usr.sbin/vipw/vipw.c

21186Sdist/*
31744Sbostic * Copyright (c) 1987 Regents of the University of California.
33502Sbostic * All rights reserved.
33502Sbostic *
33502Sbostic * Redistribution and use in source and binary forms are permitted
34778Sbostic * provided that the above copyright notice and this paragraph are
34778Sbostic * duplicated in all such forms and that any documentation,
34778Sbostic * advertising materials, and other materials related to such
34778Sbostic * distribution and use acknowledge that the software was developed
34778Sbostic * by the University of California, Berkeley.  The name of the
34778Sbostic * University may not be used to endorse or promote products derived
34778Sbostic * from this software without specific prior written permission.
34778Sbostic * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
34778Sbostic * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
34778Sbostic * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
21186Sdist */
21186Sdist
13736Ssam#ifndef lint
21186Sdistchar copyright[] =
31744Sbostic"@(#) Copyright (c) 1987 Regents of the University of California.\n\
21186Sdist All rights reserved.\n";
33502Sbostic#endif /* not lint */
13736Ssam
21186Sdist#ifndef lint
*37133Sbosticstatic char sccsid[] = "@(#)vipw.c	5.7 (Berkeley) 03/11/89";
33502Sbostic#endif /* not lint */
21186Sdist
36857Sbostic#include <sys/param.h>
13736Ssam#include <sys/stat.h>
32668Sbostic#include <sys/signal.h>
13736Ssam#include <sys/file.h>
36857Sbostic#include <sys/time.h>
36857Sbostic#include <sys/resource.h>
36857Sbostic#include <errno.h>
36857Sbostic#include <pwd.h>
13736Ssam#include <stdio.h>
*37133Sbostic#include <strings.h>
13736Ssam
*37133Sbosticchar *passwd, *temp;
*37133Sbostic
31744Sbosticmain()
13736Ssam{
36857Sbostic	extern int errno;
36857Sbostic	register int n, fd_passwd, fd;
36857Sbostic	struct rlimit rlim;
*37133Sbostic	struct stat s1;
*37133Sbostic	char *fend, *tend;
36857Sbostic	char buf[8*1024], from[MAXPATHLEN], to[MAXPATHLEN];
13736Ssam
31744Sbostic	(void)signal(SIGHUP, SIG_IGN);
31744Sbostic	(void)signal(SIGINT, SIG_IGN);
31744Sbostic	(void)signal(SIGQUIT, SIG_IGN);
36857Sbostic	(void)signal(SIGTSTP, SIG_IGN);
31744Sbostic
36857Sbostic	rlim.rlim_cur = rlim.rlim_max = RLIM_INFINITY;
36857Sbostic	(void)setrlimit(RLIMIT_CPU, &rlim);
36857Sbostic	(void)setrlimit(RLIMIT_FSIZE, &rlim);
36857Sbostic
32668Sbostic	(void)umask(0);
31744Sbostic
36857Sbostic	temp = _PATH_PTMP;
36857Sbostic	if ((fd = open(temp, O_WRONLY|O_CREAT|O_EXCL, 0600)) < 0) {
36857Sbostic		if (errno == EEXIST)
*37133Sbostic			(void)fprintf(stderr, "vipw: password file busy.\n");
36857Sbostic		else
*37133Sbostic			(void)fprintf(stderr,
36857Sbostic			    "vipw: %s: %s\n", temp, strerror(errno));
31744Sbostic		exit(1);
31744Sbostic	}
36857Sbostic	passwd = _PATH_MASTERPASSWD;
36857Sbostic	if ((fd_passwd = open(passwd, O_RDONLY, 0)) < 0) {
*37133Sbostic		(void)fprintf(stderr, "vipw: %s: %s\n", passwd,
*37133Sbostic		    strerror(errno));
13736Ssam		exit(1);
13736Ssam	}
31744Sbostic	while ((n = read(fd_passwd, buf, sizeof(buf))) > 0)
36857Sbostic		if (write(fd, buf, n) != n)
36857Sbostic			goto syserr;
36857Sbostic
36857Sbostic	if (n == -1 || close(fd_passwd) || fsync(fd) ||
36857Sbostic	    fstat(fd, &s1) || close(fd)) {
*37133Sbosticsyserr:		(void)fprintf(stderr, "vipw: %s; ", strerror(errno));
