4360eafdd2
1999-06-18 Zack Weinberg <zack@rabi.columbia.edu> * include/features.h: Define new macros __GNUC_PREREQ and __GLIBC_PREREQ which can be used to test the version of gcc and glibc respectively. * assert/assert.h: Use __GNUC_PREREQ. * intl/libintl.h: Likewise. * math/complex.h: Likewise. * math/tgmath.h: Likewise. * misc/sys/cdefs.h: Likewise. * posix/sys/types.h: Likewise. * socket/sys/socket.h: Likewise. * string/bits/string2.h: Likewise. * sysdeps/alpha/fpu/bits/mathinline.h: Likewise. * sysdeps/i386/fpu/bits/mathinline.h: Likewise. 1999-06-18 Zack Weinberg <zack@rabi.columbia.edu> * include/libintl.h: Declare _libc_intl_domainname here. Define _ and N_ here. * include/libc-symbols.h: Don't include <libintl.h>. Don't define _ and N_. Don't declare _libc_intl_domainname. * Makeconfig (CPPFLAGS): Use -imacros to read libc-symbols.h. * db2/config.h: Don't include sys/stat.h or define HAVE_ST_BLKSIZE here... * db2/compat.h: ...do it here. * linuxthreads/internals.h: Include bits/libc-tsd.h after all other headers. * linuxthreads/no-tsd.c: Include sys/cdefs.h for __P. * iconv/iconv.c: Include stddef.h for NULL. * malloc/malloc.h: Include features.h. * sysdeps/generic/morecore.c: Use __malloc_ptr_t not __ptr_t. * sysdeps/unix/make_errlist.c: Write an "#include <libintl.h>" into the generated file. * sysdeps/gnu/errlist.awk: Likewise. * sysdeps/gnu/errlist.c: Rebuilt. * assert/assert-perr.c: Include libintl.h. * assert/assert.c: Likewise. * elf/dl-open.c: Likewise. * elf/dlsym.c: Likewise. * elf/dlvsym.c: Likewise. * iconv/iconv_prog.c: Likewise. * inet/rcmd.c: Likewise. * inet/ruserpass.c: Likewise. * locale/programs/charset.c: Likewise. * locale/programs/ld-collate.c: Likewise. * locale/programs/ld-ctype.c: Likewise. * locale/programs/ld-messages.c: Likewise. * locale/programs/ld-monetary.c: Likewise. * locale/programs/ld-numeric.c: Likewise. * locale/programs/ld-time.c: Likewise. * locale/programs/locfile.c: Likewise. * locale/programs/repertoire.c: Likewise. * login/programs/database.c: Likewise. * login/programs/request.c: Likewise. * malloc/mcheck.c: Likewise. * misc/error.c: Likewise. * nis/nis_call.c: Likewise. * nis/nis_callback.c: Likewise. * nis/nis_error.c: Likewise. * nis/nis_local_names.c: Likewise. * nis/nis_print.c: Likewise. * nis/nis_print_group_entry.c: Likewise. * nis/ypclnt.c: Likewise. * nis/nss_nisplus/nisplus-publickey.c: Likewise. * nscd/cache.c: Likewise. * nscd/connections.c: Likewise. * nscd/grpcache.c: Likewise. * nscd/hstcache.c: Likewise. * nscd/nscd_conf.c: Likewise. * nscd/nscd_stat.c: Likewise. * nscd/pwdcache.c: Likewise. * posix/id.c: Likewise. * resolv/herror.c: Likewise. * stdio-common/psignal.c: Likewise. * string/strsignal.c: Likewise. * sunrpc/auth_unix.c: Likewise. * sunrpc/clnt_perr.c: Likewise. * sunrpc/clnt_raw.c: Likewise. * sunrpc/clnt_tcp.c: Likewise. * sunrpc/clnt_udp.c: Likewise. * sunrpc/clnt_unix.c: Likewise. * sunrpc/get_myaddr.c: Likewise. * sunrpc/pm_getmaps.c: Likewise. * sunrpc/pmap_clnt.c: Likewise. * sunrpc/pmap_rmt.c: Likewise. * sunrpc/rpc_main.c: Likewise. * sunrpc/rpc_scan.c: Likewise. * sunrpc/svc_run.c: Likewise. * sunrpc/svc_simple.c: Likewise. * sunrpc/svc_tcp.c: Likewise. * sunrpc/svc_udp.c: Likewise. * sunrpc/svc_unix.c: Likewise. * sunrpc/xdr_rec.c: Likewise. * sunrpc/xdr_ref.c: Likewise. * sysdeps/mach/hurd/mips/dl-machine.c: Likewise. * sysdeps/posix/gai_strerror.c: Likewise. * sysdeps/unix/siglist.c: Likewise. * sysdeps/unix/sysv/linux/siglist.c: Likewise. * sysdeps/unix/sysv/linux/arm/siglist.c: Likewise. * sysdeps/unix/sysv/sysv4/solaris2/sparc/errlist.c: Likewise. * timezone/zic.c: Likewise.
