lighttpd
/
lighttpd2
2
0
Fork 0
Code Issues Releases Wiki Activity

[angel] check setgid/setuid/... return values and abort on failure

Browse Source
personal/stbuehler/wip
Stefan Bühler 9 years ago
parent 09002ad827
commit c30060e0eb
1 changed files with 16 additions and 4 deletions
Show Stats Download Patch File Download Diff File

20
src/angel/angel_proc.c
Unescape Escape View File

@ -170,15 +170,27 @@ liProc* li_proc_new(liServer *srv, gchar **args, gchar **env, uid_t uid, gid_t g
#endif
if (gid != (gid_t) -1) {
setgid(gid);
setgroups(0, NULL);
if (username) initgroups(username, gid);
if (-1 == setgid(gid)) {
ERROR(srv, "setgid(%i) failed: %s", (int) gid, g_strerror(errno));
abort();
}
if (-1 == setgroups(0, NULL)) {
ERROR(srv, "setgroups failed: %s", g_strerror(errno));
abort();
}
if (username && -1 == initgroups(username, gid)) {
ERROR(srv, "initgroups('%s', %i) failed: %s", username, (int) gid, g_strerror(errno));
abort();
}
}
if (cb) cb(ctx);
if (uid != (uid_t) -1) {
setuid(uid);
if (-1 == setuid(uid)) {
ERROR(srv, "setuid(%i) failed: %s", (int) uid, g_strerror(errno));
abort();
}
}
if (NULL == env)

Write Preview
Loading…
Cancel
Save