2 BlueZ - Bluetooth protocol stack for Linux
3 Copyright (C) 2011 Nokia Corporation and/or its subsidiary(-ies).
5 This program is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License version 2 as
7 published by the Free Software Foundation;
9 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
10 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
11 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
12 IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
13 CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
14 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
18 ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
19 COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
20 SOFTWARE IS DISCLAIMED.
23 #include <net/bluetooth/bluetooth.h>
24 #include <net/bluetooth/hci_core.h>
25 #include <net/bluetooth/l2cap.h>
26 #include <net/bluetooth/mgmt.h>
27 #include <net/bluetooth/smp.h>
28 #include <linux/crypto.h>
29 #include <linux/scatterlist.h>
30 #include <crypto/b128ops.h>
32 #define SMP_TIMEOUT 30000 /* 30 seconds */
34 static inline void swap128(u8 src
[16], u8 dst
[16])
37 for (i
= 0; i
< 16; i
++)
41 static inline void swap56(u8 src
[7], u8 dst
[7])
44 for (i
= 0; i
< 7; i
++)
48 static int smp_e(struct crypto_blkcipher
*tfm
, const u8
*k
, u8
*r
)
50 struct blkcipher_desc desc
;
51 struct scatterlist sg
;
53 unsigned char iv
[128];
56 BT_ERR("tfm %p", tfm
);
63 err
= crypto_blkcipher_setkey(tfm
, k
, 16);
65 BT_ERR("cipher setkey failed: %d", err
);
69 sg_init_one(&sg
, r
, 16);
71 iv_len
= crypto_blkcipher_ivsize(tfm
);
73 memset(&iv
, 0xff, iv_len
);
74 crypto_blkcipher_set_iv(tfm
, iv
, iv_len
);
77 err
= crypto_blkcipher_encrypt(&desc
, &sg
, &sg
, 16);
79 BT_ERR("Encrypt data error %d", err
);
84 static int smp_c1(struct crypto_blkcipher
*tfm
, u8 k
[16], u8 r
[16],
85 u8 preq
[7], u8 pres
[7], u8 _iat
, bdaddr_t
*ia
,
86 u8 _rat
, bdaddr_t
*ra
, u8 res
[16])
93 /* p1 = pres || preq || _rat || _iat */
101 /* p2 = padding || ia || ra */
102 baswap((bdaddr_t
*) (p2
+ 4), ia
);
103 baswap((bdaddr_t
*) (p2
+ 10), ra
);
106 u128_xor((u128
*) res
, (u128
*) r
, (u128
*) p1
);
108 /* res = e(k, res) */
109 err
= smp_e(tfm
, k
, res
);
111 BT_ERR("Encrypt data error");
115 /* res = res XOR p2 */
116 u128_xor((u128
*) res
, (u128
*) res
, (u128
*) p2
);
118 /* res = e(k, res) */
119 err
= smp_e(tfm
, k
, res
);
121 BT_ERR("Encrypt data error");
126 static int smp_s1(struct crypto_blkcipher
*tfm
, u8 k
[16],
127 u8 r1
[16], u8 r2
[16], u8 _r
[16])
131 /* Just least significant octets from r1 and r2 are considered */
132 memcpy(_r
, r1
+ 8, 8);
133 memcpy(_r
+ 8, r2
+ 8, 8);
135 err
= smp_e(tfm
, k
, _r
);
137 BT_ERR("Encrypt data error");
