From 2a2dae71c493002f393348fa0afe826518f5b9fb Mon Sep 17 00:00:00 2001
From: Miles Bader <miles@gnu.org>
Date: Mon, 11 Nov 1996 20:14:38 +0000
Subject: (diskfs_S_io_restrict_auth):   If CRED has root, use the requested id
 sets verbatim.

---
 libdiskfs/io-restrict-auth.c | 30 +++++++++++++++++++++---------
 1 file changed, 21 insertions(+), 9 deletions(-)

(limited to 'libdiskfs/io-restrict-auth.c')

diff --git a/libdiskfs/io-restrict-auth.c b/libdiskfs/io-restrict-auth.c
index f2e00293..30ecf91b 100644
--- a/libdiskfs/io-restrict-auth.c
+++ b/libdiskfs/io-restrict-auth.c
@@ -47,16 +47,28 @@ diskfs_S_io_restrict_auth (struct protid *cred,
   if (!cred)
     return EOPNOTSUPP;
   
-  newuids = alloca (sizeof (uid_t) * cred->nuids);
-  newgids = alloca (sizeof (uid_t) * cred->ngids);
+  if (diskfs_isuid (0, cred))
+    /* CRED has root access, and so may use any ids.  */
+    {
+      newuids = uids;
+      newnuids = nuids;
+      newgids = gids;
+      newngids = ngids;
+    }
+  else
+    /* Otherwise, use any of the requested ids that CRED already has.  */
+    {
+      newuids = alloca (sizeof (uid_t) * cred->nuids);
+      newgids = alloca (sizeof (uid_t) * cred->ngids);
   
-  for (i = newnuids = 0; i < cred->nuids; i++)
-    if (listmember (uids, cred->uids[i], nuids))
-      newuids[newnuids++] = cred->uids[i];
-  for (i = newngids = 0; i < cred->ngids; i++)
-    if (listmember (gids, cred->gids[i], ngids))
-      newgids[newngids++] = cred->gids[i];
-      
+      for (i = newnuids = 0; i < cred->nuids; i++)
+	if (listmember (uids, cred->uids[i], nuids))
+	  newuids[newnuids++] = cred->uids[i];
+      for (i = newngids = 0; i < cred->ngids; i++)
+	if (listmember (gids, cred->gids[i], ngids))
+	  newgids[newngids++] = cred->gids[i];
+    }
+
   mutex_lock (&cred->po->np->lock);
   err = diskfs_create_protid (cred->po, newuids, newnuids, newgids, newngids,
 			      &newpi);
-- 
cgit v1.2.3