systemd / systemd / 24373971178

STATIC_DESTRUCTOR_REGISTER(arg_root, freep);

STATIC_DESTRUCTOR_REGISTER(arg_image, freep);

STATIC_DESTRUCTOR_REGISTER(arg_image_policy, image_policy_freep);

static void context_done(Context *c) {

        assert(c);

        c->audit_fd = close_audit_fd(c->audit_fd);

        ordered_hashmap_free(c->groups);

        ordered_hashmap_free(c->users);

        ordered_hashmap_free(c->members);

        ordered_hashmap_free(c->todo_uids);

        ordered_hashmap_free(c->todo_gids);

        hashmap_free(c->database_by_uid);

        hashmap_free(c->database_by_username);

        hashmap_free(c->database_by_gid);

        hashmap_free(c->database_by_groupname);

        set_free(c->names);

        uid_range_free(c->uid_range);

}

static void maybe_emit_login_defs_warning(Context *c) {

        assert(c);

        if (!c->login_defs_need_warning)

        if (c->login_defs.system_alloc_uid_min != SYSTEM_ALLOC_UID_MIN ||

            c->login_defs.system_uid_max != SYSTEM_UID_MAX)

        if (c->login_defs.system_alloc_gid_min != SYSTEM_ALLOC_GID_MIN ||

            c->login_defs.system_gid_max != SYSTEM_GID_MAX)

        c->login_defs_need_warning = false;

static void log_audit_accounts(Context *c, ItemType what) {

        assert(c);

        assert(IN_SET(what, ADD_USER, ADD_GROUP));

        if (arg_dry_run || c->audit_fd < 0)

                return;

static int load_user_database(Context *c) {

        _cleanup_free_ char *passwd_path = NULL;

        _cleanup_fclose_ FILE *f = NULL;

        struct passwd *pw;

        int r;

        assert(c);

        r = chase_and_fopen_unlocked("/etc/passwd", arg_root, CHASE_PREFIX_ROOT, "re", &passwd_path, &f);

        if (r == -ENOENT)

        if (r < 0)

        while ((r = fgetpwent_sane(f, &pw)) > 0) {

                char *n = strdup(pw->pw_name);

                if (!n)

                r = set_ensure_consume(&c->names, &trivial_hash_ops_free, n);

                if (r < 0)

                assert(r > 0);  /* The set uses pointer comparisons, so n must not be in the set. */

                r = hashmap_ensure_put(&c->database_by_username, &string_hash_ops, n, UID_TO_PTR(pw->pw_uid));

                if (r == -EEXIST)

                else if (r < 0)

                r = hashmap_ensure_put(&c->database_by_uid, /* hash_ops= */ NULL, UID_TO_PTR(pw->pw_uid), n);

                if (r == -EEXIST)

                        log_debug_errno(r, "%s: uid "UID_FMT" is listed twice, ignoring duplicate name.",

                else if (r < 0)

static int load_group_database(Context *c) {

        _cleanup_free_ char *group_path = NULL;

        _cleanup_fclose_ FILE *f = NULL;

        struct group *gr;

        int r;

        assert(c);

        r = chase_and_fopen_unlocked("/etc/group", arg_root, CHASE_PREFIX_ROOT, "re", &group_path, &f);

        if (r == -ENOENT)

        if (r < 0)

        while ((r = fgetgrent_sane(f, &gr)) > 0) {

                char *n = strdup(gr->gr_name);

                if (!n)

                r = set_ensure_consume(&c->names, &trivial_hash_ops_free, n);

                if (r < 0)

                assert(r > 0);  /* The set uses pointer comparisons, so n must not be in the set. */

                r = hashmap_ensure_put(&c->database_by_groupname, &string_hash_ops, n, GID_TO_PTR(gr->gr_gid));

                if (r == -EEXIST)

                else if (r < 0)

                r = hashmap_ensure_put(&c->database_by_gid, /* hash_ops= */ NULL, GID_TO_PTR(gr->gr_gid), n);

                if (r == -EEXIST)

