Received: by 2002:a05:6a10:22f:0:0:0:0 with SMTP id 15csp2216110pxk; Sat, 26 Sep 2020 22:48:37 -0700 (PDT) X-Google-Smtp-Source: ABdhPJyEUoRdog00uLhEyedYIY+nkr3X5DGsjT3mkF56lonhq8AKKHU1WxazRE2pCVDQxxx+HK03 X-Received: by 2002:a05:6402:1b0f:: with SMTP id by15mr9241307edb.289.1601185717672; Sat, 26 Sep 2020 22:48:37 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1601185717; cv=none; d=google.com; s=arc-20160816; b=nZpd73YZXjG1o+WEUQLhBbIdt/TWHiz6kdCuTS+pxVJVSc0d1DPG8vvJhFzkVbND4X RvIGGMAFe4iN40Vp1R6L31WC00rcTbTBItgJuECXSGdWVVBDPz7jJm/wTgZ+9H4DXdvH dYwMaotOzmmiLekjqzBS5ciD2GtFrY/6up/5JRbvmSG2bmSk3gMCOfrtkCq7Mkzxp+6I 63bEANdtIG1HSkofiTQkqx8uBF2jx9i7WM9mjMnk4Fg+x72ZeZBRB5KE2QFBD/7WYOgH Wdw9ceg1E/VsILKc+BdJUuN3bXno2uga+zFS7vX07OoC/SIybSnQxFZuvvnG/31MIuJi QYeA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:mime-version:content-transfer-encoding :content-language:accept-language:message-id:date:thread-index :thread-topic:subject:cc:to:from:authenticated-by; bh=ZjrkH7kkhO6Z0ijB6t13rgOKVqiS1ZhBc7yAqKs/PYM=; b=YcQ3m95qZWrnwMdjQ6Adi0YsQYf5k3w5iUZBUMSsUyKaXymHiERQ6hSsW9QchUzVbS fNK2/6TdBWKWIFCvQjzqbfKux/7l0YcW0PUfO/i2mQFcESsjnJ3WtElbNPUpYcllxQd3 2wrXNCsBJa7JI4lCW7UcWN73iYwAhjhYOVvEB7ebU+qgu5Z4oiR7aiHaKiQxRCwSmcrs PRyyvFKCGFVsdpw/WrbHXP5jFOEAgBvfVWOOGG782LmycVNi8836kao4vhJ3/lRJjGfv UXm/q2kR2qctND+g6aL4GTKQW16Jn1hn68gnB3vRpzvbz9N6A5z6sOzafkCX6heOZgG6 h/BA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id v26si5046000edd.443.2020.09.26.22.47.55; Sat, 26 Sep 2020 22:48:37 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729580AbgI0Fr0 (ORCPT + 99 others); Sun, 27 Sep 2020 01:47:26 -0400 Received: from rtits2.realtek.com ([211.75.126.72]:46222 "EHLO rtits2.realtek.com.tw" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726382AbgI0Fr0 (ORCPT ); Sun, 27 Sep 2020 01:47:26 -0400 Authenticated-By: X-SpamFilter-By: ArmorX SpamTrap 5.69 with qID 08R5lGXn9029044, This message is accepted by code: ctloc85258 Received: from RSEXMBS01.realsil.com.cn ([172.29.17.195]) by rtits2.realtek.com.tw (8.15.2/2.66/5.86) with ESMTPS id 08R5lGXn9029044 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT); Sun, 27 Sep 2020 13:47:16 +0800 Received: from