Updating usr.sbin/user
Change-Id: I5968d25f0a0efd590e6d664d3a2d182a87755e3d
This commit is contained in:
parent
55d9e9954b
commit
3eaea2dc69
4 changed files with 78 additions and 36 deletions
|
@ -275,7 +275,7 @@
|
||||||
2011/01/04 10:01:51,usr.sbin/pwd_mkdb
|
2011/01/04 10:01:51,usr.sbin/pwd_mkdb
|
||||||
2013/04/05 12:00:00,usr.sbin/rdate
|
2013/04/05 12:00:00,usr.sbin/rdate
|
||||||
2012/10/17 12:00:00,usr.sbin/unlink
|
2012/10/17 12:00:00,usr.sbin/unlink
|
||||||
2011/01/04 10:30:21,usr.sbin/user
|
2012/10/17 12:00:00,usr.sbin/user
|
||||||
2009/04/19 00:44:49,usr.sbin/vipw
|
2009/04/19 00:44:49,usr.sbin/vipw
|
||||||
2013/07/31 12:00:00,usr.sbin/vnconfig
|
2013/07/31 12:00:00,usr.sbin/vnconfig
|
||||||
2009/04/22 15:23:10,usr.sbin/zic
|
2009/04/22 15:23:10,usr.sbin/zic
|
||||||
|
|
|
@ -1,4 +1,4 @@
|
||||||
/* $NetBSD: defs.h,v 1.6 2005/11/25 08:00:18 agc Exp $ */
|
/* $NetBSD: defs.h,v 1.7 2011/08/31 16:25:00 plunky Exp $ */
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Copyright (c) 1999 Alistair G. Crooks. All rights reserved.
|
* Copyright (c) 1999 Alistair G. Crooks. All rights reserved.
|
||||||
|
@ -31,14 +31,14 @@
|
||||||
#define DEFS_H_
|
#define DEFS_H_
|
||||||
|
|
||||||
#define NEWARRAY(type,ptr,size,action) do { \
|
#define NEWARRAY(type,ptr,size,action) do { \
|
||||||
if ((ptr = (type *) calloc(sizeof(type), size)) == (type *) NULL) { \
|
if ((ptr = (type *) calloc(sizeof(type), size)) == NULL) { \
|
||||||
warn("can't allocate %ld bytes", (long)(size * sizeof(type))); \
|
warn("can't allocate %ld bytes", (long)(size * sizeof(type))); \
|
||||||
action; \
|
action; \
|
||||||
} \
|
} \
|
||||||
} while( /* CONSTCOND */ 0)
|
} while( /* CONSTCOND */ 0)
|
||||||
|
|
||||||
#define RENEW(type,ptr,size,action) do { \
|
#define RENEW(type,ptr,size,action) do { \
|
||||||
if ((ptr = (type *) realloc(ptr, sizeof(type) * size)) == (type *) NULL) { \
|
if ((ptr = (type *) realloc(ptr, sizeof(type) * size)) == NULL) { \
|
||||||
warn("can't realloc %ld bytes", (long)(size * sizeof(type))); \
|
warn("can't realloc %ld bytes", (long)(size * sizeof(type))); \
|
||||||
action; \
|
action; \
|
||||||
} \
|
} \
|
||||||
|
|
44
usr.sbin/user/pathnames.h
Normal file
44
usr.sbin/user/pathnames.h
Normal file
|
@ -0,0 +1,44 @@
|
||||||
|
/* $NetBSD: pathnames.h,v 1.1 2011/12/01 00:34:05 dholland Exp $ */
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Copyright (c) 1999 Alistair G. Crooks. All rights reserved.
|
||||||
|
* Copyright (c) 2005 Liam J. Foy. All rights reserved.
|
||||||
|
*
|
||||||
|
* Redistribution and use in source and binary forms, with or without
|
||||||
|
* modification, are permitted provided that the following conditions
|
||||||
|
* are met:
|
||||||
|
* 1. Redistributions of source code must retain the above copyright
|
||||||
|
* notice, this list of conditions and the following disclaimer.
|
||||||
|
* 2. Redistributions in binary form must reproduce the above copyright
|
||||||
|
* notice, this list of conditions and the following disclaimer in the
|
||||||
|
* documentation and/or other materials provided with the distribution.
|
||||||
|
* 3. The name of the author may not be used to endorse or promote
|
||||||
|
* products derived from this software without specific prior written
|
||||||
|
* permission.
