← Back to branch summary

~ubuntu-branches/ubuntu/quantal/shadow/quantal

~ubuntu-branches/ubuntu/quantal/shadow/quantal

« back to all changes in this revision

Viewing changes to libmisc/find_new_gid.c

Committer: Bazaar Package Importer
Author(s): Nicolas Valcárcel Scerpella (Canonical)
Date: 2009-11-07 04:55:18 UTC
mfrom: (1.1.8 upstream) (18.1.2 sid)
Revision ID: james.westby@ubuntu.com-20091107045518-qqclg1lhinz6zv1i

Tags: 1:4.1.4.2-1ubuntu1

https://launchpad.net/bugs/477299

* Merged with debian unstable. Remaning changes (LP: #477299):
  - Ubuntu specific:
    + debian/login.defs: use SHA512 by default for password crypt routine.
  - debian/patches/495_stdout-encrypted-password: chpasswd can report
    password hashes on stdout (Debian bug 505640).
  - Rework 495_stdout-encrypted-password to cope with chpasswd using PAM.

files removed:
man/fi/passwd.1

files modified:
ChangeLog

NEWS

TODO

config.h.in

configure

configure.in

debian/changelog

debian/control

debian/login.dirs

debian/login.pam

debian/passwd.dirs

debian/patches/506_relaxed_usernames

debian/securetty.linux

debian/shadowconfig.sh

etc/login.defs

lib/fputsx.c

lib/gshadow.c

libmisc/find_new_gid.c

libmisc/find_new_uid.c

libmisc/setupenv.c

libmisc/shell.c

libmisc/xgetXXbyYY.c

libmisc/xgetgrgid.c

libmisc/xgetgrnam.c

libmisc/xgetpwnam.c

libmisc/xgetpwuid.c

libmisc/xgetspnam.c

man/chage.1

man/chfn.1

man/chgpasswd.8

man/chpasswd.8

man/chpasswd.8.xml

man/chsh.1

man/de/chfn.1

man/de/chsh.1

man/de/groups.1

man/de/login.1

man/de/newgrp.1

man/de/passwd.1

man/de/passwd.5

man/de/su.1

man/de/vipw.8

man/expiry.1

man/faillog.5

man/faillog.8

man/fi/Makefile.am

man/fi/Makefile.in

man/fr/chage.1

man/fr/chfn.1

man/fr/chpasswd.8

man/fr/chsh.1

man/fr/expiry.1

man/fr/faillog.5

man/fr/faillog.8

man/fr/gpasswd.1

man/fr/groupadd.8

man/fr/groupdel.8

man/fr/groupmod.8

man/fr/groups.1

man/fr/grpck.8

man/fr/gshadow.5

man/fr/id.1

man/fr/lastlog.8

man/fr/limits.5

man/fr/login.1

man/fr/login.access.5

man/fr/login.defs.5

man/fr/logoutd.8

man/fr/newgrp.1

man/fr/newusers.8

man/fr/passwd.1

man/fr/passwd.5

man/fr/porttime.5

man/fr/pwck.8

man/fr/pwconv.8

man/fr/sg.1

man/fr/shadow.3

man/fr/shadow.5

man/fr/su.1

man/fr/suauth.5

man/fr/useradd.8

man/fr/userdel.8

man/fr/usermod.8

man/fr/vipw.8

man/gpasswd.1

man/gpasswd.1.xml

man/groupadd.8

man/groupdel.8

man/groupmems.8

man/groupmod.8

man/groups.1

man/grpck.8

man/grpck.8.xml

man/gshadow.5

man/id.1

man/it/chage.1

man/it/chfn.1

man/it/chpasswd.8

