copyright holder maintains some semblance of artistic control over the
development of the package, while giving the users of the package the
right to use and distribute the Package in a more-or-less customary
-fashion, plus the right to make reasonable modifications.
+fashion, plus the right to make reasonable modifications.
So there.
A "Package" refers to the collection of files distributed by the
Copyright Holder, and derivatives of that collection of files created
-through textual modification, or segments thereof.
+through textual modification, or segments thereof.
"Standard Version" refers to such a Package if it has not been modified,
or has been modified in accordance with the wishes of the Copyright
d) make other distribution arrangements with the Copyright Holder.
5. You may charge a reasonable copying fee for any distribution of this
-Package. You may charge any fee you choose for support of this Package.
+Package. You may charge any fee you choose for support of this Package.
YOU MAY NOT CHARGE A FEE FOR THIS PACKAGE ITSELF. However, you may
distribute this Package in aggregate with other (possibly commercial)
programs as part of a larger (possibly commercial) software distribution
provided that YOU DO NOT ADVERTISE this package as a product of your
-own.
+own.
6. The name of the Copyright Holder may not be used to endorse or
promote products derived from this software without specific prior
2013-08-15 Nicolas François <nicolas.francois@centraliens.net>
* src/usermod.c: Check early if /etc/subuid (/etc/subgid) exists
- when option -v/-V (-w/-W) are provided.
+ when option -v/-V (-w/-W) are provided.
2013-08-15 Nicolas François <nicolas.francois@centraliens.net>
* configure.in: Prepare for next point release 4.2.
* if using the static char* for pw_dir, strdup it so
- pw_free() can be used. (Closes: Debian#691459, alioth#313957)
- * Kill the child process group, rather than just the
+ pw_free() can be used. (Closes: Debian#691459, alioth#313957)
+ * Kill the child process group, rather than just the
immediate child; this is needed now that su no
longer starts a controlling terminal when not running an
interactive shell (closes: Debian#713979)
* po/pt.po: Updated to 557t.
-2012-01-19 Holger Wansing <linux@wansing-online.de>
+2012-01-19 Holger Wansing <linux@wansing-online.de>
* po/de.po: Updated to 557t.
* NEWS, src/chpasswd.c: Create a shadow entry if the password is
set to 'x' in passwd and there are no entry in shadow for the
user.
- * NEWS, src/chgpasswd.c: Create a gshadow entry if the password is
- set to 'x' in group and there are no entry in gshadow for the
+ * NEWS, src/chgpasswd.c: Create a gshadow entry if the password is
+ set to 'x' in group and there are no entry in gshadow for the
group.
2011-07-28 Nicolas François <nicolas.francois@centraliens.net>
2011-07-22 Nicolas François <nicolas.francois@centraliens.net>
* libmisc/find_new_gid.c, libmisc/find_new_uid.c: Fail in case of
- invalid configuration.
+ invalid configuration.
* libmisc/find_new_gid.c, libmisc/find_new_uid.c: Updated
comments.
* libmisc/find_new_gid.c, libmisc/find_new_uid.c: Be more strict
man/login.defs.d/DEFAULT_HOME.xml,
man/login.defs.d/LOGIN_RETRIES.xml,
man/login.defs.d/MD5_CRYPT_ENAB.xml,
- man/login.defs.d/PORTTIME_CHECKS_ENAB.xml,
+ man/login.defs.d/PORTTIME_CHECKS_ENAB.xml,
man/login.defs.d/SHA_CRYPT_MIN_ROUNDS.xml:
Fix typos
* man/po/de.po: German translation of manpages completed
2011-03-30 YunQiang Su <wzssyqa@gmail.com>
- * man/po/zh_CN.po: convert Simplified Chinese translation
+ * man/po/zh_CN.po: convert Simplified Chinese translation
of manpages to gettext
* po/zh_CN.po: Simplified Chinese translation completed
boolean. safe_system last argument is a boolean.
* libmisc/system.c: Check return value of dup2.
* libmisc/system.c: Do not check *printf/*puts return value.
- * libmisc/system.c: Do not check execve return value.
+ * libmisc/system.c: Do not check execve return value.
* libmisc/salt.c: Do not check *printf/*puts return value.
* libmisc/loginprompt.c: Do not check gethostname return value.
* libmisc/find_new_gid.c, libmisc/find_new_uid.c: Do not check
2010-04-04 Nicolas François <nicolas.francois@centraliens.net>
* src/useradd.c: spool is a constant string.
