xref: /aosp_15_r20/external/musl/src/passwd/getpw_a.c (revision c9945492fdd68bbe62686c5b452b4dc1be3f8453) 
1*c9945492SAndroid Build Coastguard Worker #include <pthread.h>
2*c9945492SAndroid Build Coastguard Worker #include <byteswap.h>
3*c9945492SAndroid Build Coastguard Worker #include <string.h>
4*c9945492SAndroid Build Coastguard Worker #include <unistd.h>
5*c9945492SAndroid Build Coastguard Worker #include "pwf.h"
6*c9945492SAndroid Build Coastguard Worker #include "nscd.h"
7*c9945492SAndroid Build Coastguard Worker 
itoa(char * p,uint32_t x)8*c9945492SAndroid Build Coastguard Worker static char *itoa(char *p, uint32_t x)
9*c9945492SAndroid Build Coastguard Worker {
10*c9945492SAndroid Build Coastguard Worker 	// number of digits in a uint32_t + NUL
11*c9945492SAndroid Build Coastguard Worker 	p += 11;
12*c9945492SAndroid Build Coastguard Worker 	*--p = 0;
13*c9945492SAndroid Build Coastguard Worker 	do {
14*c9945492SAndroid Build Coastguard Worker 		*--p = '0' + x % 10;
15*c9945492SAndroid Build Coastguard Worker 		x /= 10;
16*c9945492SAndroid Build Coastguard Worker 	} while (x);
17*c9945492SAndroid Build Coastguard Worker 	return p;
18*c9945492SAndroid Build Coastguard Worker }
19*c9945492SAndroid Build Coastguard Worker 
__getpw_a(const char * name,uid_t uid,struct passwd * pw,char ** buf,size_t * size,struct passwd ** res)20*c9945492SAndroid Build Coastguard Worker int __getpw_a(const char *name, uid_t uid, struct passwd *pw, char **buf, size_t *size, struct passwd **res)
21*c9945492SAndroid Build Coastguard Worker {
22*c9945492SAndroid Build Coastguard Worker 	FILE *f;
23*c9945492SAndroid Build Coastguard Worker 	int cs;
24*c9945492SAndroid Build Coastguard Worker 	int rv = 0;
25*c9945492SAndroid Build Coastguard Worker 
26*c9945492SAndroid Build Coastguard Worker 	*res = 0;
27*c9945492SAndroid Build Coastguard Worker 
28*c9945492SAndroid Build Coastguard Worker 	pthread_setcancelstate(PTHREAD_CANCEL_DISABLE, &cs);
29*c9945492SAndroid Build Coastguard Worker 
30*c9945492SAndroid Build Coastguard Worker 	f = fopen("/etc/passwd", "rbe");
31*c9945492SAndroid Build Coastguard Worker 	if (!f) {
32*c9945492SAndroid Build Coastguard Worker 		rv = errno;
33*c9945492SAndroid Build Coastguard Worker 		goto done;
34*c9945492SAndroid Build Coastguard Worker 	}
35*c9945492SAndroid Build Coastguard Worker 
36*c9945492SAndroid Build Coastguard Worker 	while (!(rv = __getpwent_a(f, pw, buf, size, res)) && *res) {
37*c9945492SAndroid Build Coastguard Worker 		if (name && !strcmp(name, (*res)->pw_name)
38*c9945492SAndroid Build Coastguard Worker 		|| !name && (*res)->pw_uid == uid)
39*c9945492SAndroid Build Coastguard Worker 			break;
40*c9945492SAndroid Build Coastguard Worker 	}
41*c9945492SAndroid Build Coastguard Worker 	fclose(f);
42*c9945492SAndroid Build Coastguard Worker 
43*c9945492SAndroid Build Coastguard Worker 	if (!*res && (rv == 0 || rv == ENOENT || rv == ENOTDIR)) {
44*c9945492SAndroid Build Coastguard Worker 		int32_t req = name ? GETPWBYNAME : GETPWBYUID;
45*c9945492SAndroid Build Coastguard Worker 		const char *key;
46*c9945492SAndroid Build Coastguard Worker 		int32_t passwdbuf[PW_LEN] = {0};
47*c9945492SAndroid Build Coastguard Worker 		size_t len = 0;
