usr.sbin/ppp/systems.c

193326Sed/*
193326Sed *	          System configuration routines
193326Sed *
193326Sed *	    Written by Toshiharu OHNO (tony-o@iij.ad.jp)
193326Sed *
193326Sed *   Copyright (C) 1993, Internet Initiative Japan, Inc. All rights reserverd.
193326Sed *
193326Sed * Redistribution and use in source and binary forms are permitted
193326Sed * provided that the above copyright notice and this paragraph are
193326Sed * duplicated in all such forms and that any documentation,
193326Sed * advertising materials, and other materials related to such
193326Sed * distribution and use acknowledge that the software was developed
193326Sed * by the Internet Initiative Japan, Inc.  The name of the
193326Sed * IIJ may not be used to endorse or promote products derived
193326Sed * from this software without specific prior written permission.
223017Sdim * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
263508Sdim * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
193326Sed * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
193326Sed *
193326Sed * $FreeBSD: head/usr.sbin/ppp/systems.c 55252 1999-12-30 03:36:11Z brian $
239462Sdim *
239462Sdim *  TODO:
193326Sed */
263508Sdim#include <sys/param.h>
193326Sed
193326Sed#include <ctype.h>
193326Sed#include <pwd.h>
198092Srdivacky#include <stdio.h>
193326Sed#include <stdlib.h>
193326Sed#include <string.h>
193326Sed#include <termios.h>
263508Sdim#include <unistd.h>
193326Sed
208600Srdivacky#include "defs.h"
208600Srdivacky#include "command.h"
249423Sdim#include "log.h"
263508Sdim#include "id.h"
249423Sdim#include "systems.h"
263508Sdim
249423Sdim#define issep(ch) ((ch) == ' ' || (ch) == '\t')
263508Sdim
249423SdimFILE *
249423SdimOpenSecret(const char *file)
249423Sdim{
263508Sdim  FILE *fp;
234353Sdim  char line[100];
263508Sdim
263508Sdim  snprintf(line, sizeof line, "%s/%s", _PATH_PPP, file);
193326Sed  fp = ID0fopen(line, "r");
193326Sed  if (fp == NULL)
193326Sed    log_Printf(LogWARN, "OpenSecret: Can't open %s.\n", line);
263508Sdim  return (fp);
263508Sdim}
263508Sdim
263508Sdimvoid
221345SdimCloseSecret(FILE *fp)
263508Sdim{
263508Sdim  fclose(fp);
263508Sdim}
263508Sdim
263508Sdim/* Move string from ``from'' to ``to'', interpreting ``~'' and $.... */
263508Sdimstatic const char *
263508SdimInterpretArg(const char *from, char *to)
263508Sdim{
263508Sdim  const char *env;
263508Sdim  char *ptr, *startto, *endto;
263508Sdim  int len;
263508Sdim
198092Srdivacky  startto = to;
239462Sdim  endto = to + LINE_LEN - 1;
239462Sdim
263508Sdim  while(issep(*from))
263508Sdim    from++;
239462Sdim
239462Sdim  if (*from == '~') {
263508Sdim    struct passwd *pwd;
263508Sdim
263508Sdim    ptr = strchr(++from, '/');
193326Sed    len = ptr ? ptr - from : strlen(from);
208600Srdivacky    if (len == 0) {
193326Sed      pwd = getpwuid(ID0realuid());
207619Srdivacky    } else {
203955Srdivacky      strncpy(to, from, len);
193326Sed      to[len] = '\0';
193326Sed      pwd = getpwnam(to);
193326Sed    }
198092Srdivacky    strncpy(to, pwd ? pwd->pw_dir : _PATH_PPP, endto - to);
198092Srdivacky    endpwent();
263508Sdim
193326Sed    *endto = '\0';
193326Sed    to += strlen(to);
193326Sed    from += len;
208600Srdivacky  }
208600Srdivacky
208600Srdivacky  while (to < endto && !issep(*from) && *from != '#' && *from != '\0') {
208600Srdivacky    if (*from == '$') {
208600Srdivacky      if (from[1] == '$') {
208600Srdivacky        *to = '\0';	/* For an empty var name below */
208600Srdivacky        from += 2;
208600Srdivacky      } else if (from[1] == '{') {
208600Srdivacky        ptr = strchr(from+2, '}');
208600Srdivacky        if (ptr) {
208600Srdivacky          len = ptr - from - 2;
208600Srdivacky          if (endto - to < len )
208600Srdivacky            len = endto - to;
263508Sdim          if (len) {
