2 * Copyright (c) 1990, 1993, 1994
3 * The Regents of the University of California. All rights reserved.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. All advertising materials mentioning features or use of this software
14 * must display the following acknowledgement:
15 * This product includes software developed by the University of
16 * California, Berkeley and its contributors.
17 * 4. Neither the name of the University nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 static const char sccsid[] = "@(#)pw_copy.c 8.4 (Berkeley) 4/2/94";
38 #include <sys/cdefs.h>
39 __FBSDID("$FreeBSD$");
42 * This module is used to copy the master password file, replacing a single
43 * record, by chpass(1) and passwd(1).
55 extern int pw_big_ids_warning;
56 extern int pw_scan(char *, struct passwd *);
60 extern char *tempname;
62 /* for use in pw_copy(). Compare a pw entry to a pw struct. */
64 pw_equal(char *buf, struct passwd *pw)
70 if (buf[len-1] == '\n')
72 return (strcmp(pw->pw_name, buf_pw.pw_name) == 0
73 && pw->pw_uid == buf_pw.pw_uid
74 && pw->pw_gid == buf_pw.pw_gid
75 && strcmp(pw->pw_class, buf_pw.pw_class) == 0
76 && (long)pw->pw_change == (long)buf_pw.pw_change
77 && (long)pw->pw_expire == (long)buf_pw.pw_expire
78 && strcmp(pw->pw_gecos, buf_pw.pw_gecos) == 0
79 && strcmp(pw->pw_dir, buf_pw.pw_dir) == 0
80 && strcmp(pw->pw_shell, buf_pw.pw_shell) == 0);
84 pw_copy(int ffd, int tfd, struct passwd *pw, struct passwd *old_pw)
94 snprintf(uidstr, sizeof(uidstr), "%lu", (unsigned long)pw->pw_uid);
95 snprintf(gidstr, sizeof(gidstr), "%lu", (unsigned long)pw->pw_gid);
96 snprintf(chgstr, sizeof(chgstr), "%ld", (long)pw->pw_change);
97 snprintf(expstr, sizeof(expstr), "%ld", (long)pw->pw_expire);
99 if (!(from = fdopen(ffd, "r")))
100 pw_error(_PATH_MASTERPASSWD, 1, 1);
101 if (!(to = fdopen(tfd, "w")))
102 pw_error(tempname, 1, 1);
104 for (done = 0; fgets(buf, sizeof(buf), from);) {
105 if (!strchr(buf, '\n')) {
106 warnx("%s: line too long", _PATH_MASTERPASSWD);
107 pw_error(NULL, 0, 1);
110 (void)fprintf(to, "%s", buf);
115 for (p = buf; *p != '\n'; p++)
116 if (*p != ' ' && *p != '\t')
118 if (*p == '#' || *p == '\n') {
119 (void)fprintf(to, "%s", buf);
124 if (!(p = strchr(buf, ':'))) {
125 warnx("%s: corrupted entry", _PATH_MASTERPASSWD);
126 pw_error(NULL, 0, 1);
129 if (strcmp(buf, pw->pw_name)) {
131 (void)fprintf(to, "%s", buf);
137 if (old_pw && !pw_equal(buf, old_pw)) {
138 warnx("%s: entry for %s has changed",
139 _PATH_MASTERPASSWD, pw->pw_name);
140 pw_error(NULL, 0, 1);
142 (void)fprintf(to, "%s:%s:%s:%s:%s:%s:%s:%s:%s:%s\n",
143 pw->pw_name, pw->pw_passwd,
144 pw->pw_fields & _PWF_UID ? uidstr : "",
145 pw->pw_fields & _PWF_GID ? gidstr : "",
147 pw->pw_fields & _PWF_CHANGE ? chgstr : "",
148 pw->pw_fields & _PWF_EXPIRE ? expstr : "",
149 pw->pw_gecos, pw->pw_dir, pw->pw_shell);
156 /* Ultra paranoid: shouldn't happen. */
158 warnx("%s: not found in %s -- permission denied",
159 pw->pw_name, _PATH_MASTERPASSWD);
160 pw_error(NULL, 0, 1);
163 (void)fprintf(to, "%s:%s:%s:%s:%s:%s:%s:%s:%s:%s\n",
164 pw->pw_name, pw->pw_passwd,
165 pw->pw_fields & _PWF_UID ? uidstr : "",
166 pw->pw_fields & _PWF_GID ? gidstr : "",
168 pw->pw_fields & _PWF_CHANGE ? chgstr : "",
169 pw->pw_fields & _PWF_EXPIRE ? expstr : "",
170 pw->pw_gecos, pw->pw_dir, pw->pw_shell);
174 err: pw_error(NULL, 1, 1);
178 #include <sys/param.h>
191 * Some software assumes that IDs are short. We should emit warnings
192 * for id's which can not be stored in a short, but we are more liberal
193 * by default, warning for IDs greater than USHRT_MAX.
