1 /* vi: set sw=4 ts=4: */
3 * adduser - add users to /etc/passwd and /etc/shadow
5 * Copyright (C) 1999 by Lineo, inc. and John Beppu
6 * Copyright (C) 1999,2000,2001 by John Beppu <beppu@codepoet.org>
8 * Licensed under the GPL v2 or later, see the file LICENSE in this tarball.
13 #define OPT_DONT_SET_PASS (1 << 4)
14 #define OPT_DONT_MAKE_HOME (1 << 6)
18 /* EDR recoded such that the uid may be passed in *p */
19 static int passwd_study(const char *filename, struct passwd *p)
21 enum { min = 500, max = 65000 };
23 /* We are using reentrant fgetpwent_r() in order to avoid
24 * pulling in static buffers from libc (think static build here) */
27 struct passwd *result;
29 passwd = xfopen(filename, "r");
31 /* EDR if uid is out of bounds, set to min */
32 if ((p->pw_uid > max) || (p->pw_uid < min))
36 * make sure login isn't taken;
37 * find free uid and gid;
39 while (!fgetpwent_r(passwd, &pw, buffer, sizeof(buffer), &result)) {
40 if (strcmp(pw.pw_name, p->pw_name) == 0) {
44 if ((pw.pw_uid >= p->pw_uid) && (pw.pw_uid < max)
45 && (pw.pw_uid >= min)) {
46 p->pw_uid = pw.pw_uid + 1;
51 /* EDR check for an already existing gid */
52 while (getgrgid(p->pw_uid) != NULL)
55 /* EDR also check for an existing group definition */
56 if (getgrnam(p->pw_name) != NULL)
59 /* EDR create new gid always = uid */
60 p->pw_gid = p->pw_uid;
63 /* EDR bounds check */
64 if ((p->pw_uid > max) || (p->pw_uid < min))
71 static void addgroup_wrapper(struct passwd *p)
75 cmd = xasprintf("addgroup -g %d \"%s\"", p->pw_gid, p->pw_name);
80 static void passwd_wrapper(const char *login) ATTRIBUTE_NORETURN;
82 static void passwd_wrapper(const char *login)
84 static const char prog[] ALIGN1 = "passwd";
86 BB_EXECLP(prog, prog, login, NULL);
87 bb_error_msg_and_die("failed to execute '%s', you must set the password for '%s' manually", prog, login);
90 /* putpwent(3) remix */
91 static int adduser(struct passwd *p)
94 int addgroup = !p->pw_gid;
96 /* make sure everything is kosher and setup uid && gid */
97 file = xfopen(bb_path_passwd_file, "a");
98 fseek(file, 0, SEEK_END);
100 switch (passwd_study(bb_path_passwd_file, p)) {
102 bb_error_msg_and_die("%s: login already in use", p->pw_name);
104 bb_error_msg_and_die("illegal uid or no uids left");
106 bb_error_msg_and_die("%s: group name already in use", p->pw_name);
110 if (putpwent(p, file) == -1) {
111 bb_perror_nomsg_and_die();
113 /* Do fclose even if !ENABLE_FEATURE_CLEAN_UP.
114 * We will exec passwd, files must be flushed & closed before that! */
117 #if ENABLE_FEATURE_SHADOWPASSWDS
118 /* add to shadow if necessary */
119 file = fopen_or_warn(bb_path_shadow_file, "a");
121 fseek(file, 0, SEEK_END);
122 fprintf(file, "%s:!:%ld:%d:%d:%d:::\n",
123 p->pw_name, /* username */
124 time(NULL) / 86400, /* sp->sp_lstchg */
126 99999, /* sp->sp_max */
127 7); /* sp->sp_warn */
133 /* addgroup should be responsible for dealing w/ gshadow */
134 /* if using a pre-existing group, don't create one */
135 if (addgroup) addgroup_wrapper(p);
137 /* Clear the umask for this process so it doesn't
138 * screw up the permissions on the mkdir and chown. */
140 if (!(option_mask32 & OPT_DONT_MAKE_HOME)) {
141 /* Set the owner and group so it is owned by the new user,
142 then fix up the permissions to 2755. Can't do it before
143 since chown will clear the setgid bit */
144 if (mkdir(p->pw_dir, 0755)
145 || chown(p->pw_dir, p->pw_uid, p->pw_gid)
146 || chmod(p->pw_dir, 02755)) {
147 bb_simple_perror_msg(p->pw_dir);
151 if (!(option_mask32 & OPT_DONT_SET_PASS)) {
152 /* interactively set passwd */
153 passwd_wrapper(p->pw_name);
160 * adduser will take a login_name as its first parameter.
166 * can be customized via command-line parameters.
168 int adduser_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
169 int adduser_main(int argc, char **argv)
172 const char *usegroup = NULL;
176 bb_error_msg_and_die(bb_msg_perm_denied_are_you_root);
179 pw.pw_gecos = (char *)"Linux User,,,";
180 pw.pw_shell = (char *)DEFAULT_SHELL;
183 /* exactly one non-option arg */
184 opt_complementary = "=1";
185 getopt32(argv, "h:g:s:G:DSH", &pw.pw_dir, &pw.pw_gecos, &pw.pw_shell, &usegroup);
188 /* create a passwd struct */
189 pw.pw_name = argv[0];
191 /* create string for $HOME if not specified already */
192 pw.pw_dir = xasprintf("/home/%s", argv[0]);
194 pw.pw_passwd = (char *)"x";
196 pw.pw_gid = usegroup ? xgroup2gid(usegroup) : 0; /* exits on failure */