Do not fail password check if shadow password does not exist -

fall back to ordinary one Reduced usage of functions returning datain static buffers. (mostly passwd/group/shadow related): function old new delta correct_password 143 193 +50 sulogin_main 490 533 +43 adduser_main 732 774 +42 passwd_main 1875 1915 +40 addgroup_main 330 365 +35 bb_internal_getspnam 38 - -38 bb_internal_fgetpwent 38 - -38 bb_internal_fgetgrent 38 - -38 static.resultbuf 168 88 -80 static.buffer 1872 1104 -768 ------------------------------------------------------------------------------ (add/remove: 0/3 grow/shrink: 5/2 up/down: 210/-962) Total: -752 bytes
author: Denis Vlasenko <vda.linux@googlemail.com> 2007-03-13 13:01:14 +0000
committer: Denis Vlasenko <vda.linux@googlemail.com> 2007-03-13 13:01:14 +0000
commit: 5df955fce2fbdc5b2acc365a120327ff943403da (patch)
tree: 41763239e81807259b7532aeef540ebc4804ce3d /loginutils
parent: c9c893d4f59418c50c8eb42bd80390026e123dd8 (diff)
download: busybox-w32-5df955fce2fbdc5b2acc365a120327ff943403da.tar.gz
busybox-w32-5df955fce2fbdc5b2acc365a120327ff943403da.tar.bz2
busybox-w32-5df955fce2fbdc5b2acc365a120327ff943403da.zip
4 files changed, 66 insertions, 55 deletions
diff --git a/loginutils/addgroup.c b/loginutils/addgroup.c
index 768d2c061..78250a418 100644
--- a/loginutils/addgroup.c
+++ b/loginutils/addgroup.c
@@ -15,35 +15,37 @@
 * return 1 on failure */
 static int group_study(struct group *g)
 {
+        enum { max = 65000 };
        FILE *etc_group;
        gid_t desired;
+        /* Using _r function to avoid static buffers pulled in */
-        struct group *grp;
+        char buffer[256];
-        const int max = 65000;
+        struct group grp;
+        struct group *result;
        etc_group = xfopen(bb_path_group_file, "r");
        /* make sure gr_name isn't taken, make sure gid is kosher */
        desired = g->gr_gid;
-        while ((grp = fgetgrent(etc_group))) {
+        while (!fgetgrent_r(etc_group, &grp, buffer, sizeof(buffer), &result)) {
-                if ((strcmp(grp->gr_name, g->gr_name)) == 0) {
+                if ((strcmp(grp.gr_name, g->gr_name)) == 0) {
                        bb_error_msg_and_die("%s: group already in use", g->gr_name);
                }
-                if ((desired) && grp->gr_gid == desired) {
+                if ((desired) && grp.gr_gid == desired) {
                        bb_error_msg_and_die("%d: gid already in use",
                                                          desired);
                }
-                if ((grp->gr_gid > g->gr_gid) && (grp->gr_gid < max)) {
+                if ((grp.gr_gid > g->gr_gid) && (grp.gr_gid < max)) {
-                        g->gr_gid = grp->gr_gid;
+                        g->gr_gid = grp.gr_gid;
                }
        }
-        fclose(etc_group);
+        if (ENABLE_FEATURE_CLEAN_UP)
+                fclose(etc_group);
        /* gid */
+        g->gr_gid++;
        if (desired) {
                g->gr_gid = desired;
-        } else {
-                g->gr_gid++;
        }
        /* return 1; */
        return 0;
@@ -65,12 +67,16 @@ static int addgroup(char *group, gid_t gid, const char *user)
        file = xfopen(bb_path_group_file, "a");
        /* group:passwd:gid:userlist */
        fprintf(file, "%s:%s:%d:%s\n", group, "x", gr.gr_gid, user);
-        fclose(file);
+        if (ENABLE_FEATURE_CLEAN_UP)
+                fclose(file);
 #if ENABLE_FEATURE_SHADOWPASSWDS
-        file = xfopen(bb_path_gshadow_file, "a");
+        file = fopen_or_warn(bb_path_gshadow_file, "a");
-        fprintf(file, "%s:!::\n", group);
+        if (file) {
-        fclose(file);
+                fprintf(file, "%s:!::\n", group);
+                if (ENABLE_FEATURE_CLEAN_UP)
+                        fclose(file);
+        }
 #endif
        /* return 1; */
@@ -80,10 +86,8 @@ static int addgroup(char *group, gid_t gid, const char *user)
 /*
 * addgroup will take a login_name as its first parameter.
