version 1.276, 2015/07/10 06:21:53 |
version 1.277, 2015/07/30 00:01:34 |
|
|
options->hostbased_authentication = 0; |
options->hostbased_authentication = 0; |
if (options->hostbased_uses_name_from_packet_only == -1) |
if (options->hostbased_uses_name_from_packet_only == -1) |
options->hostbased_uses_name_from_packet_only = 0; |
options->hostbased_uses_name_from_packet_only = 0; |
if (options->hostbased_key_types == NULL) |
|
options->hostbased_key_types = xstrdup(KEX_DEFAULT_PK_ALG); |
|
if (options->hostkeyalgorithms == NULL) |
if (options->hostkeyalgorithms == NULL) |
options->hostkeyalgorithms = xstrdup(KEX_DEFAULT_PK_ALG); |
options->hostkeyalgorithms = xstrdup(KEX_DEFAULT_PK_ALG); |
if (options->rsa_authentication == -1) |
if (options->rsa_authentication == -1) |
options->rsa_authentication = 1; |
options->rsa_authentication = 1; |
if (options->pubkey_authentication == -1) |
if (options->pubkey_authentication == -1) |
options->pubkey_authentication = 1; |
options->pubkey_authentication = 1; |
if (options->pubkey_key_types == NULL) |
|
options->pubkey_key_types = xstrdup(KEX_DEFAULT_PK_ALG); |
|
if (options->kerberos_authentication == -1) |
if (options->kerberos_authentication == -1) |
options->kerberos_authentication = 0; |
options->kerberos_authentication = 0; |
if (options->kerberos_or_local_passwd == -1) |
if (options->kerberos_or_local_passwd == -1) |
|
|
options->fwd_opts.streamlocal_bind_unlink = 0; |
options->fwd_opts.streamlocal_bind_unlink = 0; |
if (options->fingerprint_hash == -1) |
if (options->fingerprint_hash == -1) |
options->fingerprint_hash = SSH_FP_HASH_DEFAULT; |
options->fingerprint_hash = SSH_FP_HASH_DEFAULT; |
|
|
|
if (kex_assemble_names(KEX_SERVER_ENCRYPT, &options->ciphers) != 0 || |
|
kex_assemble_names(KEX_SERVER_MAC, &options->macs) != 0 || |
|
kex_assemble_names(KEX_SERVER_KEX, &options->kex_algorithms) != 0 || |
|
kex_assemble_names(KEX_DEFAULT_PK_ALG, |
|
&options->hostbased_key_types) != 0 || |
|
kex_assemble_names(KEX_DEFAULT_PK_ALG, |
|
&options->pubkey_key_types) != 0) |
|
fatal("%s: kex_assemble_names failed", __func__); |
|
|
/* Turn privilege separation on by default */ |
/* Turn privilege separation on by default */ |
if (use_privsep == -1) |
if (use_privsep == -1) |
use_privsep = PRIVSEP_NOSANDBOX; |
use_privsep = PRIVSEP_NOSANDBOX; |
|
|
if (!arg || *arg == '\0') |
if (!arg || *arg == '\0') |
fatal("%s line %d: Missing argument.", |
fatal("%s line %d: Missing argument.", |
filename, linenum); |
filename, linenum); |
if (!sshkey_names_valid2(arg, 1)) |
if (!sshkey_names_valid2(*arg == '+' ? arg + 1 : arg, 1)) |
fatal("%s line %d: Bad key types '%s'.", |
fatal("%s line %d: Bad key types '%s'.", |
filename, linenum, arg ? arg : "<NONE>"); |
filename, linenum, arg ? arg : "<NONE>"); |
if (*activep && *charptr == NULL) |
if (*activep && *charptr == NULL) |
|
|
arg = strdelim(&cp); |
arg = strdelim(&cp); |
if (!arg || *arg == '\0') |
if (!arg || *arg == '\0') |
fatal("%s line %d: Missing argument.", filename, linenum); |
fatal("%s line %d: Missing argument.", filename, linenum); |
if (!ciphers_valid(arg)) |
if (!ciphers_valid(*arg == '+' ? arg + 1 : arg)) |
fatal("%s line %d: Bad SSH2 cipher spec '%s'.", |
fatal("%s line %d: Bad SSH2 cipher spec '%s'.", |
filename, linenum, arg ? arg : "<NONE>"); |
filename, linenum, arg ? arg : "<NONE>"); |
if (options->ciphers == NULL) |
if (options->ciphers == NULL) |
|
|
arg = strdelim(&cp); |
arg = strdelim(&cp); |
if (!arg || *arg == '\0') |
if (!arg || *arg == '\0') |
fatal("%s line %d: Missing argument.", filename, linenum); |
fatal("%s line %d: Missing argument.", filename, linenum); |
if (!mac_valid(arg)) |
if (!mac_valid(*arg == '+' ? arg + 1 : arg)) |
fatal("%s line %d: Bad SSH2 mac spec '%s'.", |
fatal("%s line %d: Bad SSH2 mac spec '%s'.", |
filename, linenum, arg ? arg : "<NONE>"); |
filename, linenum, arg ? arg : "<NONE>"); |
if (options->macs == NULL) |
if (options->macs == NULL) |
|
|
if (!arg || *arg == '\0') |
if (!arg || *arg == '\0') |
fatal("%s line %d: Missing argument.", |
fatal("%s line %d: Missing argument.", |
filename, linenum); |
filename, linenum); |
if (!kex_names_valid(arg)) |
if (!kex_names_valid(*arg == '+' ? arg + 1 : arg)) |
fatal("%s line %d: Bad SSH2 KexAlgorithms '%s'.", |
fatal("%s line %d: Bad SSH2 KexAlgorithms '%s'.", |
filename, linenum, arg ? arg : "<NONE>"); |
filename, linenum, arg ? arg : "<NONE>"); |
if (options->kex_algorithms == NULL) |
if (options->kex_algorithms == NULL) |