3 Copyright 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006,
4 2007, 2008, 2009, 2010 Red Hat, Inc.
6 This file is part of Cygwin.
8 This software is a copyrighted work licensed under the terms of the
9 Cygwin license. Please consult the file "CYGWIN_LICENSE" for
12 #define _WIN32_WINNT 0x0600
22 #include <sys/fcntl.h>
23 #include <sys/cygwin.h>
33 #define print_win_error(x) _print_win_error(x, __LINE__)
35 #define MAX_SID_LEN 40
37 static const char version[] = "$Revision$";
39 extern char *__progname __declspec(dllimport);
41 SID_IDENTIFIER_AUTHORITY sid_world_auth = {SECURITY_WORLD_SID_AUTHORITY};
42 SID_IDENTIFIER_AUTHORITY sid_nt_auth = {SECURITY_NT_AUTHORITY};
44 NET_API_STATUS WINAPI (*dsgetdcname)(LPWSTR,LPWSTR,GUID*,LPWSTR,ULONG,PDOMAIN_CONTROLLER_INFOW*);
47 #define min(a,b) (((a)<(b))?(a):(b))
59 _print_win_error (DWORD code, int line)
63 if (FormatMessage (FORMAT_MESSAGE_FROM_SYSTEM
64 | FORMAT_MESSAGE_IGNORE_INSERTS,
67 MAKELANGID (LANG_NEUTRAL, SUBLANG_DEFAULT),
68 (LPTSTR) buf, sizeof (buf), NULL))
69 fprintf (stderr, "mkgroup (%d): [%lu] %s", line, code, buf);
71 fprintf (stderr, "mkgroup (%d): error %lu", line, code);
77 HANDLE h = LoadLibrary ("netapi32.dll");
79 dsgetdcname = (void *) GetProcAddress (h, "DsGetDcNameW");
83 get_dcname (char *domain)
85 static WCHAR server[INTERNET_MAX_HOST_NAME_LENGTH + 1];
88 WCHAR domain_name[MAX_DOMAIN_NAME_LEN + 1];
89 PDOMAIN_CONTROLLER_INFOW pdci = NULL;
95 mbstowcs (domain_name, domain, strlen (domain) + 1);
96 rc = dsgetdcname (NULL, domain_name, NULL, NULL, 0, &pdci);
99 rc = dsgetdcname (NULL, NULL, NULL, NULL, 0, &pdci);
100 if (rc != ERROR_SUCCESS)
102 print_win_error (rc);
105 wcscpy (server, pdci->DomainControllerName);
106 NetApiBufferFree (pdci);
110 rc = NetGetDCName (NULL, NULL, (void *) &servername);
111 if (rc == ERROR_SUCCESS && domain)
113 LPWSTR server = servername;
114 mbstowcs (domain_name, domain, strlen (domain) + 1);
115 rc = NetGetDCName (server, domain_name, (void *) &servername);
116 NetApiBufferFree (server);
118 if (rc != ERROR_SUCCESS)
123 wcscpy (server, servername);
124 NetApiBufferFree ((PVOID) servername);
137 sprintf(t, "%u", GetSidIdentifierAuthority (psid)->Value[5]);
139 for (i = 0; i < *GetSidSubAuthorityCount (psid); ++i)
141 sprintf(t, "-%lu", *GetSidSubAuthority (psid, i));
149 BYTE SubAuthorityCount;
150 SID_IDENTIFIER_AUTHORITY IdentifierAuthority;
151 DWORD SubAuthority[8];
154 #define MAX_BUILTIN_SIDS 100 /* Should be enough for the forseable future. */
155 DBGSID builtin_sid_list[MAX_BUILTIN_SIDS];
156 DWORD builtin_sid_cnt;
163 static sidbuf curr_pgrp;
164 static BOOL got_curr_pgrp = FALSE;
167 fetch_current_pgrp_sid ()
172 if (!OpenProcessToken (GetCurrentProcess (), TOKEN_QUERY, &ptok)
173 || !GetTokenInformation (ptok, TokenPrimaryGroup, &curr_pgrp,
174 sizeof curr_pgrp, &len)
175 || !CloseHandle (ptok))
177 print_win_error (GetLastError ());
183 current_group (const char *sep, DWORD id_offset)
185 WCHAR grp[GNLEN + 1];
186 WCHAR dom[MAX_DOMAIN_NAME_LEN + 1];
187 DWORD glen = GNLEN + 1;
188 DWORD dlen = MAX_DOMAIN_NAME_LEN + 1;
190 SID_NAME_USE acc_type;
