src/usr.bin/ssh/auth2.c - diff

Return to auth2.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/auth2.c between version 1.56 and 1.56.2.2

version 1.56, 2001/04/19 00:05:11

version 1.56.2.2, 2001/11/15 00:15:19

Line 51

#include "hostfile.h"

#include "canohost.h"

#include "tildexpand.h"

#include "match.h"

/* import */

extern ServerOptions options;

Line 69

Line 70

/* protocol */

void input_service_request(int type, int plen, void *ctxt);

static void input_service_request(int, int, void *);

void input_userauth_request(int type, int plen, void *ctxt);

static void input_userauth_request(int, int, void *);

void protocol_error(int type, int plen, void *ctxt);

static void protocol_error(int, int, void *);

/* helper */

Authmethod *authmethod_lookup(const char *name);

static Authmethod *authmethod_lookup(const char *);

char *authmethods_get(void);

static char *authmethods_get(void);

int user_key_allowed(struct passwd *pw, Key *key);

static int user_key_allowed(struct passwd *, Key *);

int

static int hostbased_key_allowed(struct passwd *, const char *, char *, Key *);

hostbased_key_allowed(struct passwd *pw, const char *cuser, char *chost,

Key *key);

/* auth */

void userauth_banner(void);

static void userauth_banner(void);

void userauth_reply(Authctxt *authctxt, int authenticated);

static int userauth_none(Authctxt *);

int userauth_none(Authctxt *authctxt);

static int userauth_passwd(Authctxt *);

int userauth_passwd(Authctxt *authctxt);

static int userauth_pubkey(Authctxt *);

int userauth_pubkey(Authctxt *authctxt);

static int userauth_hostbased(Authctxt *);

int userauth_hostbased(Authctxt *authctxt);

static int userauth_kbdint(Authctxt *);

int userauth_kbdint(Authctxt *authctxt);

Authmethod authmethods[] = {

{"none",

Line 120

Line 118

x_authctxt = authctxt; /*XXX*/

/* challenge-reponse is implemented via keyboard interactive */

/* challenge-response is implemented via keyboard interactive */

if (options.challenge_reponse_authentication)

if (options.challenge_response_authentication)

options.kbd_interactive_authentication = 1;

dispatch_init(&protocol_error);

Line 130

Line 128

do_authenticated(authctxt);

}

void

static void

protocol_error(int type, int plen, void *ctxt)

{

log("auth: protocol error: type %d plen %d", type, plen);

Line 140

Line 138

packet_write_wait();

}

void

static void

input_service_request(int type, int plen, void *ctxt)

{

Authctxt *authctxt = ctxt;

Line 173

Line 171

xfree(service);

}

void

static void

input_userauth_request(int type, int plen, void *ctxt)

{

Authctxt *authctxt = ctxt;

Line 207

Line 205

setproctitle("%s", pw ? user : "unknown");

authctxt->user = xstrdup(user);

authctxt->service = xstrdup(service);

authctxt->style = style ? xstrdup(style) : NULL; /* currently unused */

authctxt->style = style ? xstrdup(style) : NULL;

} else if (authctxt->valid) {

} else if (strcmp(user, authctxt->user) != 0 ||

if (strcmp(user, authctxt->user) != 0 ||

strcmp(service, authctxt->service) != 0) {

packet_disconnect("Change of username or service not allowed: "

log("input_userauth_request: mismatch: (%s,%s)!=(%s,%s)",

"(%s,%s) -> (%s,%s)",

user, service, authctxt->user, authctxt->service);

authctxt->user, authctxt->service, user, service);

authctxt->valid = 0;

}

/* reset state */

dispatch_set(SSH2_MSG_USERAUTH_INFO_RESPONSE, &protocol_error);

Line 242

Line 238

void

userauth_finish(Authctxt *authctxt, int authenticated, char *method)

{

char *methods;

if (!authctxt->valid && authenticated)

fatal("INTERNAL ERROR: authenticated invalid user %s",

authctxt->user);

Line 254

Line 252

/* Log before sending the reply */

auth_log(authctxt, authenticated, method, " ssh2");

if (!authctxt->postponed)

if (authctxt->postponed)

userauth_reply(authctxt, authenticated);

return;

/* XXX todo: check if multiple auth methods are needed */

if (authenticated == 1) {

/* turn off userauth */

dispatch_set(SSH2_MSG_USERAUTH_REQUEST, &protocol_error);

packet_start(SSH2_MSG_USERAUTH_SUCCESS);

packet_send();

packet_write_wait();

