| commit | c5c528beb6e1cfed3ec93a3a264084df32ce83c2 | [log] [tgz] |
|---|---|---|
| author | Hui Peng <phui@google.com> | Thu Jan 04 06:27:52 2024 +0000 |
| committer | Android Build Coastguard Worker <android-build-coastguard-worker@google.com> | Thu Jan 11 04:46:57 2024 +0000 |
| tree | cb248fe0d19d049cdb37c50ccd900b36b965e028 | |
| parent | 015c618a0461def93138173a53daaf27ca0630c9 [diff] |
Fix a security bypass issue in access_secure_service_from_temp_bond Bug: 318374503 Test: m com.android.btservices | manual test against PoC | QA Ignore-AOSP-First: security (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:62944f39f502b28687a5142ec2d77585525591bc) Merged-In: I48df2c2d77810077e97d4131540277273d441998 Change-Id: I48df2c2d77810077e97d4131540277273d441998
diff --git a/system/stack/btm/btm_sec.cc b/system/stack/btm/btm_sec.cc index c77c405..6ec6d16 100644 --- a/system/stack/btm/btm_sec.cc +++ b/system/stack/btm/btm_sec.cc
@@ -222,8 +222,7 @@ bool locally_initiated, uint16_t security_req) { return !locally_initiated && (security_req & BTM_SEC_IN_AUTHENTICATE) && - p_dev_rec->is_device_authenticated() && - p_dev_rec->is_bond_type_temporary(); + p_dev_rec->is_bond_type_temporary(); } /*******************************************************************************