Changeset 35943 in vbox for trunk/src/VBox/HostServices/auth

Timestamp:

Feb 11, 2011 1:04:47 PM (14 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

69996

Message:

VBoxAuth samples: updated to the new generic auth interface.

Location:

trunk/src/VBox/HostServices/auth

Files:

• directoryservice/directoryservice.cpp (modified) (5 diffs)
• pam/VBoxAuthPAM.c (modified) (12 diffs)
• simple/VBoxAuthSimple.cpp (modified) (1 diff)
• winlogon/winlogon.cpp (modified) (1 diff)

trunk/src/VBox/HostServices/auth/directoryservice/directoryservice.cpp

@@ -1 +1 @@
 /** @file
  *
- * VBox Remote Desktop Protocol:
- * External Authentication Library:
+ * VirtualBox External Authentication Library:
  * Mac OS X Authentication. This is based on
  * http://developer.apple.com/mac/library/samplecode/CryptNoMore/
@@ -8 +7 @@
 
 /*
- * Copyright (C) 2009-2010 Oracle Corporation
+ * Copyright (C) 2009-2011 Oracle Corporation
  *
  * This file is part of VirtualBox Open Source Edition (OSE), as
@@ -258 +257 @@
 
 RT_C_DECLS_BEGIN
-DECLEXPORT(AuthResult) AUTHCALL VRDPAuth(PAUTHUUID pUuid,
-                                         AuthGuestJudgement guestJudgement,
-                                         const char *pszUser,
-                                         const char *pszPassword,
-                                         const char *pszDomain)
+DECLEXPORT(AuthResult) AUTHCALL AuthEntry(const char *szCaller,
+                                          PAUTHUUID pUuid,
+                                          AuthGuestJudgement guestJudgement,
+                                          const char *szUser,
+                                          const char *szPassword,
+                                          const char *szDomain,
+                                          int fLogon,
+                                          unsigned clientId)
 {
     /* Validate input */
@@ -270 +272 @@
     /* Result to a default value */
     AuthResult result = AuthResultAccessDenied;
+
+    /* Only process logon requests. */
+    if (!fLogon)
+        return result; /* Return value is ignored by the caller. */
 
     tDirStatus dsErr = eDSNoErr;
@@ -317 +323 @@
 RT_C_DECLS_END
 
-static PAUTHENTRY gpfnAuthEntry = VRDPAuth;
-
+static PAUTHENTRY3 gpfnAuthEntry = AuthEntry;
+

trunk/src/VBox/HostServices/auth/pam/VBoxAuthPAM.c

@@ -1 +1 @@
 /** @file
  *
- * VBox Remote Desktop Protocol:
- * External Authentication Library:
+ * VirtualBox External Authentication Library:
  * Linux PAM Authentication.
  */
 
 /*
- * Copyright (C) 2006-2010 Oracle Corporation
+ * Copyright (C) 2006-2011 Oracle Corporation
  *
  * This file is part of VirtualBox Open Source Edition (OSE), as
@@ -29 +28 @@
  *
  * The Auth module takes the PAM service name from the
- * environment variable VRDP_AUTH_PAM_SERVICE. If the variable
+ * environment variable VBOX_AUTH_PAM_SERVICE. If the variable
  * is not specified, then the 'login' PAM service is used.
  */
-#define VRDP_AUTH_PAM_SERVICE_NAME_ENV "VRDP_AUTH_PAM_SERVICE"
-#define VRDP_AUTH_PAM_DEFAULT_SERVICE_NAME "login"
+#define VBOX_AUTH_PAM_SERVICE_NAME_ENV_OLD "VRDP_AUTH_PAM_SERVICE"
+#define VBOX_AUTH_PAM_SERVICE_NAME_ENV "VBOX_AUTH_PAM_SERVICE"
+#define VBOX_AUTH_PAM_DEFAULT_SERVICE_NAME "login"
 
