Use privilege PRIV_NET_ADDIFADDR rather than suser() to authorize

adding a netatalk address to an interface.
svn path=/head/; revision=166833
2024-09-20 08:44:33 +00:00 · 2007-02-19 22:40:02 +00:00 · 2007-02-19 22:40:02 +00:00 · 19913888ad · 2020-12-20 02:59:44 +00:00
parent 95b091d2f2
commit 19913888ad
1 changed files with 2 additions and 1 deletions
--- a/sys/netatalk/at_control.c
+++ b/sys/netatalk/at_control.c
@ -31,6 +31,7 @@
 #include <sys/sockio.h>
 #include <sys/malloc.h>
 #include <sys/kernel.h>
+#include <sys/priv.h>
 #include <sys/socket.h>
 #include <net/if.h>
 #include <net/route.h>
@ -121,7 +122,7 @@ at_control(struct socket *so, u_long cmd, caddr_t data, struct ifnet *ifp,
 		 *
 		 * XXXRW: Layering?
 		 */
-		if (suser(td))
+		if (priv_check(td, PRIV_NET_ADDIFADDR))
 			return (EPERM);

 		sat = satosat(&ifr->ifr_addr);