Skip to content

[PW_SID:1041603] Bluetooth: btnxpuart: Add secure interface support for NXP chipsets #3262

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
BluezTestBot wants to merge 15 commits into
base: workflow
Choose a base branch
from
Open

[PW_SID:1041603] Bluetooth: btnxpuart: Add secure interface support for NXP chipsets #3262

BluezTestBot wants to merge 15 commits into from

Conversation

@BluezTestBot
Copy link
Owner

@BluezTestBot BluezTestBot commented Jan 13, 2026

This adds support for parsing firmware metadata TLVs to extract FW UUID and
ECDSA Public Key from FW metadata for secure interface authentication.

Signed-off-by: Neeraj Sanjay Kale neeraj.sanjaykale@nxp.com

v2: Fix sparse warnings. (kernel test robot)

drivers/bluetooth/btnxpuart.c | 133 ++++++++++++++++++++++++++++++++--
1 file changed, 125 insertions(+), 8 deletions(-)

hadess and others added 15 commits January 12, 2026 09:31
@hadess @Vudentz
Bluetooth: btusb: Use pm_ptr instead of #ifdef CONFIG_PM
d1e94a4 
This increases build coverage and allows to drop an #ifdef.

Signed-off-by: Bastien Nocera <hadess@hadess.net>
Reviewed-by: Paul Menzel <pmenzel@molgen.mpg.de>
Signed-off-by: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>
@Vudentz
Bluetooth: hci_core: Export hci_discovery_active
e133883 
Export hci_discovery_active() so it can be used by bluetooth
drivers built as modules.

Signed-off-by: Linmao Li <lilinmao@kylinos.cn>
Signed-off-by: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>
@Vudentz
Bluetooth: btusb: Reject autosuspend if discovery is active
2e5da96 
If USB autosuspend occurs while discovery is active, the ongoing
HCI operation may not complete successfully. On some devices, this
can leave discovery.state stuck in DISCOVERY_FINDING.

Signed-off-by: Linmao Li <lilinmao@kylinos.cn>
Signed-off-by: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>
@tedd-an
workflow: Add workflow files for ci
e7984f7 
This patch adds workflow files for ci:

[sync.yml]
 - The workflow file for scheduled work
 - Sync the repo with upstream repo and rebase the workflow branch
 - Review the patches in the patchwork and creates the PR if needed

[ci.yml]
 - The workflow file for CI tasks
 - Run CI tests when PR is created

Signed-off-by: Tedd Ho-Jeong An <tedd.an@intel.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add firmware metadata parsing for secure interface
928f53e 
This adds support for parsing firmware metadata TLVs to extract FW UUID and
ECDSA Public Key from FW metadata for secure interface authentication.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Print FW version and enable chip specific features
f0871e8 
This adds a print for FW version after FW is downloaded, and a way to
enable chip specific features.

Currently, secure interface feature is enabled for AW693 chipset.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add secure interface TLS authentication support
3381f36 
This includes a placeholder nxp_authenticate_device() function if the
chip supports secure interface feature.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Implement TLS authentication crypto framework
3841359 
This adds nxp_authenticate_device() function that sets up cryptographic
resources for TLS handshake authentication. Allocates SHA256 hash and
ECDH-P256 key exchange with proper cleanup after handshake completion
to maintain only traffic keys.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add TLS host hello handshake implementation
aa01398 
Implement TLS handshake initiation for secure interface authentication.
Includes ECDH public key generation, host hello message creation, and
handshake hash computation for secure chip authentication.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add TLS device hello processing
c64d572 
This implements device hello message processing to derive handshake
traffic secrets:

- Add HKDF-SHA256 functions for TLS 1.3 traffic secret derivation
  following RFC 5869/8446
- Extract device ECDH public key and compute shared secret using
  KPP API with host private key and device public key
- Derive handshake traffic secret from ECDH shared secret
  following TLS 1.3 key schedule
- Validate device hello message and update handshake hash state

The handshake traffic secret enables decryption of the
device_finish portion within the device_hello message.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add device authentication
37dcb72 
This implements secure device authentication during TLS 1.3-like
handshake with ECDSA signature verification.

The authentication flow:
- Derive handshake traffic secret from ECDH shared secret
- Decrypt device hello encrypted section using AES-GCM with traffic secret
- Extract ECDSA public key from firmware metadata for verification
- Verify device handshake signature to authenticate device identity
- Validate device finished message using calculated verify data
- Clear handshake traffic secret after successful authentication

This ensures only devices with valid private keys can complete the
handshake.

