1 /* SPDX-License-Identifier: LGPL-2.1+ */
8 #include "alloc-util.h"
9 #include "bus-common-errors.h"
10 #include "dirent-util.h"
17 #include "signal-util.h"
18 #include "stdio-util.h"
19 #include "string-util.h"
20 #include "user-util.h"
23 #define DYNAMIC_USER_GECOS "Dynamic User"
24 #define DYNAMIC_USER_PASSWD "*" /* locked */
25 #define DYNAMIC_USER_DIR "/"
26 #define DYNAMIC_USER_SHELL "/sbin/nologin"
28 static const struct passwd root_passwd
= {
29 .pw_name
= (char*) "root",
30 .pw_passwd
= (char*) "x", /* see shadow file */
33 .pw_gecos
= (char*) "Super User",
34 .pw_dir
= (char*) "/root",
35 .pw_shell
= (char*) "/bin/sh",
38 static const struct passwd nobody_passwd
= {
39 .pw_name
= (char*) NOBODY_USER_NAME
,
40 .pw_passwd
= (char*) "*", /* locked */
43 .pw_gecos
= (char*) "User Nobody",
44 .pw_dir
= (char*) "/",
45 .pw_shell
= (char*) "/sbin/nologin",
48 static const struct group root_group
= {
49 .gr_name
= (char*) "root",
51 .gr_passwd
= (char*) "x", /* see shadow file */
52 .gr_mem
= (char*[]) { NULL
},
55 static const struct group nobody_group
= {
56 .gr_name
= (char*) NOBODY_GROUP_NAME
,
58 .gr_passwd
= (char*) "*", /* locked */
59 .gr_mem
= (char*[]) { NULL
},
62 typedef struct UserEntry UserEntry
;
63 typedef struct GetentData GetentData
;
70 LIST_FIELDS(UserEntry
, entries
);
74 /* As explained in NOTES section of getpwent_r(3) as 'getpwent_r() is not really
75 * reentrant since it shares the reading position in the stream with all other threads',
76 * we need to protect the data in UserEntry from multithreaded programs which may call
77 * setpwent(), getpwent_r(), or endpwent() simultaneously. So, each function locks the
78 * data by using the mutex below. */
79 pthread_mutex_t mutex
;
82 LIST_HEAD(UserEntry
, entries
);
85 static GetentData getpwent_data
= { PTHREAD_MUTEX_INITIALIZER
, NULL
, NULL
};
86 static GetentData getgrent_data
= { PTHREAD_MUTEX_INITIALIZER
, NULL
, NULL
};
88 NSS_GETPW_PROTOTYPES(systemd
);
89 NSS_GETGR_PROTOTYPES(systemd
);
90 enum nss_status
_nss_systemd_endpwent(void) _public_
;
91 enum nss_status
_nss_systemd_setpwent(int stayopen
) _public_
;
92 enum nss_status
_nss_systemd_getpwent_r(struct passwd
*result
, char *buffer
, size_t buflen
, int *errnop
) _public_
;
93 enum nss_status
_nss_systemd_endgrent(void) _public_
;
94 enum nss_status
_nss_systemd_setgrent(int stayopen
) _public_
;
95 enum nss_status
_nss_systemd_getgrent_r(struct group
*result
, char *buffer
, size_t buflen
, int *errnop
) _public_
;
97 static int direct_lookup_name(const char *name
, uid_t
*ret
) {
98 _cleanup_free_
char *s
= NULL
;
104 /* Normally, we go via the bus to resolve names. That has the benefit that it is available from any mount
105 * namespace and subject to proper authentication. However, there's one problem: if our module is called from
106 * dbus-daemon itself we really can't use D-Bus to communicate. In this case, resort to a client-side hack,
107 * and look for the dynamic names directly. This is pretty ugly, but breaks the cyclic dependency. */
109 path
= strjoina("/run/systemd/dynamic-uid/direct:", name
);
110 r
= readlink_malloc(path
, &s