- * src/useradd.c: Set the new copy_tree's paramater 'copy_root' to false
+ * src/useradd.c: Set the new copy_tree's paramater 'copy_root' to false
2010-04-04 Nicolas François <nicolas.francois@centraliens.net>
<sgrubb@redhat.com>
* src/groupadd.c: Log to audit with type AUDIT_ADD_GROUP instead
of AUDIT_USER_CHAUTHTOK.
- * src/groupdel.c: Log to audit with type AUDIT_DEL_GROUP instead
+ * src/groupdel.c: Log to audit with type AUDIT_DEL_GROUP instead
of AUDIT_USER_CHAUTHTOK.
* src/useradd.c: Log to audit with type AUDIT_ADD_USER /
AUDIT_ADD_GROUP / AUDIT_USYS_CONFIG instead of
* NEWS, src/gpasswd.c: Use getopt_long instead of getopt. Added
support for long options --add (-a), --delete (-d),
--remove-password (-r), --restrict (-R), --administrators (-A),
- and --members (-M)
+ and --members (-M)
* man/gpasswd.1.xml: Document the new long options.
* src/gpasswd.c: The sgrp structure is only used if SHADOWGRP is
defined.
to mimic useradd's behavior choices of UID and GID.
* src/newusers.c: Reuse the generic find_new_uid() and
find_new_gid() functions. This permits to respect the
- UID_MIN/UID_MAX and GID_MIN/GID_MAX variables, should
+ UID_MIN/UID_MAX and GID_MIN/GID_MAX variables, should
* src/newusers.c: Check if the user or group exist using the
external databases (with the libc getpwnam/getgrnam functions).
Refuse to update an user which exist in an external database but
Debian's patch 202_it_man_uses_gettext. Thanks to Giuseppe
Sacco who contributed the Italian translation.
* man/de/de.po: (nearly) complete German translation of man pages
- Imported from Debian's patch 203_de-man-update. Thanks to
+ Imported from Debian's patch 203_de-man-update. Thanks to
Simon Brandmair
* src/usermod.c: Clarify the online help of usermod for "-a"
Imported from Debian's patch 402-clarify_usermod_usage
EXTRA_DIST = NEWS README TODO shadow.spec.in
-SUBDIRS = libmisc lib
+SUBDIRS = libmisc lib
if ENABLE_SUBIDS
SUBDIRS += libsubid
- su
* When su receives a signal (SIGTERM, or SIGINT/SIGQUIT in non
- interactive mode), kill the child process group, rather than just the
+ interactive mode), kill the child process group, rather than just the
immediate child.
* Fix segmentation faults for users without a proper home or shell in
their passwd entries.
- Add support for uClibc with no l64a().
- userdel, usermod: Fix infinite loop caused by erroneous group file
containing two entries with the same name. (The fix strategy differs
- from
+ from
(https://bugzilla.redhat.com/show_bug.cgi?id=240915)
- userdel: Abort if an error is detected while updating the passwd or group
databases. The passwd or group files will not be written.
shadow-4.0.11.1 -> shadow-4.0.12 22-08-2005
*** general:
-- newgrp, login: remove using login.defs::CLOSE_SESSIONS variable and always
+- newgrp, login: remove using login.defs::CLOSE_SESSIONS variable and always
close PAM session,
-- fixed configure.in: really enable shadow group support by default (pointed by
+- fixed configure.in: really enable shadow group support by default (pointed by
Greg Schafer <gschafer@zip.com.au> and Peter Vrabec <pvrabec@redhat.com>),
- login.defs: removed handle QMAIL_DIR variable,
- login: allow regular user to login on read-only root file system (not only for root)
- S/Key support is back,
- usermod: added -a option. This flag can only be used in conjunction with the -G
option. It cause usermod to append user to the current supplementary group list.
- (patch by Peter Vrabec <pvrabec@redhat.com>)
+ (patch by Peter Vrabec <pvrabec@redhat.com>)
- chage: added missing \n in error messages,
- useradd, groupadd: change -O option to -K and document it in man page,
- su, sulogin, login: fixed erroneous warning messages when used with PAM about some
http://bugs.debian.org/53570 http://bugs.debian.org/195048 http://bugs.debian.org/211884
- login: made login's -f option also able to use the username after -- if none
was passed as it's optarg
- http://bugs.debian.org/53702
+ http://bugs.debian.org/53702
- login: check for hushed login and pass PAM_SILENT if true,
http://bugs.debian.org/48002
- login: fixed username on succesful login (was using the normal username,
-- new: chage.1, chpasswd.8, expiry.1, faillog.5, faillog.8, getspnam.3,
logoutd.8, porttime.5, pwck.8, shadow.3, shadowconfig.8, su.1,
- passwd(1): fix #160477 Debian bug: improve -S output description,
-- newgrp(1): fix #251926, #166173, #113191 Debian bugs: explain why editing /etc/group
+- newgrp(1): fix #251926, #166173, #113191 Debian bugs: explain why editing /etc/group
(without gshadow) doesn't permit to use newgrp,
- newgrp(1): newgrp uses /bin/sh (not bash),
- faillog(8): updated after rewritten faillog command for use getopt_long(),
- chpasswd:
-- switch chpasswd to use getopt_long() and adds a --md5 option
(by Ian Gulliver <ian@penguinhosting.net>),
--- rewritten chpasswd(8) man page.
