busybox/loginutils/su.c

/* vi: set sw=4 ts=4: */
/*
 *  Mini su implementation for busybox
 *
 *  Licensed under the GPL v2, see the file LICENSE in this tarball.
 */

#include "busybox.h"
#include <syslog.h>

int su_main(int argc, char **argv)
{
	unsigned long flags;
	char *opt_shell = 0;
	char *opt_command = 0;
	char *opt_username = "root";
	char **opt_args = 0;
	struct passwd *pw;
	uid_t cur_uid = getuid();
	const char *tty;
	char *old_user;

	flags = bb_getopt_ulflags(argc, argv, "mplc:s:", &opt_command, &opt_shell);
#define SU_OPT_mp (3)
#define SU_OPT_l (4)

	if (optind < argc  && argv[optind][0] == '-' && argv[optind][1] == 0) {
		flags |= SU_OPT_l;
		++optind;
	}

	/* get user if specified */
	if (optind < argc) opt_username = argv [optind++];

	if (optind < argc) opt_args = argv + optind;

	if (ENABLE_SU_SYSLOG) {
		/* The utmp entry (via getlogin) is probably the best way to identify
		the user, especially if someone su's from a su-shell.
		But getlogin can fail -- usually due to lack of utmp entry.
		in this case resort to getpwuid.  */
		old_user = xstrdup(USE_FEATURE_UTMP(getlogin() ? : ) (pw = getpwuid(cur_uid)) ? pw->pw_name : "");
		tty = ttyname(2) ? : "none";
		openlog(bb_applet_name, 0, LOG_AUTH);
	}

	pw = getpwnam(opt_username);
	if (!pw) bb_error_msg_and_die("Unknown id: %s", opt_username);

	/* Make sure pw->pw_shell is non-NULL.  It may be NULL when NEW_USER
	   is a username that is retrieved via NIS (YP), but that doesn't have
	   a default shell listed.  */
	if (!pw->pw_shell || !pw->pw_shell[0]) pw->pw_shell = (char *)DEFAULT_SHELL;

	if ((cur_uid == 0) || correct_password(pw)) {
		if (ENABLE_SU_SYSLOG)
			syslog(LOG_NOTICE, "+ %s %s:%s", tty, old_user, opt_username);
	} else {
		if (ENABLE_SU_SYSLOG)
			syslog(LOG_NOTICE, "- %s %s:%s", tty, old_user, opt_username);
		bb_error_msg_and_die("incorrect password");
	}

	if (ENABLE_FEATURE_CLEAN_UP && ENABLE_SU_SYSLOG) {
		closelog();
		free(old_user);
	}

	if (!opt_shell && (flags & SU_OPT_mp)) opt_shell = getenv("SHELL");

	if (opt_shell && cur_uid && restricted_shell(pw->pw_shell)) {
		/* The user being su'd to has a nonstandard shell, and so is
		   probably a uucp account or has restricted access.  Don't
		   compromise the account by allowing access with a standard
		   shell.  */
		bb_error_msg("using restricted shell");
		opt_shell = 0;
	}

	if (!opt_shell) opt_shell = pw->pw_shell;

	change_identity(pw);
	setup_environment(opt_shell, flags & SU_OPT_l, !(flags & SU_OPT_mp), pw);
	USE_SELINUX(set_current_security_context(NULL);)

	/* Never returns */
	run_shell(opt_shell, flags & SU_OPT_l, opt_command, (const char**)opt_args);

	return EXIT_FAILURE;
}
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`/* vi: set sw=4 ts=4: */`
- Document -m, -c, -s and provide a default shell for standalone build. - Wrap overlong lines plus a few whitespace fixes. - add GPL header. 2006-01-19 23:34:15 +05:30			`/*`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`* Mini su implementation for busybox`
			`*`
			`* Licensed under the GPL v2, see the file LICENSE in this tarball.`
			`*/`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`#include "busybox.h"`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`#include <syslog.h>`

getty, sulogin: convert to using bb_msg for syslog output 2006-09-07 21:50:03 +05:30			`int su_main(int argc, char **argv)`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`{`
Vodz, last patch 105 Busybox "mount" applet unsupport "user" option and result: must have _BB_SUID_NEVER applet option (my bug). Last patch have reducing 216 bytes for "su" applet also. 2003-08-29 13:08:56 +05:30			`unsigned long flags;`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`char *opt_shell = 0;`
			`char *opt_command = 0;`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`char *opt_username = "root";`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`char **opt_args = 0;`
Vodz, last patch 105 Busybox "mount" applet unsupport "user" option and result: must have _BB_SUID_NEVER applet option (my bug). Last patch have reducing 216 bytes for "su" applet also. 2003-08-29 13:08:56 +05:30			`struct passwd *pw;`
			`uid_t cur_uid = getuid();`
			`const char *tty;`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`char *old_user;`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`flags = bb_getopt_ulflags(argc, argv, "mplc:s:", &opt_command, &opt_shell);`
			`#define SU_OPT_mp (3)`
- minor size tweak text data bss dec hex filename 613 0 0 613 265 loginutils/su.o.orig 605 0 0 605 25d loginutils/su.o 2006-06-14 22:06:45 +05:30			`#define SU_OPT_l (4)`
Vodz, last patch 105 Busybox "mount" applet unsupport "user" option and result: must have _BB_SUID_NEVER applet option (my bug). Last patch have reducing 216 bytes for "su" applet also. 2003-08-29 13:08:56 +05:30
			`if (optind < argc && argv[optind][0] == '-' && argv[optind][1] == 0) {`
- minor size tweak text data bss dec hex filename 613 0 0 613 265 loginutils/su.o.orig 605 0 0 605 25d loginutils/su.o 2006-06-14 22:06:45 +05:30			`flags \|= SU_OPT_l;`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`++optind;`
getty, sulogin: convert to using bb_msg for syslog output 2006-09-07 21:50:03 +05:30			`}`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30
			`/* get user if specified */`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (optind < argc) opt_username = argv [optind++];`

