xref: /titanic_50/usr/src/lib/libbc/libc/gen/common/grpauth.c (revision 8eea8e29cc4374d1ee24c25a07f45af132db3499)
1 /*
2  * CDDL HEADER START
3  *
4  * The contents of this file are subject to the terms of the
5  * Common Development and Distribution License, Version 1.0 only
6  * (the "License").  You may not use this file except in compliance
7  * with the License.
8  *
9  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10  * or http://www.opensolaris.org/os/licensing.
11  * See the License for the specific language governing permissions
12  * and limitations under the License.
13  *
14  * When distributing Covered Code, include this CDDL HEADER in each
15  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16  * If applicable, add the following below this CDDL HEADER, with the
17  * fields enclosed by brackets "[]" replaced with your own identifying
18  * information: Portions Copyright [yyyy] [name of copyright owner]
19  *
20  * CDDL HEADER END
21  */
22 /*
23  * Copyright 1992 Sun Microsystems, Inc.  All rights reserved.
24  * Use is subject to license terms.
25  */
26 
27 #pragma ident	"%Z%%M%	%I%	%E% SMI" /* c2 secure */
28 
29 #include <stdio.h>
30 #include <signal.h>
31 #include <grp.h>
32 #include <sys/time.h>
33 #include <errno.h>
34 
35 /*
36  * Version to go in the BCP compatibility library in SVr4 version of
37  * SunOS. This does not bother talking to rpc.pwdauthd or looking for the
38  * password.adjunct file on the system since they do not exist anymore.
39  * They have been effectively replaced by a more robust aging security provided
40  * by the combination of /etc/shadow file, shadow support in the NIS+
41  * passwd table and the use of secure RPC in NIS+.
42  */
43 
44 grpauth(name, password)
45 	char *name;
46 	char *password;
47 {
48 
49 	/*
50 	 * this routine authenticates a password for the named user.
51 	 * Assumes the adjunct file does not exist.
52 	 * and therefore checks the group "source" using the standard
53 	 * getgrnam(3C) routine that uses /etc/nsswitch.conf(4).
54 	 */
55 	struct group	gr;
56 	struct group	*grp;
57 
58 	if ((grp = getgrnam(name)) == NULL)
59 		/* group is not in main password system */
60 		return (-1);
61 	gr = *grp;
62 	if (gr.gr_passwd[0] == '#' && gr.gr_passwd[1] == '$') {
63 		/* this means that /etc/group has problems */
64 		fprintf(stderr, "grpauth: bad group entry for %s\n",
65 			gr.gr_name);
66 		return (-1);
67 	}
68 	if (strcmp(crypt(password, gr.gr_passwd), gr.gr_passwd) == 0)
69 		return (0);
70 	else
71 		return (-1);
72 }
73