import HEAD into svn+ssh://svn.samba.org/home/svn/samba/trunk
[metze/old/v3-2-winbind-ndr.git] / source / utils / smbpasswd.c
1 /*
2  * Unix SMB/CIFS implementation. 
3  * Copyright (C) Jeremy Allison 1995-1998
4  * Copyright (C) Tim Potter     2001
5  * 
6  * This program is free software; you can redistribute it and/or modify it
7  * under the terms of the GNU General Public License as published by the
8  * Free Software Foundation; either version 2 of the License, or (at your
9  * option) any later version.
10  * 
11  * This program is distributed in the hope that it will be useful, but WITHOUT
12  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
13  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
14  * more details.
15  * 
16  * You should have received a copy of the GNU General Public License along with
17  * this program; if not, write to the Free Software Foundation, Inc., 675
18  * Mass Ave, Cambridge, MA 02139, USA.  */
19
20 #include "includes.h"
21
22 extern BOOL AllowDebugChange;
23
24 /*
25  * Next two lines needed for SunOS and don't
26  * hurt anything else...
27  */
28 extern char *optarg;
29 extern int optind;
30
31 /* forced running in root-mode */
32 static BOOL got_pass = False, got_username = False;
33 static BOOL stdin_passwd_get = False;
34 static fstring user_name, user_password;
35 static char *new_passwd = NULL;
36 static const char *remote_machine = NULL;
37
38 static fstring ldap_secret;
39
40
41 /*********************************************************
42  Print command usage on stderr and die.
43 **********************************************************/
44 static void usage(void)
45 {
46         printf("When run by root:\n");
47         printf("    smbpasswd [options] [username] [password]\n");
48         printf("otherwise:\n");
49         printf("    smbpasswd [options] [password]\n\n");
50
51         printf("options:\n");
52         printf("  -L                   local mode (must be first option)\n");
53         printf("  -h                   print this usage message\n");
54         printf("  -s                   use stdin for password prompt\n");
55         printf("  -c smb.conf file     Use the given path to the smb.conf file\n");
56         printf("  -D LEVEL             debug level\n");
57         printf("  -r MACHINE           remote machine\n");
58         printf("  -U USER              remote username\n");
59
60         printf("extra options when run by root or in local mode:\n");
61         printf("  -a                   add user\n");
62         printf("  -d                   disable user\n");
63         printf("  -e                   enable user\n");
64         printf("  -i                   interdomain trust account\n");
65         printf("  -m                   machine trust account\n");
66         printf("  -n                   set no password\n");
67         printf("  -w PASSWORD          ldap admin password\n");
68         printf("  -x                   delete user\n");
69         printf("  -R ORDER             name resolve order\n");
70
71         exit(1);
72 }
73
74 static void set_line_buffering(FILE *f)
75 {
76         setvbuf(f, NULL, _IOLBF, 0);
77 }
78
79 /*******************************************************************
80  Process command line options
81  ******************************************************************/
82 static int process_options(int argc, char **argv, int local_flags)
83 {
84         int ch;
85         pstring configfile;
86         pstrcpy(configfile, dyn_CONFIGFILE);
87
88         local_flags |= LOCAL_SET_PASSWORD;
89
90         ZERO_STRUCT(user_name);
91         ZERO_STRUCT(user_password);
92
93         user_name[0] = '\0';
94
95         while ((ch = getopt(argc, argv, "c:axdehminjr:sw:R:D:U:L")) != EOF) {
96                 switch(ch) {
97                 case 'L':
98                         local_flags |= LOCAL_AM_ROOT;
99                         break;
100                 case 'c':
101                         pstrcpy(configfile,optarg);
102                         break;
103                 case 'a':
104                         local_flags |= LOCAL_ADD_USER;
105                         break;
106                 case 'x':
107                         local_flags |= LOCAL_DELETE_USER;
108                         local_flags &= ~LOCAL_SET_PASSWORD;
109                         break;
110                 case 'd':
111                         local_flags |= LOCAL_DISABLE_USER;
112                         local_flags &= ~LOCAL_SET_PASSWORD;
113                         break;
114                 case 'e':
115                         local_flags |= LOCAL_ENABLE_USER;
116                         local_flags &= ~LOCAL_SET_PASSWORD;
117                         break;
118                 case 'm':
