]> git.saurik.com Git - apple/system_cmds.git/blob - chkpasswd.tproj/ds_passwd.c
projects / apple / system_cmds.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
system_cmds-300.tar.gz
[apple/system_cmds.git] / chkpasswd.tproj / ds_passwd.c
1 /*
2 * Copyright (c) 1999 Apple Computer, Inc. All rights reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * Copyright (c) 1999-2003 Apple Computer, Inc. All Rights Reserved.
7 *
8 * This file contains Original Code and/or Modifications of Original Code
9 * as defined in and that are subject to the Apple Public Source License
10 * Version 2.0 (the 'License'). You may not use this file except in
11 * compliance with the License. Please obtain a copy of the License at
12 * http://www.opensource.apple.com/apsl/ and read it before using this
13 * file.
14 *
15 * The Original Code and all software distributed under the License are
16 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
17 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
18 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
19 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
20 * Please see the License for the specific language governing rights and
21 * limitations under the License.
22 *
23 * @APPLE_LICENSE_HEADER_END@
24 */
25 /*
26 * Copyright (c) 1998 by Apple Computer, Inc.
27 * Portions Copyright (c) 1988 by Sun Microsystems, Inc.
28 * Portions Copyright (c) 1988 The Regents of the University of California.
29 * All rights reserved.
30 *
31 * Redistribution and use in source and binary forms, with or without
32 * modification, are permitted provided that the following conditions
33 * are met:
34 * 1. Redistributions of source code must retain the above copyright
35 * notice, this list of conditions and the following disclaimer.
36 * 2. Redistributions in binary form must reproduce the above copyright
37 * notice, this list of conditions and the following disclaimer in the
38 * documentation and/or other materials provided with the distribution.
39 * 3. All advertising materials mentioning features or use of this software
40 * must display the following acknowledgement:
41 * This product includes software developed by the University of
42 * California, Berkeley and its contributors.
43 * 4. Neither the name of the University nor the names of its contributors
44 * may be used to endorse or promote products derived from this software
45 * without specific prior written permission.
46 *
47 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
48 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
49 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
50 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
51 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
52 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
53 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
54 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
55 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
56 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
57 * SUCH DAMAGE.
58 */
59
60 #include <stdio.h>
61 #include <stdlib.h>
62 #include <unistd.h>
63 #include <string.h>
64 #include <pwd.h>
65 #include <netinet/in.h>
66 #include <rpc/types.h>
67 #include <rpc/xdr.h>
68 #include <rpc/rpc.h>
69 #include <rpcsvc/yp_prot.h>
70 #include <rpcsvc/ypclnt.h>
71 #include <rpcsvc/yppasswd.h>
72 #include <netdb.h>
73 #include <sys/socket.h>
74 #include <sys/file.h>
75 #include <errno.h>
76
77 #include <DirectoryService/DirServices.h>
78 #include <DirectoryService/DirServicesConst.h>
79 #include <DirectoryService/DirServicesTypes.h>
80 #include <DirectoryService/DirServicesUtils.h>
81
82 // password server can store 511 characters + a terminator.
