Return-Path: <bluez-devel-bounces@lists.sourceforge.net>
Message-ID: <7aabaf0e0610230640k7a663193l2cdb6962327b0a3b@mail.gmail.com>
Date: Mon, 23 Oct 2006 19:40:03 +0600
From: "Valentine Sinitsyn" <valentine.sinitsyn@gmail.com>
To: "BlueZ development" <bluez-devel@lists.sourceforge.net>
In-Reply-To: <1161616137.10866.98.camel@aeonflux.holtmann.net>
MIME-Version: 1.0
References: <7aabaf0e0610230427m2f8bfa5ekcfe2ce2fc9f165f1@mail.gmail.com>
	<1161616137.10866.98.camel@aeonflux.holtmann.net>
Subject: Re: [Bluez-devel] Pin for an outgoing connection
Reply-To: BlueZ development <bluez-devel@lists.sourceforge.net>
List-Id: BlueZ development <bluez-devel.lists.sourceforge.net>
List-Unsubscribe: <https://lists.sourceforge.net/lists/listinfo/bluez-devel>,
	<mailto:bluez-devel-request@lists.sourceforge.net?subject=unsubscribe>
List-Archive: <http://sourceforge.net/mailarchive/forum.php?forum=bluez-devel>
List-Post: <mailto:bluez-devel@lists.sourceforge.net>
List-Help: <mailto:bluez-devel-request@lists.sourceforge.net?subject=help>
List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/bluez-devel>,
	<mailto:bluez-devel-request@lists.sourceforge.net?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Sender: bluez-devel-bounces@lists.sourceforge.net
Errors-To: bluez-devel-bounces@lists.sourceforge.net

Hi Marcel,

> > I'm currently trying bluez-utils 3.7 (D-BUS interface is really sweet
> > thing and a must for all so called desktop Linux components) but
> > unfortunately I've came across the following problem: pin code I
> > specify in hcid.conf via "passphrase" option is never used for
> > outgoing connections. It's clear from the code in hcid/security.c but
> > man pages are somewhat misleading at this point - they state pin code
> > specified in hcid.conf will be used if I set security to "auto".
> >
> > Apparently, "if" condition at security.c:386 will never be true -
> > pinlen is read from "pincodes" file in storage at line 364 but this
> > file is never created or stored through all the bluez-utils code.
> >
> > The question is: is it intended behaviour or it's a bug and should be fixed?
>
> if the manual pages are misleading, then this is a bug. The pincodes
> file is meant to be kinda secret. The code in the CVS will also use it
> in case of security user, but it will still ask the passkey agent. From
> a security perspective, any automatic pairing with a default PIN is a
> security risk and by default we don't allow that anymore. The passkey in
> the hcid.conf is only used for incoming connection btw.
So, if I understood correctly, specifying pin in the hcid.conf only
affects incoming connection (i.e., for user's point of view "my
computer's pin" is stored there) and pin for outgoing connection ("my
phone's pin" form user perspective) is always asked via D-BUS and
there is no way to specify it in the config? So hcid manpage should be
fixed. Is passkey-agent the only pin agent available now?

-- 
Regards,
Valentine Sinitsyn

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Bluez-devel mailing list
Bluez-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bluez-devel