I have a ble server with display developed for passkey security. It works fine when the Master (i.e. client) is set to have Keyboard input capability, which is good.
The problem is that when the client is set to have no_io_caps, the pairing and bonding still happens successfully. That means the client may bypass the security without needing to enter the passkey. I am wondering where in code would I need to change in order for the server to stop pairing with client devices without entering the correct passkey.
Note that the following are the security settings I used:
#define SEC_PARAM_BOND 1 /**< Perform bonding. */ #define SEC_PARAM_MITM 1 /**< Man In The Middle protection not required. */ #define SEC_PARAM_LESC 0 /**< LE Secure Connections not enabled. */ #define SEC_PARAM_KEYPRESS 0 /**< Keypress notifications not enabled. */ #define SEC_PARAM_IO_CAPABILITIES BLE_GAP_IO_CAPS_DISPLAY_ONLY /**< No I/O capabilities. */ #define SEC_PARAM_OOB 0 /**< Out Of Band data not available. */ #define SEC_PARAM_MIN_KEY_SIZE 7 /**< Minimum encryption key size. */ #define SEC_PARAM_MAX_KEY_SIZE 16 /**< Maximum encryption key size. */
Also, I had made sure that the bonds on both the client and the server are removed before all my tests.
Your help will be greatly appreciated.