*37133Sbostic		stop(1);
13736Ssam	}
36857Sbostic
*37133Sbostic	for (;;) {
*37133Sbostic		if (edit()) {
*37133Sbostic			(void)fprintf(stderr, "vipw: edit failed; ");
*37133Sbostic			stop(1);
*37133Sbostic		}
*37133Sbostic		if (!check(&s1))
*37133Sbostic			break;
*37133Sbostic		if (prompt())
*37133Sbostic			stop(0);
13736Ssam	}
31744Sbostic
36857Sbostic	switch(fork()) {
36857Sbostic	case 0:
36857Sbostic		break;
36857Sbostic	case -1:
*37133Sbostic		(void)fprintf(stderr, "vipw: can't fork; ");
*37133Sbostic		stop(1);
36857Sbostic		/* NOTREACHED */
36857Sbostic	default:
36857Sbostic		exit(0);
36857Sbostic		/* NOTREACHED */
31744Sbostic	}
31744Sbostic
36857Sbostic	if (makedb(temp)) {
*37133Sbostic		(void)fprintf(stderr, "vipw: mkpasswd failed; ");
*37133Sbostic		stop(1);
13736Ssam	}
36857Sbostic
36857Sbostic	/*
36857Sbostic	 * possible race; have to rename four files, and someone could slip
36857Sbostic	 * in between them.  LOCK_EX and rename the ``passwd.dir'' file first
36857Sbostic	 * so that getpwent(3) can't slip in; the lock should never fail and
36857Sbostic	 * it's unclear what to do if it does.  Rename ``ptmp'' last so that
36857Sbostic	 * passwd/vipw/chpass can't slip in.
36857Sbostic	 */
36857Sbostic	(void)setpriority(PRIO_PROCESS, 0, -20);
36857Sbostic	fend = strcpy(from, temp) + strlen(temp);
36857Sbostic	tend = strcpy(to, passwd) + strlen(passwd);
36857Sbostic	bcopy(".dir", fend, 5);
36857Sbostic	bcopy(".dir", tend, 5);
36857Sbostic	if ((fd = open(from, O_RDONLY, 0)) >= 0)
36857Sbostic		(void)flock(fd, LOCK_EX);
36857Sbostic	/* here we go... */
36857Sbostic	(void)rename(from, to);
36857Sbostic	bcopy(".pag", fend, 5);
36857Sbostic	bcopy(".pag", tend, 5);
36857Sbostic	(void)rename(from, to);
36857Sbostic	bcopy(".orig", fend, 6);
36857Sbostic	(void)rename(from, _PATH_PASSWD);
36857Sbostic	(void)rename(temp, passwd);
36857Sbostic	/* done! */
36857Sbostic	exit(0);
13736Ssam}
15633Sralph
*37133Sbosticcheck(s1)
*37133Sbostic	struct stat *s1;
31744Sbostic{
32668Sbostic	register long id;
36857Sbostic	register int lcnt, root;
36857Sbostic	register char *p, *sh;
*37133Sbostic	struct stat s2;
*37133Sbostic	FILE *tfp;
32668Sbostic	long atol();
*37133Sbostic	char buf[1024], *getusershell();
31744Sbostic
*37133Sbostic	if (!(tfp = fopen(temp, "r")) || fstat(fileno(tfp), &s2) ||
*37133Sbostic	    !s2.st_size) {
*37133Sbostic		(void)fprintf(stderr, "vipw: can't read temp file; ");
*37133Sbostic		stop(1);
*37133Sbostic	}
*37133Sbostic
*37133Sbostic	if (s1->st_mtime == s2.st_mtime) {
*37133Sbostic		(void)fprintf(stderr, "vipw: ");
*37133Sbostic		stop(0);
*37133Sbostic	}
*37133Sbostic
*37133Sbostic	for (lcnt = 1; fgets(buf, sizeof(buf), tfp); ++lcnt) {
36857Sbostic		/* skip lines that are too big */
36857Sbostic		if (!index(buf, '\n')) {
*37133Sbostic			(void)fprintf(stderr, "vipw: line too long");
36857Sbostic			goto bad;
32668Sbostic		}
36857Sbostic		if (!(p = strsep(buf, ":\n")))		/* login */
36857Sbostic			goto general;
36857Sbostic		root = !strcmp(p, "root");
36857Sbostic		(void)strsep((char *)NULL, ":\n");	/* passwd */
36857Sbostic		if (!(p = strsep((char *)NULL, ":\n")))	/* uid */
36857Sbostic			goto general;
36857Sbostic		id = atol(p);
36857Sbostic		if (root && id) {
*37133Sbostic			(void)fprintf(stderr, "vipw: root uid should be 0");
32668Sbostic			goto bad;
36857Sbostic		}