);
114 return parse_uid(s
, ret
);
117 static int direct_lookup_uid(uid_t uid
, char **ret
) {
118 char path
[STRLEN("/run/systemd/dynamic-uid/direct:") + DECIMAL_STR_MAX(uid_t
) + 1], *s
;
121 xsprintf(path
, "/run/systemd/dynamic-uid/direct:" UID_FMT
, uid
);
123 r
= readlink_malloc(path
, &s
);
126 if (!valid_user_group_name(s
)) { /* extra safety check */
135 enum nss_status
_nss_systemd_getpwnam_r(
138 char *buffer
, size_t buflen
,
141 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
142 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
* reply
= NULL
;
143 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
149 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
154 /* If the username is not valid, then we don't know it. Ideally libc would filter these for us anyway. We don't
155 * generate EINVAL here, because it isn't really out business to complain about invalid user names. */
156 if (!valid_user_group_name(name
))
157 return NSS_STATUS_NOTFOUND
;
159 /* Synthesize entries for the root and nobody users, in case they are missing in /etc/passwd */
160 if (getenv_bool_secure("SYSTEMD_NSS_BYPASS_SYNTHETIC") <= 0) {
161 if (streq(name
, root_passwd
.pw_name
)) {
163 return NSS_STATUS_SUCCESS
;
165 if (synthesize_nobody() &&
166 streq(name
, nobody_passwd
.pw_name
)) {
167 *pwd
= nobody_passwd
;
168 return NSS_STATUS_SUCCESS
;
172 /* Make sure that we don't go in circles when allocating a dynamic UID by checking our own database */
173 if (getenv_bool_secure("SYSTEMD_NSS_DYNAMIC_BYPASS") > 0)
174 return NSS_STATUS_NOTFOUND
;
176 bypass
= getenv_bool_secure("SYSTEMD_NSS_BYPASS_BUS");
178 r
= sd_bus_open_system(&bus
);
184 r
= direct_lookup_name(name
, (uid_t
*) &translated
);
186 return NSS_STATUS_NOTFOUND
;
190 r
= sd_bus_call_method(bus
,
191 "org.freedesktop.systemd1",
192 "/org/freedesktop/systemd1",
193 "org.freedesktop.systemd1.Manager",
194 "LookupDynamicUserByName",
200 if (sd_bus_error_has_name(&error
, BUS_ERROR_NO_SUCH_DYNAMIC_USER
))
201 return NSS_STATUS_NOTFOUND
;
206 r
= sd_bus_message_read(reply
, "u", &translated
);
215 return NSS_STATUS_TRYAGAIN
;
218 memcpy(buffer
, name
, l
+1);
220 pwd
->pw_name
= buffer
;
221 pwd
->pw_uid
= (uid_t
) translated
;
222 pwd
->pw_gid
= (uid_t
) translated
;
223 pwd
->pw_gecos
= (char*) DYNAMIC_USER_GECOS
;
224 pwd
->pw_passwd
= (char*) DYNAMIC_USER_PASSWD
;
225 pwd
->pw_dir
= (char*) DYNAMIC_USER_DIR
;
226 pwd
->pw_shell
= (char*) DYNAMIC_USER_SHELL
;
228 return NSS_STATUS_SUCCESS
;
233 return NSS_STATUS_UNAVAIL
;
236 enum nss_status
_nss_systemd_getpwuid_r(
239 char *buffer
, size_t buflen
,
242 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
243 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
* reply
= NULL
;
244 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
245 _cleanup_free_
char *direct
= NULL
;
246 const char *translated
;
251 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
253 if (!uid_is_valid(uid
))
254 return NSS_STATUS_NOTFOUND
;
256 /* Synthesize data for the root user and for nobody in case they are missing from /etc/passwd */
257 if (getenv_bool_secure("SYSTEMD_NSS_BYPASS_SYNTHETIC") <= 0) {
