openwrt/target/linux/bcm27xx/patches-4.19/950-0427-Bluetooth-Check-key-sizes-only-when-Secure-Simple-Pa.patch

From 83f0a8986ae42e33bc16acda0451dce2cf4dfb55 Mon Sep 17 00:00:00 2001
From: Marcel Holtmann <marcel@holtmann.org>
Date: Wed, 22 May 2019 09:05:40 +0200
Subject: [PATCH] Bluetooth: Check key sizes only when Secure Simple
 Pairing is enabled

The encryption is only mandatory to be enforced when both sides are using
Secure Simple Pairing and this means the key size check makes only sense
in that case.

On legacy Bluetooth 2.0 and earlier devices like mice the encryption was
optional and thus causing an issue if the key size check is not bound to
using Secure Simple Pairing.

Fixes: d5bb334a8e17 ("Bluetooth: Align minimum encryption key size for LE and BR/EDR connections")
Signed-off-by: Marcel Holtmann <marcel@holtmann.org>
Cc: stable@vger.kernel.org
---
 net/bluetooth/hci_conn.c | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

--- a/net/bluetooth/hci_conn.c
+++ b/net/bluetooth/hci_conn.c
@@ -1282,8 +1282,13 @@ int hci_conn_check_link_mode(struct hci_
 			return 0;
 	}
 
-	if (hci_conn_ssp_enabled(conn) &&
-	    !test_bit(HCI_CONN_ENCRYPT, &conn->flags))
+	/* If Secure Simple Pairing is not enabled, then legacy connection
+	 * setup is used and no encryption or key sizes can be enforced.
+	 */
+	if (!hci_conn_ssp_enabled(conn))
+		return 1;
+
+	if (!test_bit(HCI_CONN_ENCRYPT, &conn->flags))
 		return 0;
 
 	return 1;
brcm2708: update to latest patches from RPi foundation Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com> 2019-09-19 14:43:19 +00:00			`From 83f0a8986ae42e33bc16acda0451dce2cf4dfb55 Mon Sep 17 00:00:00 2001`
brcm2708: add linux 4.19 support Boot tested on Raspberry Pi B+ (BCM2708) and Raspberry Pi 2 (BCM2709) Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com> 2019-07-09 18:32:28 +00:00			`From: Marcel Holtmann <marcel@holtmann.org>`
			`Date: Wed, 22 May 2019 09:05:40 +0200`
brcm2708: organize kernel patches Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com> 2019-12-23 12:42:55 +00:00			`Subject: [PATCH] Bluetooth: Check key sizes only when Secure Simple`
brcm2708: add linux 4.19 support Boot tested on Raspberry Pi B+ (BCM2708) and Raspberry Pi 2 (BCM2709) Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com> 2019-07-09 18:32:28 +00:00			`Pairing is enabled`

			`The encryption is only mandatory to be enforced when both sides are using`
			`Secure Simple Pairing and this means the key size check makes only sense`
			`in that case.`

			`On legacy Bluetooth 2.0 and earlier devices like mice the encryption was`
			`optional and thus causing an issue if the key size check is not bound to`
			`using Secure Simple Pairing.`

			`Fixes: d5bb334a8e17 ("Bluetooth: Align minimum encryption key size for LE and BR/EDR connections")`
			`Signed-off-by: Marcel Holtmann <marcel@holtmann.org>`
			`Cc: stable@vger.kernel.org`
			`---`
			`net/bluetooth/hci_conn.c \| 9 +++++++--`
			`1 file changed, 7 insertions(+), 2 deletions(-)`

			`--- a/net/bluetooth/hci_conn.c`
			`+++ b/net/bluetooth/hci_conn.c`
kernel: bump 4.19 to 4.19.95 Refreshed all patches. Compile-tested on: cns3xxx Runtime-tested on: cns3xxx Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com> 2020-01-14 15:34:24 +00:00			`@@ -1282,8 +1282,13 @@ int hci_conn_check_link_mode(struct hci_`
brcm2708: add linux 4.19 support Boot tested on Raspberry Pi B+ (BCM2708) and Raspberry Pi 2 (BCM2709) Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com> 2019-07-09 18:32:28 +00:00			`return 0;`
			`}`

			`- if (hci_conn_ssp_enabled(conn) &&`
			`- !test_bit(HCI_CONN_ENCRYPT, &conn->flags))`
			`+ /* If Secure Simple Pairing is not enabled, then legacy connection`
			`+ * setup is used and no encryption or key sizes can be enforced.`
			`+ */`
			`+ if (!hci_conn_ssp_enabled(conn))`
			`+ return 1;`
			`+`
			`+ if (!test_bit(HCI_CONN_ENCRYPT, &conn->flags))`
			`return 0;`

			`return 1;`