36857Sbostic		if (id > USHRT_MAX) {
*37133Sbostic			(void)fprintf(stderr, "vipw: %s > max uid value (%d)",
36857Sbostic			    p, USHRT_MAX);
32668Sbostic			goto bad;
32668Sbostic		}
36857Sbostic		if (!(p = strsep((char *)NULL, ":\n")))	/* gid */
36857Sbostic			goto general;
36857Sbostic		id = atol(p);
32668Sbostic		if (id > USHRT_MAX) {
*37133Sbostic			(void)fprintf(stderr, "vipw: %s > max gid value (%d)",
36857Sbostic			    p, USHRT_MAX);
32668Sbostic			goto bad;
32668Sbostic		}
36857Sbostic		(void)strsep((char *)NULL, ":\n");	/* class */
36857Sbostic		(void)strsep((char *)NULL, ":\n");	/* change */
36857Sbostic		(void)strsep((char *)NULL, ":\n");	/* expire */
36857Sbostic		(void)strsep((char *)NULL, ":\n");	/* gecos */
36857Sbostic		(void)strsep((char *)NULL, ":\n");	/* directory */
36857Sbostic		if (!(p = strsep((char *)NULL, ":\n")))	/* shell */
36857Sbostic			goto general;
36857Sbostic		if (root && *p)				/* empty == /bin/sh */
*37133Sbostic			for (setusershell();;)
32668Sbostic				if (!(sh = getusershell())) {
*37133Sbostic					(void)fprintf(stderr,
*37133Sbostic					    "vipw: warning, unknown root shell.\n");
36857Sbostic					break;
32668Sbostic				}
36857Sbostic				else if (!strcmp(p, sh))
32668Sbostic					break;
36857Sbostic		if (strsep((char *)NULL, ":\n")) {	/* too many */
*37133Sbosticgeneral:		(void)fprintf(stderr, "vipw: corrupted entry");
*37133Sbosticbad:			(void)fprintf(stderr, "; line #%d.\n", lcnt);
*37133Sbostic			(void)fflush(stderr);
*37133Sbostic			return(1);
32668Sbostic		}
31744Sbostic	}
*37133Sbostic	return(0);
31744Sbostic}
31744Sbostic
15633Sralphmakedb(file)
32668Sbostic	char *file;
15633Sralph{
32668Sbostic	int status, pid, w;
15633Sralph
31744Sbostic	if (!(pid = vfork())) {
36857Sbostic		execl(_PATH_MKPASSWD, "mkpasswd", "-p", file, NULL);
15633Sralph		_exit(127);
15633Sralph	}
31744Sbostic	while ((w = wait(&status)) != pid && w != -1);
36857Sbostic	return(w == -1 || status);
15633Sralph}
32668Sbostic
*37133Sbosticedit()
32668Sbostic{
*37133Sbostic	extern int errno;
36857Sbostic	int status, pid, w;
*37133Sbostic	char *p, *editor, *getenv(), *strerror();
32668Sbostic
36857Sbostic	if (editor = getenv("EDITOR")) {
36857Sbostic		if (p = rindex(editor, '/'))
36857Sbostic			++p;
36857Sbostic		else
36857Sbostic			p = editor;
36857Sbostic	}
36857Sbostic	else
36857Sbostic		p = editor = "vi";
36857Sbostic	if (!(pid = vfork())) {
*37133Sbostic		execlp(editor, p, temp, NULL);
*37133Sbostic		(void)fprintf(stderr, "vipw: %s: %s\n", editor,
*37133Sbostic		    strerror(errno));
36857Sbostic		_exit(127);
36857Sbostic	}
36857Sbostic	while ((w = wait(&status)) != pid && w != -1);
36857Sbostic	return(w == -1 || status);
32668Sbostic}
*37133Sbostic
*37133Sbosticprompt()
*37133Sbostic{
*37133Sbostic	register int c;
*37133Sbostic
*37133Sbostic	for (;;) {
*37133Sbostic		(void)printf("re-edit the password file? [y]: ");
*37133Sbostic		(void)fflush(stdout);
*37133Sbostic		c = getchar();
*37133Sbostic		if (c != EOF && c != (int)'\n')
*37133Sbostic			while (getchar() != (int)'\n');
*37133Sbostic		return(c == (int)'n');
*37133Sbostic	}
*37133Sbostic	/* NOTREACHED */
*37133Sbostic}
*37133Sbostic
*37133Sbosticstop(val)
*37133Sbostic	int val;
*37133Sbostic{
*37133Sbostic	(void)fprintf(stderr, "%s unchanged.\n", passwd);
*37133Sbostic	(void)unlink(temp);
*37133Sbostic	exit(val);
*37133Sbostic}