2007-10-07 17:14:02 +05:30
|
|
|
/*
|
2021-12-05 21:05:27 +05:30
|
|
|
* SPDX-FileCopyrightText: 1991 , Julianne Frances Haugh
|
|
|
|
* SPDX-FileCopyrightText: 1991 , Chip Rosenthal
|
|
|
|
* SPDX-FileCopyrightText: 1996 - 1998, Marek Michałkiewicz
|
|
|
|
* SPDX-FileCopyrightText: 2003 - 2005, Tomasz Kłoczko
|
|
|
|
* SPDX-FileCopyrightText: 2007 - 2010, Nicolas François
|
2007-10-07 17:14:02 +05:30
|
|
|
*
|
2021-12-05 21:05:27 +05:30
|
|
|
* SPDX-License-Identifier: BSD-3-Clause
|
2007-10-07 17:14:02 +05:30
|
|
|
*/
|
|
|
|
|
|
|
|
#include <config.h>
|
|
|
|
#include "defines.h"
|
|
|
|
#include <stdio.h>
|
|
|
|
#include "getdef.h"
|
* libmisc/console.c, libmisc/ulimit.c, lib/sgetgrent.c,
lib/sgetpwent.c: Include "prototypes.h" to make
sure the exported prototypes are the ones used for the definition
of functions.
* lib/prototypes.h: Added prototypes for __gr_del_entry(),
__gr_get_db(), __gr_get_head(), __gr_set_changed(), __gr_dup(),
__pw_del_entry(), __pw_get_db(), __pw_get_head(), __pw_dup(),
sgetgrent(), sgetpwent(), __sgr_del_entry(), __sgr_dup(),
__sgr_get_head(), __sgr_set_changed(), __spw_get_head(),
__spw_del_entry(), __spw_dup().
* lib/prototypes.h: Removed prototype for is_listed().
* lib/prototypes.h: Added name of the check_su_auth()'s parameters.
* lib/groupio.h: Removed prototypes for __gr_dup() and
__gr_set_changed().
* lib/sgroupio.c: Removed prototypes for putsgent(), sgetsgent(),
and __gr_get_db().
* lib/sgroupio.h: Removed prototypes for __sgr_dup() and
__sgr_set_changed().
* lib/shadowio.c: Removed prototype for __pw_get_db().
* lib/pwio.c: Removed prototype for sgetpwent() and putpwent().
* lib/shadowio.h: Removed prototypes for __spw_dup() and
__spw_set_changed().
* lib/pwio.h: Removed prototypes for __pw_dup() and
__pw_set_changed().
* lib/commonio.h: Add protection against multiple inclusions.
* lib/prototypes.h: Include commonio.h (needed for the
__xx_del_entry() functions).
2008-01-06 17:29:01 +05:30
|
|
|
#include "prototypes.h"
|
2007-10-07 17:14:02 +05:30
|
|
|
|
2007-11-11 05:16:11 +05:30
|
|
|
#ident "$Id$"
|
2007-10-07 17:17:01 +05:30
|
|
|
|
2007-10-07 17:14:02 +05:30
|
|
|
/*
|
|
|
|
* This is now rather generic function which decides if "tty" is listed
|
|
|
|
* under "cfgin" in config (directly or indirectly). Fallback to default if
|
|
|
|
* something is bad.
|
|
|
|
*/
|
2008-06-09 23:41:20 +05:30
|
|
|
static bool is_listed (const char *cfgin, const char *tty, bool def)
|
2007-10-07 17:14:02 +05:30
|
|
|
{
|
|
|
|
FILE *fp;
|
2018-10-10 15:52:04 +05:30
|
|
|
char buf[1024], *s;
|
* libmisc/console.c, libmisc/motd.c, libmisc/setupenv.c,
libmisc/sulog.c, libmisc/hushed.c, libmisc/failure.c,
libmisc/loginprompt.c, libmisc/ttytype.c,
libmisc/pam_pass_non_interractive.c, src/userdel.c, src/login.c,
lib/commonio.c, lib/commonio.h: Fix some const issues.
* libmisc/motd.c: Avoid multi-statements lines.
* libmisc/motd.c: Support long MOTD_FILE.
* libmisc/list.c, lib/prototypes.h: Revert previous change.
dup_list and is_on_list are used with members as defined for the
group structure, and thus even if the list is not modified, the
list elements cannot be constant strings.
* libmisc/system.c: Avoid C++ comments.
* src/vipw.c: WITH_TCB cannot be tested inside a gettextized
string. Split the Usage string.
* lib/commonio.h: Re-indent.
