2 * Copyright (c) 2000 Markus Friedl. All rights reserved.
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions
7 * 1. Redistributions of source code must retain the above copyright
8 * notice, this list of conditions and the following disclaimer.
9 * 2. Redistributions in binary form must reproduce the above copyright
10 * notice, this list of conditions and the following disclaimer in the
11 * documentation and/or other materials provided with the distribution.
13 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
14 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
15 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
16 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
17 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
18 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
19 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
20 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
21 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
22 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 RCSID("$OpenBSD: sshconnect2.c,v 1.97 2002/02/25 16:33:27 markus Exp $");
37 #include "myproposal.h"
38 #include "sshconnect.h"
54 extern char *client_version_string;
55 extern char *server_version_string;
56 extern Options options;
62 u_char *session_id2 = NULL;
63 int session_id2_len = 0;
66 struct sockaddr *xxx_hostaddr;
71 verify_host_key_callback(Key *hostkey)
73 if (verify_host_key(xxx_host, xxx_hostaddr, hostkey) == -1)
74 fatal("Host key verification failed.");
79 ssh_kex2(char *host, struct sockaddr *hostaddr)
84 xxx_hostaddr = hostaddr;
87 /* This is a bit of a nasty kludge. This adds the GSSAPI included
88 * key exchange methods to the top of the list, allowing the GSSAPI
89 * code to decide whether each one should be included or not.
94 orig = myproposal[PROPOSAL_KEX_ALGS];
95 gss = ssh_gssapi_mechanisms(0,host);
97 len = strlen(orig)+strlen(gss)+2;
98 myproposal[PROPOSAL_KEX_ALGS]=xmalloc(len);
99 snprintf(myproposal[PROPOSAL_KEX_ALGS],len,"%s,%s",gss,orig);
100 /* If we've got GSSAPI algorithms, then we also support the
101 * 'null' hostkey, as a last resort */
102 orig=myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS];
103 len = strlen(orig)+sizeof(",null");
104 myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS]=xmalloc(len);
105 snprintf(myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS],len,"%s,null",orig);
110 if (options.ciphers == (char *)-1) {
111 log("No valid ciphers for protocol version 2 given, using defaults.");
112 options.ciphers = NULL;
114 if (options.ciphers != NULL) {
115 myproposal[PROPOSAL_ENC_ALGS_CTOS] =
116 myproposal[PROPOSAL_ENC_ALGS_STOC] = options.ciphers;
118 myproposal[PROPOSAL_ENC_ALGS_CTOS] =
119 compat_cipher_proposal(myproposal[PROPOSAL_ENC_ALGS_CTOS]);
120 myproposal[PROPOSAL_ENC_ALGS_STOC] =
121 compat_cipher_proposal(myproposal[PROPOSAL_ENC_ALGS_STOC]);
122 if (options.compression) {
123 myproposal[PROPOSAL_COMP_ALGS_CTOS] =
124 myproposal[PROPOSAL_COMP_ALGS_STOC] = "zlib";
126 myproposal[PROPOSAL_COMP_ALGS_CTOS] =
127 myproposal[PROPOSAL_COMP_ALGS_STOC] = "none";
129 if (options.macs != NULL) {
130 myproposal[PROPOSAL_MAC_ALGS_CTOS] =
131 myproposal[PROPOSAL_MAC_ALGS_STOC] = options.macs;
133 if (options.hostkeyalgorithms != NULL)
134 myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] =
135 options.hostkeyalgorithms;
137 /* start key exchange */
