2 * CDE - Common Desktop Environment
4 * Copyright (c) 1993-2012, The Open Group. All rights reserved.
6 * These libraries and programs are free software; you can
7 * redistribute them and/or modify them under the terms of the GNU
8 * Lesser General Public License as published by the Free Software
9 * Foundation; either version 2 of the License, or (at your option)
12 * These libraries and programs are distributed in the hope that
13 * they will be useful, but WITHOUT ANY WARRANTY; without even the
14 * implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
15 * PURPOSE. See the GNU Lesser General Public License for more
18 * You should have received a copy of the GNU Lesser General Public
19 * License along with these librararies and programs; if not, write
20 * to the Free Software Foundation, Inc., 51 Franklin Street, Fifth
21 * Floor, Boston, MA 02110-1301 USA
24 * (c) Copyright 1993, 1994 Hewlett-Packard Company *
25 * (c) Copyright 1993, 1994 International Business Machines Corp. *
26 * (c) Copyright 1993, 1994 Sun Microsystems, Inc. *
27 * (c) Copyright 1993, 1994 Novell, Inc. *
30 * xdm - display manager daemon
32 * $TOG: verify.c /main/7 1998/11/02 15:25:40 mgreess $
34 * Copyright 1988 Massachusetts Institute of Technology
36 * Permission to use, copy, modify, and distribute this software and its
37 * documentation for any purpose and without fee is hereby granted, provided
38 * that the above copyright notice appear in all copies and that both that
39 * copyright notice and this permission notice appear in supporting
40 * documentation, and that the name of M.I.T. not be used in advertising or
41 * publicity pertaining to distribution of the software without specific,
42 * written prior permission. M.I.T. makes no representations about the
43 * suitability of this software for any purpose. It is provided "as is"
44 * without express or implied warranty.
46 * Author: Keith Packard, MIT X Consortium
52 * typical unix verification routine.
59 #include <X11/Xresource.h>
74 struct passwd nobody = {
75 "Nobody", "***************"
78 static char *Pndefault = "/etc/default/login";
84 extern char *_ExpandLang( char *string, char *lang );
89 struct greet_info *greet,
90 struct verify_info *verify )
96 char last_sess[MAXPATHLEN];
100 Debug ("Verify(): %s\n", greet->name);
103 * The user has already been verified by the Greeter. This is
104 * really just to look up the rest of his environment. Better
105 * performance would be realized by having the Greeter look this up
106 * and pass it back in the pipe (saving an additional getpwnam).
109 p = getpwnam (greet->name);
110 if (!p || strlen (greet->name) == 0) {
111 Debug ("Can't get user information for %s\n", greet->name);
116 Debug ("BypassLogin = %d\n",d->bypassLogin);
117 if ( d->bypassLogin ) {
119 if ( !strcmp (p->pw_name, "Nobody" ))
120 s = "Greetless login failed; user invalid\n";
121 else if ( access ( p->pw_dir, F_OK ))
122 s = "Greetless login failed; bad user home dir access\n";
123 else if ( p->pw_uid == 0 )
124 s = "Greetless login failed; root bypass disallowed\n";
126 Debug(s); LogError((unsigned char *) s);
127 bzero(greet->password, strlen(greet->password));
131 #endif /* BYPASSLOGIN */
135 if (strcmp(crypt(greet->password,p->pw_passwd),p->pw_passwd)
136 && !d->bypassLogin) {
138 if (strcmp(crypt(greet->password,p->pw_passwd),p->pw_passwd)) {
139 #endif /* BYPASSLOGIN */
140 Debug ("verify failed\n");
141 bzero(greet->password, strlen(greet->password));
144 Debug ("verify succeeded\n");
145 bzero(greet->password, strlen(greet->password));
147 Debug ("User information for %s acquired\n", greet->name);
150 verify->uid = p->pw_uid;
153 if ( IsVerifyName(VN_AFS) ) {
154 (void)setgid(p->pw_gid);
155 verify->groups[2] = p->pw_gid;
159 getGroups (greet->name, verify, p->pw_gid);
161 verify->gid = p->pw_gid;
166 verify->audid = p->pw_audid;
167 verify->audflg = p->pw_audflg;
174 if(d->sessionType > NOTIFY_ALT_DTS)
175 notify_dt = NOTIFY_ALT_DTS;
177 notify_dt = d->sessionType;
183 argv = parseArgs (argv,d->session);
186 if((argv = setDt(d,argv,notify_dt)) == NULL)
187 /*if no startup file, startup the regular desktop*/
189 argv = parseArgs (argv,d->session);
191 Debug ("No Startup file \n");
195 strcpy(last_sess,home);
196 strcat(last_sess,LAST_SESSION_FILE);
198 if((lastsession = fopen(last_sess,"r")) == NULL) {
200 * if no lastsession file, execute the logically
201 * first alternate desktop
203 if((argv = setDt(d,argv,notify_dt)) == NULL)
205 argv = parseArgs (argv,d->session);
