Bluetooth: Add blacklist support for incoming connections

In some circumstances it could be desirable to reject incoming connections on the baseband level. This patch adds this feature through two new ioctl's: HCIBLOCKADDR and HCIUNBLOCKADDR. Both take a simple Bluetooth address as a parameter. BDADDR_ANY can be used with HCIUNBLOCKADDR to remove all devices from the blacklist. Signed-off-by: Johan Hedberg <johan.hedberg@nokia.com> Signed-off-by: Marcel Holtmann <marcel@holtmann.org>
author: Johan Hedberg <johan.hedberg@nokia.com> 2010-05-18 07:20:32 -0400
committer: Marcel Holtmann <marcel@holtmann.org> 2010-07-21 13:39:05 -0400
commit: f03585689fdff4ae256edd45a35bc2dd83d3684a (patch)
tree: be1516aa354aa742f2d5b69a91de0561febaffc4
parent: 95ffa97827371ede501615d9bd048eb5b49e8fe1 (diff)
6 files changed, 108 insertions, 1 deletions
diff --git a/fs/compat_ioctl.c b/fs/compat_ioctl.c
index 641640dc7ae5..18638969a659 100644
--- a/fs/compat_ioctl.c
+++ b/fs/compat_ioctl.c
@@ -1328,6 +1328,8 @@ COMPATIBLE_IOCTL(HCISETLINKPOL)
 COMPATIBLE_IOCTL(HCISETLINKMODE)
 COMPATIBLE_IOCTL(HCISETACLMTU)
 COMPATIBLE_IOCTL(HCISETSCOMTU)
+COMPATIBLE_IOCTL(HCIBLOCKADDR)
+COMPATIBLE_IOCTL(HCIUNBLOCKADDR)
 COMPATIBLE_IOCTL(HCIINQUIRY)
 COMPATIBLE_IOCTL(HCIUARTSETPROTO)
 COMPATIBLE_IOCTL(HCIUARTGETPROTO)
diff --git a/include/net/bluetooth/hci.h b/include/net/bluetooth/hci.h
index fc0c502d9fd1..ca2518e0574e 100644
--- a/include/net/bluetooth/hci.h
+++ b/include/net/bluetooth/hci.h
@@ -100,6 +100,9 @@ enum {
 #define HCISETACLMTU    _IOW('H', 227, int)
 #define HCISETSCOMTU    _IOW('H', 228, int)
+#define HCIBLOCKADDR    _IOW('H', 230, int)
+#define HCIUNBLOCKADDR  _IOW('H', 231, int)
 #define HCIINQUIRY      _IOR('H', 240, int)
 /* HCI timeouts */
diff --git a/include/net/bluetooth/hci_core.h b/include/net/bluetooth/hci_core.h
index e42f6ed5421c..ffc637748b87 100644
--- a/include/net/bluetooth/hci_core.h
+++ b/include/net/bluetooth/hci_core.h
@@ -62,6 +62,11 @@ struct hci_conn_hash {
        unsigned int     sco_num;
 };
+struct bdaddr_list {
+        struct list_head list;
+        bdaddr_t bdaddr;
+};
 struct hci_dev {
        struct list_head list;
        spinlock_t      lock;
@@ -127,6 +132,7 @@ struct hci_dev {
        struct inquiry_cache    inq_cache;
        struct hci_conn_hash    conn_hash;
+        struct bdaddr_list      blacklist;
        struct hci_dev_stats    stat;
@@ -424,6 +430,9 @@ int hci_get_conn_info(struct hci_dev *hdev, void __user *arg);
 int hci_get_auth_info(struct hci_dev *hdev, void __user *arg);
 int hci_inquiry(void __user *arg);
+struct bdaddr_list *hci_blacklist_lookup(struct hci_dev *hdev, bdaddr_t *bdaddr);
+int hci_blacklist_clear(struct hci_dev *hdev);
 void hci_event_packet(struct hci_dev *hdev, struct sk_buff *skb);
 int hci_recv_frame(struct sk_buff *skb);
diff --git a/net/bluetooth/hci_core.c b/net/bluetooth/hci_core.c
index 2f768de87011..aeb2982310a0 100644
--- a/net/bluetooth/hci_core.c
+++ b/net/bluetooth/hci_core.c
@@ -562,6 +562,7 @@ static int hci_dev_do_close(struct hci_dev *hdev)