                        log_debug_errno(r, "%s: gid "GID_FMT" is listed twice, ignoring duplicate name.",

                else if (r < 0)

static int make_backup(const char *target, const char *x) {

        _cleanup_fclose_ FILE *dst = NULL;

        _cleanup_close_ int src = -EBADF;

        const char *backup;

        struct stat st;

        int r;

        assert(target);

        assert(x);

        src = open(x, O_RDONLY|O_CLOEXEC|O_NOCTTY);

        if (src < 0) {

                if (errno == ENOENT) /* No backup necessary... */

        if (fstat(src, &st) < 0)

        r = fopen_temporary_label(

        if (r < 0)

        r = copy_bytes(src, fileno(dst), UINT64_MAX, COPY_REFLINK);

        if (r < 0)

        backup = strjoina(x, "-");

        r = fchmod_and_chown_with_fallback(fileno(dst), dst_tmp, st.st_mode & 07777, st.st_uid, st.st_gid);

        if (r < 0)

        if (futimens(fileno(dst), (const struct timespec[2]) { st.st_atim, st.st_mtim }) < 0)

        r = fsync_full(fileno(dst));

        if (r < 0)

        if (rename(dst_tmp, backup) < 0)

        dst_tmp = mfree(dst_tmp); /* disable the unlink_and_freep() hook now that the file has been renamed */

        return 0;

static int putgrent_with_members(

        char **a;

        int r;

        assert(c);

        assert(gr);

        assert(group);

        a = ordered_hashmap_get(c->members, gr->gr_name);

        if (a) {

                _cleanup_strv_free_ char **l = NULL;

                bool added = false;

                l = strv_copy(gr->gr_mem);

                if (!l)

                STRV_FOREACH(i, a) {

                        if (strv_contains(l, *i))

                                continue;

                        r = strv_extend(&l, *i);

                        if (r < 0)

                if (added) {

                        struct group t;

                        strv_sort_uniq(l);

                        t = *gr;

                        t.gr_mem = l;

                        r = putgrent_sane(&t, group);

                        return r < 0 ? r : 1;

        return putgrent_sane(gr, group);

static int putsgent_with_members(

        char **a;

        int r;

        assert(sg);

        assert(gshadow);

        a = ordered_hashmap_get(c->members, sg->sg_namp);

        if (a) {

                _cleanup_strv_free_ char **l = NULL;

                bool added = false;

                l = strv_copy(sg->sg_mem);

                if (!l)

                STRV_FOREACH(i, a) {

                        if (strv_contains(l, *i))

                                continue;

                        r = strv_extend(&l, *i);

                        if (r < 0)

                if (added) {

                        struct sgrp t;

                        strv_sort_uniq(l);

                        t = *sg;

                        t.sg_mem = l;

                        r = putsgent_sane(&t, gshadow);

                        return r < 0 ? r : 1;

        return putsgent_sane(sg, gshadow);

static const char* pick_shell(const Item *i) {

        assert(i);

        if (i->type != ADD_USER)

        if (i->shell)

        if (i->uid_set && i->uid == 0)

                return default_root_shell(arg_root);

static int write_temporary_passwd(

        _cleanup_fclose_ FILE *original = NULL, *passwd = NULL;

        _cleanup_(unlink_and_freep) char *passwd_tmp = NULL;

        struct passwd *pw = NULL;

        Item *i;

        int r;

        assert(c);

        assert(ret_tmpfile);

        assert(ret_tmpfile_path);

        if (ordered_hashmap_isempty(c->todo_uids))

                goto done;

        if (arg_dry_run) {

        r = fopen_temporary_label("/etc/passwd", passwd_path, &passwd, &passwd_tmp);

        if (r < 0)

        original = fopen(passwd_path, "re");

        if (original) {

                r = copy_rights_with_fallback(fileno(original), fileno(passwd), passwd_tmp);

                if (r < 0)

                while ((r = fgetpwent_sane(original, &pw)) > 0) {

                        i = ordered_hashmap_get(c->users, pw->pw_name);

