wan: Missing capability checks in sbni_ioctl() (f2455eb1) · Commits · e / devices / android_kernel_samsung_universal8895

drivers/net/wan/sbni.c

+4 −4

Original line number	Original line	Diff line number	Diff line
	@@ -1317,7 +1317,7 @@ sbni_ioctl( struct net_device dev, struct ifreq ifr, int cmd )
	break;		break;

	case SIOCDEVRESINSTATS :		case SIOCDEVRESINSTATS :
	if( current->euid != 0 ) /* root only */		if (!capable(CAP_NET_ADMIN))
	return -EPERM;		return -EPERM;
	memset( &nl->in_stats, 0, sizeof(struct sbni_in_stats) );		memset( &nl->in_stats, 0, sizeof(struct sbni_in_stats) );
	break;		break;
	@@ -1334,7 +1334,7 @@ sbni_ioctl( struct net_device dev, struct ifreq ifr, int cmd )
	break;		break;

	case SIOCDEVSHWSTATE :		case SIOCDEVSHWSTATE :
	if( current->euid != 0 ) /* root only */		if (!capable(CAP_NET_ADMIN))
	return -EPERM;		return -EPERM;

	spin_lock( &nl->lock );		spin_lock( &nl->lock );
	@@ -1355,7 +1355,7 @@ sbni_ioctl( struct net_device dev, struct ifreq ifr, int cmd )
	#ifdef CONFIG_SBNI_MULTILINE		#ifdef CONFIG_SBNI_MULTILINE

	case SIOCDEVENSLAVE :		case SIOCDEVENSLAVE :
	if( current->euid != 0 ) /* root only */		if (!capable(CAP_NET_ADMIN))
	return -EPERM;		return -EPERM;

	if (copy_from_user( slave_name, ifr->ifr_data, sizeof slave_name ))		if (copy_from_user( slave_name, ifr->ifr_data, sizeof slave_name ))
	@@ -1370,7 +1370,7 @@ sbni_ioctl( struct net_device dev, struct ifreq ifr, int cmd )
	return enslave( dev, slave_dev );		return enslave( dev, slave_dev );

	case SIOCDEVEMANSIPATE :		case SIOCDEVEMANSIPATE :
	if( current->euid != 0 ) /* root only */		if (!capable(CAP_NET_ADMIN))
	return -EPERM;		return -EPERM;

	return emancipate( dev );		return emancipate( dev );