pam_strerror.c revision 228690
191094Sdes/*- 2115619Sdes * Copyright (c) 2002-2003 Networks Associates Technology, Inc. 3228690Sdes * Copyright (c) 2004-2011 Dag-Erling Sm��rgrav 491094Sdes * All rights reserved. 591094Sdes * 691094Sdes * This software was developed for the FreeBSD Project by ThinkSec AS and 799158Sdes * Network Associates Laboratories, the Security Research Division of 899158Sdes * Network Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035 999158Sdes * ("CBOSS"), as part of the DARPA CHATS research program. 1091094Sdes * 1191094Sdes * Redistribution and use in source and binary forms, with or without 1291094Sdes * modification, are permitted provided that the following conditions 1391094Sdes * are met: 1491094Sdes * 1. Redistributions of source code must retain the above copyright 1591094Sdes * notice, this list of conditions and the following disclaimer. 1691094Sdes * 2. Redistributions in binary form must reproduce the above copyright 1791094Sdes * notice, this list of conditions and the following disclaimer in the 1891094Sdes * documentation and/or other materials provided with the distribution. 1991094Sdes * 3. The name of the author may not be used to endorse or promote 2091094Sdes * products derived from this software without specific prior written 2191094Sdes * permission. 2291094Sdes * 2391094Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 2491094Sdes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 2591094Sdes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2691094Sdes * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 2791094Sdes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2891094Sdes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2991094Sdes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 3091094Sdes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 3191094Sdes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 3291094Sdes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 3391094Sdes * SUCH DAMAGE. 3491094Sdes * 35228690Sdes * $Id: pam_strerror.c 491 2011-11-12 00:12:32Z des $ 3691094Sdes */ 3791094Sdes 38228690Sdes#ifdef HAVE_CONFIG_H 39228690Sdes# include "config.h" 40228690Sdes#endif 41228690Sdes 4291094Sdes#include <stdio.h> 4391094Sdes 4491094Sdes#include <security/pam_appl.h> 4591094Sdes 4691094Sdes#include "openpam_impl.h" 4791094Sdes 4891094Sdes/* 4991094Sdes * XSSO 4.2.1 5091094Sdes * XSSO 6 page 92 5191094Sdes * 5291094Sdes * Get PAM standard error message string 5391094Sdes */ 5491094Sdes 5591094Sdesconst char * 56174832Sdespam_strerror(const pam_handle_t *pamh, 5791094Sdes int error_number) 5891094Sdes{ 5991094Sdes static char unknown[16]; 6091094Sdes 61107937Sdes (void)pamh; 6291094Sdes 6391094Sdes switch (error_number) { 6491094Sdes case PAM_SUCCESS: 6591094Sdes return ("success"); 6691094Sdes case PAM_OPEN_ERR: 6791094Sdes return ("failed to load module"); 6891094Sdes case PAM_SYMBOL_ERR: 6991100Sdes return ("invalid symbol"); 7091094Sdes case PAM_SERVICE_ERR: 7191094Sdes return ("error in service module"); 7291094Sdes case PAM_SYSTEM_ERR: 7391094Sdes return ("system error"); 7491094Sdes case PAM_BUF_ERR: 7591094Sdes return ("memory buffer error"); 7691094Sdes case PAM_CONV_ERR: 7791094Sdes return ("conversation failure"); 7891094Sdes case PAM_PERM_DENIED: 7991094Sdes return ("permission denied"); 8091094Sdes case PAM_MAXTRIES: 8191094Sdes return ("maximum number of tries exceeded"); 8291094Sdes case PAM_AUTH_ERR: 8391094Sdes return ("authentication error"); 8491094Sdes case PAM_NEW_AUTHTOK_REQD: 8591094Sdes return ("new authentication token required"); 8691094Sdes case PAM_CRED_INSUFFICIENT: 8791094Sdes return ("insufficient credentials"); 8891094Sdes case PAM_AUTHINFO_UNAVAIL: 8991094Sdes return ("authentication information is unavailable"); 9091094Sdes case PAM_USER_UNKNOWN: 9191094Sdes return ("unknown user"); 9291094Sdes case PAM_CRED_UNAVAIL: 9391094Sdes return ("failed to retrieve user credentials"); 9491094Sdes case PAM_CRED_EXPIRED: 9591094Sdes return ("user credentials have expired"); 9691094Sdes case PAM_CRED_ERR: 9791094Sdes return ("failed to set user credentials"); 9891094Sdes case PAM_ACCT_EXPIRED: 99141098Sdes return ("user account has expired"); 10091094Sdes case PAM_AUTHTOK_EXPIRED: 10191094Sdes return ("password has expired"); 10291094Sdes case PAM_SESSION_ERR: 10391094Sdes return ("session failure"); 10491094Sdes case PAM_AUTHTOK_ERR: 10591094Sdes return ("authentication token failure"); 10691094Sdes case PAM_AUTHTOK_RECOVERY_ERR: 10791094Sdes return ("failed to recover old authentication token"); 10891094Sdes case PAM_AUTHTOK_LOCK_BUSY: 10991094Sdes return ("authentication token lock busy"); 11091094Sdes case PAM_AUTHTOK_DISABLE_AGING: 11191100Sdes return ("authentication token aging disabled"); 11291094Sdes case PAM_NO_MODULE_DATA: 11391094Sdes return ("module data not found"); 11491094Sdes case PAM_IGNORE: 11591094Sdes return ("ignore this module"); 11691094Sdes case PAM_ABORT: 11791094Sdes return ("general failure"); 11891094Sdes case PAM_TRY_AGAIN: 11991094Sdes return ("try again"); 12091094Sdes case PAM_MODULE_UNKNOWN: 12191094Sdes return ("unknown module type"); 12291094Sdes case PAM_DOMAIN_UNKNOWN: 12391094Sdes return ("unknown authentication domain"); 12491094Sdes default: 12591094Sdes snprintf(unknown, sizeof unknown, "#%d", error_number); 12691094Sdes return (unknown); 12791094Sdes } 12891094Sdes} 12991100Sdes 13091100Sdes/** 13191100Sdes * The =pam_strerror function returns a pointer to a string containing a 13291100Sdes * textual description of the error indicated by the =error_number 13391100Sdes * argument. 134228690Sdes * The =pamh argument is ignored. 135228690Sdes * For compatibility with other implementations, it should be either a 136228690Sdes * valid PAM handle returned by a previous call to =pam_start, or =NULL. 13791100Sdes */ 138