src/usr.bin/ssh/sshconnect.c - diff

Return to sshconnect.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sshconnect.c between version 1.115 and 1.115.2.3

version 1.115, 2001/10/08 19:05:05

version 1.115.2.3, 2002/06/26 18:22:36

Line 31

#include "readconf.h"

#include "atomicio.h"

#include "misc.h"

#include "readpass.h"

char *client_version_string = NULL;

char *server_version_string = NULL;

/* import */

extern Options options;

extern char *__progname;

extern uid_t original_real_uid;

extern uid_t original_effective_uid;

static const char *

sockaddr_ntop(struct sockaddr *sa)

sockaddr_ntop(struct sockaddr *sa, socklen_t salen)

{

void *addr;

static char addrbuf[NI_MAXHOST];

static char addrbuf[INET6_ADDRSTRLEN];

switch (sa->sa_family) {

if (getnameinfo(sa, salen, addrbuf, sizeof(addrbuf), NULL, 0,

case AF_INET:

NI_NUMERICHOST) != 0)

addr = &((struct sockaddr_in *)sa)->sin_addr;

fatal("sockaddr_ntop: getnameinfo NI_NUMERICHOST failed");

break;

case AF_INET6:

addr = &((struct sockaddr_in6 *)sa)->sin6_addr;

break;

default:

/* This case should be protected against elsewhere */

abort();

}

inet_ntop(sa->sa_family, addr, addrbuf, sizeof(addrbuf));

return addrbuf;

}

Line 63

Line 57

* Connect to the given ssh server using a proxy command.

static int

ssh_proxy_connect(const char *host, u_short port, struct passwd *pw,

ssh_proxy_connect(const char *host, u_short port, const char *proxy_command)

const char *proxy_command)

{

Buffer command;

const char *cp;

Line 105

Line 98

/* Create pipes for communicating with the proxy. */

if (pipe(pin) < 0 || pipe(pout) < 0)

fatal("Could not create pipes to communicate with the proxy: %.100s",

strerror(errno));

debug("Executing proxy command: %.500s", command_string);

Line 114

Line 107

char *argv[10];

/* Child. Permanently give up superuser privileges. */

permanently_set_uid(pw);

seteuid(original_real_uid);

setuid(original_real_uid);

/* Redirect stdin and stdout. */

close(pin[1]);

Line 164

Line 158

* Creates a (possibly privileged) socket for use as the ssh connection.

static int

ssh_create_socket(struct passwd *pw, int privileged, int family)

ssh_create_socket(int privileged, int family)

{

int sock, gaierr;

struct addrinfo hints, *res;

Line 175

Line 169

if (privileged) {

int p = IPPORT_RESERVED - 1;

PRIV_START;

sock = rresvport_af(&p, family);

PRIV_END;

if (sock < 0)

error("rresvport: af=%d %.100s", family, strerror(errno));

else

debug("Allocated local port %d.", p);

return sock;

}

* Just create an ordinary socket on arbitrary port. We use

* the user's uid to create the socket.

temporarily_use_uid(pw);

sock = socket(family, SOCK_STREAM, 0);

if (sock < 0)

error("socket: %.100s", strerror(errno));

restore_uid();

/* Bind the socket to an alternative local IP address */

if (options.bind_address == NULL)

Line 220

Line 210

* Opens a TCP/IP connection to the remote server on the given host.

* The address of the remote host will be returned in hostaddr.

* If port is 0, the default port will be used. If anonymous is zero,

* If port is 0, the default port will be used. If needpriv is true,

* a privileged port will be allocated to make the connection.

* This requires super-user privileges if anonymous is false.

* This requires super-user privileges if needpriv is true.

