1 .\" $NetBSD: getpass.3,v 1.22 2012/04/14 10:34:29 wiz Exp $
3 .\" Copyright (c) 1989, 1991, 1993
4 .\" The Regents of the University of California. All rights reserved.
6 .\" Redistribution and use in source and binary forms, with or without
7 .\" modification, are permitted provided that the following conditions
9 .\" 1. Redistributions of source code must retain the above copyright
10 .\" notice, this list of conditions and the following disclaimer.
11 .\" 2. Redistributions in binary form must reproduce the above copyright
12 .\" notice, this list of conditions and the following disclaimer in the
13 .\" documentation and/or other materials provided with the distribution.
14 .\" 3. Neither the name of the University nor the names of its contributors
15 .\" may be used to endorse or promote products derived from this software
16 .\" without specific prior written permission.
18 .\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
19 .\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
20 .\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
21 .\" ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
22 .\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
23 .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
24 .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
25 .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
26 .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
27 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30 .\" @(#)getpass.3 8.1 (Berkeley) 6/4/93
43 .Fn getpass "const char *prompt"
45 .Fn getpass_r "const char *prompt" "char *buf" "size_t buflen"
47 .Fn getpassfd "const char *prompt" "char *buf" "size_t buflen" "int *fd" "int flags" "int timeout"
51 function displays a prompt to, and reads in a password from,
53 If this file is not accessible,
55 displays the prompt on the standard error output and reads from the standard
58 The password may be up to
63 characters and the terminating newline character are discarded.
66 turns off character echoing while reading the password.
71 only it puts its result in
80 then a buffer will be dynamically allocated.
84 function allows one to specify the three file descriptors corresponding to
96 first attempts to open
98 and if that fails, defaults to
109 .Bl -tag -width GETPASS_FORCE_UPPER
110 .It Dv GETPASS_NEED_TTY
111 Fail if we are unable to set the tty modes like we want.
112 .It Dv GETPASS_FAIL_EOF
113 Fail if we get the end-of-file character instead of returning the result so far.
114 .It Dv GETPASS_BUF_LIMIT
115 Beep when the buffer limit is reached, instead of silently absorbing it.
116 .It Dv GETPASS_NO_SIGNAL
117 Don't make ttychars send signals.
118 .It Dv GETPASS_NO_BEEP
119 Don't beep if we erase past the beginning of the buffer or we try to enter past
121 .It Dv GETPASS_ECHO_STAR
124 for each character entered.
126 Echo characters as they are typed.
127 .It Dv GETPASS_ECHO_NL
128 Echoes a newline if successful.
130 Mask the high bit for each entered character.
131 .It Dv GETPASS_FORCE_LOWER
132 Lowercase each entered character.
133 .It Dv GETPASS_FORCE_UPPER
134 Uppercase each entered character.
139 argument is non zero,
143 seconds for input after each character before returning an error, instead of
148 function returns a pointer to the NUL terminated password, or an empty
154 functions return a pointer to the NUL terminated password, or
158 .Bl -tag -width /dev/tty -compact
168 but it was already marked as legacy.
169 The function was removed in the
181 functions appeared in
186 function leaves its result in an internal static object and returns
187 a pointer to that object.
190 will modify the same object.
191 .Sh SECURITY CONSIDERATIONS
192 The calling process should zero the password as soon as possible to
193 avoid leaving the cleartext password visible in the process's address
198 accepted and returned a password if it could not modify the terminal
199 settings to turn echo off (or if the input was not a terminal).
200 In this implementation, only terminal input is accepted.