From 634ccba7c3f9f72f7aedbe4690c18ebdbdf8b2e1 Mon Sep 17 00:00:00 2001
From: benoitc <bchesneau@gmail.com>
Date: Thu, 4 Oct 2012 18:04:44 +0200
Subject: [PATCH] drops suplemental groups when droping privileges.

fix issue spotted by Vangelis Koukis
---
 gunicorn/util.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/gunicorn/util.py b/gunicorn/util.py
index e919d53c..d0e56425 100644
--- a/gunicorn/util.py
+++ b/gunicorn/util.py
@@ -146,6 +146,9 @@ def set_owner_process(uid,gid):
             # groups like on osx or fedora
             os.setgid(-ctypes.c_int(-gid).value)
 
+        # Also drop supplemental groups
+        os.setgroups([])
+
     if uid:
         os.setuid(uid)