+-- rewritten chpasswd(8) man page.
shadow-4.0.5 -> shadow-4.0.6 08-11-2004
- bug fixes in automake files for generate correct tar ball on "make dist":
added missing "EXTRA_DIST = $(man_MANS)" in man/*/Makefile.am.
-shadow-4.0.3 => shadow-4.0.4 14-01-2004
+shadow-4.0.3 => shadow-4.0.4 14-01-2004
*** general:
- added missing information about -f options in groupadd usage message
- fixes for handle/print correctly 32bit uid/gid (Thorsten Kukuk <kukuk@suse.de>),
- implemented functions for better reloading the nscd cache (per NSS map)
(Thorsten Kukuk <kukuk@suse.de>),
-- fixed warnings "not used but defined" on compile using gcc 3.0.x
+- fixed warnings "not used but defined" on compile using gcc 3.0.x
(bulletpr00ph <bullet@users.sourceforge.net>),
- added ja, ko translations found in SuSE,
- added symlinks: newgrp -> sg, vipw -> vigr,
- added sg(1) man page as roff .so link to newgrp(1),
- installed fix for SEGV when using pwck -s on /etc/passwd file with
empty lines in it.
-
+
shadow-20001016 => shadow-4.0.0 06-01-2002
- fix bug discovered and fixed by Marcel Ritter
overwrite previously existing groups in adduser,
- added PAM support for chage (bind to "chage" PAM config file) also
added PAM support for all other small tools like chpasswd, groupadd,
- groupdel, groupmod, newusers, useradd, userdel, usermod (bind to common
+ groupdel, groupmod, newusers, useradd, userdel, usermod (bind to common
"shadow" PAM config file) - this modifications mainly based on
modifications prepared by Janek Rękojarski <baggins@pld.org.pl>,
- many small fixes and improvements in automake (mow "make dist"
- * Create a common usage function that'd take the array of
+ * Create a common usage function that'd take the array of
long options and an array of descriptions and output that so things would
be standardized across the utils.
Usage strings should be normalized and split first.