RSEXMBS01.realsil.com.cn (172.29.17.195) by RSEXMBS01.realsil.com.cn (172.29.17.195) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2044.4; Sun, 27 Sep 2020 13:47:15 +0800 Received: from RSEXMBS01.realsil.com.cn ([fe80::e186:b533:fb3:8b37]) by RSEXMBS01.realsil.com.cn ([fe80::e186:b533:fb3:8b37%7]) with mapi id 15.01.2044.004; Sun, 27 Sep 2020 13:47:15 +0800 From: =?gb2312?B?wr3W7M6w?= To: Marcel Holtmann CC: Johan Hedberg , linux-bluetooth , open list , Max Chou Subject: Re: [PATCH] Bluetooth: Fix the vulnerable issue on enc key size Thread-Topic: [PATCH] Bluetooth: Fix the vulnerable issue on enc key size Thread-Index: AdaUkBQIy2pYuQ5jTx2quo4sQQ3NUg== Date: Sun, 27 Sep 2020 05:47:15 +0000 Message-ID: <004951c574594df68829e1a076bc94da@realsil.com.cn> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [172.29.36.107] Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: base64 MIME-Version: 1.0 Precedence: bulk List-ID: X-Mailing-List: linux-bluetooth@vger.kernel.org SGkgTWFyY2VsLA0KDQo+IE9uIDI2IFNlcHRlbWJlciAyMDIwIGF0IDE6MzQsIE1hcmNlbCBIb2x0 bWFubiB3cm90ZToNCj4gDQo+IEhpIEFsZXgsDQo+IA0KPiA+Pj4gV2hlbiBzb21lb25lIGF0dGFj a3MgdGhlIHNlcnZpY2UgcHJvdmlkZXIsIGl0IGNyZWF0ZXMgY29ubmVjdGlvbiwNCj4gPj4+IGF1 dGhlbnRpY2F0ZXMuIFRoZW4gaXQgcmVxdWVzdHMga2V5IHNpemUgb2Ygb25lIGJ5dGUgYW5kIGl0 IGlkZW50aWZpZXMNCj4gPj4+IHRoZSBrZXkgd2l0aCBicnV0ZSBmb3JjZSBtZXRob2RzLg0KPiA+ Pj4NCj4gPj4+IEFmdGVyIGwyY2FwIGluZm8gcmVxL3Jlc3AgZXhjaGFuZ2UgaXMgY29tcGxldGUu IHRoZSBhdHRhY2tlciBzZW5kcyBsMmNhcA0KPiA+Pj4gY29ubmVjdCB3aXRoIHNwZWNpZmljIFBT TS4NCj4gPj4+DQo+ID4+PiBJbiBhYm92ZSBwcm9jZWR1cmUsIHRoZXJlIGlzIG5vIGNoYW5jZSBm b3IgdGhlIHNlcnZpY2UgcHJvdmlkZXIgdG8gY2hlY2sNCj4gPj4+IHRoZSBlbmNyeXB0aW9uIGtl eSBzaXplIGJlZm9yZSBsMmNhcF9jb25uZWN0KCkuIEJlY2F1c2UgdGhlIHN0YXRlIG9mDQo+ID4+ PiBsMmNhcCBjaGFuIGluIGNvbm4tPmNoYW5fbCBpcyBCVF9MSVNURU4sIHRoZXJlIGlzIG5vIGwy Y2FwIGNoYW4gd2l0aCB0aGUNCj4gPj4+IHN0YXRlIG9mIEJUX0NPTk5FQ1Qgb3IgQlRfQ09OTkVD VDIuDQo+ID4+Pg0KPiA+Pj4gU28gc2VydmljZSBwcm92aWRlciBzaG91bGQgY2hlY2sgdGhlIGVu Y3J5cHRpb24ga2V5IHNpemUgaW4NCj4gPj4+IGwyY2FwX2Nvbm5lY3QoKQ0KPiA+Pj4NCj4gPj4+ IFNpZ25lZC1vZmYtYnk6IEFsZXggTHUgPGFsZXhfbHVAcmVhbHNpbC5jb20uY24+DQo+ID4+PiAt LS0NCj4gPj4+IG5ldC9ibHVldG9vdGgvbDJjYXBfY29yZS5jIHwgNyArKysrKysrDQo+ID4+PiAx