diff options
author | Jakub Hrozek <jhrozek@redhat.com> | 2014-10-06 16:28:13 +0200 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2014-10-20 21:43:40 +0200 |
commit | ac40d2f2b2b2fc35c95389f5e28febd580bd2b7a (patch) | |
tree | 865e8082df8d8c40208ed7db21fd4c29707daac3 /src/util/server.c | |
parent | 9c47c8c59b5c9078f342f82367cd0ad7857acef8 (diff) | |
download | sssd-ac40d2f2b2b2fc35c95389f5e28febd580bd2b7a.tar.gz sssd-ac40d2f2b2b2fc35c95389f5e28febd580bd2b7a.tar.xz sssd-ac40d2f2b2b2fc35c95389f5e28febd580bd2b7a.zip |
SSSD: Add the options to specify a UID and GID to run as
Adds new command line options --uid and --gid to all SSSD servers,
making it possible to switch to another user ID if needed.
So far all code still runs as root.
Reviewed-by: Pavel Reichl <preichl@redhat.com>
Diffstat (limited to 'src/util/server.c')
-rw-r--r-- | src/util/server.c | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/src/util/server.c b/src/util/server.c index 51934f8ba..3a84dee0c 100644 --- a/src/util/server.c +++ b/src/util/server.c @@ -412,6 +412,7 @@ errno_t server_common_rotate_logs(struct confdb_ctx *confdb, } int server_setup(const char *name, int flags, + uid_t uid, gid_t gid, const char *conf_entry, struct main_context **main_ctx) { @@ -426,6 +427,13 @@ int server_setup(const char *name, int flags, struct tevent_signal *tes; struct logrotate_ctx *lctx; + ret = become_user(uid, gid); + if (ret != EOK) { + DEBUG(SSSDBG_FUNC_DATA, + "Cannot become user [%"SPRIuid"][%"SPRIgid"].\n", uid, gid); + return ret; + } + debug_prg_name = strdup(name); if (!debug_prg_name) { return ENOMEM; |