TEP_V1_SM_ValidateSecurityMode has 2 places where the DOFSecurityModeCCM_GetStrength function is used, but the expected parameter for the function being called is a CCM algorithm.  The location of where the function is called is in an error path, so it will not cause a failure to connect, but may cause an incorrect TEP reject to be sent.

This was found by reviewing warnings from the clang compiler.