pam_get_authtok.c revision 91094
191094Sdes/*- 291094Sdes * Copyright (c) 2002 Networks Associates Technologies, Inc. 391094Sdes * All rights reserved. 491094Sdes * 591094Sdes * This software was developed for the FreeBSD Project by ThinkSec AS and 691094Sdes * NAI Labs, the Security Research Division of Network Associates, Inc. 791094Sdes * under DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the 891094Sdes * DARPA CHATS research program. 991094Sdes * 1091094Sdes * Redistribution and use in source and binary forms, with or without 1191094Sdes * modification, are permitted provided that the following conditions 1291094Sdes * are met: 1391094Sdes * 1. Redistributions of source code must retain the above copyright 1491094Sdes * notice, this list of conditions and the following disclaimer. 1591094Sdes * 2. Redistributions in binary form must reproduce the above copyright 1691094Sdes * notice, this list of conditions and the following disclaimer in the 1791094Sdes * documentation and/or other materials provided with the distribution. 1891094Sdes * 3. The name of the author may not be used to endorse or promote 1991094Sdes * products derived from this software without specific prior written 2091094Sdes * permission. 2191094Sdes * 2291094Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 2391094Sdes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 2491094Sdes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2591094Sdes * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 2691094Sdes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2791094Sdes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2891094Sdes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2991094Sdes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 3091094Sdes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 3191094Sdes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 3291094Sdes * SUCH DAMAGE. 3391094Sdes * 3491094Sdes * $Id$ 3591094Sdes */ 3691094Sdes 3791094Sdes#include <sys/param.h> 3891094Sdes 3991094Sdes#include <security/pam_appl.h> 4091094Sdes#include <security/openpam.h> 4191094Sdes 4291094Sdes#include "openpam_impl.h" 4391094Sdes 4491094Sdes/* 4591094Sdes * OpenPAM extension 4691094Sdes * 4791094Sdes * Retrieve authentication token 4891094Sdes */ 4991094Sdes 5091094Sdesint 5191094Sdespam_get_authtok(pam_handle_t *pamh, 5291094Sdes const char **authtok, 5391094Sdes const char *prompt) 5491094Sdes{ 5591094Sdes char *p, *resp; 5691094Sdes int r; 5791094Sdes 5891094Sdes if (pamh == NULL || authtok == NULL) 5991094Sdes return (PAM_SYSTEM_ERR); 6091094Sdes 6191094Sdes r = pam_get_item(pamh, PAM_AUTHTOK, (const void **)authtok); 6291094Sdes if (r == PAM_SUCCESS) 6391094Sdes return (PAM_SUCCESS); 6491094Sdes if (prompt == NULL) { 6591094Sdes if (pam_get_item(pamh, PAM_AUTHTOK_PROMPT, 6691094Sdes (const void **)&p) != PAM_SUCCESS || p == NULL) 6791094Sdes prompt = "Password:"; 6891094Sdes } 6991094Sdes r = pam_prompt(pamh, PAM_PROMPT_ECHO_OFF, &resp, 7091094Sdes "%s", prompt ? prompt : p); 7191094Sdes if (r != PAM_SUCCESS) 7291094Sdes return (r); 7391094Sdes *authtok = resp; 7491094Sdes return (pam_set_item(pamh, PAM_AUTHTOK, *authtok)); 7591094Sdes} 76