2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (C) 2011 Nokia Corporation and/or its subsidiary(-ies).
5 This program is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License version 2 as
7 published by the Free Software Foundation;
9 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
10 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
11 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
12 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
13 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
14 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
18 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
19 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
20 SOFTWARE IS DISCLAIMED.
23 #include <net/bluetooth/bluetooth.h>
24 #include <net/bluetooth/hci_core.h>
25 #include <net/bluetooth/l2cap.h>
26 #include <net/bluetooth/mgmt.h>
27 #include <net/bluetooth/smp.h>
28 #include <linux/crypto.h>
29 #include <linux/scatterlist.h>
30 #include <crypto/b128ops.h>
32 #define SMP_TIMEOUT msecs_to_jiffies(30000)
34 static inline void swap128(u8 src[16], u8 dst[16])
37 for (i = 0; i < 16; i++)
41 static inline void swap56(u8 src[7], u8 dst[7])
44 for (i = 0; i < 7; i++)
48 static int smp_e(struct crypto_blkcipher *tfm, const u8 *k, u8 *r)
50 struct blkcipher_desc desc;
51 struct scatterlist sg;
53 unsigned char iv[128];
56 BT_ERR("tfm %p", tfm);
63 err = crypto_blkcipher_setkey(tfm, k, 16);
65 BT_ERR("cipher setkey failed: %d", err);
69 sg_init_one(&sg, r, 16);
71 iv_len = crypto_blkcipher_ivsize(tfm);
73 memset(&iv, 0xff, iv_len);
74 crypto_blkcipher_set_iv(tfm, iv, iv_len);
77 err = crypto_blkcipher_encrypt(&desc, &sg, &sg, 16);
79 BT_ERR("Encrypt data error %d", err);
84 static int smp_c1(struct crypto_blkcipher *tfm, u8 k[16], u8 r[16],
85 u8 preq[7], u8 pres[7], u8 _iat, bdaddr_t *ia,
86 u8 _rat, bdaddr_t *ra, u8 res[16])
93 /* p1 = pres || preq || _rat || _iat */
101 /* p2 = padding || ia || ra */
102 baswap((bdaddr_t *) (p2 + 4), ia);
103 baswap((bdaddr_t *) (p2 + 10), ra);
106 u128_xor((u128 *) res, (u128 *) r, (u128 *) p1);
108 /* res = e(k, res) */
109 err = smp_e(tfm, k, res);
111 BT_ERR("Encrypt data error");
115 /* res = res XOR p2 */
116 u128_xor((u128 *) res, (u128 *) res, (u128 *) p2);
118 /* res = e(k, res) */
119 err = smp_e(tfm, k, res);
121 BT_ERR("Encrypt data error");
126 static int smp_s1(struct crypto_blkcipher *tfm, u8 k[16],
127 u8 r1[16], u8 r2[16], u8 _r[16])
131 /* Just least significant octets from r1 and r2 are considered */
132 memcpy(_r, r1 + 8, 8);
133 memcpy(_r + 8, r2 + 8, 8);
135 err = smp_e(tfm, k, _r);
137 BT_ERR("Encrypt data error");
142 static int smp_rand(u8 *buf)
144 get_random_bytes(buf, 16);
149 static struct sk_buff *smp_build_cmd(struct l2cap_conn *conn, u8 code,
150 u16 dlen, void *data)
153 struct l2cap_hdr *lh;
156 len = L2CAP_HDR_SIZE + sizeof(code) + dlen;
161 skb = bt_skb_alloc(len, GFP_ATOMIC);
165 lh = (struct l2cap_hdr *) skb_put(skb, L2CAP_HDR_SIZE);
166 lh->len = cpu_to_le16(sizeof(code) + dlen);
167 lh->cid = cpu_to_le16(L2CAP_CID_SMP);
169 memcpy(skb_put(skb, sizeof(code)), &code, sizeof(code));
171 memcpy(skb_put(skb, dlen), data, dlen);
176 static void smp_send_cmd(struct l2cap_conn *conn, u8 code, u16 len, void *data)
178 struct sk_buff *skb = smp_build_cmd(conn, code, len, data);
180 BT_DBG("code 0x%2.2x", code);
185 skb->priority = HCI_PRIO_MAX;
186 hci_send_acl(conn->hchan, skb, 0);
188 cancel_delayed_work_sync(&conn->security_timer);
189 schedule_delayed_work(&conn->security_timer, SMP_TIMEOUT);
192 static __u8 authreq_to_seclevel(__u8 authreq)
