From: Steve Grubb <sgrubb@redhat.com>
Date: Mon, 1 Aug 2011 18:28:27 +0000 (-0400)
Subject: capng: Drop supplemental groups when switching to daemon user
X-Git-Tag: dbus-1.5.8~38
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=03ab0104abd18f1d137eac9a02a18fafeacd736c;p=platform%2Fupstream%2Fdbus.git

capng: Drop supplemental groups when switching to daemon user

This patch ensures the daemon process doesn't inherit any supplemental
groups for the root user from an administrator login via an init
script.

This is only an issue for pre-systemd systems.

https://bugzilla.redhat.com/show_bug.cgi?id=726953
---

diff --git a/bus/selinux.c b/bus/selinux.c
index e94d8a8..36287e9 100644
--- a/bus/selinux.c
+++ b/bus/selinux.c
@@ -1055,7 +1055,7 @@ _dbus_change_to_daemon_user  (const char    *user,
       capng_clear (CAPNG_SELECT_BOTH);
       capng_update (CAPNG_ADD, CAPNG_EFFECTIVE | CAPNG_PERMITTED,
                     CAP_AUDIT_WRITE);
-      rc = capng_change_id (uid, gid, 0);
+      rc = capng_change_id (uid, gid, CAPNG_DROP_SUPP_GRP);
       if (rc)
         {
           switch (rc) {