We will receive signature counter as a part of signature in att packet.
We shall verify if signature counter has value as expected otherwise
drop the message.
---
android/gatt.c | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/android/gatt.c b/android/gatt.c
index 9b51ab1..d93bdcb 100644
--- a/android/gatt.c
+++ b/android/gatt.c
@@ -5050,6 +5050,13 @@ static void write_signed_cmd_request(const uint8_t *cmd, uint16_t cmd_len,
if (len) {
uint8_t t[ATT_SIGNATURE_LEN];
+ uint32_t r_sign_cnt = get_le32(s);
+
+ if (r_sign_cnt != sign_cnt) {
+ error("gatt: sign_cnt does not match (%d!=%d)",
+ sign_cnt, r_sign_cnt);
+ return;
+ }
/* Generate signature and verify it */
if (!bt_crypto_sign_att(crypto, csrk, value, vlen, sign_cnt,
--
1.8.4
--
To unsubscribe from this list: send the line "unsubscribe linux-bluetooth" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
