2 * Redistribution and use in source and binary forms, with or without
3 * modification, are permitted provided that the following conditions
5 * 1. Redistributions of source code must retain the above copyright
6 * notice, and the entire permission notice in its entirety,
7 * including the disclaimer of warranties.
8 * 2. Redistributions in binary form must reproduce the above copyright
9 * notice, this list of conditions and the following disclaimer in the
10 * documentation and/or other materials provided with the distribution.
11 * 3. The name of the author may not be used to endorse or promote
12 * products derived from this software without specific prior
15 * ALTERNATIVELY, this product may be distributed under the terms of
16 * the GNU Public License, in which case the provisions of the GPL are
17 * required INSTEAD OF the above restrictions. (This clause is
18 * necessary due to a potential bad interaction between the GPL and
19 * the restrictions contained in a BSD-style copyright.)
21 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
22 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
23 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
24 * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
25 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
26 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
27 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
29 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
30 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
31 * OF THE POSSIBILITY OF SUCH DAMAGE.
35 * Check password change minimum days handling.
45 #include <security/pam_appl.h>
46 #include <sys/types.h>
50 /* A conversation function which uses an internally-stored value for
53 fake_conv (int num_msg, const struct pam_message **msgm UNUSED,
54 struct pam_response **response, void *appdata_ptr UNUSED)
56 struct pam_response *reply;
58 static int respnum = 0;
59 static const char *resps[] = { "pamunix01", "TsTPAM01MAP", "TsTPAM01MAP" };
65 /* Allocate memory for the responses. */
66 reply = calloc (num_msg, sizeof (struct pam_response));
70 /* Answer with appropriate response from the above array. */
71 for (count = 0; count < num_msg; ++count)
73 if (msgm[count]->msg_style == PAM_PROMPT_ECHO_OFF)
75 reply[count].resp_retcode = 0;
76 reply[count].resp = strdup (resps[respnum % 3]);
81 /* Set the pointers in the response structure and return. */
86 static struct pam_conv conv = {
92 /* Check that errors of optional modules are ignored and that
93 required modules after a sufficient one are not executed. */
96 main(int argc, char *argv[])
98 pam_handle_t *pamh=NULL;
99 const char *user="tstpamunix";
105 if (argc < 2 || (*argv[1] != 'f' &&
108 fprintf (stderr, "Need fail or pass argument.\n");
112 fail = *argv[1] == 'f';
114 if (argc > 2 && strcmp (argv[2], "-d") == 0)
117 pwd = getpwnam (user);
122 fprintf (stderr, "unix4: Missing tstpamunix user.\n");
126 /* we must switch the real (not effective) user so the restrictions
128 setreuid (pwd->pw_uid, -1);
130 retval = pam_start("tst-pam_unix4", user, &conv, &pamh);
131 if (retval != PAM_SUCCESS)
134 fprintf (stderr, "unix4: pam_start returned %d\n", retval);
138 retval = pam_chauthtok (pamh, 0);
139 if ((!fail && retval != PAM_SUCCESS) || (fail && retval == PAM_SUCCESS))
142 fprintf (stderr, "unix4-1: pam_chauthtok returned %d\n", retval);
146 retval = pam_end (pamh,retval);
147 if (retval != PAM_SUCCESS)
150 fprintf (stderr, "unix4: pam_end returned %d\n", retval);