illumos/illumos-gate: usr/src/cmd/passwd/passwd.c annotate

annotate usr/src/cmd/passwd/passwd.c @ 14136:9178198c46b5

4026 cleanup warnings in cmd/passwd Reviewed by: Jason King <jason.brian.king@gmail.com> Reviewed by: Cedric Blancher <cedric.blancher@gmail.com> Reviewed by: Keith Wesolowski <keith.wesolowski@joyent.com> Approved by: Robert Mustacchi <rm@joyent.com>

author	Igor Kozhukhov <ikozhukhov@gmail.com>
date	Tue, 13 Aug 2013 09:02:40 -0700
parents	f6cca4323de0
children

rev	line source
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	2 * CDDL HEADER START
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	3 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	4 * The contents of this file are subject to the terms of the
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	5 * Common Development and Distribution License (the "License").
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	6 * You may not use this file except in compliance with the License.
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	7 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	9 * or http://www.opensolaris.org/os/licensing.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	10 * See the License for the specific language governing permissions
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	11 * and limitations under the License.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	12 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	13 * When distributing Covered Code, include this CDDL HEADER in each
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	15 * If applicable, add the following below this CDDL HEADER, with the
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	16 * fields enclosed by brackets "[]" replaced with your own identifying
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	17 * information: Portions Copyright [yyyy] [name of copyright owner]
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	18 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	19 * CDDL HEADER END
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	20 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	21 /*
11893 ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	22 * Copyright 2010 Sun Microsystems, Inc. All rights reserved.
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	23 * Use is subject to license terms.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	24 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	25
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	26 /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	27 /* All Rights Reserved */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	28
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	29 /* Copyright (c) 1987, 1988 Microsoft Corporation */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	30 /* All Rights Reserved */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	31
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	32 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	33 * passwd is a program whose sole purpose is to manage
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	34 * the password file, map, or table. It allows system administrator
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	35 * to add, change and display password attributes.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	36 * Non privileged user can change password or display
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	37 * password attributes which corresponds to their login name.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	38 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	39
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	40 #include <stdio.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	41 #include <pwd.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	42 #include <sys/types.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	43 #include <errno.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	44 #include <unistd.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	45 #include <stdlib.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	46 #include <locale.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	47 #include <stdarg.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	48 #include <errno.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	49 #include <string.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	50 #include <security/pam_appl.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	51 #include <security/pam_modules.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	52 #include <security/pam_impl.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	53 #include <rpcsvc/nis.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	54 #undef GROUP
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	55 #include <syslog.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	56 #include <userdefs.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	57 #include <passwdutil.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	58
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	59 #include <nss_dbdefs.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	60
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	61 #include <deflt.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	62
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	63 #undef GROUP
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	64 #include <bsm/adt.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	65 #include <bsm/adt_event.h>
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	66
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	67 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	68 * flags indicate password attributes to be modified
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	69 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	70
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	71 #define LFLAG 0x001 /* lock user's password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	72 #define DFLAG 0x002 /* delete user's password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	73 #define MFLAG 0x004 /* set max field -- # of days passwd is valid */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	74 #define NFLAG 0x008 /* set min field -- # of days between */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	75 /* password changes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	76 #define SFLAG 0x010 /* display password attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	77 #define FFLAG 0x020 /* expire user's password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	78 #define AFLAG 0x040 /* display password attributes for all users */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	79 #define SAFLAG (SFLAG\|AFLAG) /* display password attributes for all users */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	80 #define WFLAG 0x100 /* warn user to change passwd */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	81 #define OFLAG 0x200 /* domain name */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	82 #define EFLAG 0x400 /* change shell */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	83 #define GFLAG 0x800 /* change gecos information */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	84 #define HFLAG 0x1000 /* change home directory */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	85 #define XFLAG 0x2000 /* no login */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	86 #define UFLAG 0x4000 /* unlock user's password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	87
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	88 #define NONAGEFLAG (EFLAG \| GFLAG \| HFLAG)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	89 #define AGEFLAG (LFLAG \| FFLAG \| MFLAG \| NFLAG \| WFLAG \| XFLAG \| UFLAG)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	90 #define MUTEXFLAG (DFLAG \| LFLAG \| XFLAG \| UFLAG \| SAFLAG)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	91
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	92
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	93 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	94 * exit code
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	95 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	96
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	97 #define SUCCESS 0 /* succeeded */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	98 #define NOPERM 1 /* No permission */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	99 #define BADOPT 2 /* Invalid combination of option */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	100 #define FMERR 3 /* File/table manipulation error */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	101 #define FATAL 4 /* Old file/table can not be recovered */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	102 #define FBUSY 5 /* Lock file/table busy */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	103 #define BADSYN 6 /* Incorrect syntax */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	104 #define BADAGE 7 /* Aging is disabled */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	105 #define NOMEM 8 /* No memory */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	106 #define SYSERR 9 /* System error */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	107 #define EXPIRED 10 /* Account expired */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	108
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	109 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	110 * define error messages
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	111 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	112 #define MSG_NP "Permission denied"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	113 #define MSG_BS "Invalid combination of options"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	114 #define MSG_FE "Unexpected failure. Password file/table unchanged."
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	115 #define MSG_FF "Unexpected failure. Password file/table missing."
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	116 #define MSG_FB "Password file/table busy. Try again later."
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	117 #define MSG_NV "Invalid argument to option"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	118 #define MSG_AD "Password aging is disabled"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	119 #define MSG_RS "Cannot change from restricted shell %s\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	120 #define MSG_NM "Out of memory."
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	121 #define MSG_UNACCEPT "%s is unacceptable as a new shell\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	122 #define MSG_UNAVAIL "warning: %s is unavailable on this machine\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	123 #define MSG_COLON "':' is not allowed.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	124 #define MSG_MAXLEN "Maximum number of characters allowed is %d."
