Really restore the old behaviour for pw usermod -m

[pw-darwin.git] / pw / pw_user.c

diff --git a/pw/pw_user.c b/pw/pw_user.c
index 8ff4159108d886b7a7ae54c6ffe16167179c1528..8cffac98b558bf27bbfc4ce942d77841420785fc 100644 (file)
--- a/pw/pw_user.c
+++ b/pw/pw_user.c
@@ -30,23 +30,27 @@ static const char rcsid[] =
   "$FreeBSD$";
 #endif /* not lint */
 
+#include <sys/param.h>
+#include <sys/types.h>
+
 #include <ctype.h>
+#include <dirent.h>
 #include <err.h>
+#include <errno.h>
 #include <fcntl.h>
-#include <inttypes.h>
-#include <sys/param.h>
-#include <dirent.h>
-#include <paths.h>
-#include <termios.h>
-#include <sys/types.h>
-#include <sys/time.h>
-#include <sys/resource.h>
-#include <login_cap.h>
-#include <pwd.h>
 #include <grp.h>
+#include <pwd.h>
 #include <libutil.h>
+#include <login_cap.h>
+#include <paths.h>
+#include <string.h>
+#include <sysexits.h>
+#include <termios.h>
+#include <unistd.h>
+
 #include "pw.h"
 #include "bitmap.h"
+#include "psdate.h"
 
 #define LOGNAMESIZE (MAXLOGNAME-1)
 
@@ -79,12 +83,79 @@ static char *shell_path(char const * path, char *shells[], char *sh);
 static void    rmat(uid_t uid);
 static void    rmopie(char const * name);
 
+static void
+mkdir_home_parents(int dfd, const char *dir)
+{
+       struct stat st;
+       char *dirs, *tmp;
+
+       if (*dir != '/')
+               errx(EX_DATAERR, "invalid base directory for home '%s'", dir);
+
+       dir++;
+
+       if (fstatat(dfd, dir, &st, 0) != -1) {
+               if (S_ISDIR(st.st_mode))
+                       return;
+               errx(EX_OSFILE, "root home `/%s' is not a directory", dir);
+       }
+
+       dirs = strdup(dir);
+       if (dirs == NULL)
+               errx(EX_UNAVAILABLE, "out of memory");
+
+       tmp = strrchr(dirs, '/');
+       if (tmp == NULL) {
+               free(dirs);
+               return;
+       }
+       tmp[0] = '\0';
+
+       /*
+        * This is a kludge especially for Joerg :)
+        * If the home directory would be created in the root partition, then
+        * we really create it under /usr which is likely to have more space.
+        * But we create a symlink from cnf->home -> "/usr" -> cnf->home
+        */
+       if (strchr(dirs, '/') == NULL) {
+               asprintf(&tmp, "usr/%s", dirs);
+               if (tmp == NULL)
+                       errx(EX_UNAVAILABLE, "out of memory");
+               if (mkdirat(dfd, tmp, _DEF_DIRMODE) != -1 || errno == EEXIST) {
+                       fchownat(dfd, tmp, 0, 0, 0);
+                       symlinkat(tmp, dfd, dirs);
+               }
+               free(tmp);
+       }
+       tmp = dirs;
+       if (fstatat(dfd, dirs, &st, 0) == -1) {
+               while ((tmp = strchr(tmp + 1, '/')) != NULL) {
+                       *tmp = '\0';
+                       if (fstatat(dfd, dirs, &st, 0) == -1) {
+                               if (mkdirat(dfd, dirs, _DEF_DIRMODE) == -1)
+                                       err(EX_OSFILE,  "'%s' (root home parent) is not a directory", dirs);
+                       }
+                       *tmp = '/';
+               }
+       }
+       if (fstatat(dfd, dirs, &st, 0) == -1) {
+               if (mkdirat(dfd, dirs, _DEF_DIRMODE) == -1)
+                       err(EX_OSFILE,  "'%s' (root home parent) is not a directory", dirs);
+               fchownat(dfd, dirs, 0, 0, 0);
+       }
+
+       free(dirs);
+}
+
 static void
 create_and_populate_homedir(struct userconf *cnf, struct passwd *pwd,
     const char *skeldir, mode_t homemode, bool update)
 {
        int skelfd = -1;
 