142 static int smp_rand(u8
*buf
)
144 get_random_bytes(buf
, 16);
149 static struct sk_buff
*smp_build_cmd(struct l2cap_conn
*conn
, u8 code
,
150 u16 dlen
, void *data
)
153 struct l2cap_hdr
*lh
;
156 len
= L2CAP_HDR_SIZE
+ sizeof(code
) + dlen
;
161 skb
= bt_skb_alloc(len
, GFP_ATOMIC
);
165 lh
= (struct l2cap_hdr
*) skb_put(skb
, L2CAP_HDR_SIZE
);
166 lh
->len
= cpu_to_le16(sizeof(code
) + dlen
);
167 lh
->cid
= cpu_to_le16(L2CAP_CID_SMP
);
169 memcpy(skb_put(skb
, sizeof(code
)), &code
, sizeof(code
));
171 memcpy(skb_put(skb
, dlen
), data
, dlen
);
176 static void smp_send_cmd(struct l2cap_conn
*conn
, u8 code
, u16 len
, void *data
)
178 struct sk_buff
*skb
= smp_build_cmd(conn
, code
, len
, data
);
180 BT_DBG("code 0x%2.2x", code
);
185 skb
->priority
= HCI_PRIO_MAX
;
186 hci_send_acl(conn
->hchan
, skb
, 0);
188 cancel_delayed_work_sync(&conn
->security_timer
);
189 schedule_delayed_work(&conn
->security_timer
,
190 msecs_to_jiffies(SMP_TIMEOUT
));
193 static __u8
authreq_to_seclevel(__u8 authreq
)
195 if (authreq
& SMP_AUTH_MITM
)
196 return BT_SECURITY_HIGH
;
198 return BT_SECURITY_MEDIUM
;
201 static __u8
seclevel_to_authreq(__u8 sec_level
)
204 case BT_SECURITY_HIGH
:
205 return SMP_AUTH_MITM
| SMP_AUTH_BONDING
;
206 case BT_SECURITY_MEDIUM
:
207 return SMP_AUTH_BONDING
;
209 return SMP_AUTH_NONE
;
213 static void build_pairing_cmd(struct l2cap_conn
*conn
,
214 struct smp_cmd_pairing
*req
,
215 struct smp_cmd_pairing
*rsp
,
220 if (test_bit(HCI_PAIRABLE
, &conn
->hcon
->hdev
->flags
)) {
221 dist_keys
= SMP_DIST_ENC_KEY
;
222 authreq
|= SMP_AUTH_BONDING
;
224 authreq
&= ~SMP_AUTH_BONDING
;
228 req
->io_capability
= conn
->hcon
->io_capability
;
229 req
->oob_flag
= SMP_OOB_NOT_PRESENT
;
230 req
->max_key_size
= SMP_MAX_ENC_KEY_SIZE
;
231 req
->init_key_dist
= 0;
232 req
->resp_key_dist
= dist_keys
;
233 req
->auth_req
= authreq
;
237 rsp
->io_capability
= conn
->hcon
->io_capability
;
238 rsp
->oob_flag
= SMP_OOB_NOT_PRESENT
;
239 rsp
->max_key_size
= SMP_MAX_ENC_KEY_SIZE
;
240 rsp
->init_key_dist
= 0;
241 rsp
->resp_key_dist
= req
->resp_key_dist
& dist_keys
;
242 rsp
->auth_req
= authreq
;
245 static u8
check_enc_key_size(struct l2cap_conn
*conn
, __u8 max_key_size
)
247 struct smp_chan
*smp
= conn
->smp_chan
;
249 if ((max_key_size
> SMP_MAX_ENC_KEY_SIZE
) ||
250 (max_key_size
< SMP_MIN_ENC_KEY_SIZE
))
251 return SMP_ENC_KEY_SIZE
;
253 smp
->smp_key_size
= max_key_size
;
258 static void smp_failure(struct l2cap_conn
*conn
, u8 reason
, u8 send
)
261 smp_send_cmd(conn
, SMP_CMD_PAIRING_FAIL
, sizeof(reason
),
264 clear_bit(HCI_CONN_ENCRYPT_PEND
, &conn
->hcon
->pend
);
265 mgmt_auth_failed(conn
->hcon
->hdev
, conn
->dst
, reason
);
266 cancel_delayed_work_sync(&conn