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	125 #define MSG_CONTROL "Control characters are not allowed.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	126 #define MSG_SHELL_UNCHANGED "Login shell unchanged.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	127 #define MSG_GECOS_UNCHANGED "Finger information unchanged.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	128 #define MSG_DIR_UNCHANGED "Homedir information unchanged.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	129 #define MSG_NAME "\nName [%s]: "
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	130 #define MSG_HOMEDIR "\nHome Directory [%s]: "
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	131 #define MSG_OLDSHELL "Old shell: %s\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	132 #define MSG_NEWSHELL "New shell: "
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	133 #define MSG_AGAIN "\nPlease try again\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	134 #define MSG_INPUTHDR "Default values are printed inside of '[]'.\n" \
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	135 "To accept the default, type <return>.\n" \
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	136 "To have a blank entry, type the word 'none'.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	137 #define MSG_UNKNOWN "%s: User unknown: %s\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	138 #define MSG_ACCOUNT_EXP "User account has expired: %s\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	139 #define MSG_AUTHTOK_EXP "Your password has been expired for too long.\n" \
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	140 "Please contact the system administrator.\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	141 #define MSG_NIS_HOMEDIR "-h does not apply to NIS"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	142 #define MSG_CUR_PASS "Enter existing login password: "
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	143 #define MSG_CUR_PASS_UNAME "Enter %s's existing login password: "
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	144 #define MSG_SUCCESS "%s: password information changed for %s\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	145 #define MSG_SORRY "%s: Sorry, wrong passwd\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	146 #define MSG_INFO "%s: Changing password for %s\n"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	147
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	148
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	149 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	150 * return code from ckarg() routine
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	151 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	152 #define FAIL -1
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	153
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	154 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	155 * defind password file name
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	156 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	157 #define PASSWD "/etc/passwd"
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	158
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	159 #define MAX_INPUT_LEN 512
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	160
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	161 #define DEF_ATTEMPTS 3
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	162
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	163 /* Number of characters in that make up an encrypted password (for now) */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	164 #define NUMCP 13
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	165
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	166 #ifdef DEBUG
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	167 #define dprintf1 printf
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	168 #else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	169 #define dprintf1(w, x)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	170 #endif
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	171
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	172 extern int optind;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	173
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	174 static int retval = SUCCESS;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	175 static int pam_retval = PAM_SUCCESS;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	176 static uid_t uid;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	177 static char *prognamep;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	178 static long maxdate; /* password aging information */
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	179 static int passwd_conv(int, struct pam_message **,
55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	180 struct pam_response *, void );
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	181 static struct pam_conv pam_conv = {passwd_conv, NULL};
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	182 static pam_handle_t pamh; / Authentication handle */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	183 static char usrname; / user whose attribute we update */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	184 static adt_session_data_t ah; / audit session handle */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	185 static adt_event_data_t event = NULL; / event to be generated */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	186
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	187 static pam_repository_t auth_rep;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	188 static pwu_repository_t repository;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	189 static pwu_repository_t __REPFILES = { "files", NULL, 0 };
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	190
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	191 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	192 * Function Declarations
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	193 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	194
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	195 extern void setusershell(void);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	196 extern char *getusershell(void);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	197 extern void endusershell(void);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	198
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	199 static void passwd_exit(int retcode) __NORETURN;
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	200 static void rusage(void);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	201 static int ckuid(void);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	202 static int ckarg(int argc, char argv, attrlist attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	203
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	204 static int get_namelist(pwu_repository_t, char **, int );
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	205 static int get_namelist_files(char **, int );
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	206 static int get_namelist_local(char **, int );
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	207 static int get_attr(char , pwu_repository_t , attrlist **);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	208 static void display_attr(char , attrlist );
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	209 static void free_attr(attrlist *);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	210 static void attrlist_add(attrlist *, attrtype, char );
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	211 static void attrlist_reorder(attrlist **);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	212 static char userinput(char , pwu_repository_t *, attrtype);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	213 static char getresponse(char );
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	214
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	215 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	216 * main():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	217 * The main routine will call ckarg() to parse the command line
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	218 * arguments and call the appropriate functions to perform the
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	219 * tasks specified by the arguments. It allows system
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	220 * administrator to add, change and display password attributes.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	221 * Non privileged user can change password or display
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	222 * password attributes which corresponds to their login name.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	223 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	224
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	225 int
55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	226 main(int argc, char *argv[])
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	227 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	228
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	229 int flag;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	230 char **namelist;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	231 int num_user;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	232 int i;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	233 attrlist *attributes = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	234 char *input;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	235 int tries = 1;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	236 int updated_reps;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	237
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	238
14136 9178198c46b5 4026 cleanup warnings in cmd/passwd Igor Kozhukhov <ikozhukhov@gmail.com> parents: 13475 diff changeset	239 if ((prognamep = strrchr(argv[0], '/')) != NULL)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	240 ++prognamep;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	241 else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	242 prognamep = argv[0];
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	243
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	244 auth_rep.type = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	245 auth_rep.scope = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	246 repository.type = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	247 repository.scope = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	248 repository.scope_len = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	249
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	250
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	251 /* initialization for variables, set locale and textdomain */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	252 i = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	253 flag = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	254
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	255 uid = getuid(); /* get the user id */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	256 (void) setlocale(LC_ALL, "");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	257
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	258 #if !defined(TEXT_DOMAIN) /* Should be defined by cc -D */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	259 #define TEXT_DOMAIN "SYS_TEST" /* Use this only if it weren't */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	260 #endif
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	261 (void) textdomain(TEXT_DOMAIN);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	262
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	263 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	264 * ckarg() parses the arguments. In case of an error,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	265 * it sets the retval and returns FAIL (-1).
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	266 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	267
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	268 flag = ckarg(argc, argv, &attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	269 dprintf1("flag is %0x\n", flag);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	270 if (flag == FAIL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	271 passwd_exit(retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	272
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	273 argc -= optind;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	274
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	275 if (argc < 1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	276 if ((usrname = getlogin()) == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	277 struct passwd *pass = getpwuid(uid);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	278 if (pass != NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	279 usrname = pass->pw_name;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	280 else {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	281 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	282 exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	283 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	284 } else if (flag == 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	285 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	286 * If flag is zero, change passwd.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	287 * Otherwise, it will display or
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	288 * modify password aging attributes
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	289 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	290 (void) fprintf(stderr, gettext(MSG_INFO), prognamep,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	291 usrname);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	292 }
11893 ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	293 } else {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	294 usrname = argv[optind];
11893 ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	295 }
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	296
11893 ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	297 if (pam_start("passwd", usrname, &pam_conv, &pamh) != PAM_SUCCESS) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	298 passwd_exit(NOPERM);
11893 ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	299 }
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	300
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	301 auth_rep.type = repository.type;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	302 auth_rep.scope = repository.scope;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	303 auth_rep.scope_len = repository.scope_len;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	304
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	305 if (auth_rep.type != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	306 if (pam_set_item(pamh, PAM_REPOSITORY, (void *)&auth_rep)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	307 != PAM_SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	308 passwd_exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	309 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	310 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	311
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	312 if (flag == SAFLAG) { /* display password attributes for all users */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	313 retval = get_namelist(repository, &namelist, &num_user);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	314 if (retval != SUCCESS)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	315 (void) passwd_exit(retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	316
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	317 if (num_user == 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	318 (void) fprintf(stderr, "%s: %s\n", prognamep,
