src/usr.bin/ssh/readconf.c - diff

Return to readconf.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/readconf.c between version 1.76.2.3 and 1.77

version 1.76.2.3, 2002/03/09 00:20:44

version 1.77, 2001/04/30 11:18:51

Line 96

oForwardAgent, oForwardX11, oGatewayPorts, oRhostsAuthentication,

oPasswordAuthentication, oRSAAuthentication, oFallBackToRsh, oUseRsh,

oChallengeResponseAuthentication, oXAuthLocation,

#if defined(KRB4) || defined(KRB5)

#ifdef KRB4

oKerberosAuthentication,

#endif

#endif /* KRB4 */

#if defined(AFS) || defined(KRB5)

oKerberosTgtPassing,

#endif

#ifdef AFS

oAFSTokenPassing,

oKerberosTgtPassing, oAFSTokenPassing,

#endif

oIdentityFile, oHostName, oPort, oCipher, oRemoteForward, oLocalForward,

oUser, oHost, oEscapeChar, oRhostsRSAAuthentication, oProxyCommand,

Line 114

Line 111

oGlobalKnownHostsFile2, oUserKnownHostsFile2, oPubkeyAuthentication,

oKbdInteractiveAuthentication, oKbdInteractiveDevices, oHostKeyAlias,

oDynamicForward, oPreferredAuthentications, oHostbasedAuthentication,

oHostKeyAlgorithms, oBindAddress, oSmartcardDevice,

oHostKeyAlgorithms, oBindAddress

oClearAllForwardings, oNoHostAuthenticationForLocalhost

} OpCodes;

/* Textual representations of the tokens. */

Line 141

Line 137

{ "challengeresponseauthentication", oChallengeResponseAuthentication },

{ "skeyauthentication", oChallengeResponseAuthentication }, /* alias */

{ "tisauthentication", oChallengeResponseAuthentication }, /* alias */

#if defined(KRB4) || defined(KRB5)

#ifdef KRB4

{ "kerberosauthentication", oKerberosAuthentication },

#endif

#endif /* KRB4 */

#if defined(AFS) || defined(KRB5)

{ "kerberostgtpassing", oKerberosTgtPassing },

#endif

#ifdef AFS

{ "kerberostgtpassing", oKerberosTgtPassing },

{ "afstokenpassing", oAFSTokenPassing },

#endif

{ "fallbacktorsh", oFallBackToRsh },

Line 168

Line 162

{ "host", oHost },

{ "escapechar", oEscapeChar },

{ "globalknownhostsfile", oGlobalKnownHostsFile },

{ "userknownhostsfile", oUserKnownHostsFile }, /* obsolete */

{ "userknownhostsfile", oUserKnownHostsFile },

{ "globalknownhostsfile2", oGlobalKnownHostsFile2 },

{ "userknownhostsfile2", oUserKnownHostsFile2 }, /* obsolete */

{ "userknownhostsfile2", oUserKnownHostsFile2 },

{ "connectionattempts", oConnectionAttempts },

{ "batchmode", oBatchMode },

{ "checkhostip", oCheckHostIP },

Line 184

Line 178

{ "preferredauthentications", oPreferredAuthentications },

{ "hostkeyalgorithms", oHostKeyAlgorithms },

{ "bindaddress", oBindAddress },

{ "smartcarddevice", oSmartcardDevice },

{ NULL, 0 }

{ "clearallforwardings", oClearAllForwardings },

{ "nohostauthenticationforlocalhost", oNoHostAuthenticationForLocalhost },

{ NULL, oBadOption }

};

Line 223

Line 214

Forward *fwd;

if (options->num_remote_forwards >= SSH_MAX_FORWARDS_PER_DIRECTION)

fatal("Too many remote forwards (max %d).",

SSH_MAX_FORWARDS_PER_DIRECTION);

fwd = &options->remote_forwards[options->num_remote_forwards++];

fwd->port = port;

fwd->host = xstrdup(host);

fwd->host_port = host_port;

}

static void

clear_forwardings(Options *options)

{

int i;

for (i = 0; i < options->num_local_forwards; i++)

xfree(options->local_forwards[i].host);

options->num_local_forwards = 0;

for (i = 0; i < options->num_remote_forwards; i++)

xfree(options->remote_forwards[i].host);

options->num_remote_forwards = 0;

}

* Returns the number of the token pointed to by cp or oBadOption.

