From 9bb651effa8cae1376211ef22e05031bfc4ea6b0 Mon Sep 17 00:00:00 2001
From: Wolfgang Bumiller <w.bumiller@proxmox.com>
Date: Fri, 22 Mar 2024 13:24:13 +0100
Subject: [PATCH] esxi: have the fuse process drop its privileges

once it's mounted it only needs to make http requests and talk to the
open fuse fd

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
---
 src/PVE/Storage/ESXiPlugin.pm | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/PVE/Storage/ESXiPlugin.pm b/src/PVE/Storage/ESXiPlugin.pm
index 94576a7..77fb6c0 100644
--- a/src/PVE/Storage/ESXiPlugin.pm
+++ b/src/PVE/Storage/ESXiPlugin.pm
@@ -215,6 +215,8 @@ sub esxi_mount : prototype($$$;$) {
 	    exec {$ESXI_FUSE_TOOL}
 		$ESXI_FUSE_TOOL,
 		@extra_params,
+		'--change-user', 'nobody',
+		'--change-group', 'nogroup',
 		'-o', 'allow_other',
 		'--ready-fd', fileno($wr),
 		'--user', $user,