Hello,
I am use bonding and want to forbid new bonding if proprietary authentication criteria is not met.
For example, I want to allow bonding only if my device is on the charger and if a dedicated char is read before.
My device is in peripheral. PM settings are the following :
#define SEC_PARAM_BOND 1 /*!< Perform bonding. */
#define SEC_PARAM_MITM 1 /*!< Man In The Middle protection required. */
#define SEC_PARAM_LESC 1 /*!< LE Secure Connections enabled. */
#define SEC_PARAM_KEYPRESS 0 /*!< Keypress notifications enabled. */
#define SEC_PARAM_IO_CAPABILITIES BLE_GAP_IO_CAPS_DISPLAY_ONLY /*!< Display only I/O capabilities. */
#define SEC_PARAM_OOB 0 /*!< Out Of Band data not available. */
#define SEC_PARAM_MIN_KEY_SIZE 7 /*!< Minimum encryption key size. */
#define SEC_PARAM_MAX_KEY_SIZE 16 /*!< Maximum encryption key size. */
I have also set PM_HANDLER_SEC_DELAY_MS to 10000 to force secured connection to start after a delay if not started from the central.
Is there an clean way to refuse any bonding request without changing anything on sdk files? I have tried to close connection upon BLE_GAP_EVT_SEC_PARAMS_REQUEST event if my criteria are not met. However, doing this generate an error when PM_HANDLER_SEC_DELAY_MS is reached as connection was closed.
Second question, how can I allow to repair the bond ?
I am using SDK15.3 on nRF52840.
Thank you for you help
Olivier Grossenbacher
