#include "data_provider.h"

bool dp_pack_pam_request(DBusMessage *msg, struct pam_data *pd)

{

dbus_bool_t db_ret;

const char *service;

const char *tty;

const char *ruser;

const char *rhost;

uint32_t authtok_type;

int authtok_length;

uint8_t *authtok_data;

uint32_t new_authtok_type;

int new_authtok_length;

uint8_t *new_authtok_data;

int32_t pd_priv;

int32_t pd_cmd;

if (pd->user == NULL) return false;

service = pd->service ? pd->service : "";

tty = pd->tty ? pd->tty : "";

ruser = pd->ruser ? pd->ruser : "";

rhost = pd->rhost ? pd->rhost : "";

authtok_type = (uint32_t)sss_authtok_get_type(pd->authtok);

authtok_data = sss_authtok_get_data(pd->authtok);

authtok_length = sss_authtok_get_size(pd->authtok);

new_authtok_type = (uint32_t)sss_authtok_get_type(pd->newauthtok);

new_authtok_data = sss_authtok_get_data(pd->newauthtok);

new_authtok_length = sss_authtok_get_size(pd->newauthtok);

pd_priv = pd->priv;

pd_cmd = pd->cmd;

db_ret = dbus_message_append_args(msg,

DBUS_TYPE_INT32, &pd_cmd,

DBUS_TYPE_STRING, &(pd->user),

DBUS_TYPE_STRING, &(pd->domain),

DBUS_TYPE_STRING, &service,

DBUS_TYPE_STRING, &tty,

DBUS_TYPE_STRING, &ruser,

DBUS_TYPE_STRING, &rhost,

DBUS_TYPE_UINT32, &authtok_type,

DBUS_TYPE_ARRAY, DBUS_TYPE_BYTE,

&authtok_data, authtok_length,

DBUS_TYPE_UINT32, &new_authtok_type,

DBUS_TYPE_ARRAY, DBUS_TYPE_BYTE,

&new_authtok_data, new_authtok_length,

DBUS_TYPE_INT32, &pd_priv,

DBUS_TYPE_UINT32, &(pd->cli_pid),

DBUS_TYPE_INVALID);

return db_ret;

}

bool dp_unpack_pam_request(DBusMessage *msg, TALLOC_CTX *mem_ctx,

struct pam_data **new_pd, DBusError *dbus_error)

{

dbus_bool_t db_ret;

int ret;

struct pam_data pd;

uint32_t authtok_type;

int authtok_length;

uint8_t *authtok_data;

uint32_t new_authtok_type;

int new_authtok_length;

uint8_t *new_authtok_data;

int32_t pd_cmd;

int32_t pd_priv;

memset(&pd, 0, sizeof(pd));

db_ret = dbus_message_get_args(msg, dbus_error,

DBUS_TYPE_INT32, &pd_cmd,

DBUS_TYPE_STRING, &(pd.user),

DBUS_TYPE_STRING, &(pd.domain),

DBUS_TYPE_STRING, &(pd.service),

DBUS_TYPE_STRING, &(pd.tty),

DBUS_TYPE_STRING, &(pd.ruser),

DBUS_TYPE_STRING, &(pd.rhost),

DBUS_TYPE_UINT32, &authtok_type,

DBUS_TYPE_ARRAY, DBUS_TYPE_BYTE,

&authtok_data, &authtok_length,

DBUS_TYPE_UINT32, &new_authtok_type,

DBUS_TYPE_ARRAY, DBUS_TYPE_BYTE,

&new_authtok_data, &new_authtok_length,

DBUS_TYPE_INT32, &pd_priv,

DBUS_TYPE_UINT32, &(pd.cli_pid),

DBUS_TYPE_INVALID);

if (!db_ret) {

DEBUG(SSSDBG_CRIT_FAILURE, "dbus_message_get_args failed.\n");

return false;

}

pd.cmd = pd_cmd;

pd.priv = pd_priv;

ret = copy_pam_data(mem_ctx, &pd, new_pd);

if (ret != EOK) {

DEBUG(SSSDBG_CRIT_FAILURE, "copy_pam_data failed.\n");

return false;

}

ret = sss_authtok_set((*new_pd)->authtok, authtok_type,

authtok_data, authtok_length);

if (ret) {

DEBUG(SSSDBG_CRIT_FAILURE,

"Failed to set auth token: %d [%s]\n", ret, strerror(ret));

return false;

}

ret = sss_authtok_set((*new_pd)->newauthtok, new_authtok_type,

new_authtok_data, new_authtok_length);

if (ret) {

DEBUG(SSSDBG_CRIT_FAILURE,

"Failed to set auth token: %d [%s]\n", ret, strerror(ret));

return false;

}

return true;

