Skip to content

feat: adding new modes to gappairing for future enhancements in secureconnections #912

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 18 commits into
base: main
Choose a base branch
from
Open

feat: adding new modes to gappairing for future enhancements in secureconnections #912

wants to merge 18 commits into from

Conversation

MiquelJayson-Philips
Copy link
Contributor

@MiquelJayson-Philips MiquelJayson-Philips commented Jul 16, 2025
edited
Loading

Introduction of SecureConnectionMode and MitmMode values in GapPairing.
This is the first initiative for future enhancements in SC.

github-actions[bot]
github-actions bot reviewed Jul 16, 2025
View reviewed changes
Copy link
Contributor

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for your first PR. We really appreciate it!

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jul 16, 2025
edited
Loading

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 33 package(s) with unknown licenses.
See the Details below.

Snapshot Warnings

⚠️: The number of snapshots compared for the base SHA (0) and the head SHA (1) do not match. You may see unexpected additions in the diff.
Consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

lwip/lwip/CMakeLists.txt

PackageVersionLicenseIssue Type
lwip-tcpip/lwip77dcd25a72509eb83f72b033d219b1d40cd8eb95NullUnknown License
lwip-tcpip/lwip77dcd25a72509eb83f72b033d219b1d40cd8eb95NullUnknown License
lwip-tcpip/lwip77dcd25a72509eb83f72b033d219b1d40cd8eb95NullUnknown License

external/args/CMakeLists.txt

PackageVersionLicenseIssue Type
taywee/args114200a9ad5fe06c8dea76e15d92325695cf3e34NullUnknown License
taywee/args114200a9ad5fe06c8dea76e15d92325695cf3e34NullUnknown License
taywee/args114200a9ad5fe06c8dea76e15d92325695cf3e34NullUnknown License

external/segger_rtt/CMakeLists.txt

PackageVersionLicenseIssue Type
seggermicro/rttff57c3d516ea59b0a2d4d5cafb33a48572b09c0bNullUnknown License
seggermicro/rttff57c3d516ea59b0a2d4d5cafb33a48572b09c0bNullUnknown License
seggermicro/rttff57c3d516ea59b0a2d4d5cafb33a48572b09c0bNullUnknown License

osal/threadx/CMakeLists.txt

PackageVersionLicenseIssue Type
eclipse-threadx/threadx06dabb0ad0403f59889ce85eeb3d48dbd9d3759bNullUnknown License
eclipse-threadx/threadx06dabb0ad0403f59889ce85eeb3d48dbd9d3759bNullUnknown License
eclipse-threadx/threadx06dabb0ad0403f59889ce85eeb3d48dbd9d3759bNullUnknown License

external/protobuf/CMakeLists.txt

PackageVersionLicenseIssue Type
protocolbuffers/protobuf3d4adad5c4c4e6a6f9f038769b8c90716065b0e4NullUnknown License
protocolbuffers/protobuf3d4adad5c4c4e6a6f9f038769b8c90716065b0e4NullUnknown License
protocolbuffers/protobuf3d4adad5c4c4e6a6f9f038769b8c90716065b0e4NullUnknown License

osal/freertos/CMakeLists.txt

PackageVersionLicenseIssue Type
freertos/freertos-kerneldef7d2df2b0506d3d249334974f51e427c17a41cNullUnknown License
freertos/freertos-kerneldef7d2df2b0506d3d249334974f51e427c17a41cNullUnknown License
freertos/freertos-kerneldef7d2df2b0506d3d249334974f51e427c17a41cNullUnknown License

external/crypto/mbedtls/CMakeLists.txt

PackageVersionLicenseIssue Type
mbed-tls/mbedtls107ea89daaefb9867ea9121002fbbdf926780e98NullUnknown License
mbed-tls/mbedtls107ea89daaefb9867ea9121002fbbdf926780e98NullUnknown License
mbed-tls/mbedtls107ea89daaefb9867ea9121002fbbdf926780e98NullUnknown License

external/crypto/micro-ecc/CMakeLists.txt

PackageVersionLicenseIssue Type
kmackay/micro-ecc24c60e243580c7868f4334a1ba3123481fe1aa48NullUnknown License
kmackay/micro-ecc24c60e243580c7868f4334a1ba3123481fe1aa48NullUnknown License
kmackay/micro-ecc24c60e243580c7868f4334a1ba3123481fe1aa48NullUnknown License

cmake/emil_test_helpers.cmake

PackageVersionLicenseIssue Type
google/googletestv1.14.0NullUnknown License
google/googletestv1.14.0NullUnknown License
google/googletestv1.14.0NullUnknown License

