tailscale

History

Andrew Dunham 13377e6458 ssh/tailssh: always assert our final uid/gid Move the assertions about our post-privilege-drop UID/GID out of the conditional if statement and always run them; I haven't been able to find a case where this would fail. Defensively add an envknob to disable this feature, however, which we can remove after the 1.40 release. Updates #7616 Signed-off-by: Andrew Dunham <andrew@du.nham.ca> Change-Id: Iaec3dba9248131920204bd6c6d34bbc57a148185	2023-03-23 14:26:36 -04:00
..
tailssh	ssh/tailssh: always assert our final uid/gid	2023-03-23 14:26:36 -04:00

Andrew Dunham 13377e6458 ssh/tailssh: always assert our final uid/gid

Move the assertions about our post-privilege-drop UID/GID out of the
conditional if statement and always run them; I haven't been able to
find a case where this would fail. Defensively add an envknob to disable
this feature, however, which we can remove after the 1.40 release.

Updates #7616

Signed-off-by: Andrew Dunham <andrew@du.nham.ca>
Change-Id: Iaec3dba9248131920204bd6c6d34bbc57a148185

2023-03-23 14:26:36 -04:00

tailssh

ssh/tailssh: always assert our final uid/gid

2023-03-23 14:26:36 -04:00