 *
- * gid
+ * gid can be customized via command-line parameters.
- *
+ */
- * can be customized via command-line parameters.
- * ________________________________________________________________________ */
 int addgroup_main(int argc, char **argv);
 int addgroup_main(int argc, char **argv)
 {
@@ -103,6 +107,5 @@ int addgroup_main(int argc, char **argv)
                bb_error_msg_and_die(bb_msg_perm_denied_are_you_root);
        }
-        /* werk */
+        return addgroup(argv[0], gid, argv[1] ? argv[1] : "");
-        return addgroup(argv[0], gid, (argv[1]) ? argv[1] : "");
 }
diff --git a/loginutils/adduser.c b/loginutils/adduser.c
index e0cdd1ced..4c03790d8 100644
--- a/loginutils/adduser.c
+++ b/loginutils/adduser.c
@@ -10,19 +10,21 @@
 #include "busybox.h"
-#define DONT_SET_PASS                   (1 << 4)
+#define OPT_DONT_SET_PASS  (1 << 4)
-#define DONT_MAKE_HOME                  (1 << 6)
+#define OPT_DONT_MAKE_HOME (1 << 6)
 /* remix */
 /* EDR recoded such that the uid may be passed in *p */
 static int passwd_study(const char *filename, struct passwd *p)
 {
-        struct passwd *pw;
+        enum { min = 500, max = 65000 };
        FILE *passwd;
+        /* We are using reentrant fgetpwent_r() in order to avoid
-        const int min = 500;
+         * pulling in static buffers from libc (think static build here) */
-        const int max = 65000;
+        char buffer[256];
+        struct passwd pw;
+        struct passwd *result;
        passwd = xfopen(filename, "r");
@@ -34,14 +36,14 @@ static int passwd_study(const char *filename, struct passwd *p)
         * make sure login isn't taken;
         * find free uid and gid;
         */
-        while ((pw = fgetpwent(passwd))) {
+        while (!fgetpwent_r(passwd, &pw, buffer, sizeof(buffer), &result)) {
-                if (strcmp(pw->pw_name, p->pw_name) == 0) {
+                if (strcmp(pw.pw_name, p->pw_name) == 0) {
                        /* return 0; */
                        return 1;
                }
-                if ((pw->pw_uid >= p->pw_uid) && (pw->pw_uid < max)
+                if ((pw.pw_uid >= p->pw_uid) && (pw.pw_uid < max)
-                        && (pw->pw_uid >= min)) {
+                        && (pw.pw_uid >= min)) {
-                        p->pw_uid = pw->pw_uid + 1;
+                        p->pw_uid = pw.pw_uid + 1;
                }
        }
@@ -85,7 +87,7 @@ static void passwd_wrapper(const char *login)
 }
 /* putpwent(3) remix */
-static int adduser(struct passwd *p, unsigned long flags)
+static int adduser(struct passwd *p)
 {
        FILE *file;
        int addgroup = !p->pw_gid;
@@ -130,7 +132,7 @@ static int adduser(struct passwd *p, unsigned long flags)
        /* Clear the umask for this process so it doesn't
         * * screw up the permissions on the mkdir and chown. */
        umask(0);
-        if (!(flags & DONT_MAKE_HOME)) {
+        if (!(option_mask32 & OPT_DONT_MAKE_HOME)) {
                /* Set the owner and group so it is owned by the new user,
                   then fix up the permissions to 2755. Can't do it before
