toys/other/login.c - third_party/toybox - Git at Google

 /* login.c - Start a session on the system.
  *
  * Copyright 2012 Elie De Brauwer <eliedebrauwer@gmail.com>
  *
  * No support for PAM/securetty/selinux/login script/issue/utmp
  * Relies on libcrypt for hash calculation.
  *
  * TODO: this command predates "pending" but needs cleanup. It #defines
  * random stuff, calls exit() form a signal handler... yeah.

 USE_LOGIN(NEWTOY(login, ">1f:ph:", TOYFLAG_BIN|TOYFLAG_NEEDROOT))

 config LOGIN
   bool "login"
   default y
   depends on TOYBOX_SHADOW
   help
     usage: login [-p] [-h host] [-f USERNAME] [USERNAME]

     Log in as a user, prompting for username and password if necessary.

     -p	Preserve environment
     -h	The name of the remote host for this login
     -f	login as USERNAME without authentication
 */

 #define FOR_login
 #include "toys.h"

 GLOBALS(
   char *hostname;
   char *username;

   int login_timeout, login_fail_timeout;
 )

 static void login_timeout_handler(int sig __attribute__((unused)))
 {
   printf("\nLogin timed out after %d seconds.\n", TT.login_timeout);
   exit(0);
 }

 void login_main(void)
 {
   char *forbid[] = {
     "BASH_ENV", "ENV", "HOME", "IFS", "LD_LIBRARY_PATH", "LD_PRELOAD",
     "LD_TRACE_LOADED_OBJECTS", "LD_BIND_NOW", "LD_AOUT_LIBRARY_PATH",
     "LD_AOUT_PRELOAD", "LD_NOWARN", "LD_KEEPDIR", "SHELL"
   };
   int hh = toys.optflags&FLAG_h, count, tty;
   char uu[33], *username, *pass = 0, *ss;
   struct passwd *pwd = 0;

   for (tty=0; tty<3; tty++) if (isatty(tty)) break;
   if (tty == 3) error_exit("no tty");

   for (count = 0; count < ARRAY_LEN(forbid); count++) unsetenv(forbid[count]);

   openlog("login", LOG_PID | LOG_CONS, LOG_AUTH);
   xsignal(SIGALRM, login_timeout_handler);

   if (TT.username) username = TT.username;
   else username = *toys.optargs;
   for (count = 0; count < 3; count++) {
     alarm(TT.login_timeout = 60);
     tcflush(0, TCIFLUSH);

     if (!username) {
       int i;

       memset(username = uu, 0, sizeof(uu));
       gethostname(uu, sizeof(uu)-1);
       printf("%s%slogin: ", *uu ? uu : "", *uu ? " " : "");
       fflush(stdout);

       if(!fgets(uu, sizeof(uu)-1, stdin)) _exit(1);

       // Remove trailing \n and so on
       for (i = 0; i<sizeof(uu); i++) if (uu[i]<=' ' || uu[i]==':') uu[i]=0;
       if (!*uu) {
         username = 0;
         continue;
       }
     }

     // If user exists and isn't locked
     pwd = getpwnam(username);
     if (pwd && *pwd->pw_passwd != '!' && *pwd->pw_passwd != '*') {

       // Pre-authenticated or passwordless
       if (TT.username || !*pwd->pw_passwd) break;

       // fetch shadow password if necessary
       if (*(pass = pwd->pw_passwd) == 'x') {
         struct spwd *spwd = getspnam (username);

         if (spwd) pass = spwd->sp_pwdp;
       }
     } else if (TT.username) error_exit("bad -f '%s'", TT.username);

     // Verify password. (Prompt for password _before_ checking disable state.)
     if (!read_password(toybuf, sizeof(toybuf), "Password: ")) {
       int x = pass && (ss = crypt(toybuf, pass)) && !strcmp(pass, ss);

