[unix-history] / usr / src / usr.bin / login / login.c

/*
 * Copyright (c) 1980 Regents of the University of California.
 * All rights reserved.  The Berkeley software License Agreement
 * specifies the terms and conditions for redistribution.
 */

#ifndef lint
char copyright[] =
"@(#) Copyright (c) 1980 Regents of the University of California.\n\
 All rights reserved.\n";
#endif not lint

#ifndef lint
static char sccsid[] = "@(#)login.c	5.16 (Berkeley) %G%";
#endif not lint

/*
 * login [ name ]
 * login -r hostname (for rlogind)
 * login -h hostname (for telnetd, etc.)
 */

#include <sys/param.h>
#include <sys/quota.h>
#include <sys/stat.h>
#include <sys/time.h>
#include <sys/resource.h>
#include <sys/file.h>

#include <sgtty.h>
#include <utmp.h>
#include <signal.h>
#include <pwd.h>
#include <stdio.h>
#include <lastlog.h>
#include <errno.h>
#include <ttyent.h>
#include <syslog.h>
#include <grp.h>

#define TTYGRPNAME	"tty"		/* name of group to own ttys */
#define TTYGID(gid)	tty_gid(gid)	/* gid that owns all ttys */

#define	SCMPN(a, b)	strncmp(a, b, sizeof(a))
#define	SCPYN(a, b)	strncpy(a, b, sizeof(a))

#define NMAX	sizeof(utmp.ut_name)
#define HMAX	sizeof(utmp.ut_host)

#define	FALSE	0
#define	TRUE	-1

char	nolog[] =	"/etc/nologin";
char	qlog[]  =	".hushlogin";
char	maildir[30] =	"/usr/spool/mail/";
char	lastlog[] =	"/usr/adm/lastlog";
struct	passwd nouser = {"", "nope", -1, -1, -1, "", "", "", "" };
struct	sgttyb ttyb;
struct	utmp utmp;
char	minusnam[16] = "-";
char	*envinit[] = { 0 };		/* now set by setenv calls */
/*
 * This bounds the time given to login.  We initialize it here
 * so it can be patched on machines where it's too small.
 */
int	timeout = 60;

char	term[64];

struct	passwd *pwd;
char	*strcat(), *rindex(), *index(), *malloc(), *realloc();
int	timedout();
char	*ttyname();
char	*crypt();
char	*getpass();
char	*stypeof();
extern	char **environ;
extern	int errno;

struct	tchars tc = {
	CINTR, CQUIT, CSTART, CSTOP, CEOT, CBRK
};
struct	ltchars ltc = {
	CSUSP, CDSUSP, CRPRNT, CFLUSH, CWERASE, CLNEXT
};

struct winsize win = { 0, 0, 0, 0 };

int	rflag;
int	usererr = -1;
char	rusername[NMAX+1], lusername[NMAX+1];
char	rpassword[NMAX+1];
char	name[NMAX+1];
char	me[MAXHOSTNAMELEN];
char	*rhost;

main(argc, argv)
	char *argv[];
{
	register char *namep;
	int pflag = 0, hflag = 0, t, f, c;
	int invalid, quietlog;
	FILE *nlfd;
	char *ttyn, *tty;
	int ldisc = 0, zero = 0, i;
	char **envnew;
	char *p, *domain, *index();

	signal(SIGALRM, timedout);
	alarm(timeout);
	signal(SIGQUIT, SIG_IGN);
	signal(SIGINT, SIG_IGN);
	setpriority(PRIO_PROCESS, 0, 0);
	quota(Q_SETUID, 0, 0, 0);
	/*
	 * -p is used by getty to tell login not to destroy the environment
	 * -r is used by rlogind to cause the autologin protocol;
	 * -h is used by other servers to pass the name of the
	 * remote host to login so that it may be placed in utmp and wtmp
	 */
	(void) gethostname(me, sizeof(me));
	domain = index(me, '.');
	while (argc > 1) {
		if (strcmp(argv[1], "-r") == 0) {
			if (rflag || hflag) {
				printf("Only one of -r and -h allowed\n");
				exit(1);
			}
			rflag = 1;
			usererr = doremotelogin(argv[2]);
			if ((p = index(argv[2], '.')) && strcmp(p, domain) == 0)
				*p = 0;
			SCPYN(utmp.ut_host, argv[2]);
			argc -= 2;
			argv += 2;
			continue;
		}
		if (strcmp(argv[1], "-h") == 0 && getuid() == 0) {
			if (rflag || hflag) {
				printf("Only one of -r and -h allowed\n");
				exit(1);
			}
			hflag = 1;
			if ((p = index(argv[2], '.')) && strcmp(p, domain) == 0)
				*p = 0;
			SCPYN(utmp.ut_host, argv[2]);
			argc -= 2;
			argv += 2;
			continue;
		}
		if (strcmp(argv[1], "-p") == 0) {
			argc--;
			argv++;
			pflag = 1;
			continue;
		}
		break;
	}
	ioctl(0, TIOCLSET, &zero);
	ioctl(0, TIOCNXCL, 0);
	ioctl(0, FIONBIO, &zero);
	ioctl(0, FIOASYNC, &zero);
	ioctl(0, TIOCGETP, &ttyb);
	/*
	 * If talking to an rlogin process,
	 * propagate the terminal type and
	 * baud rate across the network.
	 */
	if (rflag)
		doremoteterm(term, &ttyb);
	ttyb.sg_erase = CERASE;
	ttyb.sg_kill = CKILL;
	ioctl(0, TIOCSLTC, &ltc);
	ioctl(0, TIOCSETC, &tc);
	ioctl(0, TIOCSETP, &ttyb);
	for (t = getdtablesize(); t > 2; t--)
		close(t);
	ttyn = ttyname(0);
	if (ttyn == (char *)0 || *ttyn == '\0')
		ttyn = "/dev/tty??";
	tty = rindex(ttyn, '/');
	if (tty == NULL)
		tty = ttyn;
	else
		tty++;
	openlog("login", LOG_ODELAY, LOG_AUTH);
	t = 0;
	invalid = FALSE;
	do {
		ldisc = 0;
		ioctl(0, TIOCSETD, &ldisc);
		SCPYN(utmp.ut_name, "");
		/*
		 * Name specified, take it.
		 */
		if (argc > 1) {
			SCPYN(utmp.ut_name, argv[1]);
			argc = 0;
		}
		/*
		 * If remote login take given name,
		 * otherwise prompt user for something.
		 */
		if (rflag && !invalid)
			SCPYN(utmp.ut_name, lusername);
		else
			getloginname(&utmp);
		invalid = FALSE;
		if (!strcmp(pwd->pw_shell, "/bin/csh")) {
			ldisc = NTTYDISC;
			ioctl(0, TIOCSETD, &ldisc);
		}
		/*
		 * If no remote login authentication and
		 * a password exists for this user, prompt
		 * for one and verify it.
		 */
		if (usererr == -1 && *pwd->pw_passwd != '\0') {
			char *pp;

