This repository has been archived by the owner on Apr 29, 2020. It is now read-only.
/
main_linux.go
75 lines (65 loc) · 1.79 KB
/
main_linux.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
package main
import (
// #include <stdlib.h>
// #include <unistd.h>
// #include <sys/resource.h>
// #include <sys/types.h>
// #include <pwd.h>
// #include <grp.h>
"C"
"io/ioutil"
"os/user"
"strconv"
"strings"
"unsafe"
p2_user "github.com/square/p2/pkg/user"
"github.com/square/p2/pkg/util"
)
func sysMaxFDs() (*C.struct_rlimit, error) {
nrOpen, err := ioutil.ReadFile("/proc/sys/fs/nr_open")
if err != nil {
return nil, util.Errorf("Could not read \"/proc/sys/fs/nr_open\": %s", err)
}
maxFDs, err := strconv.Atoi(strings.TrimSpace(string(nrOpen)))
if err != nil {
return nil, util.Errorf("Could not convert %q (from \"/proc/sys/fs/nr_open\") into int: %s", nrOpen, err)
}
return &C.struct_rlimit{
C.rlim_t(maxFDs),
C.rlim_t(maxFDs),
}, nil
}
func sysUnRlimit() *C.struct_rlimit {
return &C.struct_rlimit{
C.rlim_t(C.RLIM_INFINITY),
C.rlim_t(C.RLIM_INFINITY),
}
}
func changeUser(username string) error {
currentUser, err := user.Current()
if err != nil {
return util.Errorf("Could not determine current user: %s", err)
}
uid, gid, err := p2_user.IDs(username)
if err != nil {
return util.Errorf("Could not retrieve uid/gid for %q: %s", username, err)
}
if strconv.Itoa(uid) == currentUser.Uid && strconv.Itoa(gid) == currentUser.Gid {
return nil
}
userCstring := C.CString(username)
defer C.free(unsafe.Pointer(userCstring))
ret, err := C.initgroups(userCstring, C.__gid_t(gid))
if ret != 0 && err != nil {
return util.Errorf("Could not initgroups for %q (primary gid %v): %s", username, gid, err)
}
ret, err = C.setgid(C.__gid_t(gid))
if ret != 0 && err != nil {
return util.Errorf("Could not setgid %v: %s", gid, err)
}
ret, err = C.setuid(C.__uid_t(uid))
if ret != 0 && err != nil {
return util.Errorf("Could not setuid %v: %s", uid, err)
}
return nil
}