crates/nonstick: src/libpam/environ.rs comparison

comparison src/libpam/environ.rs @ 100:3f11b8d30f63

Implement environment variable management. This actually wires up the environment variable handling to libpam, so that applications and modules can manage the environment through the authentication process.

author	Paul Fisher <paul@pfish.zone>
date	Tue, 24 Jun 2025 17:08:01 -0400
parents	b87100c5eed4
children	dfcd96a74ac4

comparison

equal deleted inserted replaced

-:8840fa6534f6
+:3f11b8d30f63
 #![allow(unused_variables)] // for now
-use crate::environ::EnvironMapMut;
+use crate::constants::{ErrorCode, Result};
+use crate::environ::{EnvironMap, EnvironMapMut};
 use crate::libpam::memory::CHeapString;
-use crate::{EnvironMap, LibPamHandle};
+use crate::libpam::{memory, pam_ffi, LibPamHandle};
-use std::ffi::{c_char, OsStr, OsString};
+use std::ffi::{c_char, CStr, CString, OsStr, OsString};
-use std::os::unix::ffi::OsStrExt;
+use std::marker::PhantomData;
+use std::os::unix::ffi::{OsStrExt, OsStringExt};
+use std::ptr;
 use std::ptr::NonNull;
-use std::{iter, ptr};
-use crate::libpam::memory;
 pub struct LibPamEnviron<'a> {
 source: &'a LibPamHandle,
 }
 pub struct LibPamEnvironMut<'a> {
 source: &'a mut LibPamHandle,
+}
+impl LibPamHandle {
+fn environ_get(&self, key: &OsStr) -> Option<OsString> {
+let key = CString::new(key.as_bytes()).ok()?;
+// SAFETY: We are a valid handle and are calling with a good key.
+unsafe {
+copy_env(pam_ffi::pam_getenv(
+(self as *const LibPamHandle).cast_mut(),
+key.as_ptr(),
+))
+}
+}
+fn environ_set(&mut self, key: &OsStr, value: Option<&OsStr>) -> Result<Option<OsString>> {
+let old = self.environ_get(key);
+let total_len = key.len() + value.map(OsStr::len).unwrap_or_default() + 2;
+let mut result = Vec::with_capacity(total_len);
+result.extend(key.as_bytes());
+if let Some(value) = value {
+result.push(b'=');
+result.extend(value.as_bytes());
+}
+let put = CString::new(result).map_err(|_| ErrorCode::ConversationError)?;
+// SAFETY: This is a valid handle and a valid environment string.
+ErrorCode::result_from(unsafe { pam_ffi::pam_putenv(self, put.as_ptr()) })?;
+Ok(old)
+}
+fn environ_iter(&self) -> Result<impl Iterator<Item = (OsString, OsString)>> {
+// SAFETY: This is a valid PAM handle.
+unsafe {
+NonNull::new(pam_ffi::pam_getenvlist(
+(self as *const LibPamHandle).cast_mut(),
+))
+.map(|ptr| EnvList::from_ptr(ptr.cast()))
+.ok_or(ErrorCode::BufferError)
+}
+}
+}
+/// Copies the data of the given C string pointer to an OsString,
+/// or None if src is null.
+unsafe fn copy_env(src: *const c_char) -> Option<OsString> {
+let val = match NonNull::new(src.cast_mut()) {
+None => return None,
+Some(ptr) => ptr.as_ptr(),
+};
+// SAFETY: We were just returned this string from PAM.
+// We have to trust it.
+let c_str = unsafe { CStr::from_ptr(val) };
+Some(OsString::from_vec(c_str.to_bytes().to_vec()))
 }
 impl<'a> LibPamEnviron<'a> {
 pub fn new(source: &'a LibPamHandle) -> Self {
 Self { source }
 impl<'a> LibPamEnvironMut<'a> {
 pub fn new(source: &'a mut LibPamHandle) -> Self {
 Self { source }
 }
+}
