Merge "veyron/services/mgmt/suidhelper: put each application in a new session group"

commit: 86a6c66c8a2da760cd91c6b5c4f6a5151c1db94f [log] [tgz]
author: Robert Kroeger <rjkroege@google.com> Thu Jan 29 02:19:11 2015 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Thu Jan 29 02:19:11 2015 +0000
tree: 6497c120828e9375e5fbdc863c39b1693737c15b
parent: 15018a1c75b54b266eb1119aa7dcf2d3e397a63b [diff]
parent: 03eebbc8115a79302c90296e342f80f1b15bdff4 [diff]
diff --git a/services/mgmt/suidhelper/impl/system.go b/services/mgmt/suidhelper/impl/system.go
index 8a93d91..c634b59 100644
--- a/services/mgmt/suidhelper/impl/system.go
+++ b/services/mgmt/suidhelper/impl/system.go

@@ -43,11 +43,12 @@
 	}
 	attr.Env = hw.envv
 
+	attr.Sys = new(syscall.SysProcAttr)
+	attr.Sys.Setsid = true
 	if hw.dryrun {
 		log.Printf("[dryrun] syscall.Setgid(%d)", hw.gid)
 		log.Printf("[dryrun] syscall.Setuid(%d)", hw.uid)
 	} else {
-		attr.Sys = new(syscall.SysProcAttr)
 		attr.Sys.Credential = new(syscall.Credential)
 		attr.Sys.Credential.Gid = uint32(hw.gid)
 		attr.Sys.Credential.Uid = uint32(hw.uid)
commit	86a6c66c8a2da760cd91c6b5c4f6a5151c1db94f	[log] [tgz]
author	Robert Kroeger <rjkroege@google.com>	Thu Jan 29 02:19:11 2015 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Thu Jan 29 02:19:11 2015 +0000
tree	6497c120828e9375e5fbdc863c39b1693737c15b
parent	15018a1c75b54b266eb1119aa7dcf2d3e397a63b [diff]
parent	03eebbc8115a79302c90296e342f80f1b15bdff4 [diff]