Annotation of src/usr.bin/passwd/passwd.c, Revision 1.14
1.14 ! hugh 1: /* $OpenBSD: passwd.c,v 1.13 2001/11/19 19:02:15 mpech Exp $ */
1.4 deraadt 2:
1.1 deraadt 3: /*
4: * Copyright (c) 1988 The Regents of the University of California.
5: * All rights reserved.
6: *
7: * Redistribution and use in source and binary forms, with or without
8: * modification, are permitted provided that the following conditions
9: * are met:
10: * 1. Redistributions of source code must retain the above copyright
11: * notice, this list of conditions and the following disclaimer.
12: * 2. Redistributions in binary form must reproduce the above copyright
13: * notice, this list of conditions and the following disclaimer in the
14: * documentation and/or other materials provided with the distribution.
15: * 3. All advertising materials mentioning features or use of this software
16: * must display the following acknowledgement:
17: * This product includes software developed by the University of
18: * California, Berkeley and its contributors.
19: * 4. Neither the name of the University nor the names of its contributors
20: * may be used to endorse or promote products derived from this software
21: * without specific prior written permission.
22: *
23: * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
24: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
25: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
26: * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
27: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
28: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
29: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
30: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
31: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
32: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
33: * SUCH DAMAGE.
34: */
35:
36: #ifndef lint
37: char copyright[] =
38: "@(#) Copyright (c) 1988 The Regents of the University of California.\n\
39: All rights reserved.\n";
40: #endif /* not lint */
41:
42: #ifndef lint
1.11 millert 43: /*static const char sccsid[] = "from: @(#)passwd.c 5.5 (Berkeley) 7/6/91";*/
1.14 ! hugh 44: static const char rcsid[] = "$OpenBSD: passwd.c,v 1.13 2001/11/19 19:02:15 mpech Exp $";
1.1 deraadt 45: #endif /* not lint */
46:
47: #include <stdio.h>
48: #include <string.h>
49: #include <unistd.h>
1.12 millert 50: #include <err.h>
1.3 tholo 51: #ifdef KERBEROS
52: #include <kerberosIV/krb.h>
53: #endif
1.1 deraadt 54:
55: /*
56: * Note on configuration:
57: * Generally one would not use both Kerberos and YP
58: * to maintain passwords.
59: *
60: */
61:
62: int use_kerberos;
63: int use_yp;
64:
65: #ifdef YP
66: int force_yp;
67: #endif
68:
1.6 weingart 69:
1.9 millert 70: extern int local_passwd(char *, int);
1.6 weingart 71: extern int yp_passwd(char *);
1.7 art 72: extern int krb_passwd(int, char **);
1.10 hin 73: extern int krb5_passwd(int, char **);
1.14 ! hugh 74: extern int _yp_check(char **);
1.8 ericj 75: void usage(int value);
1.6 weingart 76:
77:
78: int
1.1 deraadt 79: main(argc, argv)
80: int argc;
81: char **argv;
82: {
83: extern int optind;
1.13 mpech 84: int ch;
1.1 deraadt 85: char *username;
1.14 ! hugh 86: #ifdef YP
1.1 deraadt 87: int status = 0;
1.14 ! hugh 88: #endif
1.3 tholo 89: #if defined(KERBEROS) || defined(KERBEROS5)
90: extern char realm[];
1.1 deraadt 91:
1.3 tholo 92: if (krb_get_lrealm(realm,1) == KSUCCESS)
93: use_kerberos = 1;
1.1 deraadt 94: #endif
95: #ifdef YP
96: use_yp = _yp_check(NULL);
97: #endif
98:
1.6 weingart 99: /* Process args and options */
1.10 hin 100: while ((ch = getopt(argc, argv, "lykK")) != -1)
1.1 deraadt 101: switch (ch) {
102: case 'l': /* change local password file */
103: use_kerberos = 0;
104: use_yp = 0;
105: break;
106: case 'k': /* change Kerberos password */
1.10 hin 107: #if defined(KERBEROS)
1.1 deraadt 108: use_kerberos = 1;
109: use_yp = 0;
1.7 art 110: exit(krb_passwd(argc, argv));
1.1 deraadt 111: break;
112: #else
113: fprintf(stderr, "passwd: Kerberos not compiled in\n");
114: exit(1);
1.10 hin 115: #endif
116: case 'K':
117: #ifdef KRB5
118: /* Skip programname and '-K' option */
119: argc-=2;
120: argv+=2;
121: exit(krb5_passwd(argc, argv));
122: #else
123: errx(1, "KerberosV support not enabled");
124: break;
1.1 deraadt 125: #endif
126: case 'y': /* change YP password */
127: #ifdef YP
128: if (!use_yp) {
129: fprintf(stderr, "passwd: YP not in use.\n");
130: exit(1);
131: }
132: use_kerberos = 0;
133: use_yp = 1;
134: force_yp = 1;
135: break;
136: #else
137: fprintf(stderr, "passwd: YP not compiled in\n");
138: exit(1);
139: #endif
140: default:
1.8 ericj 141: usage(1);
1.1 deraadt 142: }
143:
144: argc -= optind;
145: argv += optind;
146:
147: username = getlogin();
148: if (username == NULL) {
149: fprintf(stderr, "passwd: who are you ??\n");
150: exit(1);
151: }
152:
153: switch(argc) {
154: case 0:
155: break;
156: case 1:
157: #if defined(KERBEROS) || defined(KERBEROS5)
1.7 art 158: if (use_kerberos && strcmp(argv[0], username)) {
159: (void)fprintf(stderr, "passwd: %s\n\t%s\n%s\n",
160: "to change another user's Kerberos password, do",
161: "\"passwd -k -u <user>\";",
162: "to change a user's local passwd, use \"passwd -l <user>\"");
163: exit(1);
164: }
1.1 deraadt 165: #endif
166: username = argv[0];
167: break;
168: default:
1.8 ericj 169: usage(1);
1.1 deraadt 170: }
171:
172: #if defined(KERBEROS) || defined(KERBEROS5)
1.7 art 173: if (use_kerberos)
174: exit(krb_passwd(argc, argv));
1.1 deraadt 175: #endif
1.7 art 176:
1.1 deraadt 177: #ifdef YP
1.9 millert 178: if (force_yp || ((status = local_passwd(username, 0)) && use_yp))
1.1 deraadt 179: exit(yp_passwd(username));
180: exit(status);
181: #endif
1.9 millert 182: exit(local_passwd(username, 0));
1.1 deraadt 183: }
184:
1.6 weingart 185: void
1.8 ericj 186: usage(retval)
187: int retval;
1.1 deraadt 188: {
1.7 art 189: fprintf(stderr, "usage: passwd [-l] [-y] [-k [-n name] [-i instance] [-r realm] [-u username[.instance][@realm]] [user]\n");
1.8 ericj 190: exit(retval);
1.1 deraadt 191: }