[821] | 1 | /* vi: set sw=4 ts=4: */
|
---|
| 2 | #include <fcntl.h>
|
---|
| 3 | #include <stdio.h>
|
---|
| 4 | #include <string.h>
|
---|
| 5 | #include <signal.h>
|
---|
| 6 | #include <sys/stat.h>
|
---|
| 7 | #include <sys/types.h>
|
---|
| 8 | #include <unistd.h>
|
---|
| 9 | #include <utime.h>
|
---|
| 10 | #include <syslog.h>
|
---|
| 11 | #include <time.h>
|
---|
| 12 | #include <sys/resource.h>
|
---|
| 13 | #include <errno.h>
|
---|
| 14 |
|
---|
| 15 | #include "busybox.h"
|
---|
| 16 |
|
---|
| 17 | static char crypt_passwd[128];
|
---|
| 18 |
|
---|
| 19 | static int create_backup(const char *backup, FILE * fp);
|
---|
| 20 | static int new_password(const struct passwd *pw, int amroot, int algo);
|
---|
| 21 | static void set_filesize_limit(int blocks);
|
---|
| 22 |
|
---|
| 23 |
|
---|
| 24 | static int get_algo(char *a)
|
---|
| 25 | {
|
---|
| 26 | int x = 1; /* standard: MD5 */
|
---|
| 27 |
|
---|
| 28 | if (strcasecmp(a, "des") == 0)
|
---|
| 29 | x = 0;
|
---|
| 30 | return x;
|
---|
| 31 | }
|
---|
| 32 |
|
---|
| 33 |
|
---|
| 34 | static int update_passwd(const struct passwd *pw, const char *crypt_pw)
|
---|
| 35 | {
|
---|
| 36 | char filename[1024];
|
---|
| 37 | char buf[1025];
|
---|
| 38 | char buffer[80];
|
---|
| 39 | char username[32];
|
---|
| 40 | char *pw_rest;
|
---|
| 41 | int mask;
|
---|
| 42 | int continued;
|
---|
| 43 | FILE *fp;
|
---|
| 44 | FILE *out_fp;
|
---|
| 45 | struct stat sb;
|
---|
| 46 | struct flock lock;
|
---|
| 47 |
|
---|
| 48 | #if ENABLE_FEATURE_SHADOWPASSWDS
|
---|
| 49 | if (access(bb_path_shadow_file, F_OK) == 0) {
|
---|
| 50 | snprintf(filename, sizeof filename, "%s", bb_path_shadow_file);
|
---|
| 51 | } else
|
---|
| 52 | #endif
|
---|
| 53 | {
|
---|
| 54 | snprintf(filename, sizeof filename, "%s", bb_path_passwd_file);
|
---|
| 55 | }
|
---|
| 56 |
|
---|
| 57 | if (((fp = fopen(filename, "r+")) == 0) || (fstat(fileno(fp), &sb))) {
|
---|
| 58 | /* return 0; */
|
---|
| 59 | return 1;
|
---|
| 60 | }
|
---|
| 61 |
|
---|
| 62 | /* Lock the password file before updating */
|
---|
| 63 | lock.l_type = F_WRLCK;
|
---|
| 64 | lock.l_whence = SEEK_SET;
|
---|
| 65 | lock.l_start = 0;
|
---|
| 66 | lock.l_len = 0;
|
---|
| 67 | if (fcntl(fileno(fp), F_SETLK, &lock) < 0) {
|
---|
| 68 | fprintf(stderr, "%s: %s\n", filename, strerror(errno));
|
---|
| 69 | return 1;
|
---|
| 70 | }
|
---|
| 71 | lock.l_type = F_UNLCK;
|
---|
| 72 |
|
---|
| 73 | snprintf(buf, sizeof buf, "%s-", filename);
|
---|
| 74 | if (create_backup(buf, fp)) {
|
---|
| 75 | fcntl(fileno(fp), F_SETLK, &lock);
|
---|
| 76 | fclose(fp);
|
---|
| 77 | return 1;
|
---|
| 78 | }
|
---|
| 79 | snprintf(buf, sizeof buf, "%s+", filename);
|
---|
| 80 | mask = umask(0777);
|
---|
| 81 | out_fp = fopen(buf, "w");
|
---|
| 82 | umask(mask);
|
---|