			setpriority(PRIO_PROCESS, 0, -4);
			pp = getpass("Password:");
			namep = crypt(pp, pwd->pw_passwd);
			setpriority(PRIO_PROCESS, 0, 0);
			if (strcmp(namep, pwd->pw_passwd))
				invalid = TRUE;
		}
		/*
		 * If user not super-user, check for logins disabled.
		 */
		if (pwd->pw_uid != 0 && (nlfd = fopen(nolog, "r")) > 0) {
			while ((c = getc(nlfd)) != EOF)
				putchar(c);
			fflush(stdout);
			sleep(5);
			exit(0);
		}
		/*
		 * If valid so far and root is logging in,
		 * see if root logins on this terminal are permitted.
		 */
		if (!invalid && pwd->pw_uid == 0 && !rootterm(tty)) {
			if (utmp.ut_host[0])
				syslog(LOG_CRIT,
				    "ROOT LOGIN REFUSED ON %s FROM %.*s",
				    tty, HMAX, utmp.ut_host);
			else
				syslog(LOG_CRIT,
				    "ROOT LOGIN REFUSED ON %s", tty);
			invalid = TRUE;
		}
		if (invalid) {
			printf("Login incorrect\n");
			if (++t >= 5) {
				if (utmp.ut_host[0])
					syslog(LOG_CRIT,
					    "REPEATED LOGIN FAILURES ON %s FROM %.*s, %.*s",
					    tty, HMAX, utmp.ut_host,
					    NMAX, utmp.ut_name);
				else
					syslog(LOG_CRIT,
					    "REPEATED LOGIN FAILURES ON %s, %.*s",
						tty, NMAX, utmp.ut_name);
				ioctl(0, TIOCHPCL, (struct sgttyb *) 0);
				close(0), close(1), close(2);
				sleep(10);
				exit(1);
			}
		}
		if (*pwd->pw_shell == '\0')
			pwd->pw_shell = "/bin/sh";
		if (chdir(pwd->pw_dir) < 0 && !invalid ) {
			if (chdir("/") < 0) {
				printf("No directory!\n");
				invalid = TRUE;
			} else {
				printf("No directory! %s\n",
				   "Logging in with home=/");
				pwd->pw_dir = "/";
			}
		}
		/*
		 * Remote login invalid must have been because
		 * of a restriction of some sort, no extra chances.
		 */
		if (!usererr && invalid)
			exit(1);
	} while (invalid);
/* committed to login turn off timeout */
	alarm(0);

	if (quota(Q_SETUID, pwd->pw_uid, 0, 0) < 0 && errno != EINVAL) {
		if (errno == EUSERS)
			printf("%s.\n%s.\n",
			   "Too many users logged on already",
			   "Try again later");
		else if (errno == EPROCLIM)
			printf("You have too many processes running.\n");
		else
			perror("quota (Q_SETUID)");
		sleep(5);
		exit(0);
	}
	time(&utmp.ut_time);
	t = ttyslot();
	if (t > 0 && (f = open("/etc/utmp", O_WRONLY)) >= 0) {
		lseek(f, (long)(t*sizeof(utmp)), 0);
		SCPYN(utmp.ut_line, tty);
		write(f, (char *)&utmp, sizeof(utmp));
		close(f);
	}
	if ((f = open("/usr/adm/wtmp", O_WRONLY|O_APPEND)) >= 0) {
		write(f, (char *)&utmp, sizeof(utmp));
		close(f);
	}
	quietlog = access(qlog, F_OK) == 0;
	if ((f = open(lastlog, O_RDWR)) >= 0) {
		struct lastlog ll;

		lseek(f, (long)pwd->pw_uid * sizeof (struct lastlog), 0);
		if (read(f, (char *) &ll, sizeof ll) == sizeof ll &&
		    ll.ll_time != 0 && !quietlog) {
			printf("Last login: %.*s ",
			    24-5, (char *)ctime(&ll.ll_time));
			if (*ll.ll_host != '\0')
				printf("from %.*s\n",
				    sizeof (ll.ll_host), ll.ll_host);
			else
				printf("on %.*s\n",
				    sizeof (ll.ll_line), ll.ll_line);
		}
		lseek(f, (long)pwd->pw_uid * sizeof (struct lastlog), 0);
		time(&ll.ll_time);
		SCPYN(ll.ll_line, tty);
		SCPYN(ll.ll_host, utmp.ut_host);
		write(f, (char *) &ll, sizeof ll);
		close(f);
	}
	chown(ttyn, pwd->pw_uid, TTYGID(pwd->pw_gid));
	if (!hflag && !rflag)					/* XXX */
		ioctl(0, TIOCSWINSZ, &win);
	chmod(ttyn, 0620);
	setgid(pwd->pw_gid);
	strncpy(name, utmp.ut_name, NMAX);
	name[NMAX] = '\0';
	initgroups(name, pwd->pw_gid);
	quota(Q_DOWARN, pwd->pw_uid, (dev_t)-1, 0);
	setuid(pwd->pw_uid);
	/* destroy environment unless user has asked to preserve it */
	if (!pflag)
		environ = envinit;

