cnid_dbd: Run setgroups() before changing user, GitHub #1308

Netatalk · Sep 22, 2024 · b185fe2 · b185fe2
1 parent fad8a57
commit b185fe2
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/etc/cnid_dbd/main.c b/etc/cnid_dbd/main.c
@@ -444,6 +444,10 @@ static void switch_to_user(char *dir)
         LOG(log_error, logtype_cnid, "error in stat for %s: %s", dir, strerror(errno));
         exit(1);
     }
+    if (setgroups(0, NULL) < 0) {
+        LOG(log_error, logtype_cnid, "error in setgroups: %s", strerror(errno));
+        exit(1);
+    }
     if (!getuid()) {
         LOG(log_debug, logtype_cnid, "Setting uid/gid to %i/%i", st.st_uid, st.st_gid);
         if (setgid(st.st_gid) < 0 || setuid(st.st_uid) < 0) {