From 1005305d5acb0c12e7a8fd9559e3cbc6a1fd6c28 Mon Sep 17 00:00:00 2001 From: apio Date: Wed, 22 Nov 2023 21:29:03 +0100 Subject: [PATCH] su: Support supplementary groups --- apps/su.cpp | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/apps/su.cpp b/apps/su.cpp index 33786533..80b1a8a8 100644 --- a/apps/su.cpp +++ b/apps/su.cpp @@ -1,4 +1,6 @@ +#include #include +#include #include #include #include @@ -89,6 +91,30 @@ char* getpass() return buf; } +Result set_supplementary_groups(const char* name) +{ + Vector extra_groups; + + setgrent(); + group* grp; + while ((grp = getgrent())) + { + for (char** user = grp->gr_mem; *user; user++) + { + if (!strcmp(*user, name)) + { + TRY(extra_groups.try_append(grp->gr_gid)); + break; + } + } + } + endgrent(); + + if (setgroups(static_cast(extra_groups.size()), extra_groups.data()) < 0) return err(errno); + + return {}; +} + Result luna_main(int argc, char** argv) { StringView name; @@ -134,6 +160,8 @@ Result luna_main(int argc, char** argv) memset(pass, 0, strlen(pass)); } + TRY(set_supplementary_groups(name.chars())); + setgid(entry->pw_gid); setuid(entry->pw_uid);