2 * SPDX-License-Identifier: BSD-2-Clause-FreeBSD
4 * Copyright (c) 2003 Networks Associates Technology, Inc.
7 * This software was developed for the FreeBSD Project by
8 * Jacques A. Vidrine, Safeport Network Services, and Network
9 * Associates Laboratories, the Security Research Division of Network
10 * Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035
11 * ("CBOSS"), as part of the DARPA CHATS research program.
13 * Redistribution and use in source and binary forms, with or without
14 * modification, are permitted provided that the following conditions
16 * 1. Redistributions of source code must retain the above copyright
17 * notice, this list of conditions and the following disclaimer.
18 * 2. Redistributions in binary form must reproduce the above copyright
19 * notice, this list of conditions and the following disclaimer in the
20 * documentation and/or other materials provided with the distribution.
22 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 #include <sys/cdefs.h>
36 __FBSDID("$FreeBSD$");
38 #include "namespace.h"
39 #include <sys/param.h>
42 #include <rpcsvc/yp_prot.h>
43 #include <rpcsvc/ypclnt.h>
54 #include <pthread_np.h>
60 #include "un-namespace.h"
61 #include "libc_private.h"
68 GRP_STORAGE_INITIAL = 1 << 10, /* 1 KByte */
69 GRP_STORAGE_MAX = 1 << 20, /* 1 MByte */
72 HESIOD_NAME_MAX = 256,
75 static const ns_src defaultsrc[] = {
76 { NSSRC_COMPAT, NS_SUCCESS },
80 int __getgroupmembership(const char *, gid_t, gid_t *, int, int *);
81 int __gr_match_entry(const char *, size_t, enum nss_lookup_type,
83 int __gr_parse_entry(char *, size_t, struct group *, char *, size_t,
86 static int is_comment_line(const char *, size_t);
92 static struct group *getgr(int (*)(union key, struct group *, char *, size_t,
93 struct group **), union key);
94 static int wrap_getgrnam_r(union key, struct group *, char *, size_t,
96 static int wrap_getgrgid_r(union key, struct group *, char *, size_t,
98 static int wrap_getgrent_r(union key, struct group *, char *, size_t,
105 static void files_endstate(void *);
106 NSS_TLS_HANDLING(files);
107 static int files_setgrent(void *, void *, va_list);
108 static int files_group(void *, void *, va_list);
115 static void dns_endstate(void *);
116 NSS_TLS_HANDLING(dns);
117 static int dns_setgrent(void *, void *, va_list);
118 static int dns_group(void *, void *, va_list);
124 char domain[MAXHOSTNAMELEN];
129 static void nis_endstate(void *);
130 NSS_TLS_HANDLING(nis);
131 static int nis_setgrent(void *, void *, va_list);
132 static int nis_group(void *, void *, va_list);
135 struct compat_state {
145 static void compat_endstate(void *);
146 NSS_TLS_HANDLING(compat);
147 static int compat_setgrent(void *, void *, va_list);
148 static int compat_group(void *, void *, va_list);
150 static int gr_addgid(gid_t, gid_t *, int, int *);
151 static int getgroupmembership_fallback(void *, void *, va_list);
154 static int grp_id_func(char *, size_t *, va_list, void *);
155 static int grp_marshal_func(char *, size_t *, void *, va_list, void *);