        hci_dev_lock_bh(hdev);
        inquiry_cache_flush(hdev);
        hci_conn_hash_flush(hdev);
+        hci_blacklist_clear(hdev);
        hci_dev_unlock_bh(hdev);
        hci_notify(hdev, HCI_DEV_DOWN);
@@ -923,6 +924,8 @@ int hci_register_dev(struct hci_dev *hdev)
        hci_conn_hash_init(hdev);
+        INIT_LIST_HEAD(&hdev->blacklist.list);
        memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));
        atomic_set(&hdev->promisc, 0);
diff --git a/net/bluetooth/hci_event.c b/net/bluetooth/hci_event.c
index 786b5de0bac4..43feeef3c498 100644
--- a/net/bluetooth/hci_event.c
+++ b/net/bluetooth/hci_event.c
@@ -952,7 +952,7 @@ static inline void hci_conn_request_evt(struct hci_dev *hdev, struct sk_buff *sk
        mask |= hci_proto_connect_ind(hdev, &ev->bdaddr, ev->link_type);
-        if (mask & HCI_LM_ACCEPT) {
+        if ((mask & HCI_LM_ACCEPT) && !hci_blacklist_lookup(hdev, &ev->bdaddr)) {
                /* Connection accepted */
                struct inquiry_entry *ie;
                struct hci_conn *conn;
diff --git a/net/bluetooth/hci_sock.c b/net/bluetooth/hci_sock.c
index 38f08f6b86f6..4f170a595934 100644
--- a/net/bluetooth/hci_sock.c
+++ b/net/bluetooth/hci_sock.c
@@ -165,6 +165,86 @@ static int hci_sock_release(struct socket *sock)
        return 0;
 }
+struct bdaddr_list *hci_blacklist_lookup(struct hci_dev *hdev, bdaddr_t *bdaddr)
+{
+        struct list_head *p;
+        struct bdaddr_list *blacklist = &hdev->blacklist;
+        list_for_each(p, &blacklist->list) {
+                struct bdaddr_list *b;
+                b = list_entry(p, struct bdaddr_list, list);
+                if (bacmp(bdaddr, &b->bdaddr) == 0)
+                        return b;
+        }
+        return NULL;
+}
+static int hci_blacklist_add(struct hci_dev *hdev, void __user *arg)
+{
+        bdaddr_t bdaddr;
+        struct bdaddr_list *entry;
+        if (copy_from_user(&bdaddr, arg, sizeof(bdaddr)))
+                return -EFAULT;
+        if (bacmp(&bdaddr, BDADDR_ANY) == 0)
+                return -EBADF;
+        if (hci_blacklist_lookup(hdev, &bdaddr))
+                return -EEXIST;
+        entry = kzalloc(sizeof(struct bdaddr_list), GFP_KERNEL);
+        if (!entry)
+                return -ENOMEM;
+        bacpy(&entry->bdaddr, &bdaddr);
+        list_add(&entry->list, &hdev->blacklist.list);
+        return 0;
+}
+int hci_blacklist_clear(struct hci_dev *hdev)
+{
+        struct list_head *p, *n;
+        struct bdaddr_list *blacklist = &hdev->blacklist;
+        list_for_each_safe(p, n, &blacklist->list) {
+                struct bdaddr_list *b;
+                b = list_entry(p, struct bdaddr_list, list);
+                list_del(p);
+                kfree(b);
+        }
+        return 0;
+}
+static int hci_blacklist_del(struct hci_dev *hdev, void __user *arg)
+{
+        bdaddr_t bdaddr;
+        struct bdaddr_list *entry;
+        if (copy_from_user(&bdaddr, arg, sizeof(bdaddr)))
+                return -EFAULT;
+        if (bacmp(&bdaddr, BDADDR_ANY) == 0)