                        if (i && i->todo_user)

                        if (ordered_hashmap_contains(c->todo_uids, UID_TO_PTR(pw->pw_uid)))

                        if (IN_SET(pw->pw_name[0], '+', '-'))

                        r = putpwent_sane(pw, passwd);

                        if (r < 0)

                if (r < 0)

                if (errno != ENOENT)

                if (fchmod(fileno(passwd), 0644) < 0)

        ORDERED_HASHMAP_FOREACH(i, c->todo_uids) {

                _cleanup_free_ char *creds_shell = NULL, *cn = NULL;

                struct passwd n = {

                        .pw_name = i->name,

                        .pw_uid = i->uid,

                        .pw_gid = i->gid,

                        .pw_gecos = (char*) strempty(i->description),

                        .pw_dir = i->home ?: (char*) "/",

                        .pw_shell = (char*) pick_shell(i),

                cn = strjoin("passwd.shell.", i->name);

                if (!cn)

                r = read_credential(cn, (void**) &creds_shell, NULL);

                if (r < 0)

                        log_debug_errno(r, "Couldn't read credential '%s', ignoring: %m", cn);

                r = putpwent_sane(&n, passwd);

                if (r < 0)

        while (pw) {

                r = putpwent_sane(pw, passwd);

                if (r < 0)

                r = fgetpwent_sane(original, &pw);

                if (r < 0)

                if (r == 0)

        r = fflush_sync_and_check(passwd);

        if (r < 0)

done:

        *ret_tmpfile = TAKE_PTR(passwd);

        *ret_tmpfile_path = TAKE_PTR(passwd_tmp);

        return 0;

static int write_temporary_shadow(

        _cleanup_fclose_ FILE *original = NULL, *shadow = NULL;

        _cleanup_(unlink_and_freep) char *shadow_tmp = NULL;

        struct spwd *sp = NULL;

        long lstchg;

        Item *i;

        int r;

        assert(c);

        assert(ret_tmpfile);

        assert(ret_tmpfile_path);

        if (ordered_hashmap_isempty(c->todo_uids))

                goto done;

        if (arg_dry_run) {

        r = fopen_temporary_label("/etc/shadow", shadow_path, &shadow, &shadow_tmp);

        if (r < 0)

        lstchg = (long) (source_date_epoch_or_now() / USEC_PER_DAY);

        original = fopen(shadow_path, "re");

        if (original) {

                r = copy_rights_with_fallback(fileno(original), fileno(shadow), shadow_tmp);

                if (r < 0)

                while ((r = fgetspent_sane(original, &sp)) > 0) {

                        i = ordered_hashmap_get(c->users, sp->sp_namp);

                        if (i && i->todo_user) {

                        if (IN_SET(sp->sp_namp[0], '+', '-'))

                        r = putspent_sane(sp, shadow);

                        if (r < 0)

                if (r < 0)

                if (errno != ENOENT)

                if (fchmod(fileno(shadow), 0000) < 0)

        ORDERED_HASHMAP_FOREACH(i, c->todo_uids) {

                _cleanup_(erase_and_freep) char *creds_password = NULL;

                bool is_hashed;

                struct spwd n = {

                        .sp_namp = i->name,

                        .sp_expire = i->locked ? 1 : -1, /* Negative expiration means "unset". Expiration 0 or 1 means "locked" */

                r = get_credential_user_password(i->name, &creds_password, &is_hashed);

                if (r < 0)

                        log_debug_errno(r, "Couldn't read password credential for user '%s', ignoring: %m", i->name);

                if (creds_password && !is_hashed) {

                if (creds_password)

                else if (streq(i->name, "root"))

                        n.sp_pwdp = (char*) PASSWORD_UNPROVISIONED;

