Received: by 2002:a05:6a10:1287:0:0:0:0 with SMTP id d7csp572942pxv;
        Thu, 22 Jul 2021 07:16:10 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxk+g8e/ZeNjJCZ7Q1JJmuTvUdZeW27PG2eHKW+7Fsu5vJ2a3ZdemuULLFTpqyNmgGEzo36
X-Received: by 2002:a92:d2ca:: with SMTP id w10mr82999ilg.38.1626963369903;
        Thu, 22 Jul 2021 07:16:09 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1626963369; cv=none;
        d=google.com; s=arc-20160816;
        b=jwv/3X1cLLuTybpfGYGv+PIuQW8qsI1P7fTazM3YJb5jKBfsuCVzRmiSsUmN0Hr+EY
         ORMNmC3Hpw5BrT8EONEDg/VZe6h//7FZaeG9W//g6/yBUG97vjZ40BdBIjIno5lTQ9Nc
         BCXFsLPfDDy/YwzXLVBi3zUbDdu08AqJVCi0fbxiS4mty8VPED09lKnJELyPWOgBgEbY
         TlLl8s3dvOaYX9dRTvRoCDW7naD3YbSDgwc2d7h4xgVusPGHCal4pwEoItolncAOdmze
         EqSQ3fF0eZnvNHDjp5lBiG15eV2I1ZWXiknqQf3ir8ijkAXJBSMD5m6nz7JL6tNm+A8J
         20SA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:to:references:message-id
         :content-transfer-encoding:cc:date:in-reply-to:from:subject
         :mime-version;
        bh=mWGJ3RVEjGdsQ6tZcsSMTiCDkQF97k30AnCB+ijPX/k=;
        b=uTpiE5O0+Sul6kokzRsA4WhmqSFAcs4MSt6KmVIZC3KNnBjjfSVJyOsQXrLC0YYUTF
         Mjhcm4VB+yV7f0Vu9Ld2ec2XbfWS5k+/p1q+eXImAznM3jptNT4yPop2kylsVHGevmwv
         pEe6bOdgCJDXOe6n5Pc5j5r0GZkxbjcSaDrvIAgCpeqxTu8pqS36Y2DvxJp28ha9dcPk
         PnMU+oeuEw0LsXiXf/S/jpPiT8B77LPSKX7r9HjC/QsCXZ51lvSwTzqpA8HP0GiWmdHk
         EvNzLtUEXp8F6sB7oGpzqYXSaGwnGwmWnImw4/p4+yPyQQOC7cSw7mgsX36LxfOGOtpE
         LVXg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org
Return-Path: <linux-bluetooth-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id n11si23405093ilt.138.2021.07.22.07.15.23;
        Thu, 22 Jul 2021 07:16:09 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232260AbhGVNeA convert rfc822-to-8bit (ORCPT
        <rfc822;manfred.donn@gmail.com> + 99 others);
        Thu, 22 Jul 2021 09:34:00 -0400
Received: from coyote.holtmann.net ([212.227.132.17]:54008 "EHLO
        mail.holtmann.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232328AbhGVNdi (ORCPT
        <rfc822;linux-bluetooth@vger.kernel.org>);
        Thu, 22 Jul 2021 09:33:38 -0400
Received: from smtpclient.apple (p5b3d2eb8.dip0.t-ipconnect.de [91.61.46.184])
        by mail.holtmann.org (Postfix) with ESMTPSA id 07BE8CECDC;
        Thu, 22 Jul 2021 16:14:10 +0200 (CEST)
Content-Type: text/plain;
        charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.100.0.2.22\))
Subject: Re: [PATCH] Bluetooth: sco: prevent information leak in
 sco_conn_defer_accept()
From:   Marcel Holtmann <marcel@holtmann.org>
In-Reply-To: <YNXveZZwzS3crmHH@mwanda>
Date:   Thu, 22 Jul 2021 16:14:09 +0200
Cc:     =?utf-8?B?RnLDqWTDqXJpYyBEYWxsZWF1?= 
        <frederic.dalleau@linux.intel.com>,
        Johan Hedberg <johan.hedberg@gmail.com>,
        Luiz Augusto von Dentz <luiz.dentz@gmail.com>,
        Gustavo Padovan <gustavo.padovan@collabora.co.uk>,
        linux-bluetooth@vger.kernel.org, kernel-janitors@vger.kernel.org
Content-Transfer-Encoding: 8BIT
Message-Id: <2679DCD8-2606-4341-921A-1CC0B2DA3057@holtmann.org>
References: <YNXveZZwzS3crmHH@mwanda>
To:     Dan Carpenter <dan.carpenter@oracle.com>
X-Mailer: Apple Mail (2.3654.100.0.2.22)
Precedence: bulk
List-ID: <linux-bluetooth.vger.kernel.org>
X-Mailing-List: linux-bluetooth@vger.kernel.org

Hi Dan,

> Smatch complains that some of these struct members are not initialized
> leading to a stack information disclosure:
> 
>    net/bluetooth/sco.c:778 sco_conn_defer_accept() warn:
>    check that 'cp.retrans_effort' doesn't leak information
> 
> This seems like a valid warning.  I've added a default case to fix
> this issue.  It's sort of unusual to have case SCO_AIRMODE_CVSD,
> followed by a default case but I think it's nicely readable.  :)
> 
> Fixes: 2f69a82acf6f ("Bluetooth: Use voice setting in deferred SCO connection request")
> Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
> ---
> net/bluetooth/sco.c | 1 +
> 1 file changed, 1 insertion(+)

I actually prefer a separate default statement since otherwise I get confused. Your patch with that minor change has been applied to bluetooth-next tree.

Regards

Marcel