#define E_NAME_IN_USE 9 /* group name not unique */
#define E_GRP_UPDATE 10 /* can't update group file */
+/*
+ * Structures
+ */
+struct option_flags {
+ bool chroot;
+ bool prefix;
+};
+
/*
* Global variables
*/
#endif
static void grp_update (void);
static void check_new_name (void);
-static void close_files (void);
-static void open_files (void);
-static void process_flags (int argc, char **argv);
+static void close_files (struct option_flags *flags);
+static void open_files (struct option_flags *flags);
+static void process_flags (int argc, char **argv, struct option_flags *flags);
static void check_flags (void);
static void check_perms (void);
* close_files() closes all of the files that were opened for this new
* group. This causes any modified entries to be written out.
*/
-static void close_files (void)
+static void close_files (struct option_flags *flags)
{
+ bool process_selinux;
+
+ process_selinux = !flags->chroot && !flags->prefix;
+
/* First, write the changes in the regular group database */
- if (gr_close (true) == 0) {
+ if (gr_close (process_selinux) == 0) {
fprintf (stderr,
_("%s: failure while writing changes to %s\n"),
Prog, gr_dbname ());
gr_dbname (), group_name, (unsigned int) group_id));
del_cleanup (cleanup_report_add_group_group);
- cleanup_unlock_group (NULL);
+ cleanup_unlock_group (&process_selinux);
del_cleanup (cleanup_unlock_group);
/* Now, write the changes in the shadow database */
#ifdef SHADOWGRP
if (is_shadow_grp) {
- if (sgr_close (true) == 0) {
+ if (sgr_close (process_selinux) == 0) {
fprintf (stderr,
_("%s: failure while writing changes to %s\n"),
Prog, sgr_dbname ());
sgr_dbname (), group_name));
del_cleanup (cleanup_report_add_group_gshadow);
- cleanup_unlock_gshadow (NULL);
+ cleanup_unlock_gshadow (&process_selinux);
del_cleanup (cleanup_unlock_gshadow);
}
#endif /* SHADOWGRP */
*
* open_files() opens the two group files.
*/
-static void open_files (void)
+static void open_files (struct option_flags *flags)
{
+ bool process_selinux;
+
+ process_selinux = !flags->chroot && !flags->prefix;
+
/* First, lock the databases */
if (gr_lock () == 0) {
fprintf (stderr,
Prog, gr_dbname ());
fail_exit (E_GRP_UPDATE);
}
- add_cleanup (cleanup_unlock_group, NULL);
+ add_cleanup (cleanup_unlock_group, &process_selinux);
#ifdef SHADOWGRP
if (is_shadow_grp) {
Prog, sgr_dbname ());
fail_exit (E_GRP_UPDATE);
}
- add_cleanup (cleanup_unlock_gshadow, NULL);
+ add_cleanup (cleanup_unlock_gshadow, &process_selinux);
}
#endif /* SHADOWGRP */
*
* It will not return if an error is encountered.
*/
-static void process_flags (int argc, char **argv)
+static void process_flags (int argc, char **argv, struct option_flags *flags)
{
/*
* Parse the command line options.
rflg = true;
break;
case 'R': /* no-op, handled in process_root_flag () */
+ flags->chroot = true;
break;
case 'P': /* no-op, handled in process_prefix_flag () */
+ flags->prefix = true;
break;
case 'U':
user_list = optarg;
*/
int main (int argc, char **argv)
{
+ struct option_flags flags;
+
log_set_progname(Prog);
log_set_logfd(stderr);
/*
* Parse the command line options.
*/
- process_flags (argc, argv);
+ process_flags (argc, argv, &flags);
check_perms ();
* Do the hard stuff - open the files, create the group entries,
* then close and update the files.
*/
- open_files ();
+ open_files (&flags);
if (!gflg) {
if (find_new_gid (rflg, &group_id, NULL) < 0) {
}
grp_update ();
- close_files ();
+ close_files (&flags);
if (run_parts ("/etc/shadow-maint/groupadd-post.d", group_name,
Prog)) {
exit(1);
projects / thirdparty / shadow.git / commitdiff