| 83 | if ((!out_fp) || (fchmod(fileno(out_fp), sb.st_mode & 0777))
|
---|
| 84 | || (fchown(fileno(out_fp), sb.st_uid, sb.st_gid))) {
|
---|
| 85 | fcntl(fileno(fp), F_SETLK, &lock);
|
---|
| 86 | fclose(fp);
|
---|
| 87 | fclose(out_fp);
|
---|
| 88 | return 1;
|
---|
| 89 | }
|
---|
| 90 |
|
---|
| 91 | continued = 0;
|
---|
| 92 | snprintf(username, sizeof username, "%s:", pw->pw_name);
|
---|
| 93 | rewind(fp);
|
---|
| 94 | while (!feof(fp)) {
|
---|
| 95 | fgets(buffer, sizeof buffer, fp);
|
---|
| 96 | if (!continued) { /* Check to see if we're updating this line. */
|
---|
| 97 | if (strncmp(username, buffer, strlen(username)) == 0) {
|
---|
| 98 | /* we have a match. */
|
---|
| 99 | pw_rest = strchr(buffer, ':');
|
---|
| 100 | *pw_rest++ = '\0';
|
---|
| 101 | pw_rest = strchr(pw_rest, ':');
|
---|
| 102 | fprintf(out_fp, "%s:%s%s", buffer, crypt_pw, pw_rest);
|
---|
| 103 | } else {
|
---|
| 104 | fputs(buffer, out_fp);
|
---|
| 105 | }
|
---|
| 106 | } else {
|
---|
| 107 | fputs(buffer, out_fp);
|
---|
| 108 | }
|
---|
| 109 | if (buffer[strlen(buffer) - 1] == '\n') {
|
---|
| 110 | continued = 0;
|
---|
| 111 | } else {
|
---|
| 112 | continued = 1;
|
---|
| 113 | }
|
---|
| 114 | memset(buffer, 0, sizeof buffer);
|
---|
| 115 | }
|
---|
| 116 |
|
---|
| 117 | if (fflush(out_fp) || fsync(fileno(out_fp)) || fclose(out_fp)) {
|
---|
| 118 | unlink(buf);
|
---|
| 119 | fcntl(fileno(fp), F_SETLK, &lock);
|
---|
| 120 | fclose(fp);
|
---|
| 121 | return 1;
|
---|
| 122 | }
|
---|
| 123 | if (rename(buf, filename) < 0) {
|
---|
| 124 | fcntl(fileno(fp), F_SETLK, &lock);
|
---|
| 125 | fclose(fp);
|
---|
| 126 | return 1;
|
---|
| 127 | } else {
|
---|
| 128 | fcntl(fileno(fp), F_SETLK, &lock);
|
---|
| 129 | fclose(fp);
|
---|
| 130 | return 0;
|
---|
| 131 | }
|
---|
| 132 | }
|
---|
| 133 |
|
---|
| 134 |
|
---|
| 135 | int passwd_main(int argc, char **argv)
|
---|
| 136 | {
|
---|
| 137 | int amroot;
|
---|
| 138 | char *cp;
|
---|
| 139 | char *np;
|
---|
| 140 | char *name;
|
---|
| 141 | char *myname;
|
---|
| 142 | int flag;
|
---|
| 143 | int algo = 1; /* -a - password algorithm */
|
---|
| 144 | int lflg = 0; /* -l - lock account */
|
---|
| 145 | int uflg = 0; /* -u - unlock account */
|
---|
| 146 | int dflg = 0; /* -d - delete password */
|
---|
| 147 | const struct passwd *pw;
|
---|
| 148 |
|
---|
| 149 | #if ENABLE_FEATURE_SHADOWPASSWDS
|
---|
| 150 | const struct spwd *sp;
|
---|
| 151 | #endif
|
---|
| 152 | amroot = (getuid() == 0);
|
---|
| 153 | openlog("passwd", LOG_PID | LOG_CONS | LOG_NOWAIT, LOG_AUTH);
|
---|
| 154 | while ((flag = getopt(argc, argv, "a:dlu")) != EOF) {
|
---|
| 155 | switch (flag) {
|
---|
| 156 | case 'a':
|
---|
| 157 | algo = get_algo(optarg);
|
---|
| 158 | break;
|
---|
| 159 | case 'd':
|
---|
| 160 | dflg++;
|
---|
| 161 | break;
|
---|
| 162 | case 'l':
