diff options
author | Marco Bonetti <sid77@users.noreply.github.com> | 2016-08-26 12:42:18 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2016-08-26 12:42:18 +0100 |
commit | d8098ef9da0b59414227493f6b67f00503b12fd7 (patch) | |
tree | 0124ed9d2cf5ef154c2d4923643d9bdcc1edb638 /vendor/github.com/sid77/drop/drop.go | |
parent | bc966492134279c03458cab2ed2f2f51104ee283 (diff) | |
parent | 4028762f4a81a59ccc6d6e5662fa7e341fc74336 (diff) |
Merge pull request #27 from nsheridan/sid77/dropPrivileges
First attempt at dropping privileges
Diffstat (limited to 'vendor/github.com/sid77/drop/drop.go')
-rw-r--r-- | vendor/github.com/sid77/drop/drop.go | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/vendor/github.com/sid77/drop/drop.go b/vendor/github.com/sid77/drop/drop.go new file mode 100644 index 0000000..0fb64a9 --- /dev/null +++ b/vendor/github.com/sid77/drop/drop.go @@ -0,0 +1,35 @@ +package drop + +import ( + "os/user" + "strconv" + + "github.com/sid77/drop/syscall" +) + +func DropPrivileges(runAsUser string) (err error) { + usr, err := user.Lookup(runAsUser) + if err != nil { + return err + } + + gid, err := strconv.Atoi(usr.Gid) + if err != nil { + return err + } + + uid, err := strconv.Atoi(usr.Uid) + if err != nil { + return err + } + + if err = syscall.Setgid(gid); err != nil { + return err + } + + if err = syscall.Setuid(uid); err != nil { + return err + } + + return nil +} |