crates/nonstick: build.rs comparison

When dynamically linking against the wrong PAM, fail.

comparison

equal deleted inserted replaced

-:5aa1a010f1e8
+:a8f4718fed5d
 .allowlist_function("pam_get_authtok")
 .allowlist_function("pam_end")
 .dynamic_link_require_all(true)
 .default_macro_constant_type(MacroTypeVariation::Signed);
-let linux_builder = common_builder.clone().header_contents(
+let linux_builder = common_builder
-"linux-pam.h",
+.clone()
-r#"
+// This function is not available in OpenPAM.
+// We don't use it, but we include it so that if the user
+// tries to run this against the wrong PAM library, it fails.
+.allowlist_function("pam_start_confdir")
+.header_contents(
+"linux-pam.h",
+r#"
 #include <security/_pam_types.h>
 #include <security/pam_appl.h>
 #include <security/pam_ext.h>
 #include <security/pam_modules.h>
 "#,
 );
-let openpam_builder = common_builder.clone().header_contents(
+let openpam_builder = common_builder
-"openpam.h",
+.clone()
-r#"
+// This function is not available in Linux-PAM.
+// We don't use it, but we include it so that if the user
+// tries to run this against the wrong PAM library, it fails.
+.allowlist_function("pam_setenv")
+.header_contents(
+"openpam.h",
+r#"
 #include <security/openpam.h>
 #include <security/pam_appl.h>
 #include <security/pam_constants.h>
 #include <security/pam_types.h>
 "#,
 );
 let (pam_impl, bindings) = {
 let bb = linux_builder.generate();
 bb.as_ref().unwrap();
 if let Ok(bindings) = bb {

Mercurial > crates > nonstick