[apple/system_cmds.git] / vipw.tproj / pw_util.c

/*
 * Copyright (c) 1999 Apple Computer, Inc. All rights reserved.
 *
 * @APPLE_LICENSE_HEADER_START@
 * 
 * "Portions Copyright (c) 1999 Apple Computer, Inc.  All Rights
 * Reserved.  This file contains Original Code and/or Modifications of
 * Original Code as defined in and that are subject to the Apple Public
 * Source License Version 1.0 (the 'License').  You may not use this file
 * except in compliance with the License.  Please obtain a copy of the
 * License at http://www.apple.com/publicsource and read it before using
 * this file.
 * 
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT.  Please see the
 * License for the specific language governing rights and limitations
 * under the License."
 * 
 * @APPLE_LICENSE_HEADER_END@
 */
/*-
 * Copyright (c) 1990, 1993, 1994
 *	The Regents of the University of California.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *	This product includes software developed by the University of
 *	California, Berkeley and its contributors.
 * 4. Neither the name of the University nor the names of its contributors
 *    may be used to endorse or promote products derived from this software
 *    without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 */

#ifndef lint
static char sccsid[] = "@(#)pw_util.c	8.4 (Berkeley) 4/28/95";
#endif /* not lint */

/*
 * This file is used by all the "password" programs; vipw(8), chpass(1),
 * and passwd(1).
 */

#include <sys/param.h>
#include <sys/time.h>
#include <sys/resource.h>
#include <sys/stat.h>
#include <sys/wait.h>

#include <err.h>
#include <errno.h>
#include <fcntl.h>
#include <paths.h>
#include <pwd.h>
#include <signal.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>

#include "pw_util.h"

extern char *tempname;
static pid_t editpid = -1;
static int lockfd;

void
pw_cont(sig)
	int sig;
{

	if (editpid != -1)
		kill(editpid, sig);
}

void
pw_init()
{
	struct rlimit rlim;

	/* Unlimited resource limits. */
	rlim.rlim_cur = rlim.rlim_max = RLIM_INFINITY;
	(void)setrlimit(RLIMIT_CPU, &rlim);
	(void)setrlimit(RLIMIT_FSIZE, &rlim);
	(void)setrlimit(RLIMIT_STACK, &rlim);
	(void)setrlimit(RLIMIT_DATA, &rlim);
	(void)setrlimit(RLIMIT_RSS, &rlim);

	/* Don't drop core (not really necessary, but GP's). */
	rlim.rlim_cur = rlim.rlim_max = 0;
	(void)setrlimit(RLIMIT_CORE, &rlim);

	/* Turn off signals. */
	(void)signal(SIGALRM, SIG_IGN);
	(void)signal(SIGHUP, SIG_IGN);
	(void)signal(SIGINT, SIG_IGN);
	(void)signal(SIGPIPE, SIG_IGN);
	(void)signal(SIGQUIT, SIG_IGN);
	(void)signal(SIGTERM, SIG_IGN);
	(void)signal(SIGCONT, pw_cont);

	/* Create with exact permissions. */
	(void)umask(0);
}

int
pw_lock()
{
	/* 
	 * If the master password file doesn't exist, the system is hosed.
	 * Might as well try to build one.  Set the close-on-exec bit so
	 * that users can't get at the encrypted passwords while editing.
	 * Open should allow flock'ing the file; see 4.4BSD.	XXX
	 */
	lockfd = open(_PATH_MASTERPASSWD, O_RDONLY, 0);
	if (lockfd < 0 || fcntl(lockfd, F_SETFD, 1) == -1)
		err(1, "%s", _PATH_MASTERPASSWD);
	if (flock(lockfd, LOCK_EX|LOCK_NB))
		errx(1, "the password db file is busy");
	return (lockfd);
}

int
pw_tmp()
{
	static char path[MAXPATHLEN] = _PATH_MASTERPASSWD;
	int fd;
	char *p;

	if (p = strrchr(path, '/'))
		++p;
	else
		p = path;
	strcpy(p, "pw.XXXXXX");
	if ((fd = mkstemp(path)) == -1)
		err(1, "%s", path);
	tempname = path;
	return (fd);
}

int
pw_mkdb()
{
	int pstat;
	pid_t pid;

	warnx("rebuilding the database...");
	(void)fflush(stderr);
	if (!(pid = vfork())) {
		execl(_PATH_PWD_MKDB, "pwd_mkdb", "-p", tempname, NULL);
		pw_error(_PATH_PWD_MKDB, 1, 1);
	}
	pid = waitpid(pid, &pstat, 0);
	if (pid == -1 || !WIFEXITED(pstat) || WEXITSTATUS(pstat) != 0)
		return (1);
	warnx("done");
	return (0);
}

