[unix-history] / usr / src / usr.bin / su / su.c

#ifndef lint
static char *sccsid = "@(#)su.c	4.9 (Berkeley) %G%";
#endif

#include <stdio.h>
#include <pwd.h>
#include <grp.h>
#include <sys/types.h>
#include <sys/time.h>
#include <sys/resource.h>

char	userbuf[16]	= "USER=";
char	homebuf[128]	= "HOME=";
char	shellbuf[128]	= "SHELL=";
char	pathbuf[128]	= "PATH=:/usr/ucb:/bin:/usr/bin";
char	*cleanenv[] = { userbuf, homebuf, shellbuf, pathbuf, 0, 0 };
char	*user = "root";
char	*shell = "/bin/sh";
int	fulllogin;
int	fastlogin;

extern char	**environ;
struct	passwd *pwd;
char	*crypt();
char	*getpass();
char	*getenv();

main(argc,argv)
	int argc;
	char *argv[];
{
	char *password;
	char buf[1000];
	FILE *fp;

again:
	if (argc > 1 && strcmp(argv[1], "-f") == 0) {
		fastlogin++;
		argc--, argv++;
		goto again;
	}
	if (argc > 1 && strcmp(argv[1], "-") == 0) {
		fulllogin++;
		argc--, argv++;
		goto again;
	}
	if (argc > 1 && argv[1][0] != '-') {
		user = argv[1];
		argc--, argv++;
	}
	if ((pwd = getpwuid(getuid())) == NULL) {
		fprintf(stderr, "Who are you?\n");
		exit(1);
	}
	strcpy(buf, pwd->pw_name);
	if ((pwd = getpwnam(user)) == NULL) {
		fprintf(stderr, "Unknown login: %s\n", user);
		exit(1);
	}
	/*
	 * Only allow those in group zero to su to root.
	 */
	if (pwd->pw_uid == 0) {
		struct	group *gr;
		int i;

		if ((gr = getgrgid(0)) != NULL) {
			for (i = 0; gr->gr_mem[i] != NULL; i++)
				if (strcmp(buf, gr->gr_mem[i]) == 0)
					goto userok;
			fprintf(stderr, "You do not have permission to su %s\n",
				user);
			exit(1);
		}
	userok:
		setpriority(PRIO_PROCESS, 0, -2);
	}

	if (pwd->pw_passwd[0] == '\0' || getuid() == 0)
		goto ok;
	password = getpass("Password:");
	if (strcmp(pwd->pw_passwd, crypt(password, pwd->pw_passwd)) != 0) {
		fprintf(stderr, "Sorry\n");
		if (pwd->pw_uid == 0) {
			FILE *console = fopen("/dev/console", "w");
			if (console != NULL) {
				fprintf(console, "BADSU: %s %s\r\n",
					getlogin(), ttyname(2));
				fclose(console);
			}
		}
		exit(2);
	}
ok:
	endpwent();
	if (pwd->pw_uid == 0) {
		FILE *console = fopen("/dev/console", "w");
		if (console != NULL) {
			fprintf(console, "SU: %s %s\r\n",
				getlogin(), ttyname(2));
			fclose(console);
		}
	}
	if (setgid(pwd->pw_gid) < 0) {
		perror("su: setgid");
		exit(3);
	}
	if (initgroups(user, pwd->pw_gid)) {
		fprintf(stderr, "su: initgroups failed\n");
		exit(4);
	}
	if (setuid(pwd->pw_uid) < 0) {
		perror("su: setuid");
		exit(5);
	}
	if (pwd->pw_shell && *pwd->pw_shell)
		shell = pwd->pw_shell;
	if (fulllogin) {
		cleanenv[4] = getenv("TERM");
		environ = cleanenv;
	}
	if (strcmp(user, "root"))
		setenv("USER", pwd->pw_name, userbuf);
	setenv("SHELL", shell, shellbuf);
	setenv("HOME", pwd->pw_dir, homebuf);
	setpriority(PRIO_PROCESS, 0, 0);
	if (fastlogin) {
		*argv-- = "-f";
		*argv = "su";
	} else if (fulllogin) {
		if (chdir(pwd->pw_dir) < 0) {
			fprintf(stderr, "No directory\n");
			exit(6);
		}
		*argv = "-su";
	} else
		*argv = "su";
	execv(shell, argv);
	fprintf(stderr, "No shell\n");
	exit(7);
}

setenv(ename, eval, buf)
	char *ename, *eval, *buf;
{
	register char *cp, *dp;
	register char **ep = environ;

