include/security/pam_appl.h

ade90846SJoerg Sonnenberger/*-
ade90846SJoerg Sonnenberger * Copyright (c) 2002-2003 Networks Associates Technology, Inc.
*10b5fe87SSascha Wildner * Copyright (c) 2004-2017 Dag-Erling Smørgrav
ade90846SJoerg Sonnenberger * All rights reserved.
ade90846SJoerg Sonnenberger *
ade90846SJoerg Sonnenberger * This software was developed for the FreeBSD Project by ThinkSec AS and
ade90846SJoerg Sonnenberger * Network Associates Laboratories, the Security Research Division of
ade90846SJoerg Sonnenberger * Network Associates, Inc.  under DARPA/SPAWAR contract N66001-01-C-8035
ade90846SJoerg Sonnenberger * ("CBOSS"), as part of the DARPA CHATS research program.
ade90846SJoerg Sonnenberger *
ade90846SJoerg Sonnenberger * Redistribution and use in source and binary forms, with or without
ade90846SJoerg Sonnenberger * modification, are permitted provided that the following conditions
ade90846SJoerg Sonnenberger * are met:
ade90846SJoerg Sonnenberger * 1. Redistributions of source code must retain the above copyright
ade90846SJoerg Sonnenberger *    notice, this list of conditions and the following disclaimer.
ade90846SJoerg Sonnenberger * 2. Redistributions in binary form must reproduce the above copyright
ade90846SJoerg Sonnenberger *    notice, this list of conditions and the following disclaimer in the
ade90846SJoerg Sonnenberger *    documentation and/or other materials provided with the distribution.
ade90846SJoerg Sonnenberger * 3. The name of the author may not be used to endorse or promote
ade90846SJoerg Sonnenberger *    products derived from this software without specific prior written
ade90846SJoerg Sonnenberger *    permission.
ade90846SJoerg Sonnenberger *
ade90846SJoerg Sonnenberger * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
ade90846SJoerg Sonnenberger * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
ade90846SJoerg Sonnenberger * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
ade90846SJoerg Sonnenberger * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
ade90846SJoerg Sonnenberger * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
ade90846SJoerg Sonnenberger * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
ade90846SJoerg Sonnenberger * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
ade90846SJoerg Sonnenberger * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
ade90846SJoerg Sonnenberger * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
ade90846SJoerg Sonnenberger * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
ade90846SJoerg Sonnenberger * SUCH DAMAGE.
ade90846SJoerg Sonnenberger *
*10b5fe87SSascha Wildner * $OpenPAM: pam_appl.h 938 2017-04-30 21:34:42Z des $
ade90846SJoerg Sonnenberger */
ade90846SJoerg Sonnenberger
f23594ceSHasso Tepper#ifndef SECURITY_PAM_APPL_H_INCLUDED
f23594ceSHasso Tepper#define SECURITY_PAM_APPL_H_INCLUDED
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenberger#include <security/pam_types.h>
ade90846SJoerg Sonnenberger#include <security/pam_constants.h>
f23594ceSHasso Tepper#include <security/openpam_attr.h>
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenberger#ifdef __cplusplus
ade90846SJoerg Sonnenbergerextern "C" {
ade90846SJoerg Sonnenberger#endif
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenberger/*
ade90846SJoerg Sonnenberger * XSSO 4.2.1, 6
ade90846SJoerg Sonnenberger */
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_acct_mgmt(pam_handle_t *_pamh,
f23594ceSHasso Tepper	int _flags)
f23594ceSHasso Tepper	OPENPAM_NONNULL((1));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_authenticate(pam_handle_t *_pamh,
f23594ceSHasso Tepper	int _flags)
f23594ceSHasso Tepper	OPENPAM_NONNULL((1));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_chauthtok(pam_handle_t *_pamh,
f23594ceSHasso Tepper	int _flags)
f23594ceSHasso Tepper	OPENPAM_NONNULL((1));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_close_session(pam_handle_t *_pamh,
f23594ceSHasso Tepper	int _flags)
f23594ceSHasso Tepper	OPENPAM_NONNULL((1));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_end(pam_handle_t *_pamh,
a474e9feSPeter Avalos	int _status);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
f23594ceSHasso Tepperpam_get_data(const pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	const char *_module_data_name,
f23594ceSHasso Tepper	const void **_data)
6329e2f6SSascha Wildner	OPENPAM_NONNULL((2,3));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
f23594ceSHasso Tepperpam_get_item(const pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	int _item_type,
f23594ceSHasso Tepper	const void **_item)
