rearrange the go packages a bit

1 files changed, 100 insertions, 0 deletions

diff --git a/src/parabola_hackers/nslcd_backend/db_pam.go b/src/parabola_hackers/nslcd_backend/db_pam.go
new file mode 100644
index 0000000..6b2a7c7
--- /dev/null
+++ b/src/parabola_hackers/nslcd_backend/db_pam.go
@@ -0,0 +1,100 @@
+// Copyright 2015 Luke Shumaker <lukeshu@sbcglobal.net>.
+//
+// This is free software; you can redistribute it and/or
+// modify it under the terms of the GNU General Public License as
+// published by the Free Software Foundation; either version 2 of
+// the License, or (at your option) any later version.
+//
+// This software is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU General Public License for more details.
+//
+// You should have received a copy of the GNU General Public
+// License along with this manual; if not, see
+// <http://www.gnu.org/licenses/>.
+
+package hackers_nslcd_backend
+
+import (
+	"crypto/rand"
+	p "lukeshu.com/git/go/libnslcd.git/proto"
+	"math/big"
+	s "syscall"
+)
+
+func (o *Hackers) PAM_Authentication(cred s.Ucred, req p.Request_PAM_Authentication) <-chan p.PAM_Authentication {
+	o.lock.RLock()
+	ret := make(chan p.PAM_Authentication)
+	go func() {
+		defer o.lock.RUnlock()
+		defer close(ret)
+
+		uid := o.name2uid(req.UserName)
+		if uid < 0 {
+			return
+		}
+
+		user := o.users[uid]
+		obj := p.PAM_Authentication{
+			AuthenticationResult: p.NSLCD_PAM_AUTH_ERR,
+			UserName:             "",
+			AuthorizationResult:  p.NSLCD_PAM_AUTH_ERR,
+			AuthorizationError:   "",
+		}
+		if check_password(req.Password, user.passwd.PwHash) {
+			obj.AuthenticationResult = p.NSLCD_PAM_SUCCESS
+			obj.AuthorizationResult = obj.AuthenticationResult
+			obj.UserName = user.passwd.Name
+		}
+		ret <- obj
+	}()
+	return ret
+}
+
+func (o *Hackers) PAM_Authorization(cred s.Ucred, req p.Request_PAM_Authorization) <-chan p.PAM_Authorization {
+	o.lock.RLock()
+	ret := make(chan p.PAM_Authorization)
+	go func() {
+		defer o.lock.RUnlock()
+		defer close(ret)
+
+		uid := o.name2uid(req.UserName)
+		if uid < 0 {
+			return
+		}
+		ret <- p.PAM_Authorization{
+			Result: p.NSLCD_PAM_SUCCESS,
+			Error:  "",
+		}
+	}()
+	return ret
+}
+
+const alphabet = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789"
+
+var alphabet_len = big.NewInt(int64(len(alphabet)))
+
+func (o *Hackers) PAM_SessionOpen(cred s.Ucred, req p.Request_PAM_SessionOpen) <-chan p.PAM_SessionOpen {
+	ret := make(chan p.PAM_SessionOpen)
+	go func() {
+		defer close(ret)
+
+		var sessionid [24]byte
+		for i := 0; i < len(sessionid); i++ {
+			bigint, err := rand.Int(rand.Reader, alphabet_len)
+			if err != nil {
+				return
+			}
+			sessionid[i] = alphabet[bigint.Int64()]
+		}
+		ret <- p.PAM_SessionOpen{SessionID: string(sessionid[:])}
+	}()
+	return ret
+}
+
+func (o *Hackers) PAM_SessionClose(cred s.Ucred, req p.Request_PAM_SessionClose) <-chan p.PAM_SessionClose {
+	ret := make(chan p.PAM_SessionClose)
+	go close(ret)
+	return ret
+}