xref: /illumos-gate/usr/src/cmd/ssh/etc/ssh.xml (revision 49b7860084dbba18bc00b29413d6182197f9fe93)
1<?xml version="1.0"?>
2<!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1">
3<!--
4	CDDL HEADER START
5
6	The contents of this file are subject to the terms of the
7	Common Development and Distribution License (the "License").
8	You may not use this file except in compliance with the License.
9
10	You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
11	or http://www.opensolaris.org/os/licensing.
12	See the License for the specific language governing permissions
13	and limitations under the License.
14
15	When distributing Covered Code, include this CDDL HEADER in each
16	file and include the License file at usr/src/OPENSOLARIS.LICENSE.
17	If applicable, add the following below this CDDL HEADER, with the
18	fields enclosed by brackets "[]" replaced with your own identifying
19	information: Portions Copyright [yyyy] [name of copyright owner]
20
21	CDDL HEADER END
22
23	Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
24	Use is subject to license terms.
25
26	Copyright 2016 Hans Rosenfeld <rosenfeld@grumpf.hope-2000.org>
27
28	NOTE:  This service manifest is not editable; its contents will
29	be overwritten by package or patch operations, including
30	operating system upgrade.  Make customizations in a different
31	file.
32-->
33
34<service_bundle type='manifest' name='SUNWsshdr:ssh'>
35
36<service
37	name='network/ssh'
38	type='service'
39	version='1'>
40
41	<create_default_instance enabled='false' />
42
43	<single_instance />
44
45	<dependency name='fs-local'
46		grouping='require_all'
47		restart_on='none'
48		type='service'>
49		<service_fmri
50			value='svc:/system/filesystem/local' />
51	</dependency>
52
53	<dependency name='fs-autofs'
54		grouping='optional_all'
55		restart_on='none'
56		type='service'>
57		<service_fmri value='svc:/system/filesystem/autofs' />
58	</dependency>
59
60	<dependency name='net-loopback'
61		grouping='require_all'
62		restart_on='none'
63		type='service'>
64		<service_fmri value='svc:/network/loopback' />
65	</dependency>
66
67	<dependency name='net-physical'
68		grouping='require_all'
69		restart_on='none'
70		type='service'>
71		<service_fmri value='svc:/network/physical' />
72	</dependency>
73
74	<dependency name='cryptosvc'
75		grouping='require_all'
76		restart_on='none'
77		type='service'>
78		<service_fmri value='svc:/system/cryptosvc' />
79	</dependency>
80
81	<dependency name='utmp'
82		grouping='require_all'
83		restart_on='none'
84		type='service'>
85		<service_fmri value='svc:/system/utmp' />
86	</dependency>
87
88	<dependency name='network_ipfilter'
89		grouping='optional_all'
90		restart_on='error'
91		type='service'>
92		<service_fmri value='svc:/network/ipfilter:default' />
93	</dependency>
94
95	<dependency name='config_data'
96		grouping='require_all'
97		restart_on='restart'
98		type='path'>
99		<service_fmri
100		    value='file://localhost/etc/ssh/sshd_config' />
101	</dependency>
102
103	<dependent
104		name='ssh_multi-user-server'
105		grouping='optional_all'
106		restart_on='none'>
107			<service_fmri
108			    value='svc:/milestone/multi-user-server' />
109	</dependent>
110
111	<exec_method
112		type='method'
113		name='start'
114		exec='/lib/svc/method/sshd start'
115		timeout_seconds='60'/>
116
117	<exec_method
118		type='method'
119		name='stop'
120		exec=':kill'
121		timeout_seconds='60' />
122
123	<exec_method
124		type='method'
125		name='refresh'
126		exec='/lib/svc/method/sshd restart'
127		timeout_seconds='60' />
128
129	<property_group name='startd'
130		type='framework'>
131		<!-- sub-process core dumps shouldn't restart session -->
132		<propval name='ignore_error'
133		    type='astring' value='core,signal' />
134	</property_group>
135
136        <property_group name='general' type='framework'>
137                <!-- to start stop sshd -->
138                <propval name='action_authorization' type='astring'
139                        value='solaris.smf.manage.ssh' />
140        </property_group>
141
142	<property_group name='firewall_context' type='com.sun,fw_definition'>
143		<propval name='name' type='astring' value='ssh' />
144		<propval name='ipf_method' type='astring'
145		    value='/lib/svc/method/sshd ipfilter' />
146	</property_group>
147
148	<property_group name='firewall_config' type='com.sun,fw_configuration'>
149		<propval name='policy' type='astring' value='use_global' />
150		<propval name='block_policy' type='astring'
151			value='use_global' />
152		<propval name='apply_to' type='astring' value='' />
153		<propval name='apply_to_6' type='astring' value='' />
154		<propval name='exceptions' type='astring' value='' />
155		<propval name='exceptions_6' type='astring' value='' />
156		<propval name='target' type='astring' value='' />
157		<propval name='target_6' type='astring' value='' />
158		<propval name='value_authorization' type='astring'
159			value='solaris.smf.value.firewall.config' />
160	</property_group>
161
162	<stability value='Unstable' />
163
164	<template>
165		<common_name>
166			<loctext xml:lang='C'>
167			SSH server
168			</loctext>
169		</common_name>
170		<documentation>
171			<manpage title='sshd' section='1M' manpath='/usr/share/man' />
172		</documentation>
173	</template>
174
175</service>
176
177</service_bundle>
178