1 /* 2 * Copyright (c) 1989, 1993 3 * The Regents of the University of California. All rights reserved. 4 * 5 * This code is derived from software contributed to Berkeley by 6 * Tony Nardo of the Johns Hopkins University/Applied Physics Lab. 7 * 8 * Redistribution and use in source and binary forms, with or without 9 * modification, are permitted provided that the following conditions 10 * are met: 11 * 1. Redistributions of source code must retain the above copyright 12 * notice, this list of conditions and the following disclaimer. 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 4. Neither the name of the University nor the names of its contributors 17 * may be used to endorse or promote products derived from this software 18 * without specific prior written permission. 19 * 20 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 23 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 30 * SUCH DAMAGE. 31 */ 32 33 /* 34 * Luke Mewburn <lm@rmit.edu.au> added the following on 940622: 35 * - mail status ("No Mail", "Mail read:...", or "New Mail ..., 36 * Unread since ...".) 37 * - 4 digit phone extensions (3210 is printed as x3210.) 38 * - host/office toggling in short format with -h & -o. 39 * - short day names (`Tue' printed instead of `Jun 21' if the 40 * login time is < 6 days. 41 */ 42 43 #ifndef lint 44 static const char copyright[] = 45 "@(#) Copyright (c) 1989, 1993\n\ 46 The Regents of the University of California. All rights reserved.\n"; 47 #endif /* not lint */ 48 49 #if 0 50 #ifndef lint 51 static char sccsid[] = "@(#)finger.c 8.5 (Berkeley) 5/4/95"; 52 #endif 53 #endif 54 55 #include <sys/cdefs.h> 56 __FBSDID("$FreeBSD$"); 57 58 /* 59 * Finger prints out information about users. It is not portable since 60 * certain fields (e.g. the full user name, office, and phone numbers) are 61 * extracted from the gecos field of the passwd file which other UNIXes 62 * may not have or may use for other things. 63 * 64 * There are currently two output formats; the short format is one line 65 * per user and displays login name, tty, login time, real name, idle time, 66 * and either remote host information (default) or office location/phone 67 * number, depending on if -h or -o is used respectively. 68 * The long format gives the same information (in a more legible format) as 69 * well as home directory, shell, mail info, and .plan/.project files. 70 */ 71 72 #include <sys/types.h> 73 #include <sys/socket.h> 74 #include <db.h> 75 #include <err.h> 76 #include <pwd.h> 77 #include <stdio.h> 78 #include <stdlib.h> 79 #include <string.h> 80 #include <time.h> 81 #include <unistd.h> 82 #include <utmpx.h> 83 #include <locale.h> 84 85 #include "finger.h" 86 #include "pathnames.h" 87 88 DB *db; 89 time_t now; 90 int entries, gflag, kflag, lflag, mflag, pplan, sflag, oflag; 91 sa_family_t family = PF_UNSPEC; 92 int d_first = -1; 93 char tbuf[1024]; 94 int invoker_root = 0; 95 96 static void loginlist(void); 97 static int option(int, char **); 98 static void usage(void); 99 static void userlist(int, char **); 100 101 static int 102 option(int argc, char **argv) 103 { 104 int ch; 105 106 optind = 1; /* reset getopt */ 107 108 while ((ch = getopt(argc, argv, "46gklmpsho")) != -1) 109 switch(ch) { 110 case '4': 111 family = AF_INET; 112 break; 113 case '6': 114 family = AF_INET6; 115 break; 116 case 'g': 117 gflag = 1; 118 break; 119 case 