openpam_set_option.c revision 115619
191100Sdes/*- 2115619Sdes * Copyright (c) 2002-2003 Networks Associates Technology, Inc. 391100Sdes * All rights reserved. 491100Sdes * 591100Sdes * This software was developed for the FreeBSD Project by ThinkSec AS and 699158Sdes * Network Associates Laboratories, the Security Research Division of 799158Sdes * Network Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035 899158Sdes * ("CBOSS"), as part of the DARPA CHATS research program. 991100Sdes * 1091100Sdes * Redistribution and use in source and binary forms, with or without 1191100Sdes * modification, are permitted provided that the following conditions 1291100Sdes * are met: 1391100Sdes * 1. Redistributions of source code must retain the above copyright 1491100Sdes * notice, this list of conditions and the following disclaimer. 1591100Sdes * 2. Redistributions in binary form must reproduce the above copyright 1691100Sdes * notice, this list of conditions and the following disclaimer in the 1791100Sdes * documentation and/or other materials provided with the distribution. 1891100Sdes * 3. The name of the author may not be used to endorse or promote 1991100Sdes * products derived from this software without specific prior written 2091100Sdes * permission. 2191100Sdes * 2291100Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 2391100Sdes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 2491100Sdes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2591100Sdes * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 2691100Sdes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2791100Sdes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2891100Sdes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2991100Sdes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 3091100Sdes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 3191100Sdes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 3291100Sdes * SUCH DAMAGE. 3391100Sdes * 34115619Sdes * $P4: //depot/projects/openpam/lib/openpam_set_option.c#13 $ 3591100Sdes */ 3691100Sdes 3791100Sdes#include <sys/param.h> 3891100Sdes 3991100Sdes#include <stdio.h> 4091100Sdes#include <stdlib.h> 4191100Sdes#include <string.h> 4291100Sdes 4391100Sdes#include <security/pam_appl.h> 4491100Sdes#include <security/openpam.h> 4591100Sdes 4691100Sdes#include "openpam_impl.h" 4791100Sdes 4891100Sdes/* 4991100Sdes * OpenPAM extension 5091100Sdes * 5191100Sdes * Sets the value of a module option 5291100Sdes */ 5391100Sdes 5491100Sdesint 5591100Sdesopenpam_set_option(pam_handle_t *pamh, 5691100Sdes const char *option, 5791100Sdes const char *value) 5891100Sdes{ 5991100Sdes pam_chain_t *cur; 6091100Sdes char *opt, **optv; 6191100Sdes size_t len; 6291100Sdes int i; 6391100Sdes 64110503Sdes ENTERS(option); 6591100Sdes if (pamh == NULL || pamh->current == NULL || option == NULL) 66107937Sdes RETURNC(PAM_SYSTEM_ERR); 6791100Sdes cur = pamh->current; 6891100Sdes for (len = 0; option[len] != '\0'; ++len) 6991100Sdes if (option[len] == '=') 7091100Sdes break; 7191100Sdes for (i = 0; i < cur->optc; ++i) { 7291100Sdes if (strncmp(cur->optv[i], option, len) == 0 && 7391100Sdes (cur->optv[i][len] == '\0' || cur->optv[i][len] == '=')) 7491100Sdes break; 7591100Sdes } 7691684Sdes if (value == NULL) { 7791684Sdes /* remove */ 7891684Sdes if (i == cur->optc) 79107937Sdes RETURNC(PAM_SUCCESS); 8091684Sdes for (free(cur->optv[i]); i < cur->optc; ++i) 8191684Sdes cur->optv[i] = cur->optv[i + 1]; 8291684Sdes cur->optv[i] = NULL; 83107937Sdes RETURNC(PAM_SUCCESS); 8491684Sdes } 85115619Sdes if (asprintf(&opt, "%.*s=%s", (int)len, option, value) < 0) 86107937Sdes RETURNC(PAM_BUF_ERR); 8791100Sdes if (i == cur->optc) { 8891684Sdes /* add */ 8991100Sdes optv = realloc(cur->optv, sizeof(char *) * (cur->optc + 2)); 9091100Sdes if (optv == NULL) { 91115619Sdes FREE(opt); 92107937Sdes RETURNC(PAM_BUF_ERR); 9391100Sdes } 9491100Sdes optv[i] = opt; 9591100Sdes optv[i + 1] = NULL; 9691100Sdes cur->optv = optv; 9791100Sdes ++cur->optc; 9891684Sdes } else { 9991684Sdes /* replace */ 100115619Sdes FREE(cur->optv[i]); 10191684Sdes cur->optv[i] = opt; 10291100Sdes } 103107937Sdes RETURNC(PAM_SUCCESS); 10491100Sdes} 10591100Sdes 10691100Sdes/* 10791100Sdes * Error codes: 10891100Sdes * 10991100Sdes * PAM_SYSTEM_ERR 11091100Sdes * PAM_BUF_ERR 11191100Sdes */ 11291100Sdes 11391100Sdes/** 11491100Sdes * The =openpam_set_option function sets the specified option in the 11591100Sdes * context of the currently executing service module. 116115619Sdes * 117115619Sdes * >openpam_get_option 11891100Sdes */ 119