       // password go bye-bye now.
       memset(toybuf, 0, sizeof(toybuf));
       if (x) break;
     }

     syslog(LOG_WARNING, "invalid password for '%s' on %s %s%s", pwd->pw_name,
       ttyname(tty), hh ? "from " : "", hh ? TT.hostname : "");

     sleep(3);
     puts("Login incorrect");

     username = 0;
     pwd = 0;
   }

   alarm(0);
   // This had password data in it, and we reuse for motd below
   memset(toybuf, 0, sizeof(toybuf));

   if (!pwd) error_exit("max retries (3)");

   // Check twice because "this file exists" is a security test, and in
   // theory filehandle exhaustion or other error could make open/read fail.
   if (pwd->pw_uid && !access("/etc/nologin", R_OK)) {
     ss = readfile("/etc/nologin", toybuf, sizeof(toybuf));
     puts ((ss && *ss) ? ss : "nologin");
     free(ss);
     toys.exitval = 1;

     return;
   }

   xsetuser(pwd);

   if (chdir(pwd->pw_dir)) printf("bad $HOME: %s\n", pwd->pw_dir);

   if (!(toys.optflags&FLAG_p)) {
     char *term = getenv("TERM");

     clearenv();
     if (term) setenv("TERM", term, 1);
   }

   setenv("USER", pwd->pw_name, 1);
   setenv("LOGNAME", pwd->pw_name, 1);
   setenv("HOME", pwd->pw_dir, 1);
   setenv("SHELL", pwd->pw_shell, 1);

   // Message of the day
   if ((ss = readfile("/etc/motd", 0, 0))) {
     puts(ss);
     free(ss);
   }

   syslog(LOG_INFO, "%s logged in on %s %s %s", pwd->pw_name,
     ttyname(tty), hh ? "from" : "", hh ? TT.hostname : "");

   // not using xexec(), login calls absolute path from filesystem so must exec()
   execl(pwd->pw_shell, xmprintf("-%s", pwd->pw_shell), (char *)0);
   perror_exit("exec shell '%s'", pwd->pw_shell);
 }
	/* login.c - Start a session on the system.
	*
	* Copyright 2012 Elie De Brauwer <eliedebrauwer@gmail.com>
	*
	* No support for PAM/securetty/selinux/login script/issue/utmp
	* Relies on libcrypt for hash calculation.
	*
	* TODO: this command predates "pending" but needs cleanup. It #defines
	* random stuff, calls exit() form a signal handler... yeah.

	USE_LOGIN(NEWTOY(login, ">1f:ph:", TOYFLAG_BIN\|TOYFLAG_NEEDROOT))

	config LOGIN
	bool "login"
	default y
	depends on TOYBOX_SHADOW
	help
	usage: login [-p] [-h host] [-f USERNAME] [USERNAME]

	Log in as a user, prompting for username and password if necessary.

	-p Preserve environment
	-h The name of the remote host for this login
	-f login as USERNAME without authentication
	*/

	#define FOR_login
	#include "toys.h"

	GLOBALS(
	char *hostname;
	char *username;

	int login_timeout, login_fail_timeout;
	)

	static void login_timeout_handler(int sig __attribute__((unused)))
	{
	printf("\nLogin timed out after %d seconds.\n", TT.login_timeout);
	exit(0);
	}

	void login_main(void)
	{
	char *forbid[] = {
	"BASH_ENV", "ENV", "HOME", "IFS", "LD_LIBRARY_PATH", "LD_PRELOAD",
	"LD_TRACE_LOADED_OBJECTS", "LD_BIND_NOW", "LD_AOUT_LIBRARY_PATH",
	"LD_AOUT_PRELOAD", "LD_NOWARN", "LD_KEEPDIR", "SHELL"
	};
	int hh = toys.optflags&FLAG_h, count, tty;
	char uu[33], username, pass = 0, *ss;
	struct passwd *pwd = 0;

	for (tty=0; tty<3; tty++) if (isatty(tty)) break;
	if (tty == 3) error_exit("no tty");