** --marekm
**
** 02/26/96
-** modified to call shadow utils (useradd,chage,passwd) on shadowed
+** modified to call shadow utils (useradd,chage,passwd) on shadowed
** systems - Cristian Gafton, gafton@sorosis.ro
**
** 6/27/95
** shadow-adduser 1.4:
**
-** now it copies the /etc/skel dir into the person's dir,
-** makes the mail folders, changed some defaults and made a 'make
+** now it copies the /etc/skel dir into the person's dir,
+** makes the mail folders, changed some defaults and made a 'make
** install' just for the hell of it.
**
** Greg Gallagher
**
** 1/28/95
** shadow-adduser 1.3:
-**
-** Basically a bug-fix on my additions in 1.2. Thanks to Terry Stewart
+**
+** Basically a bug-fix on my additions in 1.2. Thanks to Terry Stewart
** (stew@texas.net) for pointing out one of the many idiotic bugs I introduced.
** It was such a stupid bug that I would have never seen it myself.
**
** Brandon
*****
** 01/27/95
-**
+**
** shadow-adduser 1.2:
** I took the C source from adduser-shadow (credits are below) and made
** it a little more worthwhile. Many small changes... Here's
** the ones I can remember:
-**
+**
** Removed support for non-shadowed systems (if you don't have shadow,
** use the original adduser, don't get this shadow version!)
** Added support for the correct /etc/shadow fields (Min days before
** Brandon
** photon@usis.com
**
-*****
+*****
** adduser 1.0: add a new user account (For systems not using shadow)
** With a nice little interface and a will to do all the work for you.
**
void main()
{
- char foo[32];
+ char foo[32];
char uname[9],person[32],dir[32],shell[32];
unsigned int group,min_pass,max_pass,warn_pass,user_die;
/* the group and uid of the new user */
int bad=0,done=0,correct=0,gets_warning=0;
char cmd[255];
struct group *grp;
-
+
/* flags, in order:
* bad to see if the username is in /etc/passwd, or if strange stuff has
* been typed if the user might be put in group 0
*/
/* The real program starts HERE! */
-
+
if(geteuid()!=0)
{
printf("It seems you don't have access to add a new user. Try\n");
printf("logging in as root or su root to gain super-user access.\n");
exit(1);
}
-
+
/* Sanity checks
*/
-
+
if (!(grp=getgrgid(DEFAULT_GROUP))){
printf("Error: the default group %d does not exist on this system!\n",
DEFAULT_GROUP);
printf("adduser must be recompiled.\n");
exit(1);
- };
-
+ };
+
while(!correct) { /* loop until a "good" uname is chosen */
while(!done) {
printf("\nLogin to add (^C to quit): ");
} else
done=1;
}; /* done, we have a valid new user name */
-
+
/* all set, get the rest of the stuff */
printf("\nEditing information for new user [%s]\n",uname);
-
+
printf("\nFull Name [%s]: ",uname);
gets(person);
if (!strlen(person)) {
bzero(person,sizeof(person));
strcpy(person,uname);
};
-
+
do {
- bad=0;
+ bad=0;
printf("GID [%d]: ",DEFAULT_GROUP);
gets(foo);
if (!strlen(foo))
fflush(stdin);
-
+
printf("\nIf home dir ends with a / then [%s] will be appended to it\n",uname);
printf("Home Directory [%s/%s]: ",DEFAULT_HOME,uname);
fflush(stdout);
gets(shell);
if (!strlen(shell))
sprintf(shell,"%s",DEFAULT_SHELL);
-
+
printf("\nMin. Password Change Days [0]: ");
gets(foo);
min_pass=atoi(foo);
-
+
printf("Max. Password Change Days [%d]: ",DEFAULT_MAX_PASS);
gets(foo);
if (strlen(foo) > 1)
max_pass = atoi(foo);
else
max_pass = DEFAULT_MAX_PASS;
-
+
printf("Password Warning Days [%d]: ",DEFAULT_WARN_PASS);
gets(foo);
warn_pass = atoi(foo);
if (warn_pass==0)
warn_pass = DEFAULT_WARN_PASS;
-
+
printf("Days after Password Expiry for Account Locking [%d]: ",DEFAULT_USER_DIE);
gets(foo);
user_die = atoi(foo);
if (user_die == 0)
user_die = DEFAULT_USER_DIE;
-
+
printf("\nInformation for new user [%s] [%s]:\n",uname,person);
printf("Home directory: [%s] Shell: [%s]\n",dir,shell);
printf("GID: [%d]\n",group);
bzero(cmd,sizeof(cmd));
sprintf(cmd,"%s -g %d -d %s -s %s -c \"%s\" -m -k /etc/skel %s",
USERADD_PATH,group,dir,shell,person,uname);
- printf("Calling useradd to add new user:\n%s\n",cmd);
+ printf("Calling useradd to add new user:\n%s\n",cmd);
if(system(cmd)){
printf("User add failed!\n");
exit(errno);
This means that fred's password is valid, it was last changed on
03/04/96, it can be changed at any time, it expires after 60 days,
- fred will not be warned, and and the account won't be disabled when
+ fred will not be warned, and the account won't be disabled when
the password expires.
This simply means that if fred logs in after the password expires, he
If a user logs into a line that is listed in /etc/dialups, and his
shell is listed in the file /etc/d_passwd he will be allowed access
- only by suppling the correct password.
+ only by supplying the correct password.
Another useful purpose for using dial-up passwords might be to setup a
line that only allows a certain type of connect (perhaps a PPP or UUCP
Also, please note that all limit settings are set PER LOGIN. They are
not global, nor are they permanent. Perhaps global limits will come, but
for now this will have to do ;)
-
# This is the current (still incomplete) list of platforms this
# package has been verified to work on. Additions (preferably
# in the format as described below) are welcome. Thanks!
-#
+#
# V: last version reported to work
# H: host type
# L: Linux libc version
per-user configuration, to be executed with run-parts. Some hooks should
be executed at package install time for existing users, likewise for
package removal and possibly modification. (Debian Bug#36019)
-
-<HEAD>
+<head>
<title>shadow - Welcome</title>
</head>
<body>
# $Id$
#
# Login access control table.
-#
+#
# When someone logs in, the table is scanned for the first entry that
# matches the (user, host) combination, or, in case of non-networked
# logins, the first entry that matches the (user, tty) combination. The
-# permissions field of that table entry determines whether the login will
+# permissions field of that table entry determines whether the login will
# be accepted or refused.
-#
+#
# Format of the login access control table is three fields separated by a
# ":" character:
-#
+#
# permission : users : origins
-#
+#
# The first field should be a "+" (access granted) or "-" (access denied)
-# character.