IGZpbGUgY2hhbmdlZCwgNyBpbnNlcnRpb25zKCspDQo+ID4+Pg0KPiA+Pj4gZGlmZiAtLWdpdCBh L25ldC9ibHVldG9vdGgvbDJjYXBfY29yZS5jIGIvbmV0L2JsdWV0b290aC9sMmNhcF9jb3JlLmMN Cj4gPj4+IGluZGV4IGFkZTgzZTIyNDU2Ny4uNjNkZjk2MWQ0MDJkIDEwMDY0NA0KPiA+Pj4gLS0t IGEvbmV0L2JsdWV0b290aC9sMmNhcF9jb3JlLmMNCj4gPj4+ICsrKyBiL25ldC9ibHVldG9vdGgv bDJjYXBfY29yZS5jDQo+ID4+PiBAQCAtNDE1MCw2ICs0MTUwLDEzIEBAIHN0YXRpYyBzdHJ1Y3Qg bDJjYXBfY2hhbiAqbDJjYXBfY29ubmVjdChzdHJ1Y3QNCj4gPj4gbDJjYXBfY29ubiAqY29ubiwN Cj4gPj4+DQo+ID4+PiAJaWYgKGNvbm4tPmluZm9fc3RhdGUgJiBMMkNBUF9JTkZPX0ZFQVRfTUFT S19SRVFfRE9ORSkgew0KPiA+Pj4gCQlpZiAobDJjYXBfY2hhbl9jaGVja19zZWN1cml0eShjaGFu LCBmYWxzZSkpIHsNCj4gPj4+ICsJCQlpZiAoIWwyY2FwX2NoZWNrX2VuY19rZXlfc2l6ZShjb25u LT5oY29uKSkgew0KPiA+Pj4gKwkJCQlsMmNhcF9zdGF0ZV9jaGFuZ2UoY2hhbiwgQlRfRElTQ09O Tik7DQo+ID4+PiArCQkJCV9fc2V0X2NoYW5fdGltZXIoY2hhbiwNCj4gPj4gTDJDQVBfRElTQ19U SU1FT1VUKTsNCj4gPj4+ICsJCQkJcmVzdWx0ID0gTDJDQVBfQ1JfU0VDX0JMT0NLOw0KPiA+Pj4g KwkJCQlzdGF0dXMgPSBMMkNBUF9DU19OT19JTkZPOw0KPiA+Pj4gKwkJCQlnb3RvIHJlc3BvbnNl Ow0KPiA+Pj4gKwkJCX0NCj4gPj4+IAkJCWlmICh0ZXN0X2JpdChGTEFHX0RFRkVSX1NFVFVQLCAm Y2hhbi0+ZmxhZ3MpKSB7DQo+ID4+PiAJCQkJbDJjYXBfc3RhdGVfY2hhbmdlKGNoYW4sIEJUX0NP Tk5FQ1QyKTsNCj4gPj4+IAkJCQlyZXN1bHQgPSBMMkNBUF9DUl9QRU5EOw0KPiA+Pg0KPiA+PiBJ IGFtIG5vdCBmb2xsb3dpbmcgd2hhdCB5b3UgYXJlIHRyeWluZyB0byBmaXggaGVyZS4gQ2FuIHlv dSBzaG93IHRoaXMgd2l0aA0KPiBhDQo+ID4+IGJ0bW9uIHRyYWNlIGZyb20gYW4gYXR0YWNraW5n IGRldmljZT8NCj4gPj4NCj4gPj4gUmVnYXJkcw0KPiA+Pg0KPiA+PiBNYXJjZWwNCj4gPj4NCj4g Pj4NCj4gPg0KPiA+IEknbSBzb3JyeSwgSSBkaWRuJ3QgaGF2ZSBidG1vbiB0cmFjZSBmcm9tIGFu IGF0dGFja2luZyBkZXZpY2UuDQo+ID4gSSBkaWRuJ3QgaGF2ZSB0aGUgcmVhbCBhdHRhY2tpbmcg ZGV2aWNlLiBJIGp1c3Qgc2ltdWxhdGUgdGhlIGF0dGFja2luZy4NCj4gPiBJIGhhdmUgYSBkZXZp Y2UgdGhhdCBjYW4gY3JlYXRlIG9uZSBieXRlIHNpemUgZW5jcnlwdGlvbiBrZXkuDQo+ID4gSXQg dXNlcyB0aGUgbGluayBrZXkgdGhhdCB3YXMgcHJvZHVjZWQgYnkgcGFpcmluZyB3aXRoIHRoZSBz ZXJ2aWNlIHByb3ZpZGVyLg0KPiBBY3R1YWxseSB0aGUgS05PQiAoS2V5IE5lZ290aWF0aW9uIG9m IEJsdWV0b290aCBBdHRhY2spIHNheXMsIHRoZSBsaW5rIGtleSBpcw0KPiB1bm5lY2Vzc2FyeSBm b3IgdGhlIHJlY29ubmVjdGlvbi4NCj4gPiBJIHVzZSB0aGlzIGRldmljZSB0byByZWNvbm5lY3Qg dG8gc2VydmljZSBwcm92aWRlciwgYW5kIHRoZW4gaW5pdGlhdGUgdGhlIEtleQ0KPiBOZWdvdGlh