Merge pull request #7903 from yuwata/fix-7863

network: create runtime sub-directories after drop_privileges()
2018-01-17 19:18:47 +01:00 · 2018-01-17 19:18:47 +01:00 · 52ffb3d2e9
parent b79fe07243 0a02e38379
commit 52ffb3d2e9
2 changed files with 19 additions and 14 deletions
--- a/src/network/networkd.c
+++ b/src/network/networkd.c
@ -53,24 +53,13 @@ int main(int argc, char *argv[]) {
                goto out;
        }

-        /* Always create the directories people can create inotify
-         * watches in. */
+        /* Create runtime directory. This is not necessary when networkd is
+         * started with "RuntimeDirectory=systemd/netif", or after
+         * systemd-tmpfiles-setup.service. */
        r = mkdir_safe_label("/run/systemd/netif", 0755, uid, gid, false);
        if (r < 0)
                log_warning_errno(r, "Could not create runtime directory: %m");

-        r = mkdir_safe_label("/run/systemd/netif/links", 0755, uid, gid, false);
-        if (r < 0)
-                log_warning_errno(r, "Could not create runtime directory 'links': %m");
-
-        r = mkdir_safe_label("/run/systemd/netif/leases", 0755, uid, gid, false);
-        if (r < 0)
-                log_warning_errno(r, "Could not create runtime directory 'leases': %m");
-
-        r = mkdir_safe_label("/run/systemd/netif/lldp", 0755, uid, gid, false);
-        if (r < 0)
-                log_warning_errno(r, "Could not create runtime directory 'lldp': %m");
-
        /* Drop privileges, but only if we have been started as root. If we are not running as root we assume all
         * privileges are already dropped. */
        if (geteuid() == 0) {
@ -83,6 +72,21 @@ int main(int argc, char *argv[]) {
                        goto out;
        }

+        /* Always create the directories people can create inotify watches in.
+         * It is necessary to create the following subdirectories after drop_privileges()
+         * to support old kernels not supporting AmbientCapabilities=. */
+        r = mkdir_safe_label("/run/systemd/netif/links", 0755, uid, gid, false);
+        if (r < 0)
+                log_warning_errno(r, "Could not create runtime directory 'links': %m");
+
+        r = mkdir_safe_label("/run/systemd/netif/leases", 0755, uid, gid, false);
+        if (r < 0)
+                log_warning_errno(r, "Could not create runtime directory 'leases': %m");
+
+        r = mkdir_safe_label("/run/systemd/netif/lldp", 0755, uid, gid, false);
+        if (r < 0)
+                log_warning_errno(r, "Could not create runtime directory 'lldp': %m");
+
        assert_se(sigprocmask_many(SIG_BLOCK, NULL, SIGTERM, SIGINT, -1) >= 0);

        r = sd_event_default(&event);
--- a/src/timesync/timesyncd.c
+++ b/src/timesync/timesyncd.c
@ -66,6 +66,7 @@ static int load_clock_timestamp(uid_t uid, gid_t gid) {
                        if (r < 0)
                                return log_error_errno(errno, "Failed to change file access mode: %m");
                        r = fchown(fd, uid, gid);
+                        if (r < 0)
                                return log_error_errno(errno, "Failed to change file owner: %m");
                }