CVE-2020-26555: ignore NULL link key

2025-02-22 06:41:17 +00:00 · 2021-06-22 17:26:01 +02:00 · 2021-06-22 17:26:01 +02:00 · 3817f9dfcd
commit 3817f9dfcd
parent 79e0fa07b4
2 changed files with 23 additions and 0 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -7,6 +7,12 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 ---

 ## Unreleased
+### Added
+### Fixed
+### Changed
+
+
+## Release v1.4.1

 ### Added
 - GAP: emit GAP_EVENT_PAIRING_STARTED and GAP_EVENT_PAIRING_COMPLETE
@ -29,6 +35,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 - GAP: validate minimal service security level can be reached during pairing in responder role
 - L2CAP: don't trigger hci disconnect if l2cap security requirements are insufficient
 - CVE-2020-26555: reject connections to and from devices with same BD ADDR
+- CVE-2020-26555: ignore NULL link key
 - CVE-2020-26558: abort LE Secure Connection pairing if remote uses the same public key

 ## Release v1.4
--- a/src/hci.c
+++ b/src/hci.c
@ -2400,6 +2400,17 @@ static bool hci_ssp_security_level_possible_for_io_cap(gap_security_level_t leve
    // LEVEL 2 requires SSP, which is a given
    return true;
 }
+
+static bool btstack_is_null(uint8_t * data, uint16_t size){
+    uint16_t i;
+    for (i=0; i < size ; i++){
+        if (data[i] != 0) {
+            return false;
+        }
+    }
+    return true;
+}
+
 #endif

 static void event_handler(uint8_t *packet, uint16_t size){
@ -2706,11 +2717,16 @@ static void event_handler(uint8_t *packet, uint16_t size){

            hci_pairing_complete(conn, ERROR_CODE_SUCCESS);

+            // CVE-2020-26555: ignore NULL link key
+            // default link_key_type = INVALID_LINK_KEY asserts that NULL key won't be used for encryption
+            if (btstack_is_null(&packet[8], 16)) break;
+
            link_key_type_t link_key_type = (link_key_type_t)packet[24];
            // Change Connection Encryption keeps link key type
            if (link_key_type != CHANGED_COMBINATION_KEY){
                conn->link_key_type = link_key_type;
            }
+
            // cache link key. link keys stored in little-endian format for legacy reasons
            memcpy(&conn->link_key, &packet[8], 16);