src/usr.bin/ssh/monitor.c - diff

Return to monitor.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/monitor.c between version 1.29.2.3 and 1.30

version 1.29.2.3, 2003/09/16 21:20:26

version 1.30, 2002/11/05 19:45:20

Line 59

#include "ssh2.h"

#include "mpaux.h"

#ifdef GSSAPI

#include "ssh-gss.h"

static Gssctxt *gsscontext = NULL;

#endif

/* Imports */

extern ServerOptions options;

extern u_int utmp_len;

Line 98

Line 93

u_int olen;

} child_state;

/* Functions on the monitor that answer unprivileged requests */

/* Functions on the montior that answer unprivileged requests */

int mm_answer_moduli(int, Buffer *);

int mm_answer_sign(int, Buffer *);

Line 121

Line 116

int mm_answer_sesskey(int, Buffer *);

int mm_answer_sessid(int, Buffer *);

#ifdef GSSAPI

#ifdef KRB4

int mm_answer_gss_setup_ctx(int, Buffer *);

int mm_answer_krb4(int, Buffer *);

int mm_answer_gss_accept_ctx(int, Buffer *);

int mm_answer_gss_userok(int, Buffer *);

#endif

#ifdef KRB5

int mm_answer_krb5(int, Buffer *);

#endif

static Authctxt *authctxt;

static BIGNUM *ssh1_challenge = NULL; /* used for ssh1 rsa auth */

Line 137

Line 133

static char *hostbased_cuser = NULL;

static char *hostbased_chost = NULL;

static char *auth_method = "unknown";

static u_int session_id2_len = 0;

static int session_id2_len = 0;

static u_char *session_id2 = NULL;

static pid_t monitor_child_pid;

struct mon_table {

enum monitor_reqtype type;

Line 172

Line 167

#endif

{MONITOR_REQ_KEYALLOWED, MON_ISAUTH, mm_answer_keyallowed},

{MONITOR_REQ_KEYVERIFY, MON_AUTH, mm_answer_keyverify},

#ifdef GSSAPI

{MONITOR_REQ_GSSSETUP, MON_ISAUTH, mm_answer_gss_setup_ctx},

{MONITOR_REQ_GSSSTEP, MON_ISAUTH, mm_answer_gss_accept_ctx},

{MONITOR_REQ_GSSUSEROK, MON_AUTH, mm_answer_gss_userok},

#endif

{0, 0, NULL}

};

Line 206

Line 196

{MONITOR_REQ_SKEYQUERY, MON_ISAUTH, mm_answer_skeyquery},

{MONITOR_REQ_SKEYRESPOND, MON_AUTH, mm_answer_skeyrespond},

#endif

#ifdef KRB4

{MONITOR_REQ_KRB4, MON_ONCE|MON_AUTH, mm_answer_krb4},

#endif

#ifdef KRB5

{MONITOR_REQ_KRB5, MON_ONCE|MON_AUTH, mm_answer_krb5},

#endif

{0, 0, NULL}

};

Line 300

Line 296

return (authctxt);

}

static void

monitor_set_child_handler(pid_t pid)

{

monitor_child_pid = pid;

}

static void

monitor_child_handler(int signal)

{

kill(monitor_child_pid, signal);

}

void

monitor_child_postauth(struct monitor *pmonitor)

{

monitor_set_child_handler(pmonitor->m_pid);

signal(SIGHUP, &monitor_child_handler);

signal(SIGTERM, &monitor_child_handler);

if (compat20) {

mon_dispatch = mon_dispatch_postauth20;

Line 326

Line 306

monitor_permit(mon_dispatch, MONITOR_REQ_MODULI, 1);

monitor_permit(mon_dispatch, MONITOR_REQ_SIGN, 1);

monitor_permit(mon_dispatch, MONITOR_REQ_TERM, 1);

} else {

mon_dispatch = mon_dispatch_postauth15;

monitor_permit(mon_dispatch, MONITOR_REQ_TERM, 1);

Line 606

Line 587

passwd = buffer_get_string(m, &plen);

/* Only authenticate if the context is valid */

authenticated = options.password_authentication &&

auth_password(authctxt, passwd);

authctxt->valid && auth_password(authctxt, passwd);

memset(passwd, 0, strlen(passwd));

xfree(passwd);

Line 634

Line 615

u_int numprompts;

u_int *echo_on;

char **prompts;

u_int success;

int res;

success = bsdauth_query(authctxt, &name, &infotxt, &numprompts,

res = bsdauth_query(authctxt, &name, &infotxt, &numprompts,

&prompts, &echo_on) < 0 ? 0 : 1;

