123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203 |
- /* vi: set sw=4 ts=4: */
- /*
- * addgroup - add groups to /etc/group and /etc/gshadow
- *
- * Copyright (C) 1999 by Lineo, inc. and John Beppu
- * Copyright (C) 1999,2000,2001 by John Beppu <beppu@codepoet.org>
- * Copyright (C) 2007 by Tito Ragusa <farmatito@tiscali.it>
- *
- * Licensed under GPLv2 or later, see file LICENSE in this source tree.
- */
- //config:config ADDGROUP
- //config: bool "addgroup (8.8 kb)"
- //config: default y
- //config: select LONG_OPTS
- //config: help
- //config: Utility for creating a new group account.
- //config:
- //config:config FEATURE_ADDUSER_TO_GROUP
- //config: bool "Support adding users to groups"
- //config: default y
- //config: depends on ADDGROUP
- //config: help
- //config: If called with two non-option arguments,
- //config: addgroup will add an existing user to an
- //config: existing group.
- //applet:IF_ADDGROUP(APPLET_NOEXEC(addgroup, addgroup, BB_DIR_USR_SBIN, BB_SUID_DROP, addgroup))
- //kbuild:lib-$(CONFIG_ADDGROUP) += addgroup.o
- //usage:#define addgroup_trivial_usage
- //usage: "[-g GID] [-S] " IF_FEATURE_ADDUSER_TO_GROUP("[USER] ") "GROUP"
- //usage:#define addgroup_full_usage "\n\n"
- //usage: "Add a group" IF_FEATURE_ADDUSER_TO_GROUP(" or add a user to a group") "\n"
- //usage: "\n -g GID Group id"
- //usage: "\n -S Create a system group"
- #include "libbb.h"
- #if CONFIG_LAST_SYSTEM_ID < CONFIG_FIRST_SYSTEM_ID
- #error Bad LAST_SYSTEM_ID or FIRST_SYSTEM_ID in .config
- #endif
- #if CONFIG_LAST_ID < CONFIG_LAST_SYSTEM_ID
- #error Bad LAST_ID or LAST_SYSTEM_ID in .config
- #endif
- #define OPT_GID (1 << 0)
- #define OPT_SYSTEM_ACCOUNT (1 << 1)
- static void xgroup_study(struct group *g)
- {
- unsigned max = CONFIG_LAST_ID;
- /* Make sure gr_name is unused */
- if (getgrnam(g->gr_name)) {
- bb_error_msg_and_die("%s '%s' in use", "group", g->gr_name);
- /* these format strings are reused in adduser and addgroup */
- }
- /* if a specific gid is requested, the --system switch and */
- /* min and max values are overridden, and the range of valid */
- /* gid values is set to [0, INT_MAX] */
- if (!(option_mask32 & OPT_GID)) {
- if (option_mask32 & OPT_SYSTEM_ACCOUNT) {
- g->gr_gid = CONFIG_FIRST_SYSTEM_ID;
- max = CONFIG_LAST_SYSTEM_ID;
- } else {
- g->gr_gid = CONFIG_LAST_SYSTEM_ID + 1;
- }
- }
- /* Check if the desired gid is free
- * or find the first free one */
- while (1) {
- if (!getgrgid(g->gr_gid)) {
- return; /* found free group: return */
- }
- if (option_mask32 & OPT_GID) {
- /* -g N, cannot pick gid other than N: error */
- bb_error_msg_and_die("%s '%s' in use", "gid", itoa(g->gr_gid));
- /* this format strings is reused in adduser and addgroup */
- }
- if (g->gr_gid == max) {
- /* overflowed: error */
- bb_error_msg_and_die("no %cids left", 'g');
- /* this format string is reused in adduser and addgroup */
- }
- g->gr_gid++;
- }
- }
- /* append a new user to the passwd file */
- static void new_group(char *group, gid_t gid)
- {
- struct group gr;
- char *p;
- /* make sure gid and group haven't already been allocated */
- gr.gr_gid = gid;
- gr.gr_name = group;
- xgroup_study(&gr);
- /* add entry to group */
- p = xasprintf("x:%u:", (unsigned) gr.gr_gid);
- if (update_passwd(bb_path_group_file, group, p, NULL) < 0)
- exit_FAILURE();
- if (ENABLE_FEATURE_CLEAN_UP)
- free(p);
- #if ENABLE_FEATURE_SHADOWPASSWDS
- /* /etc/gshadow fields:
- * 1. Group name.
