projects / deliverable / linux.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Bluetooth: Remove l2cap_conn->dst usage from AMP manager
[deliverable/linux.git] / net / bluetooth / smp.c
1 /*
2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (C) 2011 Nokia Corporation and/or its subsidiary(-ies).
4
5 This program is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License version 2 as
7 published by the Free Software Foundation;
8
9 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
10 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
11 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
12 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
13 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
14 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17
18 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
19 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
20 SOFTWARE IS DISCLAIMED.
21 */
22
23 #include <linux/crypto.h>
24 #include <linux/scatterlist.h>
25 #include <crypto/b128ops.h>
26
27 #include <net/bluetooth/bluetooth.h>
28 #include <net/bluetooth/hci_core.h>
29 #include <net/bluetooth/l2cap.h>
30 #include <net/bluetooth/mgmt.h>
31
32 #include "smp.h"
33
34 #define SMP_TIMEOUT msecs_to_jiffies(30000)
35
36 #define AUTH_REQ_MASK 0x07
37
38 static inline void swap128(u8 src[16], u8 dst[16])
39 {
40 int i;
41 for (i = 0; i < 16; i++)
42 dst[15 - i] = src[i];
43 }
44
45 static inline void swap56(u8 src[7], u8 dst[7])
46 {
47 int i;
48 for (i = 0; i < 7; i++)
49 dst[6 - i] = src[i];
50 }
51
52 static int smp_e(struct crypto_blkcipher *tfm, const u8 *k, u8 *r)
53 {
54 struct blkcipher_desc desc;
55 struct scatterlist sg;
56 int err, iv_len;
57 unsigned char iv[128];
58
59 if (tfm == NULL) {
60 BT_ERR("tfm %p", tfm);
61 return -EINVAL;
62 }
63
64 desc.tfm = tfm;
65 desc.flags = 0;
66
67 err = crypto_blkcipher_setkey(tfm, k, 16);
68 if (err) {
69 BT_ERR("cipher setkey failed: %d", err);
70 return err;
71 }
72
73 sg_init_one(&sg, r, 16);
74
75 iv_len = crypto_blkcipher_ivsize(tfm);
76 if (iv_len) {
77 memset(&iv, 0xff, iv_len);
78 crypto_blkcipher_set_iv(tfm, iv, iv_len);
79 }
80
81 err = crypto_blkcipher_encrypt(&desc, &sg, &sg, 16);
82 if (err)
83 BT_ERR("Encrypt data error %d", err);
84
85 return err;
86 }
87
88 static int smp_c1(struct crypto_blkcipher *tfm, u8 k[16], u8 r[16],
89 u8 preq[7], u8 pres[7], u8 _iat, bdaddr_t *ia,
90 u8 _rat, bdaddr_t *ra, u8 res[16])
91 {
92 u8 p1[16], p2[16];
93 int err;
94
95 memset(p1, 0, 16);
96
97 /* p1 = pres || preq || _rat || _iat */
98 swap56(pres, p1);
99 swap56(preq, p1 + 7);
100 p1[14] = _rat;
101 p1[15] = _iat;
102
103 memset(p2, 0, 16);
104
105 /* p2 = padding || ia || ra */
106 baswap((bdaddr_t *) (p2 + 4), ia);
107 baswap((bdaddr_t *) (p2 + 10), ra);
108
109 /* res = r XOR p1 */
110 u128_xor((u128 *) res, (u128 *) r, (u128 *) p1);
111
112 /* res = e(k, res) */
113 err = smp_e(tfm, k, res);
114 if (err) {
115 BT_ERR("Encrypt data error");
116 return err;
117 }
118
119 /* res = res XOR p2 */
120 u128_xor((u128 *) res, (u128 *) res, (u128 *) p2);
121
122 /* res = e(k, res) */
123 err = smp_e(tfm, k, res);
124 if (err)
125 BT_ERR("Encrypt data error");
126
127 return err;
128 }
129
130 static int smp_s1(struct crypto_blkcipher *tfm, u8 k[16],
131 u8 r1[16], u8 r2[16], u8 _r[16])
