cmd/initContainer: Simplify code by removing a function parameter

Until now, configureUsers() was pushing the burden of deciding whether to add a new user or modify an existing one on the callers, even though it can trivially decide itself. Involving the caller loosens the encapsulation of the user configuration logic by spreading it across configureUsers() and it's caller, and adds an extra function parameter that needs to be carefully set and is vulnerable to programmer errors. Fallout from 9ea6fe5852 https://github.com/containers/toolbox/pull/1356
2023-08-15 20:57:46 +02:00 · 2023-08-15 20:57:46 +02:00 · 6bd7c87932
commit 6bd7c87932
parent 219f5b4be4
1 changed files with 28 additions and 42 deletions
--- a/src/cmd/initContainer.go
+++ b/src/cmd/initContainer.go
@ -236,24 +236,12 @@ func initContainer(cmd *cobra.Command, args []string) error {
 		}
 	}

-	if _, err := user.Lookup(initContainerFlags.user); err != nil {
-		if err := configureUsers(initContainerFlags.uid,
-			initContainerFlags.user,
-			initContainerFlags.home,
-			initContainerFlags.shell,
-			initContainerFlags.homeLink,
-			false); err != nil {
-			return err
-		}
-	} else {
-		if err := configureUsers(initContainerFlags.uid,
-			initContainerFlags.user,
-			initContainerFlags.home,
-			initContainerFlags.shell,
-			initContainerFlags.homeLink,
-			true); err != nil {
-			return err
-		}
+	if err := configureUsers(initContainerFlags.uid,
+		initContainerFlags.user,
+		initContainerFlags.home,
+		initContainerFlags.shell,
+		initContainerFlags.homeLink); err != nil {
+		return err
 	}

 	if utils.PathExists("/etc/krb5.conf.d") && !utils.PathExists("/etc/krb5.conf.d/kcm_default_ccache") {
@ -386,9 +374,7 @@ func initContainerHelp(cmd *cobra.Command, args []string) {
 	}
 }

-func configureUsers(targetUserUid int,
-	targetUser, targetUserHome, targetUserShell string,
-	homeLink, targetUserExists bool) error {
+func configureUsers(targetUserUid int, targetUser, targetUserHome, targetUserShell string, homeLink bool) error {
 	if homeLink {
 		if err := redirectPath("/home", "/var/home", true); err != nil {
 			return err
@ -400,27 +386,7 @@ func configureUsers(targetUserUid int,
 		return fmt.Errorf("failed to get group for sudo: %w", err)
 	}

-	if targetUserExists {
-		logrus.Debugf("Modifying user %s with UID %d:", targetUser, targetUserUid)
-
-		usermodArgs := []string{
-			"--append",
-			"--groups", sudoGroup,
-			"--home", targetUserHome,
-			"--shell", targetUserShell,
-			"--uid", fmt.Sprint(targetUserUid),
-			targetUser,
-		}
-
-		logrus.Debug("usermod")
-		for _, arg := range usermodArgs {
-			logrus.Debugf("%s", arg)
-		}
-
-		if err := shell.Run("usermod", nil, nil, nil, usermodArgs...); err != nil {
-			return fmt.Errorf("failed to modify user %s with UID %d: %w", targetUser, targetUserUid, err)
-		}
-	} else {
+	if _, err := user.Lookup(targetUser); err != nil {
 		logrus.Debugf("Adding user %s with UID %d:", targetUser, targetUserUid)

 		useraddArgs := []string{
@ -440,6 +406,26 @@ func configureUsers(targetUserUid int,
 		if err := shell.Run("useradd", nil, nil, nil, useraddArgs...); err != nil {
 			return fmt.Errorf("failed to add user %s with UID %d: %w", targetUser, targetUserUid, err)
 		}
+	} else {
+		logrus.Debugf("Modifying user %s with UID %d:", targetUser, targetUserUid)
+
+		usermodArgs := []string{
+			"--append",
+			"--groups", sudoGroup,
+			"--home", targetUserHome,
+			"--shell", targetUserShell,
+			"--uid", fmt.Sprint(targetUserUid),
+			targetUser,
+		}
+
+		logrus.Debug("usermod")
+		for _, arg := range usermodArgs {
+			logrus.Debugf("%s", arg)
+		}
+
+		if err := shell.Run("usermod", nil, nil, nil, usermodArgs...); err != nil {
+			return fmt.Errorf("failed to modify user %s with UID %d: %w", targetUser, targetUserUid, err)
+		}
 	}

 	logrus.Debugf("Removing password for user %s", targetUser)