                   since chown will clear the setgid bit */
@@ -141,7 +143,7 @@ static int adduser(struct passwd *p, unsigned long flags)
                }
        }
-        if (!(flags & DONT_SET_PASS)) {
+        if (!(option_mask32 & OPT_DONT_SET_PASS)) {
                /* interactively set passwd */
                passwd_wrapper(p->pw_name);
        }
@@ -163,7 +165,6 @@ int adduser_main(int argc, char **argv)
 {
        struct passwd pw;
        const char *usegroup = NULL;
-        unsigned long flags;
        /* got root? */
        if (geteuid()) {
@@ -176,7 +177,7 @@ int adduser_main(int argc, char **argv)
        /* check for min, max and missing args and exit on error */
        opt_complementary = "-1:?1:?";
-        flags = getopt32(argc, argv, "h:g:s:G:DSH", &pw.pw_dir, &pw.pw_gecos, &pw.pw_shell, &usegroup);
+        getopt32(argc, argv, "h:g:s:G:DSH", &pw.pw_dir, &pw.pw_gecos, &pw.pw_shell, &usegroup);
        /* create string for $HOME if not specified already */
        if (!pw.pw_dir) {
@@ -191,5 +192,5 @@ int adduser_main(int argc, char **argv)
        pw.pw_gid = usegroup ? xgroup2gid(usegroup) : 0; /* exits on failure */
        /* grand finale */
-        return adduser(&pw, flags);
+        return adduser(&pw);
 }
diff --git a/loginutils/passwd.c b/loginutils/passwd.c
index 4531e63a6..b937ce45e 100644
--- a/loginutils/passwd.c
+++ b/loginutils/passwd.c
@@ -252,6 +252,13 @@ int passwd_main(int argc, char **argv)
        struct rlimit rlimit_fsize;
        char c;
+#if ENABLE_FEATURE_SHADOWPASSWDS
+        /* Using _r function to avoid pulling in static buffers */
+        struct spwd spw;
+        struct spwd *result;
+        char buffer[256];
+#endif
        logmode = LOGMODE_BOTH;
        openlog(applet_name, LOG_NOWAIT, LOG_AUTH);
        opt = getopt32(argc, argv, "a:lud", &opt_a);
@@ -278,17 +285,14 @@ int passwd_main(int argc, char **argv)
        filename = bb_path_passwd_file;
 #if ENABLE_FEATURE_SHADOWPASSWDS
-        {
+        if (getspnam_r(pw->pw_name, &spw, buffer, sizeof(buffer), &result)) {
-                struct spwd *sp = getspnam(name);
+                /* LOGMODE_BOTH */
-                if (!sp) {
+                bb_error_msg("no record of %s in %s, using %s",
-                        /* LOGMODE_BOTH */
+                                name, bb_path_shadow_file,
-                        bb_error_msg("no record of %s in %s, using %s",
+                                bb_path_passwd_file);
-                                        name, bb_path_shadow_file,
+        } else {
-                                        bb_path_passwd_file);
+                filename = bb_path_shadow_file;
-                } else {
+                pw->pw_passwd = spw.sp_pwdp;
-                        filename = bb_path_shadow_file;
-                        pw->pw_passwd = sp->sp_pwdp;
-                }
        }
 #endif
diff --git a/loginutils/sulogin.c b/loginutils/sulogin.c
index 8e3095c87..38503f7b1 100644
--- a/loginutils/sulogin.c
+++ b/loginutils/sulogin.c
@@ -43,6 +43,12 @@ int sulogin_main(int argc, char **argv)