194 if (authreq & SMP_AUTH_MITM)
195 return BT_SECURITY_HIGH;
197 return BT_SECURITY_MEDIUM;
200 static __u8 seclevel_to_authreq(__u8 sec_level)
203 case BT_SECURITY_HIGH:
204 return SMP_AUTH_MITM | SMP_AUTH_BONDING;
205 case BT_SECURITY_MEDIUM:
206 return SMP_AUTH_BONDING;
208 return SMP_AUTH_NONE;
212 static void build_pairing_cmd(struct l2cap_conn *conn,
213 struct smp_cmd_pairing *req,
214 struct smp_cmd_pairing *rsp,
219 if (test_bit(HCI_PAIRABLE, &conn->hcon->hdev->dev_flags)) {
220 dist_keys = SMP_DIST_ENC_KEY;
221 authreq |= SMP_AUTH_BONDING;
223 authreq &= ~SMP_AUTH_BONDING;
227 req->io_capability = conn->hcon->io_capability;
228 req->oob_flag = SMP_OOB_NOT_PRESENT;
229 req->max_key_size = SMP_MAX_ENC_KEY_SIZE;
230 req->init_key_dist = 0;
231 req->resp_key_dist = dist_keys;
232 req->auth_req = authreq;
236 rsp->io_capability = conn->hcon->io_capability;
237 rsp->oob_flag = SMP_OOB_NOT_PRESENT;
238 rsp->max_key_size = SMP_MAX_ENC_KEY_SIZE;
239 rsp->init_key_dist = 0;
240 rsp->resp_key_dist = req->resp_key_dist & dist_keys;
241 rsp->auth_req = authreq;
244 static u8 check_enc_key_size(struct l2cap_conn *conn, __u8 max_key_size)
246 struct smp_chan *smp = conn->smp_chan;
248 if ((max_key_size > SMP_MAX_ENC_KEY_SIZE) ||
249 (max_key_size < SMP_MIN_ENC_KEY_SIZE))
250 return SMP_ENC_KEY_SIZE;
252 smp->enc_key_size = max_key_size;
257 static void smp_failure(struct l2cap_conn *conn, u8 reason, u8 send)
259 struct hci_conn *hcon = conn->hcon;
262 smp_send_cmd(conn, SMP_CMD_PAIRING_FAIL, sizeof(reason),
265 clear_bit(HCI_CONN_ENCRYPT_PEND, &conn->hcon->flags);
266 mgmt_auth_failed(conn->hcon->hdev, conn->dst, hcon->type,
267 hcon->dst_type, reason);
269 if (test_and_clear_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags)) {
270 cancel_delayed_work_sync(&conn->security_timer);
271 smp_chan_destroy(conn);
275 #define JUST_WORKS 0x00
276 #define JUST_CFM 0x01
277 #define REQ_PASSKEY 0x02
278 #define CFM_PASSKEY 0x03
282 static const u8 gen_method[5][5] = {
283 { JUST_WORKS, JUST_CFM, REQ_PASSKEY, JUST_WORKS, REQ_PASSKEY },
284 { JUST_WORKS, JUST_CFM, REQ_PASSKEY, JUST_WORKS, REQ_PASSKEY },
285 { CFM_PASSKEY, CFM_PASSKEY, REQ_PASSKEY, JUST_WORKS, CFM_PASSKEY },
286 { JUST_WORKS, JUST_CFM, JUST_WORKS, JUST_WORKS, JUST_CFM },
287 { CFM_PASSKEY, CFM_PASSKEY, REQ_PASSKEY, JUST_WORKS, OVERLAP },
290 static int tk_request(struct l2cap_conn *conn, u8 remote_oob, u8 auth,
291 u8 local_io, u8 remote_io)
293 struct hci_conn *hcon = conn->hcon;
294 struct smp_chan *smp = conn->smp_chan;
299 /* Initialize key for JUST WORKS */
300 memset(smp->tk, 0, sizeof(smp->tk));
301 clear_bit(SMP_FLAG_TK_VALID, &smp->smp_flags);
303 BT_DBG("tk_request: auth:%d lcl:%d rem:%d", auth, local_io, remote_io);
305 /* If neither side wants MITM, use JUST WORKS */
306 /* If either side has unknown io_caps, use JUST WORKS */
307 /* Otherwise, look up method from the table */
308 if (!(auth & SMP_AUTH_MITM) ||
309 local_io > SMP_IO_KEYBOARD_DISPLAY ||
310 remote_io > SMP_IO_KEYBOARD_DISPLAY)
313 method = gen_method[remote_io][local_io];
315 /* If not bonding, don't ask user to confirm a Zero TK */
316 if (!(auth & SMP_AUTH_BONDING) && method == JUST_CFM)
319 /* If Just Works, Continue with Zero TK */
320 if (method == JUST_WORKS) {
321 set_bit(SMP_FLAG_TK_VALID, &smp->smp_flags);
325 /* Not Just Works/Confirm results in MITM Authentication */
326 if (method != JUST_CFM)
327 set_bit(SMP_FLAG_MITM_AUTH, &smp->smp_flags);
329 /* If both devices have Keyoard-Display I/O, the master
330 * Confirms and the slave Enters the passkey.
