crates/nonstick: src/module.rs annotate

annotate src/module.rs @ 1:b195a14058bb

initial commit

author	Jesse Hallett <jesse@galois.com>
date	Thu, 05 Mar 2015 16:25:10 -0800
parents
children	2ec97116d72c

rev	line source
1 b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	1 //! Functions for use in pam modules.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	2
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	3 use libc::{c_char};
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	4 use std::{mem, ptr};
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	5 use std::ffi::{CStr, CString};
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	6
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	7 use constants;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	8 use constants::*;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	9
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	10 /// Opaque type, used as a pointer when making pam API calls.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	11 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	12 /// A module is invoked via an external function such as `pam_sm_authenticate`.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	13 /// Such a call provides a pam handle pointer. The same pointer should be given
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	14 /// as an argument when making API calls.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	15 #[allow(missing_copy_implementations)]
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	16 pub enum PamHandleT {}
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	17
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	18 #[allow(missing_copy_implementations)]
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	19 enum PamItemT {}
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	20
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	21 #[allow(missing_copy_implementations)]
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	22 pub enum PamDataT {}
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	23
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	24 #[link(name = "pam")]
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	25 extern {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	26 fn pam_get_data(pamh: *const PamHandleT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	27 module_data_name: *const c_char,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	28 data: & *mut PamDataT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	29 ) -> PamResultCode;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	30
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	31 fn pam_set_data(pamh: *const PamHandleT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	32 module_data_name: *const c_char,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	33 data: Box<PamDataT>,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	34 cleanup: extern fn (pamh: *const PamHandleT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	35 data: Box<PamDataT>,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	36 error_status: PamResultCode
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	37 ),
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	38 ) -> PamResultCode;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	39
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	40 fn pam_get_item(pamh: *const PamHandleT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	41 item_type: PamItemType,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	42 item: & *mut PamItemT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	43 ) -> PamResultCode;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	44
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	45 fn pam_set_item(pamh: *mut PamHandleT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	46 item_type: PamItemType,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	47 item: &PamItemT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	48 ) -> PamResultCode;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	49
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	50 fn pam_get_user(pamh: *const PamHandleT,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	51 user: & *mut c_char,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	52 prompt: *const c_char,
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	53 ) -> PamResultCode;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	54 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	55
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	56 pub type PamResult<T> = Result<T, PamResultCode>;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	57
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	58 /// Type-level mapping for safely retrieving values with `get_item`.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	59 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	60 /// See `pam_get_item` in
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	61 /// http://www.linux-pam.org/Linux-PAM-html/mwg-expected-by-module-item.html
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	62 pub trait PamItem {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	63 /// Maps a Rust type to a pam constant.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	64 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	65 /// For example, the type PamConv maps to the constant PAM_CONV. The pam
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	66 /// API contract specifies that when the API function `pam_get_item` is
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	67 /// called with the constant PAM_CONV, it will return a value of type
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	68 /// `PamConv`.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	69 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	70 /// The argument will always be `None`. Its purpose is to provide a type
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	71 /// label - the value is not important.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	72 fn item_type(_: Option<Self>) -> PamItemType;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	73 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	74
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	75 /// Gets some value, identified by `key`, that has been set by the module
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	76 /// previously.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	77 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	78 /// See `pam_get_data` in
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	79 /// http://www.linux-pam.org/Linux-PAM-html/mwg-expected-by-module-item.html
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	80 pub unsafe fn get_data<'a, T>(pamh: &'a PamHandleT, key: &str) -> PamResult<&'a T> {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	81 let c_key = CString::new(key).unwrap().as_ptr();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	82 let mut ptr: *mut PamDataT = ptr::null_mut();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	83 let res = pam_get_data(pamh, c_key, &mut ptr);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	84 if constants::PAM_SUCCESS == res && !ptr.is_null() {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	85 let raw_data: &PamDataT = ptr.as_ref().unwrap();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	86 let data: &T = mem::transmute(raw_data);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	87 Ok(data)
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	88 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	89 else {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	90 Err(res)
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	91 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	92 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	93
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	94 /// Stores a value that can be retrieved later with `get_data`. The value lives
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	95 /// as long as the current pam cycle.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	96 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	97 /// See `pam_set_data` in
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	98 /// http://www.linux-pam.org/Linux-PAM-html/mwg-expected-by-module-item.html
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	99 pub fn set_data<T>(pamh: &PamHandleT, key: &str, data: Box<T>) -> PamResult<()> {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	100 let c_key = CString::new(key).unwrap().as_ptr();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	101 let res = unsafe {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	102 let c_data: Box<PamDataT> = mem::transmute(data);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	103 pam_set_data(pamh, c_key, c_data, cleanup::<T>)
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	104 };
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	105 if constants::PAM_SUCCESS == res { Ok(()) } else { Err(res) }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	106 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	107
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	108 #[no_mangle]
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	109 pub extern fn cleanup<T>(_: *const PamHandleT, c_data: Box<PamDataT>, _: PamResultCode) {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	110 unsafe {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	111 let data: Box<T> = mem::transmute(c_data);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	112 mem::drop(data);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	113 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	114 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	115
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	116 /// Retrieves a value that has been set, possibly by the pam client. This is
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	117 /// particularly useful for getting a `PamConv` reference.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	118 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	119 /// See `pam_get_item` in
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	120 /// http://www.linux-pam.org/Linux-PAM-html/mwg-expected-by-module-item.html
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	121 pub fn get_item<'a, T: PamItem>(pamh: &'a PamHandleT) -> PamResult<&'a T> {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	122 let ptr: *mut PamItemT = ptr::null_mut();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	123 let (res, item) = unsafe {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	124 let r = pam_get_item(pamh, PamItem::item_type(None::<T>), &ptr);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	125 let raw_item: &PamItemT = ptr.as_ref().unwrap();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	126 let t: &T = mem::transmute(raw_item);
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	127 (r, t)
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	128 };
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	129 if constants::PAM_SUCCESS == res { Ok(item) } else { Err(res) }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	130 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	131
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	132 /// Retrieves the name of the user who is authenticating or logging in.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	133 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	134 /// This is really a specialization of `get_item`.
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	135 ///
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	136 /// See `pam_get_user` in
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	137 /// http://www.linux-pam.org/Linux-PAM-html/mwg-expected-by-module-item.html
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	138 pub fn get_user<'a>(pamh: &'a PamHandleT, prompt: Option<&str>) -> PamResult<String> {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	139 let ptr: *mut c_char = ptr::null_mut();
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	140 let c_prompt = match prompt {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	141 Some(p) => CString::new(p).unwrap().as_ptr(),
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	142 None => ptr::null(),
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	143 };
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	144 let res = unsafe { pam_get_user(pamh, &ptr, c_prompt) };
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	145 if constants::PAM_SUCCESS == res && !ptr.is_null() {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	146 let const_ptr = ptr as *const c_char;
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	147 let bytes = unsafe { CStr::from_ptr(const_ptr).to_bytes() };
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	148 String::from_utf8(bytes.to_vec())
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	149 .map_err(\|_\| PAM_CONV_ERR)
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	150 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	151 else {
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	152 Err(res)
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	153 }
b195a14058bb initial commit Jesse Hallett <jesse@galois.com> parents: diff changeset	154 }

Mercurial > crates > nonstick

annotate src/module.rs @ 1:b195a14058bb