From: Brian Gix <bgix@codeaurora.org>
To: Koustuv Ghosh <koustuvg@gmail.com>
Cc: Vinicius Costa Gomes <vinicius.gomes@openbossa.org>,
linux-bluetooth@vger.kernel.org
Subject: Re: [RFC v2 7/9] Bluetooth: Add support for SMP confirmation checks
Date: Tue, 07 Dec 2010 22:33:24 -0800 [thread overview]
Message-ID: <4CFF26B4.8020607@codeaurora.org> (raw)
In-Reply-To: <AANLkTikkMK6gXigQ49iMa25c2XZ1Dx9hp7DvWR=8_3XQ@mail.gmail.com>
Hi Koustuv,
On 12/07/2010 9:48 PM, Koustuv Ghosh wrote:
> Hello Vinicus,
> regarding the below routine,
> is it not good to check the IO capabilities and authentication
> rquirement of the remote device from the skb inside this routine and
> based on that we can trigger JustWorks or PassKey paring method.
> Though I know you are implementing only JustWorks
> but I feel it will be good approach to parse the response and then
> trigger the paring method.
The way LE pairing is suppose to work is that each of the two devices
declares what it wants from the process ((Permanent)Pairing and/or
Man-In-The-Middle (MITM) protection) and what kind of I/O it has to
perform the required steps.
If *either* side wants MITM, then it will be attempted, but if the
I/O capabilities are incompatible with MITM, then JUST_WORKS must be
done instead. The only special case here is if both side *Don't* want
MITM, and at least one side does not have OOB capabilities. In that
case, JUST_WORKS is always used, regardless of the I/O Capabilities.
This creates the situation that going into the process, neither side
knows for sure whether MITM protection is provided. So at "completion"
of the pairing process, the level of protection provided must be
advertised to the upper layers. This gives the individual profiles
the protection level provided, so that they may reject any transactions
that do not conform to their required security level.
In other words, you can request MITM (highest) security, but you cannot
require it during pairing. You will get MITM only if possible. It *will
not* prevent pairing from happening. however you will always know at
completion what level has been achieved.
>
>
> static void smp_cmd_pairing_rsp(struct l2cap_conn *conn, struct sk_buff *skb)
> {
> + struct smp_cmd_pairing *rp = (void *) skb->data;
> struct smp_cmd_pairing_confirm cp;
> + struct crypto_blkcipher *tfm = conn->hcon->hdev->tfm;
> + int ret;
> + u8 k[16], res[16];
>
> - BT_DBG("");
> + /* Just Works */
> + memset(k, 0, sizeof(k));
> +
> + conn->pres[0] = SMP_CMD_PAIRING_RSP;
> + memcpy(&conn->pres[1], rp, sizeof(*rp));
> + skb_pull(skb, sizeof(*rp));
>
> - memset(&cp, 0, sizeof(struct smp_cmd_pairing_confirm));
> + ret = smp_rand(conn->prnd);
> + if (ret)
> + return;
> +
> + ret = smp_c1(tfm, k, conn->prnd, conn->preq, conn->pres, 0,
> + conn->src, 0, conn->dst, res);
> + if (ret)
> + return;
>
> smp_send_cmd(conn, SMP_CMD_PAIRING_CONFIRM, sizeof(cp),&cp);
> }
>
> On Tue, Dec 7, 2010 at 3:13 AM, Vinicius Costa Gomes
> <vinicius.gomes@openbossa.org> wrote:
>> This adds supports for verifying the confirmation value that the
>> remote side has sent. This includes support for generating and sending
>> the random value used to produce the confirmation value.
