]>
Commit | Line | Data |
---|---|---|
8b10e20e | 1 | /* $OpenBSD: authfd.h,v 1.31 2002/09/11 18:27:25 stevesk Exp $ */ |
93c3b6de | 2 | |
8efc0c15 | 3 | /* |
5260325f | 4 | * Author: Tatu Ylonen <ylo@cs.hut.fi> |
5260325f | 5 | * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
6 | * All rights reserved | |
5260325f | 7 | * Functions to interface with the SSH_AUTHENTICATION_FD socket. |
6ae2364d | 8 | * |
bcbf86ec | 9 | * As far as I am concerned, the code I have written for this software |
10 | * can be used freely for any purpose. Any derived versions of this | |
11 | * software must be clearly marked as such, and if the derived work is | |
12 | * incompatible with the protocol description in the RFC file, it must be | |
13 | * called by a name other than "ssh" or "Secure Shell". | |
5260325f | 14 | */ |
8efc0c15 | 15 | |
8efc0c15 | 16 | #ifndef AUTHFD_H |
17 | #define AUTHFD_H | |
18 | ||
19 | #include "buffer.h" | |
20 | ||
21 | /* Messages for the authentication agent connection. */ | |
22 | #define SSH_AGENTC_REQUEST_RSA_IDENTITIES 1 | |
23 | #define SSH_AGENT_RSA_IDENTITIES_ANSWER 2 | |
24 | #define SSH_AGENTC_RSA_CHALLENGE 3 | |
25 | #define SSH_AGENT_RSA_RESPONSE 4 | |
26 | #define SSH_AGENT_FAILURE 5 | |
27 | #define SSH_AGENT_SUCCESS 6 | |
28 | #define SSH_AGENTC_ADD_RSA_IDENTITY 7 | |
29 | #define SSH_AGENTC_REMOVE_RSA_IDENTITY 8 | |
30 | #define SSH_AGENTC_REMOVE_ALL_RSA_IDENTITIES 9 | |
31 | ||
94ec8c6b | 32 | /* private OpenSSH extensions for SSH2 */ |
4c8722d9 | 33 | #define SSH2_AGENTC_REQUEST_IDENTITIES 11 |
34 | #define SSH2_AGENT_IDENTITIES_ANSWER 12 | |
35 | #define SSH2_AGENTC_SIGN_REQUEST 13 | |
36 | #define SSH2_AGENT_SIGN_RESPONSE 14 | |
4c8722d9 | 37 | #define SSH2_AGENTC_ADD_IDENTITY 17 |
38 | #define SSH2_AGENTC_REMOVE_IDENTITY 18 | |
39 | #define SSH2_AGENTC_REMOVE_ALL_IDENTITIES 19 | |
40 | ||
983def13 | 41 | /* smartcard */ |
42 | #define SSH_AGENTC_ADD_SMARTCARD_KEY 20 | |
7203d6bb | 43 | #define SSH_AGENTC_REMOVE_SMARTCARD_KEY 21 |
983def13 | 44 | |
3db7f994 | 45 | /* lock/unlock the agent */ |
46 | #define SSH_AGENTC_LOCK 22 | |
7203d6bb | 47 | #define SSH_AGENTC_UNLOCK 23 |
3db7f994 | 48 | |
ee900f87 | 49 | /* add key with constraints */ |
50 | #define SSH_AGENTC_ADD_RSA_ID_CONSTRAINED 24 | |
51 | #define SSH2_AGENTC_ADD_ID_CONSTRAINED 25 | |
37500e74 | 52 | |
405e0c5e | 53 | #define SSH_AGENT_CONSTRAIN_LIFETIME 1 |
264572cc | 54 | |
65e683bd | 55 | /* extended failure messages */ |
56 | #define SSH2_AGENT_FAILURE 30 | |
57 | ||
94ec8c6b | 58 | /* additional error code for ssh.com's ssh-agent2 */ |
7203d6bb | 59 | #define SSH_COM_AGENT2_FAILURE 102 |
94ec8c6b | 60 | |
188adeb2 | 61 | #define SSH_AGENT_OLD_SIGNATURE 0x01 |
62 | ||
5260325f | 63 | typedef struct { |
7203d6bb | 64 | int fd; |
65 | Buffer identities; | |
66 | int howmany; | |
67 | } AuthenticationConnection; | |
2e73a022 | 68 | |
8b10e20e | 69 | int ssh_agent_present(void); |
7203d6bb | 70 | int ssh_get_authentication_socket(void); |
71 | void ssh_close_authentication_socket(int); | |
8efc0c15 | 72 | |
1e3b8b07 | 73 | AuthenticationConnection *ssh_get_authentication_connection(void); |
7203d6bb | 74 | void ssh_close_authentication_connection(AuthenticationConnection *); |
255cabd9 | 75 | int ssh_get_num_identities(AuthenticationConnection *, int); |
2a1e4639 | 76 | Key *ssh_get_first_identity(AuthenticationConnection *, char **, int); |
2a1e4639 | 77 | Key *ssh_get_next_identity(AuthenticationConnection *, char **, int); |
255cabd9 | 78 | int ssh_add_identity(AuthenticationConnection *, Key *, const char *); |
ee900f87 | 79 | int ssh_add_identity_constrained(AuthenticationConnection *, Key *, const char *, u_int); |
9ff6f66f | 80 | int ssh_remove_identity(AuthenticationConnection *, Key *); |
255cabd9 | 81 | int ssh_remove_all_identities(AuthenticationConnection *, int); |
3db7f994 | 82 | int ssh_lock_agent(AuthenticationConnection *, int, const char *); |
76139bd8 | 83 | int ssh_update_card(AuthenticationConnection *, int, const char *, const char *); |
8efc0c15 | 84 | |
6ae2364d | 85 | int |
2a1e4639 | 86 | ssh_decrypt_challenge(AuthenticationConnection *, Key *, BIGNUM *, u_char[16], |
87 | u_int, u_char[16]); | |
8efc0c15 | 88 | |
6ae2364d | 89 | int |
c66f9d0e | 90 | ssh_agent_sign(AuthenticationConnection *, Key *, u_char **, u_int *, u_char *, |
91 | u_int); | |
8efc0c15 | 92 | |
5260325f | 93 | #endif /* AUTHFD_H */ |