->security_timer
);
267 smp_chan_destroy(conn
);
270 #define JUST_WORKS 0x00
271 #define JUST_CFM 0x01
272 #define REQ_PASSKEY 0x02
273 #define CFM_PASSKEY 0x03
277 static const u8 gen_method
[5][5] = {
278 { JUST_WORKS
, JUST_CFM
, REQ_PASSKEY
, JUST_WORKS
, REQ_PASSKEY
},
279 { JUST_WORKS
, JUST_CFM
, REQ_PASSKEY
, JUST_WORKS
, REQ_PASSKEY
},
280 { CFM_PASSKEY
, CFM_PASSKEY
, REQ_PASSKEY
, JUST_WORKS
, CFM_PASSKEY
},
281 { JUST_WORKS
, JUST_CFM
, JUST_WORKS
, JUST_WORKS
, JUST_CFM
},
282 { CFM_PASSKEY
, CFM_PASSKEY
, REQ_PASSKEY
, JUST_WORKS
, OVERLAP
},
285 static int tk_request(struct l2cap_conn
*conn
, u8 remote_oob
, u8 auth
,
286 u8 local_io
, u8 remote_io
)
288 struct hci_conn
*hcon
= conn
->hcon
;
289 struct smp_chan
*smp
= conn
->smp_chan
;
294 /* Initialize key for JUST WORKS */
295 memset(smp
->tk
, 0, sizeof(smp
->tk
));
296 clear_bit(SMP_FLAG_TK_VALID
, &smp
->smp_flags
);
298 BT_DBG("tk_request: auth:%d lcl:%d rem:%d", auth
, local_io
, remote_io
);
300 /* If neither side wants MITM, use JUST WORKS */
301 /* If either side has unknown io_caps, use JUST WORKS */
302 /* Otherwise, look up method from the table */
303 if (!(auth
& SMP_AUTH_MITM
) ||
304 local_io
> SMP_IO_KEYBOARD_DISPLAY
||
305 remote_io
> SMP_IO_KEYBOARD_DISPLAY
)
308 method
= gen_method
[local_io
][remote_io
];
310 /* If not bonding, don't ask user to confirm a Zero TK */
311 if (!(auth
& SMP_AUTH_BONDING
) && method
== JUST_CFM
)
314 /* If Just Works, Continue with Zero TK */
315 if (method
== JUST_WORKS
) {
316 set_bit(SMP_FLAG_TK_VALID
, &smp
->smp_flags
);
320 /* Not Just Works/Confirm results in MITM Authentication */
321 if (method
!= JUST_CFM
)
322 set_bit(SMP_FLAG_MITM_AUTH
, &smp
->smp_flags
);
324 /* If both devices have Keyoard-Display I/O, the master
325 * Confirms and the slave Enters the passkey.
327 if (method
== OVERLAP
) {
328 if (hcon
->link_mode
& HCI_LM_MASTER
)
329 method
= CFM_PASSKEY
;
331 method
= REQ_PASSKEY
;
334 /* Generate random passkey. Not valid until confirmed. */
335 if (method
== CFM_PASSKEY
) {
338 memset(key
, 0, sizeof(key
));
339 get_random_bytes(&passkey
, sizeof(passkey
));
341 put_unaligned_le32(passkey
, key
);
342 swap128(key
, smp
->tk
);
343 BT_DBG("PassKey: %d", passkey
);
346 hci_dev_lock(hcon
->hdev
);
348 if (method
== REQ_PASSKEY
)
349 ret
= mgmt_user_passkey_request(hcon
->hdev
, conn
->dst
);
351 ret
= mgmt_user_confirm_request(hcon
->hdev
, conn
->dst
,
352 cpu_to_le32(passkey
), 0);
354 hci_dev_unlock(hcon
->hdev
);
359 static void confirm_work(struct work_struct
*work
)
361 struct smp_chan
*smp
= container_of(work
, struct smp_chan
, confirm
);
362 struct l2cap_conn
*conn
= smp
->conn
;
363 struct crypto_blkcipher
*tfm
;
