2008-04-27 00:40:09 +00:00
|
|
|
/*
|
|
|
|
* Copyright (c) 1990 - 1994, Julianne Frances Haugh
|
|
|
|
* Copyright (c) 1996 - 2000, Marek Michałkiewicz
|
|
|
|
* Copyright (c) 2001 - 2005, Tomasz Kłoczko
|
2010-08-22 13:04:54 +00:00
|
|
|
* Copyright (c) 2007 - 2010, Nicolas François
|
2008-04-27 00:40:09 +00:00
|
|
|
* All rights reserved.
|
|
|
|
*
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
* modification, are permitted provided that the following conditions
|
|
|
|
* are met:
|
|
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
|
|
* documentation and/or other materials provided with the distribution.
|
|
|
|
* 3. The name of the copyright holders or contributors may not be used to
|
|
|
|
* endorse or promote products derived from this software without
|
|
|
|
* specific prior written permission.
|
|
|
|
*
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
|
|
* ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
|
|
* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
|
|
|
|
* PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
|
|
* HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
|
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
|
|
* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
*/
|
|
|
|
|
2007-11-10 23:46:11 +00:00
|
|
|
/* $Id$ */
|
2016-12-21 12:44:59 -06:00
|
|
|
#ifndef COMMONIO_H
|
|
|
|
#define COMMONIO_H
|
2007-10-07 11:44:02 +00:00
|
|
|
|
2007-10-07 11:45:40 +00:00
|
|
|
#ifdef WITH_SELINUX
|
|
|
|
#include <selinux/selinux.h>
|
|
|
|
#endif
|
2008-05-26 00:46:25 +00:00
|
|
|
|
2008-05-26 08:52:34 +00:00
|
|
|
#include "defines.h" /* bool */
|
2008-05-26 00:46:25 +00:00
|
|
|
|
2007-10-07 11:44:02 +00:00
|
|
|
/*
|
|
|
|
* Linked list entry.
|
|
|
|
*/
|
|
|
|
struct commonio_entry {
|
* libmisc/utmp.c, libmisc/age.c, libmisc/shell.c, lib/groupio.c,
lib/groupio.h, lib/sgroupio.c, lib/sgroupio.h, lib/shadowio.c,
lib/pwio.c, lib/commonio.c, lib/shadowio.h, lib/pwio.h,
lib/commonio.h, lib/prototypes.h: Added splint annotations.
2009-04-22 21:21:14 +00:00
|
|
|
/*@null@*/char *line;
|
|
|
|
/*@null@*/void *eptr; /* struct passwd, struct spwd, ... */
|
2009-04-25 13:13:50 +00:00
|
|
|
/*@dependent@*/ /*@null@*/struct commonio_entry *prev;
|
|
|
|
/*@owned@*/ /*@null@*/struct commonio_entry *next;
|
2008-05-26 00:46:25 +00:00
|
|
|
bool changed:1;
|
2007-10-07 11:44:02 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Operations depending on database type: passwd, group, shadow etc.
|
|
|
|
*/
|
|
|
|
struct commonio_ops {
|
|
|
|
/*
|
|
|
|
* Make a copy of the object (for example, struct passwd)
|
|
|
|
* and all strings pointed by it, in malloced memory.
|
|
|
|
*/
|
2009-04-23 11:53:55 +00:00
|
|
|
/*@null@*/ /*@only@*/void *(*dup) (const void *);
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* free() the object including any strings pointed by it.
|
|
|
|
*/
|
* libmisc/utmp.c, libmisc/age.c, libmisc/shell.c, lib/groupio.c,
lib/groupio.h, lib/sgroupio.c, lib/sgroupio.h, lib/shadowio.c,
lib/pwio.c, lib/commonio.c, lib/shadowio.h, lib/pwio.h,
lib/commonio.h, lib/prototypes.h: Added splint annotations.
