/*- * Copyright (c) 2002-2003 Networks Associates Technology, Inc. * Copyright (c) 2004-2007 Dag-Erling Smørgrav * All rights reserved. * * This software was developed for the FreeBSD Project by ThinkSec AS and * Network Associates Laboratories, the Security Research Division of * Network Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035 * ("CBOSS"), as part of the DARPA CHATS research program. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote * products derived from this software without specific prior written * permission. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. * * $Id: openpam_load.c,v 1.4 2008/01/27 01:22:59 christos Exp $ */ #include #include #include #include #include "openpam_impl.h" const char *_pam_func_name[PAM_NUM_PRIMITIVES] = { "pam_authenticate", "pam_setcred", "pam_acct_mgmt", "pam_open_session", "pam_close_session", "pam_chauthtok" }; const char *_pam_sm_func_name[PAM_NUM_PRIMITIVES] = { "pam_sm_authenticate", "pam_sm_setcred", "pam_sm_acct_mgmt", "pam_sm_open_session", "pam_sm_close_session", "pam_sm_chauthtok" }; /* * Locate a matching dynamic or static module. */ pam_module_t * openpam_load_module(const char *path) { pam_module_t *module; module = openpam_dynamic(path); openpam_log(PAM_LOG_DEBUG, "%s dynamic %s", (module == NULL) ? "no" : "using", path); #ifdef OPENPAM_STATIC_MODULES /* look for a static module */ if (module == NULL && strchr(path, '/') == NULL) { module = openpam_static(path); openpam_log(PAM_LOG_DEBUG, "%s static %s", (module == NULL) ? "no" : "using", path); } #endif if (module == NULL) { openpam_log(PAM_LOG_ERROR, "no %s found", path); return (NULL); } return (module); } /* * Release a module. * XXX highly thread-unsafe */ static void openpam_release_module(pam_module_t *module) { if (module == NULL) return; if (module->dlh == NULL) /* static module */ return; dlclose(module->dlh); openpam_log(PAM_LOG_DEBUG, "releasing %s", module->path); FREE(module->path); FREE(module); } /* * Destroy a chain, freeing all its links and releasing the modules * they point to. */ static void openpam_destroy_chain(pam_chain_t *chain) { if (chain == NULL) return; openpam_destroy_chain(chain->next); chain->next = NULL; while (chain->optc) { --chain->optc; FREE(chain->optv[chain->optc]); } FREE(chain->optv); openpam_release_module(chain->module); chain->module = NULL; FREE(chain); } /* * Clear the chains and release the modules */ void openpam_clear_chains(pam_chain_t *policy[]) { int i; for (i = 0; i < PAM_NUM_FACILITIES; ++i) { openpam_destroy_chain(policy[i]); policy[i] = NULL; } } /* * NOPARSE */