picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

util: introduce reset_uid_gid() for resetting all uids and gids to 0

Browse source
This commit is contained in:
Lennart Poettering 2015-05-20 14:41:39 +02:00
parent 417a7fdc41
commit b4da6d6bec
2 changed files with 17 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

25
src/shared/util.c
View file

@ -4686,16 +4686,7 @@ int namespace_enter(int pidns_fd, int mntns_fd, int netns_fd, int root_fd) {
return -errno;
}
if (setresgid(0, 0, 0) < 0)
return -errno;
if (setgroups(0, NULL) < 0)
return -errno;
if (setresuid(0, 0, 0) < 0)
return -errno;
return 0;
return reset_uid_gid();
}
int getpeercred(int fd, struct ucred *ucred) {
@ -6247,3 +6238,17 @@ int mount_move_root(const char *path) {
return 0;
}
int reset_uid_gid(void) {
if (setgroups(0, NULL) < 0)
return -errno;
if (setresgid(0, 0, 0) < 0)
return -errno;
if (setresuid(0, 0, 0) < 0)
return -errno;
return 0;
}

2
src/shared/util.h
View file

@ -908,3 +908,5 @@ char *shell_maybe_quote(const char *s);
int parse_mode(const char *s, mode_t *ret);
int mount_move_root(const char *path);
int reset_uid_gid(void);