login_cap.h revision 25670
125658Sdavidn/*- 225658Sdavidn * Copyright (c) 1996 by 325658Sdavidn * Sean Eric Fagan <sef@kithrup.com> 425658Sdavidn * David Nugent <davidn@blaze.net.au> 525658Sdavidn * All rights reserved. 625658Sdavidn * 725658Sdavidn * Redistribution and use in source and binary forms, with or without 825658Sdavidn * modification, is permitted provided that the following conditions 925658Sdavidn * are met: 1025658Sdavidn * 1. Redistributions of source code must retain the above copyright 1125658Sdavidn * notice immediately at the beginning of the file, without modification, 1225658Sdavidn * this list of conditions, and the following disclaimer. 1325658Sdavidn * 2. Redistributions in binary form must reproduce the above copyright 1425658Sdavidn * notice, this list of conditions and the following disclaimer in the 1525658Sdavidn * documentation and/or other materials provided with the distribution. 1625658Sdavidn * 3. This work was done expressly for inclusion into FreeBSD. Other use 1725658Sdavidn * is permitted provided this notation is included. 1825658Sdavidn * 4. Absolutely no warranty of function or purpose is made by the authors. 1925658Sdavidn * 5. Modifications may be freely made to this file providing the above 2025658Sdavidn * conditions are met. 2125658Sdavidn * 2225658Sdavidn * Low-level routines relating to the user capabilities database 2325658Sdavidn * 2425658Sdavidn * Was login_cap.h,v 1.9 1997/05/07 20:00:01 eivind Exp 2525670Sdavidn * $Id: login_cap.h,v 1.1 1997/05/10 12:49:30 davidn Exp $ 2625658Sdavidn */ 2725658Sdavidn 2825658Sdavidn#ifndef _LOGIN_CAP_H_ 2925658Sdavidn#define _LOGIN_CAP_H_ 3025658Sdavidn 3125658Sdavidn#define LOGIN_DEFCLASS "default" 3225670Sdavidn#define LOGIN_DEFROOTCLASS "root" 3325670Sdavidn#define LOGIN_MECLASS "me" 3425658Sdavidn#define LOGIN_DEFSTYLE "passwd" 3525658Sdavidn#define LOGIN_DEFSERVICE "login" 3625658Sdavidn#define LOGIN_DEFUMASK 022 3725658Sdavidn#define LOGIN_DEFPRI 0 3825658Sdavidn#define _PATH_LOGIN_CONF "/etc/login.conf" 3925658Sdavidn#define _FILE_LOGIN_CONF ".login_conf" 4025658Sdavidn#define _PATH_AUTHPROG "/usr/libexec/login_" 4125658Sdavidn 4225670Sdavidn#define LOGIN_SETGROUP 0x0001 /* set group */ 4325670Sdavidn#define LOGIN_SETLOGIN 0x0002 /* set login (via setlogin) */ 4425670Sdavidn#define LOGIN_SETPATH 0x0004 /* set path */ 4525670Sdavidn#define LOGIN_SETPRIORITY 0x0008 /* set priority */ 4625670Sdavidn#define LOGIN_SETRESOURCES 0x0010 /* set resources (cputime, etc.) */ 4725670Sdavidn#define LOGIN_SETUMASK 0x0020 /* set umask, obviously */ 4825670Sdavidn#define LOGIN_SETUSER 0x0040 /* set user (via setuid) */ 4925670Sdavidn#define LOGIN_SETENV 0x0080 /* set user environment */ 5025670Sdavidn#define LOGIN_SETALL 0x00ff /* set everything */ 5125658Sdavidn 5225670Sdavidn#define BI_AUTH "authorize" /* accepted authentication */ 5325670Sdavidn#define BI_REJECT "reject" /* rejected authentication */ 5425670Sdavidn#define BI_CHALLENG "reject challenge" /* reject with a challenge */ 5525670Sdavidn#define BI_SILENT "reject silent" /* reject silently */ 5625670Sdavidn#define BI_REMOVE "remove" /* remove file on error */ 5725670Sdavidn#define BI_ROOTOKAY "authorize root" /* root authenticated */ 5825670Sdavidn#define BI_SECURE "authorize secure" /* okay on non-secure line */ 5925670Sdavidn#define BI_SETENV "setenv" /* set environment variable */ 6025670Sdavidn#define BI_VALUE "value" /* set local variable */ 6125658Sdavidn 6225670Sdavidn#define AUTH_OKAY 0x01 /* user authenticated */ 6325670Sdavidn#define AUTH_ROOTOKAY 0x02 /* root login okay */ 6425670Sdavidn#define AUTH_SECURE 0x04 /* secure login */ 6525670Sdavidn#define AUTH_SILENT 0x08 /* silent rejection */ 6625670Sdavidn#define AUTH_CHALLENGE 0x10 /* a chellenge was given */ 6725658Sdavidn 6825670Sdavidn#define AUTH_ALLOW (AUTH_OKAY | AUTH_ROOTOKAY | AUTH_SECURE) 6925670Sdavidn 7025658Sdavidntypedef struct login_cap { 7125670Sdavidn char *lc_class; 7225670Sdavidn char *lc_cap; 7325670Sdavidn char *lc_style; 7425658Sdavidn} login_cap_t; 7525658Sdavidn 7625658Sdavidntypedef struct login_time { 7725670Sdavidn u_short lt_start; /* Start time */ 7825670Sdavidn u_short