dGlvbiBmb3Igb25lIGJ5dGUgc2l6ZSBlbmNyeXB0aW9uIGtleS4gQWN0dWFsbHkgdGhlIGF0dGFj a2VyIGlkZW50aWZpZWQNCj4gdGhlIGVuY3J5cHRpb24ga2V5IHdpdGggc29tZSBicnV0ZSBmb3Jj ZSBtZXRob2RzLg0KPiA+DQo+ID4gSSB3YW50IHRvIHByb3ZpZGUgdGhlIHRyYWNlIG9uIHNlcnZp Y2UgcHJvdmlkZXIgc2lkZS4NCj4gDQo+IHdoYXQga2VybmVsIHZlcnNpb24gYXJlIHlvdSBydW5u aW5nPyBJIHdvbmRlciBpZiB3ZSBzaG91bGQgYWx3YXlzIHJldHVybg0KPiBMMkNBUF9DUl9QRU5E IGhlcmUuIERvIHlvdSBoYXZlIGEgcmVwcm9kdWNlciBjb2RlPw0KDQpJJ20gcnVubmluZyBrZXJu ZWwgNS44LjAtcmM2IG9uIGFjY2VwdG9yIGFuZCBrZXJuZWwgNS44LjUgb24gdGhlIGluaXRpYXRv ciB3aGljaCBhY3RzIGFzIGFuIGF0dGFja2VyLg0KRm9yIHRoZSBhdHRhY2sgc2ltdWxhdGlvbiwg c29tZSBjb2RlIG5lZWRzIHRvIGJlIGNoYW5nZWQgb24gZWFjaCBzaXplLg0KT24gdGhlIGFjY2Vw dG9yLCB0aGUgbWFzdGVyIHBhcmFtZXRlciBmb3IgYnRfaW9fbGlzdGVuKCkgaW4gYmx1ZXRvb3Ro ZCBzaG91bGQgYmUgY2hhbmdlZCB0byBGQUxTRSBpbiBwcm9maWxlcy9hdWRpby9hMmRwLmMgYTJk cF9zZXJ2ZXJfbGlzdGVuKCkgYW5kIHByb2ZpbGVzL2F1ZGlvL2F2Y3RwLmMgYXZjdHBfc2VydmVy X3NvY2tldCgpLg0KVGhlIGNoYW5nZSBtYWtlcyB0aGUga2VybmVsIG5vdCB0byBjaGFuZ2UgdGhl IHJvbGUgdG8gbWFzdGVyIHdoZW4gaXQgcmVjZWl2ZXMgaGNpIGNvbm4gcmVxIGV2ZW50Lg0KSSBk aWQgdGhlIGNoYW5nZSBpbiBvcmRlciB0byBtYWtlIHRoZSBjb250cm9sbGVyIHRvIHNlbmQgTE1Q X0VOQ1JZUFRJT05fS0VZX1NJWkVfUkVRIFBEVSBmb3Igb25lIGJ5dGUga2V5IHNpemUuDQoNCk9u IHRoZSBpbml0aWF0b3IsIHRoZSBiZWxvdyBlbmNyeXB0aW9uIGtleSBzaXplIGNoZWNrIHNob3Vs ZCBiZSByZW1vdmVkLg0KQEAgLTE2MjIsMTAgKzE2MjQsMTMgQEAgc3RhdGljIHZvaWQgbDJjYXBf Y29ubl9zdGFydChzdHJ1Y3QgbDJjYXBfY29ubiAqY29ubikNCiAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgY29udGludWU7DQogICAgICAgICAgICAgICAgICAgICAgICB9DQogDQotICAg ICAgICAgICAgICAgICAgICAgICBpZiAobDJjYXBfY2hlY2tfZW5jX2tleV9zaXplKGNvbm4tPmhj b24pKQ0KLSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBsMmNhcF9zdGFydF9jb25uZWN0 aW9uKGNoYW4pOw0KLSAgICAgICAgICAgICAgICAgICAgICAgZWxzZQ0KLSAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBsMmNhcF9jaGFuX2Nsb3NlKGNoYW4sIEVDT05OUkVGVVNFRCk7DQor ICAgICAgICAgICAgICAgICAgICAgICAvKiBKdXN0IHNpbXVsYXRlIEtOT0IgKi8NCisgICAgICAg ICAgICAgICAgICAgICAgIGwyY2FwX3N0YXJ0X2Nvbm5lY3Rpb24oY2hhbik7DQorICAgICAgICAg ICAgICAgICAgICAgICAvKiBpZiAobDJjYXBfY2hlY2tfZW5jX2tleV9zaXplKGNvbm4tPmhjb24p KQ0KKyAgICAgICAgICAgICAgICAgICAgICAgICogICAgICBsMmNhcF9zdGFydF9jb25uZWN0aW9u