332 if (method == OVERLAP) {
333 if (hcon->link_mode & HCI_LM_MASTER)
334 method = CFM_PASSKEY;
336 method = REQ_PASSKEY;
339 /* Generate random passkey. Not valid until confirmed. */
340 if (method == CFM_PASSKEY) {
343 memset(key, 0, sizeof(key));
344 get_random_bytes(&passkey, sizeof(passkey));
346 put_unaligned_le32(passkey, key);
347 swap128(key, smp->tk);
348 BT_DBG("PassKey: %d", passkey);
351 hci_dev_lock(hcon->hdev);
353 if (method == REQ_PASSKEY)
354 ret = mgmt_user_passkey_request(hcon->hdev, conn->dst,
355 hcon->type, hcon->dst_type);
357 ret = mgmt_user_confirm_request(hcon->hdev, conn->dst,
358 hcon->type, hcon->dst_type,
359 cpu_to_le32(passkey), 0);
361 hci_dev_unlock(hcon->hdev);
366 static void confirm_work(struct work_struct *work)
368 struct smp_chan *smp = container_of(work, struct smp_chan, confirm);
369 struct l2cap_conn *conn = smp->conn;
370 struct crypto_blkcipher *tfm;
371 struct smp_cmd_pairing_confirm cp;
375 BT_DBG("conn %p", conn);
377 tfm = crypto_alloc_blkcipher("ecb(aes)", 0, CRYPTO_ALG_ASYNC);
379 reason = SMP_UNSPECIFIED;
386 ret = smp_c1(tfm, smp->tk, smp->prnd, smp->preq, smp->prsp, 0,
387 conn->src, conn->hcon->dst_type, conn->dst, res);
389 ret = smp_c1(tfm, smp->tk, smp->prnd, smp->preq, smp->prsp,
390 conn->hcon->dst_type, conn->dst, 0, conn->src,
393 reason = SMP_UNSPECIFIED;
397 clear_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags);
399 swap128(res, cp.confirm_val);
400 smp_send_cmd(smp->conn, SMP_CMD_PAIRING_CONFIRM, sizeof(cp), &cp);
405 smp_failure(conn, reason, 1);
408 static void random_work(struct work_struct *work)
410 struct smp_chan *smp = container_of(work, struct smp_chan, random);
411 struct l2cap_conn *conn = smp->conn;
412 struct hci_conn *hcon = conn->hcon;
413 struct crypto_blkcipher *tfm = smp->tfm;
414 u8 reason, confirm[16], res[16], key[16];
417 if (IS_ERR_OR_NULL(tfm)) {
418 reason = SMP_UNSPECIFIED;
422 BT_DBG("conn %p %s", conn, conn->hcon->out ? "master" : "slave");
425 ret = smp_c1(tfm, smp->tk, smp->rrnd, smp->preq, smp->prsp, 0,
426 conn->src, hcon->dst_type, conn->dst, res);
428 ret = smp_c1(tfm, smp->tk, smp->rrnd, smp->preq, smp->prsp,
429 hcon->dst_type, conn->dst, 0, conn->src, res);
431 reason = SMP_UNSPECIFIED;
435 swap128(res, confirm);
437 if (memcmp(smp->pcnf, confirm, sizeof(smp->pcnf)) != 0) {
438 BT_ERR("Pairing failed (confirmation values mismatch)");
439 reason = SMP_CONFIRM_FAILED;
447 memset(rand, 0, sizeof(rand));
450 smp_s1(tfm, smp->tk, smp->rrnd, smp->prnd, key);
453 memset(stk + smp->enc_key_size, 0,
454 SMP_MAX_ENC_KEY_SIZE - smp->enc_key_size);
456 if (test_and_set_bit(HCI_CONN_ENCRYPT_PEND, &hcon->flags)) {
457 reason = SMP_UNSPECIFIED;
461 hci_le_start_enc(hcon, ediv, rand, stk);
462 hcon->enc_key_size = smp->enc_key_size;
464 u8 stk[16], r[16], rand[8];
467 memset(rand, 0, sizeof(rand));
470 swap128(smp->prnd, r);