156 static int grp_unmarshal_func(char *, size_t, void *, va_list, void *);
159 grp_id_func(char *buffer, size_t *buffer_size, va_list ap, void *cache_mdata)
164 size_t desired_size, size;
165 int res = NS_UNAVAIL;
166 enum nss_lookup_type lookup_type;
169 lookup_type = (enum nss_lookup_type)(uintptr_t)cache_mdata;
170 switch (lookup_type) {
172 name = va_arg(ap, char *);
174 desired_size = sizeof(enum nss_lookup_type) + size + 1;
175 if (desired_size > *buffer_size) {
180 memcpy(buffer, &lookup_type, sizeof(enum nss_lookup_type));
181 memcpy(buffer + sizeof(enum nss_lookup_type), name, size + 1);
186 gid = va_arg(ap, gid_t);
187 desired_size = sizeof(enum nss_lookup_type) + sizeof(gid_t);
188 if (desired_size > *buffer_size) {
193 memcpy(buffer, &lookup_type, sizeof(enum nss_lookup_type));
194 memcpy(buffer + sizeof(enum nss_lookup_type), &gid,
200 /* should be unreachable */
205 *buffer_size = desired_size;
210 grp_marshal_func(char *buffer, size_t *buffer_size, void *retval, va_list ap,
217 size_t orig_buf_size;
219 struct group new_grp;
220 size_t desired_size, size, mem_size;
223 switch ((enum nss_lookup_type)(uintptr_t)cache_mdata) {
225 name = va_arg(ap, char *);
228 gid = va_arg(ap, gid_t);
233 /* should be unreachable */
237 grp = va_arg(ap, struct group *);
238 orig_buf = va_arg(ap, char *);
239 orig_buf_size = va_arg(ap, size_t);
241 desired_size = _ALIGNBYTES + sizeof(struct group) + sizeof(char *);
243 if (grp->gr_name != NULL)
244 desired_size += strlen(grp->gr_name) + 1;
245 if (grp->gr_passwd != NULL)
246 desired_size += strlen(grp->gr_passwd) + 1;
248 if (grp->gr_mem != NULL) {
250 for (mem = grp->gr_mem; *mem; ++mem) {
251 desired_size += strlen(*mem) + 1;
255 desired_size += _ALIGNBYTES + (mem_size + 1) * sizeof(char *);
258 if (desired_size > *buffer_size) {
259 /* this assignment is here for future use */
260 *buffer_size = desired_size;
264 memcpy(&new_grp, grp, sizeof(struct group));
265 memset(buffer, 0, desired_size);
267 *buffer_size = desired_size;
268 p = buffer + sizeof(struct group) + sizeof(char *);
269 memcpy(buffer + sizeof(struct group), &p, sizeof(char *));
270 p = (char *)_ALIGN(p);
272 if (new_grp.gr_name != NULL) {
273 size = strlen(new_grp.gr_name);
274 memcpy(p, new_grp.gr_name, size);
279 if (new_grp.gr_passwd != NULL) {
280 size = strlen(new_grp.gr_passwd);
281 memcpy(p, new_grp.gr_passwd, size);
282 new_grp.gr_passwd = p;
286 if (new_grp.gr_mem != NULL) {
287 p = (char *)_ALIGN(p);
288 memcpy(p, new_grp.gr_mem, sizeof(char *) * mem_size);
289 new_grp.gr_mem = (char **)p;
290 p += sizeof(char *) * (mem_size + 1);
292 for (mem = new_grp.gr_mem; *mem; ++mem) {
294 memcpy(p, *mem, size);
300 memcpy(buffer, &new_grp, sizeof(struct group));
305 grp_unmarshal_func(char *buffer, size_t buffer_size, void *retval, va_list ap,
312 size_t orig_buf_size;
318 switch ((enum nss_lookup_type)(uintptr_t)cache_mdata) {
320 name = va_arg(ap, char *);
323 gid = va_arg(ap, gid_t);
