2 * Copyright (c) 1989 - 1994, Julianne Frances Haugh
3 * Copyright (c) 1996 - 1997, Marek Michałkiewicz
4 * Copyright (c) 2001 - 2005, Tomasz Kłoczko
5 * Copyright (c) 2008 , Nicolas François
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. The name of the copyright holders or contributors may not be used to
17 * endorse or promote products derived from this software without
18 * specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
21 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
22 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
23 * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
24 * HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
25 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
26 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
27 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
28 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
29 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
30 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
34 * Extracted from age.c and made part of libshadow.a - may be useful
35 * in other shadow-aware programs. --marekm
40 #include <sys/types.h>
41 #include "prototypes.h"
50 * isexpired - determine if account is expired yet
52 * isexpired calculates the expiration date based on the
53 * password expiration criteria.
55 int isexpired (const struct passwd *pw, const struct spwd *sp)
59 now = (long) time ((time_t *) 0) / SCALE;
62 sp = pwd_to_spwd (pw);
66 * Quick and easy - there is an expired account field
67 * along with an inactive account field. Do the expired
68 * one first since it is worse.
71 if ((sp->sp_expire > 0) && (now >= sp->sp_expire)) {
76 * Last changed date 1970-01-01 (not very likely) means that
77 * the password must be changed on next login (passwd -e).
79 * The check for "x" is a workaround for RedHat NYS libc bug -
80 * if /etc/shadow doesn't exist, getspnam() still succeeds and
81 * returns sp_lstchg==0 (must change password) instead of -1!
83 if ( (0 == sp->sp_lstchg)
84 && (strcmp (pw->pw_passwd, SHADOW_PASSWD_STRING) == 0)) {
88 if ( (sp->sp_lstchg > 0)
90 && (sp->sp_inact >= 0)
91 && (now >= (sp->sp_lstchg + sp->sp_max + sp->sp_inact))) {
96 * The last and max fields must be present for an account
97 * to have an expired password. A maximum of >10000 days
98 * is considered to be infinite.
101 if ( (-1 == sp->sp_lstchg)
102 || (-1 == sp->sp_max)
103 || (sp->sp_max >= (10000L * DAY / SCALE))) {
108 * Calculate today's day and the day on which the password
109 * is going to expire. If that date has already passed,
110 * the password has expired.
113 if (now >= (sp->sp_lstchg + sp->sp_max)) {
projects / shadow / blob