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	319 gettext(MSG_FF));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	320 passwd_exit(FATAL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	321 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	322 i = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	323 while (namelist[i] != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	324 (void) get_attr(namelist[i], &repository,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	325 &attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	326 (void) display_attr(namelist[i], attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	327 (void) free(namelist[i]);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	328 (void) free_attr(attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	329 i++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	330 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	331 (void) free(namelist);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	332 passwd_exit(SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	333 } else if (flag == SFLAG) { /* display password attributes by user */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	334 if (get_attr(usrname, &repository, &attributes) ==
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	335 PWU_SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	336 (void) display_attr(usrname, attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	337 (void) free_attr(attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	338 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	339 passwd_exit(SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	340 /* NOT REACHED */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	341 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	342
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	343
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	344 switch (pam_authenticate(pamh, 0)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	345 case PAM_SUCCESS:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	346 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	347 case PAM_USER_UNKNOWN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	348 (void) fprintf(stderr, gettext(MSG_UNKNOWN), prognamep,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	349 usrname);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	350 passwd_exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	351 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	352 case PAM_PERM_DENIED:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	353 passwd_exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	354 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	355 case PAM_AUTH_ERR:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	356 (void) fprintf(stderr, gettext(MSG_SORRY), prognamep);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	357 passwd_exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	358 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	359 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	360 /* system error */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	361 passwd_exit(FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	362 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	363 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	364
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	365 if (flag == 0) { /* changing user password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	366 int chk_authtok = 0; /* check password strength */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	367
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	368 dprintf1("call pam_chauthtok() repository name =%s\n",
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	369 repository.type);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	370
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	371 /* Set up for Audit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	372 if (adt_start_session(&ah, NULL, ADT_USE_PROC_DATA) != 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	373 perror("adt_start_session");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	374 passwd_exit(SYSERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	375 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	376 if ((event = adt_alloc_event(ah, ADT_passwd)) == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	377 perror("adt_alloc_event");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	378 passwd_exit(NOMEM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	379 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	380
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	381 /* Don't check account expiration when invoked by root */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	382 if (ckuid() != SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	383 pam_retval = pam_acct_mgmt(pamh, PAM_SILENT);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	384 switch (pam_retval) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	385 case PAM_ACCT_EXPIRED:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	386 (void) fprintf(stderr,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	387 gettext(MSG_ACCOUNT_EXP), usrname);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	388 passwd_exit(EXPIRED);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	389 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	390 case PAM_AUTHTOK_EXPIRED:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	391 (void) fprintf(stderr,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	392 gettext(MSG_AUTHTOK_EXP));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	393 passwd_exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	394 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	395 case PAM_NEW_AUTHTOK_REQD:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	396 /* valid error when changing passwords */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	397 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	398 case PAM_SUCCESS:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	399 /* Ok to change password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	400 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	401 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	402 passwd_exit(NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	403 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	404 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	405
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	406
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	407 pam_retval = PAM_AUTHTOK_ERR;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	408 tries = 1;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	409 if (ckuid() == SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	410 /* bypass password strength checks */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	411 chk_authtok = PAM_NO_AUTHTOK_CHECK;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	412 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	413
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	414 while (pam_retval == PAM_AUTHTOK_ERR && tries <= DEF_ATTEMPTS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	415 if (tries > 1)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	416 (void) printf(gettext(MSG_AGAIN));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	417 pam_retval = pam_chauthtok(pamh, chk_authtok);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	418 if (pam_retval == PAM_TRY_AGAIN) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	419 (void) sleep(1);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	420 pam_retval = pam_chauthtok(pamh, chk_authtok);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	421 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	422 tries++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	423 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	424
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	425 switch (pam_retval) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	426 case PAM_SUCCESS:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	427 retval = SUCCESS;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	428 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	429 case PAM_AUTHTOK_DISABLE_AGING:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	430 retval = BADAGE;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	431 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	432 case PAM_AUTHTOK_LOCK_BUSY:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	433 retval = FBUSY;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	434 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	435 case PAM_TRY_AGAIN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	436 retval = FBUSY;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	437 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	438 case PAM_AUTHTOK_ERR:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	439 case PAM_AUTHTOK_RECOVERY_ERR:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	440 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	441 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	442 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	443 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	444
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	445 (void) passwd_exit(retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	446 /* NOT REACHED */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	447 } else { /* changing attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	448 switch (flag) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	449 case EFLAG: /* changing user password attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	450 input = userinput(usrname, &repository, ATTR_SHELL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	451 if (input)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	452 attrlist_add(&attributes, ATTR_SHELL, input);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	453 else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	454 (void) printf(gettext(MSG_SHELL_UNCHANGED));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	455 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	456 case GFLAG:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	457 input = userinput(usrname, &repository, ATTR_GECOS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	458 if (input)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	459 attrlist_add(&attributes, ATTR_GECOS, input);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	460 else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	461 (void) printf(gettext(MSG_GECOS_UNCHANGED));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	462 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	463 case HFLAG:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	464 input = userinput(usrname, &repository, ATTR_HOMEDIR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	465 if (input)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	466 attrlist_add(&attributes, ATTR_HOMEDIR, input);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	467 else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	468 (void) printf(gettext(MSG_DIR_UNCHANGED));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	469 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	470 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	471
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	472 if (attributes != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	473 retval = __set_authtoken_attr(usrname,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	474 pamh->ps_item[PAM_AUTHTOK].pi_addr,
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	475 &repository, attributes, &updated_reps);
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	476 switch (retval) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	477 case PWU_SUCCESS:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	478 for (i = 1; i <= REP_LAST; i <<= 1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	479 if ((updated_reps & i) == 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	480 continue;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	481 (void) printf(gettext(MSG_SUCCESS),
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	482 prognamep, usrname);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	483 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	484 retval = SUCCESS;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	485 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	486 case PWU_AGING_DISABLED:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	487 retval = BADAGE;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	488 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	489 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	490 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	491 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	492 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	493 } else {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	494 retval = SUCCESS; /* nothing to change won't fail */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	495 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	496 (void) passwd_exit(retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	497 }
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	498 /* NOTREACHED */
55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	499 return (0);
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	500 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	501
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	502 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	503 * Get a line of input from the user.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	504 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	505 * If the line is empty, or the input equals 'oldval', NULL is returned.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	506 * therwise, a malloced string containing the input (minus the trailing
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	507 * newline) is returned.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	508 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	509 char *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	510 getresponse(char *oldval)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	511 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	512 char resp[MAX_INPUT_LEN];
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	513 char *retval = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	514 int resplen;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	515
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	516 (void) fgets(resp, sizeof (resp) - 1, stdin);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	517 resplen = strlen(resp) - 1;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	518 if (resp[resplen] == '\n')
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	519 resp[resplen] = '\0';
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	520 if (*resp != '\0' && strcmp(resp, oldval) != 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	521 retval = strdup(resp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	522 return (retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	523 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	524
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	525 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	526 * char *userinput(item)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	527 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	528 * user conversation function. The old value of attribute "item" is
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	529 * displayed while the user is asked to provide a new value.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	530 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	531 * returns a malloc()-ed string if the user actualy provided input
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	532 * or NULL if the user simply hit return or the input equals the old
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	533 * value (not changed).
