dm/connector: Only process connector packages from privileged processes
authorPhilipp Reisner <philipp.reisner@linbit.com>
Fri, 2 Oct 2009 02:40:08 +0000 (02:40 +0000)
committerDavid S. Miller <davem@davemloft.net>
Fri, 2 Oct 2009 17:54:10 +0000 (10:54 -0700)
Signed-off-by: Philipp Reisner <philipp.reisner@linbit.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
drivers/md/dm-log-userspace-transfer.c

index 1327e1a684df37f1fe7e02689260d8f4b029af80..54abf9e303b7d66c4f41de1ef1ff17197572d292 100644 (file)
@@ -133,6 +133,9 @@ static void cn_ulog_callback(struct cn_msg *msg, struct netlink_skb_parms *nsp)
 {
        struct dm_ulog_request *tfr = (struct dm_ulog_request *)(msg + 1);
 
 {
        struct dm_ulog_request *tfr = (struct dm_ulog_request *)(msg + 1);
 
+       if (!cap_raised(nsp->eff_cap, CAP_SYS_ADMIN))
+               return;
+
        spin_lock(&receiving_list_lock);
        if (msg->len == 0)
                fill_pkg(msg, NULL);
        spin_lock(&receiving_list_lock);
        if (msg->len == 0)
                fill_pkg(msg, NULL);