|
---|
| 163 | lflg++;
|
---|
| 164 | break;
|
---|
| 165 | case 'u':
|
---|
| 166 | uflg++;
|
---|
| 167 | break;
|
---|
| 168 | default:
|
---|
| 169 | bb_show_usage();
|
---|
| 170 | }
|
---|
| 171 | }
|
---|
| 172 | myname = (char *) bb_xstrdup(bb_getpwuid(NULL, getuid(), -1));
|
---|
| 173 | /* exits on error */
|
---|
| 174 | if (optind < argc) {
|
---|
| 175 | name = argv[optind];
|
---|
| 176 | } else {
|
---|
| 177 | name = myname;
|
---|
| 178 | }
|
---|
| 179 | if ((lflg || uflg || dflg) && (optind >= argc || !amroot)) {
|
---|
| 180 | bb_show_usage();
|
---|
| 181 | }
|
---|
| 182 | pw = getpwnam(name);
|
---|
| 183 | if (!pw) {
|
---|
| 184 | bb_error_msg_and_die("Unknown user %s\n", name);
|
---|
| 185 | }
|
---|
| 186 | if (!amroot && pw->pw_uid != getuid()) {
|
---|
| 187 | syslog(LOG_WARNING, "can't change pwd for `%s'", name);
|
---|
| 188 | bb_error_msg_and_die("Permission denied.\n");
|
---|
| 189 | }
|
---|
| 190 | #if ENABLE_FEATURE_SHADOWPASSWDS
|
---|
| 191 | sp = getspnam(name);
|
---|
| 192 | if (!sp) {
|
---|
| 193 | sp = (struct spwd *) pwd_to_spwd(pw);
|
---|
| 194 | }
|
---|
| 195 | cp = sp->sp_pwdp;
|
---|
| 196 | np = sp->sp_namp;
|
---|
| 197 | #else
|
---|
| 198 | cp = pw->pw_passwd;
|
---|
| 199 | np = name;
|
---|
| 200 | #endif
|
---|
| 201 |
|
---|
| 202 | safe_strncpy(crypt_passwd, cp, sizeof(crypt_passwd));
|
---|
| 203 | if (!(dflg || lflg || uflg)) {
|
---|
| 204 | if (!amroot) {
|
---|
| 205 | if (cp[0] == '!') {
|
---|
| 206 | syslog(LOG_WARNING, "password locked for `%s'", np);
|
---|
| 207 | bb_error_msg_and_die( "The password for `%s' cannot be changed.\n", np);
|
---|
| 208 | }
|
---|
| 209 | }
|
---|
| 210 | printf("Changing password for %s\n", name);
|
---|
| 211 | if (new_password(pw, amroot, algo)) {
|
---|
| 212 | bb_error_msg_and_die( "The password for %s is unchanged.\n", name);
|
---|
| 213 | }
|
---|
| 214 | } else if (lflg) {
|
---|
| 215 | if (crypt_passwd[0] != '!') {
|
---|
| 216 | memmove(&crypt_passwd[1], crypt_passwd,
|
---|
| 217 | sizeof crypt_passwd - 1);
|
---|
| 218 | crypt_passwd[sizeof crypt_passwd - 1] = '\0';
|
---|
| 219 | crypt_passwd[0] = '!';
|
---|
| 220 | }
|
---|
| 221 | } else if (uflg) {
|
---|
| 222 | if (crypt_passwd[0] == '!') {
|
---|
| 223 | memmove(crypt_passwd, &crypt_passwd[1],
|
---|
| 224 | sizeof crypt_passwd - 1);
|
---|
| 225 | }
|
---|
| 226 | } else if (dflg) {
|
---|
| 227 | crypt_passwd[0] = '\0';
|
---|
| 228 | }
|
---|
| 229 | set_filesize_limit(30000);
|
---|
| 230 | signal(SIGHUP, SIG_IGN);
|
---|
| 231 | signal(SIGINT, SIG_IGN);
|
---|
| 232 | signal(SIGQUIT, SIG_IGN);
|
---|
| 233 | umask(077);
|
---|
| 234 | xsetuid(0);
|
---|
| 235 | if (!update_passwd(pw, crypt_passwd)) {
|
---|
| 236 | syslog(LOG_INFO, "password for `%s' changed by user `%s'", name,
|
---|
| 237 | myname);
|
---|
