1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
|
/*
Authors:
Pavel Březina <pbrezina@redhat.com>
Copyright (C) 2016 Red Hat
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#ifndef _SSS_PAM_DATA_H_
#define _SSS_PAM_DATA_H_
#include "config.h"
#include <stdbool.h>
#include <stdint.h>
#ifdef USE_KEYRING
#include <sys/types.h>
#include <keyutils.h>
#endif
#include "util/util_errors.h"
#include "util/debug.h"
#include "util/authtok.h"
#define DEBUG_PAM_DATA(level, pd) do { \
pam_print_data(level, pd); \
} while(0)
struct response_data {
int32_t type;
int32_t len;
uint8_t *data;
bool do_not_send_to_client;
struct response_data *next;
};
struct pam_data {
int cmd;
char *domain;
char *user;
char *service;
char *tty;
char *ruser;
char *rhost;
char **requested_domains;
struct sss_auth_token *authtok;
struct sss_auth_token *newauthtok;
uint32_t cli_pid;
uint32_t child_pid;
char *logon_name;
uint32_t cli_flags;
int pam_status;
int response_delay;
struct response_data *resp_list;
bool offline_auth;
bool last_auth_saved;
int priv;
int account_locked;
uint32_t client_id_num;
#ifdef USE_KEYRING
key_serial_t key_serial;
#endif
bool passkey_local_done;
};
/**
* @brief Create new zero initialized struct pam_data.
*
* @param mem_ctx A memory context use to allocate the internal data
* @return A pointer to new struct pam_data
* NULL on error
*
* NOTE: This function should be the only way, how to create new empty
* struct pam_data, because this function automatically initialize sub
* structures and set destructor to created object.
*/
struct pam_data *create_pam_data(TALLOC_CTX *mem_ctx);
errno_t copy_pam_data(TALLOC_CTX *mem_ctx, struct pam_data *old_pd,
struct pam_data **new_pd);
void pam_print_data(int l, struct pam_data *pd);
int pam_add_response(struct pam_data *pd,
enum response_type type,
int len, const uint8_t *data);
#endif /* _SSS_PAM_DATA_H_ */
|