364 struct smp_cmd_pairing_confirm cp
;
368 BT_DBG("conn %p", conn
);
370 tfm
= crypto_alloc_blkcipher("ecb(aes)", 0, CRYPTO_ALG_ASYNC
);
372 reason
= SMP_UNSPECIFIED
;
379 ret
= smp_c1(tfm
, smp
->tk
, smp
->prnd
, smp
->preq
, smp
->prsp
, 0,
380 conn
->src
, conn
->hcon
->dst_type
, conn
->dst
,
383 ret
= smp_c1(tfm
, smp
->tk
, smp
->prnd
, smp
->preq
, smp
->prsp
,
384 conn
->hcon
->dst_type
, conn
->dst
, 0, conn
->src
,
387 reason
= SMP_UNSPECIFIED
;
391 clear_bit(SMP_FLAG_CFM_PENDING
, &smp
->smp_flags
);
393 swap128(res
, cp
.confirm_val
);
394 smp_send_cmd(smp
->conn
, SMP_CMD_PAIRING_CONFIRM
, sizeof(cp
), &cp
);
399 smp_failure(conn
, reason
, 1);
402 static void random_work(struct work_struct
*work
)
404 struct smp_chan
*smp
= container_of(work
, struct smp_chan
, random
);
405 struct l2cap_conn
*conn
= smp
->conn
;
406 struct hci_conn
*hcon
= conn
->hcon
;
407 struct crypto_blkcipher
*tfm
= smp
->tfm
;
408 u8 reason
, confirm
[16], res
[16], key
[16];
411 if (IS_ERR_OR_NULL(tfm
)) {
412 reason
= SMP_UNSPECIFIED
;
416 BT_DBG("conn %p %s", conn
, conn
->hcon
->out
? "master" : "slave");
419 ret
= smp_c1(tfm
, smp
->tk
, smp
->rrnd
, smp
->preq
, smp
->prsp
, 0,
420 conn
->src
, hcon
->dst_type
, conn
->dst
,
423 ret
= smp_c1(tfm
, smp
->tk
, smp
->rrnd
, smp
->preq
, smp
->prsp
,
424 hcon
->dst_type
, conn
->dst
, 0, conn
->src
,
427 reason
= SMP_UNSPECIFIED
;
431 swap128(res
, confirm
);
433 if (memcmp(smp
->pcnf
, confirm
, sizeof(smp
->pcnf
)) != 0) {
434 BT_ERR("Pairing failed (confirmation values mismatch)");
435 reason
= SMP_CONFIRM_FAILED
;
443 memset(rand
, 0, sizeof(rand
));
446 smp_s1(tfm
, smp
->tk
, smp
->rrnd
, smp
->prnd
, key
);
449 memset(stk
+ smp
->smp_key_size
, 0,
450 SMP_MAX_ENC_KEY_SIZE
- smp
->smp_key_size
);
452 if (test_and_set_bit(HCI_CONN_ENCRYPT_PEND
, &hcon
->pend
)) {
453 reason
= SMP_UNSPECIFIED
;
457 hci_le_start_enc(hcon
, ediv
, rand
, stk
);
458 hcon
->enc_key_size
= smp
->smp_key_size
;
460 u8 stk
[16], r
[16], rand
[8];
463 memset(rand
, 0, sizeof(rand
));
466 swap128(smp
->prnd
, r
);
467 smp_send_cmd(conn
, SMP_CMD_PAIRING_RANDOM
, sizeof(r
), r
);
469 smp_s1(tfm
, smp
->tk
, smp
->prnd
, smp
->rrnd
, key
);
472 memset(stk
+ smp
->smp_key_size
, 0,
473 SMP_MAX_ENC_KEY_SIZE
- smp
->smp_key_size
);
475 hci_add_ltk(hcon
->hdev
, 0, conn
->dst
, smp
->smp_key_size
,
482 smp_failure(conn
, reason
, 1);
485 static struct smp_chan
*smp_chan_create(struct l2cap_conn
*conn
)
487 struct smp_chan
*smp
;
489 smp
= kzalloc(sizeof(struct smp_chan
), GFP_ATOMIC
);
493 INIT_WORK(&smp
->confirm
, confirm_work
);
494 INIT_WORK(&smp
->random
, random_work
);
497 conn
->smp_chan
= smp
;
498 conn
->hcon
->smp_conn
= conn
;
500 hci_conn_hold(conn
