* [PATCH] Blocked key mgmt Api definition
@ 2019-11-26 19:14 Alain Michaud
2019-11-27 6:00 ` Marcel Holtmann
0 siblings, 1 reply; 4+ messages in thread
From: Alain Michaud @ 2019-11-26 19:14 UTC (permalink / raw)
To: linux-bluetooth; +Cc: Alain Michaud
---
doc/mgmt-api.txt | 33 +++++++++++++++++++++++++++++++++
1 file changed, 33 insertions(+)
diff --git a/doc/mgmt-api.txt b/doc/mgmt-api.txt
index 0d11aa035..7c77927a2 100644
--- a/doc/mgmt-api.txt
+++ b/doc/mgmt-api.txt
@@ -3013,6 +3013,39 @@ Set PHY Configuration Command
Possible errors: Invalid Parameters
Invalid Index
+Load Blocked Keys Command
+===========================
+
+ Command Code: 0x0046
+ Controller Index: <controller id>
+ Command Parameters: Key_Count (2 Octets)
+ Key1 {
+ Key_Type (1 Octet)
+ Value (16 Octets)
+ }
+ Key2 { }
+ ...
+ Return Parameters:
+
+ This command is used to feed the kernel a list of keys that
+ are known to be vulnerable.
+
+ Currently defined Key_Type values are:
+
+ 0x00 Link Key (BR/EDR)
+ 0x01 Long Term Key (LE)
+ 0x02 Identity Resolving Key (LE)
+
+ This command can be used at anypoint to add to the list of blocked keys. Any connections that
+ are attempting to use the keys will be terminated. If a device tries to distribute the keys during
+ pairing, pairing will fail.
+
+ This command generates a Command Complete event on success or
+ a Command Status event on failure.
+
+ Possible errors: Invalid Parameters
+ Invalid Index
+
Command Complete Event
======================
--
2.24.0.432.g9d3f5f5b63-goog
^ permalink raw reply related [flat|nested] 4+ messages in thread
* Re: [PATCH] Blocked key mgmt Api definition
2019-11-26 19:14 [PATCH] Blocked key mgmt Api definition Alain Michaud
@ 2019-11-27 6:00 ` Marcel Holtmann
2019-11-27 15:54 ` Luiz Augusto von Dentz
0 siblings, 1 reply; 4+ messages in thread
From: Marcel Holtmann @ 2019-11-27 6:00 UTC (permalink / raw)
To: Alain Michaud; +Cc: Bluez mailing list
Hi Alain,
> ---
> doc/mgmt-api.txt | 33 +++++++++++++++++++++++++++++++++
> 1 file changed, 33 insertions(+)
patch has been applied.
> +
> + This command can be used at anypoint to add to the list of blocked keys. Any connections that
> + are attempting to use the keys will be terminated. If a device tries to distribute the keys during
> + pairing, pairing will fail.
> +
However, I ended up rewording this part since it doesn’t sounded right to me. We can adjust this once we have the implementation to match against, but for now I kept it simple. Oh, and we need to stay within the rule that it has to readable in 80 character wide terminal. So no long lines.
Regards
Marcel
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PATCH] Blocked key mgmt Api definition
2019-11-27 6:00 ` Marcel Holtmann
@ 2019-11-27 15:54 ` Luiz Augusto von Dentz
2019-11-27 16:44 ` Alain Michaud
0 siblings, 1 reply; 4+ messages in thread
From: Luiz Augusto von Dentz @ 2019-11-27 15:54 UTC (permalink / raw)
To: Marcel Holtmann; +Cc: Alain Michaud, Bluez mailing list
Hi Marcel, Alain,
On Wed, Nov 27, 2019 at 8:02 AM Marcel Holtmann <marcel@holtmann.org> wrote:
>
> Hi Alain,
>
> > ---
> > doc/mgmt-api.txt | 33 +++++++++++++++++++++++++++++++++
> > 1 file changed, 33 insertions(+)
>
> patch has been applied.
>
> > +
> > + This command can be used at anypoint to add to the list of blocked keys. Any connections that
> > + are attempting to use the keys will be terminated. If a device tries to distribute the keys during
> > + pairing, pairing will fail.
> > +
>
> However, I ended up rewording this part since it doesn’t sounded right to me. We can adjust this once we have the implementation to match against, but for now I kept it simple. Oh, and we need to stay within the rule that it has to readable in 80 character wide terminal. So no long lines.
Will there be a follow up change to add support for this in the
daemon, I suspect we will need to have it given as a file or will the
blacklist be just hardcoded?
--
Luiz Augusto von Dentz
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PATCH] Blocked key mgmt Api definition
2019-11-27 15:54 ` Luiz Augusto von Dentz
@ 2019-11-27 16:44 ` Alain Michaud
0 siblings, 0 replies; 4+ messages in thread
From: Alain Michaud @ 2019-11-27 16:44 UTC (permalink / raw)
To: Luiz Augusto von Dentz; +Cc: Marcel Holtmann, Alain Michaud, Bluez mailing list
Hi Luiz,
Yes, look for more patches from me on this next week.
Thanks,
Alain
On Wed, Nov 27, 2019 at 10:54 AM Luiz Augusto von Dentz
<luiz.dentz@gmail.com> wrote:
>
> Hi Marcel, Alain,
>
> On Wed, Nov 27, 2019 at 8:02 AM Marcel Holtmann <marcel@holtmann.org> wrote:
> >
> > Hi Alain,
> >
> > > ---
> > > doc/mgmt-api.txt | 33 +++++++++++++++++++++++++++++++++
> > > 1 file changed, 33 insertions(+)
> >
> > patch has been applied.
> >
> > > +
> > > + This command can be used at anypoint to add to the list of blocked keys. Any connections that
> > > + are attempting to use the keys will be terminated. If a device tries to distribute the keys during
> > > + pairing, pairing will fail.
> > > +
> >
> > However, I ended up rewording this part since it doesn’t sounded right to me. We can adjust this once we have the implementation to match against, but for now I kept it simple. Oh, and we need to stay within the rule that it has to readable in 80 character wide terminal. So no long lines.
>
> Will there be a follow up change to add support for this in the
> daemon, I suspect we will need to have it given as a file or will the
> blacklist be just hardcoded?
>
> --
> Luiz Augusto von Dentz
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2019-11-27 16:44 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-11-26 19:14 [PATCH] Blocked key mgmt Api definition Alain Michaud
2019-11-27 6:00 ` Marcel Holtmann
2019-11-27 15:54 ` Luiz Augusto von Dentz
2019-11-27 16:44 ` Alain Michaud
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.