Bluetooth: Restrict access to management interface

The management interface on the HCI control channel should be restricted to applications with CAP_NET_ADMIN permission. Signed-off-by: N Marcel Holtmann <marcel@holtmann.org> Signed-off-by: N Johan Hedberg <johan.hedberg@intel.com>

Bluetooth: Restrict access to management interface
The management interface on the HCI control channel should be restricted to applications with CAP_NET_ADMIN permission. Signed-off-by: N Marcel Holtmann <marcel@holtmann.org> Signed-off-by: N Johan Hedberg <johan.hedberg@intel.com>
801f13bd · Marcel Holtmann · Johan Hedberg · cd82e61c · 801f13bd
隐藏空白更改
内联并排

Showing with 5 addition and 0 deletion

net/bluetooth/hci_sock.c net/bluetooth/hci_sock.c +5 -0

未找到文件。
--- a/net/bluetooth/hci_sock.c
+++ b/net/bluetooth/hci_sock.c
@@ -656,6 +656,11 @@ static int hci_sock_bind(struct socket *sock, struct sockaddr *addr, int addr_le
 			goto done;
 		}

+		if (!capable(CAP_NET_ADMIN)) {
+			err = -EPERM;
+			goto done;
+		}
+
 		set_bit(HCI_PI_MGMT_INIT, &hci_pi(sk)->flags);
 		break;