+                return hci_blacklist_clear(hdev);
+        entry = hci_blacklist_lookup(hdev, &bdaddr);
+        if (!entry)
+                return -ENOENT;
+        list_del(&entry->list);
+        kfree(entry);
+        return 0;
+}
 /* Ioctls that require bound socket */
 static inline int hci_sock_bound_ioctl(struct sock *sk, unsigned int cmd, unsigned long arg)
 {
@@ -194,6 +274,16 @@ static inline int hci_sock_bound_ioctl(struct sock *sk, unsigned int cmd, unsign
        case HCIGETAUTHINFO:
                return hci_get_auth_info(hdev, (void __user *) arg);
+        case HCIBLOCKADDR:
+                if (!capable(CAP_NET_ADMIN))
+                        return -EACCES;
+                return hci_blacklist_add(hdev, (void __user *) arg);
+        case HCIUNBLOCKADDR:
+                if (!capable(CAP_NET_ADMIN))
+                        return -EACCES;
+                return hci_blacklist_del(hdev, (void __user *) arg);
        default:
                if (hdev->ioctl)
                        return hdev->ioctl(hdev, cmd, arg);
author	Johan Hedberg <johan.hedberg@nokia.com>	2010-05-18 07:20:32 -0400
committer	Marcel Holtmann <marcel@holtmann.org>	2010-07-21 13:39:05 -0400
commit	f03585689fdff4ae256edd45a35bc2dd83d3684a (patch)
tree	be1516aa354aa742f2d5b69a91de0561febaffc4
parent	95ffa97827371ede501615d9bd048eb5b49e8fe1 (diff)

diff --git a/fs/compat_ioctl.c b/fs/compat_ioctl.c index 641640dc7ae5..18638969a659 100644 --- a/fs/compat_ioctl.c +++ b/fs/compat_ioctl.c
@@ -1328,6 +1328,8 @@ COMPATIBLE_IOCTL(HCISETLINKPOL)
1328	COMPATIBLE_IOCTL(HCISETLINKMODE)	1328	COMPATIBLE_IOCTL(HCISETLINKMODE)
1329	COMPATIBLE_IOCTL(HCISETACLMTU)	1329	COMPATIBLE_IOCTL(HCISETACLMTU)
1330	COMPATIBLE_IOCTL(HCISETSCOMTU)	1330	COMPATIBLE_IOCTL(HCISETSCOMTU)
		1331	COMPATIBLE_IOCTL(HCIBLOCKADDR)
		1332	COMPATIBLE_IOCTL(HCIUNBLOCKADDR)
1331	COMPATIBLE_IOCTL(HCIINQUIRY)	1333	COMPATIBLE_IOCTL(HCIINQUIRY)
1332	COMPATIBLE_IOCTL(HCIUARTSETPROTO)	1334	COMPATIBLE_IOCTL(HCIUARTSETPROTO)
1333	COMPATIBLE_IOCTL(HCIUARTGETPROTO)	1335	COMPATIBLE_IOCTL(HCIUARTGETPROTO)


diff --git a/include/net/bluetooth/hci.h b/include/net/bluetooth/hci.h index fc0c502d9fd1..ca2518e0574e 100644 --- a/include/net/bluetooth/hci.h +++ b/include/net/bluetooth/hci.h
@@ -100,6 +100,9 @@ enum {
100	#define HCISETACLMTU _IOW('H', 227, int)	100	#define HCISETACLMTU _IOW('H', 227, int)
101	#define HCISETSCOMTU _IOW('H', 228, int)	101	#define HCISETSCOMTU _IOW('H', 228, int)
102		102
		103	#define HCIBLOCKADDR _IOW('H', 230, int)
		104	#define HCIUNBLOCKADDR _IOW('H', 231, int)
		105
103	#define HCIINQUIRY _IOR('H', 240, int)	106	#define HCIINQUIRY _IOR('H', 240, int)
104		107
105	/* HCI timeouts */	108	/* HCI timeouts */


diff --git a/include/net/bluetooth/hci_core.h b/include/net/bluetooth/hci_core.h index e42f6ed5421c..ffc637748b87 100644 --- a/include/net/bluetooth/hci_core.h +++ b/include/net/bluetooth/hci_core.h
@@ -62,6 +62,11 @@ struct hci_conn_hash {
62	unsigned int sco_num;	62	unsigned int sco_num;
63	};	63	};
64		64