132 {
133 int err;
134
135 /* Just least significant octets from r1 and r2 are considered */
136 memcpy(_r, r1 + 8, 8);
137 memcpy(_r + 8, r2 + 8, 8);
138
139 err = smp_e(tfm, k, _r);
140 if (err)
141 BT_ERR("Encrypt data error");
142
143 return err;
144 }
145
146 static int smp_rand(u8 *buf)
147 {
148 get_random_bytes(buf, 16);
149
150 return 0;
151 }
152
153 static struct sk_buff *smp_build_cmd(struct l2cap_conn *conn, u8 code,
154 u16 dlen, void *data)
155 {
156 struct sk_buff *skb;
157 struct l2cap_hdr *lh;
158 int len;
159
160 len = L2CAP_HDR_SIZE + sizeof(code) + dlen;
161
162 if (len > conn->mtu)
163 return NULL;
164
165 skb = bt_skb_alloc(len, GFP_ATOMIC);
166 if (!skb)
167 return NULL;
168
169 lh = (struct l2cap_hdr *) skb_put(skb, L2CAP_HDR_SIZE);
170 lh->len = cpu_to_le16(sizeof(code) + dlen);
171 lh->cid = __constant_cpu_to_le16(L2CAP_CID_SMP);
172
173 memcpy(skb_put(skb, sizeof(code)), &code, sizeof(code));
174
175 memcpy(skb_put(skb, dlen), data, dlen);
176
177 return skb;
178 }
179
180 static void smp_send_cmd(struct l2cap_conn *conn, u8 code, u16 len, void *data)
181 {
182 struct sk_buff *skb = smp_build_cmd(conn, code, len, data);
183
184 BT_DBG("code 0x%2.2x", code);
185
186 if (!skb)
187 return;
188
189 skb->priority = HCI_PRIO_MAX;
190 hci_send_acl(conn->hchan, skb, 0);
191
192 cancel_delayed_work_sync(&conn->security_timer);
193 schedule_delayed_work(&conn->security_timer, SMP_TIMEOUT);
194 }
195
196 static __u8 authreq_to_seclevel(__u8 authreq)
197 {
198 if (authreq & SMP_AUTH_MITM)
199 return BT_SECURITY_HIGH;
200 else
201 return BT_SECURITY_MEDIUM;
202 }
203
204 static __u8 seclevel_to_authreq(__u8 sec_level)
205 {
206 switch (sec_level) {
207 case BT_SECURITY_HIGH:
208 return SMP_AUTH_MITM | SMP_AUTH_BONDING;
209 case BT_SECURITY_MEDIUM:
210 return SMP_AUTH_BONDING;
211 default:
212 return SMP_AUTH_NONE;
213 }
214 }
215
216 static void build_pairing_cmd(struct l2cap_conn *conn,
217 struct smp_cmd_pairing *req,
218 struct smp_cmd_pairing *rsp,
219 __u8 authreq)
220 {
221 u8 dist_keys = 0;
222
223 if (test_bit(HCI_PAIRABLE, &conn->hcon->hdev->dev_flags)) {
224 dist_keys = SMP_DIST_ENC_KEY;
225 authreq |= SMP_AUTH_BONDING;
226 } else {
227 authreq &= ~SMP_AUTH_BONDING;
228 }
229
230 if (rsp == NULL) {
231 req->io_capability = conn->hcon->io_capability;
232 req->oob_flag = SMP_OOB_NOT_PRESENT;
233 req->max_key_size = SMP_MAX_ENC_KEY_SIZE;
234 req->init_key_dist = 0;
235 req->resp_key_dist = dist_keys;
236 req->auth_req = (authreq & AUTH_REQ_MASK);
237 return;
238 }
239
240 rsp->io_capability = conn->hcon->io_capability;
241 rsp->oob_flag = SMP_OOB_NOT_PRESENT;
242 rsp->max_key_size = SMP_MAX_ENC_KEY_SIZE;
243 rsp->init_key_dist = 0;
244 rsp->resp_key_dist = req->resp_key_dist & dist_keys;
245 rsp->auth_req = (authreq & AUTH_REQ_MASK);
246 }
247
248 static u8 check_enc_key_size(struct l2cap_conn *conn, __u8 max_key_size)
249 {
250 struct smp_chan *smp = conn->smp_chan;
251
252 if ((max_key_size > SMP_MAX_ENC_KEY_SIZE) ||
253 (max_key_size < SMP_MIN_ENC_KEY_SIZE))
254 return SMP_ENC_KEY_SIZE;
255
256 smp->enc_key_size = max_key_size;
257
258 return 0;
259 }
260
261 static void smp_failure(struct l2cap_conn *conn, u8 reason, u8 send)
262 {
263 struct hci_conn *hcon = conn->hcon;
264
265 if (send)