2010-08-21 21:02:53 +05:30
|
|
|
const char *cons;
|
2007-10-07 17:14:02 +05:30
|
|
|
|
|
|
|
/*
|
|
|
|
* If the CONSOLE configuration definition isn't given,
|
|
|
|
* fallback to default.
|
|
|
|
*/
|
|
|
|
|
2008-06-09 23:41:20 +05:30
|
|
|
cons = getdef_str (cfgin);
|
|
|
|
if (NULL == cons) {
|
2007-10-07 17:14:02 +05:30
|
|
|
return def;
|
2008-06-09 23:41:20 +05:30
|
|
|
}
|
2007-10-07 17:14:02 +05:30
|
|
|
|
|
|
|
/*
|
|
|
|
* If this isn't a filename, then it is a ":" delimited list of
|
|
|
|
* console devices upon which root logins are allowed.
|
|
|
|
*/
|
|
|
|
|
|
|
|
if (*cons != '/') {
|
2010-11-20 03:24:41 +05:30
|
|
|
char *pbuf;
|
2018-10-10 15:52:04 +05:30
|
|
|
strncpy (buf, cons, sizeof (buf));
|
|
|
|
buf[sizeof (buf) - 1] = '\0';
|
2010-11-20 03:24:41 +05:30
|
|
|
pbuf = &buf[0];
|
|
|
|
while ((s = strtok (pbuf, ":")) != NULL) {
|
2008-06-09 23:41:20 +05:30
|
|
|
if (strcmp (s, tty) == 0) {
|
|
|
|
return true;
|
|
|
|
}
|
2007-10-07 17:14:02 +05:30
|
|
|
|
2010-11-20 03:24:41 +05:30
|
|
|
pbuf = NULL;
|
2007-10-07 17:14:02 +05:30
|
|
|
}
|
2008-06-09 23:41:20 +05:30
|
|
|
return false;
|
2007-10-07 17:14:02 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* If we can't open the console list, then call everything a
|
|
|
|
* console - otherwise root will never be allowed to login.
|
|
|
|
*/
|
|
|
|
|
2008-06-09 23:41:20 +05:30
|
|
|
fp = fopen (cons, "r");
|
|
|
|
if (NULL == fp) {
|
2007-10-07 17:14:02 +05:30
|
|
|
return def;
|
2008-06-09 23:41:20 +05:30
|
|
|
}
|
2007-10-07 17:14:02 +05:30
|
|
|
|
|
|
|
/*
|
|
|
|
* See if this tty is listed in the console file.
|
|
|
|
*/
|
|
|
|
|
* libmisc/console.c, libmisc/hushed.c, libmisc/yesno.c,
libmisc/loginprompt.c, libmisc/ttytype.c, libmisc/tz.c,
src/login_nopam.c, src/chpasswd.c, src/chgpasswd.c, lib/port.c:
The size argument of fgets is an int, not a size_t.
* libmisc/loginprompt.c: Ignore the return value from signal()
when the signal handlers are restored.
* src/chpasswd.c: Cast the return value of time() to a long
integer.
* src/chpasswd.c: Use the SCALE macro instead of (24L * 3600L)
for the values to be set in /etc/shadow.
2008-06-13 23:41:09 +05:30
|
|
|
while (fgets (buf, (int) sizeof (buf), fp) != NULL) {
|
2007-10-07 17:15:23 +05:30
|
|
|
buf[strlen (buf) - 1] = '\0';
|
|
|
|
if (strcmp (buf, tty) == 0) {
|
|
|
|
(void) fclose (fp);
|
2008-06-09 23:41:20 +05:30
|
|
|
return true;
|
2007-10-07 17:14:02 +05:30
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* This tty isn't a console.
|
|
|
|
*/
|
|
|
|
|
2007-10-07 17:15:23 +05:30
|
|
|
(void) fclose (fp);
|
2008-06-09 23:41:20 +05:30
|
|
|
return false;
|
2007-10-07 17:14:02 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* console - return 1 if the "tty" is a console device, else 0.
|
|
|
|
*
|
|
|
|
* Note - we need to take extreme care here to avoid locking out root logins
|
|
|
|
* if something goes awry. That's why we do things like call everything a
|
|
|
|
* console if the consoles file can't be opened. Because of this, we must
|
|
|
|
* warn the user to protect against the remove of the consoles file since
|
|
|
|
* that would allow an unauthorized root login.
|
|
|
|
*/
|
|
|
|
|
2008-06-09 23:41:20 +05:30
|
|
|
bool console (const char *tty)
|
2007-10-07 17:14:02 +05:30
|
|
|
{
|
2009-05-16 23:49:24 +05:30
|
|
|
if (strncmp (tty, "/dev/", 5) == 0) {
|
|
|
|
tty += 5;
|
|
|
|
}
|
|
|
|
|
2008-06-09 23:41:20 +05:30
|
|
|
return is_listed ("CONSOLE", tty, true);
|
2007-10-07 17:14:02 +05:30
|
|
|
}
|
2008-06-09 23:41:20 +05:30
|
|
|
|