pam_vprompt.c revision 91100
191094Sdes/*- 291094Sdes * Copyright (c) 2002 Networks Associates Technologies, Inc. 391094Sdes * All rights reserved. 491094Sdes * 591094Sdes * This software was developed for the FreeBSD Project by ThinkSec AS and 691094Sdes * NAI Labs, the Security Research Division of Network Associates, Inc. 791094Sdes * under DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the 891094Sdes * DARPA CHATS research program. 991094Sdes * 1091094Sdes * Redistribution and use in source and binary forms, with or without 1191094Sdes * modification, are permitted provided that the following conditions 1291094Sdes * are met: 1391094Sdes * 1. Redistributions of source code must retain the above copyright 1491094Sdes * notice, this list of conditions and the following disclaimer. 1591094Sdes * 2. Redistributions in binary form must reproduce the above copyright 1691094Sdes * notice, this list of conditions and the following disclaimer in the 1791094Sdes * documentation and/or other materials provided with the distribution. 1891094Sdes * 3. The name of the author may not be used to endorse or promote 1991094Sdes * products derived from this software without specific prior written 2091094Sdes * permission. 2191094Sdes * 2291094Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 2391094Sdes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 2491094Sdes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2591094Sdes * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 2691094Sdes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2791094Sdes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2891094Sdes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2991094Sdes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 3091094Sdes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 3191094Sdes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 3291094Sdes * SUCH DAMAGE. 3391094Sdes * 3491094Sdes * $Id$ 3591094Sdes */ 3691094Sdes 3791094Sdes#include <stdarg.h> 3891094Sdes#include <stdio.h> 3991094Sdes#include <stdlib.h> 4091094Sdes 4191094Sdes#include <security/pam_appl.h> 4291094Sdes#include <security/openpam.h> 4391094Sdes 4491094Sdes/* 4591094Sdes * OpenPAM extension 4691094Sdes * 4791094Sdes * Call the conversation function 4891094Sdes */ 4991094Sdes 5091094Sdesint 5191094Sdespam_vprompt(pam_handle_t *pamh, 5291094Sdes int style, 5391094Sdes char **resp, 5491094Sdes const char *fmt, 5591094Sdes va_list ap) 5691094Sdes{ 5791094Sdes char msgbuf[PAM_MAX_MSG_SIZE]; 5891094Sdes struct pam_message msg; 5991094Sdes const struct pam_message *msgp; 6091094Sdes struct pam_response *rsp; 6191097Sdes struct pam_conv *conv; 6291094Sdes int r; 6391094Sdes 6491097Sdes r = pam_get_item(pamh, PAM_CONV, (const void **)&conv); 6591097Sdes if (r != PAM_SUCCESS) 6691094Sdes return (r); 6791097Sdes if (conv == NULL) { 6891097Sdes openpam_log(PAM_LOG_ERROR, "no conversation function"); 6991097Sdes return (PAM_SYSTEM_ERR); 7091097Sdes } 7191094Sdes vsnprintf(msgbuf, PAM_MAX_MSG_SIZE, fmt, ap); 7291094Sdes msg.msg_style = style; 7391094Sdes msg.msg = msgbuf; 7491094Sdes msgp = &msg; 7591097Sdes r = (conv->conv)(1, &msgp, &rsp, conv->appdata_ptr); 7691094Sdes *resp = rsp == NULL ? NULL : rsp->resp; 7791094Sdes free(rsp); 7891094Sdes return (r); 7991094Sdes} 8091100Sdes 8191100Sdes/* 8291100Sdes * Error codes: 8391100Sdes * 8491100Sdes * !PAM_SYMBOL_ERR 8591100Sdes * PAM_SYSTEM_ERR 8691100Sdes * PAM_BUF_ERR 8791100Sdes * PAM_CONV_ERR 8891100Sdes */ 8991100Sdes 9091100Sdes/** 9191100Sdes * The =pam_vprompt function constructs a string from the =fmt and =ap 9291100Sdes * arguments using =vsnprintf, and passes it to the given PAM context's 9391100Sdes * conversation function. 9491100Sdes * 9591100Sdes * The =style argument specifies the type of interaction requested, and 9691100Sdes * must be one of the following: 9791100Sdes * 9891100Sdes * =PAM_PROMPT_ECHO_OFF: 9991100Sdes * Display the message and obtain the user's response without 10091100Sdes * displaying it. 10191100Sdes * =PAM_PROMPT_ECHO_ON: 10291100Sdes * Display the message and obtain the user's response. 10391100Sdes * =PAM_ERROR_MSG: 10491100Sdes * Display the message as an error message, and do not wait 10591100Sdes * for a response. 10691100Sdes * =PAM_TEXT_INFO: 10791100Sdes * Display the message as an informational message, and do 10891100Sdes * not wait for a response. 10991100Sdes * 11091100Sdes * A pointer to the response, or =NULL if the conversation function did 11191100Sdes * not return one, is stored in the location pointed to by the =resp 11291100Sdes * argument. 11391100Sdes * 11491100Sdes * The message and response should not exceed =PAM_MAX_MSG_SIZE or 11591100Sdes * =PAM_MAX_RESP_SIZE, respectively. 11691100Sdes * If they do, they may be truncated. 11791100Sdes * 11891100Sdes * >pam_error 11991100Sdes * >pam_info 12091100Sdes * >pam_prompt 12191100Sdes * >pam_verror 12291100Sdes * >pam_vinfo 12391100Sdes */ 124