/* now we can break out */

authctxt->success = 1;

} else {

if (authctxt->failures++ > AUTH_FAIL_MAX)

packet_disconnect(AUTH_FAIL_MSG, authctxt->user);

methods = authmethods_get();

packet_start(SSH2_MSG_USERAUTH_FAILURE);

packet_put_cstring(methods);

packet_put_char(0); /* XXX partial success, unused */

packet_send();

packet_write_wait();

xfree(methods);

}

void

static void

userauth_banner(void)

{

struct stat st;

Line 289

Line 308

return;

}

void

static int

userauth_reply(Authctxt *authctxt, int authenticated)

{

char *methods;

/* XXX todo: check if multiple auth methods are needed */

if (authenticated == 1) {

/* turn off userauth */

dispatch_set(SSH2_MSG_USERAUTH_REQUEST, &protocol_error);

packet_start(SSH2_MSG_USERAUTH_SUCCESS);

packet_send();

packet_write_wait();

/* now we can break out */

authctxt->success = 1;

} else {

if (authctxt->failures++ > AUTH_FAIL_MAX)

packet_disconnect(AUTH_FAIL_MSG, authctxt->user);

methods = authmethods_get();

packet_start(SSH2_MSG_USERAUTH_FAILURE);

packet_put_cstring(methods);

packet_put_char(0); /* XXX partial success, unused */

packet_send();

packet_write_wait();

xfree(methods);

}

int

userauth_none(Authctxt *authctxt)

{

/* disable method "none", only allowed one time */

Line 328

Line 320

return authctxt->valid ? auth_password(authctxt, "") : 0;

}

int

static int

userauth_passwd(Authctxt *authctxt)

{

char *password;

Line 348

Line 340

return authenticated;

}

int

static int

userauth_kbdint(Authctxt *authctxt)

{

int authenticated = 0;

char *lang = NULL;

char *lang, *devs;

char *devs = NULL;

lang = packet_get_string(NULL);

devs = packet_get_string(NULL);

packet_done();

debug("keyboard-interactive language %s devs %s", lang, devs);

debug("keyboard-interactive devs %s", devs);

if (options.challenge_reponse_authentication)

if (options.challenge_response_authentication)

authenticated = auth2_challenge(authctxt, devs);

xfree(lang);

xfree(devs);

xfree(lang);

return authenticated;

}

int

static int

userauth_pubkey(Authctxt *authctxt)

{

Buffer b;

Line 471

Line 462

return authenticated;

}

int

static int

userauth_hostbased(Authctxt *authctxt)

{

Buffer b;

Line 556

Line 547

#define DELIM ","

char *

static char *

authmethods_get(void)

{

Authmethod *method = NULL;

Line 588

Line 579

return list;

}

Authmethod *

static Authmethod *

authmethod_lookup(const char *name)

{

Authmethod *method = NULL;

Line 603

Line 594

}

/* return 1 if user allows given key */

int

static int

user_key_allowed(struct passwd *pw, Key *key)

user_key_allowed2(struct passwd *pw, Key *key, char *file)

{

char line[8192], file[MAXPATHLEN];

char line[8192];

int found_key = 0;

FILE *f;

u_long linenum = 0;

Line 619

Line 610

/* Temporarily use the user's uid. */

temporarily_use_uid(pw);

/* The authorized keys. */

debug("trying public key file %s", file);

snprintf(file, sizeof file, "%.500s/%.100s", pw->pw_dir,

_PATH_SSH_USER_PERMITTED_KEYS2);

/* Fail quietly if file does not exist */

if (stat(file, &st) < 0) {

Line 636

Line 625

restore_uid();

return 0;

}

if (options.strict_modes) {

if (options.strict_modes &&

int fail = 0;

secure_filename(f, file, pw, line, sizeof(line)) != 0) {

char buf[1024];

fclose(f);

/* Check open file in order to avoid open/stat races */

log("Authentication refused: %s", line);

if (fstat(fileno(f), &st) < 0 ||

restore_uid();

(st.st_uid != 0 && st.st_uid != pw->pw_uid) ||

return 0;

(st.st_mode & 022) != 0) {

snprintf(buf, sizeof buf,

"%s authentication refused for %.100s: "

"bad ownership or modes for '%s'.",

key_type(key), pw->pw_name, file);

fail = 1;

