Home Explore Help
Register Sign In
wareck
/
openwrt_lede
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 488fc98adf
Branches Tags
openwrt_lede
/
package
/
network
/
services
/
samba36
/
patches
/
111-owrt_smbpasswd.patch

111-owrt_smbpasswd.patch 6.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281 
  1. --- a/source3/Makefile.in
    2. 

  2. +++ b/source3/Makefile.in
    3. 

  3. @@ -1025,7 +1025,7 @@ TEST_LP_LOAD_OBJ = param/test_lp_load.o
    4. 

  4.  
    5. 

  5.  PASSWD_UTIL_OBJ = utils/passwd_util.o
    6. 

  6.  
    7. 

  7. -SMBPASSWD_OBJ = utils/smbpasswd.o $(PASSWD_UTIL_OBJ) $(PASSCHANGE_OBJ) \
    8. 

  8. +SMBPASSWD_OBJ = utils/owrt_smbpasswd.o $(PASSWD_UTIL_OBJ) $(PASSCHANGE_OBJ) \
    9. 

  9.  		$(PARAM_OBJ) $(LIBSMB_OBJ) $(PASSDB_OBJ) \
    10. 

  10.  		$(GROUPDB_OBJ) $(LIB_NONSMBD_OBJ) $(KRBCLIENT_OBJ) \
    11. 

  11.  		$(POPT_LIB_OBJ) $(SMBLDAP_OBJ) \
    12. 

  12. @@ -1813,7 +1813,7 @@ nmbd/nmbd_multicall.o: nmbd/nmbd.c nmbd/
    13. 

  13.  		echo "$(COMPILE_CC_PATH)" 1>&2;\
    14. 

  14.  		$(COMPILE_CC_PATH) >/dev/null 2>&1
    15. 

  15.  
    16. 

  16. -utils/smbpasswd_multicall.o: utils/smbpasswd.c utils/smbpasswd.o
    17. 

  17. +utils/smbpasswd_multicall.o: utils/owrt_smbpasswd.c utils/owrt_smbpasswd.o
    18. 

  18.  	@echo Compiling $<.c
    19. 

  19.  	@$(COMPILE_CC_PATH) -Dmain=smbpasswd_main && exit 0;\
    20. 

  20.  		echo "The following command failed:" 1>&2;\
    21. 

  21. @@ -1822,7 +1822,7 @@ utils/smbpasswd_multicall.o: utils/smbpa
    22. 

  22.  
    23. 

  23.  SMBD_MULTI_O = $(patsubst smbd/server.o,smbd/server_multicall.o,$(SMBD_OBJ))
    24. 

  24.  NMBD_MULTI_O = $(patsubst nmbd/nmbd.o,nmbd/nmbd_multicall.o,$(filter-out $(LIB_DUMMY_OBJ),$(NMBD_OBJ)))
    25. 

  25. -SMBPASSWD_MULTI_O = $(patsubst utils/smbpasswd.o,utils/smbpasswd_multicall.o,$(filter-out $(LIB_DUMMY_OBJ),$(SMBPASSWD_OBJ)))
    26. 

  26. +SMBPASSWD_MULTI_O = $(patsubst utils/owrt_smbpasswd.o,utils/smbpasswd_multicall.o,$(filter-out $(LIB_DUMMY_OBJ),$(SMBPASSWD_OBJ)))
    27. 

  27.  MULTI_O = multi.o
    28. 

  28.  
    29. 

  29.  MULTICALL_O = $(sort $(SMBD_MULTI_O) $(NMBD_MULTI_O) $(SMBPASSWD_MULTI_O) $(MULTI_O))
    30. 

  30. --- /dev/null
    31. 

  31. +++ b/source3/utils/owrt_smbpasswd.c
    32. 

  32. @@ -0,0 +1,249 @@
    33. 

  33. +/*
    34. 

  34. + * Copyright (C) 2012 Felix Fietkau <nbd@nbd.name>
    35. 