138 kex = kex_setup(myproposal);
139 kex->client_version_string=client_version_string;
140 kex->server_version_string=server_version_string;
141 kex->verify_host_key=&verify_host_key_callback;
145 kex->options.gss_deleg_creds=options.gss_deleg_creds;
150 dispatch_run(DISPATCH_BLOCK, &kex->done, kex);
152 session_id2 = kex->session_id;
153 session_id2_len = kex->session_id_len;
156 /* send 1st encrypted/maced/compressed message */
157 packet_start(SSH2_MSG_IGNORE);
158 packet_put_cstring("markus");
162 debug("done: ssh_kex2.");
169 typedef struct Authctxt Authctxt;
170 typedef struct Authmethod Authmethod;
172 typedef int sign_cb_fn(
173 Authctxt *authctxt, Key *key,
174 u_char **sigp, u_int *lenp, u_char *data, u_int datalen);
177 const char *server_user;
178 const char *local_user;
186 sign_cb_fn *last_key_sign;
188 AuthenticationConnection *agent;
192 /* kbd-interactive */
198 char *name; /* string to compare against server's list */
199 int (*userauth)(Authctxt *authctxt);
200 int *enabled; /* flag in option struct that enables method */
201 int *batch_flag; /* flag in option struct that disables method */
204 void input_userauth_success(int type, int plen, void *ctxt);
205 void input_userauth_failure(int type, int plen, void *ctxt);
206 void input_userauth_banner(int type, int plen, void *ctxt);
207 void input_userauth_error(int type, int plen, void *ctxt);
208 void input_userauth_info_req(int type, int plen, void *ctxt);
209 void input_userauth_pk_ok(int type, int plen, void *ctxt);
211 int userauth_none(Authctxt *authctxt);
212 int userauth_pubkey(Authctxt *authctxt);
213 int userauth_passwd(Authctxt *authctxt);
214 int userauth_kbdint(Authctxt *authctxt);
215 int userauth_hostbased(Authctxt *authctxt);
218 int userauth_external(Authctxt *authctxt);
219 int userauth_gssapi(Authctxt *authctxt);
220 void input_gssapi_response(int type, int plen, void *ctxt);
221 void input_gssapi_token(int type, int plen, void *ctxt);
222 void input_gssapi_hash(int type, int plen, void *ctxt);
223 int gss_host_key_ok=0;
226 void input_userauth_success(int, u_int32_t, void *);
227 void input_userauth_failure(int, u_int32_t, void *);
228 void input_userauth_banner(int, u_int32_t, void *);
229 void input_userauth_error(int, u_int32_t, void *);
230 void input_userauth_info_req(int, u_int32_t, void *);
231 void input_userauth_pk_ok(int, u_int32_t, void *);
233 int userauth_none(Authctxt *);
234 int userauth_pubkey(Authctxt *);
235 int userauth_passwd(Authctxt *);
236 int userauth_kbdint(Authctxt *);
237 int userauth_hostbased(Authctxt *);
239 void userauth(Authctxt *, char *);
241 static int sign_and_send_pubkey(Authctxt *, Key *, sign_cb_fn *);
242 static void clear_auth_state(Authctxt *);
244 static Authmethod *authmethod_get(char *authlist);
245 static Authmethod *authmethod_lookup(const char *name);
246 static char *authmethods_get(void);
248 Authmethod authmethods[] = {
252 &options.gss_authentication,
256 &options.gss_authentication,
261 &options.hostbased_authentication,
265 &options.pubkey_authentication,
267 {"keyboard-interactive",
269 &options.kbd_interactive_authentication,
270 &options.batch_mode},
273 &options.password_authentication,
274 &options.batch_mode},
279 {NULL, NULL, NULL, NULL}
283 ssh_userauth2(const char *local_user, const char *server_user, char *host,
284 Key **keys, int nkeys)
289 if (options.challenge_response_authentication)