>>
>> Signed-off-by: Vinicius Costa Gomes<vinicius.gomes@openbossa.org>
>> ---
>> include/net/bluetooth/l2cap.h | 5 ++
>> net/bluetooth/smp.c | 121 ++++++++++++++++++++++++++++++++---------
>> 2 files changed, 101 insertions(+), 25 deletions(-)
>>
>> diff --git a/include/net/bluetooth/l2cap.h b/include/net/bluetooth/l2cap.h
>> index a3cb1ab..bcda2aa 100644
>> --- a/include/net/bluetooth/l2cap.h
>> +++ b/include/net/bluetooth/l2cap.h
>> @@ -290,6 +290,11 @@ struct l2cap_conn {
>>
>> __u8 disc_reason;
>>
>> + __u8 preq[7];
>> + __u8 pres[7];
>> + __u8 prnd[16];
>> + __u8 pcnf[16];
>> +
>> struct l2cap_chan_list chan_list;
>> };
>>
>> diff --git a/net/bluetooth/smp.c b/net/bluetooth/smp.c
>> index b62160e..7d7e8ad 100644
>> --- a/net/bluetooth/smp.c
>> +++ b/net/bluetooth/smp.c
>> @@ -203,7 +203,9 @@ static void smp_cmd_pairing_req(struct l2cap_conn *conn, struct sk_buff *skb)
>>
>> BT_DBG("");
>>
>> - skb_pull(skb, sizeof(struct smp_cmd_pairing));
>> + conn->preq[0] = SMP_CMD_PAIRING_REQ;
>> + memcpy(&conn->preq[1], rp, sizeof(*rp));
>> + skb_pull(skb, sizeof(*rp));
>>
>> rp->io_capability = 0x00;
>> rp->oob_flag = 0x00;
>> @@ -212,64 +214,125 @@ static void smp_cmd_pairing_req(struct l2cap_conn *conn, struct sk_buff *skb)
>> rp->resp_key_dist = 0x00;
>> rp->auth_req&= 0x05;
>>
>> + conn->pres[0] = SMP_CMD_PAIRING_RSP;
>> + memcpy(&conn->pres[1], rp, sizeof(rp));
>> +
>> smp_send_cmd(conn, SMP_CMD_PAIRING_RSP, sizeof(*rp), rp);
>> }
>>
>> static void smp_cmd_pairing_rsp(struct l2cap_conn *conn, struct sk_buff *skb)
>> {
>> + struct smp_cmd_pairing *rp = (void *) skb->data;
>> struct smp_cmd_pairing_confirm cp;
>> + struct crypto_blkcipher *tfm = conn->hcon->hdev->tfm;
>> + int ret;
>> + u8 k[16], res[16];
>>
>> - BT_DBG("");
>> + /* Just Works */
>> + memset(k, 0, sizeof(k));
>> +
>> + conn->pres[0] = SMP_CMD_PAIRING_RSP;
>> + memcpy(&conn->pres[1], rp, sizeof(*rp));
>> + skb_pull(skb, sizeof(*rp));
>> +
>> + ret = smp_rand(conn->prnd);
>> + if (ret)
>> + return;
>>
>> - memset(&cp, 0, sizeof(struct smp_cmd_pairing_confirm));
>> + ret = smp_c1(tfm, k, conn->prnd, conn->preq, conn->pres, 0,
>> + conn->src, 0, conn->dst, res);
>> + if (ret)
>> + return;
>> +
>> + swap128(res, cp.confirm_val);
>>
>> smp_send_cmd(conn, SMP_CMD_PAIRING_CONFIRM, sizeof(cp),&cp);
>> }
>>
>> static void smp_cmd_pairing_confirm(struct l2cap_conn *conn, struct sk_buff *skb)
>> {
>> + struct crypto_blkcipher *tfm = conn->hcon->hdev->tfm;
>> +
>> BT_DBG("");
>>
>> - if (conn->hcon->out) {
>> - struct smp_cmd_pairing_random random;
>> + memcpy(conn->pcnf, skb->data, 16);
>> + skb_pull(skb, 16);
>>
>> - BT_DBG("master");
>> + if (conn->hcon->out) {
>> + u8 random[16];
>>
>> - memset(&random, 0, sizeof(struct smp_cmd_pairing_random));
>> + swap128(conn->prnd, random);
>>
>> - smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, sizeof(random),
>> -&random);
>> + smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, 16, random);
>> } else {
>> - struct smp_cmd_pairing_confirm confirm;
>> + struct smp_cmd_pairing_confirm cp;
>> + int ret;
>> + u8 k[16], res[16];
>> +
>> + /* Just Works */
>> + memset(k, 0, sizeof(k));
>>
>> - BT_DBG("slave");
>> + ret = smp_rand(conn->prnd);
>> + if (ret)
>> + return;
>>
>> - memset(&confirm, 0, sizeof(struct smp_cmd_pairing_confirm));
>> + ret = smp_c1(tfm, k, conn->prnd, conn->preq, conn->pres, 0,
>> + conn->dst, 0, conn->src, res);
>> + if (ret)
>> + return;
>>
