[thirdparty/man-pages.git] / man3 / getpass.3

.\" Copyright (c) 2000 Andries Brouwer (aeb@cwi.nl)
.\"
.\" %%%LICENSE_START(GPLv2+_DOC_FULL)
.\" This is free documentation; you can redistribute it and/or
.\" modify it under the terms of the GNU General Public License as
.\" published by the Free Software Foundation; either version 2 of
.\" the License, or (at your option) any later version.
.\"
.\" The GNU General Public License's references to "object code"
.\" and "executables" are to be interpreted as the output of any
.\" document formatting or typesetting system, including
.\" intermediate and printed output.
.\"
.\" This manual is distributed in the hope that it will be useful,
.\" but WITHOUT ANY WARRANTY; without even the implied warranty of
.\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
.\" GNU General Public License for more details.
.\"
.\" You should have received a copy of the GNU General Public
.\" License along with this manual; if not, see
.\" <http://www.gnu.org/licenses/>.
.\" %%%LICENSE_END
.\"
.TH GETPASS 3  2016-03-15 "Linux" "Linux Programmer's Manual"
.SH NAME
getpass \- get a password
.SH SYNOPSIS
.B #include <unistd.h>
.PP
.BI "char *getpass(const char *" prompt );
.PP
.in -4n
Feature Test Macro Requirements for glibc (see
.BR feature_test_macros (7)):
.in
.PP
.BR getpass ():
.ad l
.RS 4
.PD 0
.TP 4
Since glibc 2.2.2:
.nf
_XOPEN_SOURCE && ! (_POSIX_C_SOURCE\ >=\ 200112L)
    || /* Glibc since 2.19: */ _DEFAULT_SOURCE
    || /* Glibc versions <= 2.19: */ _BSD_SOURCE
.fi
.TP 4
Before glibc 2.2.2:
none
.PD
.RE
.ad b
.SH DESCRIPTION
This function is obsolete.
Do not use it.
If you want to read input without terminal echoing enabled,
see the description of the
.I ECHO
flag in
.BR termios (3).
.PP
The
.BR getpass ()
function opens
.I /dev/tty
(the controlling terminal of the process), outputs the string
.IR prompt ,
turns off echoing, reads one line (the "password"),
restores the terminal state and closes
.I /dev/tty
again.
.SH RETURN VALUE
The function
.BR getpass ()
returns a pointer to a static buffer containing (the first
.B PASS_MAX
bytes of) the password without the trailing
newline, terminated by a null byte (\(aq\\0\(aq).
This buffer may be overwritten by a following call.
On error, the terminal state is restored,
.I errno
is set appropriately, and NULL is returned.
.SH ERRORS
The function may fail if
.TP
.B ENXIO
The process does not have a controlling terminal.
.SH FILES
.I /dev/tty
.\" .SH HISTORY
.\" A
.\" .BR getpass ()
.\" function appeared in Version 7 AT&T UNIX.
.SH ATTRIBUTES
For an explanation of the terms used in this section, see
.BR attributes (7).
.TS
allbox;
lb lb lb
l l l.
Interface	Attribute	Value
T{
.BR getpass ()
T}	Thread safety	MT-Unsafe term
.TE
.SH CONFORMING TO
Present in SUSv2, but marked LEGACY.
Removed in POSIX.1-2001.
.SH NOTES
.\" For libc4 and libc5, the prompt is not written to
.\" .I /dev/tty
.\" but to
.\" .IR stderr .
.\" Moreover, if
.\" .I /dev/tty
.\" cannot be opened, the password is read from
.\" .IR stdin .
.\" The static buffer has length 128 so that only the first 127
.\" bytes of the password are returned.
.\" While reading the password, signal generation
.\" .RB ( SIGINT ,
.\" .BR SIGQUIT ,
.\" .BR SIGSTOP ,
.\" .BR SIGTSTP )
.\" is disabled and the corresponding characters
.\" (usually control-C, control-\e, control-Z and control-Y)
.\" are transmitted as part of the password.
.\" Since libc 5.4.19 also line editing is disabled, so that also
.\" backspace and the like will be seen as part of the password.