Key components added:
- AES-GCM encrypt/decrypt with traffic secret derived keys
- ECDSA P-256 signature verification using kernel crypto API
- X9.62 to P1363 signature format conversion
- TLS 1.3 finished message verification
- Secure memory cleanup of cryptographic material

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Derive traffic keys from TLS 1.3 handshake
5df6aec 
This completes the TLS handshake implementation by adding master secret
derivation and traffic key generation. These traffic keys will be used
to encrypt/decrypt sensitive HCI commands, response and events.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add command encryption for sensitive HCI commands
82df263 
This adds support for command encryption for sensitive HCI commands when
secure interface is enabled. This commands containt sensitive data such
as Link Key in plain text over UART lines.

AES-GCM encryption is used to encrypt sensitive commands using
encryption key and IV derived from traffic keys.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Add encrypted event handling
a565f70 
This adds support for receiving and decrypting vendor events from secure
NXP chip and forwarding the decrypted sensitive HCI events to the BT
stack.

The NXP BT chip encrypts the Link Key Notification event that is usually
sent in plaintext over UART lines.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@NeerajSanjayKale @tedd-an
Bluetooth: btnxpuart: Select crypto algorithms for secure interface
5b6018b 
This adds crypto dependencies (ECDSA, ECDH, AES-GCM, SHA256, HMAC)
needed for TLS-based secure host interface authentication and
encryption.

Signed-off-by: Neeraj Sanjay Kale <neeraj.sanjaykale@nxp.com>
@github-actions
Copy link

github-actions bot commented Jan 13, 2026

CheckPatch
Desc: Run checkpatch.pl script
Duration: 0.46 seconds
Result: PENDING

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

GitLint
Desc: Run gitlint
Duration: 0.29 seconds
Result: PENDING

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

SubjectPrefix
Desc: Check subject contains "Bluetooth" prefix
Duration: 0.91 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

BuildKernel
Desc: Build Kernel for Bluetooth
Duration: 25.06 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

CheckAllWarning
Desc: Run linux kernel with all warning enabled
Duration: 27.40 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

CheckSparse
Desc: Run sparse tool with linux kernel
Duration: 31.77 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

BuildKernel32
Desc: Build 32bit Kernel for Bluetooth
Duration: 26.42 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunnerSetup
Desc: Setup kernel and bluez for test-runner
Duration: 547.48 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_l2cap-tester
Desc: Run l2cap-tester with test-runner
Duration: 28.02 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_iso-tester
Desc: Run iso-tester with test-runner
Duration: 99.03 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_bnep-tester
Desc: Run bnep-tester with test-runner
Duration: 8.37 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_mgmt-tester
Desc: Run mgmt-tester with test-runner
Duration: 122.75 seconds
Result: FAIL
Output:

Total: 494, Passed: 489 (99.0%), Failed: 1, Not Run: 4

Failed Test Cases
Read Exp Feature - Success                           Failed       0.107 seconds

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_rfcomm-tester
Desc: Run rfcomm-tester with test-runner
Duration: 10.62 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_sco-tester
Desc: Run sco-tester with test-runner
Duration: 15.84 seconds
Result: FAIL
Output:

WARNING: possible circular locking dependency detected
BUG: sleeping function called from invalid context at net/core/sock.c:3782
Total: 30, Passed: 30 (100.0%), Failed: 0, Not Run: 0

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_ioctl-tester
Desc: Run ioctl-tester with test-runner
Duration: 10.97 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_mesh-tester
Desc: Run mesh-tester with test-runner
Duration: 13.42 seconds
Result: FAIL
Output:

Total: 10, Passed: 8 (80.0%), Failed: 2, Not Run: 0

Failed Test Cases
Mesh - Send cancel - 1                               Timed out    1.853 seconds
Mesh - Send cancel - 2                               Timed out    1.996 seconds

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_smp-tester
Desc: Run smp-tester with test-runner
Duration: 10.56 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

TestRunner_userchan-tester
Desc: Run userchan-tester with test-runner
Duration: 8.68 seconds
Result: PASS

@github-actions
Copy link

github-actions bot commented Jan 13, 2026

IncrementalBuild
Desc: Incremental build with the patches in the series
Duration: 0.65 seconds
Result: PENDING

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@BluezTestBot @hadess @tedd-an @NeerajSanjayKale