source3/utils/smbpasswd.c

   1 /*
   2  * Unix SMB/CIFS implementation.
   3  * Copyright (C) Jeremy Allison 1995-1998
   4  * Copyright (C) Tim Potter     2001
   5  *
   6  * This program is free software; you can redistribute it and/or modify it
   7  * under the terms of the GNU General Public License as published by the
   8  * Free Software Foundation; either version 2 of the License, or (at your
   9  * option) any later version.
  10  *
  11  * This program is distributed in the hope that it will be useful, but WITHOUT
  12  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
  13  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
  14  * more details.
  15  *
  16  * You should have received a copy of the GNU General Public License along with
  17  * this program; if not, write to the Free Software Foundation, Inc., 675
  18  * Mass Ave, Cambridge, MA 02139, USA.  */
  19
  20 #include "includes.h"
  21
  22 extern BOOL AllowDebugChange;
  23
  24 /*
  25  * Next two lines needed for SunOS and don't
  26  * hurt anything else...
  27  */
  28 extern char *optarg;
  29 extern int optind;
  30
  31 /* forced running in root-mode */
  32 static BOOL got_pass = False, got_username = False;
  33 static BOOL stdin_passwd_get = False;
  34 static fstring user_name, user_password;
  35 static char *new_passwd = NULL;
  36 static char *remote_machine = NULL;
  37
  38 static fstring ldap_secret;
  39
  40 /*********************************************************
  41  Print command usage on stderr and die.
  42 **********************************************************/
  43 static void usage(void)
  44 {
  45         printf("When run by root:\n");
  46         printf("    smbpasswd [options] [username] [password]\n");
  47         printf("otherwise:\n");
  48         printf("    smbpasswd [options] [password]\n\n");
  49
  50         printf("options:\n");
  51         printf("  -L                   local mode (must be first option)\n");
  52         printf("  -h                   print this usage message\n");
  53         printf("  -s                   use stdin for password prompt\n");
  54         printf("  -c smb.conf file     Use the given path to the smb.conf file\n");
  55         printf("  -D LEVEL             debug level\n");
  56         printf("  -r MACHINE           remote machine\n");
  57         printf("  -U USER              remote username\n");
  58
  59         printf("extra options when run by root or in local mode:\n");
  60         printf("  -a                   add user\n");
  61         printf("  -d                   disable user\n");
  62         printf("  -e                   enable user\n");
  63         printf("  -i                   interdomain trust account\n");
  64         printf("  -m                   machine trust account\n");
  65         printf("  -n                   set no password\n");
  66         printf("  -w                   ldap admin password\n");
  67         printf("  -x                   delete user\n");
  68         printf("  -R ORDER             name resolve order\n");
  69
  70         exit(1);
  71 }
  72
  73 static void set_line_buffering(FILE *f)
  74 {
  75         setvbuf(f, NULL, _IOLBF, 0);
  76 }
  77
  78 /*******************************************************************
  79  Process command line options
  80  ******************************************************************/
  81 static int process_options(int argc, char **argv, int local_flags)
  82 {
  83         int ch;
  84         pstring configfile;
  85         pstrcpy(configfile, dyn_CONFIGFILE);
  86
  87         local_flags |= LOCAL_SET_PASSWORD;
  88
  89         ZERO_STRUCT(user_name);
  90         ZERO_STRUCT(user_password);
  91
  92         user_name[0] = '\0';
  93
  94         while ((ch = getopt(argc, argv, "c:axdehminjr:sw:R:D:U:L")) != EOF) {
  95                 switch(ch) {
  96                 case 'L':
  97                         local_flags |= LOCAL_AM_ROOT;
  98                         break;
  99                 case 'c':
 100                         pstrcpy(configfile,optarg);
 101                         break;
 102                 case 'a':
 103                         local_flags |= LOCAL_ADD_USER;
 104                         break;
 105                 case 'x':
 106                         local_flags |= LOCAL_DELETE_USER;
 107                         local_flags &= ~LOCAL_SET_PASSWORD;
 108                         break;
 109                 case 'd':
 110                         local_flags |= LOCAL_DISABLE_USER;
 111                         local_flags &= ~LOCAL_SET_PASSWORD;
 112                         break;
 113                 case 'e':
 114                         local_flags |= LOCAL_ENABLE_USER;
 115                         local_flags &= ~LOCAL_SET_PASSWORD;
 116                         break;
 117                 case 'm':
