[SCTP] Do not allow unprivileged programs initiating new associations on privileged ports. Signed-off-by: Ivan Skytte Jorgensen <isj-sctp@i1.dk> Signed-off-by: Sridhar Samudrala <sri@us.ibm.com>

commit: 64a0c1c81e300f0f56f26604c81040784e3717f0 [log] [tgz]
author: Ivan Skytte Jorgensen <isj-sctp@i1.dk> Fri Oct 28 15:39:02 2005 -0700
committer: Sridhar Samudrala <sri@us.ibm.com> Fri Oct 28 15:39:02 2005 -0700
tree: 845863e5b3fc06a9de54104f32e28bbe914ee44a
parent: 96a339985d4c6874d32909e8f1903e6e6c141399 [diff]
diff --git a/net/sctp/socket.c b/net/sctp/socket.c
index 97b556c..b529af5 100644
--- a/net/sctp/socket.c
+++ b/net/sctp/socket.c

@@ -1010,6 +1010,19 @@
 					err = -EAGAIN;
 					goto out_free;
 				}
+			} else {
+				/*
+				 * If an unprivileged user inherits a 1-many 
+				 * style socket with open associations on a 
+				 * privileged port, it MAY be permitted to 
+				 * accept new associations, but it SHOULD NOT 
+				 * be permitted to open new associations.
+				 */
+				if (ep->base.bind_addr.port < PROT_SOCK &&
+				    !capable(CAP_NET_BIND_SERVICE)) {
+					err = -EACCES;
+					goto out_free;
+				}
 			}
 
 			scope = sctp_scope(&to);
@@ -1515,6 +1528,19 @@
 				err = -EAGAIN;
 				goto out_unlock;
 			}
+		} else {
+			/*
+			 * If an unprivileged user inherits a one-to-many
+			 * style socket with open associations on a privileged
+			 * port, it MAY be permitted to accept new associations,
+			 * but it SHOULD NOT be permitted to open new
+			 * associations.
+			 */
+			if (ep->base.bind_addr.port < PROT_SOCK &&
+			    !capable(CAP_NET_BIND_SERVICE)) {
+				err = -EACCES;
+				goto out_unlock;
+			}
 		}
 
 		scope = sctp_scope(&to);
commit	64a0c1c81e300f0f56f26604c81040784e3717f0	[log] [tgz]
author	Ivan Skytte Jorgensen <isj-sctp@i1.dk>	Fri Oct 28 15:39:02 2005 -0700
committer	Sridhar Samudrala <sri@us.ibm.com>	Fri Oct 28 15:39:02 2005 -0700
tree	845863e5b3fc06a9de54104f32e28bbe914ee44a
parent	96a339985d4c6874d32909e8f1903e6e6c141399 [diff]