        const char * const *p;
        struct passwd *pwd;
        const char *shell;
+#if ENABLE_FEATURE_SHADOWPASSWDS
+        /* Using _r function to avoid pulling in static buffers */
+        char buffer[256];
+        struct spwd spw;
+        struct spwd *result;
+#endif
        logmode = LOGMODE_BOTH;
        openlog(applet_name, 0, LOG_AUTH);
@@ -76,13 +82,10 @@ int sulogin_main(int argc, char **argv)
        }
 #if ENABLE_FEATURE_SHADOWPASSWDS
-        {
+        if (getspnam_r(pwd->pw_name, &spw, buffer, sizeof(buffer), &result)) {
-                struct spwd *spwd = getspnam(pwd->pw_name);
+                goto auth_error;
-                if (!spwd) {
-                        goto auth_error;
-                }
-                pwd->pw_passwd = spwd->sp_pwdp;
        }
+        pwd->pw_passwd = spw.sp_pwdp;
 #endif
        while (1) {
author	Denis Vlasenko <vda.linux@googlemail.com>	2007-03-13 13:01:14 +0000
committer	Denis Vlasenko <vda.linux@googlemail.com>	2007-03-13 13:01:14 +0000
commit	5df955fce2fbdc5b2acc365a120327ff943403da (patch)
tree	41763239e81807259b7532aeef540ebc4804ce3d /loginutils
parent	c9c893d4f59418c50c8eb42bd80390026e123dd8 (diff)
download	busybox-w32-5df955fce2fbdc5b2acc365a120327ff943403da.tar.gz busybox-w32-5df955fce2fbdc5b2acc365a120327ff943403da.tar.bz2 busybox-w32-5df955fce2fbdc5b2acc365a120327ff943403da.zip

diff --git a/loginutils/addgroup.c b/loginutils/addgroup.c index 768d2c061..78250a418 100644 --- a/loginutils/addgroup.c +++ b/loginutils/addgroup.c
@@ -15,35 +15,37 @@
15	* return 1 on failure */	15	* return 1 on failure */
16	static int group_study(struct group *g)	16	static int group_study(struct group *g)
17	{	17	{
		18	enum { max = 65000 };
18	FILE *etc_group;	19	FILE *etc_group;
19	gid_t desired;	20	gid_t desired;
20		21	/* Using _r function to avoid static buffers pulled in */
21	struct group *grp;	22	char buffer[256];
22	const int max = 65000;	23	struct group grp;
		24	struct group *result;
23		25
24	etc_group = xfopen(bb_path_group_file, "r");	26	etc_group = xfopen(bb_path_group_file, "r");
25		27
26	/* make sure gr_name isn't taken, make sure gid is kosher */	28	/* make sure gr_name isn't taken, make sure gid is kosher */
27	desired = g->gr_gid;	29	desired = g->gr_gid;
28	while ((grp = fgetgrent(etc_group))) {	30	while (!fgetgrent_r(etc_group, &grp, buffer, sizeof(buffer), &result)) {
29	if ((strcmp(grp->gr_name, g->gr_name)) == 0) {	31	if ((strcmp(grp.gr_name, g->gr_name)) == 0) {
30	bb_error_msg_and_die("%s: group already in use", g->gr_name);	32	bb_error_msg_and_die("%s: group already in use", g->gr_name);
31	}	33	}
32	if ((desired) && grp->gr_gid == desired) {	34	if ((desired) && grp.gr_gid == desired) {
33	bb_error_msg_and_die("%d: gid already in use",	35	bb_error_msg_and_die("%d: gid already in use",
34	desired);	36	desired);
35	}	37	}
36	if ((grp->gr_gid > g->gr_gid) && (grp->gr_gid < max)) {	38	if ((grp.gr_gid > g->gr_gid) && (grp.gr_gid < max)) {
37	g->gr_gid = grp->gr_gid;	39	g->gr_gid = grp.gr_gid;
38	}	40	}
39	}	41	}
40	fclose(etc_group);	42	if (ENABLE_FEATURE_CLEAN_UP)
		43	fclose(etc_group);