	for (count = 0; count < ARRAY_LEN(forbid); count++) unsetenv(forbid[count]);

	openlog("login", LOG_PID \| LOG_CONS, LOG_AUTH);
	xsignal(SIGALRM, login_timeout_handler);

	if (TT.username) username = TT.username;
	else username = *toys.optargs;
	for (count = 0; count < 3; count++) {
	alarm(TT.login_timeout = 60);
	tcflush(0, TCIFLUSH);

	if (!username) {
	int i;

	memset(username = uu, 0, sizeof(uu));
	gethostname(uu, sizeof(uu)-1);
	printf("%s%slogin: ", uu ? uu : "", uu ? " " : "");
	fflush(stdout);

	if(!fgets(uu, sizeof(uu)-1, stdin)) _exit(1);

	// Remove trailing \n and so on
	for (i = 0; i<sizeof(uu); i++) if (uu[i]<=' ' \|\| uu[i]==':') uu[i]=0;
	if (!*uu) {
	username = 0;
	continue;
	}
	}

	// If user exists and isn't locked
	pwd = getpwnam(username);
	if (pwd && pwd->pw_passwd != '!' && pwd->pw_passwd != '*') {

	// Pre-authenticated or passwordless
	if (TT.username \|\| !*pwd->pw_passwd) break;

	// fetch shadow password if necessary
	if (*(pass = pwd->pw_passwd) == 'x') {
	struct spwd *spwd = getspnam (username);

	if (spwd) pass = spwd->sp_pwdp;
	}
	} else if (TT.username) error_exit("bad -f '%s'", TT.username);

	// Verify password. (Prompt for password _before_ checking disable state.)
	if (!read_password(toybuf, sizeof(toybuf), "Password: ")) {
	int x = pass && (ss = crypt(toybuf, pass)) && !strcmp(pass, ss);

	// password go bye-bye now.
	memset(toybuf, 0, sizeof(toybuf));
	if (x) break;
	}

	syslog(LOG_WARNING, "invalid password for '%s' on %s %s%s", pwd->pw_name,
	ttyname(tty), hh ? "from " : "", hh ? TT.hostname : "");

	sleep(3);
	puts("Login incorrect");

	username = 0;
	pwd = 0;
	}

	alarm(0);
	// This had password data in it, and we reuse for motd below
	memset(toybuf, 0, sizeof(toybuf));

	if (!pwd) error_exit("max retries (3)");

	// Check twice because "this file exists" is a security test, and in
	// theory filehandle exhaustion or other error could make open/read fail.
	if (pwd->pw_uid && !access("/etc/nologin", R_OK)) {
	ss = readfile("/etc/nologin", toybuf, sizeof(toybuf));
	puts ((ss && *ss) ? ss : "nologin");
	free(ss);
	toys.exitval = 1;

	return;
	}

	xsetuser(pwd);

	if (chdir(pwd->pw_dir)) printf("bad $HOME: %s\n", pwd->pw_dir);

	if (!(toys.optflags&FLAG_p)) {
	char *term = getenv("TERM");

	clearenv();
	if (term) setenv("TERM", term, 1);
	}

	setenv("USER", pwd->pw_name, 1);
	setenv("LOGNAME", pwd->pw_name, 1);
	setenv("HOME", pwd->pw_dir, 1);
	setenv("SHELL", pwd->pw_shell, 1);

	// Message of the day
	if ((ss = readfile("/etc/motd", 0, 0))) {
	puts(ss);
	free(ss);
	}

	syslog(LOG_INFO, "%s logged in on %s %s %s", pwd->pw_name,
	ttyname(tty), hh ? "from" : "", hh ? TT.hostname : "");

	// not using xexec(), login calls absolute path from filesystem so must exec()
	execl(pwd->pw_shell, xmprintf("-%s", pwd->pw_shell), (char *)0);
	perror_exit("exec shell '%s'", pwd->pw_shell);
	}