static int print_default_module(void)
{
const scconf_block *pam_pkcs11;
scconf_context *ctx = NULL;
int result = 1;
/*
* read the base pam_pkcs11.conf
*/
ctx = scconf_new(PAM_PKCS11_CONF);
if (ctx == NULL) {
goto bail;
}
if (scconf_parse(ctx) <= 0) {
goto bail;
}
pam_pkcs11 = scconf_find_block(ctx, NULL, "pam_pkcs11");
if (!pam_pkcs11) {
goto bail;
}
printf("%s\n", scconf_get_str(pam_pkcs11, "use_pkcs11_module", ""));
result = 0;
bail:
if (ctx) {
scconf_free(ctx);
}
ctx = NULL;
return result;
}
static int list_modules(void)
{
const scconf_block *pam_pkcs11;
scconf_block **pkcs11_blocks;
scconf_context *ctx = NULL;
int i;
int result = 1;
/*
* loop through looking for smart card entries
*/
ctx = scconf_new(PAM_PKCS11_CONF);
if (ctx == NULL) {
goto bail;
}
if (scconf_parse(ctx) <= 0 ) {
goto bail;
}
pam_pkcs11 = scconf_find_block(ctx, NULL, "pam_pkcs11");
if (!pam_pkcs11) {
goto bail;
}
pkcs11_blocks = scconf_find_blocks(ctx, pam_pkcs11, "pkcs11_module", NULL);
if (!pkcs11_blocks) {
goto bail;
}
/* list only those smart cards which are actually installed */
for (i=0; pkcs11_blocks[i]; i++) {
void *libhandle;
const char *path =
scconf_get_str(pkcs11_blocks[i], "module", NULL);
/* check to see if the module exists on the system */
if (!path || *path == 0) {
continue;
}
/* verify the module exists */
if ((libhandle=dlopen(path, RTLD_LAZY)) != NULL) {
dlclose(libhandle);
if (pkcs11_blocks[i] && pkcs11_blocks[i]->name
&& pkcs11_blocks[i]->name->data) {
printf("%s\n", pkcs11_blocks[i]->name->data);
}
}
}
result = 0;
bail:
if (ctx) {
scconf_free(ctx);
}
return result;
}
static int print_card_remove_action(void)
{
const scconf_block *pkcs11_eventmgr;
scconf_block **event_blocks = NULL;
scconf_context *ctx = NULL;
const scconf_list *actionList = NULL;
int result = 1;
/*
* read the pkcs11_eventmgr.conf to get our action
*/
ctx = scconf_new(EVENTMGR_CONF);
if (ctx == NULL) {
goto bail;
}
if (scconf_parse(ctx) <= 0) {
goto bail;
}
pkcs11_eventmgr = scconf_find_block(ctx, NULL, "pkcs11_eventmgr");
if (!pkcs11_eventmgr) {
goto bail;
}
event_blocks = scconf_find_blocks(ctx, pkcs11_eventmgr, "event",
"card_remove");
if (!event_blocks || !event_blocks[0]) {
goto bail;
}
actionList = scconf_find_list(event_blocks[0],"action");
if (actionList) {
char *lst = scconf_list_strdup(actionList, "\n");
if (lst != NULL) {
printf("%s\n", lst);
free(lst);
}
}
result = 0;
bail:
if (event_blocks) {
free(event_blocks);
}
if (ctx) {
scconf_free(ctx);
}
return result;
}
static int set_card_remove_action(const char *act)
{
scconf_block *pkcs11_eventmgr;
scconf_block **insert_blocks = NULL;
scconf_context *ctx = NULL;
int result = 1;
/*
* write out pkcs11_eventmgr.conf
*/
ctx = scconf_new(EVENTMGR_CONF);
if (ctx == NULL) {
goto bail;
}
if (scconf_parse(ctx) <= 0) {
goto bail;
}
pkcs11_eventmgr = (scconf_block *)
scconf_find_block(ctx, NULL, "pkcs11_eventmgr");
if (!pkcs11_eventmgr) {
goto bail;
}
insert_blocks = scconf_find_blocks(ctx, pkcs11_eventmgr,
"event", "card_remove");
if (!insert_blocks || !insert_blocks[0]) {
goto bail;
}
scconf_replace_str_list(insert_blocks[0], "action", act);
result = scconf_write(ctx, NULL);
bail:
if (insert_blocks) {
free(insert_blocks);
}
if (ctx) {
scconf_free(ctx);
}
return result;
}
int main(int argc, char **argv)
{
#ifdef ADD_TEST