>> - smp_send_cmd(conn, SMP_CMD_PAIRING_CONFIRM, sizeof(confirm),
>> -&confirm);
>> + swap128(res, cp.confirm_val);
>> +
>> + smp_send_cmd(conn, SMP_CMD_PAIRING_CONFIRM, sizeof(cp),&cp);
>> }
>> }
>>
>> static void smp_cmd_pairing_random(struct l2cap_conn *conn, struct sk_buff *skb)
>> {
>> - struct smp_cmd_pairing_random cp;
>> + struct crypto_blkcipher *tfm = conn->hcon->hdev->tfm;
>> + int ret;
>> + u8 k[16], key[16], res[16], random[16], confirm[16], buf[128];
>> +
>> + swap128(skb->data, random);
>> + skb_pull(skb, 16);
>> +
>> + memset(k, 0, sizeof(k));
>> +
>> + if (conn->hcon->out)
>> + ret = smp_c1(tfm, k, random, conn->preq, conn->pres, 0,
>> + conn->src, 0, conn->dst, res);
>> + else
>> + ret = smp_c1(tfm, k, random, conn->preq, conn->pres, 0,
>> + conn->dst, 0, conn->src, res);
>> + if (ret)
>> + return;
>>
>> - BT_DBG("");
>> + swap128(res, confirm);
>>
>> - skb_pull(skb, sizeof(struct smp_cmd_pairing_random));
>> + if (memcmp(conn->pcnf, confirm, 16) != 0) {
>> + struct smp_cmd_pairing_fail cp;
>>
>> - /* FIXME: check if random matches */
>> + BT_ERR("Pairing failed (confirmation values mismatch)");
>> + cp.reason = SMP_CONFIRM_FAILED;
>> + smp_send_cmd(conn, SMP_CMD_PAIRING_FAIL, sizeof(cp),&cp);
>> + return;
>> + }
>>
>> if (conn->hcon->out) {
>> - BT_DBG("master");
>> - /* FIXME: start encryption */
>> + smp_s1(tfm, k, random, conn->prnd, key);
>> +
>> + hex_dump_to_buffer(key, sizeof(key), 16, 1, buf, sizeof(buf), 0);
>> + BT_DBG("key %s", buf);
>> } else {
>> - BT_DBG("slave");
>> + u8 r[16];
>>
>> - memset(&cp, 0, sizeof(struct smp_cmd_pairing_random));
>> + swap128(conn->prnd, r);
>> + smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, 16, r);
>>
>> - smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, sizeof(cp),&cp);
>> + smp_s1(tfm, k, conn->prnd, random, key);
>> +
>> + hex_dump_to_buffer(key, sizeof(key), 16, 1, buf, sizeof(buf), 0);
>> + BT_DBG("key %s", buf);
>> }
>> }
>>
>> @@ -280,8 +343,9 @@ static void smp_cmd_security_req(struct l2cap_conn *conn, struct sk_buff *skb)
>>
>> BT_DBG("");
>>
>> - skb_pull(skb, sizeof(struct smp_cmd_security_req));
>> - memset(&cp, 0, sizeof(struct smp_cmd_pairing));
>> + skb_pull(skb, sizeof(*rp));
>> +
>> + memset(&cp, 0, sizeof(cp));
>>
>> cp.io_capability = 0x00;
>> cp.oob_flag = 0x00;
>> @@ -290,6 +354,9 @@ static void smp_cmd_security_req(struct l2cap_conn *conn, struct sk_buff *skb)
>> cp.resp_key_dist = 0x00;
>> cp.auth_req = rp->auth_req& 0x05;
>>
>> + conn->preq[0] = SMP_CMD_PAIRING_REQ;
>> + memcpy(&conn->preq[1],&cp, sizeof(cp));
>> +
>> smp_send_cmd(conn, SMP_CMD_PAIRING_REQ, sizeof(cp),&cp);
>> }
>>
>> @@ -323,6 +390,10 @@ int smp_conn_security(struct l2cap_conn *conn, __u8 sec_level)
>> cp.init_key_dist = 0x00;
>> cp.resp_key_dist = 0x00;
>> cp.auth_req = authreq;
>> +
>> + conn->preq[0] = SMP_CMD_PAIRING_REQ;
>> + memcpy(&conn->preq[1],&cp, sizeof(cp));
>> +
>> smp_send_cmd(conn, SMP_CMD_PAIRING_REQ, sizeof(cp),&cp);
>> } else {
>> struct smp_cmd_security_req cp;
>> --
>> 1.7.3.2
>>
>> --
>> To unsubscribe from this list: send the line "unsubscribe linux-bluetooth" in
>> the body of a message to majordomo@vger.kernel.org
>> More majordomo info at http://vger.kernel.org/majordomo-info.html
>>
> --
> To unsubscribe from this list: send the line "unsubscribe linux-bluetooth" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
--
Brian Gix
bgix@codeaurora.org
Employee of Qualcomm Innovation Center, Inc.