 118                         local_flags |= LOCAL_TRUST_ACCOUNT;
 119                         break;
 120                 case 'i':
 121                         local_flags |= LOCAL_INTERDOM_ACCOUNT;
 122                         break;
 123                 case 'j':
 124                         d_printf("See 'net join' for this functionality\n");
 125                         exit(1);
 126                         break;
 127                 case 'n':
 128                         local_flags |= LOCAL_SET_NO_PASSWORD;
 129                         local_flags &= ~LOCAL_SET_PASSWORD;
 130                         new_passwd = smb_xstrdup("NO PASSWORD");
 131                         break;
 132                 case 'r':
 133                         remote_machine = optarg;
 134                         break;
 135                 case 's':
 136                         set_line_buffering(stdin);
 137                         set_line_buffering(stdout);
 138                         set_line_buffering(stderr);
 139                         stdin_passwd_get = True;
 140                         break;
 141                 case 'w':
 142                         local_flags |= LOCAL_SET_LDAP_ADMIN_PW;
 143                         fstrcpy(ldap_secret, optarg);
 144                         break;
 145                 case 'R':
 146                         lp_set_name_resolve_order(optarg);
 147                         break;
 148                 case 'D':
 149                         DEBUGLEVEL = atoi(optarg);
 150                         break;
 151                 case 'U': {
 152                         char *lp;
 153
 154                         got_username = True;
 155                         fstrcpy(user_name, optarg);
 156
 157                         if ((lp = strchr(user_name, '%'))) {
 158                                 *lp = 0;
 159                                 fstrcpy(user_password, lp + 1);
 160                                 got_pass = True;
 161                                 memset(strchr_m(optarg, '%') + 1, 'X',
 162                                        strlen(user_password));
 163                         }
 164
 165                         break;
 166                 }
 167                 case 'h':
 168                 default:
 169                         usage();
 170                 }
 171         }
 172
 173         argc -= optind;
 174         argv += optind;
 175
 176         switch(argc) {
 177         case 0:
 178                 if (!got_username)
 179                         fstrcpy(user_name, "");
 180                 break;
 181         case 1:
 182                 if (!(local_flags & LOCAL_AM_ROOT)) {
 183                         new_passwd = argv[0];
 184                 } else {
 185                         if (got_username) {
 186                                 usage();
 187                         } else {
 188                                 fstrcpy(user_name, argv[0]);
 189                         }
 190                 }
 191                 break;
 192         case 2:
 193                 if (!(local_flags & LOCAL_AM_ROOT) || got_username || got_pass) {
 194                         usage();
 195                 }
 196
 197                 fstrcpy(user_name, argv[0]);
 198                 new_passwd = smb_xstrdup(argv[1]);
 199                 break;
 200         default:
 201                 usage();
 202         }
 203
 204         if (!lp_load(configfile,True,False,False)) {
 205                 fprintf(stderr, "Can't load %s - run testparm to debug it\n",
 206                         dyn_CONFIGFILE);
 207                 exit(1);
 208         }
 209
 210         return local_flags;
 211 }
 212
 213 /*************************************************************
 214  Utility function to prompt for passwords from stdin. Each
 215  password entered must end with a newline.
 216 *************************************************************/
 217 static char *stdin_new_passwd(void)
 218 {
 219         static fstring new_pw;
 220         size_t len;
 221
 222         ZERO_ARRAY(new_pw);
 223
 224         /*
 225          * if no error is reported from fgets() and string at least contains
 226          * the newline that ends the password, then replace the newline with
 227          * a null terminator.
 228          */
 229         if ( fgets(new_pw, sizeof(new_pw), stdin) != NULL) {
 230                 if ((len = strlen(new_pw)) > 0) {
 231                         if(new_pw[len-1] == '\n')
 232                                 new_pw[len - 1] = 0;
 233                 }
 234         }
 235         return(new_pw);
 236 }
 237
 238
 239 /*************************************************************
 240  Utility function to get passwords via tty or stdin
 241  Used if the '-s' option is set to silently get passwords
 242  to enable scripting.
