pam_deny.c revision 90230
1/*- 2 * Copyright 2001 Mark R V Murray 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24 * SUCH DAMAGE. 25 */ 26 27#include <sys/cdefs.h> 28__FBSDID("$FreeBSD: head/lib/libpam/modules/pam_deny/pam_deny.c 90230 2002-02-05 06:20:27Z des $"); 29 30#include <sys/types.h> 31 32#define PAM_SM_AUTH 33#define PAM_SM_ACCOUNT 34#define PAM_SM_SESSION 35#define PAM_SM_PASSWORD 36 37#include <security/pam_appl.h> 38#include <security/pam_modules.h> 39#include <security/pam_mod_misc.h> 40 41PAM_EXTERN int 42pam_sm_authenticate(pam_handle_t *pamh, int flags __unused, int argc, const char **argv) 43{ 44 struct options options; 45 46 pam_std_option(&options, NULL, argc, argv); 47 48 PAM_LOG("Options processed"); 49 50 PAM_VERBOSE_ERROR("Unconditional deny"); 51 52 PAM_RETURN(PAM_AUTH_ERR); 53} 54 55PAM_EXTERN int 56pam_sm_setcred(pam_handle_t *pamh, int flags __unused, int argc, const char **argv) 57{ 58 struct options options; 59 60 pam_std_option(&options, NULL, argc, argv); 61 62 PAM_LOG("Options processed"); 63 64 PAM_VERBOSE_ERROR("Unconditional deny"); 65 66 PAM_RETURN(PAM_CRED_UNAVAIL); 67} 68 69PAM_EXTERN int 70pam_sm_acct_mgmt(pam_handle_t *pamh, int flags __unused, int argc ,const char **argv) 71{ 72 struct options options; 73 74 pam_std_option(&options, NULL, argc, argv); 75 76 PAM_LOG("Options processed"); 77 78 PAM_VERBOSE_ERROR("Unconditional deny"); 79 80 PAM_RETURN(PAM_ACCT_EXPIRED); 81} 82 83PAM_EXTERN int 84pam_sm_chauthtok(pam_handle_t *pamh, int flags __unused, int argc, const char **argv) 85{ 86 struct options options; 87 88 pam_std_option(&options, NULL, argc, argv); 89 90 PAM_LOG("Options processed"); 91 92 PAM_VERBOSE_ERROR("Unconditional deny"); 93 94 PAM_RETURN(PAM_PERM_DENIED); 95} 96 97PAM_EXTERN int 98pam_sm_open_session(pam_handle_t *pamh, int flags __unused, int argc, const char **argv) 99{ 100 struct options options; 101 102 pam_std_option(&options, NULL, argc, argv); 103 104 PAM_LOG("Options processed"); 105 106 PAM_VERBOSE_ERROR("Unconditional deny"); 107 108 PAM_RETURN(PAM_SESSION_ERR); 109} 110 111PAM_EXTERN int 112pam_sm_close_session(pam_handle_t *pamh, int flags __unused, int argc, const char **argv) 113{ 114 struct options options; 115 116 pam_std_option(&options, NULL, argc, argv); 117 118 PAM_LOG("Options processed"); 119 120 PAM_VERBOSE_ERROR("Unconditional deny"); 121 122 PAM_RETURN(PAM_SESSION_ERR); 123} 124 125PAM_MODULE_ENTRY("pam_deny"); 126