Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[master] Prevent possible KeyError exception on calling salt.utils.user.get_group_dict #64599

Merged
merged 11 commits into from
Aug 18, 2023
Merged

[master] Prevent possible KeyError exception on calling salt.utils.user.get_group_dict #64599

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
f586488
Prevent KeyError on calling grp.getgrnam in case of improper group
vzhestkov Jul 5, 2023
0fbfdc8
Add test of calling salt.utils.user.get_group_dict
vzhestkov Jul 5, 2023
4ec8fd4
Update tests/pytests/functional/utils/user/test_get_group_dict.py
vzhestkov Jul 6, 2023
71d8ed4
Add changelog entry
vzhestkov Jul 7, 2023
1e1e501
Merge branch 'master' into handle-keyerror-on-grp.getgrnam
vzhestkov Jul 11, 2023
e443fb0
Fix pre-commit
twangboy Jul 14, 2023
55f778c
Fix lint
twangboy Jul 14, 2023
f236087
Fix lint
twangboy Jul 14, 2023
3caff8b
Merge branch 'master' into handle-keyerror-on-grp.getgrnam
vzhestkov Jul 19, 2023
0f2cec3
Merge branch 'master' into handle-keyerror-on-grp.getgrnam
vzhestkov Jul 31, 2023
77fdcf2
Merge branch 'master' into handle-keyerror-on-grp.getgrnam
vzhestkov Aug 9, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions changelog/64599.fixed.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
Fix possible `KeyError` exceptions in `salt.utils.user.get_group_dict`
while reading improper duplicated GID assigned for the user.
12 changes: 8 additions & 4 deletions salt/utils/user.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -158,13 +158,13 @@ def get_specific_user():
user = get_user()
if salt.utils.platform.is_windows():
if _win_current_user_is_admin():
return "sudo_{}".format(user)
return f"sudo_{user}"
else:
env_vars = ("SUDO_USER",)
if user == "root":
for evar in env_vars:
if evar in os.environ:
return "sudo_{}".format(os.environ[evar])
return f"sudo_{os.environ[evar]}"
return user


Expand All @@ -182,7 +182,7 @@ def chugid(runas, group=None):
target_pw_gid = grp.getgrnam(group).gr_gid
except KeyError as err:
raise CommandExecutionError(
"Failed to fetch the GID for {}. Error: {}".format(group, err)
f"Failed to fetch the GID for {group}. Error: {err}"
)
else:
target_pw_gid = uinfo.pw_gid
Expand Down Expand Up @@ -352,7 +352,11 @@ def get_group_dict(user=None, include_default=True):
group_dict = {}
group_names = get_group_list(user, include_default=include_default)
for group in group_names:
group_dict.update({group: grp.getgrnam(group).gr_gid})
try:
group_dict.update({group: grp.getgrnam(group).gr_gid})
except KeyError:
# In case if imporer duplicate group was returned by get_group_list
pass
return group_dict


Expand Down
21 changes: 21 additions & 0 deletions tests/pytests/functional/utils/user/test_get_group_dict.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
import logging

import pytest

import salt.utils.platform
import salt.utils.user
from tests.support.mock import patch

log = logging.getLogger(__name__)

pytestmark = [
pytest.mark.skip_unless_on_linux(
reason="Should only run in platforms which have duplicate GID support"
),
]


def test_get_group_dict_with_improper_duplicate_root_group():
with patch("salt.utils.user.get_group_list", return_value=["+", "root"]):
group_list = salt.utils.user.get_group_dict("root")
assert group_list == {"root": 0}
Loading