206 /* No altdts, set the Default Regular session */
207 Debug ("No AltDestops in the resources file \n");
211 strcpy(last_sess,"\0");
212 fgets(last_sess,MAXPATHLEN,lastsession);
214 if(access(last_sess, X_OK) != 0) {
215 if((argv = setDt(d,argv,notify_dt)) == NULL)
217 argv = parseArgs (argv,d->session);
218 /* No altdts, set the Default Regular session */
219 Debug ("No AltDestops in the resources file setting to %s \n",argv[0]);
223 argv = parseArgs (argv, last_sess);
233 argv = parseArgs (argv, greet->string);
235 argv = parseArgs (argv, "xsession");
237 verify->userEnviron = userEnv (d, greet->name, home, shell,p);
238 Debug ("User environment:\n");
239 printEnv (verify->userEnviron);
240 verify->systemEnviron = systemEnv (d, greet->name, home);
241 Debug ("System environment:\n");
242 printEnv (verify->systemEnviron);
243 Debug ("End of environments\n");
245 if (setlogin(greet->name) == -1) {
246 Debug ("setlogin failed for %s, errno = %d\n", greet->name,
260 char *resources = NULL;
261 char altdts[MAXPATHLEN];
262 char altdtsclass[MAXPATHLEN];
263 char altdtstart[MAXPATHLEN];
264 char altdtstartclass[MAXPATHLEN];
273 Debug ("Verify - No resources \n");
278 if(dt_type == NOTIFY_LAST_DT) {
279 sprintf(altdts,"%s","Dtlogin*altDts");
280 sprintf(altdtsclass,"%s","Dtlogin*AltDts");
282 if(XrmGetResource(XresourceDB, altdts, altdtsclass,
283 &rmtype, &value_dts) == True){
284 adts = atoi(value_dts.addr);
285 for(i = 0; i < adts; i++) {
286 sprintf(altdtstart,"%s%d","Dtlogin*altDtStart",i+1);
287 sprintf(altdtstartclass,"%s%d","Dtlogin*AltDtStart",i+1);
288 if(XrmGetResource(XresourceDB, altdtstart, altdtstartclass,
289 &rmtype, &rmvalue) == True){
290 Debug ("Start up file is %s\n",rmvalue.addr);
291 argv = parseArgs (argv, rmvalue.addr);
298 altdtrequested = d->sessionType - NOTIFY_ALT_DTS;
300 sprintf(altdtstart,"%s%d",
301 "Dtlogin*altDtStart",altdtrequested);
302 sprintf(altdtstartclass,"%s%d",
303 "Dtlogin*AltDtStart",altdtrequested);
305 if(XrmGetResource(XresourceDB, altdtstart, altdtstartclass,
306 &rmtype, &rmvalue) == True){
307 Debug ("Start up file is %s\n",rmvalue.addr);
308 argv = parseArgs (argv, rmvalue.addr);
328 char *langlist = NULL;
332 * For AIX, we must delimit protected variables. This is done by
333 * adding special tags to the environment list. The setpenv()
334 * routine serched the environent for these special tags.
336 * NOTE: If you change the location of PENV_SYSSTR or PENV_USRSTR
337 * in this environment list, you MUST change the index
338 * in session.c prior to the call to setpenv().
341 env = setEnv(env,PENV_SYSSTR,""); /* protected vars */
342 env = setEnv(env,"LOGNAME",user);
343 env = setEnv(env,"LOGIN",user);
344 env = setEnv(env,PENV_USRSTR,""); /* regular vars */
348 env = setEnv (env,"LOGNAME", user);
351 for (exp = exportList; exp && *exp; ++exp)
353 value = getenv (*exp);
355 env = setEnv (env, *exp, value);
358 env = setEnv (env, "DISPLAY", d->name);
359 env = setEnv (env, "HOME", home);
360 env = setEnv (env, "USER", user);
363 if ((Def_path = login_defaults(p,d)) != NULL) {
364 env = setEnv (env, "PATH", Def_path);
368 if (d->userPath && strlen(d->userPath) > 0)
369 env = setEnv (env, "PATH", d->userPath);
372 env = setEnv (env, "SHELL", shell);
374 if (timeZone && strlen(timeZone) > 0 )
375 env = setEnv(env, "TZ", timeZone);
377 if ( d->langList && strlen(d->langList) > 0 )
378 langlist = d->langList;
379 #if defined (ENABLE_DYNAMIC_LANGLIST)
380 if (d->language && strlen(d->language) > 0)
381 langlist = d->language;
383 else if (languageList && strlen(languageList) > 0 )
384 langlist = languageList;
385 #endif /* ENABLE_DYNAMIC_LANGLIST */
387 if (d->language && strlen(d->language) > 0)
388 env = setLang(d, env, langlist);
390 #if 0 /* setting LC_ALL can cause undesirable side effects -- bf@hp */
392 * Don't set LC_MESSAGES to LANG since:
393 * 1) if LC_MESSAGES is unset, it will by default take on the value of LANG
394 * 2) if set, we don't want to override the user's setting
396 env = setEnv (env, "LC_ALL", d->language);
397 env = setEnv (env, "LC_MESSAGES", d->language);
400 #if 0 /* setting XAUTHORITY here is a bug, needs further study... */
402 env = setEnv (env, "XAUTHORITY", d->authFile);
405 if (d->displayType.location != Local)
406 env = setEnv (env, XFORCEINTERNET, "True");
408 if (d->environStr && strlen(d->environStr) > 0)
409 env = parseEnv(env, d->environStr);
412 * set SESSIONTYPE environment variable if requested by user, or
413 * if the "dtlite" resource is set...
