Bluetooth: Restrict access to management interface

The management interface on the HCI control channel should be restricted to applications with CAP_NET_ADMIN permission. Signed-off-by: Marcel Holtmann <marcel@holtmann.org> Signed-off-by: Johan Hedberg <johan.hedberg@intel.com>

Bluetooth: Restrict access to management interface
The management interface on the HCI control channel should be restricted to applications with CAP_NET_ADMIN permission. Signed-off-by: Marcel Holtmann <marcel@holtmann.org> Signed-off-by: Johan Hedberg <johan.hedberg@intel.com>
801f13bd · Marcel Holtmann · Johan Hedberg · cd82e61c · 801f13bd
Commit 801f13bd authored Feb 20, 2012 by Marcel Holtmann Committed by Johan Hedberg Feb 20, 2012
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

net/bluetooth/hci_sock.c net/bluetooth/hci_sock.c +5 -0

No files found.
--- a/net/bluetooth/hci_sock.c
+++ b/net/bluetooth/hci_sock.c
@@ -656,6 +656,11 @@ static int hci_sock_bind(struct socket *sock, struct sockaddr *addr, int addr_le
 			goto done;
 		}
+		if (!capable(CAP_NET_ADMIN)) {
+			err = -EPERM;
+			goto done;
+		}
 		set_bit(HCI_PI_MGMT_INIT, &hci_pi(sk)->flags);
 		break;