			`if (optind < argc) opt_args = argv + optind;`

			`if (ENABLE_SU_SYSLOG) {`
			`/* The utmp entry (via getlogin) is probably the best way to identify`
			`the user, especially if someone su's from a su-shell.`
			`But getlogin can fail -- usually due to lack of utmp entry.`
			`in this case resort to getpwuid. */`
Remove bb_ prefixes from xfuncs.c (and a few other places), consolidate things like xasprintf() into xfuncs.c, remove xprint_file_by_name() (it only had one user), clean up lots of #includes... General cleanup pass. What I've been doing for the last couple days. And it conflicts! I've removed httpd.c from this checkin due to somebody else touching that file. It builds for me. I have to catch a bus. (Now you know why I'm looking forward to Mercurial.) 2006-08-03 21:11:12 +05:30			`old_user = xstrdup(USE_FEATURE_UTMP(getlogin() ? : ) (pw = getpwuid(cur_uid)) ? pw->pw_name : "");`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`tty = ttyname(2) ? : "none";`
			`openlog(bb_applet_name, 0, LOG_AUTH);`
Vodz, last patch 105 Busybox "mount" applet unsupport "user" option and result: must have _BB_SUID_NEVER applet option (my bug). Last patch have reducing 216 bytes for "su" applet also. 2003-08-29 13:08:56 +05:30			`}`

Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`pw = getpwnam(opt_username);`
			`if (!pw) bb_error_msg_and_die("Unknown id: %s", opt_username);`
Remove trailing whitespace. Update copyright to include 2004. 2004-03-15 13:59:22 +05:30
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`/* Make sure pw->pw_shell is non-NULL. It may be NULL when NEW_USER`
			`is a username that is retrieved via NIS (YP), but that doesn't have`
			`a default shell listed. */`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (!pw->pw_shell \|\| !pw->pw_shell[0]) pw->pw_shell = (char *)DEFAULT_SHELL;`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if ((cur_uid == 0) \|\| correct_password(pw)) {`
			`if (ENABLE_SU_SYSLOG)`
			`syslog(LOG_NOTICE, "+ %s %s:%s", tty, old_user, opt_username);`
Vodz, last patch 105 Busybox "mount" applet unsupport "user" option and result: must have _BB_SUID_NEVER applet option (my bug). Last patch have reducing 216 bytes for "su" applet also. 2003-08-29 13:08:56 +05:30			`} else {`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (ENABLE_SU_SYSLOG)`
			`syslog(LOG_NOTICE, "- %s %s:%s", tty, old_user, opt_username);`
			`bb_error_msg_and_die("incorrect password");`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`}`

Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (ENABLE_FEATURE_CLEAN_UP && ENABLE_SU_SYSLOG) {`
			`closelog();`
			`free(old_user);`
			`}`
Vodz, last patch 105 Busybox "mount" applet unsupport "user" option and result: must have _BB_SUID_NEVER applet option (my bug). Last patch have reducing 216 bytes for "su" applet also. 2003-08-29 13:08:56 +05:30
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (!opt_shell && (flags & SU_OPT_mp)) opt_shell = getenv("SHELL");`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (opt_shell && cur_uid && restricted_shell(pw->pw_shell)) {`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`/* The user being su'd to has a nonstandard shell, and so is`
			`probably a uucp account or has restricted access. Don't`
			`compromise the account by allowing access with a standard`
			`shell. */`
Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`bb_error_msg("using restricted shell");`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`opt_shell = 0;`
			`}`

Patch from Tito to make syslog configurable and remove #ifdefs. Further cleanups by me. 2006-07-10 08:35:46 +05:30			`if (!opt_shell) opt_shell = pw->pw_shell;`

			`change_identity(pw);`
			`setup_environment(opt_shell, flags & SU_OPT_l, !(flags & SU_OPT_mp), pw);`
getty, sulogin: convert to using bb_msg for syslog output 2006-09-07 21:50:03 +05:30			`USE_SELINUX(set_current_security_context(NULL);)`
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30
Comment tweak from tito. 2006-07-16 01:16:46 +05:30			`/* Never returns */`
- minor size tweak text data bss dec hex filename 613 0 0 613 265 loginutils/su.o.orig 605 0 0 605 25d loginutils/su.o 2006-06-14 22:06:45 +05:30			`run_shell(opt_shell, flags & SU_OPT_l, opt_command, (const char**)opt_args);`
Remove trailing whitespace. Update copyright to include 2004. 2004-03-15 13:59:22 +05:30
Bigger patch for (partial) tinylogin integration - Made a new dir loginutils - Moved all applets from pwd_grp to loginutils - Added new applets su.c login.c to loginutils - Made a new dir libpwdgrp - Moved everything from pwd_grp/libpwd_grp there - Added shadow.c to libpwdgrp - Removed dir pwd_grp - Added usage strings for login and su to usage.h - Changed main Makefile to reflect the dir rearrangements [Parts of this patch may overlap with my other two patches] 2002-06-05 02:15:46 +05:30			`return EXIT_FAILURE;`
			`}`