xrdp/sesman/verify_user_pam_userpass.c

/**
 * xrdp: A Remote Desktop Protocol server.
 *
 * Copyright (C) Jay Sorg 2004-2013
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

/**
 *
 * @file verify_user_pam_userpass.c
 * @brief Authenticate user using pam_userpass module
 * @author Jay Sorg
 *
 */

#if defined(HAVE_CONFIG_H)
#include <config_ac.h>
#endif

#include "arch.h"
#include "auth.h"
#include "os_calls.h"
#include "string_calls.h"

#include <security/pam_userpass.h>

#define SERVICE "xrdp"

/*
 * Need a complete type for struct auth_info, even though we're
 * not really using it if this module (PAM userpass) is selected */
struct auth_info
{
    char dummy;
};

/******************************************************************************/
/* returns non-NULL for success */
struct auth_info *
auth_userpass(const char *user, const char *pass,
              const char *client_ip, int *errorcode)
{
    pam_handle_t *pamh;
    pam_userpass_t userpass;
    struct pam_conv conv = {pam_userpass_conv, &userpass};
    const void *template1;
    int status;
    /* Need a non-NULL pointer to return to indicate success */
    static struct auth_info success = {0};

    userpass.user = user;
    userpass.pass = pass;

    if (pam_start(SERVICE, user, &conv, &pamh) != PAM_SUCCESS)
    {
        return NULL;
    }

    status = pam_authenticate(pamh, 0);

    if (status != PAM_SUCCESS)
    {
        pam_end(pamh, status);
        return NULL;
    }

    status = pam_acct_mgmt(pamh, 0);

    if (status != PAM_SUCCESS)
    {
        pam_end(pamh, status);
        return NULL;
    }

    status = pam_get_item(pamh, PAM_USER, &template1);

    if (status != PAM_SUCCESS)
    {
        pam_end(pamh, status);
        return NULL;
    }

    if (pam_end(pamh, PAM_SUCCESS) != PAM_SUCCESS)
    {
        return NULL;
    }

    return &success;
}

/******************************************************************************/
/* returns error */
int
auth_start_session(struct auth_info *auth_info, int display_num)
{
    return 0;
}

/******************************************************************************/
/* returns error */
int
auth_stop_session(struct auth_info *auth_info)
{
    return 0;
}

/******************************************************************************/
int
auth_end(struct auth_info *auth_info)
{
    return 0;
}

/******************************************************************************/
int
auth_set_env(struct auth_info *auth_info)
{
    return 0;
}
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`/**`
			`* xrdp: A Remote Desktop Protocol server.`
			`*`
copyright year update 2013-06-08 21:51:53 +04:00			`* Copyright (C) Jay Sorg 2004-2013`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`
pam changes 2005-07-07 07:08:03 +04:00
updated code documentation 2006-05-26 00:34:32 +04:00			`/**`
			`*`
			`* @file verify_user_pam_userpass.c`
			`* @brief Authenticate user using pam_userpass module`
			`* @author Jay Sorg`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`*`
updated code documentation 2006-05-26 00:34:32 +04:00			`*/`

Include config_ac.h from all source files 2017-03-03 07:33:23 +03:00			`#if defined(HAVE_CONFIG_H)`
			`#include <config_ac.h>`
			`#endif`

pam changes 2005-07-07 07:08:03 +04:00			`#include "arch.h"`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`#include "auth.h"`
pam changes 2005-07-07 07:08:03 +04:00			`#include "os_calls.h"`
Fix regressions in auth modules 2020-12-29 12:48:01 +03:00			`#include "string_calls.h"`
pam changes 2005-07-07 07:08:03 +04:00
			`#include <security/pam_userpass.h>`