|
||||||
|
*
|
||||||
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS
|
||||||
|
* OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
|
||||||
|
* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
||||||
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
|
||||||
|
* DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
||||||
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
|
||||||
|
* GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
|
||||||
|
* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
||||||
|
* WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
|
||||||
|
* NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
|
||||||
|
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||||
|
*/
|
||||||
|
|
||||||
|
#include <paths.h>
|
||||||
|
|
||||||
|
/* Full paths of programs used here */
|
||||||
|
#define _PATH_CHMOD "/bin/chmod"
|
||||||
|
#define _PATH_CHOWN "/usr/sbin/chown"
|
||||||
|
#define _PATH_LOGINCONF "/etc/login.conf"
|
||||||
|
#define _PATH_MKDIR "/bin/mkdir"
|
||||||
|
#define _PATH_MV "/bin/mv"
|
||||||
|
/* note that there's a _PATH_NOLOGIN in <paths.h> that's for /etc/nologin */
|
||||||
|
#define _PATH_SBIN_NOLOGIN "/sbin/nologin"
|
||||||
|
#define _PATH_PAX "/bin/pax"
|
||||||
|
#define _PATH_RM "/bin/rm"
|
||||||
|
|
|
@ -1,4 +1,4 @@
|
||||||
/* $NetBSD: user.c,v 1.126 2011/01/04 10:30:21 wiz Exp $ */
|
/* $NetBSD: user.c,v 1.129 2011/12/01 00:34:05 dholland Exp $ */
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Copyright (c) 1999 Alistair G. Crooks. All rights reserved.
|
* Copyright (c) 1999 Alistair G. Crooks. All rights reserved.
|
||||||
|
@ -33,12 +33,13 @@
|
||||||
#ifndef lint
|
#ifndef lint
|
||||||
__COPYRIGHT("@(#) Copyright (c) 1999\
|
__COPYRIGHT("@(#) Copyright (c) 1999\
|
||||||
The NetBSD Foundation, Inc. All rights reserved.");
|
The NetBSD Foundation, Inc. All rights reserved.");
|
||||||
__RCSID("$NetBSD: user.c,v 1.126 2011/01/04 10:30:21 wiz Exp $");
|
__RCSID("$NetBSD: user.c,v 1.129 2011/12/01 00:34:05 dholland Exp $");
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#include <sys/types.h>
|
#include <sys/types.h>
|
||||||
#include <sys/param.h>
|
#include <sys/param.h>
|
||||||
#include <sys/stat.h>
|
#include <sys/stat.h>
|
||||||
|
#include <sys/wait.h>
|
||||||
|
|
||||||
#include <ctype.h>
|
#include <ctype.h>
|
||||||
#include <dirent.h>
|
#include <dirent.h>
|
||||||
|
@ -48,7 +49,6 @@ __RCSID("$NetBSD: user.c,v 1.126 2011/01/04 10:30:21 wiz Exp $");
|
||||||
#ifdef EXTENSIONS
|
#ifdef EXTENSIONS
|
||||||
#include <login_cap.h>
|
#include <login_cap.h>
|
||||||
#endif
|
#endif
|
||||||
#include <paths.h>
|
|
||||||
#include <pwd.h>
|
#include <pwd.h>
|
||||||
#include <regex.h>
|
#include <regex.h>
|
||||||
#include <stdarg.h>
|
#include <stdarg.h>
|
||||||
|
@ -61,6 +61,7 @@ __RCSID("$NetBSD: user.c,v 1.126 2011/01/04 10:30:21 wiz Exp $");
|
||||||
#include <util.h>
|
#include <util.h>
|
||||||
#include <errno.h>
|
#include <errno.h>
|
||||||
|
|
||||||
|
#include "pathnames.h"
|
||||||
#include "defs.h"
|
#include "defs.h"
|
||||||
#include "usermgmt.h"
|
#include "usermgmt.h"
|
||||||
|
|
||||||
|
@ -141,7 +142,6 @@ enum {
|
||||||
#define LOCK 1
|
#define LOCK 1
|
||||||
#define LOCKED "*LOCKED*"
|
#define LOCKED "*LOCKED*"
|
||||||
|
|
||||||
#define PATH_LOGINCONF "/etc/login.conf"
|
|
||||||
|
|
||||||
#ifndef DEF_GROUP
|
#ifndef DEF_GROUP
|
||||||
#define DEF_GROUP "users"
|
#define DEF_GROUP "users"
|
||||||
|
@ -211,20 +211,11 @@ enum {
|
||||||
DES_Len = 13,
|
DES_Len = 13,
|
||||||
};
|
};
|
||||||
|
|
||||||
/* Full paths of programs used here */
|
|
||||||
#define CHMOD "/bin/chmod"
|
|
||||||
#define CHOWN "/usr/bin/chown"
|
|
||||||
#define MKDIR "/bin/mkdir"
|
|
||||||
#define MV "/bin/mv"
|
|
||||||
#define NOLOGIN "/sbin/nologin"
|
|
||||||
#define PAX "/bin/pax"
|
|
||||||
#define RM "/bin/rm"
|
|
||||||
|
|
||||||
#define UNSET_INACTIVE "Null (unset)"
|
#define UNSET_INACTIVE "Null (unset)"
|
||||||
#define UNSET_EXPIRY "Null (unset)"
|
#define UNSET_EXPIRY "Null (unset)"
|
||||||
|
|
||||||
static int asystem(const char *fmt, ...)
