421 lines
10 KiB
C
421 lines
10 KiB
C
|
/*****************************************************************************
|
||
|
*
|
||
|
* $Id$
|
||
|
* Purpose ...............: MBSE BBS Shadow Password Suite
|
||
|
* Original Source .......: Shadow Password Suite
|
||
|
* Original Copyright ....: Julianne Frances Haugh and others.
|
||
|
*
|
||
|
*****************************************************************************
|
||
|
* Copyright (C) 1997-2001
|
||
|
*
|
||
|
* Michiel Broek FIDO: 2:280/2802
|
||
|
* Beekmansbos 10
|
||
|
* 1971 BV IJmuiden
|
||
|
* the Netherlands
|
||
|
*
|
||
|
* This file is part of MBSE BBS.
|
||
|
*
|
||
|
* This BBS is free software; you can redistribute it and/or modify it
|
||
|
* under the terms of the GNU General Public License as published by the
|
||
|
* Free Software Foundation; either version 2, or (at your option) any
|
||
|
* later version.
|
||
|
*
|
||
|
* MBSE BBS is distributed in the hope that it will be useful, but
|
||
|
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
||
|
* General Public License for more details.
|
||
|
*
|
||
|
* You should have received a copy of the GNU General Public License
|
||
|
* along with MBSE BBS; see the file COPYING. If not, write to the Free
|
||
|
* Software Foundation, 675 Mass Ave, Cambridge, MA 02139, USA.
|
||
|
*****************************************************************************/
|
||
|
|
||
|
/*
|
||
|
* Separated from setup.c. --marekm
|
||
|
* Resource limits thanks to Cristian Gafton.
|
||
|
*/
|
||
|
|
||
|
#include "../config.h"
|
||
|
#include "mblogin.h"
|
||
|
#include <sys/types.h>
|
||
|
#include <sys/stat.h>
|
||
|
#include <stdio.h>
|
||
|
#include <syslog.h>
|
||
|
#include <utmp.h>
|
||
|
#include <pwd.h>
|
||
|
#include <grp.h>
|
||
|
#include "getdef.h"
|
||
|
#include "utmp.h"
|
||
|
#include "ulimit.h"
|
||
|
|
||
|
#ifdef HAVE_SYS_RESOURCE_H
|
||
|
#include <sys/resource.h>
|
||
|
#define LIMITS
|
||
|
#endif
|
||
|
|
||
|
#ifdef LIMITS
|
||
|
|
||
|
#ifndef LIMITS_FILE
|
||
|
#define LIMITS_FILE "/etc/limits"
|
||
|
#endif
|
||
|
|
||
|
#define LOGIN_ERROR_RLIMIT 1
|
||
|
#define LOGIN_ERROR_LOGIN 2
|
||
|
|
||
|
/* Set a limit on a resource */
|
||
|
/*
|
||
|
* rlimit - RLIMIT_XXXX
|
||
|
* value - string value to be read
|
||
|
* multiplier - value*multiplier is the actual limit
|
||
|
*/
|
||
|
int setrlimit_value(unsigned int rlimit, const char *value, unsigned int multiplier)
|
||
|
{
|
||
|
struct rlimit rlim;
|
||
|
long limit;
|
||
|
char **endptr = (char **) &value;
|
||
|
const char *value_orig = value;
|
||
|
|
||
|
limit = strtol(value, endptr, 10);
|
||
|
if (limit == 0 && value_orig == *endptr) /* no chars read */
|
||
|
return 0;
|
||
|
limit *= multiplier;
|
||
|
rlim.rlim_cur = limit;
|
||
|
rlim.rlim_max = limit;
|
||
|
if (setrlimit(rlimit, &rlim))
|
||
|
return LOGIN_ERROR_RLIMIT;
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
|
||
|
int set_prio(const char *value)
|
||
|
{
|
||
|
int prio;
|
||
|
char **endptr = (char **) &value;
|
||
|
|
||
|
prio = strtol(value, endptr, 10);
|
||
|
if ((prio == 0) && (value == *endptr))
|
||
|
return 0;
|
||
|
if (setpriority(PRIO_PROCESS, 0, prio))
|
||
|
return LOGIN_ERROR_RLIMIT;
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
|
||
|
int set_umask(const char *value)
|
||
|
{
|
||
|
mode_t mask;
|
||
|
char **endptr = (char **) &value;
|
||
|
|
||
|