	/* set up environment, this time without destruction */
	/* copy the environment before setenving */
	i = 0;
	while (environ[i] != NULL)
		i++;
	envnew = (char **) malloc(sizeof (char *) * (i + 1));
	for (; i >= 0; i--)
		envnew[i] = environ[i];
	environ = envnew;

	setenv("HOME=", pwd->pw_dir, 1);
	setenv("SHELL=", pwd->pw_shell, 1);
	if (term[0] == '\0')
		strncpy(term, stypeof(tty), sizeof(term));
	setenv("TERM=", term, 0);
	setenv("USER=", pwd->pw_name, 1);
	setenv("PATH=", ":/usr/ucb:/bin:/usr/bin", 0);

	if ((namep = rindex(pwd->pw_shell, '/')) == NULL)
		namep = pwd->pw_shell;
	else
		namep++;
	strcat(minusnam, namep);
	if (tty[sizeof("tty")-1] == 'd')
		syslog(LOG_INFO, "DIALUP %s, %s", tty, pwd->pw_name);
	if (pwd->pw_uid == 0)
		if (utmp.ut_host[0])
			syslog(LOG_NOTICE, "ROOT LOGIN %s FROM %.*s",
			    tty, HMAX, utmp.ut_host);
		else
			syslog(LOG_NOTICE, "ROOT LOGIN %s", tty);
	if (!quietlog) {
		struct stat st;

		showmotd();
		strcat(maildir, pwd->pw_name);
		if (stat(maildir, &st) == 0 && st.st_size != 0)
			printf("You have %smail.\n",
				(st.st_mtime > st.st_atime) ? "new " : "");
	}
	signal(SIGALRM, SIG_DFL);
	signal(SIGQUIT, SIG_DFL);
	signal(SIGINT, SIG_DFL);
	signal(SIGTSTP, SIG_IGN);
	execlp(pwd->pw_shell, minusnam, 0);
	perror(pwd->pw_shell);
	printf("No shell\n");
	exit(0);
}

getloginname(up)
	register struct utmp *up;
{
	register char *namep;
	char c;

	while (up->ut_name[0] == '\0') {
		namep = up->ut_name;
		printf("login: ");
		while ((c = getchar()) != '\n') {
			if (c == ' ')
				c = '_';
			if (c == EOF)
				exit(0);
			if (namep < up->ut_name+NMAX)
				*namep++ = c;
		}
	}
	strncpy(lusername, up->ut_name, NMAX);
	lusername[NMAX] = 0;
	if ((pwd = getpwnam(lusername)) == NULL)
		pwd = &nouser;
}

timedout()
{

	printf("Login timed out after %d seconds\n", timeout);
	exit(0);
}

int	stopmotd;
catch()
{

	signal(SIGINT, SIG_IGN);
	stopmotd++;
}

rootterm(tty)
	char *tty;
{
	register struct ttyent *t;

	if ((t = getttynam(tty)) != NULL) {
		if (t->ty_status & TTY_SECURE)
			return (1);
	}
	return (0);
}

showmotd()
{
	FILE *mf;
	register c;

	signal(SIGINT, catch);
	if ((mf = fopen("/etc/motd", "r")) != NULL) {
		while ((c = getc(mf)) != EOF && stopmotd == 0)
			putchar(c);
		fclose(mf);
	}
	signal(SIGINT, SIG_IGN);
}

#undef	UNKNOWN
#define UNKNOWN "su"

char *
stypeof(ttyid)
	char *ttyid;
{
	register struct ttyent *t;

	if (ttyid == NULL || (t = getttynam(ttyid)) == NULL)
		return (UNKNOWN);
	return (t->ty_type);
}

doremotelogin(host)
	char *host;
{
	getstr(rusername, sizeof (rusername), "remuser");
	getstr(lusername, sizeof (lusername), "locuser");
	getstr(term, sizeof(term), "Terminal type");
	if (getuid()) {
		pwd = &nouser;
		return(-1);
	}
	pwd = getpwnam(lusername);
	if (pwd == NULL) {
		pwd = &nouser;
		return(-1);
	}
	return(ruserok(host, (pwd->pw_uid == 0), rusername, lusername));
}

getstr(buf, cnt, err)
	char *buf;
	int cnt;
	char *err;
{
	char c;

	do {
		if (read(0, &c, 1) != 1)
			exit(1);
		if (--cnt < 0) {
			printf("%s too long\r\n", err);
			exit(1);
		}
		*buf++ = c;
	} while (c != 0);
}

char	*speeds[] =
    { "0", "50", "75", "110", "134", "150", "200", "300",
      "600", "1200", "1800", "2400", "4800", "9600", "19200", "38400" };
#define	NSPEEDS	(sizeof (speeds) / sizeof (speeds[0]))

doremoteterm(term, tp)
	char *term;
	struct sgttyb *tp;
{
	register char *cp = index(term, '/'), **cpp;
	char *speed;

	if (cp) {
		*cp++ = '\0';
		speed = cp;
		cp = index(speed, '/');
		if (cp)
			*cp++ = '\0';
		for (cpp = speeds; cpp < &speeds[NSPEEDS]; cpp++)
			if (strcmp(*cpp, speed) == 0) {
				tp->sg_ispeed = tp->sg_ospeed = cpp-speeds;
				break;
			}
	}
	tp->sg_flags = ECHO|CRMOD|ANYP|XTABS;
}