 
@@ -39 +39 @@
  *
  * If defined, debug messages will be written to the file specified in the
- * VRDP_AUTH_DEBUG_FILENAME environment variable:
- *
- * export VRDP_AUTH_DEBUG_FILENAME=pam.log
+ * VBOX_AUTH_DEBUG_FILENAME (or deprecated VRDP_AUTH_DEBUG_FILENAME) environment
+ * variable:
+ *
+ * export VBOX_AUTH_DEBUG_FILENAME=pam.log
  *
  * The above will cause writing to the pam.log.
  */
-#define VRDP_AUTH_DEBUG_FILENAME_ENV "VRDP_AUTH_DEBUG_FILENAME"
+#define VBOX_AUTH_DEBUG_FILENAME_ENV_OLD "VRDP_AUTH_DEBUG_FILENAME"
+#define VBOX_AUTH_DEBUG_FILENAME_ENV "VBOX_AUTH_DEBUG_FILENAME"
 
 
@@ -54 +56 @@
  * and does not harm.
  */
-#define VRDP_PAM_DLLOAD
-
-
-#ifdef VRDP_PAM_DLLOAD
+#define VBOX_AUTH_USE_PAM_DLLOAD
+
+
+#ifdef VBOX_AUTH_USE_PAM_DLLOAD
 /* The name of the PAM library */
 # ifdef RT_OS_SOLARIS
-#  define VRDP_PAM_LIB "libpam.so.1"
+#  define PAM_LIB_NAME "libpam.so.1"
 # else
-#  define VRDP_PAM_LIB "libpam.so.0"
+#  define PAM_LIB_NAME "libpam.so.0"
 # endif
-#endif /* VRDP_PAM_DLLOAD */
+#endif /* VBOX_AUTH_USE_PAM_DLLOAD */
 
 
@@ -79 +81 @@
 #include <VBox/VBoxAuth.h>
 
-#ifdef VRDP_PAM_DLLOAD
+#ifdef VBOX_AUTH_USE_PAM_DLLOAD
 #include <dlfcn.h>
 
@@ -96 +98 @@
 #define fn_pam_end          pam_end
 #define fn_pam_strerror     pam_strerror
-#endif /* VRDP_PAM_DLLOAD */
+#endif /* VBOX_AUTH_USE_PAM_DLLOAD */
 
 static void debug_printf(const char *fmt, ...)
 {
-#ifdef VRDP_AUTH_DEBUG_FILENAME_ENV
+#if defined(VBOX_AUTH_DEBUG_FILENAME_ENV) || defined(VBOX_AUTH_DEBUG_FILENAME_ENV_OLD)
     va_list va;
 
     char buffer[1024];
 
-    const char *filename = getenv (VRDP_AUTH_DEBUG_FILENAME_ENV);
+    const char *filename = NULL;
 
     va_start(va, fmt);
+
+#if defined(VBOX_AUTH_DEBUG_FILENAME_ENV)
+    filename = getenv (VBOX_AUTH_DEBUG_FILENAME_ENV);
+#endif /* VBOX_AUTH_DEBUG_FILENAME_ENV */
+
+#if defined(VBOX_AUTH_DEBUG_FILENAME_ENV_OLD)
+    if (filename == NULL)
+    {
+        filename = getenv (VBOX_AUTH_DEBUG_FILENAME_ENV_OLD);
+    }
+#endif /* VBOX_AUTH_DEBUG_FILENAME_ENV_OLD */
 
     if (filename)
@@ -124 +137 @@
 
     va_end (va);
-#endif /* VRDP_AUTH_DEBUG_FILENAME_ENV */
-}
-
-#ifdef VRDP_PAM_DLLOAD
+#endif /* VBOX_AUTH_DEBUG_FILENAME_ENV || VBOX_AUTH_DEBUG_FILENAME_ENV_OLD */
+}
+
+#ifdef VBOX_AUTH_USE_PAM_DLLOAD
 
 static void *gpvLibPam = NULL;
@@ -151 +164 @@
     SymMap *iter;
 
