1312
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
1 /* sulogin.c - Single User Login.
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
2 *
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
3 * Copyright 2014 Ashish Kumar Gupta <ashishkguptaiit.cse@gmail.com>
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
4 * Copyright 2014 Kyungwan Han <asura321@gmail.com>
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
5 *
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
6 *
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
7 * Relies on libcrypt for hash calculation.
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
8 * No support for PAM/securetty/selinux/login script/issue/utmp
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
9
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
10
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
11 USE_SULOGIN(NEWTOY(sulogin, "t#<0=0", TOYFLAG_SBIN|TOYFLAG_NEEDROOT))
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
12
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
13 config SULOGIN
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
14 bool "sulogin"
|
|
1313
|
15 default n
|
|
1564
|
16 depends on TOYBOX_SHADOW
|
1312
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
17 help
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
18 usage: sulogin [-t time] [tty]
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
19
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
20 Single User Login.
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
21 -t Default Time for Single User Login
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
22 */
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
23 #define FOR_sulogin
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
24 #include "toys.h"
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
25
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
26 GLOBALS(
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
27 long timeout;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
28 struct termios crntio;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
29 )
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
30
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
31 static void timeout_handle(int signo)
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
32 {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
33 tcsetattr(0, TCSANOW, &(TT.crntio));
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
34 fflush(stdout);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
35 xprintf("\n Timed out - Normal startup\n");
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
36 exit(0);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
37 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
38
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
39 static int validate_password(char *pwd)
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
40 {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
41 struct sigaction sa;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
42 int ret;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
43 char *s = "Give root password for system maintenance\n"
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
44 "(or type Control-D for normal startup):",
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
45 *pass;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
46
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
47 tcgetattr(0, &(TT.crntio));
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
48 sa.sa_handler = timeout_handle;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
49
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
50 if(TT.timeout) {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
51 sigaction(SIGALRM, &sa, NULL);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
52 alarm(TT.timeout);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
53 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
54
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
55 ret = read_password(toybuf, sizeof(toybuf), s);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
56 if(TT.timeout) alarm(0);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
57
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
58 if ( ret && !toybuf[0]) {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
59 xprintf("Normal startup.\n");
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
60 return -1;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
61 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
62
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
63 pass = crypt(toybuf, pwd);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
64 ret = 1;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
65 if( pass && !strcmp(pass, pwd)) ret = 0;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
66
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
67 return ret;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
68 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
69
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
70 static void run_shell(char *shell)
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
71 {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
72 snprintf(toybuf,sizeof(toybuf), "-%s", shell);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
73 execl(shell, toybuf, NULL);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
74 error_exit("Failed to spawn shell");
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
75 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
76
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
77 void sulogin_main(void)
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
78 {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
79 struct passwd *pwd = NULL;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
80 struct spwd * spwd = NULL;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
81 char *forbid[] = {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
82 "BASH_ENV", "ENV", "HOME", "IFS", "LD_LIBRARY_PATH", "LD_PRELOAD",
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
83 "LD_TRACE_LOADED_OBJECTS", "LD_BIND_NOW", "LD_AOUT_LIBRARY_PATH",
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
84 "LD_AOUT_PRELOAD", "LD_NOWARN", "LD_KEEPDIR", "SHELL", NULL
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
85 };
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
86 char *shell = NULL, *pass = NULL, **temp = forbid;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
87
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
88 if (toys.optargs[0]) {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
89 int fd;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
90
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
91 dup2((fd = xopen(toys.optargs[0], O_RDWR)), 0);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
92 if (!isatty(0)) error_exit("%s: it is not a tty", toys.optargs[0]);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
93 dup2( fd, 1);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
94 dup2( fd, 2);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
95 if (fd > 2) close(fd);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
96 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
97
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
98 for (temp = forbid; *temp; temp++) unsetenv(*temp);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
99
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
100 if (!(pwd = getpwuid(0))) error_exit("invalid user");
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
101 pass = pwd->pw_passwd;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
102
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
103 if ((pass[0] == 'x' || pass[0] == '*') && !pass[1]) {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
104 if ((spwd = getspnam (pwd->pw_name))) pass = spwd->sp_pwdp;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
105 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
106
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
107 while (1) {
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
108 int r = validate_password(pass);
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
109
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
110 if (r == 1) xprintf("Incorrect Login.\n");
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
111 else if (r == 0) break;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
112 else if (r == -1) return;
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
113 }
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
114
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
115 if ((shell = getenv("SUSHELL")) || (shell = getenv("sushell"))
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
116 || (shell = pwd->pw_shell))
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
117 run_shell((shell && *shell)? shell: "/bin/sh");
|
Ashwini Sharma <ak.ashwini1981@gmail.com>
parents:
diff
changeset
|
118 }
|