/*
 * Set the value of var to be arg in the Unix 4.2 BSD environment env.
 * Var should end with '='.
 * (bindings are of the form "var=value")
 * This procedure assumes the memory for the first level of environ
 * was allocated using malloc.
 */
setenv(var, value, clobber)
	char *var, *value;
{
	extern char **environ;
	int index = 0;
	int varlen = strlen(var);
	int vallen = strlen(value);

	for (index = 0; environ[index] != NULL; index++) {
		if (strncmp(environ[index], var, varlen) == 0) {
			/* found it */
			if (!clobber)
				return;
			environ[index] = malloc(varlen + vallen + 1);
			strcpy(environ[index], var);
			strcat(environ[index], value);
			return;
		}
	}
	environ = (char **) realloc(environ, sizeof (char *) * (index + 2));
	if (environ == NULL) {
		fprintf(stderr, "login: malloc out of memory\n");
		exit(1);
	}
	environ[index] = malloc(varlen + vallen + 1);
	strcpy(environ[index], var);
	strcat(environ[index], value);
	environ[++index] = NULL;
}

tty_gid(default_gid)
	int default_gid;
{
	struct group *getgrnam(), *gr;
	int gid = default_gid;

	gr = getgrnam(TTYGRPNAME);
	if (gr != (struct group *) 0)
		gid = gr->gr_gid;

	endgrent();