man/it/chsh.1

man/it/expiry.1

man/it/faillog.5

man/it/faillog.8

man/it/gpasswd.1

man/it/groupadd.8

man/it/groupdel.8

man/it/groupmod.8

man/it/groups.1

man/it/grpck.8

man/it/id.1

man/it/lastlog.8

man/it/login.1

man/it/logoutd.8

man/it/newgrp.1

man/it/newusers.8

man/it/passwd.1

man/it/passwd.5

man/it/porttime.5

man/it/pwck.8

man/it/pwconv.8

man/it/sg.1

man/it/shadow.3

man/it/shadow.5

man/it/su.1

man/it/useradd.8

man/it/userdel.8

man/it/usermod.8

man/it/vipw.8

man/lastlog.8

man/limits.5

man/login.1

man/login.1.xml

man/login.access.5

man/login.defs.5

man/login.defs.d/ENVIRON_FILE.xml

man/logoutd.8

man/newgrp.1

man/newgrp.1.xml

man/newusers.8

man/nologin.8

man/passwd.1

man/passwd.1.xml

man/passwd.5

man/passwd.5.xml

man/pl/chage.1

man/pl/chfn.1

man/pl/chgpasswd.8

man/pl/chpasswd.8

man/pl/chsh.1

man/pl/expiry.1

man/pl/faillog.5

man/pl/faillog.8

man/pl/gpasswd.1

man/pl/groupadd.8

man/pl/groupdel.8

man/pl/groupmems.8

man/pl/groupmod.8

man/pl/groups.1

man/pl/grpck.8

man/pl/id.1

man/pl/lastlog.8

man/pl/limits.5

man/pl/login.access.5

man/pl/login.defs.5

man/pl/logoutd.8

man/pl/newgrp.1

man/pl/newusers.8

man/pl/passwd.1

man/pl/passwd.5

man/pl/porttime.5

man/pl/pwck.8

man/pl/pwconv.8

man/pl/sg.1

man/pl/shadow.3

man/pl/shadow.5

man/pl/suauth.5

man/pl/sulogin.8

man/pl/useradd.8

man/pl/userdel.8

man/pl/usermod.8

man/pl/vipw.8

man/po/de.po

man/po/fr.po

man/po/it.po

man/po/pl.po

man/po/ru.po

man/po/shadow-man-pages.pot

man/po/sv.po

man/porttime.5

man/pwck.8

man/pwck.8.xml

man/pwconv.8

man/ru/chage.1

man/ru/chfn.1

man/ru/chgpasswd.8

man/ru/chpasswd.8

man/ru/chsh.1

man/ru/expiry.1

man/ru/faillog.5

man/ru/faillog.8

man/ru/gpasswd.1

man/ru/groupadd.8

man/ru/groupdel.8

man/ru/groupmems.8

man/ru/groupmod.8

man/ru/groups.1

man/ru/grpck.8

man/ru/gshadow.5

man/ru/id.1

man/ru/lastlog.8

man/ru/limits.5

man/ru/login.1

man/ru/login.access.5

man/ru/login.defs.5

man/ru/logoutd.8

man/ru/newgrp.1

man/ru/newusers.8

man/ru/nologin.8

man/ru/passwd.1

man/ru/passwd.5

man/ru/porttime.5

man/ru/pwck.8

man/ru/pwconv.8

man/ru/sg.1

man/ru/shadow.3

man/ru/shadow.5

man/ru/su.1

man/ru/suauth.5

man/ru/sulogin.8

man/ru/useradd.8

man/ru/userdel.8

man/ru/usermod.8

man/ru/vipw.8

man/sg.1

man/sg.1.xml

man/shadow.3

man/shadow.5

man/shadow.5.xml

man/su.1

man/su.1.xml

man/suauth.5

man/sulogin.8

man/sv/chage.1

man/sv/chfn.1

man/sv/chgpasswd.8

man/sv/chpasswd.8

man/sv/chsh.1

man/sv/expiry.1

man/sv/faillog.5

man/sv/faillog.8