119                         local_flags |= LOCAL_TRUST_ACCOUNT;
120                         break;
121                 case 'i':
122                         local_flags |= LOCAL_INTERDOM_ACCOUNT;
123                         break;
124                 case 'j':
125                         d_printf("See 'net join' for this functionality\n");
126                         exit(1);
127                         break;
128                 case 'n':
129                         local_flags |= LOCAL_SET_NO_PASSWORD;
130                         local_flags &= ~LOCAL_SET_PASSWORD;
131                         new_passwd = smb_xstrdup("NO PASSWORD");
132                         break;
133                 case 'r':
134                         remote_machine = optarg;
135                         break;
136                 case 's':
137                         set_line_buffering(stdin);
138                         set_line_buffering(stdout);
139                         set_line_buffering(stderr);
140                         stdin_passwd_get = True;
141                         break;
142                 case 'w':
143                         local_flags |= LOCAL_SET_LDAP_ADMIN_PW;
144                         fstrcpy(ldap_secret, optarg);
145                         break;
146                 case 'R':
147                         lp_set_name_resolve_order(optarg);
148                         break;
149                 case 'D':
150                         DEBUGLEVEL = atoi(optarg);
151                         break;
152                 case 'U': {
153                         char *lp;
154
155                         got_username = True;
156                         fstrcpy(user_name, optarg);
157
158                         if ((lp = strchr(user_name, '%'))) {
159                                 *lp = 0;
160                                 fstrcpy(user_password, lp + 1);
161                                 got_pass = True;
162                                 memset(strchr_m(optarg, '%') + 1, 'X',
163                                        strlen(user_password));
164                         }
165
166                         break;
167                 }
168                 case 'h':
169                 default:
170                         usage();
171                 }
172         }
173         
174         argc -= optind;
175         argv += optind;
176
177         switch(argc) {
178         case 0:
179                 if (!got_username)
180                         fstrcpy(user_name, "");
181                 break;
182         case 1:
183                 if (!(local_flags & LOCAL_AM_ROOT)) {
184                         new_passwd = argv[0];
185                 } else {
186                         if (got_username) {
187                                 usage();
188                         } else {
189                                 fstrcpy(user_name, argv[0]);
190                         }
191                 }
192                 break;
193         case 2:
194                 if (!(local_flags & LOCAL_AM_ROOT) || got_username || got_pass) {
195                         usage();
196                 }
197
198                 fstrcpy(user_name, argv[0]);
199                 new_passwd = smb_xstrdup(argv[1]);
200                 break;
201         default:
202                 usage();
203         }
204
205         if (!lp_load(configfile,True,False,False)) {
206                 fprintf(stderr, "Can't load %s - run testparm to debug it\n", 
207                         dyn_CONFIGFILE);
208                 exit(1);
209         }
210
211         return local_flags;
212 }
213
214 /*************************************************************
215  Utility function to prompt for passwords from stdin. Each
216  password entered must end with a newline.
217 *************************************************************/
218 static char *stdin_new_passwd(void)
219 {
220         static fstring new_pw;
221         size_t len;
222
223         ZERO_ARRAY(new_pw);
224
225         /*
226          * if no error is reported from fgets() and string at least contains
227          * the newline that ends the password, then replace the newline with
228          * a null terminator.
229          */
230         if ( fgets(new_pw, sizeof(new_pw), stdin) != NULL) {
231                 if ((len = strlen(new_pw)) > 0) {
232                         if(new_pw[len-1] == '\n')
233                                 new_pw[len - 1] = 0; 
234                 }
235         }
236         return(new_pw);
237 }
238
239
240 /*************************************************************
241  Utility function to get passwords via tty or stdin
242  Used if the '-s' option is set to silently get passwords
243  to enable scripting.
