Received: by 2002:a25:1506:0:0:0:0:0 with SMTP id 6csp6191086ybv;
        Wed, 12 Feb 2020 07:38:24 -0800 (PST)
X-Google-Smtp-Source: APXvYqxwlaIy2aZgIUpSwNzeQnISNGLThIdTANg/4umnbtbLgvp814caQlDecgWUJ5Ot6mt0mtVo
X-Received: by 2002:aca:1b17:: with SMTP id b23mr6756815oib.95.1581521904769;
        Wed, 12 Feb 2020 07:38:24 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1581521904; cv=none;
        d=google.com; s=arc-20160816;
        b=bqpNSr9Rb9fVCdACLSpLuu+OoKQ5+hxh4CZn4qKvCWV5WdeLUFfWvbHl6h2//twDdK
         amCDTVh60X7aoCedbX6yMTuHTexGA4mdaH5NdTUIZt4PjKJL1L0hCa2HRu6uzSUbKLsa
         gYFAkkPtFRBHIJsuVAPXIFR6ZmwlcIVnxLEzkdjY0r34k6ixVKz4XBfFsBemxQxY7duI
         n1nXvt1Dn1r4VGCsVvTimDtFvN7xWv69MVJ/kGJp/BciLGvsK6o46WjWbsZMLm0DtVJk
         HTxXCGK42BsWmgBsZA21yFyNDeyxeYay0jvZMk5cNZuWl3wi8NtwQxHcbJtiUkKXLMzV
         Rd0Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:to:references:message-id
         :content-transfer-encoding:cc:date:in-reply-to:from:subject
         :mime-version:dkim-signature;
        bh=+D92sQbIQX9b/mYM74RryufGT0Oe3W4lj/eAkEZQ33o=;
        b=BQmD8wqA2sVdIyWlI97lKdGyf3NieVO7kiE1rPrqsZxZmTpAGE5Ji2t0egBhSNH1e9
         WyzBAB2DsSEIHUHBZ8eTe3ZP8cG95J2uSnnse7hi7k30fMxIr4ShbNKak38CTt4vQy50
         1WgUgK5TkHHXmBFx7wSchY26mNak5sNDHrVcFjo1svvh0Q7Ws0iwJgV0OTTcimJCNz2Z
         Xr5VCHQa/BMOQ67Grs4nM8T3kXjn/h45BPoc66/6bxiy/AbuPdPfxkZu4nwXVG4PKz+Q
         G+4pQB4nah/d5cyWzwR92znDaKcgXeJXiq1Z1B976AD2lsFx+FIFm/OFmOdNpW51VWuX
         RSqA==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=ERx0Q2v2;
       spf=pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-bluetooth-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id u12si3352170oiv.13.2020.02.12.07.38.05;
        Wed, 12 Feb 2020 07:38:24 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=ERx0Q2v2;
       spf=pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728052AbgBLPiA (ORCPT <rfc822;ruprecht.th@gmail.com>
        + 99 others); Wed, 12 Feb 2020 10:38:00 -0500
Received: from mail-pl1-f195.google.com ([209.85.214.195]:42894 "EHLO
        mail-pl1-f195.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1727531AbgBLPh7 (ORCPT
        <rfc822;linux-bluetooth@vger.kernel.org>);
        Wed, 12 Feb 2020 10:37:59 -0500
Received: by mail-pl1-f195.google.com with SMTP id e8so1089961plt.9;
        Wed, 12 Feb 2020 07:37:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=+D92sQbIQX9b/mYM74RryufGT0Oe3W4lj/eAkEZQ33o=;
        b=ERx0Q2v2e6DsNOGzzk7jGKHe9GVGWQubrkyTzlxcGm87Lbm/Ipp20rE/d0kHP3Qrx5
         BaBVCu+4+407P27vgDl38QV6WzlmUGTu+FibnnKjkKYb2FaXb7NMIAB0y6zUQeYk5NR4
         w6Tw0Vd0iGEv5YdMVrUxDPtfzcTdB8afpTI4j3ardAtEqBpGtLhPKaQSDgWA73iN/FME
         LZbfbhMahfU6UIQ9vxElZCb9KkmB6azZKCvFunero33gpIIqwy6UxzPw4heZhgBJtYmT
         FW7iAtVU5nbBfjXfdMEHp6m0iHB1sRA2MfVXRYMAPQUz92onMJyTVqM07mhGDFG1c6lB
         98Fw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=+D92sQbIQX9b/mYM74RryufGT0Oe3W4lj/eAkEZQ33o=;
        b=buckQbwSFbic8K97BGMjL6fHL2wOR46RJGGURAAM1cyqhM+tVPYIr6QSb0TMt/4zLx
         iNgsytsAIT9gbV/sgGXz8opCsSz+miyLwu6mBdt751aa8JTTb40QGboPxsBfnyiKinhe
         8XHT0QweXNk5mrfHqmDY/hFTGwAqT9WkxzUbnpIlndhVVsO/Izph2v9Ng5YTsZRZU824
         j2cUQiMdc9V+uOKD2Sp3+DOTalDvXa7uSQn+uMRhQUmElSMvOxItVOYo8ntRC9cWF4p3
         O5UvMUchaFBKChL+Snafr3qqQf9rUBw6n/gES81hr0ofefAbHYFORVG8t1wk5yZSRFMA
         Jx/w==
X-Gm-Message-State: APjAAAW8dFpbIhqwvmr/gSWz4QIogFfie/uCE2cC9zghOiCeK6vqyB+4
        92XXYlcy5GRXibdiyUxWORU=
X-Received: by 2002:a17:902:9f86:: with SMTP id g6mr8225939plq.299.1581521879059;
        Wed, 12 Feb 2020 07:37:59 -0800 (PST)
Received: from fkuchars-mobl1.ger.corp.intel.com ([192.55.55.43])
        by smtp.gmail.com with ESMTPSA id p17sm1295106pfn.31.2020.02.12.07.37.56
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Wed, 12 Feb 2020 07:37:58 -0800 (PST)
Content-Type: text/plain;
        charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3608.60.0.2.5\))
Subject: Re: [Bluez PATCH v3] bluetooth: secure bluetooth stack from bluedump
 attack
From:   Johan Hedberg <johan.hedberg@gmail.com>
In-Reply-To: <89D0B633-381D-4700-AB33-5F803BCB6E94@holtmann.org>
Date:   Wed, 12 Feb 2020 17:37:53 +0200
Cc:     Howard Chung <howardchung@google.com>,
        Bluez mailing list <linux-bluetooth@vger.kernel.org>,
        ChromeOS Bluetooth Upstreaming 
        <chromeos-bluetooth-upstreaming@chromium.org>,
        "David S. Miller" <davem@davemloft.net>, netdev@vger.kernel.org,
        linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <86D0ACD5-BEF7-45B3-B621-BA2E457AB57B@gmail.com>
References: <20200212212316.Bluez.v3.1.Ia71869d2f3e19a76a6a352c61088a085a1d41ba6@changeid>
 <89D0B633-381D-4700-AB33-5F803BCB6E94@holtmann.org>
To:     Marcel Holtmann <marcel@holtmann.org>
X-Mailer: Apple Mail (2.3608.60.0.2.5)
Sender: linux-bluetooth-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-bluetooth.vger.kernel.org>
X-Mailing-List: linux-bluetooth@vger.kernel.org