mask = strtol(value, endptr, 8) & 0777;
|
||
|
if ((mask == 0) && (value == *endptr))
|
||
|
return 0;
|
||
|
umask(mask);
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
|
||
|
/* Counts the number of user logins and check against the limit */
|
||
|
int check_logins(const char *name, const char *maxlogins)
|
||
|
{
|
||
|
struct utmp *ut;
|
||
|
unsigned int limit, count;
|
||
|
char **endptr = (char **) &maxlogins;
|
||
|
const char *ml_orig = maxlogins;
|
||
|
|
||
|
limit = strtol(maxlogins, endptr, 10);
|
||
|
if (limit == 0 && ml_orig == *endptr) /* no chars read */
|
||
|
return 0;
|
||
|
|
||
|
if (limit == 0) /* maximum 0 logins ? */ {
|
||
|
syslog(LOG_WARNING, "No logins allowed for `%s'\n", name);
|
||
|
return LOGIN_ERROR_LOGIN;
|
||
|
}
|
||
|
|
||
|
setutent();
|
||
|
count = 0;
|
||
|
while ((ut = getutent())) {
|
||
|
#ifdef USER_PROCESS
|
||
|
if (ut->ut_type != USER_PROCESS)
|
||
|
continue;
|
||
|
#endif
|
||
|
if (ut->ut_user[0] == '\0')
|
||
|
continue;
|
||
|
if (strncmp(name, ut->ut_user, sizeof(ut->ut_user)) != 0)
|
||
|
continue;
|
||
|
if (++count > limit)
|
||
|
break;
|
||
|
}
|
||
|
endutent();
|
||
|
/*
|
||
|
* This is called after setutmp(), so the number of logins counted
|
||
|
* includes the user who is currently trying to log in.
|
||
|
*/
|
||
|
if (count > limit) {
|
||
|
syslog(LOG_WARNING, "Too many logins (max %d) for %s\n", limit, name);
|
||
|
return LOGIN_ERROR_LOGIN;
|
||
|
}
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
/* Function setup_user_limits - checks/set limits for the curent login
|
||
|
* Original idea from Joel Katz's lshell. Ported to shadow-login
|
||
|
* by Cristian Gafton - gafton@sorosis.ro
|
||
|
*
|
||
|
* We are passed a string of the form ('BASH' constants for ulimit)
|
||
|
* [Aa][Cc][Dd][Ff][Mm][Nn][Rr][Ss][Tt][Uu][Ll][Pp]
|
||
|
* (eg. 'C2F256D2048N5' or 'C2 F256 D2048 N5')
|
||
|
* where:
|
||
|
* [Aa]: a = RLIMIT_AS max address space (KB)
|
||
|
* [Cc]: c = RLIMIT_CORE max core file size (KB)
|
||
|
* [Dd]: d = RLIMIT_DATA max data size (KB)
|
||
|
* [Ff]: f = RLIMIT_FSIZE max file size (KB)
|
||
|
* [Mm]: m = RLIMIT_MEMLOCK max locked-in-memory address space (KB)
|
||
|
* [Nn]: n = RLIMIT_NOFILE max number of open files
|
||
|
* [Rr]: r = RLIMIT_RSS max resident set size (KB)
|
||
|
* [Ss]: s = RLIMIT_STACK max stack size (KB)
|
||
|
* [Tt]: t = RLIMIT_CPU max CPU time (MIN)
|
||
|
* [Uu]: u = RLIMIT_NPROC max number of processes
|
||
|
* [Kk]: k = file creation masK (umask)
|
||
|
* [Ll]: l = max number of logins for this user
|
||
|
* [Pp]: p = process priority -20..20 (negative = high, positive = low)
|
||
|
*
|
||
|
* Return value:
|
||
|
* 0 = okay, of course
|
||
|
* LOGIN_ERROR_RLIMIT = error setting some RLIMIT
|
||
|
* LOGIN_ERROR_LOGIN = error - too many logins for this user
|
||
|
*
|
||
|
* buf - the limits string
|
||
|
* name - the username
|
||
|
*/
|
||
|
int do_user_limits(const char *buf, const char *name)
|
||
|
{
|
||
|
const char *pp;
|
||
|
int retval = 0;
|
||
|
|
||
|
pp = buf;
|
||
|
|
||
|
while (*pp != '\0') switch(*pp++) {
|
||
|
#ifdef RLIMIT_AS
|
||
|
case 'a':
|
||
|
case 'A':
|
||
|
/* RLIMIT_AS - max address space (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_AS, pp, 1024);
|
||
|
#endif
|
||
|
#ifdef RLIMIT_CPU
|
||
|
case 't':
|
||
|
case 'T':
|
||
|
/* RLIMIT_CPU - max CPU time (MIN) */
|
||
|