+# character.
#
# The second field should be a list of one or more login names, group
# names, or ALL (always matches). A pattern of the form user@host is
# listed: the program does not look at a user's primary group id value.
#
##############################################################################
-#
+#
# Disallow console logins to all but a few accounts.
#
#-:ALL EXCEPT wheel shutdown sync:console
# Set to "yes" to prevent for all accounts
# Set to "superuser" to prevent for UID 0 / root (default)
# Set to "no" to not prevent for any account (dangerous, historical default)
-
PREVENT_NO_AUTH superuser
#
AUTOMAKE_OPTIONS = 1.0 foreign
-DEFS =
+DEFS =
noinst_LTLIBRARIES = libshadow.la
file_len = strlen(db->filename) + 11;/* %lu max size */
lock_file_len = strlen(db->filename) + 6; /* sizeof ".lock" */
file = (char*)malloc(file_len);
- if(file == NULL) {
+ if (file == NULL) {
goto cleanup_ENOMEM;
}
lock = (char*)malloc(lock_file_len);
- if(lock == NULL) {
+ if (lock == NULL) {
goto cleanup_ENOMEM;
}
snprintf (file, file_len, "%s.%lu",
err = 1;
}
cleanup_ENOMEM:
- if(file)
+ if (file)
free(file);
- if(lock)
+ if (lock)
free(lock);
return err;
}
#ifdef SKEY
/*
* If the user has an S/KEY entry show them the pertinent info
- * and then we can try validating the created cyphertext and the SKEY.
+ * and then we can try validating the created ciphertext and the SKEY.
* If there is no SKEY information we default to not using SKEY.
*/
char *args[] = { script_path, NULL };
pid=fork();
- if (pid==-1){
+ if (pid==-1) {
perror ("Could not fork");
return 1;
}
if (0 == exists) {
fprintf (shadow_logfd,
- _("Login mapping for %s is not defined, OK if default mapping was used\n"),
+ _("Login mapping for %s is not defined, OK if default mapping was used\n"),
login_name);
ret = 0; /* probably default mapping */
goto done;
if (0 == exists) {
fprintf (shadow_logfd,
- _("Login mapping for %s is defined in policy, cannot be deleted\n"),
+ _("Login mapping for %s is defined in policy, cannot be deleted\n"),
login_name);
ret = 0; /* Login mapping defined in policy can't be deleted */
goto done;
}
/* something at the end, columns over shot */
- if( cp != NULL ) {
+ if ( cp != NULL ) {
return( NULL );
}
static void subordinate_free (/*@out@*/ /*@only@*/void *ent)
{
struct subordinate_range *rangeent = ent;
-
+
free ((void *)(rangeent->owner));
free (rangeent);
}
end = start + count - 1;
range = find_range (db, owner, start);
while (range) {
- unsigned long last;
+ unsigned long last;
last = range->start + range->count - 1;
if (last >= (start + count - 1))
* This function will log a message to the audit system using a predefined
* message format. Parameter usage is as follows:
*
- * type - type of message: AUDIT_USER_CHAUTHTOK for changing any account
+ * type - type of message: AUDIT_USER_CHAUTHTOK for changing any account
* attributes.
* pgname - program's name
* op - operation. "adding user", "changing finger info", "deleting group"
{
va_list ap;
- /* ignore the case when destination does not support ACLs
+ /* ignore the case when destination does not support ACLs
* or extended attributes */
if (ENOTSUP == errno) {
errno = 0;
* [GID_MIN:GID_MAX] range.
* This ID should be higher than all the used GID, but if not possible,
* the lowest unused ID in the range will be returned.
- *
+ *
* Return 0 on success, -1 if no unused GIDs are available.
*/
int find_new_gid (bool sys_group,
*
* If successful, find_new_sub_gids provides a range of unused
* user IDs in the [SUB_GID_MIN:SUB_GID_MAX] range.
- *
+ *
* Return 0 on success, -1 if no unused GIDs are available.
*/
int find_new_sub_gids (gid_t *range_start, unsigned long *range_count)
*
* If successful, find_new_sub_uids provides a range of unused
* user IDs in the [SUB_UID_MIN:SUB_UID_MAX] range.
- *
+ *
* Return 0 on success, -1 if no unused UIDs are available.
