mir/criu
2
0
Fork 0
mirror of https://github.com/checkpoint-restore/criu synced 2025-08-22 09:58:09 +00:00
Code Issues Releases Wiki Activity

security: add cr_fchown

Browse Source 
Signed-off-by: Ruslan Kuprieiev <kupruser@gmail.com>
Signed-off-by: Pavel Emelyanov <xemul@parallels.com>
This commit is contained in:
Ruslan Kuprieiev 2015-01-29 22:59:28 +02:00 committed by Pavel Emelyanov
parent df301b7eb7
commit 09c3f5d0c7
2 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
include/security.h
View File

@ -8,5 +8,6 @@ extern int restrict_uid(unsigned int uid, unsigned int gid);
extern bool may_dump(struct proc_status_creds *); extern bool may_dump(struct proc_status_creds *);
extern bool may_restore(struct _CredsEntry *); extern bool may_restore(struct _CredsEntry *);
extern bool cr_user_is_root(void); extern bool cr_user_is_root(void);
extern int cr_fchown(int fd);
#endif /* __CR_SECURITY_H__ */ #endif /* __CR_SECURITY_H__ */

13
security.c
View File

@ -169,3 +169,16 @@ bool may_restore(CredsEntry *creds)
check_groups(creds->groups, creds->n_groups) && check_groups(creds->groups, creds->n_groups) &&
check_caps(creds->cap_inh, creds->cap_eff, creds->cap_prm); check_caps(creds->cap_inh, creds->cap_eff, creds->cap_prm);
} }
int cr_fchown(int fd)
{
if (cr_user_is_root())
return 0;
if (fchown(fd, cr_uid, cr_gid)) {
pr_perror("Can't chown to (%u,%u)", cr_uid, cr_gid);
return -1;
}
return 0;
}