From a32d433a23b6ec43fad16e0a4f33d1ee4c12d008 Mon Sep 17 00:00:00 2001
From: Sascha Grunert <sgrunert@redhat.com>
Date: Tue, 3 Sep 2024 11:39:19 +0200
Subject: [PATCH] Fix `additional_gids_size` on `process_user_dup`

The size needs to be set as well otherwise we may break `additional_gids`.

Found in critest, like: https://github.com/cri-o/cri-o/actions/runs/10680190170/job/29601173374

```
Summarizing 3 Failures:
  [FAIL] [k8s.io] Security Context SupplementalGroupsPolicy when SupplementalGroupsPolicy=Strict [It] even if the container's primary UID belongs to some groups in the image, runtime should not add SupplementalGroups to them
  sigs.k8s.io/cri-tools/pkg/validate/security_context_linux.go:737
  [FAIL] [k8s.io] Security Context bucket [It] runtime should support SupplementalGroups
  sigs.k8s.io/cri-tools/pkg/validate/security_context_linux.go:309
  [FAIL] [k8s.io] Security Context SupplementalGroupsPolicy when SupplementalGroupsPolicy=Merge (Default) [It] if the container's primary UID belongs to some groups in the image, runtime should add SupplementalGroups to them
  sigs.k8s.io/cri-tools/pkg/validate/security_context_linux.go:669
```

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
---
 src/libcrun/container.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/libcrun/container.c b/src/libcrun/container.c
index cf7ec26d9..b6abc7c0b 100644
--- a/src/libcrun/container.c
+++ b/src/libcrun/container.c
@@ -568,6 +568,7 @@ process_user_dup (const runtime_spec_schema_config_schema_process_user *const sr
 
   if (src->additional_gids)
     {
+      dst->additional_gids_len = src->additional_gids_len;
       const size_t additional_gids_size = src->additional_gids_len * sizeof (gid_t);
       dst->additional_gids = xmalloc (additional_gids_size);
       memcpy (dst->additional_gids, src->additional_gids, additional_gids_size);