*/
int find_new_sub_uids (uid_t *range_start, unsigned long *range_count)
* [UID_MIN:UID_MAX] range.
* This ID should be higher than all the used UID, but if not possible,
* the lowest unused ID in the range will be returned.
- *
+ *
* Return 0 on success, -1 if no unused UIDs are available.
*/
int find_new_uid(bool sys_user,
}
#endif
- bufsize = ranges * ((ULONG_DIGITS + 1) * 3);
+ bufsize = ranges * ((ULONG_DIGITS + 1) * 3);
pos = buf = xmalloc(bufsize);
/* Build the mapping command */
{
struct group *groupdata;
- if (uname == NULL || gname == NULL){
+ if (uname == NULL || gname == NULL) {
return false;
}
#include <lastlog.h>
#include "prototypes.h"
-/*
+/*
* dolastlog - create lastlog entry
*
* A "last login" entry is created for the user being logged in. The
(void) fflush (stdout);
}
- /*
+ /*
* Read the user's response. The trailing newline will be
* removed.
*/
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
-
+
#include <config.h>
#ident "$Id$"
struct group * grp = NULL;
fg = fopen(group_db_file, "rt");
- if(!fg)
+ if (!fg)
return NULL;
- while((grp = fgetgrent(fg)) != NULL) {
- if(!strcmp(name, grp->gr_name))
+ while ((grp = fgetgrent(fg)) != NULL) {
+ if (!strcmp(name, grp->gr_name))
break;
}
fclose(fg);
struct group * grp = NULL;
fg = fopen(group_db_file, "rt");
- if(!fg)
+ if (!fg)
return NULL;
- while((grp = fgetgrent(fg)) != NULL) {
- if(gid == grp->gr_gid)
+ while ((grp = fgetgrent(fg)) != NULL) {
+ if (gid == grp->gr_gid)
break;
}
fclose(fg);
struct passwd *pwd = NULL;
fg = fopen(passwd_db_file, "rt");
- if(!fg)
+ if (!fg)
return NULL;
- while((pwd = fgetpwent(fg)) != NULL) {
- if(uid == pwd->pw_uid)
+ while ((pwd = fgetpwent(fg)) != NULL) {
+ if (uid == pwd->pw_uid)
break;
}
fclose(fg);
struct passwd *pwd = NULL;
fg = fopen(passwd_db_file, "rt");
- if(!fg)
+ if (!fg)
return NULL;
- while((pwd = fgetpwent(fg)) != NULL) {
- if(!strcmp(name, pwd->pw_name))
+ while ((pwd = fgetpwent(fg)) != NULL) {
+ if (!strcmp(name, pwd->pw_name))
break;
}
fclose(fg);
struct spwd *sp = NULL;
fg = fopen(spw_db_file, "rt");
- if(!fg)
+ if (!fg)
return NULL;
- while((sp = fgetspent(fg)) != NULL) {
- if(!strcmp(name, sp->sp_namp))
+ while ((sp = fgetspent(fg)) != NULL) {
+ if (!strcmp(name, sp->sp_namp))
break;
}
fclose(fg);
extern void prefix_setpwent()
{
- if(!passwd_db_file) {
+ if (!passwd_db_file) {
setpwent();
return;
}
fclose (fp_pwent);
fp_pwent = fopen(passwd_db_file, "rt");
- if(!fp_pwent)
+ if (!fp_pwent)
return;
}
extern struct passwd* prefix_getpwent()
{
- if(!passwd_db_file) {
+ if (!passwd_db_file) {
return getpwent();
}
return fgetpwent(fp_pwent);
}
extern void prefix_endpwent()
{
- if(!passwd_db_file) {
+ if (!passwd_db_file) {
endpwent();
return;
}
extern void prefix_setgrent()
{
- if(!group_db_file) {
+ if (!group_db_file) {
setgrent();
return;
}
fclose (fp_grent);
fp_grent = fopen(group_db_file, "rt");
- if(!fp_grent)
+ if (!fp_grent)
return;
}
extern struct group* prefix_getgrent()
{
- if(!group_db_file) {
+ if (!group_db_file) {
return getgrent();
}
return fgetgrent(fp_grent);
}
extern void prefix_endgrent()
{
- if(!group_db_file) {
+ if (!group_db_file) {
endgrent();
return;
}
char buf[80];
char format[80];
- if( iflg ) {
+ if (iflg) {
(void) snprintf (format, 80, "%%Y-%%m-%%d");
}
else {
newpwd = cp;
#ifdef USE_PAM
- if (use_pam){
+ if (use_pam) {
if (do_pam_passwd_non_interactive ("chpasswd", name, newpwd) != 0) {
fprintf (stderr,
_("%s: (line %d, user %s) password not changed\n"),
newpw.pw_passwd = cp;
}
- /*
+ /*
* The updated password file entry is then put back and will
* be written to the password file later, after all the
* other entries have been updated as well.
