mirror of
https://git.FreeBSD.org/src.git
synced 2025-01-17 15:27:36 +00:00
683cef3c33
Insist that uid == 0 for client ppp Disallow client sockets if no password is specified Don't exit on failure to open client socket for listening Allow specification of null local password Use reasonable size (smaller) ``vector''s in auth.c Fix "passwd ..." usage message Insist on "all" as arg to "quit" (if any) Drop client socket connection before Cleanup() when "quit all"
228 lines
4.6 KiB
C
228 lines
4.6 KiB
C
/*
|
|
* System configuration routines
|
|
*
|
|
* Written by Toshiharu OHNO (tony-o@iij.ad.jp)
|
|
*
|
|
* Copyright (C) 1993, Internet Initiative Japan, Inc. All rights reserverd.
|
|
*
|
|
* Redistribution and use in source and binary forms are permitted
|
|
* provided that the above copyright notice and this paragraph are
|
|
* duplicated in all such forms and that any documentation,
|
|
* advertising materials, and other materials related to such
|
|
* distribution and use acknowledge that the software was developed
|
|
* by the Internet Initiative Japan, Inc. The name of the
|
|
* IIJ may not be used to endorse or promote products derived
|
|
* from this software without specific prior written permission.
|
|
* THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
|
|
* IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
|
|
* WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
|
|
*
|
|
* $Id: systems.c,v 1.15 1997/08/31 22:59:49 brian Exp $
|
|
*
|
|
* TODO:
|
|
*/
|
|
#include "fsm.h"
|
|
#include "loadalias.h"
|
|
#include "vars.h"
|
|
#include "ipcp.h"
|
|
#include "pathnames.h"
|
|
#include "vars.h"
|
|
#include "server.h"
|
|
#include "command.h"
|
|
|
|
extern void DecodeCommand();
|
|
|
|
static int uid, gid;
|
|
static int euid, egid;
|
|
static int usermode;
|
|
|
|
int
|
|
OrigUid()
|
|
{
|
|
return uid;
|
|
}
|
|
|
|
void
|
|
GetUid()
|
|
{
|
|
uid = getuid();
|
|
gid = getgid();
|
|
euid = geteuid();
|
|
egid = getegid();
|
|
usermode = 0;
|
|
}
|
|
|
|
static void
|
|
SetUserId()
|
|
{
|
|
if (!usermode) {
|
|
if (setreuid(euid, uid) == -1) {
|
|
LogPrintf(LogERROR, "unable to setreuid!\n");
|
|
ServerClose();
|
|
exit(1);
|
|
}
|
|
if (setregid(egid, gid) == -1) {
|
|
LogPrintf(LogERROR, "unable to setregid!\n");
|
|
ServerClose();
|
|
exit(1);
|
|
}
|
|
usermode = 1;
|
|
}
|
|
}
|
|
|
|
static void
|
|
SetPppId()
|
|
{
|
|
if (usermode) {
|
|
if (setreuid(uid, euid) == -1) {
|
|
LogPrintf(LogERROR, "unable to setreuid!\n");
|
|
ServerClose();
|
|
exit(1);
|
|
}
|
|
if (setregid(gid, egid) == -1) {
|
|
LogPrintf(LogERROR, "unable to setregid!\n");
|
|
ServerClose();
|
|
exit(1);
|
|
}
|
|
usermode = 0;
|
|
}
|
|
}
|
|
|
|
FILE *
|
|
OpenSecret(char *file)
|
|
{
|
|
FILE *fp;
|
|
char *cp;
|
|
char line[100];