Hi Marcel,

On 12. Feb 2020, at 17.19, Marcel Holtmann <marcel@holtmann.org> wrote:
>> +		key =3D hci_find_ltk(hcon->hdev, &hcon->dst, =
hcon->dst_type,
>> +				   hcon->role);
>> +
>> +		/* If there already exists link key in local host, leave =
the
>> +		 * decision to user space since the remote device could =
be
>> +		 * legitimate or malicious.
>> +		 */
>> +		if (smp->method =3D=3D JUST_WORKS && key) {
>> +			err =3D mgmt_user_confirm_request(hcon->hdev, =
&hcon->dst,
>> +							hcon->type,
>> +							hcon->dst_type, =
passkey,
>> +							1);
>> +			if (err)
>> +				return SMP_UNSPECIFIED;
>> +			set_bit(SMP_FLAG_WAIT_USER, &smp->flags);
>> +		}
>> 	}
>=20
> while this looks good, I like to optimize this to only look up the LTK =
when needed.
>=20
> 	/* comment here */
> 	if (smp->method !=3D JUST_WORKS)
> 		goto mackey_and_ltk;
>=20
>=20
> 	/* and command here */
> 	if (hci_find_ltk()) {
> 		mgmt_user_confirm_request()
> 		..
> 	}
>=20
> And my preference that we also get an Ack from Johan or Luiz that =
double checked that this is fine.

Acked-by: Johan Hedberg <johan.hedberg@intel.com>

Johan=