KGNoYW4pOw0KKyAgICAgICAgICAgICAgICAgICAgICAgICogZWxzZQ0KKyAgICAgICAgICAgICAg ICAgICAgICAgICogICAgICBsMmNhcF9jaGFuX2Nsb3NlKGNoYW4sIEVDT05OUkVGVVNFRCk7DQor ICAgICAgICAgICAgICAgICAgICAgICAgKi8NCg0KQXQgbGFzdCwgSSBkaWQgdGhlIHRlc3QgYXMg YmVsb3c6DQoxLiBPbiB0aGUgaW5pdGlhdG9yLCBwYWlyIGFjY2VwdG9yDQoyLiBSdW4gbDJ0ZXN0 IC1yIC1QIDMgb24gdGhlIGFjY2VwdG9yDQozLiBSdW4gbDJ0ZXN0IC1uIC1QIDMgPGJkYWRkcj4g b24gdGhlIGluaXRpYXRvcg0KDQo+IA0KPiBUaGUgcHJvYmxlbSByZWFsbHkgaXMgdGhhdCB0aGUg TUFTS19SRVFfRE9ORSBpbmRpY2F0aW9uIGlzIG5vdCBlbm91Z2ggdG8NCj4gbWFrZSBhIGRlY2lz aW9uIGZvciB0aGUga2V5IHNpemUuIFdlIGhhdmUgdG8gZW5zdXJlIHRoYXQgYWxzbyB0aGUga2V5 IHNpemUgaXMNCj4gYWN0dWFsbHkgYXZhaWxhYmxlLiBJZiB0aGF0IGlzIG5vdCB5ZXQgZG9uZSwg dGhlbiB3ZSBzaG91bGQgbm90IGNoZWNrIGl0LiBUaGlzDQo+IG1lYW5zIHRoYXQgYW55IHJlc3Bv bnNlIHRvIEwyQ0FQX0Nvbm5lY3RfUmVxdWVzdCBQRFUgbmVlZHMgdG8gYmUNCj4gZGVsYXllZCB1 bnRpbCB0aGUga2V5IHNpemUgaGFzIGJlZW4gcmVhZC4NCg0KSW4gbXkgdGVzdCBjYXNlLCB0aGUg a2V5IHNpemUgaGFzIGJlZW4gcmVhZCBmcm9tIGNvbnRyb2xsZXIgYmVmb3JlIHRoZSBsMmNhcCBj b25uIHJlcXVlc3QgUERVIGlzIHJlY2VpdmVkLg0KDQo8IEhDSSBDb21tYW5kOiBSZWFkIEVuY3J5 cHRpb24gS2V5IFNpemUgKDB4MDV8MHgwMDA4KSBwbGVuIDIgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIzIyIFtoY2kwXSA0My4wODk4NTkNCiAgICAgICAgSGFuZGxlOiAxDQo+IEhDSSBF dmVudDogQ29tbWFuZCBDb21wbGV0ZSAoMHgwZSkgcGxlbiA3ICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIzIzIFtoY2kwXSA0My4wOTE1MjgNCiAgICAgIFJl YWQgRW5jcnlwdGlvbiBLZXkgU2l6ZSAoMHgwNXwweDAwMDgpIG5jbWQgMg0KICAgICAgICBTdGF0 dXM6IFN1Y2Nlc3MgKDB4MDApDQogICAgICAgIEhhbmRsZTogMQ0KICAgICAgICBLZXkgc2l6ZTog MQ0KPiBBQ0wgRGF0YSBSWDogSGFuZGxlIDEgZmxhZ3MgMHgwMiBkbGVuIDEwICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICMyNCBbaGNpMF0gNDMuMTQwODg4 DQogICAgICBMMkNBUDogSW5mb3JtYXRpb24gUmVxdWVzdCAoMHgwYSkgaWRlbnQgMSBsZW4gMg0K ICAgICAgICBUeXBlOiBFeHRlbmRlZCBmZWF0dXJlcyBzdXBwb3J0ZWQgKDB4MDAwMikNCi4uLi4u Lg0KPiBBQ0wgRGF0YSBSWDogSGFuZGxlIDEgZmxhZ3MgMHgwMiBkbGVuIDEyICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICMzNCBbaGNpMF0gNDMuMTQ4NDA1 DQogICAgICBMMkNBUDogQ29ubmVjdGlvbiBSZXF1ZXN0ICgweDAyKSBpZGVudCAzIGxlbiA0DQog ICAgICAgIFBTTTogMyAoMHgwMDAzKQ0KICAgICAgICBTb3VyY2UgQ0lEOiA2NA0KDQo+IA0KPiBS ZWdhcmRzDQo+IA0KPiBNYXJjZWwNCj4gDQo+IA0KDQo=