83 #define kMaxPassword 512
84
85 #define SaySorryAndBail() {status = -1; break;}
86
87 //-------------------------------------------------------------------------------------
88 // ds_check_passwd
89 //-------------------------------------------------------------------------------------
90
91 int ds_check_passwd(char *uname, char *domain)
92 {
93 char *p = NULL;
94 tDirReference dsRef = 0;
95 tDataBuffer *tDataBuff = NULL;
96 tDirNodeReference nodeRef = 0;
97 long status = eDSNoErr;
98 tContextData context = NULL;
99 unsigned long nodeCount = 0;
100 unsigned long attrIndex = 0;
101 tDataList *nodeName = NULL;
102 tAttributeEntryPtr pAttrEntry = NULL;
103 tDataList *pRecName = NULL;
104 tDataList *pRecType = NULL;
105 tDataList *pAttrType = NULL;
106 unsigned long recCount = 0;
107 tRecordEntry *pRecEntry = NULL;
108 tAttributeListRef attrListRef = 0;
109 char *pUserLocation = NULL;
110 char *pUserName = NULL;
111 tAttributeValueListRef valueRef = 0;
112 tAttributeValueEntry *pValueEntry = NULL;
113 tDataList *pUserNode = NULL;
114 tDirNodeReference userNodeRef = 0;
115 tDataBuffer *pStepBuff = NULL;
116 tDataNode *pAuthType = NULL;
117 unsigned long uiCurr = 0;
118 unsigned long uiLen = 0;
119
120 do
121 {
122 if (uname == NULL)
123 SaySorryAndBail();
124
125 printf("Checking password for %s.\n", uname);
126 p = getpass("Password:");
127 if ( p == NULL )
128 SaySorryAndBail();
129
130 status = dsOpenDirService( &dsRef );
131 if ( status != eDSNoErr )
132 SaySorryAndBail();
133
134 tDataBuff = dsDataBufferAllocate( dsRef, 4096 );
135 if (tDataBuff == NULL)
136 SaySorryAndBail();
137
138 if ( domain != NULL )
139 {
140 nodeName = dsBuildFromPath( dsRef, domain, "/" );
141 if ( nodeName == NULL ) break;
142
143 // find
144 status = dsFindDirNodes( dsRef, tDataBuff, nodeName, eDSiExact, &nodeCount, &context );
145 }
146 else
147 {
148 // find on search node
149 status = dsFindDirNodes( dsRef, tDataBuff, NULL, eDSSearchNodeName, &nodeCount, &context );
150 }
151
152 if ( status != eDSNoErr )
153 SaySorryAndBail();
154
155 if ( nodeCount < 1 )
156 SaySorryAndBail();
157
158 status = dsGetDirNodeName( dsRef, tDataBuff, 1, &nodeName );
159 if (status != eDSNoErr)
160 SaySorryAndBail();
161
162 status = dsOpenDirNode( dsRef, nodeName, &nodeRef );
163 dsDataListDeallocate( dsRef, nodeName );
164 free( nodeName );
165 nodeName = NULL;
166 if (status != eDSNoErr)
167 SaySorryAndBail();
168
169 pRecName = dsBuildListFromStrings( dsRef, uname, NULL );
170 pRecType = dsBuildListFromStrings( dsRef, kDSStdRecordTypeUsers, NULL );
171 pAttrType = dsBuildListFromStrings( dsRef, kDSNAttrMetaNodeLocation, kDSNAttrRecordName, NULL );
172
173 recCount = 1;
174 status = dsGetRecordList( nodeRef, tDataBuff, pRecName, eDSExact, pRecType,
175 pAttrType, 0, &recCount, &context );
176 if ( status != eDSNoErr || recCount == 0 )
177 SaySorryAndBail();
178
179 status = dsGetRecordEntry( nodeRef, tDataBuff, 1, &attrListRef, &pRecEntry );
180 if ( status != eDSNoErr )
181 SaySorryAndBail();
182
183 for ( attrIndex = 1; (attrIndex <= pRecEntry->fRecordAttributeCount) && (status == eDSNoErr); attrIndex++ )
184 {
185 status = dsGetAttributeEntry( nodeRef, tDataBuff, attrListRef, attrIndex, &valueRef, &pAttrEntry );
186 if ( status == eDSNoErr && pAttrEntry != NULL )
187 {