scconf_block *foo_block = NULL;
scconf_item *foo_item = NULL;
scconf_list *foo_list = NULL;
#endif
scconf_context *conf = NULL;
scconf_entry entry[] =
{
{"ldap", SCCONF_CALLBACK, SCCONF_VERBOSE | SCCONF_ALL_BLOCKS, (void *) ldap_cb, NULL},
{"card", SCCONF_CALLBACK, SCCONF_VERBOSE | SCCONF_ALL_BLOCKS, (void *) card_cb, NULL},
{NULL, 0, 0, NULL, NULL}
};
char *in = NULL, *out = NULL;
int r;
if (argc != 3) {
printf("Usage: test-conf <in.conf> <out.conf>\n");
return 1;
}
in = argv[argc - 2];
out = argv[argc - 1];
conf = scconf_new(in);
if (!conf) {
printf("scconf_new failed\n");
return 1;
}
if (scconf_parse(conf) < 1) {
printf("scconf_parse failed: %s\n", conf->errmsg);
scconf_free(conf);
return 1;
}
conf->debug = 1;
if (scconf_parse_entries(conf, NULL, entry) != 0) {
printf("scconf_parse_entries failed\n");
scconf_free(conf);
return 1;
}
#ifdef ADD_TEST
scconf_list_add(&foo_list, "value1");
scconf_list_add(&foo_list, "value2");
foo_block = (scconf_block *) scconf_find_block(conf, NULL, "foo");
foo_block = scconf_block_add(conf, foo_block, "block1", foo_list);
foo_block = scconf_block_add(conf, foo_block, "block2", foo_list);
scconf_list_add(&foo_list, "value3");
/* this will not segfault as type SCCONF_ITEM_TYPE_COMMENT is used */
scconf_item_add(conf, foo_block, foo_item, SCCONF_ITEM_TYPE_COMMENT, NULL, "# comment1");
scconf_item_add(conf, foo_block, foo_item, SCCONF_ITEM_TYPE_VALUE, "list1", foo_list);
foo_block = NULL;
scconf_item_add(conf, foo_block, foo_item, SCCONF_ITEM_TYPE_BLOCK, "block3", (void *) scconf_find_block(conf, NULL, "foo"));
scconf_item_add(conf, foo_block, foo_item, SCCONF_ITEM_TYPE_VALUE, "list2", foo_list);
scconf_item_add(conf, foo_block, foo_item, SCCONF_ITEM_TYPE_COMMENT, NULL, "# comment2");
if (write_entries(conf, foo_list) != 0) {
printf("scconf_write_entries failed\n");
scconf_free(conf);
return 1;
}
scconf_list_destroy(foo_list);
#endif
if ((r = scconf_write(conf, out)) != 0) {
printf("scconf_write: %s\n", strerror(r));
} else {
printf("Successfully rewrote file \"%s\" as \"%s\"\n", in, out);
}
scconf_free(conf);
return 0;
}
static int set_default_module(const char *mod)
{
scconf_block *pam_pkcs11, *pkcs11_eventmgr;
scconf_block **modules = NULL;
scconf_context *ctx = NULL;
scconf_context *ectx = NULL;
const char *lib = NULL;
int result = 1;
/*
* write out pam_pkcs11.conf
*/
ctx = scconf_new(PAM_PKCS11_CONF);
if (ctx == NULL) {
goto bail;
}
if (scconf_parse(ctx) <= 0) {
goto bail;
}
pam_pkcs11 = (scconf_block *)scconf_find_block(ctx, NULL, "pam_pkcs11");
if (!pam_pkcs11) {
goto bail;
}
scconf_replace_str(pam_pkcs11, "use_pkcs11_module", mod);
modules = scconf_find_blocks(ctx, pam_pkcs11, "pkcs11_module", mod);
if (!modules || !modules[0]) {
goto bail;
}
lib = scconf_get_str(modules[0], "module", NULL);
if (!lib) {
goto bail;
}
result = scconf_write(ctx, NULL);
if (result != 0) {
goto bail;
}
ectx = scconf_new(EVENTMGR_CONF);
if (ectx == NULL) {
goto bail;
}
if (scconf_parse(ectx) <= 0) {
goto bail;
}
pkcs11_eventmgr = (scconf_block *)
scconf_find_block(ectx, NULL, "pkcs11_eventmgr");
if (!pkcs11_eventmgr) {
goto bail;
}
scconf_replace_str(pkcs11_eventmgr, "pkcs11_module", lib);
result = scconf_write(ectx, NULL);
bail:
if (modules) {
free(modules);
}
if (ctx) {
scconf_free(ctx);
}
if (ectx) {
scconf_free(ectx);
}
return result;
}