2009-04-22 21:21:14 +00:00
|
|
|
void (*free) (/*@out@*/ /*@only@*/void *);
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Return the name of the object (for example, pw_name
|
|
|
|
* for struct passwd).
|
|
|
|
*/
|
2007-10-07 11:46:07 +00:00
|
|
|
const char *(*getname) (const void *);
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Parse a string, return object (in static area -
|
|
|
|
* should be copied using the dup operation above).
|
|
|
|
*/
|
2007-10-07 11:46:07 +00:00
|
|
|
void *(*parse) (const char *);
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Write the object to the file (this calls putpwent()
|
|
|
|
* for struct passwd, for example).
|
|
|
|
*/
|
2007-10-07 11:46:07 +00:00
|
|
|
int (*put) (const void *, FILE *);
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* fgets and fputs (can be replaced by versions that
|
|
|
|
* understand line continuation conventions).
|
|
|
|
*/
|
2009-04-23 11:53:55 +00:00
|
|
|
/*@null@*/char *(*fgets) (/*@returned@*/ /*@out@*/char *s, int n, FILE *stream);
|
2007-10-07 11:46:07 +00:00
|
|
|
int (*fputs) (const char *, FILE *);
|
2007-11-23 00:07:59 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* open_hook and close_hook.
|
|
|
|
* If non NULL, these functions will be called after the database
|
|
|
|
* is open or before it is closed.
|
|
|
|
* They return 0 on failure and 1 on success.
|
|
|
|
*/
|
* libmisc/utmp.c, libmisc/age.c, libmisc/shell.c, lib/groupio.c,
lib/groupio.h, lib/sgroupio.c, lib/sgroupio.h, lib/shadowio.c,
lib/pwio.c, lib/commonio.c, lib/shadowio.h, lib/pwio.h,
lib/commonio.h, lib/prototypes.h: Added splint annotations.
2009-04-22 21:21:14 +00:00
|
|
|
/*@null@*/int (*open_hook) (void);
|
|
|
|
/*@null@*/int (*close_hook) (void);
|
2007-10-07 11:44:02 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Database structure.
|
|
|
|
*/
|
|
|
|
struct commonio_db {
|
|
|
|
/*
|
|
|
|
* Name of the data file.
|
|
|
|
*/
|
|
|
|
char filename[1024];
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Operations from above.
|
|
|
|
*/
|
2009-04-24 23:33:47 +00:00
|
|
|
/*@observer@*/const struct commonio_ops *ops;
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Currently open file stream.
|
|
|
|
*/
|
2009-04-25 12:43:27 +00:00
|
|
|
/*@dependent@*/ /*@null@*/FILE *fp;
|
2007-10-07 11:44:02 +00:00
|
|
|
|
2007-10-07 11:45:40 +00:00
|
|
|
#ifdef WITH_SELINUX
|
2009-04-24 23:33:47 +00:00
|
|
|
/*@null@*/security_context_t scontext;
|
2007-10-07 11:45:40 +00:00
|
|
|
#endif
|
2015-02-27 16:26:57 +00:00
|
|
|
/*
|
|
|
|
* Default permissions and owner for newly created data file.
|
|
|
|
*/
|
|
|
|
mode_t st_mode;
|
|
|
|
uid_t st_uid;
|
|
|
|
gid_t st_gid;
|
2007-10-07 11:44:02 +00:00
|
|
|
/*
|
|
|
|
* Head, tail, current position in linked list.
|
|
|
|
*/
|
2011-11-19 21:51:52 +00:00
|
|
|
/*@owned@*/ /*@null@*/struct commonio_entry *head;
|
|
|
|
/*@dependent@*/ /*@null@*/struct commonio_entry *tail;
|
2009-04-25 14:16:22 +00:00
|
|
|
/*@dependent@*/ /*@null@*/struct commonio_entry *cursor;
|
2007-10-07 11:44:02 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Various flags.
|
|
|
|
*/
|
2008-05-26 00:46:25 +00:00
|
|
|
bool changed:1;
|
|
|
|
bool isopen:1;
|
|
|
|
bool locked:1;
|
|
|
|
bool readonly:1;
|
2019-05-02 14:33:06 +02:00
|
|
|
bool setname:1;
|
2007-10-07 11:44:02 +00:00
|
|
|
};
|
|
|
|
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_setname (struct commonio_db *, const char *);
|
2008-05-26 00:46:25 +00:00
|
|
|
extern bool commonio_present (const struct commonio_db *db);
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_lock (struct commonio_db *);
|
2011-07-14 13:58:17 +00:00
|
|
|
extern int commonio_lock_nowait (struct commonio_db *, bool log);
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_open (struct commonio_db *, int);
|
2009-04-23 21:19:02 +00:00
|
|
|
extern /*@observer@*/ /*@null@*/const void *commonio_locate (struct commonio_db *, const char *);
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_update (struct commonio_db *, const void *);
|
Allow disabling of subordinate IDs.
* configure.in: Add configure options --enable-subordinate-ids /
--disable-subordinate-ids. Enabled by default.