.PP
In the GNU C library implementation, if
.I /dev/tty
cannot be opened, the prompt is written to
.I stderr
and the password is read from
.IR stdin .
There is no limit on the length of the password.
Line editing is not disabled.
.PP
According to SUSv2, the value of
.B PASS_MAX
must be defined in
.I <limits.h>
in case it is smaller than 8, and can in any case be obtained using
.IR sysconf(_SC_PASS_MAX) .
However, POSIX.2 withdraws the constants
.B PASS_MAX
and
.BR _SC_PASS_MAX ,
and the function
.BR getpass ().
.\" Libc4 and libc5 have never supported
.\" .B PASS_MAX
.\" or
.\" .BR _SC_PASS_MAX .
The glibc version accepts
.B _SC_PASS_MAX
and returns
.B BUFSIZ
(e.g., 8192).
.SH BUGS
The calling process should zero the password as soon as possible to avoid
leaving the cleartext password visible in the process's address space.
.SH SEE ALSO
.BR crypt (3)
Commit	Line	Data
fea681da MK	1	.\" Copyright (c) 2000 Andries Brouwer (aeb@cwi.nl)
fea681da MK	2	.\"
1dd72f9c	3	.\" %%%LICENSE_START(GPLv2+_DOC_FULL)
fea681da MK	4	.\" This is free documentation; you can redistribute it and/or
	5	.\" modify it under the terms of the GNU General Public License as
	6	.\" published by the Free Software Foundation; either version 2 of
	7	.\" the License, or (at your option) any later version.
	8	.\"
	9	.\" The GNU General Public License's references to "object code"
	10	.\" and "executables" are to be interpreted as the output of any
	11	.\" document formatting or typesetting system, including
	12	.\" intermediate and printed output.
	13	.\"
	14	.\" This manual is distributed in the hope that it will be useful,
	15	.\" but WITHOUT ANY WARRANTY; without even the implied warranty of
	16	.\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	17	.\" GNU General Public License for more details.
	18	.\"
	19	.\" You should have received a copy of the GNU General Public
c715f741 MK	20	.\" License along with this manual; if not, see
c715f741 MK	21	.\" <http://www.gnu.org/licenses/>.
6a8d8745	22	.\" %%%LICENSE_END
fea681da	23	.\"
97986708	24	.TH GETPASS 3 2016-03-15 "Linux" "Linux Programmer's Manual"
fea681da MK	25	.SH NAME
	26	getpass \- get a password
	27	.SH SYNOPSIS
	28	.B #include <unistd.h>
68e4db0a	29	.PP
b73ce084	30	.BI "char getpass(const char " prompt );
68e4db0a	31	.PP
2df50e3d MK	32	.in -4n
	33	Feature Test Macro Requirements for glibc (see
	34	.BR feature_test_macros (7)):
	35	.in
68e4db0a	36	.PP
2df50e3d MK	37	.BR getpass ():
	38	.ad l
	39	.RS 4
	40	.PD 0
	41	.TP 4
	42	Since glibc 2.2.2:
	43	.nf
6e0869f7 MK	44	_XOPEN_SOURCE && ! (_POSIX_C_SOURCE\ >=\ 200112L)
	45	\|\| /* Glibc since 2.19: */ _DEFAULT_SOURCE
	46	\|\| /* Glibc versions <= 2.19: */ _BSD_SOURCE
2df50e3d	47	.fi
f1a1039a ER	48	.TP 4
	49	Before glibc 2.2.2:
	50	none
2df50e3d MK	51	.PD
	52	.RE
	53	.ad b
fea681da	54	.SH DESCRIPTION
c13182ef MK	55	This function is obsolete.
c13182ef MK	56	Do not use it.
63bed6ae MK	57	If you want to read input without terminal echoing enabled,
	58	see the description of the
	59	.I ECHO
	60	flag in
	61	.BR termios (3).
fea681da MK	62	.PP
	63	The
	64	.BR getpass ()
	65	function opens
	66	.I /dev/tty
	67	(the controlling terminal of the process), outputs the string
	68	.IR prompt ,
	69	turns off echoing, reads one line (the "password"),
	70	restores the terminal state and closes
	71	.I /dev/tty
	72	again.
