summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--ripngd/ripngd.c18
1 files changed, 14 insertions, 4 deletions
diff --git a/ripngd/ripngd.c b/ripngd/ripngd.c
index 94a5efbc..e203dc40 100644
--- a/ripngd/ripngd.c
+++ b/ripngd/ripngd.c
@@ -35,6 +35,7 @@
#include "plist.h"
#include "routemap.h"
#include "if_rmap.h"
+#include "privs.h"
#include "ripngd/ripngd.h"
#include "ripngd/ripng_route.h"
@@ -52,6 +53,8 @@ enum
ripng_changed_route,
};
+extern struct zebra_privs_t ripngd_privs;
+
/* Prototypes. */
void
ripng_output_process (struct interface *, struct sockaddr_in6 *, int);
@@ -153,12 +156,19 @@ ripng_make_socket (void)
#endif /* SIN6_LEN */
ripaddr.sin6_port = htons (RIPNG_PORT_DEFAULT);
+ if (ripngd_privs.change (ZPRIVS_RAISE))
+ zlog_err ("ripng_make_socket: could not raise privs");
+
ret = bind (sock, (struct sockaddr *) &ripaddr, sizeof (ripaddr));
if (ret < 0)
- {
- zlog (NULL, LOG_ERR, "Can't bind ripng socket: %s.", strerror (errno));
- return ret;
- }
+ {
+ zlog (NULL, LOG_ERR, "Can't bind ripng socket: %s.", strerror (errno));
+ if (ripngd_privs.change (ZPRIVS_LOWER))
+ zlog_err ("ripng_make_socket: could not lower privs");
+ return ret;
+ }
+ if (ripngd_privs.change (ZPRIVS_LOWER))
+ zlog_err ("ripng_make_socket: could not lower privs");
return sock;
}