| /**************************************************************************** |
| * apps/nshlib/nsh_login.c |
| * |
| * Copyright (C) 2016, 2019 Gregory Nutt. All rights reserved. |
| * Author: Gregory Nutt <gnutt@nuttx.org> |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions |
| * are met: |
| * |
| * 1. Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * 2. Redistributions in binary form must reproduce the above copyright |
| * notice, this list of conditions and the following disclaimer in |
| * the documentation and/or other materials provided with the |
| * distribution. |
| * 3. Neither the name Gregory Nutt nor the names of its contributors may be |
| * used to endorse or promote products derived from this software |
| * without specific prior written permission. |
| * |
| * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS |
| * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT |
| * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS |
| * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE |
| * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, |
| * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, |
| * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS |
| * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED |
| * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
| * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN |
| * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE |
| * POSSIBILITY OF SUCH DAMAGE. |
| * |
| ****************************************************************************/ |
| |
| /**************************************************************************** |
| * Included Files |
| ****************************************************************************/ |
| |
| #include <nuttx/config.h> |
| |
| #include <stdio.h> |
| #include <string.h> |
| #include <ctype.h> |
| |
| #include "fsutils/passwd.h" |
| #ifdef CONFIG_NSH_CLE |
| # include "system/cle.h" |
| #else |
| # include "system/readline.h" |
| #endif |
| |
| #include "nsh.h" |
| #include "nsh_console.h" |
| |
| #ifdef CONFIG_NSH_CONSOLE_LOGIN |
| |
| /**************************************************************************** |
| * Private Functions |
| ****************************************************************************/ |
| |
| /**************************************************************************** |
| * Name: nsh_token |
| ****************************************************************************/ |
| |
| static void nsh_token(FAR struct console_stdio_s *pstate, |
| FAR char *buffer, size_t buflen) |
| { |
| FAR char *start; |
| FAR char *endp1; |
| bool quoted = false; |
| |
| /* Find the start of token. Either (1) the first non-white space |
| * character on the command line or (2) the character immediately after |
| * a quotation mark. |
| */ |
| |
| for (start = pstate->cn_line; *start; start++) |
| { |
| /* Does the token open with a quotation mark */ |
| |
| if (*start == '"') |
| { |
| /* Yes.. break out with start set to the character after the |
| * quotation mark. |
| */ |
| |
| quoted = true; |
| start++; |
| break; |
| } |
| |
| /* No, then any non-whitespace is the first character of the token */ |
| |
| else if (!isspace(*start)) |
| { |
| /* Break out with start set to the first character of the token */ |
| |
| break; |
| } |
| } |
| |
| /* Find the terminating character after the token on the command line. The |
| * terminating character is either (1) the matching quotation mark, or (2) |
| * any whitespace. |
| */ |
| |
| for (endp1 = start; *endp1; endp1++) |
| { |
| /* Did the token begin with a quotation mark? */ |
| |
| if (quoted) |
| { |
| /* Yes.. then only the matching quotation mark (or end of string) |
| * terminates |
| */ |
| |
| if (*endp1 == '"') |
| { |
| /* Break out... endp1 points to closing quotation mark */ |
| |
| break; |
| } |
| } |
| |
| /* No.. any whitespace (or end of string) terminates */ |
| |
| else if (isspace(*endp1)) |
| { |
| /* Break out... endp1 points to first while space encountered */ |
| |
| break; |
| } |
| } |
| |
| /* Replace terminating character with a NUL terminator */ |
| |
| *endp1 = '\0'; |
| |
| /* Copied the token into the buffer */ |
| |
| strncpy(buffer, start, buflen); |
| } |
| |
| /**************************************************************************** |
| * Public Functions |
| ****************************************************************************/ |
| |
| /**************************************************************************** |
| * Name: nsh_login |
| * |
| * Description: |
| * Prompt the user for a username and password. Return a failure if valid |
| * credentials are not returned (after some retries. |
| * |
| ****************************************************************************/ |
| |
| int nsh_login(FAR struct console_stdio_s *pstate) |
| { |
| char username[16]; |
| char password[16]; |
| int ret; |
| int i; |
| |
| /* Loop for the configured number of retries */ |
| |
| for (i = 0; i < CONFIG_NSH_LOGIN_FAILCOUNT; i++) |
| { |
| /* Ask for the login username */ |
| |
| username[0] = '\0'; |
| fputs(g_userprompt, pstate->cn_outstream); |
| fflush(pstate->cn_outstream); |
| |
| /* readline() returns EOF on failure */ |
| |
| ret = readline(pstate->cn_line, CONFIG_NSH_LINELEN, |
| INSTREAM(pstate), OUTSTREAM(pstate)); |
| if (ret != EOF) |
| { |
| /* Parse out the username */ |
| |
| nsh_token(pstate, username, sizeof(username)); |
| } |
| |
| /* Ask for the login password */ |
| |
| fputs(g_passwordprompt, pstate->cn_outstream); |
| fflush(pstate->cn_outstream); |
| |
| password[0] = '\0'; |
| if (fgets(pstate->cn_line, CONFIG_NSH_LINELEN, |
| INSTREAM(pstate)) != NULL) |
| { |
| /* Parse out the password */ |
| |
| nsh_token(pstate, password, sizeof(password)); |
| |
| /* Verify the username and password */ |
| |
| #if defined(CONFIG_NSH_LOGIN_PASSWD) |
| ret = passwd_verify(username, password); |
| if (PASSWORD_VERIFY_MATCH(ret)) |
| |
| #elif defined(CONFIG_NSH_LOGIN_PLATFORM) |
| ret = platform_user_verify(username, password); |
| if (PASSWORD_VERIFY_MATCH(ret)) |
| |
| #elif defined(CONFIG_NSH_LOGIN_FIXED) |
| if (strcmp(password, CONFIG_NSH_LOGIN_PASSWORD) == 0 && |
| strcmp(username, CONFIG_NSH_LOGIN_USERNAME) == 0) |
| #else |
| # error No user verification method selected |
| #endif |
| { |
| fputs(g_loginsuccess, pstate->cn_outstream); |
| fflush(pstate->cn_outstream); |
| return OK; |
| } |
| else |
| { |
| fputs(g_badcredentials, pstate->cn_outstream); |
| fflush(pstate->cn_outstream); |
| #if CONFIG_NSH_LOGIN_FAILDELAY > 0 |
| usleep(CONFIG_NSH_LOGIN_FAILDELAY * 1000L); |
| #endif |
| } |
| } |
| } |
| |
| /* Too many failed login attempts */ |
| |
| fputs(g_loginfailure, pstate->cn_outstream); |
| fflush(pstate->cn_outstream); |
| return -1; |
| } |
| |
| #endif /* CONFIG_NSH_CONSOLE_LOGIN */ |