415 * Note: the dtlite resource takes precedence over xdmMode.
418 if (d->dtlite == True)
419 d->sessionType = NOTIFY_DTLITE;
420 else if (d->xdmMode == True)
421 d->sessionType = NOTIFY_XDM;
423 switch (d->sessionType) {
426 Debug("Setting SESSIONTYPE to 'dtlite'.\n");
427 env = setEnv(env, SESSIONTYPE, "dtlite");
431 Debug("Setting SESSIONTYPE to 'xdm'.\n");
432 env = setEnv(env, SESSIONTYPE, "xdm");
436 Debug("Setting SESSIONTYPE to 'dt'.\n");
437 env = setEnv(env, SESSIONTYPE, "dt");
441 Debug("SESSIONTYPE NOT set.\n");
450 * read login defaults
458 extern int defcntl();
462 char *final_path = malloc(MAXPATHLEN);
466 if (defopen(Pndefault) == 0) {
469 * code taken from login.c
471 flags = defcntl(DC_GETFLAGS, 0);
472 TURNOFF(flags, DC_CASE);
473 defcntl(DC_SETFLAGS, flags);
475 if ( p->pw_uid == 0 ) {
476 if ((Def_path = defread("SUPATH=")) != NULL)
477 Def_path = strdup(Def_path);
479 Def_path = strdup(DEF_SUPATH);
482 if ((Def_path = defread("PATH=")) != NULL)
483 Def_path = strdup(Def_path);
485 Def_path = strdup(DEF_PATH);
490 * close the file..(/etc/default/login)
492 (void) defopen((char *)NULL);
494 Debug ("login_defaults(): \n");
496 if (d->userPath && strlen(d->userPath) > 0) {
497 if(Def_path && strlen(Def_path) > 0)
498 element = strtok(Def_path,":");
502 strcpy(final_path,d->userPath);
505 if((strstr(d->userPath,element)) == NULL) {
506 strcat (final_path,":");
507 strcat (final_path,element);
509 element = strtok(NULL,":");
514 if(Def_path && strlen(Def_path) > 0)
523 systemEnv( struct display *d, char *user, char *home )
528 char *langlist = NULL;
532 for (exp = exportList; exp && *exp; ++exp)
534 value = getenv (*exp);
536 env = setEnv (env, *exp, value);
539 value = getenv("TZ");
541 env = setEnv (env, "TZ", value);
542 else if (timeZone && strlen(timeZone) > 0 )
543 env = setEnv(env, "TZ", timeZone);
545 env = setEnv (env, "DISPLAY", d->name);
547 env = setEnv (env, "HOME", home);
549 env = setEnv (env, "USER", user);
550 env = setEnv (env, "PATH", d->systemPath);
551 env = setEnv (env, "SHELL", d->systemShell);
553 if ( d->langList && strlen(d->langList) > 0 )
554 langlist = d->langList;
555 #if defined (ENABLE_DYNAMIC_LANGLIST)
556 else if (d->language && strlen(d->language) > 0 )
557 langlist = d->language;
559 else if (languageList && strlen(languageList) > 0 )
560 langlist = languageList;
561 #endif /* ENABLE_DYNAMIC_LANGLIST */
563 if (d->language && strlen(d->language) > 0)
564 env = setLang(d, env, langlist);
566 if (d->displayType.location != Local)
567 env = setEnv (env, XFORCEINTERNET, "True");
570 if (getEnv (env, "OPENWINHOME") == NULL)
571 env = setEnv(env, "OPENWINHOME", "/usr/openwin");
582 * groupMember() not used in HP-UX
591 if (!strcmp (name, *members))
597 #endif /* ! __hpux */
603 struct verify_info *verify,
611 verify->groups[ngroups++] = gid;
615 * if your system does not support "initgroups(3C)", activate
619 #if !(defined(__hpux) || defined(__osf__))
620 while ( (g = getgrent()) != NULL ) {
622 * make the list unique
624 for (i = 0; i < ngroups; i++)
625 if (verify->groups[i] == g->gr_gid)
629 if (groupMember (name, g->gr_mem)) {
630 if (ngroups >= NGROUPS)
631 LogError(ReadCatalog(MC_LOG_SET,
632 MC_LOG_MORE_GRP,MC_DEF_LOG_MORE_GRP),
633 name, NGROUPS, g->gr_name);
635 verify->groups[ngroups++] = g->gr_gid;
639 verify->ngroups = ngroups;
projects / oweals / cde.git / blob