pam 1.5.2

data/README

@@ -0,0 +1,102 @@
+                                Ruby/PAM Module                                
+                                                                               
+        Original Copyright (C) 2000,2001,2002,2003 
+        Takaaki Tateishi (ttate@users.sourceforge.net)  
+        Subsequent Copyright Bryan Kearney (bkearney@redhat.com)
+    
+Ruby/PAM is an extension libraries which provides PAM bindings for Ruby.
+It is a fork of the original Ruby/PAM project written by Takaaki Tateishi
+that was distributed at http://ruby-pam.sourceforge.net/.
+
+System Requirements
+--------------------
+I checked that this module can work on the following operating systems and
+environments.
+
+  * linux-2.6 + ruby-1.8.1
+  
+The previous incarnation was tested on:
+
+  * linux-2.4.0 + ruby-1.6.4 + glibc2.1.2
+  * solaris8 + ruby-1.6.0
+  * solaris7 + ruby-1.6.0
+
+Installation
+-------------
+
+ 1. rake package
+ 2. cd pkg
+ 3. gem install ruby-pam*.gem
+ 
+Methods
+---------
+service, user, item : String
+conv : Proc or Symbol
+msec, type, flag : Integer
+
+  * PAM.start(service, user, conv, conv_data = nil){ ... }
+  * PAM::Handle.new(service, user, conv, conv_data = nil){ ... }
+  * PAM::Handle.start(service, user, conv, conv_data = nil){ ... }
+  * PAM::Handle#end() -- called at the above block end.
+  * PAM::Handle#status()
+  * PAM::Handle#conv(msg)
+  * PAM::Handle#authenticate(flag)
+  * PAM::Handle#acct_mgmt(flag = 0)
+  * PAM::Handle#set_fail_delay(msec)
+  * PAM::Handle#setcred(flag = 0)
+  * PAM::Handle#chauthtok(flag = 0)
+  * PAM::Handle#open_session(flag = 0){ ... }
+  * PAM::Handle#close_session(flag = 0)
+  * PAM::Handle#set_item(type, item)
+  * PAM::Handle#get_item(type, item)
+  * PAM::Handle#strerror(errnum)
+  * PAM::Handle#putenv("veriable=value")
+  * PAM::Handle#getenv("veriable")
+
+Structures
+------------
+  * Message (Struct) -- Message.new(msg_style, msg)
+  * Response (Struct) -- Response.new(resp, resp_retcode)
+
+Exceptions
+------------
+  * PAMError (Class)
+  * PAM_SUCCESS
+  * PAM_OPEN_ERR
+  * ...
+see 'pam_appl.h'
+
+
+'PAM::' Constants
+------------------
+  * PAM_VERSION
+  * PAM_MAJOR_VERSION
+  * PAM_MINOR_VERSION
+  * PAM_CONV
+  * PAM_CHANGE_EXPIRED_AUTHTOK
+  * PAM_DELETE_CRED
+  * PAM_ERROR_MSG
+  * PAM_ESTABLISH_CRED
+  * PAM_OLDAUTHTOK
+  * PAM_PROMPT_ECHO_OFF
+  * PAM_PROMPT_ECHO_ON
+  * PAM_REFRESH_CRED
+  * PAM_REINITIALIZE_CRED
+  * PAM_RHOST
+  * PAM_RUSER
+  * PAM_SERVICE
+  * PAM_SILENT
+  * PAM_TEXT_INFO
+  * PAM_TTY
+  * PAM_USER
+  * PAM_USER_PROMPT
+  * PAM_DISALLOW_NULL_AUTHTOK
+
+
+Others
+-------
+  * http://www.kernel.org/pub/linux/libs/pam/
+    Linux-PAM (PAM implementation for Linux)
+  * http://pam.sourceforge.net/mod_auth_pam/
+    mod_auth_pam (apache authentication module using PAM)
+