	/*
	 * this assumes an environment variable "ename" already exists
	 */
	while (dp = *ep++) {
		for (cp = ename; *cp == *dp && *cp; cp++, dp++)
			continue;
		if (*cp == 0 && (*dp == '=' || *dp == 0)) {
			strcat(buf, eval);
			*--ep = buf;
			return;
		}
	}
}

char *
getenv(ename)
	char *ename;
{
	register char *cp, *dp;
	register char **ep = environ;

	while (dp = *ep++) {
		for (cp = ename; *cp == *dp && *cp; cp++, dp++)
			continue;
		if (*cp == 0 && (*dp == '=' || *dp == 0))
			return (*--ep);
	}
	return ((char *)0);
}
Commit	Line	Data
13dd8b1d	1	#ifndef lint
56f24790	2	static char *sccsid = "@(#)su.c 4.9 (Berkeley) %G%";
13dd8b1d SL	3	#endif
13dd8b1d SL	4
3a265c7a BJ	5	#include <stdio.h>
3a265c7a BJ	6	#include <pwd.h>
b3d7f31f	7	#include <grp.h>
4f4c2c68 SL	8	#include <sys/types.h>
	9	#include <sys/time.h>
	10	#include <sys/resource.h>
3a265c7a	11
4f4c2c68 SL	12	char userbuf[16] = "USER=";
	13	char homebuf[128] = "HOME=";
	14	char shellbuf[128] = "SHELL=";
	15	char pathbuf[128] = "PATH=:/usr/ucb:/bin:/usr/bin";
	16	char *cleanenv[] = { userbuf, homebuf, shellbuf, pathbuf, 0, 0 };
	17	char *user = "root";
	18	char *shell = "/bin/sh";
	19	int fulllogin;
	20	int fastlogin;
	21
	22	extern char **environ;
b3d7f31f	23	struct passwd *pwd;
3a265c7a BJ	24	char *crypt();
3a265c7a BJ	25	char *getpass();
4f4c2c68	26	char *getenv();
3a265c7a BJ	27
3a265c7a BJ	28	main(argc,argv)
13dd8b1d	29	int argc;
4f4c2c68	30	char *argv[];
3a265c7a	31	{
3a265c7a	32	char *password;
a8a168db RC	33	char buf[1000];
a8a168db RC	34	FILE *fp;
3a265c7a	35
4f4c2c68 SL	36	again:
	37	if (argc > 1 && strcmp(argv[1], "-f") == 0) {
	38	fastlogin++;
	39	argc--, argv++;
	40	goto again;
	41	}
	42	if (argc > 1 && strcmp(argv[1], "-") == 0) {
	43	fulllogin++;
	44	argc--, argv++;
	45	goto again;
	46	}
	47	if (argc > 1 && argv[1][0] != '-') {
	48	user = argv[1];
	49	argc--, argv++;
	50	}
96f93d9e RC	51	if ((pwd = getpwuid(getuid())) == NULL) {
	52	fprintf(stderr, "Who are you?\n");
	53	exit(1);
	54	}
	55	strcpy(buf, pwd->pw_name);
	56	if ((pwd = getpwnam(user)) == NULL) {
	57	fprintf(stderr, "Unknown login: %s\n", user);
	58	exit(1);
	59	}
	60	/*
	61	* Only allow those in group zero to su to root.
	62	*/
	63	if (pwd->pw_uid == 0) {
b3d7f31f RC	64	struct group *gr;
	65	int i;
	66
b3d7f31f RC	67	if ((gr = getgrgid(0)) != NULL) {
b3d7f31f RC	68	for (i = 0; gr->gr_mem[i] != NULL; i++)
96f93d9e	69	if (strcmp(buf, gr->gr_mem[i]) == 0)
a8a168db	70	goto userok;
96f93d9e RC	71	fprintf(stderr, "You do not have permission to su %s\n",
96f93d9e RC	72	user);
a8a168db RC	73	exit(1);
	74	}
	75	userok:
4f4c2c68	76	setpriority(PRIO_PROCESS, 0, -2);
a8a168db RC	77	}
a8a168db RC	78
13dd8b1d	79	if (pwd->pw_passwd[0] == '\0' \|\| getuid() == 0)
3a265c7a BJ	80	goto ok;
3a265c7a BJ	81	password = getpass("Password:");
