1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
|
/*
* $Id$
*
* This file was written by Andrew G. Morgan <morgan@parc.power.net>
*
*/
#include "config.h"
#include <stdlib.h>
#include <stdio.h>
#include <string.h>
#include <security/pam_misc.h>
/*
* This function should be used to carefully dispose of the copied
* environment.
*
* usage: env = pam_misc_drop_env(env);
*/
char **pam_misc_drop_env(char **dump)
{
int i;
for (i=0; dump[i] != NULL; ++i) {
D(("dump[%d]=`%s'", i, dump[i]));
_pam_overwrite(dump[i]);
_pam_drop(dump[i]);
}
_pam_drop(dump);
return NULL;
}
/*
* This function takes the supplied environment and uploads it to be
* the PAM one.
*/
int pam_misc_paste_env(pam_handle_t *pamh, const char * const * user_env)
{
for (; user_env && *user_env; ++user_env) {
int retval;
D(("uploading: %s", *user_env));
retval = pam_putenv(pamh, *user_env);
if (retval != PAM_SUCCESS) {
D(("error setting %s: %s", *user_env, pam_strerror(pamh,retval)));
return retval;
}
}
D(("done."));
return PAM_SUCCESS;
}
/*
* This is a wrapper to make pam behave in the way that setenv() does.
*/
int pam_misc_setenv(pam_handle_t *pamh, const char *name
, const char *value, int readonly)
{
char *tmp;
int retval;
if (readonly) {
const char *etmp;
/* we check if the variable is there already */
etmp = pam_getenv(pamh, name);
if (etmp != NULL) {
D(("failed to set readonly variable: %s", name));
return PAM_PERM_DENIED; /* not allowed to overwrite */
}
}
if (asprintf(&tmp, "%s=%s", name, value) >= 0) {
D(("pam_putt()ing: %s", tmp));
retval = pam_putenv(pamh, tmp);
_pam_overwrite(tmp); /* purge */
_pam_drop(tmp); /* forget */
} else {
D(("malloc failure"));
retval = PAM_BUF_ERR;
}
return retval;
}
|
