1 /* $NetBSD: info_passwd.c,v 1.1.1.2 2009/03/20 20:26:49 christos Exp $ */ 2 3 /* 4 * Copyright (c) 1997-2009 Erez Zadok 5 * Copyright (c) 1990 Jan-Simon Pendry 6 * Copyright (c) 1990 Imperial College of Science, Technology & Medicine 7 * Copyright (c) 1990 The Regents of the University of California. 8 * All rights reserved. 9 * 10 * This code is derived from software contributed to Berkeley by 11 * Jan-Simon Pendry at Imperial College, London. 12 * 13 * Redistribution and use in source and binary forms, with or without 14 * modification, are permitted provided that the following conditions 15 * are met: 16 * 1. Redistributions of source code must retain the above copyright 17 * notice, this list of conditions and the following disclaimer. 18 * 2. Redistributions in binary form must reproduce the above copyright 19 * notice, this list of conditions and the following disclaimer in the 20 * documentation and/or other materials provided with the distribution. 21 * 3. All advertising materials mentioning features or use of this software 22 * must display the following acknowledgment: 23 * This product includes software developed by the University of 24 * California, Berkeley and its contributors. 25 * 4. Neither the name of the University nor the names of its contributors 26 * may be used to endorse or promote products derived from this software 27 * without specific prior written permission. 28 * 29 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 30 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 31 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 32 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 33 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 34 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 35 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 36 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 37 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 38 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 39 * SUCH DAMAGE. 40 * 41 * 42 * File: am-utils/amd/info_passwd.c 43 * 44 */ 45 46 /* 47 * Get info from password "file" 48 * 49 * This is experimental and probably doesn't do what you expect. 50 */ 51 52 #ifdef HAVE_CONFIG_H 53 # include <config.h> 54 #endif /* HAVE_CONFIG_H */ 55 #include <am_defs.h> 56 #include <amd.h> 57 58 #define PASSWD_MAP "/etc/passwd" 59 60 /* forward declarations */ 61 int passwd_init(mnt_map *m, char *map, time_t *tp); 62 int passwd_search(mnt_map *m, char *map, char *key, char **pval, time_t *tp); 63 64 65 /* 66 * Nothing to probe - check the map name is PASSWD_MAP. 67 */ 68 int 69 passwd_init(mnt_map *m, char *map, time_t *tp) 70 { 71 *tp = 0; 72 73 /* 74 * Recognize the old format "PASSWD_MAP" 75 * Uses default return string 76 * "type:=nfs;rfs:=/${var0}/${var1};rhost:=${var1};sublink:=${var2};fs:=${autodir}${var3}" 77 */ 78 if (STREQ(map, PASSWD_MAP)) 79 return 0; 80 /* 81 * Recognize the new format "PASSWD_MAP:pval-format" 82 */ 83 if (!NSTREQ(map, PASSWD_MAP, sizeof(PASSWD_MAP) - 1)) 84 return ENOENT; 85 if (map[sizeof(PASSWD_MAP)-1] != ':') 86 return ENOENT; 87 88 return 0; 89 } 90 91 92 /* 93 * Grab the entry via the getpwname routine 94 * Modify time is ignored by passwd - XXX 95 */ 96 int 97 passwd_search(mnt_map *m, char *map, char *key, char **pval, time_t *tp) 98 { 99 char *dir = NULL; 100 struct passwd *pw; 101 102 if (STREQ(key, "/defaults")) { 103 *pval = strdup("type:=nfs"); 104 return 0; 105 } 106 pw = getpwnam(key); 107 108 if (pw) { 109 /* 110 * We chop the home directory up as follows: 111 * /anydir/dom1/dom2/dom3/user 112 * 113 * and return 114 * rfs:=/anydir/dom3;rhost:=dom3.dom2.dom1;sublink:=user 115 * and now have 116 * var0:=pw-prefix:=anydir 117 * var1:=pw-rhost:=dom3.dom2.dom1 118 * var2:=pw-user:=user 119 * var3:=pw-home:=/anydir/dom1/dom2/dom3/user 120 * 121 * This allows cross-domain entries in your passwd file. 122 * ... but forget about security! 123 */ 124 char *user; 125 char *p, *q; 126 char val[MAXPATHLEN]; 127 char rhost[MAXHOSTNAMELEN]; 128 dir = strdup(pw->pw_dir); 129 130 /* 131 * Find user name. If no / then Invalid... 132 */ 133 user = strrchr(dir, '/'); 134 if (!user) 135 goto enoent; 136 *user++ = '\0'; 137 138 /* 139 * Find start of host "path". If no / then Invalid... 140 */ 141 p = strchr(dir + 1, '/'); 142 if (!p) 143 goto enoent; 144 *p++ = '\0'; 145 146 /* 147 * At this point, p is dom1/dom2/dom3 148 * Copy, backwards, into rhost replacing 149 * / with . 150 */ 151 rhost[0] = '\0'; 152 do { 153 q = strrchr(p, '/'); 154 if (q) { 155 xstrlcat(rhost, q + 1, sizeof(rhost)); 156 xstrlcat(rhost, ".", sizeof(rhost)); 157 *q = '\0'; 158 } else { 159 xstrlcat(rhost, p, sizeof(rhost)); 160 } 161 } while (q); 162 163 /* 164 * Sanity check 165 */ 166 if (*rhost == '\0' || *user == '\0' || *dir == '\0') 167 goto enoent; 168 169 /* 170 * Make up return string 171 */ 172 q = strchr(rhost, '.'); 173 if (q) 174 *q = '\0'; 175 p = strchr(map, ':'); 176 if (p) 177 p++; 178 else 179 p = "type:=nfs;rfs:=/${var0}/${var1};rhost:=${var1};sublink:=${var2};fs:=${autodir}${var3}"; 180 xsnprintf(val, sizeof(val), "var0:=%s;var1:=%s;var2:=%s;var3:=%s;%s", 181 dir+1, rhost, user, pw->pw_dir, p); 182 dlog("passwd_search: map=%s key=%s -> %s", map, key, val); 183 if (q) 184 *q = '.'; 185 *pval = strdup(val); 186 return 0; 187 } 188 189 enoent: 190 if (dir) 191 XFREE(dir); 192 193 return ENOENT; 194 } 195