* Connection_attempts specifies the maximum number of tries (one per

* second). If proxy_command is non-NULL, it specifies the command (with %h

* and %p substituted for host and port, respectively) to use to contact

Line 237

Line 227

int

ssh_connect(const char *host, struct sockaddr_storage * hostaddr,

u_short port, int family, int connection_attempts,

int anonymous, struct passwd *pw, const char *proxy_command)

int needpriv, const char *proxy_command)

{

int gaierr;

int on = 1;

Line 253

Line 243

int full_failure = 1;

debug("ssh_connect: getuid %u geteuid %u anon %d",

debug("ssh_connect: needpriv %d", needpriv);

(u_int) getuid(), (u_int) geteuid(), anonymous);

/* Get default port if port has not been set. */

if (port == 0) {

Line 266

Line 255

}

/* If a proxy command is given, connect using it. */

if (proxy_command != NULL)

return ssh_proxy_connect(host, port, pw, proxy_command);

return ssh_proxy_connect(host, port, proxy_command);

/* No proxy command. */

memset(&hints, 0, sizeof(hints));

hints.ai_family = family;

hints.ai_socktype = SOCK_STREAM;

snprintf(strport, sizeof strport, "%d", port);

snprintf(strport, sizeof strport, "%u", port);

if ((gaierr = getaddrinfo(host, strport, &hints, &aitop)) != 0)

fatal("%s: %.100s: %s", __progname, host,

gai_strerror(gaierr));

Line 302

Line 291

host, ntop, strport);

/* Create a socket for connecting. */

sock = ssh_create_socket(pw,

sock = ssh_create_socket(needpriv, ai->ai_family);

!anonymous && geteuid() == 0,

ai->ai_family);

if (sock < 0)

/* Any error is already output */

continue;

/* Connect to the host. We use the user's uid in the

* hope that it will help with tcp_wrappers showing

* the remote uid as root.

temporarily_use_uid(pw);

if (connect(sock, ai->ai_addr, ai->ai_addrlen) >= 0) {

/* Successful connection. */

memcpy(hostaddr, ai->ai_addr, ai->ai_addrlen);

restore_uid();

break;

} else {

if (errno == ECONNREFUSED)

full_failure = 0;

log("ssh: connect to address %s port %s: %s",

sockaddr_ntop(ai->ai_addr), strport,

sockaddr_ntop(ai->ai_addr, ai->ai_addrlen),

strerror(errno));

strport, strerror(errno));

restore_uid();

* Close the failed socket; there appear to

* be some problems when reusing a socket for

* which connect() has already returned an

* error.

shutdown(sock, SHUT_RDWR);

close(sock);

}

Line 421

Line 400

&remote_major, &remote_minor, remote_version) != 3)

fatal("Bad remote protocol version identification: '%.100s'", buf);

debug("Remote protocol version %d.%d, remote software version %.100s",

remote_major, remote_minor, remote_version);

compat_datafellows(remote_version);

mismatch = 0;

switch(remote_major) {

switch (remote_major) {

case 1:

if (remote_minor == 99 &&

(options.protocol & SSH_PROTO_2) &&

Line 481

Line 460

static int

confirm(const char *prompt)

{

char buf[1024];

const char *msg, *again = "Please type 'yes' or 'no': ";

FILE *f;

char *p;

int retval = -1;

int ret = -1;

if (options.batch_mode)

return 0;

if (isatty(STDIN_FILENO))

for (msg = prompt;;msg = again) {

f = stdin;

p = read_passphrase(msg, RP_ECHO);

else

if (p == NULL ||

f = fopen(_PATH_TTY, "rw");

(p[0] == '\0') || (p[0] == '\n') ||

if (f == NULL)

strncasecmp(p, "no", 2) == 0)

return 0;

ret = 0;

fflush(stdout);

if (strncasecmp(p, "yes", 3) == 0)

fprintf(stderr, "%s", prompt);

ret = 1;

while (1) {

if (p)

if (fgets(buf, sizeof(buf), f) == NULL) {

xfree(p);

fprintf(stderr, "\n");

if (ret != -1)

strlcpy(buf, "no", sizeof buf);

return ret;

}

/* Remove newline from response. */

if (strchr(buf, '\n'))

*strchr(buf, '\n') = 0;

if (strcmp(buf, "yes") == 0)

retval = 1;

else if (strcmp(buf, "no") == 0)

retval = 0;

else

fprintf(stderr, "Please type 'yes' or 'no': ");

if (retval != -1) {

if (f != stdin)

fclose(f);

return retval;