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	534 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	535 char *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	536 userinput(char name, pwu_repository_t rep, attrtype type)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	537 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	538 attrlist oldattr;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	539 char oldval; / shorthand for oldattr.data.val_s */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	540 char valid; / points to valid shells */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	541 char *response;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	542 char *cp;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	543
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	544 oldattr.type = type;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	545 oldattr.next = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	546
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	547 if (__get_authtoken_attr(name, rep, &oldattr) != PWU_SUCCESS)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	548 passwd_exit(FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	549
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	550 oldval = oldattr.data.val_s;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	551
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	552 if (type == ATTR_SHELL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	553 /* No current shell: set DEFSHL as default choice */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	554 if (*oldval == '\0') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	555 free(oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	556 oldval = strdup(DEFSHL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	557 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	558
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	559 if (ckuid() != SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	560 /* User must currently have a valid shell */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	561 setusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	562 valid = getusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	563 while (valid && strcmp(valid, oldval) != 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	564 valid = getusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	565 endusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	566
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	567 if (valid == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	568 (void) fprintf(stderr, gettext(MSG_RS), oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	569 free(oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	570 return (NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	571 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	572 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	573 (void) printf(gettext(MSG_OLDSHELL), oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	574 (void) printf(gettext(MSG_NEWSHELL));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	575 (void) fflush(stdout);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	576
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	577 response = getresponse(oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	578 free(oldval); /* We don't need the old value anymore */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	579
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	580 if (response == NULL \|\| *response == '\0')
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	581 return (NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	582
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	583 /* Make sure new shell is listed */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	584 setusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	585 valid = getusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	586 while (valid) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	587 char *cp;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	588
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	589 /* Allow user to give shell without path */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	590 if (*response == '/') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	591 cp = valid;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	592 } else {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	593 if ((cp = strrchr(valid, '/')) == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	594 cp = valid;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	595 else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	596 cp++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	597 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	598 if (strcmp(cp, response) == 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	599 if (*response != '/') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	600 /* take shell name including path */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	601 free(response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	602 response = strdup(valid);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	603 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	604 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	605 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	606 valid = getusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	607 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	608 endusershell();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	609
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	610 if (valid == NULL) { /* No valid shell matches */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	611 (void) fprintf(stderr, gettext(MSG_UNACCEPT), response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	612 return (NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	613 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	614
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	615 if (access(response, X_OK) < 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	616 (void) fprintf(stderr, gettext(MSG_UNAVAIL), response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	617 return (response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	618 /* NOT REACHED */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	619 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	620 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	621 * if type == SHELL, we have returned by now. Only GECOS and
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	622 * HOMEDIR get to this point.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	623 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	624 (void) printf(gettext(MSG_INPUTHDR));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	625
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	626 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	627 * PRE: oldval points to malloced string with Old Value
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	628 * INV: oldval remains unchanged
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	629 * POST:response points to valid string or NULL.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	630 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	631 for (;;) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	632 if (type == ATTR_GECOS)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	633 (void) printf(gettext(MSG_NAME), oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	634 else if (type == ATTR_HOMEDIR)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	635 (void) printf(gettext(MSG_HOMEDIR), oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	636
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	637 response = getresponse(oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	638
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	639 if (response && strcmp(response, "none") == 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	640 *response = '\0';
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	641
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	642 /* No-change or empty string are OK */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	643 if (response == NULL \|\| *response == '\0')
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	644 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	645
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	646 /* Check for illegal characters */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	647 if (strchr(response, ':')) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	648 (void) fprintf(stderr, "%s", gettext(MSG_COLON));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	649 free(response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	650 } else if (strlen(response) > MAX_INPUT_LEN - 1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	651 (void) fprintf(stderr, gettext(MSG_MAXLEN),
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	652 MAX_INPUT_LEN);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	653 free(response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	654 } else {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	655 /* don't allow control characters */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	656 for (cp = response; *cp >= 040; cp++)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	657 ;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	658 if (*cp != '\0') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	659 (void) fprintf(stderr, gettext(MSG_CONTROL));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	660 free(response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	661 } else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	662 break; /* response is a valid string */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	663 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	664 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	665 * We only get here if the input was invalid.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	666 * In that case, we again ask the user for input.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	667 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	668 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	669 free(oldval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	670 return (response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	671 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	672 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	673 * ckarg():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	674 * This function parses and verifies the
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	675 * arguments. It takes three parameters:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	676 * argc => # of arguments
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	677 * argv => pointer to an argument
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	678 * attrlist => pointer to list of password attributes
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	679 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	680
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	681 static int
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	682 ckarg(int argc, char argv, attrlist attributes)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	683 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	684 extern char *optarg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	685 char *char_p;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	686 int opt;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	687 int flag;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	688
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	689 flag = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	690
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	691 while ((opt = getopt(argc, argv, "r:aldefghsux:n:w:N")) != EOF) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	692 switch (opt) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	693
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	694 case 'r': /* Repository Specified */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	695 /* repository: this option should be specified first */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	696
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	697 if (repository.type != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	698 (void) fprintf(stderr, gettext(
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	699 "Repository is already defined or specified.\n"));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	700 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	701 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	702 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	703 }
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	704 if (strcmp(optarg, "nis") == 0) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	705 repository.type = optarg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	706 } else if (strcmp(optarg, "ldap") == 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	707 repository.type = optarg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	708 } else if (strcmp(optarg, "files") == 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	709 repository.type = optarg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	710 } else {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	711 (void) fprintf(stderr,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	712 gettext("invalid repository: %s\n"),
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	713 optarg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	714 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	715 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	716 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	717 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	718 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	719
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	720 case 'd': /* Delete Auth Token */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	721 /* if no repository the default for -d is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	722 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	723 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	724
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	725 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	726 * Delete the password - only privileged processes
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	727 * can execute this for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	728 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	729 if (IS_FILES(repository) == FALSE &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	730 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	731 (void) fprintf(stderr, gettext(
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	732 "-d only applies to files "
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	733 "or ldap repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	734 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	735 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	736 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	737 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	738
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	739 if (ckuid() != SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	740 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	741 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	742 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	743 if (flag & (LFLAG\|SAFLAG\|DFLAG\|XFLAG\|UFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	744 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	745 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	746 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	747 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	748 flag \|= DFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	749 attrlist_add(attributes, ATTR_PASSWD, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	750 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	751
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	752 case 'N': /* set account to be "no login" */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	753
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	754 /* if no repository the default for -N is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	755 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	756 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	757
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	758 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	759 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	760 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	761 "-N only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	762 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	763 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	764 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	765 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	766 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	767
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	768 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	769 * Only privileged processes can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	770 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	771 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	772 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	773 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	774 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	775 if (flag & (MUTEXFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	776 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	777 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	778 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	779 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	780 flag \|= XFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	781 attrlist_add(attributes, ATTR_NOLOGIN_ACCOUNT, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	782 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	783
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	784 case 'l': /* lock the password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	785
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	786 /* if no repository the default for -l is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	787 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	788 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	789
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	790 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	791 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	792 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	793 "-l only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	794 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	795 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	796 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	797 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	798 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	799
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	800 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	801 * Only privileged processes can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	802 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	803 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	804 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	805 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	806 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	807 if (flag & (MUTEXFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	808 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	809 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	810 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	811 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	812 flag \|= LFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	813 attrlist_add(attributes, ATTR_LOCK_ACCOUNT, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	814 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	815