193 || !LookupAccountSidW (NULL, curr_pgrp.psid, grp, &glen, dom, &dlen,
196 print_win_error (GetLastError ());
199 gid = *GetSidSubAuthority (curr_pgrp.psid,
200 *GetSidSubAuthorityCount(curr_pgrp.psid) - 1);
201 printf ("%ls%s%ls:%s:%lu:\n",
205 put_sid (curr_pgrp.psid),
210 enum_unix_groups (domlist_t *dom_or_machine, const char *sep, DWORD id_offset,
213 WCHAR machine[INTERNET_MAX_HOST_NAME_LENGTH + 1];
214 PWCHAR servername = NULL;
215 char *d_or_m = dom_or_machine ? dom_or_machine->str : NULL;
216 BOOL with_dom = dom_or_machine ? dom_or_machine->with_dom : FALSE;
217 SID_IDENTIFIER_AUTHORITY auth = { { 0, 0, 0, 0, 0, 22 } };
218 char *gstr, *grp_list;
219 WCHAR grp[GNLEN + sizeof ("Unix Group\\") + 1];
220 WCHAR dom[MAX_DOMAIN_NAME_LEN + 1];
221 DWORD glen, dlen, sidlen;
223 char psid_buffer[MAX_SID_LEN];
224 SID_NAME_USE acc_type;
229 int ret = mbstowcs (machine, d_or_m, INTERNET_MAX_HOST_NAME_LENGTH + 1);
230 if (ret < 1 || ret >= INTERNET_MAX_HOST_NAME_LENGTH + 1)
232 fprintf (stderr, "%s: Invalid machine name '%s'. Skipping...\n",
236 servername = machine;
238 if (!AllocateAndInitializeSid (&auth, 2, 2, 0, 0, 0, 0, 0, 0, 0, &psid))
241 if (!(grp_list = strdup (unix_grp_list)))
247 for (gstr = strtok (grp_list, ","); gstr; gstr = strtok (NULL, ","))
249 if (!isdigit ((unsigned char) gstr[0]) && gstr[0] != '-')
251 PWCHAR p = wcpcpy (grp, L"Unix Group\\");
252 ret = mbstowcs (p, gstr, GNLEN + 1);
253 if (ret < 1 || ret >= GNLEN + 1)
254 fprintf (stderr, "%s: Invalid group name '%s'. Skipping...\n",
256 else if (LookupAccountNameW (servername, grp,
257 psid = (PSID) psid_buffer,
258 (sidlen = MAX_SID_LEN, &sidlen),
260 (dlen = MAX_DOMAIN_NAME_LEN + 1, &dlen),
262 printf ("%s%s%ls:%s:%lu:\n",
263 with_dom ? "Unix Group" : "",
268 *GetSidSubAuthority (psid,
269 *GetSidSubAuthorityCount(psid) - 1));
278 start = strtol (p, &p, 10);
281 else if (*p++ != '-' || !isdigit ((unsigned char) *p)
282 || (stop = strtol (p, &p, 10)) < start || *p)
284 fprintf (stderr, "%s: Malformed unix group list entry '%s'. "
285 "Skipping...\n", __progname, gstr);
288 for (; start <= stop; ++ start)
290 *GetSidSubAuthority (psid, *GetSidSubAuthorityCount(psid) - 1)
292 if (LookupAccountSidW (servername, psid,
293 grp, (glen = GNLEN + 1, &glen),
295 (dlen = MAX_DOMAIN_NAME_LEN + 1, &dlen),
297 && !iswdigit (grp[0]))
298 printf ("%s%s%ls:%s:%lu:\n",
299 with_dom ? "Unix Group" : "",
313 enum_local_groups (BOOL domain, domlist_t *dom_or_machine, const char *sep,
314 DWORD id_offset, char *disp_groupname, int print_builtin,
317 WCHAR machine[INTERNET_MAX_HOST_NAME_LENGTH + 1];
318 PWCHAR servername = NULL;
319 char *d_or_m = dom_or_machine ? dom_or_machine->str : NULL;
320 BOOL with_dom = dom_or_machine ? dom_or_machine->with_dom : FALSE;
321 LOCALGROUP_INFO_0 *buffer;
322 DWORD entriesread = 0;
323 DWORD totalentries = 0;
324 DWORD resume_handle = 0;
325 WCHAR gname[GNLEN + 1];
330 servername = get_dcname (d_or_m);
331 if (servername == (PWCHAR) -1)
336 int ret = mbstowcs (machine, d_or_m, INTERNET_MAX_HOST_NAME_LENGTH + 1);
337 if (ret < 1 || ret >= INTERNET_MAX_HOST_NAME_LENGTH + 1)
339 fprintf (stderr, "%s: Invalid machine name '%s'. Skipping...\n",