Line 274

Line 252

char buf[256], *s, *string, **charptr, *endofnumber, *keyword, *arg;

int opcode, *intptr, value;

u_short fwd_port, fwd_host_port;

char sfwd_host_port[6];

s = line;

/* Get the keyword. (Each line is supposed to begin with a keyword). */

Line 354

Line 331

goto parse_flag;

case oChallengeResponseAuthentication:

intptr = &options->challenge_response_authentication;

intptr = &options->challenge_reponse_authentication;

goto parse_flag;

#if defined(KRB4) || defined(KRB5)

#ifdef KRB4

case oKerberosAuthentication:

intptr = &options->kerberos_authentication;

goto parse_flag;

#endif

#endif /* KRB4 */

#if defined(AFS) || defined(KRB5)

#ifdef AFS

case oKerberosTgtPassing:

intptr = &options->kerberos_tgt_passing;

goto parse_flag;

#endif

#ifdef AFS

case oAFSTokenPassing:

intptr = &options->afs_token_passing;

goto parse_flag;

#endif

case oFallBackToRsh:

intptr = &options->fallback_to_rsh;

goto parse_flag;

Line 392

Line 371

arg = strdelim(&s);

if (!arg || *arg == '\0')

fatal("%.200s line %d: Missing yes/no/ask argument.",

filename, linenum);

value = 0; /* To avoid compiler warning... */

if (strcmp(arg, "yes") == 0 || strcmp(arg, "true") == 0)

value = 1;

Line 414

Line 393

intptr = &options->keepalives;

goto parse_flag;

case oNoHostAuthenticationForLocalhost:

intptr = &options->no_host_authentication_for_localhost;

goto parse_flag;

case oNumberOfPasswordPrompts:

intptr = &options->number_of_password_prompts;

goto parse_int;

Line 434

Line 409

intptr = &options->num_identity_files;

if (*intptr >= SSH_MAX_IDENTITY_FILES)

fatal("%.200s line %d: Too many identity files specified (max %d).",

filename, linenum, SSH_MAX_IDENTITY_FILES);

charptr = &options->identity_files[*intptr];

*charptr = xstrdup(arg);

*intptr = *intptr + 1;

Line 487

Line 462

charptr = &options->bind_address;

goto parse_string;

case oSmartcardDevice:

charptr = &options->smartcard_device;

goto parse_string;

case oProxyCommand:

charptr = &options->proxy_command;

string = xstrdup("");

Line 534

Line 505

value = cipher_number(arg);

if (value == -1)

fatal("%.200s line %d: Bad cipher '%s'.",

filename, linenum, arg ? arg : "<NONE>");

if (*activep && *intptr == -1)

*intptr = value;

break;

Line 545

Line 516

fatal("%.200s line %d: Missing argument.", filename, linenum);

if (!ciphers_valid(arg))

fatal("%.200s line %d: Bad SSH2 cipher spec '%s'.",

filename, linenum, arg ? arg : "<NONE>");

if (*activep && options->ciphers == NULL)

options->ciphers = xstrdup(arg);

break;

Line 556

Line 527

fatal("%.200s line %d: Missing argument.", filename, linenum);

if (!mac_valid(arg))

fatal("%.200s line %d: Bad SSH2 Mac spec '%s'.",

filename, linenum, arg ? arg : "<NONE>");

if (*activep && options->macs == NULL)

options->macs = xstrdup(arg);

break;

Line 567

Line 538

fatal("%.200s line %d: Missing argument.", filename, linenum);

if (!key_names_valid2(arg))

fatal("%.200s line %d: Bad protocol 2 host key algorithms '%s'.",

filename, linenum, arg ? arg : "<NONE>");

if (*activep && options->hostkeyalgorithms == NULL)

options->hostkeyalgorithms = xstrdup(arg);

break;

Line 580

Line 551

value = proto_spec(arg);

if (value == SSH_PROTO_UNKNOWN)

fatal("%.200s line %d: Bad protocol spec '%s'.",

filename, linenum, arg ? arg : "<NONE>");

if (*activep && *intptr == SSH_PROTO_UNKNOWN)

