${AFSLIBS} ${PAM_LIBS} @LIB_AFSDB@
KLIBS = ${TOP_LIBDIR}/libkauth.krb.a ${LIBSA} ${TOP_LIBDIR}/libauth.krb.a \
${AFSLIBS} ${PAM_LIBS} @LIB_AFSDB@
- SHOBJS = afs_auth.o afs_account.o afs_session.o afs_password.o \
- afs_pam_msg.o afs_message.o afs_util.o AFS_component_version_number.o
+ SHOBJS = afs_account.o afs_session.o afs_password.o \
+ afs_pam_msg.o afs_message.o AFS_component_version_number.o
OBJS = $(SHOBJS) test_pam.o
INCLUDES=-I${TOP_OBJDIR}/src/config -I${TOP_INCDIR} \
-I/usr/include -I/usr/include/sys
afs_setcred_krb.o: afs_setcred.c afs_pam_msg.h afs_message.h afs_util.h
${CC} ${CFLAGS} -DAFS_KERBEROS_ENV -c ${srcdir}/afs_setcred.c -o afs_setcred_krb.o
-pam_afs.so.1: $(SHOBJS) afs_setcred.o
+afs_auth.o: afs_auth.c afs_pam_msg.h afs_message.h afs_util.h
+ ${CC} ${CFLAGS} -c ${srcdir}/afs_auth.c -o afs_auth.o
+
+afs_auth_krb.o: afs_auth.c afs_pam_msg.h afs_message.h afs_util.h
+ ${CC} ${CFLAGS} -DAFS_KERBEROS_ENV -c ${srcdir}/afs_auth.c -o afs_auth_krb.o
+
+afs_util.o: afs_util.c afs_pam_msg.h afs_message.h afs_util.h
+ ${CC} ${CFLAGS} -c ${srcdir}/afs_util.c -o afs_util.o
+
+afs_util_krb.o: afs_util.c afs_pam_msg.h afs_message.h afs_util.h
+ ${CC} ${CFLAGS} -DAFS_KERBEROS_ENV -c ${srcdir}/afs_util.c -o afs_util_krb.o
+
+pam_afs.so.1: $(SHOBJS) afs_setcred.o afs_auth.o afs_util.o
set -x; \
case "$(SYS_NAME)" in \
hp_ux*) \
- $(LD) $(LDFLAGS) -c ${srcdir}/mapfile.hp -o $@ afs_setcred.o \
+ $(LD) $(LDFLAGS) -c ${srcdir}/mapfile.hp -o $@ \
+ afs_setcred.o afs_auth.o afs_util.o \
$(SHOBJS) $(LIBS) ;; \
sun*_5*) \
- $(LD) $(LDFLAGS) -M ${srcdir}/mapfile -o $@ afs_setcred.o \
+ $(LD) $(LDFLAGS) -M ${srcdir}/mapfile -o $@ \
+ afs_setcred.o afs_auth.o afs_util.o \
$(SHOBJS) $(LIBS) ;; \
*linux*) \
- $(CC) $(LDFLAGS) -o $@ afs_setcred.o $(SHOBJS) $(LIBS) ;;\
+ $(CC) $(LDFLAGS) -o $@ afs_setcred.o \
+ afs_auth.o afs_util.o $(SHOBJS) $(LIBS) ;;\
*fbsd*) \
- $(CC) $(LDFLAGS) -o $@ afs_setcred.o $(SHOBJS) $(LIBS) ;;\
+ $(CC) $(LDFLAGS) -o $@ afs_setcred.o \
+ afs_auth.o afs_util.o $(SHOBJS) $(LIBS) ;;\
* ) \
echo No link line for system $(SYS_NAME). ;; \
esac
-pam_afs.krb.so.1: $(SHOBJS) afs_setcred_krb.o
+pam_afs.krb.so.1: $(SHOBJS) afs_setcred_krb.o afs_auth_krb.o afs_util_krb.o
set -x; \
case "$(SYS_NAME)" in \
hp_ux*) \
$(LD) $(LDFLAGS) -c ${srcdir}/mapfile.hp -o $@ \
- afs_setcred_krb.o $(SHOBJS) $(LDFLAGS) $(KLIBS) ;; \
+ afs_setcred_krb.o afs_auth_krb.o afs_util_krb.o \
+ $(SHOBJS) $(LDFLAGS) $(KLIBS) ;; \
sun*_5*) \
$(LD) $(LDFLAGS) -M ${srcdir}/mapfile -o $@ \
- afs_setcred_krb.o $(SHOBJS) $(LDFLAGS) $(KLIBS) ;; \
+ afs_setcred_krb.o afs_auth_krb.o afs_util_krb.o \
+ $(SHOBJS) $(LDFLAGS) $(KLIBS) ;; \
*linux*) \
- $(CC) $(LDFLAGS) -o $@ afs_setcred_krb.o $(SHOBJS) $(KLIBS) ;;\
+ $(CC) $(LDFLAGS) -o $@ afs_setcred_krb.o \
+ afs_auth_krb.o afs_util_krb.o $(SHOBJS) $(KLIBS) ;;\
*fbsd*) \
- $(CC) $(LDFLAGS) -o $@ afs_setcred_krb.o $(SHOBJS) $(KLIBS) ;;\
+ $(CC) $(LDFLAGS) -o $@ afs_setcred_krb.o \
+ afs_auth_krb.o afs_util_krb.o $(SHOBJS) $(KLIBS) ;;\
* ) \
echo No link line for system $(SYS_NAME). ;; \
esac
if (logmask && LOG_MASK(LOG_DEBUG))
syslog(LOG_DEBUG, "New PAG created in pam_setcred()");
setpag();
+#ifdef AFS_KERBEROS_ENV
+ ktc_newpag();
+#endif
}
if ( flags & PAM_REFRESH_CRED ) {
if (use_klog) {
- auth_ok = do_klog(user, password, "00:00:01");
+ auth_ok = ! do_klog(user, password, "00:00:01");
ktc_ForgetAllTokens();
} else {
if ( ka_VerifyUserPassword(
}
if ( flags & PAM_ESTABLISH_CRED ) {
- if (use_klog) auth_ok = do_klog(user, password, NULL);
+ if (use_klog) auth_ok = ! do_klog(user, password, NULL);
else {
if ( ka_UserAuthenticateGeneral(
KA_USERAUTH_VERSION,
pam_afs_syslog(LOG_ERR, PAMAFS_PASSEXPFAIL, user);
}
#if defined(AFS_KERBEROS_ENV)
- if (!use_klog) {
if (upwd) {
if ( chown(ktc_tkt_string(), upwd->pw_uid, upwd->pw_gid) < 0 )
pam_afs_syslog(LOG_ERR, PAMAFS_CHOWNKRB, user);
if ( errcode != PAM_SUCCESS )
pam_afs_syslog(LOG_ERR, PAMAFS_KRBFAIL, user);
}
- }
#endif
RET(PAM_SUCCESS);
git://git.openafs.org / openafs.git / commitdiff