		65	struct bdaddr_list {
		66	struct list_head list;
		67	bdaddr_t bdaddr;
		68	};
		69
65	struct hci_dev {	70	struct hci_dev {
66	struct list_head list;	71	struct list_head list;
67	spinlock_t lock;	72	spinlock_t lock;
@@ -127,6 +132,7 @@ struct hci_dev {
127		132
128	struct inquiry_cache inq_cache;	133	struct inquiry_cache inq_cache;
129	struct hci_conn_hash conn_hash;	134	struct hci_conn_hash conn_hash;
		135	struct bdaddr_list blacklist;
130		136
131	struct hci_dev_stats stat;	137	struct hci_dev_stats stat;
132		138
@@ -424,6 +430,9 @@ int hci_get_conn_info(struct hci_dev hdev, void __user arg);
424	int hci_get_auth_info(struct hci_dev hdev, void __user arg);	430	int hci_get_auth_info(struct hci_dev hdev, void __user arg);
425	int hci_inquiry(void __user *arg);	431	int hci_inquiry(void __user *arg);
426		432
		433	struct bdaddr_list hci_blacklist_lookup(struct hci_dev hdev, bdaddr_t *bdaddr);
		434	int hci_blacklist_clear(struct hci_dev *hdev);
		435
427	void hci_event_packet(struct hci_dev hdev, struct sk_buff skb);	436	void hci_event_packet(struct hci_dev hdev, struct sk_buff skb);
428		437
429	int hci_recv_frame(struct sk_buff *skb);	438	int hci_recv_frame(struct sk_buff *skb);


diff --git a/net/bluetooth/hci_core.c b/net/bluetooth/hci_core.c index 2f768de87011..aeb2982310a0 100644 --- a/net/bluetooth/hci_core.c +++ b/net/bluetooth/hci_core.c
@@ -562,6 +562,7 @@ static int hci_dev_do_close(struct hci_dev *hdev)
562	hci_dev_lock_bh(hdev);	562	hci_dev_lock_bh(hdev);
563	inquiry_cache_flush(hdev);	563	inquiry_cache_flush(hdev);
564	hci_conn_hash_flush(hdev);	564	hci_conn_hash_flush(hdev);
		565	hci_blacklist_clear(hdev);
565	hci_dev_unlock_bh(hdev);	566	hci_dev_unlock_bh(hdev);
566		567
567	hci_notify(hdev, HCI_DEV_DOWN);	568	hci_notify(hdev, HCI_DEV_DOWN);
@@ -923,6 +924,8 @@ int hci_register_dev(struct hci_dev *hdev)
923		924
924	hci_conn_hash_init(hdev);	925	hci_conn_hash_init(hdev);
925		926
		927	INIT_LIST_HEAD(&hdev->blacklist.list);
		928
926	memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));	929	memset(&hdev->stat, 0, sizeof(struct hci_dev_stats));
927		930
928	atomic_set(&hdev->promisc, 0);	931	atomic_set(&hdev->promisc, 0);


diff --git a/net/bluetooth/hci_event.c b/net/bluetooth/hci_event.c index 786b5de0bac4..43feeef3c498 100644 --- a/net/bluetooth/hci_event.c +++ b/net/bluetooth/hci_event.c
@@ -952,7 +952,7 @@ static inline void hci_conn_request_evt(struct hci_dev hdev, struct sk_buff sk
952		952
953	mask \|= hci_proto_connect_ind(hdev, &ev->bdaddr, ev->link_type);	953	mask \|= hci_proto_connect_ind(hdev, &ev->bdaddr, ev->link_type);
954		954
955	if (mask & HCI_LM_ACCEPT) {	955	if ((mask & HCI_LM_ACCEPT) && !hci_blacklist_lookup(hdev, &ev->bdaddr)) {
956	/* Connection accepted */	956	/* Connection accepted */
957	struct inquiry_entry *ie;	957	struct inquiry_entry *ie;
958	struct hci_conn *conn;	958	struct hci_conn *conn;


diff --git a/net/bluetooth/hci_sock.c b/net/bluetooth/hci_sock.c index 38f08f6b86f6..4f170a595934 100644 --- a/net/bluetooth/hci_sock.c +++ b/net/bluetooth/hci_sock.c
