https-github-com-bit
diff --git a/‎man/systemd-sysusers.xml‎
Lines changed: 52 additions & 9 deletions b/‎man/systemd-sysusers.xml‎
Lines changed: 52 additions & 9 deletions
diff --git a/‎man/sysusers.d.xml‎
Lines changed: 49 additions & 40 deletions b/‎man/sysusers.d.xml‎
Lines changed: 49 additions & 40 deletions
diff --git a/‎src/basic/conf-files.c‎
Lines changed: 64 additions & 0 deletions b/‎src/basic/conf-files.c‎
Lines changed: 64 additions & 0 deletions
diff --git a/‎src/basic/conf-files.h‎
Lines changed: 1 addition & 0 deletions b/‎src/basic/conf-files.h‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/basic/strv.c‎
Lines changed: 6 additions & 3 deletions b/‎src/basic/strv.c‎
Lines changed: 6 additions & 3 deletions
diff --git a/‎src/basic/strv.h‎
Lines changed: 6 additions & 1 deletion b/‎src/basic/strv.h‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎src/basic/user-util.c‎
Lines changed: 6 additions & 4 deletions b/‎src/basic/user-util.c‎
Lines changed: 6 additions & 4 deletions
diff --git a/‎src/basic/user-util.h‎
Lines changed: 11 additions & 0 deletions b/‎src/basic/user-util.h‎
Lines changed: 11 additions & 0 deletions
@@ -69,15 +69,18 @@
     <citerefentry><refentrytitle>sysusers.d</refentrytitle><manvolnum>5</manvolnum></citerefentry>.
     </para>
 
-    <para>If invoked with no arguments, it applies all directives from
-    all files found. If one or more filenames are passed on the
-    command line, only the directives in these files are applied. If
-    only the basename of a file is specified, all directories as
-    specified in
-    <citerefentry><refentrytitle>sysusers.d</refentrytitle><manvolnum>5</manvolnum></citerefentry>
-    are searched for a matching file. If the string
-    <literal>-</literal> is specified instead of a filename, entries from the
-    standard input of the process are read.</para>
+    <para>If invoked with no arguments, it applies all directives from all files
+    found in the directories specified by
+    <citerefentry><refentrytitle>sysusers.d</refentrytitle><manvolnum>5</manvolnum></citerefentry>.
+    When invoked with positional arguments, if option
+    <option>--replace=<replaceable>PATH</replaceable></option> is specified, arguments
+    specified on the command line are used instead of the configuration file
+    <replaceable>PATH</replaceable>. Otherwise, just the configuration specified by
+    the command line arguments is executed. The string <literal>-</literal> may be
+    specified instead of a filename to instruct <command>systemd-sysusers</command>
+    to read the configuration from standard input. If only the basename of a file is
+    specified, all configuration directories are searched for a matching file and
+    the file found that has the highest priority is executed.</para>
   </refsect1>
 
   <refsect1>
@@ -94,6 +97,46 @@
         paths. </para></listitem>
       </varlistentry>
 
+      <varlistentry>
+        <term><option>--replace=<replaceable>PATH</replaceable></option></term>
+        <listitem><para>When this option is given, one ore more positional arguments
+        must be specified. All configuration files found in the directories listed in
+        <citerefentry><refentrytitle>sysusers.d</refentrytitle><manvolnum>5</manvolnum></citerefentry>
+        will be read, and the configuration given on the command line will be
+        handled instead of and with the same priority as the configuration file
+        <replaceable>PATH</replaceable>.</para>
+
+        <para>This option is intended to be used when package installation scripts
+        are running and files belonging to that package are not yet available on
+        disk, so their contents must be given on the command line, but the admin
+        configuration might already exist and should be given higher priority.
+        </para>
+
+        <example>
+          <title>RPM installation script for radvd</title>
+
+          <programlisting>echo 'u radvd - "radvd daemon"' | \
+          systemd-sysusers --replace=/usr/lib/sysusers.d/radvd.conf -</programlisting>
+
+          <para>This will create the radvd user as if
+          <filename>/usr/lib/sysusers.d/radvd.conf</filename> was already on disk.
+          An admin might override the configuration specified on the command line by
+          placing <filename>/etc/sysusers.d/radvd.conf</filename> or even
+          <filename>/etc/sysusers.d/00-overrides.conf</filename>.</para>
+
+          <para>Note that this is the expanded from, and when used in a package, this
+          would be written using a macro with "radvd" and a file containing the
+          configuration line as arguments.</para>
+        </example>
+        </listitem>
+      </varlistentry>
+
+      <varlistentry>
+        <term><option>--inline</option></term>
+        <listitem><para>Treat each positional argument as a separate configuration
+        line instead of a file name.</para></listitem>
+      </varlistentry>
+
       <xi:include href="standard-options.xml" xpointer="help" />
       <xi:include href="standard-options.xml" xpointer="version" />
     </variablelist>
 