retval |= setrlimit_value(RLIMIT_CPU, pp, 60);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_DATA
|
||
|
case 'd':
|
||
|
case 'D':
|
||
|
/* RLIMIT_DATA - max data size (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_DATA, pp, 1024);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_FSIZE
|
||
|
case 'f':
|
||
|
case 'F':
|
||
|
/* RLIMIT_FSIZE - Maximum filesize (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_FSIZE, pp, 1024);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_NPROC
|
||
|
case 'u':
|
||
|
case 'U':
|
||
|
/* RLIMIT_NPROC - max number of processes */
|
||
|
retval |= setrlimit_value(RLIMIT_NPROC, pp, 1);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_CORE
|
||
|
case 'c':
|
||
|
case 'C':
|
||
|
/* RLIMIT_CORE - max core file size (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_CORE, pp, 1024);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_MEMLOCK
|
||
|
case 'm':
|
||
|
case 'M':
|
||
|
/* RLIMIT_MEMLOCK - max locked-in-memory address space (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_MEMLOCK, pp, 1024);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_NOFILE
|
||
|
case 'n':
|
||
|
case 'N':
|
||
|
/* RLIMIT_NOFILE - max number of open files */
|
||
|
retval |= setrlimit_value(RLIMIT_NOFILE, pp, 1);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_RSS
|
||
|
case 'r':
|
||
|
case 'R':
|
||
|
/* RLIMIT_RSS - max resident set size (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_RSS, pp, 1024);
|
||
|
break;
|
||
|
#endif
|
||
|
#ifdef RLIMIT_STACK
|
||
|
case 's':
|
||
|
case 'S':
|
||
|
/* RLIMIT_STACK - max stack size (KB) */
|
||
|
retval |= setrlimit_value(RLIMIT_STACK, pp, 1024);
|
||
|
break;
|
||
|
#endif
|
||
|
case 'k':
|
||
|
case 'K':
|
||
|
retval |= set_umask(pp);
|
||
|
break;
|
||
|
case 'l':
|
||
|
case 'L':
|
||
|
/* LIMIT the number of concurent logins */
|
||
|
retval |= check_logins(name, pp);
|
||
|
break;
|
||
|
case 'p':
|
||
|
case 'P':
|
||
|
retval |= set_prio(pp);
|
||
|
break;
|
||
|
}
|
||
|
return retval;
|
||
|
}
|
||
|
|
||
|
int setup_user_limits(const char *uname)
|
||
|
{
|
||
|
/* TODO: allow and use @group syntax --cristiang */
|
||
|
FILE *fil;
|
||
|
char buf[1024];
|
||
|
char name[1024];
|
||
|
char limits[1024];
|
||
|
char deflimits[1024];
|
||
|
char tempbuf[1024];
|
||
|
|
||
|
/* init things */
|
||
|
memzero(buf, sizeof(buf));
|
||
|
memzero(name, sizeof(name));
|
||
|
memzero(limits, sizeof(limits));
|
||
|
memzero(deflimits, sizeof(deflimits));
|
||
|
memzero(tempbuf, sizeof(tempbuf));
|
||
|
|
||
|
/* start the checks */
|
||
|
fil = fopen(LIMITS_FILE, "r");
|
||
|
if (fil == NULL) {
|
||
|
#if 0 /* no limits file is ok, not everyone is a BOFH :-). --marekm */
|
||
|
SYSLOG((LOG_WARN, NO_LIMITS, uname, LIMITS_FILE));
|
||
|
#endif
|
||
|
return 0;
|
||
|
}
|
||
|
/* The limits file have the following format:
|
||
|
* - '#' (comment) chars only as first chars on a line;
|
||
|
* - username must start on first column
|
||
|
* A better (smarter) checking should be done --cristiang */
|
||
|
while (fgets(buf, 1024, fil) != NULL) {
|
||
|
if (buf[0]=='#' || buf[0]=='\n')
|
||
|
continue;
|
||
|
memzero(tempbuf, sizeof(tempbuf));
|
||
|
/* a valid line should have a username, then spaces,
|
||
|
* then limits
|
||
|
* we allow the format:
|
||
|
* username L2 D2048 R4096
|
||
|
* where spaces={' ',\t}. Also, we reject invalid limits.