328 /* should be unreachable */
332 grp = va_arg(ap, struct group *);
333 orig_buf = va_arg(ap, char *);
334 orig_buf_size = va_arg(ap, size_t);
335 ret_errno = va_arg(ap, int *);
337 if (orig_buf_size + sizeof(struct group) + sizeof(char *) < buffer_size)
341 } else if (buffer_size < sizeof(struct group) + sizeof(char *)) {
343 * nscd(8) sometimes returns buffer_size=1 for nonexistent
347 return (NS_NOTFOUND);
350 memcpy(grp, buffer, sizeof(struct group));
351 memcpy(&p, buffer + sizeof(struct group), sizeof(char *));
353 if (orig_buf_size + sizeof(struct group) + sizeof(char *) +
354 _ALIGN(p) - (size_t)p < buffer_size) {
359 orig_buf = (char *)_ALIGN(orig_buf);
360 memcpy(orig_buf, buffer + sizeof(struct group) + sizeof(char *) +
361 _ALIGN(p) - (size_t)p,
362 buffer_size - sizeof(struct group) - sizeof(char *) -
363 _ALIGN(p) + (size_t)p);
364 p = (char *)_ALIGN(p);
366 NS_APPLY_OFFSET(grp->gr_name, orig_buf, p, char *);
367 NS_APPLY_OFFSET(grp->gr_passwd, orig_buf, p, char *);
368 if (grp->gr_mem != NULL) {
369 NS_APPLY_OFFSET(grp->gr_mem, orig_buf, p, char **);
371 for (mem = grp->gr_mem; *mem; ++mem)
372 NS_APPLY_OFFSET(*mem, orig_buf, p, char *);
376 *((struct group **)retval) = grp;
381 NSS_MP_CACHE_HANDLING(group);
382 #endif /* NS_CACHING */
385 static const nss_cache_info setgrent_cache_info = NS_MP_CACHE_INFO_INITIALIZER(
386 group, (void *)nss_lt_all,
390 static const ns_dtab setgrent_dtab[] = {
391 { NSSRC_FILES, files_setgrent, (void *)SETGRENT },
393 { NSSRC_DNS, dns_setgrent, (void *)SETGRENT },
396 { NSSRC_NIS, nis_setgrent, (void *)SETGRENT },
398 { NSSRC_COMPAT, compat_setgrent, (void *)SETGRENT },
400 NS_CACHE_CB(&setgrent_cache_info)
406 static const nss_cache_info endgrent_cache_info = NS_MP_CACHE_INFO_INITIALIZER(
407 group, (void *)nss_lt_all,
411 static const ns_dtab endgrent_dtab[] = {
412 { NSSRC_FILES, files_setgrent, (void *)ENDGRENT },
414 { NSSRC_DNS, dns_setgrent, (void *)ENDGRENT },
417 { NSSRC_NIS, nis_setgrent, (void *)ENDGRENT },
419 { NSSRC_COMPAT, compat_setgrent, (void *)ENDGRENT },
421 NS_CACHE_CB(&endgrent_cache_info)
427 static const nss_cache_info getgrent_r_cache_info = NS_MP_CACHE_INFO_INITIALIZER(
428 group, (void *)nss_lt_all,
429 grp_marshal_func, grp_unmarshal_func);
432 static const ns_dtab getgrent_r_dtab[] = {
433 { NSSRC_FILES, files_group, (void *)nss_lt_all },
435 { NSSRC_DNS, dns_group, (void *)nss_lt_all },
438 { NSSRC_NIS, nis_group, (void *)nss_lt_all },
440 { NSSRC_COMPAT, compat_group, (void *)nss_lt_all },
442 NS_CACHE_CB(&getgrent_r_cache_info)
448 gr_addgid(gid_t gid, gid_t *groups, int maxgrp, int *grpcnt)
452 for (dupc = 1; dupc < MIN(maxgrp, *grpcnt); dupc++) {
453 if (groups[dupc] == gid)
458 if (*grpcnt < maxgrp)
459 groups[*grpcnt] = gid;
469 getgroupmembership_fallback(void *retval, void *mdata, va_list ap)
471 const ns_src src[] = {
472 { mdata, NS_SUCCESS },
483 int i, rv, ret_errno;
486 * As this is a fallback method, only provided src
487 * list will be respected during methods search.