void
pw_edit(notsetuid)
	int notsetuid;
{
	int pstat;
	char *p, *editor;

	if (!(editor = getenv("EDITOR")))
		editor = _PATH_VI;
	if (p = strrchr(editor, '/'))
		++p;
	else 
		p = editor;

	if (!(editpid = vfork())) {
		if (notsetuid) {
			(void)setgid(getgid());
			(void)setuid(getuid());
		}
		execlp(editor, p, tempname, NULL);
		_exit(1);
	}
	for (;;) {
		editpid = waitpid(editpid, (int *)&pstat, WUNTRACED);
		if (editpid == -1)
			pw_error(editor, 1, 1);
		else if (WIFSTOPPED(pstat))
			raise(WSTOPSIG(pstat));
		else if (WIFEXITED(pstat) && WEXITSTATUS(pstat) == 0)
			break;
		else
			pw_error(editor, 1, 1);
	}
	editpid = -1;
}

void
pw_prompt()
{
	int c;

	(void)printf("re-edit the password file? [y]: ");
	(void)fflush(stdout);
	c = getchar();
	if (c != EOF && c != '\n')
		while (getchar() != '\n');
	if (c == 'n')
		pw_error(NULL, 0, 0);
}

void
pw_error(name, err, eval)
	char *name;
	int err, eval;
{
	if (err)
		warn(name);

