source-git / glibc

Clone
Source Code
GIT

Blame nscd/nscd_initgroups.c

c8 c8s master
  1.   dbf607ddddc1b462e86c14e0225b1916b2b2ae5a
  2.   nscd
  3.   nscd_initgroups.c
Blob History Raw
Packit 6c4009 
/* Copyright (C) 2004-2018 Free Software Foundation, Inc.
Packit 6c4009 
   This file is part of the GNU C Library.
Packit 6c4009 
   Contributed by Ulrich Drepper <drepper@redhat.com>, 2004.
Packit 6c4009
Packit 6c4009 
   The GNU C Library is free software; you can redistribute it and/or
Packit 6c4009 
   modify it under the terms of the GNU Lesser General Public
Packit 6c4009 
   License as published by the Free Software Foundation; either
Packit 6c4009 
   version 2.1 of the License, or (at your option) any later version.
Packit 6c4009
Packit 6c4009 
   The GNU C Library is distributed in the hope that it will be useful,
Packit 6c4009 
   but WITHOUT ANY WARRANTY; without even the implied warranty of
Packit 6c4009 
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Packit 6c4009 
   Lesser General Public License for more details.
Packit 6c4009
Packit 6c4009 
   You should have received a copy of the GNU Lesser General Public
Packit 6c4009 
   License along with the GNU C Library; if not, see
Packit 6c4009 
   <http://www.gnu.org/licenses/>.  */
Packit 6c4009
Packit 6c4009 
#include <assert.h>
Packit 6c4009 
#include <errno.h>
Packit 6c4009 
#include <grp.h>
Packit 6c4009 
#include <stdlib.h>
Packit 6c4009 
#include <string.h>
Packit 6c4009 
#include <unistd.h>
Packit 6c4009 
#include <not-cancel.h>
Packit 6c4009
Packit 6c4009 
#include "nscd-client.h"
Packit 6c4009 
#include "nscd_proto.h"
Packit 6c4009
Packit 6c4009
Packit 6c4009 
/* We use the same mapping as in nscd_getgr.   */
Packit 6c4009 
libc_locked_map_ptr (extern, __gr_map_handle) attribute_hidden;
Packit 6c4009
Packit 6c4009
Packit 6c4009 
int
Packit 6c4009 
__nscd_getgrouplist (const char *user, gid_t group, long int *size,
Packit 6c4009 
		     gid_t **groupsp, long int limit)
Packit 6c4009 
{
Packit 6c4009 
  size_t userlen = strlen (user) + 1;
Packit 6c4009 
  int gc_cycle;
Packit 6c4009 
  int nretries = 0;
Packit 6c4009
Packit 6c4009 
  /* If the mapping is available, try to search there instead of
Packit 6c4009 
     communicating with the nscd.  */
Packit 6c4009 
  struct mapped_database *mapped;
Packit 6c4009 
  mapped = __nscd_get_map_ref (GETFDGR, "group", &__gr_map_handle, &gc_cycle);
Packit 6c4009
Packit 6c4009 
 retry:;
Packit 6c4009 
  char *respdata = NULL;
Packit 6c4009 
  int retval = -1;
Packit 6c4009 
  int sock = -1;
Packit 6c4009 
  initgr_response_header initgr_resp;
Packit 6c4009
Packit 6c4009 
  if (mapped != NO_MAPPING)
Packit 6c4009 
    {
Packit 6c4009 
      struct datahead *found = __nscd_cache_search (INITGROUPS, user,
Packit 6c4009 
						    userlen, mapped,
Packit 6c4009 
						    sizeof initgr_resp);
Packit 6c4009 
      if (found != NULL)
Packit 6c4009 
	{
Packit 6c4009 
	  respdata = (char *) (&found->data[0].initgrdata + 1);
Packit 6c4009 
	  initgr_resp = found->data[0].initgrdata;
Packit 6c4009 
	  char *recend = (char *) found->data + found->recsize;
Packit 6c4009
Packit 6c4009 
	  /* Now check if we can trust initgr_resp fields.  If GC is
Packit 6c4009 
	     in progress, it can contain anything.  */
Packit 6c4009 
	  if (mapped->head->gc_cycle != gc_cycle)
Packit 6c4009 
	    {
Packit 6c4009 
	      retval = -2;
Packit 6c4009 
	      goto out;
Packit 6c4009 
	    }
Packit 6c4009
Packit 6c4009 
	  if (respdata + initgr_resp.ngrps * sizeof (int32_t) > recend)
Packit 6c4009 
	    goto out;
Packit 6c4009 
	}
Packit 6c4009 
    }
Packit 6c4009
Packit 6c4009 
  /* If we do not have the cache mapped, try to get the data over the
Packit 6c4009 
     socket.  */
Packit 6c4009 
  if (respdata == NULL)
Packit 6c4009 
    {
Packit 6c4009 
      sock = __nscd_open_socket (user, userlen, INITGROUPS, &initgr_resp,
Packit 6c4009 
				 sizeof (initgr_resp));
Packit 6c4009 
      if (sock == -1)
Packit 6c4009 
	{
Packit 6c4009 
	  /* nscd not running or wrong version.  */
Packit 6c4009 
	  __nss_not_use_nscd_group = 1;
Packit 6c4009 
	  goto out;
Packit 6c4009 
	}
Packit 6c4009 
    }
Packit 6c4009
Packit 6c4009 
  if (initgr_resp.found == 1)
Packit 6c4009 
    {
Packit 6c4009 
      /* The following code assumes that gid_t and int32_t are the
Packit 6c4009 
	 same size.  This is the case for al existing implementation.
Packit 6c4009 
	 If this should change some code needs to be added which
Packit 6c4009 
	 doesn't use memcpy but instead copies each array element one
Packit 6c4009 
	 by one.  */
Packit 6c4009 
      assert (sizeof (int32_t) == sizeof (gid_t));
Packit 6c4009 
      assert (initgr_resp.ngrps >= 0);
Packit 6c4009
Packit 6c4009 
      /* Make sure we have enough room.  We always count GROUP in even
Packit 6c4009 
	 though we might not end up adding it.  */
Packit 6c4009 
      if (*size < initgr_resp.ngrps + 1)
Packit 6c4009 
	{
Packit 6c4009 
	  gid_t *newp = realloc (*groupsp,
Packit 6c4009 
				 (initgr_resp.ngrps + 1) * sizeof (gid_t));
Packit 6c4009 
	  if (newp == NULL)
Packit 6c4009 
	    /* We cannot increase the buffer size.  */
Packit 6c4009 
	    goto out_close;
Packit 6c4009
Packit 6c4009 
	  *groupsp = newp;
Packit 6c4009 
	  *size = initgr_resp.ngrps + 1;
Packit 6c4009 
	}
Packit 6c4009
Packit 6c4009 
      if (respdata == NULL)
Packit 6c4009 
	{
Packit 6c4009 
	  /* Read the data from the socket.  */
Packit 6c4009 
	  if ((size_t) __readall (sock, *groupsp, initgr_resp.ngrps
Packit 6c4009 
						  * sizeof (gid_t))
Packit 6c4009 
	      == initgr_resp.ngrps * sizeof (gid_t))
Packit 6c4009 
	    retval = initgr_resp.ngrps;
Packit 6c4009 
	}
Packit 6c4009 
      else
Packit 6c4009 
	{
Packit 6c4009 
	  /* Just copy the data.  */
Packit 6c4009 
	  retval = initgr_resp.ngrps;
Packit 6c4009 
	  memcpy (*groupsp, respdata, retval * sizeof (gid_t));
Packit 6c4009 
	}
Packit 6c4009 
    }
Packit 6c4009 
  else
Packit 6c4009 
    {
Packit 6c4009 
      if (__glibc_unlikely (initgr_resp.found == -1))
Packit 6c4009 
	{
Packit 6c4009 
	  /* The daemon does not cache this database.  */
Packit 6c4009 
	  __nss_not_use_nscd_group = 1;
Packit 6c4009 
	  goto out_close;
Packit 6c4009 
	}
Packit 6c4009
Packit 6c4009 
      /* No group found yet.   */
Packit 6c4009 
      retval = 0;
Packit 6c4009
Packit 6c4009 
      assert (*size >= 1);
Packit 6c4009 
    }
Packit 6c4009
Packit 6c4009 
  /* Check whether GROUP is part of the mix.  If not, add it.  */
Packit 6c4009 
  if (retval >= 0)
Packit 6c4009 
    {
Packit 6c4009 
      int cnt;
Packit 6c4009 
      for (cnt = 0; cnt < retval; ++cnt)
Packit 6c4009 
	if ((*groupsp)[cnt] == group)
Packit 6c4009 
	  break;
Packit 6c4009
Packit 6c4009 
      if (cnt == retval)
Packit 6c4009 
	(*groupsp)[retval++] = group;
Packit 6c4009 
    }
Packit 6c4009
Packit 6c4009 
 out_close:
Packit 6c4009 
  if (sock != -1)
Packit 6c4009 
    __close_nocancel_nostatus (sock);
Packit 6c4009 
 out:
Packit 6c4009 
  if (__nscd_drop_map_ref (mapped, &gc_cycle) != 0)
Packit 6c4009 
    {
Packit 6c4009 
      /* When we come here this means there has been a GC cycle while we
Packit 6c4009 
	 were looking for the data.  This means the data might have been
Packit 6c4009 
	 inconsistent.  Retry if possible.  */
Packit 6c4009 
      if ((gc_cycle & 1) != 0 || ++nretries == 5 || retval == -1)
Packit 6c4009 
	{
Packit 6c4009 
	  /* nscd is just running gc now.  Disable using the mapping.  */
Packit 6c4009 
	  if (atomic_decrement_val (&mapped->counter) == 0)
Packit 6c4009 
	    __nscd_unmap (mapped);
Packit 6c4009 
	  mapped = NO_MAPPING;
Packit 6c4009 
	}
Packit 6c4009
Packit 6c4009 
      if (retval != -1)
Packit 6c4009 
	goto retry;
Packit 6c4009 
    }
Packit 6c4009
Packit 6c4009 
  return retval;
Packit 6c4009 
}

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation