Return to monitor_wrap.c CVS log

Up to [local] / src / usr.bin / ssh

Annotation of src/usr.bin/ssh/monitor_wrap.c, Revision 1.93

1.93    ! djm         1: /* $OpenBSD: monitor_wrap.c,v 1.92 2017/05/30 14:10:53 markus Exp $ */
1.1       provos      2: /*
                      3:  * Copyright 2002 Niels Provos <provos@citi.umich.edu>
                      4:  * Copyright 2002 Markus Friedl <markus@openbsd.org>
                      5:  * All rights reserved.
                      6:  *
                      7:  * Redistribution and use in source and binary forms, with or without
                      8:  * modification, are permitted provided that the following conditions
                      9:  * are met:
                     10:  * 1. Redistributions of source code must retain the above copyright
                     11:  *    notice, this list of conditions and the following disclaimer.
                     12:  * 2. Redistributions in binary form must reproduce the above copyright
                     13:  *    notice, this list of conditions and the following disclaimer in the
                     14:  *    documentation and/or other materials provided with the distribution.
                     15:  *
                     16:  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
                     17:  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
                     18:  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
                     19:  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
                     20:  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
                     21:  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
                     22:  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
                     23:  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
                     24:  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
                     25:  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
                     26:  */
                     27:
1.46      stevesk    28: #include <sys/types.h>
1.51      dtucker    29: #include <sys/uio.h>
1.61      djm        30: #include <sys/queue.h>
1.46      stevesk    31:
1.47      stevesk    32: #include <errno.h>
1.46      stevesk    33: #include <pwd.h>
1.50      deraadt    34: #include <signal.h>
1.49      stevesk    35: #include <stdio.h>
1.48      stevesk    36: #include <string.h>
1.51      dtucker    37: #include <unistd.h>
1.68      dtucker    38:
1.80      markus     39: #ifdef WITH_OPENSSL
1.68      dtucker    40: #include <openssl/bn.h>
                     41: #include <openssl/dh.h>
1.80      markus     42: #endif
1.1       provos     43:
1.50      deraadt    44: #include "xmalloc.h"
1.1       provos     45: #include "ssh.h"
1.80      markus     46: #ifdef WITH_OPENSSL
1.1       provos     47: #include "dh.h"
1.80      markus     48: #endif
1.50      deraadt    49: #include "buffer.h"
                     50: #include "key.h"
                     51: #include "cipher.h"
1.1       provos     52: #include "kex.h"
1.50      deraadt    53: #include "hostfile.h"
1.1       provos     54: #include "auth.h"
1.22      markus     55: #include "auth-options.h"
1.1       provos     56: #include "packet.h"
                     57: #include "mac.h"
                     58: #include "log.h"
1.54      miod       59: #include <zlib.h>
1.1       provos     60: #include "monitor.h"
1.50      deraadt    61: #ifdef GSSAPI
                     62: #include "ssh-gss.h"
                     63: #endif
1.1       provos     64: #include "monitor_wrap.h"
                     65: #include "atomicio.h"
                     66: #include "monitor_fdpass.h"
1.45      djm        67: #include "misc.h"
1.70      djm        68: #include "uuencode.h"
1.1       provos     69:
                     70: #include "channels.h"
                     71: #include "session.h"
1.55      dtucker    72: #include "servconf.h"
1.29      markus     73:
1.82      markus     74: #include "ssherr.h"
                     75:
1.1       provos     76: /* Imports */
                     77: extern z_stream incoming_stream;
                     78: extern z_stream outgoing_stream;
1.7       mouring    79: extern struct monitor *pmonitor;
1.39      dtucker    80: extern Buffer loginmsg;
1.55      dtucker    81: extern ServerOptions options;
1.73      djm        82:
                     83: void
                     84: mm_log_handler(LogLevel level, const char *msg, void *ctx)
                     85: {
                     86:        Buffer log_msg;
                     87:        struct monitor *mon = (struct monitor *)ctx;
                     88:
                     89:        if (mon->m_log_sendfd == -1)
                     90:                fatal("%s: no log channel", __func__);
                     91:
                     92:        buffer_init(&log_msg);
                     93:        /*
                     94:         * Placeholder for packet length. Will be filled in with the actual
                     95:         * packet length once the packet has been constucted. This saves
                     96:         * fragile math.
                     97:         */
                     98:        buffer_put_int(&log_msg, 0);
                     99:
                    100:        buffer_put_int(&log_msg, level);
                    101:        buffer_put_cstring(&log_msg, msg);
                    102:        put_u32(buffer_ptr(&log_msg), buffer_len(&log_msg) - 4);
                    103:        if (atomicio(vwrite, mon->m_log_sendfd, buffer_ptr(&log_msg),
                    104:            buffer_len(&log_msg)) != buffer_len(&log_msg))
                    105:                fatal("%s: write: %s", __func__, strerror(errno));
                    106:        buffer_free(&log_msg);
                    107: }
1.1       provos    108:
1.32      markus    109: int
                    110: mm_is_monitor(void)
                    111: {
                    112:        /*
                    113:         * m_pid is only set in the privileged part, and
                    114:         * points to the unprivileged child.
                    115:         */
1.34      markus    116:        return (pmonitor && pmonitor->m_pid > 0);
1.32      markus    117: }
                    118:
1.1       provos    119: void
1.36      avsm      120: mm_request_send(int sock, enum monitor_reqtype type, Buffer *m)
1.1       provos    121: {
1.13      deraadt   122:        u_int mlen = buffer_len(m);
1.1       provos    123:        u_char buf[5];
                    124:
1.8       markus    125:        debug3("%s entering: type %d", __func__, type);
1.1       provos    126:
1.45      djm       127:        put_u32(buf, mlen + 1);
1.10      deraadt   128:        buf[4] = (u_char) type;         /* 1st byte of payload is mesg-type */
1.36      avsm      129:        if (atomicio(vwrite, sock, buf, sizeof(buf)) != sizeof(buf))
1.40      avsm      130:                fatal("%s: write: %s", __func__, strerror(errno));
1.36      avsm      131:        if (atomicio(vwrite, sock, buffer_ptr(m), mlen) != mlen)
1.40      avsm      132:                fatal("%s: write: %s", __func__, strerror(errno));
1.1       provos    133: }
                    134:
                    135: void
1.36      avsm      136: mm_request_receive(int sock, Buffer *m)
1.1       provos    137: {
                    138:        u_char buf[4];
1.13      deraadt   139:        u_int msg_len;
1.1       provos    140:
1.8       markus    141:        debug3("%s entering", __func__);
1.1       provos    142:
1.40      avsm      143:        if (atomicio(read, sock, buf, sizeof(buf)) != sizeof(buf)) {
                    144:                if (errno == EPIPE)
1.32      markus    145:                        cleanup_exit(255);
1.40      avsm      146:                fatal("%s: read: %s", __func__, strerror(errno));
1.1       provos    147:        }
1.45      djm       148:        msg_len = get_u32(buf);
1.1       provos    149:        if (msg_len > 256 * 1024)
1.8       markus    150:                fatal("%s: read: bad msg_len %d", __func__, msg_len);
1.1       provos    151:        buffer_clear(m);
                    152:        buffer_append_space(m, msg_len);
1.40      avsm      153:        if (atomicio(read, sock, buffer_ptr(m), msg_len) != msg_len)
                    154:                fatal("%s: read: %s", __func__, strerror(errno));
1.1       provos    155: }
                    156:
                    157: void
1.36      avsm      158: mm_request_receive_expect(int sock, enum monitor_reqtype type, Buffer *m)
1.1       provos    159: {
                    160:        u_char rtype;
                    161:
1.8       markus    162:        debug3("%s entering: type %d", __func__, type);
1.1       provos    163:
1.36      avsm      164:        mm_request_receive(sock, m);
1.1       provos    165:        rtype = buffer_get_char(m);
                    166:        if (rtype != type)
1.8       markus    167:                fatal("%s: read: rtype %d != type %d", __func__,
1.1       provos    168:                    rtype, type);
                    169: }
                    170:
1.80      markus    171: #ifdef WITH_OPENSSL
1.1       provos    172: DH *
                    173: mm_choose_dh(int min, int nbits, int max)
                    174: {
                    175:        BIGNUM *p, *g;
                    176:        int success = 0;
                    177:        Buffer m;
                    178:
                    179:        buffer_init(&m);
                    180:        buffer_put_int(&m, min);
                    181:        buffer_put_int(&m, nbits);
                    182:        buffer_put_int(&m, max);
                    183:
1.7       mouring   184:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_MODULI, &m);
1.1       provos    185:
1.8       markus    186:        debug3("%s: waiting for MONITOR_ANS_MODULI", __func__);
1.7       mouring   187:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_MODULI, &m);
1.1       provos    188:
                    189:        success = buffer_get_char(&m);
                    190:        if (success == 0)
1.8       markus    191:                fatal("%s: MONITOR_ANS_MODULI failed", __func__);
1.1       provos    192:
                    193:        if ((p = BN_new()) == NULL)
1.8       markus    194:                fatal("%s: BN_new failed", __func__);
1.3       markus    195:        if ((g = BN_new()) == NULL)
1.8       markus    196:                fatal("%s: BN_new failed", __func__);
1.1       provos    197:        buffer_get_bignum2(&m, p);
                    198:        buffer_get_bignum2(&m, g);
                    199:
1.8       markus    200:        debug3("%s: remaining %d", __func__, buffer_len(&m));
1.1       provos    201:        buffer_free(&m);
                    202:
                    203:        return (dh_new_group(g, p));
                    204: }
1.80      markus    205: #endif
1.1       provos    206:
                    207: int
1.91      markus    208: mm_key_sign(struct sshkey *key, u_char **sigp, u_int *lenp,
1.86      markus    209:     const u_char *data, u_int datalen, const char *hostkey_alg)
1.1       provos    210: {
1.83      markus    211:        struct kex *kex = *pmonitor->m_pkex;
1.1       provos    212:        Buffer m;
                    213:
1.8       markus    214:        debug3("%s entering", __func__);
1.1       provos    215:
                    216:        buffer_init(&m);
1.84      djm       217:        buffer_put_int(&m, kex->host_key_index(key, 0, active_state));
1.1       provos    218:        buffer_put_string(&m, data, datalen);
1.86      markus    219:        buffer_put_cstring(&m, hostkey_alg);
1.1       provos    220:
1.7       mouring   221:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_SIGN, &m);
1.1       provos    222:
1.8       markus    223:        debug3("%s: waiting for MONITOR_ANS_SIGN", __func__);
1.7       mouring   224:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_SIGN, &m);
1.1       provos    225:        *sigp  = buffer_get_string(&m, lenp);
                    226:        buffer_free(&m);
                    227:
                    228:        return (0);
                    229: }
                    230:
                    231: struct passwd *
1.37      dtucker   232: mm_getpwnamallow(const char *username)
1.1       provos    233: {
1.93    ! djm       234:        struct ssh *ssh = active_state;         /* XXX */
1.1       provos    235:        Buffer m;
                    236:        struct passwd *pw;
1.72      djm       237:        u_int len, i;
1.55      dtucker   238:        ServerOptions *newopts;
1.1       provos    239:
1.8       markus    240:        debug3("%s entering", __func__);
1.1       provos    241:
                    242:        buffer_init(&m);
1.37      dtucker   243:        buffer_put_cstring(&m, username);
1.1       provos    244:
1.7       mouring   245:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PWNAM, &m);
1.1       provos    246:
1.8       markus    247:        debug3("%s: waiting for MONITOR_ANS_PWNAM", __func__);
1.7       mouring   248:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PWNAM, &m);
1.1       provos    249:
                    250:        if (buffer_get_char(&m) == 0) {
1.60      dtucker   251:                pw = NULL;
                    252:                goto out;
1.1       provos    253:        }
1.55      dtucker   254:        pw = buffer_get_string(&m, &len);
                    255:        if (len != sizeof(struct passwd))
1.8       markus    256:                fatal("%s: struct passwd size mismatch", __func__);
1.1       provos    257:        pw->pw_name = buffer_get_string(&m, NULL);
                    258:        pw->pw_passwd = buffer_get_string(&m, NULL);
                    259:        pw->pw_gecos = buffer_get_string(&m, NULL);
                    260:        pw->pw_class = buffer_get_string(&m, NULL);
                    261:        pw->pw_dir = buffer_get_string(&m, NULL);
                    262:        pw->pw_shell = buffer_get_string(&m, NULL);
1.55      dtucker   263:
1.60      dtucker   264: out:
1.55      dtucker   265:        /* copy options block as a Match directive may have changed some */
                    266:        newopts = buffer_get_string(&m, &len);
                    267:        if (len != sizeof(*newopts))
                    268:                fatal("%s: option block size mismatch", __func__);
1.71      djm       269:
                    270: #define M_CP_STROPT(x) do { \
                    271:                if (newopts->x != NULL) \
                    272:                        newopts->x = buffer_get_string(&m, NULL); \
                    273:        } while (0)
1.72      djm       274: #define M_CP_STRARRAYOPT(x, nx) do { \
                    275:                for (i = 0; i < newopts->nx; i++) \
                    276:                        newopts->x[i] = buffer_get_string(&m, NULL); \
                    277:        } while (0)
1.71      djm       278:        /* See comment in servconf.h */
                    279:        COPY_MATCH_STRING_OPTS();
                    280: #undef M_CP_STROPT
1.72      djm       281: #undef M_CP_STRARRAYOPT
1.71      djm       282:
1.55      dtucker   283:        copy_set_server_options(&options, newopts, 1);
1.90      djm       284:        log_change_level(options.log_level);
1.93    ! djm       285:        process_permitopen(ssh, &options);
1.76      djm       286:        free(newopts);
1.55      dtucker   287:
1.1       provos    288:        buffer_free(&m);
                    289:
                    290:        return (pw);
1.6       djm       291: }
                    292:
1.33      markus    293: char *
                    294: mm_auth2_read_banner(void)
1.6       djm       295: {
                    296:        Buffer m;
                    297:        char *banner;
                    298:
1.8       markus    299:        debug3("%s entering", __func__);
1.6       djm       300:
                    301:        buffer_init(&m);
1.7       mouring   302:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUTH2_READ_BANNER, &m);
1.6       djm       303:        buffer_clear(&m);
                    304:
1.33      markus    305:        mm_request_receive_expect(pmonitor->m_recvfd,
                    306:            MONITOR_ANS_AUTH2_READ_BANNER, &m);
1.6       djm       307:        banner = buffer_get_string(&m, NULL);
                    308:        buffer_free(&m);
1.10      deraadt   309:
1.33      markus    310:        /* treat empty banner as missing banner */
                    311:        if (strlen(banner) == 0) {
1.76      djm       312:                free(banner);
1.33      markus    313:                banner = NULL;
                    314:        }
1.6       djm       315:        return (banner);
1.1       provos    316: }
                    317:
                    318: /* Inform the privileged process about service and style */
                    319:
                    320: void
                    321: mm_inform_authserv(char *service, char *style)
                    322: {
                    323:        Buffer m;
                    324:
1.8       markus    325:        debug3("%s entering", __func__);
1.1       provos    326:
                    327:        buffer_init(&m);
                    328:        buffer_put_cstring(&m, service);
                    329:        buffer_put_cstring(&m, style ? style : "");
                    330:
1.7       mouring   331:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUTHSERV, &m);
1.1       provos    332:
                    333:        buffer_free(&m);
                    334: }
                    335:
                    336: /* Do the password authentication */
                    337: int
                    338: mm_auth_password(Authctxt *authctxt, char *password)
                    339: {
                    340:        Buffer m;
                    341:        int authenticated = 0;
                    342:
1.8       markus    343:        debug3("%s entering", __func__);
1.1       provos    344:
                    345:        buffer_init(&m);
                    346:        buffer_put_cstring(&m, password);
1.7       mouring   347:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUTHPASSWORD, &m);
1.1       provos    348:
1.8       markus    349:        debug3("%s: waiting for MONITOR_ANS_AUTHPASSWORD", __func__);
1.7       mouring   350:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_AUTHPASSWORD, &m);
1.1       provos    351:
                    352:        authenticated = buffer_get_int(&m);
                    353:
                    354:        buffer_free(&m);
                    355:
1.3       markus    356:        debug3("%s: user %sauthenticated",
1.8       markus    357:            __func__, authenticated ? "" : "not ");
1.1       provos    358:        return (authenticated);
                    359: }
                    360:
                    361: int
1.91      markus    362: mm_user_key_allowed(struct passwd *pw, struct sshkey *key,
                    363:     int pubkey_auth_attempt)
1.1       provos    364: {
1.85      djm       365:        return (mm_key_allowed(MM_USERKEY, NULL, NULL, key,
                    366:            pubkey_auth_attempt));
1.1       provos    367: }
                    368:
                    369: int
1.88      djm       370: mm_hostbased_key_allowed(struct passwd *pw, const char *user, const char *host,
1.91      markus    371:     struct sshkey *key)
1.1       provos    372: {
1.85      djm       373:        return (mm_key_allowed(MM_HOSTKEY, user, host, key, 0));
1.1       provos    374: }
                    375:
                    376: int
1.88      djm       377: mm_key_allowed(enum mm_keytype type, const char *user, const char *host,
1.91      markus    378:     struct sshkey *key, int pubkey_auth_attempt)
1.1       provos    379: {
                    380:        Buffer m;
                    381:        u_char *blob;
                    382:        u_int len;
1.22      markus    383:        int allowed = 0, have_forced = 0;
1.1       provos    384:
1.8       markus    385:        debug3("%s entering", __func__);
1.1       provos    386:
                    387:        /* Convert the key to a blob and the pass it over */
                    388:        if (!key_to_blob(key, &blob, &len))
                    389:                return (0);
                    390:
                    391:        buffer_init(&m);
                    392:        buffer_put_int(&m, type);
                    393:        buffer_put_cstring(&m, user ? user : "");
                    394:        buffer_put_cstring(&m, host ? host : "");
                    395:        buffer_put_string(&m, blob, len);
1.85      djm       396:        buffer_put_int(&m, pubkey_auth_attempt);
1.76      djm       397:        free(blob);
1.1       provos    398:
1.7       mouring   399:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_KEYALLOWED, &m);
1.1       provos    400:
1.8       markus    401:        debug3("%s: waiting for MONITOR_ANS_KEYALLOWED", __func__);
1.7       mouring   402:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_KEYALLOWED, &m);
1.1       provos    403:
                    404:        allowed = buffer_get_int(&m);
                    405:
1.22      markus    406:        /* fake forced command */
                    407:        auth_clear_options();
                    408:        have_forced = buffer_get_int(&m);
                    409:        forced_command = have_forced ? xstrdup("true") : NULL;
                    410:
1.1       provos    411:        buffer_free(&m);
                    412:
                    413:        return (allowed);
                    414: }
                    415:
1.3       markus    416: /*
1.1       provos    417:  * This key verify needs to send the key type along, because the
                    418:  * privileged parent makes the decision if the key is allowed
                    419:  * for authentication.