|
static int asystem(const char *fmt, ...) __printflike(1, 2);
|
||||||
__attribute__((__format__(__printf__, 1, 2)));
|
|
||||||
static int is_number(const char *);
|
static int is_number(const char *);
|
||||||
static struct group *find_group_info(const char *);
|
static struct group *find_group_info(const char *);
|
||||||
static int verbose;
|
static int verbose;
|
||||||
|
@ -270,8 +261,13 @@ asystem(const char *fmt, ...)
|
||||||
if (verbose) {
|
if (verbose) {
|
||||||
(void)printf("Command: %s\n", buf);
|
(void)printf("Command: %s\n", buf);
|
||||||
}
|
}
|
||||||
if ((ret = system(buf)) != 0) {
|
ret = system(buf);
|
||||||
|
if (ret == -1) {
|
||||||
warn("Error running `%s'", buf);
|
warn("Error running `%s'", buf);
|
||||||
|
} else if (WIFSIGNALED(ret)) {
|
||||||
|
warnx("Error running `%s': Signal %d", buf, WTERMSIG(ret));
|
||||||
|
} else if (WIFEXITED(ret) && WEXITSTATUS(ret) != 0) {
|
||||||
|
warnx("Error running `%s': Exit %d", buf, WEXITSTATUS(ret));
|
||||||
}
|
}
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
@ -307,7 +303,8 @@ removehomedir(struct passwd *pwp)
|
||||||
|
|
||||||
(void)seteuid(pwp->pw_uid);
|
(void)seteuid(pwp->pw_uid);
|
||||||
/* we add the "|| true" to keep asystem() quiet if there is a non-zero exit status. */
|
/* we add the "|| true" to keep asystem() quiet if there is a non-zero exit status. */
|
||||||
(void)asystem("%s -rf %s > /dev/null 2>&1 || true", RM, pwp->pw_dir);
|
(void)asystem("%s -rf %s > /dev/null 2>&1 || true", _PATH_RM,
|
||||||
|
pwp->pw_dir);
|
||||||
(void)seteuid(0);
|
(void)seteuid(0);
|
||||||
if (rmdir(pwp->pw_dir) < 0) {
|
if (rmdir(pwp->pw_dir) < 0) {
|
||||||
warn("Unable to remove all files in `%s'", pwp->pw_dir);
|
warn("Unable to remove all files in `%s'", pwp->pw_dir);
|
||||||
|
@ -364,12 +361,12 @@ copydotfiles(char *skeldir, int uid, int gid, char *dir, mode_t homeperm)
|
||||||
warnx("No \"dot\" initialisation files found");
|
warnx("No \"dot\" initialisation files found");
|
||||||
} else {
|
} else {
|
||||||
(void)asystem("cd %s && %s -rw -pe %s . %s",
|
(void)asystem("cd %s && %s -rw -pe %s . %s",
|
||||||
skeldir, PAX, (verbose) ? "-v" : "", dir);
|
skeldir, _PATH_PAX, (verbose) ? "-v" : "", dir);
|
||||||
}
|
}
|
||||||
(void)asystem("%s -R -h %d:%d %s", CHOWN, uid, gid, dir);
|
(void)asystem("%s -R -h %d:%d %s", _PATH_CHOWN, uid, gid, dir);
|
||||||
(void)asystem("%s -R u+w %s", CHMOD, dir);
|
(void)asystem("%s -R u+w %s", _PATH_CHMOD, dir);
|
||||||
#ifdef EXTENSIONS
|
#ifdef EXTENSIONS
|
||||||
(void)asystem("%s 0%o %s", CHMOD, homeperm, dir);
|
(void)asystem("%s 0%o %s", _PATH_CHMOD, homeperm, dir);
|
||||||
#endif
|
#endif
|
||||||
return n;
|
return n;
|
||||||
}
|
}
|
||||||
|
@ -390,7 +387,7 @@ creategid(char *group, int gid, const char *name)
|
||||||
warnx("Can't create group `%s': already exists", group);
