diff options
author | Lennart Poettering <lennart@poettering.net> | 2018-08-02 18:36:47 +0200 |
---|---|---|
committer | Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> | 2018-08-20 15:58:21 +0200 |
commit | fafff8f1ffdf24517921d7779c2a9eb89766df30 (patch) | |
tree | a9f5bd4e5fb6e7680df49e9476b17366e58d06cf /src/notify | |
parent | 163a035aa654aa16b5d26f6436b13b94fc75b3f2 (diff) | |
download | systemd-fafff8f1ffdf24517921d7779c2a9eb89766df30.tar.gz systemd-fafff8f1ffdf24517921d7779c2a9eb89766df30.tar.bz2 systemd-fafff8f1ffdf24517921d7779c2a9eb89766df30.zip |
user-util: rework get_user_creds()
Let's fold get_user_creds_clean() into get_user_creds(), and introduce a
flags argument for it to select "clean" behaviour. This flags parameter
also learns to other new flags:
- USER_CREDS_SYNTHESIZE_FALLBACK: in this mode the user records for
root/nobody are only synthesized as fallback. Normally, the synthesized
records take precedence over what is in the user database. With this
flag set this is reversed, and the user database takes precedence, and
the synthesized records are only used if they are missing there. This
flag should be set in cases where doing NSS is deemed safe, and where
there's interest in knowing the correct shell, for example if the
admin changed root's shell to zsh or suchlike.
- USER_CREDS_ALLOW_MISSING: if set, and a UID/GID is specified by
numeric value, and there's no user/group record for it accept it
anyway. This allows us to fix #9767
This then also ports all users to set the most appropriate flags.
Fixes: #9767
[zj: remove one isempty() call]
Diffstat (limited to 'src/notify')
-rw-r--r-- | src/notify/notify.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/notify/notify.c b/src/notify/notify.c index e928094d9a..3d607c778a 100644 --- a/src/notify/notify.c +++ b/src/notify/notify.c @@ -103,7 +103,7 @@ static int parse_argv(int argc, char *argv[]) { case ARG_UID: { const char *u = optarg; - r = get_user_creds(&u, &arg_uid, &arg_gid, NULL, NULL); + r = get_user_creds(&u, &arg_uid, &arg_gid, NULL, NULL, 0); if (r == -ESRCH) /* If the user doesn't exist, then accept it anyway as numeric */ r = parse_uid(u, &arg_uid); if (r < 0) |