&prompts, &echo_on);

buffer_clear(m);

buffer_put_int(m, success);

buffer_put_int(m, res);

if (success)

if (res != -1)

buffer_put_cstring(m, prompts[0]);

debug3("%s: sending challenge success: %u", __func__, success);

debug3("%s: sending challenge res: %d", __func__, res);

mm_request_send(socket, MONITOR_ANS_BSDAUTHQUERY, m);

if (success) {

if (res != -1) {

xfree(name);

xfree(infotxt);

xfree(prompts);

Line 691

Line 672

{

struct skey skey;

char challenge[1024];

u_int success;

int res;

success = skeychallenge(&skey, authctxt->user, challenge) < 0 ? 0 : 1;

res = skeychallenge(&skey, authctxt->user, challenge);

buffer_clear(m);

buffer_put_int(m, success);

buffer_put_int(m, res);

if (success)

if (res != -1)

buffer_put_cstring(m, challenge);

debug3("%s: sending challenge success: %u", __func__, success);

debug3("%s: sending challenge res: %d", __func__, res);

mm_request_send(socket, MONITOR_ANS_SKEYQUERY, m);

return (0);

Line 790

Line 771

fatal("%s: unknown key type %d", __func__, type);

break;

}

if (key != NULL)

key_free(key);

}

/* clear temporarily storage (used by verify) */

monitor_reset_key_state();

Line 811

Line 791

buffer_clear(m);

buffer_put_int(m, allowed);

buffer_put_int(m, forced_command != NULL);

mm_append_debug(m);

Line 854

Line 833

fail++;

p = buffer_get_string(&b, NULL);

if (strcmp(authctxt->user, p) != 0) {

logit("wrong user name passed to monitor: expected %s != %.100s",

log("wrong user name passed to monitor: expected %s != %.100s",

authctxt->user, p);

fail++;

}

Line 902

Line 881

fail++;

p = buffer_get_string(&b, NULL);

if (strcmp(authctxt->user, p) != 0) {

logit("wrong user name passed to monitor: expected %s != %.100s",

log("wrong user name passed to monitor: expected %s != %.100s",

authctxt->user, p);

fail++;

}

Line 1012

Line 991

}

/* Record that there was a login on that tty from the remote host. */

record_login(s->pid, s->tty, pw->pw_name, pw->pw_uid,

get_remote_name_or_ip(utmp_len, options.use_dns),

get_remote_name_or_ip(utmp_len, options.verify_reverse_mapping),

(struct sockaddr *)&from, fromlen);

}

static void

mm_session_close(Session *s)

{

debug3("%s: session %d pid %ld", __func__, s->self, (long)s->pid);

debug3("%s: session %d pid %d", __func__, s->self, s->pid);

if (s->ttyfd != -1) {

debug3("%s: tty %s ptyfd %d", __func__, s->tty, s->ptyfd);

fatal_remove_cleanup(session_pty_cleanup2, (void *)s);

Line 1174

Line 1153

}

buffer_clear(m);

buffer_put_int(m, allowed);

buffer_put_int(m, forced_command != NULL);

/* clear temporarily storage (used by generate challenge) */

monitor_reset_key_state();

Line 1189

Line 1167

key_blob = blob;

key_bloblen = blen;

key_blobtype = MM_RSAUSERKEY;

}

if (key != NULL)

key_free(key);

}

mm_append_debug(m);

Line 1232

Line 1209

mm_request_send(socket, MONITOR_ANS_RSACHALLENGE, m);

monitor_permit(mon_dispatch, MONITOR_REQ_RSARESPONSE, 1);

xfree(blob);

key_free(key);

return (0);

}

Line 1265

Line 1239

fatal("%s: received bad response to challenge", __func__);

success = auth_rsa_verify_response(key, ssh1_challenge, response);

xfree(blob);

key_free(key);

xfree(response);

Line 1283

Line 1256

return (success);

}

#ifdef KRB4

int

mm_answer_krb4(int socket, Buffer *m)

{

KTEXT_ST auth, reply;

char *client, *p;

int success;

u_int alen;

reply.length = auth.length = 0;

p = buffer_get_string(m, &alen);

if (alen >= MAX_KTXT_LEN)

fatal("%s: auth too large", __func__);

memcpy(auth.dat, p, alen);

auth.length = alen;

memset(p, 0, alen);

xfree(p);

success = options.kerberos_authentication &&

authctxt->valid &&

auth_krb4(authctxt, &auth, &client, &reply);

memset(auth.dat, 0, alen);

buffer_clear(m);

buffer_put_int(m, success);

if (success) {

buffer_put_cstring(m, client);

buffer_put_string(m, reply.dat, reply.length);

if (client)

xfree(client);

if (reply.length)

memset(reply.dat, 0, reply.length);

}

debug3("%s: sending result %d", __func__, success);

mm_request_send(socket, MONITOR_ANS_KRB4, m);

auth_method = "kerberos";

