From f9cfab1e0d1183eb5e948b6dabc6017b9e261704 Mon Sep 17 00:00:00 2001
From: "C. McEnroe" <june@causal.agency>
Date: Sun, 16 Aug 2020 22:20:14 -0400
Subject: Only call setgroups as root

setgroups fails when already running as a user.
---
 service.c | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/service.c b/service.c
index 3178f79..78890b8 100644
--- a/service.c
+++ b/service.c
@@ -187,8 +187,10 @@ void serviceStart(struct Service *service) {
 		error = setgid(serviceGID);
 		if (error) err(ExitNoExec, "setgid");
 
-		error = setgroups(1, &serviceGID);
-		if (error) err(ExitNoExec, "setgroups");
+		if (!getuid()) {
+			error = setgroups(1, &serviceGID);
+			if (error) err(ExitNoExec, "setgroups");
+		}
 
 		error = setuid(serviceUID);
 		if (error) err(ExitNoExec, "setuid");
-- 
cgit 1.4.1

option value='upstream'>upstream</option>
</optgroup></select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>libtls for OpenSSL
</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/libretls/?h=3.3.0'>summary</a> <a href='/libretls/refs/?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718'>refs</a> <a class='active' href='/libretls/log/compat/freezero.c?h=3.3.0&amp;follow=1'>log</a> <a href='/libretls/tree/compat/freezero.c?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718'>tree</a> <a href='/libretls/commit/compat/freezero.c?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718&amp;follow=1'>commit</a> <a href='/libretls/diff/compat/freezero.c?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718&amp;follow=1'>diff</a></td><td class='form'><form class='right' method='get' action='/libretls/log/compat/freezero.c'>
<input type='hidden' name='h' value='3.3.0'/><input type='hidden' name='id' value='20e42cf4f433777300745f311192611054bde718'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/libretls/log/?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718&amp;follow=1'>root</a>/<a href='/libretls/log/compat?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718&amp;follow=1'>compat</a>/<a href='/libretls/log/compat/freezero.c?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718&amp;follow=1'>freezero.c</a> (<a href='/libretls/log/compat/freezero.c?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718'>unfollow</a>)</div><div class='content'><table class='list nowrap'><tr class='nohover'><th></th><th class='left'>Commit message (<a href='/libretls/log/compat/freezero.c?h=3.3.0&amp;id=20e42cf4f433777300745f311192611054bde718&amp;showmsg=1&amp;follow=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2020-10-22 03:03:56 -0400'>2020-10-22</span></td><td><a href='/libretls/commit/man/Makefile.am?h=3.3.0&amp;id=0e138b6a3d3fb41c5915ddf1b327fc6f28e074a6&amp;follow=1'>Import LibreSSL 3.2.2</a></td><td>June McEnroe</td></tr>
<tr><td><span title='2020-09-29 14:48:15 -0400'>2020-09-29</span></td><td><a href='/libretls/commit/man/Makefile.am?h=3.3.0&amp;id=3b4a10a68682f3b8590450c9be75a8ed4c7307c4&amp;follow=1'>Import LibreSSL 3.2.1</a></td><td>June McEnroe</td></tr>
<tr><td><span title='2020-09-29 14:47:14 -0400'>2020-09-29</span></td><td><a href='/libretls/commit/import.sh?h=3.3.0&amp;id=eea3cdfb26b07f4fdbb4ad570283fb1e1ea99772&amp;follow=1'>import: Add m4/ax_add_fortify_source.m4</a></td><td>June McEnroe</td></tr>
<tr><td><span title='2020-08-05 11:43:02 -0400'>2020-08-05</span></td><td><a href='/libretls/commit/Makefile.am?h=3.3.0&amp;id=cc13f4d43a9e6f8544f347800adbbe5000b83305&amp;follow=1'>build: Add README.7 to EXTRA_DIST</a><span class='decoration'> <a class='tag-annotated-deco' href='/libretls/tag/?h=3.2.0'>3.2.0</a></span></td><td>June McEnroe</td></tr>
<tr><td><span title='2020-08-03 22:27:18 -0400'>2020-08-03</span></td><td><a href='/libretls/commit/README.7?h=3.3.0&amp;id=1f76eb0e84b70024abe78149bef743a7b7699590&amp;follow=1'>doc: Indicate that only OpenSSL 1.1.1b and newer work</a></td><td>June McEnroe
	Commit message (Expand)	Author
2020-10-22	Import LibreSSL 3.2.2	June McEnroe
2020-09-29	Import LibreSSL 3.2.1	June McEnroe
2020-09-29	import: Add m4/ax_add_fortify_source.m4	June McEnroe
2020-08-05	build: Add README.7 to EXTRA_DIST 3.2.0	June McEnroe
2020-08-03	doc: Indicate that only OpenSSL 1.1.1b and newer work	June McEnroe