summaryrefslogtreecommitdiffstats
path: root/lib/privsep.lua
diff options
context:
space:
mode:
authorTed Trask <ttrask01@yahoo.com>2008-09-25 17:54:11 +0000
committerTed Trask <ttrask01@yahoo.com>2008-09-25 17:54:11 +0000
commit27ec964aa38acfdefa8483fbe95bf611909de36b (patch)
tree902a68a6d89ecfaf0cd79f9ab320dae18f8334fa /lib/privsep.lua
parentc17faf4b793db95a6957fcf5af7b73acaee2dc76 (diff)
downloadacf-core-27ec964aa38acfdefa8483fbe95bf611909de36b.tar.bz2
acf-core-27ec964aa38acfdefa8483fbe95bf611909de36b.tar.xz
Removed unused libraries debugs, web_elements, privsep, ipcalc.
git-svn-id: svn://svn.alpinelinux.org/acf/core/trunk@1516 ab2d0c66-481e-0410-8bed-d214d4d58bed
Diffstat (limited to 'lib/privsep.lua')
-rw-r--r--lib/privsep.lua75
1 files changed, 0 insertions, 75 deletions
diff --git a/lib/privsep.lua b/lib/privsep.lua
deleted file mode 100644
index d2edcb7..0000000
--- a/lib/privsep.lua
+++ /dev/null
@@ -1,75 +0,0 @@
-
-module(..., package.seeall)
-
-require("json")
-require("posix")
-
-local rpc = {}
-
--- private privileged rpc server ------------------------------------
-local function rpcserver(r, w)
- for line in r:lines() do
- local handle = json.decode(line)
- if type(rpc[handle.func]) == "function" then
- response = rpc[handle.func](unpack(handle.data))
- else
- response = nil
- end
- w:write(json.encode(response).."\n")
- w:flush()
- end
-end
-
-
--- public func ----------------------------------------------------
-function drop_privs(user, group, privileged_funcs)
- local k, v
- local wrapper = {}
-
- -- communication pipes
- local cr, pw = posix.pipe()
- local pr, cw = posix.pipe()
-
- -- create wrapper table
- for k,v in pairs(privileged_funcs or {}) do
- if type(v) == "function" then
- rpc[k] = v
- wrapper[k] = function(...)
- local handle = {}
- handle.func = k
- handle.data = {...}
- cw:write(json.encode(handle).."\n")
- cw:flush()
- return (json.decode(cr:read("*line")))
- end
- end
- end
-
- pid = posix.fork()
- if pid == nil then
- cr:close()
- cw:close()
- pr:close()
- cw:close()
- return nil
- end
-
- if pid == 0 then
- -- child runs with privs
- cr:close()
- cw:close()
- rpcserver(pr, pw)
- pw:close()
- pr:close()
- os.exit()
- end
-
- -- lets drop privs
- if posix.setpid("g", group) and posix.setpid("u", user) then
- return wrapper
- else
- posix.kill(pid)
- return nil
- end
-end
-
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-18 23:50:27 +0000