diff options
| author | Denis Vlasenko <vda.linux@googlemail.com> | 2007-06-12 22:04:57 +0000 |
|---|---|---|
| committer | Denis Vlasenko <vda.linux@googlemail.com> | 2007-06-12 22:04:57 +0000 |
| commit | f312e32662f6d98f86c68d8f781b3255547f8200 (patch) | |
| tree | 96587f0cba9fc32f66f4e031771e55e21ff13994 /loginutils/login.c | |
| parent | 637c975098acc6e8387df5a645471780f3c721f9 (diff) | |
| download | busybox-f312e32662f6d98f86c68d8f781b3255547f8200.tar.gz | |
login: make /etc/nologin support configurable. -240 bytes if not selected.
Diffstat (limited to 'loginutils/login.c')
| -rw-r--r-- | loginutils/login.c | 24 |
1 files changed, 14 insertions, 10 deletions
diff --git a/loginutils/login.c b/loginutils/login.c index b6924b641..0f71a2aa9 100644 --- a/loginutils/login.c +++ b/loginutils/login.c @@ -100,15 +100,16 @@ static void write_utent(struct utmp *utptr, const char *username) #define write_utent(utptr, username) ((void)0) #endif /* !ENABLE_FEATURE_UTMP */ +#if ENABLE_FEATURE_NOLOGIN static void die_if_nologin_and_non_root(int amroot) { FILE *fp; int c; - if (access(bb_path_nologin_file, F_OK)) + if (access("/etc/nologin", F_OK)) return; - fp = fopen(bb_path_nologin_file, "r"); + fp = fopen("/etc/nologin", "r"); if (fp) { while ((c = getc(fp)) != EOF) putchar((c=='\n') ? '\r' : c); @@ -118,28 +119,31 @@ static void die_if_nologin_and_non_root(int amroot) puts("\r\nSystem closed for routine maintenance\r"); if (!amroot) exit(1); - puts("\r\n[Disconnect bypassed -- root login allowed.]\r"); + puts("\r\n[Disconnect bypassed -- root login allowed]\r"); } +#else +static ALWAYS_INLINE void die_if_nologin_and_non_root(int amroot) {} +#endif #if ENABLE_FEATURE_SECURETTY static int check_securetty(void) { FILE *fp; int i; - char buf[BUFSIZ]; + char buf[256]; - fp = fopen(bb_path_securetty_file, "r"); + fp = fopen("/etc/securetty", "r"); if (!fp) { /* A missing securetty file is not an error. */ return 1; } while (fgets(buf, sizeof(buf)-1, fp)) { - for (i = strlen(buf)-1; i>=0; --i) { + for (i = strlen(buf)-1; i >= 0; --i) { if (!isspace(buf[i])) break; } buf[++i] = '\0'; - if ((buf[0]=='\0') || (buf[0]=='#')) + if (!buf[0] || (buf[0] == '#')) continue; if (strcmp(buf, short_tty) == 0) { fclose(fp); @@ -150,7 +154,7 @@ static int check_securetty(void) return 0; } #else -static inline int check_securetty(void) { return 1; } +static ALWAYS_INLINE int check_securetty(void) { return 1; } #endif static void get_username_or_die(char *buf, int size_buf) @@ -313,7 +317,7 @@ int login_main(int argc, char **argv) write_utent(&utent, username); -#ifdef CONFIG_SELINUX +#if ENABLE_SELINUX if (is_selinux_enabled()) { security_context_t old_tty_sid, new_tty_sid; @@ -368,7 +372,7 @@ int login_main(int argc, char **argv) if (pw->pw_uid == 0) syslog(LOG_INFO, "root login%s", fromhost); -#ifdef CONFIG_SELINUX +#if ENABLE_SELINUX /* well, a simple setexeccon() here would do the job as well, * but let's play the game for now */ set_current_security_context(user_sid); |