* Copyright (c) 1988 The Regents of the University of California.
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. All advertising materials mentioning features or use of this software
* must display the following acknowledgement:
* This product includes software developed by the University of
* California, Berkeley and its contributors.
* 4. Neither the name of the University nor the names of its contributors
* may be used to endorse or promote products derived from this software
* without specific prior written permission.
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
"@(#) Copyright (c) 1988 The Regents of the University of California.\n\
static char sccsid
[] = "@(#)chpass.c 5.17 (Berkeley) 3/3/91";
#include <sys/resource.h>
char *progname
= "chpass";
register enum { NEWSH
, LOADENTRY
, EDITENTRY
} op
;
register struct passwd
*pw
;
while ((ch
= getopt(argc
, argv
, "a:s:")) != EOF
)
if (op
== EDITENTRY
|| op
== NEWSH
)
if (!(pw
= getpwuid(uid
))) {
"chpass: unknown user: uid %u\n", uid
);
if (!(pw
= getpwnam(*argv
))) {
"chpass: unknown user %s.\n", *argv
);
if (uid
&& uid
!= pw
->pw_uid
)
/* protect p_shell -- it thinks NULL is /bin/sh */
if (p_shell(arg
, pw
, (ENTRY
*)NULL
))
pw_error((char *)NULL
, 0, 1);
* The temporary file/file descriptor usage is a little tricky here.
* 1: We start off with two fd's, one for the master password
* file (used to lock everything), and one for a temporary file.
* 2: Display() gets an fp for the temporary file, and copies the
* user's information into it. It then gives the temporary file
* to the user and closes the fp, closing the underlying fd.
* 3: The user edits the temporary file some number of times.
* 4: Verify() gets an fp for the temporary file, and verifies the
* contents. It can't use an fp derived from the step #2 fd,
* because the user's editor may have created a new instance of
* the file. Once the file is verified, its contents are stored
* in a password structure. The verify routine closes the fp,
* closing the underlying fd.
* 5: Delete the temporary file.
* 6: Get a new temporary file/fd. Pw_copy() gets an fp for it
* file and copies the master password file into it, replacing
* the user record with a new one. We can't use the first
* temporary file for this because it was owned by the user.
* Pw_copy() closes its fp, flushing the data and closing the
* underlying file descriptor. We can't close the master
* password fp, or we'd lose the lock.
* 7: Call pw_mkdb() (which renames the temporary file) and exit.
* The exit closes the master passwd fp/fd.
pw_error((char *)NULL
, 0, 1);
(void)fprintf(stderr
, "chpass: %s\n", strerror(EACCES
));
(void)fprintf(stderr
, "usage: chpass [-a list] [-s shell] [user]\n");