diff options
| author | Andy Stormont <astormont@racktopsystems.com> | 2013-09-09 17:14:48 +0100 |
|---|---|---|
| committer | Robert Mustacchi <rm@joyent.com> | 2013-09-13 17:04:07 -0700 |
| commit | a7fe1d5bb55904d4c79638b8778bc9dd8ed7fd7b (patch) | |
| tree | 81fa5ca69f00db5d053c62e908b2c6edbf50d58e /usr/src | |
| parent | 41599e9fdccb44cc5f17828ab04b3147cefcc4e0 (diff) | |
| download | illumos-joyent-a7fe1d5bb55904d4c79638b8778bc9dd8ed7fd7b.tar.gz | |
4078 groupadd execs getent unnecessarily
4127 dmake setup could create /etc/skel
Reviewed by: Rich Lowe <richlowe@richlowe.net>
Reviewed by: Gary Mills <gary_mills@fastmail.fm>
Reviewed by: Milan Jurik <milan.jurik@xylab.cz>
Reviewed by: Gordon Ross <gwr@nexenta.com>
Approved by: Robert Mustacchi <rm@joyent.com>
Diffstat (limited to 'usr/src')
| -rw-r--r-- | usr/src/Targetdirs | 2 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/group/Makefile | 7 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/group/gid.c | 109 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/group/groupadd.c | 10 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/Makefile | 19 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/funcs.c | 6 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/useradd.c | 13 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/userdefs.c | 7 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/usermod.c | 7 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/val_lgrp.c | 6 | ||||
| -rw-r--r-- | usr/src/cmd/oamuser/user/val_lprj.c | 6 | ||||
| -rw-r--r-- | usr/src/lib/libcmdutils/Makefile.com | 3 | ||||
| -rw-r--r-- | usr/src/lib/libcmdutils/common/gid.c | 111 | ||||
| -rw-r--r-- | usr/src/lib/libcmdutils/common/mapfile-vers | 3 | ||||
| -rw-r--r-- | usr/src/lib/libcmdutils/common/uid.c (renamed from usr/src/cmd/oamuser/user/uid.c) | 86 | ||||
| -rw-r--r-- | usr/src/lib/libcmdutils/libcmdutils.h | 19 | ||||
| -rw-r--r-- | usr/src/lib/smbsrv/libsmb/Makefile.com | 2 | ||||
| -rw-r--r-- | usr/src/lib/smbsrv/libsmb/common/smb_lgrp.c | 73 |
18 files changed, 231 insertions, 258 deletions
diff --git a/usr/src/Targetdirs b/usr/src/Targetdirs index 968e76d15f..485ded568b 100644 --- a/usr/src/Targetdirs +++ b/usr/src/Targetdirs @@ -24,6 +24,7 @@ # Copyright 2011 Nexenta Systems, Inc. All rights reserved. # Copyright (c) 2012 by Delphix. All rights reserved. # Copyright 2012 OmniTI Computer Consulting, Inc. All rights reserved. +# Copyright (c) 2013 RackTop Systems. # # @@ -144,6 +145,7 @@ DIRS= \ /etc/saf \ /etc/sasl \ /etc/sfw \ + /etc/skel \ /etc/svc \ /etc/svc/profile \ /etc/svc/profile/site \ diff --git a/usr/src/cmd/oamuser/group/Makefile b/usr/src/cmd/oamuser/group/Makefile index 438890f14b..8289dbda77 100644 --- a/usr/src/cmd/oamuser/group/Makefile +++ b/usr/src/cmd/oamuser/group/Makefile @@ -21,6 +21,8 @@ # Copyright 2009 Sun Microsystems, Inc. All rights reserved. # Use is subject to license terms. # +# Copyright (c) 2013 RackTop Systems. +# # cmd/oamuser/group/Makefile # @@ -34,7 +36,7 @@ SBINPROG= $(GROUPADD) $(GROUPDEL) $(GROUPMOD) PROG= $(SBINPROG) -ADD_OBJ= groupadd.o add_group.o gid.o messages.o +ADD_OBJ= groupadd.o add_group.o messages.o DEL_OBJ= groupdel.o del_group.o messages.o MOD_OBJ= groupmod.o mod_group.o messages.o @@ -50,11 +52,10 @@ LINTFLAGS= -u INSSBINPROG= $(SBINPROG:%=$(ROOTUSRSBIN)/%) CPPFLAGS= -I$(HERE) -I$(LOCAL) $(CPPFLAGS.master) -CERRWARN += -_gcc=-Wno-type-limits FILEMODE= 0555 $(GROUPADD) := OBJS = $(ADD_OBJ) -$(GROUPADD) := LDLIBS += $(LIBUSRGRP) +$(GROUPADD) := LDLIBS += $(LIBUSRGRP) -lcmdutils $(GROUPDEL) := OBJS = $(DEL_OBJ) $(GROUPDEL) := LDLIBS += $(LIBUSRGRP) diff --git a/usr/src/cmd/oamuser/group/gid.c b/usr/src/cmd/oamuser/group/gid.c deleted file mode 100644 index 51f3a67242..0000000000 --- a/usr/src/cmd/oamuser/group/gid.c +++ /dev/null @@ -1,109 +0,0 @@ -/* - * CDDL HEADER START - * - * The contents of this file are subject to the terms of the - * Common Development and Distribution License (the "License"). - * You may not use this file except in compliance with the License. - * - * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE - * or http://www.opensolaris.org/os/licensing. - * See the License for the specific language governing permissions - * and limitations under the License. - * - * When distributing Covered Code, include this CDDL HEADER in each - * file and include the License file at usr/src/OPENSOLARIS.LICENSE. - * If applicable, add the following below this CDDL HEADER, with the - * fields enclosed by brackets "[]" replaced with your own identifying - * information: Portions Copyright [yyyy] [name of copyright owner] - * - * CDDL HEADER END - */ -/* - * Copyright 2007 Sun Microsystems, Inc. All rights reserved. - * Use is subject to license terms. - */ -/* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ -/* All Rights Reserved */ - - -#pragma ident "%Z%%M% %I% %E% SMI" /* SVr4.0 1.5 */ - -#include <sys/types.h> -#include <stdio.h> -#include <userdefs.h> - -#include <sys/param.h> -#ifndef MAXUID -#include <limits.h> -#ifdef UID_MAX -#define MAXUID UID_MAX -#else -#define MAXUID 60000 -#endif -#endif - -/* - * Check to see that the gid is not a reserved gid - * -- nobody, noaccess or nogroup - */ -static int -isvalidgid(gid_t gid) -{ - return (gid != 60001 && gid != 60002 && gid != 65534); -} - -gid_t -findnextgid() -{ - FILE *fptr; - gid_t last, next; - gid_t gid; - - /* - * Sort the used GIDs in decreasing order to return MAXUSED + 1 - */ - if ((fptr = popen("exec sh -c " - "\"getent group|cut -f3 -d:|sort -nr|uniq \" 2>/dev/null", - "r")) == NULL) - return (-1); - - if (fscanf(fptr, "%u\n", &next) == EOF) { - (void) pclose(fptr); - return (DEFRID + 1); - } - - /* - * 'next' is now the highest allocated gid. - * - * The simplest allocation is where we just add one, and obtain - * a valid gid. If this fails look for a hole in the gid range .. - */ - - last = MAXUID; /* upper limit */ - gid = -1; /* start invalid */ - do { - if (!isvalidgid(next)) - continue; - - if (next <= DEFRID) { - if (last != DEFRID + 1) - gid = DEFRID + 1; - break; - } - - if ((gid = next + 1) != last) { - while (!isvalidgid(gid)) - gid++; - if (gid > 0 && gid < last) - break; - } - - gid = -1; - last = next; - - } while (fscanf(fptr, "%u\n", &next) != EOF); - - (void) pclose(fptr); - - return (gid); -} diff --git a/usr/src/cmd/oamuser/group/groupadd.c b/usr/src/cmd/oamuser/group/groupadd.c index 8f6b924280..a4084f7c83 100644 --- a/usr/src/cmd/oamuser/group/groupadd.c +++ b/usr/src/cmd/oamuser/group/groupadd.c @@ -27,10 +27,12 @@ /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ /* All Rights Reserved */ - -#pragma ident "%Z%%M% %I% %E% SMI" +/* + * Copyright (c) 2013 RackTop Systems. + */ #include <sys/types.h> +#include <sys/param.h> #include <stdio.h> #include <stdlib.h> #include <ctype.h> @@ -38,10 +40,10 @@ #include <userdefs.h> #include <users.h> #include <errno.h> +#include <libcmdutils.h> #include "messages.h" extern int errmsg(); -extern gid_t findnextgid(); extern int valid_gid(), add_group(); /* @@ -136,7 +138,7 @@ main(int argc, char *argv[]) } else { - if ((gid = findnextgid()) < 0) { + if (findnextgid(DEFRID+1, MAXUID, &gid) != 0) { errmsg(M_GID_INVALID, "default id"); exit(EX_ID_EXISTS); } diff --git a/usr/src/cmd/oamuser/user/Makefile b/usr/src/cmd/oamuser/user/Makefile index 6d3266c508..9542a967f0 100644 --- a/usr/src/cmd/oamuser/user/Makefile +++ b/usr/src/cmd/oamuser/user/Makefile @@ -20,6 +20,7 @@ # # # Copyright (c) 1990, 2010, Oracle and/or its affiliates. All rights reserved. +# Copyright (c) 2013 RackTop Systems. # # cmd/oamuser/user/Makefile # @@ -42,17 +43,17 @@ SBINPROG= $(USERADD) $(USERDEL) $(USERMOD) PROG= $(SBINPROG) PRODUCT= $(PROG) -ADD_OBJ= useradd.o uid.o homedir.o \ - groups.o call_pass.o userdefs.o messages.o \ - val_lgrp.o funcs.o val_lprj.o proj.o +ADD_OBJ= useradd.o homedir.o groups.o call_pass.o \ + userdefs.o messages.o val_lgrp.o funcs.o \ + val_lprj.o proj.o DEL_OBJ= userdel.o call_pass.o rmfiles.o isbusy.o \ groups.o messages.o funcs.o proj.o -MOD_OBJ= usermod.o uid.o movedir.o groups.o \ - rmfiles.o call_pass.o isbusy.o homedir.o \ - userdefs.o messages.o val_lgrp.o funcs.o \ - val_lprj.o proj.o +MOD_OBJ= usermod.o movedir.o groups.o rmfiles.o \ + call_pass.o isbusy.o homedir.o userdefs.o \ + messages.o val_lgrp.o funcs.o val_lprj.o \ + proj.o OBJECTS= $(ADD_OBJ) $(DEL_OBJ) $(MOD_OBJ) @@ -71,9 +72,6 @@ INSSKELFILE= $(SKELFILE:%=$(ROOTSKEL)/%) CPPFLAGS= -I$(HERE) -I$(LOCAL) $(CPPFLAGS.master) CERRWARN += -_gcc=-Wno-implicit-function-declaration -CERRWARN += -_gcc=-Wno-type-limits -CERRWARN += -_gcc=-Wno-uninitialized -CERRWARN += -_gcc=-Wno-parentheses $(INSSBINPROG) := FILEMODE = 0555 $(INSSYSADMPROG):= FILEMODE = 0500 @@ -81,6 +79,7 @@ $(INSSKELFILE) := FILEMODE = 0644 $(USERADD) := OBJS = $(ADD_OBJ) $(USERADD) := LIBS = $(LIBUSRGRP) +$(USERADD) := LDLIBS += -lcmdutils $(USERDEL) := OBJS = $(DEL_OBJ) $(USERDEL) := LIBS = $(LIBUSRGRP) diff --git a/usr/src/cmd/oamuser/user/funcs.c b/usr/src/cmd/oamuser/user/funcs.c index 12e9000741..93f6b458d5 100644 --- a/usr/src/cmd/oamuser/user/funcs.c +++ b/usr/src/cmd/oamuser/user/funcs.c @@ -20,6 +20,7 @@ */ /* * Copyright (c) 1999, 2010, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 2013 RackTop Systems. */ #include <stdio.h> @@ -180,11 +181,12 @@ getsetdefval(const char *key, char *dflt) int i; for (i = 0; i < NKEYS; i++) - if (strcmp(keys[i].key, key) == 0) + if (strcmp(keys[i].key, key) == 0) { if (keys[i].newvalue != NULL) return (keys[i].newvalue); else return (keys[i].newvalue = dflt); + } return (NULL); } @@ -194,7 +196,7 @@ getusertype(char *cmdname) static char usertype[MAX_TYPE_LENGTH]; char *cmd; - if (cmd = strrchr(cmdname, '/')) + if ((cmd = strrchr(cmdname, '/'))) ++cmd; else cmd = cmdname; diff --git a/usr/src/cmd/oamuser/user/useradd.c b/usr/src/cmd/oamuser/user/useradd.c index 1b42e22a27..afb3b17411 100644 --- a/usr/src/cmd/oamuser/user/useradd.c +++ b/usr/src/cmd/oamuser/user/useradd.c @@ -26,6 +26,9 @@ /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ /* All Rights Reserved */ +/* + * Copyright (c) 2013 RackTop Systems. + */ #include <sys/types.h> #include <sys/stat.h> @@ -40,6 +43,7 @@ #include <project.h> #include <unistd.h> #include <user_attr.h> +#include <libcmdutils.h> #include "users.h" #include "messages.h" #include "userdisp.h" @@ -82,7 +86,6 @@ extern void dispusrdef(); static void cleanup(); -extern uid_t findnextuid(void); extern int check_perm(), valid_expire(); extern int putusrdef(), valid_uid(); extern int call_passmgmt(), edit_group(), create_home(); @@ -132,8 +135,8 @@ main(argc, argv) int argc; char *argv[]; { - int ch, ret, mflag = 0, oflag = 0, Dflag = 0, **gidlist; - projid_t **projlist; + int ch, ret, mflag = 0, oflag = 0, Dflag = 0, **gidlist = NULL; + projid_t **projlist = NULL; char *ptr; /* loc in a str, may be set by strtol */ struct group *g_ptr; struct project p_ptr; @@ -425,7 +428,7 @@ char *argv[]; } else { - if ((uid = findnextuid()) < 0) { + if (findnextuid(DEFRID+1, MAXUID, &uid) != 0) { errmsg(M_INVALID, "default id", "user id"); exit(EX_ID_EXISTS); } @@ -634,7 +637,7 @@ char *argv[]; errmsg(M_UID_USED, uid); exit(EX_ID_EXISTS); } else { - if ((uid = findnextuid()) < 0) { + if (findnextuid(DEFRID+1, MAXUID, &uid) != 0) { errmsg(M_INVALID, "default id", "user id"); exit(EX_ID_EXISTS); diff --git a/usr/src/cmd/oamuser/user/userdefs.c b/usr/src/cmd/oamuser/user/userdefs.c index 4487e2f16d..5845179d77 100644 --- a/usr/src/cmd/oamuser/user/userdefs.c +++ b/usr/src/cmd/oamuser/user/userdefs.c @@ -28,8 +28,9 @@ /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ /* All Rights Reserved */ - -#pragma ident "%Z%%M% %I% %E% SMI" +/* + * Copyright (c) 2013 RackTop Systems. + */ /*LINTLIBRARY*/ @@ -54,7 +55,7 @@ (void) fprintf(fptr, "\n"); \ } -#define SKIPWS(ptr) while (*ptr && *ptr == ' ' || *ptr == '\t') ptr++ +#define SKIPWS(ptr) while (*ptr && (*ptr == ' ' || *ptr == '\t')) ptr++ static char *dup_to_nl(char *); diff --git a/usr/src/cmd/oamuser/user/usermod.c b/usr/src/cmd/oamuser/user/usermod.c index f1d19acdb1..99f58ca7cd 100644 --- a/usr/src/cmd/oamuser/user/usermod.c +++ b/usr/src/cmd/oamuser/user/usermod.c @@ -26,7 +26,9 @@ /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ /* All Rights Reserved */ - +/* + * Copyright (c) 2013 RackTop Systems. + */ #include <sys/types.h> #include <sys/stat.h> @@ -510,12 +512,13 @@ char **argv; } } - if (comment) + if (comment) { /* ignore comment if comment is not changed */ if (strcmp(pstruct->pw_comment, comment)) call_pass = 1; else comment = NULL; + } /* inactive string is a positive integer */ if (inactstr) { diff --git a/usr/src/cmd/oamuser/user/val_lgrp.c b/usr/src/cmd/oamuser/user/val_lgrp.c index 2ad9d38efb..160087f32a 100644 --- a/usr/src/cmd/oamuser/user/val_lgrp.c +++ b/usr/src/cmd/oamuser/user/val_lgrp.c @@ -26,6 +26,10 @@ /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ /* All Rights Reserved */ +/* + * Copyright (c) 2013 RackTop Systems. + */ + #include <sys/types.h> #include <stdio.h> @@ -60,7 +64,7 @@ valid_lgroup(char *list, gid_t gid) grplist = malloc((ngroups_max + 1) * sizeof (gid_t)); } - while (ptr = strtok(((i || n_invalid || dup_prim)? NULL: list), ",")) { + while ((ptr = strtok((i || n_invalid || dup_prim)? NULL: list, ","))) { switch (valid_group(ptr, &g_ptr, &warning)) { case INVALID: diff --git a/usr/src/cmd/oamuser/user/val_lprj.c b/usr/src/cmd/oamuser/user/val_lprj.c index 95b084e9bc..4463ac7f41 100644 --- a/usr/src/cmd/oamuser/user/val_lprj.c +++ b/usr/src/cmd/oamuser/user/val_lprj.c @@ -24,7 +24,9 @@ * Use is subject to license terms. */ -#pragma ident "%Z%%M% %I% %E% SMI" +/* + * Copyright (c) 2013 RackTop Systems. + */ #include <sys/types.h> #include <stdio.h> @@ -55,7 +57,7 @@ valid_lproject(char *list) if (!list || !*list) return ((int **)NULL); - while (ptr = strtok(((i || n_invalid) ? NULL : list), ",")) { + while ((ptr = strtok((i || n_invalid) ? NULL : list, ","))) { switch (valid_project(ptr, &projent, mybuf, sizeof (mybuf), &warning)) { diff --git a/usr/src/lib/libcmdutils/Makefile.com b/usr/src/lib/libcmdutils/Makefile.com index 7961146e1a..2f98fe5f25 100644 --- a/usr/src/lib/libcmdutils/Makefile.com +++ b/usr/src/lib/libcmdutils/Makefile.com @@ -20,11 +20,12 @@ # # # Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved. +# Copyright (c) 2013 RackTop Systems. # LIBRARY= libcmdutils.a VERS= .1 -CMD_OBJS= avltree.o sysattrs.o writefile.o process_xattrs.o +CMD_OBJS= avltree.o sysattrs.o writefile.o process_xattrs.o uid.o gid.o COM_OBJS= list.o OBJECTS= $(CMD_OBJS) $(COM_OBJS) diff --git a/usr/src/lib/libcmdutils/common/gid.c b/usr/src/lib/libcmdutils/common/gid.c new file mode 100644 index 0000000000..63456810ea --- /dev/null +++ b/usr/src/lib/libcmdutils/common/gid.c @@ -0,0 +1,111 @@ +/* + * CDDL HEADER START + * + * The contents of this file are subject to the terms of the + * Common Development and Distribution License (the "License"). + * You may not use this file except in compliance with the License. + * + * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE + * or http://www.opensolaris.org/os/licensing. + * See the License for the specific language governing permissions + * and limitations under the License. + * + * When distributing Covered Code, include this CDDL HEADER in each + * file and include the License file at usr/src/OPENSOLARIS.LICENSE. + * If applicable, add the following below this CDDL HEADER, with the + * fields enclosed by brackets "[]" replaced with your own identifying + * information: Portions Copyright [yyyy] [name of copyright owner] + * + * CDDL HEADER END + */ +/* + * Copyright 2007 Sun Microsystems, Inc. All rights reserved. + * Use is subject to license terms. + */ + +/* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ +/* All Rights Reserved */ + +/* + * Copyright (c) 2013 RackTop Systems. + */ + +#include <errno.h> +#include <sys/types.h> +#include <stdio.h> +#include <userdefs.h> +#include <grp.h> +#include <libcmdutils.h> + +static int findunusedgid(gid_t start, gid_t stop, gid_t *ret); +static boolean_t isreservedgid(gid_t gid); + +/* + * Find the highest unused uid. If the highest unused gid is "stop", + * then attempt to find a hole in the range. Returns 0 on success. + */ +int +findnextgid(gid_t start, gid_t stop, gid_t *ret) +{ + gid_t gid = start; + struct group *grp; + boolean_t overflow = B_FALSE; + + setgrent(); + for (grp = getgrent(); grp != NULL; grp = getgrent()) { + if (isreservedgid(grp->gr_gid)) /* Skip reserved IDs */ + continue; + if (grp->gr_gid >= gid) { + if (grp->gr_gid == stop) { /* Overflow check */ + overflow = B_TRUE; + break; + } + gid = grp->gr_gid + 1; + } + } + if (grp == NULL && errno != 0) { + endgrent(); + return (-1); + } + endgrent(); + if (overflow == B_TRUE) /* Find a hole */ + return (findunusedgid(start, stop, ret)); + while (isreservedgid(gid) && gid < stop) /* Skip reserved IDs */ + gid++; + *ret = gid; + return (0); +} + +/* + * Check to see whether the gid is a reserved gid + * -- nobody, noaccess or nogroup + */ +static boolean_t +isreservedgid(gid_t gid) +{ + return (gid == 60001 || gid == 60002 || gid == 65534); +} + +/* + * findunusedgid() attempts to return the next valid usable id between the + * supplied upper and lower limits. Returns 0 on success. + */ +static int +findunusedgid(gid_t start, gid_t stop, gid_t *ret) +{ + gid_t gid; + + for (gid = start; gid <= stop; gid++) { + if (isreservedgid(gid)) + continue; + if (getgrgid(gid) == NULL) { + if (errno != 0) + return (-1); + break; + } + } + if (gid > stop) + return (-1); + *ret = gid; + return (0); +} diff --git a/usr/src/lib/libcmdutils/common/mapfile-vers b/usr/src/lib/libcmdutils/common/mapfile-vers index 74f59e8fdb..e4c5940c31 100644 --- a/usr/src/lib/libcmdutils/common/mapfile-vers +++ b/usr/src/lib/libcmdutils/common/mapfile-vers @@ -20,6 +20,7 @@ # # # Copyright (c) 2006, 2010, Oracle and/or its affiliates. All rights reserved. +# Copyright (c) 2013 RackTop Systems. # # @@ -42,6 +43,8 @@ SYMBOL_VERSION SUNWprivate_1.1 { global: add_tnode; destroy_tree; + findnextgid; + findnextuid; list_create; list_destroy; list_head; diff --git a/usr/src/cmd/oamuser/user/uid.c b/usr/src/lib/libcmdutils/common/uid.c index dea5318fc4..a5ca6c45bd 100644 --- a/usr/src/cmd/oamuser/user/uid.c +++ b/usr/src/lib/libcmdutils/common/uid.c @@ -27,92 +27,86 @@ /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ /* All Rights Reserved */ +/* + * Copyright (c) 2013 RackTop Systems. + */ -#pragma ident "%Z%%M% %I% %E% SMI" /* SVr4.0 1.5 */ - +#include <errno.h> #include <sys/types.h> #include <stdio.h> #include <userdefs.h> #include <pwd.h> +#include <libcmdutils.h> -#include <sys/param.h> -#ifndef MAXUID -#include <limits.h> -#ifdef UID_MAX -#define MAXUID UID_MAX -#else -#define MAXUID 60000 -#endif -#endif - -static uid_t getrangeboundid(uid_t start, uid_t stop); -static int isreserveduid(uid_t uid); +static int findunuseduid(uid_t start, uid_t stop, uid_t *ret); +static boolean_t isreserveduid(uid_t uid); /* - * Find the highest uid currently in use and return it. If the highest unused - * uid is MAXUID, then attempt to find a hole in the range. If there are no - * more unused uids, then return -1. + * Find the highest unused uid. If the highest unused uid is "stop", + * then attempt to find a hole in the range. Returns 0 on success. */ -uid_t -findnextuid(void) +int +findnextuid(uid_t start, uid_t stop, uid_t *ret) { - uid_t uid = DEFRID + 1; + uid_t uid = start; struct passwd *pwd; - uchar_t overflow = 0; + boolean_t overflow = B_FALSE; setpwent(); for (pwd = getpwent(); pwd != NULL; pwd = getpwent()) { if (isreserveduid(pwd->pw_uid)) /* Skip reserved IDs */ continue; if (pwd->pw_uid >= uid) { - if (pwd->pw_uid == MAXUID) { /* Overflow check */ - overflow = 1; + if (pwd->pw_uid == stop) { /* Overflow check */ + overflow = B_TRUE; break; } uid = pwd->pw_uid + 1; - while (isreserveduid(uid) && - uid < MAXUID) { /* Skip reserved IDs */ - uid++; - } } } + if (pwd == NULL && errno != 0) { + endpwent(); + return (-1); + } endpwent(); - if (overflow == 1) /* Find a hole */ - return (getrangeboundid(DEFRID + 1, MAXUID)); - return (uid); + if (overflow == B_TRUE) /* Find a hole */ + return (findunuseduid(start, stop, ret)); + while (isreserveduid(uid) && uid < stop) /* Skip reserved IDs */ + uid++; + *ret = uid; + return (0); } /* - * Check to see that the uid is a reserved uid + * Check to see whether the uid is a reserved uid * -- nobody, noaccess or nobody4 */ -static int +static boolean_t isreserveduid(uid_t uid) { return (uid == 60001 || uid == 60002 || uid == 65534); } - /* - * getrangeboundid() attempts to return the next valid usable id between the - * supplied upper and lower limits. If these limits exceed the system - * boundaries of DEFRID +1 and MAXUID (lower and upper bound respectively), - * then they are ignored and DEFRID + 1 and MAXUID are used. - * - * Returns a valid uid_t between DEFRID +1 and MAXUID, -1 is returned on fail + * findunuseduid() attempts to return the next valid usable id between the + * supplied upper and lower limits. Returns 0 on success. */ -static uid_t -getrangeboundid(uid_t start, uid_t stop) +static int +findunuseduid(uid_t start, uid_t stop, uid_t *ret) { - uid_t low = (start <= DEFRID) ? DEFRID + 1 : start; - uid_t high = (stop < MAXUID) ? stop : MAXUID; uid_t uid; - for (uid = low; uid <= high; uid++) { + for (uid = start; uid <= stop; uid++) { if (isreserveduid(uid)) continue; - if (getpwuid(uid) == NULL) + if (getpwuid(uid) == NULL) { + if (errno != 0) + return (-1); break; + } } - return ((uid > high) ? -1 : uid); + if (uid > stop) + return (-1); + *ret = uid; + return (0); } diff --git a/usr/src/lib/libcmdutils/libcmdutils.h b/usr/src/lib/libcmdutils/libcmdutils.h index d1c3a0b193..c315e0fbef 100644 --- a/usr/src/lib/libcmdutils/libcmdutils.h +++ b/usr/src/lib/libcmdutils/libcmdutils.h @@ -22,6 +22,9 @@ * Copyright 2007 Sun Microsystems, Inc. All rights reserved. * Use is subject to license terms. */ +/* + * Copyright (c) 2013 RackTop Systems. + */ /* * Declarations for the functions in libcmdutils. @@ -30,8 +33,6 @@ #ifndef _LIBCMDUTILS_H #define _LIBCMDUTILS_H -#pragma ident "%Z%%M% %I% %E% SMI" - /* * This is a private header file. Applications should not directly include * this file. @@ -125,6 +126,20 @@ extern int add_tnode(avl_tree_t **, dev_t, ino_t); */ extern void destroy_tree(avl_tree_t *); + + + /* user/group id helpers */ + +/* + * Used to get the next available user id in given range. + */ +extern int findnextuid(uid_t, uid_t, uid_t *); + +/* + * Used to get the next available group id in given range. + */ +extern int findnextgid(gid_t, gid_t, gid_t *); + #ifdef __cplusplus } #endif diff --git a/usr/src/lib/smbsrv/libsmb/Makefile.com b/usr/src/lib/smbsrv/libsmb/Makefile.com index 4b86caeb95..dbf479e106 100644 --- a/usr/src/lib/smbsrv/libsmb/Makefile.com +++ b/usr/src/lib/smbsrv/libsmb/Makefile.com @@ -73,6 +73,8 @@ include ../../Makefile.lib INCS += -I$(SRC)/common/smbsrv +LINTCHECKFLAGS += -erroff=E_INCONS_ARG_DECL2 + LDLIBS += $(MACH_LDLIBS) LDLIBS += -lscf -lmd -luuid -lnsl -lpkcs11 -lsec -lsocket -lresolv LDLIBS += -lidmap -lreparse -lnvpair -lcmdutils -lavl -lc diff --git a/usr/src/lib/smbsrv/libsmb/common/smb_lgrp.c b/usr/src/lib/smbsrv/libsmb/common/smb_lgrp.c index 406d7c5db0..3cab135341 100644 --- a/usr/src/lib/smbsrv/libsmb/common/smb_lgrp.c +++ b/usr/src/lib/smbsrv/libsmb/common/smb_lgrp.c @@ -22,6 +22,7 @@ /* * Copyright 2011 Nexenta Systems, Inc. All rights reserved. * Copyright (c) 2008, 2010, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 2013 RackTop Systems. */ #include <stdlib.h> @@ -38,6 +39,7 @@ #include <sys/types.h> #include <sys/stat.h> #include <sys/param.h> +#include <libcmdutils.h> /* * Local domain SID (aka machine SID) is not stored in the domain table @@ -123,7 +125,7 @@ #define SMB_LGRP_PGRP_GRPBUFSIZ 5120 #define SMB_LGRP_PGRP_GROUP "/etc/group" #define SMB_LGRP_PGRP_MAXGLEN 9 /* max length of group name */ -#define SMB_LGRP_PGRP_DEFRID 99 /* max reserved id */ +#define SMB_LGRP_PGRP_DEFRID 1000 /* lowest cifs created gid */ #define SMB_LGRP_PGRP_NOTUNIQUE 0 #define SMB_LGRP_PGRP_RESERVED 1 @@ -2545,70 +2547,6 @@ smb_lgrp_pgrp_valid_gname(char *group) } /* - * smb_lgrp_pgrp_valid_gid - * - * Check to see that the gid is not a reserved gid - * -- nobody (60001), noaccess (60002) or nogroup (65534) - */ -static int -smb_lgrp_pgrp_valid_gid(gid_t gid) -{ - return (gid != 60001 && gid != 60002 && gid != 65534); -} - -/* - * smb_lgrp_pgrp_findnextgid(void) - * - * This method finds the next valid GID. - * It sorts the used GIDs in decreasing order to return MAXUSED + 1. - * It then adds one to obtain the next valid GID. - * On failure, -1 is returned. On success, a valid GID is returned. - */ -static int -smb_lgrp_pgrp_findnextgid(void) -{ - FILE *fptr; - gid_t last, next; - int gid; - - if ((fptr = popen("exec sh -c " - "\"getent group|cut -f3 -d:|sort -nr|uniq \" 2>/dev/null", - "r")) == NULL) - return (-1); - - if (fscanf(fptr, "%u\n", &next) == EOF) { - (void) pclose(fptr); - return (SMB_LGRP_PGRP_DEFRID + 1); - } - - last = MAXUID; - gid = -1; - do { - if (!smb_lgrp_pgrp_valid_gid(next)) - continue; - - if (next <= SMB_LGRP_PGRP_DEFRID) { - if (last != SMB_LGRP_PGRP_DEFRID + 1) - gid = SMB_LGRP_PGRP_DEFRID + 1; - break; - } - - if ((gid = next + 1) != last) { - while (!smb_lgrp_pgrp_valid_gid((gid_t)gid)) - gid++; - if (gid > 0 && gid < last) - break; - } - - gid = -1; - last = next; - } while (fscanf(fptr, "%u\n", &next) != EOF); - - (void) pclose(fptr); - return (gid); -} - -/* * smb_lgrp_pgrp_add * * Create a posix group with the given name. @@ -2619,7 +2557,7 @@ smb_lgrp_pgrp_add(char *group) { FILE *etcgrp; FILE *etctmp; - int o_mask, gret; + int o_mask; int newdone = 0; struct stat sb; char buf[SMB_LGRP_PGRP_GRPBUFSIZ]; @@ -2630,9 +2568,8 @@ smb_lgrp_pgrp_add(char *group) if ((rc == SMB_LGRP_PGRP_INVALID) || (rc == SMB_LGRP_PGRP_NOTUNIQUE)) return (-1); - if ((gret = smb_lgrp_pgrp_findnextgid()) < 0) + if ((findnextgid(SMB_LGRP_PGRP_DEFRID, MAXUID, &gid)) != 0) return (-1); - gid = gret; if ((etcgrp = fopen(SMB_LGRP_PGRP_GROUP, "r")) == NULL) return (-1); |