Bluetooth: Don't modify sec_level if auth failed

If authentication fails the security level should stay as it was set before the process has started. Setting BT_SECURITY_LOW can hide real security level on a link eg. having BT_SECURITY_MEDIUM on the link, re-authenticate with failure to get BT_SECURITY_HIGH, as a result we get BT_SECURITY_LOW on the link while the real security is still medium. Signed-off-by: N Waldemar Rymarkiewicz <waldemar.rymarkiewicz@tieto.com> Signed-off-by: N Gustavo F. Padovan <padovan@profusion.mobi>

Bluetooth: Don't modify sec_level if auth failed
If authentication fails the security level should stay as it was set before the process has started. Setting BT_SECURITY_LOW can hide real security level on a link eg. having BT_SECURITY_MEDIUM on the link, re-authenticate with failure to get BT_SECURITY_HIGH, as a result we get BT_SECURITY_LOW on the link while the real security is still medium. Signed-off-by: N Waldemar Rymarkiewicz <waldemar.rymarkiewicz@tieto.com> Signed-off-by: N Gustavo F. Padovan <padovan@profusion.mobi>
9003c4e2 · Waldemar Rymarkiewicz · Gustavo F. Padovan · b6020ba0 · 9003c4e2
隐藏空白更改
内联并排

Showing with 0 addition and 1 deletion

net/bluetooth/hci_event.c net/bluetooth/hci_event.c +0 -1

未找到文件。
--- a/net/bluetooth/hci_event.c
+++ b/net/bluetooth/hci_event.c
@@ -1459,7 +1459,6 @@ static inline void hci_auth_complete_evt(struct hci_dev *hdev, struct sk_buff *s
 			conn->sec_level = conn->pending_sec_level;
 		} else {
 			mgmt_auth_failed(hdev->id, &conn->dst, ev->status);
-			conn->sec_level = BT_SECURITY_LOW;
 		}

 		clear_bit(HCI_CONN_AUTH_PEND, &conn->pend);