                    420:  */
                    421:
                    422: int
1.92      markus    423: mm_sshkey_verify(const struct sshkey *key, const u_char *sig, size_t siglen,
                    424:     const u_char *data, size_t datalen, u_int compat)
1.1       provos    425: {
                    426:        Buffer m;
                    427:        u_char *blob;
                    428:        u_int len;
1.92      markus    429:        u_int encoded_ret = 0;
1.1       provos    430:
1.8       markus    431:        debug3("%s entering", __func__);
1.1       provos    432:
                    433:        /* Convert the key to a blob and the pass it over */
                    434:        if (!key_to_blob(key, &blob, &len))
                    435:                return (0);
                    436:
                    437:        buffer_init(&m);
                    438:        buffer_put_string(&m, blob, len);
                    439:        buffer_put_string(&m, sig, siglen);
                    440:        buffer_put_string(&m, data, datalen);
1.76      djm       441:        free(blob);
1.1       provos    442:
1.7       mouring   443:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_KEYVERIFY, &m);
1.1       provos    444:
1.8       markus    445:        debug3("%s: waiting for MONITOR_ANS_KEYVERIFY", __func__);
1.7       mouring   446:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_KEYVERIFY, &m);
1.1       provos    447:
1.92      markus    448:        encoded_ret = buffer_get_int(&m);
1.1       provos    449:
                    450:        buffer_free(&m);
                    451:
1.92      markus    452:        if (encoded_ret != 0)
                    453:                return SSH_ERR_SIGNATURE_INVALID;
                    454:        return 0;
1.1       provos    455: }
                    456:
                    457: void
1.36      avsm      458: mm_send_keystate(struct monitor *monitor)
1.1       provos    459: {
1.82      markus    460:        struct ssh *ssh = active_state;         /* XXX */
                    461:        struct sshbuf *m;
                    462:        int r;
                    463:
                    464:        if ((m = sshbuf_new()) == NULL)
                    465:                fatal("%s: sshbuf_new failed", __func__);
                    466:        if ((r = ssh_packet_get_state(ssh, m)) != 0)
                    467:                fatal("%s: get_state failed: %s",
                    468:                    __func__, ssh_err(r));
                    469:        mm_request_send(monitor->m_recvfd, MONITOR_REQ_KEYEXPORT, m);
1.8       markus    470:        debug3("%s: Finished sending state", __func__);
1.82      markus    471:        sshbuf_free(m);
1.1       provos    472: }
                    473:
                    474: int
1.42      deraadt   475: mm_pty_allocate(int *ptyfd, int *ttyfd, char *namebuf, size_t namebuflen)
1.1       provos    476: {
                    477:        Buffer m;
1.39      dtucker   478:        char *p, *msg;
1.62      djm       479:        int success = 0, tmp1 = -1, tmp2 = -1;
                    480:
                    481:        /* Kludge: ensure there are fds free to receive the pty/tty */
                    482:        if ((tmp1 = dup(pmonitor->m_recvfd)) == -1 ||
                    483:            (tmp2 = dup(pmonitor->m_recvfd)) == -1) {
                    484:                error("%s: cannot allocate fds for pty", __func__);
                    485:                if (tmp1 > 0)
                    486:                        close(tmp1);
                    487:                if (tmp2 > 0)
                    488:                        close(tmp2);
                    489:                return 0;
                    490:        }
                    491:        close(tmp1);
                    492:        close(tmp2);
1.1       provos    493:
                    494:        buffer_init(&m);
1.7       mouring   495:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PTY, &m);
1.1       provos    496:
1.8       markus    497:        debug3("%s: waiting for MONITOR_ANS_PTY", __func__);
1.7       mouring   498:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PTY, &m);
1.1       provos    499:
                    500:        success = buffer_get_int(&m);
                    501:        if (success == 0) {
1.8       markus    502:                debug3("%s: pty alloc failed", __func__);
1.1       provos    503:                buffer_free(&m);
                    504:                return (0);
                    505:        }
                    506:        p = buffer_get_string(&m, NULL);
1.39      dtucker   507:        msg = buffer_get_string(&m, NULL);
1.1       provos    508:        buffer_free(&m);
                    509:
                    510:        strlcpy(namebuf, p, namebuflen); /* Possible truncation */
1.76      djm       511:        free(p);
