2 ===================================================================
3 RCS file: /var/cvs/tinylogin/Config.h,v
4 retrieving revision 1.10
5 retrieving revision 1.12
7 --- a/Config.h 23 Jun 2002 03:09:07 -0000 1.10
8 +++ b/Config.h 17 Feb 2003 11:51:55 -0000 1.12
10 // Enable checking of /etc/securetty by login
11 #define CONFIG_FEATURE_SECURETTY
13 -// Enable using sha passwords
14 -#define CONFIG_FEATURE_SHA1_PASSWORDS
16 // Enable use of a wheel group
17 #define CONFIG_WHEEL_GROUP
19 -// This compiles out everything but the most
20 -// trivial --help usage information (i.e. reduces binary size)
21 -#define CONFIG_FEATURE_TRIVIAL_HELP
22 +// Show verbose usage messages
23 +//#define CONFIG_FEATURE_VERBOSE_USAGE
25 // Enable 'tinylogin --install [-s]' to allow tinylogin
26 // to create links (or symlinks) at runtime for all the
28 // Nothing beyond this point should ever be touched by
29 // mere mortals so leave this stuff alone.
31 -#ifdef CONFIG_FEATURE_SHA1_PASSWORDS
35 #ifdef CONFIG_FEATURE_SHADOWPASSWDS
39 ===================================================================
40 RCS file: /var/cvs/tinylogin/addgroup.c,v
41 retrieving revision 1.22
42 retrieving revision 1.23
44 --- a/addgroup.c 12 Dec 2002 08:46:03 -0000 1.22
45 +++ b/addgroup.c 9 Jan 2003 18:43:29 -0000 1.23
47 * ________________________________________________________________________ */
48 int addgroup_main(int argc, char **argv)
57 + /* get remaining args */
58 + while ((opt = getopt (argc, argv, "g:")) != -1) {
61 + gid = strtol(optarg, NULL, 10);
69 - if (strncmp(argv[1], "-g", 2) == 0) {
70 - gid = strtol(argv[2], NULL, 10);
72 + if (optind < argc) {
73 + group = argv[optind];
82 + if (optind < argc) {
83 + user = argv[optind];
89 return addgroup(GROUP_FILE, group, gid, user);
92 -/* $Id: addgroup.c,v 1.22 2002/12/12 08:46:03 andersen Exp $ */
93 +/* $Id: addgroup.c,v 1.23 2003/01/09 18:43:29 andersen Exp $ */
95 ===================================================================
96 RCS file: /var/cvs/tinylogin/adduser.c,v
97 retrieving revision 1.37
98 retrieving revision 1.38
100 --- a/adduser.c 12 Dec 2002 08:46:03 -0000 1.37
101 +++ b/adduser.c 21 Jun 2003 19:35:42 -0000 1.38
117 #include <sys/param.h>
118 #include <sys/stat.h>
119 #include <sys/types.h>
124 - /* EDR check for an already existing gid */
125 - while (getgrgid(p->pw_uid) != NULL)
128 - /* EDR also check for an existing group definition */
129 - if (getgrnam(p->pw_name) != NULL)
131 + if (p->pw_gid == 0) {
132 + /* EDR check for an already existing gid */
133 + while (getgrgid(p->pw_uid) != NULL)
136 + /* EDR also check for an existing group definition */
137 + if (getgrnam(p->pw_name) != NULL)
140 + /* EDR create new gid always = uid */
141 + p->pw_gid = p->pw_uid;
144 /* EDR bounds check */
145 if ((p->pw_uid > max) || (p->pw_uid < min))
148 - /* EDR create new gid always = uid */
149 - p->pw_gid = p->pw_uid;
157 /* putpwent(3) remix */
158 -static int adduser(const char *filename, struct passwd *p)
159 +static int adduser(const char *filename, struct passwd *p, int makehome, int setpass)
169 + /* if using a pre-existing group, don't create one */
170 + if (p->pw_gid != 0)
173 /* make sure everything is kosher and setup uid && gid */
174 passwd = wfopen(filename, "a");
175 @@ -194,29 +205,36 @@
180 - /* addgroup should be responsible for dealing w/ gshadow */
181 - addgroup_wrapper(p->pw_name, p->pw_gid);
184 + /* addgroup should be responsible for dealing w/ gshadow */
185 + addgroup_wrapper(p->pw_name, p->pw_gid);
188 /* Clear the umask for this process so it doesn't
189 * * screw up the permissions on the mkdir and chown. */
193 - if (mkdir(p->pw_dir, 0755)) {
194 - perror_msg("%s", p->pw_dir);
