/*
* Set real and effective user id and group id, and group access list
+ * The user and group arguments are freed.
*/
void
slap_init_user( char *user, char *group )
{
- uid_t uid = (uid_t) -1;
- gid_t gid = (gid_t) -1;
+ uid_t uid;
+ gid_t gid;
+ int got_uid = 0, got_gid = 0;
if ( user ) {
struct passwd *pwd;
if ( isdigit( (unsigned char) *user )) {
+ got_uid = 1;
uid = atoi( user );
#ifdef HAVE_GETPWUID
pwd = getpwuid( uid );
goto did_getpw;
+#else
+ free( user );
+ user = NULL;
#endif
} else {
pwd = getpwnam( user );
user, 0, 0 );
exit( 1 );
}
- if ( uid >= 0 ) {
+ if ( got_uid ) {
free( user );
user = (pwd != NULL ? ch_strdup( pwd->pw_name ) : NULL);
} else {
+ got_uid = 1;
uid = pwd->pw_uid;
}
+ got_gid = 1;
gid = pwd->pw_gid;
#ifdef HAVE_ENDPWENT
endpwent();
}
}
free( group );
+ got_gid = 1;
}
if ( user ) {
endgrent();
#endif
- if ( gid >= 0 ) {
+ if ( got_gid ) {
if ( setgid( gid ) != 0 ) {
Debug( LDAP_DEBUG_ANY, "Could not set real group id to %d\n",
gid, 0, 0 );
#endif
}
- if ( uid >= 0 ) {
+ if ( got_uid ) {
if ( setuid( uid ) != 0 ) {
- Debug( LDAP_DEBUG_ANY, "Could not set effective user id to %d\n",
+ Debug( LDAP_DEBUG_ANY, "Could not set real user id to %d\n",
uid, 0, 0 );
exit( 1 );
}
#ifdef HAVE_SETEUID
if ( seteuid( uid ) != 0 ) {
- Debug( LDAP_DEBUG_ANY, "Could not set real user id to %d\n",
+ Debug( LDAP_DEBUG_ANY, "Could not set effective user id to %d\n",
uid, 0, 0 );
exit( 1 );
}
projects / openldap / blobdiff