	return (gid);
}
Commit	Line	Data
bcf1365c DF	1	/*
	2	* Copyright (c) 1980 Regents of the University of California.
	3	* All rights reserved. The Berkeley software License Agreement
	4	* specifies the terms and conditions for redistribution.
	5	*/
	6
	7	#ifndef lint
	8	char copyright[] =
	9	"@(#) Copyright (c) 1980 Regents of the University of California.\n\
	10	All rights reserved.\n";
	11	#endif not lint
	12
22d4760e	13	#ifndef lint
53b3a5b2	14	static char sccsid[] = "@(#)login.c 5.16 (Berkeley) %G%";
bcf1365c	15	#endif not lint
22d4760e	16
88a01c09 BJ	17	/*
88a01c09 BJ	18	* login [ name ]
3b8dd95e SL	19	* login -r hostname (for rlogind)
3b8dd95e SL	20	* login -h hostname (for telnetd, etc.)
88a01c09 BJ	21	*/
88a01c09 BJ	22
7a625b73	23	#include <sys/param.h>
3b8dd95e SL	24	#include <sys/quota.h>
	25	#include <sys/stat.h>
	26	#include <sys/time.h>
	27	#include <sys/resource.h>
9479aa87	28	#include <sys/file.h>
3b8dd95e	29
88a01c09 BJ	30	#include <sgtty.h>
	31	#include <utmp.h>
	32	#include <signal.h>
	33	#include <pwd.h>
	34	#include <stdio.h>
88a01c09	35	#include <lastlog.h>
22d4760e	36	#include <errno.h>
9479aa87 BJ	37	#include <ttyent.h>
9479aa87 BJ	38	#include <syslog.h>
c89291e2 KM	39	#include <grp.h>
c89291e2 KM	40
9382c11c MK	41	#define TTYGRPNAME "tty" /* name of group to own ttys */
9382c11c MK	42	#define TTYGID(gid) tty_gid(gid) /* gid that owns all ttys */
f570e1ff	43
9479aa87	44	#define SCMPN(a, b) strncmp(a, b, sizeof(a))
f570e1ff	45	#define SCPYN(a, b) strncpy(a, b, sizeof(a))
88a01c09	46
b4389814	47	#define NMAX sizeof(utmp.ut_name)
df9d9536	48	#define HMAX sizeof(utmp.ut_host)
88a01c09	49
f570e1ff BJ	50	#define FALSE 0
	51	#define TRUE -1
	52
	53	char nolog[] = "/etc/nologin";
	54	char qlog[] = ".hushlogin";
88a01c09 BJ	55	char maildir[30] = "/usr/spool/mail/";
88a01c09 BJ	56	char lastlog[] = "/usr/adm/lastlog";
3479a16a	57	struct passwd nouser = {"", "nope", -1, -1, -1, "", "", "", "" };
88a01c09 BJ	58	struct sgttyb ttyb;
	59	struct utmp utmp;
	60	char minusnam[16] = "-";
d3737d51	61	char envinit[] = { 0 }; / now set by setenv calls */
3b8dd95e SL	62	/*
	63	* This bounds the time given to login. We initialize it here
	64	* so it can be patched on machines where it's too small.
	65	*/
	66	int timeout = 60;
86eb6c9e	67
d3737d51	68	char term[64];
88a01c09	69
86eb6c9e	70	struct passwd *pwd;
d3737d51	71	char strcat(), rindex(), index(), malloc(), *realloc();
3b8dd95e	72	int timedout();
88a01c09 BJ	73	char *ttyname();
	74	char *crypt();
	75	char *getpass();
88a01c09 BJ	76	char *stypeof();
88a01c09 BJ	77	extern char **environ;
22d4760e	78	extern int errno;
88a01c09	79
714accc5 SL	80	struct tchars tc = {
	81	CINTR, CQUIT, CSTART, CSTOP, CEOT, CBRK
	82	};
	83	struct ltchars ltc = {
	84	CSUSP, CDSUSP, CRPRNT, CFLUSH, CWERASE, CLNEXT
841d84b0 BJ	85	};
841d84b0 BJ	86
d3737d51 SL	87	struct winsize win = { 0, 0, 0, 0 };
d3737d51 SL	88
86eb6c9e	89	int rflag;
95a2c263	90	int usererr = -1;
b4389814	91	char rusername[NMAX+1], lusername[NMAX+1];
86eb6c9e	92	char rpassword[NMAX+1];
e5321f7b	93	char name[NMAX+1];
53b3a5b2	94	char me[MAXHOSTNAMELEN];
b4389814	95	char *rhost;
86eb6c9e	96
88a01c09	97	main(argc, argv)
3b8dd95e	98	char *argv[];
88a01c09 BJ	99	{
88a01c09 BJ	100	register char *namep;
d3737d51	101	int pflag = 0, hflag = 0, t, f, c;
3b8dd95e	102	int invalid, quietlog;
f570e1ff	103	FILE *nlfd;
9479aa87	104	char ttyn, tty;
d3737d51 SL	105	int ldisc = 0, zero = 0, i;
d3737d51 SL	106	char **envnew;
53b3a5b2	107	char p, domain, *index();
88a01c09	108
3b8dd95e SL	109	signal(SIGALRM, timedout);
3b8dd95e SL	110	alarm(timeout);
88a01c09 BJ	111	signal(SIGQUIT, SIG_IGN);
88a01c09 BJ	112	signal(SIGINT, SIG_IGN);
3b8dd95e	113	setpriority(PRIO_PROCESS, 0, 0);
22d4760e	114	quota(Q_SETUID, 0, 0, 0);
3b8dd95e	115	/*
d3737d51	116	* -p is used by getty to tell login not to destroy the environment
3b8dd95e SL	117	* -r is used by rlogind to cause the autologin protocol;
	118	* -h is used by other servers to pass the name of the
	119	* remote host to login so that it may be placed in utmp and wtmp
	120	*/
53b3a5b2 MK	121	(void) gethostname(me, sizeof(me));
53b3a5b2 MK	122	domain = index(me, '.');
95a2c263	123	while (argc > 1) {
3b8dd95e	124	if (strcmp(argv[1], "-r") == 0) {
95a2c263 JB	125	if (rflag \|\| hflag) {
	126	printf("Only one of -r and -h allowed\n");
	127	exit(1);
	128	}
	129	rflag = 1;
	130	usererr = doremotelogin(argv[2]);
53b3a5b2 MK	131	if ((p = index(argv[2], '.')) && strcmp(p, domain) == 0)
53b3a5b2 MK	132	*p = 0;
3b8dd95e	133	SCPYN(utmp.ut_host, argv[2]);
95a2c263 JB	134	argc -= 2;