/* Causes monitor loop to terminate if authenticated */

return (success);

}

#endif

#ifdef KRB5

int

mm_answer_krb5(int socket, Buffer *m)

{

krb5_data tkt, reply;

char *client_user;

u_int len;

int success;

/* use temporary var to avoid size issues on 64bit arch */

tkt.data = buffer_get_string(m, &len);

tkt.length = len;

success = options.kerberos_authentication &&

authctxt->valid &&

auth_krb5(authctxt, &tkt, &client_user, &reply);

if (tkt.length)

xfree(tkt.data);

buffer_clear(m);

buffer_put_int(m, success);

if (success) {

buffer_put_cstring(m, client_user);

buffer_put_string(m, reply.data, reply.length);

if (client_user)

xfree(client_user);

if (reply.length)

xfree(reply.data);

}

mm_request_send(socket, MONITOR_ANS_KRB5, m);

return success;

}

#endif

int

mm_answer_term(int socket, Buffer *req)

{

extern struct monitor *pmonitor;

Line 1367

Line 1423

(memcmp(kex->session_id, session_id2, session_id2_len) != 0))

fatal("mm_get_get: internal error: bad session id");

kex->we_need = buffer_get_int(m);

kex->kex[KEX_DH_GRP1_SHA1] = kexdh_server;

kex->kex[KEX_DH_GEX_SHA1] = kexgex_server;

kex->server = 1;

kex->hostkey_type = buffer_get_int(m);

kex->kex_type = buffer_get_int(m);

Line 1398

Line 1452

Buffer m;

u_char *blob, *p;

u_int bloblen, plen;

u_int32_t seqnr, packets;

u_int64_t blocks;

debug3("%s: Waiting for new keys", __func__);

Line 1429

Line 1481

xfree(blob);

/* Now get sequence numbers for the packets */

seqnr = buffer_get_int(&m);

packet_set_seqnr(MODE_OUT, buffer_get_int(&m));

blocks = buffer_get_int64(&m);

packet_set_seqnr(MODE_IN, buffer_get_int(&m));

packets = buffer_get_int(&m);

packet_set_state(MODE_OUT, seqnr, blocks, packets);

seqnr = buffer_get_int(&m);

blocks = buffer_get_int64(&m);

packets = buffer_get_int(&m);

packet_set_state(MODE_IN, seqnr, blocks, packets);

skip:

/* Get the key context */

Line 1552

Line 1598

mon->m_recvfd = pair[0];

mon->m_sendfd = pair[1];

}

#ifdef GSSAPI

int

mm_answer_gss_setup_ctx(int socket, Buffer *m)

{

gss_OID_desc oid;

OM_uint32 major;

u_int len;

oid.elements = buffer_get_string(m, &len);

oid.length = len;

major = ssh_gssapi_server_ctx(&gsscontext, &oid);

xfree(oid.elements);

buffer_clear(m);

buffer_put_int(m, major);

mm_request_send(socket,MONITOR_ANS_GSSSETUP, m);

/* Now we have a context, enable the step */

monitor_permit(mon_dispatch, MONITOR_REQ_GSSSTEP, 1);

return (0);

}

int

mm_answer_gss_accept_ctx(int socket, Buffer *m)

{

gss_buffer_desc in;

gss_buffer_desc out = GSS_C_EMPTY_BUFFER;

OM_uint32 major,minor;

OM_uint32 flags = 0; /* GSI needs this */

u_int len;

in.value = buffer_get_string(m, &len);

in.length = len;

major = ssh_gssapi_accept_ctx(gsscontext, &in, &out, &flags);

xfree(in.value);

buffer_clear(m);

buffer_put_int(m, major);

buffer_put_string(m, out.value, out.length);

buffer_put_int(m, flags);

mm_request_send(socket, MONITOR_ANS_GSSSTEP, m);

gss_release_buffer(&minor, &out);

/* Complete - now we can do signing */

if (major==GSS_S_COMPLETE) {

monitor_permit(mon_dispatch, MONITOR_REQ_GSSSTEP, 0);

monitor_permit(mon_dispatch, MONITOR_REQ_GSSUSEROK, 1);

}

return (0);

}

int

mm_answer_gss_userok(int socket, Buffer *m)

{

int authenticated;

authenticated = authctxt->valid && ssh_gssapi_userok(authctxt->user);

buffer_clear(m);

buffer_put_int(m, authenticated);

debug3("%s: sending result %d", __func__, authenticated);

mm_request_send(socket, MONITOR_ANS_GSSUSEROK, m);

auth_method="gssapi";

/* Monitor loop will terminate if authenticated */

return (authenticated);

}

#endif /* GSSAPI */