d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Use privilege PRIV_NET_ADDIFADDR rather than suser() to authorize

Browse Source 
adding a netatalk address to an interface.
This commit is contained in:
rwatson 2007-02-19 22:40:02 +00:00
parent d298e8c0c2
commit f191f06add
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
sys/netatalk/at_control.c
View File

@ -31,6 +31,7 @@
#include <sys/sockio.h>
#include <sys/malloc.h>
#include <sys/kernel.h>
#include <sys/priv.h>
#include <sys/socket.h>
#include <net/if.h>
#include <net/route.h>
@ -121,7 +122,7 @@ at_control(struct socket *so, u_long cmd, caddr_t data, struct ifnet *ifp,
*
* XXXRW: Layering?
*/
if (suser(td))
if (priv_check(td, PRIV_NET_ADDIFADDR))
return (EPERM);
sat = satosat(&ifr->ifr_addr);