->hcon
);
505 void smp_chan_destroy(struct l2cap_conn
*conn
)
507 struct smp_chan
*smp
= conn
->smp_chan
;
509 clear_bit(HCI_CONN_LE_SMP_PEND
, &conn
->hcon
->pend
);
512 crypto_free_blkcipher(smp
->tfm
);
515 conn
->smp_chan
= NULL
;
516 conn
->hcon
->smp_conn
= NULL
;
517 hci_conn_put(conn
->hcon
);
520 int smp_user_confirm_reply(struct hci_conn
*hcon
, u16 mgmt_op
, __le32 passkey
)
522 struct l2cap_conn
*conn
= hcon
->smp_conn
;
523 struct smp_chan
*smp
;
532 smp
= conn
->smp_chan
;
535 case MGMT_OP_USER_PASSKEY_REPLY
:
536 value
= le32_to_cpu(passkey
);
537 memset(key
, 0, sizeof(key
));
538 BT_DBG("PassKey: %d", value
);
539 put_unaligned_le32(value
, key
);
540 swap128(key
, smp
->tk
);
542 case MGMT_OP_USER_CONFIRM_REPLY
:
543 set_bit(SMP_FLAG_TK_VALID
, &smp
->smp_flags
);
545 case MGMT_OP_USER_PASSKEY_NEG_REPLY
:
546 case MGMT_OP_USER_CONFIRM_NEG_REPLY
:
547 smp_failure(conn
, SMP_PASSKEY_ENTRY_FAILED
, 1);
550 smp_failure(conn
, SMP_PASSKEY_ENTRY_FAILED
, 1);
554 /* If it is our turn to send Pairing Confirm, do so now */
555 if (test_bit(SMP_FLAG_CFM_PENDING
, &smp
->smp_flags
))
556 queue_work(hcon
->hdev
->workqueue
, &smp
->confirm
);
561 static u8
smp_cmd_pairing_req(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
563 struct smp_cmd_pairing rsp
, *req
= (void *) skb
->data
;
564 struct smp_chan
*smp
;
566 u8 auth
= SMP_AUTH_NONE
;
569 BT_DBG("conn %p", conn
);
571 if (conn
->hcon
->link_mode
& HCI_LM_MASTER
)
572 return SMP_CMD_NOTSUPP
;
574 if (!test_and_set_bit(HCI_CONN_LE_SMP_PEND
, &conn
->hcon
->pend
))
575 smp
= smp_chan_create(conn
);
577 smp
= conn
->smp_chan
;
579 smp
->preq
[0] = SMP_CMD_PAIRING_REQ
;
580 memcpy(&smp
->preq
[1], req
, sizeof(*req
));
581 skb_pull(skb
, sizeof(*req
));
583 /* We didn't start the pairing, so match remote */
584 if (req
->auth_req
& SMP_AUTH_BONDING
)
585 auth
= req
->auth_req
;
587 build_pairing_cmd(conn
, req
, &rsp
, auth
);
589 key_size
= min(req
->max_key_size
, rsp
.max_key_size
);
590 if (check_enc_key_size(conn
, key_size
))
591 return SMP_ENC_KEY_SIZE
;
593 ret
= smp_rand(smp
->prnd
);
595 return SMP_UNSPECIFIED
;
597 smp
->prsp
[0] = SMP_CMD_PAIRING_RSP
;
598 memcpy(&smp
->prsp
[1], &rsp
, sizeof(rsp
));
600 smp_send_cmd(conn
, SMP_CMD_PAIRING_RSP
, sizeof(rsp
), &rsp
);
602 /* Request setup of TK */
603 ret
= tk_request(conn
, 0, auth
, rsp
.io_capability
, req
->io_capability
);
605 return SMP_UNSPECIFIED
;
610 static u8
smp_cmd_pairing_rsp(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
612 struct smp_cmd_pairing
*req
, *rsp
= (void *) skb
->data
;
613 struct smp_chan
*smp
= conn
->smp_chan
;
614 struct hci_dev
*hdev
= conn
->hcon
->hdev
;
615 u8 key_size
, auth
= SMP_AUTH_NONE
;
