Annotation of src/usr.bin/passwd/passwd.c, Revision 1.10
1.10 ! hin 1: /* $OpenBSD: passwd.c,v 1.9 2000/12/12 02:19:58 millert Exp $ */
1.4 deraadt 2:
1.1 deraadt 3: /*
4: * Copyright (c) 1988 The Regents of the University of California.
5: * All rights reserved.
6: *
7: * Redistribution and use in source and binary forms, with or without
8: * modification, are permitted provided that the following conditions
9: * are met:
10: * 1. Redistributions of source code must retain the above copyright
11: * notice, this list of conditions and the following disclaimer.
12: * 2. Redistributions in binary form must reproduce the above copyright
13: * notice, this list of conditions and the following disclaimer in the
14: * documentation and/or other materials provided with the distribution.
15: * 3. All advertising materials mentioning features or use of this software
16: * must display the following acknowledgement:
17: * This product includes software developed by the University of
18: * California, Berkeley and its contributors.
19: * 4. Neither the name of the University nor the names of its contributors
20: * may be used to endorse or promote products derived from this software
21: * without specific prior written permission.
22: *
23: * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
24: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
25: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
26: * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
27: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
28: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
29: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
30: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
31: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
32: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
33: * SUCH DAMAGE.
34: */
35:
36: #ifndef lint
37: char copyright[] =
38: "@(#) Copyright (c) 1988 The Regents of the University of California.\n\
39: All rights reserved.\n";
40: #endif /* not lint */
41:
42: #ifndef lint
43: /*static char sccsid[] = "from: @(#)passwd.c 5.5 (Berkeley) 7/6/91";*/
1.10 ! hin 44: static char rcsid[] = "$OpenBSD: passwd.c,v 1.9 2000/12/12 02:19:58 millert Exp $";
1.1 deraadt 45: #endif /* not lint */
46:
47: #include <stdio.h>
48: #include <string.h>
49: #include <unistd.h>
1.3 tholo 50: #ifdef KERBEROS
51: #include <kerberosIV/krb.h>
52: #endif
1.1 deraadt 53:
54: /*
55: * Note on configuration:
56: * Generally one would not use both Kerberos and YP
57: * to maintain passwords.
58: *
59: */
60:
61: int use_kerberos;
62: int use_yp;
63:
64: #ifdef YP
65: int force_yp;
66: #endif
67:
1.6 weingart 68:
1.9 millert 69: extern int local_passwd(char *, int);
1.6 weingart 70: extern int yp_passwd(char *);
1.7 art 71: extern int krb_passwd(int, char **);
1.10 ! hin 72: extern int krb5_passwd(int, char **);
1.8 ericj 73: void usage(int value);
1.6 weingart 74:
75:
76: int
1.1 deraadt 77: main(argc, argv)
78: int argc;
79: char **argv;
80: {
81: extern int optind;
82: register int ch;
83: char *username;
84: int status = 0;
1.3 tholo 85: #if defined(KERBEROS) || defined(KERBEROS5)
86: extern char realm[];
1.1 deraadt 87:
1.3 tholo 88: if (krb_get_lrealm(realm,1) == KSUCCESS)
89: use_kerberos = 1;
1.1 deraadt 90: #endif
91: #ifdef YP
92: use_yp = _yp_check(NULL);
93: #endif
94:
1.6 weingart 95: /* Process args and options */
1.10 ! hin 96: while ((ch = getopt(argc, argv, "lykK")) != -1)
1.1 deraadt 97: switch (ch) {
98: case 'l': /* change local password file */
99: use_kerberos = 0;
100: use_yp = 0;
101: break;
102: case 'k': /* change Kerberos password */
1.10 ! hin 103: #if defined(KERBEROS)
1.1 deraadt 104: use_kerberos = 1;
105: use_yp = 0;
1.7 art 106: exit(krb_passwd(argc, argv));
1.1 deraadt 107: break;
108: #else
109: fprintf(stderr, "passwd: Kerberos not compiled in\n");
110: exit(1);
1.10 ! hin 111: #endif
! 112: case 'K':
! 113: #ifdef KRB5
! 114: /* Skip programname and '-K' option */
! 115: argc-=2;
! 116: argv+=2;
! 117: exit(krb5_passwd(argc, argv));
! 118: #else
! 119: errx(1, "KerberosV support not enabled");
! 120: break;
1.1 deraadt 121: #endif
122: case 'y': /* change YP password */
123: #ifdef YP
124: if (!use_yp) {
125: fprintf(stderr, "passwd: YP not in use.\n");
126: exit(1);
127: }
128: use_kerberos = 0;
129: use_yp = 1;
130: force_yp = 1;
131: break;
132: #else
133: fprintf(stderr, "passwd: YP not compiled in\n");
134: exit(1);
135: #endif
136: default:
1.8 ericj 137: usage(1);
1.1 deraadt 138: }
139:
140: argc -= optind;
141: argv += optind;
142:
143: username = getlogin();
144: if (username == NULL) {
145: fprintf(stderr, "passwd: who are you ??\n");
146: exit(1);
147: }
148:
149: switch(argc) {
150: case 0:
151: break;
152: case 1:
153: #if defined(KERBEROS) || defined(KERBEROS5)
1.7 art 154: if (use_kerberos && strcmp(argv[0], username)) {
155: (void)fprintf(stderr, "passwd: %s\n\t%s\n%s\n",
156: "to change another user's Kerberos password, do",
157: "\"passwd -k -u <user>\";",
158: "to change a user's local passwd, use \"passwd -l <user>\"");
159: exit(1);
160: }
1.1 deraadt 161: #endif
162: username = argv[0];
163: break;
164: default:
1.8 ericj 165: usage(1);
1.1 deraadt 166: }
167:
168: #if defined(KERBEROS) || defined(KERBEROS5)
1.7 art 169: if (use_kerberos)
170: exit(krb_passwd(argc, argv));
1.1 deraadt 171: #endif
1.7 art 172:
1.1 deraadt 173: #ifdef YP
1.9 millert 174: if (force_yp || ((status = local_passwd(username, 0)) && use_yp))
1.1 deraadt 175: exit(yp_passwd(username));
176: exit(status);
177: #endif
1.9 millert 178: exit(local_passwd(username, 0));
1.1 deraadt 179: }
180:
1.6 weingart 181: void
1.8 ericj 182: usage(retval)
183: int retval;
1.1 deraadt 184: {
1.7 art 185: fprintf(stderr, "usage: passwd [-l] [-y] [-k [-n name] [-i instance] [-r realm] [-u username[.instance][@realm]] [user]\n");
1.8 ericj 186: exit(retval);
1.1 deraadt 187: }