  35. + * Copyright (C) 2008 John Crispin <blogic@openwrt.org>
    36. 

  36. + *
    37. 

  37. + * This program is free software; you can redistribute it and/or modify it
    38. 

  38. + * under the terms of the GNU General Public License as published by the
    39. 

  39. + * Free Software Foundation; either version 2 of the License, or (at your
    40. 

  40. + * option) any later version.
    41. 

  41. + *
    42. 

  42. + * This program is distributed in the hope that it will be useful, but WITHOUT
    43. 

  43. + * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
    44. 

  44. + * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
    45. 

  45. + * more details.
    46. 

  46. + *
    47. 

  47. + * You should have received a copy of the GNU General Public License along with
    48. 

  48. + * this program; if not, write to the Free Software Foundation, Inc., 675
    49. 

  49. + * Mass Ave, Cambridge, MA 02139, USA.  */
    50. 

  50. +
    51. 

  51. +#include "includes.h"
    52. 

  52. +#include <endian.h>
    53. 

  53. +#include <stdio.h>
    54. 

  54. +
    55. 

  55. +static char buf[256];
    56. 

  56. +
    57. 

  57. +static void md4hash(const char *passwd, uchar p16[16])
    58. 

  58. +{
    59. 

  59. +	int len;
    60. 

  60. +	smb_ucs2_t wpwd[129];
    61. 

  61. +	int i;
    62. 

  62. +
    63. 

  63. +	len = strlen(passwd);
    64. 

  64. +	for (i = 0; i < len; i++) {
    65. 

  65. +#if __BYTE_ORDER == __LITTLE_ENDIAN
    66. 

  66. +		wpwd[i] = (unsigned char)passwd[i];
    67. 

  67. +#else
    68. 

  68. +		wpwd[i] = (unsigned char)passwd[i] << 8;
    69. 

  69. +#endif
    70. 

  70. +	}
    71. 

  71. +	wpwd[i] = 0;
    72. 

  72. +
    73. 

  73. +	len = len * sizeof(int16);
    74. 

  74. +	mdfour(p16, (unsigned char *)wpwd, len);
    75. 

  75. +	ZERO_STRUCT(wpwd);
    76. 

  76. +}
    77. 

  77. +
    78. 

  78. +
    79. 

  79. +static bool find_passwd_line(FILE *fp, const char *user, char **next)
    80. 

  80. +{
    81. 

  81. +	char *p1;
    82. 

  82. +
    83. 

  83. +	while (!feof(fp)) {
    84. 

  84. +		if(!fgets(buf, sizeof(buf) - 1, fp))
    85. 

  85. +			continue;
    86. 

  86. +
    87. 

  87. +		p1 = strchr(buf, ':');
    88. 

  88. +
    89. 

  89. +		if (p1 - buf != strlen(user))
    90. 

  90. +			continue;
    91. 

  91. +
    92. 

  92. +		if (strncmp(buf, user, p1 - buf) != 0)
    93. 

  93. +			continue;
    94. 

  94. +
    95. 

  95. +		if (next)
    96. 

  96. +			*next = p1;
    97. 

  97. +		return true;
    98. 

  98. +	}
    99. 

  99. +	return false;
    100. 

  100. +}
    101. 

  101. +
    102. 

  102. +/* returns -1 if user is not present in /etc/passwd*/
    103. 

  103. +static int find_uid_for_user(const char *user)
    104. 

  104. +{
    105. 

  105. +	FILE *fp;
    106. 

  106. +	char *p1, *p2, *p3;
    107. 

  107. +	int ret = -1;
    108. 

  108. +
    109. 

  109. +	fp = fopen("/etc/passwd", "r");
    110. 

  110. +	if (!fp) {
    111. 

  111. +		printf("failed to open /etc/passwd");
    112. 

  112. +		goto out;
    113. 

  113. +	}
    114. 

  114. +
    115. 

  115. +	if (!find_passwd_line(fp, user, &p1)) {
    116. 

  116. +		printf("User %s not found or invalid in /etc/passwd\n", user);
    117. 