266 smp_send_cmd(conn, SMP_CMD_PAIRING_FAIL, sizeof(reason),
267 &reason);
268
269 clear_bit(HCI_CONN_ENCRYPT_PEND, &conn->hcon->flags);
270 mgmt_auth_failed(conn->hcon->hdev, conn->dst, hcon->type,
271 hcon->dst_type, HCI_ERROR_AUTH_FAILURE);
272
273 cancel_delayed_work_sync(&conn->security_timer);
274
275 if (test_and_clear_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags))
276 smp_chan_destroy(conn);
277 }
278
279 #define JUST_WORKS 0x00
280 #define JUST_CFM 0x01
281 #define REQ_PASSKEY 0x02
282 #define CFM_PASSKEY 0x03
283 #define REQ_OOB 0x04
284 #define OVERLAP 0xFF
285
286 static const u8 gen_method[5][5] = {
287 { JUST_WORKS, JUST_CFM, REQ_PASSKEY, JUST_WORKS, REQ_PASSKEY },
288 { JUST_WORKS, JUST_CFM, REQ_PASSKEY, JUST_WORKS, REQ_PASSKEY },
289 { CFM_PASSKEY, CFM_PASSKEY, REQ_PASSKEY, JUST_WORKS, CFM_PASSKEY },
290 { JUST_WORKS, JUST_CFM, JUST_WORKS, JUST_WORKS, JUST_CFM },
291 { CFM_PASSKEY, CFM_PASSKEY, REQ_PASSKEY, JUST_WORKS, OVERLAP },
292 };
293
294 static int tk_request(struct l2cap_conn *conn, u8 remote_oob, u8 auth,
295 u8 local_io, u8 remote_io)
296 {
297 struct hci_conn *hcon = conn->hcon;
298 struct smp_chan *smp = conn->smp_chan;
299 u8 method;
300 u32 passkey = 0;
301 int ret = 0;
302
303 /* Initialize key for JUST WORKS */
304 memset(smp->tk, 0, sizeof(smp->tk));
305 clear_bit(SMP_FLAG_TK_VALID, &smp->smp_flags);
306
307 BT_DBG("tk_request: auth:%d lcl:%d rem:%d", auth, local_io, remote_io);
308
309 /* If neither side wants MITM, use JUST WORKS */
310 /* If either side has unknown io_caps, use JUST WORKS */
311 /* Otherwise, look up method from the table */
312 if (!(auth & SMP_AUTH_MITM) ||
313 local_io > SMP_IO_KEYBOARD_DISPLAY ||
314 remote_io > SMP_IO_KEYBOARD_DISPLAY)
315 method = JUST_WORKS;
316 else
317 method = gen_method[remote_io][local_io];
318
319 /* If not bonding, don't ask user to confirm a Zero TK */
320 if (!(auth & SMP_AUTH_BONDING) && method == JUST_CFM)
321 method = JUST_WORKS;
322
323 /* If Just Works, Continue with Zero TK */
324 if (method == JUST_WORKS) {
325 set_bit(SMP_FLAG_TK_VALID, &smp->smp_flags);
326 return 0;
327 }
328
329 /* Not Just Works/Confirm results in MITM Authentication */
330 if (method != JUST_CFM)
331 set_bit(SMP_FLAG_MITM_AUTH, &smp->smp_flags);
332
333 /* If both devices have Keyoard-Display I/O, the master
334 * Confirms and the slave Enters the passkey.
335 */
336 if (method == OVERLAP) {
337 if (hcon->link_mode & HCI_LM_MASTER)
338 method = CFM_PASSKEY;
339 else
340 method = REQ_PASSKEY;
341 }
342
343 /* Generate random passkey. Not valid until confirmed. */
344 if (method == CFM_PASSKEY) {
345 u8 key[16];
346
347 memset(key, 0, sizeof(key));
348 get_random_bytes(&passkey, sizeof(passkey));
349 passkey %= 1000000;
350 put_unaligned_le32(passkey, key);
351 swap128(key, smp->tk);
352 BT_DBG("PassKey: %d", passkey);
353 }
354
355 hci_dev_lock(hcon->hdev);
356
357 if (method == REQ_PASSKEY)
358 ret = mgmt_user_passkey_request(hcon->hdev, conn->dst,
359 hcon->type, hcon->dst_type);
360 else
361 ret = mgmt_user_confirm_request(hcon->hdev, conn->dst,
362 hcon->type, hcon->dst_type,
363 cpu_to_le32(passkey), 0);
364
365 hci_dev_unlock(hcon->hdev);
366
367 return ret;
368 }
369
370 static void confirm_work(struct work_struct *work)
371 {
372 struct smp_chan *smp = container_of(work, struct smp_chan, confirm);