196 - /* Set the owner and group so it is owned by the new user. */
197 - if (chown(p->pw_dir, p->pw_uid, p->pw_gid)) {
198 - perror_msg("%s", p->pw_dir);
200 - /* Now fix up the permissions to 2755. Can't do it before now
201 - * since chown will clear the setgid bit */
202 - if (chmod(p->pw_dir, 02755)) {
203 - perror_msg("%s", p->pw_dir);
206 + if (mkdir(p->pw_dir, 0755)) {
207 + perror_msg("%s", p->pw_dir);
209 + /* Set the owner and group so it is owned by the new user. */
210 + if (chown(p->pw_dir, p->pw_uid, p->pw_gid)) {
211 + perror_msg("%s", p->pw_dir);
213 + /* Now fix up the permissions to 2755. Can't do it before now
214 + * since chown will clear the setgid bit */
215 + if (chmod(p->pw_dir, 02755)) {
216 + perror_msg("%s", p->pw_dir);
221 + /* interactively set passwd */
222 + passwd_wrapper(p->pw_name);
224 - /* interactively set passwd */
225 - passwd_wrapper(p->pw_name);
233 +struct option long_options[] = {
234 + { "home", 1, NULL, 'h' },
235 + { "disabled-password", 0, NULL, 'D' },
236 + { "system", 0, NULL, 'S' },
237 + { "ingroup", 1, NULL, 'G' },
238 + { "no-create-home", 0, NULL, 'H' },
243 * adduser will take a login_name as its first parameter.
247 const char *home = NULL;
249 + const char *usegroup = NULL;
250 + int option_index = -1;
258 shell = default_shell;
261 - while ((opt = getopt (argc, argv, "h:g:s:")) != -1) {
262 + while ((opt = getopt_long (argc, argv, "h:g:s:G:DSH", long_options, &option_index)) != -1) {
286 pw.pw_dir = (char *)home;
287 pw.pw_shell = (char *)shell;
290 + /* Add user to a group that already exists */
293 + g = getgrnam(usegroup);
295 + error_msg_and_die("group %s does not exist", usegroup);
297 + pw.pw_gid = g->gr_gid;
301 - return adduser(PASSWD_FILE, &pw);
302 + return adduser(PASSWD_FILE, &pw, makehome, setpass);
305 -/* $Id: adduser.c,v 1.37 2002/12/12 08:46:03 andersen Exp $ */
306 +/* $Id: adduser.c,v 1.38 2003/06/21 19:35:42 andersen Exp $ */
308 ===================================================================
309 RCS file: /var/cvs/tinylogin/install.sh,v
310 retrieving revision 1.10
311 retrieving revision 1.11
312 diff -u -r1.10 -r1.11
313 --- a/install.sh 23 Jun 2002 03:09:07 -0000 1.10
314 +++ b/install.sh 6 Mar 2003 19:29:17 -0000 1.11
316 h=`sort tinylogin.links | uniq`
319 -mkdir -p $prefix/bin || exit 1
320 +install -d -m 0755 $prefix/bin || exit 1
324 - mkdir -p $prefix/$appdir || exit 1
325 + install -d -m 0755 $prefix/$appdir || exit 1
326 if [ "$2" = "--hardlinks" ]; then
327 bb_path="$prefix/bin/tinylogin"
330 ===================================================================
331 RCS file: /var/cvs/tinylogin/passwd.c,v
332 retrieving revision 1.19
333 retrieving revision 1.20
334 diff -u -r1.19 -r1.20
335 --- a/passwd.c 7 Nov 2002 02:34:15 -0000 1.19
336 +++ b/passwd.c 17 Feb 2003 11:51:55 -0000 1.20
339 int x = 0; /* standart: DES */
341 -#ifdef CONFIG_FEATURE_SHA1_PASSWORDS
342 - if (strcasecmp(a, "sha1") == 0)
345 if (strcasecmp(a, "md5") == 0)
349 bzero(cp, strlen(cp));
350 bzero(orig, sizeof(orig));
352 -#ifdef CONFIG_FEATURE_SHA1_PASSWORDS
354 - cp = pw_encrypt(pass, "$2$");
358 cp = pw_encrypt(pass, "$1$");
361 ===================================================================
364 --- a/sha1.c 20 Dec 2000 21:54:28 -0000 1.2
365 +++ /dev/null 1 Jan 1970 00:00:00 -0000
367 -/* vi: set sw=4 ts=4: */
369 - Implements the Secure Hash Algorithm (SHA1)
371 - Copyright (C) 1999 Scott G. Miller
373 - Released under the terms of the GNU General Public License v2
374 - see file COPYING for details
377 - Robert Klep <robert@ilse.nl> -- Expansion function fix
379 - FIXME: This source takes int to be a 32 bit integer. This
380 - may vary from system to system. I'd use autoconf if I was familiar
381 - with it. Anyone want to help me out?