} else {

/* Check path to _PATH_SSH_USER_PERMITTED_KEYS */

int i;

static const char *check[] = {

"", _PATH_SSH_USER_DIR, NULL

};

for (i = 0; check[i]; i++) {

snprintf(line, sizeof line, "%.500s/%.100s",

pw->pw_dir, check[i]);

if (stat(line, &st) < 0 ||

(st.st_uid != 0 && st.st_uid != pw->pw_uid) ||

(st.st_mode & 022) != 0) {

snprintf(buf, sizeof buf,

"%s authentication refused for %.100s: "

"bad ownership or modes for '%s'.",

key_type(key), pw->pw_name, line);

fail = 1;

break;

}

if (fail) {

fclose(f);

log("%s", buf);

restore_uid();

return 0;

}

found_key = 0;

found = key_new(key->type);

Line 688

Line 645

if (!*cp || *cp == '\n' || *cp == '#')

continue;

if (key_read(found, &cp) == -1) {

if (key_read(found, &cp) != 1) {

/* no key? check if there are options for this key */

int quoted = 0;

debug2("user_key_allowed: check options: '%s'", cp);

Line 702

Line 659

/* Skip remaining whitespace. */

for (; *cp == ' ' || *cp == '\t'; cp++)

;

if (key_read(found, &cp) == -1) {

if (key_read(found, &cp) != 1) {

debug2("user_key_allowed: advance: '%s'", cp);

/* still no key? advance to next line*/

continue;

Line 711

Line 668

if (key_equal(found, key) &&

auth_parse_options(pw, options, file, linenum) == 1) {

found_key = 1;

debug("matching key found: file %s, line %ld",

debug("matching key found: file %s, line %lu",

file, linenum);

break;

}

Line 724

Line 681

return found_key;

}

/* check whether given key is in .ssh/authorized_keys* */

static int

user_key_allowed(struct passwd *pw, Key *key)

{

int success;

char *file;

file = authorized_keys_file(pw);

success = user_key_allowed2(pw, key, file);

xfree(file);

if (success)

return success;

/* try suffix "2" for backward compat, too */

file = authorized_keys_file2(pw);

success = user_key_allowed2(pw, key, file);

xfree(file);

return success;

}

/* return 1 if given hostkey is allowed */

int

static int

hostbased_key_allowed(struct passwd *pw, const char *cuser, char *chost,

Key *key)

{

Key *found;

const char *resolvedname, *ipaddr, *lookup;

struct stat st;

char *user_hostfile;

int host_status, len;

resolvedname = get_canonical_hostname(options.reverse_mapping_check);

Line 760

Line 734

}

debug2("userauth_hostbased: access allowed by auth_rhosts2");

/* XXX this is copied from auth-rh-rsa.c and should be shared */

host_status = check_key_in_hostfiles(pw, key, lookup,

found = key_new(key->type);

_PATH_SSH_SYSTEM_HOSTFILE,

host_status = check_host_in_hostfile(_PATH_SSH_SYSTEM_HOSTFILE2, lookup,

options.ignore_user_known_hosts ? NULL : _PATH_SSH_USER_HOSTFILE);

key, found, NULL);

if (host_status != HOST_OK && !options.ignore_user_known_hosts) {

/* backward compat if no key has been found. */

user_hostfile = tilde_expand_filename(_PATH_SSH_USER_HOSTFILE2,

if (host_status == HOST_NEW)

pw->pw_uid);

host_status = check_key_in_hostfiles(pw, key, lookup,

if (options.strict_modes &&

_PATH_SSH_SYSTEM_HOSTFILE2,

(stat(user_hostfile, &st) == 0) &&

options.ignore_user_known_hosts ? NULL :

((st.st_uid != 0 && st.st_uid != pw->pw_uid) ||

_PATH_SSH_USER_HOSTFILE2);

(st.st_mode & 022) != 0)) {

log("Hostbased authentication refused for %.100s: "

"bad owner or modes for %.200s",

pw->pw_name, user_hostfile);

} else {

temporarily_use_uid(pw);

host_status = check_host_in_hostfile(user_hostfile,

lookup, key, found, NULL);

restore_uid();

}

xfree(user_hostfile);

}

key_free(found);

debug2("userauth_hostbased: key %s for %s", host_status == HOST_OK ?

"ok" : "not found", lookup);

return (host_status == HOST_OK);

}