290 options.kbd_interactive_authentication = 1;
292 debug("send SSH2_MSG_SERVICE_REQUEST");
293 packet_start(SSH2_MSG_SERVICE_REQUEST);
294 packet_put_cstring("ssh-userauth");
297 type = packet_read();
298 if (type != SSH2_MSG_SERVICE_ACCEPT) {
299 fatal("denied SSH2_MSG_SERVICE_ACCEPT: %d", type);
301 if (packet_remaining() > 0) {
302 char *reply = packet_get_string(NULL);
303 debug("service_accept: %s", reply);
306 debug("buggy server: service_accept w/o service");
309 debug("got SSH2_MSG_SERVICE_ACCEPT");
311 if (options.preferred_authentications == NULL)
312 options.preferred_authentications = authmethods_get();
314 /* setup authentication context */
315 memset(&authctxt, 0, sizeof(authctxt));
316 authctxt.agent = ssh_get_authentication_connection();
317 authctxt.server_user = server_user;
318 authctxt.local_user = local_user;
319 authctxt.host = host;
320 authctxt.service = "ssh-connection"; /* service name */
321 authctxt.success = 0;
322 authctxt.method = authmethod_lookup("none");
323 authctxt.authlist = NULL;
324 authctxt.methoddata = NULL;
325 authctxt.keys = keys;
326 authctxt.nkeys = nkeys;
327 authctxt.info_req_seen = 0;
328 if (authctxt.method == NULL)
329 fatal("ssh_userauth2: internal error: cannot send userauth none request");
331 /* initial userauth request */
332 userauth_none(&authctxt);
334 dispatch_init(&input_userauth_error);
335 dispatch_set(SSH2_MSG_USERAUTH_SUCCESS, &input_userauth_success);
336 dispatch_set(SSH2_MSG_USERAUTH_FAILURE, &input_userauth_failure);
337 dispatch_set(SSH2_MSG_USERAUTH_BANNER, &input_userauth_banner);
338 dispatch_run(DISPATCH_BLOCK, &authctxt.success, &authctxt); /* loop until success */
340 if (authctxt.agent != NULL)
341 ssh_close_authentication_connection(authctxt.agent);
343 debug("ssh-userauth2 successful: method %s", authctxt.method->name);
346 userauth(Authctxt *authctxt, char *authlist)
348 if (authctxt->methoddata!=NULL) {
349 xfree(authctxt->methoddata);
350 authctxt->methoddata=NULL;
353 if (authlist == NULL) {
354 authlist = authctxt->authlist;
356 if (authctxt->authlist)
357 xfree(authctxt->authlist);
358 authctxt->authlist = authlist;
361 Authmethod *method = authmethod_get(authlist);
363 fatal("Permission denied (%s).", authlist);
364 authctxt->method = method;
365 if (method->userauth(authctxt) != 0) {
366 debug2("we sent a %s packet, wait for reply", method->name);
369 debug2("we did not send a packet, disable method");
370 method->enabled = NULL;
375 input_userauth_error(int type, u_int32_t seq, void *ctxt)
377 fatal("input_userauth_error: bad message during authentication: "
381 input_userauth_banner(int type, u_int32_t seq, void *ctxt)
384 debug3("input_userauth_banner");
385 msg = packet_get_string(NULL);
386 lang = packet_get_string(NULL);
387 fprintf(stderr, "%s", msg);
392 input_userauth_success(int type, u_int32_t seq, void *ctxt)
394 Authctxt *authctxt = ctxt;
395 if (authctxt == NULL)
396 fatal("input_userauth_success: no authentication context");
397 if (authctxt->authlist)
398 xfree(authctxt->authlist);
399 if (authctxt->methoddata)
400 xfree(authctxt->methoddata);
401 clear_auth_state(authctxt);
402 authctxt->success = 1; /* break out */
405 input_userauth_failure(int type, u_int32_t seq, void *ctxt)
407 Authctxt *authctxt = ctxt;
408 char *authlist = NULL;
411 if (authctxt == NULL)
412 fatal("input_userauth_failure: no authentication context");
414 authlist = packet_get_string(NULL);
