Annotation of src/usr.bin/ssh/auth-chall.c, Revision 1.9
1.1 markus 1: /*
1.5 deraadt 2: * Copyright (c) 2001 Markus Friedl. All rights reserved.
1.1 markus 3: *
4: * Redistribution and use in source and binary forms, with or without
5: * modification, are permitted provided that the following conditions
6: * are met:
7: * 1. Redistributions of source code must retain the above copyright
8: * notice, this list of conditions and the following disclaimer.
9: * 2. Redistributions in binary form must reproduce the above copyright
10: * notice, this list of conditions and the following disclaimer in the
11: * documentation and/or other materials provided with the distribution.
12: *
13: * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
14: * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
15: * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
16: * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
17: * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
18: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
19: * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
20: * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
21: * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
22: * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
23: */
24:
25: #include "includes.h"
1.9 ! djm 26: RCSID("$OpenBSD: auth-chall.c,v 1.8 2001/05/18 14:13:28 markus Exp $");
1.1 markus 27:
28: #include "auth.h"
1.6 markus 29: #include "log.h"
1.8 markus 30: #include "xmalloc.h"
31:
32: /* limited protocol v1 interface to kbd-interactive authentication */
33:
34: extern KbdintDevice *devices[];
35: static KbdintDevice *device;
1.1 markus 36:
1.6 markus 37: char *
1.8 markus 38: get_challenge(Authctxt *authctxt)
1.6 markus 39: {
1.8 markus 40: char *challenge, *name, *info, **prompts;
41: u_int i, numprompts;
42: u_int *echo_on;
1.6 markus 43:
1.8 markus 44: device = devices[0]; /* we always use the 1st device for protocol 1 */
45: if (device == NULL)
46: return NULL;
47: if ((authctxt->kbdintctxt = device->init_ctx(authctxt)) == NULL)
48: return NULL;
49: if (device->query(authctxt->kbdintctxt, &name, &info,
50: &numprompts, &prompts, &echo_on)) {
51: device->free_ctx(authctxt->kbdintctxt);
52: authctxt->kbdintctxt = NULL;
53: return NULL;
1.6 markus 54: }
1.8 markus 55: if (numprompts < 1)
56: fatal("get_challenge: numprompts < 1");
57: challenge = xstrdup(prompts[0]);
58: for (i = 0; i < numprompts; i++)
59: xfree(prompts[i]);
60: xfree(prompts);
61: xfree(name);
62: xfree(echo_on);
63: xfree(info);
64:
65: return (challenge);
1.6 markus 66: }
67: int
1.8 markus 68: verify_response(Authctxt *authctxt, const char *response)
1.6 markus 69: {
1.8 markus 70: char *resp[1];
1.9 ! djm 71: int authenticated = 0;
1.2 markus 72:
1.8 markus 73: if (device == NULL)
74: return 0;
75: if (authctxt->kbdintctxt == NULL)
76: return 0;
77: resp[0] = (char *)response;
1.9 ! djm 78: if (device->respond(authctxt->kbdintctxt, 1, resp) == 0)
! 79: authenticated = 1;
1.8 markus 80: device->free_ctx(authctxt->kbdintctxt);
81: authctxt->kbdintctxt = NULL;
1.9 ! djm 82: return authenticated;
1.1 markus 83: }