343 servername = machine;
352 mbstowcs (gname, disp_groupname, GNLEN + 1);
353 rc = NetLocalGroupGetInfo (servername, gname, 0, (void *) &buffer);
354 if (rc == ERROR_SUCCESS)
356 /* Allow further searching for the group and avoid annoying
357 error messages just because the group is not a local group or
358 the group hasn't been found. */
359 else if (rc == ERROR_NO_SUCH_ALIAS || rc == NERR_GroupNotFound)
363 rc = NetLocalGroupEnum (servername, 0, (void *) &buffer,
364 MAX_PREFERRED_LENGTH, &entriesread,
365 &totalentries, &resume_handle);
368 case ERROR_ACCESS_DENIED:
369 print_win_error (rc);
372 case ERROR_MORE_DATA:
377 print_win_error (rc);
381 for (i = 0; i < entriesread; i++)
383 WCHAR domain_name[MAX_DOMAIN_NAME_LEN + 1];
384 DWORD domname_len = MAX_DOMAIN_NAME_LEN + 1;
385 char psid_buffer[MAX_SID_LEN];
386 PSID psid = (PSID) psid_buffer;
387 DWORD sid_length = MAX_SID_LEN;
389 SID_NAME_USE acc_type;
391 BOOL is_builtin = FALSE;
393 if (!LookupAccountNameW (servername, buffer[i].lgrpi0_name, psid,
394 &sid_length, domain_name, &domname_len,
397 print_win_error (GetLastError ());
398 fprintf (stderr, " (%ls)\n", buffer[i].lgrpi0_name);
401 else if (acc_type == SidTypeDomain)
403 WCHAR domname[MAX_DOMAIN_NAME_LEN + GNLEN + 2];
405 wcscpy (domname, domain_name);
406 wcscat (domname, L"\\");
407 wcscat (domname, buffer[i].lgrpi0_name);
408 sid_length = MAX_SID_LEN;
409 domname_len = MAX_DOMAIN_NAME_LEN + 1;
410 if (!LookupAccountNameW (servername, domname,
412 domain_name, &domname_len,
415 print_win_error (GetLastError ());
416 fprintf(stderr, " (%ls)\n", domname);
421 /* Store all local SIDs with prefix "S-1-5-32-" and check if it
422 has been printed already. This allows to get all builtin
423 groups exactly once and not once per domain. */
424 pdsid = (PDBGSID) psid;
425 if (pdsid->IdentifierAuthority.Value[5] == sid_nt_auth.Value[5]
426 && pdsid->SubAuthority[0] == SECURITY_BUILTIN_DOMAIN_RID)
434 for (b = 0; b < builtin_sid_cnt; b++)
435 if (EqualSid (&builtin_sid_list[b], psid))
437 if (builtin_sid_cnt < MAX_BUILTIN_SIDS)
438 CopySid (sizeof (DBGSID), &builtin_sid_list[builtin_sid_cnt++],
443 else if (EqualSid (curr_pgrp.psid, psid))
444 got_curr_pgrp = TRUE;
446 gid = *GetSidSubAuthority (psid, *GetSidSubAuthorityCount(psid) - 1);
447 printf ("%ls%s%ls:%s:%ld:\n",
448 with_dom && !is_builtin ? domain_name : L"",
449 with_dom && !is_builtin ? sep : "",
450 buffer[i].lgrpi0_name,
452 gid + (is_builtin ? 0 : id_offset));
457 NetApiBufferFree (buffer);
460 while (rc == ERROR_MORE_DATA);
462 /* Return 1 if the single group we're looking for has been found here to
463 avoid calling enum_groups for the same group, thus avoiding a spurious
464 error message "group name could not be found" in enum_groups. */
465 return disp_groupname && entriesread ? 1 : 0;
469 enum_groups (BOOL domain, domlist_t *dom_or_machine, const char *sep,
470 DWORD id_offset, char *disp_groupname, int print_current)
472 WCHAR machine[INTERNET_MAX_HOST_NAME_LENGTH + 1];
473 PWCHAR servername = NULL;
474 char *d_or_m = dom_or_machine ? dom_or_machine->str : NULL;
475 BOOL with_dom = dom_or_machine ? dom_or_machine->with_dom : FALSE;
