From ef39c148105cf30aea822022a5f41a120897cc65 Mon Sep 17 00:00:00 2001 From: Michael Vogt Date: Fri, 27 Nov 2015 12:29:22 +0100 Subject: Check if the Apt::Sandbox::User exists in CheckDropPrivsMustBeDisabled() If it does not exist disabled priv dropping as there is nothing we can drop to. This will unblock people with special chroots or systems that deleted the "_apt" user. Closes: #806406 --- apt-pkg/acquire.cc | 4 ++++ 1 file changed, 4 insertions(+) (limited to 'apt-pkg/acquire.cc') diff --git a/apt-pkg/acquire.cc b/apt-pkg/acquire.cc index a86bcef1a..b229a61b6 100644 --- a/apt-pkg/acquire.cc +++ b/apt-pkg/acquire.cc @@ -507,7 +507,11 @@ static void CheckDropPrivsMustBeDisabled(pkgAcquire const &Fetcher) struct passwd const * const pw = getpwnam(SandboxUser.c_str()); if (pw == NULL) + { + _error->Warning(_("No sandbox user '%s' on the system, can not drop privileges"), SandboxUser.c_str()); + _config->Set("APT::Sandbox::User", ""); return; + } gid_t const old_euid = geteuid(); gid_t const old_egid = getegid(); -- cgit v1.2.3