384 -void sha_hash(int *, int *);
385 -void sha_init(int *);
386 -char *sprint_hash(int *);
387 -void do_sha_hash(int *, int *);
390 - added 3 functions for sha passowrd stuff (mainly inspired from stuff seen in main.c from shasum-1.3 package)
397 -/* On big endian machines, we need to reverse the input to process
398 - the blocks correctly */
400 -#define switch_endianness(x) (x<<24 & 0xff000000) | \
401 - (x<<8 & 0x00ff0000) | \
402 - (x>>8 & 0x0000ff00) | \
403 - (x>>24 & 0x000000ff)
405 -/* Initial hash values */
406 -#define Ai 0x67452301
407 -#define Bi 0xefcdab89
408 -#define Ci 0x98badcfe
409 -#define Di 0x10325476
410 -#define Ei 0xc3d2e1f0
412 -/* SHA1 round constants */
413 -#define K1 0x5a827999
414 -#define K2 0x6ed9eba1
415 -#define K3 0x8f1bbcdc
416 -#define K4 0xca62c1d6
418 -/* Round functions. Note that f2() is used in both rounds 2 and 4 */
419 -#define f1(B,C,D) ((B & C) | ((~B) & D))
420 -#define f2(B,C,D) (B ^ C ^ D)
421 -#define f3(B,C,D) ((B & C) | (B & D) | (C & D))
423 -/* left circular shift functions (rotate left) */
424 -#define rol1(x) ((x<<1) | ((x>>31) & 1))
425 -#define rol5(A) ((A<<5) | ((A>>27) & 0x1f))
426 -#define rol30(B) ((B<<30) | ((B>>2) & 0x3fffffff))
429 - Hashes 'data', which should be a pointer to 512 bits of data (sixteen
430 - 32 bit ints), into the ongoing 160 bit hash value (five 32 bit ints)
433 -void sha_hash(int *data, int *hash)
436 - unsigned int A = hash[0], B = hash[1], C = hash[2], D = hash[3], E =
438 - unsigned int t, x, TEMP;
440 - for (t = 0; t < 16; t++) {
442 - W[t] = switch_endianness(data[t]);
449 - /* SHA1 Data expansion */
450 - for (t = 16; t < 80; t++) {
451 - x = W[t - 3] ^ W[t - 8] ^ W[t - 14] ^ W[t - 16];
455 - /* SHA1 main loop (t=0 to 79)
456 - This is broken down into four subloops in order to use
457 - the correct round function and constant */
458 - for (t = 0; t < 20; t++) {
459 - TEMP = rol5(A) + f1(B, C, D) + E + W[t] + K1;
466 - for (; t < 40; t++) {
467 - TEMP = rol5(A) + f2(B, C, D) + E + W[t] + K2;
474 - for (; t < 60; t++) {
475 - TEMP = rol5(A) + f3(B, C, D) + E + W[t] + K3;
482 - for (; t < 80; t++) {
483 - TEMP = rol5(A) + f2(B, C, D) + E + W[t] + K4;
498 - Takes a pointer to a 160 bit block of data (five 32 bit ints) and
499 - intializes it to the start constants of the SHA1 algorithm. This
500 - must be called before using hash in the call to sha_hash
502 -void sha_init(int *hash)
513 - * write the hash to a string
515 -char *sprint_sha1_hash(int *hashval)
520 - if ((out = malloc(43)) == NULL)
522 - memset(out, 0x00, 43);
523 - strcpy(out, "$2$");
524 - for (x = 0; x < 5; x++) {
525 - sprintf(out + (x * 8) + 3, "%08x", hashval[x]);
533 - * hash the password
535 -void do_sha_hash(int *hashval, int *pw)
538 - sha_hash(pw, hashval);
543 - * hash a charakter string and return the 160bit integer in hex as a character string
545 -char *sha1_crypt(const char *pw)
549 - memset(hashval, 0x00, sizeof(hashval));
550 - do_sha_hash(hashval, (int *) ((char *) pw + 3));
552 - return sprint_sha1_hash(hashval);
555 ===================================================================
556 RCS file: /var/cvs/tinylogin/vlock.c,v
557 retrieving revision 1.13
558 retrieving revision 1.14
559 diff -u -r1.13 -r1.14
560 --- a/vlock.c 19 Sep 2002 03:50:31 -0000 1.13
561 +++ b/vlock.c 17 Feb 2003 11:51:56 -0000 1.14
563 * minimalistic vlock.