471 smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, sizeof(r), r);
473 smp_s1(tfm, smp->tk, smp->prnd, smp->rrnd, key);
476 memset(stk + smp->enc_key_size, 0,
477 SMP_MAX_ENC_KEY_SIZE - smp->enc_key_size);
479 hci_add_ltk(hcon->hdev, conn->dst, hcon->dst_type,
480 HCI_SMP_STK_SLAVE, 0, 0, stk, smp->enc_key_size,
487 smp_failure(conn, reason, 1);
490 static struct smp_chan *smp_chan_create(struct l2cap_conn *conn)
492 struct smp_chan *smp;
494 smp = kzalloc(sizeof(struct smp_chan), GFP_ATOMIC);
498 INIT_WORK(&smp->confirm, confirm_work);
499 INIT_WORK(&smp->random, random_work);
502 conn->smp_chan = smp;
503 conn->hcon->smp_conn = conn;
505 hci_conn_hold(conn->hcon);
510 void smp_chan_destroy(struct l2cap_conn *conn)
512 struct smp_chan *smp = conn->smp_chan;
517 crypto_free_blkcipher(smp->tfm);
520 conn->smp_chan = NULL;
521 conn->hcon->smp_conn = NULL;
522 hci_conn_put(conn->hcon);
525 int smp_user_confirm_reply(struct hci_conn *hcon, u16 mgmt_op, __le32 passkey)
527 struct l2cap_conn *conn = hcon->smp_conn;
528 struct smp_chan *smp;
537 smp = conn->smp_chan;
540 case MGMT_OP_USER_PASSKEY_REPLY:
541 value = le32_to_cpu(passkey);
542 memset(key, 0, sizeof(key));
543 BT_DBG("PassKey: %d", value);
544 put_unaligned_le32(value, key);
545 swap128(key, smp->tk);
547 case MGMT_OP_USER_CONFIRM_REPLY:
548 set_bit(SMP_FLAG_TK_VALID, &smp->smp_flags);
550 case MGMT_OP_USER_PASSKEY_NEG_REPLY:
551 case MGMT_OP_USER_CONFIRM_NEG_REPLY:
552 smp_failure(conn, SMP_PASSKEY_ENTRY_FAILED, 1);
555 smp_failure(conn, SMP_PASSKEY_ENTRY_FAILED, 1);
559 /* If it is our turn to send Pairing Confirm, do so now */
560 if (test_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags))
561 queue_work(hcon->hdev->workqueue, &smp->confirm);
566 static u8 smp_cmd_pairing_req(struct l2cap_conn *conn, struct sk_buff *skb)
568 struct smp_cmd_pairing rsp, *req = (void *) skb->data;
569 struct smp_chan *smp;
571 u8 auth = SMP_AUTH_NONE;
574 BT_DBG("conn %p", conn);
576 if (conn->hcon->link_mode & HCI_LM_MASTER)
577 return SMP_CMD_NOTSUPP;
579 if (!test_and_set_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags))
580 smp = smp_chan_create(conn);
582 smp = conn->smp_chan;
584 smp->preq[0] = SMP_CMD_PAIRING_REQ;
585 memcpy(&smp->preq[1], req, sizeof(*req));
586 skb_pull(skb, sizeof(*req));
588 /* We didn't start the pairing, so match remote */
589 if (req->auth_req & SMP_AUTH_BONDING)
590 auth = req->auth_req;
592 conn->hcon->pending_sec_level = authreq_to_seclevel(auth);
594 build_pairing_cmd(conn, req, &rsp, auth);
596 key_size = min(req->max_key_size, rsp.max_key_size);
597 if (check_enc_key_size(conn, key_size))
598 return SMP_ENC_KEY_SIZE;
600 ret = smp_rand(smp->prnd);
602 return SMP_UNSPECIFIED;
604 smp->prsp[0] = SMP_CMD_PAIRING_RSP;
605 memcpy(&smp->prsp[1], &rsp, sizeof(rsp));
607 smp_send_cmd(conn, SMP_CMD_PAIRING_RSP, sizeof(rsp), &rsp);
