esp-idf/components/bt/host/bluedroid/stack
Chinmay Chhajed d73ebb570b Bluedroid: Fixes for some vulnerabilities.
This commit fixes 'Impersonation in Passkey entry protocol'
(CVE-2020-26558) and suggests fixes for other vulnerabilites like
'Impersonation in the Pin Pairing Protocol' (CVE-2020-26555) and
'Authentication of the LE Legacy Pairing Protocol'

CVE-2020-26558 can be easily implemented if the peer device can
impersonate our public key. This commit adds a check by comparing our
and received public key and returns failed pairing if keys are same.

This commit also adds comments suggesting to use secure connection when
supported by all devices.
2020-12-24 10:52:12 +00:00
..
a2dp Bluetooth component refactoring 2019-06-30 16:39:00 +08:00
avct Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
avdt Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
avrc Bluetooth component refactoring 2019-06-30 16:39:00 +08:00
btm component/bt: support BLE Read Attribute value by UUID 2020-12-02 20:04:36 +08:00
btu Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
gap Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
gatt component/bt: support BLE Application Layer Encryption key size check 2020-12-02 09:08:03 +08:00
hcic Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
include/stack component/bt: refactor ble random address setting 2020-12-02 09:08:31 +08:00
l2cap components/bt: Fixed the problem of early release of pointer(p_ccb) in funcion 2020-12-17 10:54:56 +08:00
rfcomm Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
sdp Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
smp Bluedroid: Fixes for some vulnerabilities. 2020-12-24 10:52:12 +00:00