-    gpvLibPam = dlopen(VRDP_PAM_LIB, RTLD_LAZY | RTLD_GLOBAL);
+    gpvLibPam = dlopen(PAM_LIB_NAME, RTLD_LAZY | RTLD_GLOBAL);
 
     if (!gpvLibPam)
     {
-        debug_printf("auth_pam_init: dlopen %s failed\n", VRDP_PAM_LIB);
+        debug_printf("auth_pam_init: dlopen %s failed\n", PAM_LIB_NAME);
         return PAM_SYSTEM_ERR;
     }
@@ -203 +216 @@
     return;
 }
-#endif /* VRDP_PAM_DLLOAD */
+#endif /* VBOX_AUTH_USE_PAM_DLLOAD */
 
 static const char *auth_get_pam_service (void)
 {
-    const char *service = getenv (VRDP_AUTH_PAM_SERVICE_NAME_ENV);
+    const char *service = getenv (VBOX_AUTH_PAM_SERVICE_NAME_ENV);
 
     if (service == NULL)
     {
-        service = VRDP_AUTH_PAM_DEFAULT_SERVICE_NAME;
+        service = service = getenv (VBOX_AUTH_PAM_SERVICE_NAME_ENV_OLD);
+
+        if (service == NULL)
+        {
+            service = VBOX_AUTH_PAM_DEFAULT_SERVICE_NAME;
+        }
     }
 
@@ -285 +303 @@
 
 /* prototype to prevent gcc warning */
-DECLEXPORT(AuthResult) AUTHCALL VRDPAuth (PAUTHUUID pUuid,
+DECLEXPORT(AuthResult) AUTHCALL AuthEntry(const char *szCaller,
+                                          PAUTHUUID pUuid,
                                           AuthGuestJudgement guestJudgement,
                                           const char *szUser,
                                           const char *szPassword,
-                                          const char *szDomain);
-DECLEXPORT(AuthResult) AUTHCALL VRDPAuth (PAUTHUUID pUuid,
+                                          const char *szDomain,
+                                          int fLogon,
+                                          unsigned clientId);
+DECLEXPORT(AuthResult) AUTHCALL AuthEntry(const char *szCaller,
+                                          PAUTHUUID pUuid,
                                           AuthGuestJudgement guestJudgement,
                                           const char *szUser,
                                           const char *szPassword,
-                                          const char *szDomain)
+                                          const char *szDomain,
+                                          int fLogon,
+                                          unsigned clientId)
 {
     AuthResult result = AuthResultAccessDenied;
@@ -304 +328 @@
 
     pam_handle_t *pam_handle = NULL;
+
+    /* Only process logon requests. */
+    if (!fLogon)
+        return result; /* Return value is ignored by the caller. */
 
     debug_printf("u[%s], d[%s], p[%d]\n", szUser, szDomain, szPassword? strlen (szPassword): 0);
@@ -376 +404 @@
 
 /* Verify the function prototype. */
-static PAUTHENTRY gpfnAuthEntry = VRDPAuth;
+static PAUTHENTRY3 gpfnAuthEntry = AuthEntry;

trunk/src/VBox/HostServices/auth/simple/VBoxAuthSimple.cpp

@@ -1 +1 @@
 /** @file
  *
- * VBox Remote Desktop Protocol:
- * External Authentication Library:
+ * VirtualBox External Authentication Library:
  * Simple Authentication.
  */
 
 /*
- * Copyright (C) 2006-2010 Oracle Corporation
+ * Copyright (C) 2006-2011 Oracle Corporation
  *
  * This file is part of VirtualBox Open Source Edition (OSE), as

trunk/src/VBox/HostServices/auth/winlogon/winlogon.cpp

@@ -1 +1 @@
 /** @file
  *
- * VBox Remote Desktop Protocol:
- * External Authentication Library:
+ * VirtualBox External Authentication Library:
  * Windows Logon Authentication.
  */
 
 /*
- * Copyright (C) 2006-2010 Oracle Corporation
+ * Copyright (C) 2006-2011 Oracle Corporation
  *
  * This file is part of VirtualBox Open Source Edition (OSE), as