618 BT_DBG("conn %p", conn
);
620 if (!(conn
->hcon
->link_mode
& HCI_LM_MASTER
))
621 return SMP_CMD_NOTSUPP
;
623 skb_pull(skb
, sizeof(*rsp
));
625 req
= (void *) &smp
->preq
[1];
627 key_size
= min(req
->max_key_size
, rsp
->max_key_size
);
628 if (check_enc_key_size(conn
, key_size
))
629 return SMP_ENC_KEY_SIZE
;
631 ret
= smp_rand(smp
->prnd
);
633 return SMP_UNSPECIFIED
;
635 smp
->prsp
[0] = SMP_CMD_PAIRING_RSP
;
636 memcpy(&smp
->prsp
[1], rsp
, sizeof(*rsp
));
638 if ((req
->auth_req
& SMP_AUTH_BONDING
) &&
639 (rsp
->auth_req
& SMP_AUTH_BONDING
))
640 auth
= SMP_AUTH_BONDING
;
642 auth
|= (req
->auth_req
| rsp
->auth_req
) & SMP_AUTH_MITM
;
644 ret
= tk_request(conn
, 0, auth
, rsp
->io_capability
, req
->io_capability
);
646 return SMP_UNSPECIFIED
;
648 set_bit(SMP_FLAG_CFM_PENDING
, &smp
->smp_flags
);
650 /* Can't compose response until we have been confirmed */
651 if (!test_bit(SMP_FLAG_TK_VALID
, &smp
->smp_flags
))
654 queue_work(hdev
->workqueue
, &smp
->confirm
);
659 static u8
smp_cmd_pairing_confirm(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
661 struct smp_chan
*smp
= conn
->smp_chan
;
662 struct hci_dev
*hdev
= conn
->hcon
->hdev
;
664 BT_DBG("conn %p %s", conn
, conn
->hcon
->out
? "master" : "slave");
666 memcpy(smp
->pcnf
, skb
->data
, sizeof(smp
->pcnf
));
667 skb_pull(skb
, sizeof(smp
->pcnf
));
669 if (conn
->hcon
->out
) {
672 swap128(smp
->prnd
, random
);
673 smp_send_cmd(conn
, SMP_CMD_PAIRING_RANDOM
, sizeof(random
),
675 } else if (test_bit(SMP_FLAG_TK_VALID
, &smp
->smp_flags
)) {
676 queue_work(hdev
->workqueue
, &smp
->confirm
);
678 set_bit(SMP_FLAG_CFM_PENDING
, &smp
->smp_flags
);
684 static u8
smp_cmd_pairing_random(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
686 struct smp_chan
*smp
= conn
->smp_chan
;
687 struct hci_dev
*hdev
= conn
->hcon
->hdev
;
689 BT_DBG("conn %p", conn
);
691 swap128(skb
->data
, smp
->rrnd
);
692 skb_pull(skb
, sizeof(smp
->rrnd
));
694 queue_work(hdev
->workqueue
, &smp
->random
);
699 static u8
smp_ltk_encrypt(struct l2cap_conn
*conn
)
701 struct link_key
*key
;
702 struct key_master_id
*master
;
703 struct hci_conn
*hcon
= conn
->hcon
;
705 key
= hci_find_link_key_type(hcon
->hdev
, conn
->dst
,
710 if (test_and_set_bit(HCI_CONN_ENCRYPT_PEND
,
714 master
= (void *) key
->data
;
715 hci_le_start_enc(hcon
, master
->ediv
, master
->rand
,
717 hcon
->enc_key_size
= key
->pin_len
;
722 static u8
smp_cmd_security_req(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
724 struct smp_cmd_security_req
*rp
= (void *) skb
->data
;
725 struct smp_cmd_pairing cp
;
726 struct hci_conn
*hcon
= conn
->hcon
;
727 struct smp_chan
*smp
;
729 BT_DBG("conn %p", conn
);
731 hcon
->pending_sec_level