                        n.sp_pwdp = (char*) PASSWORD_LOCKED_AND_INVALID;

                r = putspent_sane(&n, shadow);

                if (r < 0)

        while (sp) {

        if (!IN_SET(errno, 0, ENOENT))

        r = fflush_sync_and_check(shadow);

        if (r < 0)

done:

        *ret_tmpfile = TAKE_PTR(shadow);

        *ret_tmpfile_path = TAKE_PTR(shadow_tmp);

        return 0;

static int write_temporary_group(

        _cleanup_fclose_ FILE *original = NULL, *group = NULL;

        _cleanup_(unlink_and_freep) char *group_tmp = NULL;

        bool group_changed = false;

        struct group *gr = NULL;

        Item *i;

        int r;

        assert(c);

        assert(ret_tmpfile);

        assert(ret_tmpfile_path);

        if (ordered_hashmap_isempty(c->todo_gids) && ordered_hashmap_isempty(c->members))

                goto done;

        if (arg_dry_run) {

        r = fopen_temporary_label("/etc/group", group_path, &group, &group_tmp);

        if (r < 0)

        original = fopen(group_path, "re");

        if (original) {

                r = copy_rights_with_fallback(fileno(original), fileno(group), group_tmp);

                if (r < 0)

                while ((r = fgetgrent_sane(original, &gr)) > 0) {

                        i = ordered_hashmap_get(c->groups, gr->gr_name);

                        if (i && i->todo_group)

                        if (ordered_hashmap_contains(c->todo_gids, GID_TO_PTR(gr->gr_gid)))

                        if (IN_SET(gr->gr_name[0], '+', '-'))

                        r = putgrent_with_members(c, gr, group);

                        if (r < 0)

                        if (r > 0)

                if (r < 0)

                if (errno != ENOENT)

                if (fchmod(fileno(group), 0644) < 0)

        ORDERED_HASHMAP_FOREACH(i, c->todo_gids) {

                struct group n = {

                        .gr_name = i->name,

                        .gr_gid = i->gid,

                r = putgrent_with_members(c, &n, group);

                if (r < 0)

                group_changed = true;

        while (gr) {

                r = putgrent_sane(gr, group);

                if (r < 0)

                r = fgetgrent_sane(original, &gr);

                if (r < 0)

                if (r == 0)

        r = fflush_sync_and_check(group);

        if (r < 0)

done:

        if (group_changed) {

                *ret_tmpfile = TAKE_PTR(group);

                *ret_tmpfile_path = TAKE_PTR(group_tmp);

                *ret_tmpfile = NULL;

                *ret_tmpfile_path = NULL;

static int write_temporary_gshadow(

        _cleanup_fclose_ FILE *original = NULL, *gshadow = NULL;

        _cleanup_(unlink_and_freep) char *gshadow_tmp = NULL;

        bool group_changed = false;

        Item *i;

        int r;

        assert(c);

        assert(ret_tmpfile);

        assert(ret_tmpfile_path);

        if (ordered_hashmap_isempty(c->todo_gids) && ordered_hashmap_isempty(c->members))

                goto done;

        if (arg_dry_run) {

        r = fopen_temporary_label("/etc/gshadow", gshadow_path, &gshadow, &gshadow_tmp);

        if (r < 0)

        original = fopen(gshadow_path, "re");

        if (original) {

                struct sgrp *sg;

                r = copy_rights_with_fallback(fileno(original), fileno(gshadow), gshadow_tmp);

                if (r < 0)

                while ((r = fgetsgent_sane(original, &sg)) > 0) {

                        i = ordered_hashmap_get(c->groups, sg->sg_namp);

                        if (i && i->todo_group)

                        r = putsgent_with_members(c, sg, gshadow);

                        if (r < 0)

                        if (r > 0)

                if (r < 0)

                if (errno != ENOENT)

                if (fchmod(fileno(gshadow), 0000) < 0)