From eab65c5b618e71669ea5f6effd1c4e0f6722a0e0 Mon Sep 17 00:00:00 2001
From: orbisai0security <mediratta01.pally@gmail.com>
Date: Thu, 7 May 2026 07:25:39 +0000
Subject: [PATCH] fix: V-018 security vulnerability

Automated security fix generated by Orbis Security AI
---
 lsdriver/physical.h | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/lsdriver/physical.h b/lsdriver/physical.h
index c9354ee..8ed8706 100644
--- a/lsdriver/physical.h
+++ b/lsdriver/physical.h
@@ -238,6 +238,9 @@ static inline int pte_read_physical(phys_addr_t paddr, void *buffer, size_t size
 // 写入
 static inline int pte_write_physical(phys_addr_t paddr, const void *buffer, size_t size)
 {
+    if (!capable(CAP_SYS_RAWIO))
+        return -EPERM;
+
     void *mapped = pte_map_page(paddr, size, (void *)buffer);
     if (IS_ERR(mapped))
     {