1 /*
2 * Copyright (c) 2003 Ben Lindstrom. All rights reserved.
3 *
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions
6 * are met:
7 * 1. Redistributions of source code must retain the above copyright
8 * notice, this list of conditions and the following disclaimer.
9 * 2. Redistributions in binary form must reproduce the above copyright
10 * notice, this list of conditions and the following disclaimer in the
11 * documentation and/or other materials provided with the distribution.
12 *
13 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
14 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
15 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
16 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
17 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
18 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
19 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
20 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
21 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
22 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
23 */
24
25 #include "includes.h"
26
27 #include <sys/types.h>
28 #include <unistd.h>
29 #include <pwd.h>
30
31 # if defined(HAVE_CRYPT_H) && !defined(HAVE_SECUREWARE)
32 # include <crypt.h>
33 # endif
34
35 # ifdef __hpux
36 # include <hpsecurity.h>
37 # include <prot.h>
38 # endif
39
40 # ifdef HAVE_SECUREWARE
41 # include <sys/security.h>
42 # include <sys/audit.h>
43 # include <prot.h>
44 # endif
45
46 # if defined(HAVE_SHADOW_H) && !defined(DISABLE_SHADOW)
47 # include <shadow.h>
48 # endif
49
50 # if defined(HAVE_GETPWANAM) && !defined(DISABLE_SHADOW)
51 # include <sys/label.h>
52 # include <sys/audit.h>
53 # include <pwdadj.h>
54 # endif
55
56 # if defined(HAVE_MD5_PASSWORDS) && !defined(HAVE_MD5_CRYPT)
57 # include "md5crypt.h"
58 # endif
59
60 char *
xcrypt(const char * password,const char * salt)61 xcrypt(const char *password, const char *salt)
62 {
63 char *crypted;
64
65 # ifdef HAVE_MD5_PASSWORDS
66 if (is_md5_salt(salt))
67 crypted = md5_crypt(password, salt);
68 else
69 crypted = crypt(password, salt);
70 # elif defined(__hpux) && !defined(HAVE_SECUREWARE)
71 if (iscomsec())
72 crypted = bigcrypt(password, salt);
73 else
74 crypted = crypt(password, salt);
75 # elif defined(HAVE_SECUREWARE)
76 crypted = bigcrypt(password, salt);
77 # else
78 crypted = crypt(password, salt);
79 # endif
80
81 return crypted;
82 }
83
84 /*
85 * Handle shadowed password systems in a cleaner way for portable
86 * version.
87 */
88
89 char *
shadow_pw(struct passwd * pw)90 shadow_pw(struct passwd *pw)
91 {
92 char *pw_password = pw->pw_passwd;
93
94 # if defined(HAVE_SHADOW_H) && !defined(DISABLE_SHADOW)
95 struct spwd *spw = getspnam(pw->pw_name);
96
97 if (spw != NULL)
98 pw_password = spw->sp_pwdp;
99 # endif
100
101 #ifdef USE_LIBIAF
102 return(get_iaf_password(pw));
103 #endif
104
105 # if defined(HAVE_GETPWANAM) && !defined(DISABLE_SHADOW)
106 struct passwd_adjunct *spw;
107 if (issecure() && (spw = getpwanam(pw->pw_name)) != NULL)
108 pw_password = spw->pwa_passwd;
109 # elif defined(HAVE_SECUREWARE)
110 struct pr_passwd *spw = getprpwnam(pw->pw_name);
111
112 if (spw != NULL)
113 pw_password = spw->ufld.fd_encrypt;
114 # endif
115
116 return pw_password;
117 }
118