208600Srdivacky            strncpy(to, from+2, len);
208600Srdivacky            to[len] = '\0';
208600Srdivacky            from = ptr+1;
193326Sed          } else {
193326Sed            *to++ = *from++;
208600Srdivacky            continue;
193326Sed          }
208600Srdivacky        } else {
208600Srdivacky          *to++ = *from++;
193326Sed          continue;
193326Sed        }
198092Srdivacky      } else {
198092Srdivacky        ptr = to;
263508Sdim        for (from++; (isalnum(*from) || *from == '_') && ptr < endto; from++)
193326Sed          *ptr++ = *from;
193326Sed        *ptr = '\0';
193326Sed      }
193326Sed      if (*to == '\0')
263508Sdim        *to++ = '$';
263508Sdim      else if ((env = getenv(to)) != NULL) {
263508Sdim        strncpy(to, env, endto - to);
193326Sed        *endto = '\0';
193326Sed        to += strlen(to);
208600Srdivacky      }
193326Sed    } else {
208600Srdivacky      if (*from == '\\')
208600Srdivacky        from++;
193326Sed      *to++ = *from++;
207619Srdivacky    }
193326Sed  }
193326Sed
203955Srdivacky  while (to > startto) {
263508Sdim    to--;
193326Sed    if (!issep(*to)) {
193326Sed      to++;
208600Srdivacky      break;
193326Sed    }
208600Srdivacky  }
208600Srdivacky  *to = '\0';
193326Sed
207619Srdivacky  while (issep(*from))
193326Sed    from++;
193326Sed
203955Srdivacky  return from;
263508Sdim}
193326Sed
193326Sed#define CTRL_UNKNOWN (0)
208600Srdivacky#define CTRL_INCLUDE (1)
193326Sed
208600Srdivackystatic int
208600SrdivackyDecodeCtrlCommand(char *line, char *arg)
193326Sed{
207619Srdivacky  const char *end;
193326Sed
193326Sed  if (!strncasecmp(line, "include", 7) && issep(line[7])) {
203955Srdivacky    end = InterpretArg(line+8, arg);
263508Sdim    if (*end && *end != '#')
193326Sed      log_Printf(LogWARN, "Usage: !include filename\n");
193326Sed    else
208600Srdivacky      return CTRL_INCLUDE;
193326Sed  }
208600Srdivacky  return CTRL_UNKNOWN;
208600Srdivacky}
193326Sed
193326Sed/*
193326Sed * Initialised in system_IsValid(), set in ReadSystem(),
203955Srdivacky * used by system_IsValid()
263508Sdim */
193326Sedstatic int modeok;
193326Sedstatic int userok;
208600Srdivackystatic int modereq;
193326Sed
208600Srdivackyint
208600SrdivackyAllowUsers(struct cmdargs const *arg)
193326Sed{
193326Sed  /* arg->bundle may be NULL (see system_IsValid()) ! */
234353Sdim  int f;
193326Sed  struct passwd *pwd;
203955Srdivacky
263508Sdim  userok = 0;
193326Sed  pwd = getpwuid(ID0realuid());
193326Sed  if (pwd != NULL)
193326Sed    for (f = arg->argn; f < arg->argc; f++)
234353Sdim      if (!strcmp("*", arg->argv[f]) || !strcmp(pwd->pw_name, arg->argv[f])) {
234353Sdim        userok = 1;
234353Sdim        break;
234353Sdim      }
234353Sdim  endpwent();
234353Sdim
234353Sdim  return 0;
234353Sdim}
234353Sdim
234353Sdimint
234353SdimAllowModes(struct cmdargs const *arg)
263508Sdim{
234353Sdim  /* arg->bundle may be NULL (see system_IsValid()) ! */
234353Sdim  int f, mode, allowed;
234353Sdim
263508Sdim  allowed = 0;
234353Sdim  for (f = arg->argn; f < arg->argc; f++) {
234353Sdim    mode = Nam2mode(arg->argv[f]);
234353Sdim    if (mode == PHYS_NONE || mode == PHYS_ALL)
234353Sdim      log_Printf(LogWARN, "allow modes: %s: Invalid mode\n", arg->argv[f]);
234353Sdim    else
234353Sdim      allowed |= mode;
234353Sdim  }
234353Sdim
234353Sdim  modeok = modereq & allowed ? 1 : 0;
234353Sdim  return 0;
234353Sdim}
234353Sdim
263508Sdimstatic char *
234353Sdimstrip(char *line)
234353Sdim{
234353Sdim  int len;
263508Sdim
234353Sdim  len = strlen(line);
234353Sdim  while (len && (line[len-1] == '\n' || line[len-1] == '\r' ||
234353Sdim                 issep(line[len-1])))
234353Sdim    line[--len] = '\0';
234353Sdim
193326Sed  while (issep(*line))
243830Sdim    line++;
243830Sdim