489 assert(src[0].name != NULL);
491 uname = va_arg(ap, const char *);
492 agroup = va_arg(ap, gid_t);
493 groups = va_arg(ap, gid_t *);
494 maxgrp = va_arg(ap, int);
495 grpcnt = va_arg(ap, int *);
499 buf = malloc(GRP_STORAGE_INITIAL);
503 bufsize = GRP_STORAGE_INITIAL;
505 gr_addgid(agroup, groups, maxgrp, grpcnt);
507 _nsdispatch(NULL, setgrent_dtab, NSDB_GROUP, "setgrent", src, 0);
512 rv = _nsdispatch(&grp_p, getgrent_r_dtab, NSDB_GROUP,
513 "getgrent_r", src, &grp, buf, bufsize, &ret_errno);
515 if (grp_p == NULL && ret_errno == ERANGE) {
517 if ((bufsize << 1) > GRP_STORAGE_MAX) {
524 buf = malloc(bufsize);
529 } while (grp_p == NULL && ret_errno == ERANGE);
531 if (ret_errno != 0) {
539 for (i = 0; grp.gr_mem[i]; i++) {
540 if (strcmp(grp.gr_mem[i], uname) == 0)
541 gr_addgid(grp.gr_gid, groups, maxgrp, grpcnt);
545 _nsdispatch(NULL, endgrent_dtab, NSDB_GROUP, "endgrent", src);
554 (void)_nsdispatch(NULL, setgrent_dtab, NSDB_GROUP, "setgrent", defaultsrc, 0);
559 setgroupent(int stayopen)
561 (void)_nsdispatch(NULL, setgrent_dtab, NSDB_GROUP, "setgrent", defaultsrc,
570 (void)_nsdispatch(NULL, endgrent_dtab, NSDB_GROUP, "endgrent", defaultsrc);
575 getgrent_r(struct group *grp, char *buffer, size_t bufsize,
576 struct group **result)
582 rv = _nsdispatch(result, getgrent_r_dtab, NSDB_GROUP, "getgrent_r", defaultsrc,
583 grp, buffer, bufsize, &ret_errno);
584 if (rv == NS_SUCCESS)
592 getgrnam_r(const char *name, struct group *grp, char *buffer, size_t bufsize,
593 struct group **result)
596 static const nss_cache_info cache_info =
597 NS_COMMON_CACHE_INFO_INITIALIZER(
598 group, (void *)nss_lt_name,
599 grp_id_func, grp_marshal_func, grp_unmarshal_func);
602 static const ns_dtab dtab[] = {
603 { NSSRC_FILES, files_group, (void *)nss_lt_name },
605 { NSSRC_DNS, dns_group, (void *)nss_lt_name },
608 { NSSRC_NIS, nis_group, (void *)nss_lt_name },
610 { NSSRC_COMPAT, compat_group, (void *)nss_lt_name },
612 NS_CACHE_CB(&cache_info)
620 rv = _nsdispatch(result, dtab, NSDB_GROUP, "getgrnam_r", defaultsrc,
621 name, grp, buffer, bufsize, &ret_errno);
622 if (rv == NS_SUCCESS)
630 getgrgid_r(gid_t gid, struct group *grp, char *buffer, size_t bufsize,
631 struct group **result)
634 static const nss_cache_info cache_info =
635 NS_COMMON_CACHE_INFO_INITIALIZER(
636 group, (void *)nss_lt_id,
637 grp_id_func, grp_marshal_func, grp_unmarshal_func);
640 static const ns_dtab dtab[] = {
641 { NSSRC_FILES, files_group, (void *)nss_lt_id },
643 { NSSRC_DNS, dns_group, (void *)nss_lt_id },
646 { NSSRC_NIS, nis_group, (void *)nss_lt_id },
648 { NSSRC_COMPAT, compat_group, (void *)nss_lt_id },
650 NS_CACHE_CB(&cache_info)
658 rv = _nsdispatch(result, dtab, NSDB_GROUP, "getgrgid_r", defaultsrc,
659 gid, grp, buffer, bufsize, &ret_errno);
660 if (rv == NS_SUCCESS)
669 __getgroupmembership(const char *uname, gid_t agroup, gid_t *groups,
670 int maxgrp, int *grpcnt)
672 static const ns_dtab dtab[] = {
673 NS_FALLBACK_CB(getgroupmembership_fallback)
677 assert(uname != NULL);
678 /* groups may be NULL if just sizing when invoked with maxgrp = 0 */
679 assert(grpcnt != NULL);
682 (void)_nsdispatch(NULL, dtab, NSDB_GROUP, "getgroupmembership",
683 defaultsrc, uname, agroup, groups, maxgrp, grpcnt);
685 /* too many groups found? */
686 return (*grpcnt > maxgrp ? -1 : 0);
690 static struct group grp;
691 static char *grp_storage;
692 static size_t grp_storage_size;
694 static struct group *
695 getgr(int (*fn)(union key, struct group *, char *, size_t, struct group **),
701 if (grp_storage == NULL) {
702 grp_storage = malloc(GRP_STORAGE_INITIAL);
703 if (grp_storage == NULL)
705 grp_storage_size = GRP_STORAGE_INITIAL;
708 rv = fn(key, &grp, grp_storage, grp_storage_size, &res);
709 if (res == NULL && rv == ERANGE) {
711 if ((grp_storage_size << 1) > GRP_STORAGE_MAX) {
716 grp_storage_size <<= 1;
717 grp_storage = malloc(grp_storage_size);
718 if (grp_storage == NULL)
721 } while (res == NULL && rv == ERANGE);
729 wrap_getgrnam_r(union key key, struct group *grp, char *buffer, size_t bufsize,
