From a187790a8827a4c2ef05a7b8e955bf26c827a55b Mon Sep 17 00:00:00 2001
From: Zach van Rijn <me@zv.io>
Date: Wed, 29 Nov 2023 22:31:21 -0600
Subject: database: run triggers with r*id = e*id

---
 src/database.c | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/src/database.c b/src/database.c
index 9939573..dc43d92 100644
--- a/src/database.c
+++ b/src/database.c
@@ -1949,6 +1949,16 @@ int apk_db_run_script(struct apk_database *db, char *fn, char **argv)
 			exit(127);
 		}
 
+		status = setgid(getegid());
+		if (status != 0) {
+			apk_warning("%s: setgid: %s", basename(fn), strerror(errno));
+		}
+
+		status = setuid(geteuid());
+		if (status != 0) {
+			apk_warning("%s: setuid: %s", basename(fn), strerror(errno));
+		}
+
 		execve(fn, argv, environment);
 		exit(127); /* should not get here */
 	}
-- 
cgit v1.2.3-60-g2f50