1/* $NetBSD: pw_scan.c,v 1.22 2009/01/29 10:41:39 enami Exp $ */ 2 3/* 4 * Copyright (c) 1987, 1993, 1994, 1995 5 * The Regents of the University of California. All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 3. Neither the name of the University nor the names of its contributors 16 * may be used to endorse or promote products derived from this software 17 * without specific prior written permission. 18 * 19 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 22 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 29 * SUCH DAMAGE. 30 */ 31 32#if HAVE_NBTOOL_CONFIG_H 33#include "nbtool_config.h" 34#include "compat_pwd.h" 35 36#else 37#include <sys/cdefs.h> 38#if defined(LIBC_SCCS) && !defined(lint) 39__RCSID("$NetBSD: pw_scan.c,v 1.22 2009/01/29 10:41:39 enami Exp $"); 40#endif /* LIBC_SCCS and not lint */ 41 42#if defined(_LIBC) 43#include "namespace.h" 44#endif 45#include <sys/types.h> 46 47#include <assert.h> 48#include <err.h> 49#include <limits.h> 50#include <pwd.h> 51#include <stdio.h> 52#include <stdlib.h> 53#include <string.h> 54#include <unistd.h> 55#include <errno.h> 56 57#ifdef _LIBC 58#include "pw_private.h" 59#endif 60#endif /* ! HAVE_NBTOOL_CONFIG_H */ 61 62static int 63gettime(time_t *res, const char *p, int *flags, int dowarn, int flag) 64{ 65 long long l; 66 char *ep; 67 const char *vp; 68 69 if (*p == '\0') { 70 *flags |= flag; 71 *res = 0; 72 return 1; 73 } 74 l = strtoll(p, &ep, 0); 75 if (p == ep || *ep != '\0') { 76 vp = "Invalid number"; 77 goto done; 78 } 79 if (errno == ERANGE && (l == LLONG_MAX || l == LLONG_MIN)) { 80 vp = strerror(errno); 81 goto done; 82 } 83 _DIAGASSERT(__type_fit(time_t, l)); 84 *res = (time_t)l; 85 return 1; 86done: 87 if (dowarn) { 88 warnx("%s `%s' for %s time", vp, p, 89 flag == _PASSWORD_NOEXP ? "expiration" : "change"); 90 } 91 return 0; 92 93} 94 95static int 96getid(unsigned long *res, const char *p, int *flags, int dowarn, int flag) 97{ 98 unsigned long ul; 99 char *ep; 100 101 if (*p == '\0') { 102 *flags |= flag; 103 *res = 0; 104 return 1; 105 } 106 ul = strtoul(p, &ep, 0); 107 if (p == ep || *ep != '\0') { 108 ep = __UNCONST("Invalid number"); 109 goto done; 110 } 111 if (errno == ERANGE && ul == ULONG_MAX) { 112 ep = strerror(errno); 113 goto done; 114 } 115 if (ul > *res) { 116 ep = strerror(ERANGE); 117 goto done; 118 } 119 120 *res = ul; 121 return 1; 122done: 123 if (dowarn) 124 warnx("%s %s `%s'", ep, 125 flag == _PASSWORD_NOUID ? "uid" : "gid", p); 126 return 0; 127 128} 129 130int 131#ifdef _LIBC 132__pw_scan(char *bp, struct passwd *pw, int *flags) 133#else 134pw_scan( char *bp, struct passwd *pw, int *flags) 135#endif 136{ 137 unsigned long id; 138 time_t ti; 139 int root, inflags; 140 int dowarn; 141 const char *p, *sh; 142 143 _DIAGASSERT(bp != NULL); 144 _DIAGASSERT(pw != NULL); 145 146 if (flags) { 147 inflags = *flags; 148 *flags = 0; 149 } else { 150 inflags = 0; 151 flags = &inflags; 152 } 153 dowarn = !(inflags & _PASSWORD_NOWARN); 154 155 if (!(pw->pw_name = strsep(&bp, ":"))) /* login */ 156 goto fmt; 157 if (strlen(pw->pw_name) > (LOGIN_NAME_MAX - 1)) { 158 if (dowarn) 159 warnx("username too long, `%s' > %d", pw->pw_name, 160 LOGIN_NAME_MAX - 1); 161 return 0; 162 } 163 164 root = !strcmp(pw->pw_name, "root"); 165 166 if (!(pw->pw_passwd = strsep(&bp, ":"))) /* passwd */ 167 goto fmt; 168 169 if (!(p = strsep(&bp, ":"))) /* uid */ 170 goto fmt; 171 172 id = UID_MAX; 173 if (!getid(&id, p, flags, dowarn, _PASSWORD_NOUID)) 174 return 0; 175 176 if (root && id) { 177 if (dowarn) 178 warnx("root uid should be 0"); 179 return 0; 180 } 181 182 pw->pw_uid = (uid_t)id; 183 184 if (!(p = strsep(&bp, ":"))) /* gid */ 185 goto fmt; 186 187 id = GID_MAX; 188 if (!getid(&id, p, flags, dowarn, _PASSWORD_NOGID)) 189 return 0; 190 191 pw->pw_gid = (gid_t)id; 192 193 if (inflags & _PASSWORD_OLDFMT) { 194 pw->pw_class = __UNCONST(""); 195 pw->pw_change = 0; 196 pw->pw_expire = 0; 197 *flags |= (_PASSWORD_NOCHG | _PASSWORD_NOEXP); 198 } else { 199 pw->pw_class = strsep(&bp, ":"); /* class */ 200 if (!(p = strsep(&bp, ":"))) /* change */ 201 goto fmt; 202 if (!gettime(&ti, p, flags, dowarn, _PASSWORD_NOCHG)) 203 return 0; 204 pw->pw_change = ti; 205 206 if (!(p = strsep(&bp, ":"))) /* expire */ 207 goto fmt; 208 if (!gettime(&ti, p, flags, dowarn, _PASSWORD_NOEXP)) 209 return 0; 210 pw->pw_expire = ti; 211 } 212 213 pw->pw_gecos = strsep(&bp, ":"); /* gecos */ 214 pw->pw_dir = strsep(&bp, ":"); /* directory */ 215 if (!(pw->pw_shell = strsep(&bp, ":"))) /* shell */ 216 goto fmt; 217 218#if ! HAVE_NBTOOL_CONFIG_H 219 p = pw->pw_shell; 220 if (root && *p) /* empty == /bin/sh */ 221 for (setusershell();;) { 222 if (!(sh = getusershell())) { 223 if (dowarn) 224 warnx("warning, unknown root shell"); 225 break; 226 } 227 if (!strcmp(p, sh)) 228 break; 229 } 230#endif 231 232 if ((p = strsep(&bp, ":")) != NULL) { /* too many */ 233fmt: 234 if (dowarn) 235 warnx("corrupted entry"); 236 return 0; 237 } 238 239 return 1; 240} 241