			`#define SERVICE "xrdp"`

Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`/*`
			`* Need a complete type for struct auth_info, even though we're`
			`* not really using it if this module (PAM userpass) is selected */`
			`struct auth_info`
			`{`
			`char dummy;`
			`};`

pam changes 2005-07-07 07:08:03 +04:00			`/******************************************************************************/`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`/* returns non-NULL for success */`
			`struct auth_info *`
Add PAM_RHOST support Supplies the IP address that an authentication event is received from as the PAM parameter PAM_RHOST for PAM-capable systems. 2022-04-12 14:37:30 +03:00			`auth_userpass(const char user, const char pass,`
			`const char client_ip, int errorcode)`
pam changes 2005-07-07 07:08:03 +04:00			`{`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`pam_handle_t *pamh;`
			`pam_userpass_t userpass;`
			`struct pam_conv conv = {pam_userpass_conv, &userpass};`
			`const void *template1;`
			`int status;`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`/* Need a non-NULL pointer to return to indicate success */`
			`static struct auth_info success = {0};`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00
			`userpass.user = user;`
			`userpass.pass = pass;`

			`if (pam_start(SERVICE, user, &conv, &pamh) != PAM_SUCCESS)`
			`{`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`return NULL;`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`}`

			`status = pam_authenticate(pamh, 0);`

			`if (status != PAM_SUCCESS)`
			`{`
			`pam_end(pamh, status);`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`return NULL;`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`}`

			`status = pam_acct_mgmt(pamh, 0);`

			`if (status != PAM_SUCCESS)`
			`{`
			`pam_end(pamh, status);`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`return NULL;`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`}`

			`status = pam_get_item(pamh, PAM_USER, &template1);`

			`if (status != PAM_SUCCESS)`
			`{`
			`pam_end(pamh, status);`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`return NULL;`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`}`

			`if (pam_end(pamh, PAM_SUCCESS) != PAM_SUCCESS)`
			`{`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`return NULL;`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`}`

Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`return &success;`
pam changes 2005-07-07 07:08:03 +04:00			`}`
added pam session 2005-07-19 06:22:33 +04:00
			`/******************************************************************************/`
			`/* returns error */`
Eliminate APP_CC and DEFAULT_CC 2017-03-12 19:35:00 +03:00			`int`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`auth_start_session(struct auth_info *auth_info, int display_num)`
added pam session 2005-07-19 06:22:33 +04:00			`{`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`return 0;`
added pam session 2005-07-19 06:22:33 +04:00			`}`

sesman: Fedora bug 821569 2013-10-01 21:42:00 +04:00			`/******************************************************************************/`
			`/* returns error */`
Eliminate APP_CC and DEFAULT_CC 2017-03-12 19:35:00 +03:00			`int`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`auth_stop_session(struct auth_info *auth_info)`
sesman: Fedora bug 821569 2013-10-01 21:42:00 +04:00			`{`
			`return 0;`
			`}`

added pam session 2005-07-19 06:22:33 +04:00			`/******************************************************************************/`
Eliminate APP_CC and DEFAULT_CC 2017-03-12 19:35:00 +03:00			`int`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`auth_end(struct auth_info *auth_info)`
added pam session 2005-07-19 06:22:33 +04:00			`{`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`return 0;`
added pam session 2005-07-19 06:22:33 +04:00			`}`
changed pam session and env 2005-08-14 06:22:11 +04:00
			`/******************************************************************************/`
Eliminate APP_CC and DEFAULT_CC 2017-03-12 19:35:00 +03:00			`int`
Replace various types used for auth_info The loadable sesman authentication modules use different types for the authentication handle returned from auth_userpass(). The PAM module uses a pointer, and the other modules use (effectively) a boolean. Within sesman itself, a long or tbus (intptr_t) is used. This PR replaces all of these types with a pointer to an incomplete type. Consequently:- - A single better-labelled type is used it all places within sesman so it's more obvious what's being handled. - There is no need to cast the authentication handle within the PAM module to a long and back again. - The compiler can check function signatures between auth.h and the various verify modules. 2022-09-11 15:18:53 +03:00			`auth_set_env(struct auth_info *auth_info)`
changed pam session and env 2005-08-14 06:22:11 +04:00			`{`
o moved from GNU General Public License to Apache License, Version 2.0 o applied new coding standards to all .c files o moved some files around 2012-09-20 07:51:34 +04:00			`return 0;`
changed pam session and env 2005-08-14 06:22:11 +04:00			`}`