data/Rakefile

@@ -0,0 +1,100 @@
+# -*- ruby -*-
+# Rakefile: build ruby pam bindings
+#
+# Copyright (C) 2008 Red Hat, Inc.
+#
+# Distributed under the GNU Lesser General Public License v2.1 or later.
+# See COPYING for details
+#
+# Bryan Kearney <bkearney@redhat.com>
+
+require 'rake/clean'
+require 'rake/rdoctask'
+require 'rake/testtask'
+require 'rake/gempackagetask'
+
+PKG_NAME='ruby-pam'
+GEM_NAME='pam'
+PKG_VERSION='1.5.2'
+EXT_CONF='ext/extconf.rb'
+MAKEFILE="Makefile"
+PAM_MODULE="ext/pam.so"
+SPEC_FILE="rubygem-pam.spec"
+
+#
+# Building the actual bits
+#
+CLEAN.include [ "**/*~",
+                "ext/**/*.o", PAM_MODULE,
+                "pkg/**" ]
+
+file MAKEFILE => EXT_CONF do |t|
+    Dir::chdir(File::dirname(EXT_CONF)) do
+         unless sh "ruby #{File::basename(EXT_CONF)}"
+             $stderr.puts "Failed to run extconf"
+             break
+         end
+    end
+end
+
+file PAM_MODULE => MAKEFILE  do |t|
+    Dir::chdir(File::dirname(EXT_CONF)) do
+         unless sh "make"
+             $stderr.puts "make failed"
+             break
+         end
+     end
+end
+desc "Build the native library"
+task :build => PAM_MODULE
+
+#
+# Generate the documentation
+#
+Rake::RDocTask.new do |rd|
+    rd.main = "README.rdoc"
+    rd.rdoc_dir = "doc/site/api"
+    rd.rdoc_files.include("README.rdoc", "ext/**/*.[ch]","lib/**/*.rb")
+end
+
+
+#
+# Packaging
+#
+PKG_FILES = FileList[
+  "Rakefile", "COPYING", "LICENSE", "README", "ChangeLog",
+  "ext/*.[ch]", "ext/*.rb", "test/*.rb", "MANIFEST", EXT_CONF]
+
+DIST_FILES = FileList[
+  "pkg/*.tgz", "pkg/*.gem"
+]
+
+SPEC = Gem::Specification.new do |s|
+    s.name = GEM_NAME
+    s.version = PKG_VERSION
+    s.email = "bkearney@redhat.com"
+    s.homepage = "http://sourceforge.net/projects/ruby-pam"
+    s.summary = "Ruby bindings for pam"
+    s.files = PKG_FILES
+    s.autorequire = "pam-devel"
+    s.required_ruby_version = '>= 1.8.1'
+    s.extensions = "ext/extconf.rb"
+    s.description = "Ruby bindings pam."
+end
+
+Rake::GemPackageTask.new(SPEC) do |pkg|
+    pkg.need_tar = true
+    pkg.need_zip = true
+end
+
+desc "Build (S)RPM for #{PKG_NAME}"
+task :rpm => [ :package ] do |t|
+    system("sed -e 's/@VERSION@/#{PKG_VERSION}/' #{SPEC_FILE} > pkg/#{SPEC_FILE}")
+    Dir::chdir("pkg") do |dir|
+        dir = File::expand_path(".")
+        system("rpmbuild --define '_topdir #{dir}' --define '_sourcedir #{dir}' --define '_srcrpmdir #{dir}' --define '_rpmdir #{dir}' --define '_builddir #{dir}' -ba #{SPEC_FILE} > rpmbuild.log 2>&1")
+        if $? != 0
+            raise "rpmbuild failed"
+        end
+    end
+end

