1 /* 2 * perm.c - check user permission for at(1) 3 * Copyright (C) 1994 Thomas Koenig 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. The name of the author(s) may not be used to endorse or promote 11 * products derived from this software without specific prior written 12 * permission. 13 * 14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR 15 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 16 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 17 * IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, INDIRECT, 18 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 19 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 20 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 21 * THEORY OF LIABILITY, WETHER IN CONTRACT, STRICT LIABILITY, OR TORT 22 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 23 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 24 * 25 * $FreeBSD: src/usr.bin/at/perm.c,v 1.9.2.1 2001/08/02 00:55:58 obrien Exp $ 26 * $DragonFly: src/usr.bin/at/perm.c,v 1.3 2003/10/02 17:42:25 hmp Exp $ 27 */ 28 29 /* System Headers */ 30 31 #include <sys/types.h> 32 #include <err.h> 33 #include <errno.h> 34 #include <pwd.h> 35 #include <stddef.h> 36 #include <stdio.h> 37 #include <stdlib.h> 38 #include <string.h> 39 #include <unistd.h> 40 41 /* Local headers */ 42 43 #include "privs.h" 44 #include "at.h" 45 46 /* Macros */ 47 48 #define MAXUSERID 10 49 50 /* Structures and unions */ 51 52 /* Function declarations */ 53 54 static int check_for_user(FILE *fp,const char *name); 55 56 /* Local functions */ 57 58 static int check_for_user(FILE *fp,const char *name) 59 { 60 char *buffer; 61 size_t len; 62 int found = 0; 63 64 len = strlen(name); 65 if ((buffer = malloc(len+2)) == NULL) 66 errx(EXIT_FAILURE, "virtual memory exhausted"); 67 68 while(fgets(buffer, len+2, fp) != NULL) 69 { 70 if ((strncmp(name, buffer, len) == 0) && 71 (buffer[len] == '\n')) 72 { 73 found = 1; 74 break; 75 } 76 } 77 fclose(fp); 78 free(buffer); 79 return found; 80 } 81 /* Global functions */ 82 int check_permission(void) 83 { 84 FILE *fp; 85 uid_t uid = geteuid(); 86 struct passwd *pentry; 87 88 if (uid==0) 89 return 1; 90 91 if ((pentry = getpwuid(uid)) == NULL) 92 err(EXIT_FAILURE, "cannot access user database"); 93 94 PRIV_START 95 96 fp=fopen(PERM_PATH "at.allow","r"); 97 98 PRIV_END 99 100 if (fp != NULL) 101 { 102 return check_for_user(fp, pentry->pw_name); 103 } 104 else if (errno == ENOENT) 105 { 106 107 PRIV_START 108 109 fp=fopen(PERM_PATH "at.deny", "r"); 110 111 PRIV_END 112 113 if (fp != NULL) 114 { 115 return !check_for_user(fp, pentry->pw_name); 116 } 117 else if (errno != ENOENT) 118 warn("at.deny"); 119 } 120 else 121 warn("at.allow"); 122 return 0; 123 } 124