@@ -165,6 +165,86 @@ static int hci_sock_release(struct socket *sock)
165	return 0;	165	return 0;
166	}	166	}
167		167
		168	struct bdaddr_list hci_blacklist_lookup(struct hci_dev hdev, bdaddr_t *bdaddr)
		169	{
		170	struct list_head *p;
		171	struct bdaddr_list *blacklist = &hdev->blacklist;
		172
		173	list_for_each(p, &blacklist->list) {
		174	struct bdaddr_list *b;
		175
		176	b = list_entry(p, struct bdaddr_list, list);
		177
		178	if (bacmp(bdaddr, &b->bdaddr) == 0)
		179	return b;
		180	}
		181
		182	return NULL;
		183	}
		184
		185	static int hci_blacklist_add(struct hci_dev hdev, void __user arg)
		186	{
		187	bdaddr_t bdaddr;
		188	struct bdaddr_list *entry;
		189
		190	if (copy_from_user(&bdaddr, arg, sizeof(bdaddr)))
		191	return -EFAULT;
		192
		193	if (bacmp(&bdaddr, BDADDR_ANY) == 0)
		194	return -EBADF;
		195
		196	if (hci_blacklist_lookup(hdev, &bdaddr))
		197	return -EEXIST;
		198
		199	entry = kzalloc(sizeof(struct bdaddr_list), GFP_KERNEL);
		200	if (!entry)
		201	return -ENOMEM;
		202
		203	bacpy(&entry->bdaddr, &bdaddr);
		204
		205	list_add(&entry->list, &hdev->blacklist.list);
		206
		207	return 0;
		208	}
		209
		210	int hci_blacklist_clear(struct hci_dev *hdev)
		211	{
		212	struct list_head p, n;
		213	struct bdaddr_list *blacklist = &hdev->blacklist;
		214
		215	list_for_each_safe(p, n, &blacklist->list) {
		216	struct bdaddr_list *b;
		217
		218	b = list_entry(p, struct bdaddr_list, list);
		219
		220	list_del(p);
		221	kfree(b);
		222	}
		223
		224	return 0;
		225	}
		226
		227	static int hci_blacklist_del(struct hci_dev hdev, void __user arg)
		228	{
		229	bdaddr_t bdaddr;
		230	struct bdaddr_list *entry;
		231
		232	if (copy_from_user(&bdaddr, arg, sizeof(bdaddr)))
		233	return -EFAULT;
		234
		235	if (bacmp(&bdaddr, BDADDR_ANY) == 0)
		236	return hci_blacklist_clear(hdev);
		237
		238	entry = hci_blacklist_lookup(hdev, &bdaddr);
		239	if (!entry)
		240	return -ENOENT;
		241
		242	list_del(&entry->list);
		243	kfree(entry);
		244
		245	return 0;
		246	}
		247
168	/* Ioctls that require bound socket */	248	/* Ioctls that require bound socket */
169	static inline int hci_sock_bound_ioctl(struct sock *sk, unsigned int cmd, unsigned long arg)	249	static inline int hci_sock_bound_ioctl(struct sock *sk, unsigned int cmd, unsigned long arg)
170	{	250	{
@@ -194,6 +274,16 @@ static inline int hci_sock_bound_ioctl(struct sock *sk, unsigned int cmd, unsign
194	case HCIGETAUTHINFO:	274	case HCIGETAUTHINFO:
195	return hci_get_auth_info(hdev, (void __user *) arg);	275	return hci_get_auth_info(hdev, (void __user *) arg);
196		276
		277	case HCIBLOCKADDR:
		278	if (!capable(CAP_NET_ADMIN))
		279	return -EACCES;
		280	return hci_blacklist_add(hdev, (void __user *) arg);
		281
		282	case HCIUNBLOCKADDR:
		283	if (!capable(CAP_NET_ADMIN))
		284	return -EACCES;
		285	return hci_blacklist_del(hdev, (void __user *) arg);
		286
197	default:	287	default:
198	if (hdev->ioctl)	288	if (hdev->ioctl)
199	return hdev->ioctl(hdev, cmd, arg);	289	return hdev->ioctl(hdev, cmd, arg);