476 GROUP_INFO_2 *buffer;
477 DWORD entriesread = 0;
478 DWORD totalentries = 0;
479 DWORD resume_handle = 0;
480 WCHAR gname[GNLEN + 1];
485 servername = get_dcname (d_or_m);
486 if (servername == (PWCHAR) -1)
491 int ret = mbstowcs (machine, d_or_m, INTERNET_MAX_HOST_NAME_LENGTH + 1);
492 if (ret < 1 || ret >= INTERNET_MAX_HOST_NAME_LENGTH + 1)
494 fprintf (stderr, "%s: Invalid machine name '%s'. Skipping...\n",
498 servername = machine;
505 if (disp_groupname != NULL)
507 mbstowcs (gname, disp_groupname, GNLEN + 1);
508 rc = NetGroupGetInfo (servername, (LPWSTR) & gname, 2,
511 /* Avoid annoying error messages just because the group hasn't been
513 if (rc == NERR_GroupNotFound)
517 rc = NetGroupEnum (servername, 2, (void *) & buffer,
518 MAX_PREFERRED_LENGTH, &entriesread, &totalentries,
522 case ERROR_ACCESS_DENIED:
523 print_win_error (rc);
526 case ERROR_MORE_DATA:
531 print_win_error (rc);
535 for (i = 0; i < entriesread; i++)
537 WCHAR domain_name[MAX_DOMAIN_NAME_LEN + 1];
538 DWORD domname_len = MAX_DOMAIN_NAME_LEN + 1;
539 char psid_buffer[MAX_SID_LEN];
540 PSID psid = (PSID) psid_buffer;
541 DWORD sid_length = MAX_SID_LEN;
542 SID_NAME_USE acc_type;
544 int gid = buffer[i].grpi2_group_id;
545 if (!LookupAccountNameW (servername, buffer[i].grpi2_name,
547 domain_name, &domname_len,
550 print_win_error (GetLastError ());
551 fprintf(stderr, " (%ls)\n", buffer[i].grpi2_name);
554 else if (acc_type == SidTypeDomain)
556 WCHAR domname[MAX_DOMAIN_NAME_LEN + GNLEN + 2];
558 wcscpy (domname, domain || !servername
559 ? domain_name : servername);
560 wcscat (domname, L"\\");
561 wcscat (domname, buffer[i].grpi2_name);
562 sid_length = MAX_SID_LEN;
563 domname_len = MAX_DOMAIN_NAME_LEN + 1;
564 if (!LookupAccountNameW (servername, domname,
566 domain_name, &domname_len,
569 print_win_error (GetLastError ());
570 fprintf(stderr, " (%ls)\n", domname);
576 else if (EqualSid (curr_pgrp.psid, psid))
577 got_curr_pgrp = TRUE;
579 printf ("%ls%s%ls:%s:%lu:\n",
580 with_dom ? domain_name : L"",
582 buffer[i].grpi2_name,
587 NetApiBufferFree (buffer);
590 while (rc == ERROR_MORE_DATA);
594 print_special (PSID_IDENTIFIER_AUTHORITY auth, BYTE cnt,
595 DWORD sub1, DWORD sub2, DWORD sub3, DWORD sub4,
596 DWORD sub5, DWORD sub6, DWORD sub7, DWORD sub8)
598 WCHAR grp[GNLEN + 1], dom[MAX_DOMAIN_NAME_LEN + 1];
599 DWORD glen, dlen, rid;
601 SID_NAME_USE acc_type;
603 if (AllocateAndInitializeSid (auth, cnt, sub1, sub2, sub3, sub4,
604 sub5, sub6, sub7, sub8, &psid))
606 if (LookupAccountSidW (NULL, psid,
607 grp, (glen = GNLEN + 1, &glen),
608 dom, (dlen = MAX_DOMAIN_NAME_LEN + 1, &dlen),
627 printf ("%ls:%s:%lu:\n", grp, put_sid (psid), rid);
634 usage (FILE * stream)
637 "Usage: mkgroup [OPTION]...\n"
638 "Print /etc/group file to stdout\n"
641 " -l,--local [machine[,offset]]\n"
642 " print local groups with gid offset offset\n"
643 " (from local machine if no machine specified)\n"
644 " -L,--Local [machine[,offset]]\n"
645 " ditto, but generate groupname with machine prefix\n"
646 " -d,--domain [domain[,offset]]\n"
647 " print domain groups with gid offset offset\n"
648 " (from current domain if no domain specified)\n"