  117. +		goto out;
    118. 

  118. +	}
    119. 

  119. +
    120. 

  120. +	p2 = strchr(p1 + 1, ':');
    121. 

  121. +	if (!p2)
    122. 

  122. +		goto out;
    123. 

  123. +
    124. 

  124. +	p2++;
    125. 

  125. +	p3 = strchr(p2, ':');
    126. 

  126. +	if (!p1)
    127. 

  127. +		goto out;
    128. 

  128. +
    129. 

  129. +	*p3 = '\0';
    130. 

  130. +	ret = atoi(p2);
    131. 

  131. +
    132. 

  132. +out:
    133. 

  133. +	if(fp)
    134. 

  134. +		fclose(fp);
    135. 

  135. +	return ret;
    136. 

  136. +}
    137. 

  137. +
    138. 

  138. +static void smbpasswd_write_user(FILE *fp, const char *user, int uid, const char *password)
    139. 

  139. +{
    140. 

  140. +	static uchar nt_p16[NT_HASH_LEN];
    141. 

  141. +	int len = 0;
    142. 

  142. +	int i;
    143. 

  143. +
    144. 

  144. +	md4hash(strdup(password), nt_p16);
    145. 

  145. +
    146. 

  146. +	len += snprintf(buf + len, sizeof(buf) - len, "%s:%u:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:", user, uid);
    147. 

  147. +	for(i = 0; i < NT_HASH_LEN; i++)
    148. 

  148. +		len += snprintf(buf + len, sizeof(buf) - len, "%02X", nt_p16[i]);
    149. 

  149. +
    150. 

  150. +	snprintf(buf + len, sizeof(buf) - len, ":[U          ]:LCT-00000001:\n");
    151. 

  151. +	fputs(buf, fp);
    152. 

  152. +}
    153. 

  153. +
    154. 

  154. +static void smbpasswd_delete_user(FILE *fp)
    155. 

  155. +{
    156. 

  156. +	fpos_t r_pos, w_pos;
    157. 

  157. +	int len = strlen(buf);
    158. 

  158. +
    159. 

  159. +	fgetpos(fp, &r_pos);
    160. 

  160. +	fseek(fp, -len, SEEK_CUR);
    161. 

  161. +	fgetpos(fp, &w_pos);
    162. 

  162. +	fsetpos(fp, &r_pos);
    163. 

  163. +
    164. 

  164. +	while (fgets(buf, sizeof(buf) - 1, fp)) {
    165. 

  165. +		int cur_len = strlen(buf);
    166. 

  166. +
    167. 

  167. +		fsetpos(fp, &w_pos);
    168. 

  168. +		fputs(buf, fp);
    169. 

  169. +		fgetpos(fp, &w_pos);
    170. 

  170. +
    171. 

  171. +		fsetpos(fp, &r_pos);
    172. 

  172. +		fseek(fp, cur_len, SEEK_CUR);
    173. 

  173. +		fgetpos(fp, &r_pos);
    174. 

  174. +	}
    175. 

  175. +
    176. 

  176. +	fsetpos(fp, &w_pos);
    177. 

  177. +	ftruncate(fileno(fp), ftello(fp));
    178. 

  178. +}
    179. 

  179. +
    180. 

  180. +static int usage(const char *progname)
    181. 

  181. +{
    182. 

  182. +	fprintf(stderr,
    183. 

  183. +		"Usage: %s [options] <username>\n"
    184. 

  184. +		"\n"
    185. 

  185. +		"Options:\n"
    186. 

  186. +		"  -s		read password from stdin\n"
    187. 

  187. +		"  -a		add user\n"
    188. 

  188. +		"  -x		delete user\n",
    189. 

  189. +		progname);
    190. 

  190. +	return 1;
    191. 

  191. +}
    192. 

  192. +
    193. 

  193. +int main(int argc, char **argv)
    194. 

  194. +{
    195. 

  195. +	const char *prog = argv[0];
    196. 