732 return (getgrnam_r(key.name, grp, buffer, bufsize, res));
737 wrap_getgrgid_r(union key key, struct group *grp, char *buffer, size_t bufsize,
740 return (getgrgid_r(key.gid, grp, buffer, bufsize, res));
745 wrap_getgrent_r(union key key __unused, struct group *grp, char *buffer,
746 size_t bufsize, struct group **res)
748 return (getgrent_r(grp, buffer, bufsize, res));
753 getgrnam(const char *name)
758 return (getgr(wrap_getgrnam_r, key));
768 return (getgr(wrap_getgrgid_r, key));
777 key.gid = 0; /* not used */
778 return (getgr(wrap_getgrent_r, key));
783 is_comment_line(const char *s, size_t n)
790 if (*s == '#' || !isspace((unsigned char)*s))
792 return (*s == '#' || s == eom);
800 files_endstate(void *p)
805 if (((struct files_state *)p)->fp != NULL)
806 fclose(((struct files_state *)p)->fp);
812 files_setgrent(void *retval, void *mdata, va_list ap)
814 struct files_state *st;
817 rv = files_getstate(&st);
820 switch ((enum constants)(uintptr_t)mdata) {
822 stayopen = va_arg(ap, int);
826 st->fp = fopen(_PATH_GROUP, "re");
829 if (st->fp != NULL) {
842 files_group(void *retval, void *mdata, va_list ap)
844 struct files_state *st;
845 enum nss_lookup_type how;
846 const char *name, *line;
850 size_t bufsize, linesize;
852 int fresh, rv, stayopen, *errnop;
857 how = (enum nss_lookup_type)(uintptr_t)mdata;
860 name = va_arg(ap, const char *);
863 gid = va_arg(ap, gid_t);
868 return (NS_NOTFOUND);
870 grp = va_arg(ap, struct group *);
871 buffer = va_arg(ap, char *);
872 bufsize = va_arg(ap, size_t);
873 errnop = va_arg(ap, int *);
874 *errnop = files_getstate(&st);
877 if (st->fp == NULL) {
878 st->fp = fopen(_PATH_GROUP, "re");
879 if (st->fp == NULL) {
885 if (how == nss_lt_all)
890 stayopen = st->stayopen;
894 pos = ftello(st->fp);
895 while ((line = fgetln(st->fp, &linesize)) != NULL) {
896 if (line[linesize-1] == '\n')
898 rv = __gr_match_entry(line, linesize, how, name, gid);
899 if (rv != NS_SUCCESS)
901 /* We need room at least for the line, a string NUL
902 * terminator, alignment padding, and one (char *)
903 * pointer for the member list terminator.
905 if (bufsize <= linesize + _ALIGNBYTES + sizeof(char *)) {
910 memcpy(buffer, line, linesize);
911 buffer[linesize] = '\0';
912 rv = __gr_parse_entry(buffer, linesize, grp,
913 &buffer[linesize + 1], bufsize - linesize - 1, errnop);
914 if (rv & NS_TERMINATE)
917 pos = ftello(st->fp);
919 if (st->fp != NULL && !stayopen) {
923 if (rv == NS_SUCCESS && retval != NULL)
924 *(struct group **)retval = grp;
925 else if (rv == NS_RETURN && *errnop == ERANGE && st->fp != NULL)
926 fseeko(st->fp, pos, SEEK_SET);
936 dns_endstate(void *p)
944 dns_setgrent(void *retval, void *cb_data, va_list ap)
946 struct dns_state *st;
949 rv = dns_getstate(&st);
958 dns_group(void *retval, void *mdata, va_list ap)
960 char buf[HESIOD_NAME_MAX];
961 struct dns_state *st;
963 const char *name, *label;
966 size_t bufsize, adjsize, linesize;
968 enum nss_lookup_type how;
975 how = (enum nss_lookup_type)mdata;
978 name = va_arg(ap, const char *);
981 gid = va_arg(ap, gid_t);
986 grp = va_arg(ap, struct group *);
987 buffer = va_arg(ap, char *);
988 bufsize = va_arg(ap, size_t);
989 errnop = va_arg(ap, int *);
990 *errnop = dns_getstate(&st);
993 if (hesiod_init(&ctx) != 0) {
1005 if (snprintf(buf, sizeof(buf), "%lu",
1006 (unsigned long)gid) >= sizeof(buf))
1011 if (st->counter < 0)
1013 if (snprintf(buf, sizeof(buf), "group-%ld",
1014 st->counter++) >= sizeof(buf))
1019 hes = hesiod_resolve(ctx, label,
1020 how == nss_lt_id ? "gid" : "group");
1021 if ((how == nss_lt_id && hes == NULL &&
1022 (hes = hesiod_resolve(ctx, buf, "group")) == NULL) ||
1024 if (how == nss_lt_all)
1026 if (errno != ENOENT)
1030 rv = __gr_match_entry(hes[0], strlen(hes[0]), how, name, gid);
1031 if (rv != NS_SUCCESS) {
1032 hesiod_free_list(ctx, hes);
1036 /* We need room at least for the line, a string NUL
1037 * terminator, alignment padding, and one (char *)
1038 * pointer for the member list terminator.
