pwdauth.c revision 722:636b850d4ee9 
1/*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License, Version 1.0 only
6 * (the "License").  You may not use this file except in compliance
7 * with the License.
8 *
9 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10 * or http://www.opensolaris.org/os/licensing.
11 * See the License for the specific language governing permissions
12 * and limitations under the License.
13 *
14 * When distributing Covered Code, include this CDDL HEADER in each
15 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16 * If applicable, add the following below this CDDL HEADER, with the
17 * fields enclosed by brackets "[]" replaced with your own identifying
18 * information: Portions Copyright [yyyy] [name of copyright owner]
19 *
20 * CDDL HEADER END
21 */
22/*
23 * Copyright 1992 Sun Microsystems, Inc.  All rights reserved.
24 * Use is subject to license terms.
25 */
26
27#pragma ident	"%Z%%M%	%I%	%E% SMI"
28
29#include <stdio.h>
30#include <pwd.h>
31#include <shadow.h>
32#include <errno.h>
33
34/*
35 * Version to go in the BCP compatibility library in SVr4 version of
36 * SunOS. This does not bother talking to rpc.pwdauthd or looking for the
37 * password.adjunct file on the system since they do not exist anymore.
38 * They have been effectively replaced by a more robust aging security provided
39 * by the combination of /etc/shadow file, shadow support in the NIS+
40 * passwd table and the use of secure RPC in NIS+.
41 */
42
43int
44pwdauth(char *name, char *password)
45{
46	/*
47	 * this routine authenticates a password for the named user.
48	 * Assumes the adjunct file does not exist.
49	 * and therefore checks the passwd "source" using the standard
50	 * getpwnam(3C) routine that uses /etc/nsswitch.conf(4).
51	 */
52
53	struct passwd	*pwp = NULL;
54	struct spwd	*spwp = NULL;
55	char *enpwp;
56
57	if (spwp = getspnam(name))
58		enpwp = spwp->sp_pwdp;
59	else if (pwp = getpwnam(name))
60		enpwp = pwp->pw_passwd;
61	else
62		/* user is not in main password system */
63		return (-1);
64	if (enpwp[0] == '#' && enpwp[1] == '#') {
65		/* this means that /etc/passwd has problems */
66		fprintf(stderr, "pwdauth: bad passwd entry for %s\n",
67		    name);
68		return (-1);
69	}
70	if (strcmp(crypt(password, enpwp), enpwp) == 0)
71		return (0);
72	else
73		return (-1);
74}
75