| 238 | printf("Password changed.\n");
|
---|
| 239 | } else {
|
---|
| 240 | syslog(LOG_WARNING, "an error occurred updating the password file");
|
---|
| 241 | bb_error_msg_and_die("An error occurred updating the password file.\n");
|
---|
| 242 | }
|
---|
| 243 | return (0);
|
---|
| 244 | }
|
---|
| 245 |
|
---|
| 246 |
|
---|
| 247 |
|
---|
| 248 | static int create_backup(const char *backup, FILE * fp)
|
---|
| 249 | {
|
---|
| 250 | struct stat sb;
|
---|
| 251 | struct utimbuf ub;
|
---|
| 252 | FILE *bkfp;
|
---|
| 253 | int c, mask;
|
---|
| 254 |
|
---|
| 255 | if (fstat(fileno(fp), &sb))
|
---|
| 256 | /* return -1; */
|
---|
| 257 | return 1;
|
---|
| 258 |
|
---|
| 259 | mask = umask(077);
|
---|
| 260 | bkfp = fopen(backup, "w");
|
---|
| 261 | umask(mask);
|
---|
| 262 | if (!bkfp)
|
---|
| 263 | /* return -1; */
|
---|
| 264 | return 1;
|
---|
| 265 |
|
---|
| 266 | /* TODO: faster copy, not one-char-at-a-time. --marekm */
|
---|
| 267 | rewind(fp);
|
---|
| 268 | while ((c = getc(fp)) != EOF) {
|
---|
| 269 | if (putc(c, bkfp) == EOF)
|
---|
| 270 | break;
|
---|
| 271 | }
|
---|
| 272 | if (c != EOF || fflush(bkfp)) {
|
---|
| 273 | fclose(bkfp);
|
---|
| 274 | /* return -1; */
|
---|
| 275 | return 1;
|
---|
| 276 | }
|
---|
| 277 | if (fclose(bkfp))
|
---|
| 278 | /* return -1; */
|
---|
| 279 | return 1;
|
---|
| 280 |
|
---|
| 281 | ub.actime = sb.st_atime;
|
---|
| 282 | ub.modtime = sb.st_mtime;
|
---|
| 283 | utime(backup, &ub);
|
---|
| 284 | return 0;
|
---|
| 285 | }
|
---|
| 286 |
|
---|
| 287 | static int i64c(int i)
|
---|
| 288 | {
|
---|
| 289 | if (i <= 0)
|
---|
| 290 | return ('.');
|
---|
| 291 | if (i == 1)
|
---|
| 292 | return ('/');
|
---|
| 293 | if (i >= 2 && i < 12)
|
---|
| 294 | return ('0' - 2 + i);
|
---|
| 295 | if (i >= 12 && i < 38)
|
---|
| 296 | return ('A' - 12 + i);
|
---|
| 297 | if (i >= 38 && i < 63)
|
---|
| 298 | return ('a' - 38 + i);
|
---|
| 299 | return ('z');
|
---|
| 300 | }
|
---|
| 301 |
|
---|
| 302 | static char *crypt_make_salt(void)
|
---|
| 303 | {
|
---|
| 304 | time_t now;
|
---|
| 305 | static unsigned long x;
|
---|
| 306 | static char result[3];
|
---|
| 307 |
|
---|
| 308 | time(&now);
|
---|
| 309 | x += now + getpid() + clock();
|
---|
| 310 | result[0] = i64c(((x >> 18) ^ (x >> 6)) & 077);
|
---|
| 311 | result[1] = i64c(((x >> 12) ^ x) & 077);
|
---|
| 312 | result[2] = '\0';
|
---|
| 313 | return result;
|
---|
| 314 | }
|
---|
| 315 |
|
---|
| 316 |
|
---|
| 317 | static int new_password(const struct passwd *pw, int amroot, int algo)
|
---|
| 318 | {
|
---|
| 319 | char *clear;
|
---|
| 320 | char *cipher;
|
---|
| 321 | char *cp;
|
---|
| 322 | char salt[12]; /* "$N$XXXXXXXX" or "XX" */
|
---|
| 323 | char orig[200];
|
---|
| 324 | char pass[200];
|
---|
| 325 |
|
---|
| 326 | if (!amroot && crypt_passwd[0]) {