1040 adjsize = bufsize - _ALIGNBYTES - sizeof(char *);
1041 linesize = strlcpy(buffer, hes[0], adjsize);
1042 if (linesize >= adjsize) {
1047 hesiod_free_list(ctx, hes);
1049 rv = __gr_parse_entry(buffer, linesize, grp,
1050 &buffer[linesize + 1], bufsize - linesize - 1, errnop);
1051 } while (how == nss_lt_all && !(rv & NS_TERMINATE));
1054 hesiod_free_list(ctx, hes);
1057 if (rv == NS_SUCCESS && retval != NULL)
1058 *(struct group **)retval = grp;
1069 nis_endstate(void *p)
1074 free(((struct nis_state *)p)->key);
1080 nis_setgrent(void *retval, void *cb_data, va_list ap)
1082 struct nis_state *st;
1085 rv = nis_getstate(&st);
1087 return (NS_UNAVAIL);
1091 return (NS_UNAVAIL);
1096 nis_group(void *retval, void *mdata, va_list ap)
1099 struct nis_state *st;
1102 char *buffer, *key, *result;
1105 enum nss_lookup_type how;
1106 int *errnop, keylen, resultlen, rv;
1110 how = (enum nss_lookup_type)(uintptr_t)mdata;
1113 name = va_arg(ap, const char *);
1114 map = "group.byname";
1117 gid = va_arg(ap, gid_t);
1118 map = "group.bygid";
1121 map = "group.byname";
1124 grp = va_arg(ap, struct group *);
1125 buffer = va_arg(ap, char *);
1126 bufsize = va_arg(ap, size_t);
1127 errnop = va_arg(ap, int *);
1128 *errnop = nis_getstate(&st);
1130 return (NS_UNAVAIL);
1131 if (st->domain[0] == '\0') {
1132 if (getdomainname(st->domain, sizeof(st->domain)) != 0) {
1134 return (NS_UNAVAIL);
1142 if (strlcpy(buffer, name, bufsize) >= bufsize)
1146 if (snprintf(buffer, bufsize, "%lu",
1147 (unsigned long)gid) >= bufsize)
1156 if (how == nss_lt_all) {
1157 if (st->key == NULL)
1158 rv = yp_first(st->domain, map, &st->key,
1159 &st->keylen, &result, &resultlen);
1162 keylen = st->keylen;
1164 rv = yp_next(st->domain, map, key, keylen,
1165 &st->key, &st->keylen, &result,
1173 if (rv == YPERR_NOMORE) {
1181 rv = yp_match(st->domain, map, buffer, strlen(buffer),
1182 &result, &resultlen);
1183 if (rv == YPERR_KEY) {
1186 } else if (rv != 0) {
1192 /* We need room at least for the line, a string NUL
1193 * terminator, alignment padding, and one (char *)
1194 * pointer for the member list terminator.