+       /* Create home parents directories */
+       mkdir_home_parents(conf.rootfd, pwd->pw_dir);
+
        if (skeldir != NULL && *skeldir != '\0') {
                if (*skeldir == '/')
                        skeldir++;
@@ -201,7 +272,7 @@ pw_userlock(char *arg1, int mode)
        char *passtmp = NULL;
        char *name;
        bool locked = false;
-       uid_t id;
+       uid_t id = (uid_t)-1;
 
        if (geteuid() != 0)
                errx(EX_NOPERM, "you must be root");
@@ -209,15 +280,19 @@ pw_userlock(char *arg1, int mode)
        if (arg1 == NULL)
                errx(EX_DATAERR, "username or id required");
 
-       if (strspn(arg1, "0123456789") == strlen(arg1))
-               id = pw_checkid(arg1, UID_MAX);
-       else
-               name = arg1;
+       name = arg1;
+       if (arg1[strspn(name, "0123456789")] == '\0')
+               id = pw_checkid(name, UID_MAX);
 
-       pwd = (name != NULL) ? GETPWNAM(pw_checkname(name, 0)) : GETPWUID(id);
+       pwd = GETPWNAM(pw_checkname(name, 0));
+       if (pwd == NULL && id != (uid_t)-1) {
+               pwd = GETPWUID(id);
+               if (pwd != NULL)
+                       name = pwd->pw_name;
+       }
        if (pwd == NULL) {
-               if (name == NULL)
-                       errx(EX_NOUSER, "no such uid `%ju'", (uintmax_t) id);
+               if (id == (uid_t)-1)
+                       errx(EX_NOUSER, "no such name or uid `%ju'", (uintmax_t) id);
                errx(EX_NOUSER, "no such user `%s'", name);
        }
 
@@ -565,7 +640,8 @@ pw_checkname(char *name, int gecos)
        }
        if (!reject) {
                while (*ch) {
-                       if (strchr(badchars, *ch) != NULL || *ch < ' ' ||
+                       if (strchr(badchars, *ch) != NULL ||
+                           (!gecos && *ch < ' ') ||
                            *ch == 127) {
                                reject = 1;
                                break;
@@ -618,7 +694,8 @@ rmat(uid_t uid)
                            st.st_uid == uid) {
                                char            tmp[MAXPATHLEN];
 
-                               snprintf(tmp, sizeof(tmp), "/usr/bin/atrm %s", e->d_name);
+                               snprintf(tmp, sizeof(tmp), "/usr/bin/atrm %s",
+                                   e->d_name);
                                system(tmp);
                        }
                }
@@ -665,13 +742,13 @@ pw_user_next(int argc, char **argv, char *name __unused)
        bool quiet = false;
        uid_t next;
 
-       while ((ch = getopt(argc, argv, "Cq")) != -1) {
+       while ((ch = getopt(argc, argv, "C:q")) != -1) {
                switch (ch) {
                case 'C':
                        cfg = optarg;
                        break;
                case 'q':
-                       quiet;
+                       quiet = true;
                        break;
                }
        }
@@ -694,7 +771,7 @@ pw_user_show(int argc, char **argv, char *arg1)
 {
        struct passwd *pwd = NULL;
        char *name = NULL;
-       uid_t id = -1;
+       intmax_t id = -1;
        int ch;
        bool all = false;
        bool pretty = false;
@@ -703,7 +780,7 @@ pw_user_show(int argc, char **argv, char *arg1)
        bool quiet = false;
 
