esp-idf/components/bt/host/bluedroid/stack/smp
Chinmay Chhajed d73ebb570b Bluedroid: Fixes for some vulnerabilities.
This commit fixes 'Impersonation in Passkey entry protocol'
(CVE-2020-26558) and suggests fixes for other vulnerabilites like
'Impersonation in the Pin Pairing Protocol' (CVE-2020-26555) and
'Authentication of the LE Legacy Pairing Protocol'

CVE-2020-26558 can be easily implemented if the peer device can
impersonate our public key. This commit adds a check by comparing our
and received public key and returns failed pairing if keys are same.

This commit also adds comments suggesting to use secure connection when
supported by all devices.
2020-12-24 10:52:12 +00:00
..
include Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
aes.c Bluetooth component refactoring 2019-06-30 16:39:00 +08:00
p_256_curvepara.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
p_256_ecc_pp.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
p_256_multprecision.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
smp_act.c Bluedroid: Fixes for some vulnerabilities. 2020-12-24 10:52:12 +00:00
smp_api.c Bluetooth component refactoring 2019-06-30 16:39:00 +08:00
smp_br_main.c Bluetooth component refactoring 2019-06-30 16:39:00 +08:00
smp_cmac.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
smp_keys.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
smp_l2c.c Bluetooth component refactoring 2019-06-30 16:39:00 +08:00
smp_main.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00
smp_utils.c Whitespace: Automated whitespace fixes (large commit) 2020-11-11 07:36:35 +00:00