1 /* $NetBSD: pw_scan.c,v 1.23 2012/03/13 21:13:36 christos Exp $ */
2
3 /*
4 * Copyright (c) 1987, 1993, 1994, 1995
5 * The Regents of the University of California. All rights reserved.
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the University nor the names of its contributors
16 * may be used to endorse or promote products derived from this software
17 * without specific prior written permission.
18 *
19 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * SUCH DAMAGE.
30 */
31
32 #if HAVE_NBTOOL_CONFIG_H
33 #include "nbtool_config.h"
34 #include "compat_pwd.h"
35
36 #else
37 #include <sys/cdefs.h>
38 #if defined(LIBC_SCCS) && !defined(lint)
39 __RCSID("$NetBSD: pw_scan.c,v 1.23 2012/03/13 21:13:36 christos Exp $");
40 #endif /* LIBC_SCCS and not lint */
41
42 #if defined(_LIBC)
43 #include "namespace.h"
44 #endif
45 #include <sys/types.h>
46
47 #include <assert.h>
48 #include <err.h>
49 #include <limits.h>
50 #include <pwd.h>
51 #include <stdio.h>
52 #include <stdlib.h>
53 #include <string.h>
54 #include <unistd.h>
55 #include <errno.h>
56
57 #ifdef _LIBC
58 #include "pw_private.h"
59 #endif
60 #endif /* ! HAVE_NBTOOL_CONFIG_H */
61
62 static int
gettime(time_t * res,const char * p,int * flags,int dowarn,int flag)63 gettime(time_t *res, const char *p, int *flags, int dowarn, int flag)
64 {
65 long long l;
66 char *ep;
67 const char *vp;
68
69 if (*p == '\0') {
70 *flags |= flag;
71 *res = 0;
72 return 1;
73 }
74 l = strtoll(p, &ep, 0);
75 if (p == ep || *ep != '\0') {
76 vp = "Invalid number";
77 goto done;
78 }
79 if (errno == ERANGE && (l == LLONG_MAX || l == LLONG_MIN)) {
80 vp = strerror(errno);
81 goto done;
82 }
83 _DIAGASSERT(__type_fit(time_t, l));
84 *res = (time_t)l;
85 return 1;
86 done:
87 if (dowarn) {
88 warnx("%s `%s' for %s time", vp, p,
89 flag == _PASSWORD_NOEXP ? "expiration" : "change");
90 }
91 return 0;
92
93 }
94
95 static int
getid(unsigned long * res,const char * p,int * flags,int dowarn,int flag)96 getid(unsigned long *res, const char *p, int *flags, int dowarn, int flag)
97 {
98 unsigned long ul;
99 char *ep;
100
101 if (*p == '\0') {
102 *flags |= flag;
103 *res = 0;
104 return 1;
105 }
106 ul = strtoul(p, &ep, 0);
107 if (p == ep || *ep != '\0') {
108 ep = __UNCONST("Invalid number");
109 goto done;
110 }
111 if (errno == ERANGE && ul == ULONG_MAX) {
112 ep = strerror(errno);
113 goto done;
114 }
115 if (ul > *res) {
116 ep = strerror(ERANGE);
117 goto done;
118 }
119
120 *res = ul;
121 return 1;
122 done:
123 if (dowarn)
124 warnx("%s %s `%s'", ep,
125 flag == _PASSWORD_NOUID ? "uid" : "gid", p);
126 return 0;
127
128 }
129
130 int
131 #ifdef _LIBC
__pw_scan(char * bp,struct passwd * pw,int * flags)132 __pw_scan(char *bp, struct passwd *pw, int *flags)
133 #else
134 pw_scan( char *bp, struct passwd *pw, int *flags)
135 #endif
136 {
137 unsigned long id;
138 time_t ti;
139 int root, inflags;
140 int dowarn;
141 const char *p, *sh;
142
143 _DIAGASSERT(bp != NULL);
144 _DIAGASSERT(pw != NULL);
145
146 if (flags) {
147 inflags = *flags;
148 *flags = 0;
149 } else {
150 inflags = 0;
151 flags = &inflags;
152 }
153 dowarn = !(inflags & _PASSWORD_NOWARN);
154
155 if (!(pw->pw_name = strsep(&bp, ":"))) /* login */
156 goto fmt;
157 if (strlen(pw->pw_name) > (LOGIN_NAME_MAX - 1)) {
158 if (dowarn)
159 warnx("username too long, `%s' > %d", pw->pw_name,
160 LOGIN_NAME_MAX - 1);
161 return 0;
162 }
163
164 root = !strcmp(pw->pw_name, "root");
165
166 if (!(pw->pw_passwd = strsep(&bp, ":"))) /* passwd */
167 goto fmt;
168
169 if (!(p = strsep(&bp, ":"))) /* uid */
170 goto fmt;
171
172 id = UID_MAX;
173 if (!getid(&id, p, flags, dowarn, _PASSWORD_NOUID))
174 return 0;
175
176 if (root && id) {
177 if (dowarn)
178 warnx("root uid should be 0");
179 return 0;
180 }
181
182 pw->pw_uid = (uid_t)id;
183
184 if (!(p = strsep(&bp, ":"))) /* gid */
185 goto fmt;
186
187 id = GID_MAX;
188 if (!getid(&id, p, flags, dowarn, _PASSWORD_NOGID))
189 return 0;
190
191 pw->pw_gid = (gid_t)id;
192
193 if (inflags & _PASSWORD_OLDFMT) {
194 pw->pw_class = __UNCONST("");
195 pw->pw_change = 0;
196 pw->pw_expire = 0;
197 *flags |= (_PASSWORD_NOCHG | _PASSWORD_NOEXP);
198 } else {
199 pw->pw_class = strsep(&bp, ":"); /* class */
200 if (!(p = strsep(&bp, ":"))) /* change */
201 goto fmt;
202 if (!gettime(&ti, p, flags, dowarn, _PASSWORD_NOCHG))
203 return 0;
204 pw->pw_change = ti;
205
206 if (!(p = strsep(&bp, ":"))) /* expire */
207 goto fmt;
208 if (!gettime(&ti, p, flags, dowarn, _PASSWORD_NOEXP))
209 return 0;
210 pw->pw_expire = ti;
211 }
212
213 pw->pw_gecos = strsep(&bp, ":"); /* gecos */
214 pw->pw_dir = strsep(&bp, ":"); /* directory */
215 if (!(pw->pw_shell = strsep(&bp, ":"))) /* shell */
216 goto fmt;
217
218 #if ! HAVE_NBTOOL_CONFIG_H
219 p = pw->pw_shell;
220 if (root && *p) /* empty == /bin/sh */
221 for (setusershell();;) {
222 if (!(sh = getusershell())) {
223 if (dowarn)
224 warnx("warning, unknown root shell");
225 break;
226 }
227 if (!strcmp(p, sh))
228 break;
229 }
230 #endif
231
232 if ((p = strsep(&bp, ":")) != NULL) { /* too many */
233 fmt:
234 if (dowarn)
235 warnx("corrupted entry");
236 return 0;
237 }
238
239 return 1;
240 }
241