	135	argv += 2;
	136	continue;
b4389814	137	}
3b8dd95e	138	if (strcmp(argv[1], "-h") == 0 && getuid() == 0) {
95a2c263 JB	139	if (rflag \|\| hflag) {
	140	printf("Only one of -r and -h allowed\n");
	141	exit(1);
	142	}
d3737d51	143	hflag = 1;
53b3a5b2 MK	144	if ((p = index(argv[2], '.')) && strcmp(p, domain) == 0)
53b3a5b2 MK	145	*p = 0;
3b8dd95e	146	SCPYN(utmp.ut_host, argv[2]);
95a2c263 JB	147	argc -= 2;
	148	argv += 2;
	149	continue;
b4389814	150	}
d3737d51 SL	151	if (strcmp(argv[1], "-p") == 0) {
	152	argc--;
	153	argv++;
	154	pflag = 1;
95a2c263	155	continue;
d3737d51	156	}
95a2c263	157	break;
86eb6c9e	158	}
714accc5	159	ioctl(0, TIOCLSET, &zero);
c95ed2b2	160	ioctl(0, TIOCNXCL, 0);
4f8d3876 BJ	161	ioctl(0, FIONBIO, &zero);
4f8d3876 BJ	162	ioctl(0, FIOASYNC, &zero);
714accc5	163	ioctl(0, TIOCGETP, &ttyb);
3b8dd95e SL	164	/*
	165	* If talking to an rlogin process,
	166	* propagate the terminal type and
	167	* baud rate across the network.
	168	*/
	169	if (rflag)
	170	doremoteterm(term, &ttyb);
568353d4 MK	171	ttyb.sg_erase = CERASE;
568353d4 MK	172	ttyb.sg_kill = CKILL;
714accc5 SL	173	ioctl(0, TIOCSLTC, &ltc);
	174	ioctl(0, TIOCSETC, &tc);
	175	ioctl(0, TIOCSETP, &ttyb);
c32fb087	176	for (t = getdtablesize(); t > 2; t--)
88a01c09 BJ	177	close(t);
88a01c09 BJ	178	ttyn = ttyname(0);
6fc1474b	179	if (ttyn == (char )0 \|\| ttyn == '\0')
88a01c09	180	ttyn = "/dev/tty??";
9479aa87 BJ	181	tty = rindex(ttyn, '/');
	182	if (tty == NULL)
	183	tty = ttyn;
	184	else
	185	tty++;
076ae92c	186	openlog("login", LOG_ODELAY, LOG_AUTH);
9479aa87	187	t = 0;
96aec705	188	invalid = FALSE;
f570e1ff BJ	189	do {
f570e1ff BJ	190	ldisc = 0;
c95ed2b2	191	ioctl(0, TIOCSETD, &ldisc);
f570e1ff	192	SCPYN(utmp.ut_name, "");
3b8dd95e SL	193	/*
	194	* Name specified, take it.
	195	*/
	196	if (argc > 1) {
f570e1ff BJ	197	SCPYN(utmp.ut_name, argv[1]);
	198	argc = 0;
	199	}
3b8dd95e SL	200	/*
	201	* If remote login take given name,
	202	* otherwise prompt user for something.
	203	*/
96aec705	204	if (rflag && !invalid)
3479a16a	205	SCPYN(utmp.ut_name, lusername);
a8fb897a	206	else
3b8dd95e	207	getloginname(&utmp);
96aec705	208	invalid = FALSE;
f570e1ff BJ	209	if (!strcmp(pwd->pw_shell, "/bin/csh")) {
	210	ldisc = NTTYDISC;
	211	ioctl(0, TIOCSETD, &ldisc);
	212	}
3b8dd95e SL	213	/*
	214	* If no remote login authentication and
	215	* a password exists for this user, prompt
	216	* for one and verify it.
	217	*/
95a2c263	218	if (usererr == -1 && *pwd->pw_passwd != '\0') {
3b8dd95e SL	219	char *pp;
	220
	221	setpriority(PRIO_PROCESS, 0, -4);
	222	pp = getpass("Password:");
	223	namep = crypt(pp, pwd->pw_passwd);
	224	setpriority(PRIO_PROCESS, 0, 0);
	225	if (strcmp(namep, pwd->pw_passwd))
	226	invalid = TRUE;
f570e1ff	227	}
3b8dd95e SL	228	/*
	229	* If user not super-user, check for logins disabled.
	230	*/
f570e1ff	231	if (pwd->pw_uid != 0 && (nlfd = fopen(nolog, "r")) > 0) {
f570e1ff BJ	232	while ((c = getc(nlfd)) != EOF)
	233	putchar(c);
	234	fflush(stdout);
	235	sleep(5);
	236	exit(0);
	237	}
3b8dd95e SL	238	/*
	239	* If valid so far and root is logging in,
	240	* see if root logins on this terminal are permitted.
	241	*/
9479aa87	242	if (!invalid && pwd->pw_uid == 0 && !rootterm(tty)) {
df9d9536 KM	243	if (utmp.ut_host[0])
	244	syslog(LOG_CRIT,
	245	"ROOT LOGIN REFUSED ON %s FROM %.*s",
	246	tty, HMAX, utmp.ut_host);
	247	else
	248	syslog(LOG_CRIT,
	249	"ROOT LOGIN REFUSED ON %s", tty);
f570e1ff BJ	250	invalid = TRUE;
	251	}
	252	if (invalid) {
88a01c09	253	printf("Login incorrect\n");
9479aa87	254	if (++t >= 5) {
df9d9536 KM	255	if (utmp.ut_host[0])
	256	syslog(LOG_CRIT,
	257	"REPEATED LOGIN FAILURES ON %s FROM %.s, %.s",
	258	tty, HMAX, utmp.ut_host,
	259	NMAX, utmp.ut_name);
	260	else
	261	syslog(LOG_CRIT,
	262	"REPEATED LOGIN FAILURES ON %s, %.*s",
	263	tty, NMAX, utmp.ut_name);
9479aa87	264	ioctl(0, TIOCHPCL, (struct sgttyb *) 0);
d3737d51	265	close(0), close(1), close(2);
9479aa87 BJ	266	sleep(10);
	267	exit(1);
	268	}
88a01c09	269	}
f570e1ff BJ	270	if (*pwd->pw_shell == '\0')
f570e1ff BJ	271	pwd->pw_shell = "/bin/sh";
f570e1ff BJ	272	if (chdir(pwd->pw_dir) < 0 && !invalid ) {
	273	if (chdir("/") < 0) {
	274	printf("No directory!\n");
	275	invalid = TRUE;
	276	} else {
3b8dd95e SL	277	printf("No directory! %s\n",
3b8dd95e SL	278	"Logging in with home=/");
f570e1ff BJ	279	pwd->pw_dir = "/";
f570e1ff BJ	280	}
88a01c09	281	}
3b8dd95e SL	282	/*
	283	* Remote login invalid must have been because
	284	* of a restriction of some sort, no extra chances.
	285	*/
95a2c263	286	if (!usererr && invalid)
86eb6c9e	287	exit(1);