*intptr = value;

break;

Line 589

Line 560

intptr = (int *) &options->log_level;

arg = strdelim(&s);

value = log_level_number(arg);

if (value == SYSLOG_LEVEL_NOT_SET)

if (value == (LogLevel) - 1)

fatal("%.200s line %d: unsupported log level '%s'",

filename, linenum, arg ? arg : "<NONE>");

if (*activep && (LogLevel) *intptr == SYSLOG_LEVEL_NOT_SET)

if (*activep && (LogLevel) * intptr == -1)

*intptr = (LogLevel) value;

break;

case oLocalForward:

case oRemoteForward:

arg = strdelim(&s);

if (!arg || *arg == '\0')

fatal("%.200s line %d: Missing port argument.",

fatal("%.200s line %d: Missing argument.", filename, linenum);

filename, linenum);

fwd_port = a2port(arg);

if ((fwd_port = a2port(arg)) == 0)

if (fwd_port == 0)

fatal("%.200s line %d: Bad listen port.",

fatal("%.200s line %d: Badly formatted port number.",

filename, linenum);

arg = strdelim(&s);

if (!arg || *arg == '\0')

fatal("%.200s line %d: Missing second argument.",

filename, linenum);

if (sscanf(arg, "%255[^:]:%5[0-9]", buf, sfwd_host_port) != 2 &&

if (sscanf(arg, "%255[^:]:%hu", buf, &fwd_host_port) != 2)

sscanf(arg, "%255[^/]/%5[0-9]", buf, sfwd_host_port) != 2)

fatal("%.200s line %d: Badly formatted host:port.",

fatal("%.200s line %d: Bad forwarding specification.",

filename, linenum);

if (*activep)

if ((fwd_host_port = a2port(sfwd_host_port)) == 0)

add_remote_forward(options, fwd_port, buf, fwd_host_port);

fatal("%.200s line %d: Bad forwarding port.",

filename, linenum);

if (*activep) {

if (opcode == oLocalForward)

add_local_forward(options, fwd_port, buf,

fwd_host_port);

else if (opcode == oRemoteForward)

add_remote_forward(options, fwd_port, buf,

fwd_host_port);

}

break;

case oLocalForward:

arg = strdelim(&s);

if (!arg || *arg == '\0')

fatal("%.200s line %d: Missing argument.", filename, linenum);

fwd_port = a2port(arg);

if (fwd_port == 0)

fatal("%.200s line %d: Badly formatted port number.",

filename, linenum);

arg = strdelim(&s);

if (!arg || *arg == '\0')

fatal("%.200s line %d: Missing second argument.",

filename, linenum);

if (sscanf(arg, "%255[^:]:%hu", buf, &fwd_host_port) != 2)

fatal("%.200s line %d: Badly formatted host:port.",

filename, linenum);

if (*activep)

add_local_forward(options, fwd_port, buf, fwd_host_port);

break;

case oDynamicForward:

arg = strdelim(&s);

if (!arg || *arg == '\0')

Line 635

Line 614

if (fwd_port == 0)

fatal("%.200s line %d: Badly formatted port number.",

filename, linenum);

if (*activep)

add_local_forward(options, fwd_port, "socks4", 0);

break;

case oClearAllForwardings:

intptr = &options->clear_forwardings;

goto parse_flag;

case oHost:

*activep = 0;

while ((arg = strdelim(&s)) != NULL && *arg != '\0')

Line 665

Line 639

else if (strlen(arg) == 1)

value = (u_char) arg[0];

else if (strcmp(arg, "none") == 0)

value = SSH_ESCAPECHAR_NONE;

value = -2;

else {

fatal("%.200s line %d: Bad escape character.",

filename, linenum);

/* NOTREACHED */

value = 0; /* Avoid compiler warning. */

}

Line 683

Line 657

/* Check that there is no garbage at end of line. */

if ((arg = strdelim(&s)) != NULL && *arg != '\0') {

fatal("%.200s line %d: garbage at end of line; \"%.200s\".",

filename, linenum, arg);

}

return 0;

}

Line 692

Line 666

* Reads the config file and modifies the options accordingly. Options

* should already be initialized before this call. This never returns if

* there is an error. If the file does not exist, this returns 0.

