1 /* $NetBSD: pw_scan.c,v 1.20 2005/02/01 23:47:38 christos Exp $ */ 2 3 /* 4 * Copyright (c) 1987, 1993, 1994, 1995 5 * The Regents of the University of California. All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 3. Neither the name of the University nor the names of its contributors 16 * may be used to endorse or promote products derived from this software 17 * without specific prior written permission. 18 * 19 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 22 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 29 * SUCH DAMAGE. 30 */ 31 32 #if HAVE_NBTOOL_CONFIG_H 33 #include "nbtool_config.h" 34 #include "compat_pwd.h" 35 36 #else 37 #include <sys/cdefs.h> 38 #if defined(LIBC_SCCS) && !defined(lint) 39 __RCSID("$NetBSD: pw_scan.c,v 1.20 2005/02/01 23:47:38 christos Exp $"); 40 #endif /* LIBC_SCCS and not lint */ 41 42 #if defined(_LIBC) 43 #include "namespace.h" 44 #endif 45 #include <sys/types.h> 46 47 #include <assert.h> 48 #include <err.h> 49 #include <limits.h> 50 #include <pwd.h> 51 #include <stdio.h> 52 #include <stdlib.h> 53 #include <string.h> 54 #include <unistd.h> 55 #include <errno.h> 56 57 #ifdef _LIBC 58 #include "pw_private.h" 59 #endif 60 #endif /* ! HAVE_NBTOOL_CONFIG_H */ 61 62 static int 63 gettime(long *res, const char *p, int *flags, int dowarn, int flag) 64 { 65 long l; 66 char *ep; 67 68 if (*p == '\0') { 69 *flags |= flag; 70 *res = 0; 71 return 1; 72 } 73 l = strtol(p, &ep, 0); 74 if (p == ep || *ep != '\0') { 75 ep = __UNCONST("Invalid number"); 76 goto done; 77 } 78 if (errno == ERANGE && (l == LONG_MAX || l == LONG_MIN)) { 79 ep = strerror(errno); 80 goto done; 81 } 82 83 *res = l; 84 return 1; 85 done: 86 if (dowarn) { 87 warnx("%s `%s' for %s time", ep, p, 88 flag == _PASSWORD_NOEXP ? "expiration" : "change"); 89 } 90 return 0; 91 92 } 93 94 static int 95 getid(unsigned long *res, const char *p, int *flags, int dowarn, int flag) 96 { 97 unsigned long ul; 98 char *ep; 99 100 if (*p == '\0') { 101 *flags |= flag; 102 *res = 0; 103 return 1; 104 } 105 ul = strtoul(p, &ep, 0); 106 if (p == ep || *ep != '\0') { 107 ep = __UNCONST("Invalid number"); 108 goto done; 109 } 110 if (errno == ERANGE && ul == ULONG_MAX) { 111 ep = strerror(errno); 112 goto done; 113 } 114 if (ul > *res) { 115 ep = strerror(ERANGE); 116 goto done; 117 } 118 119 *res = ul; 120 return 1; 121 done: 122 if (dowarn) 123 warnx("%s %s `%s'", ep, 124 flag == _PASSWORD_NOUID ? "uid" : "gid", p); 125 return 0; 126 127 } 128 129 int 130 #ifdef _LIBC 131 __pw_scan(char *bp, struct passwd *pw, int *flags) 132 #else 133 pw_scan( char *bp, struct passwd *pw, int *flags) 134 #endif 135 { 136 unsigned long id; 137 long ti; 138 int root, inflags; 139 int dowarn; 140 const char *p, *sh; 141 142 _DIAGASSERT(bp != NULL); 143 _DIAGASSERT(pw != NULL); 144 145 if (flags) { 146 inflags = *flags; 147 *flags = 0; 148 } else { 149 inflags = 0; 150 flags = &inflags; 151 } 152 dowarn = !(inflags & _PASSWORD_NOWARN); 153 154 if (!(pw->pw_name = strsep(&bp, ":"))) /* login */ 155 goto fmt; 156 if (strlen(pw->pw_name) > (LOGIN_NAME_MAX - 1)) { 157 if (dowarn) 158 warnx("username too long, `%s' > %d", pw->pw_name, 159 LOGIN_NAME_MAX - 1); 160 return 0; 161 } 162 163 root = !strcmp(pw->pw_name, "root"); 164 165 if (!(pw->pw_passwd = strsep(&bp, ":"))) /* passwd */ 166 goto fmt; 167 168 if (!(p = strsep(&bp, ":"))) /* uid */ 169 goto fmt; 170 171 id = UID_MAX; 172 if (!getid(&id, p, flags, dowarn, _PASSWORD_NOUID)) 173 return 0; 174 175 if (root && id) { 176 if (dowarn) 177 warnx("root uid should be 0"); 178 return 0; 179 } 180 181 pw->pw_uid = (uid_t)id; 182 183 if (!(p = strsep(&bp, ":"))) /* gid */ 184 goto fmt; 185 186 id = GID_MAX; 187 if (!getid(&id, p, flags, dowarn, _PASSWORD_NOGID)) 188 return 0; 189 190 pw->pw_gid = (gid_t)id; 191 192 if (inflags & _PASSWORD_OLDFMT) { 193 pw->pw_class = __UNCONST(""); 194 pw->pw_change = 0; 195 pw->pw_expire = 0; 196 *flags |= (_PASSWORD_NOCHG | _PASSWORD_NOEXP); 197 } else { 198 pw->pw_class = strsep(&bp, ":"); /* class */ 199 if (!(p = strsep(&bp, ":"))) /* change */ 200 goto fmt; 201 if (!gettime(&ti, p, flags, dowarn, _PASSWORD_NOCHG)) 202 return 0; 203 pw->pw_change = (time_t)ti; 204 205 if (!(p = strsep(&bp, ":"))) /* expire */ 206 goto fmt; 207 if (!gettime(&ti, p, flags, dowarn, _PASSWORD_NOEXP)) 208 return 0; 209 pw->pw_expire = (time_t)ti; 210 } 211 212 pw->pw_gecos = strsep(&bp, ":"); /* gecos */ 213 pw->pw_dir = strsep(&bp, ":"); /* directory */ 214 if (!(pw->pw_shell = strsep(&bp, ":"))) /* shell */ 215 goto fmt; 216 217 #if ! HAVE_NBTOOL_CONFIG_H 218 p = pw->pw_shell; 219 if (root && *p) /* empty == /bin/sh */ 220 for (setusershell();;) { 221 if (!(sh = getusershell())) { 222 if (dowarn) 223 warnx("warning, unknown root shell"); 224 break; 225 } 226 if (!strcmp(p, sh)) 227 break; 228 } 229 #endif 230 231 if ((p = strsep(&bp, ":")) != NULL) { /* too many */ 232 fmt: 233 if (dowarn) 234 warnx("corrupted entry"); 235 return 0; 236 } 237 238 return 1; 239 } 240