244 *************************************************************/
245 static char *get_pass( const char *prompt, BOOL stdin_get)
246 {
247         char *p;
248         if (stdin_get) {
249                 p = stdin_new_passwd();
250         } else {
251                 p = getpass(prompt);
252         }
253         return smb_xstrdup(p);
254 }
255
256 /*************************************************************
257  Utility function to prompt for new password.
258 *************************************************************/
259 static char *prompt_for_new_password(BOOL stdin_get)
260 {
261         char *p;
262         fstring new_pw;
263
264         ZERO_ARRAY(new_pw);
265  
266         p = get_pass("New SMB password:", stdin_get);
267
268         fstrcpy(new_pw, p);
269         SAFE_FREE(p);
270
271         p = get_pass("Retype new SMB password:", stdin_get);
272
273         if (strcmp(p, new_pw)) {
274                 fprintf(stderr, "Mismatch - password unchanged.\n");
275                 ZERO_ARRAY(new_pw);
276                 SAFE_FREE(p);
277                 return NULL;
278         }
279
280         return p;
281 }
282
283
284 /*************************************************************
285  Change a password either locally or remotely.
286 *************************************************************/
287
288 static BOOL password_change(const char *remote_mach, char *username, 
289                             char *old_passwd, char *new_pw, int local_flags)
290 {
291         BOOL ret;
292         pstring err_str;
293         pstring msg_str;
294
295         if (remote_mach != NULL) {
296                 if (local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER|LOCAL_DISABLE_USER|LOCAL_ENABLE_USER|
297                                                         LOCAL_TRUST_ACCOUNT|LOCAL_SET_NO_PASSWORD)) {
298                         /* these things can't be done remotely yet */
299                         return False;
300                 }
301                 ret = remote_password_change(remote_mach, username, 
302                                              old_passwd, new_pw, err_str, sizeof(err_str));
303                 if(*err_str)
304                         fprintf(stderr, err_str);
305                 return ret;
306         }
307         
308         ret = local_password_change(username, local_flags, new_pw, 
309                                      err_str, sizeof(err_str), msg_str, sizeof(msg_str));
310
311         if(*msg_str)
312                 printf(msg_str);
313         if(*err_str)
314                 fprintf(stderr, err_str);
315
316         return ret;
317 }
318
319 /*******************************************************************
320  Store the LDAP admin password in secrets.tdb
321  ******************************************************************/
322 static BOOL store_ldap_admin_pw (char* pw)
323 {       
324         if (!pw) 
325                 return False;
326
327         if (!secrets_init())
328                 return False;
329         
330         return secrets_store_ldap_pw(lp_ldap_admin_dn(), pw);
331 }
332
333
334 /*************************************************************
335  Handle password changing for root.
336 *************************************************************/
337
338 static int process_root(int local_flags)
339 {
340         struct passwd  *pwd;
341         int result = 0;
342         char *old_passwd = NULL;
343
344         if (local_flags & LOCAL_SET_LDAP_ADMIN_PW) {
345                 printf("Setting stored password for \"%s\" in secrets.tdb\n", 
346                         lp_ldap_admin_dn());
347                 if (!store_ldap_admin_pw(ldap_secret))
348                         DEBUG(0,("ERROR: Failed to store the ldap admin password!\n"));
349                 goto done;
350         }
351
352         /* Ensure passdb startup(). */
353         if(!initialize_password_db(False)) {
354                 DEBUG(0, ("Failed to open passdb!\n"));
355                 exit(1);
356         }
357                 
358         /* Ensure we have a SAM sid. */
359         get_global_sam_sid();
360
361         /*
362          * Ensure both add/delete user are not set
363          * Ensure add/delete user and either remote machine or join domain are
364          * not both set.
