------------------------------------------------------------ revno: 1580 fixes bug: http://bugs.debian.org/732127 committer: James Hunt <[email protected]> branch nick: upstart timestamp: Thu 2013-12-19 17:09:54 +0000 message: * init/man/init.5: Provide more detail on setuid and setgid stanzas (debian bug#732127). modified: ChangeLog init/man/init.5
-- lp:upstart https://code.launchpad.net/~upstart-devel/upstart/trunk Your team Upstart Reviewers is subscribed to branch lp:upstart. To unsubscribe from this branch go to https://code.launchpad.net/~upstart-devel/upstart/trunk/+edit-subscription
=== modified file 'ChangeLog' --- ChangeLog 2013-11-25 09:22:55 +0000 +++ ChangeLog 2013-12-19 17:09:54 +0000 @@ -1,3 +1,8 @@ +2013-12-19 James Hunt <[email protected]> + + * init/man/init.5: Provide more detail on setuid and setgid stanzas + (debian bug#732127). + 2013-11-23 Steve Langasek <[email protected]> * init/tests/test_state.c: fix test case to not assume SIGUSR1 == 10; === modified file 'init/man/init.5' --- init/man/init.5 2013-12-04 04:31:34 +0000 +++ init/man/init.5 2013-12-19 17:09:54 +0000 @@ -852,8 +852,22 @@ .I USERNAME before running any job process. -If this stanza is unspecified, all job processes will run as root in the -case of system jobs, and as the user in the case of user jobs. +The job process will run with the primary group of user +.I USERNAME +unless the +.B setgid +stanza is also specified in which case that group will be used instead. + +For system jobs +.BR initgroups (3) +will be called to setup supplementary group access. + +Failure to determine and/or set user and group details will result in +the overall job failing to start. + +If this stanza is unspecified, all job processes will run with user ID 0 +(root) in the case of system jobs, and as the user in the case of user +jobs. Note that system jobs using the .B setuid @@ -868,13 +882,18 @@ .I GROUPNAME before running any job process. +For system jobs +.BR initgroups (3) +will be called to setup supplementary group access. + If this stanza is unspecified, the primary group of the user specified in the .B setuid -block is used for all job processes. If both stanzas are unspecified, -all job processes will run with its group ID set to 0 in the case of -system jobs, and as the primary group of the user in the case of User -Session jobs. +block is used for all job processes. If both this and the +.B setuid +stanza are unspecified, all job processes will run with their group ID set +to 0 (root) in the case of system jobs, and as the primary group of the +user in the case of User Session jobs. .\" .SS Override File Handling Override files allow a jobs environment to be changed without modifying
-- upstart-devel mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/upstart-devel
