Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 1 | /* vi: set sw=4 ts=4: */ |
| 2 | /* |
Denis Vlasenko | 70c6e40 | 2009-03-31 13:14:18 +0000 | [diff] [blame] | 3 | * Check user and group names for illegal characters |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 4 | * |
| 5 | * Copyright (C) 2008 Tito Ragusa <farmatito@tiscali.it> |
| 6 | * |
Denys Vlasenko | 0ef64bd | 2010-08-16 20:14:46 +0200 | [diff] [blame] | 7 | * Licensed under GPLv2 or later, see file LICENSE in this source tree. |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 8 | */ |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 9 | #include "libbb.h" |
| 10 | |
| 11 | /* To avoid problems, the username should consist only of |
| 12 | * letters, digits, underscores, periods, at signs and dashes, |
| 13 | * and not start with a dash (as defined by IEEE Std 1003.1-2001). |
| 14 | * For compatibility with Samba machine accounts $ is also supported |
| 15 | * at the end of the username. |
| 16 | */ |
| 17 | |
Denis Vlasenko | defc1ea | 2008-06-27 02:52:20 +0000 | [diff] [blame] | 18 | void FAST_FUNC die_if_bad_username(const char *name) |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 19 | { |
Denys Vlasenko | 7485086 | 2011-08-09 04:05:13 +0200 | [diff] [blame] | 20 | const char *start = name; |
| 21 | |
| 22 | /* 1st char being dash or dot isn't valid: |
| 23 | * for example, name like ".." can make adduser |
| 24 | * chown "/home/.." recursively - NOT GOOD. |
| 25 | * Name of just a single "$" is also rejected. |
Denys Vlasenko | cb7edc2 | 2010-02-06 21:50:59 +0100 | [diff] [blame] | 26 | */ |
Denys Vlasenko | 7485086 | 2011-08-09 04:05:13 +0200 | [diff] [blame] | 27 | goto skip; |
Denys Vlasenko | cb7edc2 | 2010-02-06 21:50:59 +0100 | [diff] [blame] | 28 | |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 29 | do { |
Denys Vlasenko | 7485086 | 2011-08-09 04:05:13 +0200 | [diff] [blame] | 30 | unsigned char ch; |
| 31 | |
| 32 | /* These chars are valid unless they are at the 1st pos: */ |
| 33 | if (*name == '-' |
| 34 | || *name == '.' |
| 35 | /* $ is allowed if it's the last char: */ |
Denys Vlasenko | cb7edc2 | 2010-02-06 21:50:59 +0100 | [diff] [blame] | 36 | || (*name == '$' && !name[1]) |
Denis Vlasenko | 104d544 | 2008-03-19 23:25:00 +0000 | [diff] [blame] | 37 | ) { |
| 38 | continue; |
| 39 | } |
Denys Vlasenko | 7485086 | 2011-08-09 04:05:13 +0200 | [diff] [blame] | 40 | skip: |
| 41 | ch = *name; |
| 42 | if (ch == '_' |
| 43 | /* || ch == '@' -- we disallow this too. Think about "user@host" */ |
| 44 | /* open-coded isalnum: */ |
| 45 | || (ch >= '0' && ch <= '9') |
| 46 | || ((ch|0x20) >= 'a' && (ch|0x20) <= 'z') |
| 47 | ) { |
| 48 | continue; |
| 49 | } |
| 50 | bb_error_msg_and_die("illegal character with code %u at position %u", |
| 51 | (unsigned)ch, (unsigned)(name - start)); |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 52 | } while (*++name); |
Denys Vlasenko | 7485086 | 2011-08-09 04:05:13 +0200 | [diff] [blame] | 53 | |
| 54 | /* The minimum size of the login name is one char or two if |
| 55 | * last char is the '$'. Violations of this are caught above. |
| 56 | * The maximum size of the login name is LOGIN_NAME_MAX |
| 57 | * including the terminating null byte. |
| 58 | */ |
| 59 | if (name - start >= LOGIN_NAME_MAX) |
| 60 | bb_error_msg_and_die("name is too long"); |
Denis Vlasenko | dd5702d | 2008-03-19 23:15:55 +0000 | [diff] [blame] | 61 | } |