 243 *************************************************************/
 244 static char *get_pass( char *prompt, BOOL stdin_get)
 245 {
 246         char *p;
 247         if (stdin_get) {
 248                 p = stdin_new_passwd();
 249         } else {
 250                 p = getpass(prompt);
 251         }
 252         return smb_xstrdup(p);
 253 }
 254
 255 /*************************************************************
 256  Utility function to prompt for new password.
 257 *************************************************************/
 258 static char *prompt_for_new_password(BOOL stdin_get)
 259 {
 260         char *p;
 261         fstring new_pw;
 262
 263         ZERO_ARRAY(new_pw);
 264
 265         p = get_pass("New SMB password:", stdin_get);
 266
 267         fstrcpy(new_pw, p);
 268         SAFE_FREE(p);
 269
 270         p = get_pass("Retype new SMB password:", stdin_get);
 271
 272         if (strcmp(p, new_pw)) {
 273                 fprintf(stderr, "Mismatch - password unchanged.\n");
 274                 ZERO_ARRAY(new_pw);
 275                 SAFE_FREE(p);
 276                 return NULL;
 277         }
 278
 279         return p;
 280 }
 281
 282
 283 /*************************************************************
 284  Change a password either locally or remotely.
 285 *************************************************************/
 286
 287 static BOOL password_change(const char *remote_mach, char *username,
 288                             char *old_passwd, char *new_pw, int local_flags)
 289 {
 290         BOOL ret;
 291         pstring err_str;
 292         pstring msg_str;
 293
 294         if (remote_mach != NULL) {
 295                 if (local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER|LOCAL_DISABLE_USER|LOCAL_ENABLE_USER|
 296                                                         LOCAL_TRUST_ACCOUNT|LOCAL_SET_NO_PASSWORD)) {
 297                         /* these things can't be done remotely yet */
 298                         return False;
 299                 }
 300                 ret = remote_password_change(remote_mach, username,
 301                                              old_passwd, new_pw, err_str, sizeof(err_str));
 302                 if(*err_str)
 303                         fprintf(stderr, err_str);
 304                 return ret;
 305         }
 306
 307         ret = local_password_change(username, local_flags, new_pw,
 308                                      err_str, sizeof(err_str), msg_str, sizeof(msg_str));
 309
 310         if(*msg_str)
 311                 printf(msg_str);
 312         if(*err_str)
 313                 fprintf(stderr, err_str);
 314
 315         return ret;
 316 }
 317
 318 /*******************************************************************
 319  Store the LDAP admin password in secrets.tdb
 320  ******************************************************************/
 321 static BOOL store_ldap_admin_pw (char* pw)
 322 {
 323         if (!pw)
 324                 return False;
 325
 326         if (!secrets_init())
 327                 return False;
 328
 329         return secrets_store_ldap_pw(lp_ldap_admin_dn(), pw);
 330 }
 331
 332
 333 /*************************************************************
 334  Handle password changing for root.
 335 *************************************************************/
 336
 337 static int process_root(int local_flags)
 338 {
 339         struct passwd  *pwd;
 340         int result = 0;
 341         char *old_passwd = NULL;
 342
 343         if (local_flags & LOCAL_SET_LDAP_ADMIN_PW)
 344         {
 345                 printf("Setting stored password for \"%s\" in secrets.tdb\n",
 346                         lp_ldap_admin_dn());
 347                 if (!store_ldap_admin_pw(ldap_secret))
 348                         DEBUG(0,("ERROR: Failed to store the ldap admin password!\n"));
 349                 goto done;
 350         }
 351
 352         /*
 353          * Ensure both add/delete user are not set
 354          * Ensure add/delete user and either remote machine or join domain are
 355          * not both set.