	warnx("%s: unchanged", _PATH_MASTERPASSWD);
	(void)unlink(tempname);
	exit(eval);
}
Commit	Line	Data
1815bff5 A	1	/*
	2	* Copyright (c) 1999 Apple Computer, Inc. All rights reserved.
	3	*
	4	* @APPLE_LICENSE_HEADER_START@
	5	*
	6	* "Portions Copyright (c) 1999 Apple Computer, Inc. All Rights
	7	* Reserved. This file contains Original Code and/or Modifications of
	8	* Original Code as defined in and that are subject to the Apple Public
	9	* Source License Version 1.0 (the 'License'). You may not use this file
	10	* except in compliance with the License. Please obtain a copy of the
	11	* License at http://www.apple.com/publicsource and read it before using
	12	* this file.
	13	*
	14	* The Original Code and all software distributed under the License are
	15	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
	16	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
	17	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
	18	* FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT. Please see the
	19	* License for the specific language governing rights and limitations
	20	* under the License."
	21	*
	22	* @APPLE_LICENSE_HEADER_END@
	23	*/
	24	/*-
	25	* Copyright (c) 1990, 1993, 1994
	26	* The Regents of the University of California. All rights reserved.
	27	*
	28	* Redistribution and use in source and binary forms, with or without
	29	* modification, are permitted provided that the following conditions
	30	* are met:
	31	* 1. Redistributions of source code must retain the above copyright
	32	* notice, this list of conditions and the following disclaimer.
	33	* 2. Redistributions in binary form must reproduce the above copyright
	34	* notice, this list of conditions and the following disclaimer in the
	35	* documentation and/or other materials provided with the distribution.
	36	* 3. All advertising materials mentioning features or use of this software
	37	* must display the following acknowledgement:
	38	* This product includes software developed by the University of
	39	* California, Berkeley and its contributors.
	40	* 4. Neither the name of the University nor the names of its contributors
	41	* may be used to endorse or promote products derived from this software
	42	* without specific prior written permission.
	43	*
	44	* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
	45	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	46	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	47	* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
	48	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	49	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	50	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	51	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	52	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	53	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	54	* SUCH DAMAGE.
	55	*/
	56
	57	#ifndef lint
	58	static char sccsid[] = "@(#)pw_util.c 8.4 (Berkeley) 4/28/95";
	59	#endif /* not lint */
	60
	61	/*
	62	* This file is used by all the "password" programs; vipw(8), chpass(1),
	63	* and passwd(1).
	64	*/
65
66	#include <sys/param.h>
67	#include <sys/time.h>
68	#include <sys/resource.h>
69	#include <sys/stat.h>
70	#include <sys/wait.h>
71
72	#include <err.h>
73	#include <errno.h>
74	#include <fcntl.h>
75	#include <paths.h>
76	#include <pwd.h>
77	#include <signal.h>
78	#include <stdio.h>
79	#include <stdlib.h>
80	#include <string.h>
81	#include <unistd.h>
82
83	#include "pw_util.h"
84
85	extern char *tempname;
86	static pid_t editpid = -1;
87	static int lockfd;
88
89	void
90	pw_cont(sig)
91	int sig;
92	{
93
94	if (editpid != -1)
95	kill(editpid, sig);
96	}
97
98	void
99	pw_init()
100	{
101	struct rlimit rlim;
102
103	/* Unlimited resource limits. */
104	rlim.rlim_cur = rlim.rlim_max = RLIM_INFINITY;
105	(void)setrlimit(RLIMIT_CPU, &rlim);
106	(void)setrlimit(RLIMIT_FSIZE, &rlim);
107	(void)setrlimit(RLIMIT_STACK, &rlim);
108	(void)setrlimit(RLIMIT_DATA, &rlim);
109	(void)setrlimit(RLIMIT_RSS, &rlim);
110
111	/* Don't drop core (not really necessary, but GP's). */
112	rlim.rlim_cur = rlim.rlim_max = 0;
113	(void)setrlimit(RLIMIT_CORE, &rlim);
114
115	/* Turn off signals. */
116	(void)signal(SIGALRM, SIG_IGN);
117	(void)signal(SIGHUP, SIG_IGN);
118	(void)signal(SIGINT, SIG_IGN);
119	(void)signal(SIGPIPE, SIG_IGN);
120	(void)signal(SIGQUIT, SIG_IGN);
121	(void)signal(SIGTERM, SIG_IGN);
122	(void)signal(SIGCONT, pw_cont);
123
124	/* Create with exact permissions. */
125	(void)umask(0);
126	}
127
128	int
129	pw_lock()
130	{
131	/*
132	* If the master password file doesn't exist, the system is hosed.
133	* Might as well try to build one. Set the close-on-exec bit so
134	* that users can't get at the encrypted passwords while editing.
135	* Open should allow flock'ing the file; see 4.4BSD. XXX
136	*/
137	lockfd = open(_PATH_MASTERPASSWD, O_RDONLY, 0);
138	if (lockfd < 0 \|\| fcntl(lockfd, F_SETFD, 1) == -1)
139	err(1, "%s", _PATH_MASTERPASSWD);
140	if (flock(lockfd, LOCK_EX\|LOCK_NB))
141	errx(1, "the password db file is busy");
142	return (lockfd);
143	}
144
145	int
146	pw_tmp()
147	{
148	static char path[MAXPATHLEN] = _PATH_MASTERPASSWD;
149	int fd;
150	char *p;
151
152	if (p = strrchr(path, '/'))
153	++p;
154	else
155	p = path;
156	strcpy(p, "pw.XXXXXX");
157	if ((fd = mkstemp(path)) == -1)
158	err(1, "%s", path);
159	tempname = path;
160	return (fd);
161	}
162
163	int
164	pw_mkdb()
165	{
166	int pstat;
167	pid_t pid;
168
169	warnx("rebuilding the database...");
170	(void)fflush(stderr);
171	if (!(pid = vfork())) {
172	execl(_PATH_PWD_MKDB, "pwd_mkdb", "-p", tempname, NULL);
173	pw_error(_PATH_PWD_MKDB, 1, 1);
174	}
175	pid = waitpid(pid, &pstat, 0);
176	if (pid == -1 \|\| !WIFEXITED(pstat) \|\| WEXITSTATUS(pstat) != 0)
177	return (1);
178	warnx("done");
179	return (0);
180	}
181
182	void
183	pw_edit(notsetuid)
184	int notsetuid;
185	{
186	int pstat;
187	char p, editor;
188
189	if (!(editor = getenv("EDITOR")))
190	editor = _PATH_VI;
191	if (p = strrchr(editor, '/'))
192	++p;
193	else
194	p = editor;
195
196	if (!(editpid = vfork())) {
197	if (notsetuid) {
198	(void)setgid(getgid());
199	(void)setuid(getuid());
200	}
201	execlp(editor, p, tempname, NULL);
202	_exit(1);
203	}
204	for (;;) {
205	editpid = waitpid(editpid, (int *)&pstat, WUNTRACED);
206	if (editpid == -1)
207	pw_error(editor, 1, 1);
208	else if (WIFSTOPPED(pstat))
209	raise(WSTOPSIG(pstat));
210	else if (WIFEXITED(pstat) && WEXITSTATUS(pstat) == 0)
211	break;
212	else
213	pw_error(editor, 1, 1);
214	}
215	editpid = -1;
216	}
217
218	void
219	pw_prompt()
220	{
221	int c;
222
223	(void)printf("re-edit the password file? [y]: ");
224	(void)fflush(stdout);
225	c = getchar();
226	if (c != EOF && c != '\n')
227	while (getchar() != '\n');
228	if (c == 'n')
229	pw_error(NULL, 0, 0);
230	}
231
232	void
233	pw_error(name, err, eval)
234	char *name;
235	int err, eval;
236	{
237	if (err)
238	warn(name);
239
240	warnx("%s: unchanged", _PATH_MASTERPASSWD);
241	(void)unlink(tempname);
242	exit(eval);
243	}