13dd8b1d	82	if (strcmp(pwd->pw_passwd, crypt(password, pwd->pw_passwd)) != 0) {
4f4c2c68	83	fprintf(stderr, "Sorry\n");
13dd8b1d	84	if (pwd->pw_uid == 0) {
3a265c7a BJ	85	FILE *console = fopen("/dev/console", "w");
3a265c7a BJ	86	if (console != NULL) {
13dd8b1d SL	87	fprintf(console, "BADSU: %s %s\r\n",
13dd8b1d SL	88	getlogin(), ttyname(2));
3a265c7a BJ	89	fclose(console);
	90	}
	91	}
	92	exit(2);
	93	}
	94	ok:
	95	endpwent();
13dd8b1d	96	if (pwd->pw_uid == 0) {
3a265c7a BJ	97	FILE *console = fopen("/dev/console", "w");
3a265c7a BJ	98	if (console != NULL) {
13dd8b1d SL	99	fprintf(console, "SU: %s %s\r\n",
13dd8b1d SL	100	getlogin(), ttyname(2));
3a265c7a BJ	101	fclose(console);
	102	}
	103	}
13dd8b1d SL	104	if (setgid(pwd->pw_gid) < 0) {
	105	perror("su: setgid");
	106	exit(3);
	107	}
4f4c2c68	108	if (initgroups(user, pwd->pw_gid)) {
13dd8b1d SL	109	fprintf(stderr, "su: initgroups failed\n");
	110	exit(4);
	111	}
	112	if (setuid(pwd->pw_uid) < 0) {
	113	perror("su: setuid");
	114	exit(5);
	115	}
3a265c7a BJ	116	if (pwd->pw_shell && *pwd->pw_shell)
3a265c7a BJ	117	shell = pwd->pw_shell;
4f4c2c68 SL	118	if (fulllogin) {
	119	cleanenv[4] = getenv("TERM");
	120	environ = cleanenv;
	121	}
c399698a SL	122	if (strcmp(user, "root"))
c399698a SL	123	setenv("USER", pwd->pw_name, userbuf);
4f4c2c68 SL	124	setenv("SHELL", shell, shellbuf);
	125	setenv("HOME", pwd->pw_dir, homebuf);
	126	setpriority(PRIO_PROCESS, 0, 0);
	127	if (fastlogin) {
	128	*argv-- = "-f";
	129	*argv = "su";
	130	} else if (fulllogin) {
	131	if (chdir(pwd->pw_dir) < 0) {
	132	fprintf(stderr, "No directory\n");
	133	exit(6);
	134	}
	135	*argv = "-su";
	136	} else
	137	*argv = "su";
	138	execv(shell, argv);
	139	fprintf(stderr, "No shell\n");
	140	exit(7);
3a265c7a BJ	141	}
3a265c7a BJ	142
4f4c2c68 SL	143	setenv(ename, eval, buf)
4f4c2c68 SL	144	char ename, eval, *buf;
3a265c7a BJ	145	{
	146	register char cp, dp;
	147	register char **ep = environ;
3a265c7a	148
4f4c2c68 SL	149	/*
	150	* this assumes an environment variable "ename" already exists
	151	*/
3a265c7a	152	while (dp = *ep++) {
4f4c2c68	153	for (cp = ename; cp == dp && *cp; cp++, dp++)
3a265c7a BJ	154	continue;
3a265c7a BJ	155	if (cp == 0 && (dp == '=' \|\| *dp == 0)) {
4f4c2c68 SL	156	strcat(buf, eval);
4f4c2c68 SL	157	*--ep = buf;
3a265c7a BJ	158	return;
	159	}
	160	}
	161	}
	162
4f4c2c68 SL	163	char *
	164	getenv(ename)
	165	char *ename;
3a265c7a BJ	166	{
	167	register char cp, dp;
	168	register char **ep = environ;
3a265c7a BJ	169
3a265c7a BJ	170	while (dp = *ep++) {
4f4c2c68	171	for (cp = ename; cp == dp && *cp; cp++, dp++)
3a265c7a	172	continue;
4f4c2c68 SL	173	if (cp == 0 && (dp == '=' \|\| *dp == 0))
4f4c2c68 SL	174	return (*--ep);
3a265c7a	175	}
4f4c2c68	176	return ((char *)0);
3a265c7a	177	}