373 struct l2cap_conn *conn = smp->conn;
374 struct crypto_blkcipher *tfm;
375 struct smp_cmd_pairing_confirm cp;
376 int ret;
377 u8 res[16], reason;
378
379 BT_DBG("conn %p", conn);
380
381 tfm = crypto_alloc_blkcipher("ecb(aes)", 0, CRYPTO_ALG_ASYNC);
382 if (IS_ERR(tfm)) {
383 reason = SMP_UNSPECIFIED;
384 goto error;
385 }
386
387 smp->tfm = tfm;
388
389 if (conn->hcon->out)
390 ret = smp_c1(tfm, smp->tk, smp->prnd, smp->preq, smp->prsp, 0,
391 conn->src, conn->hcon->dst_type, conn->dst, res);
392 else
393 ret = smp_c1(tfm, smp->tk, smp->prnd, smp->preq, smp->prsp,
394 conn->hcon->dst_type, conn->dst, 0, conn->src,
395 res);
396 if (ret) {
397 reason = SMP_UNSPECIFIED;
398 goto error;
399 }
400
401 clear_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags);
402
403 swap128(res, cp.confirm_val);
404 smp_send_cmd(smp->conn, SMP_CMD_PAIRING_CONFIRM, sizeof(cp), &cp);
405
406 return;
407
408 error:
409 smp_failure(conn, reason, 1);
410 }
411
412 static void random_work(struct work_struct *work)
413 {
414 struct smp_chan *smp = container_of(work, struct smp_chan, random);
415 struct l2cap_conn *conn = smp->conn;
416 struct hci_conn *hcon = conn->hcon;
417 struct crypto_blkcipher *tfm = smp->tfm;
418 u8 reason, confirm[16], res[16], key[16];
419 int ret;
420
421 if (IS_ERR_OR_NULL(tfm)) {
422 reason = SMP_UNSPECIFIED;
423 goto error;
424 }
425
426 BT_DBG("conn %p %s", conn, conn->hcon->out ? "master" : "slave");
427
428 if (hcon->out)
429 ret = smp_c1(tfm, smp->tk, smp->rrnd, smp->preq, smp->prsp, 0,
430 conn->src, hcon->dst_type, conn->dst, res);
431 else
432 ret = smp_c1(tfm, smp->tk, smp->rrnd, smp->preq, smp->prsp,
433 hcon->dst_type, conn->dst, 0, conn->src, res);
434 if (ret) {
435 reason = SMP_UNSPECIFIED;
436 goto error;
437 }
438
439 swap128(res, confirm);
440
441 if (memcmp(smp->pcnf, confirm, sizeof(smp->pcnf)) != 0) {
442 BT_ERR("Pairing failed (confirmation values mismatch)");
443 reason = SMP_CONFIRM_FAILED;
444 goto error;
445 }
446
447 if (hcon->out) {
448 u8 stk[16], rand[8];
449 __le16 ediv;
450
451 memset(rand, 0, sizeof(rand));
452 ediv = 0;
453
454 smp_s1(tfm, smp->tk, smp->rrnd, smp->prnd, key);
455 swap128(key, stk);
456
457 memset(stk + smp->enc_key_size, 0,
458 SMP_MAX_ENC_KEY_SIZE - smp->enc_key_size);
459
460 if (test_and_set_bit(HCI_CONN_ENCRYPT_PEND, &hcon->flags)) {
461 reason = SMP_UNSPECIFIED;
462 goto error;
463 }
464
465 hci_le_start_enc(hcon, ediv, rand, stk);
466 hcon->enc_key_size = smp->enc_key_size;
467 } else {
468 u8 stk[16], r[16], rand[8];
469 __le16 ediv;
470
471 memset(rand, 0, sizeof(rand));
472 ediv = 0;
473
474 swap128(smp->prnd, r);
475 smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, sizeof(r), r);
476
477 smp_s1(tfm, smp->tk, smp->prnd, smp->rrnd, key);
478 swap128(key, stk);
479
480 memset(stk + smp->enc_key_size, 0,
481 SMP_MAX_ENC_KEY_SIZE - smp->enc_key_size);
482
483 hci_add_ltk(hcon->hdev, conn->dst, hcon->dst_type,
484 HCI_SMP_STK_SLAVE, 0, 0, stk, smp->enc_key_size,
485 ediv, rand);
486 }
487
488 return;
489
490 error:
491 smp_failure(conn, reason, 1);
492 }
493
494 static struct smp_chan *smp_chan_create(struct l2cap_conn *conn)
495 {
496 struct smp_chan *smp;
497
498 smp = kzalloc(sizeof(struct smp_chan), GFP_ATOMIC);
499 if (!smp)
500 return NULL;