}

bool dp_pack_pam_response(DBusMessage *msg, struct pam_data *pd)

{

dbus_bool_t dbret;

struct response_data *resp;

DBusMessageIter iter;

DBusMessageIter array_iter;

DBusMessageIter struct_iter;

DBusMessageIter data_iter;

uint32_t pam_status;

uint32_t resp_type;

dbus_message_iter_init_append(msg, &iter);

/* Append the PAM status */

pam_status = pd->pam_status;

dbret = dbus_message_iter_append_basic(&iter,

DBUS_TYPE_UINT32, &pam_status);

if (!dbret) {

return false;

}

/* Append the lockout of account */

dbret = dbus_message_iter_append_basic(&iter,

DBUS_TYPE_UINT32,

&pd->account_locked);

if (!dbret) {

return false;

}

/* Create an array of response structures */

dbret = dbus_message_iter_open_container(&iter,

DBUS_TYPE_ARRAY, "(uay)",

&array_iter);

if (!dbret) {

return false;

}

resp = pd->resp_list;

while (resp != NULL) {

/* Create a DBUS struct */

dbret = dbus_message_iter_open_container(&array_iter,

DBUS_TYPE_STRUCT, NULL,

&struct_iter);

if (!dbret) {

return false;

}

/* Add the response type */

resp_type = resp->type;

dbret = dbus_message_iter_append_basic(&struct_iter,

DBUS_TYPE_UINT32,

&resp_type);

if (!dbret) {

return false;

}

/* Add the response message */

dbret = dbus_message_iter_open_container(&struct_iter,

DBUS_TYPE_ARRAY, "y",

&data_iter);

if (!dbret) {

return false;

}

dbret = dbus_message_iter_append_fixed_array(&data_iter,

DBUS_TYPE_BYTE, &(resp->data), resp->len);

if (!dbret) {

return false;

}

dbret = dbus_message_iter_close_container(&struct_iter, &data_iter);

if (!dbret) {

return false;

}

resp = resp->next;

dbret = dbus_message_iter_close_container(&array_iter, &struct_iter);

if (!dbret) {

return false;

}

}

/* Close the struct array */

dbret = dbus_message_iter_close_container(&iter, &array_iter);

if (!dbret) {

return false;

}

return true;

}

bool dp_unpack_pam_response(DBusMessage *msg, struct pam_data *pd, DBusError *dbus_error)

{

DBusMessageIter iter;

DBusMessageIter array_iter;

DBusMessageIter struct_iter;

DBusMessageIter sub_iter;

int type;

int len;

const uint8_t *data;

if (!dbus_message_iter_init(msg, &iter)) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response has no arguments.\n");

return false;

}

if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_UINT32) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

dbus_message_iter_get_basic(&iter, &(pd->pam_status));

if (!dbus_message_iter_next(&iter)) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response has too few arguments.\n");

return false;

}

if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_UINT32) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

dbus_message_iter_get_basic(&iter, &(pd->account_locked));

if (!dbus_message_iter_next(&iter)) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response has too few arguments.\n");

return false;

}

/* After this point will be an array of pam data */

if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_ARRAY) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

DEBUG(SSSDBG_CRIT_FAILURE,

"Type was %c\n", (char)dbus_message_iter_get_arg_type(&iter));

return false;

}

if (dbus_message_iter_get_element_type(&iter) != DBUS_TYPE_STRUCT) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

dbus_message_iter_recurse(&iter, &array_iter);

while (dbus_message_iter_get_arg_type(&array_iter) != DBUS_TYPE_INVALID) {

/* Read in a pam data struct */

if (dbus_message_iter_get_arg_type(&array_iter) != DBUS_TYPE_STRUCT) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

dbus_message_iter_recurse(&array_iter, &struct_iter);

/* PAM data struct contains a type and a byte-array of data */

/* Get the pam data type */

if (dbus_message_iter_get_arg_type(&struct_iter) != DBUS_TYPE_UINT32) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

dbus_message_iter_get_basic(&struct_iter, &type);

if (!dbus_message_iter_next(&struct_iter)) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

/* Get the byte array */

if (dbus_message_iter_get_arg_type(&struct_iter) != DBUS_TYPE_ARRAY ||

dbus_message_iter_get_element_type(&struct_iter) != DBUS_TYPE_BYTE) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam response format error.\n");

return false;

}

dbus_message_iter_recurse(&struct_iter, &sub_iter);

dbus_message_iter_get_fixed_array(&sub_iter, &data, &len);

if (pam_add_response(pd, type, len, data) != EOK) {

DEBUG(SSSDBG_CRIT_FAILURE, "pam_add_response failed.\n");

return false;

}

dbus_message_iter_next(&array_iter);

}

return true;

}