-05-07 6:07 [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Gustavo Padovan
@ 2012-05-07 6:07 ` Gustavo Padovan
2012-05-07 17:38 ` Marcel Holtmann
2012-05-07 17:35 ` [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Marcel Holtmann
2012-05-07 17:56 ` Johan Hedberg
2 siblings, 1 reply; 5+ messages in thread
From: Gustavo Padovan @ 2012-05-07 6:07 UTC (permalink / raw)
To: linux-bluetooth
During a security level elevation we need to keep track of the current
security level of a connection until the new one is not confirmed.
Signed-off-by: Gustavo Padovan <gustavo@padovan.org>
---
net/bluetooth/l2cap_sock.c | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/net/bluetooth/l2cap_sock.c b/net/bluetooth/l2cap_sock.c
index 85dbe64..86abad1 100644
--- a/net/bluetooth/l2cap_sock.c
+++ b/net/bluetooth/l2cap_sock.c
@@ -379,7 +379,10 @@ static int l2cap_sock_getsockopt(struct socket *sock, int level, int optname, ch
}
memset(&sec, 0, sizeof(sec));
- sec.level = chan->sec_level;
+ if (chan->conn)
+ sec.level = chan->conn->hcon->sec_level;
+ else
+ sec.level = chan->sec_level;
if (sk->sk_state == BT_CONNECTED)
sec.key_size = chan->conn->hcon->enc_key_size;
--
1.7.10
^ permalink raw reply related [flat|nested] 5+ messages in thread
* Re: [PATCH -v2 1/2] Bluetooth: notify userspace of security level change
2012-05-07 6:07 [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Gustavo Padovan
2012-05-07 6:07 ` [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt Gustavo Padovan
@ 2012-05-07 17:35 ` Marcel Holtmann
2012-05-07 17:56 ` Johan Hedberg
2 siblings, 0 replies; 5+ messages in thread
From: Marcel Holtmann @ 2012-05-07 17:35 UTC (permalink / raw)
To: Gustavo Padovan; +Cc: linux-bluetooth
Hi Gustavo,
> When the userspace request a security level change it needs to be notified
> of when the change is complete.
> This patch make the socket non writable while the security request is
> ongoing. If it succeeds POLL_OUT is emitted, otherwise the channel is
> disconnected.
>
> Signed-off-by: Gustavo Padovan <gustavo@padovan.org>
> ---
> include/net/bluetooth/bluetooth.h | 1 +
> net/bluetooth/af_bluetooth.c | 2 +-
> net/bluetooth/hci_event.c | 7 +++++++
> net/bluetooth/l2cap_core.c | 5 +++++
> net/bluetooth/l2cap_sock.c | 15 ++++++++++-----
> 5 files changed, 24 insertions(+), 6 deletions(-)
Acked-by: Marcel Holtmann <marcel@holtmann.org>
Regards
Marcel
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt
2012-05-07 6:07 ` [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt Gustavo Padovan
@ 2012-05-07 17:38 ` Marcel Holtmann
0 siblings, 0 replies; 5+ messages in thread
From: Marcel Holtmann @ 2012-05-07 17:38 UTC (permalink / raw)
To: Gustavo Padovan; +Cc: linux-bluetooth
Hi Gustavo,
> During a security level elevation we need to keep track of the current
> security level of a connection until the new one is not confirmed.
>
> Signed-off-by: Gustavo Padovan <gustavo@padovan.org>
> ---
> net/bluetooth/l2cap_sock.c | 5 ++++-
> 1 file changed, 4 insertions(+), 1 deletion(-)
Acked-by: Marcel Holtmann <marcel@holtmann.org>
Regards
Marcel
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [PATCH -v2 1/2] Bluetooth: notify userspace of security level change
2012-05-07 6:07 [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Gustavo Padovan
2012-05-07 6:07 ` [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt Gustavo Padovan
2012-05-07 17:35 ` [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Marcel Holtmann
@ 2012-05-07 17:56 ` Johan Hedberg
2 siblings, 0 replies; 5+ messages in thread
From: Johan Hedberg @ 2012-05-07 17:56 UTC (permalink / raw)
To: Gustavo Padovan; +Cc: linux-bluetooth
Hi Gustavo,
On Mon, May 07, 2012, Gustavo Padovan wrote:
> When the userspace request a security level change it needs to be notified
> of when the change is complete.
> This patch make the socket non writable while the security request is
> ongoing. If it succeeds POLL_OUT is emitted, otherwise the channel is
> disconnected.
>
> Signed-off-by: Gustavo Padovan <gustavo@padovan.org>
> ---
> include/net/bluetooth/bluetooth.h | 1 +
> net/bluetooth/af_bluetooth.c | 2 +-
> net/bluetooth/hci_event.c | 7 +++++++
> net/bluetooth/l2cap_core.c | 5 +++++
> net/bluetooth/l2cap_sock.c | 15 ++++++++++-----
> 5 files changed, 24 insertions(+), 6 deletions(-)
Both patches have been applied to bluetooth.git.
Johan
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2012-05-07 17:56 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-05-07 6:07 [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Gustavo Padovan
2012-05-07 6:07 ` [PATCH -v2 2/2] Bluetooth: report the right security level in getsockopt Gustavo Padovan
2012-05-07 17:38 ` Marcel Holtmann
2012-05-07 17:35 ` [PATCH -v2 1/2] Bluetooth: notify userspace of security level change Marcel Holtmann
2012-05-07 17:56 ` Johan Hedberg
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).