contrib/opie/opie.h

130812Smarcel/* opie.h: Data structures and values for the OPIE authentication
130812Smarcel	system that a program might need.
130812Smarcel
130812Smarcel%%% portions-copyright-cmetz-96
130812SmarcelPortions of this software are Copyright 1996-1999 by Craig Metz, All Rights
130812SmarcelReserved. The Inner Net License Version 2 applies to these portions of
130812Smarcelthe software.
130812SmarcelYou should have received a copy of the license with this software. If
130812Smarcelyou didn't get a copy, you may request one from <license@inner.net>.
130812Smarcel
130812SmarcelPortions of this software are Copyright 1995 by Randall Atkinson and Dan
130812SmarcelMcDonald, All Rights Reserved. All Rights under this copyright are assigned
130812Smarcelto the U.S. Naval Research Laboratory (NRL). The NRL Copyright Notice and
130812SmarcelLicense Agreement applies to this software.
130812Smarcel
130812Smarcel	History:
130812Smarcel
130812Smarcel	Modified by cmetz for OPIE 2.4. Added sequence number limits. Added
130812Smarcel		struct opie_otpkey and made many functions use it. Added
130812Smarcel		opiestrncpy(). Include header with libmissing prototypes.
130812Smarcel	Modified by cmetz for OPIE 2.32. Added symbolic flag names for
130812Smarcel		opiepasswd(). Added __opieparsechallenge() prototype.
130812Smarcel	Modified by cmetz for OPIE 2.31. Removed active attack protection.
130812Smarcel	Modified by cmetz for OPIE 2.3. Renamed PTR to VOIDPTR. Added
130812Smarcel		re-init key and extension file fields to struct opie. Added
130812Smarcel		opie_ prefix on struct opie members. Added opie_flags field
130812Smarcel		and definitions. Added more prototypes. Changed opiehash()
130812Smarcel		prototype.
130812Smarcel	Modified by cmetz for OPIE 2.22. Define __P correctly if this file
130812Smarcel		is included in a third-party program.
130812Smarcel	Modified by cmetz for OPIE 2.2. Re-did prototypes. Added FUNCTION
130812Smarcel                definition et al. Multiple-include protection. Added struct
		utsname fake. Got rid of gethostname() cruft. Moved UINT4
                here. Provide for *seek whence values. Move MDx context here
                and unify. Re-did prototypes.
	Modified at NRL for OPIE 2.0.
	Written at Bellcore for the S/Key Version 1 software distribution
		(skey.h).

$FreeBSD: head/contrib/opie/opie.h 92914 2002-03-21 23:42:52Z markm $
*/
#ifndef _OPIE_H
#define _OPIE_H 1

struct opie {
  int opie_flags;
  char opie_buf[256];
  char *opie_principal;
  int opie_n;
  char *opie_seed;
  char *opie_val;
  long opie_recstart;
};

#define __OPIE_FLAGS_RW 1
#define __OPIE_FLAGS_READ 2

/* Minimum length of a secret password */
#ifndef OPIE_SECRET_MIN
#define OPIE_SECRET_MIN 10
#endif	/* OPIE_SECRET_MIN */

/* Maximum length of a secret password */
#define OPIE_SECRET_MAX 127

/* Minimum length of a seed */
#define OPIE_SEED_MIN 5

/* Maximum length of a seed */
#define OPIE_SEED_MAX 16

/* Max length of hash algorithm name (md4/md5) */
#define OPIE_HASHNAME_MAX 3

/* Maximum length of a challenge (otp-md? 9999 seed) */
#define OPIE_CHALLENGE_MAX (4+OPIE_HASHNAME_MAX+1+4+1+OPIE_SEED_MAX)

/* Maximum length of a response that we allow */
#define OPIE_RESPONSE_MAX (9+1+19+1+9+OPIE_SEED_MAX+1+19+1+19+1+19)

/* Maximum length of a principal (read: user name) */
#define OPIE_PRINCIPAL_MAX 32

/* Maximum sequence number */
#ifndef OPIE_SEQUENCE_MAX
#define OPIE_SEQUENCE_MAX 9999
#endif /* OPIE_SEQUENCE_MAX */

/* Restricted sequence number */
#ifndef OPIE_SEQUENCE_RESTRICT
#define OPIE_SEQUENCE_RESTRICT 9
#endif /* OPIE_SEQUENCE_RESTRICT */

#define UINT4 u_int32_t

struct opie_otpkey {
	UINT4 words[2];
};

#ifndef SEEK_SET
#define SEEK_SET 0
#endif /* SEEK_SET */

#ifndef SEEK_END
#define SEEK_END 2
#endif /* SEEK_END */

__BEGIN_DECLS
int  opieaccessfile __P((char *));
int  rdnets __P((long));
int  isaddr __P((register char *));
int  opiealways __P((char *));
char *opieatob8 __P((struct opie_otpkey *, char *));
void opiebackspace __P((char *));
char *opiebtoa8 __P((char *, struct opie_otpkey *));
char *opiebtoe __P((char *, struct opie_otpkey *));
char *opiebtoh __P((char *, struct opie_otpkey *));
int  opieetob __P((struct opie_otpkey *, char *));
int  opiechallenge __P((struct opie *,char *,char *));
int  opiegenerator __P((char *,char *,char *));
int  opiegetsequence __P((struct opie *));
void opiehash __P((struct opie_otpkey *, unsigned));
int  opiehtoi __P((register char));
int  opiekeycrunch __P((int, struct opie_otpkey *, char *, char *));
int  opielock __P((char *));
int  opieunlock __P((void));
void opieunlockaeh __P((void));
void opiedisableaeh __P((void));
int  opielookup __P((struct opie *,char *));
int  opiepasscheck __P((char *));
void opierandomchallenge __P((char *));
char * opieskipspace __P((register char *));
void opiestripcrlf __P((char *));
int  opieverify __P((struct opie *,char *));
int opiepasswd __P((struct opie *, int, char *, int, char *, char *));
char *opiereadpass __P((char *, int, int));
int opielogin __P((char *line, char *name, char *host));
const char *opie_get_algorithm __P((void));
int  opie_haskey __P((char *username));
char *opie_keyinfo __P((char *));
int  opie_passverify __P((char *username, char *passwd));
__END_DECLS

#if _OPIE
#define VOIDPTR void *
#define VOIDRET void
#define NOARGS  void
#define FUNCTION(arglist, args) (args)
#define AND ,
#define FUNCTION_NOARGS ()

__BEGIN_DECLS
struct utmp;
int __opiegetutmpentry __P((char *, struct utmp *));
#ifdef EOF
FILE *__opieopen __P((char *, int, int));
#endif /* EOF */
int __opiereadrec __P((struct opie *));
int __opiewriterec __P((struct opie *));
int __opieparsechallenge __P((char *buffer, int *algorithm, int *sequence, char **seed, int *exts));
__END_DECLS

#define opiestrncpy(dst, src, n) \
  do { \
    strncpy(dst, src, n-1); \
    dst[n-1] = 0; \
  } while(0)

/* #include "missing.h" */
#endif /* _OPIE */

#define OPIEPASSWD_CONSOLE 1
#define OPIEPASSWD_FORCE   2

#endif /* _OPIE_H */