NFC: digital: Ensure no DID in NFC-DEP responses

When in Initiator mode, the digital layer's NFC-DEP code always sets the Device ID (DID) value in the ATR_REQ to '0'. This means that subsequent DEP_REQ and DEP_RES frames must never include a DID byte. This is specified in sections 14.8.1.1 and 14.8.2.1 of the NFC Digital Protocol Spec. Currently, the digital layer's NFC-DEP code doesn't enforce this rule so add code to ensure that there is no DID byte in DEP_RES frames. Reviewed-by: Thierry Escande <thierry.escande@linux.intel.com> Tested-by: Thierry Escande <thierry.escande@linux.intel.com> Signed-off-by: Mark A. Greer <mgreer@animalcreek.com> Signed-off-by: Samuel Ortiz <sameo@linux.intel.com>
author: Mark A. Greer <mgreer@animalcreek.com> 2014-09-24 03:38:04 +0400
committer: Samuel Ortiz <sameo@linux.intel.com> 2014-11-28 14:38:10 +0300
commit: 3bc3f88af5328d369ff399d90f13c566d925c245 (patch)
tree: c13ad10c66d7af92cf0ccbbe32ac0ac2e8d29849 /net/nfc/digital_dep.c
parent: 6ce306682f7f07a5e9e51c655764ead214ef3869 (diff)
download: linux-3bc3f88af5328d369ff399d90f13c566d925c245.tar.xz
1 files changed, 5 insertions, 2 deletions
diff --git a/net/nfc/digital_dep.c b/net/nfc/digital_dep.c
index f3f2b61fb5da..d07c9ab993c8 100644
--- a/net/nfc/digital_dep.c
+++ b/net/nfc/digital_dep.c
@@ -411,8 +411,11 @@ static void digital_in_recv_dep_res(struct nfc_digital_dev *ddev, void *arg,
 
 	pfb = dep_res->pfb;
 
-	if (DIGITAL_NFC_DEP_DID_BIT_SET(pfb))
-		size++;
+	if (DIGITAL_NFC_DEP_DID_BIT_SET(pfb)) {
+		PROTOCOL_ERR("14.8.2.1");
+		rc = -EIO;
+		goto error;
+	}
 
 	if (size > resp->len) {
 		rc = -EIO;
author	Mark A. Greer <mgreer@animalcreek.com>	2014-09-24 03:38:04 +0400
committer	Samuel Ortiz <sameo@linux.intel.com>	2014-11-28 14:38:10 +0300
commit	3bc3f88af5328d369ff399d90f13c566d925c245 (patch)
tree	c13ad10c66d7af92cf0ccbbe32ac0ac2e8d29849 /net/nfc/digital_dep.c
parent	6ce306682f7f07a5e9e51c655764ead214ef3869 (diff)
download	linux-3bc3f88af5328d369ff399d90f13c566d925c245.tar.xz