adapter: Load keys that should be blocked by the kernel

System Internals / BlueZ - Alain Michaud [chromium.org] - 16 January 2020 21:21 UTC

This change accomplishes 2 things: 1. Drop device security data from previously paired devices using blocked keys. 2. Send the list of known bad keys that should be blocked to the kernel if supported.

In particular keys from the Google Titan Security key are being blocked.

For additional background information, please see https://security.googleblog.com/2019/05/titan-keys-update.html

0a0f54b40 adapter: Load keys that should be blocked by the kernel
src/adapter.c | 140 +++++++++++++++++++++++++++++++++++++++++++++++++++++++---
1 file changed, 134 insertions(+), 6 deletions(-)

Upstream: git.kernel.org


  • Share