 356          */
 357         if(((local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER)) == (LOCAL_ADD_USER|LOCAL_DELETE_USER)) ||
 358            ((local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER)) &&
 359                 (remote_machine != NULL))) {
 360                 usage();
 361         }
 362
 363         /* Only load interfaces if we are doing network operations. */
 364
 365         if (remote_machine) {
 366                 load_interfaces();
 367         }
 368
 369         if (!user_name[0] && (pwd = getpwuid_alloc(geteuid()))) {
 370                 fstrcpy(user_name, pwd->pw_name);
 371                 passwd_free(&pwd);
 372         }
 373
 374         if (!user_name[0]) {
 375                 fprintf(stderr,"You must specify a username\n");
 376                 exit(1);
 377         }
 378
 379         if (local_flags & LOCAL_TRUST_ACCOUNT) {
 380                 /* add the $ automatically */
 381                 static fstring buf;
 382
 383                 /*
 384                  * Remove any trailing '$' before we
 385                  * generate the initial machine password.
 386                  */
 387
 388                 if (user_name[strlen(user_name)-1] == '$') {
 389                         user_name[strlen(user_name)-1] = 0;
 390                 }
 391
 392                 if (local_flags & LOCAL_ADD_USER) {
 393                         SAFE_FREE(new_passwd);
 394                         new_passwd = smb_xstrdup(user_name);
 395                         strlower(new_passwd);
 396                 }
 397
 398                 /*
 399                  * Now ensure the username ends in '$' for
 400                  * the machine add.
 401                  */
 402
 403                 slprintf(buf, sizeof(buf)-1, "%s$", user_name);
 404                 fstrcpy(user_name, buf);
 405         } else if (local_flags & LOCAL_INTERDOM_ACCOUNT) {
 406                 static fstring buf;
 407
 408                 if (local_flags & LOCAL_ADD_USER) {
 409                         /*
 410                          * Prompt for trusting domain's account password
 411                          */
 412                         new_passwd = prompt_for_new_password(stdin_passwd_get);
 413                         if(!new_passwd) {
 414                                 fprintf(stderr, "Unable to get newpassword.\n");
 415                                 exit(1);
 416                         }
 417                 }
 418
 419                 /* prepare uppercased and '$' terminated username */
 420                 slprintf(buf, sizeof(buf) - 1, "%s$", user_name);
 421                 fstrcpy(user_name, buf);
 422
 423         } else {
 424
 425                 if (remote_machine != NULL) {
 426                         old_passwd = get_pass("Old SMB password:",stdin_passwd_get);
 427                 }
 428
 429                 if (!(local_flags & LOCAL_SET_PASSWORD)) {
 430
 431                         /*
 432                          * If we are trying to enable a user, first we need to find out
 433                          * if they are using a modern version of the smbpasswd file that
 434                          * disables a user by just writing a flag into the file. If so
 435                          * then we can re-enable a user without prompting for a new
 436                          * password. If not (ie. they have a no stored password in the
 437                          * smbpasswd file) then we need to prompt for a new password.
 438                          */
 439
 440                         if(local_flags & LOCAL_ENABLE_USER) {
 441                                 SAM_ACCOUNT *sampass = NULL;
 442                                 BOOL ret;
 443
 444                                 pdb_init_sam(&sampass);
 445                                 ret = pdb_getsampwnam(sampass, user_name);
 446                                 if((sampass != False) && (pdb_get_lanman_passwd(sampass) == NULL)) {
 447                                         local_flags |= LOCAL_SET_PASSWORD;
 448                                 }
 449                                 pdb_free_sam(&sampass);
 450                         }
 451                 }
 452
 453                 if(local_flags & LOCAL_SET_PASSWORD) {
 454                         new_passwd = prompt_for_new_password(stdin_passwd_get);
 455
 456                         if(!new_passwd) {
 457                                 fprintf(stderr, "Unable to get new password.\n");
 458                                 exit(1);
 459                         }
 460                 }
 461         }
 462
 463         if (!password_change(remote_machine, user_name, old_passwd, new_passwd, local_flags)) {
 464                 fprintf(stderr,"Failed to modify password entry for user %s\n", user_name);
 465                 result = 1;
 466                 goto done;
 467         }
 468
 469         if(remote_machine) {
 470                 printf("Password changed for user %s on %s.\n", user_name, remote_machine );
 471         } else if(!(local_flags & (LOCAL_ADD_USER|LOCAL_DISABLE_USER|LOCAL_ENABLE_USER|LOCAL_DELETE_USER|LOCAL_SET_NO_PASSWORD|LOCAL_SET_PASSWORD))) {
 472                 SAM_ACCOUNT *sampass = NULL;
 473                 BOOL ret;
 474
 475                 pdb_init_sam(&sampass);
 476                 ret = pdb_getsampwnam(sampass, user_name);
 477
 478                 printf("Password changed for user %s.", user_name );
 479                 if( (ret != False) && (pdb_get_acct_ctrl(sampass)&ACB_DISABLED) )
 480                         printf(" User has disabled flag set.");
 481                 if((ret != False) && (pdb_get_acct_ctrl(sampass) & ACB_PWNOTREQ) )
 482                         printf(" User has no password flag set.");
 483                 printf("\n");
 484                 pdb_free_sam(&sampass);
 485         }
 486
 487  done:
 488         SAFE_FREE(new_passwd);
 489         return result;