- * 2. Encrypted password.
- * If set, non-members of the group can join the group
- * by typing the password for that group using the newgrp command.
- * If the value is of this field ! then no user is allowed
- * to access the group using the newgrp command. A value of !!
- * is treated the same as a value of ! only it indicates
- * that a password has never been set before. If the value is null,
- * only group members can log into the group.
- * 3. Group administrators (comma delimited list).
- * Group members listed here can add or remove group members
- * using the gpasswd command.
- * 4. Group members (comma delimited list).
- */
- /* Ignore errors: if file is missing we assume admin doesn't want it */
- update_passwd(bb_path_gshadow_file, group, "!::", NULL);
- #endif
- }
- //FIXME: upstream addgroup has no short options! NOT COMPATIBLE!
- static const char addgroup_longopts[] ALIGN1 =
- "gid\0" Required_argument "g"
- "system\0" No_argument "S"
- ;
- /*
- * addgroup will take a login_name as its first parameter.
- *
- * gid can be customized via command-line parameters.
- * If called with two non-option arguments, addgroup
- * will add an existing user to an existing group.
- */
- int addgroup_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
- int addgroup_main(int argc UNUSED_PARAM, char **argv)
- {
- #if ENABLE_FEATURE_ADDUSER_TO_GROUP
- unsigned opts;
- #endif
- const char *gid = "0";
- /* need to be root */
- if (geteuid()) {
- bb_simple_error_msg_and_die(bb_msg_perm_denied_are_you_root);
- }
- /* Syntax:
- * addgroup group
- * addgroup --gid num group
- * addgroup user group
- * Check for min, max and missing args */
- #if ENABLE_FEATURE_ADDUSER_TO_GROUP
- opts =
- #endif
- getopt32long(argv, "^" "g:S" "\0" "-1:?2", addgroup_longopts,
- &gid
- );
- /* move past the commandline options */
- argv += optind;
- //argc -= optind;
- #if ENABLE_FEATURE_ADDUSER_TO_GROUP
- if (argv[1]) {
- struct group *gr;
- if (opts & OPT_GID) {
- /* -g was there, but "addgroup -g num user group"
- * is a no-no */
- bb_show_usage();
- }
- /* check if group and user exist */
- xuname2uid(argv[0]); /* unknown user: exit */
- gr = xgetgrnam(argv[1]); /* unknown group: exit */
- /* check if user is already in this group */
- for (; *(gr->gr_mem) != NULL; (gr->gr_mem)++) {
- if (strcmp(argv[0], *(gr->gr_mem)) == 0) {
- /* user is already in group: do nothing */
- return EXIT_SUCCESS;
- }
- }
- if (update_passwd(bb_path_group_file, argv[1], NULL, argv[0]) < 0) {
- return EXIT_FAILURE;
- }
- # if ENABLE_FEATURE_SHADOWPASSWDS
- update_passwd(bb_path_gshadow_file, argv[1], NULL, argv[0]);
- # endif
- } else
- #endif /* ENABLE_FEATURE_ADDUSER_TO_GROUP */
- {
- die_if_bad_username(argv[0]);
- new_group(argv[0], xatou_range(gid, 0, CONFIG_LAST_ID));
- }
- /* Reached only on success */
- return EXIT_SUCCESS;
- }
|