-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathcheck_OTP.c
105 lines (96 loc) · 2.16 KB
/
check_OTP.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
#ifdef HAVE_CONFIG_H
#include "config.h"
#endif
#include <errno.h>
#include <stdio.h>
#include <string.h>
#include <getopt.h>
#include <stdlib.h>
#include "otp.h"
#include "util.h"
static void
usage(int err)
{
if (err > 0) {
switch(err) {
case 1:
printf("Too many arguments\n");
break;
case 2:
printf("Database not set\n");
break;
case 3:
printf("User not set\n");
break;
case 4:
printf("OTP not set\n");
break;
default:
printf("Unknown usage error (%i), please contact us\n", err);
exit(-2);
break;
}
} else {
printf("check_OTP: Check the output of a yubikey against a local database\n");
printf(" (Package: %s. Bug report to %s)\n\n", PACKAGE_STRING, PACKAGE_BUGREPORT);
printf("Usage: ./check_OTP [-hvl] -s <database> -u <user> -o <OTP>\n");
printf(" Exit code specifies the result: 0 = OK, !0 = ERROR\n");
printf("Options:\n");
printf(" -h, --help Print this ...\n");
printf(" -v Print errors occurring when parsing the input\n");
printf(" -l Use syslog to log errors (Only useful when -v is set)\n");
exit(err);
}
exit(-1);
}
int
main(int argc, char *argv[])
{
char verbose = 0;
char syslog = 0;
char *sql_db = NULL;
char *username = NULL;
char *otp = NULL;
int opt;
while((opt = getopt(argc, argv, "hvls:u:o:")) != -1) {
switch(opt) {
case 'h':
usage(0);
break;
case 'v':
++verbose;
break;
case 'l':
++syslog;
break;
case 's':
sql_db = optarg;
break;
case 'u':
username = optarg;
break;
case 'o':
otp = optarg;
break;
}
}
if(argc > optind) {
usage(1);
}
if (sql_db == NULL) {
usage(2);
}
if (username == NULL) {
usage(3);
}
if (otp == NULL) {
usage(4);
}
if (forget_real_credentials() != 0) {
if (verbose) {
printf("Unable to fix uid/gid\n");
}
return -EPERM;
}
return check_otp(sql_db, username, strlen(username), otp, verbose, syslog);
}