Replaced setgid() calls with setegid() so that it works with dot

author Marcin Cieslak <saper@saper.info>

Fri, 13 Feb 2015 03:09:26 +0000 (21:09 -0600)

committer Philipp Takacs <philipp@bureaucracy.de>

Wed, 11 Mar 2015 22:53:33 +0000 (23:53 +0100)
author Marcin Cieslak <saper@saper.info>
Fri, 13 Feb 2015 03:09:26 +0000 (21:09 -0600)
committer Philipp Takacs <philipp@bureaucracy.de>
Wed, 11 Mar 2015 22:53:33 +0000 (23:53 +0100)
diff --git a/uip/inc.c b/uip/inc.c

index 8a05c6a..33672de 100644 (file)
--- a/uip/inc.c
+++ b/uip/inc.c
@@ -97,8 +97,16 @@ static int return_gid;
  ** easy case; we're not setuid root, so can drop group privs immediately.
  */
  #define TRYDROPGROUPPRIVS() DROPGROUPPRIVS()
-#define DROPGROUPPRIVS() setgid(getgid())
-#define GETGROUPPRIVS() setgid(return_gid)
+#define DROPGROUPPRIVS() \
+    if (setegid(getgid()) != 0) { \
+        advise ("setegid", "unable to set group to %ld", (long) getgid()); \
+               _exit (-1); \
+    }
+#define GETGROUPPRIVS() \
+    if (setegid(return_gid) != 0) { \
+        advise ("setegid", "unable to set group to %ld", (long) return_gid); \
+               _exit (-1); \
+    }
  #define SAVEGROUPPRIVS() return_gid = getegid()
  #else
  /* define *GROUPPRIVS() as null; this avoids having lots of "#ifdef MAILGROUP"s */
author	Marcin Cieslak <saper@saper.info>
	Fri, 13 Feb 2015 03:09:26 +0000 (21:09 -0600)
committer	Philipp Takacs <philipp@bureaucracy.de>
	Wed, 11 Mar 2015 22:53:33 +0000 (23:53 +0100)