Bluetooth: L2CAP: Fix response to L2CAP_ECRED_CONN_REQ

Vudentz · Sasha Levin · commit c859b45cc71a · 2026-03-04T07:20:40.000-05:00
[ Upstream commit 05761c2 ] Similar to 03dba9c ("Bluetooth: L2CAP: Fix not responding with L2CAP_CR_LE_ENCRYPTION") the result code L2CAP_CR_LE_ENCRYPTION shall be used when BT_SECURITY_MEDIUM is set since that means security mode 2 which mean it doesn't require authentication which results in qualification test L2CAP/ECFC/BV-32-C failing. Link: bluez/bluez#1871 Fixes: 15f02b9 ("Bluetooth: L2CAP: Add initial code for Enhanced Credit Based Mode") Signed-off-by: Luiz Augusto von Dentz <luiz.von.dentz@intel.com> Signed-off-by: Sasha Levin <sashal@kernel.org>
diff --git a/net/bluetooth/l2cap_core.c b/net/bluetooth/l2cap_core.c
@@ -6111,7 +6111,8 @@ static inline int l2cap_ecred_conn_req(struct l2cap_conn *conn,
 
 	if (!smp_sufficient_security(conn->hcon, pchan->sec_level,
 				     SMP_ALLOW_STK)) {
-		result = L2CAP_CR_LE_AUTHENTICATION;
+		result = pchan->sec_level == BT_SECURITY_MEDIUM ?
+			L2CAP_CR_LE_ENCRYPTION : L2CAP_CR_LE_AUTHENTICATION;
 		goto unlock;
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -6111,7 +6111,8 @@ static inline int l2cap_ecred_conn_req(struct l2cap_conn *conn,`
`6111`	`6111`
`6112`	`6112`	`if (!smp_sufficient_security(conn->hcon, pchan->sec_level,`
`6113`	`6113`	`SMP_ALLOW_STK)) {`
`6114`		`- result = L2CAP_CR_LE_AUTHENTICATION;`
	`6114`	`+ result = pchan->sec_level == BT_SECURITY_MEDIUM ?`
	`6115`	`+ L2CAP_CR_LE_ENCRYPTION : L2CAP_CR_LE_AUTHENTICATION;`
`6115`	`6116`	`goto unlock;`
`6116`	`6117`	`}`
`6117`	`6118`