execute: don't bother with chowning StateDirectory= and friends in user mode

2024-09-06 08:46:19 +00:00 · 2023-06-27 11:19:47 +02:00 · 2023-06-27 11:19:47 +02:00 · f5bb36dcfe
parent b93d24e07d
commit f5bb36dcfe
1 changed files with 5 additions and 0 deletions
--- a/src/core/execute.c
+++ b/src/core/execute.c
@ -2738,6 +2738,11 @@ static int setup_exec_directory(
                if (r < 0)
                        goto fail;

+                /* Skip the rest (which deals with ownership) in user mode, since ownership changes are not
+                 * available to user code anyway */
+                if (params->runtime_scope != RUNTIME_SCOPE_SYSTEM)
+                        continue;
+
                /* Then, change the ownership of the whole tree, if necessary. When dynamic users are used we
                 * drop the suid/sgid bits, since we really don't want SUID/SGID files for dynamic UID/GID
                 * assignments to exist. */