xref: /titanic_41/usr/src/lib/libbc/libc/gen/common/grpauth.c (revision 40cb5e5daa7b80bb70fcf8dadfb20f9281566331)
1 /*
2  * CDDL HEADER START
3  *
4  * The contents of this file are subject to the terms of the
5  * Common Development and Distribution License, Version 1.0 only
6  * (the "License").  You may not use this file except in compliance
7  * with the License.
8  *
9  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10  * or http://www.opensolaris.org/os/licensing.
11  * See the License for the specific language governing permissions
12  * and limitations under the License.
13  *
14  * When distributing Covered Code, include this CDDL HEADER in each
15  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16  * If applicable, add the following below this CDDL HEADER, with the
17  * fields enclosed by brackets "[]" replaced with your own identifying
18  * information: Portions Copyright [yyyy] [name of copyright owner]
19  *
20  * CDDL HEADER END
21  */
22 /*
23  * Copyright 1992 Sun Microsystems, Inc.  All rights reserved.
24  * Use is subject to license terms.
25  */
26 
27 #pragma ident	"%Z%%M%	%I%	%E% SMI"
28 
29 #include <stdio.h>
30 #include <signal.h>
31 #include <grp.h>
32 #include <sys/time.h>
33 #include <errno.h>
34 
35 /*
36  * Version to go in the BCP compatibility library in SVr4 version of
37  * SunOS. This does not bother talking to rpc.pwdauthd or looking for the
38  * password.adjunct file on the system since they do not exist anymore.
39  * They have been effectively replaced by a more robust aging security provided
40  * by the combination of /etc/shadow file, shadow support in the NIS+
41  * passwd table and the use of secure RPC in NIS+.
42  */
43 
44 int
45 grpauth(char *name, char *password)
46 {
47 
48 	/*
49 	 * this routine authenticates a password for the named user.
50 	 * Assumes the adjunct file does not exist.
51 	 * and therefore checks the group "source" using the standard
52 	 * getgrnam(3C) routine that uses /etc/nsswitch.conf(4).
53 	 */
54 	struct group	gr;
55 	struct group	*grp;
56 
57 	if ((grp = getgrnam(name)) == NULL)
58 		/* group is not in main password system */
59 		return (-1);
60 	gr = *grp;
61 	if (gr.gr_passwd[0] == '#' && gr.gr_passwd[1] == '$') {
62 		/* this means that /etc/group has problems */
63 		fprintf(stderr, "grpauth: bad group entry for %s\n",
64 			gr.gr_name);
65 		return (-1);
66 	}
67 	if (strcmp(crypt(password, gr.gr_passwd), gr.gr_passwd) == 0)
68 		return (0);
69 	else
70 		return (-1);
71 }
72