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	816 case 'u': /* unlock the password */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	817
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	818 /* if no repository the default for -u is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	819 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	820 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	821
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	822 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	823 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	824 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	825 "-u only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	826 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	827 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	828 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	829 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	830 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	831
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	832 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	833 * Only privileged processes can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	834 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	835 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	836 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	837 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	838 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	839 if (flag & (MUTEXFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	840 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	841 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	842 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	843 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	844 flag \|= UFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	845 attrlist_add(attributes, ATTR_UNLOCK_ACCOUNT, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	846 attrlist_add(attributes, ATTR_RST_FAILED_LOGINS, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	847 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	848
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	849 case 'x': /* set the max date */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	850
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	851 /* if no repository the default for -x is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	852 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	853 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	854
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	855 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	856 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	857 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	858 "-x only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	859 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	860 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	861 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	862 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	863 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	864
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	865 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	866 * Only privileged process can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	867 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	868 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	869 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	870 (ckuid() != SUCCESS)) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	871 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	872 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	873 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	874 if (flag & (SAFLAG\|MFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	875 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	876 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	877 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	878 flag \|= MFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	879 if ((int)strlen(optarg) <= 0 \|\|
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	880 (maxdate = strtol(optarg, &char_p, 10)) < -1 \|\|
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	881 *char_p != '\0') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	882 (void) fprintf(stderr, "%s: %s -x\n",
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	883 prognamep, gettext(MSG_NV));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	884 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	885 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	886 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	887 attrlist_add(attributes, ATTR_MAX, optarg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	888 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	889
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	890 case 'n': /* set the min date */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	891
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	892 /* if no repository the default for -n is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	893 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	894 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	895
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	896 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	897 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	898 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	899 "-n only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	900 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	901 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	902 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	903 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	904 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	905
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	906 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	907 * Only privileged process can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	908 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	909 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	910 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	911 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	912 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	913 if (flag & (SAFLAG\|NFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	914 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	915 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	916 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	917 flag \|= NFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	918 if ((int)strlen(optarg) <= 0 \|\|
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	919 (strtol(optarg, &char_p, 10)) < 0 \|\|
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	920 *char_p != '\0') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	921 (void) fprintf(stderr, "%s: %s -n\n",
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	922 prognamep, gettext(MSG_NV));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	923 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	924 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	925 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	926 attrlist_add(attributes, ATTR_MIN, optarg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	927 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	928
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	929 case 'w': /* set the warning field */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	930
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	931 /* if no repository the default for -w is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	932 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	933 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	934
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	935 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	936 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	937 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	938 "-w only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	939 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	940 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	941 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	942 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	943 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	944
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	945 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	946 * Only privileged process can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	947 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	948 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	949 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	950 (ckuid() != SUCCESS)) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	951 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	952 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	953 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	954 if (flag & (SAFLAG\|WFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	955 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	956 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	957 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	958 flag \|= WFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	959 if ((int)strlen(optarg) <= 0 \|\|
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	960 (strtol(optarg, &char_p, 10)) < 0 \|\|
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	961 *char_p != '\0') {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	962 (void) fprintf(stderr, "%s: %s -w\n",
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	963 prognamep, gettext(MSG_NV));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	964 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	965 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	966 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	967 attrlist_add(attributes, ATTR_WARN, optarg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	968 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	969
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	970 case 's': /* display password attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	971
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	972 /* if no repository the default for -s is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	973 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	974 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	975
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	976
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	977 /* display password attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	978 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	979 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	980 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	981 "-s only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	982 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	983 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	984 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	985 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	986 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	987
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	988 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	989 * Only privileged process can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	990 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	991 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	992 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	993 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	994 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	995 if (flag && (flag != AFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	996 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	997 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	998 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	999 flag \|= SFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1000 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1001
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1002 case 'a': /* display password attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1003
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1004 /* if no repository the default for -a is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1005 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1006 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1007
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1008 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1009 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1010 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1011 "-a only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1012 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1013 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1014 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1015 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1016 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1017
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1018 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1019 * Only privileged process can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1020 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1021 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1022 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1023 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1024 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1025 if (flag && (flag != SFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1026 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1027 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1028 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1029 flag \|= AFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1030 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1031
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1032 case 'f': /* expire password attributes */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1033
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1034 /* if no repository the default for -f is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1035 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1036 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1037
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1038 if (IS_FILES(repository) == FALSE &&
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1039 IS_LDAP(repository) == FALSE) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1040 (void) fprintf(stderr, gettext(
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1041 "-f only applies to files or ldap "
b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1042 "repository\n"));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1043 rusage(); /* exit */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1044 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1045 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1046 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1047
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1048 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1049 * Only privileged process can execute this
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1050 * for FILES or LDAP
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1051 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1052 if ((IS_FILES(repository) \|\| IS_LDAP(repository)) &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1053 ((retval = ckuid()) != SUCCESS))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1054 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1055 if (flag & (SAFLAG\|FFLAG\|NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1056 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1057 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1058 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1059 flag \|= FFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1060 attrlist_add(attributes, ATTR_EXPIRE_PASSWORD, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1061 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1062
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1063 case 'e': /* change login shell */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1064
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1065 /* if no repository the default for -e is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1066 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1067 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1068
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1069 if (flag & (EFLAG\|SAFLAG\|AGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1070 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1071 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1072 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1073 flag \|= EFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1074 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1075
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1076 case 'g': /* change gecos information */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1077
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1078 /* if no repository the default for -g is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1079 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1080 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1081
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1082 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1083 * Only privileged process can execute this
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1084 * for FILES
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1085 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1086 if (IS_FILES(repository) && (ckuid() != SUCCESS)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1087 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1088 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1089 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1090 if (flag & (GFLAG\|SAFLAG\|AGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1091 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1092 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1093 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1094 flag \|= GFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1095 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1096
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1097 case 'h': /* change home dir */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1098
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1099 /* if no repository the default for -h is files */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1100 if (repository.type == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1101 repository = __REPFILES;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1102 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1103 * Only privileged process can execute this
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1104 * for FILES
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1105 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1106 if (IS_FILES(repository) && (ckuid() != SUCCESS)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1107 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1108 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1109 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1110 if (IS_NIS(repository)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1111 (void) fprintf(stderr, "%s\n",
