2 * Copyright (c) 1990, 1993, 1994
3 * The Regents of the University of California. All rights reserved.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. All advertising materials mentioning features or use of this software
14 * must display the following acknowledgement:
15 * This product includes software developed by the University of
16 * California, Berkeley and its contributors.
17 * 4. Neither the name of the University nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
36 static const char sccsid[] = "@(#)pw_util.c 8.3 (Berkeley) 4/2/94";
38 static const char rcsid[] =
39 "$FreeBSD: src/usr.sbin/vipw/pw_util.c,v 1.17.2.4 2002/09/04 15:28:10 des Exp $";
43 * This file is used by all the "password" programs; vipw(8), chpass(1),
47 #include <sys/param.h>
48 #include <sys/errno.h>
50 #include <sys/resource.h>
66 extern char *tempname;
67 static pid_t editpid = -1;
69 char *mppath = _PATH_PWD;
70 char *masterpasswd = _PATH_MASTERPASSWD;
86 /* Unlimited resource limits. */
87 rlim.rlim_cur = rlim.rlim_max = RLIM_INFINITY;
88 (void)setrlimit(RLIMIT_CPU, &rlim);
89 (void)setrlimit(RLIMIT_FSIZE, &rlim);
90 (void)setrlimit(RLIMIT_STACK, &rlim);
91 (void)setrlimit(RLIMIT_DATA, &rlim);
92 (void)setrlimit(RLIMIT_RSS, &rlim);
94 /* Don't drop core (not really necessary, but GP's). */
95 rlim.rlim_cur = rlim.rlim_max = 0;
96 (void)setrlimit(RLIMIT_CORE, &rlim);
98 /* Turn off signals. */
99 (void)signal(SIGALRM, SIG_IGN);
100 (void)signal(SIGHUP, SIG_IGN);
101 (void)signal(SIGINT, SIG_IGN);
102 (void)signal(SIGPIPE, SIG_IGN);
103 (void)signal(SIGQUIT, SIG_IGN);
104 (void)signal(SIGTERM, SIG_IGN);
105 (void)signal(SIGCONT, pw_cont);
107 /* Create with exact permissions. */
115 * If the master password file doesn't exist, the system is hosed.
116 * Might as well try to build one. Set the close-on-exec bit so
117 * that users can't get at the encrypted passwords while editing.
118 * Open should allow flock'ing the file; see 4.4BSD. XXX
123 lockfd = open(masterpasswd, O_RDONLY, 0);
124 if (lockfd < 0 || fcntl(lockfd, F_SETFD, 1) == -1)
125 err(1, "%s", masterpasswd);
126 if (flock(lockfd, LOCK_EX|LOCK_NB))
127 errx(1, "the password db file is busy");
130 * If the password file was replaced while we were trying to
131 * get the lock, our hardlink count will be 0 and we have to
134 if (fstat(lockfd, &st) < 0)
135 errx(1, "fstat() failed");
136 if (st.st_nlink != 0)
147 static char path[MAXPATHLEN];
151 if ((p = strrchr(masterpasswd, '/')) == NULL)
152 strcpy(path, "pw.XXXXXX");
154 if (snprintf(path, sizeof path, "%.*s/pw.XXXXXX",
155 (int)(p - masterpasswd), masterpasswd) >= sizeof path)
156 errx(1, "%s: path too long", masterpasswd);
157 if ((fd = mkstemp(path)) == -1)
170 (void)fflush(stderr);
171 if (!(pid = fork())) {
173 warnx("rebuilding the database...");
174 execl(_PATH_PWD_MKDB, "pwd_mkdb", "-p", "-d", mppath,
177 warnx("updating the database...");
178 execl(_PATH_PWD_MKDB, "pwd_mkdb", "-p", "-d", mppath,
179 "-u", username, tempname, NULL);
181 pw_error(_PATH_PWD_MKDB, 1, 1);
183 pid = waitpid(pid, &pstat, 0);
184 if (pid == -1 || !WIFEXITED(pstat) || WEXITSTATUS(pstat) != 0)
197 if (!(editor = getenv("EDITOR")))
199 if ((p = strrchr(editor, '/')))
204 if (!(editpid = fork())) {
206 (void)setgid(getgid());
207 (void)setuid(getuid());
210 execlp(editor, p, tempname, NULL);
214 editpid = waitpid(editpid, (int *)&pstat, WUNTRACED);
215 errno = WEXITSTATUS(pstat);
217 pw_error(editor, 1, 1);
218 else if (WIFSTOPPED(pstat))
219 raise(WSTOPSIG(pstat));
220 else if (WIFEXITED(pstat) && errno == 0)
223 pw_error(editor, 1, 1);
233 (void)printf("re-edit the password file? [y]: ");
234 (void)fflush(stdout);
235 first = c = getchar();
236 while (c != '\n' && c != EOF)
239 pw_error(NULL, 0, 0);
243 pw_error(name, err, eval)
258 warnx("NIS information unchanged");
261 warnx("%s: unchanged", masterpasswd);
262 (void)unlink(tempname);