2020-07-25 22:08:55 +00:00
|
|
|
/*
|
2021-09-01 02:32:46 +00:00
|
|
|
* Copyright (c) 2020, Peter Elliott <pelliott@serenityos.org>
|
2021-01-21 08:58:31 +00:00
|
|
|
* Copyright (c) 2021, Andreas Kling <kling@serenityos.org>
|
2020-07-25 22:08:55 +00:00
|
|
|
*
|
2021-04-22 08:24:48 +00:00
|
|
|
* SPDX-License-Identifier: BSD-2-Clause
|
2020-07-25 22:08:55 +00:00
|
|
|
*/
|
|
|
|
|
2021-09-11 16:53:25 +00:00
|
|
|
#include <AK/ScopeGuard.h>
|
2020-09-04 19:01:48 +00:00
|
|
|
#include <LibCore/Account.h>
|
2020-07-25 22:08:55 +00:00
|
|
|
#include <LibCore/ArgsParser.h>
|
|
|
|
#include <LibCore/GetPassword.h>
|
2021-12-11 16:23:20 +00:00
|
|
|
#include <LibCore/System.h>
|
|
|
|
#include <LibMain/Main.h>
|
2020-07-25 22:08:55 +00:00
|
|
|
#include <string.h>
|
|
|
|
#include <unistd.h>
|
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
ErrorOr<int> serenity_main(Main::Arguments arguments)
|
2020-07-25 22:08:55 +00:00
|
|
|
{
|
|
|
|
if (geteuid() != 0) {
|
2021-01-09 21:14:20 +00:00
|
|
|
warnln("Not running as root :^(");
|
2020-07-25 22:08:55 +00:00
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
2021-12-16 18:32:23 +00:00
|
|
|
TRY(Core::System::setegid(0));
|
2020-07-25 22:08:55 +00:00
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
TRY(Core::System::pledge("stdio wpath rpath cpath fattr tty"));
|
|
|
|
TRY(Core::System::unveil("/etc", "rwc"));
|
|
|
|
TRY(Core::System::unveil(nullptr, nullptr));
|
2020-07-25 22:08:55 +00:00
|
|
|
|
|
|
|
bool del = false;
|
|
|
|
bool lock = false;
|
|
|
|
bool unlock = false;
|
2023-01-07 20:04:23 +00:00
|
|
|
StringView username {};
|
2020-07-25 22:08:55 +00:00
|
|
|
|
|
|
|
auto args_parser = Core::ArgsParser();
|
2020-12-05 15:22:58 +00:00
|
|
|
args_parser.set_general_help("Modify an account password.");
|
2020-07-25 22:08:55 +00:00
|
|
|
args_parser.add_option(del, "Delete password", "delete", 'd');
|
|
|
|
args_parser.add_option(lock, "Lock password", "lock", 'l');
|
|
|
|
args_parser.add_option(unlock, "Unlock password", "unlock", 'u');
|
|
|
|
args_parser.add_positional_argument(username, "Username", "username", Core::ArgsParser::Required::No);
|
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
args_parser.parse(arguments);
|
2020-07-25 22:08:55 +00:00
|
|
|
|
2020-09-04 19:01:48 +00:00
|
|
|
uid_t current_uid = getuid();
|
2020-07-25 22:08:55 +00:00
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
// target_account is the account we are changing the password of.
|
2022-07-11 20:42:03 +00:00
|
|
|
auto target_account = TRY(!username.is_empty()
|
2022-06-10 18:06:06 +00:00
|
|
|
? Core::Account::from_name(username)
|
2021-12-11 16:23:20 +00:00
|
|
|
: Core::Account::from_uid(current_uid));
|
2020-09-04 19:01:48 +00:00
|
|
|
|
2021-01-09 16:46:30 +00:00
|
|
|
setpwent();
|
|
|
|
|
2020-09-04 19:01:48 +00:00
|
|
|
if (current_uid != 0 && current_uid != target_account.uid()) {
|
2021-01-09 21:14:20 +00:00
|
|
|
warnln("You can't modify passwd for {}", username);
|
2020-09-04 19:01:48 +00:00
|
|
|
return 1;
|
2020-07-25 22:08:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (del) {
|
2020-09-04 19:01:48 +00:00
|
|
|
target_account.delete_password();
|
2020-07-25 22:08:55 +00:00
|
|
|
} else if (lock) {
|
2020-09-04 19:01:48 +00:00
|
|
|
target_account.set_password_enabled(false);
|
2020-07-25 22:08:55 +00:00
|
|
|
} else if (unlock) {
|
2020-09-04 19:01:48 +00:00
|
|
|
target_account.set_password_enabled(true);
|
2020-07-25 22:08:55 +00:00
|
|
|
} else {
|
2021-05-24 03:08:18 +00:00
|
|
|
if (current_uid != 0) {
|
2022-07-11 17:32:29 +00:00
|
|
|
auto current_password = TRY(Core::get_password("Current password: "sv));
|
2021-05-24 03:08:18 +00:00
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
if (!target_account.authenticate(current_password)) {
|
2021-05-24 03:08:18 +00:00
|
|
|
warnln("Incorrect or disabled password.");
|
2021-05-24 20:27:35 +00:00
|
|
|
warnln("Password for user {} unchanged.", target_account.username());
|
2021-05-24 03:08:18 +00:00
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-07-11 17:32:29 +00:00
|
|
|
auto new_password = TRY(Core::get_password("New password: "sv));
|
|
|
|
auto new_password_retype = TRY(Core::get_password("Retype new password: "sv));
|
2021-05-24 19:50:56 +00:00
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
if (new_password.is_empty() && new_password_retype.is_empty()) {
|
2021-05-24 20:41:36 +00:00
|
|
|
warnln("No password supplied.");
|
|
|
|
warnln("Password for user {} unchanged.", target_account.username());
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
if (new_password.view() != new_password_retype.view()) {
|
2021-05-24 19:50:56 +00:00
|
|
|
warnln("Sorry, passwords don't match.");
|
2021-05-24 20:27:35 +00:00
|
|
|
warnln("Password for user {} unchanged.", target_account.username());
|
2021-05-24 19:50:56 +00:00
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
target_account.set_password(new_password);
|
2020-07-25 22:08:55 +00:00
|
|
|
}
|
|
|
|
|
2021-12-11 16:23:20 +00:00
|
|
|
TRY(Core::System::pledge("stdio wpath rpath cpath fattr"));
|
2021-01-09 21:22:07 +00:00
|
|
|
|
2021-12-16 20:41:57 +00:00
|
|
|
TRY(target_account.sync());
|
2020-07-25 22:08:55 +00:00
|
|
|
|
2021-12-16 20:41:57 +00:00
|
|
|
outln("Password for user {} successfully updated.", target_account.username());
|
2020-07-25 22:08:55 +00:00
|
|
|
return 0;
|
|
|
|
}
|