501
502 INIT_WORK(&smp->confirm, confirm_work);
503 INIT_WORK(&smp->random, random_work);
504
505 smp->conn = conn;
506 conn->smp_chan = smp;
507 conn->hcon->smp_conn = conn;
508
509 hci_conn_hold(conn->hcon);
510
511 return smp;
512 }
513
514 void smp_chan_destroy(struct l2cap_conn *conn)
515 {
516 struct smp_chan *smp = conn->smp_chan;
517
518 BUG_ON(!smp);
519
520 if (smp->tfm)
521 crypto_free_blkcipher(smp->tfm);
522
523 kfree(smp);
524 conn->smp_chan = NULL;
525 conn->hcon->smp_conn = NULL;
526 hci_conn_drop(conn->hcon);
527 }
528
529 int smp_user_confirm_reply(struct hci_conn *hcon, u16 mgmt_op, __le32 passkey)
530 {
531 struct l2cap_conn *conn = hcon->smp_conn;
532 struct smp_chan *smp;
533 u32 value;
534 u8 key[16];
535
536 BT_DBG("");
537
538 if (!conn)
539 return -ENOTCONN;
540
541 smp = conn->smp_chan;
542
543 switch (mgmt_op) {
544 case MGMT_OP_USER_PASSKEY_REPLY:
545 value = le32_to_cpu(passkey);
546 memset(key, 0, sizeof(key));
547 BT_DBG("PassKey: %d", value);
548 put_unaligned_le32(value, key);
549 swap128(key, smp->tk);
550 /* Fall Through */
551 case MGMT_OP_USER_CONFIRM_REPLY:
552 set_bit(SMP_FLAG_TK_VALID, &smp->smp_flags);
553 break;
554 case MGMT_OP_USER_PASSKEY_NEG_REPLY:
555 case MGMT_OP_USER_CONFIRM_NEG_REPLY:
556 smp_failure(conn, SMP_PASSKEY_ENTRY_FAILED, 1);
557 return 0;
558 default:
559 smp_failure(conn, SMP_PASSKEY_ENTRY_FAILED, 1);
560 return -EOPNOTSUPP;
561 }
562
563 /* If it is our turn to send Pairing Confirm, do so now */
564 if (test_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags))
565 queue_work(hcon->hdev->workqueue, &smp->confirm);
566
567 return 0;
568 }
569
570 static u8 smp_cmd_pairing_req(struct l2cap_conn *conn, struct sk_buff *skb)
571 {
572 struct smp_cmd_pairing rsp, *req = (void *) skb->data;
573 struct smp_chan *smp;
574 u8 key_size;
575 u8 auth = SMP_AUTH_NONE;
576 int ret;
577
578 BT_DBG("conn %p", conn);
579
580 if (conn->hcon->link_mode & HCI_LM_MASTER)
581 return SMP_CMD_NOTSUPP;
582
583 if (!test_and_set_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags))
584 smp = smp_chan_create(conn);
585 else
586 smp = conn->smp_chan;
587
588 if (!smp)
589 return SMP_UNSPECIFIED;
590
591 smp->preq[0] = SMP_CMD_PAIRING_REQ;
592 memcpy(&smp->preq[1], req, sizeof(*req));
593 skb_pull(skb, sizeof(*req));
594
595 /* We didn't start the pairing, so match remote */
596 if (req->auth_req & SMP_AUTH_BONDING)
597 auth = req->auth_req;
598
599 conn->hcon->pending_sec_level = authreq_to_seclevel(auth);
600
601 build_pairing_cmd(conn, req, &rsp, auth);
602
603 key_size = min(req->max_key_size, rsp.max_key_size);
604 if (check_enc_key_size(conn, key_size))
605 return SMP_ENC_KEY_SIZE;
606
607 ret = smp_rand(smp->prnd);
608 if (ret)
609 return SMP_UNSPECIFIED;
610
611 smp->prsp[0] = SMP_CMD_PAIRING_RSP;
612 memcpy(&smp->prsp[1], &rsp, sizeof(rsp));
613
614 smp_send_cmd(conn, SMP_CMD_PAIRING_RSP, sizeof(rsp), &rsp);
615
616 /* Request setup of TK */
617 ret = tk_request(conn, 0, auth, rsp.io_capability, req->io_capability);
618 if (ret)
619 return SMP_UNSPECIFIED;
620
621 return 0;
622 }
623
624 static u8 smp_cmd_pairing_rsp(struct l2cap_conn *conn, struct sk_buff *skb)
625 {
626 struct smp_cmd_pairing *req, *rsp = (void *) skb->data;
627 struct smp_chan *smp = conn->smp_chan;