data/ext/extconf.rb

@@ -0,0 +1,29 @@
+#!/usr/bin/env ruby-1.6
+#                                          -*- ruby -*-
+# extconf.rb
+#
+# $Id: extconf.rb,v 1.1.1.1 2002/11/06 08:04:48 ttate Exp $
+#
+
+require 'mkmf'
+
+$CFLAGS = ""
+$LDFLAGS = ""
+
+have_pam_appl_h = have_header("security/pam_appl.h")
+have_pam_modules_h = have_header("security/pam_modules.h")
+
+have_pam_lib = have_library("pam","pam_start")
+
+have_func("pam_end")
+have_func("pam_open_session")
+have_func("pam_close_session")
+have_func("pam_authenticate")
+have_func("pam_acct_mgmt")
+# have_func("pam_fail_delay")
+have_func("pam_setcred")
+have_func("pam_chauthtok")
+have_func("pam_putenv")
+have_func("pam_getenv")
+
+create_makefile("pam")

data/ext/pam.c

@@ -0,0 +1,164 @@
+/* -*- C -*-
+ * $Id: pam.c,v 1.2 2004/10/09 09:19:43 ttate Exp $
+ */
+
+#include "pam.h"
+
+#ifdef HAVE_STDARG_PROTOTYPES
+#include <stdarg.h>
+#define va_init_list(a,b) va_start(a,b)
+#else
+#include <varargs.h>
+#define va_init_list(a,b) va_start(a)
+#endif
+
+VALUE rb_mPAM;            /* PAM module */
+VALUE rb_cPAMHandle;      /* PAM Handle Class */
+VALUE rb_ePAMError;       /* PAM Runtime Error */
+VALUE rb_pam_errors[RBPAM_MAX_ERRORS];  /* PAM Errors */
+
+VALUE rb_sPAMMessage;
+VALUE rb_sPAMResponse;
+
+static VALUE
+rb_pam_define_err(int err, const char *name)
+{
+  if( 0 < err && err < RBPAM_MAX_ERRORS ){
+    rb_pam_errors[err] = rb_define_class_under(rb_mPAM, name, rb_ePAMError);
+  }
+  else{
+    rb_define_class_under(rb_mPAM, name, rb_ePAMError);
+  };
+};
+
+static void
+rb_pam_init_errors()
+{
+  int i;
+
+  for( i=0; i < RBPAM_MAX_ERRORS; i++ ){
+    rb_pam_errors[i] = Qnil;
+  };
+  rb_pam_define_err(PAM_SUCCESS, "PAM_SUCCESS");
+  rb_pam_define_err(PAM_OPEN_ERR, "PAM_OPEN_ERR");
+  rb_pam_define_err(PAM_SYMBOL_ERR, "PAM_SYMBOL_ERR");
+  rb_pam_define_err(PAM_SERVICE_ERR, "PAM_SERVICE_ERR");
+  rb_pam_define_err(PAM_SYSTEM_ERR, "PAM_SYSTEM_ERR");
+  rb_pam_define_err(PAM_BUF_ERR, "PAM_BUF_ERR");
+  rb_pam_define_err(PAM_PERM_DENIED, "PAM_PERM_DENIED");
+  rb_pam_define_err(PAM_AUTH_ERR, "PAM_AUTH_ERR");
+  rb_pam_define_err(PAM_CRED_INSUFFICIENT, "PAM_CRED_INSUFFICIENT");
+  rb_pam_define_err(PAM_AUTHINFO_UNAVAIL, "PAM_AUTHINFO_UNAVAIL");
+  rb_pam_define_err(PAM_USER_UNKNOWN, "PAM_USER_UNKNOWN");
+  rb_pam_define_err(PAM_MAXTRIES, "PAM_MAXTRIES");
+  rb_pam_define_err(PAM_NEW_AUTHTOK_REQD, "PAM_NEW_AUTHOK_REQD");
+  rb_pam_define_err(PAM_ACCT_EXPIRED, "PAM_ACCT_EXPIRED");
+  rb_pam_define_err(PAM_SESSION_ERR, "PAM_SESSION_ERR");
+  rb_pam_define_err(PAM_CRED_UNAVAIL, "PAM_CRED_UNAVAIL");
+  rb_pam_define_err(PAM_CRED_EXPIRED, "PAM_CRED_EXPIRED");
+  rb_pam_define_err(PAM_CRED_ERR, "PAM_CRED_ERR");
+  rb_pam_define_err(PAM_NO_MODULE_DATA, "PAM_NO_MODULE_DATA");
+  rb_pam_define_err(PAM_CONV_ERR, "PAM_CONV_ERR");
+  rb_pam_define_err(PAM_AUTHTOK_ERR, "PAM_AUTHTOK_ERR");
+#if defined(PAM_AUTHTOK_RECOVER_ERR)
+  rb_pam_define_err(PAM_AUTHTOK_RECOVER_ERR, "PAM_AUTHTOK_RECOVERY_ERR");
+#elif defined(PAM_AUTHTOK_RECOVERY_ERR)
+  rb_pam_define_err(PAM_AUTHTOK_RECOVERY_ERR, "PAM_AUTHTOK_RECOVERY_ERR");
