From a0aa180ef131a93d24b9603c458ce6c5b2d1f20c Mon Sep 17 00:00:00 2001 From: jhchun Date: Tue, 21 Apr 2026 14:08:02 +0900 Subject: [PATCH] =?UTF-8?q?DFU=20characteristic:=20MITM=20=EC=9D=B8?= =?UTF-8?q?=EC=A6=9D=20=EC=99=84=EB=A3=8C=EB=90=9C=20=EC=97=B0=EA=B2=B0?= =?UTF-8?q?=EB=A7=8C=20=EC=A0=91=EA=B7=BC=20=EA=B0=80=EB=8A=A5=ED=95=98?= =?UTF-8?q?=EB=8F=84=EB=A1=9D=20=EC=88=98=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - SEC_OPEN -> SEC_MITM - 기존에는 페어링 완료 전에도 DFU characteristic write 가능, BLE SMP 타임아웃(30초) 전에 wirte하면 부트로더로 재부팅되어 인증 없이 DFU 모드 진입 가능했음 --- components/ble/ble_services/ble_dfu/ble_dfu_unbonded.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/components/ble/ble_services/ble_dfu/ble_dfu_unbonded.c b/components/ble/ble_services/ble_dfu/ble_dfu_unbonded.c index f6d09a4..df7c08a 100644 --- a/components/ble/ble_services/ble_dfu/ble_dfu_unbonded.c +++ b/components/ble/ble_services/ble_dfu/ble_dfu_unbonded.c @@ -216,9 +216,9 @@ uint32_t ble_dfu_buttonless_char_add(ble_dfu_buttonless_t * p_dfu) add_char_params.is_var_len = true; add_char_params.max_len = BLE_GATT_ATT_MTU_DEFAULT; - add_char_params.cccd_write_access = SEC_OPEN; - add_char_params.write_access = SEC_OPEN; - add_char_params.read_access = SEC_OPEN; + add_char_params.cccd_write_access = SEC_MITM; + add_char_params.write_access = SEC_MITM; + add_char_params.read_access = SEC_MITM; return characteristic_add(p_dfu->service_handle, &add_char_params, &p_dfu->control_point_char); }