NAME

pam_sm_open_session - service provider implementation for pam_open_session

SYNOPSIS

#include <security/pam_appl.h>
#include <security/pam_modules.h>

int pam_sm_open_session(
    pam_handle_t    *pamh,
    int             flags,
    int             argc,
    const char    **argv
);

DESCRIPTION

In response to a call to pam_open_session() the PAM framework calls pam_sm_open_session() from the modules listed in the PAM configuration. The session management provider supplies the back-end functionality for this interface function.

pam_sm_open_session() is called to initiate session management.

The arguments for pam_sm_open_session() are:

pamh (in)

The PAM authentication handle, obtained from a previous call to pam_start().

flags (in)

The following flag may be set in the flags field:

PAM_SILENT

Session service should not generate any messages.

argc (in)

The argc argument represents the number of module options passed in from the PAM configuration.

argv (in)

Specifies the module options, which are interpreted and processed by the session management service. If an unknown option is passed in, an error should be logged and the option ignored.

RETURN VALUE

The following PAM status codes shall be returned:

[PAM_SUCCESS]

Successful completion.

[PAM_SESSION_ERR]

Cannot make/remove an entry for the specified session.

[PAM_IGNORE]

Ignore underlying session module regardless of whether the control flag is required, optional or sufficient.

[PAM_PERM_DENIED]

The caller does not possess the required authority.

[PAM_SERVICE_ERR]

Error in service module.

[PAM_SYSTEM_ERR]

System error.

[PAM_BUF_ERR]

Memory buffer error.

[PAM_CONV_ERR]

Conversation error.

[??] Some characters or strings that appear in the printed document are not easily representable using HTML.