|
|
|
|
fp = NULL;
|
|
cp = getenv("HOME");
|
|
if (cp) {
|
|
SetUserId();
|
|
snprintf(line, sizeof line, "%s/.%s", cp, file);
|
|
fp = fopen(line, "r");
|
|
}
|
|
if (fp == NULL) {
|
|
SetPppId();
|
|
snprintf(line, sizeof line, "%s/%s", _PATH_PPP, file);
|
|
fp = fopen(line, "r");
|
|
}
|
|
if (fp == NULL) {
|
|
LogPrintf(LogWARN, "OpenSecret: Can't open %s.\n", line);
|
|
SetPppId();
|
|
return (NULL);
|
|
}
|
|
return (fp);
|
|
}
|
|
|
|
void
|
|
CloseSecret(FILE * fp)
|
|
{
|
|
fclose(fp);
|
|
SetPppId();
|
|
}
|
|
|
|
int
|
|
SelectSystem(char *name, char *file)
|
|
{
|
|
FILE *fp;
|
|
char *cp, *wp;
|
|
int n;
|
|
u_char olauth;
|
|
char line[200];
|
|
char filename[200];
|
|
int linenum;
|
|
|
|
fp = NULL;
|
|
cp = getenv("HOME");
|
|
if (cp) {
|
|
SetUserId();
|
|
snprintf(filename, sizeof filename, "%s/.%s", cp, file);
|
|
fp = fopen(filename, "r");
|
|
}
|
|
if (fp == NULL) {
|
|
SetPppId(); /* fix from pdp@ark.jr3uom.iijnet.or.jp */
|
|
snprintf(filename, sizeof filename, "%s/%s", _PATH_PPP, file);
|
|
fp = fopen(filename, "r");
|
|
}
|
|
if (fp == NULL) {
|
|
LogPrintf(LogDEBUG, "SelectSystem: Can't open %s.\n", filename);
|
|
SetPppId();
|
|
return (-1);
|
|
}
|
|
LogPrintf(LogDEBUG, "SelectSystem: Checking %s (%s).\n", name, filename);
|
|
|
|
linenum = 0;
|
|
while (fgets(line, sizeof(line), fp)) {
|
|
linenum++;
|
|
cp = line;
|
|
switch (*cp) {
|
|
case '#': /* comment */
|
|
break;
|
|
case ' ':
|
|
case '\t':
|
|
break;
|
|
default:
|
|
wp = strpbrk(cp, ":\n");
|
|
if (wp == NULL) {
|
|
LogPrintf(LogWARN, "Bad rule in %s (line %d) - missing colon.\n",
|
|
filename, linenum);
|
|
ServerClose();
|
|
exit(1);
|
|
}
|
|
*wp = '\0';
|
|
if (strcmp(cp, name) == 0) {
|
|
while (fgets(line, sizeof(line), fp)) {
|
|
cp = line;
|
|
if (*cp == ' ' || *cp == '\t') {
|
|
n = strspn(cp, " \t");
|
|
cp += n;
|
|
LogPrintf(LogCOMMAND, "%s: %s\n", name, cp);
|
|
SetPppId();
|
|
olauth = VarLocalAuth;
|
|
if (VarLocalAuth == LOCAL_NO_AUTH)
|
|
VarLocalAuth = LOCAL_AUTH;
|
|
DecodeCommand(cp, strlen(cp), 0);
|
|
VarLocalAuth = olauth;
|
|
SetUserId();
|
|
} else if (*cp == '#') {
|
|
continue;
|
|
} else
|
|
break;
|
|
}
|
|
fclose(fp);
|
|
SetPppId();
|
|
return (0);
|
|
}
|
|
break;
|
|
}
|
|
}
|
|
fclose(fp);
|
|
SetPppId();
|
|
return -1;
|
|
}
|
|
|
|
int
|
|
LoadCommand(struct cmdtab const * list, int argc, char **argv)
|
|
{
|
|
char *name;
|
|
|
|
if (argc > 0)
|
|
name = *argv;
|
|
else
|
|
name = "default";
|
|
|
|
if (SelectSystem(name, CONFFILE) < 0) {
|
|
LogPrintf(LogWARN, "%s: not found.\n", name);
|
|
return -1;
|
|
}
|
|
return 0;
|
|
}
|
|
|
|
int
|
|
SaveCommand(struct cmdtab const * list, int argc, char **argv)
|
|
{
|
|
LogPrintf(LogWARN, "save command is not implemented (yet).\n");
|
|
return 1;
|
|
}
|