From 39b289578ed6a2ad466e59593a5832994f9cc709 Mon Sep 17 00:00:00 2001 From: Andrew Dunham Date: Tue, 21 Mar 2023 12:26:58 -0400 Subject: [PATCH] ssh/tailssh: make uid an int instead of uint64 Follow-up to #7615 Signed-off-by: Andrew Dunham Change-Id: Ib4256bff276f6d5cf95838d8e39c87b3643bde37 --- ssh/tailssh/incubator.go | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/ssh/tailssh/incubator.go b/ssh/tailssh/incubator.go index 17ecd6a14..d81e54ec2 100644 --- a/ssh/tailssh/incubator.go +++ b/ssh/tailssh/incubator.go @@ -160,7 +160,7 @@ func (stdRWC) Close() error { } type incubatorArgs struct { - uid uint64 + uid int gid int groups string localUser string @@ -177,7 +177,7 @@ type incubatorArgs struct { func parseIncubatorArgs(args []string) (a incubatorArgs) { flags := flag.NewFlagSet("", flag.ExitOnError) - flags.Uint64Var(&a.uid, "uid", 0, "the uid of local-user") + flags.IntVar(&a.uid, "uid", 0, "the uid of local-user") flags.IntVar(&a.gid, "gid", 0, "the gid of local-user") flags.StringVar(&a.groups, "groups", "", "comma-separated list of gids of local-user") flags.StringVar(&a.localUser, "local-user", "", "the user to run as") @@ -217,7 +217,7 @@ func beIncubator(args []string) error { } } - euid := uint64(os.Geteuid()) + euid := os.Geteuid() runningAsRoot := euid == 0 if runningAsRoot && ia.loginCmdPath != "" { // Check if we can exec into the login command instead of trying to @@ -245,7 +245,7 @@ func beIncubator(args []string) error { groupIDs = append(groupIDs, int(gid)) } - if err := dropPrivileges(logf, int(ia.uid), ia.gid, groupIDs); err != nil { + if err := dropPrivileges(logf, ia.uid, ia.gid, groupIDs); err != nil { return err }