|
||
|
* Imposing a limit should be done with care, so a wrong
|
||
|
* entry means no care anyway :-). A '-' as a limits
|
||
|
* strings means no limits --cristiang */
|
||
|
if (sscanf(buf, "%s%[ACDFMNRSTULPacdfmnrstulp0-9 \t-]",
|
||
|
name, tempbuf) == 2) {
|
||
|
if (strcmp(name, uname) == 0) {
|
||
|
strcpy(limits, tempbuf);
|
||
|
break;
|
||
|
} else if (strcmp(name, "*") == 0) {
|
||
|
strcpy(deflimits, tempbuf);
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
fclose(fil);
|
||
|
if (limits[0] == '\0') {
|
||
|
/* no user specific limits */
|
||
|
if (deflimits[0] == '\0') /* no default limits */
|
||
|
return 0;
|
||
|
strcpy(limits, deflimits); /* use the default limits */
|
||
|
}
|
||
|
return do_user_limits(limits, uname);
|
||
|
}
|
||
|
#endif /* LIMITS */
|
||
|
|
||
|
|
||
|
void setup_usergroups(const struct passwd *info)
|
||
|
{
|
||
|
const struct group *grp;
|
||
|
mode_t oldmask;
|
||
|
|
||
|
/*
|
||
|
* if not root, and uid == gid, and username is the same as primary
|
||
|
* group name, set umask group bits to be the same as owner bits
|
||
|
* (examples: 022 -> 002, 077 -> 007).
|
||
|
*/
|
||
|
if (info->pw_uid != 0 && info->pw_uid == info->pw_gid) {
|
||
|
grp = getgrgid(info->pw_gid);
|
||
|
if (grp && (strcmp(info->pw_name, grp->gr_name) == 0)) {
|
||
|
oldmask = umask(0777);
|
||
|
umask((oldmask & ~070) | ((oldmask >> 3) & 070));
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
|
||
|
/*
|
||
|
* set the process nice, ulimit, and umask from the password file entry
|
||
|
*/
|
||
|
|
||
|
void setup_limits(const struct passwd *info)
|
||
|
{
|
||
|
char *cp;
|
||
|
int i;
|
||
|
long l;
|
||
|
|
||
|
if (getdef_bool("USERGROUPS_ENAB"))
|
||
|
setup_usergroups(info);
|
||
|
|
||
|
/*
|
||
|
* See if the GECOS field contains values for NICE, UMASK or ULIMIT.
|
||
|
* If this feature is enabled in /etc/login.defs, we make those
|
||
|
* values the defaults for this login session.
|
||
|
*/
|
||
|
|
||
|
if (getdef_bool("QUOTAS_ENAB")) {
|
||
|
#ifdef LIMITS
|
||
|
if (info->pw_uid != 0)
|
||
|
if (setup_user_limits(info->pw_name) & LOGIN_ERROR_LOGIN) {
|
||
|
fprintf(stderr, _("Too many logins.\n"));
|
||
|
sleep(2);
|
||
|
exit(1);
|
||
|
}
|
||
|
#endif
|
||
|
for (cp = info->pw_gecos ; cp != NULL ; cp = strchr (cp, ',')) {
|
||
|
if (*cp == ',')
|
||
|
cp++;
|
||
|
|
||
|
if (strncmp (cp, "pri=", 4) == 0) {
|
||
|
i = atoi (cp + 4);
|
||
|
if (i >= -20 && i <= 20)
|
||
|
(void) nice (i);
|
||
|
|
||
|
continue;
|
||
|
}
|
||
|
if (strncmp (cp, "ulimit=", 7) == 0) {
|
||
|
l = strtol (cp + 7, (char **) 0, 10);
|
||
|
set_filesize_limit(l);
|
||
|
continue;
|
||
|
}
|
||
|
if (strncmp (cp, "umask=", 6) == 0) {
|
||
|
i = strtol (cp + 6, (char **) 0, 8) & 0777;
|
||
|
(void) umask (i);
|
||
|
|
||
|
continue;
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
|
||
|
|