X-Git-Url: http://git.megacz.com/?p=libnss-afs.git;a=blobdiff_plain;f=nss_afs.c;h=29d4511c1b3e6c2b26b15717b78d8fd23c3e19f7;hp=11d9fb3a67fd8eecf520d866601e86be62f5e524;hb=277abbf30926bf5019dbcf2b292f9acbbb8800e3;hpb=43d1801e7ebb08fe927747e1de8eefa0ae294957 diff --git a/nss_afs.c b/nss_afs.c index 11d9fb3..29d4511 100644 --- a/nss_afs.c +++ b/nss_afs.c @@ -116,7 +116,7 @@ enum nss_status ptsid2name(int uid, char **buffer, int *buflen) { idlist lid; namelist lnames; - init_afs(); + if (init_afs()) return NSS_STATUS_UNAVAIL; if (uid==AFS_MAGIC_ANONYMOUS_USERID) { if (!cpstr("anonymous", buffer, buflen)) return NSS_STATUS_UNAVAIL; @@ -131,6 +131,7 @@ enum nss_status ptsid2name(int uid, char **buffer, int *buflen) { lnames.namelist_len = 0; if (ubik_Call(PR_IDToName,pruclient,0,&lid,&lnames) != PRSUCCESS) { + perror("ubik_Call() in ptsid2name() failed\n"); pthread_mutex_unlock(&mutex); return NSS_STATUS_UNAVAIL; } @@ -161,7 +162,7 @@ enum nss_status ptsname2id(char *name, uid_t* uid) { namelist lnames; char uname[MAXUSERNAMELEN]; - init_afs(); + if (init_afs()) return NSS_STATUS_UNAVAIL; if (!strcmp(name,"anonymous")) { *uid = AFS_MAGIC_ANONYMOUS_USERID; @@ -178,6 +179,7 @@ enum nss_status ptsname2id(char *name, uid_t* uid) { lnames.namelist_len = 1; if (ubik_Call(PR_NameToID,pruclient,0,&lnames,&lid) != PRSUCCESS) { + perror("ubik_Call() in ptsname2id() failed\n"); pthread_mutex_unlock(&mutex); return NSS_STATUS_UNAVAIL; } @@ -197,11 +199,35 @@ int init_afs() { int len; struct stat statbuf; + char buf[6]; + int fd; + int pos; + if (afs_initialized) { /* wait until /afs/@cell/ appears as a proxy for "the network is up" */ if (stat(cell_root, &statbuf)) return -1; return 0; } + + // check to make sure that we are running inside nscd + pos = 0; + fd = open("/proc/self/cmdline", O_RDONLY); + if (fd==-1) return -1; + while(1) { + int numread; + numread = read(fd, buf+pos, 1); + if (buf[ (pos+5)%6 ] == 'd' && + buf[ (pos+4)%6 ] == 'c' && + buf[ (pos+3)%6 ] == 's' && + buf[ (pos+2)%6 ] == 'n' && + (buf[(pos+1)%6 ] == '/' || pos==4) && + (buf[(pos+0)%6 ] == 0 || numread==-1) + ) + break; + pos = (pos+1)%6; + if (numread==0) { close(fd); return -1; } + } + close(fd); if (pthread_mutex_lock(&mutex)) return -1; do { @@ -237,7 +263,10 @@ int init_afs() { /* time out requests after 5 seconds to avoid hanging things */ rx_SetRxDeadTime(5); - if (pr_Initialize(0L,AFSDIR_CLIENT_ETC_DIRPATH, 0)) break; + if (pr_Initialize(0L,AFSDIR_CLIENT_ETC_DIRPATH, 0)) { + perror("pr_Initialize() failed\n"); + break; + } afs_initialized = 1; pthread_mutex_unlock(&mutex); @@ -359,7 +388,7 @@ enum nss_status _nss_afs_getgrgid_r (gid_t gid, result->gr_passwd=buffer; - if (!cpstr("x",&buffer,&buflen)) break; + if (!cpstr("z",&buffer,&buflen)) break; if (buflen < sizeof(char*)) break; result->gr_mem=buffer; @@ -385,9 +414,9 @@ enum nss_status fill_result_buf(uid_t uid, int *errnop) { result_buf->pw_name = name; do { - /* set the password to "x" */ + /* set the password to "z"; we can't use "x" because of pam_unix.so */ result_buf->pw_passwd = buffer; - if ( ! cpstr("x",&buffer, &buflen) ) break; + if ( ! cpstr("z",&buffer, &buflen) ) break; /* the uid and gid are both the uid passed in */ result_buf->pw_uid = uid; @@ -405,6 +434,14 @@ enum nss_status fill_result_buf(uid_t uid, result_buf->pw_shell = buffer; if ( get_shell(result_buf->pw_name,&buffer,&buflen) ) break; +#ifdef LIMIT_USERNAME_CHARS + if ( strlen(result_buf->pw_name) > LIMIT_USERNAME_CHARS ) { + result_buf->pw_name[LIMIT_USERNAME_CHARS] = '\0'; + buflen = buflen + ( buffer - &result_buf->pw_name[LIMIT_USERNAME_CHARS+1] ); + buffer = &result_buf->pw_name[LIMIT_USERNAME_CHARS+1]; + } +#endif + *errnop = errno; return NSS_STATUS_SUCCESS; } while(0); @@ -436,14 +473,6 @@ enum nss_status _nss_afs_getpwuid_r (uid_t uid, return temp; } -#ifdef LIMIT_USERNAME_CHARS - if ( strlen(result_buf->pw_name) > LIMIT_USERNAME_CHARS ) { - result_buf->pw_name[LIMIT_USERNAME_CHARS] = '\0'; - buflen = buflen + ( buffer - &result_buf->pw_name[LIMIT_USERNAME_CHARS+1] ); - buffer = &result_buf->pw_name[LIMIT_USERNAME_CHARS+1]; - } -#endif - return fill_result_buf(uid, name, result_buf, buffer, buflen, errnop); }