1 /* 2 * Copyright (c) 1989, 1993 3 * The Regents of the University of California. All rights reserved. 4 * 5 * This code is derived from software contributed to Berkeley by 6 * Tony Nardo of the Johns Hopkins University/Applied Physics Lab. 7 * 8 * Redistribution and use in source and binary forms, with or without 9 * modification, are permitted provided that the following conditions 10 * are met: 11 * 1. Redistributions of source code must retain the above copyright 12 * notice, this list of conditions and the following disclaimer. 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 3. All advertising materials mentioning features or use of this software 17 * must display the following acknowledgement: 18 * This product includes software developed by the University of 19 * California, Berkeley and its contributors. 20 * 4. Neither the name of the University nor the names of its contributors 21 * may be used to endorse or promote products derived from this software 22 * without specific prior written permission. 23 * 24 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 25 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 26 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 27 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 28 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 29 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 30 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 31 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 32 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 33 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 34 * SUCH DAMAGE. 35 * 36 * @(#)util.c 8.3 (Berkeley) 4/28/95 37 * $FreeBSD: src/usr.bin/finger/util.c,v 1.8.2.6 2002/07/03 01:14:24 des Exp $ 38 * $DragonFly: src/usr.bin/finger/util.c,v 1.3 2003/10/04 20:36:44 hmp Exp $ 39 */ 40 41 #include <sys/param.h> 42 #include <sys/socket.h> 43 #include <sys/stat.h> 44 #include <ctype.h> 45 #include <db.h> 46 #include <err.h> 47 #include <errno.h> 48 #include <fcntl.h> 49 #include <paths.h> 50 #include <pwd.h> 51 #include <stdio.h> 52 #include <stdlib.h> 53 #include <string.h> 54 #include <unistd.h> 55 #include "utmpentry.h" 56 #include <utmp.h> 57 #include "finger.h" 58 #include "pathnames.h" 59 60 static void find_idle_and_ttywrite(WHERE *); 61 static void userinfo(PERSON *, struct passwd *); 62 static WHERE *walloc(PERSON *); 63 64 int 65 match(struct passwd *pw, char *user) 66 { 67 char *p, *t; 68 char name[1024]; 69 70 if (!strcasecmp(pw->pw_name, user)) 71 return(1); 72 73 /* 74 * XXX 75 * Why do we skip asterisks!?!? 76 */ 77 (void)strncpy(p = tbuf, pw->pw_gecos, sizeof(tbuf)); 78 tbuf[sizeof(tbuf) - 1] = '\0'; 79 if (*p == '*') 80 ++p; 81 82 /* Ampersands get replaced by the login name. */ 83 if ((p = strtok(p, ",")) == NULL) 84 return(0); 85 86 for (t = name; t < &name[sizeof(name) - 1] && (*t = *p) != '\0'; ++p) { 87 if (*t == '&') { 88 (void)strncpy(t, pw->pw_name, 89 sizeof(name) - (t - name)); 90 name[sizeof(name) - 1] = '\0'; 91 while (t < &name[sizeof(name) - 1] && *++t) 92 continue; 93 } else { 94 ++t; 95 } 96 } 97 *t = '\0'; 98 for (t = name; (p = strtok(t, "\t ")) != NULL; t = NULL) 99 if (!strcasecmp(p, user)) 100 return(1); 101 return(0); 102 } 103 104 void 105 enter_lastlog(PERSON *pn) 106 { 107 WHERE *w; 108 static int opened, fd; 109 struct lastlog ll; 110 char doit = 0; 111 112 /* some systems