/*
* ttymon invocation prefers this, but these settings
- * won't come into effect after the first username login
+ * won't come into effect after the first username login
*/
(void) STTY (0, &termio);
}
}
}
#endif /* !USE_PAM */
- /*
+ /*
* Add the clock frequency so that profiling commands work
* correctly.
*/
* of reasons, such as X servers or network logins.
*
* the flags which login supports are
- *
+ *
* -p - preserve the environment
* -r - perform autologin protocol for rlogin
* -f - do not perform authentication, user is preauthenticated
(void) umask (getdef_num ("UMASK", GETDEF_DEFAULT_UMASK));
{
- /*
+ /*
* Use the ULIMIT in the login.defs file, and if
* there isn't one, use the default value. The
* user may have one for themselves, but otherwise,
if (strcmp (user_passwd, "") == 0) {
char *prevent_no_auth = getdef_str("PREVENT_NO_AUTH");
- if(prevent_no_auth == NULL) {
+ if (prevent_no_auth == NULL) {
prevent_no_auth = "superuser";
}
- if(strcmp(prevent_no_auth, "yes") == 0) {
+ if (strcmp(prevent_no_auth, "yes") == 0) {
failed = true;
- } else if( (pwd->pw_uid == 0)
+ } else if ((pwd->pw_uid == 0)
&& (strcmp(prevent_no_auth, "superuser") == 0)) {
failed = true;
}
if (strcmp (pw->pw_passwd, "") == 0) {
char *prevent_no_auth = getdef_str("PREVENT_NO_AUTH");
- if(prevent_no_auth == NULL) {
+ if (prevent_no_auth == NULL) {
prevent_no_auth = "superuser";
}
- if(strcmp(prevent_no_auth, "yes") == 0) {
+ if (strcmp(prevent_no_auth, "yes") == 0) {
fprintf(stderr, _("Password field is empty, this is forbidden for all accounts.\n"));
exit(1);
- } else if( (pw->pw_uid == 0)
+ } else if ((pw->pw_uid == 0)
&& (strcmp(prevent_no_auth, "superuser") == 0)) {
fprintf(stderr, _("Password field is empty, this is forbidden for super-user.\n"));
exit(1);
oldsig = signal (SIGQUIT, die);
/*
- * See if the system defined authentication method is being used.
+ * See if the system defined authentication method is being used.
* The first character of an administrator defined method is an '@'
* character.
*/
char buf[1024];
char *cp;
- if(prefix[0]) {
+ if (prefix[0]) {
size_t len;
int wlen;
if ('\0' == *cp) {
cp = SKEL_DIR; /* XXX warning: const */
}
-
- if(prefix[0]) {
+
+ if (prefix[0]) {
size_t len;
int wlen;
char* _def_template; /* avoid const warning */
}
(void) fclose (fp);
getdef_err:
- if(prefix[0]) {
+ if (prefix[0]) {
free(default_file);
}
}
wlen = snprintf(new_file, len, "%s%s%s", prefix, prefix[0]?"/":"", NEW_USER_FILE);
assert (wlen <= (int) len -1);
- if(prefix[0]) {
+ if (prefix[0]) {
len = strlen(prefix) + strlen(USER_DEFAULTS_FILE) + 2;
default_file = malloc(len);
if (default_file == NULL) {
ret = 0;
setdef_err:
free(new_file);
- if(prefix[0]) {
+ if (prefix[0]) {
free(default_file);
}
fail_exit (E_GRP_UPDATE); /* XXX */
}
- /*
+ /*
* Add the username to the list of group members and
* update the group entry to reflect the change.
*/
fail_exit (E_GRP_UPDATE); /* XXX */
}
- /*
+ /*
* Add the username to the list of group members and
* update the group entry to reflect the change.