270 lines
7.4 KiB
C
270 lines
7.4 KiB
C
/* Cache handling for passwd lookup.
|
|
Copyright (C) 1998, 1999 Free Software Foundation, Inc.
|
|
This file is part of the GNU C Library.
|
|
Contributed by Ulrich Drepper <drepper@cygnus.com>, 1998.
|
|
|
|
The GNU C Library is free software; you can redistribute it and/or
|
|
modify it under the terms of the GNU Library General Public License as
|
|
published by the Free Software Foundation; either version 2 of the
|
|
License, or (at your option) any later version.
|
|
|
|
The GNU C Library is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
Library General Public License for more details.
|
|
|
|
You should have received a copy of the GNU Library General Public
|
|
License along with the GNU C Library; see the file COPYING.LIB. If not,
|
|
write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
|
|
Boston, MA 02111-1307, USA. */
|
|
|
|
#include <errno.h>
|
|
#include <error.h>
|
|
#include <pwd.h>
|
|
#include <stddef.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <time.h>
|
|
#include <unistd.h>
|
|
#include <libintl.h>
|
|
|
|
#include "nscd.h"
|
|
#include "dbg_log.h"
|
|
|
|
/* This is the standard reply in case the service is disabled. */
|
|
static const pw_response_header disabled =
|
|
{
|
|
version: NSCD_VERSION,
|
|
found: -1,
|
|
pw_name_len: 0,
|
|
pw_passwd_len: 0,
|
|
pw_uid: -1,
|
|
pw_gid: -1,
|
|
pw_gecos_len: 0,
|
|
pw_dir_len: 0,
|
|
pw_shell_len: 0
|
|
};
|
|
|
|
/* This is the struct describing how to write this record. */
|
|
const struct iovec pwd_iov_disabled =
|
|
{
|
|
iov_base: (void *) &disabled,
|
|
iov_len: sizeof (disabled)
|
|
};
|
|
|
|
|
|
/* This is the standard reply in case we haven't found the dataset. */
|
|
static const pw_response_header notfound =
|
|
{
|
|
version: NSCD_VERSION,
|
|
found: 0,
|
|
pw_name_len: 0,
|
|
pw_passwd_len: 0,
|
|
pw_uid: -1,
|
|
pw_gid: -1,
|
|
pw_gecos_len: 0,
|
|
pw_dir_len: 0,
|
|
pw_shell_len: 0
|
|
};
|
|
|
|
/* This is the struct describing how to write this record. */
|
|
static const struct iovec iov_notfound =
|
|
{
|
|
iov_base: (void *) ¬found,
|
|
iov_len: sizeof (notfound)
|
|
};
|
|
|
|
|
|
struct passwddata
|
|
{
|
|
pw_response_header resp;
|
|
char strdata[0];
|
|
};
|
|
|
|
|
|
static void
|
|
cache_addpw (struct database *db, int fd, request_header *req, void *key,
|
|
struct passwd *pwd, uid_t owner)
|
|
{
|
|
ssize_t total;
|
|
ssize_t written;
|
|
time_t t = time (NULL);
|
|
|
|
if (pwd == NULL)
|
|
{
|
|
/* We have no data. This means we send the standard reply for this
|
|
case. */
|
|
void *copy;
|
|
|
|
total = sizeof (notfound);
|
|
|
|
written = writev (fd, &iov_notfound, 1);
|
|
|
|
copy = malloc (req->key_len);
|
|
if (copy == NULL)
|
|
error (EXIT_FAILURE, errno, _("while allocating key copy"));
|
|
memcpy (copy, key, req->key_len);
|
|
|
|
/* Compute the timeout time. */
|
|
t += db->negtimeout;
|
|
|
|
/* Now get the lock to safely insert the records. */
|
|
pthread_rwlock_rdlock (&db->lock);
|
|
|
|
cache_add (req->type, copy, req->key_len, &iov_notfound,
|
|
sizeof (notfound), (void *) -1, 0, t, db, owner);
|
|
|
|
pthread_rwlock_unlock (&db->lock);
|
|
}
|
|
else
|
|
{
|
|
/* Determine the I/O structure. */
|
|
struct passwddata *data;
|
|
size_t pw_name_len = strlen (pwd->pw_name) + 1;
|
|
size_t pw_passwd_len = strlen (pwd->pw_passwd) + 1;
|
|
size_t pw_gecos_len = strlen (pwd->pw_gecos) + 1;
|
|
size_t pw_dir_len = strlen (pwd->pw_dir) + 1;
|
|
size_t pw_shell_len = strlen (pwd->pw_shell) + 1;
|
|
char *cp;
|
|
char buf[12];
|
|
ssize_t n;
|
|
|
|
/* We need this to insert the `byuid' entry. */
|
|
n = snprintf (buf, sizeof (buf), "%d", pwd->pw_uid) + 1;
|
|
|
|
/* We allocate all data in one memory block: the iov vector,
|
|
the response header and the dataset itself. */
|
|