609 /* Request setup of TK */
610 ret = tk_request(conn, 0, auth, rsp.io_capability, req->io_capability);
612 return SMP_UNSPECIFIED;
617 static u8 smp_cmd_pairing_rsp(struct l2cap_conn *conn, struct sk_buff *skb)
619 struct smp_cmd_pairing *req, *rsp = (void *) skb->data;
620 struct smp_chan *smp = conn->smp_chan;
621 struct hci_dev *hdev = conn->hcon->hdev;
622 u8 key_size, auth = SMP_AUTH_NONE;
625 BT_DBG("conn %p", conn);
627 if (!(conn->hcon->link_mode & HCI_LM_MASTER))
628 return SMP_CMD_NOTSUPP;
630 skb_pull(skb, sizeof(*rsp));
632 req = (void *) &smp->preq[1];
634 key_size = min(req->max_key_size, rsp->max_key_size);
635 if (check_enc_key_size(conn, key_size))
636 return SMP_ENC_KEY_SIZE;
638 ret = smp_rand(smp->prnd);
640 return SMP_UNSPECIFIED;
642 smp->prsp[0] = SMP_CMD_PAIRING_RSP;
643 memcpy(&smp->prsp[1], rsp, sizeof(*rsp));
645 if ((req->auth_req & SMP_AUTH_BONDING) &&
646 (rsp->auth_req & SMP_AUTH_BONDING))
647 auth = SMP_AUTH_BONDING;
649 auth |= (req->auth_req | rsp->auth_req) & SMP_AUTH_MITM;
651 ret = tk_request(conn, 0, auth, req->io_capability, rsp->io_capability);
653 return SMP_UNSPECIFIED;
655 set_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags);
657 /* Can't compose response until we have been confirmed */
658 if (!test_bit(SMP_FLAG_TK_VALID, &smp->smp_flags))
661 queue_work(hdev->workqueue, &smp->confirm);
666 static u8 smp_cmd_pairing_confirm(struct l2cap_conn *conn, struct sk_buff *skb)
668 struct smp_chan *smp = conn->smp_chan;
669 struct hci_dev *hdev = conn->hcon->hdev;
671 BT_DBG("conn %p %s", conn, conn->hcon->out ? "master" : "slave");
673 memcpy(smp->pcnf, skb->data, sizeof(smp->pcnf));
674 skb_pull(skb, sizeof(smp->pcnf));
676 if (conn->hcon->out) {
679 swap128(smp->prnd, random);
680 smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, sizeof(random),
682 } else if (test_bit(SMP_FLAG_TK_VALID, &smp->smp_flags)) {
683 queue_work(hdev->workqueue, &smp->confirm);
685 set_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags);
691 static u8 smp_cmd_pairing_random(struct l2cap_conn *conn, struct sk_buff *skb)
693 struct smp_chan *smp = conn->smp_chan;
694 struct hci_dev *hdev = conn->hcon->hdev;
696 BT_DBG("conn %p", conn);
698 swap128(skb->data, smp->rrnd);
699 skb_pull(skb, sizeof(smp->rrnd));
701 queue_work(hdev->workqueue, &smp->random);
706 static u8 smp_ltk_encrypt(struct l2cap_conn *conn, u8 sec_level)
709 struct hci_conn *hcon = conn->hcon;
711 key = hci_find_ltk_by_addr(hcon->hdev, conn->dst, hcon->dst_type);
715 if (sec_level > BT_SECURITY_MEDIUM && !key->authenticated)
718 if (test_and_set_bit(HCI_CONN_ENCRYPT_PEND, &hcon->flags))
721 hci_le_start_enc(hcon, key->ediv, key->rand, key->val);
722 hcon->enc_key_size = key->enc_size;
727 static u8 smp_cmd_security_req(struct l2cap_conn *conn, struct sk_buff *skb)
729 struct smp_cmd_security_req *rp = (void *) skb->data;
730 struct smp_cmd_pairing cp;
731 struct hci_conn *hcon = conn->hcon;
732 struct smp_chan *smp;
734 BT_DBG("conn %p", conn);
736 hcon->pending_sec_level = authreq_to_seclevel(rp->auth_req);
738 if (smp_ltk_encrypt(conn, hcon->pending_sec_level))
741 if (test_and_set_bit(HCI_CONN_LE_SMP_PEND, &hcon->flags))
744 smp = smp_chan_create(conn);
746 skb_pull(skb, sizeof(*rp));
748 memset(&cp, 0, sizeof(cp));
749 build_pairing_cmd(conn, &cp, NULL, rp->auth_req);
751 smp->preq[0] = SMP_CMD_PAIRING_REQ;
752 memcpy(&smp->preq[1], &cp, sizeof(cp));
754 smp_send_cmd(conn, SMP_CMD_PAIRING_REQ, sizeof(cp), &cp);
759 int smp_conn_security(struct l2cap_conn *conn, __u8 sec_level)
761 struct hci_conn *hcon = conn->hcon;
762 struct smp_chan *smp = conn->smp_chan;
765 BT_DBG("conn %p hcon %p level 0x%2.2x", conn, hcon, sec_level);
767 if (!lmp_host_le_capable(hcon->hdev))
770 if (sec_level == BT_SECURITY_LOW)
773 if (hcon->sec_level >= sec_level)
776 if (hcon->link_mode & HCI_LM_MASTER)
777 if (smp_ltk_encrypt(conn, sec_level))
780 if (test_and_set_bit(HCI_CONN_LE_SMP_PEND, &hcon->flags))
783 smp = smp_chan_create(conn);
787 authreq = seclevel_to_authreq(sec_level);
789 if (hcon->link_mode & HCI_LM_MASTER) {
790 struct smp_cmd_pairing cp;
792 build_pairing_cmd(conn, &cp, NULL, authreq);
793 smp->preq[0] = SMP_CMD_PAIRING_REQ;
794 memcpy(&smp->preq[1], &cp, sizeof(cp));
796 smp_send_cmd(conn, SMP_CMD_PAIRING_REQ, sizeof(cp), &cp);
798 struct smp_cmd_security_req cp;
799 cp.auth_req = authreq;
800 smp_send_cmd(conn, SMP_CMD_SECURITY_REQ, sizeof(cp), &cp);
804 hcon->pending_sec_level = sec_level;
809 static int smp_cmd_encrypt_info(struct l2cap_conn *conn, struct sk_buff *skb)
811 struct smp_cmd_encrypt_info *rp = (void *) skb->data;
812 struct smp_chan *smp = conn->smp_chan;
814 skb_pull(skb, sizeof(*rp));
816 memcpy(smp->tk, rp->ltk, sizeof(smp->tk));
821 static int smp_cmd_master_ident(struct l2cap_conn *conn, struct sk_buff *skb)
823 struct smp_cmd_master_ident *rp = (void *) skb->data;
824 struct smp_chan *smp = conn->smp_chan;
825 struct hci_dev *hdev = conn->hcon->hdev;
826 struct hci_conn *hcon = conn->hcon;
829 skb_pull(skb, sizeof(*rp));
832 authenticated = (conn->hcon->sec_level == BT_SECURITY_HIGH);
833 hci_add_ltk(conn->hcon->hdev, conn->dst, hcon->dst_type,
834 HCI_SMP_LTK, 1, authenticated, smp->tk, smp->enc_key_size,
836 smp_distribute_keys(conn, 1);
837 hci_dev_unlock(hdev);
842 int smp_sig_channel(struct l2cap_conn *conn, struct sk_buff *skb)
844 __u8 code = skb->data[0];
848 if (!lmp_host_le_capable(conn->hcon->hdev)) {
850 reason = SMP_PAIRING_NOTSUPP;
854 skb_pull(skb, sizeof(code));
857 case SMP_CMD_PAIRING_REQ:
858 reason = smp_cmd_pairing_req(conn, skb);
861 case SMP_CMD_PAIRING_FAIL:
862 smp_failure(conn, skb->data[0], 0);
867 case SMP_CMD_PAIRING_RSP:
868 reason = smp_cmd_pairing_rsp(conn, skb);
