Received: by 2002:a25:824b:0:0:0:0:0 with SMTP id d11csp2547938ybn;
        Thu, 26 Sep 2019 13:41:29 -0700 (PDT)
X-Google-Smtp-Source: APXvYqyWgzFOohmRJkm6frChMRGQrTLpPddLnvlMC5myd/9upZ3gi9ezveCfFPvPV4S1pM3fJDZ8
X-Received: by 2002:a17:906:5c07:: with SMTP id e7mr524096ejq.127.1569530489083;
        Thu, 26 Sep 2019 13:41:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1569530489; cv=none;
        d=google.com; s=arc-20160816;
        b=aGH0Cmx9gju9Al8w/WfUT9UzWHqzZgZk4o52sK8If/gE+qfemuOopDN11wiUAUcnwS
         ew51VCo355w7eYiUGETuwPF0KPiyu5nAXlDfAsGA9puwpYcGkL1J01doasCgSU+ptTwU
         ZS9N3pM0bMLUj5+2SeD1Ms6wrg1Hp+RNPNj+jHJx6vL//DzpDvE7LNeMTnDucplnbk+k
         z4GTYp7xc6OHapl4c//iR3lfNE754PNu2oc6FY9phNBIDKCRLHLmC2RF6RTblA1+1um1
         qn4+MyDs41gPlWd2R/90PT6NJVLWglttk3XO0taETVkgpCs1YvFmXF/ziL8bDgJiZI42
         2yyQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:content-language
         :accept-language:in-reply-to:references:message-id:date:thread-index
         :thread-topic:subject:cc:to:from;
        bh=DWjFeMgR/1DiNmXkcArV71zM9A5sTGN1mFxztluS84c=;
        b=I38jcB/NLvwuVPfR31W+L9tpEH1iryApZfitXr2Wt69KRGVKbek/5wNMQunEqFHnzW
         T3kkMvaIV84xYhYC9m9RalfAJukOVu47xsxTH+jAsASLESPkq0hQNqB2jSEgyaCyKKkd
         e7XACVjG0fnANJGImv67oKtjt101DCVBb2B1XKpC2YalxiNBzETHxbXvvpzBrhRG/1is
         OBqEsEkKQLggsoC3msDmMKtmZhUUH2jjZG1UapfkImlT/KcFCnrjMHAb4+t5iqcmJNIJ
         gmfrI4IMM90ZIeesihZ30iBJwnGGzQFa/QKiy/7/n6Q+PdZJB+FH+qlJpSXd9FDVDp6b
         QBCg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-bluetooth-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id o22si1639029ejb.285.2019.09.26.13.40.45;
        Thu, 26 Sep 2019 13:41:28 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728767AbfIZUkm (ORCPT <rfc822;maohongyicn@gmail.com>
        + 99 others); Thu, 26 Sep 2019 16:40:42 -0400
Received: from mga06.intel.com ([134.134.136.31]:35949 "EHLO mga06.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1727948AbfIZUkl (ORCPT <rfc822;linux-bluetooth@vger.kernel.org>);
        Thu, 26 Sep 2019 16:40:41 -0400
X-Amp-Result: UNKNOWN
X-Amp-Original-Verdict: FILE UNKNOWN
X-Amp-File-Uploaded: False
Received: from orsmga007.jf.intel.com ([10.7.209.58])
  by orsmga104.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 26 Sep 2019 13:40:41 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.64,553,1559545200"; 
   d="p7s'?scan'208";a="180289571"
Received: from orsmsx107.amr.corp.intel.com ([10.22.240.5])
  by orsmga007.jf.intel.com with ESMTP; 26 Sep 2019 13:40:41 -0700
Received: from orsmsx158.amr.corp.intel.com (10.22.240.20) by
 ORSMSX107.amr.corp.intel.com (10.22.240.5) with Microsoft SMTP Server (TLS)
 id 14.3.439.0; Thu, 26 Sep 2019 13:40:40 -0700
Received: from orsmsx103.amr.corp.intel.com ([169.254.5.5]) by
 ORSMSX158.amr.corp.intel.com ([169.254.10.46]) with mapi id 14.03.0439.000;
 Thu, 26 Sep 2019 13:40:40 -0700
From:   "Stotland, Inga" <inga.stotland@intel.com>
To:     "linux-bluetooth@vger.kernel.org" <linux-bluetooth@vger.kernel.org>,
        "Gix, Brian" <brian.gix@intel.com>
CC:     "michal.lowas-rzechonek@silvair.com" 
        <michal.lowas-rzechonek@silvair.com>
Subject: Re: [PATCH BlueZ v3 0/3] mesh: Fix Remote/Local dev key usage
Thread-Topic: [PATCH BlueZ v3 0/3] mesh: Fix Remote/Local dev key usage
Thread-Index: AQHVdJZM6kMZ4np6EEmPkOEBqD0XRac+4XsA
Date:   Thu, 26 Sep 2019 20:40:39 +0000
Message-ID: <754979fcaf7a04975b140beca0102071bfb4f282.camel@intel.com>
References: <20190926181444.4916-1-brian.gix@intel.com>
In-Reply-To: <20190926181444.4916-1-brian.gix@intel.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator: 
x-originating-ip: [10.251.132.116]
Content-Type: multipart/signed; micalg=sha-1;
        protocol="application/x-pkcs7-signature"; boundary="=-nso3XRhE69SKtZJWPRNM"
MIME-Version: 1.0
Sender: linux-bluetooth-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-bluetooth.vger.kernel.org>
X-Mailing-List: linux-bluetooth@vger.kernel.org