415 partial = packet_get_char();
419 log("Authenticated with partial success.");
420 debug("authentications that can continue: %s", authlist);
422 clear_auth_state(authctxt);
423 userauth(authctxt, authlist);
426 input_userauth_pk_ok(int type, u_int32_t seq, void *ctxt)
428 Authctxt *authctxt = ctxt;
431 int pktype, sent = 0;
436 if (authctxt == NULL)
437 fatal("input_userauth_pk_ok: no authentication context");
438 if (datafellows & SSH_BUG_PKOK) {
439 /* this is similar to SSH_BUG_PKAUTH */
440 debug2("input_userauth_pk_ok: SSH_BUG_PKOK");
441 pkblob = packet_get_string(&blen);
443 buffer_append(&b, pkblob, blen);
444 pkalg = buffer_get_string(&b, &alen);
447 pkalg = packet_get_string(&alen);
448 pkblob = packet_get_string(&blen);
452 debug("input_userauth_pk_ok: pkalg %s blen %d lastkey %p hint %d",
453 pkalg, blen, authctxt->last_key, authctxt->last_key_hint);
456 if (authctxt->last_key == NULL ||
457 authctxt->last_key_sign == NULL) {
458 debug("no last key or no sign cb");
461 if ((pktype = key_type_from_name(pkalg)) == KEY_UNSPEC) {
462 debug("unknown pkalg %s", pkalg);
465 if ((key = key_from_blob(pkblob, blen)) == NULL) {
466 debug("no key from blob. pkalg %s", pkalg);
469 if (key->type != pktype) {
470 error("input_userauth_pk_ok: type mismatch "
471 "for decoded key (received %d, expected %d)",
475 fp = key_fingerprint(key, SSH_FP_MD5, SSH_FP_HEX);
476 debug2("input_userauth_pk_ok: fp %s", fp);
478 if (!key_equal(key, authctxt->last_key)) {
479 debug("key != last_key");
482 sent = sign_and_send_pubkey(authctxt, key,
483 authctxt->last_key_sign);
492 clear_auth_state(authctxt);
493 dispatch_set(SSH2_MSG_USERAUTH_PK_OK, NULL);
495 /* try another method if we did not send a packet*/
497 userauth(authctxt, NULL);
503 userauth_gssapi(Authctxt *authctxt)
509 /* For now, we only make one attempt at this. We could try offering
510 * the server different GSSAPI OIDs until we get bored, I suppose.
512 if (tries++>0) return 0;
514 gssctxt=xmalloc(sizeof(Gssctxt));
516 /* Initialise as much of our context as we can, so failures can be
517 * trapped before sending any packets.
519 ssh_gssapi_build_ctx(gssctxt);
520 if (ssh_gssapi_import_name(gssctxt,authctxt->host)) {
523 authctxt->methoddata=(void *)gssctxt;
525 packet_start(SSH2_MSG_USERAUTH_REQUEST);
526 packet_put_cstring(authctxt->server_user);
527 packet_put_cstring(authctxt->service);
528 packet_put_cstring(authctxt->method->name);
530 /* FIXME: This assumes that our current GSSAPI implementation
531 * supports all of the mechanisms listed in supported_mechs.
532 * This may not be the case - we should use something along
533 * the lines of the code in gss_genr to remove the ones that
534 * aren't supported */
535 packet_put_int(GSS_LAST_ENTRY);
536 for (i=0;i<GSS_LAST_ENTRY;i++) {
537 packet_put_string(supported_mechs[i].oid.elements,
538 supported_mechs[i].oid.length);
543 dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_RESPONSE,&input_gssapi_response);
544 dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_TOKEN,&input_gssapi_token);
550 input_gssapi_response(int type, int plen, void *ctxt)
552 Authctxt *authctxt = ctxt;
557 gss_buffer_desc send_tok;
559 if (authctxt == NULL)
560 fatal("input_gssapi_response: no authentication context");
561 gssctxt = authctxt->methoddata;
564 oidv=packet_get_string(&oidlen);
565 ssh_gssapi_set_oid_data(gssctxt,oidv,oidlen);
