su: suppress PAM info messages for -c or non-login sessions

author Karel Zak <kzak@redhat.com>

Tue, 27 Aug 2013 09:23:54 +0000 (11:23 +0200)

committer Karel Zak <kzak@redhat.com>

Tue, 27 Aug 2013 09:49:13 +0000 (11:49 +0200)
author Karel Zak <kzak@redhat.com>
Tue, 27 Aug 2013 09:23:54 +0000 (11:23 +0200)
committer Karel Zak <kzak@redhat.com>
Tue, 27 Aug 2013 09:49:13 +0000 (11:49 +0200)
diff --git a/login-utils/su-common.c b/login-utils/su-common.c

index 6df176382a596edd00d34eb53591158c5cd5b888..ade5c9210aa09dfddfe9dffeddda9933fb3f6255 100644 (file)
--- a/login-utils/su-common.c
+++ b/login-utils/su-common.c
@@ -111,6 +111,9 @@ static int same_session = 0;
  /* SU_MODE_{RUNUSER,SU} */
  static int su_mode;
  
+/* Don't print PAM info messages (Last login, etc.). */
+static int suppress_pam_info;
+
  static bool _pam_session_opened;
  static bool _pam_cred_established;
  static sig_atomic_t volatile caught_signal = false;
@@ -208,10 +211,23 @@ static void log_btmp(struct passwd const *pw)
         updwtmp(_PATH_BTMP, &ut);
  }
  
+
+static int su_pam_conv(int num_msg, const struct pam_message **msg,
+                       struct pam_response **resp, void *appdata_ptr)
+{
+       if (suppress_pam_info
+           && num_msg == 1
+           && msg
+           && msg[0]->msg_style == PAM_TEXT_INFO)
+               return PAM_SUCCESS;
+
+       return misc_conv(num_msg, msg, resp, appdata_ptr);
+}
+
  static struct pam_conv conv =
  {
-  misc_conv,
-  NULL
+       su_pam_conv,
+       NULL
  };
  
  static void
@@ -927,6 +943,9 @@ su_main (int argc, char **argv, int mode)
  
    init_groups (pw, groups, num_supp_groups);
  
+  if (!simulate_login || command)
+    suppress_pam_info = 1;             /* don't print PAM info messages */
+
    create_watching_parent ();
    /* Now we're in the child.  */
author	Karel Zak <kzak@redhat.com>
	Tue, 27 Aug 2013 09:23:54 +0000 (11:23 +0200)
committer	Karel Zak <kzak@redhat.com>
	Tue, 27 Aug 2013 09:49:13 +0000 (11:49 +0200)