6329e2f6SSascha Wildner	OPENPAM_NONNULL((3));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_get_user(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	const char **_user,
6329e2f6SSascha Wildner	const char *_prompt);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerconst char *
ade90846SJoerg Sonnenbergerpam_getenv(pam_handle_t *_pamh,
6329e2f6SSascha Wildner	const char *_name);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerchar **
6329e2f6SSascha Wildnerpam_getenvlist(pam_handle_t *_pamh);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_open_session(pam_handle_t *_pamh,
f23594ceSHasso Tepper	int _flags)
f23594ceSHasso Tepper	OPENPAM_NONNULL((1));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_putenv(pam_handle_t *_pamh,
6329e2f6SSascha Wildner	const char *_namevalue);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_set_data(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	const char *_module_data_name,
ade90846SJoerg Sonnenberger	void *_data,
ade90846SJoerg Sonnenberger	void (*_cleanup)(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger		void *_data,
f23594ceSHasso Tepper		int _pam_end_status))
6329e2f6SSascha Wildner	OPENPAM_NONNULL((2));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_set_item(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	int _item_type,
6329e2f6SSascha Wildner	const void *_item);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_setcred(pam_handle_t *_pamh,
f23594ceSHasso Tepper	int _flags)
f23594ceSHasso Tepper	OPENPAM_NONNULL((1));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_start(const char *_service,
ade90846SJoerg Sonnenberger	const char *_user,
ade90846SJoerg Sonnenberger	const struct pam_conv *_pam_conv,
f23594ceSHasso Tepper	pam_handle_t **_pamh)
f23594ceSHasso Tepper	OPENPAM_NONNULL((4));
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerconst char *
f23594ceSHasso Tepperpam_strerror(const pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	int _error_number);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenberger/*
ade90846SJoerg Sonnenberger * Single Sign-On extensions
ade90846SJoerg Sonnenberger */
ade90846SJoerg Sonnenberger#if 0
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_authenticate_secondary(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	char *_target_username,
ade90846SJoerg Sonnenberger	char *_target_module_type,
ade90846SJoerg Sonnenberger	char *_target_authn_domain,
ade90846SJoerg Sonnenberger	char *_target_supp_data,
ade90846SJoerg Sonnenberger	char *_target_module_authtok,
ade90846SJoerg Sonnenberger	int _flags);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_get_mapped_authtok(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	const char *_target_module_username,
ade90846SJoerg Sonnenberger	const char *_target_module_type,
ade90846SJoerg Sonnenberger	const char *_target_authn_domain,
ade90846SJoerg Sonnenberger	size_t *_target_authtok_len,
ade90846SJoerg Sonnenberger	unsigned char **_target_module_authtok);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_get_mapped_username(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	const char *_src_username,
ade90846SJoerg Sonnenberger	const char *_src_module_type,
ade90846SJoerg Sonnenberger	const char *_src_authn_domain,
ade90846SJoerg Sonnenberger	const char *_target_module_type,
ade90846SJoerg Sonnenberger	const char *_target_authn_domain,
ade90846SJoerg Sonnenberger	char **_target_module_username);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_set_mapped_authtok(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	const char *_target_module_username,
ade90846SJoerg Sonnenberger	size_t _target_authtok_len,
ade90846SJoerg Sonnenberger	unsigned char *_target_module_authtok,
ade90846SJoerg Sonnenberger	const char *_target_module_type,
ade90846SJoerg Sonnenberger	const char *_target_authn_domain);
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenbergerint
ade90846SJoerg Sonnenbergerpam_set_mapped_username(pam_handle_t *_pamh,
ade90846SJoerg Sonnenberger	char *_src_username,
ade90846SJoerg Sonnenberger	char *_src_module_type,
ade90846SJoerg Sonnenberger	char *_src_authn_domain,
ade90846SJoerg Sonnenberger	char *_target_module_username,
ade90846SJoerg Sonnenberger	char *_target_module_type,
ade90846SJoerg Sonnenberger	char *_target_authn_domain);
ade90846SJoerg Sonnenberger#endif /* 0 */
ade90846SJoerg Sonnenberger
ade90846SJoerg Sonnenberger#ifdef __cplusplus
ade90846SJoerg Sonnenberger}
ade90846SJoerg Sonnenberger#endif
ade90846SJoerg Sonnenberger
f23594ceSHasso Tepper#endif /* !SECURITY_PAM_APPL_H_INCLUDED */