1196 if (resultlen >= bufsize - _ALIGNBYTES - sizeof(char *)) {
1200 memcpy(buffer, result, resultlen);
1201 buffer[resultlen] = '\0';
1203 rv = __gr_match_entry(buffer, resultlen, how, name, gid);
1204 if (rv == NS_SUCCESS)
1205 rv = __gr_parse_entry(buffer, resultlen, grp,
1206 &buffer[resultlen+1], bufsize - resultlen - 1,
1208 } while (how == nss_lt_all && !(rv & NS_TERMINATE));
1210 if (rv == NS_SUCCESS && retval != NULL)
1211 *(struct group **)retval = grp;
1225 compat_endstate(void *p)
1227 struct compat_state *st;
1231 st = (struct compat_state *)p;
1240 compat_setgrent(void *retval, void *mdata, va_list ap)
1242 static const ns_src compatsrc[] = {
1244 { NSSRC_NIS, NS_SUCCESS },
1250 { NSSRC_DNS, dns_setgrent, NULL },
1253 { NSSRC_NIS, nis_setgrent, NULL },
1255 { NULL, NULL, NULL }
1257 struct compat_state *st;
1260 #define set_setent(x, y) do { \
1262 for (i = 0; i < (int)(nitems(x) - 1); i++) \
1263 x[i].mdata = (void *)y; \
1266 rv = compat_getstate(&st);
1268 return (NS_UNAVAIL);
1269 switch ((enum constants)(uintptr_t)mdata) {
1271 stayopen = va_arg(ap, int);
1275 st->fp = fopen(_PATH_GROUP, "re");
1276 set_setent(dtab, mdata);
1277 (void)_nsdispatch(NULL, dtab, NSDB_GROUP_COMPAT, "setgrent",
1281 if (st->fp != NULL) {
1285 set_setent(dtab, mdata);
1286 (void)_nsdispatch(NULL, dtab, NSDB_GROUP_COMPAT, "endgrent",
1292 st->compat = COMPAT_MODE_OFF;
1295 return (NS_UNAVAIL);
1301 compat_group(void *retval, void *mdata, va_list ap)
1303 static const ns_src compatsrc[] = {
1305 { NSSRC_NIS, NS_SUCCESS },
1311 { NSSRC_NIS, nis_group, NULL },
1314 { NSSRC_DNS, dns_group, NULL },
1316 { NULL, NULL, NULL }
1318 struct compat_state *st;
1319 enum nss_lookup_type how;
1320 const char *name, *line;
1325 size_t bufsize, linesize;
1327 int fresh, rv, stayopen, *errnop;
1329 #define set_lookup_type(x, y) do { \
1331 for (i = 0; i < (int)(nitems(x) - 1); i++) \
1332 x[i].mdata = (void *)y; \
1338 how = (enum nss_lookup_type)(uintptr_t)mdata;
1341 name = va_arg(ap, const char *);
1344 gid = va_arg(ap, gid_t);
1349 return (NS_NOTFOUND);
1351 grp = va_arg(ap, struct group *);
1352 buffer = va_arg(ap, char *);
1353 bufsize = va_arg(ap, size_t);
1354 errnop = va_arg(ap, int *);
1355 *errnop = compat_getstate(&st);
1357 return (NS_UNAVAIL);
1358 if (st->fp == NULL) {
1359 st->fp = fopen(_PATH_GROUP, "re");
1360 if (st->fp == NULL) {
1367 if (how == nss_lt_all)
1372 stayopen = st->stayopen;
1375 switch (st->compat) {
1376 case COMPAT_MODE_ALL:
1377 set_lookup_type(dtab, how);
1380 rv = _nsdispatch(&discard, dtab, NSDB_GROUP_COMPAT,
1381 "getgrent_r", compatsrc, grp, buffer, bufsize,
1385 rv = _nsdispatch(&discard, dtab, NSDB_GROUP_COMPAT,
1386 "getgrgid_r", compatsrc, gid, grp, buffer, bufsize,
1390 rv = _nsdispatch(&discard, dtab, NSDB_GROUP_COMPAT,
1391 "getgrnam_r", compatsrc, name, grp, buffer,
1395 if (rv & NS_TERMINATE)
1397 st->compat = COMPAT_MODE_OFF;
1399 case COMPAT_MODE_NAME:
1400 set_lookup_type(dtab, nss_lt_name);
1401 rv = _nsdispatch(&discard, dtab, NSDB_GROUP_COMPAT,
1402 "getgrnam_r", compatsrc, st->name, grp, buffer, bufsize,
1408 if (strcmp(name, grp->gr_name) != 0)
1412 if (gid != grp->gr_gid)
1426 st->compat = COMPAT_MODE_OFF;
1427 if (rv == NS_SUCCESS)
1435 pos = ftello(st->fp);
1436 while ((line = fgetln(st->fp, &linesize)) != NULL) {
1437 if (line[linesize-1] == '\n')
1439 if (linesize > 2 && line[0] == '+') {
1440 p = memchr(&line[1], ':', linesize);
1441 if (p == NULL || p == &line[1])
1442 st->compat = COMPAT_MODE_ALL;
1444 st->name = malloc(p - line);
1445 if (st->name == NULL) {
1447 "getgrent memory allocation failure");
1452 memcpy(st->name, &line[1], p - line - 1);
1453 st->name[p - line - 1] = '\0';
1454 st->compat = COMPAT_MODE_NAME;
1458 rv = __gr_match_entry(line, linesize, how, name, gid);
1459 if (rv != NS_SUCCESS)
1461 /* We need room at least for the line, a string NUL
1462 * terminator, alignment padding, and one (char *)
1463 * pointer for the member list terminator.
