static int get_fixed_user(
const char *user_or_uid,
+ bool prefer_nss,
const char **ret_username,
uid_t *ret_uid,
gid_t *ret_gid,
assert(user_or_uid);
assert(ret_username);
- r = get_user_creds(&user_or_uid, ret_uid, ret_gid, ret_home, ret_shell, USER_CREDS_CLEAN);
+ r = get_user_creds(&user_or_uid, ret_uid, ret_gid, ret_home, ret_shell,
+ USER_CREDS_CLEAN|(prefer_nss ? USER_CREDS_PREFER_NSS : 0));
if (r < 0)
return r;
if (!username && !c->dynamic_user && p->runtime_scope == RUNTIME_SCOPE_SYSTEM) {
assert(!c->user);
- r = get_fixed_user("root", &username, NULL, NULL, &home, &shell);
+ r = get_fixed_user("root", /* prefer_nss = */ false, &username, NULL, NULL, &home, &shell);
if (r < 0)
return log_exec_debug_errno(c,
p,
u = NULL;
if (u) {
- r = get_fixed_user(u, &username, &uid, &gid, &home, &shell);
+ /* We can't use nss unconditionally for root without risking deadlocks if some IPC services
+ * will be started by pid1 and are ordered after us. But if SetLoginEnvironment= is
+ * enabled *explicitly* (i.e. no exec_context_get_set_login_environment() here),
+ * or PAM shall be invoked, let's consult NSS even for root, so that the user
+ * gets accurate $SHELL in session(-like) contexts. */
+ r = get_fixed_user(u,
+ /* prefer_nss = */ context->set_login_environment > 0 || context->pam_name,
+ &username, &uid, &gid, &home, &shell);
if (r < 0) {
*exit_status = EXIT_USER;
return log_exec_error_errno(context, params, r, "Failed to determine user credentials: %m");
projects / thirdparty / systemd.git / commitdiff