'k': 120 kflag = 1; /* keep going without utmp */ 121 break; 122 case 'l': 123 lflag = 1; /* long format */ 124 break; 125 case 'm': 126 mflag = 1; /* force exact match of names */ 127 break; 128 case 'p': 129 pplan = 1; /* don't show .plan/.project */ 130 break; 131 case 's': 132 sflag = 1; /* short format */ 133 break; 134 case 'h': 135 oflag = 0; /* remote host info */ 136 break; 137 case 'o': 138 oflag = 1; /* office info */ 139 break; 140 case '?': 141 default: 142 usage(); 143 } 144 145 return optind; 146 } 147 148 static void 149 usage(void) 150 { 151 (void)fprintf(stderr, 152 "usage: finger [-46gklmpsho] [user ...] [user@host ...]\n"); 153 exit(1); 154 } 155 156 int 157 main(int argc, char **argv) 158 { 159 int envargc, argcnt; 160 char *envargv[3]; 161 struct passwd *pw; 162 static char myname[] = "finger"; 163 164 if (getuid() == 0 || geteuid() == 0) { 165 invoker_root = 1; 166 if ((pw = getpwnam(UNPRIV_NAME)) && pw->pw_uid > 0) { 167 if (setgid(pw->pw_gid) != 0) 168 err(1, "setgid()"); 169 if (setuid(pw->pw_uid) != 0) 170 err(1, "setuid()"); 171 } else { 172 if (setgid(UNPRIV_UGID) != 0) 173 err(1, "setgid()"); 174 if (setuid(UNPRIV_UGID) != 0) 175 err(1, "setuid()"); 176 } 177 } 178 179 (void) setlocale(LC_ALL, ""); 180 181 /* remove this line to get remote host */ 182 oflag = 1; /* default to old "office" behavior */ 183 184 /* 185 * Process environment variables followed by command line arguments. 186 */ 187 if ((envargv[1] = getenv("FINGER"))) { 188 envargc = 2; 189 envargv[0] = myname; 190 envargv[2] = NULL; 191 (void) option(envargc, envargv); 192 } 193 194 argcnt = option(argc, argv); 195 argc -= argcnt; 196 argv += argcnt; 197 198 (void)time(&now); 199 setpassent(1); 200 if (!*argv) { 201 /* 202 * Assign explicit "small" format if no names given and -l 203 * not selected. Force the -s BEFORE we get names so proper 204 * screening will be done. 205 */ 206 if (!lflag) 207 sflag = 1; /* if -l not explicit, force -s */ 208 loginlist(); 209 if (entries == 0) 210 (void)printf("No one logged on.\n"); 211 } else { 212 userlist(argc, argv); 213 /* 214 * Assign explicit "large" format if names given and -s not 215 * explicitly stated. Force the -l AFTER we get names so any 216 * remote finger attempts specified won't be mishandled. 217 */ 218 if (!sflag) 219 lflag = 1; /* if -s not explicit, force -l */ 220 } 221 if (entries) { 222 if (lflag) 223 lflag_print(); 224 else 225 sflag_print(); 226 } 227 return (0); 228 } 229 230 static void 231 loginlist(void) 232 { 233 PERSON *pn; 234 DBT data, key; 235 struct passwd *pw; 236 struct utmpx *user; 237 int r, sflag1; 238 239 if (kflag) 240 errx(1, "can't list logins without reading utmp"); 241 242 setutxent(); 243 while ((user = getutxent()) != NULL) { 244 if (user->ut_type != USER_PROCESS) 245 continue; 246 if ((pn = find_person(user->ut_user)) == NULL) { 247 if ((pw = getpwnam(user->ut_user)) == NULL) 248 continue; 249 if (hide(pw)) 250 continue; 251 pn = enter_person(pw); 252 } 253 enter_where(user, pn); 254 } 255 endutxent(); 256 if (db && lflag) 257 for (sflag1 = R_FIRST;; sflag1 = R_NEXT) { 258 PERSON *tmp; 259 260 r = (*db->seq)(db, &key, &data, sflag1); 261 if (r == -1) 262 err(1, "db seq"); 263 if (r == 1) 264 break; 265 memmove(&tmp, data.data, sizeof tmp); 266 enter_lastlog(tmp); 267 } 268 } 269 270 static void 271 userlist(int argc, char **argv) 272 { 273 PERSON *pn; 274 