        if (arg1 != NULL) {
-               if (strspn(arg1, "0123456789") == strlen(arg1))
+               if (arg1[strspn(arg1, "0123456789")] == '\0')
                        id = pw_checkid(arg1, UID_MAX);
                else
                        name = arg1;
@@ -732,7 +809,7 @@ pw_user_show(int argc, char **argv, char *arg1)
                case 'a':
                        all = true;
                        break;
-               case 7:
+               case '7':
                        v7 = true;
                        break;
                }
@@ -780,14 +857,14 @@ pw_user_del(int argc, char **argv, char *arg1)
        char home[MAXPATHLEN];
        const char *cfg = NULL;
        struct stat st;
-       uid_t id;
+       intmax_t id = -1;
        int ch, rc;
        bool nis = false;
        bool deletehome = false;
        bool quiet = false;
 
        if (arg1 != NULL) {
-               if (strspn(arg1, "0123456789") == strlen(arg1))
+               if (arg1[strspn(arg1, "0123456789")] == '\0')
                        id = pw_checkid(arg1, UID_MAX);
                else
                        name = arg1;
@@ -864,7 +941,8 @@ pw_user_del(int argc, char **argv, char *arg1)
                /* Remove crontabs */
                snprintf(file, sizeof(file), "/var/cron/tabs/%s", pwd->pw_name);
                if (access(file, F_OK) == 0) {
-                       snprintf(file, sizeof(file), "crontab -u %s -r", pwd->pw_name);
+                       snprintf(file, sizeof(file), "crontab -u %s -r",
+                           pwd->pw_name);
                        system(file);
                }
        }
@@ -1117,7 +1195,7 @@ pw_user_add(int argc, char **argv, char *arg1)
                err(EXIT_FAILURE, "calloc()");
 
        if (arg1 != NULL) {
-               if (strspn(arg1, "0123456789") == strlen(arg1))
+               if (arg1[strspn(arg1, "0123456789")] == '\0')
                        id = pw_checkid(arg1, UID_MAX);
                else
                        name = arg1;
@@ -1237,7 +1315,7 @@ pw_user_add(int argc, char **argv, char *arg1)
 
        mix_config(cmdcnf, cnf);
        if (default_passwd)
-               cmdcnf->default_password = boolean_val(default_passwd,
+               cmdcnf->default_password = passwd_val(default_passwd,
                    cnf->default_password);
        if (genconf) {
                if (name != NULL)
@@ -1275,6 +1353,9 @@ pw_user_add(int argc, char **argv, char *arg1)
        if (name == NULL)
                errx(EX_DATAERR, "login name required");
 
+       if (GETPWNAM(name) != NULL)
+               errx(EX_DATAERR, "login name `%s' already exists", name);
+
        pwd = &fakeuser;
        pwd->pw_name = name;
        pwd->pw_class = cmdcnf->default_class ? cmdcnf->default_class : "";
@@ -1313,7 +1394,8 @@ pw_user_add(int argc, char **argv, char *arg1)
                printf("%s\n", cmdcnf->nispasswd);
                rc = addnispwent(cmdcnf->nispasswd, pwd);
                if (rc == -1)
-                       warnx("User '%s' already exists in NIS passwd", pwd->pw_name);
+                       warnx("User '%s' already exists in NIS passwd",
+                           pwd->pw_name);
                else if (rc != 0)
                        warn("NIS passwd update");
                /* NOTE: we treat NIS-only update errors as non-fatal */
@@ -1343,7 +1425,8 @@ pw_user_add(int argc, char **argv, char *arg1)
        grp = GETGRGID(pwd->pw_gid);
        pw_log(cnf, M_ADD, W_USER, "%s(%ju):%s(%ju):%s:%s:%s",
               pwd->pw_name, (uintmax_t)pwd->pw_uid,
-           grp ? grp->gr_name : "unknown", (uintmax_t)(grp ? grp->gr_gid : (uid_t)-1),
+           grp ? grp->gr_name : "unknown",
+              (uintmax_t)(grp ? grp->gr_gid : (uid_t)-1),
               pwd->pw_gecos, pwd->pw_dir, pwd->pw_shell);
 
