Only call setgroups as root

setgroups fails when already running as a user.
2020-08-16 22:20:14 -04:00 · 2020-08-16 22:20:14 -04:00 · f9cfab1e0d
parent daac7db044
commit f9cfab1e0d
1 changed files with 4 additions and 2 deletions
--- a/service.c
+++ b/service.c
@ -187,8 +187,10 @@ void serviceStart(struct Service *service) {
 		error = setgid(serviceGID);
 		if (error) err(ExitNoExec, "setgid");

-		error = setgroups(1, &serviceGID);
-		if (error) err(ExitNoExec, "setgroups");
+		if (!getuid()) {
+			error = setgroups(1, &serviceGID);
+			if (error) err(ExitNoExec, "setgroups");
+		}

 		error = setuid(serviceUID);
 		if (error) err(ExitNoExec, "setuid");