-fn immut(&self) -> LibPamEnviron {
-LibPamEnviron {
+impl EnvironMap<'_> for LibPamEnviron<'_> {
-source: self.source,
+fn get(&self, key: impl AsRef<OsStr>) -> Option<OsString> {
-}
+self.source.environ_get(key.as_ref())
 }
-}
+fn iter(&self) -> Result<impl Iterator<Item = (OsString, OsString)>> {
-impl EnvironMap for LibPamEnviron<'_> {
+self.source.environ_iter()
-fn get(&self, val: &OsStr) -> Option<&OsStr> {
+}
-todo!()
+}
-}
+impl EnvironMap<'_> for LibPamEnvironMut<'_> {
-fn iter(&self) -> impl Iterator<Item = (&OsStr, &OsStr)> {
+fn get(&self, key: impl AsRef<OsStr>) -> Option<OsString> {
-iter::from_fn(|| todo!())
+self.source.environ_get(key.as_ref())
 }
-}
+fn iter(&self) -> Result<impl Iterator<Item = (OsString, OsString)>> {
-impl EnvironMap for LibPamEnvironMut<'_> {
+self.source.environ_iter()
-fn get(&self, val: &OsStr) -> Option<&OsStr> {
+}
-todo!()
+}
-}
+impl EnvironMapMut<'_> for LibPamEnvironMut<'_> {
-fn iter(&self) -> impl Iterator<Item = (&OsStr, &OsStr)> {
+fn insert(
-iter::from_fn(|| todo!())
+&mut self,
-}
+key: impl AsRef<OsStr>,
-}
+val: impl AsRef<OsStr>,
+) -> Result<Option<OsString>> {
-impl EnvironMapMut for LibPamEnvironMut<'_> {
+self.source.environ_set(key.as_ref(), Some(val.as_ref()))
-fn insert(&mut self, key: &OsStr, val: &OsStr) -> Option<OsString> {
+}
-todo!()
-}
+fn remove(&mut self, key: impl AsRef<OsStr>) -> Result<Option<OsString>> {
+self.source.environ_set(key.as_ref(), None)
-fn remove(&mut self, key: &OsStr) -> Option<OsString> {
+}
-todo!()
+}
-}
-}
+struct EnvList<'a> {
-struct EnvList {
 /// Pointer to the start of the environment variable list.
 ///
 /// This can't be a `CHeapBox` because it's not just a single
 /// `Option<EnvVar>`.
-vars: NonNull<Option<EnvVar>>,
+start: NonNull<Option<EnvVar>>,
-}
+/// The environment variable we're about to iterate into.
+current: NonNull<Option<EnvVar>>,
-impl EnvList {
+_owner: PhantomData<&'a LibPamHandle>,
+}
+impl EnvList<'_> {
 unsafe fn from_ptr(ptr: NonNull<*mut c_char>) -> Self {
-Self{vars: ptr.cast()}
+Self {
-}
+start: ptr.cast(),
+current: ptr.cast(),
-fn iter(&self) -> impl Iterator<Item = (&OsStr, &OsStr)> {
+_owner: Default::default(),
-let mut current = self.vars;
+}
-iter::from_fn(move || {
+}
-match unsafe {current.as_ref()} {
+}
-None => None,
+impl Iterator for EnvList<'_> {
-Some(item) => {
+type Item = (OsString, OsString);
-let ret = item.as_kv();
-current = unsafe {current.add(1) };
+fn next(&mut self) -> Option<Self::Item> {
-Some(ret)
+// SAFETY: We were given a pointer to a valid environment list,
+// and we only ever advance it to the exact end of the list.
+match unsafe { self.current.as_mut() } {
+None => None,
+Some(item) => {
+let ret = item.as_kv();
+// SAFETY: We know we're still pointing to a valid pointer,
+// and advancing it one more is allowed.
+unsafe {
+self.current = self.current.add(1);
+ptr::drop_in_place(item as *mut EnvVar);
 }
+Some(ret)
 }
-})
+}
 }
 }
-impl Drop for EnvList {
+impl Drop for EnvList<'_> {
 fn drop(&mut self) {
-// SAFETY: We own this pointer, and we know it's valid environment data