628 struct hci_dev *hdev = conn->hcon->hdev;
629 u8 key_size, auth = SMP_AUTH_NONE;
630 int ret;
631
632 BT_DBG("conn %p", conn);
633
634 if (!(conn->hcon->link_mode & HCI_LM_MASTER))
635 return SMP_CMD_NOTSUPP;
636
637 skb_pull(skb, sizeof(*rsp));
638
639 req = (void *) &smp->preq[1];
640
641 key_size = min(req->max_key_size, rsp->max_key_size);
642 if (check_enc_key_size(conn, key_size))
643 return SMP_ENC_KEY_SIZE;
644
645 ret = smp_rand(smp->prnd);
646 if (ret)
647 return SMP_UNSPECIFIED;
648
649 smp->prsp[0] = SMP_CMD_PAIRING_RSP;
650 memcpy(&smp->prsp[1], rsp, sizeof(*rsp));
651
652 if ((req->auth_req & SMP_AUTH_BONDING) &&
653 (rsp->auth_req & SMP_AUTH_BONDING))
654 auth = SMP_AUTH_BONDING;
655
656 auth |= (req->auth_req | rsp->auth_req) & SMP_AUTH_MITM;
657
658 ret = tk_request(conn, 0, auth, req->io_capability, rsp->io_capability);
659 if (ret)
660 return SMP_UNSPECIFIED;
661
662 set_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags);
663
664 /* Can't compose response until we have been confirmed */
665 if (!test_bit(SMP_FLAG_TK_VALID, &smp->smp_flags))
666 return 0;
667
668 queue_work(hdev->workqueue, &smp->confirm);
669
670 return 0;
671 }
672
673 static u8 smp_cmd_pairing_confirm(struct l2cap_conn *conn, struct sk_buff *skb)
674 {
675 struct smp_chan *smp = conn->smp_chan;
676 struct hci_dev *hdev = conn->hcon->hdev;
677
678 BT_DBG("conn %p %s", conn, conn->hcon->out ? "master" : "slave");
679
680 memcpy(smp->pcnf, skb->data, sizeof(smp->pcnf));
681 skb_pull(skb, sizeof(smp->pcnf));
682
683 if (conn->hcon->out) {
684 u8 random[16];
685
686 swap128(smp->prnd, random);
687 smp_send_cmd(conn, SMP_CMD_PAIRING_RANDOM, sizeof(random),
688 random);
689 } else if (test_bit(SMP_FLAG_TK_VALID, &smp->smp_flags)) {
690 queue_work(hdev->workqueue, &smp->confirm);
691 } else {
692 set_bit(SMP_FLAG_CFM_PENDING, &smp->smp_flags);
693 }
694
695 return 0;
696 }
697
698 static u8 smp_cmd_pairing_random(struct l2cap_conn *conn, struct sk_buff *skb)
699 {
700 struct smp_chan *smp = conn->smp_chan;
701 struct hci_dev *hdev = conn->hcon->hdev;
702
703 BT_DBG("conn %p", conn);
704
705 swap128(skb->data, smp->rrnd);
706 skb_pull(skb, sizeof(smp->rrnd));
707
708 queue_work(hdev->workqueue, &smp->random);
709
710 return 0;
711 }
712
713 static u8 smp_ltk_encrypt(struct l2cap_conn *conn, u8 sec_level)
714 {
715 struct smp_ltk *key;
716 struct hci_conn *hcon = conn->hcon;
717
718 key = hci_find_ltk_by_addr(hcon->hdev, conn->dst, hcon->dst_type);
719 if (!key)
720 return 0;
721
722 if (sec_level > BT_SECURITY_MEDIUM && !key->authenticated)
723 return 0;
724
725 if (test_and_set_bit(HCI_CONN_ENCRYPT_PEND, &hcon->flags))
726 return 1;
727
728 hci_le_start_enc(hcon, key->ediv, key->rand, key->val);
729 hcon->enc_key_size = key->enc_size;
730
731 return 1;
732
733 }
734 static u8 smp_cmd_security_req(struct l2cap_conn *conn, struct sk_buff *skb)
735 {
736 struct smp_cmd_security_req *rp = (void *) skb->data;
737 struct smp_cmd_pairing cp;
738 struct hci_conn *hcon = conn->hcon;
739 struct smp_chan *smp;
740
741 BT_DBG("conn %p", conn);
742
743 hcon->pending_sec_level = authreq_to_seclevel(rp->auth_req);
744
745 if (smp_ltk_encrypt(conn, hcon->pending_sec_level))
746 return 0;
747
748 if (test_and_set_bit(HCI_CONN_LE_SMP_PEND, &hcon->flags))
749 return 0;
750
