ARMmbed
/
mbed-os
mirror of https://github.com/ARMmbed/mbed-os.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

BLE: Update DB entry if current entry doesn't match requested EDIV and RAND

pull/13759/head
Vincent Coubard 2020-09-23 17:37:56 +01:00
parent 4c1afe8e83
commit 8716298ea2
2 changed files with 53 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

56
connectivity/FEATURE_BLE/source/generic/SecurityDb.h
View File

@ -168,16 +168,26 @@ public:
*/ */
virtual void get_entry_local_keys( virtual void get_entry_local_keys(
SecurityEntryKeysDbCb_t cb, SecurityEntryKeysDbCb_t cb,
entry_handle_t db_handle, entry_handle_t* db_handle,
const ediv_t &ediv, const ediv_t &ediv,
const rand_t &rand const rand_t &rand
) { ) {
SecurityEntryKeys_t* keys = read_in_entry_local_keys(db_handle); SecurityEntryKeys_t* keys = read_in_entry_local_keys(*db_handle);
/* validate we have the correct key */ /* validate we have the correct key */
if (keys && ediv == keys->ediv && rand == keys->rand) { if (keys && ediv == keys->ediv && rand == keys->rand) {
cb(db_handle, keys); cb(*db_handle, keys);
} else { } else {
cb(db_handle, NULL); // Maybe this isn't the correct entry, try to find one that matches
entry_handle_t correct_handle = find_entry_by_peer_ediv_rand(ediv, rand);
if (!correct_handle) {
cb(*db_handle, NULL);
}
// Note: keys should never be null as a matching entry has been retrieved
SecurityEntryKeys_t* keys = read_in_entry_local_keys(correct_handle);
MBED_ASSERT(keys);
close_entry(*db_handle, false);
*db_handle = correct_handle;
cb(*db_handle, keys);
} }
} }
@ -552,18 +562,54 @@ public:
return nullptr; return nullptr;
} }
/**
* Find a database entry based on ediv and rand.
*
* @param[in] ediv E diversifier
* @param[in] rand random part
*
* @return A handle to the entry.
*/
virtual entry_handle_t find_entry_by_peer_ediv_rand(
const ediv_t &ediv,
const rand_t &rand
) {
for (size_t i = 0; i < get_entry_count(); i++) {
entry_handle_t db_handle = get_entry_handle_by_index(i);
SecurityDistributionFlags_t* flags = get_distribution_flags(db_handle);
if (!flags || flags->connected) {
continue;
}
SecurityEntryKeys_t* keys = read_in_entry_local_keys(db_handle);
if (!keys) {
continue;
}
if (keys->ediv == ediv && keys->rand == rand) {
return db_handle;
}
}
return nullptr;
}
/** /**
* Close a connection entry. * Close a connection entry.
* *
* @param[in] db_handle this handle will be freed up from the security db. * @param[in] db_handle this handle will be freed up from the security db.
*/ */
virtual void close_entry(entry_handle_t db_handle) { virtual void close_entry(entry_handle_t db_handle, bool require_sync = true) {
SecurityDistributionFlags_t* flags = get_distribution_flags(db_handle); SecurityDistributionFlags_t* flags = get_distribution_flags(db_handle);
if (flags) { if (flags) {
flags->connected = false; flags->connected = false;
} }
if (require_sync) {
sync(db_handle); sync(db_handle);
} }
}
/** /**
* Remove entry for this peer from NVM. * Remove entry for this peer from NVM.

2
connectivity/FEATURE_BLE/source/generic/SecurityManagerImpl.cpp
View File

@ -1935,7 +1935,7 @@ void SecurityManager::on_ltk_request(
_db->get_entry_local_keys( _db->get_entry_local_keys(
mbed::callback(this, &SecurityManager::set_ltk_cb), mbed::callback(this, &SecurityManager::set_ltk_cb),
cb->db_entry, &cb->db_entry,
ediv, ediv,
rand rand
); );