649 " -D,--Domain [domain[,offset]]\n"
650 " ditto, but generate groupname with machine prefix\n"
651 " -c,--current print current group\n"
652 " -C,--Current ditto, but generate groupname with machine or\n"
654 " -S,--separator char for -L, -D, -C use character char as domain\\group\n"
655 " separator in groupname instead of the default '\\'\n"
656 " -o,--id-offset offset change the default offset (10000) added to gids\n"
657 " in domain or foreign server accounts.\n"
658 " -g,--group groupname only return information for the specified group\n"
659 " one of -l, -L, -d, -D must be specified, too\n"
660 " -b,--no-builtin don't print BUILTIN groups\n"
661 " -U,--unix grouplist additionally print UNIX groups when using -l or -L\n"
662 " on a UNIX Samba server\n"
663 " grouplist is a comma-separated list of groupnames\n"
664 " or gid ranges (root,-25,50-100).\n"
665 " (enumerating large ranges can take a long time!)\n"
666 " -s,--no-sids (ignored)\n"
667 " -u,--users (ignored)\n"
668 " -h,--help print this message\n"
669 " -v,--version print version information and exit\n"
671 "Default is to print local groups on stand-alone machines, plus domain\n"
672 "groups on domain controllers and domain member machines.\n");
676 struct option longopts[] = {
677 {"no-builtin", no_argument, NULL, 'b'},
678 {"current", no_argument, NULL, 'c'},
679 {"Current", no_argument, NULL, 'C'},
680 {"domain", optional_argument, NULL, 'd'},
681 {"Domain", optional_argument, NULL, 'D'},
682 {"group", required_argument, NULL, 'g'},
683 {"help", no_argument, NULL, 'h'},
684 {"local", optional_argument, NULL, 'l'},
685 {"Local", optional_argument, NULL, 'L'},
686 {"id-offset", required_argument, NULL, 'o'},
687 {"no-sids", no_argument, NULL, 's'},
688 {"separator", required_argument, NULL, 'S'},
689 {"users", no_argument, NULL, 'u'},
690 {"unix", required_argument, NULL, 'U'},
691 {"version", no_argument, NULL, 'v'},
692 {0, no_argument, NULL, 0}
695 static char opts[] = "bcCd::D::g:hl::L::o:sS:uU:v";
700 const char *v = strchr (version, ':');
710 len = strchr (v, ' ') - v;
713 mkgroup (cygwin) %.*s\n\
714 group File Generator\n\
715 Copyright 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008 Red Hat, Inc.\n\
717 ", len, v, __DATE__);
720 static PPOLICY_PRIMARY_DOMAIN_INFO p_dom;
723 fetch_primary_domain ()
726 LSA_OBJECT_ATTRIBUTES oa = { 0, 0, 0, 0, 0, 0 };
731 status = LsaOpenPolicy (NULL, &oa, POLICY_EXECUTE, &lsa);
732 if (!NT_SUCCESS (status))
734 status = LsaQueryInformationPolicy (lsa, PolicyPrimaryDomainInformation,
735 (PVOID *) ((void *) &p_dom));
737 if (!NT_SUCCESS (status))
744 main (int argc, char **argv)
746 int print_domlist = 0;
747 domlist_t domlist[32];
749 int print_current = 0;
750 int print_system = 0;
751 int print_builtin = 1;
752 char *print_unix = NULL;
753 const char *sep_char = "\\";
754 DWORD id_offset = 10000, off;
756 char *disp_groupname = NULL;
758 int optional_args = 0;
761 setmode (1, O_BINARY);
763 /* Use locale from environment. If not set or set to "C", use UTF-8. */
764 setlocale (LC_CTYPE, "");
765 if (!strcmp (setlocale (LC_CTYPE, NULL), "C"))