48*c9945492SAndroid Build Coastguard Worker 		char uidbuf[11] = {0};
49*c9945492SAndroid Build Coastguard Worker 
50*c9945492SAndroid Build Coastguard Worker 		if (name) {
51*c9945492SAndroid Build Coastguard Worker 			key = name;
52*c9945492SAndroid Build Coastguard Worker 		} else {
53*c9945492SAndroid Build Coastguard Worker 			/* uid outside of this range can't be queried with the
54*c9945492SAndroid Build Coastguard Worker 			 * nscd interface, but might happen if uid_t ever
55*c9945492SAndroid Build Coastguard Worker 			 * happens to be a larger type (this is not true as of
56*c9945492SAndroid Build Coastguard Worker 			 * now)
57*c9945492SAndroid Build Coastguard Worker 			 */
58*c9945492SAndroid Build Coastguard Worker 			if(uid < 0 || uid > UINT32_MAX) {
59*c9945492SAndroid Build Coastguard Worker 				rv = 0;
60*c9945492SAndroid Build Coastguard Worker 				goto done;
61*c9945492SAndroid Build Coastguard Worker 			}
62*c9945492SAndroid Build Coastguard Worker 			key = itoa(uidbuf, uid);
63*c9945492SAndroid Build Coastguard Worker 		}
64*c9945492SAndroid Build Coastguard Worker 
65*c9945492SAndroid Build Coastguard Worker 		f = __nscd_query(req, key, passwdbuf, sizeof passwdbuf, (int[]){0});
66*c9945492SAndroid Build Coastguard Worker 		if (!f) { rv = errno; goto done; }
67*c9945492SAndroid Build Coastguard Worker 
68*c9945492SAndroid Build Coastguard Worker 		if(!passwdbuf[PWFOUND]) { rv = 0; goto cleanup_f; }
69*c9945492SAndroid Build Coastguard Worker 
70*c9945492SAndroid Build Coastguard Worker 		/* A zero length response from nscd is invalid. We ignore
71*c9945492SAndroid Build Coastguard Worker 		 * invalid responses and just report an error, rather than
72*c9945492SAndroid Build Coastguard Worker 		 * trying to do something with them.
73*c9945492SAndroid Build Coastguard Worker 		 */
74*c9945492SAndroid Build Coastguard Worker 		if (!passwdbuf[PWNAMELEN] || !passwdbuf[PWPASSWDLEN]
75*c9945492SAndroid Build Coastguard Worker 		|| !passwdbuf[PWGECOSLEN] || !passwdbuf[PWDIRLEN]
76*c9945492SAndroid Build Coastguard Worker 		|| !passwdbuf[PWSHELLLEN]) {
77*c9945492SAndroid Build Coastguard Worker 			rv = EIO;
78*c9945492SAndroid Build Coastguard Worker 			goto cleanup_f;
79*c9945492SAndroid Build Coastguard Worker 		}
80*c9945492SAndroid Build Coastguard Worker 
81*c9945492SAndroid Build Coastguard Worker 		if ((passwdbuf[PWNAMELEN]|passwdbuf[PWPASSWDLEN]
82*c9945492SAndroid Build Coastguard Worker 		     |passwdbuf[PWGECOSLEN]|passwdbuf[PWDIRLEN]
83*c9945492SAndroid Build Coastguard Worker 		     |passwdbuf[PWSHELLLEN]) >= SIZE_MAX/8) {
84*c9945492SAndroid Build Coastguard Worker 			rv = ENOMEM;
85*c9945492SAndroid Build Coastguard Worker 			goto cleanup_f;
86*c9945492SAndroid Build Coastguard Worker 		}
87*c9945492SAndroid Build Coastguard Worker 
88*c9945492SAndroid Build Coastguard Worker 		len = passwdbuf[PWNAMELEN] + passwdbuf[PWPASSWDLEN]
89*c9945492SAndroid Build Coastguard Worker 		    + passwdbuf[PWGECOSLEN] + passwdbuf[PWDIRLEN]
90*c9945492SAndroid Build Coastguard Worker 		    + passwdbuf[PWSHELLLEN];
91*c9945492SAndroid Build Coastguard Worker 
92*c9945492SAndroid Build Coastguard Worker 		if (len > *size || !*buf) {
93*c9945492SAndroid Build Coastguard Worker 			char *tmp = realloc(*buf, len);