41		44
42	/* gid */	45	/* gid */
		46	g->gr_gid++;
43	if (desired) {	47	if (desired) {
44	g->gr_gid = desired;	48	g->gr_gid = desired;
45	} else {
46	g->gr_gid++;
47	}	49	}
48	/* return 1; */	50	/* return 1; */
49	return 0;	51	return 0;
@@ -65,12 +67,16 @@ static int addgroup(char group, gid_t gid, const char user)
65	file = xfopen(bb_path_group_file, "a");	67	file = xfopen(bb_path_group_file, "a");
66	/* group:passwd:gid:userlist */	68	/* group:passwd:gid:userlist */
67	fprintf(file, "%s:%s:%d:%s\n", group, "x", gr.gr_gid, user);	69	fprintf(file, "%s:%s:%d:%s\n", group, "x", gr.gr_gid, user);
68	fclose(file);	70	if (ENABLE_FEATURE_CLEAN_UP)
		71	fclose(file);
69		72
70	#if ENABLE_FEATURE_SHADOWPASSWDS	73	#if ENABLE_FEATURE_SHADOWPASSWDS
71	file = xfopen(bb_path_gshadow_file, "a");	74	file = fopen_or_warn(bb_path_gshadow_file, "a");
72	fprintf(file, "%s:!::\n", group);	75	if (file) {
73	fclose(file);	76	fprintf(file, "%s:!::\n", group);
		77	if (ENABLE_FEATURE_CLEAN_UP)
		78	fclose(file);
		79	}
74	#endif	80	#endif
75		81
76	/* return 1; */	82	/* return 1; */
@@ -80,10 +86,8 @@ static int addgroup(char group, gid_t gid, const char user)
80	/*	86	/*
81	* addgroup will take a login_name as its first parameter.	87	* addgroup will take a login_name as its first parameter.
82	*	88	*
83	* gid	89	* gid can be customized via command-line parameters.
84	*	90	*/
85	* can be customized via command-line parameters.
86	* ________________________________________________________________________ */
87	int addgroup_main(int argc, char **argv);	91	int addgroup_main(int argc, char **argv);
88	int addgroup_main(int argc, char **argv)	92	int addgroup_main(int argc, char **argv)
89	{	93	{
@@ -103,6 +107,5 @@ int addgroup_main(int argc, char **argv)
103	bb_error_msg_and_die(bb_msg_perm_denied_are_you_root);	107	bb_error_msg_and_die(bb_msg_perm_denied_are_you_root);
104	}	108	}
105		109
106	/* werk */	110	return addgroup(argv[0], gid, argv[1] ? argv[1] : "");
107	return addgroup(argv[0], gid, (argv[1]) ? argv[1] : "");
108	}	111	}


diff --git a/loginutils/adduser.c b/loginutils/adduser.c index e0cdd1ced..4c03790d8 100644 --- a/loginutils/adduser.c +++ b/loginutils/adduser.c
@@ -10,19 +10,21 @@
10		10
11	#include "busybox.h"	11	#include "busybox.h"
12		12
13	#define DONT_SET_PASS (1 << 4)	13	#define OPT_DONT_SET_PASS (1 << 4)
14	#define DONT_MAKE_HOME (1 << 6)	14	#define OPT_DONT_MAKE_HOME (1 << 6)
15		15
16		16
17	/* remix */	17	/* remix */
18	/* EDR recoded such that the uid may be passed in p /	18	/* EDR recoded such that the uid may be passed in p /
19	static int passwd_study(const char filename, struct passwd p)	19	static int passwd_study(const char filename, struct passwd p)
20	{	20	{
21	struct passwd *pw;	21	enum { min = 500, max = 65000 };
22	FILE *passwd;	22	FILE *passwd;
23		23	/* We are using reentrant fgetpwent_r() in order to avoid
24	const int min = 500;	24	* pulling in static buffers from libc (think static build here) */
25	const int max = 65000;	25	char buffer[256];
		26	struct passwd pw;
		27	struct passwd *result;
26		28