@@ -57,11 +57,14 @@
   <refsect1>
     <title>Description</title>
 
-    <para><command>systemd-sysusers</command> uses the files from <filename>sysusers.d</filename> directory to create
-    system users and groups at package installation or boot time. This tool may be used to allocate system users and
-    groups only, it is not useful for creating non-system (i.e. regular, "human") users and groups, as it accesses
-    <filename>/etc/passwd</filename> and <filename>/etc/group</filename> directly, bypassing any more complex user
-    databases, for example any database involving NIS or LDAP.</para>
+    <para><command>systemd-sysusers</command> uses the files from
+    <filename>sysusers.d</filename> directory to create system users and groups and
+    to add users to groups, at package installation or boot time. This tool may be
+    used to allocate system users and groups only, it is not useful for creating
+    non-system (i.e. regular, "human") users and groups, as it accesses
+    <filename>/etc/passwd</filename> and <filename>/etc/group</filename> directly,
+    bypassing any more complex user databases, for example any database involving NIS
+    or LDAP.</para>
   </refsect1>
 
   <refsect1>
@@ -100,15 +103,16 @@
   <refsect1>
     <title>Configuration File Format</title>
 
-    <para>The file format is one line per user or group containing
-    name, ID, GECOS field description and home directory:</para>
+    <para>The file format is one line per user or group containing name, ID, GECOS
+    field description, home directory, and login shell:</para>
 
-    <programlisting>#Type  Name   ID              GECOS                 Home directory
-u      httpd  440             "HTTP User"
-u      authd  /usr/bin/authd  "Authorization user"
-g      input  -               -
-m      authd  input
-u      root   0               "Superuser"           /root</programlisting>
+    <programlisting>#Type Name     ID             GECOS                 Home directory Shell
+u     httpd    404            "HTTP User"
+u     authd    /usr/bin/authd "Authorization user"
+u     postgres -              "Postgresql Database" /var/lib/pgsql /usr/libexec/postgresdb
+g     input    -              -
+m     authd    input
+u     root     0              "Superuser"           /root          /bin/zsh</programlisting>
 
     <para>Empty lines and lines beginning with the <literal>#</literal> character are ignored, and may be used for
     commenting.</para>
@@ -122,14 +126,10 @@ u      root   0               "Superuser"           /root</programlisting>
       <variablelist>
         <varlistentry>
           <term><varname>u</varname></term>
-          <listitem><para>Create a system user and group of the
-          specified name should they not exist yet. The user's primary
-          group will be set to the group bearing the same name. The
-          user's shell will be set to
-          <filename>/sbin/nologin</filename>, the home directory to
-          the specified home directory, or <filename>/</filename> if
-          none is given. The account will be created disabled, so that
-          logins are not allowed.</para></listitem>
+          <listitem><para>Create a system user and group of the specified name should
+          they not exist yet. The user's primary group will be set to the group
+          bearing the same name. The account will be created disabled, so that logins
+          are not allowed.</para></listitem>
         </varlistentry>
 
         <varlistentry>
@@ -187,7 +187,8 @@ u      root   0               "Superuser"           /root</programlisting>
       numeric 32-bit UID or GID of the user/group. Do not use IDs 65535
       or 4294967295, as they have special placeholder meanings.
       Specify <literal>-</literal> for automatic UID/GID allocation
-      for the user or group. Alternatively, specify an absolute path
+      for the user or group (this is strongly recommended unless it is strictly
+      necessary to use a specific UID or GID). Alternatively, specify an absolute path
       in the file system. In this case, the UID/GID is read from the
       path's owner/group. This is useful to create users whose UID/GID
       match the owners of pre-existing files (such as SUID or SGID
@@ -209,37 +210,45 @@ u      root   0               "Superuser"           /root</programlisting>
     <refsect2>
       <title>GECOS</title>
 
-      <para>A short, descriptive string for users to be created,
-      enclosed in quotation marks. Note that this field may not
-      contain colons.</para>
+      <para>A short, descriptive string for users to be created, enclosed in
+      quotation marks. Note that this field may not contain colons.</para>
 