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1112 gettext(MSG_NIS_HOMEDIR));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1113 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1114 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1115 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1116
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1117 if (flag & (HFLAG\|SAFLAG\|AGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1118 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1119 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1120 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1121 flag \|= HFLAG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1122 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1123
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1124 case '?':
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1125 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1126 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1127 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1128 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1129 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1130
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1131 argc -= optind;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1132 if (argc > 1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1133 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1134 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1135 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1136 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1137
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1138 /* Make sure (EXPIRE comes after (MAX comes after MIN)) */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1139 attrlist_reorder(attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1140
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1141 /* If no options are specified or only the show option */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1142 /* is specified, return because no option error checking */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1143 /* is needed */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1144 if (!flag \|\| (flag == SFLAG))
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1145 return (flag);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1146
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1147 /* AFLAG must be used with SFLAG */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1148 if (flag == AFLAG) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1149 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1150 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1151 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1152 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1153
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1154 if (flag != SAFLAG && argc < 1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1155 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1156 * user name is not specified (argc<1), it can't be
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1157 * aging info update.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1158 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1159 if (!(flag & NONAGEFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1160 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1161 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1162 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1163 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1164 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1165
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1166 /* user name(s) may not be specified when SAFLAG is used. */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1167 if (flag == SAFLAG && argc >= 1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1168 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1169 retval = BADSYN;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1170 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1171 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1172
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1173 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1174 * If aging is being turned off (maxdate == -1), mindate may not
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1175 * be specified.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1176 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1177 if ((maxdate == -1) && (flag & NFLAG)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1178 (void) fprintf(stderr, "%s: %s -n\n",
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1179 prognamep, gettext(MSG_NV));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1180 retval = BADOPT;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1181 return (FAIL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1182 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1183
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1184 return (flag);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1185 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1186
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1187 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1188 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1189 * ckuid():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1190 * This function returns SUCCESS if the caller is root, else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1191 * it returns NOPERM.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1192 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1193 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1194
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1195 static int
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	1196 ckuid(void)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1197 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1198 if (uid != 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1199 return (retval = NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1200 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1201 return (SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1202 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1203
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1204
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1205 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1206 * get_attr()
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1207 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1208 int
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1209 get_attr(char username, pwu_repository_t repository, attrlist **attributes)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1210 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1211 int res;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1212
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1213 attrlist_add(attributes, ATTR_PASSWD, NULL);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1214 attrlist_add(attributes, ATTR_LSTCHG, "0");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1215 attrlist_add(attributes, ATTR_MIN, "0");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1216 attrlist_add(attributes, ATTR_MAX, "0");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1217 attrlist_add(attributes, ATTR_WARN, "0");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1218
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1219 res = __get_authtoken_attr(username, repository, *attributes);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1220
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1221 if (res == PWU_SUCCESS) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1222 retval = SUCCESS;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1223 return (PWU_SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1224 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1225
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1226 if (res == PWU_NOT_FOUND)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1227 (void) fprintf(stderr, gettext(MSG_UNKNOWN), prognamep,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1228 username);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1229
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1230 retval = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1231 passwd_exit(retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1232 /NOTREACHED/
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1233 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1234
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1235 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1236 * display_attr():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1237 * This function prints out the password attributes of a usr
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1238 * onto standand output.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1239 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1240 void
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1241 display_attr(char usrname, attrlist attributes)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1242 {
14136 9178198c46b5 4026 cleanup warnings in cmd/passwd Igor Kozhukhov <ikozhukhov@gmail.com> parents: 13475 diff changeset	1243 char *status = NULL;
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1244 char *passwd;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1245 long lstchg;
14136 9178198c46b5 4026 cleanup warnings in cmd/passwd Igor Kozhukhov <ikozhukhov@gmail.com> parents: 13475 diff changeset	1246 int min = 0, max = 0, warn = 0;
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1247
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1248 while (attributes) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1249 switch (attributes->type) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1250 case ATTR_PASSWD:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1251 passwd = attributes->data.val_s;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1252 if (passwd == NULL \|\| *passwd == '\0')
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1253 status = "NP ";
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1254 else if (strncmp(passwd, LOCKSTRING,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1255 sizeof (LOCKSTRING)-1) == 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1256 status = "LK ";
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1257 else if (strncmp(passwd, NOLOGINSTRING,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1258 sizeof (NOLOGINSTRING)-1) == 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1259 status = "NL ";
446 daa9de9e340c PSARC/2005/293 passwd -s Stable parsable output gww parents: 108 diff changeset	1260 else if ((strlen(passwd) == 13 && passwd[0] != '$') \|\|
daa9de9e340c PSARC/2005/293 passwd -s Stable parsable output gww parents: 108 diff changeset	1261 passwd[0] == '$')
daa9de9e340c PSARC/2005/293 passwd -s Stable parsable output gww parents: 108 diff changeset	1262 status = "PS ";
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1263 else
446 daa9de9e340c PSARC/2005/293 passwd -s Stable parsable output gww parents: 108 diff changeset	1264 status = "UN ";
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1265 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1266 case ATTR_LSTCHG:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1267 lstchg = attributes->data.val_i * DAY;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1268 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1269 case ATTR_MIN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1270 min = attributes->data.val_i;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1271 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1272 case ATTR_MAX:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1273 max = attributes->data.val_i;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1274 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1275 case ATTR_WARN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1276 warn = attributes->data.val_i;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1277 break;
14136 9178198c46b5 4026 cleanup warnings in cmd/passwd Igor Kozhukhov <ikozhukhov@gmail.com> parents: 13475 diff changeset	1278 default:
9178198c46b5 4026 cleanup warnings in cmd/passwd Igor Kozhukhov <ikozhukhov@gmail.com> parents: 13475 diff changeset	1279 break;
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1280 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1281 attributes = attributes->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1282 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1283 (void) fprintf(stdout, "%-8s ", usrname);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1284
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1285 if (status)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1286 (void) fprintf(stdout, "%s ", status);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1287
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1288 if (max != -1) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1289 if (lstchg == 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1290 (void) fprintf(stdout, "00/00/00 ");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1291 } else {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1292 struct tm *tmp;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1293 tmp = gmtime(&lstchg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1294 (void) fprintf(stdout, "%.2d/%.2d/%.2d ",
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1295 tmp->tm_mon + 1,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1296 tmp->tm_mday,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1297 tmp->tm_year % 100);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1298 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1299 (void) fprintf(stdout, (min >= 0) ? "%4d " : " ", min);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1300 (void) fprintf(stdout, "%4d ", max);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1301 (void) fprintf(stdout, (warn > 0) ? "%4d " : " ", warn);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1302 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1303 (void) fprintf(stdout, "\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1304 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1305
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1306 void
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1307 free_attr(attrlist *attributes)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1308 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1309 while (attributes) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1310 if (attributes->type == ATTR_PASSWD)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1311 free(attributes->data.val_s);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1312 attributes = attributes->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1313 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1314 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1315
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1316 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1317 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1318 * get_namelist_files():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1319 * This function gets a list of user names on the system from
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1320 * the /etc/passwd file.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1321 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1322 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1323 int
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	1324 get_namelist_files(char **namelist_p, int num_user)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1325 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1326 FILE *pwfp;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1327 struct passwd *pwd;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1328 int max_user;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1329 int nuser;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1330 char **nl;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1331
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1332 nuser = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1333 errno = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1334 pwd = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1335
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1336 if ((pwfp = fopen(PASSWD, "r")) == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1337 return (NOPERM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1338
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1339 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1340 * find out the actual number of entries in the PASSWD file
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1341 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1342 max_user = 1; /* need one slot for terminator NULL */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1343 while ((pwd = fgetpwent(pwfp)) != NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1344 max_user++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1345
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1346 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1347 * reset the file stream pointer
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1348 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1349 rewind(pwfp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1350
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1351 nl = (char *)calloc(max_user, (sizeof (char )));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1352 if (nl == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1353 (void) fclose(pwfp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1354 return (FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1355 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1356
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1357 while ((pwd = fgetpwent(pwfp)) != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1358 if ((nl[nuser] = strdup(pwd->pw_name)) == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1359 (void) fclose(pwfp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1360 return (FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1361 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1362 nuser++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1363 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1364
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1365 nl[nuser] = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1366 *num_user = nuser;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1367 *namelist_p = nl;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1368 (void) fclose(pwfp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1369 return (SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1370 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1371
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1372 /*
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1373 * get_namelist_local
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1374 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1375 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1376
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1377 /*
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1378 * Our private version of the switch frontend for getspent. We want
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1379 * to search just the ldap sp file, so we want to bypass
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1380 * normal nsswitch.conf based processing. This implementation
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1381 * compatible with version 2 of the name service switch.