infra/syntax/CMakeLists.txt

PackageVersionLicenseIssue Type
zeux/pugixmlef856bf975f4b1909af1b40ed3d7e28af9263d95NullUnknown License
zeux/pugixmlef856bf975f4b1909af1b40ed3d7e28af9263d95NullUnknown License
zeux/pugixmlef856bf975f4b1909af1b40ed3d7e28af9263d95NullUnknown License

external/crypto/tiny-aes128/CMakeLists.txt

PackageVersionLicenseIssue Type
kokke/tiny-aes-c7e42e693288bdf22d8e677da94248115168211b9NullUnknown License
kokke/tiny-aes-c7e42e693288bdf22d8e677da94248115168211b9NullUnknown License
kokke/tiny-aes-c7e42e693288bdf22d8e677da94248115168211b9NullUnknown License

OpenSSF Scorecard

Scorecard details
PackageVersionScoreDetails
unknown/lwip-tcpip/lwip 77dcd25a72509eb83f72b033d219b1d40cd8eb95 UnknownUnknown
unknown/taywee/args 114200a9ad5fe06c8dea76e15d92325695cf3e34 UnknownUnknown
unknown/seggermicro/rtt ff57c3d516ea59b0a2d4d5cafb33a48572b09c0b UnknownUnknown
unknown/eclipse-threadx/threadx 06dabb0ad0403f59889ce85eeb3d48dbd9d3759b UnknownUnknown
unknown/protocolbuffers/protobuf 3d4adad5c4c4e6a6f9f038769b8c90716065b0e4 UnknownUnknown
unknown/freertos/freertos-kernel def7d2df2b0506d3d249334974f51e427c17a41c UnknownUnknown
unknown/mbed-tls/mbedtls 107ea89daaefb9867ea9121002fbbdf926780e98 UnknownUnknown
unknown/kmackay/micro-ecc 24c60e243580c7868f4334a1ba3123481fe1aa48 UnknownUnknown
unknown/google/googletest v1.14.0 UnknownUnknown
unknown/zeux/pugixml ef856bf975f4b1909af1b40ed3d7e28af9263d95 UnknownUnknown
unknown/kokke/tiny-aes-c 7e42e693288bdf22d8e677da94248115168211b9 UnknownUnknown
unknown/freertos/freertos-kernel def7d2df2b0506d3d249334974f51e427c17a41c UnknownUnknown
unknown/mbed-tls/mbedtls 107ea89daaefb9867ea9121002fbbdf926780e98 UnknownUnknown
unknown/zeux/pugixml ef856bf975f4b1909af1b40ed3d7e28af9263d95 UnknownUnknown
unknown/google/googletest v1.14.0 UnknownUnknown
unknown/lwip-tcpip/lwip 77dcd25a72509eb83f72b033d219b1d40cd8eb95 UnknownUnknown
unknown/seggermicro/rtt ff57c3d516ea59b0a2d4d5cafb33a48572b09c0b UnknownUnknown
unknown/protocolbuffers/protobuf 3d4adad5c4c4e6a6f9f038769b8c90716065b0e4 UnknownUnknown
unknown/eclipse-threadx/threadx 06dabb0ad0403f59889ce85eeb3d48dbd9d3759b UnknownUnknown
unknown/taywee/args 114200a9ad5fe06c8dea76e15d92325695cf3e34 UnknownUnknown
unknown/kokke/tiny-aes-c 7e42e693288bdf22d8e677da94248115168211b9 UnknownUnknown
unknown/kmackay/micro-ecc 24c60e243580c7868f4334a1ba3123481fe1aa48 UnknownUnknown
unknown/freertos/freertos-kernel def7d2df2b0506d3d249334974f51e427c17a41c UnknownUnknown
unknown/taywee/args 114200a9ad5fe06c8dea76e15d92325695cf3e34 UnknownUnknown
unknown/zeux/pugixml ef856bf975f4b1909af1b40ed3d7e28af9263d95 UnknownUnknown
unknown/seggermicro/rtt ff57c3d516ea59b0a2d4d5cafb33a48572b09c0b UnknownUnknown
unknown/mbed-tls/mbedtls 107ea89daaefb9867ea9121002fbbdf926780e98 UnknownUnknown
unknown/kokke/tiny-aes-c 7e42e693288bdf22d8e677da94248115168211b9 UnknownUnknown
unknown/lwip-tcpip/lwip 77dcd25a72509eb83f72b033d219b1d40cd8eb95 UnknownUnknown
unknown/protocolbuffers/protobuf 3d4adad5c4c4e6a6f9f038769b8c90716065b0e4 UnknownUnknown
unknown/eclipse-threadx/threadx 06dabb0ad0403f59889ce85eeb3d48dbd9d3759b UnknownUnknown
unknown/google/googletest v1.14.0 UnknownUnknown
unknown/kmackay/micro-ecc 24c60e243580c7868f4334a1ba3123481fe1aa48 UnknownUnknown

