mirror of
https://github.com/systemd/systemd.git
synced 2024-12-25 01:34:28 +03:00
execute: don't set $SHELL and $HOME for services, if they don't contain interesting data
This commit is contained in:
parent
6af760f3b2
commit
7049382803
@ -1724,6 +1724,17 @@ static int exec_child(
|
||||
*exit_status = EXIT_USER;
|
||||
return r;
|
||||
}
|
||||
|
||||
/* Don't set $HOME or $SHELL if they are are not particularly enlightening anyway. */
|
||||
if (isempty(home) || path_equal(home, "/"))
|
||||
home = NULL;
|
||||
|
||||
if (isempty(shell) || PATH_IN_SET(shell,
|
||||
"/bin/nologin",
|
||||
"/sbin/nologin",
|
||||
"/usr/bin/nologin",
|
||||
"/usr/sbin/nologin"))
|
||||
shell = NULL;
|
||||
}
|
||||
|
||||
if (context->group) {
|
||||
|
Loading…
Reference in New Issue
Block a user