load vuln fixed, sudo fixed

2026-02-23 22:43:12 -06:00
parent 6694711423
commit b015d5880a
6 changed files with 50 additions and 25 deletions
--- a/Src/Hyperion-kernel/lib/modules/Hyperion/40_auth.kmod
+++ b/Src/Hyperion-kernel/lib/modules/Hyperion/40_auth.kmod
@@ -591,13 +591,13 @@ function auth.elevate(targetUsername, password)

    local task = kernel.currentTask
    local prevUid = task.uid
-    task.uid  = uid
-    task.euid = uid
-    task.gid  = tonumber(entry[2]) or uid
-    task.egid = tonumber(entry[2]) or uid
-    kernel.uid = uid
+    task.uid  = 0
+    task.euid = 0
+    task.gid  = 0
+    task.egid = 0
+    kernel.uid = 0

-    kernel.log("AUTH: elevate uid=" .. tostring(prevUid) .. " -> " .. tostring(uid) .. " (" .. targetUsername .. ")")
+    kernel.log("AUTH: elevate uid=" .. tostring(prevUid) .. " -> 0 (via " .. targetUsername .. ")")
    return true, uid
 end