}

Line 522

Line 485

* check whether the supplied host key is valid, return -1 if the key

* is not valid. the user_hostfile will not be updated if 'readonly' is true.

static int

check_host_key(char *host, struct sockaddr *hostaddr, Key *host_key,

int readonly, const char *user_hostfile, const char *system_hostfile)

Line 535

Line 497

HostStatus ip_status;

int local = 0, host_ip_differ = 0;

char ntop[NI_MAXHOST];

int host_line, ip_line;

char msg[1024];

int len, host_line, ip_line;

const char *host_file = NULL, *ip_file = NULL;

Line 609

Line 572

host_file = user_hostfile;

host_status = check_host_in_hostfile(host_file, host, host_key,

file_key, &host_line);

if (host_status == HOST_NEW) {

host_file = system_hostfile;

host_status = check_host_in_hostfile(host_file, host, host_key,

Line 652

Line 615

"'%.128s' not in list of known hosts.",

type, ip);

else if (!add_host_to_hostfile(user_hostfile, ip,

host_key))

log("Failed to add the %s host key for IP "

"address '%.128s' to the list of known "

"hosts (%.30s).", type, ip, user_hostfile);

Line 677

Line 640

goto fail;

} else if (options.strict_host_key_checking == 2) {

/* The default */

char prompt[1024];

fp = key_fingerprint(host_key, SSH_FP_MD5, SSH_FP_HEX);

snprintf(prompt, sizeof(prompt),

snprintf(msg, sizeof(msg),

"The authenticity of host '%.200s (%s)' can't be "

"established.\n"

"%s key fingerprint is %s.\n"

"Are you sure you want to continue connecting "

"(yes/no)? ", host, ip, type, fp);

xfree(fp);

if (!confirm(prompt)) {

if (!confirm(msg))

goto fail;

}

if (options.check_host_ip && ip_status == HOST_NEW) {

snprintf(hostline, sizeof(hostline), "%s,%s", host, ip);

Line 778

Line 739

error("Port forwarding is disabled to avoid "

"man-in-the-middle attacks.");

options.num_local_forwards =

options.num_remote_forwards = 0;

}

* XXX Should permit the user to change to use the new id.

Line 792

Line 753

if (options.check_host_ip && host_status != HOST_CHANGED &&

ip_status == HOST_CHANGED) {

log("Warning: the %s host key for '%.200s' "

snprintf(msg, sizeof(msg),

"differs from the key for the IP address '%.128s'",

"Warning: the %s host key for '%.200s' "

type, host, ip);

"differs from the key for the IP address '%.128s'"

if (host_status == HOST_OK)

"\nOffending key for IP in %s:%d",

log("Matching host key in %s:%d", host_file, host_line);

type, host, ip, ip_file, ip_line);

log("Offending key for IP in %s:%d", ip_file, ip_line);

if (host_status == HOST_OK) {

len = strlen(msg);

snprintf(msg + len, sizeof(msg) - len,

"\nMatching host key in %s:%d",

host_file, host_line);

}

if (options.strict_host_key_checking == 1) {

log(msg);

error("Exiting, you have requested strict checking.");

goto fail;

} else if (options.strict_host_key_checking == 2) {

if (!confirm("Are you sure you want "

strlcat(msg, "\nAre you sure you want "

"to continue connecting (yes/no)? ")) {

"to continue connecting (yes/no)? ", sizeof(msg));

if (!confirm(msg))

goto fail;

}

} else {

log(msg);

}

Line 841

Line 810

* This function does not require super-user privileges.

void

ssh_login(Key **keys, int nkeys, const char *orighost,

ssh_login(Sensitive *sensitive, const char *orighost,

struct sockaddr *hostaddr, struct passwd *pw)

{

char *host, *cp;

Line 866

Line 835

/* authenticate user */

if (compat20) {

ssh_kex2(host, hostaddr);

ssh_userauth2(local_user, server_user, host, keys, nkeys);

ssh_userauth2(local_user, server_user, host, sensitive);

} else {

ssh_kex(host, hostaddr);

ssh_userauth1(local_user, server_user, host, keys, nkeys);

ssh_userauth1(local_user, server_user, host, sensitive);

}