Skip to content

[nrf fromtree] Bluetooth: Host: Cherry pick gatt sign counter #3515

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

[nrf fromtree] Bluetooth: Host: Cherry pick gatt sign counter #3515

wants to merge 3 commits into from

Conversation

@PavelVPV
Copy link
Contributor

@PavelVPV PavelVPV commented Nov 20, 2025
edited
Loading

Upstream PR : # 99204

@NordicBuilder NordicBuilder mentioned this pull request Nov 20, 2025
Closed
@PavelVPV PavelVPV force-pushed the cherry_pick_gatt_sign_counter branch from 4d1eaa0 to be3d2e8 Compare November 20, 2025 08:32
@PavelVPV PavelVPV force-pushed the cherry_pick_gatt_sign_counter branch from be3d2e8 to 55fb623 Compare November 21, 2025 12:43
@PavelVPV PavelVPV force-pushed the cherry_pick_gatt_sign_counter branch from 55fb623 to 7f79aaf Compare November 21, 2025 12:50
@PavelVPV PavelVPV marked this pull request as ready for review November 24, 2025 08:47
@weeTike weeTike mentioned this pull request Nov 24, 2025
Merged
@PavelVPV
[nrf fromtree] bluetooth: host: Deprecate CONFIG_BT_SIGNING
fd12e26 
This commit deprecates:
- the `CONFIG_BT_SIGNING` Kconfig option
- `BT_GATT_CHRC_AUTH` property

IOW, this commit deprecates the LE Security mode 2 support.

Explanation:

Erratum ES-26047 introduced in Bluetooth Core Specification v6.2
requires SingCounter to be persistently stored to prevent replay
attacks.

Currently, the Host doesn't store SignCounter, therefore the device is
vulnerable to replay attacks after reboot.

Additionally, the current implementation doesn't assume that SignCounter
of a received message can be incremented by more than one and thus may
not validate correct message.

The Bluetooth Security and Privacy Best Practices Guide recommends to
not using Data signing and recommends to use LE Security mode 1 levels
2, 3 or 4 instead.

The Signed Write Without Response sub-procedure, which is the only user
of Data signing, is optional (see Vol 3, Part G, Table 4.1).

See also ES-18901.

The aforementioned reasons make no sense to keep this feature.

Signed-off-by: Pavel Vasilyev <pavel.vasilyev@nordicsemi.no>
(cherry picked from commit b7b35b8)
@PavelVPV
[nrf fromtree] tests: bluetooth: init: Remove duplicate prj_<x>.conf …
fdd6aef 
…files

Remove duplicated prj.conf file.

prj_6, prj_7, prj_14 are identicall. Since prj_6.conf is unchanged,
keeping it.

prj_8, prj_9, prj_15 are identicall. Since prj_15.conf is
unchanged, keeping it.

Signed-off-by: Pavel Vasilyev <pavel.vasilyev@nordicsemi.no>
(cherry picked from commit 66679c1)
@PavelVPV
[nrf fromtree] tests: bluetooth: qualification: Remove data signing r…
86bad3d 
…elated ICS

This commit removes data signing related ICS.

Removed ICS:
- SM 6/1: Signing Algorithm Generation
- SM 6/2: Signing Algorithm Resolving
- GATT 3/13: Signed Write Without Response
- GATT 9/10: Signed Write Command
- GATT 7/3: LE Security mode 2
- GAP 25/2: LE Security mode 2
- GAP 35/2: LE Security mode 2
- GAP 25/5: Connection data signing procedure
- GAP 35/5: Connection data signing procedure
- GAP 25/6: Authenticate signed data procedure
- GAP 35/6: Authenticate signed data procedure
- GAP 27b/8: Connection Signature Resolving Key (CSRK)
- GAP 37b/8: Connection Signature Resolving Key (CSRK)

The following tests are not supported any longer:
- GAP/SEC/CSIGN/BI-01-C
- GAP/SEC/CSIGN/BI-02-C
- GAP/SEC/CSIGN/BI-03-C
- GAP/SEC/CSIGN/BI-04-C
- GAP/SEC/CSIGN/BV-01-C
- GAP/SEC/CSIGN/BV-02-C
- GATT/CL/GAW/BV-02-C
- SM/CEN/SIGN/BV-01-C

Signed-off-by: Pavel Vasilyev <pavel.vasilyev@nordicsemi.no>
(cherry picked from commit 116d4dd)
@PavelVPV PavelVPV force-pushed the cherry_pick_gatt_sign_counter branch from 7f79aaf to 86bad3d Compare November 25, 2025 08:28
NordicBuilder added a commit to NordicBuilder/sdk-nrf that referenced this pull request Nov 25, 2025
@NordicBuilder
manifest: Update sdk-zephyr revision (auto-manifest PR)
fb365f3 
Automatically created by action-manifest-pr GH action from PR:
nrfconnect/sdk-zephyr#3515

Signed-off-by: Nordic Builder <pylon@nordicsemi.no>
@PavelVPV
Copy link
Contributor Author

PavelVPV commented Nov 25, 2025

Superseded by #3513

@PavelVPV PavelVPV closed this Nov 25, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@weeTike weeTike weeTike approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@PavelVPV @weeTike