2020-07-26 01:08:55 +03:00
|
|
|
/*
|
|
|
|
|
* Copyright (c) 2020, Peter Elliott <pelliott@ualberta.ca>
|
|
|
|
|
* All rights reserved.
|
|
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
|
* modification, are permitted provided that the following conditions are met:
|
|
|
|
|
*
|
|
|
|
|
* 1. Redistributions of source code must retain the above copyright notice, this
|
|
|
|
|
* list of conditions and the following disclaimer.
|
|
|
|
|
*
|
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright notice,
|
|
|
|
|
* this list of conditions and the following disclaimer in the documentation
|
|
|
|
|
* and/or other materials provided with the distribution.
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
|
|
|
|
|
* AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
|
|
|
|
|
* DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
|
|
|
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
|
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
|
|
|
|
|
* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
|
|
|
|
|
* CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
|
|
|
|
|
* OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
|
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include <AK/Types.h>
|
2020-09-04 22:01:48 +03:00
|
|
|
#include <LibCore/Account.h>
|
2020-07-26 01:08:55 +03:00
|
|
|
#include <LibCore/ArgsParser.h>
|
|
|
|
|
#include <LibCore/File.h>
|
|
|
|
|
#include <LibCore/GetPassword.h>
|
|
|
|
|
#include <string.h>
|
|
|
|
|
#include <unistd.h>
|
|
|
|
|
|
|
|
|
|
int main(int argc, char** argv)
|
|
|
|
|
{
|
|
|
|
|
if (geteuid() != 0) {
|
|
|
|
|
fprintf(stderr, "Not running as root :^(\n");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (pledge("stdio wpath rpath cpath tty", nullptr) < 0) {
|
|
|
|
|
perror("pledge");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (unveil("/etc/passwd", "rwc") < 0) {
|
|
|
|
|
perror("unveil");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-04 22:01:48 +03:00
|
|
|
if (unveil("/etc/group", "rwc") < 0) {
|
|
|
|
|
perror("unveil");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
2021-01-09 19:44:44 +03:00
|
|
|
if (unveil("/etc/shadow", "rwc") < 0) {
|
|
|
|
|
perror("unveil");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-26 01:08:55 +03:00
|
|
|
unveil(nullptr, nullptr);
|
|
|
|
|
|
|
|
|
|
bool del = false;
|
|
|
|
|
bool lock = false;
|
|
|
|
|
bool unlock = false;
|
|
|
|
|
const char* username = nullptr;
|
|
|
|
|
|
|
|
|
|
auto args_parser = Core::ArgsParser();
|
2020-12-05 18:22:58 +03:00
|
|
|
args_parser.set_general_help("Modify an account password.");
|
2020-07-26 01:08:55 +03:00
|
|
|
args_parser.add_option(del, "Delete password", "delete", 'd');
|
|
|
|
|
args_parser.add_option(lock, "Lock password", "lock", 'l');
|
|
|
|
|
args_parser.add_option(unlock, "Unlock password", "unlock", 'u');
|
|
|
|
|
args_parser.add_positional_argument(username, "Username", "username", Core::ArgsParser::Required::No);
|
|
|
|
|
|
|
|
|
|
args_parser.parse(argc, argv);
|
|
|
|
|
|
2020-09-04 22:01:48 +03:00
|
|
|
uid_t current_uid = getuid();
|
2020-07-26 01:08:55 +03:00
|
|
|
|
2021-01-09 19:44:44 +03:00
|
|
|
auto account_or_error = (username)
|
|
|
|
|
? Core::Account::from_name(username, Core::Account::OpenPasswdFile::ReadWrite, Core::Account::OpenShadowFile::ReadWrite)
|
|
|
|
|
: Core::Account::from_uid(current_uid, Core::Account::OpenPasswdFile::ReadWrite, Core::Account::OpenShadowFile::ReadWrite);
|
2020-09-04 22:01:48 +03:00
|
|
|
|
|
|
|
|
if (account_or_error.is_error()) {
|
|
|
|
|
fprintf(stderr, "Core::Account::%s: %s\n", (username) ? "from_name" : "from_uid", account_or_error.error().characters());
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// target_account is the account we are changing the password of.
|
|
|
|
|
auto target_account = account_or_error.value();
|
|
|
|
|
|
|
|
|
|
if (current_uid != 0 && current_uid != target_account.uid()) {
|
|
|
|
|
fprintf(stderr, "You can't modify passwd for %s\n", username);
|
|
|
|
|
return 1;
|
2020-07-26 01:08:55 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (del) {
|
2020-09-04 22:01:48 +03:00
|
|
|
target_account.delete_password();
|
2020-07-26 01:08:55 +03:00
|
|
|
} else if (lock) {
|
2020-09-04 22:01:48 +03:00
|
|
|
target_account.set_password_enabled(false);
|
2020-07-26 01:08:55 +03:00
|
|
|
} else if (unlock) {
|
2020-09-04 22:01:48 +03:00
|
|
|
target_account.set_password_enabled(true);
|
2020-07-26 01:08:55 +03:00
|
|
|
} else {
|
|
|
|
|
auto new_password = Core::get_password("New password: ");
|
|
|
|
|
if (new_password.is_error()) {
|
2020-08-25 17:51:04 +03:00
|
|
|
fprintf(stderr, "%s\n", strerror(new_password.error()));
|
2020-07-26 01:08:55 +03:00
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-04 22:01:48 +03:00
|
|
|
target_account.set_password(new_password.value().characters());
|
2020-07-26 01:08:55 +03:00
|
|
|
}
|
|
|
|
|
|
2020-09-04 22:01:48 +03:00
|
|
|
if (!target_account.sync()) {
|
|
|
|
|
perror("Core::Account::Sync");
|
|
|
|
|
}
|
2020-07-26 01:08:55 +03:00
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