|
warnx("Can't create group `%s': already exists", group);
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
if ((from = fopen(_PATH_GROUP, "r+")) == NULL) {
|
if ((from = fopen(_PATH_GROUP, "r")) == NULL) {
|
||||||
warn("Can't create group `%s': can't open `%s'", name,
|
warn("Can't create group `%s': can't open `%s'", name,
|
||||||
_PATH_GROUP);
|
_PATH_GROUP);
|
||||||
return 0;
|
return 0;
|
||||||
|
@ -454,7 +451,7 @@ modify_gid(char *group, char *newent)
|
||||||
int fd;
|
int fd;
|
||||||
int cc;
|
int cc;
|
||||||
|
|
||||||
if ((from = fopen(_PATH_GROUP, "r+")) == NULL) {
|
if ((from = fopen(_PATH_GROUP, "r")) == NULL) {
|
||||||
warn("Can't modify group `%s': can't open `%s'",
|
warn("Can't modify group `%s': can't open `%s'",
|
||||||
group, _PATH_GROUP);
|
group, _PATH_GROUP);
|
||||||
return 0;
|
return 0;
|
||||||
|
@ -577,7 +574,7 @@ append_group(char *user, int ngroups, const char **groups)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
if ((from = fopen(_PATH_GROUP, "r+")) == NULL) {
|
if ((from = fopen(_PATH_GROUP, "r")) == NULL) {
|
||||||
warn("Can't append group(s) for `%s': can't open `%s'",
|
warn("Can't append group(s) for `%s': can't open `%s'",
|
||||||
user, _PATH_GROUP);
|
user, _PATH_GROUP);
|
||||||
return 0;
|
return 0;
|
||||||
|
@ -993,9 +990,9 @@ valid_class(char *class)
|
||||||
* user the actual login class does not exist.
|
* user the actual login class does not exist.
|
||||||
*/
|
*/
|
||||||
|
|
||||||
if (access(PATH_LOGINCONF, R_OK) == -1) {
|
if (access(_PATH_LOGINCONF, R_OK) == -1) {
|
||||||
warn("Access failed for `%s'; will not validate class `%s'",
|
warn("Access failed for `%s'; will not validate class `%s'",
|
||||||
PATH_LOGINCONF, class);
|
_PATH_LOGINCONF, class);
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -1020,7 +1017,7 @@ valid_shell(const char *shellname)
|
||||||
}
|
}
|
||||||
|
|
||||||
/* if nologin is used as a shell, consider it a valid shell */
|
/* if nologin is used as a shell, consider it a valid shell */
|
||||||
if (strcmp(shellname, NOLOGIN) == 0)
|
if (strcmp(shellname, _PATH_SBIN_NOLOGIN) == 0)
|
||||||
return 1;
|
return 1;
|
||||||
|
|
||||||
while ((shellp = getusershell()) != NULL)
|
while ((shellp = getusershell()) != NULL)
|
||||||
|
@ -1092,7 +1089,7 @@ adduser(char *login_name, user_t *up)
|
||||||
login_name, up->u_class);
|
login_name, up->u_class);
|
||||||
}
|
}
|
||||||
#endif
|
#endif
|
||||||
if ((masterfd = open(_PATH_MASTERPASSWD, O_RDWR)) < 0) {
|
if ((masterfd = open(_PATH_MASTERPASSWD, O_RDONLY)) < 0) {
|
||||||
err(EXIT_FAILURE, "Can't add user `%s': can't open `%s'",
|
err(EXIT_FAILURE, "Can't add user `%s': can't open `%s'",
|
||||||
login_name, _PATH_MASTERPASSWD);
|
login_name, _PATH_MASTERPASSWD);
|
||||||
}
|
}
|
||||||
|
@ -1261,7 +1258,7 @@ adduser(char *login_name, user_t *up)