208600Srdivacky  if (*line == '#')
234353Sdim    *line = '\0';
198092Srdivacky
263508Sdim  return line;
263508Sdim}
198092Srdivacky
198092Srdivackystatic int
198092Srdivackyxgets(char *buf, int buflen, FILE *fp)
198092Srdivacky{
198092Srdivacky  int len, n;
193326Sed
208600Srdivacky  n = 0;
208600Srdivacky  while (fgets(buf, buflen-1, fp)) {
198092Srdivacky    n++;
198092Srdivacky    buf[buflen-1] = '\0';
208600Srdivacky    len = strlen(buf);
193326Sed    while (len && (buf[len-1] == '\n' || buf[len-1] == '\r'))
208600Srdivacky      buf[--len] = '\0';
208600Srdivacky    if (len && buf[len-1] == '\\') {
193326Sed      buf += len - 1;
193326Sed      buflen -= len - 1;
193326Sed      if (!buflen)        /* No buffer space */
193326Sed        break;
198092Srdivacky    } else
198092Srdivacky      break;
263508Sdim  }
193326Sed  return n;
193326Sed}
193326Sed
208600Srdivacky/* Values for ``how'' in ReadSystem */
243830Sdim#define SYSTEM_EXISTS	1
263508Sdim#define SYSTEM_VALIDATE	2
263508Sdim#define SYSTEM_EXEC	3
263508Sdim
193326Sedstatic char *
193326SedGetLabel(char *line, const char *filename, int linenum)
208600Srdivacky{
193326Sed  char *argv[MAXARGS];
193326Sed  int argc, len;
234353Sdim
193326Sed  argc = MakeArgs(line, argv, MAXARGS, PARSE_REDUCE);
193326Sed
198092Srdivacky  if (argc == 2 && !strcmp(argv[1], ":"))
198092Srdivacky    return argv[0];
263508Sdim
193326Sed  if (argc != 1 || (len = strlen(argv[0])) < 2 || argv[0][len-1] != ':') {
193326Sed      log_Printf(LogWARN, "Bad label in %s (line %d) - missing colon\n",
193326Sed                 filename, linenum);
208600Srdivacky      return NULL;
193326Sed  }
208600Srdivacky  argv[0][len-1] = '\0';	/* Lose the ':' */
193326Sed
193326Sed  return argv[0];
193326Sed}
193326Sed
198092Srdivacky/* Returns -2 for ``file not found'' and -1 for ``label not found'' */
198092Srdivacky
263508Sdimstatic int
193326SedReadSystem(struct bundle *bundle, const char *name, const char *file,
193326Sed           struct prompt *prompt, struct datalink *cx, int how)
210299Sed{
210299Sed  FILE *fp;
210299Sed  char *cp;
210299Sed  int n, len;
210299Sed  char line[LINE_LEN];
210299Sed  char filename[MAXPATHLEN];
210299Sed  int linenum;
249423Sdim  int argc;
210299Sed  char *argv[MAXARGS];
210299Sed  int allowcmd;
210299Sed  int indent;
210299Sed  char arg[LINE_LEN];
263508Sdim  struct prompt *op;
210299Sed
210299Sed  if (*file == '/')
226633Sdim    snprintf(filename, sizeof filename, "%s", file);
226633Sdim  else
226633Sdim    snprintf(filename, sizeof filename, "%s/%s", _PATH_PPP, file);
226633Sdim  fp = ID0fopen(filename, "r");
249423Sdim  if (fp == NULL) {
226633Sdim    log_Printf(LogDEBUG, "ReadSystem: Can't open %s.\n", filename);
226633Sdim    return -2;
226633Sdim  }
226633Sdim  log_Printf(LogDEBUG, "ReadSystem: Checking %s (%s).\n", name, filename);
249423Sdim
249423Sdim  linenum = 0;
263508Sdim  while ((n = xgets(line, sizeof line, fp))) {
249423Sdim    linenum += n;
226633Sdim    if (issep(*line))
226633Sdim      continue;
193326Sed
193326Sed    cp = strip(line);
195341Sed
195341Sed    switch (*cp) {
208600Srdivacky    case '\0':			/* empty/comment */
195341Sed      break;
208600Srdivacky
208600Srdivacky    case '!':
195341Sed      switch (DecodeCtrlCommand(cp+1, arg)) {
195341Sed      case CTRL_INCLUDE:
195341Sed        log_Printf(LogCOMMAND, "%s: Including \"%s\"\n", filename, arg);
195341Sed        n = ReadSystem(bundle, name, arg, prompt, cx, how);
198092Srdivacky        log_Printf(LogCOMMAND, "%s: Done include of \"%s\"\n", filename, arg);
198092Srdivacky        if (!n)
263508Sdim          return 0;	/* got it */
195341Sed        break;
195341Sed      default:
208600Srdivacky        log_Printf(LogWARN, "%s: %s: Invalid command\n", filename, cp);
195341Sed        break;
208600Srdivacky      }
