From 557a55fbe5f5a8e47293c8365189dbbc2b7450db Mon Sep 17 00:00:00 2001 From: Niels Keurentjes Date: Sun, 27 Mar 2016 23:42:39 +0200 Subject: [PATCH] Clobber sudo credentials to prevent careless privilege escalations. --- src/Composer/Console/Application.php | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/src/Composer/Console/Application.php b/src/Composer/Console/Application.php index dc06615a1..ec5f4cef3 100644 --- a/src/Composer/Console/Application.php +++ b/src/Composer/Console/Application.php @@ -133,6 +133,15 @@ class Application extends BaseApplication $input->setInteractive(false); } + if (!Platform::isWindows() && function_exists('posix_getuid') && posix_getuid() === 0) { + $io->writeError('Running composer as root is highly discouraged as packages, plugins and scripts cannot always be trusted'); + if ($uid = getenv('SUDO_UID')) { + // Silently clobber any sudo credentials on the invoking user to avoid privilege escalations later on + // ref. https://github.com/composer/composer/issues/5119 + exec("sudo -u \\#{$uid} sudo -K > /dev/null 2>&1"); + } + } + // switch working dir if ($newWorkDir = $this->getNewWorkingDir($input)) { $oldWorkingDir = getcwd();