-      <para>Only applies to lines of type <varname>u</varname> and
-      should otherwise be left unset, or be set to
-      <literal>-</literal>.</para>
+      <para>Only applies to lines of type <varname>u</varname> and should otherwise
+      be left unset (or <literal>-</literal>).</para>
     </refsect2>
 
     <refsect2>
       <title>Home Directory</title>
 
-      <para>The home directory for a new system user. If omitted,
-      defaults to the root directory. It is recommended to not
-      unnecessarily specify home directories for system users, unless
-      software strictly requires one to be set.</para>
+      <para>The home directory for a new system user. If omitted, defaults to the
+      root directory.</para>
 
-      <para>Only applies to lines of type <varname>u</varname> and
-      should otherwise be left unset, or be set to
-      <literal>-</literal>.</para>
+      <para>Only applies to lines of type <varname>u</varname> and should otherwise
+      be left unset (or <literal>-</literal>). It is recommended to omit this, unless
+      software strictly requires a home directory to be set.</para>
+    </refsect2>
+
+    <refsect2>
+      <title>Shell</title>
+
+      <para>The login shell of the user. If not specified, this will be set to
+      <filename>/sbin/nologin</filename>, except if the UID of the user is 0, in
+      which case <filename>/bin/sh</filename> will be used.</para>
+
+      <para>Only applies to lines of type <varname>u</varname> and should otherwise
+      be left unset (or <literal>-</literal>). It is recommended to omit this, unless
+      a shell different <filename>/sbin/nologin</filename> must be used.</para>
     </refsect2>
   </refsect1>
 
   <refsect1>
     <title>Idempotence</title>
 
-    <para>Note that <command>systemd-sysusers</command> will do
-    nothing if the specified users or groups already exist, so
-    normally, there is no reason to override
-    <filename>sysusers.d</filename> vendor configuration, except to
-    block certain users or groups from being created.</para>
+    <para>Note that <command>systemd-sysusers</command> will do nothing if the
+    specified users or groups already exist or the users are members of specified
+    groups, so normally there is no reason to override
+    <filename>sysusers.d</filename> vendor configuration, except to block certain
+    users or groups from being created.</para>
   </refsect1>
 
   <refsect1>
 
@@ -154,6 +154,70 @@ static int conf_files_list_strv_internal(char ***strv, const char *suffix, const
         return 0;
 }
 
+int conf_files_insert(char ***strv, const char *root, const char *dirs, const char *path) {
+        /* Insert a path into strv, at the place honouring the usual sorting rules:
+         * - we first compare by the basename
+         * - and then we compare by dirname, allowing just one file with the given
+         *   basename.
+         * This means that we will
+         * - add a new entry if basename(path) was not on the list,
+         * - do nothing if an entry with higher priority was already present,
+         * - do nothing if our new entry matches the existing entry,
+         * - replace the existing entry if our new entry has higher priority.
+         */
+        char *t;
+        unsigned i;
+        int r;
+
+        for (i = 0; i < strv_length(*strv); i++) {
+                int c;
+
+                c = base_cmp(*strv + i, &path);
+                if (c == 0) {
+                        const char *dir;
+
+                        /* Oh, we found our spot and it already contains something. */
+                        NULSTR_FOREACH(dir, dirs) {
+                                char *p1, *p2;
+
+                                p1 = path_startswith((*strv)[i], root);
+                                if (p1)
+                                        /* Skip "/" in dir, because p1 is without "/" too */
+                                        p1 = path_startswith(p1, dir + 1);
+                                if (p1)
+                                        /* Existing entry with higher priority
+                                         * or same priority, no need to do anything. */
+                                        return 0;
+
+                                p2 = path_startswith(path, dir);
+                                if (p2) {
+                                        /* Our new entry has higher priority */
+                                        t = path_join(root, path, NULL);
+                                        if (!t)
+                                                return log_oom();
+
+                                        return free_and_replace((*strv)[i], t);
+                                }
+                        }
+
+                } else if (c > 0)
+                        /* Following files have lower priority, let's go insert our
+                         * new entry. */
+                        break;
+
+                /* … we are not there yet, let's continue */
+        }
+
+        t = path_join(root, path, NULL);
+        if (!t)
+                return log_oom();
+
+        r = strv_insert(strv, i, t);
+        if (r < 0)
+                free(t);
+        return r;
+}
+
 int conf_files_list_strv(char ***strv, const char *suffix, const char *root, unsigned flags, const char* const* dirs) {
         _cleanup_strv_free_ char **copy = NULL;
 
