[Bluetooth] Enforce security for outgoing RFCOMM connections

	u8            priority;

	u8            v24_sig;

	u8            mscex;

	u8            out;

	u32           link_mode;

#define BT_DBG(D...)

#endif

#define VERSION "1.8"

#define VERSION "1.9"

static int disable_cfc = 0;

static int channel_mtu = -1;

	return err;

}

static inline int rfcomm_check_link_mode(struct rfcomm_dlc *d)

{

	struct sock *sk = d->session->sock->sk;

	if (d->link_mode & (RFCOMM_LM_ENCRYPT | RFCOMM_LM_SECURE)) {

		if (!hci_conn_encrypt(l2cap_pi(sk)->conn->hcon))

			return 1;

	} else if (d->link_mode & RFCOMM_LM_AUTH) {

		if (!hci_conn_auth(l2cap_pi(sk)->conn->hcon))

			return 1;

	}

	return 0;

}

/* ---- RFCOMM DLCs ---- */

static void rfcomm_dlc_timeout(unsigned long arg)

{

	d->state = BT_CONFIG;

	rfcomm_dlc_link(s, d);

	d->out = 1;

	d->mtu = s->mtu;

	d->cfc = (s->cfc == RFCOMM_CFC_UNKNOWN) ? 0 : s->cfc;

	if (s->state == BT_CONNECTED)

	if (s->state == BT_CONNECTED) {

		if (rfcomm_check_link_mode(d))

			set_bit(RFCOMM_AUTH_PENDING, &d->flags);

		else

			rfcomm_send_pn(s, 1, d);

	}

	rfcomm_dlc_set_timer(d, RFCOMM_CONN_TIMEOUT);

	return 0;

}

	return 0;

}

static inline int rfcomm_check_link_mode(struct rfcomm_dlc *d)

{

	struct sock *sk = d->session->sock->sk;

	if (d->link_mode & (RFCOMM_LM_ENCRYPT | RFCOMM_LM_SECURE)) {

		if (!hci_conn_encrypt(l2cap_pi(sk)->conn->hcon))

			return 1;

	} else if (d->link_mode & RFCOMM_LM_AUTH) {

		if (!hci_conn_auth(l2cap_pi(sk)->conn->hcon))

			return 1;

	}

	return 0;

}

static void rfcomm_dlc_accept(struct rfcomm_dlc *d)

{

	struct sock *sk = d->session->sock->sk;

			if (rfcomm_check_link_mode(d)) {

				set_bit(RFCOMM_AUTH_PENDING, &d->flags);

				rfcomm_dlc_set_timer(d, RFCOMM_AUTH_TIMEOUT);

				return 0;

			}

			} else

				rfcomm_dlc_accept(d);

		}

		return 0;

		if (rfcomm_check_link_mode(d)) {

			set_bit(RFCOMM_AUTH_PENDING, &d->flags);

			rfcomm_dlc_set_timer(d, RFCOMM_AUTH_TIMEOUT);

			return 0;

		}

		} else

			rfcomm_dlc_accept(d);

	} else {

		rfcomm_send_dm(s, dlci);

		d = list_entry(p, struct rfcomm_dlc, list);

		if (d->state == BT_CONFIG) {

			d->mtu = s->mtu;

			if (rfcomm_check_link_mode(d)) {

				set_bit(RFCOMM_AUTH_PENDING, &d->flags);

				rfcomm_dlc_set_timer(d, RFCOMM_AUTH_TIMEOUT);

			} else

				rfcomm_send_pn(s, 1, d);

		}

	}

		if (test_and_clear_bit(RFCOMM_AUTH_ACCEPT, &d->flags)) {

			rfcomm_dlc_clear_timer(d);

			if (d->out) {

				rfcomm_send_pn(s, 1, d);

				rfcomm_dlc_set_timer(d, RFCOMM_CONN_TIMEOUT);

			} else

				rfcomm_dlc_accept(d);

			if (d->link_mode & RFCOMM_LM_SECURE) {

				struct sock *sk = s->sock->sk;

			continue;

		} else if (test_and_clear_bit(RFCOMM_AUTH_REJECT, &d->flags)) {

			rfcomm_dlc_clear_timer(d);

			if (!d->out)

				rfcomm_send_dm(s, d->dlci);

			else

				d->state = BT_CLOSED;

			__rfcomm_dlc_close(d, ECONNREFUSED);

			continue;

		}

	bacpy(&bt_sk(sk)->dst, &sa->rc_bdaddr);

	rfcomm_pi(sk)->channel = sa->rc_channel;

	d->link_mode = rfcomm_pi(sk)->link_mode;

	err = rfcomm_dlc_open(d, &bt_sk(sk)->src, &sa->rc_bdaddr, sa->rc_channel);

	if (!err)

		err = bt_sock_wait_state(sk, BT_CONNECTED,