1 /*-
2 * Copyright (c) 2002-2003 Networks Associates Technology, Inc.
3 * Copyright (c) 2004-2017 Dag-Erling Smørgrav
4 * All rights reserved.
5 *
6 * This software was developed for the FreeBSD Project by ThinkSec AS and
7 * Network Associates Laboratories, the Security Research Division of
8 * Network Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035
9 * ("CBOSS"), as part of the DARPA CHATS research program.
10 *
11 * Redistribution and use in source and binary forms, with or without
12 * modification, are permitted provided that the following conditions
13 * are met:
14 * 1. Redistributions of source code must retain the above copyright
15 * notice, this list of conditions and the following disclaimer.
16 * 2. Redistributions in binary form must reproduce the above copyright
17 * notice, this list of conditions and the following disclaimer in the
18 * documentation and/or other materials provided with the distribution.
19 * 3. The name of the author may not be used to endorse or promote
20 * products derived from this software without specific prior written
21 * permission.
22 *
23 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
24 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
25 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
26 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
27 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
28 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
29 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
30 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
31 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
32 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
33 * SUCH DAMAGE.
34 */
35
36 #ifdef HAVE_CONFIG_H
37 # include "config.h"
38 #endif
39
40 #include <errno.h>
41 #include <stdlib.h>
42 #include <stdio.h>
43 #include <string.h>
44
45 #include <security/pam_appl.h>
46
47 #include "openpam_impl.h"
48 #include "openpam_asprintf.h"
49
50 /*
51 * OpenPAM extension
52 *
53 * Set the value of an environment variable
54 * Mirrors setenv(3)
55 */
56
57 int
pam_setenv(pam_handle_t * pamh,const char * name,const char * value,int overwrite)58 pam_setenv(pam_handle_t *pamh,
59 const char *name,
60 const char *value,
61 int overwrite)
62 {
63 char *env;
64 int r;
65
66 ENTER();
67
68 /* sanity checks */
69 if (*name == '\0' || strchr(name, '=') != NULL) {
70 errno = EINVAL;
71 RETURNC(PAM_SYSTEM_ERR);
72 }
73
74 /* is it already there? */
75 if (!overwrite && openpam_findenv(pamh, name, strlen(name)) >= 0)
76 RETURNC(PAM_SUCCESS);
77
78 /* set it... */
79 if (asprintf(&env, "%s=%s", name, value) < 0)
80 RETURNC(PAM_BUF_ERR);
81 r = pam_putenv(pamh, env);
82 FREE(env);
83 RETURNC(r);
84 }
85
86 /*
87 * Error codes:
88 *
89 * =pam_putenv
90 * PAM_SYSTEM_ERR
91 * PAM_BUF_ERR
92 */
93
94 /**
95 * The =pam_setenv function sets an environment variable.
96 * Its semantics are similar to those of =setenv, but it modifies the PAM
97 * context's environment list instead of the application's.
98 *
99 * >pam_getenv
100 * >pam_getenvlist
101 * >pam_putenv
102 */
103