1.39      dtucker   512:
                    513:        buffer_append(&loginmsg, msg, strlen(msg));
1.76      djm       514:        free(msg);
1.1       provos    515:
1.58      djm       516:        if ((*ptyfd = mm_receive_fd(pmonitor->m_recvfd)) == -1 ||
                    517:            (*ttyfd = mm_receive_fd(pmonitor->m_recvfd)) == -1)
                    518:                fatal("%s: receive fds failed", __func__);
1.1       provos    519:
                    520:        /* Success */
                    521:        return (1);
                    522: }
                    523:
                    524: void
1.32      markus    525: mm_session_pty_cleanup2(Session *s)
1.1       provos    526: {
                    527:        Buffer m;
                    528:
                    529:        if (s->ttyfd == -1)
                    530:                return;
                    531:        buffer_init(&m);
                    532:        buffer_put_cstring(&m, s->tty);
1.7       mouring   533:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PTYCLEANUP, &m);
1.1       provos    534:        buffer_free(&m);
1.3       markus    535:
1.1       provos    536:        /* closed dup'ed master */
1.62      djm       537:        if (s->ptymaster != -1 && close(s->ptymaster) < 0)
                    538:                error("close(s->ptymaster/%d): %s",
                    539:                    s->ptymaster, strerror(errno));
1.1       provos    540:
                    541:        /* unlink pty from session */
                    542:        s->ttyfd = -1;
                    543: }
                    544:
                    545: /* Request process termination */
                    546:
                    547: void
                    548: mm_terminate(void)
                    549: {
                    550:        Buffer m;
                    551:
                    552:        buffer_init(&m);
1.7       mouring   553:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_TERM, &m);
1.1       provos    554:        buffer_free(&m);
                    555: }
                    556:
1.2       markus    557: static void
1.1       provos    558: mm_chall_setup(char **name, char **infotxt, u_int *numprompts,
                    559:     char ***prompts, u_int **echo_on)
                    560: {
1.10      deraadt   561:        *name = xstrdup("");
                    562:        *infotxt = xstrdup("");
1.1       provos    563:        *numprompts = 1;
1.43      djm       564:        *prompts = xcalloc(*numprompts, sizeof(char *));
                    565:        *echo_on = xcalloc(*numprompts, sizeof(u_int));
1.1       provos    566:        (*echo_on)[0] = 0;
                    567: }
                    568:
                    569: int
                    570: mm_bsdauth_query(void *ctx, char **name, char **infotxt,
                    571:    u_int *numprompts, char ***prompts, u_int **echo_on)
                    572: {
                    573:        Buffer m;
1.21      markus    574:        u_int success;
1.1       provos    575:        char *challenge;
                    576:
1.8       markus    577:        debug3("%s: entering", __func__);
1.1       provos    578:
                    579:        buffer_init(&m);
1.7       mouring   580:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_BSDAUTHQUERY, &m);
1.1       provos    581:
1.7       mouring   582:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_BSDAUTHQUERY,
1.1       provos    583:            &m);
1.21      markus    584:        success = buffer_get_int(&m);
                    585:        if (success == 0) {
1.8       markus    586:                debug3("%s: no challenge", __func__);
1.1       provos    587:                buffer_free(&m);
                    588:                return (-1);
                    589:        }
                    590:
                    591:        /* Get the challenge, and format the response */
                    592:        challenge  = buffer_get_string(&m, NULL);
                    593:        buffer_free(&m);
                    594:
                    595:        mm_chall_setup(name, infotxt, numprompts, prompts, echo_on);
                    596:        (*prompts)[0] = challenge;
                    597:
1.8       markus    598:        debug3("%s: received challenge: %s", __func__, challenge);
1.1       provos    599:
                    600:        return (0);
                    601: }
                    602:
                    603: int
                    604: mm_bsdauth_respond(void *ctx, u_int numresponses, char **responses)
                    605: {
                    606:        Buffer m;
                    607:        int authok;
                    608:
1.8       markus    609:        debug3("%s: entering", __func__);
1.1       provos    610:        if (numresponses != 1)
                    611:                return (-1);