*/
user_home = uh;
}
- if(prefix[0]) {
+ if (prefix[0]) {
size_t len = strlen(prefix) + strlen(user_home) + 2;
int wlen;
char* _prefix_user_home; /* to avoid const warning */
spool = "/var/mail";
}
file = alloca (strlen (prefix) + strlen (spool) + strlen (user_name) + 2);
- if(prefix[0])
+ if (prefix[0])
sprintf (file, "%s/%s/%s", prefix, spool, user_name);
else
sprintf (file, "%s/%s", spool, user_name);
{
uid_t uid_min ;
uid_t uid_max ;
- if(rflg){
+ if (rflg) {
uid_min = (uid_t)getdef_ulong("SYS_UID_MIN",101UL);
uid_max = (uid_t)getdef_ulong("SYS_UID_MAX",getdef_ulong("UID_MIN",1000UL)-1);
- if(uid_min <= uid_max){
- if(user_id < uid_min || user_id >uid_max)
+ if (uid_min <= uid_max) {
+ if (user_id < uid_min || user_id >uid_max)
fprintf(stderr, _("%s warning: %s's uid %d outside of the SYS_UID_MIN %d and SYS_UID_MAX %d range.\n"), Prog, user_name, user_id, uid_min, uid_max);
}
}else{
uid_min = (uid_t)getdef_ulong("UID_MIN", 1000UL);
uid_max = (uid_t)getdef_ulong("UID_MAX", 6000UL);
- if(uid_min <= uid_max){
- if(user_id < uid_min || user_id >uid_max)
+ if (uid_min <= uid_max) {
+ if (user_id < uid_min || user_id >uid_max)
fprintf(stderr, _("%s warning: %s's uid %d outside of the UID_MIN %d and UID_MAX %d range.\n"), Prog, user_name, user_id, uid_min, uid_max);
}
}
}
}
- if(uflg)
+ if (uflg)
check_uid_range(rflg,user_id);
#ifdef WITH_TCB
if (getdef_bool ("USE_TCB")) {
{NULL, 0, NULL, '\0'}
};
while ((c = getopt_long (argc, argv,
-#ifdef WITH_SELINUX
+#ifdef WITH_SELINUX
"fhrR:P:Z",
#else /* !WITH_SELINUX */
"fhrR:P:",
break;
case 'P': /* no-op, handled in process_prefix_flag () */
break;
-#ifdef WITH_SELINUX
+#ifdef WITH_SELINUX
case 'Z':
if (prefix[0]) {
fprintf (stderr,
}
user_id = pwd->pw_uid;
user_gid = pwd->pw_gid;
-
- if(prefix[0]) {
-
+
+ if (prefix[0]) {
+
size_t len = strlen(prefix) + strlen(pwd->pw_dir) + 2;
int wlen;
user_home = xmalloc(len);
* Cancel any crontabs or at jobs. Have to do this before we remove
* the entry from /etc/passwd.
*/
- if(prefix[0] == '\0')
+ if (prefix[0] == '\0')
user_cancel (user_name);
close_files ();
result.last = (unsigned long int)last;
out:
return result;
-
}
struct ulong_range_list_entry {
changed = false;
- /*
+ /*
* Update the group entry to reflect the changes.
*/
if (sgr_update (nsgrp) == 0) {
if (!gflg) {
user_newgid = user_gid;
}
- if(prefix[0]) {
+ if (prefix[0]) {
size_t len = strlen(prefix) + strlen(user_home) + 2;
int wlen;
prefix_user_home = xmalloc(len);
if (sub_uid_remove(user_name, ptr->range.first, count) == 0) {
fprintf (stderr,
_("%s: failed to remove uid range %lu-%lu from '%s'\n"),
- Prog, ptr->range.first, ptr->range.last,
+ Prog, ptr->range.first, ptr->range.last,
sub_uid_dbname ());
fail_exit (E_SUB_UID_UPDATE);
}
if (sub_uid_add(user_name, ptr->range.first, count) == 0) {
fprintf (stderr,
_("%s: failed to add uid range %lu-%lu to '%s'\n"),
- Prog, ptr->range.first, ptr->range.last,
+ Prog, ptr->range.first, ptr->range.last,
sub_uid_dbname ());
fail_exit (E_SUB_UID_UPDATE);
}
if (sub_gid_remove(user_name, ptr->range.first, count) == 0) {
fprintf (stderr,
_("%s: failed to remove gid range %lu-%lu from '%s'\n"),
- Prog, ptr->range.first, ptr->range.last,
+ Prog, ptr->range.first, ptr->range.last,
sub_gid_dbname ());
fail_exit (E_SUB_GID_UPDATE);
}
if (sub_gid_add(user_name, ptr->range.first, count) == 0) {
fprintf (stderr,
_("%s: failed to add gid range %lu-%lu to '%s'\n"),
- Prog, ptr->range.first, ptr->range.last,
+ Prog, ptr->range.first, ptr->range.last,
sub_gid_dbname ());
fail_exit (E_SUB_GID_UPDATE);
}
projects / thirdparty / shadow.git / commitdiff
