add supplementary groups support

diff --git a/pdns/unix_utility.cc b/pdns/unix_utility.cc
index d7b906773d8fbc36403174fc2b8074b097a18492..507b43132466cfde5e60a345edd279e60ff3bc31 100644 (file)
--- a/pdns/unix_utility.cc
+++ b/pdns/unix_utility.cc
@@ -99,11 +99,19 @@ void Utility::dropPrivs( int uid, int gid )
     else
       theL()<<Logger::Info<<"Set effective group id to "<<gid<<endl;
 
-    if(setgroups(0, NULL)<0) {
-      theL()<<Logger::Critical<<"Unable to drop supplementary gids: "<<stringerror()<<endl;
-      exit(1);
+    struct passwd *pw=getpwuid(uid);
+    if(!pw) {
+      theL()<<Logger::Warning<<"Unable to determine user name for uid "<<uid<<endl;
+      if (setgroups(0, NULL)<0) {
+        theL()<<Logger::Critical<<"Unable to drop supplementary gids: "<<stringerror()<<endl;
+        exit(1);
+      }
+    } else {
+      if (initgroups(pw->pw_name, gid)<0) {
+        theL()<<Logger::Critical<<"Unable to set supplementary groups: "<<stringerror()<<endl;
+        exit(1);
+      }
     }
-
   }
 
   if(uid) {