Scanned Files

  • cmake/emil_test_helpers.cmake
  • external/args/CMakeLists.txt
  • external/crypto/mbedtls/CMakeLists.txt
  • external/crypto/micro-ecc/CMakeLists.txt
  • external/crypto/tiny-aes128/CMakeLists.txt
  • external/protobuf/CMakeLists.txt
  • external/segger_rtt/CMakeLists.txt
  • infra/syntax/CMakeLists.txt
  • lwip/lwip/CMakeLists.txt
  • osal/freertos/CMakeLists.txt
  • osal/threadx/CMakeLists.txt

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jul 16, 2025
edited
Loading

🦙 MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ ACTION actionlint 12 0 0 0.25s
✅ CPP clang-format 1028 8 0 0 6.84s
✅ DOCKERFILE hadolint 2 0 0 0.37s
✅ JSON jsonlint 7 0 0 0.16s
✅ JSON prettier 7 0 0 0 0.6s
⚠️ MARKDOWN markdownlint 6 0 4 0 1.16s
⚠️ MARKDOWN markdown-link-check 6 2 0 145.64s
✅ MARKDOWN markdown-table-formatter 6 0 0 0 0.23s
✅ REPOSITORY checkov yes no no 19.88s
✅ REPOSITORY git_diff yes no no 0.05s
✅ REPOSITORY grype yes no no 24.19s
✅ REPOSITORY ls-lint yes no no 0.06s
✅ REPOSITORY secretlint yes no no 6.19s
✅ REPOSITORY syft yes no no 1.4s
✅ REPOSITORY trivy yes no no 5.73s
✅ REPOSITORY trivy-sbom yes no no 0.17s
✅ REPOSITORY trufflehog yes no no 3.22s
⚠️ SPELL lychee 138 2 0 9.94s
⚠️ YAML prettier 22 1 1 0 0.81s
✅ YAML v8r 22 0 0 4.38s
✅ YAML yamllint 22 0 0 0.54s

See detailed report in MegaLinter reports

MegaLinter is graciously provided by OX Security

@MiquelJayson-Philips MiquelJayson-Philips changed the title [DRAFT] feat: adapt sc revert legacy bleui definition mapping feat: adding SC and MITM modes to GapPairing for further enhancements in SecureConnections Jul 17, 2025
@MiquelJayson-Philips MiquelJayson-Philips changed the title feat: adding SC and MITM modes to GapPairing for further enhancements in SecureConnections feat: adding SC and MITM modes to GapPairing for future enhancements in SecureConnections Jul 17, 2025
@MiquelJayson-Philips MiquelJayson-Philips changed the title feat: adding SC and MITM modes to GapPairing for future enhancements in SecureConnections feat: adding new modes to gappairing for future enhancements in secureconnections Jul 17, 2025
@MiquelJayson-Philips MiquelJayson-Philips marked this pull request as ready for review July 21, 2025 07:00
@MiquelJayson-Philips MiquelJayson-Philips requested a review from a team as a code owner July 21, 2025 07:00
gabrielsantosphilips
gabrielsantosphilips reviewed Jul 24, 2025
View reviewed changes
services/ble/Gap.hpp Outdated
};

virtual void Pair() = 0;
// Values align with STM32 sdk ble core defs
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think we should align with a specific manufacturer. if for some reason the manufacturer has a different values, the class implement this interface should be responsible for adapting it.

oguzcanoguz
oguzcanoguz approved these changes Jul 24, 2025
View reviewed changes
services/ble/Gap.hpp

virtual void Pair() = 0;
// Values align with STM32 sdk ble core defs
enum class SecureConnectionMode : uint8_t
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we have the same three options for mitm and secureconnections:
notSupported,
supported,
enforced,

For some vendors, such as ST, we might not have the implementation for all combinations, which is fine.

@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

@gabrielsantosphilips gabrielsantosphilips gabrielsantosphilips left review comments

@oguzcanoguz oguzcanoguz oguzcanoguz approved these changes

@magi-arun magi-arun Awaiting requested review from magi-arun

@XavierBernhardt-Philips XavierBernhardt-Philips Awaiting requested review from XavierBernhardt-Philips

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@MiquelJayson-Philips @oguzcanoguz @gabrielsantosphilips @XavierBernhardt-Philips