766 setlocale (LC_CTYPE, "en_US.UTF-8");
768 in_domain = fetch_primary_domain ();
769 fetch_current_pgrp_sid ();
773 print_special (&sid_nt_auth, 1, SECURITY_LOCAL_SYSTEM_RID,
774 0, 0, 0, 0, 0, 0, 0);
777 if (!enum_local_groups (TRUE, NULL, sep_char, id_offset,
778 disp_groupname, print_builtin, 0))
779 enum_groups (TRUE, NULL, sep_char, id_offset, disp_groupname, 0);
781 else if (!enum_local_groups (FALSE, NULL, sep_char, 0, disp_groupname,
783 enum_groups (FALSE, NULL, sep_char, 0, disp_groupname, 0);
787 unsetenv ("POSIXLY_CORRECT"); /* To get optional arg processing right. */
788 while ((c = getopt_long (argc, argv, opts, longopts, NULL)) != EOF)
795 if (print_domlist >= 32)
797 fprintf (stderr, "%s: Can not enumerate from more than 32 "
798 "domains and machines.\n", __progname);
801 domlist[print_domlist].domain = (c == 'd' || c == 'D');
803 argv[optind] && argv[optind][0] != '-' ? argv[optind] : NULL;
804 if (argv[optind] && opt == argv[optind])
806 for (i = 0; i < print_domlist; ++i)
807 if (domlist[i].domain == domlist[print_domlist].domain
808 && ((!domlist[i].str && !opt)
809 || (domlist[i].str && opt
810 && (off = strlen (domlist[i].str))
811 && !strncmp (domlist[i].str, opt, off)
812 && (!opt[off] || opt[off] == ','))))
814 fprintf (stderr, "%s: Duplicate %s '%s'. Skipping...\n",
815 __progname, domlist[i].domain ? "domain" : "machine",
819 if (!(domlist[print_domlist].str = opt))
821 domlist[print_domlist].id_offset = ULONG_MAX;
822 if (opt && (p = strchr (opt, ',')))
825 || !isdigit ((unsigned char) p[1])
826 || (domlist[print_domlist].id_offset = strtol (p + 1, &ep, 10)
829 fprintf (stderr, "%s: Malformed machine,offset string '%s'. "
830 "Skipping...\n", __progname, opt);
835 domlist[print_domlist++].with_dom = (c == 'D' || c == 'L');
840 if (strlen (sep_char) > 1)
842 fprintf (stderr, "%s: Only one character allowed as domain\\user "
843 "separator character.\n", __progname);
846 if (*sep_char == ':')
848 fprintf (stderr, "%s: Colon not allowed as domain\\user separator "
849 "character.\n", __progname);
863 id_offset = strtol (optarg, NULL, 10);
873 disp_groupname = optarg;
882 fprintf (stderr, "Try '%s --help' for more information.\n", argv[0]);
886 optind += optional_args;
890 "mkgroup: non-option command line argument `%s' is not allowed.\n"
891 "Try `mkgroup --help' for more information.\n", argv[optind]);
895 /* Get 'system' group */
896 if (!disp_groupname && print_system && print_builtin && print_domlist)
897 print_special (&sid_nt_auth, 1, SECURITY_LOCAL_SYSTEM_RID,
898 0, 0, 0, 0, 0, 0, 0);
901 for (i = 0; i < print_domlist; ++i)
903 DWORD my_off = (domlist[i].domain || domlist[i].str)
904 ? domlist[i].id_offset != ULONG_MAX
905 ? domlist[i].id_offset : off : 0;
906 if (!enum_local_groups (domlist[i].domain, domlist + i, sep_char,
907 my_off, disp_groupname, print_builtin, print_current))
909 if (!domlist[i].domain && domlist[i].str && print_unix)
910 enum_unix_groups (domlist + i, sep_char, my_off, print_unix);
911 enum_groups (domlist[i].domain, domlist + i, sep_char, my_off,
912 disp_groupname, print_current);
918 if (print_current && !got_curr_pgrp)
919 current_group (sep_char, off);