569 status = ssh_gssapi_init_ctx(gssctxt, options.gss_deleg_creds,
570 GSS_C_NO_BUFFER, &send_tok,
572 if (GSS_ERROR(status)) {
573 /* Start again with next method on list */
574 debug("Trying to start again");
575 userauth(authctxt,NULL);
579 /* We must have data to send */
580 packet_start(SSH2_MSG_USERAUTH_GSSAPI_TOKEN);
581 packet_put_string(send_tok.value,send_tok.length);
584 gss_release_buffer(&ms, &send_tok);
588 input_gssapi_token(int type, int plen, void *ctxt)
590 Authctxt *authctxt = ctxt;
592 gss_buffer_desc send_tok,recv_tok;
595 if (authctxt == NULL)
596 fatal("input_gssapi_response: no authentication context");
597 gssctxt = authctxt->methoddata;
599 recv_tok.value=packet_get_string(&recv_tok.length);
601 status=ssh_gssapi_init_ctx(gssctxt, options.gss_deleg_creds,
602 &recv_tok, &send_tok, NULL);
606 if (GSS_ERROR(status)) {
607 /* Start again with the next method in the list */
608 userauth(authctxt,NULL);
612 if (send_tok.length>0) {
613 packet_start(SSH2_MSG_USERAUTH_GSSAPI_TOKEN);
614 packet_put_string(send_tok.value,send_tok.length);
619 if (status == GSS_S_COMPLETE) {
620 /* If that succeeded, send a exchange complete message */
621 packet_start(SSH2_MSG_USERAUTH_GSSAPI_EXCHANGE_COMPLETE);
628 userauth_external(Authctxt *authctxt)
630 static int attempt =0;
635 debug2("userauth_external");
636 packet_start(SSH2_MSG_USERAUTH_REQUEST);
637 packet_put_cstring(authctxt->server_user);
638 packet_put_cstring(authctxt->service);
639 packet_put_cstring(authctxt->method->name);
647 userauth_none(Authctxt *authctxt)
649 /* initial userauth request */
650 packet_start(SSH2_MSG_USERAUTH_REQUEST);
651 packet_put_cstring(authctxt->server_user);
652 packet_put_cstring(authctxt->service);
653 packet_put_cstring(authctxt->method->name);
660 userauth_passwd(Authctxt *authctxt)
662 static int attempt = 0;
666 if (attempt++ >= options.number_of_password_prompts)
670 error("Permission denied, please try again.");
672 snprintf(prompt, sizeof(prompt), "%.30s@%.128s's password: ",
673 authctxt->server_user, authctxt->host);
674 password = read_passphrase(prompt, 0);
675 packet_start(SSH2_MSG_USERAUTH_REQUEST);
676 packet_put_cstring(authctxt->server_user);
677 packet_put_cstring(authctxt->service);
678 packet_put_cstring(authctxt->method->name);
680 packet_put_cstring(password);
681 memset(password, 0, strlen(password));
683 packet_add_padding(64);
689 clear_auth_state(Authctxt *authctxt)
691 /* XXX clear authentication state */
692 if (authctxt->last_key != NULL && authctxt->last_key_hint == -1) {
693 debug3("clear_auth_state: key_free %p", authctxt->last_key);
694 key_free(authctxt->last_key);
696 authctxt->last_key = NULL;
697 authctxt->last_key_hint = -2;
698 authctxt->last_key_sign = NULL;
702 sign_and_send_pubkey(Authctxt *authctxt, Key *k, sign_cb_fn *sign_callback)
705 u_char *blob, *signature;
711 debug3("sign_and_send_pubkey");
713 if (key_to_blob(k, &blob, &bloblen) == 0) {
714 /* we cannot handle this key */
715 debug3("sign_and_send_pubkey: cannot handle key");
718 /* data to be signed */
720 if (datafellows & SSH_OLD_SESSIONID) {
721 buffer_append(&b, session_id2, session_id2_len);
722 skip = session_id2_len;
724 buffer_put_string(&b, session_id2, session_id2_len);
725 skip = buffer_len(&b);
727 buffer_put_char(&b, SSH2_MSG_USERAUTH_REQUEST);
728 buffer_put_cstring(&b, authctxt->server_user);
729 buffer_put_cstring(&b,
730 datafellows & SSH_BUG_PKSERVICE ?