f570e1ff	288	} while (invalid);
3b8dd95e SL	289	/* committed to login turn off timeout */
3b8dd95e SL	290	alarm(0);
88a01c09	291
790c9c8b	292	if (quota(Q_SETUID, pwd->pw_uid, 0, 0) < 0 && errno != EINVAL) {
22d4760e SL	293	if (errno == EUSERS)
	294	printf("%s.\n%s.\n",
	295	"Too many users logged on already",
	296	"Try again later");
	297	else if (errno == EPROCLIM)
	298	printf("You have too many processes running.\n");
	299	else
6821e9c5	300	perror("quota (Q_SETUID)");
22d4760e SL	301	sleep(5);
	302	exit(0);
	303	}
88a01c09 BJ	304	time(&utmp.ut_time);
88a01c09 BJ	305	t = ttyslot();
9479aa87	306	if (t > 0 && (f = open("/etc/utmp", O_WRONLY)) >= 0) {
88a01c09	307	lseek(f, (long)(t*sizeof(utmp)), 0);
9479aa87	308	SCPYN(utmp.ut_line, tty);
88a01c09 BJ	309	write(f, (char *)&utmp, sizeof(utmp));
	310	close(f);
	311	}
9479aa87	312	if ((f = open("/usr/adm/wtmp", O_WRONLY\|O_APPEND)) >= 0) {
88a01c09 BJ	313	write(f, (char *)&utmp, sizeof(utmp));
	314	close(f);
	315	}
9479aa87 BJ	316	quietlog = access(qlog, F_OK) == 0;
9479aa87 BJ	317	if ((f = open(lastlog, O_RDWR)) >= 0) {
f570e1ff BJ	318	struct lastlog ll;
	319
	320	lseek(f, (long)pwd->pw_uid * sizeof (struct lastlog), 0);
	321	if (read(f, (char *) &ll, sizeof ll) == sizeof ll &&
3b8dd95e SL	322	ll.ll_time != 0 && !quietlog) {
	323	printf("Last login: %.*s ",
	324	24-5, (char *)ctime(&ll.ll_time));
	325	if (*ll.ll_host != '\0')
	326	printf("from %.*s\n",
	327	sizeof (ll.ll_host), ll.ll_host);
	328	else
	329	printf("on %.*s\n",
	330	sizeof (ll.ll_line), ll.ll_line);
f570e1ff BJ	331	}
	332	lseek(f, (long)pwd->pw_uid * sizeof (struct lastlog), 0);
	333	time(&ll.ll_time);
9479aa87	334	SCPYN(ll.ll_line, tty);
3b8dd95e	335	SCPYN(ll.ll_host, utmp.ut_host);
f570e1ff BJ	336	write(f, (char *) &ll, sizeof ll);
	337	close(f);
	338	}
9382c11c	339	chown(ttyn, pwd->pw_uid, TTYGID(pwd->pw_gid));
c32fb087	340	if (!hflag && !rflag) /* XXX */
d3737d51	341	ioctl(0, TIOCSWINSZ, &win);
c89291e2	342	chmod(ttyn, 0620);
88a01c09	343	setgid(pwd->pw_gid);
e5321f7b KM	344	strncpy(name, utmp.ut_name, NMAX);
e5321f7b KM	345	name[NMAX] = '\0';
b1198826	346	initgroups(name, pwd->pw_gid);
22d4760e	347	quota(Q_DOWARN, pwd->pw_uid, (dev_t)-1, 0);
88a01c09	348	setuid(pwd->pw_uid);
d3737d51 SL	349	/* destroy environment unless user has asked to preserve it */
	350	if (!pflag)
	351	environ = envinit;
	352
	353	/* set up environment, this time without destruction */
	354	/* copy the environment before setenving */
	355	i = 0;
	356	while (environ[i] != NULL)
	357	i++;
	358	envnew = (char *) malloc(sizeof (char ) * (i + 1));
	359	for (; i >= 0; i--)
	360	envnew[i] = environ[i];
	361	environ = envnew;
	362
bed177dc MK	363	setenv("HOME=", pwd->pw_dir, 1);
bed177dc MK	364	setenv("SHELL=", pwd->pw_shell, 1);
d3737d51 SL	365	if (term[0] == '\0')
d3737d51 SL	366	strncpy(term, stypeof(tty), sizeof(term));
bed177dc MK	367	setenv("TERM=", term, 0);
	368	setenv("USER=", pwd->pw_name, 1);
	369	setenv("PATH=", ":/usr/ucb:/bin:/usr/bin", 0);
d3737d51	370
88a01c09 BJ	371	if ((namep = rindex(pwd->pw_shell, '/')) == NULL)
	372	namep = pwd->pw_shell;
	373	else
	374	namep++;
	375	strcat(minusnam, namep);
9479aa87	376	if (tty[sizeof("tty")-1] == 'd')
d3737d51 SL	377	syslog(LOG_INFO, "DIALUP %s, %s", tty, pwd->pw_name);
d3737d51 SL	378	if (pwd->pw_uid == 0)
df9d9536 KM	379	if (utmp.ut_host[0])
	380	syslog(LOG_NOTICE, "ROOT LOGIN %s FROM %.*s",
	381	tty, HMAX, utmp.ut_host);
	382	else
	383	syslog(LOG_NOTICE, "ROOT LOGIN %s", tty);
4f8d3876	384	if (!quietlog) {
6821e9c5	385	struct stat st;
d3737d51	386
f570e1ff BJ	387	showmotd();
f570e1ff BJ	388	strcat(maildir, pwd->pw_name);
6821e9c5 S	389	if (stat(maildir, &st) == 0 && st.st_size != 0)
6821e9c5 S	390	printf("You have %smail.\n",
d3737d51	391	(st.st_mtime > st.st_atime) ? "new " : "");
f570e1ff	392	}
3b8dd95e	393	signal(SIGALRM, SIG_DFL);
88a01c09 BJ	394	signal(SIGQUIT, SIG_DFL);
88a01c09 BJ	395	signal(SIGINT, SIG_DFL);
5f87416f	396	signal(SIGTSTP, SIG_IGN);
88a01c09	397	execlp(pwd->pw_shell, minusnam, 0);
f570e1ff	398	perror(pwd->pw_shell);
88a01c09 BJ	399	printf("No shell\n");
	400	exit(0);
	401	}
	402
3b8dd95e SL	403	getloginname(up)
	404	register struct utmp *up;
	405	{
	406	register char *namep;
5a786176	407	char c;
3b8dd95e	408
3b8dd95e	409	while (up->ut_name[0] == '\0') {
d910ab7f	410	namep = up->ut_name;
5a786176	411	printf("login: ");
3b8dd95e SL	412	while ((c = getchar()) != '\n') {
	413	if (c == ' ')
	414	c = '_';
	415	if (c == EOF)
	416	exit(0);
	417	if (namep < up->ut_name+NMAX)
	418	*namep++ = c;
	419	}
	420	}
d910ab7f EW	421	strncpy(lusername, up->ut_name, NMAX);
