- (dtucker) [auth-pam.c] Store output from pam_session and pam_setcred for

display after login. Should fix problems like pam_motd not displaying anything, noticed by cjwatson at debian.org. ok djm@
author: Darren Tucker <dtucker@zip.com.au> 2004-02-17 23:20:07 +1100
committer: Darren Tucker <dtucker@zip.com.au> 2004-02-17 23:20:07 +1100
commit: 5cf8ef735c5d7d76c1c69e491419b1311ec1575b (patch)
tree: 38da666cf1d1a73aab4aa77699f55dffceb3c908 /auth-pam.c
parent: ba53b839d30de74c994b8c6a20360967cb844ade (diff)
1 files changed, 47 insertions, 2 deletions
diff --git a/auth-pam.c b/auth-pam.c
index 0ab5554a3..397f7d3a8 100644
--- a/auth-pam.c
+++ b/auth-pam.c
@@ -31,7 +31,7 @@
 /* Based on $FreeBSD: src/crypto/openssh/auth2-pam-freebsd.c,v 1.11 2003/03/31 13:48:18 des Exp $ */
 #include "includes.h"
-RCSID("$Id: auth-pam.c,v 1.94 2004/02/17 09:46:59 dtucker Exp $");
+RCSID("$Id: auth-pam.c,v 1.95 2004/02/17 12:20:08 dtucker Exp $");
 #ifdef USE_PAM
 #if defined(HAVE_SECURITY_PAM_APPL_H)
@@ -823,12 +823,57 @@ do_pam_chauthtok(void)
                    pam_strerror(sshpam_handle, sshpam_err));
 }
+static int
+pam_store_conv(int n, const struct pam_message **msg,
+    struct pam_response **resp, void *data)
+{
+        struct pam_response *reply;
+        int i;
+        size_t len;
+        debug3("PAM: %s called with %d messages", __func__, n);
+        *resp = NULL;
+        if (n <= 0 || n > PAM_MAX_NUM_MSG)
+                return (PAM_CONV_ERR);
+        if ((reply = malloc(n * sizeof(*reply))) == NULL)
+                return (PAM_CONV_ERR);
+        memset(reply, 0, n * sizeof(*reply));
+        for (i = 0; i < n; ++i) {
+                switch (PAM_MSG_MEMBER(msg, i, msg_style)) {
+                case PAM_ERROR_MSG:
+                case PAM_TEXT_INFO:
+                        len = strlen(PAM_MSG_MEMBER(msg, i, msg));
+                        buffer_append(&loginmsg, PAM_MSG_MEMBER(msg, i, msg), len);
+                        buffer_append(&loginmsg, "\n", 1 );
+                        reply[i].resp_retcode = PAM_SUCCESS;
+                        break;
+                default:
+                        goto fail;
+                }
+        }
+        *resp = reply;
+        return (PAM_SUCCESS);
+ fail:
+        for(i = 0; i < n; i++) {
+                if (reply[i].resp != NULL)
+                        xfree(reply[i].resp);
+        }
+        xfree(reply);
+        return (PAM_CONV_ERR);
+}
+static struct pam_conv store_conv = { pam_store_conv, NULL };
 void
 do_pam_session(void)
 {
        debug3("PAM: opening session");
        sshpam_err = pam_set_item(sshpam_handle, PAM_CONV,
-            (const void *)&tty_conv);
+            (const void *)&store_conv);
        if (sshpam_err != PAM_SUCCESS)
                fatal("PAM: failed to set PAM_CONV: %s",
                    pam_strerror(sshpam_handle, sshpam_err));