|
||||||
"Can't add user `%s': home directory `%s' "
|
"Can't add user `%s': home directory `%s' "
|
||||||
"already exists", login_name, home);
|
"already exists", login_name, home);
|
||||||
} else {
|
} else {
|
||||||
if (asystem("%s -p %s", MKDIR, home) != 0) {
|
if (asystem("%s -p %s", _PATH_MKDIR, home) != 0) {
|
||||||
(void)close(ptmpfd);
|
(void)close(ptmpfd);
|
||||||
(void)pw_abort();
|
(void)pw_abort();
|
||||||
errx(EXIT_FAILURE, "Can't add user `%s': "
|
errx(EXIT_FAILURE, "Can't add user `%s': "
|
||||||
|
@ -1325,7 +1322,7 @@ rm_user_from_groups(char *login_name)
|
||||||
buf);
|
buf);
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
if ((from = fopen(_PATH_GROUP, "r+")) == NULL) {
|
if ((from = fopen(_PATH_GROUP, "r")) == NULL) {
|
||||||
warn("Can't remove user `%s' from `%s': can't open `%s'",
|
warn("Can't remove user `%s' from `%s': can't open `%s'",
|
||||||
login_name, _PATH_GROUP, _PATH_GROUP);
|
login_name, _PATH_GROUP, _PATH_GROUP);
|
||||||
return 0;
|
return 0;
|
||||||
|
@ -1454,7 +1451,7 @@ moduser(char *login_name, char *newlogin, user_t *up, int allow_samba)
|
||||||
/* keep dir name in case we need it for '-m' */
|
/* keep dir name in case we need it for '-m' */
|
||||||
homedir = pwp->pw_dir;
|
homedir = pwp->pw_dir;
|
||||||
|
|
||||||
if ((masterfd = open(_PATH_MASTERPASSWD, O_RDWR)) < 0) {
|
if ((masterfd = open(_PATH_MASTERPASSWD, O_RDONLY)) < 0) {
|
||||||
err(EXIT_FAILURE, "Can't modify user `%s': can't open `%s'",
|
err(EXIT_FAILURE, "Can't modify user `%s': can't open `%s'",
|
||||||
login_name, _PATH_MASTERPASSWD);
|
login_name, _PATH_MASTERPASSWD);
|
||||||
}
|
}
|
||||||
|
@ -1703,7 +1700,7 @@ moduser(char *login_name, char *newlogin, user_t *up, int allow_samba)
|
||||||
}
|
}
|
||||||
if (up != NULL) {
|
if (up != NULL) {
|
||||||
if ((up->u_flags & F_MKDIR) &&
|
if ((up->u_flags & F_MKDIR) &&
|
||||||
asystem("%s %s %s", MV, homedir, pwp->pw_dir) != 0) {
|
asystem("%s %s %s", _PATH_MV, homedir, pwp->pw_dir) != 0) {
|
||||||
(void)close(ptmpfd);
|
(void)close(ptmpfd);
|
||||||
(void)pw_abort();
|
(void)pw_abort();
|
||||||
errx(EXIT_FAILURE, "Can't modify user `%s': "
|
errx(EXIT_FAILURE, "Can't modify user `%s': "
|
||||||
|
@ -2209,7 +2206,8 @@ userdel(int argc, char **argv)
|
||||||
}
|
}
|
||||||
if (up->u_preserve) {
|
if (up->u_preserve) {
|
||||||
up->u_flags |= F_SHELL;
|
up->u_flags |= F_SHELL;
|
||||||
memsave(&up->u_shell, NOLOGIN, strlen(NOLOGIN));
|
memsave(&up->u_shell, _PATH_SBIN_NOLOGIN,
|
||||||
|
strlen(_PATH_SBIN_NOLOGIN));
|
||||||
(void)memset(password, '*', DES_Len);
|
(void)memset(password, '*', DES_Len);
|
||||||
password[DES_Len] = 0;
|
password[DES_Len] = 0;
|
||||||
memsave(&up->u_password, password, strlen(password));
|
memsave(&up->u_password, password, strlen(password));
|
||||||
|
|
Loading…
Reference in a new issue