4 * This function provides common methods for checking if a user is in a
8 #include "pam_modutil_private.h"
14 #ifdef HAVE_GETGROUPLIST
15 static int checkgrouplist(const char *user, gid_t primary, gid_t target)
17 gid_t *grouplist = NULL;
18 int agroups, ngroups, i;
19 ngroups = agroups = 3;
21 grouplist = malloc(sizeof(gid_t) * agroups);
22 if (grouplist == NULL) {
26 i = getgrouplist(user, primary, grouplist, &ngroups);
27 if ((i < 0) || (ngroups < 1)) {
31 for (i = 0; i < ngroups; i++) {
32 if (grouplist[i] == target) {
39 } while (((i < 0) || (ngroups < 1)) && (agroups < 10000));
45 pam_modutil_user_in_group_common(pam_handle_t *pamh UNUSED,
58 if (pwd->pw_gid == grp->gr_gid) {
62 for (i = 0; (grp->gr_mem != NULL) && (grp->gr_mem[i] != NULL); i++) {
63 if (strcmp(pwd->pw_name, grp->gr_mem[i]) == 0) {
68 #ifdef HAVE_GETGROUPLIST
69 if (checkgrouplist(pwd->pw_name, pwd->pw_gid, grp->gr_gid)) {
78 pam_modutil_user_in_group_nam_nam(pam_handle_t *pamh,
79 const char *user, const char *group)
84 pwd = pam_modutil_getpwnam(pamh, user);
85 grp = pam_modutil_getgrnam(pamh, group);
87 return pam_modutil_user_in_group_common(pamh, pwd, grp);
91 pam_modutil_user_in_group_nam_gid(pam_handle_t *pamh,
92 const char *user, gid_t group)
97 pwd = pam_modutil_getpwnam(pamh, user);
98 grp = pam_modutil_getgrgid(pamh, group);
100 return pam_modutil_user_in_group_common(pamh, pwd, grp);
104 pam_modutil_user_in_group_uid_nam(pam_handle_t *pamh,
105 uid_t user, const char *group)
110 pwd = pam_modutil_getpwuid(pamh, user);
111 grp = pam_modutil_getgrnam(pamh, group);
113 return pam_modutil_user_in_group_common(pamh, pwd, grp);
117 pam_modutil_user_in_group_uid_gid(pam_handle_t *pamh,
118 uid_t user, gid_t group)
123 pwd = pam_modutil_getpwuid(pamh, user);
124 grp = pam_modutil_getgrgid(pamh, group);
126 return pam_modutil_user_in_group_common(pamh, pwd, grp);