27	passwd = xfopen(filename, "r");	29	passwd = xfopen(filename, "r");
28		30
@@ -34,14 +36,14 @@ static int passwd_study(const char filename, struct passwd p)
34	* make sure login isn't taken;	36	* make sure login isn't taken;
35	* find free uid and gid;	37	* find free uid and gid;
36	*/	38	*/
37	while ((pw = fgetpwent(passwd))) {	39	while (!fgetpwent_r(passwd, &pw, buffer, sizeof(buffer), &result)) {
38	if (strcmp(pw->pw_name, p->pw_name) == 0) {	40	if (strcmp(pw.pw_name, p->pw_name) == 0) {
39	/* return 0; */	41	/* return 0; */
40	return 1;	42	return 1;
41	}	43	}
42	if ((pw->pw_uid >= p->pw_uid) && (pw->pw_uid < max)	44	if ((pw.pw_uid >= p->pw_uid) && (pw.pw_uid < max)
43	&& (pw->pw_uid >= min)) {	45	&& (pw.pw_uid >= min)) {
44	p->pw_uid = pw->pw_uid + 1;	46	p->pw_uid = pw.pw_uid + 1;
45	}	47	}
46	}	48	}
47		49
@@ -85,7 +87,7 @@ static void passwd_wrapper(const char *login)
85	}	87	}
86		88
87	/* putpwent(3) remix */	89	/* putpwent(3) remix */
88	static int adduser(struct passwd *p, unsigned long flags)	90	static int adduser(struct passwd *p)
89	{	91	{
90	FILE *file;	92	FILE *file;
91	int addgroup = !p->pw_gid;	93	int addgroup = !p->pw_gid;
@@ -130,7 +132,7 @@ static int adduser(struct passwd *p, unsigned long flags)
130	/* Clear the umask for this process so it doesn't	132	/* Clear the umask for this process so it doesn't
131	* * screw up the permissions on the mkdir and chown. */	133	* * screw up the permissions on the mkdir and chown. */
132	umask(0);	134	umask(0);
133	if (!(flags & DONT_MAKE_HOME)) {	135	if (!(option_mask32 & OPT_DONT_MAKE_HOME)) {
134	/* Set the owner and group so it is owned by the new user,	136	/* Set the owner and group so it is owned by the new user,
135	then fix up the permissions to 2755. Can't do it before	137	then fix up the permissions to 2755. Can't do it before
136	since chown will clear the setgid bit */	138	since chown will clear the setgid bit */
@@ -141,7 +143,7 @@ static int adduser(struct passwd *p, unsigned long flags)
141	}	143	}
142	}	144	}
143		145
144	if (!(flags & DONT_SET_PASS)) {	146	if (!(option_mask32 & OPT_DONT_SET_PASS)) {
145	/* interactively set passwd */	147	/* interactively set passwd */
146	passwd_wrapper(p->pw_name);	148	passwd_wrapper(p->pw_name);
147	}	149	}
@@ -163,7 +165,6 @@ int adduser_main(int argc, char **argv)
163	{	165	{
164	struct passwd pw;	166	struct passwd pw;
165	const char *usegroup = NULL;	167	const char *usegroup = NULL;
166	unsigned long flags;
167		168
168	/* got root? */	169	/* got root? */
169	if (geteuid()) {	170	if (geteuid()) {
@@ -176,7 +177,7 @@ int adduser_main(int argc, char **argv)
176		177
177	/* check for min, max and missing args and exit on error */	178	/* check for min, max and missing args and exit on error */
178	opt_complementary = "-1:?1:?";	179	opt_complementary = "-1:?1:?";
179	flags = getopt32(argc, argv, "h:g:s:G:DSH", &pw.pw_dir, &pw.pw_gecos, &pw.pw_shell, &usegroup);	180	getopt32(argc, argv, "h:g:s:G:DSH", &pw.pw_dir, &pw.pw_gecos, &pw.pw_shell, &usegroup);
180		181
181	/* create string for $HOME if not specified already */	182	/* create string for $HOME if not specified already */