195 * If pw_big_ids_warning is anything other than -1 on entry to pw_scan()
196 * it will be set based on the existance of PW_SCAN_BIG_IDS in the
199 int pw_big_ids_warning = -1;
210 if (pw_big_ids_warning == -1)
211 pw_big_ids_warning = getenv("PW_SCAN_BIG_IDS") == NULL ? 1 : 0;
214 if (!(pw->pw_name = strsep(&bp, ":"))) /* login */
216 root = !strcmp(pw->pw_name, "root");
217 if(pw->pw_name[0] && (pw->pw_name[0] != '+' || pw->pw_name[1] == '\0'))
218 pw->pw_fields |= _PWF_NAME;
220 if (!(pw->pw_passwd = strsep(&bp, ":"))) /* passwd */
222 if(pw->pw_passwd[0]) pw->pw_fields |= _PWF_PASSWD;
224 if (!(p = strsep(&bp, ":"))) /* uid */
227 pw->pw_fields |= _PWF_UID;
229 if (pw->pw_name[0] != '+' && pw->pw_name[0] != '-') {
230 warnx("no uid for user %s", pw->pw_name);
234 id = strtoul(p, (char **)NULL, 10);
235 if (errno == ERANGE) {
236 warnx("%s > max uid value (%lu)", p, ULONG_MAX);
240 warnx("root uid should be 0");
243 if (pw_big_ids_warning && id > USHRT_MAX) {
244 warnx("%s > recommended max uid value (%u)", p, USHRT_MAX);
245 /*return (0);*/ /* THIS SHOULD NOT BE FATAL! */
249 if (!(p = strsep(&bp, ":"))) /* gid */
251 if(p[0]) pw->pw_fields |= _PWF_GID;
252 id = strtoul(p, (char **)NULL, 10);
253 if (errno == ERANGE) {
254 warnx("%s > max gid value (%u)", p, ULONG_MAX);
257 if (pw_big_ids_warning && id > USHRT_MAX) {
258 warnx("%s > recommended max gid value (%u)", p, USHRT_MAX);
259 /* return (0); This should not be fatal! */
263 pw->pw_class = strsep(&bp, ":"); /* class */
264 if(pw->pw_class[0]) pw->pw_fields |= _PWF_CLASS;
266 if (!(p = strsep(&bp, ":"))) /* change */
268 if(p[0]) pw->pw_fields |= _PWF_CHANGE;
269 pw->pw_change = atol(p);
271 if (!(p = strsep(&bp, ":"))) /* expire */
273 if(p[0]) pw->pw_fields |= _PWF_EXPIRE;
274 pw->pw_expire = atol(p);
276 if (!(pw->pw_gecos = strsep(&bp, ":"))) /* gecos */
278 if(pw->pw_gecos[0]) pw->pw_fields |= _PWF_GECOS;
280 if (!(pw->pw_dir = strsep(&bp, ":"))) /* directory */
282 if(pw->pw_dir[0]) pw->pw_fields |= _PWF_DIR;
284 if (!(pw->pw_shell = strsep(&bp, ":"))) /* shell */
288 if (root && *p) /* empty == /bin/sh */
289 for (setusershell();;) {
290 if (!(sh = getusershell())) {
291 warnx("warning, unknown root shell");
297 if(p[0]) pw->pw_fields |= _PWF_SHELL;
299 if ((p = strsep(&bp, ":"))) { /* too many */
300 fmt: warnx("corrupted entry");