Take the ypchfn/ypchsh stuff that was removed from passwd
[pw-darwin.git] / chpass / chpass.c
1 /*-
2 * Copyright (c) 1988, 1993, 1994
3 * The Regents of the University of California. All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. All advertising materials mentioning features or use of this software
14 * must display the following acknowledgement:
15 * This product includes software developed by the University of
16 * California, Berkeley and its contributors.
17 * 4. Neither the name of the University nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34 #ifndef lint
35 static char copyright[] =
36 "@(#) Copyright (c) 1988, 1993, 1994\n\
37 The Regents of the University of California. All rights reserved.\n";
38 #endif /* not lint */
39
40 #ifndef lint
41 static char sccsid[] = "From: @(#)chpass.c 8.4 (Berkeley) 4/2/94";
42 static char rcsid[] =
43 "$Id: chpass.c,v 1.3 1995/05/30 06:29:36 rgrimes Exp $";
44 #endif /* not lint */
45
46 #include <sys/param.h>
47 #include <sys/stat.h>
48 #include <sys/signal.h>
49 #include <sys/time.h>
50 #include <sys/resource.h>
51
52 #include <ctype.h>
53 #include <err.h>
54 #include <errno.h>
55 #include <fcntl.h>
56 #include <pwd.h>
57 #include <stdio.h>
58 #include <stdlib.h>
59 #include <string.h>
60 #include <unistd.h>
61
62 #include <pw_scan.h>
63 #include <pw_util.h>
64 #include "pw_copy.h"
65 #ifdef YP
66 #include "pw_yp.h"
67 #endif
68
69 #include "chpass.h"
70 #include "pathnames.h"
71
72 char *progname = "chpass";
73 char *tempname;
74 uid_t uid;
75
76 void baduser __P((void));
77 void usage __P((void));
78
79 int
80 main(argc, argv)
81 int argc;
82 char **argv;
83 {
84 enum { NEWSH, LOADENTRY, EDITENTRY, NEWPW } op;
85 struct passwd *pw, lpw;
86 int ch, pfd, tfd;
87 char *arg;
88
89 op = EDITENTRY;
90 while ((ch = getopt(argc, argv, "a:p:s:")) != EOF)
91 switch(ch) {
92 case 'a':
93 op = LOADENTRY;
94 arg = optarg;
95 break;
96 case 's':
97 op = NEWSH;
98 arg = optarg;
99 break;
100 case 'p':
101 op = NEWPW;
102 arg = optarg;
103 break;
104 case '?':
105 default:
106 usage();
107 }
108 argc -= optind;
109 argv += optind;
110
111 uid = getuid();
112
113 if (op == EDITENTRY || op == NEWSH || op == NEWPW)
114 switch(argc) {
115 case 0:
116 if (!(pw = getpwuid(uid)))
117 errx(1, "unknown user: uid %u", uid);
118 break;
119 case 1:
120 if (!(pw = getpwnam(*argv)))
121 errx(1, "unknown user: %s", *argv);
122 if (uid && uid != pw->pw_uid)
123 baduser();
124 break;
125 default:
126 usage();
127 }
128 if (op == NEWSH) {
129 /* protect p_shell -- it thinks NULL is /bin/sh */
130 if (!arg[0])
131 usage();
132 if (p_shell(arg, pw, (ENTRY *)NULL))
133 pw_error((char *)NULL, 0, 1);
134 }
135
136 if (op == LOADENTRY) {
137 if (uid)
138 baduser();
139 pw = &lpw;
140 if (!pw_scan(arg, pw))
141 exit(1);
142 }
143
144 if (op == NEWPW) {
145 if (uid)
146 baduser();
147
148 if(strchr(arg, ':')) {
149 errx(1, "invalid format for password");
150 }
151 pw->pw_passwd = arg;
152 }
153
154 #ifdef YP
155 /*
156 * XXX The man page says the data returned by getpwent()
157 * and friends is stored in static buffers that may be
158 * overwritten after successive invokations. Unfortunately,
159 * we need to call getpwent() more than once with NIS
160 * enabled.
161 */
162 pw->pw_name = strdup(pw->pw_name);
163 pw->pw_passwd = strdup(pw->pw_passwd);
164 pw->pw_class = strdup(pw->pw_class);
165 pw->pw_gecos = strdup(pw->pw_gecos);
166 pw->pw_shell = strdup(pw->pw_shell);
167 pw->pw_dir = strdup(pw->pw_dir);
168 _use_yp = use_yp(pw->pw_name);
169 #endif /* YP */
170
171 /*
172 * The temporary file/file descriptor usage is a little tricky here.
173 * 1: We start off with two fd's, one for the master password
174 * file (used to lock everything), and one for a temporary file.
175 * 2: Display() gets an fp for the temporary file, and copies the
176 * user's information into it. It then gives the temporary file
177 * to the user and closes the fp, closing the underlying fd.
178 * 3: The user edits the temporary file some number of times.
179 * 4: Verify() gets an fp for the temporary file, and verifies the
180 * contents. It can't use an fp derived from the step #2 fd,
181 * because the user's editor may have created a new instance of
182 * the file. Once the file is verified, its contents are stored
183 * in a password structure. The verify routine closes the fp,
184 * closing the underlying fd.
185 * 5: Delete the temporary file.
186 * 6: Get a new temporary file/fd. Pw_copy() gets an fp for it
187 * file and copies the master password file into it, replacing
188 * the user record with a new one. We can't use the first
189 * temporary file for this because it was owned by the user.
190 * Pw_copy() closes its fp, flushing the data and closing the
191 * underlying file descriptor. We can't close the master
192 * password fp, or we'd lose the lock.
193 * 7: Call pw_mkdb() (which renames the temporary file) and exit.
194 * The exit closes the master passwd fp/fd.
195 */
196 pw_init();
197 pfd = pw_lock();
198 tfd = pw_tmp();
199
200 if (op == EDITENTRY) {
201 display(tfd, pw);
202 edit(pw);
203 (void)unlink(tempname);
204 tfd = pw_tmp();
205 }
206
207 #ifdef YP
208 if (_use_yp) {
209 yp_submit(pw);
210 (void)unlink(tempname);
211 } else {
212 #endif /* YP */
213 pw_copy(pfd, tfd, pw);
214
215 if (!pw_mkdb())
216 pw_error((char *)NULL, 0, 1);
217 #ifdef YP
218 }
219 #endif /* YP */
220 exit(0);
221 }
222
223 void
224 baduser()
225 {
226 errx(1, "%s", strerror(EACCES));
227 }
228
229 void
230 usage()
231 {
232
233 (void)fprintf(stderr,
234 "usage: chpass [-a list] [-p encpass] [-s shell] [user]\n");
235 exit(1);
236 }