rooty/yubico-pam
1
0
Fork 0
mirror of https://github.com/Yubico/yubico-pam.git synced 2025-02-08 03:54:18 +01:00
Code Issues Projects Releases Wiki Activity

Ignore errors from pam_get_data().

Browse Source
This commit is contained in:
Fredrik Thulin 2011-03-04 15:52:02 +01:00
parent f91a7dc99a
commit a59c6c4d71
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
pam_yubico.c
View File

@ -661,17 +661,26 @@ pam_sm_setcred (pam_handle_t * pamh, int flags, int argc, const char **argv)
uintptr_t auth_retval; uintptr_t auth_retval;
struct cfg cfg; struct cfg cfg;
/* Parse config to see if we are debugging or not. */
parse_cfg (flags, argc, argv, &cfg); parse_cfg (flags, argc, argv, &cfg);
DBG (("called.")); DBG (("called."));
/* TODO: ? */ /* TODO: ? */
/* Try to get result of pam_sm_authenticate() to re-use as return
* value here. This does not always work though (OpenSSH sometimes forks
* between auth and setcred), so we turn any failure from pam_get_data()
* into PAM_SUCCESS. This is in line with how other PAM modules do.
*/
retval = pam_get_data (pamh, "yubico_setcred_return", retval = pam_get_data (pamh, "yubico_setcred_return",
(void*) (intptr_t) &auth_retval); (void*) (intptr_t) &auth_retval);
DBG (("retval: %d", auth_retval)); DBG (("retval: %d", auth_retval));
if (retval != PAM_SUCCESS) if (retval != PAM_SUCCESS)
return PAM_CRED_UNAVAIL; {
DBG (("done (ignoring pam_get_data error, returning PAM_SUCCESS)."));
return PAM_SUCCESS;
}
switch (auth_retval) switch (auth_retval)
{ {