util: when joining a namespace make sure to reset all uids to 0 after

the transition

diff --git a/src/shared/util.c b/src/shared/util.c
index 66276aa..b5ffaa1 100644 (file)
--- a/src/shared/util.c
+++ b/src/shared/util.c
@@ -6022,5 +6022,11 @@ int namespace_enter(int namespace_fd, int root_fd) {
         if (chroot(".") < 0)
                 return -errno;
 
+        if (setresgid(0, 0, 0) < 0)
+                return -errno;
+
+        if (setresuid(0, 0, 0) < 0)
+                return -errno;
+
         return 0;
 }