The
openpam_borrow_cred function saves the current credentials and switches to those of the user specified by its
pwd argument. The affected credentials are the effective UID, the effective GID, and the group access list. The original credentials can be restored using
openpam_restore_cred(3).