You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@mynewt.apache.org by GitBox <gi...@apache.org> on 2021/11/15 23:15:10 UTC

[GitHub] [mynewt-nimble] rojer opened a new issue #1092: GATTS: subscribe action security

rojer opened a new issue #1092:
URL: https://github.com/apache/mynewt-nimble/issues/1092


   It's nice that NimBLE automatically takes care of attribute security checks and kicks off encryption change procedure when a characteristic with READ_ENC or WRITE_ENC flags set.
   However, it will not do this on notification mode change - even if the characteristic is marched as READ_ENC, central is allowed to subscribe to it without going through encryption change procedure, and the SUBSCRIBE event will fire.
   While it is possible for the app to handle it and initiate the security procedure, it is cumbersome - context of the original SUBSCRIBE event needs to be preserved and acted upon if encryption change is successful, and discarded if not.
   It would be nice if stack took care of this.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@mynewt.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org