Annotation of src/usr.bin/passwd/passwd.c, Revision 1.21
1.21 ! jmc 1: /* $OpenBSD: passwd.c,v 1.20 2005/09/28 00:13:02 deraadt Exp $ */
1.4 deraadt 2:
1.1 deraadt 3: /*
4: * Copyright (c) 1988 The Regents of the University of California.
5: * All rights reserved.
6: *
7: * Redistribution and use in source and binary forms, with or without
8: * modification, are permitted provided that the following conditions
9: * are met:
10: * 1. Redistributions of source code must retain the above copyright
11: * notice, this list of conditions and the following disclaimer.
12: * 2. Redistributions in binary form must reproduce the above copyright
13: * notice, this list of conditions and the following disclaimer in the
14: * documentation and/or other materials provided with the distribution.
1.16 millert 15: * 3. Neither the name of the University nor the names of its contributors
1.1 deraadt 16: * may be used to endorse or promote products derived from this software
17: * without specific prior written permission.
18: *
19: * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
20: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22: * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
23: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29: * SUCH DAMAGE.
30: */
31:
32: #ifndef lint
33: char copyright[] =
34: "@(#) Copyright (c) 1988 The Regents of the University of California.\n\
35: All rights reserved.\n";
36: #endif /* not lint */
37:
38: #ifndef lint
1.11 millert 39: /*static const char sccsid[] = "from: @(#)passwd.c 5.5 (Berkeley) 7/6/91";*/
1.21 ! jmc 40: static const char rcsid[] = "$OpenBSD: passwd.c,v 1.20 2005/09/28 00:13:02 deraadt Exp $";
1.1 deraadt 41: #endif /* not lint */
42:
43: #include <stdio.h>
1.17 david 44: #include <stdlib.h>
1.1 deraadt 45: #include <string.h>
46: #include <unistd.h>
1.12 millert 47: #include <err.h>
1.20 deraadt 48: #include <rpcsvc/ypclnt.h>
1.1 deraadt 49:
50: /*
51: * Note on configuration:
52: * Generally one would not use both Kerberos and YP
53: * to maintain passwords.
54: *
55: */
56:
57: int use_kerberos;
58: int use_yp;
59:
60: #ifdef YP
61: int force_yp;
62: #endif
63:
1.9 millert 64: extern int local_passwd(char *, int);
1.6 weingart 65: extern int yp_passwd(char *);
1.10 hin 66: extern int krb5_passwd(int, char **);
1.14 hugh 67: extern int _yp_check(char **);
1.15 deraadt 68: void usage(int retval);
1.6 weingart 69:
70: int
1.15 deraadt 71: main(int argc, char **argv)
1.1 deraadt 72: {
73: extern int optind;
1.15 deraadt 74: char *username;
1.13 mpech 75: int ch;
1.14 hugh 76: #ifdef YP
1.1 deraadt 77: int status = 0;
1.14 hugh 78: #endif
1.15 deraadt 79:
1.18 hin 80: #if defined(KERBEROS5)
1.3 tholo 81: extern char realm[];
1.1 deraadt 82:
1.3 tholo 83: if (krb_get_lrealm(realm,1) == KSUCCESS)
84: use_kerberos = 1;
1.1 deraadt 85: #endif
86: #ifdef YP
87: use_yp = _yp_check(NULL);
1.19 deraadt 88: if (use_yp) {
89: char *dom;
90:
91: yp_get_default_domain(&dom);
92: yp_unbind(dom);
93: }
1.1 deraadt 94: #endif
95:
1.6 weingart 96: /* Process args and options */
1.18 hin 97: while ((ch = getopt(argc, argv, "lyK")) != -1)
1.1 deraadt 98: switch (ch) {
99: case 'l': /* change local password file */
100: use_kerberos = 0;
101: use_yp = 0;
102: break;
1.10 hin 103: case 'K':
104: #ifdef KRB5
105: /* Skip programname and '-K' option */
1.15 deraadt 106: argc -= 2;
107: argv += 2;
1.10 hin 108: exit(krb5_passwd(argc, argv));
1.15 deraadt 109: #else
1.10 hin 110: errx(1, "KerberosV support not enabled");
111: break;
1.1 deraadt 112: #endif
113: case 'y': /* change YP password */
114: #ifdef YP
115: if (!use_yp) {
116: fprintf(stderr, "passwd: YP not in use.\n");
117: exit(1);
118: }
119: use_kerberos = 0;
120: use_yp = 1;
121: force_yp = 1;
122: break;
123: #else
124: fprintf(stderr, "passwd: YP not compiled in\n");
125: exit(1);
126: #endif
127: default:
1.8 ericj 128: usage(1);
1.1 deraadt 129: }
130:
131: argc -= optind;
132: argv += optind;
133:
134: username = getlogin();
135: if (username == NULL) {
136: fprintf(stderr, "passwd: who are you ??\n");
137: exit(1);
138: }
1.15 deraadt 139:
140: switch (argc) {
1.1 deraadt 141: case 0:
142: break;
143: case 1:
1.18 hin 144: #if defined(KERBEROS5)
1.15 deraadt 145: if (use_kerberos && strcmp(argv[0], username)) {
146: (void)fprintf(stderr, "passwd: %s\n\t%s\n%s\n",
147: "to change another user's Kerberos password, do",
1.18 hin 148: "\"passwd -K -u <user>\";",
1.15 deraadt 149: "to change a user's local passwd, use \"passwd -l <user>\"");
150: exit(1);
151: }
1.1 deraadt 152: #endif
153: username = argv[0];
154: break;
155: default:
1.8 ericj 156: usage(1);
1.1 deraadt 157: }
1.7 art 158:
1.1 deraadt 159: #ifdef YP
1.9 millert 160: if (force_yp || ((status = local_passwd(username, 0)) && use_yp))
1.1 deraadt 161: exit(yp_passwd(username));
162: exit(status);
163: #endif
1.9 millert 164: exit(local_passwd(username, 0));
1.1 deraadt 165: }
166:
1.6 weingart 167: void
1.15 deraadt 168: usage(int retval)
1.1 deraadt 169: {
1.21 ! jmc 170: fprintf(stderr, "usage: passwd [-Kly] [user]\n");
1.8 ericj 171: exit(retval);
1.1 deraadt 172: }