Fincer
/
pam_usb
mirror of https://github.com/Fincer/pam_usb
1
0
Fork 0
Code Issues 0 Releases 4 Wiki Activity
Hardware authentication for Linux using ordinary USB Flash Drives.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
15 MiB
 
 
 
 
 
Tree: 247adb12e5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '247adb12e5'
${ noResults }
pam_usb/src/device.c

111 lines
3.2 KiB
Raw Blame History

/*
* Copyright (c) 2003-2006 Andrea Luzzardi <scox@sig11.org>
*
* This file is part of the pam_usb project. pam_usb is free software;
* you can redistribute it and/or modify it under the terms of the GNU General
* Public License version 2, as published by the Free Software Foundation.
*
* pam_usb is distributed in the hope that it will be useful, but WITHOUT ANY
* WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
* FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
* details.
*
* You should have received a copy of the GNU General Public License along with
* this program; if not, write to the Free Software Foundation, Inc., 59 Temple
* Place, Suite 330, Boston, MA 02111-1307 USA
*/
#include <unistd.h>
#include <string.h>
#include <libhal-storage.h>
#include "conf.h"
#include "hal.h"
#include "log.h"
#include "otp.h"
#include "device.h"
static LibHalDrive *pusb_device_get_storage(t_pusb_options *opts, LibHalContext *ctx,
const char *udi)
{
char *phy_udi = NULL;
char *storage_udi = NULL;
int maxloop = 0;
LibHalDrive *drive = NULL;
log_info("Probing storage device (this could take a while)...\n");
while (!(phy_udi = pusb_hal_find_item(ctx,
"info.parent", udi,
"info.bus", "usb",
NULL)))
usleep(250000);
maxloop = ((opts->probe_timeout * 1000000) / 250000);
while (maxloop > 0 &&
(!(storage_udi = pusb_hal_find_item(ctx,
"storage.physical_device", phy_udi,
"info.category", "storage",
NULL)) || strstr(storage_udi, "temp")))
{
if (storage_udi)
libhal_free_string(storage_udi);
--maxloop;
usleep(250000);
}
libhal_free_string(phy_udi);
if (storage_udi)
{
drive = libhal_drive_from_udi(ctx, storage_udi);
libhal_free_string(storage_udi);
}
return (drive);
}
int pusb_device_check(t_pusb_options *opts)
{
DBusConnection *dbus = NULL;
LibHalContext *ctx = NULL;
LibHalDrive *drive = NULL;
char *udi = NULL;
int retval = 0;
log_debug("Connecting to HAL...\n");
if (!(dbus = pusb_hal_dbus_connect()))
return (0);
if (!(ctx = pusb_hal_init(dbus)))
{
pusb_hal_dbus_disconnect(dbus);
return (0);
}
log_debug("Searching for \"%s\" in the hardware database...\n",
opts->device.name);
udi = pusb_hal_find_item(ctx,
"usb_device.serial", opts->device.serial,
"usb_device.vendor", opts->device.vendor,
"info.product", opts->device.model,
NULL);
if (!udi)
{
log_error("Device \"%s\" is not connected.\n",
opts->device.name);
pusb_hal_dbus_disconnect(dbus);
libhal_ctx_free(ctx);
return (0);
}
log_info("Device \"%s\" is connected (good).\n", opts->device.name);
if (!opts->try_otp && !opts->enforce_otp)
{
log_debug("One time pad is disabled, no more verifications to do.\n");
retval = 1;
}
else
{
log_info("Performing one time pad verification...\n");
if (!(drive = pusb_device_get_storage(opts, ctx, udi)))
retval = !opts->enforce_otp;
else
retval = pusb_otp_check(opts, ctx, drive);
}
libhal_free_string(udi);
pusb_hal_dbus_disconnect(dbus);
libhal_ctx_free(ctx);
return (retval);
}