1 /*-
2 * Copyright (c) 2015 Dag-Erling Smørgrav
3 * All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. The name of the author may not be used to endorse or promote
14 * products derived from this software without specific prior written
15 * permission.
16 *
17 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27 * SUCH DAMAGE.
28 */
29
30 #ifdef HAVE_CONFIG_H
31 # include "config.h"
32 #endif
33
34 #include <sys/param.h>
35
36 #include <limits.h>
37 #include <stdlib.h>
38 #include <string.h>
39
40 #include <security/pam_modules.h>
41 #include <security/openpam.h>
42
43 #include "openpam_impl.h"
44
45 static int
pam_return(pam_handle_t * pamh,int flags,int argc,const char * argv[])46 pam_return(pam_handle_t *pamh, int flags,
47 int argc, const char *argv[])
48 {
49 const char *errname;
50 char *e;
51 long errcode;
52
53 (void)flags;
54 (void)argc;
55 (void)argv;
56 if ((errname = openpam_get_option(pamh, "error")) == NULL ||
57 errname[0] == '\0') {
58 openpam_log(PAM_LOG_ERROR, "missing error parameter");
59 return (PAM_SYSTEM_ERR);
60 }
61 /* is it a number? */
62 errcode = strtol(errname, &e, 10);
63 if (e != NULL && *e == '\0') {
64 /* yep, check range */
65 if (errcode >= INT_MIN && errcode <= INT_MAX)
66 return (errcode);
67 } else {
68 /* nope, look it up */
69 for (errcode = 0; errcode < PAM_NUM_ERRORS; ++errcode)
70 if (strcmp(errname, pam_err_name[errcode]) == 0)
71 return (errcode);
72 }
73 openpam_log(PAM_LOG_ERROR, "invalid error code '%s'", errname);
74 return (PAM_SYSTEM_ERR);
75 }
76
77 PAM_EXTERN int
pam_sm_authenticate(pam_handle_t * pamh,int flags,int argc,const char * argv[])78 pam_sm_authenticate(pam_handle_t *pamh, int flags,
79 int argc, const char *argv[])
80 {
81
82 return (pam_return(pamh, flags, argc, argv));
83 }
84
85 PAM_EXTERN int
pam_sm_setcred(pam_handle_t * pamh,int flags,int argc,const char * argv[])86 pam_sm_setcred(pam_handle_t *pamh, int flags,
87 int argc, const char *argv[])
88 {
89
90 return (pam_return(pamh, flags, argc, argv));
91 }
92
93 PAM_EXTERN int
pam_sm_acct_mgmt(pam_handle_t * pamh,int flags,int argc,const char * argv[])94 pam_sm_acct_mgmt(pam_handle_t *pamh, int flags,
95 int argc, const char *argv[])
96 {
97
98 return (pam_return(pamh, flags, argc, argv));
99 }
100
101 PAM_EXTERN int
pam_sm_open_session(pam_handle_t * pamh,int flags,int argc,const char * argv[])102 pam_sm_open_session(pam_handle_t *pamh, int flags,
103 int argc, const char *argv[])
104 {
105
106 return (pam_return(pamh, flags, argc, argv));
107 }
108
109 PAM_EXTERN int
pam_sm_close_session(pam_handle_t * pamh,int flags,int argc,const char * argv[])110 pam_sm_close_session(pam_handle_t *pamh, int flags,
111 int argc, const char *argv[])
112 {
113
114 return (pam_return(pamh, flags, argc, argv));
115 }
116
117 PAM_EXTERN int
pam_sm_chauthtok(pam_handle_t * pamh,int flags,int argc,const char * argv[])118 pam_sm_chauthtok(pam_handle_t *pamh, int flags,
119 int argc, const char *argv[])
120 {
121
122 return (pam_return(pamh, flags, argc, argv));
123 }
124
125 PAM_MODULE_ENTRY("pam_return");
126