+// SAFETY: We own self.start, and we know that self.current points to
-// from PAM.
+// either an item we haven't used, or to the None end.
 unsafe {
-let mut var = self.vars;
+while let Some(var_ref) = self.current.as_mut() {
-while let Some(var_ref) = var.as_mut() {
 ptr::drop_in_place(var_ref as *mut EnvVar);
-var = var.add(1);
+self.current = self.current.add(1);
 }
-memory::free(self.vars.as_ptr())
+memory::free(self.start.as_ptr())
 }
 }
 }
 struct EnvVar(CHeapString);
 impl EnvVar {
-fn as_kv(&self) -> (&OsStr, &OsStr) {
+fn as_kv(&self) -> (OsString, OsString) {
 let bytes = self.0.to_bytes();
 let mut split = bytes.splitn(2, |&b| b == b'=');
 (
-OsStr::from_bytes(split.next().unwrap_or_default()),
+OsString::from_vec(split.next().unwrap_or_default().into()),
-OsStr::from_bytes(split.next().unwrap_or_default()),
+OsString::from_vec(split.next().unwrap_or_default().into()),
 )
 }
 }
 #[cfg(test)]
 mod tests {
-use crate::libpam::memory::CHeapBox;
 use super::*;
+fn os(text: &str) -> OsString {
+OsString::from_vec(text.into())
+}
 #[test]
 fn test_split_kv() {
 fn test(input: &str, key: &str, value: &str) {
 let data = CHeapString::new(input).unwrap();
-let key = OsStr::from_bytes(key.as_bytes());
+let key = os(key);
-let value = OsStr::from_bytes(value.as_bytes());
+let value = os(value);
 assert_eq!(EnvVar(data).as_kv(), (key, value));
 }
 test("THIS=that", "THIS", "that");
 test("THESE=those, no one=knows", "THESE", "those, no one=knows");
 test("HERE=", "HERE", "");
 test("SOME", "SOME", "");
 test("", "", "");
 }
+fn env_list(strings: &[&'static str]) -> EnvList<'static> {
+let ptrs: NonNull<Option<CHeapString>> = memory::calloc(strings.len() + 1).unwrap();
+unsafe {
+for (idx, &text) in strings.iter().enumerate() {
+ptr::write(
+ptrs.add(idx).as_ptr(),
+Some(CHeapString::new(text).unwrap()),
+)
+}
+ptr::write(ptrs.add(strings.len()).as_ptr(), None);
+EnvList::from_ptr(ptrs.cast())
+}
+}
 #[test]
 fn test_iter() {
-let bx = CHeapBox::new([
+let envs = env_list(&["ONE=two", "BIRDS=birds=birds", "me", "you="]);
-Some("ONE=two"),
+let result: Vec<_> = envs.collect();
-Some("BIRDS=birds=birds"),
+assert_eq!(
-Some("me"),
+vec![
-Some("you="),
+(os("ONE"), os("two")),
-None,
+(os("BIRDS"), os("birds=birds")),
-].map(|txt| txt.map(|txt| CHeapString::new(txt).unwrap()))).unwrap();
+(os("me"), os("")),
-let env_ptr = CHeapBox::into_ptr(bx);
+(os("you"), os("")),
+],
-let envs = unsafe {EnvList::from_ptr(env_ptr.cast())};
+result
-let bytes = |data: &'static str| OsStr::from_bytes(data.as_ref());
+);
-let result: Vec<_> = envs.iter().collect();
+}
-assert_eq!(vec![
-(bytes("ONE"), bytes("two")),
+#[test]
-(bytes("BIRDS"), bytes("birds=birds")),
+fn test_iter_partial() {
-(bytes("me"), bytes("")),
+let mut envs = env_list(&[
-(bytes("you"), bytes("")),
+"iterating=this",
-],
+"also=here",
-result);
+"but not=this one",
-}
+"or even=the last",
-}
+]);
+assert_eq!(Some((os("iterating"), os("this"))), envs.next());
+assert_eq!(Some((os("also"), os("here"))), envs.next());
+// let envs drop
+}
+}

Mercurial > crates > nonstick

comparison src/libpam/environ.rs @ 100:3f11b8d30f63