                    612:
                    613:        buffer_init(&m);
                    614:        buffer_put_cstring(&m, responses[0]);
1.7       mouring   615:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_BSDAUTHRESPOND, &m);
1.1       provos    616:
1.7       mouring   617:        mm_request_receive_expect(pmonitor->m_recvfd,
1.1       provos    618:            MONITOR_ANS_BSDAUTHRESPOND, &m);
                    619:
                    620:        authok = buffer_get_int(&m);
                    621:        buffer_free(&m);
                    622:
                    623:        return ((authok == 0) ? -1 : 0);
                    624: }
1.29      markus    625:
                    626: #ifdef GSSAPI
                    627: OM_uint32
1.36      avsm      628: mm_ssh_gssapi_server_ctx(Gssctxt **ctx, gss_OID goid)
1.29      markus    629: {
                    630:        Buffer m;
                    631:        OM_uint32 major;
                    632:
                    633:        /* Client doesn't get to see the context */
                    634:        *ctx = NULL;
                    635:
                    636:        buffer_init(&m);
1.36      avsm      637:        buffer_put_string(&m, goid->elements, goid->length);
1.29      markus    638:
                    639:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSSETUP, &m);
                    640:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSSETUP, &m);
                    641:
                    642:        major = buffer_get_int(&m);
                    643:
                    644:        buffer_free(&m);
                    645:        return (major);
                    646: }
                    647:
                    648: OM_uint32
                    649: mm_ssh_gssapi_accept_ctx(Gssctxt *ctx, gss_buffer_desc *in,
                    650:     gss_buffer_desc *out, OM_uint32 *flags)
                    651: {
                    652:        Buffer m;
                    653:        OM_uint32 major;
1.30      deraadt   654:        u_int len;
1.29      markus    655:
                    656:        buffer_init(&m);
                    657:        buffer_put_string(&m, in->value, in->length);
                    658:
                    659:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSSTEP, &m);
                    660:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSSTEP, &m);
                    661:
                    662:        major = buffer_get_int(&m);
1.30      deraadt   663:        out->value = buffer_get_string(&m, &len);
                    664:        out->length = len;
1.29      markus    665:        if (flags)
                    666:                *flags = buffer_get_int(&m);
                    667:
                    668:        buffer_free(&m);
                    669:
                    670:        return (major);
1.35      markus    671: }
                    672:
                    673: OM_uint32
                    674: mm_ssh_gssapi_checkmic(Gssctxt *ctx, gss_buffer_t gssbuf, gss_buffer_t gssmic)
                    675: {
                    676:        Buffer m;
                    677:        OM_uint32 major;
                    678:
                    679:        buffer_init(&m);
                    680:        buffer_put_string(&m, gssbuf->value, gssbuf->length);
                    681:        buffer_put_string(&m, gssmic->value, gssmic->length);
                    682:
                    683:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSCHECKMIC, &m);
                    684:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSCHECKMIC,
                    685:            &m);
                    686:
                    687:        major = buffer_get_int(&m);
                    688:        buffer_free(&m);
                    689:        return(major);
1.29      markus    690: }
                    691:
                    692: int
                    693: mm_ssh_gssapi_userok(char *user)
                    694: {
                    695:        Buffer m;
                    696:        int authenticated = 0;
                    697:
                    698:        buffer_init(&m);
                    699:
                    700:        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSUSEROK, &m);
                    701:        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSUSEROK,
                    702:                                  &m);
                    703:
                    704:        authenticated = buffer_get_int(&m);
                    705:
                    706:        buffer_free(&m);
                    707:        debug3("%s: user %sauthenticated",__func__, authenticated ? "" : "not ");
                    708:        return (authenticated);
                    709: }
                    710: #endif /* GSSAPI */
1.64      djm       711: