login.c revision 1.27
1 1.27 mycroft /* $NetBSD: login.c,v 1.27 1997/10/12 12:31:40 mycroft Exp $ */ 2 1.12 jtc 3 1.1 cgd /*- 4 1.12 jtc * Copyright (c) 1980, 1987, 1988, 1991, 1993, 1994 5 1.10 brezak * The Regents of the University of California. All rights reserved. 6 1.1 cgd * 7 1.1 cgd * Redistribution and use in source and binary forms, with or without 8 1.1 cgd * modification, are permitted provided that the following conditions 9 1.1 cgd * are met: 10 1.1 cgd * 1. Redistributions of source code must retain the above copyright 11 1.1 cgd * notice, this list of conditions and the following disclaimer. 12 1.1 cgd * 2. Redistributions in binary form must reproduce the above copyright 13 1.1 cgd * notice, this list of conditions and the following disclaimer in the 14 1.1 cgd * documentation and/or other materials provided with the distribution. 15 1.1 cgd * 3. All advertising materials mentioning features or use of this software 16 1.1 cgd * must display the following acknowledgement: 17 1.1 cgd * This product includes software developed by the University of 18 1.1 cgd * California, Berkeley and its contributors. 19 1.1 cgd * 4. Neither the name of the University nor the names of its contributors 20 1.1 cgd * may be used to endorse or promote products derived from this software 21 1.1 cgd * without specific prior written permission. 22 1.1 cgd * 23 1.1 cgd * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 24 1.1 cgd * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 25 1.1 cgd * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 26 1.1 cgd * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 27 1.1 cgd * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 28 1.1 cgd * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 29 1.1 cgd * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 30 1.1 cgd * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 31 1.1 cgd * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 32 1.1 cgd * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 33 1.1 cgd * SUCH DAMAGE. 34 1.1 cgd */ 35 1.1 cgd 36 1.24 lukem #include <sys/cdefs.h> 37 1.1 cgd #ifndef lint 38 1.24 lukem __COPYRIGHT( 39 1.12 jtc "@(#) Copyright (c) 1980, 1987, 1988, 1991, 1993, 1994\n\ 40 1.24 lukem The Regents of the University of California. All rights reserved.\n"); 41 1.1 cgd #endif /* not lint */ 42 1.1 cgd 43 1.1 cgd #ifndef lint 44 1.12 jtc #if 0 45 1.12 jtc static char sccsid[] = "@(#)login.c 8.4 (Berkeley) 4/2/94"; 46 1.12 jtc #endif 47 1.27 mycroft __RCSID("$NetBSD: login.c,v 1.27 1997/10/12 12:31:40 mycroft Exp $"); 48 1.1 cgd #endif /* not lint */ 49 1.1 cgd 50 1.1 cgd /* 51 1.1 cgd * login [ name ] 52 1.1 cgd * login -h hostname (for telnetd, etc.) 53 1.1 cgd * login -f name (for pre-authenticated login: datakit, xterm, etc.) 54 1.1 cgd */ 55 1.1 cgd 56 1.1 cgd #include <sys/param.h> 57 1.1 cgd #include <sys/stat.h> 58 1.1 cgd #include <sys/time.h> 59 1.1 cgd #include <sys/resource.h> 60 1.1 cgd #include <sys/file.h> 61 1.1 cgd 62 1.12 jtc #include <err.h> 63 1.5 cgd #include <errno.h> 64 1.1 cgd #include <grp.h> 65 1.1 cgd #include <pwd.h> 66 1.12 jtc #include <setjmp.h> 67 1.12 jtc #include <signal.h> 68 1.19 veego #include <stdio.h> 69 1.18 mikel #include <skey.h> 70 1.5 cgd #include <stdlib.h> 71 1.1 cgd #include <string.h> 72 1.12 jtc #include <syslog.h> 73 1.12 jtc #include <ttyent.h> 74 1.12 jtc #include <tzfile.h> 75 1.12 jtc #include <unistd.h> 76 1.12 jtc #include <utmp.h> 77 1.13 jtc #include <util.h> 78 1.12 jtc 79 1.25 mycroft #ifdef KERBEROS5 80 1.25 mycroft #include <krb5.h> /* Solely for definition of kcontext */ 81 1.25 mycroft #endif 82 1.25 mycroft 83 1.1 cgd #include "pathnames.h" 84 1.1 cgd 85 1.5 cgd void badlogin __P((char *)); 86 1.5 cgd void checknologin __P((void)); 87 1.5 cgd void dolastlog __P((int)); 88 1.5 cgd void getloginname __P((void)); 89 1.24 lukem int main __P((int, char *[])); 90 1.5 cgd void motd __P((void)); 91 1.5 cgd int rootterm __P((char *)); 92 1.5 cgd void sigint __P((int)); 93 1.5 cgd void sleepexit __P((int)); 94 1.5 cgd char *stypeof __P((char *)); 95 1.5 cgd void timedout __P((int)); 96 1.9 deraadt int pwcheck __P((char *, char *, char *, char *)); 97 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 98 1.5 cgd int klogin __P((struct passwd *, char *, char *, char *)); 99 1.12 jtc void kdestroy __P((void)); 100 1.12 jtc void dofork __P((void)); 101 1.5 cgd #endif 102 1.5 cgd 103 1.12 jtc extern void login __P((struct utmp *)); 104 1.12 jtc 105 1.1 cgd #define TTYGRPNAME "tty" /* name of group to own ttys */ 106 1.1 cgd 107 1.1 cgd /* 108 1.1 cgd * This bounds the time given to login. Not a define so it can 109 1.1 cgd * be patched on machines where it's too small. 110 1.1 cgd */ 111 1.12 jtc u_int timeout = 300; 112 1.5 cgd 113 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 114 1.1 cgd int notickets = 1; 115 1.1 cgd char *instance; 116 1.12 jtc char *krbtkfile_env; 117 1.1 cgd int authok; 118 1.1 cgd #endif 119 1.25 mycroft #ifdef KERBEROS5 120 1.25 mycroft extern krb5_context kcontext; 121 1.25 mycroft #endif 122 1.1 cgd 123 1.1 cgd struct passwd *pwd; 124 1.1 cgd int failures; 125 1.1 cgd char term[64], *envinit[1], *hostname, *username, *tty; 126 1.20 lukem #ifdef SKEY 127 1.20 lukem int used_skey = 0; 128 1.20 lukem int require_skey = 0; 129 1.20 lukem char skeypw[] = "s/key"; 130 1.20 lukem #endif 131 1.1 cgd 132 1.5 cgd int 133 1.1 cgd main(argc, argv) 134 1.1 cgd int argc; 135 1.5 cgd char *argv[]; 136 1.1 cgd { 137 1.5 cgd extern char **environ; 138 1.5 cgd struct group *gr; 139 1.5 cgd struct stat st; 140 1.5 cgd struct timeval tp; 141 1.5 cgd struct utmp utmp; 142 1.12 jtc int ask, ch, cnt, fflag, hflag, pflag, quietlog, rootlogin, rval; 143 1.12 jtc uid_t uid; 144 1.20 lukem char *domain, *p, *salt, *ttyn, *pwprompt; 145 1.1 cgd char tbuf[MAXPATHLEN + 2], tname[sizeof(_PATH_TTY) + 10]; 146 1.1 cgd char localhost[MAXHOSTNAMELEN]; 147 1.24 lukem int need_chpass; 148 1.25 mycroft #ifdef KERBEROS5 149 1.25 mycroft krb5_error_code kerror; 150 1.25 mycroft #endif 151 1.1 cgd 152 1.20 lukem tbuf[0] = '\0'; 153 1.20 lukem rval = 0; 154 1.20 lukem pwprompt = NULL; 155 1.24 lukem need_chpass = 0; 156 1.20 lukem 157 1.1 cgd (void)signal(SIGALRM, timedout); 158 1.12 jtc (void)alarm(timeout); 159 1.1 cgd (void)signal(SIGQUIT, SIG_IGN); 160 1.1 cgd (void)signal(SIGINT, SIG_IGN); 161 1.1 cgd (void)setpriority(PRIO_PROCESS, 0, 0); 162 1.1 cgd 163 1.1 cgd openlog("login", LOG_ODELAY, LOG_AUTH); 164 1.1 cgd 165 1.1 cgd /* 166 1.1 cgd * -p is used by getty to tell login not to destroy the environment 167 1.5 cgd * -f is used to skip a second login authentication 168 1.1 cgd * -h is used by other servers to pass the name of the remote 169 1.1 cgd * host to login so that it may be placed in utmp and wtmp 170 1.20 lukem * -s is used to force use of S/Key or equivalent. 171 1.1 cgd */ 172 1.1 cgd domain = NULL; 173 1.1 cgd if (gethostname(localhost, sizeof(localhost)) < 0) 174 1.1 cgd syslog(LOG_ERR, "couldn't get local hostname: %m"); 175 1.1 cgd else 176 1.12 jtc domain = strchr(localhost, '.'); 177 1.1 cgd 178 1.1 cgd fflag = hflag = pflag = 0; 179 1.1 cgd uid = getuid(); 180 1.23 mikel while ((ch = getopt(argc, argv, "fh:ps")) != -1) 181 1.1 cgd switch (ch) { 182 1.1 cgd case 'f': 183 1.1 cgd fflag = 1; 184 1.1 cgd break; 185 1.1 cgd case 'h': 186 1.12 jtc if (uid) 187 1.12 jtc errx(1, "-h option: %s", strerror(EPERM)); 188 1.1 cgd hflag = 1; 189 1.23 mikel if (domain && (p = strchr(optarg, '.')) != NULL && 190 1.1 cgd strcasecmp(p, domain) == 0) 191 1.1 cgd *p = 0; 192 1.1 cgd hostname = optarg; 193 1.1 cgd break; 194 1.1 cgd case 'p': 195 1.1 cgd pflag = 1; 196 1.1 cgd break; 197 1.20 lukem case 's': 198 1.20 lukem #ifdef SKEY 199 1.20 lukem /* 200 1.20 lukem * If -s given twice, use S/Key or no login 201 1.20 lukem * otherwise just insist on S/Key if user has one. 202 1.20 lukem */ 203 1.20 lukem require_skey++; 204 1.20 lukem #endif 205 1.20 lukem break; 206 1.1 cgd case '?': 207 1.1 cgd default: 208 1.1 cgd if (!uid) 209 1.1 cgd syslog(LOG_ERR, "invalid flag %c", ch); 210 1.1 cgd (void)fprintf(stderr, 211 1.1 cgd "usage: login [-fp] [-h hostname] [username]\n"); 212 1.1 cgd exit(1); 213 1.1 cgd } 214 1.1 cgd argc -= optind; 215 1.1 cgd argv += optind; 216 1.5 cgd 217 1.1 cgd if (*argv) { 218 1.1 cgd username = *argv; 219 1.1 cgd ask = 0; 220 1.1 cgd } else 221 1.1 cgd ask = 1; 222 1.1 cgd 223 1.1 cgd for (cnt = getdtablesize(); cnt > 2; cnt--) 224 1.5 cgd (void)close(cnt); 225 1.1 cgd 226 1.5 cgd ttyn = ttyname(STDIN_FILENO); 227 1.1 cgd if (ttyn == NULL || *ttyn == '\0') { 228 1.5 cgd (void)snprintf(tname, sizeof(tname), "%s??", _PATH_TTY); 229 1.1 cgd ttyn = tname; 230 1.1 cgd } 231 1.23 mikel if ((tty = strrchr(ttyn, '/')) != NULL) 232 1.1 cgd ++tty; 233 1.1 cgd else 234 1.1 cgd tty = ttyn; 235 1.25 mycroft 236 1.25 mycroft #ifdef KERBEROS5 237 1.25 mycroft kerror = krb5_init_context(&kcontext); 238 1.25 mycroft if (kerror) { 239 1.25 mycroft syslog(LOG_NOTICE, "%s when initializing Kerberos context", 240 1.25 mycroft error_message(kerror)); 241 1.25 mycroft exit(1); 242 1.25 mycroft } 243 1.25 mycroft #endif KERBEROS5 244 1.1 cgd 245 1.1 cgd for (cnt = 0;; ask = 1) { 246 1.20 lukem #ifdef SKEY 247 1.20 lukem used_skey = 0; 248 1.20 lukem #endif 249 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 250 1.10 brezak kdestroy(); 251 1.10 brezak #endif 252 1.1 cgd if (ask) { 253 1.1 cgd fflag = 0; 254 1.1 cgd getloginname(); 255 1.1 cgd } 256 1.5 cgd rootlogin = 0; 257 1.1 cgd #ifdef KERBEROS 258 1.12 jtc if ((instance = strchr(username, '.')) != NULL) { 259 1.1 cgd if (strncmp(instance, ".root", 5) == 0) 260 1.5 cgd rootlogin = 1; 261 1.1 cgd *instance++ = '\0'; 262 1.5 cgd } else 263 1.1 cgd instance = ""; 264 1.1 cgd #endif 265 1.10 brezak #ifdef KERBEROS5 266 1.12 jtc if ((instance = strchr(username, '/')) != NULL) { 267 1.10 brezak if (strncmp(instance, "/root", 5) == 0) 268 1.10 brezak rootlogin = 1; 269 1.10 brezak *instance++ = '\0'; 270 1.10 brezak } else 271 1.10 brezak instance = ""; 272 1.10 brezak #endif 273 1.16 sommerfe if (strlen(username) > MAXLOGNAME) 274 1.16 sommerfe username[MAXLOGNAME] = '\0'; 275 1.1 cgd 276 1.1 cgd /* 277 1.1 cgd * Note if trying multiple user names; log failures for 278 1.1 cgd * previous user name, but don't bother logging one failure 279 1.1 cgd * for nonexistent name (mistyped username). 280 1.1 cgd */ 281 1.1 cgd if (failures && strcmp(tbuf, username)) { 282 1.1 cgd if (failures > (pwd ? 0 : 1)) 283 1.1 cgd badlogin(tbuf); 284 1.1 cgd failures = 0; 285 1.1 cgd } 286 1.17 mrg (void)strncpy(tbuf, username, sizeof(tbuf) - 1); 287 1.1 cgd 288 1.23 mikel if ((pwd = getpwnam(username)) != NULL) 289 1.1 cgd salt = pwd->pw_passwd; 290 1.1 cgd else 291 1.1 cgd salt = "xx"; 292 1.1 cgd 293 1.1 cgd /* 294 1.1 cgd * if we have a valid account name, and it doesn't have a 295 1.1 cgd * password, or the -f option was specified and the caller 296 1.1 cgd * is root or the caller isn't changing their uid, don't 297 1.1 cgd * authenticate. 298 1.1 cgd */ 299 1.7 mycroft if (pwd) { 300 1.7 mycroft if (pwd->pw_uid == 0) 301 1.7 mycroft rootlogin = 1; 302 1.7 mycroft 303 1.8 mycroft if (fflag && (uid == 0 || uid == pwd->pw_uid)) { 304 1.7 mycroft /* already authenticated */ 305 1.7 mycroft break; 306 1.7 mycroft } else if (pwd->pw_passwd[0] == '\0') { 307 1.7 mycroft /* pretend password okay */ 308 1.7 mycroft rval = 0; 309 1.7 mycroft goto ttycheck; 310 1.7 mycroft } 311 1.7 mycroft } 312 1.7 mycroft 313 1.1 cgd fflag = 0; 314 1.1 cgd 315 1.1 cgd (void)setpriority(PRIO_PROCESS, 0, -4); 316 1.1 cgd 317 1.20 lukem p = NULL; 318 1.20 lukem pwprompt = "Password:"; 319 1.20 lukem 320 1.27 mycroft #ifdef SKEY 321 1.20 lukem if (require_skey > 1) /* -s -s */ 322 1.20 lukem p = skeypw; 323 1.20 lukem else if (skey_haskey(username) == 0) { 324 1.20 lukem if (require_skey > 0) /* -s */ 325 1.20 lukem p = skeypw; 326 1.20 lukem else { 327 1.20 lukem static char skprompt[80]; 328 1.20 lukem char *skinfo = skey_keyinfo(username); 329 1.20 lukem 330 1.20 lukem (void)snprintf(skprompt, sizeof(skprompt)-1, 331 1.20 lukem "Password [%s]:", skinfo); 332 1.20 lukem pwprompt = skprompt; 333 1.20 lukem } 334 1.20 lukem } 335 1.27 mycroft #endif 336 1.27 mycroft 337 1.20 lukem if (p == NULL) 338 1.20 lukem p = getpass(pwprompt); 339 1.1 cgd 340 1.1 cgd if (pwd) { 341 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 342 1.1 cgd rval = klogin(pwd, instance, localhost, p); 343 1.12 jtc if (rval != 0 && rootlogin && pwd->pw_uid != 0) 344 1.12 jtc rootlogin = 0; 345 1.1 cgd if (rval == 0) 346 1.1 cgd authok = 1; 347 1.10 brezak else if (rval == 1) { 348 1.10 brezak if (pwd->pw_uid != 0) 349 1.10 brezak rootlogin = 0; 350 1.9 deraadt rval = pwcheck(username, p, salt, pwd->pw_passwd); 351 1.10 brezak } 352 1.1 cgd #else 353 1.9 deraadt rval = pwcheck(username, p, salt, pwd->pw_passwd); 354 1.1 cgd #endif 355 1.1 cgd } 356 1.20 lukem #ifdef SKEY 357 1.20 lukem if (used_skey == 0 && p != skeypw) 358 1.20 lukem #endif 359 1.20 lukem memset(p, 0, strlen(p)); 360 1.1 cgd 361 1.1 cgd (void)setpriority(PRIO_PROCESS, 0, 0); 362 1.1 cgd 363 1.7 mycroft ttycheck: 364 1.1 cgd /* 365 1.1 cgd * If trying to log in as root without Kerberos, 366 1.1 cgd * but with insecure terminal, refuse the login attempt. 367 1.1 cgd */ 368 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 369 1.1 cgd if (authok == 0) 370 1.1 cgd #endif 371 1.7 mycroft if (pwd && !rval && rootlogin && !rootterm(tty)) { 372 1.1 cgd (void)fprintf(stderr, 373 1.1 cgd "%s login refused on this terminal.\n", 374 1.1 cgd pwd->pw_name); 375 1.1 cgd if (hostname) 376 1.1 cgd syslog(LOG_NOTICE, 377 1.1 cgd "LOGIN %s REFUSED FROM %s ON TTY %s", 378 1.1 cgd pwd->pw_name, hostname, tty); 379 1.1 cgd else 380 1.1 cgd syslog(LOG_NOTICE, 381 1.1 cgd "LOGIN %s REFUSED ON TTY %s", 382 1.1 cgd pwd->pw_name, tty); 383 1.1 cgd continue; 384 1.1 cgd } 385 1.1 cgd 386 1.1 cgd if (pwd && !rval) 387 1.1 cgd break; 388 1.1 cgd 389 1.1 cgd (void)printf("Login incorrect\n"); 390 1.1 cgd failures++; 391 1.1 cgd /* we allow 10 tries, but after 3 we start backing off */ 392 1.1 cgd if (++cnt > 3) { 393 1.1 cgd if (cnt >= 10) { 394 1.1 cgd badlogin(username); 395 1.1 cgd sleepexit(1); 396 1.1 cgd } 397 1.1 cgd sleep((u_int)((cnt - 3) * 5)); 398 1.1 cgd } 399 1.1 cgd } 400 1.1 cgd 401 1.1 cgd /* committed to login -- turn off timeout */ 402 1.1 cgd (void)alarm((u_int)0); 403 1.1 cgd 404 1.1 cgd endpwent(); 405 1.1 cgd 406 1.1 cgd /* if user not super-user, check for disabled logins */ 407 1.1 cgd if (!rootlogin) 408 1.1 cgd checknologin(); 409 1.1 cgd 410 1.1 cgd if (chdir(pwd->pw_dir) < 0) { 411 1.1 cgd (void)printf("No home directory %s!\n", pwd->pw_dir); 412 1.1 cgd if (chdir("/")) 413 1.1 cgd exit(0); 414 1.1 cgd pwd->pw_dir = "/"; 415 1.1 cgd (void)printf("Logging in with home = \"/\".\n"); 416 1.1 cgd } 417 1.1 cgd 418 1.1 cgd quietlog = access(_PATH_HUSHLOGIN, F_OK) == 0; 419 1.1 cgd 420 1.1 cgd if (pwd->pw_change || pwd->pw_expire) 421 1.1 cgd (void)gettimeofday(&tp, (struct timezone *)NULL); 422 1.1 cgd if (pwd->pw_change) 423 1.24 lukem if (pwd->pw_change == _PASSWORD_CHGNOW) 424 1.24 lukem need_chpass = 1; 425 1.24 lukem else if (tp.tv_sec >= pwd->pw_change) { 426 1.1 cgd (void)printf("Sorry -- your password has expired.\n"); 427 1.1 cgd sleepexit(1); 428 1.1 cgd } else if (pwd->pw_change - tp.tv_sec < 429 1.21 lukem _PASSWORD_WARNDAYS * SECSPERDAY && !quietlog) 430 1.1 cgd (void)printf("Warning: your password expires on %s", 431 1.5 cgd ctime(&pwd->pw_change)); 432 1.1 cgd if (pwd->pw_expire) 433 1.1 cgd if (tp.tv_sec >= pwd->pw_expire) { 434 1.1 cgd (void)printf("Sorry -- your account has expired.\n"); 435 1.1 cgd sleepexit(1); 436 1.1 cgd } else if (pwd->pw_expire - tp.tv_sec < 437 1.21 lukem _PASSWORD_WARNDAYS * SECSPERDAY && !quietlog) 438 1.1 cgd (void)printf("Warning: your account expires on %s", 439 1.1 cgd ctime(&pwd->pw_expire)); 440 1.1 cgd 441 1.5 cgd /* Nothing else left to fail -- really log in. */ 442 1.12 jtc memset((void *)&utmp, 0, sizeof(utmp)); 443 1.5 cgd (void)time(&utmp.ut_time); 444 1.5 cgd (void)strncpy(utmp.ut_name, username, sizeof(utmp.ut_name)); 445 1.5 cgd if (hostname) 446 1.5 cgd (void)strncpy(utmp.ut_host, hostname, sizeof(utmp.ut_host)); 447 1.5 cgd (void)strncpy(utmp.ut_line, tty, sizeof(utmp.ut_line)); 448 1.5 cgd login(&utmp); 449 1.1 cgd 450 1.1 cgd dolastlog(quietlog); 451 1.1 cgd 452 1.1 cgd (void)chown(ttyn, pwd->pw_uid, 453 1.1 cgd (gr = getgrnam(TTYGRPNAME)) ? gr->gr_gid : pwd->pw_gid); 454 1.15 gwr 455 1.15 gwr if (ttyaction(ttyn, "login", pwd->pw_name)) 456 1.15 gwr (void)printf("Warning: ttyaction failed.\n"); 457 1.15 gwr 458 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 459 1.10 brezak /* Fork so that we can call kdestroy */ 460 1.10 brezak if (krbtkfile_env) 461 1.10 brezak dofork(); 462 1.10 brezak #endif 463 1.1 cgd (void)setgid(pwd->pw_gid); 464 1.1 cgd 465 1.1 cgd initgroups(username, pwd->pw_gid); 466 1.1 cgd 467 1.1 cgd if (*pwd->pw_shell == '\0') 468 1.1 cgd pwd->pw_shell = _PATH_BSHELL; 469 1.1 cgd 470 1.5 cgd /* Destroy environment unless user has requested its preservation. */ 471 1.1 cgd if (!pflag) 472 1.1 cgd environ = envinit; 473 1.1 cgd (void)setenv("HOME", pwd->pw_dir, 1); 474 1.1 cgd (void)setenv("SHELL", pwd->pw_shell, 1); 475 1.1 cgd if (term[0] == '\0') 476 1.5 cgd (void)strncpy(term, stypeof(tty), sizeof(term)); 477 1.1 cgd (void)setenv("TERM", term, 0); 478 1.1 cgd (void)setenv("LOGNAME", pwd->pw_name, 1); 479 1.1 cgd (void)setenv("USER", pwd->pw_name, 1); 480 1.1 cgd (void)setenv("PATH", _PATH_DEFPATH, 0); 481 1.1 cgd #ifdef KERBEROS 482 1.1 cgd if (krbtkfile_env) 483 1.1 cgd (void)setenv("KRBTKFILE", krbtkfile_env, 1); 484 1.1 cgd #endif 485 1.10 brezak #ifdef KERBEROS5 486 1.10 brezak if (krbtkfile_env) 487 1.10 brezak (void)setenv("KRB5CCNAME", krbtkfile_env, 1); 488 1.10 brezak #endif 489 1.1 cgd 490 1.12 jtc if (tty[sizeof("tty")-1] == 'd') 491 1.12 jtc syslog(LOG_INFO, "DIALUP %s, %s", tty, pwd->pw_name); 492 1.12 jtc 493 1.5 cgd /* If fflag is on, assume caller/authenticator has logged root login. */ 494 1.1 cgd if (rootlogin && fflag == 0) 495 1.1 cgd if (hostname) 496 1.1 cgd syslog(LOG_NOTICE, "ROOT LOGIN (%s) ON %s FROM %s", 497 1.1 cgd username, tty, hostname); 498 1.1 cgd else 499 1.1 cgd syslog(LOG_NOTICE, "ROOT LOGIN (%s) ON %s", username, tty); 500 1.1 cgd 501 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 502 1.1 cgd if (!quietlog && notickets == 1) 503 1.1 cgd (void)printf("Warning: no Kerberos tickets issued.\n"); 504 1.1 cgd #endif 505 1.1 cgd 506 1.1 cgd if (!quietlog) { 507 1.10 brezak (void)printf("%s\n\t%s %s\n\n", 508 1.12 jtc "Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994", 509 1.10 brezak "The Regents of the University of California. ", 510 1.10 brezak "All rights reserved."); 511 1.1 cgd motd(); 512 1.5 cgd (void)snprintf(tbuf, 513 1.5 cgd sizeof(tbuf), "%s/%s", _PATH_MAILDIR, pwd->pw_name); 514 1.1 cgd if (stat(tbuf, &st) == 0 && st.st_size != 0) 515 1.1 cgd (void)printf("You have %smail.\n", 516 1.1 cgd (st.st_mtime > st.st_atime) ? "new " : ""); 517 1.1 cgd } 518 1.1 cgd 519 1.1 cgd (void)signal(SIGALRM, SIG_DFL); 520 1.1 cgd (void)signal(SIGQUIT, SIG_DFL); 521 1.1 cgd (void)signal(SIGINT, SIG_DFL); 522 1.1 cgd (void)signal(SIGTSTP, SIG_IGN); 523 1.1 cgd 524 1.1 cgd tbuf[0] = '-'; 525 1.17 mrg (void)strncpy(tbuf + 1, (p = strrchr(pwd->pw_shell, '/')) ? 526 1.17 mrg p + 1 : pwd->pw_shell, sizeof(tbuf) - 2); 527 1.1 cgd 528 1.1 cgd if (setlogin(pwd->pw_name) < 0) 529 1.1 cgd syslog(LOG_ERR, "setlogin() failure: %m"); 530 1.1 cgd 531 1.5 cgd /* Discard permissions last so can't get killed and drop core. */ 532 1.1 cgd if (rootlogin) 533 1.24 lukem (void)setuid(0); 534 1.1 cgd else 535 1.24 lukem (void)setuid(pwd->pw_uid); 536 1.24 lukem 537 1.24 lukem /* Wait to change password until we're unprivileged */ 538 1.24 lukem if (need_chpass) { 539 1.24 lukem #ifdef SKEY 540 1.24 lukem /* If the user logged on using S/Key, don't force 541 1.24 lukem * a password change 542 1.24 lukem */ 543 1.24 lukem if (used_skey) { 544 1.24 lukem (void)printf( 545 1.24 lukem "Warning: your password has expired. Please change it as soon as possible.\n"); 546 1.24 lukem } else 547 1.24 lukem #endif 548 1.24 lukem (void)printf( 549 1.24 lukem "Your password has expired. Please choose a new one.\n"); 550 1.24 lukem if (system(_PATH_BINPASSWD) != 0) 551 1.24 lukem sleepexit(1); 552 1.24 lukem } 553 1.1 cgd 554 1.1 cgd execlp(pwd->pw_shell, tbuf, 0); 555 1.12 jtc err(1, "%s", pwd->pw_shell); 556 1.9 deraadt } 557 1.9 deraadt 558 1.9 deraadt int 559 1.9 deraadt pwcheck(user, p, salt, passwd) 560 1.9 deraadt char *user, *p, *salt, *passwd; 561 1.9 deraadt { 562 1.20 lukem int sts = strcmp(crypt(p, salt), passwd); 563 1.20 lukem 564 1.9 deraadt #ifdef SKEY 565 1.20 lukem if (sts) { /* wasn't passwd */ 566 1.20 lukem if (skey_haskey(user)) { 567 1.22 lukem if (strcasecmp(p, skeypw) == 0) 568 1.22 lukem return 1; 569 1.20 lukem } else { 570 1.20 lukem if (strcasecmp(p, skeypw) == 0) { 571 1.20 lukem sts = skey_authenticate(user); 572 1.20 lukem } else { 573 1.20 lukem if ((sts = skey_passcheck(user, p)) != -1) { 574 1.20 lukem sts = 0; /* ok */ 575 1.20 lukem } 576 1.20 lukem } 577 1.20 lukem } 578 1.20 lukem if (sts == 0) 579 1.20 lukem used_skey = 1; 580 1.20 lukem } 581 1.9 deraadt #endif 582 1.20 lukem return sts; 583 1.1 cgd } 584 1.1 cgd 585 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 586 1.16 sommerfe #define NBUFSIZ (MAXLOGNAME + 1 + 5) /* .root suffix */ 587 1.1 cgd #else 588 1.16 sommerfe #define NBUFSIZ (MAXLOGNAME + 1) 589 1.10 brezak #endif 590 1.10 brezak 591 1.10 brezak #if defined(KERBEROS) || defined(KERBEROS5) 592 1.10 brezak /* 593 1.10 brezak * This routine handles cleanup stuff, and the like. 594 1.10 brezak * It exists only in the child process. 595 1.10 brezak */ 596 1.10 brezak #include <sys/wait.h> 597 1.10 brezak void 598 1.10 brezak dofork() 599 1.10 brezak { 600 1.10 brezak int child; 601 1.10 brezak 602 1.10 brezak if (!(child = fork())) 603 1.10 brezak return; /* Child process */ 604 1.10 brezak 605 1.10 brezak /* Setup stuff? This would be things we could do in parallel with login */ 606 1.10 brezak (void) chdir("/"); /* Let's not keep the fs busy... */ 607 1.10 brezak 608 1.10 brezak /* If we're the parent, watch the child until it dies */ 609 1.10 brezak while (wait(0) != child) 610 1.10 brezak ; 611 1.10 brezak 612 1.10 brezak /* Cleanup stuff */ 613 1.10 brezak /* Run kdestroy to destroy tickets */ 614 1.10 brezak kdestroy(); 615 1.10 brezak 616 1.10 brezak /* Leave */ 617 1.10 brezak exit(0); 618 1.10 brezak } 619 1.1 cgd #endif 620 1.1 cgd 621 1.5 cgd void 622 1.1 cgd getloginname() 623 1.1 cgd { 624 1.12 jtc int ch; 625 1.12 jtc char *p; 626 1.1 cgd static char nbuf[NBUFSIZ]; 627 1.1 cgd 628 1.1 cgd for (;;) { 629 1.1 cgd (void)printf("login: "); 630 1.1 cgd for (p = nbuf; (ch = getchar()) != '\n'; ) { 631 1.1 cgd if (ch == EOF) { 632 1.1 cgd badlogin(username); 633 1.1 cgd exit(0); 634 1.1 cgd } 635 1.1 cgd if (p < nbuf + (NBUFSIZ - 1)) 636 1.1 cgd *p++ = ch; 637 1.1 cgd } 638 1.1 cgd if (p > nbuf) 639 1.1 cgd if (nbuf[0] == '-') 640 1.1 cgd (void)fprintf(stderr, 641 1.1 cgd "login names may not start with '-'.\n"); 642 1.1 cgd else { 643 1.1 cgd *p = '\0'; 644 1.1 cgd username = nbuf; 645 1.1 cgd break; 646 1.1 cgd } 647 1.1 cgd } 648 1.1 cgd } 649 1.1 cgd 650 1.5 cgd int 651 1.1 cgd rootterm(ttyn) 652 1.1 cgd char *ttyn; 653 1.1 cgd { 654 1.1 cgd struct ttyent *t; 655 1.1 cgd 656 1.12 jtc return ((t = getttynam(ttyn)) && t->ty_status & TTY_SECURE); 657 1.1 cgd } 658 1.1 cgd 659 1.1 cgd jmp_buf motdinterrupt; 660 1.1 cgd 661 1.5 cgd void 662 1.1 cgd motd() 663 1.1 cgd { 664 1.12 jtc int fd, nchars; 665 1.1 cgd sig_t oldint; 666 1.1 cgd char tbuf[8192]; 667 1.1 cgd 668 1.1 cgd if ((fd = open(_PATH_MOTDFILE, O_RDONLY, 0)) < 0) 669 1.1 cgd return; 670 1.1 cgd oldint = signal(SIGINT, sigint); 671 1.1 cgd if (setjmp(motdinterrupt) == 0) 672 1.1 cgd while ((nchars = read(fd, tbuf, sizeof(tbuf))) > 