195341Sed      break;
195341Sed
234353Sdim    default:
195341Sed      if ((cp = GetLabel(cp, filename, linenum)) == NULL)
195341Sed        continue;
198092Srdivacky
198092Srdivacky      if (strcmp(cp, name) == 0) {
263508Sdim        /* We're in business */
195341Sed        if (how == SYSTEM_EXISTS)
195341Sed	  return 0;
198092Srdivacky	while ((n = xgets(line, sizeof line, fp))) {
195341Sed          linenum += n;
239462Sdim          indent = issep(*line);
239462Sdim          cp = strip(line);
239462Sdim
239462Sdim          if (*cp == '\0')			/* empty / comment */
239462Sdim            continue;
239462Sdim
239462Sdim          if (!indent) {			/* start of next section */
239462Sdim            if (*cp != '!' && how == SYSTEM_EXEC)
239462Sdim              cp = GetLabel(cp, filename, linenum);
239462Sdim            break;
239462Sdim          }
239462Sdim
263508Sdim          len = strlen(cp);
239462Sdim          if ((argc = command_Interpret(cp, len, argv)) < 0)
239462Sdim            log_Printf(LogWARN, "%s: %d: Syntax error\n", filename, linenum);
239462Sdim          else {
239462Sdim            allowcmd = argc > 0 && !strcasecmp(argv[0], "allow");
239462Sdim            if ((how != SYSTEM_EXEC && allowcmd) ||
239462Sdim                (how == SYSTEM_EXEC && !allowcmd)) {
239462Sdim              /*
239462Sdim               * Disable any context so that warnings are given to everyone,
239462Sdim               * including syslog.
239462Sdim               */
239462Sdim              op = log_PromptContext;
239462Sdim              log_PromptContext = NULL;
263508Sdim	      command_Run(bundle, argc, (char const *const *)argv, prompt,
239462Sdim                          name, cx);
239462Sdim              log_PromptContext = op;
239462Sdim            }
239462Sdim          }
193326Sed        }
193326Sed
208600Srdivacky	fclose(fp);  /* everything read - get out */
193326Sed	return 0;
208600Srdivacky      }
208600Srdivacky      break;
193326Sed    }
193326Sed  }
193326Sed  fclose(fp);
193326Sed  return -1;
198092Srdivacky}
198092Srdivacky
263508Sdimconst char *
193326Sedsystem_IsValid(const char *name, struct prompt *prompt, int mode)
193326Sed{
208600Srdivacky  /*
193326Sed   * Note:  The ReadSystem() calls only result in calls to the Allow*
208600Srdivacky   * functions.  arg->bundle will be set to NULL for these commands !
193326Sed   */
193326Sed  int def, how, rs;
234353Sdim
193326Sed  def = !strcmp(name, "default");
193326Sed  how = ID0realuid() == 0 ? SYSTEM_EXISTS : SYSTEM_VALIDATE;
198092Srdivacky  userok = 0;
198092Srdivacky  modeok = 1;
263508Sdim  modereq = mode;
193326Sed
193326Sed  rs = ReadSystem(NULL, "default", CONFFILE, prompt, NULL, how);
198092Srdivacky
193326Sed  if (!def) {
218893Sdim    if (rs == -1)
218893Sdim      rs = 0;		/* we don't care that ``default'' doesn't exist */
218893Sdim
223017Sdim    if (rs == 0)
218893Sdim      rs = ReadSystem(NULL, name, CONFFILE, prompt, NULL, how);
234353Sdim
234353Sdim    if (rs == -1)
218893Sdim      return "Configuration label not found";
218893Sdim
218893Sdim    if (rs == -2)
218893Sdim      return _PATH_PPP "/" CONFFILE ": File not found";
218893Sdim  }
218893Sdim
263508Sdim  if (how == SYSTEM_EXISTS)
218893Sdim    userok = modeok = 1;
218893Sdim
218893Sdim  if (!userok)
223017Sdim    return "User access denied";
218893Sdim
234353Sdim  if (!modeok)
234353Sdim    return "Mode denied for this label";
218893Sdim
218893Sdim  return NULL;
234353Sdim}
218893Sdim
218893Sdimint
218893Sdimsystem_Select(struct bundle *bundle, const char *name, const char *file,
218893Sdim             struct prompt *prompt, struct datalink *cx)
263508Sdim{
218893Sdim  userok = modeok = 1;
218893Sdim  modereq = PHYS_ALL;
218893Sdim  return ReadSystem(bundle, name, file, prompt, cx, SYSTEM_EXEC);
218893Sdim}
249423Sdim