191094Sdes/*- 2115619Sdes * Copyright (c) 2002-2003 Networks Associates Technology, Inc. 3228690Sdes * Copyright (c) 2004-2011 Dag-Erling Sm��rgrav 491094Sdes * All rights reserved. 591094Sdes * 691094Sdes * This software was developed for the FreeBSD Project by ThinkSec AS and 799158Sdes * Network Associates Laboratories, the Security Research Division of 899158Sdes * Network Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035 999158Sdes * ("CBOSS"), as part of the DARPA CHATS research program. 1091094Sdes * 1191094Sdes * Redistribution and use in source and binary forms, with or without 1291094Sdes * modification, are permitted provided that the following conditions 1391094Sdes * are met: 1491094Sdes * 1. Redistributions of source code must retain the above copyright 1591094Sdes * notice, this list of conditions and the following disclaimer. 1691094Sdes * 2. Redistributions in binary form must reproduce the above copyright 1791094Sdes * notice, this list of conditions and the following disclaimer in the 1891094Sdes * documentation and/or other materials provided with the distribution. 1991094Sdes * 3. The name of the author may not be used to endorse or promote 2091094Sdes * products derived from this software without specific prior written 2191094Sdes * permission. 2291094Sdes * 2391094Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 2491094Sdes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 2591094Sdes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2691094Sdes * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 2791094Sdes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2891094Sdes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2991094Sdes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 3091094Sdes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 3191094Sdes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 3291094Sdes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 3391094Sdes * SUCH DAMAGE. 3491094Sdes * 35255376Sdes * $Id: pam_acct_mgmt.c 648 2013-03-05 17:54:27Z des $ 3691094Sdes */ 3791094Sdes 38228690Sdes#ifdef HAVE_CONFIG_H 39228690Sdes# include "config.h" 40228690Sdes#endif 41228690Sdes 4291094Sdes#include <sys/param.h> 4391094Sdes 4491094Sdes#include <security/pam_appl.h> 4591094Sdes 4691094Sdes#include "openpam_impl.h" 4791094Sdes 4891094Sdes/* 4991094Sdes * XSSO 4.2.1 5091094Sdes * XSSO 6 page 32 5191094Sdes * 5291094Sdes * Perform PAM account validation procedures 5391094Sdes */ 5491094Sdes 5591094Sdesint 5691094Sdespam_acct_mgmt(pam_handle_t *pamh, 5791094Sdes int flags) 5891094Sdes{ 59110556Sdes int r; 6091094Sdes 61107937Sdes ENTER(); 62110556Sdes r = openpam_dispatch(pamh, PAM_SM_ACCT_MGMT, flags); 63110556Sdes RETURNC(r); 6491094Sdes} 6591100Sdes 6691100Sdes/* 6791100Sdes * Error codes: 6891100Sdes * 6991100Sdes * =openpam_dispatch 7091100Sdes * =pam_sm_acct_mgmt 7191100Sdes * !PAM_IGNORE 7291100Sdes */ 7394670Sdes 7494670Sdes/** 7594670Sdes * The =pam_acct_mgmt function verifies and enforces account restrictions 7694670Sdes * after the user has been authenticated. 7794670Sdes * 7894670Sdes * The =flags argument is the binary or of zero or more of the following 7994670Sdes * values: 8094670Sdes * 8194670Sdes * =PAM_SILENT: 8294670Sdes * Do not emit any messages. 8394670Sdes * =PAM_DISALLOW_NULL_AUTHTOK: 8494670Sdes * Fail if the user's authentication token is null. 8594670Sdes * 86115619Sdes * If any other bits are set, =pam_acct_mgmt will return 8794670Sdes * =PAM_SYMBOL_ERR. 8894670Sdes */ 89