1 /* $OpenBSD: passwd.c,v 1.13 2001/11/19 19:02:15 mpech Exp $ */ 2 3 /* 4 * Copyright (c) 1988 The Regents of the University of California. 5 * All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 3. All advertising materials mentioning features or use of this software 16 * must display the following acknowledgement: 17 * This product includes software developed by the University of 18 * California, Berkeley and its contributors. 19 * 4. Neither the name of the University nor the names of its contributors 20 * may be used to endorse or promote products derived from this software 21 * without specific prior written permission. 22 * 23 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 24 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 25 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 26 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 27 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 28 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 29 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 30 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 31 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 32 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 33 * SUCH DAMAGE. 34 */ 35 36 #ifndef lint 37 char copyright[] = 38 "@(#) Copyright (c) 1988 The Regents of the University of California.\n\ 39 All rights reserved.\n"; 40 #endif /* not lint */ 41 42 #ifndef lint 43 /*static const char sccsid[] = "from: @(#)passwd.c 5.5 (Berkeley) 7/6/91";*/ 44 static const char rcsid[] = "$OpenBSD: passwd.c,v 1.13 2001/11/19 19:02:15 mpech Exp $"; 45 #endif /* not lint */ 46 47 #include <stdio.h> 48 #include <string.h> 49 #include <unistd.h> 50 #include <err.h> 51 #ifdef KERBEROS 52 #include <kerberosIV/krb.h> 53 #endif 54 55 /* 56 * Note on configuration: 57 * Generally one would not use both Kerberos and YP 58 * to maintain passwords. 59 * 60 */ 61 62 int use_kerberos; 63 int use_yp; 64 65 #ifdef YP 66 int force_yp; 67 #endif 68 69 70 extern int local_passwd(char *, int); 71 extern int yp_passwd(char *); 72 extern int krb_passwd(int, char **); 73 extern int krb5_passwd(int, char **); 74 void usage(int value); 75 76 77 int 78 main(argc, argv) 79 int argc; 80 char **argv; 81 { 82 extern int optind; 83 int ch; 84 char *username; 85 int status = 0; 86 #if defined(KERBEROS) || defined(KERBEROS5) 87 extern char realm[]; 88 89 if (krb_get_lrealm(realm,1) == KSUCCESS) 90 use_kerberos = 1; 91 #endif 92 #ifdef YP 93 use_yp = _yp_check(NULL); 94 #endif 95 96 /* Process args and options */ 97 while ((ch = getopt(argc, argv, "lykK")) != -1) 98 switch (ch) { 99 case 'l': /* change local password file */ 100 use_kerberos = 0; 101 use_yp = 0; 102 break; 103 case 'k': /* change Kerberos password */ 104 #if defined(KERBEROS) 105 use_kerberos = 1; 106 use_yp = 0; 107 exit(krb_passwd(argc, argv)); 108 break; 109 #else 110 fprintf(stderr, "passwd: Kerberos not compiled in\n"); 111 exit(1); 112 #endif 113 case 'K': 114 #ifdef KRB5 115 /* Skip programname and '-K' option */ 116 argc-=2; 117 argv+=2; 118 exit(krb5_passwd(argc, argv)); 119 #else 120 errx(1, "KerberosV support not enabled"); 121 break; 122 #endif 123 case 'y': /* change YP password */ 124 #ifdef YP 125 if (!use_yp) { 126 fprintf(stderr, "passwd: YP not in use.\n"); 127 exit(1); 128 } 129 use_kerberos = 0; 130 use_yp = 1; 131 force_yp = 1; 132 break; 133 #else 134 fprintf(stderr, "passwd: YP not compiled in\n"); 135 exit(1); 136 #endif 137 default: 138 usage(1); 139 } 140 141 argc -= optind; 142 argv += optind; 143 144 username = getlogin(); 145 if (username == NULL) { 146 fprintf(stderr, "passwd: who are you ??\n"); 147 exit(1); 148 } 149 150 switch(argc) { 151 case 0: 152 break; 153 case 1: 154 #if defined(KERBEROS) || defined(KERBEROS5) 155 if (use_kerberos && strcmp(argv[0], username)) { 156 (void)fprintf(stderr, "passwd: %s\n\t%s\n%s\n", 157 "to change another user's Kerberos password, do", 158 "\"passwd -k -u <user>\";", 159 "to change a user's local passwd, use \"passwd -l <user>\""); 160 exit(1); 161 } 162 #endif 163 username = argv[0]; 164 break; 165 default: 166 usage(1); 167 } 168 169 #if defined(KERBEROS) || defined(KERBEROS5) 170 if (use_kerberos) 171 exit(krb_passwd(argc, argv)); 172 #endif 173 174 #ifdef YP 175 if (force_yp || ((status = local_passwd(username, 0)) && use_yp)) 176 exit(yp_passwd(username)); 177 exit(status); 178 #endif 179 exit(local_passwd(username, 0)); 180 } 181 182 void 183 usage(retval) 184 int retval; 185 { 186 fprintf(stderr, "usage: passwd [-l] [-y] [-k [-n name] [-i instance] [-r realm] [-u username[.instance][@realm]] [user]\n"); 187 exit(retval); 188 } 189