man/sv/gpasswd.1

man/sv/groupadd.8

man/sv/groupdel.8

man/sv/groupmems.8

man/sv/groupmod.8

man/sv/groups.1

man/sv/grpck.8

man/sv/gshadow.5

man/sv/lastlog.8

man/sv/limits.5

man/sv/login.1

man/sv/login.access.5

man/sv/login.defs.5

man/sv/logoutd.8

man/sv/newgrp.1

man/sv/newusers.8

man/sv/nologin.8

man/sv/passwd.1

man/sv/passwd.5

man/sv/porttime.5

man/sv/pwck.8

man/sv/pwconv.8

man/sv/sg.1

man/sv/shadow.3

man/sv/shadow.5

man/sv/su.1

man/sv/suauth.5

man/sv/useradd.8

man/sv/userdel.8

man/sv/usermod.8

man/sv/vipw.8

man/useradd.8

man/userdel.8

man/usermod.8

man/vipw.8

po/bs.gmo

po/bs.po

po/ca.gmo

po/ca.po

po/cs.gmo

po/cs.po

po/da.gmo

po/da.po

po/de.gmo

po/de.po

po/dz.gmo

po/dz.po

po/el.gmo

po/el.po

po/es.gmo

po/es.po

po/eu.gmo

po/eu.po

po/fi.gmo

po/fi.po

po/fr.gmo

po/fr.po

po/gl.gmo

po/gl.po

po/he.gmo

po/he.po

po/hu.gmo

po/hu.po

po/id.gmo

po/id.po

po/it.gmo

po/it.po

po/ja.gmo

po/ja.po

po/kk.gmo

po/kk.po

po/km.gmo

po/km.po

po/ko.gmo

po/ko.po

po/nb.gmo

po/nb.po

po/ne.gmo

po/ne.po

po/nl.gmo

po/nl.po

po/nn.gmo

po/nn.po

po/pl.gmo

po/pl.po

po/pt.gmo

po/pt.po

po/pt_BR.gmo

po/pt_BR.po

po/ro.gmo

po/ro.po

po/ru.gmo

po/ru.po

po/shadow.pot

po/sk.gmo

po/sk.po

po/sq.gmo

po/sq.po

po/sv.gmo

po/sv.po

po/tl.gmo

po/tl.po

po/tr.gmo

po/tr.po

po/uk.gmo

po/uk.po

po/vi.gmo

po/vi.po

po/zh_CN.gmo

po/zh_CN.po

po/zh_TW.gmo

po/zh_TW.po

src/faillog.c

src/groupadd.c

src/groupmod.c

src/newgrp.c

src/pwck.c

src/su.c

src/useradd.c

src/vipw.c

Show diffs side-by-side

added added

removed removed

libmisc/find_new_gid.c

52

52

/*@null@*/gid_t const *preferred_gid)

53

53

{

54

54

const struct group *grp;

55

gid_t gid_min, gid_max, group_id;

55

gid_t gid_min, gid_max, group_id, id;

56

56

bool *used_gids;

57

57

58

58

assert (gid != NULL);

61

61

gid_min = (gid_t) getdef_ulong ("GID_MIN", 1000UL);

62

62

gid_max = (gid_t) getdef_ulong ("GID_MAX", 60000UL);

63

63

} else {

64

gid_min = (gid_t) getdef_ulong ("SYS_GID_MIN", 1UL);

64

gid_min = (gid_t) getdef_ulong ("SYS_GID_MIN", 101UL);

65

65

gid_max = (gid_t) getdef_ulong ("GID_MIN", 1000UL) - 1;

66

66

gid_max = (gid_t) getdef_ulong ("SYS_GID_MAX", (unsigned long) gid_max);

67

67

}

80

80

return 0;

81

81

}

82

82

83

group_id = gid_min;

84

83

85

84

/*

86

85

* Search the entire group file,

90

89

* but we also check the local database (gr_rewind/gr_next) in case

91

90

* some groups were created but the changes were not committed yet.