733 if (datafellows & SSH_BUG_PKAUTH) {
734 buffer_put_char(&b, have_sig);
736 buffer_put_cstring(&b, authctxt->method->name);
737 buffer_put_char(&b, have_sig);
738 buffer_put_cstring(&b, key_ssh_name(k));
740 buffer_put_string(&b, blob, bloblen);
742 /* generate signature */
743 ret = (*sign_callback)(authctxt, k, &signature, &slen,
744 buffer_ptr(&b), buffer_len(&b));
753 if (datafellows & SSH_BUG_PKSERVICE) {
755 buffer_append(&b, session_id2, session_id2_len);
756 skip = session_id2_len;
757 buffer_put_char(&b, SSH2_MSG_USERAUTH_REQUEST);
758 buffer_put_cstring(&b, authctxt->server_user);
759 buffer_put_cstring(&b, authctxt->service);
760 buffer_put_cstring(&b, authctxt->method->name);
761 buffer_put_char(&b, have_sig);
762 if (!(datafellows & SSH_BUG_PKAUTH))
763 buffer_put_cstring(&b, key_ssh_name(k));
764 buffer_put_string(&b, blob, bloblen);
768 /* append signature */
769 buffer_put_string(&b, signature, slen);
772 /* skip session id and packet type */
773 if (buffer_len(&b) < skip + 1)
774 fatal("userauth_pubkey: internal error");
775 buffer_consume(&b, skip + 1);
777 /* put remaining data from buffer into packet */
778 packet_start(SSH2_MSG_USERAUTH_REQUEST);
779 packet_put_raw(buffer_ptr(&b), buffer_len(&b));
787 send_pubkey_test(Authctxt *authctxt, Key *k, sign_cb_fn *sign_callback,
791 u_int bloblen, have_sig = 0;
793 debug3("send_pubkey_test");
795 if (key_to_blob(k, &blob, &bloblen) == 0) {
796 /* we cannot handle this key */
797 debug3("send_pubkey_test: cannot handle key");
800 /* register callback for USERAUTH_PK_OK message */
801 authctxt->last_key_sign = sign_callback;
802 authctxt->last_key_hint = hint;
803 authctxt->last_key = k;
804 dispatch_set(SSH2_MSG_USERAUTH_PK_OK, &input_userauth_pk_ok);
806 packet_start(SSH2_MSG_USERAUTH_REQUEST);
807 packet_put_cstring(authctxt->server_user);
808 packet_put_cstring(authctxt->service);
809 packet_put_cstring(authctxt->method->name);
810 packet_put_char(have_sig);
811 if (!(datafellows & SSH_BUG_PKAUTH))
812 packet_put_cstring(key_ssh_name(k));
813 packet_put_string(blob, bloblen);
820 load_identity_file(char *filename)
823 char prompt[300], *passphrase;
827 if (stat(filename, &st) < 0) {
828 debug3("no such identity: %s", filename);
831 private = key_load_private_type(KEY_UNSPEC, filename, "", NULL);
832 if (private == NULL) {
833 if (options.batch_mode)
835 snprintf(prompt, sizeof prompt,
836 "Enter passphrase for key '%.100s': ", filename);
837 for (i = 0; i < options.number_of_password_prompts; i++) {
838 passphrase = read_passphrase(prompt, 0);
839 if (strcmp(passphrase, "") != 0) {
840 private = key_load_private_type(KEY_UNSPEC, filename,
844 debug2("no passphrase given, try next key");
847 memset(passphrase, 0, strlen(passphrase));
849 if (private != NULL || quit)
851 debug2("bad passphrase given, try again...");
858 identity_sign_cb(Authctxt *authctxt, Key *key, u_char **sigp, u_int *lenp,
859 u_char *data, u_int datalen)
864 idx = authctxt->last_key_hint;
868 /* private key is stored in external hardware */
869 if (options.identity_keys[idx]->flags & KEY_FLAG_EXT)
870 return key_sign(options.identity_keys[idx], sigp, lenp, data, datalen);
872 private = load_identity_file(options.identity_files[idx]);
875 ret = key_sign(private, sigp, lenp, data, datalen);
881 agent_sign_cb(Authctxt *authctxt, Key *key, u_char **sigp, u_int *lenp,
882 u_char *data, u_int datalen)
884 return ssh_agent_sign(authctxt->agent, key, sigp, lenp, data, datalen);
888 key_sign_cb(Authctxt *authctxt, Key *key, u_char **sigp, u_int *lenp,
889 u_char *data, u_int datalen)
891 return key_sign(key, sigp, lenp, data, datalen);
895 userauth_pubkey_agent(Authctxt *authctxt)
897 static int called = 0;
903 if (ssh_get_num_identities(authctxt->agent, 2) == 0)
904 debug2("userauth_pubkey_agent: no keys at all");
907 k = ssh_get_next_identity(authctxt->agent, &comment, 2);
909 debug2("userauth_pubkey_agent: no more keys");
911 debug("userauth_pubkey_agent: testing agent key %s", comment);
913 ret = send_pubkey_test(authctxt, k, agent_sign_cb, -1);
918 debug2("userauth_pubkey_agent: no message sent");
923 userauth_pubkey(Authctxt *authctxt)
930 if (authctxt->agent != NULL) {
932 sent = userauth_pubkey_agent(authctxt);
933 } while (!sent && authctxt->agent->howmany > 0);
935 while (!sent && idx < options.num_identity_files) {
936 key = options.identity_keys[idx];
937 filename = options.identity_files[idx];
939 debug("try privkey: %s", filename);
940 key = load_identity_file(filename);
942 sent = sign_and_send_pubkey(authctxt, key,
946 } else if (key->type != KEY_RSA1) {
947 debug("try pubkey: %s", filename);
948 sent = send_pubkey_test(authctxt, key,
949 identity_sign_cb, idx);
957 * Send userauth request message specifying keyboard-interactive method.
