1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
|
// An NSS module that extends local user account lookup to the files
// /etc/passwd.borg and /etc/passwd.borg.base
// passwd.borg.base is a subset of passwd.borg that is used as a fallback.
#include <errno.h>
#include <nss.h>
#include <pwd.h>
#include <stdio.h>
#include <string.h>
#include <sys/types.h>
#include <syslog.h>
#include <libc-lock.h>
__libc_lock_define_initialized(static, lock)
#define NSSBORG_LOCK __libc_lock_lock(lock)
#define NSSBORG_UNLOCK __libc_lock_unlock(lock);
#define EXEC_NAME_SIZE 4096
static FILE *f;
static FILE *fb;
static bool fb_eof;
static FILE *fbr;
static bool fbr_eof;
static char exec_name[EXEC_NAME_SIZE];
// This library will log into syslog any attempt to fetch a username from
// /etc/passwd.borg file, but only if /etc/passwd.borg.real file is present.
// This module makes the user lookup in following order:
// /etc/passwd.borg.real
// /etc/passwd.borg.base
// /etc/passwd.borg
// non_borg_user_lookup_warn is supposed to prevent log spew from a single
// process.
static int non_borg_user_lookup_warn = 0;
#define LOGNSS(priority, fmt, ...) \
do { \
openlog("nss_borg", LOG_PID, 0); \
syslog(LOG_USER | priority, fmt, ##__VA_ARGS__); \
closelog(); \
} while (0)
#define DEBUG(fmt, ...)
#define WARN(fmt, ...) LOGNSS(LOG_WARNING, fmt, ##__VA_ARGS__)
// _nss_borg_setpwent_locked()
// Internal setup routine
static enum nss_status _nss_borg_setpwent_locked(void) {
int readlink_ret;
DEBUG("Opening passwd.borg\n");
f = fopen("/etc/passwd.borg", "r");
DEBUG("Opening passwd.borg.base\n");
fb = fopen("/etc/passwd.borg.base", "r");
fb_eof = false;
DEBUG("Opening passwd.borg.real\n");
fbr = fopen("/etc/passwd.borg.real", "r");
fbr_eof = false;
DEBUG("Reading /proc/self/exe");
// readlink does not append null-byte, so we reserve last byte for it.
readlink_ret = readlink("/proc/self/exe", exec_name,
sizeof(exec_name) - 1);
if (readlink_ret == -1) {
DEBUG("Failed to readlink /proc/self/exe error: %d", errno);
strncpy(exec_name, "__unknown__", sizeof(exec_name));
} else {
exec_name[readlink_ret] = '\0';
}
if (f || fb || fbr) {
return NSS_STATUS_SUCCESS;
} else {
return NSS_STATUS_UNAVAIL;
}
}
// _nss_borg_endpwent_locked()
// Internal close routine
static enum nss_status _nss_borg_endpwent_locked(void) {
DEBUG("Closing passwd.borg\n");
if (f) {
fclose(f);
f = NULL;
}
DEBUG("Closing passwd.borg.base\n");
if (fb) {
fclose(fb);
fb = NULL;
}
DEBUG("Closing passwd.borg.real\n");
if (fbr) {
fclose(fbr);
fbr = NULL;
}
return NSS_STATUS_SUCCESS;
}
// Called internally. It's a wrapper around fgetpwent_r that prevents from
// multiple read calls once EOF was reached (b/72036184)
static int _nss_borg_fgetpwent_r_eof(FILE *fp, struct passwd *pwbuf,
char *buf, size_t buflen,
struct passwd **pwbufp, bool *eof) {
if (*eof) {
*pwbufp = NULL;
return ENOENT;
} else {
int ret = fgetpwent_r(fp, pwbuf, buf, buflen, pwbufp);
if (ret == ENOENT) {
*eof = true;
}
return ret;
}
}
// _nss_borg_getpwent_r_locked()
// Called internally to return the next entry from the passwd file
static enum nss_status _nss_borg_getpwent_r_locked(struct passwd *result,
char *buffer, size_t buflen,
int *errnop,
int *non_borg_user) {
enum nss_status ret;
// Save a copy of the buffer address, in case first call errors
// and sets it to 0.
struct passwd *sparecopy = result;
if (fbr != NULL && (_nss_borg_fgetpwent_r_eof(fbr, result, buffer, buflen,
&result, &fbr_eof) == 0)) {
DEBUG("Returning real borg user %d:%s\n", result->pw_uid, result->pw_name);
ret = NSS_STATUS_SUCCESS;
} else if (
// Yes, this is one of those cases where an assign makes sense.
fb != NULL && (result = sparecopy) &&
(_nss_borg_fgetpwent_r_eof(fb, result, buffer, buflen, &result,
&fb_eof) == 0)) {
DEBUG("Returning base borg user %d:%s\n", result->pw_uid, result->pw_name);
ret = NSS_STATUS_SUCCESS;
} else if (
// Yes, this is one of those cases where an assign makes sense.
