diff options
| author | Theo Buehler <tb@cvs.openbsd.org> | 2018-05-31 16:34:41 +0000 |
|---|---|---|
| committer | Theo Buehler <tb@cvs.openbsd.org> | 2018-05-31 16:34:41 +0000 |
| commit | c534dbd9b8dd9698a1f6fe7fdaffb59ad4125c80 (patch) | |
| tree | 292cc8dcd1e2d356a91eda28c85b5c1f7d8c201b /sys/netinet/in.c | |
| parent | 75c4e2bb31ff92175dee098ff0f9bb39f8112f8f (diff) | |
Re-commit the correct half of revision 1.154:
Some more code shuffling to get rid of one switch in in_ioctl().
This way there is one case for each of SIOCSIFBRDADDR, SIOCSIFDSTADDR
and SIOCSIFNETMASK, starting with a privilege check before any global
data is modified.
ok visa
Diffstat (limited to 'sys/netinet/in.c')
| -rw-r--r-- | sys/netinet/in.c | 50 |
1 files changed, 27 insertions, 23 deletions
diff --git a/sys/netinet/in.c b/sys/netinet/in.c index f6a8a767657..e6146d47619 100644 --- a/sys/netinet/in.c +++ b/sys/netinet/in.c @@ -1,4 +1,4 @@ -/* $OpenBSD: in.c,v 1.155 2018/05/31 11:49:26 tb Exp $ */ +/* $OpenBSD: in.c,v 1.156 2018/05/31 16:34:40 tb Exp $ */ /* $NetBSD: in.c,v 1.26 1996/02/13 23:41:39 christos Exp $ */ /* @@ -248,33 +248,28 @@ in_ioctl(u_long cmd, caddr_t data, struct ifnet *ifp, int privileged) } } + if (ia && satosin(&ifr->ifr_addr)->sin_addr.s_addr) { + for (; ifa != NULL; ifa = TAILQ_NEXT(ifa, ifa_list)) { + if ((ifa->ifa_addr->sa_family == AF_INET) && + ifatoia(ifa)->ia_addr.sin_addr.s_addr == + satosin(&ifr->ifr_addr)->sin_addr.s_addr) { + ia = ifatoia(ifa); + break; + } + } + } + if (ia == NULL) { + NET_UNLOCK(); + return (EADDRNOTAVAIL); + } + switch (cmd) { - case SIOCSIFNETMASK: case SIOCSIFDSTADDR: - case SIOCSIFBRDADDR: if (!privileged) { error = EPERM; - goto err; + break; } - if (ia && satosin(&ifr->ifr_addr)->sin_addr.s_addr) { - for (; ifa != NULL; ifa = TAILQ_NEXT(ifa, ifa_list)) { - if ((ifa->ifa_addr->sa_family == AF_INET) && - ifatoia(ifa)->ia_addr.sin_addr.s_addr == - satosin(&ifr->ifr_addr)->sin_addr.s_addr) { - ia = ifatoia(ifa); - break; - } - } - } - if (ia == NULL) { - error = EADDRNOTAVAIL; - goto err; - } - break; - } - switch (cmd) { - case SIOCSIFDSTADDR: if ((ifp->if_flags & IFF_POINTOPOINT) == 0) { error = EINVAL; break; @@ -291,6 +286,11 @@ in_ioctl(u_long cmd, caddr_t data, struct ifnet *ifp, int privileged) break; case SIOCSIFBRDADDR: + if (!privileged) { + error = EPERM; + break; + } + if ((ifp->if_flags & IFF_BROADCAST) == 0) { error = EINVAL; break; @@ -299,12 +299,16 @@ in_ioctl(u_long cmd, caddr_t data, struct ifnet *ifp, int privileged) break; case SIOCSIFNETMASK: + if (!privileged) { + error = EPERM; + break; + } + ia->ia_netmask = ia->ia_sockmask.sin_addr.s_addr = ifra->ifra_addr.sin_addr.s_addr; break; } -err: NET_UNLOCK(); return (error); } |