* lib/prototypes.h: Include <config.h> before using its macros.
* lib/commonio.h, lib/commonio.c: Define commonio_append only when
ENABLE_SUBIDS is defined.
* lib/prototypes.h, libmisc/find_new_sub_gids.c,
libmisc/find_new_sub_uids.c: Likewise.
* lib/subordinateio.h, lib/subordinateio.c: Likewise.
* libmisc/user_busy.c: Only check if subordinate IDs are in use if
ENABLE_SUBIDS is defined.
* src/Makefile.am: Create newgidmap and newuidmap only if
ENABLE_SUBIDS is defined.
* src/newusers.c: Check for ENABLE_SUBIDS to enable support for
subordinate IDs.
* src/useradd.c: Likewise.
* src/userdel.c: Likewise.
* src/usermod.c: Likewise.
* man/Makefile.am: Install man1/newgidmap.1, man1/newuidmap.1,
man5/subgid.5, and man5/subuid.5 only if ENABLE_SUBIDS is defined.
* man/fr/Makefile.am: Install man1/newgidmap.1, man1/newuidmap.1,
man5/subgid.5, and man5/subuid.5 (not translated yet).
* man/generate_mans.mak: Add xsltproc conditionals
subids/no_subids.
* man/login.defs.d/SUB_GID_COUNT.xml: Add dependency on subids
condition.
* man/login.defs.d/SUB_UID_COUNT.xml: Likewise.
* man/usermod.8.xml: Document options for subordinate IDs and
reference subgid(5) / subuid(5) depending on the subids condition.
2013-08-11 14:54:22 +02:00
|
|
|
#ifdef ENABLE_SUBIDS
|
2013-01-22 01:13:26 -08:00
|
|
|
extern int commonio_append (struct commonio_db *, const void *);
|
Allow disabling of subordinate IDs.
* configure.in: Add configure options --enable-subordinate-ids /
--disable-subordinate-ids. Enabled by default.
* lib/prototypes.h: Include <config.h> before using its macros.
* lib/commonio.h, lib/commonio.c: Define commonio_append only when
ENABLE_SUBIDS is defined.
* lib/prototypes.h, libmisc/find_new_sub_gids.c,
libmisc/find_new_sub_uids.c: Likewise.
* lib/subordinateio.h, lib/subordinateio.c: Likewise.
* libmisc/user_busy.c: Only check if subordinate IDs are in use if
ENABLE_SUBIDS is defined.
* src/Makefile.am: Create newgidmap and newuidmap only if
ENABLE_SUBIDS is defined.
* src/newusers.c: Check for ENABLE_SUBIDS to enable support for
subordinate IDs.
* src/useradd.c: Likewise.
* src/userdel.c: Likewise.
* src/usermod.c: Likewise.
* man/Makefile.am: Install man1/newgidmap.1, man1/newuidmap.1,
man5/subgid.5, and man5/subuid.5 only if ENABLE_SUBIDS is defined.
* man/fr/Makefile.am: Install man1/newgidmap.1, man1/newuidmap.1,
man5/subgid.5, and man5/subuid.5 (not translated yet).
* man/generate_mans.mak: Add xsltproc conditionals
subids/no_subids.
* man/login.defs.d/SUB_GID_COUNT.xml: Add dependency on subids
condition.
* man/login.defs.d/SUB_UID_COUNT.xml: Likewise.
* man/usermod.8.xml: Document options for subordinate IDs and
reference subgid(5) / subuid(5) depending on the subids condition.
2013-08-11 14:54:22 +02:00
|
|
|
#endif /* ENABLE_SUBIDS */
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_remove (struct commonio_db *, const char *);
|
|
|
|
extern int commonio_rewind (struct commonio_db *);
|
2009-04-23 21:19:02 +00:00
|
|
|
extern /*@observer@*/ /*@null@*/const void *commonio_next (struct commonio_db *);
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_close (struct commonio_db *);
|
|
|
|
extern int commonio_unlock (struct commonio_db *);
|
|
|
|
extern void commonio_del_entry (struct commonio_db *,
|
* libmisc/console.c, libmisc/motd.c, libmisc/setupenv.c,
libmisc/sulog.c, libmisc/hushed.c, libmisc/failure.c,
libmisc/loginprompt.c, libmisc/ttytype.c,
libmisc/pam_pass_non_interractive.c, src/userdel.c, src/login.c,
lib/commonio.c, lib/commonio.h: Fix some const issues.
* libmisc/motd.c: Avoid multi-statements lines.