960 userauth_kbdint(Authctxt *authctxt)
962 static int attempt = 0;
964 if (attempt++ >= options.number_of_password_prompts)
966 /* disable if no SSH2_MSG_USERAUTH_INFO_REQUEST has been seen */
967 if (attempt > 1 && !authctxt->info_req_seen) {
968 debug3("userauth_kbdint: disable: no info_req_seen");
969 dispatch_set(SSH2_MSG_USERAUTH_INFO_REQUEST, NULL);
973 debug2("userauth_kbdint");
974 packet_start(SSH2_MSG_USERAUTH_REQUEST);
975 packet_put_cstring(authctxt->server_user);
976 packet_put_cstring(authctxt->service);
977 packet_put_cstring(authctxt->method->name);
978 packet_put_cstring(""); /* lang */
979 packet_put_cstring(options.kbd_interactive_devices ?
980 options.kbd_interactive_devices : "");
983 dispatch_set(SSH2_MSG_USERAUTH_INFO_REQUEST, &input_userauth_info_req);
988 * parse INFO_REQUEST, prompt user and send INFO_RESPONSE
991 input_userauth_info_req(int type, u_int32_t seq, void *ctxt)
993 Authctxt *authctxt = ctxt;
994 char *name, *inst, *lang, *prompt, *response;
995 u_int num_prompts, i;
998 debug2("input_userauth_info_req");
1000 if (authctxt == NULL)
1001 fatal("input_userauth_info_req: no authentication context");
1003 authctxt->info_req_seen = 1;
1005 name = packet_get_string(NULL);
1006 inst = packet_get_string(NULL);
1007 lang = packet_get_string(NULL);
1008 if (strlen(name) > 0)
1010 if (strlen(inst) > 0)
1016 num_prompts = packet_get_int();
1018 * Begin to build info response packet based on prompts requested.
1019 * We commit to providing the correct number of responses, so if
1020 * further on we run into a problem that prevents this, we have to
1021 * be sure and clean this up and send a correct error response.
1023 packet_start(SSH2_MSG_USERAUTH_INFO_RESPONSE);
1024 packet_put_int(num_prompts);
1026 debug2("input_userauth_info_req: num_prompts %d", num_prompts);
1027 for (i = 0; i < num_prompts; i++) {
1028 prompt = packet_get_string(NULL);
1029 echo = packet_get_char();
1031 response = read_passphrase(prompt, echo ? RP_ECHO : 0);
1033 packet_put_cstring(response);
1034 memset(response, 0, strlen(response));
1038 packet_check_eom(); /* done with parsing incoming message. */
1040 packet_add_padding(64);
1045 * this will be move to an external program (ssh-keysign) ASAP. ssh-keysign
1046 * will be setuid-root and the sbit can be removed from /usr/bin/ssh.