lt_end; /* End time */ 7925670Sdavidn#define LTM_NONE 0x00 8025670Sdavidn#define LTM_SUN 0x01 8125670Sdavidn#define LTM_MON 0x02 8225670Sdavidn#define LTM_TUE 0x04 8325670Sdavidn#define LTM_WED 0x08 8425670Sdavidn#define LTM_THU 0x10 8525670Sdavidn#define LTM_FRI 0x20 8625670Sdavidn#define LTM_SAT 0x40 8725670Sdavidn#define LTM_ANY 0x7F 8825670Sdavidn#define LTM_WK 0x3E 8925670Sdavidn#define LTM_WD 0x41 9025670Sdavidn u_char lt_dow; /* Days of week */ 9125658Sdavidn} login_time_t; 9225670Sdavidn 9325658Sdavidn#define LC_MAXTIMES 64 9425658Sdavidn 9525658Sdavidn#include <sys/cdefs.h> 9625658Sdavidn__BEGIN_DECLS 9725658Sdavidnstruct passwd; 9825658Sdavidn 9925658Sdavidnvoid login_close __P((login_cap_t *)); 10025670Sdavidnlogin_cap_t *login_getclassbyname __P((const char *, const struct passwd *)); 10125670Sdavidnlogin_cap_t *login_getclass __P((const char *)); 10225670Sdavidnlogin_cap_t *login_getpwclass __P((const struct passwd *)); 10325658Sdavidnlogin_cap_t *login_getuserclass __P((const struct passwd *)); 10425658Sdavidn 10525658Sdavidnchar *login_getcapstr __P((login_cap_t*, const char *, char *, char *)); 10625658Sdavidnchar **login_getcaplist __P((login_cap_t *, const char *, const char *)); 10725658Sdavidnchar *login_getstyle __P((login_cap_t *, char *, const char *)); 10825658Sdavidnrlim_t login_getcaptime __P((login_cap_t *, const char *, rlim_t, rlim_t)); 10925658Sdavidnrlim_t login_getcapnum __P((login_cap_t *, const char *, rlim_t, rlim_t)); 11025658Sdavidnrlim_t login_getcapsize __P((login_cap_t *, const char *, rlim_t, rlim_t)); 11125658Sdavidnchar *login_getpath __P((login_cap_t *, const char *, char *)); 11225658Sdavidnint login_getcapbool __P((login_cap_t *, const char *, int)); 11325658Sdavidn 11425658Sdavidnint setclasscontext __P((const char*, unsigned int)); 11525658Sdavidnint setusercontext __P((login_cap_t*, const struct passwd*, uid_t, unsigned int)); 11625658Sdavidnvoid setclassresources __P((login_cap_t *)); 11725658Sdavidnvoid setclassenvironment __P((login_cap_t *, const struct passwd *, int)); 11825658Sdavidn 11925670Sdavidn/* Most of these functions are deprecated */ 12025670Sdavidnint auth_approve __P((login_cap_t*, const char*, const char*)); 12125670Sdavidnint auth_check __P((const char *, const char *, const char *, const char *, int *)); 12225670Sdavidnvoid auth_env __P((void)); 12325670Sdavidnchar *auth_mkvalue __P((const char *n)); 12425670Sdavidnint auth_response __P((const char *, const char *, const char *, const char *, int *, const char *, const char *)); 12525670Sdavidnvoid auth_rmfiles __P((void)); 12625670Sdavidnint auth_scan __P((int)); 12725658Sdavidnint auth_script __P((const char*, ...)); 12825670Sdavidnint auth_script_data __P((const char *, int, const char *, ...)); 12925670Sdavidnchar *auth_valud __P((const char *)); 13025670Sdavidnint auth_setopt __P((const char *, const char *)); 13125670Sdavidnvoid auth_clropts __P((void)); 13225670Sdavidn 13325658Sdavidnvoid auth_checknologin __P((login_cap_t*)); 13425658Sdavidnint auth_cat __P((const char*)); 13525658Sdavidn 13625658Sdavidnint auth_ttyok __P((login_cap_t*, const char *)); 13725658Sdavidnint auth_hostok __P((login_cap_t*, const char *, char const *)); 13825658Sdavidnint auth_timeok __P((login_cap_t*, time_t)); 13925658Sdavidn 14025658Sdavidnstruct tm; 14125658Sdavidn 14225658Sdavidnlogin_time_t parse_lt __P((const char *)); 14325658Sdavidnint in_ltm __P((const login_time_t *, struct tm *, time_t *)); 14425658Sdavidnint in_ltms __P((const login_time_t *, struct tm *, time_t *)); 14525658Sdavidn 14625670Sdavidn/* helper functions */ 14725658Sdavidn 14825658Sdavidnint login_strinlist __P((char **, char const *, int)); 14925658Sdavidnint login_str2inlist __P((char **, const char *, const char *, int)); 15025658Sdavidnlogin_time_t * login_timelist __P((login_cap_t *, char const *, int *, login_time_t **)); 15125658Sdavidnint login_ttyok __P((login_cap_t *, const char *, const char *, const char *)); 15225658Sdavidnint login_hostok __P((login_cap_t *, const char *, const char *, const char *, const char *)); 15325658Sdavidn 15425658Sdavidn__END_DECLS 15525658Sdavidn 15625658Sdavidn#endif /* _LOGIN_CAP_H_ */ 157