871 case SMP_CMD_SECURITY_REQ:
872 reason = smp_cmd_security_req(conn, skb);
875 case SMP_CMD_PAIRING_CONFIRM:
876 reason = smp_cmd_pairing_confirm(conn, skb);
879 case SMP_CMD_PAIRING_RANDOM:
880 reason = smp_cmd_pairing_random(conn, skb);
883 case SMP_CMD_ENCRYPT_INFO:
884 reason = smp_cmd_encrypt_info(conn, skb);
887 case SMP_CMD_MASTER_IDENT:
888 reason = smp_cmd_master_ident(conn, skb);
891 case SMP_CMD_IDENT_INFO:
892 case SMP_CMD_IDENT_ADDR_INFO:
893 case SMP_CMD_SIGN_INFO:
899 BT_DBG("Unknown command code 0x%2.2x", code);
901 reason = SMP_CMD_NOTSUPP;
908 smp_failure(conn, reason, 1);
914 int smp_distribute_keys(struct l2cap_conn *conn, __u8 force)
916 struct smp_cmd_pairing *req, *rsp;
917 struct smp_chan *smp = conn->smp_chan;
920 BT_DBG("conn %p force %d", conn, force);
922 if (!test_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags))
925 rsp = (void *) &smp->prsp[1];
927 /* The responder sends its keys first */
928 if (!force && conn->hcon->out && (rsp->resp_key_dist & 0x07))
931 req = (void *) &smp->preq[1];
933 if (conn->hcon->out) {
934 keydist = &rsp->init_key_dist;
935 *keydist &= req->init_key_dist;
937 keydist = &rsp->resp_key_dist;
938 *keydist &= req->resp_key_dist;
942 BT_DBG("keydist 0x%x", *keydist);
944 if (*keydist & SMP_DIST_ENC_KEY) {
945 struct smp_cmd_encrypt_info enc;
946 struct smp_cmd_master_ident ident;
947 struct hci_conn *hcon = conn->hcon;
951 get_random_bytes(enc.ltk, sizeof(enc.ltk));
952 get_random_bytes(&ediv, sizeof(ediv));
953 get_random_bytes(ident.rand, sizeof(ident.rand));
955 smp_send_cmd(conn, SMP_CMD_ENCRYPT_INFO, sizeof(enc), &enc);
957 authenticated = hcon->sec_level == BT_SECURITY_HIGH;
958 hci_add_ltk(conn->hcon->hdev, conn->dst, hcon->dst_type,
959 HCI_SMP_LTK_SLAVE, 1, authenticated,
960 enc.ltk, smp->enc_key_size, ediv, ident.rand);
964 smp_send_cmd(conn, SMP_CMD_MASTER_IDENT, sizeof(ident), &ident);
966 *keydist &= ~SMP_DIST_ENC_KEY;
969 if (*keydist & SMP_DIST_ID_KEY) {
970 struct smp_cmd_ident_addr_info addrinfo;
971 struct smp_cmd_ident_info idinfo;
973 /* Send a dummy key */
974 get_random_bytes(idinfo.irk, sizeof(idinfo.irk));
976 smp_send_cmd(conn, SMP_CMD_IDENT_INFO, sizeof(idinfo), &idinfo);
978 /* Just public address */
979 memset(&addrinfo, 0, sizeof(addrinfo));
980 bacpy(&addrinfo.bdaddr, conn->src);
982 smp_send_cmd(conn, SMP_CMD_IDENT_ADDR_INFO, sizeof(addrinfo),
985 *keydist &= ~SMP_DIST_ID_KEY;
988 if (*keydist & SMP_DIST_SIGN) {
989 struct smp_cmd_sign_info sign;
991 /* Send a dummy key */
992 get_random_bytes(sign.csrk, sizeof(sign.csrk));
994 smp_send_cmd(conn, SMP_CMD_SIGN_INFO, sizeof(sign), &sign);
996 *keydist &= ~SMP_DIST_SIGN;
999 if (conn->hcon->out || force) {
1000 clear_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags);
1001 cancel_delayed_work_sync(&conn->security_timer);
1002 smp_chan_destroy(conn);
projects / ~andy / linux / blob