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1382 */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1383 #define NSS_LDAP_ONLY "ldap"
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1384
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1385 extern int str2spwd(const char , int, void , char *, int);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1386
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1387 static DEFINE_NSS_DB_ROOT(db_root);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1388 static DEFINE_NSS_GETENT(context);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1389
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1390 static char *local_config;
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1391 static void
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1392 _lc_nss_initf_shadow(nss_db_params_t *p)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1393 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1394 p->name = NSS_DBNAM_SHADOW;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1395 p->config_name = NSS_DBNAM_PASSWD; /* Use config for "passwd" */
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1396 p->default_config = local_config; /* Use ldap only */
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1397 p->flags = NSS_USE_DEFAULT_CONFIG;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1398 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1399
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1400 static void
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1401 _lc_setspent(void)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1402 {
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1403 nss_setent(&db_root, _lc_nss_initf_shadow, &context);
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1404 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1405
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1406 static void
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1407 _lc_endspent(void)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1408 {
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1409 nss_endent(&db_root, _lc_nss_initf_shadow, &context);
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1410 nss_delete(&db_root);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1411 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1412
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1413 static struct spwd *
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1414 _lc_getspent_r(struct spwd result, char buffer, int buflen)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1415 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1416 nss_XbyY_args_t arg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1417 char *nam;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1418
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1419 /* In getXXent_r(), protect the unsuspecting caller from +/- entries */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1420
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1421 do {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1422 NSS_XbyY_INIT(&arg, result, buffer, buflen, str2spwd);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1423 /* No key to fill in */
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1424 (void) nss_getent(&db_root, _lc_nss_initf_shadow, &context,
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1425 &arg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1426 } while (arg.returnval != 0 &&
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1427 (nam = ((struct spwd *)arg.returnval)->sp_namp) != 0 &&
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1428 (nam == '+' \|\| nam == '-'));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1429
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1430 return (struct spwd *)NSS_XbyY_FINI(&arg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1431 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1432
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1433 static nss_XbyY_buf_t *buffer;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1434
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1435 static struct spwd *
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1436 _lc_getspent(void)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1437 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1438 nss_XbyY_buf_t *b;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1439
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1440 b = NSS_XbyY_ALLOC(&buffer, sizeof (struct spwd), NSS_BUFLEN_SHADOW);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1441
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1442 return (b == 0 ? 0 : _lc_getspent_r(b->result, b->buffer, b->buflen));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1443 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1444
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1445 int
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1446 get_namelist_local(char **namelist_p, int num_user)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1447 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1448 int nuser = 0;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1449 int alloced = 100;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1450 char **nl;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1451 struct spwd *p;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1452
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1453
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1454 if ((nl = calloc(alloced, sizeof (*nl))) == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1455 return (FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1456
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1457 (void) _lc_setspent();
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1458 while ((p = _lc_getspent()) != NULL) {
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1459 if ((nl[nuser] = strdup(p->sp_namp)) == NULL) {
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1460 _lc_endspent();
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1461 return (FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1462 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1463 if (++nuser == alloced) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1464 alloced += 100;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1465 nl = realloc(nl, alloced * (sizeof (*nl)));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1466 if (nl == NULL) {
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1467 _lc_endspent();
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1468 return (FMERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1469 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1470 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1471 }
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1472 (void) _lc_endspent();
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1473 nl[nuser] = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1474
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1475 *namelist_p = nl;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1476 num_user = nuser; / including NULL */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1477
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1478 return (SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1479 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1480
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1481 int
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1482 get_namelist(pwu_repository_t repository, char **namelist, int num_user)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1483 {
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1484 if (IS_LDAP(repository)) {
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1485 local_config = NSS_LDAP_ONLY;
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1486 return (get_namelist_local(namelist, num_user));
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1487 } else if (IS_FILES(repository))
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1488 return (get_namelist_files(namelist, num_user));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1489
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1490 rusage();
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1491 return (BADSYN);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1492 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1493
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1494 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1495 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1496 * passwd_exit():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1497 * This function will call exit() with appropriate exit code
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1498 * according to the input "retcode" value.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1499 * It also calls pam_end() to clean-up buffers before exit.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1500 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1501 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1502
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1503 void
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	1504 passwd_exit(int retcode)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1505 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1506
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1507 if (pamh)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1508 (void) pam_end(pamh, pam_retval);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1509
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1510 switch (retcode) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1511 case SUCCESS:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1512 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1513 case NOPERM:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1514 (void) fprintf(stderr, "%s\n", gettext(MSG_NP));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1515 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1516 case BADOPT:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1517 (void) fprintf(stderr, "%s\n", gettext(MSG_BS));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1518 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1519 case FMERR:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1520 (void) fprintf(stderr, "%s\n", gettext(MSG_FE));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1521 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1522 case FATAL:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1523 (void) fprintf(stderr, "%s\n", gettext(MSG_FF));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1524 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1525 case FBUSY:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1526 (void) fprintf(stderr, "%s\n", gettext(MSG_FB));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1527 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1528 case BADSYN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1529 (void) fprintf(stderr, "%s\n", gettext(MSG_NV));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1530 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1531 case BADAGE:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1532 (void) fprintf(stderr, "%s\n", gettext(MSG_AD));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1533 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1534 case NOMEM:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1535 (void) fprintf(stderr, "%s\n", gettext(MSG_NM));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1536 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1537 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1538 (void) fprintf(stderr, "%s\n", gettext(MSG_NP));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1539 retcode = NOPERM;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1540 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1541 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1542 /* write password record */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1543 if (event != NULL) {
11893 ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1544 struct passwd *pass;
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1545
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1546 if ((pass = getpwnam(usrname)) == NULL) {
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1547 /* unlikely to ever get here, but ... */
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1548 event->adt_passwd.username = usrname;
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1549 } else if (pass->pw_uid != uid) {
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1550 /* save target user */
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1551 event->adt_passwd.uid = pass->pw_uid;
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1552 event->adt_passwd.username = pass->pw_name;
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1553 }
ff6e80260186 6914628 Implement the user object audit token PSARC/2010/001 User object audit token gww <gww@eng.sun.com> parents: 11262 diff changeset	1554
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1555 if (adt_put_event(event,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1556 retcode == SUCCESS ? ADT_SUCCESS : ADT_FAILURE,
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1557 retcode == SUCCESS ? ADT_SUCCESS : ADT_FAIL_PAM +
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1558 pam_retval) != 0) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1559 adt_free_event(event);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1560 (void) adt_end_session(ah);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1561 perror("adt_put_event");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1562 exit(retcode);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1563 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1564 adt_free_event(event);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1565 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1566 (void) adt_end_session(ah);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1567 exit(retcode);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1568 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1569
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1570 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1571 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1572 * passwd_conv():
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1573 * This is the conv (conversation) function called from
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1574 * a PAM authentication module to print error messages
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1575 * or garner information from the user.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1576 *
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1577 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1578