751 smp = smp_chan_create(conn);
752
753 skb_pull(skb, sizeof(*rp));
754
755 memset(&cp, 0, sizeof(cp));
756 build_pairing_cmd(conn, &cp, NULL, rp->auth_req);
757
758 smp->preq[0] = SMP_CMD_PAIRING_REQ;
759 memcpy(&smp->preq[1], &cp, sizeof(cp));
760
761 smp_send_cmd(conn, SMP_CMD_PAIRING_REQ, sizeof(cp), &cp);
762
763 return 0;
764 }
765
766 int smp_conn_security(struct hci_conn *hcon, __u8 sec_level)
767 {
768 struct l2cap_conn *conn = hcon->l2cap_data;
769 struct smp_chan *smp = conn->smp_chan;
770 __u8 authreq;
771
772 BT_DBG("conn %p hcon %p level 0x%2.2x", conn, hcon, sec_level);
773
774 if (!test_bit(HCI_LE_ENABLED, &hcon->hdev->dev_flags))
775 return 1;
776
777 if (sec_level == BT_SECURITY_LOW)
778 return 1;
779
780 if (hcon->sec_level >= sec_level)
781 return 1;
782
783 if (hcon->link_mode & HCI_LM_MASTER)
784 if (smp_ltk_encrypt(conn, sec_level))
785 goto done;
786
787 if (test_and_set_bit(HCI_CONN_LE_SMP_PEND, &hcon->flags))
788 return 0;
789
790 smp = smp_chan_create(conn);
791 if (!smp)
792 return 1;
793
794 authreq = seclevel_to_authreq(sec_level);
795
796 if (hcon->link_mode & HCI_LM_MASTER) {
797 struct smp_cmd_pairing cp;
798
799 build_pairing_cmd(conn, &cp, NULL, authreq);
800 smp->preq[0] = SMP_CMD_PAIRING_REQ;
801 memcpy(&smp->preq[1], &cp, sizeof(cp));
802
803 smp_send_cmd(conn, SMP_CMD_PAIRING_REQ, sizeof(cp), &cp);
804 } else {
805 struct smp_cmd_security_req cp;
806 cp.auth_req = authreq;
807 smp_send_cmd(conn, SMP_CMD_SECURITY_REQ, sizeof(cp), &cp);
808 }
809
810 done:
811 hcon->pending_sec_level = sec_level;
812
813 return 0;
814 }
815
816 static int smp_cmd_encrypt_info(struct l2cap_conn *conn, struct sk_buff *skb)
817 {
818 struct smp_cmd_encrypt_info *rp = (void *) skb->data;
819 struct smp_chan *smp = conn->smp_chan;
820
821 skb_pull(skb, sizeof(*rp));
822
823 memcpy(smp->tk, rp->ltk, sizeof(smp->tk));
824
825 return 0;
826 }
827
828 static int smp_cmd_master_ident(struct l2cap_conn *conn, struct sk_buff *skb)
829 {
830 struct smp_cmd_master_ident *rp = (void *) skb->data;
831 struct smp_chan *smp = conn->smp_chan;
832 struct hci_dev *hdev = conn->hcon->hdev;
833 struct hci_conn *hcon = conn->hcon;
834 u8 authenticated;
835
836 skb_pull(skb, sizeof(*rp));
837
838 hci_dev_lock(hdev);
839 authenticated = (conn->hcon->sec_level == BT_SECURITY_HIGH);
840 hci_add_ltk(conn->hcon->hdev, conn->dst, hcon->dst_type,
841 HCI_SMP_LTK, 1, authenticated, smp->tk, smp->enc_key_size,
842 rp->ediv, rp->rand);
843 smp_distribute_keys(conn, 1);
844 hci_dev_unlock(hdev);
845
846 return 0;
847 }
848
849 int smp_sig_channel(struct l2cap_conn *conn, struct sk_buff *skb)
850 {
851 struct hci_conn *hcon = conn->hcon;
852 __u8 code, reason;
853 int err = 0;
854
855 if (hcon->type != LE_LINK) {
856 kfree_skb(skb);
857 return -ENOTSUPP;
858 }
859
860 if (skb->len < 1) {
861 kfree_skb(skb);
862 return -EILSEQ;
863 }
864
865 if (!test_bit(HCI_LE_ENABLED, &conn->hcon->hdev->dev_flags)) {
866 err = -ENOTSUPP;
867 reason = SMP_PAIRING_NOTSUPP;
868 goto done;
869 }
870
871 code = skb->data[0];
872 skb_pull(skb, sizeof(code));
873
874 /*
875 * The SMP context must be initialized for all other PDUs except
876 * pairing and security requests. If we get any other PDU when
877 * not initialized simply disconnect (done if this function
878 * returns an error).
