nDPIsrvd: Change user/group, allow listening on UNIX socket for incoming distributor connections

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
author: Toni Uhlig <matzeton@googlemail.com> 2020-09-05 17:52:34 +0200
committer: Toni Uhlig <matzeton@googlemail.com> 2020-09-05 17:52:34 +0200
commit: ab374d193f2637489f7d1615d15057c97ec7f5e6 (patch)
tree: 7605097eab83d669f909b080a6fba69ca0b63cea /utils.c
parent: ec101fbc0f7b5d771638e54d083f2457fa6511c2 (diff)
1 files changed, 35 insertions, 0 deletions
diff --git a/utils.c b/utils.c
index a6797f24a..bb9aed179 100644
--- a/utils.c
+++ b/utils.c
@@ -1,8 +1,11 @@
 #include <errno.h>
 #include <fcntl.h>
+#include <grp.h>
+#include <pwd.h>
 #include <stdio.h>
 #include <string.h>
 #include <syslog.h>
+#include <sys/types.h>
 #include <unistd.h>
 
 #include "utils.h"
@@ -110,3 +113,35 @@ int daemonize_shutdown(char const * const pidfile)
 
     return 0;
 }
+
+int change_user_group(char const * const user, char const * const group)
+{
+    struct passwd * pwd;
+    struct group * grp;
+    gid_t gid;
+
+    if (getuid() != 0) {
+        return 0;
+    }
+
+    if (user == NULL) {
+        return 1;
+    }
+
+    pwd = getpwnam(user);
+    if (pwd == NULL) {
+        return 1;
+    }
+
+    if (group != NULL) {
+        grp = getgrnam(group);
+        if (grp == NULL)  {
+            return 1;
+        }
+        gid = grp->gr_gid;
+    } else {
+        gid = pwd->pw_gid;
+    }
+
+    return setregid(gid, gid) != 0 || setreuid(pwd->pw_uid, pwd->pw_uid);
+}
author	Toni Uhlig <matzeton@googlemail.com>	2020-09-05 17:52:34 +0200
committer	Toni Uhlig <matzeton@googlemail.com>	2020-09-05 17:52:34 +0200
commit	ab374d193f2637489f7d1615d15057c97ec7f5e6 (patch)
tree	7605097eab83d669f909b080a6fba69ca0b63cea /utils.c
parent	ec101fbc0f7b5d771638e54d083f2457fa6511c2 (diff)