* libmisc/motd.c: Support long MOTD_FILE.
* libmisc/list.c, lib/prototypes.h: Revert previous change.
dup_list and is_on_list are used with members as defined for the
group structure, and thus even if the list is not modified, the
list elements cannot be constant strings.
* libmisc/system.c: Avoid C++ comments.
* src/vipw.c: WITH_TCB cannot be tested inside a gettextized
string. Split the Usage string.
* lib/commonio.h: Re-indent.
2010-08-21 15:32:53 +00:00
|
|
|
const struct commonio_entry *);
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_sort_wrt (struct commonio_db *shadow,
|
* libmisc/console.c, libmisc/motd.c, libmisc/setupenv.c,
libmisc/sulog.c, libmisc/hushed.c, libmisc/failure.c,
libmisc/loginprompt.c, libmisc/ttytype.c,
libmisc/pam_pass_non_interractive.c, src/userdel.c, src/login.c,
lib/commonio.c, lib/commonio.h: Fix some const issues.
* libmisc/motd.c: Avoid multi-statements lines.
* libmisc/motd.c: Support long MOTD_FILE.
* libmisc/list.c, lib/prototypes.h: Revert previous change.
dup_list and is_on_list are used with members as defined for the
group structure, and thus even if the list is not modified, the
list elements cannot be constant strings.
* libmisc/system.c: Avoid C++ comments.
* src/vipw.c: WITH_TCB cannot be tested inside a gettextized
string. Split the Usage string.
* lib/commonio.h: Re-indent.
2010-08-21 15:32:53 +00:00
|
|
|
const struct commonio_db *passwd);
|
2007-10-07 11:46:07 +00:00
|
|
|
extern int commonio_sort (struct commonio_db *db,
|
* libmisc/console.c, libmisc/motd.c, libmisc/setupenv.c,
libmisc/sulog.c, libmisc/hushed.c, libmisc/failure.c,
libmisc/loginprompt.c, libmisc/ttytype.c,
libmisc/pam_pass_non_interractive.c, src/userdel.c, src/login.c,
lib/commonio.c, lib/commonio.h: Fix some const issues.
* libmisc/motd.c: Avoid multi-statements lines.
* libmisc/motd.c: Support long MOTD_FILE.
* libmisc/list.c, lib/prototypes.h: Revert previous change.
dup_list and is_on_list are used with members as defined for the
group structure, and thus even if the list is not modified, the
list elements cannot be constant strings.
* libmisc/system.c: Avoid C++ comments.
* src/vipw.c: WITH_TCB cannot be tested inside a gettextized
string. Split the Usage string.
* lib/commonio.h: Re-indent.
2010-08-21 15:32:53 +00:00
|
|
|
int (*cmp) (const void *, const void *));
|
* libmisc/console.c, libmisc/ulimit.c, lib/sgetgrent.c,
lib/sgetpwent.c: Include "prototypes.h" to make
sure the exported prototypes are the ones used for the definition
of functions.
* lib/prototypes.h: Added prototypes for __gr_del_entry(),
__gr_get_db(), __gr_get_head(), __gr_set_changed(), __gr_dup(),
__pw_del_entry(), __pw_get_db(), __pw_get_head(), __pw_dup(),
sgetgrent(), sgetpwent(), __sgr_del_entry(), __sgr_dup(),
__sgr_get_head(), __sgr_set_changed(), __spw_get_head(),
__spw_del_entry(), __spw_dup().
* lib/prototypes.h: Removed prototype for is_listed().
* lib/prototypes.h: Added name of the check_su_auth()'s parameters.
* lib/groupio.h: Removed prototypes for __gr_dup() and
__gr_set_changed().
* lib/sgroupio.c: Removed prototypes for putsgent(), sgetsgent(),
and __gr_get_db().
* lib/sgroupio.h: Removed prototypes for __sgr_dup() and
__sgr_set_changed().
* lib/shadowio.c: Removed prototype for __pw_get_db().
* lib/pwio.c: Removed prototype for sgetpwent() and putpwent().
* lib/shadowio.h: Removed prototypes for __spw_dup() and
__spw_set_changed().
* lib/pwio.h: Removed prototypes for __pw_dup() and
__pw_set_changed().
* lib/commonio.h: Add protection against multiple inclusions.
* lib/prototypes.h: Include commonio.h (needed for the
__xx_del_entry() functions).
2008-01-06 11:59:01 +00:00
|
|
|
|
|
|
|
#endif
|