[PATCH] wext: Fix IWENCODEEXT security permissions Check the permissions when user-space try to read the encryption parameters via SIOCGIWENCODEEXT. This is trivial and probably should go in 2.6.17... Bug was found by Brian Eaton <eaton.lists@gmail.com>, thanks ! Signed-off-by: Jean Tourrilhes <jt@hpl.hp.com> Signed-off-by: John W. Linville <linville@tuxdriver.com>

commit: a417016d1a07e6df0621dbb2926da82642eca823 [log] [tgz]
author: Jean Tourrilhes <jt@hpl.hp.com> Tue Apr 04 15:53:43 2006 -0700
committer: John W. Linville <linville@tuxdriver.com> Wed Apr 19 17:25:38 2006 -0400
tree: 96384d34c27abae25f37b5b15b03e327b4a1a796
parent: 3a1af6ffe4941497071125d3a8bb3e1feee45df1 [diff] [blame]
diff --git a/net/core/dev.c b/net/core/dev.c
index 83231a2..3bad1af 100644
--- a/net/core/dev.c
+++ b/net/core/dev.c

@@ -2698,7 +2698,8 @@
 				/* If command is `set a parameter', or
 				 * `get the encoding parameters', check if
 				 * the user has the right to do it */
-				if (IW_IS_SET(cmd) || cmd == SIOCGIWENCODE) {
+				if (IW_IS_SET(cmd) || cmd == SIOCGIWENCODE
+				    || cmd == SIOCGIWENCODEEXT) {
 					if (!capable(CAP_NET_ADMIN))
 						return -EPERM;
 				}
commit	a417016d1a07e6df0621dbb2926da82642eca823	[log] [tgz]
author	Jean Tourrilhes <jt@hpl.hp.com>	Tue Apr 04 15:53:43 2006 -0700
committer	John W. Linville <linville@tuxdriver.com>	Wed Apr 19 17:25:38 2006 -0400
tree	96384d34c27abae25f37b5b15b03e327b4a1a796
parent	3a1af6ffe4941497071125d3a8bb3e1feee45df1 [diff] [blame]