365          */     
366         if(((local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER)) == (LOCAL_ADD_USER|LOCAL_DELETE_USER)) || 
367            ((local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER)) && 
368                 (remote_machine != NULL))) {
369                 usage();
370         }
371         
372         /* Only load interfaces if we are doing network operations. */
373
374         if (remote_machine) {
375                 load_interfaces();
376         }
377
378         if (!user_name[0] && (pwd = getpwuid_alloc(geteuid()))) {
379                 fstrcpy(user_name, pwd->pw_name);
380                 passwd_free(&pwd);
381         } 
382
383         if (!user_name[0]) {
384                 fprintf(stderr,"You must specify a username\n");
385                 exit(1);
386         }
387
388         if (local_flags & LOCAL_TRUST_ACCOUNT) {
389                 /* add the $ automatically */
390                 static fstring buf;
391
392                 /*
393                  * Remove any trailing '$' before we
394                  * generate the initial machine password.
395                  */
396
397                 if (user_name[strlen(user_name)-1] == '$') {
398                         user_name[strlen(user_name)-1] = 0;
399                 }
400
401                 if (local_flags & LOCAL_ADD_USER) {
402                         SAFE_FREE(new_passwd);
403                         new_passwd = smb_xstrdup(user_name);
404                         strlower_m(new_passwd);
405                 }
406
407                 /*
408                  * Now ensure the username ends in '$' for
409                  * the machine add.
410                  */
411
412                 slprintf(buf, sizeof(buf)-1, "%s$", user_name);
413                 fstrcpy(user_name, buf);
414         } else if (local_flags & LOCAL_INTERDOM_ACCOUNT) {
415                 static fstring buf;
416
417                 if ((local_flags & LOCAL_ADD_USER) && (new_passwd == NULL)) {
418                         /*
419                          * Prompt for trusting domain's account password
420                          */
421                         new_passwd = prompt_for_new_password(stdin_passwd_get);
422                         if(!new_passwd) {
423                                 fprintf(stderr, "Unable to get newpassword.\n");
424                                 exit(1);
425                         }
426                 }
427                 
428                 /* prepare uppercased and '$' terminated username */
429                 slprintf(buf, sizeof(buf) - 1, "%s$", user_name);
430                 fstrcpy(user_name, buf);
431                 
432         } else {
433                 
434                 if (remote_machine != NULL) {
435                         old_passwd = get_pass("Old SMB password:",stdin_passwd_get);
436                 }
437                 
438                 if (!(local_flags & LOCAL_SET_PASSWORD)) {
439                         
440                         /*
441                          * If we are trying to enable a user, first we need to find out
442                          * if they are using a modern version of the smbpasswd file that
443                          * disables a user by just writing a flag into the file. If so
444                          * then we can re-enable a user without prompting for a new
445                          * password. If not (ie. they have a no stored password in the
446                          * smbpasswd file) then we need to prompt for a new password.
447                          */
448                         
449                         if(local_flags & LOCAL_ENABLE_USER) {
450                                 SAM_ACCOUNT *sampass = NULL;
451                                 BOOL ret;
452                                 
453                                 pdb_init_sam(&sampass);
454                                 ret = pdb_getsampwnam(sampass, user_name);
455                                 if((sampass != False) && (pdb_get_lanman_passwd(sampass) == NULL)) {
456                                         local_flags |= LOCAL_SET_PASSWORD;
457                                 }
458                                 pdb_free_sam(&sampass);
459                         }
460                 }
461                 
462                 if((local_flags & LOCAL_SET_PASSWORD) && (new_passwd == NULL)) {
463                         new_passwd = prompt_for_new_password(stdin_passwd_get);
464                         
465                         if(!new_passwd) {
466                                 fprintf(stderr, "Unable to get new password.\n");
467                                 exit(1);
468                         }
469                 }
470         }
471
472         if (!password_change(remote_machine, user_name, old_passwd, new_passwd, local_flags)) {
473                 fprintf(stderr,"Failed to modify password entry for user %s\n", user_name);
474                 result = 1;
475                 goto done;
476         } 
477
478         if(remote_machine) {
479                 printf("Password changed for user %s on %s.\n", user_name, remote_machine );
480         } else if(!(local_flags & (LOCAL_ADD_USER|LOCAL_DISABLE_USER|LOCAL_ENABLE_USER|LOCAL_DELETE_USER|LOCAL_SET_NO_PASSWORD|LOCAL_SET_PASSWORD))) {
481                 SAM_ACCOUNT *sampass = NULL;
482                 BOOL ret;
483                 
484                 pdb_init_sam(&sampass);
485                 ret = pdb_getsampwnam(sampass, user_name);
486
487                 printf("Password changed for user %s.", user_name );
488                 if( (ret != False) && (pdb_get_acct_ctrl(sampass)&ACB_DISABLED) )
489                         printf(" User has disabled flag set.");
490                 if((ret != False) && (pdb_get_acct_ctrl(sampass) & ACB_PWNOTREQ) )
491                         printf(" User has no password flag set.");
492                 printf("\n");
493                 pdb_free_sam(&sampass);
494         }
495
496  done:
497         SAFE_FREE(new_passwd);
498         return result;