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1579 /ARGSUSED/
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1580 static int
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	1581 passwd_conv(int num_msg, struct pam_message **msg,
55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	1582 struct pam_response *response, void appdata_ptr)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1583 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1584 struct pam_message *m;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1585 struct pam_response *r;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1586 char *temp;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1587 int k, i;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1588
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1589 if (num_msg <= 0)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1590 return (PAM_CONV_ERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1591
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1592 response = (struct pam_response )calloc(num_msg,
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1593 sizeof (struct pam_response));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1594 if (*response == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1595 return (PAM_BUF_ERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1596
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1597 k = num_msg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1598 m = *msg;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1599 r = *response;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1600 while (k--) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1601
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1602 switch (m->msg_style) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1603
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1604 case PAM_PROMPT_ECHO_OFF:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1605 temp = getpassphrase(m->msg);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1606 if (temp != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1607 r->resp = strdup(temp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1608 (void) memset(temp, 0, strlen(temp));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1609 if (r->resp == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1610 /* free responses */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1611 r = *response;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1612 for (i = 0; i < num_msg; i++, r++) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1613 if (r->resp)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1614 free(r->resp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1615 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1616 free(*response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1617 *response = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1618 return (PAM_BUF_ERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1619 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1620 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1621 m++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1622 r++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1623 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1624
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1625 case PAM_PROMPT_ECHO_ON:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1626 if (m->msg != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1627 (void) fputs(m->msg, stdout);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1628 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1629 r->resp = (char *)calloc(PAM_MAX_RESP_SIZE,
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1630 sizeof (char));
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1631 if (r->resp == NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1632 /* free responses */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1633 r = *response;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1634 for (i = 0; i < num_msg; i++, r++) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1635 if (r->resp)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1636 free(r->resp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1637 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1638 free(*response);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1639 *response = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1640 return (PAM_BUF_ERR);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1641 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1642 if (fgets(r->resp, PAM_MAX_RESP_SIZE-1, stdin)) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1643 int len = strlen(r->resp);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1644 if (r->resp[len-1] == '\n')
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1645 r->resp[len-1] = '\0';
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1646 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1647 m++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1648 r++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1649 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1650
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1651 case PAM_ERROR_MSG:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1652 if (m->msg != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1653 (void) fputs(m->msg, stderr);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1654 (void) fputs("\n", stderr);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1655 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1656 m++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1657 r++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1658 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1659 case PAM_TEXT_INFO:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1660 if (m->msg != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1661 (void) fputs(m->msg, stdout);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1662 (void) fputs("\n", stdout);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1663 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1664 m++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1665 r++;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1666 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1667
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1668 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1669 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1670 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1671 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1672 return (PAM_SUCCESS);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1673 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1674
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1675 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1676 * Utilities Functions
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1677 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1678
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1679 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1680 * int attrlist_add(attrlist *l, attrtype type, char val)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1681 * add an item, with type "type" and value "val", at the tail of list l.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1682 * This functions exits the application on OutOfMem error.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1683 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1684 void
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1685 attrlist_add(attrlist *l, attrtype type, char val)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1686 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1687 attrlist **w;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1688
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1689 /* tail insert */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1690 for (w = l; w != NULL; w = &(w)->next)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1691 ;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1692
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1693 if ((w = malloc(sizeof (*w))) == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1694 passwd_exit(NOMEM);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1695
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1696 (*w)->type = type;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1697 (*w)->next = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1698
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1699 switch (type) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1700 case ATTR_MIN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1701 case ATTR_WARN:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1702 case ATTR_MAX:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1703 (*w)->data.val_i = atoi(val);
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1704 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1705 default:
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1706 (*w)->data.val_s = val;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1707 break;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1708 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1709 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1710
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1711 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1712 * attrlist_reorder(attrlist **l)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1713 * Make sure that
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1714 * - if EXPIRE and MAX or MIN is set, EXPIRE comes after MAX/MIN
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1715 * - if both MIN and MAX are set, MAX comes before MIN.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1716 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1717
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1718 static void
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1719 attrlist_reorder(attrlist **l)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1720 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1721 attrlist **w;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1722 attrlist exp = NULL; / ATTR_EXPIRE_PASSWORD, if found */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1723 attrlist max = NULL; / ATTR_MAX, if found */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1724
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1725 if (l == NULL \|\| (l)->next == NULL)
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1726 return; /* order of list with <= one item is ok */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1727
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1728 /*
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1729 * We simply walk the list, take off the EXPIRE and MAX items if
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1730 * they appear, and put them (first MAX, them EXPIRE) at the end
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1731 * of the list.
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1732 */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1733 w = l;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1734 while (*w != NULL) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1735 if ((*w)->type == ATTR_EXPIRE_PASSWORD) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1736 exp = *w;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1737 w = (w)->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1738 } else if ((*w)->type == ATTR_MAX) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1739 max = *w;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1740 w = (w)->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1741 } else
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1742 w = &(*w)->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1743 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1744
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1745 /* 'w' points to the address of the 'next' field of the last element */
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1746
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1747 if (max) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1748 *w = max;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1749 w = &max->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1750 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1751 if (exp) {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1752 *w = exp;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1753 w = &exp->next;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1754 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1755 *w = NULL;
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1756 }
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1757
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1758 void
108 55ad989fc90b 6271160 gcc and cmd/groups don't get along basabi parents: 0 diff changeset	1759 rusage(void)
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1760 {
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1761
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1762 #define MSG(a) (void) fprintf(stderr, gettext((a)));
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1763
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1764 MSG("usage:\n");
11262 b7ebfbf2359e 6874309 Remove NIS+ from Solaris Raja Andra <Rajagopal.Andra@Sun.COM> parents: 8821 diff changeset	1765 MSG("\tpasswd [-r files \| -r nis \| -r ldap] [name]\n");
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1766 MSG("\tpasswd [-r files] [-egh] [name]\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1767 MSG("\tpasswd [-r files] -sa\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1768 MSG("\tpasswd [-r files] -s [name]\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1769 MSG("\tpasswd [-r files] [-d\|-l\|-N\|-u] [-f] [-n min] [-w warn] "
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1770 "[-x max] name\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1771 MSG("\tpasswd -r nis [-eg] [name]\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1772 MSG("\t\t[-x max] name\n");
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1773 MSG("\tpasswd -r ldap [-egh] [name]\n");
8821 7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1774 MSG("\tpasswd -r ldap -sa\n");
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1775 MSG("\tpasswd -r ldap -s [name]\n");
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1776 MSG("\tpasswd -r ldap [-l\|-N\|-u] [-f] [-n min] [-w warn] "
7eb613e55044 PSARC 2008/745 nss_ldap shadowAccount support Michen Chang <Michen.Chang@Sun.COM> parents: 446 diff changeset	1777 "[-x max] name\n");
0 68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1778 #undef MSG
68f95e015346 OpenSolaris Launch stevel@tonic-gate parents: diff changeset	1779 }

Mercurial > illumos > illumos-gate

annotate usr/src/cmd/passwd/passwd.c @ 14136:9178198c46b5