Blame - libbb/die_if_bad_username.c - codeaurora/busybox

blob: cf1297bd6a9d344deec392cb97a8775f49fa7ace [file] [log] [blame]

Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	1	/* vi: set sw=4 ts=4: */
				2	/*
Denis Vlasenko	70c6e40	2009-03-31 13:14:18 +0000	[diff] [blame]	3	* Check user and group names for illegal characters
Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	4	*
				5	* Copyright (C) 2008 Tito Ragusa <farmatito@tiscali.it>
				6	*
Denys Vlasenko	0ef64bd	2010-08-16 20:14:46 +0200	[diff] [blame]	7	* Licensed under GPLv2 or later, see file LICENSE in this source tree.
Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	8	*/
				9
				10	#include "libbb.h"
				11
				12	/* To avoid problems, the username should consist only of
				13	* letters, digits, underscores, periods, at signs and dashes,
				14	* and not start with a dash (as defined by IEEE Std 1003.1-2001).
				15	* For compatibility with Samba machine accounts $ is also supported
				16	* at the end of the username.
				17	*/
				18
Denis Vlasenko	defc1ea	2008-06-27 02:52:20 +0000	[diff] [blame]	19	void FAST_FUNC die_if_bad_username(const char *name)
Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	20	{
Denys Vlasenko	7485086	2011-08-09 04:05:13 +0200	[diff] [blame^]	21	const char *start = name;
				22
				23	/* 1st char being dash or dot isn't valid:
				24	* for example, name like ".." can make adduser
				25	* chown "/home/.." recursively - NOT GOOD.
				26	* Name of just a single "$" is also rejected.
Denys Vlasenko	cb7edc2	2010-02-06 21:50:59 +0100	[diff] [blame]	27	*/
Denys Vlasenko	7485086	2011-08-09 04:05:13 +0200	[diff] [blame^]	28	goto skip;
Denys Vlasenko	cb7edc2	2010-02-06 21:50:59 +0100	[diff] [blame]	29
Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	30	do {
Denys Vlasenko	7485086	2011-08-09 04:05:13 +0200	[diff] [blame^]	31	unsigned char ch;
				32
				33	/* These chars are valid unless they are at the 1st pos: */
				34	if (*name == '-'
				35	\|\| *name == '.'
				36	/* $ is allowed if it's the last char: */
Denys Vlasenko	cb7edc2	2010-02-06 21:50:59 +0100	[diff] [blame]	37	\|\| (*name == '$' && !name[1])
Denis Vlasenko	104d544	2008-03-19 23:25:00 +0000	[diff] [blame]	38	) {
				39	continue;
				40	}
Denys Vlasenko	7485086	2011-08-09 04:05:13 +0200	[diff] [blame^]	41	skip:
				42	ch = *name;
				43	if (ch == '_'
				44	/* \|\| ch == '@' -- we disallow this too. Think about "user@host" */
				45	/* open-coded isalnum: */
				46	\|\| (ch >= '0' && ch <= '9')
				47	\|\| ((ch\|0x20) >= 'a' && (ch\|0x20) <= 'z')
				48	) {
				49	continue;
				50	}
				51	bb_error_msg_and_die("illegal character with code %u at position %u",
				52	(unsigned)ch, (unsigned)(name - start));
Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	53	} while (*++name);
Denys Vlasenko	7485086	2011-08-09 04:05:13 +0200	[diff] [blame^]	54
				55	/* The minimum size of the login name is one char or two if
				56	* last char is the '$'. Violations of this are caught above.
				57	* The maximum size of the login name is LOGIN_NAME_MAX
				58	* including the terminating null byte.
				59	*/
				60	if (name - start >= LOGIN_NAME_MAX)
				61	bb_error_msg_and_die("name is too long");
Denis Vlasenko	dd5702d	2008-03-19 23:15:55 +0000	[diff] [blame]	62	}