|
---|
| 327 | if (!(clear = bb_askpass(0, "Old password:"))) {
|
---|
| 328 | /* return -1; */
|
---|
| 329 | return 1;
|
---|
| 330 | }
|
---|
| 331 | cipher = pw_encrypt(clear, crypt_passwd);
|
---|
| 332 | if (strcmp(cipher, crypt_passwd) != 0) {
|
---|
| 333 | syslog(LOG_WARNING, "incorrect password for `%s'",
|
---|
| 334 | pw->pw_name);
|
---|
| 335 | bb_do_delay(FAIL_DELAY);
|
---|
| 336 | fprintf(stderr, "Incorrect password.\n");
|
---|
| 337 | /* return -1; */
|
---|
| 338 | return 1;
|
---|
| 339 | }
|
---|
| 340 | safe_strncpy(orig, clear, sizeof(orig));
|
---|
| 341 | memset(clear, 0, strlen(clear));
|
---|
| 342 | memset(cipher, 0, strlen(cipher));
|
---|
| 343 | } else {
|
---|
| 344 | orig[0] = '\0';
|
---|
| 345 | }
|
---|
| 346 | if (! (cp=bb_askpass(0, "Enter the new password (minimum of 5, maximum of 8 characters)\n"
|
---|
| 347 | "Please use a combination of upper and lower case letters and numbers.\n"
|
---|
| 348 | "Enter new password: ")))
|
---|
| 349 | {
|
---|
| 350 | memset(orig, 0, sizeof orig);
|
---|
| 351 | /* return -1; */
|
---|
| 352 | return 1;
|
---|
| 353 | }
|
---|
| 354 | safe_strncpy(pass, cp, sizeof(pass));
|
---|
| 355 | memset(cp, 0, strlen(cp));
|
---|
| 356 | /* if (!obscure(orig, pass, pw)) { */
|
---|
| 357 | if (obscure(orig, pass, pw)) {
|
---|
| 358 | if (amroot) {
|
---|
| 359 | printf("\nWarning: weak password (continuing).\n");
|
---|
| 360 | } else {
|
---|
| 361 | /* return -1; */
|
---|
| 362 | return 1;
|
---|
| 363 | }
|
---|
| 364 | }
|
---|
| 365 | if (!(cp = bb_askpass(0, "Re-enter new password: "))) {
|
---|
| 366 | memset(orig, 0, sizeof orig);
|
---|
| 367 | /* return -1; */
|
---|
| 368 | return 1;
|
---|
| 369 | }
|
---|
| 370 | if (strcmp(cp, pass)) {
|
---|
| 371 | fprintf(stderr, "Passwords do not match.\n");
|
---|
| 372 | /* return -1; */
|
---|
| 373 | return 1;
|
---|
| 374 | }
|
---|
| 375 | memset(cp, 0, strlen(cp));
|
---|
| 376 | memset(orig, 0, sizeof(orig));
|
---|
| 377 | memset(salt, 0, sizeof(salt));
|
---|
| 378 |
|
---|
| 379 | if (algo == 1) {
|
---|
| 380 | strcpy(salt, "$1$");
|
---|
| 381 | strcat(salt, crypt_make_salt());
|
---|
| 382 | strcat(salt, crypt_make_salt());
|
---|
| 383 | strcat(salt, crypt_make_salt());
|
---|
| 384 | }
|
---|
| 385 |
|
---|
| 386 | strcat(salt, crypt_make_salt());
|
---|
| 387 | cp = pw_encrypt(pass, salt);
|
---|
| 388 |
|
---|
| 389 | memset(pass, 0, sizeof pass);
|
---|
| 390 | safe_strncpy(crypt_passwd, cp, sizeof(crypt_passwd));
|
---|
| 391 | return 0;
|
---|
| 392 | }
|
---|
| 393 |
|
---|
| 394 | static void set_filesize_limit(int blocks)
|
---|
| 395 | {
|
---|
| 396 | struct rlimit rlimit_fsize;
|
---|
| 397 |
|
---|
| 398 | rlimit_fsize.rlim_cur = rlimit_fsize.rlim_max = 512L * blocks;
|
---|
| 399 | setrlimit(RLIMIT_FSIZE, &rlimit_fsize);
|
---|
| 400 | }
|
---|