diff options
| author | Jan Zeleny <jzeleny@redhat.com> | 2012-03-05 03:51:07 -0500 |
|---|---|---|
| committer | Stephen Gallagher <sgallagh@redhat.com> | 2012-04-24 09:19:43 -0400 |
| commit | 8aec6ca927c4cb08933d3725447765d08553c4de (patch) | |
| tree | f34205e6763eae4e7601a48ca38e67de17cb8ffc /src/responder/pam | |
| parent | 881c4ba834b23ae651ac01db667801f314eb0a5d (diff) | |
| download | sssd-8aec6ca927c4cb08933d3725447765d08553c4de.tar.gz sssd-8aec6ca927c4cb08933d3725447765d08553c4de.tar.xz sssd-8aec6ca927c4cb08933d3725447765d08553c4de.zip | |
Send PAM requests for subdomains to the right provider
Diffstat (limited to 'src/responder/pam')
| -rw-r--r-- | src/responder/pam/pamsrv_cmd.c | 44 |
1 files changed, 41 insertions, 3 deletions
diff --git a/src/responder/pam/pamsrv_cmd.c b/src/responder/pam/pamsrv_cmd.c index 7d6d213dc..c3e027e3c 100644 --- a/src/responder/pam/pamsrv_cmd.c +++ b/src/responder/pam/pamsrv_cmd.c @@ -874,6 +874,7 @@ static void pam_cache_auth_done(struct pam_auth_req *preq, int ret, return; } +static void pam_forwarder_cb(struct tevent_req *req); static void pam_check_user_dp_callback(uint16_t err_maj, uint32_t err_min, const char *err_msg, void *ptr); static int pam_check_user_search(struct pam_auth_req *preq); @@ -896,6 +897,8 @@ static int pam_forwarder(struct cli_ctx *cctx, int pam_cmd) struct pam_ctx *pctx = talloc_get_type(cctx->rctx->pvt_ctx, struct pam_ctx); uint32_t terminator = SSS_END_OF_PAM_REQUEST; + struct tevent_req *req; + preq = talloc_zero(cctx, struct pam_auth_req); if (!preq) { return ENOMEM; @@ -944,11 +947,16 @@ static int pam_forwarder(struct cli_ctx *cctx, int pam_cmd) if (pd->domain) { preq->domain = responder_get_domain(preq, cctx->rctx, pd->domain); if (!preq->domain) { - ret = ENOENT; + req = sss_dp_get_domains_send(cctx->rctx, cctx->rctx, true, pd->domain); + if (req == NULL) { + ret = ENOMEM; + } else { + tevent_req_set_callback(req, pam_forwarder_cb, preq); + ret = EAGAIN; + } goto done; } - } - else { + } else { for (dom = preq->cctx->rctx->domains; dom; dom = dom->next) { if (dom->fqnames) continue; @@ -990,6 +998,36 @@ done: return pam_check_user_done(preq, ret); } +static void pam_forwarder_cb(struct tevent_req *req) +{ + struct pam_auth_req *preq = tevent_req_callback_data(req, + struct pam_auth_req); + struct cli_ctx *cctx = preq->cctx; + errno_t ret = EOK; + + ret = sss_dp_get_domains_recv(req); + talloc_free(req); + if (ret != EOK) { + goto done; + } + + if (preq->pd->domain) { + preq->domain = responder_get_domain(preq, cctx->rctx, preq->pd->domain); + if (preq->domain == NULL) { + ret = ENOENT; + goto done; + } + } + + ret = pam_check_user_search(preq); + if (ret == EOK) { + pam_dom_forwarder(preq); + } + +done: + pam_check_user_done(preq, ret); +} + static void pam_dp_send_acct_req_done(struct tevent_req *req); static int pam_check_user_search(struct pam_auth_req *preq) |