1049 userauth_hostbased(Authctxt *authctxt)
1051 Key *private = NULL;
1053 u_char *signature, *blob;
1054 char *chost, *pkalg, *p;
1055 const char *service;
1057 int ok, i, len, found = 0;
1059 /* check for a useful key */
1060 for (i = 0; i < authctxt->nkeys; i++) {
1061 private = authctxt->keys[i];
1062 if (private && private->type != KEY_RSA1) {
1064 /* we take and free the key */
1065 authctxt->keys[i] = NULL;
1070 debug("userauth_hostbased: no more client hostkeys");
1073 if (key_to_blob(private, &blob, &blen) == 0) {
1077 /* figure out a name for the client host */
1078 p = get_local_name(packet_get_connection_in());
1080 error("userauth_hostbased: cannot get local ipaddr/name");
1084 len = strlen(p) + 2;
1085 chost = xmalloc(len);
1086 strlcpy(chost, p, len);
1087 strlcat(chost, ".", len);
1088 debug2("userauth_hostbased: chost %s", chost);
1090 service = datafellows & SSH_BUG_HBSERVICE ? "ssh-userauth" :
1092 pkalg = xstrdup(key_ssh_name(private));
1094 /* construct data */
1095 buffer_put_string(&b, session_id2, session_id2_len);
1096 buffer_put_char(&b, SSH2_MSG_USERAUTH_REQUEST);
1097 buffer_put_cstring(&b, authctxt->server_user);
1098 buffer_put_cstring(&b, service);
1099 buffer_put_cstring(&b, authctxt->method->name);
1100 buffer_put_cstring(&b, pkalg);
1101 buffer_put_string(&b, blob, blen);
1102 buffer_put_cstring(&b, chost);
1103 buffer_put_cstring(&b, authctxt->local_user);
1107 ok = key_sign(private, &signature, &slen, buffer_ptr(&b), buffer_len(&b));
1111 error("key_sign failed");
1116 packet_start(SSH2_MSG_USERAUTH_REQUEST);
1117 packet_put_cstring(authctxt->server_user);
1118 packet_put_cstring(authctxt->service);
1119 packet_put_cstring(authctxt->method->name);
1120 packet_put_cstring(pkalg);
1121 packet_put_string(blob, blen);
1122 packet_put_cstring(chost);
1123 packet_put_cstring(authctxt->local_user);
1124 packet_put_string(signature, slen);
1125 memset(signature, 's', slen);
1134 /* find auth method */
1137 * given auth method name, if configurable options permit this method fill
1138 * in auth_ident field and return true, otherwise return false.
1141 authmethod_is_enabled(Authmethod *method)
1145 /* return false if options indicate this method is disabled */
1146 if (method->enabled == NULL || *method->enabled == 0)
1148 /* return false if batch mode is enabled but method needs interactive mode */
1149 if (method->batch_flag != NULL && *method->batch_flag != 0)
1155 authmethod_lookup(const char *name)
1157 Authmethod *method = NULL;
1159 for (method = authmethods; method->name != NULL; method++)
1160 if (strcmp(name, method->name) == 0)
1162 debug2("Unrecognized authentication method name: %s", name ? name : "NULL");
1166 /* XXX internal state */
1167 static Authmethod *current = NULL;
1168 static char *supported = NULL;
1169 static char *preferred = NULL;
1171 * Given the authentication method list sent by the server, return the
1172 * next method we should try. If the server initially sends a nil list,
1173 * use a built-in default list.
1176 authmethod_get(char *authlist)
1182 /* Use a suitable default if we're passed a nil list. */
1183 if (authlist == NULL || strlen(authlist) == 0)
1184 authlist = options.preferred_authentications;
1186 if (supported == NULL || strcmp(authlist, supported) != 0) {
1187 debug3("start over, passed a different list %s", authlist);
1188 if (supported != NULL)
1190 supported = xstrdup(authlist);
1191 preferred = options.preferred_authentications;
1192 debug3("preferred %s", preferred);
1194 } else if (current != NULL && authmethod_is_enabled(current))
1198 if ((name = match_list(preferred, supported, &next)) == NULL) {
1199 debug("no more auth methods to try");
1204 debug3("authmethod_lookup %s", name);
1205 debug3("remaining preferred: %s", preferred);
1206 if ((current = authmethod_lookup(name)) != NULL &&
1207 authmethod_is_enabled(current)) {
1208 debug3("authmethod_is_enabled %s", name);
1209 debug("next auth method to try is %s", name);
1216 authmethods_get(void)
1218 Authmethod *method = NULL;
1223 for (method = authmethods; method->name != NULL; method++) {
1224 if (authmethod_is_enabled(method)) {
1225 if (buffer_len(&b) > 0)
1226 buffer_append(&b, ",", 1);
1227 buffer_append(&b, method->name, strlen(method->name));
1230 buffer_append(&b, "\0", 1);
1231 list = xstrdup(buffer_ptr(&b));
andersk / gssapi-openssh.git / blob