d910ab7f EW	422	lusername[NMAX] = 0;
d910ab7f	423	if ((pwd = getpwnam(lusername)) == NULL)
3b8dd95e	424	pwd = &nouser;
3b8dd95e SL	425	}
	426
	427	timedout()
	428	{
	429
	430	printf("Login timed out after %d seconds\n", timeout);
	431	exit(0);
	432	}
	433
88a01c09 BJ	434	int stopmotd;
	435	catch()
	436	{
1886582e	437
88a01c09 BJ	438	signal(SIGINT, SIG_IGN);
	439	stopmotd++;
	440	}
	441
f570e1ff	442	rootterm(tty)
1886582e	443	char *tty;
f570e1ff	444	{
9479aa87 BJ	445	register struct ttyent *t;
	446
	447	if ((t = getttynam(tty)) != NULL) {
	448	if (t->ty_status & TTY_SECURE)
	449	return (1);
f570e1ff	450	}
9479aa87	451	return (0);
f570e1ff BJ	452	}
f570e1ff BJ	453
88a01c09 BJ	454	showmotd()
	455	{
	456	FILE *mf;
	457	register c;
	458
	459	signal(SIGINT, catch);
9479aa87	460	if ((mf = fopen("/etc/motd", "r")) != NULL) {
f570e1ff	461	while ((c = getc(mf)) != EOF && stopmotd == 0)
88a01c09 BJ	462	putchar(c);
	463	fclose(mf);
	464	}
	465	signal(SIGINT, SIG_IGN);
	466	}
	467
f570e1ff	468	#undef UNKNOWN
88a01c09 BJ	469	#define UNKNOWN "su"
	470
	471	char *
	472	stypeof(ttyid)
3b8dd95e	473	char *ttyid;
88a01c09	474	{
9479aa87	475	register struct ttyent *t;
88a01c09	476
9479aa87	477	if (ttyid == NULL \|\| (t = getttynam(ttyid)) == NULL)
88a01c09	478	return (UNKNOWN);
9479aa87	479	return (t->ty_type);
88a01c09	480	}
86eb6c9e	481
3b8dd95e SL	482	doremotelogin(host)
	483	char *host;
	484	{
3b8dd95e SL	485	getstr(rusername, sizeof (rusername), "remuser");
3b8dd95e SL	486	getstr(lusername, sizeof (lusername), "locuser");
d3737d51	487	getstr(term, sizeof(term), "Terminal type");
4cf9fc9e SL	488	if (getuid()) {
4cf9fc9e SL	489	pwd = &nouser;
95a2c263	490	return(-1);
4cf9fc9e	491	}
3b8dd95e	492	pwd = getpwnam(lusername);
4cf9fc9e SL	493	if (pwd == NULL) {
4cf9fc9e SL	494	pwd = &nouser;
95a2c263	495	return(-1);
3b8dd95e	496	}
95a2c263	497	return(ruserok(host, (pwd->pw_uid == 0), rusername, lusername));
3b8dd95e SL	498	}
3b8dd95e SL	499
86eb6c9e BJ	500	getstr(buf, cnt, err)
	501	char *buf;
	502	int cnt;
	503	char *err;
	504	{
	505	char c;
	506
	507	do {
	508	if (read(0, &c, 1) != 1)
	509	exit(1);
	510	if (--cnt < 0) {
	511	printf("%s too long\r\n", err);
	512	exit(1);
	513	}
	514	*buf++ = c;
	515	} while (c != 0);
	516	}
4f8d3876	517
3b8dd95e SL	518	char *speeds[] =
	519	{ "0", "50", "75", "110", "134", "150", "200", "300",
	520	"600", "1200", "1800", "2400", "4800", "9600", "19200", "38400" };
	521	#define NSPEEDS (sizeof (speeds) / sizeof (speeds[0]))
	522
	523	doremoteterm(term, tp)
	524	char *term;
	525	struct sgttyb *tp;
	526	{
d3737d51 SL	527	register char cp = index(term, '/'), *cpp;
d3737d51 SL	528	char *speed;
3b8dd95e SL	529
3b8dd95e SL	530	if (cp) {
d3737d51 SL	531	*cp++ = '\0';
	532	speed = cp;
	533	cp = index(speed, '/');
	534	if (cp)
	535	*cp++ = '\0';
	536	for (cpp = speeds; cpp < &speeds[NSPEEDS]; cpp++)
	537	if (strcmp(*cpp, speed) == 0) {
	538	tp->sg_ispeed = tp->sg_ospeed = cpp-speeds;
3b8dd95e SL	539	break;
	540	}
	541	}
	542	tp->sg_flags = ECHO\|CRMOD\|ANYP\|XTABS;
	543	}
d3737d51 SL	544
	545	/*
	546	* Set the value of var to be arg in the Unix 4.2 BSD environment env.
	547	* Var should end with '='.
	548	* (bindings are of the form "var=value")
	549	* This procedure assumes the memory for the first level of environ
	550	* was allocated using malloc.
	551	*/
bed177dc	552	setenv(var, value, clobber)
d3737d51 SL	553	char var, value;
	554	{
	555	extern char **environ;
	556	int index = 0;
	557	int varlen = strlen(var);
	558	int vallen = strlen(value);
	559
	560	for (index = 0; environ[index] != NULL; index++) {
	561	if (strncmp(environ[index], var, varlen) == 0) {
	562	/* found it */
bed177dc MK	563	if (!clobber)
bed177dc MK	564	return;
d3737d51 SL	565	environ[index] = malloc(varlen + vallen + 1);
	566	strcpy(environ[index], var);
	567	strcat(environ[index], value);
	568	return;
	569	}
	570	}
	571	environ = (char *) realloc(environ, sizeof (char ) * (index + 2));
	572	if (environ == NULL) {
	573	fprintf(stderr, "login: malloc out of memory\n");
	574	exit(1);
	575	}
	576	environ[index] = malloc(varlen + vallen + 1);
	577	strcpy(environ[index], var);
	578	strcat(environ[index], value);
	579	environ[++index] = NULL;
	580	}
c89291e2	581
9382c11c	582	tty_gid(default_gid)
5576108a	583	int default_gid;
c89291e2 KM	584	{
c89291e2 KM	585	struct group getgrnam(), gr;
5576108a	586	int gid = default_gid;
c89291e2	587
9382c11c	588	gr = getgrnam(TTYGRPNAME);
c89291e2 KM	589	if (gr != (struct group *) 0)
	590	gid = gr->gr_gid;
	591
	592	endgrent();
	593
5576108a	594	return (gid);
c89291e2	595	}