may not maintain lastlog, don't report errors. */ 113 if (!opened) { 114 fd = open(_PATH_LASTLOG, O_RDONLY, 0); 115 opened = 1; 116 } 117 if (fd == -1 || 118 lseek(fd, (long)pn->uid * sizeof(ll), SEEK_SET) != 119 (off_t)((long)pn->uid * sizeof(ll)) || 120 read(fd, (char *)&ll, sizeof(ll)) != sizeof(ll)) { 121 /* as if never logged in */ 122 ll.ll_line[0] = ll.ll_host[0] = '\0'; 123 ll.ll_time = 0; 124 } 125 if ((w = pn->whead) == NULL) 126 doit = 1; 127 else if (ll.ll_time != 0) { 128 /* if last login is earlier than some current login */ 129 for (; !doit && w != NULL; w = w->next) 130 if (w->info == LOGGEDIN && w->loginat < ll.ll_time) 131 doit = 1; 132 /* 133 * and if it's not any of the current logins 134 * can't use time comparison because there may be a small 135 * discrepancy since login calls time() twice 136 */ 137 for (w = pn->whead; doit && w != NULL; w = w->next) 138 if (w->info == LOGGEDIN && 139 strncmp(w->tty, ll.ll_line, UT_LINESIZE) == 0) 140 doit = 0; 141 } 142 if (doit) { 143 w = walloc(pn); 144 w->info = LASTLOG; 145 asprintf(&w->tty, "%s", ll.ll_line); 146 asprintf(&w->host, "%s", ll.ll_host); 147 w->loginat = ll.ll_time; 148 } 149 } 150 151 void 152 enter_where(struct utmpentry *ep, PERSON *pn) 153 { 154 WHERE *w; 155 156 w = walloc(pn); 157 w->info = LOGGEDIN; 158 w->tty = ep->line; 159 w->host = ep->host; 160 w->loginat = (time_t)ep->tv.tv_sec; 161 find_idle_and_ttywrite(w); 162 } 163 164 PERSON * 165 enter_person(struct passwd *pw) 166 { 167 DBT data, key; 168 PERSON *pn; 169 170 if (db == NULL && 171 (db = dbopen(NULL, O_RDWR, 0, DB_BTREE, NULL)) == NULL) 172 err(1, NULL); 173 174 key.data = pw->pw_name; 175 key.size = strlen(pw->pw_name); 176 177 switch ((*db->get)(db, &key, &data, 0)) { 178 case 0: 179 memmove(&pn, data.data, sizeof pn); 180 return (pn); 181 default: 182 case -1: 183 err(1, "db get"); 184 /* NOTREACHED */ 185 case 1: 186 ++entries; 187 pn = palloc(); 188 userinfo(pn, pw); 189 pn->whead = NULL; 190 191 data.size = sizeof(PERSON *); 192 data.data = &pn; 193 if ((*db->put)(db, &key, &data, 0)) 194 err(1, "db put"); 195 return (pn); 196 } 197 } 198 199 PERSON * 200 find_person(char *name) 201 { 202 struct passwd *pw; 203 204 int cnt; 205 DBT data, key; 206 PERSON *p; 207 char buf[UT_NAMESIZE + 1]; 208 209 if (!db) 210 return(NULL); 211 212 if ((pw = getpwnam(name)) && hide(pw)) 213 return(NULL); 214 215 /* Name may be only UT_NAMESIZE long and not NUL terminated. */ 216 for (cnt = 0; cnt < UT_NAMESIZE && *name; ++name, ++cnt) 217 buf[cnt] = *name; 218 buf[cnt] = '\0'; 219 key.data = buf; 220 key.size = cnt; 221 222 if ((*db->get)(db, &key, &data, 0)) 223 return (NULL); 224 memmove(&p, data.data, sizeof p); 225 return (p); 226 } 227 228 PERSON * 229 palloc(void) 230 { 231 PERSON *p; 232 233 if ((p = malloc(sizeof(PERSON))) == NULL) 234 err(1, NULL); 235 return(p); 236 } 237 238 static WHERE * 239 walloc(PERSON *pn) 240 { 241 WHERE *w; 242 243 if ((w = malloc(sizeof(WHERE))) == NULL) 244 err(1, NULL); 245 bzero(w, sizeof(WHERE)); 246 if (pn->whead == NULL) { 247 pn->whead = pn->wtail = w; 248 } else { 249 pn->wtail->next = w; 250 pn->wtail = w; 251 } 252 w->next = NULL; 253 return(w); 254 } 255 256 char * 257 prphone(char *num) 258 { 259 char *p; 260 int len; 261 static char pbuf[20]; 262 263 /* don't touch anything if the user has their own formatting */ 264 for (p = num; *p; ++p) 265 if (!isdigit(*p)) 266 return(num); 267 len = p - num; 268 p = pbuf; 269 switch(len) { 270 case 11: /* +0-123-456-7890 */ 271 *p++ = '+'; 272 *p++ = *num++; 273 *p++ = '-'; 274 /* FALLTHROUGH */ 275 case 10: /* 012-345-6789 */ 276 *p++ = *num++; 277 *p++ = *num++; 278 *p++ = *num++; 279 *p++ = '-'; 280 /* FALLTHROUGH */ 281 case 7: /* 012-3456 */ 282 *p++ = *num++; 283 *p++ = *num++; 284 *p++ = *num++; 285 break; 286 case 5: /* x0-1234 */ 287 case 4: /* x1234 */ 288 *p++ = 'x'; 289 *p++ = *num++; 290 break; 291 default: 292 return(num); 293 } 294 if (len != 4) { 295 *p++ = '-'; 296 *p++ = *num++; 297 } 298 *p++ = *num++; 299 *p++ = *num++; 300 *p++ = *num++; 301 *p = '\0'; 302 return(pbuf); 303 } 304 305 static void 306 find_idle_and_ttywrite(WHERE *w) 307 { 308 struct stat sb; 309 time_t touched; 310 311 (void)snprintf(tbuf, sizeof(tbuf), "%s/%s", _PATH_DEV, w->tty); 312 if (stat(tbuf, &sb) < 0) { 313 warn("%s", tbuf); 314 return; 315 } 316 touched = sb.st_atime; 317 if (touched < w->loginat) { 318 /* tty untouched since before login */ 319 touched = w->loginat; 320 } 321 w->idletime = now < touched ? 0 : now - touched; 322 323 #define TALKABLE 0220 /* tty is writable if 220 mode */ 324 w->writable = ((sb.st_mode & TALKABLE) == TALKABLE); 325 } 326 327 static void 328 userinfo(PERSON *pn, struct passwd *pw) 329 { 330 char *p, *t; 331 char *bp, name[1024]; 332 struct stat sb; 333 334 pn->realname = pn->office = pn->officephone = pn->homephone = NULL; 335 336 pn->uid = pw->pw_uid; 337 if ((pn->name = strdup(pw->pw_name)) == NULL) 338 err(1, "strdup failed"); 339 if ((pn->dir = strdup(pw->pw_dir)) == NULL) 340 err(1, "strdup failed"); 341 if ((pn->shell = strdup(pw->pw_shell)) == NULL) 342 err(1, "strdup failed"); 343 344 /* why do we skip asterisks!?!? */ 345 (void)strncpy(bp = tbuf, pw->pw_gecos, sizeof(tbuf)); 346 tbuf[sizeof(tbuf) - 1] = '\0'; 347 if (*bp == '*') 348 ++bp; 349 350 /* ampersands get replaced by the login name */ 351 if (!(p = strsep(&bp, ","))) 352 return; 353 for (t = name; t < &name[sizeof(name) - 1] && (*t = *p) != '\0'; ++p) { 354 if (*t == '&') { 355 (void)strncpy(t, pw->pw_name, 356 sizeof(name) - (t - name)); 357 name[sizeof(name) - 1] = '\0'; 358 if (islower(*t)) 359 *t = toupper(*t); 360 while (t < &name[sizeof(name) - 1] && *++t) 361 continue; 362 } else { 363 ++t; 364 } 365 } 366 *t = '\0'; 367 if ((pn->realname = strdup(name)) == NULL) 368 err(1, "strdup failed"); 369 pn->office = ((p = strsep(&bp, ",")) && *p) ? 370 strdup(p) : NULL; 371 pn->officephone = ((p = strsep(&bp, ",")) && *p) ? 372 strdup(p) : NULL; 373 pn->homephone = ((p = strsep(&bp, ",")) && *p) ? 374 strdup(p) : NULL; 375 (void)snprintf(tbuf, sizeof(tbuf), "%s/%s", _PATH_MAILDIR, pw->pw_name); 376 pn->mailrecv = -1; /* -1 == not_valid */ 377 if (stat(tbuf, &sb) < 0) { 378 if (errno != ENOENT) { 379 warn("%s", tbuf); 380 return; 381 } 382 } else if (sb.st_size != 0) { 383 pn->mailrecv = sb.st_mtime; 384 pn->mailread = sb.st_atime; 385 } 386 } 387 388 /* 389 * Is this user hiding from finger? 390 * If ~<user>/.nofinger exists, return 1 (hide), else return 0 (nohide). 391 */ 392 393 int 394 hide(struct passwd *pw) 395 { 396 struct stat st; 397 char buf[MAXPATHLEN]; 398 399 if (!pw->pw_dir) 400 return 0; 401 402 snprintf(buf, sizeof(buf), "%s/%s", pw->pw_dir, _PATH_NOFINGER); 403 404 if (stat(buf, &st) == 0) 405 return 1; 406 407 return 0; 408 } 409