--=-nso3XRhE69SKtZJWPRNM
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Hi Brian,

On Thu, 2019-09-26 at 11:14 -0700, Brian Gix wrote:
> V3:  By popular demand, the name "remote" is now used for both
> DevKeySend()
> and DevKeyMessageReceived().
>=20
> In DevKeySend(), setting remote =3D=3D true means that the Key Ring
> *must* be
> used to encrypt the outgoing message, and a failure will be returned
> if
> the requested destination address does not include a device key in
> the
> local key ring. For remote =3D=3D false requests, the request will be
> rejected
> if the destination is an element on the local node.
>=20
> In DevKeyMessageReceived(), the remote boolean will be set =3D=3D true if
> it
> required the key ring to decrypot the message.  If remote =3D=3D false,
> this
> means that the local nodes Device Key successfully decrypted the
> message,
> and the message may be used to change or query privileged states.
>=20
>=20
> Brian Gix (3):
>   mesh: Add local/remote bools to DevKey transactions
>   mesh: Use explicit Local vs Remote Device key usage
>=20

The two patches above are fine IMO (see some comments for #2, but these
can be addressed in a separate patch)

>   mesh: Fix Key Ring permissions for local nodes

This patch may require some explanation?

>=20
>  doc/mesh-api.txt | 17 ++++++++++++++---
>  mesh/manager.c   |  5 -----
>  mesh/model.c     | 11 +++++++----
>  mesh/node.c      | 40 +++++++++++++++-------------------------
>  4 files changed, 36 insertions(+), 37 deletions(-)
>=20




--=-nso3XRhE69SKtZJWPRNM
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Disposition: attachment; filename="smime.p7s"
Content-Transfer-Encoding: base64

MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIKbDCCBOsw
ggPToAMCAQICEDabxALowUBS+21KC0JI8fcwDQYJKoZIhvcNAQEFBQAwbzELMAkGA1UEBhMCU0Ux
FDASBgNVBAoTC0FkZFRydXN0IEFCMSYwJAYDVQQLEx1BZGRUcnVzdCBFeHRlcm5hbCBUVFAgTmV0
d29yazEiMCAGA1UEAxMZQWRkVHJ1c3QgRXh0ZXJuYWwgQ0EgUm9vdDAeFw0xMzEyMTEwMDAwMDBa
Fw0yMDA1MzAxMDQ4MzhaMHkxCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJDQTEUMBIGA1UEBxMLU2Fu
dGEgQ2xhcmExGjAYBgNVBAoTEUludGVsIENvcnBvcmF0aW9uMSswKQYDVQQDEyJJbnRlbCBFeHRl
cm5hbCBCYXNpYyBJc3N1aW5nIENBIDRCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA
yzuW/y/g0bznz8BD48M94luFzqHaqY9yGN9H/W0J7hOVBpl0rTQJ6kZ7z7hyDb9kf2UW4ZU25alC
i+q5m6NwHg+z9pcN7bQ84SSBueaYF7cXlAg7z3XyZbzSEYP7raeuWRf5fYvYzq8/uI7VNR8o/43w
PtDP10YDdO/0J5xrHxnC/9/aU+wTFSVsPqxsd7C58mnu7G4VRJ0n9PG4SfmYNC0h/5fLWuOWhxAv
6MuiK7MmvTPHLMclULgJqVSqG1MbBs0FbzoRHne4Cx0w6rtzPTrzo+bTRqhruaU18lQkzBk6OnyJ
UthtaDQIlfyGy2IlZ5F6QEyjItbdKcHHdjBX8wIDAQABo4IBdzCCAXMwHwYDVR0jBBgwFoAUrb2Y
ejS0Jvf6xCZU7wO94CTLVBowHQYDVR0OBBYEFNpBI5xaj3GvV4M+INPjZdsMywvbMA4GA1UdDwEB
/wQEAwIBhjASBgNVHRMBAf8ECDAGAQH/AgEAMDYGA1UdJQQvMC0GCCsGAQUFBwMEBgorBgEEAYI3
CgMEBgorBgEEAYI3CgMMBgkrBgEEAYI3FQUwFwYDVR0gBBAwDjAMBgoqhkiG+E0BBQFpMEkGA1Ud
HwRCMEAwPqA8oDqGOGh0dHA6Ly9jcmwudHJ1c3QtcHJvdmlkZXIuY29tL0FkZFRydXN0RXh0ZXJu
YWxDQVJvb3QuY3JsMDoGCCsGAQUFBwEBBC4wLDAqBggrBgEFBQcwAYYeaHR0cDovL29jc3AudHJ1
c3QtcHJvdmlkZXIuY29tMDUGA1UdHgQuMCygKjALgQlpbnRlbC5jb20wG6AZBgorBgEEAYI3FAID
oAsMCWludGVsLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEAp9XGgH85hk/3IuN8F4nrFd24MAoau7Uq
M/of09XtyYg2dV0TIPqtxPZw4813r78WwsGIbvtO8VQ18dNktIxaq6+ym2zebqDh0z6Bvo63jKE/
HMj8oNV3ovnuo+7rGpCppcda4iVBG2CetB3WXbUVr82EzECN+wxmC4H9Rup+gn+t+qeBTaXulQfV
TYOvZ0eZPO+DyC2pVv5q5+xHljyUsVqpzsw89utuO8ZYaMsQGBRuFGOncRLEOhCtehy5B5aCI571
i4dDAv9LPODrEzm3PBfrNhlp8C0skak15VXWFzNuHd00AsxXxWSUT4TG8RiAH61Ua5GXsP1BIZwl
4WjK8DCCBXkwggRhoAMCAQICEzMAAHkSbxmcZYXZ3q8AAAAAeRIwDQYJKoZIhvcNAQEFBQAweTEL
MAkGA1UEBhMCVVMxCzAJBgNVBAgTAkNBMRQwEgYDVQQHEwtTYW50YSBDbGFyYTEaMBgGA1UEChMR
SW50ZWwgQ29ycG9yYXRpb24xKzApBgNVBAMTIkludGVsIEV4dGVybmFsIEJhc2ljIElzc3Vpbmcg
Q0EgNEIwHhcNMTkwMzI4MTgzOTA4WhcNMjAwMzIyMTgzOTA4WjBBMRcwFQYDVQQDEw5TdG90bGFu
ZCwgSW5nYTEmMCQGCSqGSIb3DQEJARYXaW5nYS5zdG90bGFuZEBpbnRlbC5jb20wggEiMA0GCSqG
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2G5M/W8NZAZ4TJB1BMvVCtoUmCavUkUo2lw8xY/EZcyre
