191094Sdes/*-
2115619Sdes * Copyright (c) 2002-2003 Networks Associates Technology, Inc.
3228690Sdes * Copyright (c) 2004-2011 Dag-Erling Sm��rgrav
491094Sdes * All rights reserved.
591094Sdes *
691094Sdes * This software was developed for the FreeBSD Project by ThinkSec AS and
799158Sdes * Network Associates Laboratories, the Security Research Division of
899158Sdes * Network Associates, Inc.  under DARPA/SPAWAR contract N66001-01-C-8035
999158Sdes * ("CBOSS"), as part of the DARPA CHATS research program.
1091094Sdes *
1191094Sdes * Redistribution and use in source and binary forms, with or without
1291094Sdes * modification, are permitted provided that the following conditions
1391094Sdes * are met:
1491094Sdes * 1. Redistributions of source code must retain the above copyright
1591094Sdes *    notice, this list of conditions and the following disclaimer.
1691094Sdes * 2. Redistributions in binary form must reproduce the above copyright
1791094Sdes *    notice, this list of conditions and the following disclaimer in the
1891094Sdes *    documentation and/or other materials provided with the distribution.
1991094Sdes * 3. The name of the author may not be used to endorse or promote
2091094Sdes *    products derived from this software without specific prior written
2191094Sdes *    permission.
2291094Sdes *
2391094Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
2491094Sdes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
2591094Sdes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
2691094Sdes * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
2791094Sdes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
2891094Sdes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
2991094Sdes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
3091094Sdes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
3191094Sdes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
3291094Sdes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
3391094Sdes * SUCH DAMAGE.
3491094Sdes *
35255376Sdes * $Id: pam_get_item.c 648 2013-03-05 17:54:27Z des $
3691094Sdes */
3791094Sdes
38228690Sdes#ifdef HAVE_CONFIG_H
39228690Sdes# include "config.h"
40228690Sdes#endif
41228690Sdes
4291094Sdes#include <sys/param.h>
4391094Sdes
4491094Sdes#include <security/pam_appl.h>
4591094Sdes
4691094Sdes#include "openpam_impl.h"
4791094Sdes
4891094Sdes/*
4991094Sdes * XSSO 4.2.1
5091094Sdes * XSSO 6 page 46
5191094Sdes *
5291094Sdes * Get PAM information
5391094Sdes */
5491094Sdes
5591094Sdesint
56174832Sdespam_get_item(const pam_handle_t *pamh,
5791094Sdes	int item_type,
5891094Sdes	const void **item)
5991094Sdes{
60107937Sdes
61110503Sdes	ENTERI(item_type);
6291094Sdes	if (pamh == NULL)
63107937Sdes		RETURNC(PAM_SYSTEM_ERR);
6491094Sdes	switch (item_type) {
6591094Sdes	case PAM_SERVICE:
6691094Sdes	case PAM_USER:
6791094Sdes	case PAM_AUTHTOK:
6891094Sdes	case PAM_OLDAUTHTOK:
6991094Sdes	case PAM_TTY:
7091094Sdes	case PAM_RHOST:
7191094Sdes	case PAM_RUSER:
7291094Sdes	case PAM_CONV:
7391094Sdes	case PAM_USER_PROMPT:
74228690Sdes	case PAM_REPOSITORY:
7591094Sdes	case PAM_AUTHTOK_PROMPT:
7693982Sdes	case PAM_OLDAUTHTOK_PROMPT:
77228690Sdes	case PAM_HOST:
7891094Sdes		*item = pamh->item[item_type];
79107937Sdes		RETURNC(PAM_SUCCESS);
8091094Sdes	default:
81107937Sdes		RETURNC(PAM_SYMBOL_ERR);
8291094Sdes	}
8391094Sdes}
8491100Sdes
8591100Sdes/*
8691100Sdes * Error codes:
8791100Sdes *
8891100Sdes *	PAM_SYMBOL_ERR
8991100Sdes *	PAM_SYSTEM_ERR
9091100Sdes */
9191100Sdes
9291100Sdes/**
9391100Sdes * The =pam_get_item function stores a pointer to the item specified by
94228690Sdes * the =item_type argument in the location pointed to by the =item
9591100Sdes * argument.
9691100Sdes * The item is retrieved from the PAM context specified by the =pamh
9791100Sdes * argument.
98228690Sdes * If =pam_get_item fails, the =item argument is untouched.
99228690Sdes *
10091100Sdes * The following item types are recognized:
10191100Sdes *
10291100Sdes *	=PAM_SERVICE:
10391100Sdes *		The name of the requesting service.
10491100Sdes *	=PAM_USER:
10591100Sdes *		The name of the user the application is trying to
10691100Sdes *		authenticate.
10791100Sdes *	=PAM_TTY:
10891100Sdes *		The name of the current terminal.
10991100Sdes *	=PAM_RHOST:
11091100Sdes *		The name of the applicant's host.
11191100Sdes *	=PAM_CONV:
11291100Sdes *		A =struct pam_conv describing the current conversation
11391100Sdes *		function.
11491100Sdes *	=PAM_AUTHTOK:
11591100Sdes *		The current authentication token.
11691100Sdes *	=PAM_OLDAUTHTOK:
11791100Sdes *		The expired authentication token.
11891100Sdes *	=PAM_RUSER:
11991100Sdes *		The name of the applicant.
12091100Sdes *	=PAM_USER_PROMPT:
12191100Sdes *		The prompt to use when asking the applicant for a user
12291100Sdes *		name to authenticate as.
12391100Sdes *	=PAM_AUTHTOK_PROMPT:
12491100Sdes *		The prompt to use when asking the applicant for an
12591100Sdes *		authentication token.
12693982Sdes *	=PAM_OLDAUTHTOK_PROMPT:
12793982Sdes *		The prompt to use when asking the applicant for an
12893982Sdes *		expired authentication token prior to changing it.
129228690Sdes *	=PAM_HOST:
130228690Sdes *		The name of the host the application runs on.
13191100Sdes *
13291100Sdes * See =pam_start for a description of =struct pam_conv.
13391100Sdes *
13491100Sdes * >pam_set_item
13591100Sdes */
136