Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
cp: disallow unexpected SC responses
When CP has a secure channel active, it should never receive a REPLY_CCRYPT or REPLY_RMAC_I. Since these responses change the SC state, let's also make sure that they are accepted only when they are expected: in response to commands CMD_CHLNG and CMD_SCRYPT respectively. Since this incident has some security implication, let's increase the log level of such out-of-order messages to EMERGENCY so they can be triaged appropriately. Reported-by: Eran Jacob <[email protected]> Signed-off-by: Siddharth Chandrasekaran <[email protected]>
- Loading branch information