 
@@ -28,3 +28,4 @@ enum {
 int conf_files_list(char ***ret, const char *suffix, const char *root, unsigned flags, const char *dir, ...);
 int conf_files_list_strv(char ***ret, const char *suffix, const char *root, unsigned flags, const char* const* dirs);
 int conf_files_list_nulstr(char ***ret, const char *suffix, const char *root, unsigned flags, const char *dirs);
+int conf_files_insert(char ***strv, const char *root, const char *dirs, const char *path);
@@ -446,14 +446,15 @@ int strv_push_pair(char ***l, char *a, char *b) {
         return 0;
 }
 
-int strv_push_prepend(char ***l, char *value) {
+int strv_insert(char ***l, unsigned position, char *value) {
         char **c;
         unsigned n, m, i;
 
         if (!value)
                 return 0;
 
         n = strv_length(*l);
+        position = MIN(position, n);
 
         /* increase and check for overflow */
         m = n + 2;
@@ -464,10 +465,12 @@ int strv_push_prepend(char ***l, char *value) {
         if (!c)
                 return -ENOMEM;
 
-        for (i = 0; i < n; i++)
+        for (i = 0; i < position; i++)
+                c[i] = (*l)[i];
+        c[position] = value;
+        for (i = position; i < n; i++)
                 c[i+1] = (*l)[i];
 
-        c[0] = value;
         c[n+1] = NULL;
 
         free(*l);
 
@@ -54,7 +54,12 @@ int strv_extendf(char ***l, const char *format, ...) _printf_(2,0);
 int strv_extend_front(char ***l, const char *value);
 int strv_push(char ***l, char *value);
 int strv_push_pair(char ***l, char *a, char *b);
-int strv_push_prepend(char ***l, char *value);
+int strv_insert(char ***l, unsigned position, char *value);
+
+static inline int strv_push_prepend(char ***l, char *value) {
+        return strv_insert(l, 0, value);
+}
+
 int strv_consume(char ***l, char *value);
 int strv_consume_pair(char ***l, char *a, char *b);
 int strv_consume_prepend(char ***l, char *value);
 
@@ -553,18 +553,18 @@ int take_etc_passwd_lock(const char *root) {
          * awfully racy, and thus we just won't do them. */
 
         if (root)
-                path = prefix_roota(root, "/etc/.pwd.lock");
+                path = prefix_roota(root, ETC_PASSWD_LOCK_PATH);
         else
-                path = "/etc/.pwd.lock";
+                path = ETC_PASSWD_LOCK_PATH;
 
         fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW, 0600);
         if (fd < 0)
-                return -errno;
+                return log_debug_errno(errno, "Cannot open %s: %m", path);
 
         r = fcntl(fd, F_SETLKW, &flock);
         if (r < 0) {
                 safe_close(fd);
-                return -errno;
+                return log_debug_errno(errno, "Locking %s failed: %m", path);
         }
 
         return fd;
@@ -645,6 +645,8 @@ bool valid_gecos(const char *d) {
 }
 
 bool valid_home(const char *p) {
+        /* Note that this function is also called by valid_shell(), any
+         * changes must account for that. */
 
         if (isempty(p))
                 return false;
 
@@ -63,6 +63,8 @@ int take_etc_passwd_lock(const char *root);
 #define UID_NOBODY ((uid_t) 65534U)
 #define GID_NOBODY ((gid_t) 65534U)
 
+#define ETC_PASSWD_LOCK_PATH "/etc/.pwd.lock"
+
 static inline bool uid_is_dynamic(uid_t uid) {
         return DYNAMIC_UID_MIN <= uid && uid <= DYNAMIC_UID_MAX;
 }
@@ -96,6 +98,15 @@ bool valid_user_group_name_or_id(const char *u);
 bool valid_gecos(const char *d);
 bool valid_home(const char *p);
 
+static inline bool valid_shell(const char *p) {
+        /* We have the same requirements, so just piggy-back on the home check.
+         *
+         * Let's ignore /etc/shells because this is only applicable to real and
+         * not system users. It is also incompatible with the idea of empty /etc.
+         */
+        return valid_home(p);
+}
+
 int maybe_setgroups(size_t size, const gid_t *list);
 
 bool synthesize_nobody(void);