879 */
880 if (code != SMP_CMD_PAIRING_REQ && code != SMP_CMD_SECURITY_REQ &&
881 !conn->smp_chan) {
882 BT_ERR("Unexpected SMP command 0x%02x. Disconnecting.", code);
883 kfree_skb(skb);
884 return -ENOTSUPP;
885 }
886
887 switch (code) {
888 case SMP_CMD_PAIRING_REQ:
889 reason = smp_cmd_pairing_req(conn, skb);
890 break;
891
892 case SMP_CMD_PAIRING_FAIL:
893 smp_failure(conn, skb->data[0], 0);
894 reason = 0;
895 err = -EPERM;
896 break;
897
898 case SMP_CMD_PAIRING_RSP:
899 reason = smp_cmd_pairing_rsp(conn, skb);
900 break;
901
902 case SMP_CMD_SECURITY_REQ:
903 reason = smp_cmd_security_req(conn, skb);
904 break;
905
906 case SMP_CMD_PAIRING_CONFIRM:
907 reason = smp_cmd_pairing_confirm(conn, skb);
908 break;
909
910 case SMP_CMD_PAIRING_RANDOM:
911 reason = smp_cmd_pairing_random(conn, skb);
912 break;
913
914 case SMP_CMD_ENCRYPT_INFO:
915 reason = smp_cmd_encrypt_info(conn, skb);
916 break;
917
918 case SMP_CMD_MASTER_IDENT:
919 reason = smp_cmd_master_ident(conn, skb);
920 break;
921
922 case SMP_CMD_IDENT_INFO:
923 case SMP_CMD_IDENT_ADDR_INFO:
924 case SMP_CMD_SIGN_INFO:
925 /* Just ignored */
926 reason = 0;
927 break;
928
929 default:
930 BT_DBG("Unknown command code 0x%2.2x", code);
931
932 reason = SMP_CMD_NOTSUPP;
933 err = -EOPNOTSUPP;
934 goto done;
935 }
936
937 done:
938 if (reason)
939 smp_failure(conn, reason, 1);
940
941 kfree_skb(skb);
942 return err;
943 }
944
945 int smp_distribute_keys(struct l2cap_conn *conn, __u8 force)
946 {
947 struct smp_cmd_pairing *req, *rsp;
948 struct smp_chan *smp = conn->smp_chan;
949 __u8 *keydist;
950
951 BT_DBG("conn %p force %d", conn, force);
952
953 if (!test_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags))
954 return 0;
955
956 rsp = (void *) &smp->prsp[1];
957
958 /* The responder sends its keys first */
959 if (!force && conn->hcon->out && (rsp->resp_key_dist & 0x07))
960 return 0;
961
962 req = (void *) &smp->preq[1];
963
964 if (conn->hcon->out) {
965 keydist = &rsp->init_key_dist;
966 *keydist &= req->init_key_dist;
967 } else {
968 keydist = &rsp->resp_key_dist;
969 *keydist &= req->resp_key_dist;
970 }
971
972
973 BT_DBG("keydist 0x%x", *keydist);
974
975 if (*keydist & SMP_DIST_ENC_KEY) {
976 struct smp_cmd_encrypt_info enc;
977 struct smp_cmd_master_ident ident;
978 struct hci_conn *hcon = conn->hcon;
979 u8 authenticated;
980 __le16 ediv;
981
982 get_random_bytes(enc.ltk, sizeof(enc.ltk));
983 get_random_bytes(&ediv, sizeof(ediv));
984 get_random_bytes(ident.rand, sizeof(ident.rand));
985
986 smp_send_cmd(conn, SMP_CMD_ENCRYPT_INFO, sizeof(enc), &enc);
987
988 authenticated = hcon->sec_level == BT_SECURITY_HIGH;
989 hci_add_ltk(conn->hcon->hdev, conn->dst, hcon->dst_type,
990 HCI_SMP_LTK_SLAVE, 1, authenticated,
991 enc.ltk, smp->enc_key_size, ediv, ident.rand);
992
993 ident.ediv = ediv;
994
995 smp_send_cmd(conn, SMP_CMD_MASTER_IDENT, sizeof(ident), &ident);
996
997 *keydist &= ~SMP_DIST_ENC_KEY;
998 }
999
1000 if (*keydist & SMP_DIST_ID_KEY) {
1001 struct smp_cmd_ident_addr_info addrinfo;
1002 struct smp_cmd_ident_info idinfo;
1003
1004 /* Send a dummy key */
1005 get_random_bytes(idinfo.irk, sizeof(idinfo.irk));
1006
1007 smp_send_cmd(conn, SMP_CMD_IDENT_INFO, sizeof(idinfo), &idinfo);
1008
1009 /* Just public address */
1010 memset(&addrinfo, 0, sizeof(addrinfo));
1011 bacpy(&addrinfo.bdaddr, conn->src);
1012
1013 smp_send_cmd(conn, SMP_CMD_IDENT_ADDR_INFO, sizeof(addrinfo),
1014 &addrinfo);
1015
1016 *keydist &= ~SMP_DIST_ID_KEY;
1017 }
1018
1019 if (*keydist & SMP_DIST_SIGN) {
1020 struct smp_cmd_sign_info sign;
1021
1022 /* Send a dummy key */
1023 get_random_bytes(sign.csrk, sizeof(sign.csrk));
1024
1025 smp_send_cmd(conn, SMP_CMD_SIGN_INFO, sizeof(sign), &sign);
1026
1027 *keydist &= ~SMP_DIST_SIGN;
1028 }
1029
1030 if (conn->hcon->out || force) {
1031 clear_bit(HCI_CONN_LE_SMP_PEND, &conn->hcon->flags);
1032 cancel_delayed_work_sync(&conn->security_timer);
1033 smp_chan_destroy(conn);
1034 }
1035
1036 return 0;
1037 }
Linux kernel - Deliverables
This page took 0.054931 seconds and 6 git commands to generate.