From patchwork Thu Nov 24 16:29:48 2011
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Chris Webb <chris@arachsys.com>
X-Patchwork-Id: 127555
Return-Path: <qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Received: from lists.gnu.org (lists.gnu.org [140.186.70.17])
	(using TLSv1 with cipher AES256-SHA (256/256 bits))
	(Client did not present a certificate)
	by ozlabs.org (Postfix) with ESMTPS id 603581007DE
	for <incoming@patchwork.ozlabs.org>;
	Fri, 25 Nov 2011 03:30:19 +1100 (EST)
Received: from localhost ([::1]:42939 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71) (envelope-from
	<qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org>)
	id 1RTcBc-00063F-Ex
	for incoming@patchwork.ozlabs.org; Thu, 24 Nov 2011 11:30:08 -0500
Received: from eggs.gnu.org ([140.186.70.92]:34350)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <chris@arachsys.com>) id 1RTcBU-00062j-1g
	for qemu-devel@nongnu.org; Thu, 24 Nov 2011 11:30:00 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <chris@arachsys.com>) id 1RTcBS-0006aG-Fm
	for qemu-devel@nongnu.org; Thu, 24 Nov 2011 11:30:00 -0500
Received: from alpha.arachsys.com ([91.203.57.7]:51732)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <chris@arachsys.com>) id 1RTcBS-0006aC-AP
	for qemu-devel@nongnu.org; Thu, 24 Nov 2011 11:29:58 -0500
Received: from [81.2.114.212] (helo=miranda.arachsys.com)
	by alpha.arachsys.com with esmtpa (Exim 4.72)
	(envelope-from <chris@arachsys.com>)
	id 1RTcBQ-0003Sb-CI; Thu, 24 Nov 2011 16:29:56 +0000
From: Chris Webb <chris@arachsys.com>
To: qemu-devel@nongnu.org
Date: Thu, 24 Nov 2011 16:29:48 +0000
Message-Id: 
 <a771422c87b3e86d78754478befbc6a3dd63416e.1322152179.git.chris@arachsys.com>
X-Mailer: git-send-email 1.7.5.4
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
	recognized.
X-Received-From: 91.203.57.7
Cc: Chris Webb <chris@arachsys.com>
Subject: [Qemu-devel] [PATCH 1/2] Do not generate spurious error for -runas
	root
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org
Sender: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org

change_process_uid() checks that privileges have been successfully dropped by
verifying that setuid(0) fails. However, if qemu is explicitly -runas root,
the setuid(0) would correctly succeed, so we skip the test in that case.

Signed-off-by: Chris Webb <chris@arachsys.com>
---
 os-posix.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/os-posix.c b/os-posix.c
index dc4a6bb..1b2061a 100644
--- a/os-posix.c
+++ b/os-posix.c
@@ -209,7 +209,7 @@ static void change_process_uid(void)
             fprintf(stderr, "Failed to setuid(%d)\n", user_pwd->pw_uid);
             exit(1);
         }
-        if (setuid(0) != -1) {
+        if (user_pwd->pw_uid != 0 && setuid(0) != -1) {
             fprintf(stderr, "Dropping privileges failed\n");
             exit(1);
         }