499 }
500
501
502 /*************************************************************
503  Handle password changing for non-root.
504 *************************************************************/
505
506 static int process_nonroot(int local_flags)
507 {
508         struct passwd  *pwd = NULL;
509         int result = 0;
510         char *old_pw = NULL;
511         char *new_pw = NULL;
512
513         if (local_flags & ~(LOCAL_AM_ROOT | LOCAL_SET_PASSWORD)) {
514                 /* Extra flags that we can't honor non-root */
515                 usage();
516         }
517
518         if (!user_name[0]) {
519                 pwd = getpwuid_alloc(getuid());
520                 if (pwd) {
521                         fstrcpy(user_name,pwd->pw_name);
522                         passwd_free(&pwd);
523                 } else {
524                         fprintf(stderr, "smbpasswd: you don't exist - go away\n");
525                         exit(1);
526                 }
527         }
528         
529         /*
530          * A non-root user is always setting a password
531          * via a remote machine (even if that machine is
532          * localhost).
533          */     
534
535         load_interfaces(); /* Delayed from main() */
536
537         if (remote_machine == NULL) {
538                 remote_machine = "127.0.0.1";
539         }
540
541         if (remote_machine != NULL) {
542                 old_pw = get_pass("Old SMB password:",stdin_passwd_get);
543         }
544         
545         if (!new_passwd) {
546                 new_pw = prompt_for_new_password(stdin_passwd_get);
547         }
548         else
549                 new_pw = smb_xstrdup(new_passwd);
550         
551         if (!new_pw) {
552                 fprintf(stderr, "Unable to get new password.\n");
553                 exit(1);
554         }
555
556         if (!password_change(remote_machine, user_name, old_pw, new_pw, 0)) {
557                 fprintf(stderr,"Failed to change password for %s\n", user_name);
558                 result = 1;
559                 goto done;
560         }
561
562         printf("Password changed for user %s\n", user_name);
563
564  done:
565         SAFE_FREE(old_pw);
566         SAFE_FREE(new_pw);
567
568         return result;
569 }
570
571
572
573 /*********************************************************
574  Start here.
575 **********************************************************/
576 int main(int argc, char **argv)
577 {       
578         int local_flags = 0;
579         
580         AllowDebugChange = False;
581
582 #if defined(HAVE_SET_AUTH_PARAMETERS)
583         set_auth_parameters(argc, argv);
584 #endif /* HAVE_SET_AUTH_PARAMETERS */
585
586         if (getuid() == 0) {
587                 local_flags = LOCAL_AM_ROOT;
588         }
589
590         local_flags = process_options(argc, argv, local_flags);
591
592         setup_logging("smbpasswd", True);
593         
594         /*
595          * Set the machine NETBIOS name if not already
596          * set from the config file. 
597          */ 
598     
599         if (!init_names())
600                 return 1;
601
602         /* Check the effective uid - make sure we are not setuid */
603         if (is_setuid_root()) {
604                 fprintf(stderr, "smbpasswd must *NOT* be setuid root.\n");
605                 exit(1);
606         }
607
608         if (local_flags & LOCAL_AM_ROOT) {
609                 secrets_init();
610                 return process_root(local_flags);
611         } 
612
613         return process_nonroot(local_flags);
614 }