92

91

*/

93

setgrent ();

94

while ((grp = getgrent ()) != NULL) {

95

if ((grp->gr_gid >= group_id) && (grp->gr_gid <= gid_max)) {

96

group_id = grp->gr_gid + 1;

97

}

98

/* create index of used GIDs */

99

if (grp->gr_gid <= gid_max) {

100

used_gids[grp->gr_gid] = true;

101

}

102

}

103

endgrent ();

104

gr_rewind ();

105

while ((grp = gr_next ()) != NULL) {

106

if ((grp->gr_gid >= group_id) && (grp->gr_gid <= gid_max)) {

107

group_id = grp->gr_gid + 1;

108

}

109

/* create index of used GIDs */

110

if (grp->gr_gid <= gid_max) {

111

used_gids[grp->gr_gid] = true;

112

}

113

}

114

115

/* find free system account in reverse order */

116

92

if (sys_group) {

117

for (group_id = gid_max; group_id >= gid_min; group_id--) {

118

if (false == used_gids[group_id]) {

119

break;

120

}

121

}

122

if ( group_id < gid_min ) {

123

fprintf (stderr,

124

_("%s: Can't get unique GID (no more available GIDs)\n"),

125

Prog);

126

SYSLOG ((LOG_WARN,

127

"no more available GID on the system"));

128

return -1;

93

/* setgrent / getgrent / endgrent can be very slow with

94

* LDAP configurations (and many accounts).

95

* Since there is a limited amount of IDs to be tested

96

* for system accounts, we just check the existence

97

* of IDs with getgrgid.

98

*/

99

group_id = gid_max;

100

for (id = gid_max; id >= gid_min; id--) {

101

if (getgrgid (id) != NULL) {

102

group_id = id - 1;

103

used_gids[id] = true;

104

}

105

}

106

107

gr_rewind ();

108

while ((grp = gr_next ()) != NULL) {

109

if ((grp->gr_gid <= group_id) && (grp->gr_gid >= gid_min)) {

110

group_id = grp->gr_gid - 1;

111

}

112

/* create index of used GIDs */

113

if (grp->gr_gid <= gid_max) {

114

used_gids[grp->gr_gid] = true;

115

}

116

}

117

} else {

118

group_id = gid_min;

119

setgrent ();

120

while ((grp = getgrent ()) != NULL) {

121

if ((grp->gr_gid >= group_id) && (grp->gr_gid <= gid_max)) {

122

group_id = grp->gr_gid + 1;

123

}

124

/* create index of used GIDs */

125

if (grp->gr_gid <= gid_max) {

126

used_gids[grp->gr_gid] = true;

127

}

128

}

129

endgrent ();

130

131

gr_rewind ();

132

while ((grp = gr_next ()) != NULL) {

133

if ((grp->gr_gid >= group_id) && (grp->gr_gid <= gid_max)) {

134

group_id = grp->gr_gid + 1;

135

}

136

/* create index of used GIDs */

137

if (grp->gr_gid <= gid_max) {

138

used_gids[grp->gr_gid] = true;

139

}

129

140

}

130

141

}

131

142

134

145

* will give us GID_MAX+1 even if not unique. Search for the first

135

146

* free GID starting with GID_MIN.

136

147

*/

137

if (group_id == gid_max + 1) {

138

for (group_id = gid_min; group_id < gid_max; group_id++) {

139

if (false == used_gids[group_id]) {

140

break;

148

if (sys_group) {

149

if (group_id == gid_min - 1) {

150

for (group_id = gid_max; group_id >= gid_min; group_id--) {

151

if (false == used_gids[group_id]) {

152

break;

153

}

154

}

155

if ( group_id < gid_min ) {

156

fprintf (stderr,

157

_("%s: Can't get unique system GID (no more available GIDs)\n"),

158

Prog);

159

SYSLOG ((LOG_WARN,

160

"no more available GID on the system"));

161

return -1;

141

162

}

142

163

}

143

if (group_id == gid_max) {

144

fprintf (stderr, _("%s: Can't get unique GID (no more available GIDs)\n"), Prog);

145

SYSLOG ((LOG_WARN, "no more available GID on the system"));

146

return -1;

164

} else {

165

if (group_id == gid_max + 1) {

166

for (group_id = gid_min; group_id < gid_max; group_id++) {

167

if (false == used_gids[group_id]) {

168

break;

169

}

170

}

171

if (group_id == gid_max) {

172

fprintf (stderr,

173

_("%s: Can't get unique GID (no more available GIDs)\n"),

174

Prog);

175

SYSLOG ((LOG_WARN, "no more available GID on the system"));

176

return -1;

177

}

147

178

}

148

179

}

149

180

Older »