258 if (uid
== root_passwd
.pw_uid
) {
260 return NSS_STATUS_SUCCESS
;
262 if (synthesize_nobody() &&
263 uid
== nobody_passwd
.pw_uid
) {
264 *pwd
= nobody_passwd
;
265 return NSS_STATUS_SUCCESS
;
269 if (!uid_is_dynamic(uid
))
270 return NSS_STATUS_NOTFOUND
;
272 if (getenv_bool_secure("SYSTEMD_NSS_DYNAMIC_BYPASS") > 0)
273 return NSS_STATUS_NOTFOUND
;
275 bypass
= getenv_bool_secure("SYSTEMD_NSS_BYPASS_BUS");
277 r
= sd_bus_open_system(&bus
);
283 r
= direct_lookup_uid(uid
, &direct
);
285 return NSS_STATUS_NOTFOUND
;
292 r
= sd_bus_call_method(bus
,
293 "org.freedesktop.systemd1",
294 "/org/freedesktop/systemd1",
295 "org.freedesktop.systemd1.Manager",
296 "LookupDynamicUserByUID",
302 if (sd_bus_error_has_name(&error
, BUS_ERROR_NO_SUCH_DYNAMIC_USER
))
303 return NSS_STATUS_NOTFOUND
;
308 r
= sd_bus_message_read(reply
, "s", &translated
);
313 l
= strlen(translated
) + 1;
317 return NSS_STATUS_TRYAGAIN
;
320 memcpy(buffer
, translated
, l
);
322 pwd
->pw_name
= buffer
;
325 pwd
->pw_gecos
= (char*) DYNAMIC_USER_GECOS
;
326 pwd
->pw_passwd
= (char*) DYNAMIC_USER_PASSWD
;
327 pwd
->pw_dir
= (char*) DYNAMIC_USER_DIR
;
328 pwd
->pw_shell
= (char*) DYNAMIC_USER_SHELL
;
330 return NSS_STATUS_SUCCESS
;
335 return NSS_STATUS_UNAVAIL
;
338 #pragma GCC diagnostic ignored "-Wsizeof-pointer-memaccess"
340 enum nss_status
_nss_systemd_getgrnam_r(
343 char *buffer
, size_t buflen
,
346 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
347 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
* reply
= NULL
;
348 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
354 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
359 if (!valid_user_group_name(name
))
360 return NSS_STATUS_NOTFOUND
;
362 /* Synthesize records for root and nobody, in case they are missing form /etc/group */
363 if (getenv_bool_secure("SYSTEMD_NSS_BYPASS_SYNTHETIC") <= 0) {
364 if (streq(name
, root_group
.gr_name
)) {
366 return NSS_STATUS_SUCCESS
;
368 if (synthesize_nobody() &&
369 streq(name
, nobody_group
.gr_name
)) {
371 return NSS_STATUS_SUCCESS
;
375 if (getenv_bool_secure("SYSTEMD_NSS_DYNAMIC_BYPASS") > 0)
376 return NSS_STATUS_NOTFOUND
;
378 bypass
= getenv_bool_secure("SYSTEMD_NSS_BYPASS_BUS");
380 r
= sd_bus_open_system(&bus
);
386 r
= direct_lookup_name(name
, (uid_t
*) &translated
);
388 return NSS_STATUS_NOTFOUND
;
392 r
= sd_bus_call_method(bus
,
393 "org.freedesktop.systemd1",
394 "/org/freedesktop/systemd1",
395 "org.freedesktop.systemd1.Manager",
396 "LookupDynamicUserByName",
402 if (sd_bus_error_has_name(&error
, BUS_ERROR_NO_SUCH_DYNAMIC_USER
))
403 return NSS_STATUS_NOTFOUND
;
408 r
= sd_bus_message_read(reply
, "u", &translated
);
413 l
= sizeof(char*) + strlen(name
) + 1;
417 return NSS_STATUS_TRYAGAIN
;
420 memzero(buffer
, sizeof(char*));
421 strcpy(buffer
+ sizeof(char*), name
);
423 gr
->gr_name
= buffer
+ sizeof(char*);
424 gr
->gr_gid
= (gid_t
) translated
;
425 gr
->gr_passwd
= (char*) DYNAMIC_USER_PASSWD
;
426 gr
->gr_mem
= (char**) buffer
;
428 return NSS_STATUS_SUCCESS
;
433 return NSS_STATUS_UNAVAIL
;
436 enum nss_status
_nss_systemd_getgrgid_r(
439 char *buffer