Qualcomm Innovation Center, Inc. is a member of Code Aurora Forum
next prev parent reply other threads:[~2010-12-08 6:33 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-12-06 21:43 [RFC v2 0/9] SMP Implementation Vinicius Costa Gomes
2010-12-06 21:43 ` [RFC v2 1/9] Bluetooth: Add SMP command structures Vinicius Costa Gomes
2010-12-06 21:43 ` [RFC v2 2/9] Bluetooth: Implement the first SMP commands Vinicius Costa Gomes
2010-12-07 16:03 ` Gustavo F. Padovan
2010-12-07 22:05 ` Vinicius Costa Gomes
2010-12-07 16:10 ` Gustavo F. Padovan
2010-12-07 22:06 ` Vinicius Costa Gomes
2010-12-06 21:43 ` [RFC v2 3/9] Bluetooth: Start SMP procedure Vinicius Costa Gomes
2010-12-07 16:11 ` Gustavo F. Padovan
2010-12-07 22:08 ` Vinicius Costa Gomes
2010-12-06 21:43 ` [RFC v2 4/9] Bluetooth: simple SMP pairing negotiation Vinicius Costa Gomes
2010-12-07 16:39 ` Gustavo F. Padovan
2010-12-07 18:26 ` Brian Gix
2010-12-07 22:27 ` Vinicius Costa Gomes
2010-12-06 21:43 ` [RFC v2 5/9] Bluetooth: Add support for using the crypto subsystem Vinicius Costa Gomes
2010-12-07 17:27 ` Gustavo F. Padovan
2010-12-07 17:51 ` Vinicius Costa Gomes
2010-12-07 18:05 ` Gustavo F. Padovan
2010-12-07 18:35 ` Brian Gix
2010-12-07 19:06 ` Anderson Lizardo
2010-12-07 19:21 ` Brian Gix
2010-12-07 19:23 ` Vinicius Costa Gomes
2010-12-07 19:34 ` Brian Gix
2010-12-06 21:43 ` [RFC v2 6/9] Bluetooth: LE SMP Cryptoolbox functions Vinicius Costa Gomes
2010-12-06 21:43 ` [RFC v2 7/9] Bluetooth: Add support for SMP confirmation checks Vinicius Costa Gomes
2010-12-07 17:41 ` Gustavo F. Padovan
2010-12-08 5:48 ` Koustuv Ghosh
2010-12-08 6:33 ` Brian Gix [this message]
2010-12-08 6:19 ` Koustuv Ghosh
2010-12-06 21:43 ` [RFC v2 8/9] Bluetooth: Add support for LE Start Encryption Vinicius Costa Gomes
2010-12-07 17:38 ` Gustavo F. Padovan
2010-12-07 18:58 ` Brian Gix
2010-12-06 21:43 ` [RFC v2 9/9] Bluetooth: Add support for resuming socket when SMP is finished Vinicius Costa Gomes
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4CFF26B4.8020607@codeaurora.org \
--to=bgix@codeaurora.org \
--cc=koustuvg@gmail.com \
--cc=linux-bluetooth@vger.kernel.org \
--cc=vinicius.gomes@openbossa.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).