565 /* Fixed by Erik Andersen to do passwords the tinylogin way...
566 - * It now works with md5, sha1, etc passwords. */
567 + * It now works with md5, etc passwords. */
569 #include "tinylogin.h"
571 Index: docs/tinylogin.busybox.net/index.html
572 ===================================================================
573 RCS file: /var/cvs/tinylogin/docs/tinylogin.busybox.net/index.html,v
574 retrieving revision 1.23
575 retrieving revision 1.25
576 diff -u -r1.23 -r1.25
577 --- a/docs/tinylogin.busybox.net/index.html 3 Jan 2003 10:56:32 -0000 1.23
578 +++ b/docs/tinylogin.busybox.net/index.html 3 Jan 2003 11:21:53 -0000 1.25
580 Erik Andersen</a>, and licensed under the
581 <a href="http://www.gnu.org/copyleft/gpl.html">GNU GENERAL PUBLIC LICENSE</a>.
583 +<h3>Mailing List Information</h3>
584 +Here are the Tinylogin <a href="/lists/tinylogin/">mailing list archives</a><br>
585 +To subscribe, go and visit <a href= "/mailman/listinfo/tinylogin">this page</a>.
587 <!-- Begin Download section -->
589 @@ -222,19 +225,19 @@
591 <li> <A HREF="http://freshmeat.net/projects/tinylogin/?highlight=tinylogin">
592 Freshmeat AppIndex record for TinyLogin</A>
595 <li><a href="http://www.busybox.net/">BusyBox</a>
596 combines tiny versions of many common UNIX utilities into a single small
597 executable. It provides minimalist replacements for most of the utilities
598 you usually find on a standard Linux system.
602 <li><a href="http://uclibc.org/uClibc.html">uClibc</a>
603 is a C library for embedded systems. You can actually statically link
604 a "Hello World" application under x86 that only takes 4k (as opposed to
605 200k under GNU libc). It can do dynamic linking too and works nicely with
606 BusyBox to create very small embedded systems.
611 Index: include/libbb.h
612 ===================================================================
613 RCS file: /var/cvs/tinylogin/include/libbb.h,v
614 retrieving revision 1.1
615 retrieving revision 1.2
617 --- a/include/libbb.h 23 Jun 2002 03:09:10 -0000 1.1
618 +++ b/include/libbb.h 17 Feb 2003 11:51:57 -0000 1.2
620 #ifdef CONFIG_FEATURE_SHADOWPASSWDS
623 -#ifdef CONFIG_FEATURE_SHA1_PASSWORDS
627 #if (__GNU_LIBRARY__ < 5) && (!defined __dietlibc__)
628 /* libc5 doesn't define socklen_t */
629 Index: include/sha1.h
630 ===================================================================
631 RCS file: include/sha1.h
632 diff -N include/sha1.h
633 --- a/include/sha1.h 23 Jun 2002 03:09:10 -0000 1.1
634 +++ /dev/null 1 Jan 1970 00:00:00 -0000
636 -/* SHA1.H - header file for SHA1.C */
638 -char *sha1_crypt(const char *pw);
639 Index: include/usage.h
640 ===================================================================
641 RCS file: /var/cvs/tinylogin/include/usage.h,v
642 retrieving revision 1.2
643 retrieving revision 1.3
645 --- a/include/usage.h 3 Jul 2002 05:57:00 -0000 1.2
646 +++ b/include/usage.h 17 Feb 2003 11:51:57 -0000 1.3
648 "\t-h\tName of the remote host for this login.\n" \
649 "\t-p\tPreserve environment."
651 -#ifdef CONFIG_FEATURE_SHA1_PASSWORDS
652 - #define PASSWORD_ALG_TYPES(a) a
654 - #define PASSWORD_ALG_TYPES(a)
656 #define passwd_trivial_usage \
658 #define passwd_full_usage \
661 "\t-a\tDefine which algorithm shall be used for the password.\n" \
662 "\t\t\t(Choices: des, md5" \
663 - PASSWORD_ALG_TYPES(", sha1") \
664 ")\n\t-d\tDelete the password for the specified user account.\n" \
665 "\t-l\tLocks (disables) the specified user account.\n" \
666 "\t-u\tUnlocks (re-enables) the specified user account."