author	Darren Tucker <dtucker@zip.com.au>	2004-02-17 23:20:07 +1100
committer	Darren Tucker <dtucker@zip.com.au>	2004-02-17 23:20:07 +1100
commit	5cf8ef735c5d7d76c1c69e491419b1311ec1575b (patch)
tree	38da666cf1d1a73aab4aa77699f55dffceb3c908 /auth-pam.c
parent	ba53b839d30de74c994b8c6a20360967cb844ade (diff)

diff --git a/auth-pam.c b/auth-pam.c index 0ab5554a3..397f7d3a8 100644 --- a/auth-pam.c +++ b/auth-pam.c
@@ -31,7 +31,7 @@
31		31
32	/* Based on $FreeBSD: src/crypto/openssh/auth2-pam-freebsd.c,v 1.11 2003/03/31 13:48:18 des Exp $ */	32	/* Based on $FreeBSD: src/crypto/openssh/auth2-pam-freebsd.c,v 1.11 2003/03/31 13:48:18 des Exp $ */
33	#include "includes.h"	33	#include "includes.h"
34	RCSID("$Id: auth-pam.c,v 1.94 2004/02/17 09:46:59 dtucker Exp $");	34	RCSID("$Id: auth-pam.c,v 1.95 2004/02/17 12:20:08 dtucker Exp $");
35		35
36	#ifdef USE_PAM	36	#ifdef USE_PAM
37	#if defined(HAVE_SECURITY_PAM_APPL_H)	37	#if defined(HAVE_SECURITY_PAM_APPL_H)
@@ -823,12 +823,57 @@ do_pam_chauthtok(void)
823	pam_strerror(sshpam_handle, sshpam_err));	823	pam_strerror(sshpam_handle, sshpam_err));
824	}	824	}
825		825
		826	static int
		827	pam_store_conv(int n, const struct pam_message **msg,
		828	struct pam_response *resp, void data)
		829	{
		830	struct pam_response *reply;
		831	int i;
		832	size_t len;
		833
		834	debug3("PAM: %s called with %d messages", __func__, n);
		835	*resp = NULL;
		836
		837	if (n <= 0 \|\| n > PAM_MAX_NUM_MSG)
		838	return (PAM_CONV_ERR);
		839
		840	if ((reply = malloc(n * sizeof(*reply))) == NULL)
		841	return (PAM_CONV_ERR);
		842	memset(reply, 0, n * sizeof(*reply));
		843
		844	for (i = 0; i < n; ++i) {
		845	switch (PAM_MSG_MEMBER(msg, i, msg_style)) {
		846	case PAM_ERROR_MSG:
		847	case PAM_TEXT_INFO:
		848	len = strlen(PAM_MSG_MEMBER(msg, i, msg));
		849	buffer_append(&loginmsg, PAM_MSG_MEMBER(msg, i, msg), len);
		850	buffer_append(&loginmsg, "\n", 1 );
		851	reply[i].resp_retcode = PAM_SUCCESS;
		852	break;
		853	default:
		854	goto fail;
		855	}
		856	}
		857	*resp = reply;
		858	return (PAM_SUCCESS);
		859
		860	fail:
		861	for(i = 0; i < n; i++) {
		862	if (reply[i].resp != NULL)
		863	xfree(reply[i].resp);
		864	}
		865	xfree(reply);
		866	return (PAM_CONV_ERR);
		867	}
		868
		869	static struct pam_conv store_conv = { pam_store_conv, NULL };
		870
826	void	871	void
827	do_pam_session(void)	872	do_pam_session(void)
828	{	873	{
829	debug3("PAM: opening session");	874	debug3("PAM: opening session");
830	sshpam_err = pam_set_item(sshpam_handle, PAM_CONV,	875	sshpam_err = pam_set_item(sshpam_handle, PAM_CONV,
831	(const void *)&tty_conv);	876	(const void *)&store_conv);
832	if (sshpam_err != PAM_SUCCESS)	877	if (sshpam_err != PAM_SUCCESS)
833	fatal("PAM: failed to set PAM_CONV: %s",	878	fatal("PAM: failed to set PAM_CONV: %s",
834	pam_strerror(sshpam_handle, sshpam_err));	879	pam_strerror(sshpam_handle, sshpam_err));