94*c9945492SAndroid Build Coastguard Worker 			if (!tmp) {
95*c9945492SAndroid Build Coastguard Worker 				rv = errno;
96*c9945492SAndroid Build Coastguard Worker 				goto cleanup_f;
97*c9945492SAndroid Build Coastguard Worker 			}
98*c9945492SAndroid Build Coastguard Worker 			*buf = tmp;
99*c9945492SAndroid Build Coastguard Worker 			*size = len;
100*c9945492SAndroid Build Coastguard Worker 		}
101*c9945492SAndroid Build Coastguard Worker 
102*c9945492SAndroid Build Coastguard Worker 		if (!fread(*buf, len, 1, f)) {
103*c9945492SAndroid Build Coastguard Worker 			rv = ferror(f) ? errno : EIO;
104*c9945492SAndroid Build Coastguard Worker 			goto cleanup_f;
105*c9945492SAndroid Build Coastguard Worker 		}
106*c9945492SAndroid Build Coastguard Worker 
107*c9945492SAndroid Build Coastguard Worker 		pw->pw_name = *buf;
108*c9945492SAndroid Build Coastguard Worker 		pw->pw_passwd = pw->pw_name + passwdbuf[PWNAMELEN];
109*c9945492SAndroid Build Coastguard Worker 		pw->pw_gecos = pw->pw_passwd + passwdbuf[PWPASSWDLEN];
110*c9945492SAndroid Build Coastguard Worker 		pw->pw_dir = pw->pw_gecos + passwdbuf[PWGECOSLEN];
111*c9945492SAndroid Build Coastguard Worker 		pw->pw_shell = pw->pw_dir + passwdbuf[PWDIRLEN];
112*c9945492SAndroid Build Coastguard Worker 		pw->pw_uid = passwdbuf[PWUID];
113*c9945492SAndroid Build Coastguard Worker 		pw->pw_gid = passwdbuf[PWGID];
114*c9945492SAndroid Build Coastguard Worker 
115*c9945492SAndroid Build Coastguard Worker 		/* Don't assume that nscd made sure to null terminate strings.
116*c9945492SAndroid Build Coastguard Worker 		 * It's supposed to, but malicious nscd should be ignored
117*c9945492SAndroid Build Coastguard Worker 		 * rather than causing a crash.
118*c9945492SAndroid Build Coastguard Worker 		 */
119*c9945492SAndroid Build Coastguard Worker 		if (pw->pw_passwd[-1] || pw->pw_gecos[-1] || pw->pw_dir[-1]
120*c9945492SAndroid Build Coastguard Worker 		|| pw->pw_shell[passwdbuf[PWSHELLLEN]-1]) {
121*c9945492SAndroid Build Coastguard Worker 			rv = EIO;
122*c9945492SAndroid Build Coastguard Worker 			goto cleanup_f;
123*c9945492SAndroid Build Coastguard Worker 		}
124*c9945492SAndroid Build Coastguard Worker 
125*c9945492SAndroid Build Coastguard Worker 		if (name && strcmp(name, pw->pw_name)
126*c9945492SAndroid Build Coastguard Worker 		|| !name && uid != pw->pw_uid) {
127*c9945492SAndroid Build Coastguard Worker 			rv = EIO;
128*c9945492SAndroid Build Coastguard Worker 			goto cleanup_f;
129*c9945492SAndroid Build Coastguard Worker 		}
130*c9945492SAndroid Build Coastguard Worker 
131*c9945492SAndroid Build Coastguard Worker 
132*c9945492SAndroid Build Coastguard Worker 		*res = pw;
133*c9945492SAndroid Build Coastguard Worker cleanup_f:
134*c9945492SAndroid Build Coastguard Worker 		fclose(f);
135*c9945492SAndroid Build Coastguard Worker 		goto done;
136*c9945492SAndroid Build Coastguard Worker 	}
137*c9945492SAndroid Build Coastguard Worker 
138*c9945492SAndroid Build Coastguard Worker done:
139*c9945492SAndroid Build Coastguard Worker 	pthread_setcancelstate(cs, 0);
140*c9945492SAndroid Build Coastguard Worker 	if (rv) errno = rv;
141*c9945492SAndroid Build Coastguard Worker 	return rv;
142*c9945492SAndroid Build Coastguard Worker }
143