0) 673 1.1 cgd (void)write(fileno(stdout), tbuf, nchars); 674 1.1 cgd (void)signal(SIGINT, oldint); 675 1.1 cgd (void)close(fd); 676 1.1 cgd } 677 1.1 cgd 678 1.5 cgd /* ARGSUSED */ 679 1.1 cgd void 680 1.5 cgd sigint(signo) 681 1.5 cgd int signo; 682 1.1 cgd { 683 1.1 cgd longjmp(motdinterrupt, 1); 684 1.1 cgd } 685 1.1 cgd 686 1.5 cgd /* ARGSUSED */ 687 1.5 cgd void 688 1.5 cgd timedout(signo) 689 1.5 cgd int signo; 690 1.5 cgd { 691 1.5 cgd (void)fprintf(stderr, "Login timed out after %d seconds\n", timeout); 692 1.5 cgd exit(0); 693 1.5 cgd } 694 1.5 cgd 695 1.5 cgd void 696 1.1 cgd checknologin() 697 1.1 cgd { 698 1.12 jtc int fd, nchars; 699 1.1 cgd char tbuf[8192]; 700 1.1 cgd 701 1.1 cgd if ((fd = open(_PATH_NOLOGIN, O_RDONLY, 0)) >= 0) { 702 1.1 cgd while ((nchars = read(fd, tbuf, sizeof(tbuf))) > 0) 703 1.1 cgd (void)write(fileno(stdout), tbuf, nchars); 704 1.1 cgd sleepexit(0); 705 1.1 cgd } 706 1.1 cgd } 707 1.1 cgd 708 1.5 cgd void 709 1.1 cgd dolastlog(quiet) 710 1.1 cgd int quiet; 711 1.1 cgd { 712 1.1 cgd struct lastlog ll; 713 1.1 cgd int fd; 714 1.1 cgd 715 1.1 cgd if ((fd = open(_PATH_LASTLOG, O_RDWR, 0)) >= 0) { 716 1.26 kleink (void)lseek(fd, (off_t)(pwd->pw_uid * sizeof(ll)), SEEK_SET); 717 1.1 cgd if (!quiet) { 718 1.1 cgd if (read(fd, (char *)&ll, sizeof(ll)) == sizeof(ll) && 719 1.1 cgd ll.ll_time != 0) { 720 1.1 cgd (void)printf("Last login: %.*s ", 721 1.1 cgd 24-5, (char *)ctime(&ll.ll_time)); 722 1.1 cgd if (*ll.ll_host != '\0') 723 1.1 cgd (void)printf("from %.*s\n", 724 1.5 cgd (int)sizeof(ll.ll_host), 725 1.5 cgd ll.ll_host); 726 1.1 cgd else 727 1.1 cgd (void)printf("on %.*s\n", 728 1.5 cgd (int)sizeof(ll.ll_line), 729 1.5 cgd ll.ll_line); 730 1.1 cgd } 731 1.26 kleink (void)lseek(fd, (off_t)(pwd->pw_uid * sizeof(ll)), 732 1.26 kleink SEEK_SET); 733 1.1 cgd } 734 1.12 jtc memset((void *)&ll, 0, sizeof(ll)); 735 1.1 cgd (void)time(&ll.ll_time); 736 1.5 cgd (void)strncpy(ll.ll_line, tty, sizeof(ll.ll_line)); 737 1.1 cgd if (hostname) 738 1.5 cgd (void)strncpy(ll.ll_host, hostname, sizeof(ll.ll_host)); 739 1.1 cgd (void)write(fd, (char *)&ll, sizeof(ll)); 740 1.1 cgd (void)close(fd); 741 1.1 cgd } 742 1.1 cgd } 743 1.1 cgd 744 1.5 cgd void 745 1.1 cgd badlogin(name) 746 1.1 cgd char *name; 747 1.1 cgd { 748 1.1 cgd if (failures == 0) 749 1.1 cgd return; 750 1.1 cgd if (hostname) { 751 1.1 cgd syslog(LOG_NOTICE, "%d LOGIN FAILURE%s FROM %s", 752 1.1 cgd failures, failures > 1 ? "S" : "", hostname); 753 1.1 cgd syslog(LOG_AUTHPRIV|LOG_NOTICE, 754 1.1 cgd "%d LOGIN FAILURE%s FROM %s, %s", 755 1.1 cgd failures, failures > 1 ? "S" : "", hostname, name); 756 1.1 cgd } else { 757 1.1 cgd syslog(LOG_NOTICE, "%d LOGIN FAILURE%s ON %s", 758 1.1 cgd failures, failures > 1 ? "S" : "", tty); 759 1.1 cgd syslog(LOG_AUTHPRIV|LOG_NOTICE, 760 1.1 cgd "%d LOGIN FAILURE%s ON %s, %s", 761 1.1 cgd failures, failures > 1 ? "S" : "", tty, name); 762 1.1 cgd } 763 1.1 cgd } 764 1.1 cgd 765 1.1 cgd #undef UNKNOWN 766 1.1 cgd #define UNKNOWN "su" 767 1.1 cgd 768 1.1 cgd char * 769 1.1 cgd stypeof(ttyid) 770 1.1 cgd char *ttyid; 771 1.1 cgd { 772 1.1 cgd struct ttyent *t; 773 1.1 cgd 774 1.12 jtc return (ttyid && (t = getttynam(ttyid)) ? t->ty_type : UNKNOWN); 775 1.1 cgd } 776 1.1 cgd 777 1.5 cgd void 778 1.1 cgd sleepexit(eval) 779 1.1 cgd int eval; 780 1.1 cgd { 781 1.12 jtc (void)sleep(5); 782 1.1 cgd exit(eval); 783 1.1 cgd } 784
Indexes created Tue Sep 30 20:09:53 GMT 2025