 490 }
 491
 492
 493 /*************************************************************
 494  Handle password changing for non-root.
 495 *************************************************************/
 496
 497 static int process_nonroot(int local_flags)
 498 {
 499         struct passwd  *pwd = NULL;
 500         int result = 0;
 501         char *old_passwd = NULL;
 502
 503         if (local_flags & ~(LOCAL_AM_ROOT | LOCAL_SET_PASSWORD)) {
 504                 /* Extra flags that we can't honor non-root */
 505                 usage();
 506         }
 507
 508         if (!user_name[0]) {
 509                 pwd = getpwuid_alloc(getuid());
 510                 if (pwd) {
 511                         fstrcpy(user_name,pwd->pw_name);
 512                         passwd_free(&pwd);
 513                 } else {
 514                         fprintf(stderr, "smbpasswd: you don't exist - go away\n");
 515                         exit(1);
 516                 }
 517         }
 518
 519         /*
 520          * A non-root user is always setting a password
 521          * via a remote machine (even if that machine is
 522          * localhost).
 523          */
 524
 525         load_interfaces(); /* Delayed from main() */
 526
 527         if (remote_machine == NULL) {
 528                 remote_machine = "127.0.0.1";
 529         }
 530
 531         if (remote_machine != NULL) {
 532                 old_passwd = get_pass("Old SMB password:",stdin_passwd_get);
 533         }
 534
 535         if (!new_passwd) {
 536                 new_passwd = prompt_for_new_password(stdin_passwd_get);
 537         }
 538
 539         if (!new_passwd) {
 540                 fprintf(stderr, "Unable to get new password.\n");
 541                 exit(1);
 542         }
 543
 544         if (!password_change(remote_machine, user_name, old_passwd, new_passwd, 0)) {
 545                 fprintf(stderr,"Failed to change password for %s\n", user_name);
 546                 result = 1;
 547                 goto done;
 548         }
 549
 550         printf("Password changed for user %s\n", user_name);
 551
 552  done:
 553         SAFE_FREE(old_passwd);
 554         SAFE_FREE(new_passwd);
 555
 556         return result;
 557 }
 558
 559
 560
 561 /*********************************************************
 562  Start here.
 563 **********************************************************/
 564 int main(int argc, char **argv)
 565 {
 566         int local_flags = 0;
 567
 568         AllowDebugChange = False;
 569
 570 #if defined(HAVE_SET_AUTH_PARAMETERS)
 571         set_auth_parameters(argc, argv);
 572 #endif /* HAVE_SET_AUTH_PARAMETERS */
 573
 574         if (getuid() == 0) {
 575                 local_flags = LOCAL_AM_ROOT;
 576         }
 577
 578         local_flags = process_options(argc, argv, local_flags);
 579
 580         setup_logging("smbpasswd", True);
 581
 582         /*
 583          * Set the machine NETBIOS name if not already
 584          * set from the config file.
 585          */
 586
 587         if (!init_names())
 588                 return 1;
 589
 590         /* Check the effective uid - make sure we are not setuid */
 591         if (is_setuid_root()) {
 592                 fprintf(stderr, "smbpasswd must *NOT* be setuid root.\n");
 593                 exit(1);
 594         }
 595
 596         if (local_flags & LOCAL_AM_ROOT) {
 597                 secrets_init();
 598                 return process_root(local_flags);
 599         }
 600
 601         return process_nonroot(local_flags);
 602 }