667 Index: libbb/obscure.c
668 ===================================================================
669 RCS file: /var/cvs/tinylogin/libbb/obscure.c,v
670 retrieving revision 1.2
671 retrieving revision 1.3
673 --- a/libbb/obscure.c 23 Jun 2002 04:05:59 -0000 1.2
674 +++ b/libbb/obscure.c 30 Jul 2003 08:41:33 -0000 1.3
676 * can't be a palindrome - like `R A D A R' or `M A D A M'
679 -static int palindrome(const char *old, const char *newval)
680 +static int palindrome(const char *newval)
685 * a nice mix of characters.
688 -static int simple(const char *old, const char *newval)
689 +static int simple(const char *newval)
699 - for (i = 0; newval[i]; i++) {
700 - if (isdigit(newval[i]))
702 - else if (isupper(newval[i]))
704 - else if (islower(newval[i]))
706 + for (i = 0; (c = *newval++) != 0; i++) {
709 + else if (isupper(c))
711 + else if (islower(c))
719 @@ -129,49 +130,53 @@
723 -static char *password_check(const char *old, const char *newval, const struct passwd *pwdp)
725 +password_check(const char *old, const char *newval, const struct passwd *pwdp)
728 - char *oldmono, *newmono, *wrapped;
730 + char *newmono, *wrapped;
733 if (strcmp(newval, old) == 0)
735 + if (simple(newval))
736 + return "too simple";
739 newmono = str_lower(xstrdup(newval));
740 - oldmono = str_lower(xstrdup(old));
741 - wrapped = (char *) xmalloc(strlen(oldmono) * 2 + 1);
742 - strcpy(wrapped, oldmono);
743 - strcat(wrapped, oldmono);
744 + lenwrap = strlen(old) * 2 + 1;
745 + wrapped = (char *) xmalloc(lenwrap);
746 + str_lower(strcpy(wrapped, old));
748 - if (palindrome(oldmono, newmono))
749 + if (palindrome(newmono))
750 msg = "a palindrome";
752 - if (!msg && strcmp(oldmono, newmono) == 0)
753 + else if (strcmp(wrapped, newmono) == 0)
754 msg = "case changes only";
756 - if (!msg && similiar(oldmono, newmono))
757 + else if (similiar(wrapped, newmono))
758 msg = "too similiar";
760 - if (!msg && simple(old, newval))
761 - msg = "too simple";
763 - if (!msg && strstr(wrapped, newmono))
766 + safe_strncpy(wrapped + lenwrap, wrapped, lenwrap + 1);
767 + if (strstr(wrapped, newmono))
771 bzero(newmono, strlen(newmono));
772 - bzero(oldmono, strlen(oldmono));
773 - bzero(wrapped, strlen(wrapped));
774 + bzero(wrapped, lenwrap);
782 -static char *obscure_msg(const char *old, const char *newval, const struct passwd *pwdp)
784 +obscure_msg(const char *old, const char *newval, const struct passwd *pwdp)
786 int maxlen, oldlen, newlen;
787 - char *new1, *old1, *msg;
791 oldlen = strlen(old);
792 newlen = strlen(newval);
795 extern int obscure(const char *old, const char *newval, const struct passwd *pwdp)
797 - char *msg = obscure_msg(old, newval, pwdp);
798 + const char *msg = obscure_msg(old, newval, pwdp);
802 Index: libbb/pw_encrypt.c
803 ===================================================================
804 RCS file: /var/cvs/tinylogin/libbb/pw_encrypt.c,v
805 retrieving revision 1.1
806 retrieving revision 1.2
808 --- a/libbb/pw_encrypt.c 23 Jun 2002 03:09:12 -0000 1.1
809 +++ b/libbb/pw_encrypt.c 17 Feb 2003 11:51:58 -0000 1.2
811 static char cipher[128];
814 -#ifdef CONFIG_FEATURE_SHA1_PASSWORDS
815 - if (strncmp(salt, "$2$", 3) == 0) {
816 - return sha1_crypt(clear);
819 cp = (char *) crypt(clear, salt);
820 /* if crypt (a nonstandard crypt) returns a string too large,
821 truncate it so we don't overrun buffers and hope there is
projects / familiar-h63xx-build.git / blob