+#endif
+  rb_pam_define_err(PAM_AUTHTOK_LOCK_BUSY, "PAM_AUTHTOK_LOCK_BUSY");
+  rb_pam_define_err(PAM_AUTHTOK_DISABLE_AGING, "PAM_AUTHTOK_DISABLE_AGING");
+  rb_pam_define_err(PAM_TRY_AGAIN, "PAM_TRY_AGAIN");
+  rb_pam_define_err(PAM_IGNORE, "PAM_IGNORE");
+  rb_pam_define_err(PAM_ABORT, "PAM_ABORT");
+  rb_pam_define_err(PAM_AUTHTOK_EXPIRED, "PAM_AUTHTOK_EXPIRED");
+#if defined(PAM_MODULE_UNKNOWN)
+  rb_pam_define_err(PAM_MODULE_UNKNOWN, "PAM_MODULE_UNKNOWN");
+#endif
+#if defined(PAM_BAD_ITEM)
+  rb_pam_define_err(PAM_BAD_ITEM, "PAM_BAD_ITEM");
+#endif
+#if defined(PAM_CONV_AGAIN)
+  rb_pam_define_err(PAM_CONV_AGAIN, "PAM_CONV_AGAIN");
+#endif
+#if defined(PAM_INCOMPLETE)
+  rb_pam_define_err(PAM_INCOMPLETE, "PAM_INCOMPLETE");
+#endif
+};
+
+void
+#ifdef HAVE_STDARG_PROTOTYPES
+rb_pam_raise(int err, const char *fmt, ...)
+#else
+rb_pam_raise(err, fmt, va_alist)
+     int err;
+     const char *fmt;
+     va_dcl
+#endif
+{
+  va_list args;
+  char buf[BUFSIZ];
+
+  if( 0 < err && err < RBPAM_MAX_ERRORS && rb_pam_errors[err] ){
+    va_init_list(args,fmt);
+    vsnprintf(buf, BUFSIZ, fmt, args);
+    va_end(args);
+    rb_exc_raise(rb_exc_new2(rb_pam_errors[err],buf));
+  }
+  else{
+    rb_raise(rb_ePAMError, "undefined pam exception (error code = %d)",err);
+  };
+};
+
+VALUE
+rb_pam_start(int argc, VALUE argv[], VALUE self)
+{
+  return rb_pam_handle_s_start(argc, argv, rb_cPAMHandle);
+};
+
+
+void
+Init_pam()
+{
+  extern Init_pam_handle();
+
+  rb_mPAM = rb_define_module("PAM");
+  rb_ePAMError = rb_define_class_under(rb_mPAM, "PAMError",rb_eRuntimeError);
+
+  rb_sPAMMessage = rb_struct_define("Message","msg_style","msg",0);
+  rb_sPAMResponse = rb_struct_define("Response","resp","resp_retcode",0);
+
+  rb_define_const(rb_mPAM,"Message",rb_sPAMMessage);
+  rb_define_const(rb_mPAM,"Response",rb_sPAMResponse);
+
+  rb_define_const(rb_mPAM,"PAM_VERSION", rb_tainted_str_new2(RUBY_PAM_VERSION));
+  rb_define_const(rb_mPAM,"PAM_MAJOR_VERSION", INT2FIX(RUBY_PAM_MAJOR_VERSION));
+  rb_define_const(rb_mPAM,"PAM_MINOR_VERSION", INT2FIX(RUBY_PAM_MINOR_VERSION));
+
+  rb_define_module_function(rb_mPAM, "start", rb_pam_start, -1);
+
+  rb_pam_init_errors();
+
+#define rb_pam_define_const(c) rb_define_const(rb_mPAM,#c,INT2NUM(c))
+  rb_pam_define_const(PAM_CONV);
+  rb_pam_define_const(PAM_CHANGE_EXPIRED_AUTHTOK);
+  rb_pam_define_const(PAM_DELETE_CRED);
+  rb_pam_define_const(PAM_ERROR_MSG);
+  rb_pam_define_const(PAM_ESTABLISH_CRED);
+  rb_pam_define_const(PAM_OLDAUTHTOK);
+  rb_pam_define_const(PAM_PROMPT_ECHO_OFF);
+  rb_pam_define_const(PAM_PROMPT_ECHO_ON);
+  rb_pam_define_const(PAM_REFRESH_CRED);
+  rb_pam_define_const(PAM_REINITIALIZE_CRED);
+  rb_pam_define_const(PAM_RHOST);
+  rb_pam_define_const(PAM_RUSER);
+  rb_pam_define_const(PAM_SERVICE);
+  rb_pam_define_const(PAM_SILENT);
+  rb_pam_define_const(PAM_TEXT_INFO);
+  rb_pam_define_const(PAM_TTY);
+  rb_pam_define_const(PAM_USER);
+  rb_pam_define_const(PAM_USER_PROMPT);
+  rb_pam_define_const(PAM_DISALLOW_NULL_AUTHTOK);
+#undef rb_pam_define_const
+
+  Init_pam_handle();
+};