fgklUGbk5bVeALgRgWOy/STHNpXu+LxzDICt0uPhoVrpz3WPF8akFdIve4IYMZJ3vkFOeiclseLw
Yqg3zQTabz5Z1XMx/iq2MJmC8MUdrovdLGNacPM6+dJWVsslFOBO3vuSaypGKXmKdy8vfSIXX6vK
f5VlWW2Gi3WRHfuyuWtnEJbkoPLtydTNvBzqLpe8QmcM5wXio8/mZfnPDDWR8I1FO8MWzQF6rG00
k3sf6w6ZKbZbz2V54rncMEXM3N/P4C6ZHZR0XYqh5m1vWxZYYVzTuDEH1C8W+b3KzldrAgMBAAGj
ggIwMIICLDAdBgNVHQ4EFgQUcdzZH9M8OSxLujP+AToiD5oYMRkwHwYDVR0jBBgwFoAU2kEjnFqP
ca9Xgz4g0+Nl2wzLC9swZQYDVR0fBF4wXDBaoFigVoZUaHR0cDovL3d3dy5pbnRlbC5jb20vcmVw
b3NpdG9yeS9DUkwvSW50ZWwlMjBFeHRlcm5hbCUyMEJhc2ljJTIwSXNzdWluZyUyMENBJTIwNEIu
Y3JsMIGeBggrBgEFBQcBAQSBkTCBjjAhBggrBgEFBQcwAYYVaHR0cDovL29jc3AuaW50ZWwuY29t
MGkGCCsGAQUFBzAChl1odHRwOi8vd3d3LmludGVsLmNvbS9yZXBvc2l0b3J5L2NlcnRpZmljYXRl
cy9JbnRlbCUyMEV4dGVybmFsJTIwQmFzaWMlMjBJc3N1aW5nJTIwQ0ElMjA0Qi5jcnQwCwYDVR0P
BAQDAgeAMDwGCSsGAQQBgjcVBwQvMC0GJSsGAQQBgjcVCIbDjHWEmeVRg/2BKIWOn1OCkcAJZ4He
vTmV8EMCAWQCAQkwHwYDVR0lBBgwFgYIKwYBBQUHAwQGCisGAQQBgjcKAwwwKQYJKwYBBAGCNxUK
BBwwGjAKBggrBgEFBQcDBDAMBgorBgEEAYI3CgMMMEsGA1UdEQREMEKgJwYKKwYBBAGCNxQCA6AZ
DBdpbmdhLnN0b3RsYW5kQGludGVsLmNvbYEXaW5nYS5zdG90bGFuZEBpbnRlbC5jb20wDQYJKoZI
hvcNAQEFBQADggEBALnl11xd+3X6fVS0VAKeoF0jCPLFZLCk4jMFifFzY2md3MLjVIB3lE5ffNnS
mjG9ErOO6as95K6D6hzCJMqNodOyVPRSrMNey0tzFAPLRG3s2bgfmOcvYr4O3WmpDMx8YmH6O2YI
3Xxjyp11aXl5pk6VjpZV/hjN1jwZ/c/X00KsjoMB8mGSBvbwnV0EFQUJ99xsAlqQ4edj2T9z6pF1
WX189YL64c/t3a9LWNaT2CWbBZLIFoor9TpZsIj0lGObmGA76JKn5yxN+jzxhWIAzPi5KKYgJ9EU
FDn6fGbJHisZdWX3bVamfpmPogThm1khlD7R4USu0eyym3JRh0tXJeAxggIXMIICEwIBATCBkDB5
MQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0ExFDASBgNVBAcTC1NhbnRhIENsYXJhMRowGAYDVQQK
ExFJbnRlbCBDb3Jwb3JhdGlvbjErMCkGA1UEAxMiSW50ZWwgRXh0ZXJuYWwgQmFzaWMgSXNzdWlu
ZyBDQSA0QgITMwAAeRJvGZxlhdnerwAAAAB5EjAJBgUrDgMCGgUAoF0wGAYJKoZIhvcNAQkDMQsG
CSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMTkwOTI2MjA0MDM4WjAjBgkqhkiG9w0BCQQxFgQU
vuShWanoYXOuSYlLd+qBaH64+cEwDQYJKoZIhvcNAQEBBQAEggEAZ90fBdyYvSapAnguNWPGMOUA
9FSTwzS5IvHJnctovTqt3vwnb7Bn3epHmxAg5C9/j8B4OiLBF6Xq4E8iRtv0z/jRbgUxbXjqBjn3
fwx7obepq6LP/1AZK8ZRE39qE9iLAyoIQHkpfqL4J2lOGO5yE+4HEUUCsC9eekx7Oa1xm5s9l4EV
WgKZCQO6IgkVppXqJbeooV5sJi0PDhI9h2IHx1yhAdPEmAqq6wTCVxRPTFb6YXFktzSztVjxNP1O
2DZyWMzf+Kujq9Lthzx2lqIzbbVFjuS1MP1GrbbBnacezqcJpZS5uQsGEirZ4VGGSsL6YohkjiP3
+W2qq5OjxnJewwAAAAAAAA==


--=-nso3XRhE69SKtZJWPRNM--