* there is an error. If the file does not exist, this returns immediately.

int

void

read_config_file(const char *filename, const char *host, Options *options)

{

FILE *f;

Line 706

Line 680

/* Open the file. */

f = fopen(filename, "r");

if (!f)

return 0;

return;

debug("Reading configuration data %.200s", filename);

Line 725

Line 699

fclose(f);

if (bad_options > 0)

fatal("%s: terminating, %d bad configuration options",

filename, bad_options);

return 1;

}

Line 748

Line 721

options->rhosts_authentication = -1;

options->rsa_authentication = -1;

options->pubkey_authentication = -1;

options->challenge_response_authentication = -1;

options->challenge_reponse_authentication = -1;

#if defined(KRB4) || defined(KRB5)

#ifdef KRB4

options->kerberos_authentication = -1;

#endif

#if defined(AFS) || defined(KRB5)

options->kerberos_tgt_passing = -1;

#endif

#ifdef AFS

options->kerberos_tgt_passing = -1;

options->afs_token_passing = -1;

#endif

options->password_authentication = -1;

Line 791

Line 762

options->user_hostfile2 = NULL;

options->num_local_forwards = 0;

options->num_remote_forwards = 0;

options->clear_forwardings = -1;

options->log_level = (LogLevel) - 1;

options->log_level = SYSLOG_LEVEL_NOT_SET;

options->preferred_authentications = NULL;

options->bind_address = NULL;

options->smartcard_device = NULL;

options->no_host_authentication_for_localhost = - 1;

}

Line 813

Line 781

options->forward_agent = 0;

if (options->forward_x11 == -1)

options->forward_x11 = 0;

#ifdef XAUTH_PATH

if (options->xauth_location == NULL)

options->xauth_location = _PATH_XAUTH;

options->xauth_location = XAUTH_PATH;

#endif /* XAUTH_PATH */

if (options->gateway_ports == -1)

options->gateway_ports = 0;

if (options->use_privileged_port == -1)

Line 825

Line 795

options->rsa_authentication = 1;

if (options->pubkey_authentication == -1)

options->pubkey_authentication = 1;

if (options->challenge_response_authentication == -1)

if (options->challenge_reponse_authentication == -1)

options->challenge_response_authentication = 1;

options->challenge_reponse_authentication = 0;

#if defined(KRB4) || defined(KRB5)

#ifdef KRB4

if (options->kerberos_authentication == -1)

options->kerberos_authentication = 1;

#endif

#endif /* KRB4 */

#if defined(AFS) || defined(KRB5)

#ifdef AFS

if (options->kerberos_tgt_passing == -1)

options->kerberos_tgt_passing = 1;

#endif

#ifdef AFS

if (options->afs_token_passing == -1)

options->afs_token_passing = 1;

#endif

#endif /* AFS */

if (options->password_authentication == -1)

options->password_authentication = 1;

if (options->kbd_interactive_authentication == -1)

Line 866

Line 834

if (options->port == -1)

options->port = 0; /* Filled in ssh_connect. */

if (options->connection_attempts == -1)

options->connection_attempts = 1;

options->connection_attempts = 4;

if (options->number_of_password_prompts == -1)

options->number_of_password_prompts = 3;

/* Selected in ssh_login(). */

Line 909

Line 877

options->system_hostfile2 = _PATH_SSH_SYSTEM_HOSTFILE2;

if (options->user_hostfile2 == NULL)

options->user_hostfile2 = _PATH_SSH_USER_HOSTFILE2;

if (options->log_level == SYSLOG_LEVEL_NOT_SET)

if (options->log_level == (LogLevel) - 1)

options->log_level = SYSLOG_LEVEL_INFO;

if (options->clear_forwardings == 1)

clear_forwardings(options);

if (options->no_host_authentication_for_localhost == - 1)

options->no_host_authentication_for_localhost = 0;

/* options->proxy_command should not be set by default */

/* options->user will be set in the main program if appropriate */

/* options->hostname will be set in the main program if appropriate */