usr.bin/at/perm.c

10154Sache/*
7767Sache *  perm.c - check user permission for at(1)
7767Sache *  Copyright (C) 1994  Thomas Koenig
7767Sache *
7767Sache * Redistribution and use in source and binary forms, with or without
7767Sache * modification, are permitted provided that the following conditions
7767Sache * are met:
7767Sache * 1. Redistributions of source code must retain the above copyright
7767Sache *    notice, this list of conditions and the following disclaimer.
7767Sache * 2. The name of the author(s) may not be used to endorse or promote
7767Sache *    products derived from this software without specific prior written
7767Sache *    permission.
7767Sache *
7767Sache * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR
7767Sache * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
7767Sache * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
10154Sache * IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, INDIRECT,
7767Sache * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
7767Sache * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
7767Sache * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
7767Sache * THEORY OF LIABILITY, WETHER IN CONTRACT, STRICT LIABILITY, OR TORT
7767Sache * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
7767Sache * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
7767Sache */
7767Sache
87230Smarkm#include <sys/cdefs.h>
87230Smarkm__FBSDID("$FreeBSD$");
87230Smarkm
7767Sache/* System Headers */
7767Sache
7767Sache#include <sys/types.h>
54158Scharnier#include <err.h>
7767Sache#include <errno.h>
7767Sache#include <pwd.h>
7767Sache#include <stddef.h>
7767Sache#include <stdio.h>
7767Sache#include <stdlib.h>
7767Sache#include <string.h>
7767Sache#include <unistd.h>
7767Sache
7767Sache/* Local headers */
7767Sache
87208Smarkm#include "at.h"
87208Smarkm#include "perm.h"
7767Sache#include "privs.h"
7767Sache
7767Sache/* Macros */
7767Sache
7767Sache#define MAXUSERID 10
7767Sache
7767Sache/* Structures and unions */
7767Sache
7767Sache/* Function declarations */
7767Sache
7767Sachestatic int check_for_user(FILE *fp,const char *name);
7767Sache
7767Sache/* Local functions */
7767Sache
7767Sachestatic int check_for_user(FILE *fp,const char *name)
7767Sache{
7767Sache    char *buffer;
7767Sache    size_t len;
7767Sache    int found = 0;
7767Sache
7767Sache    len = strlen(name);
80294Sobrien    if ((buffer = malloc(len+2)) == NULL)
80294Sobrien	errx(EXIT_FAILURE, "virtual memory exhausted");
7767Sache
7767Sache    while(fgets(buffer, len+2, fp) != NULL)
7767Sache    {
7767Sache	if ((strncmp(name, buffer, len) == 0) &&
7767Sache	    (buffer[len] == '\n'))
7767Sache	{
7767Sache	    found = 1;
7767Sache	    break;
7767Sache	}
7767Sache    }
7767Sache    fclose(fp);
7767Sache    free(buffer);
7767Sache    return found;
7767Sache}
7767Sache/* Global functions */
87208Smarkmint check_permission(void)
7767Sache{
7767Sache    FILE *fp;
7767Sache    uid_t uid = geteuid();
7767Sache    struct passwd *pentry;
7767Sache
7767Sache    if (uid==0)
7767Sache	return 1;
7767Sache
7767Sache    if ((pentry = getpwuid(uid)) == NULL)
54158Scharnier	err(EXIT_FAILURE, "cannot access user database");
7767Sache
7767Sache    PRIV_START
7767Sache
7767Sache    fp=fopen(PERM_PATH "at.allow","r");
7767Sache
7767Sache    PRIV_END
7767Sache
7767Sache    if (fp != NULL)
7767Sache    {
7767Sache	return check_for_user(fp, pentry->pw_name);
7767Sache    }
48386Sbillf    else if (errno == ENOENT)
7767Sache    {
7767Sache
7767Sache	PRIV_START
7767Sache
7767Sache	fp=fopen(PERM_PATH "at.deny", "r");
7767Sache
7767Sache	PRIV_END
7767Sache
7767Sache	if (fp != NULL)
7767Sache	{
7767Sache	    return !check_for_user(fp, pentry->pw_name);
7767Sache	}
48386Sbillf	else if (errno != ENOENT)
54158Scharnier	    warn("at.deny");
7767Sache    }
48386Sbillf    else
54158Scharnier	warn("at.allow");
7767Sache    return 0;
7767Sache}