kenmirrors/asterisk
1
0
Fork 0
mirror of https://github.com/asterisk/asterisk.git synced 2025-11-02 11:58:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add -U and -G options to set user/group to run as

Browse Source 
git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@3470 65c4cc65-6c06-0410-ace0-fbb531ad65f3
This commit is contained in:
Mark Spencer
2004-07-18 16:20:54 +00:00
parent d9be9eb5a8
commit b600cf2232
1 changed files with 43 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
asterisk.c
View File

@@ -51,6 +51,8 @@
#include <asterisk/config.h> #include <asterisk/config.h>
#include <asterisk/config_pvt.h> #include <asterisk/config_pvt.h>
#include <sys/resource.h> #include <sys/resource.h>
#include <grp.h>
#include <pwd.h>
#if defined(__FreeBSD__) #if defined(__FreeBSD__)
#include <netdb.h> #include <netdb.h>
@@ -1413,6 +1415,8 @@ static int show_cli_help(void) {
printf("Usage: asterisk [OPTIONS]\n"); printf("Usage: asterisk [OPTIONS]\n");
printf("Valid Options:\n"); printf("Valid Options:\n");
printf(" -C <configfile> Use an alternate configuration file\n"); printf(" -C <configfile> Use an alternate configuration file\n");
printf(" -G <group> Run as a group other than the caller\n");
printf(" -U <user> Run as a user other than the caller\n");
printf(" -c Provide console CLI\n"); printf(" -c Provide console CLI\n");
printf(" -d Enable extra debugging\n"); printf(" -d Enable extra debugging\n");
printf(" -f Do not fork\n"); printf(" -f Do not fork\n");
@@ -1495,6 +1499,7 @@ int main(int argc, char *argv[])
sigset_t sigs; sigset_t sigs;
int num; int num;
char *buf; char *buf;
char *runuser=NULL, *rungroup=NULL;
/* Remember original args for restart */ /* Remember original args for restart */
if (argc > sizeof(_argv) / sizeof(_argv[0]) - 1) { if (argc > sizeof(_argv) / sizeof(_argv[0]) - 1) {
@@ -1528,7 +1533,7 @@ int main(int argc, char *argv[])
} }
*/ */
/* Check for options */ /* Check for options */
while((c=getopt(argc, argv, "hfdvqprRgcinx:C:")) != -1) { while((c=getopt(argc, argv, "hfdvqprRgcinx:U:G:C:")) != -1) {
switch(c) { switch(c) {
case 'd': case 'd':
option_debug++; option_debug++;
@@ -1580,6 +1585,12 @@ int main(int argc, char *argv[])
case 'h': case 'h':
show_cli_help(); show_cli_help();
exit(0); exit(0);
case 'U':
runuser = optarg;
break;
case 'G':
rungroup = optarg;
break;
case '?': case '?':
exit(1); exit(1);
} }
@@ -1595,6 +1606,37 @@ int main(int argc, char *argv[])
} }
} }
if (rungroup) {
struct group *gr;
gr = getgrnam(rungroup);
if (!gr) {
ast_log(LOG_WARNING, "No such group '%s'!\n", rungroup);
exit(1);
}
if (setuid(gr->gr_gid)) {
ast_log(LOG_WARNING, "Unable to setgid to %d (%s)\n", gr->gr_gid, rungroup);
exit(1);
}
if (option_verbose)
ast_verbose("Running as group '%s'\n", rungroup);
}
if (runuser) {
struct passwd *pw;
pw = getpwnam(runuser);
if (!pw) {
ast_log(LOG_WARNING, "No such user '%s'!\n", runuser);
exit(1);
}
if (setuid(pw->pw_uid)) {
ast_log(LOG_WARNING, "Unable to setuid to %d (%s)\n", pw->pw_uid, runuser);
exit(1);
}
if (option_verbose)
ast_verbose("Running as user '%s'\n", runuser);
}
term_init(); term_init();
printf(term_end()); printf(term_end());
fflush(stdout); fflush(stdout);