        /*
@@ -1410,19 +1493,20 @@ pw_user_mod(int argc, char **argv, char *arg1)
        intmax_t id = -1;
        int ch, fd = -1;
        size_t i, j;
-       bool quiet, createhome, pretty, dryrun, nis, edited, docreatehome;
+       bool quiet, createhome, pretty, dryrun, nis, edited;
+       bool precrypted;
        mode_t homemode = 0;
-       time_t expire_days, password_days, now, precrypted;
+       time_t expire_days, password_days, now;
 
        expire_days = password_days = -1;
        gecos = homedir = grname = name = newname = skel = shell =NULL;
        passwd = NULL;
        class = nispasswd = NULL;
        quiet = createhome = pretty = dryrun = nis = precrypted = false;
-       edited = docreatehome = false;
+       edited = false;
 
        if (arg1 != NULL) {
-               if (strspn(arg1, "0123456789") == strlen(arg1))
+               if (arg1[strspn(arg1, "0123456789")] == '\0')
                        id = pw_checkid(arg1, UID_MAX);
                else
                        name = arg1;
@@ -1568,13 +1652,14 @@ pw_user_mod(int argc, char **argv, char *arg1)
                }
        }
 
-       if (id > 0 && pwd->pw_uid != id) {
+       if (id >= 0 && pwd->pw_uid != id) {
                pwd->pw_uid = id;
                edited = true;
                if (pwd->pw_uid != 0 && strcmp(pwd->pw_name, "root") == 0)
                        errx(EX_DATAERR, "can't change uid of `root' account");
                if (pwd->pw_uid == 0 && strcmp(pwd->pw_name, "root") != 0)
-                       warnx("WARNING: account `%s' will have a uid of 0 (superuser access!)", pwd->pw_name);
+                       warnx("WARNING: account `%s' will have a uid of 0 "
+                           "(superuser access!)", pwd->pw_name);
        }
 
        if (grname && pwd->pw_uid != 0) {
@@ -1614,12 +1699,11 @@ pw_user_mod(int argc, char **argv, char *arg1)
 
        if (homedir && strcmp(pwd->pw_dir, homedir) != 0) {
                pwd->pw_dir = homedir;
+               edited = true;
                if (fstatat(conf.rootfd, pwd->pw_dir, &st, 0) == -1) {
                        if (!createhome)
                                warnx("WARNING: home `%s' does not exist",
                                    pwd->pw_dir);
-                       else
-                               docreatehome = true;
                } else if (!S_ISDIR(st.st_mode)) {
                        warnx("WARNING: home `%s' is not a directory",
                            pwd->pw_dir);
@@ -1631,6 +1715,8 @@ pw_user_mod(int argc, char **argv, char *arg1)
                if (lc == NULL || login_setcryptfmt(lc, "sha512", NULL) == NULL)
                        warn("setting crypt(3) format");
                login_close(lc);
+               cnf->default_password = passwd_val(passwd,
+                   cnf->default_password);
                pwd->pw_passwd = pw_password(cnf, pwd->pw_name, dryrun);
                edited = true;
        }
@@ -1709,7 +1795,7 @@ pw_user_mod(int argc, char **argv, char *arg1)
         * that this also `works' for editing users if -m is used, but
         * existing files will *not* be overwritten.
         */
-       if (PWALTDIR() != PWF_ALT && docreatehome && pwd->pw_dir &&
+       if (PWALTDIR() != PWF_ALT && createhome && pwd->pw_dir &&
            *pwd->pw_dir == '/' && pwd->pw_dir[1]) {
                if (!skel)
                        skel = cnf->dotdir;