total = (sizeof (struct passwddata) + pw_name_len + pw_passwd_len
|
|
+ pw_gecos_len + pw_dir_len + pw_shell_len);
|
|
data = (struct passwddata *) malloc (total + n);
|
|
if (data == NULL)
|
|
/* There is no reason to go on. */
|
|
error (EXIT_FAILURE, errno, _("while allocating cache entry"));
|
|
|
|
data->resp.found = 1;
|
|
data->resp.pw_name_len = pw_name_len;
|
|
data->resp.pw_passwd_len = pw_passwd_len;
|
|
data->resp.pw_uid = pwd->pw_uid;
|
|
data->resp.pw_gid = pwd->pw_gid;
|
|
data->resp.pw_gecos_len = pw_gecos_len;
|
|
data->resp.pw_dir_len = pw_dir_len;
|
|
data->resp.pw_shell_len = pw_shell_len;
|
|
|
|
cp = data->strdata;
|
|
|
|
/* Copy the strings over into the buffer. */
|
|
cp = mempcpy (cp, pwd->pw_name, pw_name_len);
|
|
cp = mempcpy (cp, pwd->pw_passwd, pw_passwd_len);
|
|
cp = mempcpy (cp, pwd->pw_gecos, pw_gecos_len);
|
|
cp = mempcpy (cp, pwd->pw_dir, pw_dir_len);
|
|
cp = mempcpy (cp, pwd->pw_shell, pw_shell_len);
|
|
|
|
/* Finally the stringified UID value. */
|
|
memcpy (cp, buf, n);
|
|
|
|
/* We write the dataset before inserting it to the database
|
|
since while inserting this thread might block and so would
|
|
unnecessarily let the receiver wait. */
|
|
written = write (fd, &data->resp, total);
|
|
|
|
/* Compute the timeout time. */
|
|
t += db->postimeout;
|
|
|
|
/* Now get the lock to safely insert the records. */
|
|
pthread_rwlock_rdlock (&db->lock);
|
|
|
|
/* We have to add the value for both, byname and byuid. */
|
|
cache_add (GETPWBYNAME, data->strdata, pw_name_len, data,
|
|
total, data, 0, t, db, owner);
|
|
|
|
cache_add (GETPWBYUID, cp, n, data, total, data, 1, t, db, owner);
|
|
|
|
pthread_rwlock_unlock (&db->lock);
|
|
}
|
|
|
|
if (written != total)
|
|
{
|
|
char buf[256];
|
|
dbg_log (_("short write in %s: %s"), __FUNCTION__,
|
|
strerror_r (errno, buf, sizeof (buf)));
|
|
}
|
|
}
|
|
|
|
|
|
void
|
|
addpwbyname (struct database *db, int fd, request_header *req,
|
|
void *key, uid_t c_uid)
|
|
{
|
|
/* Search for the entry matching the key. Please note that we don't
|
|
look again in the table whether the dataset is now available. We
|
|
simply insert it. It does not matter if it is in there twice. The
|
|
pruning function only will look at the timestamp. */
|
|
int buflen = 256;
|
|
char *buffer = alloca (buflen);
|
|
struct passwd resultbuf;
|
|
struct passwd *pwd;
|
|
uid_t oldeuid;
|
|
|
|
if (debug_level > 0)
|
|
dbg_log (_("Haven't found \"%s\" in password cache!"), key);
|
|
|
|
if (secure[pwddb])
|
|
{
|
|
oldeuid = geteuid ();
|
|
seteuid (c_uid);
|
|
}
|
|
|
|
while (getpwnam_r (key, &resultbuf, buffer, buflen, &pwd) != 0
|
|
&& errno == ERANGE)
|
|
{
|
|
errno = 0;
|
|
buflen += 256;
|
|
buffer = alloca (buflen);
|
|
}
|
|
|
|
if (secure[pwddb])
|
|
seteuid (c_uid);
|
|
|
|
cache_addpw (db, fd, req, key, pwd, c_uid);
|
|
}
|
|
|
|
|
|
void
|
|
addpwbyuid (struct database *db, int fd, request_header *req,
|
|
void *key, uid_t c_uid)
|
|
{
|
|
/* Search for the entry matching the key. Please note that we don't
|
|
look again in the table whether the dataset is now available. We
|
|
simply insert it. It does not matter if it is in there twice. The
|
|
pruning function only will look at the timestamp. */
|
|
int buflen = 256;
|
|
char *buffer = alloca (buflen);
|
|
struct passwd resultbuf;
|
|
struct passwd *pwd;
|
|
uid_t uid = atol (key);
|
|
uid_t oldeuid = 0;
|
|
|
|
if (debug_level > 0)
|
|
dbg_log (_("Haven't found \"%d\" in password cache!"), uid);
|
|
|
|
if (secure[pwddb])
|
|
{
|
|
oldeuid = geteuid ();
|
|
seteuid (c_uid);
|
|
}
|
|
|
|
while (getpwuid_r (uid, &resultbuf, buffer, buflen, &pwd) != 0
|
|
&& errno == ERANGE)
|
|
{
|
|
errno = 0;
|
|
buflen += 256;
|
|
buffer = alloca (buflen);
|
|
}
|
|
|
|
if (secure[pwddb])
|
|
seteuid (oldeuid);
|
|
|
|
cache_addpw (db, fd, req, key, pwd, c_uid);
|
|
}
|