Home Explore Help
Sign In
ProjectNagae
/
toybox-clone
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 50361a1b07
Branches Tags
toybox-clone
/
toys
/
pending
/
sulogin.c

sulogin.c 2.7 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 
  1. /* sulogin.c - Single User Login.
    2. 

  2.  *
    3. 

  3.  * Copyright 2014 Ashish Kumar Gupta <ashishkguptaiit.cse@gmail.com>
    4. 

  4.  * Copyright 2014 Kyungwan Han <asura321@gmail.com>
    5. 

  5.  *
    6. 

  6.  * 
    7. 

  7.  * Relies on libcrypt for hash calculation. 
    8. 

  8.  * No support for PAM/securetty/selinux/login script/issue/utmp
    9. 

  9. 

  10. 

  11. USE_SULOGIN(NEWTOY(sulogin, "t#<0=0", TOYFLAG_SBIN|TOYFLAG_NEEDROOT))
    12. 

  12. 

  13. config SULOGIN
    14. 

  14.   bool "sulogin"
    15. 

  15.   default n
    16. 

  16.   depends on TOYBOX_SHADOW
    17. 

  17.   help
    18. 

  18.     usage: sulogin [-t time] [tty]
    19. 

  19. 

  20.     Single User Login.
    21. 

  21.     -t	Default Time for Single User Login
    22. 

  22. */
    23. 

  23. #define FOR_sulogin
    24. 

  24. #include "toys.h"
    25. 

  25. 

  26. GLOBALS(
    27. 

  27.   long timeout;
    28. 

  28.   struct termios crntio;
    29. 

  29. )
    30. 

  30. 

  31. static void timeout_handle(int signo) 
    32. 

  32. {
    33. 

  33.   tcsetattr(0, TCSANOW, &(TT.crntio));
    34. 

  34.   fflush(stdout);
    35. 

  35.   xprintf("\n Timed out - Normal startup\n");
    36. 

  36.   exit(0);
    37. 

  37. }
    38. 

  38. 

  39. static int validate_password(char *pwd)
    40. 

  40. {
    41. 

  41.   struct sigaction sa;
    42. 

  42.   int ret;
    43. 

  43.   char *s = "Give root password for system maintenance\n"
    44. 

  44.     "(or type Control-D for normal startup):",
    45. 

  45.     *pass;
    46. 

  46. 

  47.   tcgetattr(0, &(TT.crntio));
    48. 

  48.   sa.sa_handler = timeout_handle;
    49. 

  49. 

  50.   if(TT.timeout) {
    51. 

  51.     sigaction(SIGALRM, &sa, NULL);
    52. 

  52.     alarm(TT.timeout);
    53. 

  53.   }
    54. 

  54. 

  55.   ret = read_password(toybuf, sizeof(toybuf), s);
    56. 

  56.   if(TT.timeout) alarm(0);
    57. 

  57. 

  58.   if ( ret && !toybuf[0]) {   
    59. 

  59.     xprintf("Normal startup.\n");
    60. 

  60.     return -1;
    61. 

  61.   }
    62. 

  62. 

  63.   pass = crypt(toybuf, pwd);
    64. 

  64.   ret = 1;
    65. 

  65.   if( pass && !strcmp(pass, pwd)) ret = 0;
    66. 

  66. 

  67.   return ret;
    68. 

  68. }
    69. 

  69. 

  70. static void run_shell(char *shell) 
    71. 

  71. {
    72. 

  72.   snprintf(toybuf,sizeof(toybuf), "-%s", shell);
    73. 

  73.   execl(shell, toybuf, NULL);
    74. 

  74.   error_exit("Failed to spawn shell");
    75. 

  75. }
    76. 

  76. 

  77. void sulogin_main(void)
    78. 

  78. {
    79. 

  79.   struct passwd *pwd = NULL;
    80. 

  80.   struct spwd * spwd = NULL;
    81. 

  81.   char *forbid[] = {
    82. 

  82.     "BASH_ENV", "ENV", "HOME", "IFS", "LD_LIBRARY_PATH", "LD_PRELOAD",
    83. 

  83.     "LD_TRACE_LOADED_OBJECTS", "LD_BIND_NOW", "LD_AOUT_LIBRARY_PATH",
    84. 

  84.     "LD_AOUT_PRELOAD", "LD_NOWARN", "LD_KEEPDIR", "SHELL", NULL
    85. 

  85.   };
    86. 

  86.   char *shell = NULL, *pass = NULL, **temp = forbid;
    87. 

  87. 

  88.   if (toys.optargs[0]) {
    89. 

  89.     int fd;
    90. 

  90. 

  91.     dup2((fd = xopen_stdio(toys.optargs[0], O_RDWR)), 0);
    92. 

  92.     if (!isatty(0)) error_exit("%s: it is not a tty", toys.optargs[0]);
    93. 

  93.     dup2( fd, 1);
    94. 

  94.     dup2( fd, 2);
    95. 

  95.     if (fd > 2) close(fd);
    96. 

  96.   }  
    97. 

  97. 

  98.   for (temp = forbid; *temp; temp++) unsetenv(*temp);
    99. 

  99. 

  100.   if (!(pwd = getpwuid(0))) error_exit("invalid user");
    101. 

  101.   pass = pwd->pw_passwd;
    102. 

  102. 

  103.   if ((pass[0] == 'x' || pass[0] == '*') && !pass[1]) {
    104. 

  104.     if ((spwd = getspnam (pwd->pw_name))) pass = spwd->sp_pwdp;
    105. 

  105.   }
    106. 

  106. 

  107.   while (1) {
    108. 

  108.     int r = validate_password(pass);
    109. 

  109. 

  110.     if (r == 1) xprintf("Incorrect Login.\n");
    111. 

  111.     else if (r == 0) break;
    112. 

  112.     else if (r == -1) return;
    113. 

  113.   }
    114. 

  114. 

  115.   if ((shell = getenv("SUSHELL")) || (shell = getenv("sushell"))
    116. 

  116.       || (shell = pwd->pw_shell))
    117. 

  117.     run_shell((shell && *shell)? shell: "/bin/sh");
    118. 

  118. }
    119.