182	if (!pw.pw_dir) {	183	if (!pw.pw_dir) {
@@ -191,5 +192,5 @@ int adduser_main(int argc, char **argv)
191	pw.pw_gid = usegroup ? xgroup2gid(usegroup) : 0; /* exits on failure */	192	pw.pw_gid = usegroup ? xgroup2gid(usegroup) : 0; /* exits on failure */
192		193
193	/* grand finale */	194	/* grand finale */
194	return adduser(&pw, flags);	195	return adduser(&pw);
195	}	196	}


diff --git a/loginutils/passwd.c b/loginutils/passwd.c index 4531e63a6..b937ce45e 100644 --- a/loginutils/passwd.c +++ b/loginutils/passwd.c
@@ -252,6 +252,13 @@ int passwd_main(int argc, char **argv)
252	struct rlimit rlimit_fsize;	252	struct rlimit rlimit_fsize;
253	char c;	253	char c;
254		254
		255	#if ENABLE_FEATURE_SHADOWPASSWDS
		256	/* Using _r function to avoid pulling in static buffers */
		257	struct spwd spw;
		258	struct spwd *result;
		259	char buffer[256];
		260	#endif
		261
255	logmode = LOGMODE_BOTH;	262	logmode = LOGMODE_BOTH;
256	openlog(applet_name, LOG_NOWAIT, LOG_AUTH);	263	openlog(applet_name, LOG_NOWAIT, LOG_AUTH);
257	opt = getopt32(argc, argv, "a:lud", &opt_a);	264	opt = getopt32(argc, argv, "a:lud", &opt_a);
@@ -278,17 +285,14 @@ int passwd_main(int argc, char **argv)
278		285
279	filename = bb_path_passwd_file;	286	filename = bb_path_passwd_file;
280	#if ENABLE_FEATURE_SHADOWPASSWDS	287	#if ENABLE_FEATURE_SHADOWPASSWDS
281	{	288	if (getspnam_r(pw->pw_name, &spw, buffer, sizeof(buffer), &result)) {
282	struct spwd *sp = getspnam(name);	289	/* LOGMODE_BOTH */
283	if (!sp) {	290	bb_error_msg("no record of %s in %s, using %s",
284	/* LOGMODE_BOTH */	291	name, bb_path_shadow_file,
285	bb_error_msg("no record of %s in %s, using %s",	292	bb_path_passwd_file);
286	name, bb_path_shadow_file,	293	} else {
287	bb_path_passwd_file);	294	filename = bb_path_shadow_file;
288	} else {	295	pw->pw_passwd = spw.sp_pwdp;
289	filename = bb_path_shadow_file;
290	pw->pw_passwd = sp->sp_pwdp;
291	}
292	}	296	}
293	#endif	297	#endif
294		298


diff --git a/loginutils/sulogin.c b/loginutils/sulogin.c index 8e3095c87..38503f7b1 100644 --- a/loginutils/sulogin.c +++ b/loginutils/sulogin.c
@@ -43,6 +43,12 @@ int sulogin_main(int argc, char **argv)
43	const char * const *p;	43	const char * const *p;
44	struct passwd *pwd;	44	struct passwd *pwd;
45	const char *shell;	45	const char *shell;
		46	#if ENABLE_FEATURE_SHADOWPASSWDS
		47	/* Using _r function to avoid pulling in static buffers */
		48	char buffer[256];
		49	struct spwd spw;
		50	struct spwd *result;
		51	#endif
46		52
47	logmode = LOGMODE_BOTH;	53	logmode = LOGMODE_BOTH;
48	openlog(applet_name, 0, LOG_AUTH);	54	openlog(applet_name, 0, LOG_AUTH);
@@ -76,13 +82,10 @@ int sulogin_main(int argc, char **argv)
76	}	82	}
77		83
78	#if ENABLE_FEATURE_SHADOWPASSWDS	84	#if ENABLE_FEATURE_SHADOWPASSWDS
79	{	85	if (getspnam_r(pwd->pw_name, &spw, buffer, sizeof(buffer), &result)) {
80	struct spwd *spwd = getspnam(pwd->pw_name);	86	goto auth_error;
81	if (!spwd) {
82	goto auth_error;
83	}
84	pwd->pw_passwd = spwd->sp_pwdp;
85	}	87	}
		88	pwd->pw_passwd = spw.sp_pwdp;
86	#endif	89	#endif
87		90
88	while (1) {	91	while (1) {