  196. +	const char *user;
    197. 

  197. +	char *pw1, *pw2;
    198. 

  198. +	FILE *fp;
    199. 

  199. +	bool add = false, delete = false, get_stdin = false, found;
    200. 

  200. +	int ch;
    201. 

  201. +	int uid;
    202. 

  202. +
    203. 

  203. +	TALLOC_CTX *frame = talloc_stackframe();
    204. 

  204. +
    205. 

  205. +	while ((ch = getopt(argc, argv, "asx")) != EOF) {
    206. 

  206. +		switch (ch) {
    207. 

  207. +		case 's':
    208. 

  208. +			get_stdin = true;
    209. 

  209. +			break;
    210. 

  210. +		case 'a':
    211. 

  211. +			add = true;
    212. 

  212. +			break;
    213. 

  213. +		case 'x':
    214. 

  214. +			delete = true;
    215. 

  215. +			break;
    216. 

  216. +		default:
    217. 

  217. +			return usage(prog);
    218. 

  218. +		}
    219. 

  219. +	}
    220. 

  220. +
    221. 

  221. +	if (add && delete)
    222. 

  222. +		return usage(prog);
    223. 

  223. +
    224. 

  224. +	argc -= optind;
    225. 

  225. +	argv += optind;
    226. 

  226. +
    227. 

  227. +	if (!argc)
    228. 

  228. +		return usage(prog);
    229. 

  229. +
    230. 

  230. +	user = argv[0];
    231. 

  231. +	if (!delete) {
    232. 

  232. +		uid = find_uid_for_user(user);
    233. 

  233. +		if (uid < 0) {
    234. 

  234. +			fprintf(stderr, "Could not find user '%s' in /etc/passwd\n", user);
    235. 

  235. +			return 2;
    236. 

  236. +		}
    237. 

  237. +	}
    238. 

  238. +
    239. 

  239. +	fp = fopen("/etc/samba/smbpasswd", "r+");
    240. 

  240. +	if(!fp) {
    241. 

  241. +		fprintf(stderr, "Failed to open /etc/samba/smbpasswd");
    242. 

  242. +		return 3;
    243. 

  243. +	}
    244. 

  244. +
    245. 

  245. +	found = find_passwd_line(fp, user, NULL);
    246. 

  246. +	if (!add && !found) {
    247. 

  247. +		fprintf(stderr, "Could not find user '%s' in /etc/samba/smbpasswd\n", user);
    248. 

  248. +		return 3;
    249. 

  249. +	}
    250. 

  250. +
    251. 

  251. +	if (delete) {
    252. 

  252. +		smbpasswd_delete_user(fp);
    253. 

  253. +		goto out;
    254. 

  254. +	}
    255. 

  255. +
    256. 

  256. +	pw1 = get_pass("New SMB password:", get_stdin);
    257. 

  257. +	if (!pw1)
    258. 

  258. +		pw1 = strdup("");
    259. 

  259. +
    260. 

  260. +	pw2 = get_pass("Retype SMB password:", get_stdin);
    261. 

  261. +	if (!pw2)
    262. 

  262. +		pw2 = strdup("");
    263. 

  263. +
    264. 

  264. +	if (strcmp(pw1, pw2) != 0) {
    265. 

  265. +		fprintf(stderr, "Mismatch - password unchanged.\n");
    266. 

  266. +		goto out_free;
    267. 

  267. +	}
    268. 

  268. +
    269. 

  269. +	if (found)
    270. 

  270. +		fseek(fp, -strlen(buf), SEEK_CUR);
    271. 

  271. +	smbpasswd_write_user(fp, user, uid, pw2);
    272. 

  272. +
    273. 

  273. +out_free:
    274. 

  274. +	free(pw1);
    275. 

  275. +	free(pw2);
    276. 

  276. +out:
    277. 

  277. +	fclose(fp);
    278. 

  278. +	TALLOC_FREE(frame);
    279. 

  279. +
    280. 

  280. +	return 0;
    281. 

  281. +}
    282.