首頁 探索 說明
登入
tzeneto
/
custom-kube-scheduler
關註 1
讚好 0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 6ab2f91fe3
分支列表 標籤列表
custom-kube-...
/
kubernetes-v1.15.4
/
vendor
/
github.com
/
opencontainers
/
runc
/
libcontainer
/
user
/
lookup_unix.go

lookup_unix.go 3.2 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145 
  1. // +build darwin dragonfly freebsd linux netbsd openbsd solaris
    2. 

  2. 

  3. package user
    4. 

  4. 

  5. import (
    6. 

  6. 	"io"
    7. 

  7. 	"os"
    8. 

  8. 	"strconv"
    9. 

  9. 

  10. 	"golang.org/x/sys/unix"
    11. 

  11. )
    12. 

  12. 

  13. // Unix-specific path to the passwd and group formatted files.
    14. 

  14. const (
    15. 

  15. 	unixPasswdPath = "/etc/passwd"
    16. 

  16. 	unixGroupPath  = "/etc/group"
    17. 

  17. )
    18. 

  18. 

  19. func lookupUser(username string) (User, error) {
    20. 

  20. 	return lookupUserFunc(func(u User) bool {
    21. 

  21. 		return u.Name == username
    22. 

  22. 	})
    23. 

  23. }
    24. 

  24. 

  25. func lookupUid(uid int) (User, error) {
    26. 

  26. 	return lookupUserFunc(func(u User) bool {
    27. 

  27. 		return u.Uid == uid
    28. 

  28. 	})
    29. 

  29. }
    30. 

  30. 

  31. func lookupUserFunc(filter func(u User) bool) (User, error) {
    32. 

  32. 	// Get operating system-specific passwd reader-closer.
    33. 

  33. 	passwd, err := GetPasswd()
    34. 

  34. 	if err != nil {
    35. 

  35. 		return User{}, err
    36. 

  36. 	}
    37. 

  37. 	defer passwd.Close()
    38. 

  38. 

  39. 	// Get the users.
    40. 

  40. 	users, err := ParsePasswdFilter(passwd, filter)
    41. 

  41. 	if err != nil {
    42. 

  42. 		return User{}, err
    43. 

  43. 	}
    44. 

  44. 

  45. 	// No user entries found.
    46. 

  46. 	if len(users) == 0 {
    47. 

  47. 		return User{}, ErrNoPasswdEntries
    48. 

  48. 	}
    49. 

  49. 

  50. 	// Assume the first entry is the "correct" one.
    51. 

  51. 	return users[0], nil
    52. 

  52. }
    53. 

  53. 

  54. func lookupGroup(groupname string) (Group, error) {
    55. 

  55. 	return lookupGroupFunc(func(g Group) bool {
    56. 

  56. 		return g.Name == groupname
    57. 

  57. 	})
    58. 

  58. }
    59. 

  59. 

  60. func lookupGid(gid int) (Group, error) {
    61. 

  61. 	return lookupGroupFunc(func(g Group) bool {
    62. 

  62. 		return g.Gid == gid
    63. 

  63. 	})
    64. 

  64. }
    65. 

  65. 

  66. func lookupGroupFunc(filter func(g Group) bool) (Group, error) {
    67. 

  67. 	// Get operating system-specific group reader-closer.
    68. 

  68. 	group, err := GetGroup()
    69. 

  69. 	if err != nil {
    70. 

  70. 		return Group{}, err
    71. 

  71. 	}
    72. 

  72. 	defer group.Close()
    73. 

  73. 

  74. 	// Get the users.
    75. 

  75. 	groups, err := ParseGroupFilter(group, filter)
    76. 

  76. 	if err != nil {
    77. 

  77. 		return Group{}, err
    78. 

  78. 	}
    79. 

  79. 

  80. 	// No user entries found.
    81. 

  81. 	if len(groups) == 0 {
    82. 

  82. 		return Group{}, ErrNoGroupEntries
    83. 

  83. 	}
    84. 

  84. 

  85. 	// Assume the first entry is the "correct" one.
    86. 

  86. 	return groups[0], nil
    87. 

  87. }
    88. 

  88. 

  89. func GetPasswdPath() (string, error) {
    90. 

  90. 	return unixPasswdPath, nil
    91. 

  91. }
    92. 

  92. 

  93. func GetPasswd() (io.ReadCloser, error) {
    94. 

  94. 	return os.Open(unixPasswdPath)
    95. 

  95. }
    96. 

  96. 

  97. func GetGroupPath() (string, error) {
    98. 

  98. 	return unixGroupPath, nil
    99. 

  99. }
    100. 

  100. 

  101. func GetGroup() (io.ReadCloser, error) {
    102. 

  102. 	return os.Open(unixGroupPath)
    103. 

  103. }
    104. 

  104. 

  105. // CurrentUser looks up the current user by their user id in /etc/passwd. If the
    106. 

  106. // user cannot be found (or there is no /etc/passwd file on the filesystem),
    107. 

  107. // then CurrentUser returns an error.
    108. 

  108. func CurrentUser() (User, error) {
    109. 

  109. 	return LookupUid(unix.Getuid())
    110. 

  110. }
    111. 

  111. 

  112. // CurrentGroup looks up the current user's group by their primary group id's
    113. 

  113. // entry in /etc/passwd. If the group cannot be found (or there is no
    114. 

  114. // /etc/group file on the filesystem), then CurrentGroup returns an error.
    115. 

  115. func CurrentGroup() (Group, error) {
    116. 

  116. 	return LookupGid(unix.Getgid())
    117. 

  117. }
    118. 

  118. 

  119. func currentUserSubIDs(fileName string) ([]SubID, error) {
    120. 

  120. 	u, err := CurrentUser()
    121. 

  121. 	if err != nil {
    122. 

  122. 		return nil, err
    123. 

  123. 	}
    124. 

  124. 	filter := func(entry SubID) bool {
    125. 

  125. 		return entry.Name == u.Name || entry.Name == strconv.Itoa(u.Uid)
    126. 

  126. 	}
    127. 

  127. 	return ParseSubIDFileFilter(fileName, filter)
    128. 

  128. }
    129. 

  129. 

  130. func CurrentUserSubUIDs() ([]SubID, error) {
    131. 

  131. 	return currentUserSubIDs("/etc/subuid")
    132. 

  132. }
    133. 

  133. 

  134. func CurrentUserSubGIDs() ([]SubID, error) {
    135. 

  135. 	return currentUserSubIDs("/etc/subgid")
    136. 

  136. }
    137. 

  137. 

  138. func CurrentProcessUIDMap() ([]IDMap, error) {
    139. 

  139. 	return ParseIDMapFile("/proc/self/uid_map")
    140. 

  140. }
    141. 

  141. 

  142. func CurrentProcessGIDMap() ([]IDMap, error) {
    143. 

  143. 	return ParseIDMapFile("/proc/self/gid_map")
    144. 

  144. }
    145. 

  145.