, size_t buflen
,
442 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
443 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
* reply
= NULL
;
444 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
445 _cleanup_free_
char *direct
= NULL
;
446 const char *translated
;
451 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
453 if (!gid_is_valid(gid
))
454 return NSS_STATUS_NOTFOUND
;
456 /* Synthesize records for root and nobody, in case they are missing from /etc/group */
457 if (getenv_bool_secure("SYSTEMD_NSS_BYPASS_SYNTHETIC") <= 0) {
458 if (gid
== root_group
.gr_gid
) {
460 return NSS_STATUS_SUCCESS
;
462 if (synthesize_nobody() &&
463 gid
== nobody_group
.gr_gid
) {
465 return NSS_STATUS_SUCCESS
;
469 if (!gid_is_dynamic(gid
))
470 return NSS_STATUS_NOTFOUND
;
472 if (getenv_bool_secure("SYSTEMD_NSS_DYNAMIC_BYPASS") > 0)
473 return NSS_STATUS_NOTFOUND
;
475 bypass
= getenv_bool_secure("SYSTEMD_NSS_BYPASS_BUS");
477 r
= sd_bus_open_system(&bus
);
483 r
= direct_lookup_uid(gid
, &direct
);
485 return NSS_STATUS_NOTFOUND
;
492 r
= sd_bus_call_method(bus
,
493 "org.freedesktop.systemd1",
494 "/org/freedesktop/systemd1",
495 "org.freedesktop.systemd1.Manager",
496 "LookupDynamicUserByUID",
502 if (sd_bus_error_has_name(&error
, BUS_ERROR_NO_SUCH_DYNAMIC_USER
))
503 return NSS_STATUS_NOTFOUND
;
508 r
= sd_bus_message_read(reply
, "s", &translated
);
513 l
= sizeof(char*) + strlen(translated
) + 1;
517 return NSS_STATUS_TRYAGAIN
;
520 memzero(buffer
, sizeof(char*));
521 strcpy(buffer
+ sizeof(char*), translated
);
523 gr
->gr_name
= buffer
+ sizeof(char*);
525 gr
->gr_passwd
= (char*) DYNAMIC_USER_PASSWD
;
526 gr
->gr_mem
= (char**) buffer
;
528 return NSS_STATUS_SUCCESS
;
533 return NSS_STATUS_UNAVAIL
;
536 static void user_entry_free(UserEntry
*p
) {
541 LIST_REMOVE(entries
, p
->data
->entries
, p
);
547 static int user_entry_add(GetentData
*data
, const char *name
, uid_t id
) {
552 /* This happens when User= or Group= already exists statically. */
553 if (!uid_is_dynamic(id
))
556 p
= new0(UserEntry
, 1);
560 p
->name
= strdup(name
);
568 LIST_PREPEND(entries
, data
->entries
, p
);
573 static void systemd_endent(GetentData
*data
) {
578 while ((p
= data
->entries
))
581 data
->position
= NULL
;
584 static enum nss_status
nss_systemd_endent(GetentData
*p
) {
586 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
588 assert_se(pthread_mutex_lock(&p
->mutex
) == 0);
590 assert_se(pthread_mutex_unlock(&p
->mutex
) == 0);
592 return NSS_STATUS_SUCCESS
;
595 enum nss_status
_nss_systemd_endpwent(void) {
596 return nss_systemd_endent(&getpwent_data
);
599 enum nss_status
_nss_systemd_endgrent(void) {
600 return nss_systemd_endent(&getgrent_data
);
603 static int direct_enumeration(GetentData
*p
) {
604 _cleanup_closedir_
DIR *d
= NULL
;
610 d
= opendir("/run/systemd/dynamic-uid/");
614 FOREACH_DIRENT(de
, d
, return -errno
) {
615 _cleanup_free_
char *name
= NULL
;
618 if (!dirent_is_file(de
))
621 r
= parse_uid(de
->d_name
, &uid
);
625 r
= direct_lookup_uid(uid
, &name
);
631 r
= direct_lookup_name(name
, &verified
);
638 r
= user_entry_add(p
, name
, uid
);
648 static enum nss_status
systemd_setent(GetentData
*p
) {
649 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
650 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
* reply
= NULL
;
651 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
657 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
661 assert_se(pthread_mutex_lock(&p
->mutex
) == 0);
665 if (getenv_bool_secure("SYSTEMD_NSS_DYNAMIC_BYPASS") > 0)
668 bypass
= getenv_bool_secure("SYSTEMD_NSS_BYPASS_BUS");
671 r
= sd_bus_open_system(&bus
);
677 r
= direct_enumeration(p
);
684 r
= sd_bus_call_method(bus
,
685 "org.freedesktop.systemd1",
686 "/org/freedesktop/systemd1",
687 "org.freedesktop.systemd1.Manager",
695 r
= sd_bus_message_enter_container(reply
, 'a', "(us)");
699 while ((r
= sd_bus_message_read(reply
, "(us)", &id
, &name
)) > 0) {
700 r
= user_entry_add(p
, name
, id
);
709 r
= sd_bus_message_exit_container(reply
);
714 p
->position
= p
->entries
;
715 assert_se(pthread_mutex_unlock(&p
->mutex
) == 0);
717 return NSS_STATUS_SUCCESS
;
721 assert_se(pthread_mutex_unlock(&p
->mutex
) == 0);
723 return NSS_STATUS_UNAVAIL
;
726 enum nss_status
_nss_systemd_setpwent(int stayopen
) {
727 return systemd_setent(&getpwent_data
);
730 enum nss_status
_nss_systemd_setgrent(int stayopen
) {
731 return systemd_setent(&getgrent_data
);
734 enum nss_status
_nss_systemd_getpwent_r(struct passwd
*result
, char *buffer
, size_t buflen
, int *errnop
) {
740 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
746 assert_se(pthread_mutex_lock(&getpwent_data
.mutex
) == 0);
748 LIST_FOREACH(entries
, p
, getpwent_data
.position
) {
749 len
= strlen(p
->name
) + 1;
753 ret
= NSS_STATUS_TRYAGAIN
;
757 memcpy(buffer
, p
->name
, len
);
759 result
->pw_name
= buffer
;
760 result
->pw_uid
= p
->id
;
761 result
->pw_gid
= p
->id
;
762 result
->pw_gecos
= (char*) DYNAMIC_USER_GECOS
;
763 result
->pw_passwd
= (char*) DYNAMIC_USER_PASSWD
;
764 result
->pw_dir
= (char*) DYNAMIC_USER_DIR
;
765 result
->pw_shell
= (char*) DYNAMIC_USER_SHELL
;
769 ret
= NSS_STATUS_NOTFOUND
;
773 /* On success, step to the next entry. */
775 ret
= NSS_STATUS_SUCCESS
;
778 /* Save position for the next call. */
779 getpwent_data
.position
= p
;
781 assert_se(pthread_mutex_unlock(&getpwent_data
.mutex
) == 0);
786 enum nss_status
_nss_systemd_getgrent_r(struct group
*result
, char *buffer
, size_t buflen
, int *errnop
) {
792 BLOCK_SIGNALS(NSS_SIGNALS_BLOCK
);
798 assert_se(pthread_mutex_lock(&getgrent_data
.mutex
) == 0);
800 LIST_FOREACH(entries
, p
, getgrent_data
.position
) {
801 len
= sizeof(char*) + strlen(p
->name
) + 1;
805 ret
= NSS_STATUS_TRYAGAIN
;
809 memzero(buffer
, sizeof(char*));
810 strcpy(buffer
+ sizeof(char*), p
->name
);
812 result
->gr_name
= buffer
+ sizeof(char*);
813 result
->gr_gid
= p
->id
;
814 result
->gr_passwd
= (char*) DYNAMIC_USER_PASSWD
;
815 result
->gr_mem
= (char**) buffer
;
819 ret
= NSS_STATUS_NOTFOUND
;
823 /* On success, step to the next entry. */
825 ret
= NSS_STATUS_SUCCESS
;
828 /* Save position for the next call. */
829 getgrent_data
.position
= p
;
831 assert_se(pthread_mutex_unlock(&getgrent_data
.mutex
) == 0);