From 7dd21e2481627bb2fae89fe01578c5a8be6d70fe Mon Sep 17 00:00:00 2001
From: Matthias Ringwald <matthias@ringwald.ch>
Date: Wed, 21 Jun 2023 14:46:49 +0200
Subject: [PATCH] l2cap: return 'ecbm all refused insufficient encryption' if
 encryption required but unencrypted

---
 src/l2cap.c | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/l2cap.c b/src/l2cap.c
index 09c81feb1..b6229afc9 100644
--- a/src/l2cap.c
+++ b/src/l2cap.c
@@ -3874,8 +3874,12 @@ static int l2cap_ecbm_signaling_handler_dispatch(hci_con_handle_t handle, uint16
                 }
 
                 // security: check encryption
-                // L2CAP.TS.p31 does not check for Connection refused - insufficient encryption which might be send for no encryption
                 if (service->required_security_level >= LEVEL_2) {
+                    if (gap_encryption_key_size(handle) == 0){
+                        l2cap_register_signaling_response(handle, L2CAP_CREDIT_BASED_CONNECTION_REQUEST, sig_id,
+                                                          num_channels_and_signaling_cid, L2CAP_ECBM_CONNECTION_RESULT_ALL_REFUSED_INSUFFICIENT_ENCRYPTION);
+                        return 1;
+                    }
                     if (gap_encryption_key_size(handle) < 16) {
                         l2cap_register_signaling_response(handle, L2CAP_CREDIT_BASED_CONNECTION_REQUEST, sig_id,
                                                           num_channels_and_signaling_cid, L2CAP_ECBM_CONNECTION_RESULT_ALL_REFUSED_ENCYRPTION_KEY_SIZE_TOO_SHORT);