= authreq_to_seclevel(rp
->auth_req
);
733 if (smp_ltk_encrypt(conn
))
736 if (test_and_set_bit(HCI_CONN_LE_SMP_PEND
, &hcon
->pend
))
739 smp
= smp_chan_create(conn
);
741 skb_pull(skb
, sizeof(*rp
));
743 memset(&cp
, 0, sizeof(cp
));
744 build_pairing_cmd(conn
, &cp
, NULL
, rp
->auth_req
);
746 smp
->preq
[0] = SMP_CMD_PAIRING_REQ
;
747 memcpy(&smp
->preq
[1], &cp
, sizeof(cp
));
749 smp_send_cmd(conn
, SMP_CMD_PAIRING_REQ
, sizeof(cp
), &cp
);
754 int smp_conn_security(struct l2cap_conn
*conn
, __u8 sec_level
)
756 struct hci_conn
*hcon
= conn
->hcon
;
757 struct smp_chan
*smp
= conn
->smp_chan
;
760 BT_DBG("conn %p hcon %p level 0x%2.2x", conn
, hcon
, sec_level
);
762 if (!lmp_host_le_capable(hcon
->hdev
))
765 if (sec_level
== BT_SECURITY_LOW
)
768 if (hcon
->sec_level
>= sec_level
)
771 if (hcon
->link_mode
& HCI_LM_MASTER
)
772 if (smp_ltk_encrypt(conn
))
775 if (test_and_set_bit(HCI_CONN_LE_SMP_PEND
, &hcon
->pend
))
778 smp
= smp_chan_create(conn
);
782 authreq
= seclevel_to_authreq(sec_level
);
784 if (hcon
->link_mode
& HCI_LM_MASTER
) {
785 struct smp_cmd_pairing cp
;
787 build_pairing_cmd(conn
, &cp
, NULL
, authreq
);
788 smp
->preq
[0] = SMP_CMD_PAIRING_REQ
;
789 memcpy(&smp
->preq
[1], &cp
, sizeof(cp
));
791 smp_send_cmd(conn
, SMP_CMD_PAIRING_REQ
, sizeof(cp
), &cp
);
793 struct smp_cmd_security_req cp
;
794 cp
.auth_req
= authreq
;
795 smp_send_cmd(conn
, SMP_CMD_SECURITY_REQ
, sizeof(cp
), &cp
);
799 hcon
->pending_sec_level
= sec_level
;
804 static int smp_cmd_encrypt_info(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
806 struct smp_cmd_encrypt_info
*rp
= (void *) skb
->data
;
807 struct smp_chan
*smp
= conn
->smp_chan
;
809 skb_pull(skb
, sizeof(*rp
));
811 memcpy(smp
->tk
, rp
->ltk
, sizeof(smp
->tk
));
816 static int smp_cmd_master_ident(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
818 struct smp_cmd_master_ident
*rp
= (void *) skb
->data
;
819 struct smp_chan
*smp
= conn
->smp_chan
;
821 skb_pull(skb
, sizeof(*rp
));
823 hci_add_ltk(conn
->hcon
->hdev
, 1, conn
->dst
, smp
->smp_key_size
,
824 rp
->ediv
, rp
->rand
, smp
->tk
);
826 smp_distribute_keys(conn
, 1);
831 int smp_sig_channel(struct l2cap_conn
*conn
, struct sk_buff
*skb
)
833 __u8 code
= skb
->data
[0];
837 if (!lmp_host_le_capable(conn
->hcon
->hdev
)) {
839 reason
= SMP_PAIRING_NOTSUPP
;
843 skb_pull(skb
, sizeof(code
));
846 case SMP_CMD_PAIRING_REQ
:
847 reason
= smp_cmd_pairing_req(conn
, skb
);
850 case SMP_CMD_PAIRING_FAIL
:
851 smp_failure(conn
, skb
->data
[0], 0);
856 case SMP_CMD_PAIRING_RSP
:
857 reason
= smp_cmd_pairing_rsp(conn
, skb
);
860 case SMP_CMD_SECURITY_REQ
:
861 reason
= smp_cmd_security_req(conn
, skb
);
864 case SMP_CMD_PAIRING_CONFIRM
:
865 reason
= smp_cmd_pairing_confirm(conn
, skb
);
868 case SMP_CMD_PAIRING_RANDOM
:
869 reason
= smp_cmd_pairing_random(conn
, skb
);
872 case SMP_CMD_ENCRYPT_INFO
:
873 reason
= smp_cmd_encrypt_info(conn
, skb
);
876 case SMP_CMD_MASTER_IDENT
:
877 reason
= smp_cmd_master_ident(conn
, skb
);
880 case SMP_CMD_IDENT_INFO
:
881 case SMP_CMD_IDENT_ADDR_INFO
:
882 case SMP_CMD_SIGN_INFO
:
888 BT_DBG("Unknown command code 0x%2.2x", code
);
890 reason
= SMP_CMD_NOTSUPP
;
897 smp_failure(conn
, reason
, 1);
903 int smp_distribute_keys(struct l2cap_conn
*conn
, __u8 force
)
905 struct smp_cmd_pairing
*req
, *rsp
;
906 struct smp_chan
*smp
= conn
->smp_chan
;
909 BT_DBG("conn %p force %d", conn
, force
);
911 if (!test_bit(HCI_CONN_LE_SMP_PEND
, &conn
->hcon
->pend
))
914 rsp
= (void *) &smp
->prsp
[1];
916 /* The responder sends its keys first */
917 if (!force
&& conn
->hcon
->out
&& (rsp
->resp_key_dist
& 0x07))
920 req
= (void *) &smp
->preq
[1];
922 if (conn
->hcon
->out
) {
923 keydist
= &rsp
->init_key_dist
;
924 *keydist
&= req
->init_key_dist
;
926 keydist
= &rsp
->resp_key_dist
;
927 *keydist
&= req
->resp_key_dist
;
931 BT_DBG("keydist 0x%x", *keydist
);
933 if (*keydist
& SMP_DIST_ENC_KEY
) {
934 struct smp_cmd_encrypt_info enc
;
935 struct smp_cmd_master_ident ident
;
938 get_random_bytes(enc
.ltk
, sizeof(enc
.ltk
));
939 get_random_bytes(&ediv
, sizeof(ediv
));
940 get_random_bytes(ident
.rand
, sizeof(ident
.rand
));
942 smp_send_cmd(conn
, SMP_CMD_ENCRYPT_INFO
, sizeof(enc
), &enc
);
944 hci_add_ltk(conn
->hcon
->hdev
, 1, conn
->dst
, smp
->smp_key_size
,
945 ediv
, ident
.rand
, enc
.ltk
);
947 ident
.ediv
= cpu_to_le16(ediv
);
949 smp_send_cmd(conn
, SMP_CMD_MASTER_IDENT
, sizeof(ident
), &ident
);
951 *keydist
&= ~SMP_DIST_ENC_KEY
;
954 if (*keydist
& SMP_DIST_ID_KEY
) {
955 struct smp_cmd_ident_addr_info addrinfo
;
956 struct smp_cmd_ident_info idinfo
;
958 /* Send a dummy key */
959 get_random_bytes(idinfo
.irk
, sizeof(idinfo
.irk
));
961 smp_send_cmd(conn
, SMP_CMD_IDENT_INFO
, sizeof(idinfo
), &idinfo
);
963 /* Just public address */
964 memset(&addrinfo
, 0, sizeof(addrinfo
));
965 bacpy(&addrinfo
.bdaddr
, conn
->src
);
967 smp_send_cmd(conn
, SMP_CMD_IDENT_ADDR_INFO
, sizeof(addrinfo
),
970 *keydist
&= ~SMP_DIST_ID_KEY
;
973 if (*keydist
& SMP_DIST_SIGN
) {
974 struct smp_cmd_sign_info sign
;
976 /* Send a dummy key */
977 get_random_bytes(sign
.csrk
, sizeof(sign
.csrk
));
979 smp_send_cmd(conn
, SMP_CMD_SIGN_INFO
, sizeof(sign
), &sign
);
981 *keydist
&= ~SMP_DIST_SIGN
;
984 if (conn
->hcon
->out
|| force
) {
985 clear_bit(HCI_CONN_LE_SMP_PEND
, &conn
->hcon
->pend
);
986 cancel_delayed_work_sync(&conn
->security_timer
);
987 smp_chan_destroy(conn
);