188 if ( strcmp( pAttrEntry->fAttributeSignature.fBufferData, kDSNAttrMetaNodeLocation ) == 0 )
189 {
190 status = dsGetAttributeValue( nodeRef, tDataBuff, 1, valueRef, &pValueEntry );
191 if ( status == eDSNoErr && pValueEntry != NULL )
192 {
193 pUserLocation = (char *) calloc( pValueEntry->fAttributeValueData.fBufferLength + 1, sizeof(char) );
194 memcpy( pUserLocation, pValueEntry->fAttributeValueData.fBufferData, pValueEntry->fAttributeValueData.fBufferLength );
195 }
196 }
197 else
198 if ( strcmp( pAttrEntry->fAttributeSignature.fBufferData, kDSNAttrRecordName ) == 0 )
199 {
200 status = dsGetAttributeValue( nodeRef, tDataBuff, 1, valueRef, &pValueEntry );
201 if ( status == eDSNoErr && pValueEntry != NULL )
202 {
203 pUserName = (char *) calloc( pValueEntry->fAttributeValueData.fBufferLength + 1, sizeof(char) );
204 memcpy( pUserName, pValueEntry->fAttributeValueData.fBufferData, pValueEntry->fAttributeValueData.fBufferLength );
205 }
206 }
207
208 if ( pValueEntry != NULL )
209 dsDeallocAttributeValueEntry( dsRef, pValueEntry );
210 pValueEntry = NULL;
211
212 dsDeallocAttributeEntry( dsRef, pAttrEntry );
213 pAttrEntry = NULL;
214 dsCloseAttributeValueList( valueRef );
215 valueRef = 0;
216 }
217 }
218
219 pUserNode = dsBuildFromPath( dsRef, pUserLocation, "/" );
220 status = dsOpenDirNode( dsRef, pUserNode, &userNodeRef );
221 if ( status != eDSNoErr )
222 SaySorryAndBail();
223
224 pStepBuff = dsDataBufferAllocate( dsRef, 128 );
225
226 pAuthType = dsDataNodeAllocateString( dsRef, kDSStdAuthNodeNativeClearTextOK );
227 uiCurr = 0;
228
229 // User name
230 uiLen = strlen( pUserName );
231 memcpy( &(tDataBuff->fBufferData[ uiCurr ]), &uiLen, sizeof( unsigned long ) );
232 uiCurr += sizeof( unsigned long );
233 memcpy( &(tDataBuff->fBufferData[ uiCurr ]), pUserName, uiLen );
234 uiCurr += uiLen;
235
236 // pw
237 uiLen = strlen( p );
238 memcpy( &(tDataBuff->fBufferData[ uiCurr ]), &uiLen, sizeof( unsigned long ) );
239 uiCurr += sizeof( unsigned long );
240 memcpy( &(tDataBuff->fBufferData[ uiCurr ]), p, uiLen );
241 uiCurr += uiLen;
242
243 tDataBuff->fBufferLength = uiCurr;
244
245 status = dsDoDirNodeAuth( userNodeRef, pAuthType, 1, tDataBuff, pStepBuff, NULL );
246
247 }
248 while ( 0 );
249
250 // clean up
251 if (tDataBuff != NULL) {
252 memset(tDataBuff, 0, tDataBuff->fBufferSize);
253 dsDataBufferDeAllocate( dsRef, tDataBuff );
254 tDataBuff = NULL;
255 }
256
257 if (pStepBuff != NULL) {
258 dsDataBufferDeAllocate( dsRef, pStepBuff );
259 pStepBuff = NULL;
260 }
261 if (pUserLocation != NULL ) {
262 free(pUserLocation);
263 pUserLocation = NULL;
264 }
265 if (pRecName != NULL) {
266 dsDataListDeallocate( dsRef, pRecName );
267 free( pRecName );
268 pRecName = NULL;
269 }
270 if (pRecType != NULL) {
271 dsDataListDeallocate( dsRef, pRecType );
272 free( pRecType );
273 pRecType = NULL;
274 }
275 if (pAttrType != NULL) {
276 dsDataListDeallocate( dsRef, pAttrType );
277 free( pAttrType );
278 pAttrType = NULL;
279 }
280 if (nodeRef != 0) {
281 dsCloseDirNode(nodeRef);
282 nodeRef = 0;
283 }
284 if (dsRef != 0) {
285 dsCloseDirService(dsRef);
286 dsRef = 0;
287 }
288
289 if ( status != eDSNoErr )
290 {
291 errno = EACCES;
292 fprintf(stderr, "Sorry\n");
293 exit(1);
294 }
295
296 return 0;
297 }
298
299
300
301
302
303
mirror of system_cmds