diff --git a/ci/libnss_whatami.c b/ci/libnss_whatami.c index 47b312c..e0eb6c6 100644 --- a/ci/libnss_whatami.c +++ b/ci/libnss_whatami.c @@ -20,11 +20,12 @@ #include #include #include +#include enum nss_status _nss_whatami_getpwnam_r(const char *name, struct passwd *result, char *buffer, size_t buflen, int *errnop) { - if (strcmp(name, "whatami") == 0) { + if (strcmp(name, "whatami") == 0 || strncmp(name, "am_i_", 5) == 0) { if (buflen < 16) { *errnop = ERANGE; return NSS_STATUS_TRYAGAIN; @@ -42,3 +43,34 @@ _nss_whatami_getpwnam_r(const char *name, struct passwd *result, char *buffer, s return NSS_STATUS_NOTFOUND; } } + +enum nss_status +_nss_whatami_initgroups_dyn(const char *user, gid_t group, long int *start, long int *size, gid_t **groups, long int limit, int *errnop) +{ + char buffer[21] = "am_i_"; + prctl(PR_GET_NAME, buffer + 5); + if (strcmp(user, buffer) != 0) { + return NSS_STATUS_SUCCESS; + } + + if (*size - *start < 20) { + if (limit > 0 && *size + 20 > limit) { + *errnop = ERANGE; + return NSS_STATUS_TRYAGAIN; + } + gid_t *newgroups = realloc(*groups, (*size + 20) * sizeof(**groups)); + if (newgroups == NULL) { + *errnop = ENOMEM; + return NSS_STATUS_TRYAGAIN; + } + *groups = newgroups; + *size += 20; + } + + for (int i = 0; i < 20; i++) { + (*groups)[*start + i] = 100001 + i; + } + *start += 20; + + return NSS_STATUS_SUCCESS; +} diff --git a/ci/test.sh b/ci/test.sh index fc17079..b156ecd 100755 --- a/ci/test.sh +++ b/ci/test.sh @@ -16,10 +16,11 @@ set -ex -debian/rules vendor -dpkg-buildpackage --no-sign +#debian/rules vendor +#dpkg-buildpackage --no-sign gcc -fPIC -shared -o ci/libnss_whatami.so.2 ci/libnss_whatami.c sudo cp ci/libnss_whatami.so.2 /lib -sudo sed -i 's/passwd:/& whatami/' /etc/nsswitch.conf +sudo sed -i 's/\(passwd\|group\):/& whatami/' /etc/nsswitch.conf sudo dpkg -i ../nsncd*.deb getent passwd whatami | grep nsncd +getent initgroups am_i_nsncd | grep '100001.*100020'