// NB: passwd.borg.base is not ordered by UID as of cl/201005022.
f != NULL && (result = sparecopy) &&
(fgetpwent_r(f, result, buffer, buflen, &result) == 0)) {
DEBUG("Returning non borg user %d:%s\n", result->pw_uid, result->pw_name);
// Log only if passwd.borg.real file is present.
if (fbr) {
*non_borg_user = 1;
}
ret = NSS_STATUS_SUCCESS;
} else {
*errnop = errno;
switch (*errnop) {
case ERANGE:
ret = NSS_STATUS_TRYAGAIN;
break;
case ENOENT:
default:
ret = NSS_STATUS_NOTFOUND;
}
}
return ret;
}
// All methods below are public interface of this library.
// _nss_borg_setpwent()
// Called by NSS to open the passwd file
// Oddly, NSS passes a boolean saying whether to keep the database file open;
// ignore it
enum nss_status _nss_borg_setpwent(int stayopen) {
enum nss_status ret;
NSSBORG_LOCK;
ret = _nss_borg_setpwent_locked();
NSSBORG_UNLOCK;
return ret;
}
// _nss_borg_endpwent()
// Called by NSS to close the passwd file
enum nss_status _nss_borg_endpwent(void) {
enum nss_status ret;
NSSBORG_LOCK;
ret = _nss_borg_endpwent_locked();
NSSBORG_UNLOCK;
return ret;
}
// _nss_borg_getpwent_r()
// Called by NSS (I think) to look up next entry in passwd file
enum nss_status _nss_borg_getpwent_r(struct passwd *result, char *buffer,
size_t buflen, int *errnop) {
enum nss_status ret;
int non_borg_user = 0;
NSSBORG_LOCK;
ret = _nss_borg_getpwent_r_locked(result, buffer, buflen, errnop,
&non_borg_user);
if (non_borg_user && !non_borg_user_lookup_warn) {
non_borg_user_lookup_warn = 1;
WARN("Reached non borg section in getpwent call "
"in process: %s running as: %d\n", exec_name, getuid());
}
NSSBORG_UNLOCK;
return ret;
}
// _nss_borg_getpwuid_r()
// Called by NSS to find a user account by uid
enum nss_status _nss_borg_getpwuid_r(uid_t uid, struct passwd *result,
char *buffer, size_t buflen, int *errnop) {
enum nss_status ret;
int non_borg_user = 0;
NSSBORG_LOCK;
ret = _nss_borg_setpwent_locked();
DEBUG("Looking for uid %d\n", uid);
if (ret == NSS_STATUS_SUCCESS) {
while ((ret = _nss_borg_getpwent_r_locked(result, buffer, buflen, errnop,
&non_borg_user)) ==
NSS_STATUS_SUCCESS) {
if (result->pw_uid == uid) {
if (non_borg_user) {
WARN("Returning non borg user %d:%s in process: %s running as: %d\n",
result->pw_uid, result->pw_name, exec_name, getuid());
}
break;
}
}
}
_nss_borg_endpwent_locked();
NSSBORG_UNLOCK;
return ret;
}
// _nss_borg_getpwnam_r()
// Called by NSS to find a user account by name
enum nss_status _nss_borg_getpwnam_r(const char *name, struct passwd *result,
char *buffer, size_t buflen, int *errnop) {
enum nss_status ret;
int non_borg_user = 0;
NSSBORG_LOCK;
ret = _nss_borg_setpwent_locked();
DEBUG("Looking for user %s\n", name);
if (ret == NSS_STATUS_SUCCESS) {
while ((ret = _nss_borg_getpwent_r_locked(result, buffer, buflen, errnop,
&non_borg_user)) ==
NSS_STATUS_SUCCESS) {
if (!strcmp(result->pw_name, name)) {
if (non_borg_user) {
WARN("Returning non borg user %d:%s in process: %s running as: %d\n",
result->pw_uid, result->pw_name, exec_name, getuid());
}
break;
}
}
}
_nss_borg_endpwent_locked();
NSSBORG_UNLOCK;
return ret;
}
|
