1 /* 2 * CDDL HEADER START 3 * 4 * The contents of this file are subject to the terms of the 5 * Common Development and Distribution License (the "License"). 6 * You may not use this file except in compliance with the License. 7 * 8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9 * or http://www.opensolaris.org/os/licensing. 10 * See the License for the specific language governing permissions 11 * and limitations under the License. 12 * 13 * When distributing Covered Code, include this CDDL HEADER in each 14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15 * If applicable, add the following below this CDDL HEADER, with the 16 * fields enclosed by brackets "[]" replaced with your own identifying 17 * information: Portions Copyright [yyyy] [name of copyright owner] 18 * 19 * CDDL HEADER END 20 */ 21 /* 22 * Copyright 2007 Sun Microsystems, Inc. All rights reserved. 23 * Use is subject to license terms. 24 */ 25 26 /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ 27 /* All Rights Reserved */ 28 29 30 #pragma ident "%Z%%M% %I% %E% SMI" 31 32 #include <sys/types.h> 33 #include <sys/param.h> 34 #include <sys/signal.h> 35 #include <sys/sysmacros.h> 36 #include <sys/stat.h> 37 #include <stdio.h> 38 #include <stdlib.h> 39 #include <string.h> 40 #include <ctype.h> 41 #include <locale.h> 42 #include <errno.h> 43 #include <unistd.h> 44 45 #define ERROR1 "Too many/few fields" 46 #define ERROR2 "Bad character(s) in logname" 47 #define ERROR2a "First char in logname not alphabetic" 48 #define ERROR2b "Logname field NULL" 49 #define ERROR2c "Logname contains no lower-case letters" 50 #define ERROR3 "Logname too long/short" 51 #define ERROR4 "Invalid UID" 52 #define ERROR5 "Invalid GID" 53 #define ERROR6 "Login directory not found" 54 #define ERROR6a "Login directory null" 55 #define ERROR7 "Optional shell file not found" 56 57 static int eflag, code = 0; 58 static int badc; 59 static int lc; 60 static char buf[512]; 61 static void error(char *); 62 63 int 64 main(int argc, char **argv) 65 { 66 int delim[512]; 67 char logbuf[512]; 68 FILE *fptr; 69 struct stat obuf; 70 uid_t uid; 71 gid_t gid; 72 int i, j, colons; 73 char *pw_file; 74 struct stat stat_buf; 75 char *str, *lastc; 76 77 (void) setlocale(LC_ALL, ""); 78 79 #if !defined(TEXT_DOMAIN) /* Should be defined by cc -D */ 80 #define TEXT_DOMAIN "SYS_TEST" 81 #endif 82 (void) textdomain(TEXT_DOMAIN); 83 84 if (argc == 1) 85 pw_file = "/etc/passwd"; 86 else 87 pw_file = argv[1]; 88 89 if ((fptr = fopen(pw_file, "r")) == NULL) { 90 (void) fprintf(stderr, gettext("cannot open %s\n"), pw_file); 91 exit(1); 92 } 93 94 if (fstat(fileno(fptr), &stat_buf) < 0) { 95 (void) fprintf(stderr, gettext("fstat failed for %s\n"), 96 pw_file); 97 (void) fclose(fptr); 98 exit(1); 99 } 100 101 if (stat_buf.st_size == 0) { 102 (void) fprintf(stderr, gettext("file %s is empty\n"), pw_file); 103 (void) fclose(fptr); 104 exit(1); 105 } 106 107 while (fgets(buf, sizeof (buf), fptr) != NULL) { 108 109 colons = 0; 110 badc = 0; 111 lc = 0; 112 eflag = 0; 113 114 /* Check that entry is not a nameservice redirection */ 115 116 if (buf[0] == '+' || buf[0] == '-') { 117 /* 118 * Should set flag here to allow special case checking 119 * in the rest of the code, 120 * but for now, we'll just ignore this entry. 121 */ 122 continue; 123 } 124 125 /* Check number of fields */ 126 127 for (i = 0; buf[i] != NULL; i++) 128 if (buf[i] == ':') { 129 delim[colons] = i; 130 ++colons; 131 } 132 133 if (colons != 6) { 134 error(ERROR1); 135 continue; 136 } 137 delim[6] = i - 1; 138 delim[7] = NULL; 139 140 /* 141 * Check the first char is alpha; the rest alphanumeric; 142 * and that the name does not consist solely of uppercase 143 * alpha chars 144 */ 145 if (buf[0] == ':') 146 error(ERROR2b); 147 else if (!isalpha(buf[0])) 148 error(ERROR2a); 149 150 for (i = 0; buf[i] != ':'; i++) { 151 if (!isalnum(buf[i]) && 152 buf[i] != '_' && 153 buf[i] != '-' && 154 buf[i] != '.') 155 badc++; 156 else if (islower(buf[i])) 157 lc++; 158 } 159 if (lc == 0) 160 error(ERROR2c); 161 if (badc > 0) 162 error(ERROR2); 163 164 /* Check for valid number of characters in logname */ 165 166 if (i <= 0 || i > 8) 167 error(ERROR3); 168 169 /* Check that UID is numeric and <= MAXUID */ 170 171 errno = 0; 172 str = &buf[delim[1] + 1]; 173 uid = strtol(str, &lastc, 10); 174 if (lastc != str + (delim[2] - delim[1]) - 1 || 175 uid > MAXUID || errno == ERANGE) 176 error(ERROR4); 177 178 /* Check that GID is numeric and <= MAXUID */ 179 180 errno = 0; 181 str = &buf[delim[2] + 1]; 182 gid = strtol(str, &lastc, 10); 183 if (lastc != str + (delim[3] - delim[2]) - 1 || 184 gid > MAXUID || errno == ERANGE) 185 error(ERROR5); 186 187 /* Check initial working directory */ 188 189 for (j = 0, i = (delim[4] + 1); i < delim[5]; j++, i++) 190 logbuf[j] = buf[i]; 191 logbuf[j] = '\0'; 192 193 if (logbuf[0] == NULL) 194 error(ERROR6a); 195 else if ((stat(logbuf, &obuf)) == -1) 196 error(ERROR6); 197 198 /* Check program to use as shell */ 199 200 if ((buf[(delim[5] + 1)]) != '\n') { 201 202 for (j = 0, i = (delim[5] + 1); i < delim[6]; j++, i++) 203 logbuf[j] = buf[i]; 204 logbuf[j] = '\0'; 205 206 if (strcmp(logbuf, "*") == 0) /* subsystem login */ 207 continue; 208 209 if ((stat(logbuf, &obuf)) == -1) 210 error(ERROR7); 211 212 for (j = 0; j < 512; j++) 213 logbuf[j] = NULL; 214 } 215 } 216 (void) fclose(fptr); 217 return (code); 218 } 219 220 /* Error printing routine */ 221 222 static void 223 error(char *msg) 224 { 225 if (!eflag) { 226 (void) fprintf(stderr, "\n%s", buf); 227 code = 1; 228 ++eflag; 229 } 230 if (!badc) 231 (void) fprintf(stderr, "\t%s\n", gettext(msg)); 232 else { 233 (void) fprintf(stderr, "\t%d %s\n", badc, gettext(msg)); 234 badc = 0; 235 } 236 }