DBT data, key; 275 struct utmpx *user; 276 struct passwd *pw; 277 int r, sflag1, *used, *ip; 278 char **ap, **nargv, **np, **p; 279 FILE *conf_fp; 280 char conf_alias[LINE_MAX]; 281 char *conf_realname; 282 int conf_length; 283 284 if ((nargv = malloc((argc+1) * sizeof(char *))) == NULL || 285 (used = calloc(argc, sizeof(int))) == NULL) 286 err(1, NULL); 287 288 /* Pull out all network requests. */ 289 for (ap = p = argv, np = nargv; *p; ++p) 290 if (strchr(*p, '@')) 291 *np++ = *p; 292 else 293 *ap++ = *p; 294 295 *np++ = NULL; 296 *ap++ = NULL; 297 298 if (!*argv) 299 goto net; 300 301 /* 302 * Mark any arguments beginning with '/' as invalid so that we 303 * don't accidentally confuse them with expansions from finger.conf 304 */ 305 for (p = argv, ip = used; *p; ++p, ++ip) 306 if (**p == '/') { 307 *ip = 1; 308 warnx("%s: no such user", *p); 309 } 310 311 /* 312 * Traverse the finger alias configuration file of the form 313 * alias:(user|alias), ignoring comment lines beginning '#'. 314 */ 315 if ((conf_fp = fopen(_PATH_FINGERCONF, "r")) != NULL) { 316 while(fgets(conf_alias, sizeof(conf_alias), conf_fp) != NULL) { 317 conf_length = strlen(conf_alias); 318 if (*conf_alias == '#' || conf_alias[--conf_length] != '\n') 319 continue; 320 conf_alias[conf_length] = '\0'; /* Remove trailing LF */ 321 if ((conf_realname = strchr(conf_alias, ':')) == NULL) 322 continue; 323 *conf_realname = '\0'; /* Replace : with NUL */ 324 for (p = argv; *p; ++p) { 325 if (strcmp(*p, conf_alias) == 0) { 326 if ((*p = strdup(conf_realname+1)) == NULL) { 327 err(1, NULL); 328 } 329 } 330 } 331 } 332 (void)fclose(conf_fp); 333 } 334 335 /* 336 * Traverse the list of possible login names and check the login name 337 * and real name against the name specified by the user. If the name 338 * begins with a '/', try to read the file of that name instead of 339 * gathering the traditional finger information. 340 */ 341 if (mflag) 342 for (p = argv, ip = used; *p; ++p, ++ip) { 343 if (**p != '/' || *ip == 1 || !show_text("", *p, "")) { 344 if (((pw = getpwnam(*p)) != NULL) && !hide(pw)) 345 enter_person(pw); 346 else if (!*ip) 347 warnx("%s: no such user", *p); 348 } 349 } 350 else { 351 while ((pw = getpwent()) != NULL) { 352 for (p = argv, ip = used; *p; ++p, ++ip) 353 if (**p == '/' && *ip != 1 354 && show_text("", *p, "")) 355 *ip = 1; 356 else if (match(pw, *p) && !hide(pw)) { 357 enter_person(pw); 358 *ip = 1; 359 } 360 } 361 for (p = argv, ip = used; *p; ++p, ++ip) 362 if (!*ip) 363 warnx("%s: no such user", *p); 364 } 365 366 /* Handle network requests. */ 367 net: for (p = nargv; *p;) { 368 netfinger(*p++); 369 if (*p || entries) 370 printf("\n"); 371 } 372 373 free(used); 374 if (entries == 0) 375 return; 376 377 if (kflag) 378 return; 379 380 /* 381 * Scan thru the list of users currently logged in, saving 382 * appropriate data whenever a match occurs. 383 */ 384 setutxent(); 385 while ((user = getutxent()) != NULL) { 386 if (user->ut_type != USER_PROCESS) 387 continue; 388 if ((pn = find_person(user->ut_user)) == NULL) 389 continue; 390 enter_where(user, pn); 391 } 392 endutxent(); 393 if (db) 394 for (sflag1 = R_FIRST;; sflag1 = R_NEXT) { 395 PERSON *tmp; 396 397 r = (*db->seq)(db, &key, &data, sflag1); 398 if (r == -1) 399 err(1, "db seq"); 400 if (r == 1) 401 break; 402 memmove(&tmp, data.data, sizeof tmp); 403 enter_lastlog(tmp); 404 } 405 } 406