data/ext/pam.h

@@ -0,0 +1,47 @@
+/* -*- C -*-
+ * $Id: pam.h,v 1.1.1.1 2002/11/06 08:04:48 ttate Exp $
+ */
+
+#ifndef RB_PAM_H
+#define RB_PAM_H 1
+
+#include <ruby.h>
+#include <version.h>
+#include <security/pam_appl.h>
+#include <security/pam_modules.h>
+
+#define RUBY_PAM_MAJOR_VERSION 1
+#define RUBY_PAM_MINOR_VERSION 5
+#define RUBY_PAM_VERSION "1.5"
+
+typedef struct rb_pam_struct {
+  pam_handle_t *ptr;
+  int start;
+  int status;
+  struct pam_conv *conv;
+} *RPAM;
+
+extern VALUE rb_mPAM;          /* PAM module */
+extern VALUE rb_cPAMHandle;   /* PAM Handle Class */
+extern VALUE rb_ePAMError;
+extern VALUE rb_pam_errors[];
+
+#define RBPAM_MAX_ERRORS 40
+
+extern VALUE rb_sPAMMessage;
+extern VALUE rb_sPAMResponse;
+
+extern void rb_pam_raise(int, const char *, ...);
+extern VALUE rb_pam_start(int, VALUE[], VALUE);
+
+extern VALUE rb_pam_handle_new(pam_handle_t *);
+extern VALUE rb_pam_handle_s_start(int, VALUE[], VALUE);
+extern VALUE rb_pam_handle_end(VALUE);
+extern VALUE rb_pam_handle_authenticate(int, VALUE[], VALUE);
+extern VALUE rb_pam_handle_acct_mgmt(int, VALUE[], VALUE);
+extern VALUE rb_pam_handle_setcred(int, VALUE[], VALUE);
+extern VALUE rb_pam_handle_chauthtok(int, VALUE[], VALUE);
+extern VALUE rb_pam_handle_open_session(int, VALUE[], VALUE);
+extern VALUE rb_pam_handle_close_session(int, VALUE[], VALUE);
+
+#endif /* RB_PAM_H */