sanchayanmaity/minix
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

INET: drop privileges upon startup

Browse source
This commit is contained in:
Thomas Veerman 2012-01-27 14:21:10 +00:00
parent becf700bc2
commit 9330d92639
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
servers/inet/inet.c
View file

@ -43,6 +43,9 @@ from DL_ETH:
#include <minix/ds.h>
#include <minix/endpoint.h>
#include <minix/chardriver.h>
#include <minix/rs.h>
#include <sys/types.h>
#include <pwd.h>
#include "mq.h"
#include "qp.h"
@ -207,6 +210,7 @@ PRIVATE int sef_cb_init_fresh(int type, sef_init_info_t *info)
int timerand, fd;
u8_t randbits[32];
struct timeval tv;
struct passwd *pw;
#if DEBUG
printf("Starting inet...\n");
@ -281,6 +285,12 @@ PRIVATE int sef_cb_init_fresh(int type, sef_init_info_t *info)
ip_panic(("inet: can't subscribe to driver events"));
}
/* Drop root privileges */
if ((pw = getpwnam(SERVICE_LOGIN)) == NULL)
ip_panic(("inet: unable to retrieve uid of SERVICE_LOGIN"));
if (setuid(pw->pw_uid) != 0)
ip_panic(("inet: unable to drop privileges"));
/* Announce we are up. INET announces its presence to VFS just like
* any other character driver.
*/