47297adb	73	.SH RETURN VALUE
fea681da	74	The function
e511ffb6	75	.BR getpass ()
cd4995f5	76	returns a pointer to a static buffer containing (the first
2f0af33b MK	77	.B PASS_MAX
2f0af33b MK	78	bytes of) the password without the trailing
f81fb444	79	newline, terminated by a null byte (\(aq\\0\(aq).
fea681da MK	80	This buffer may be overwritten by a following call.
	81	On error, the terminal state is restored,
	82	.I errno
	83	is set appropriately, and NULL is returned.
	84	.SH ERRORS
	85	The function may fail if
	86	.TP
	87	.B ENXIO
c13182ef	88	The process does not have a controlling terminal.
2b2581ee MK	89	.SH FILES
	90	.I /dev/tty
	91	.\" .SH HISTORY
	92	.\" A
	93	.\" .BR getpass ()
	94	.\" function appeared in Version 7 AT&T UNIX.
3f970b11	95	.SH ATTRIBUTES
34ed6a7e MK	96	For an explanation of the terms used in this section, see
	97	.BR attributes (7).
	98	.TS
	99	allbox;
	100	lb lb lb
	101	l l l.
	102	Interface Attribute Value
	103	T{
3f970b11	104	.BR getpass ()
1143466a	105	T} Thread safety MT-Unsafe term
34ed6a7e	106	.TE
47297adb	107	.SH CONFORMING TO
2b2581ee MK	108	Present in SUSv2, but marked LEGACY.
2b2581ee MK	109	Removed in POSIX.1-2001.
fea681da	110	.SH NOTES
af3253ca MK	111	.\" For libc4 and libc5, the prompt is not written to
	112	.\" .I /dev/tty
	113	.\" but to
	114	.\" .IR stderr .
	115	.\" Moreover, if
	116	.\" .I /dev/tty
	117	.\" cannot be opened, the password is read from
	118	.\" .IR stdin .
	119	.\" The static buffer has length 128 so that only the first 127
	120	.\" bytes of the password are returned.
	121	.\" While reading the password, signal generation
	122	.\" .RB ( SIGINT ,
	123	.\" .BR SIGQUIT ,
	124	.\" .BR SIGSTOP ,
	125	.\" .BR SIGTSTP )
	126	.\" is disabled and the corresponding characters
	127	.\" (usually control-C, control-\e, control-Z and control-Y)
	128	.\" are transmitted as part of the password.
	129	.\" Since libc 5.4.19 also line editing is disabled, so that also
	130	.\" backspace and the like will be seen as part of the password.
fea681da	131	.PP
af3253ca	132	In the GNU C library implementation, if
fea681da MK	133	.I /dev/tty
	134	cannot be opened, the prompt is written to
	135	.I stderr
	136	and the password is read from
	137	.IR stdin .
	138	There is no limit on the length of the password.
	139	Line editing is not disabled.
	140	.PP
fb307ec7	141	According to SUSv2, the value of
2f0af33b MK	142	.B PASS_MAX
2f0af33b MK	143	must be defined in
fea681da MK	144	.I <limits.h>
	145	in case it is smaller than 8, and can in any case be obtained using
	146	.IR sysconf(_SC_PASS_MAX) .
2f0af33b MK	147	However, POSIX.2 withdraws the constants
	148	.B PASS_MAX
	149	and
	150	.BR _SC_PASS_MAX ,
	151	and the function
f87925c6	152	.BR getpass ().
a6cc92e3 MK	153	.\" Libc4 and libc5 have never supported
	154	.\" .B PASS_MAX
	155	.\" or
	156	.\" .BR _SC_PASS_MAX .
	157	The glibc version accepts
0daa9e92	158	.B _SC_PASS_MAX
66ee0c7e	159	and returns
2f0af33b MK	160	.B BUFSIZ
2f0af33b MK	161	(e.g., 8192).
fea681da MK	162	.SH BUGS
	163	The calling process should zero the password as soon as possible to avoid
	164	leaving the cleartext password visible in the process's address space.
47297adb	165	.SH SEE ALSO
e37e3282	166	.BR crypt (3)