1465 if (bufsize <= linesize + _ALIGNBYTES + sizeof(char *)) {
1470 memcpy(buffer, line, linesize);
1471 buffer[linesize] = '\0';
1472 rv = __gr_parse_entry(buffer, linesize, grp,
1473 &buffer[linesize + 1], bufsize - linesize - 1, errnop);
1474 if (rv & NS_TERMINATE)
1477 pos = ftello(st->fp);
1480 if (st->fp != NULL && !stayopen) {
1484 if (rv == NS_SUCCESS && retval != NULL)
1485 *(struct group **)retval = grp;
1486 else if (rv == NS_RETURN && *errnop == ERANGE && st->fp != NULL)
1487 fseeko(st->fp, pos, SEEK_SET);
1489 #undef set_lookup_type
1494 * common group line matching and parsing
1497 __gr_match_entry(const char *line, size_t linesize, enum nss_lookup_type how,
1498 const char *name, gid_t gid)
1501 const char *p, *eol;
1506 if (linesize == 0 || is_comment_line(line, linesize))
1507 return (NS_NOTFOUND);
1509 case nss_lt_name: needed = 1; break;
1510 case nss_lt_id: needed = 2; break;
1511 default: needed = 2; break;
1513 eol = &line[linesize];
1514 for (p = line, i = 0; i < needed && p < eol; p++)
1518 return (NS_NOTFOUND);
1521 namesize = strlen(name);
1522 if (namesize + 1 == (size_t)(p - line) &&
1523 memcmp(line, name, namesize) == 0)
1524 return (NS_SUCCESS);
1527 n = strtoul(p, &q, 10);
1528 if (q < eol && *q == ':' && gid == (gid_t)n)
1529 return (NS_SUCCESS);
1532 return (NS_SUCCESS);
1536 return (NS_NOTFOUND);
1541 __gr_parse_entry(char *line, size_t linesize, struct group *grp, char *membuf,
1542 size_t membufsize, int *errnop)
1544 char *s_gid, *s_mem, *p, **members;
1548 memset(grp, 0, sizeof(*grp));
1549 members = (char **)_ALIGN(membuf);
1550 membufsize -= (char *)members - membuf;
1551 maxmembers = membufsize / sizeof(*members);
1552 if (maxmembers <= 0 ||
1553 (grp->gr_name = strsep(&line, ":")) == NULL ||
1554 grp->gr_name[0] == '\0' ||
1555 (grp->gr_passwd = strsep(&line, ":")) == NULL ||
1556 (s_gid = strsep(&line, ":")) == NULL ||
1558 return (NS_NOTFOUND);
1560 n = strtoul(s_gid, &s_gid, 10);
1561 if (s_gid[0] != '\0')
1562 return (NS_NOTFOUND);
1563 grp->gr_gid = (gid_t)n;
1564 grp->gr_mem = members;
1565 while (maxmembers > 1 && s_mem != NULL) {
1566 p = strsep(&s_mem, ",");
1567 if (p != NULL && *p != '\0') {
1574 return (NS_SUCCESS);