]> andersk Git - openssh.git/blame - readconf.c
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- Merge big update to OpenSSH-2.0 from OpenBSD CVS
[openssh.git] / readconf.c
CommitLineData
8efc0c15 1/*
6ae2364d 2 *
5260325f 3 * readconf.c
6ae2364d 4 *
5260325f 5 * Author: Tatu Ylonen <ylo@cs.hut.fi>
6ae2364d 6 *
5260325f 7 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
8 * All rights reserved
6ae2364d 9 *
5260325f 10 * Created: Sat Apr 22 00:03:10 1995 ylo
6ae2364d 11 *
5260325f 12 * Functions for reading the configuration files.
6ae2364d 13 *
5260325f 14 */
8efc0c15 15
16#include "includes.h"
17RCSID("$Id$");
18
19#include "ssh.h"
20#include "cipher.h"
21#include "readconf.h"
7368a6c8 22#include "match.h"
8efc0c15 23#include "xmalloc.h"
a8be9f80 24#include "compat.h"
8efc0c15 25
26/* Format of the configuration file:
27
28 # Configuration data is parsed as follows:
29 # 1. command line options
30 # 2. user-specific file
31 # 3. system-wide file
32 # Any configuration value is only changed the first time it is set.
33 # Thus, host-specific definitions should be at the beginning of the
34 # configuration file, and defaults at the end.
35
36 # Host-specific declarations. These may override anything above. A single
37 # host may match multiple declarations; these are processed in the order
38 # that they are given in.
39
40 Host *.ngs.fi ngs.fi
41 FallBackToRsh no
42
43 Host fake.com
44 HostName another.host.name.real.org
45 User blaah
46 Port 34289
47 ForwardX11 no
48 ForwardAgent no
49
50 Host books.com
51 RemoteForward 9999 shadows.cs.hut.fi:9999
52 Cipher 3des
53
54 Host fascist.blob.com
55 Port 23123
56 User tylonen
57 RhostsAuthentication no
58 PasswordAuthentication no
59
60 Host puukko.hut.fi
61 User t35124p
62 ProxyCommand ssh-proxy %h %p
63
64 Host *.fr
65 UseRsh yes
66
67 Host *.su
68 Cipher none
69 PasswordAuthentication no
70
71 # Defaults for various options
72 Host *
73 ForwardAgent no
74 ForwardX11 yes
75 RhostsAuthentication yes
76 PasswordAuthentication yes
77 RSAAuthentication yes
78 RhostsRSAAuthentication yes
79 FallBackToRsh no
80 UseRsh no
81 StrictHostKeyChecking yes
82 KeepAlives no
83 IdentityFile ~/.ssh/identity
84 Port 22
85 EscapeChar ~
86
87*/
88
89/* Keyword tokens. */
90
5260325f 91typedef enum {
92 oBadOption,
93 oForwardAgent, oForwardX11, oGatewayPorts, oRhostsAuthentication,
94 oPasswordAuthentication, oRSAAuthentication, oFallBackToRsh, oUseRsh,
95 oSkeyAuthentication,
8efc0c15 96#ifdef KRB4
5260325f 97 oKerberosAuthentication,
8efc0c15 98#endif /* KRB4 */
99#ifdef AFS
5260325f 100 oKerberosTgtPassing, oAFSTokenPassing,
8efc0c15 101#endif
5260325f 102 oIdentityFile, oHostName, oPort, oCipher, oRemoteForward, oLocalForward,
103 oUser, oHost, oEscapeChar, oRhostsRSAAuthentication, oProxyCommand,
104 oGlobalKnownHostsFile, oUserKnownHostsFile, oConnectionAttempts,
105 oBatchMode, oCheckHostIP, oStrictHostKeyChecking, oCompression,
106 oCompressionLevel, oKeepAlives, oNumberOfPasswordPrompts, oTISAuthentication,
a306f2dd 107 oUsePrivilegedPort, oLogLevel, oCiphers, oProtocol, oIdentityFile2,
108 oGlobalKnownHostsFile2, oUserKnownHostsFile2
8efc0c15 109} OpCodes;
110
111/* Textual representations of the tokens. */
112
5260325f 113static struct {
114 const char *name;
115 OpCodes opcode;
116} keywords[] = {
117 { "forwardagent", oForwardAgent },
118 { "forwardx11", oForwardX11 },
119 { "gatewayports", oGatewayPorts },
120 { "useprivilegedport", oUsePrivilegedPort },
121 { "rhostsauthentication", oRhostsAuthentication },
122 { "passwordauthentication", oPasswordAuthentication },
123 { "rsaauthentication", oRSAAuthentication },
124 { "skeyauthentication", oSkeyAuthentication },
8efc0c15 125#ifdef KRB4
5260325f 126 { "kerberosauthentication", oKerberosAuthentication },
8efc0c15 127#endif /* KRB4 */
128#ifdef AFS
5260325f 129 { "kerberostgtpassing", oKerberosTgtPassing },
130 { "afstokenpassing", oAFSTokenPassing },
8efc0c15 131#endif
5260325f 132 { "fallbacktorsh", oFallBackToRsh },
133 { "usersh", oUseRsh },
134 { "identityfile", oIdentityFile },
a306f2dd 135 { "identityfile2", oIdentityFile2 },
5260325f 136 { "hostname", oHostName },
137 { "proxycommand", oProxyCommand },
138 { "port", oPort },
139 { "cipher", oCipher },
a8be9f80 140 { "ciphers", oCiphers },
141 { "protocol", oProtocol },
5260325f 142 { "remoteforward", oRemoteForward },
143 { "localforward", oLocalForward },
144 { "user", oUser },
145 { "host", oHost },
146 { "escapechar", oEscapeChar },
147 { "rhostsrsaauthentication", oRhostsRSAAuthentication },
148 { "globalknownhostsfile", oGlobalKnownHostsFile },
149 { "userknownhostsfile", oUserKnownHostsFile },
a306f2dd 150 { "globalknownhostsfile2", oGlobalKnownHostsFile2 },
151 { "userknownhostsfile2", oUserKnownHostsFile2 },
5260325f 152 { "connectionattempts", oConnectionAttempts },
153 { "batchmode", oBatchMode },
154 { "checkhostip", oCheckHostIP },
155 { "stricthostkeychecking", oStrictHostKeyChecking },
156 { "compression", oCompression },
157 { "compressionlevel", oCompressionLevel },
158 { "keepalive", oKeepAlives },
159 { "numberofpasswordprompts", oNumberOfPasswordPrompts },
160 { "tisauthentication", oTISAuthentication },
161 { "loglevel", oLogLevel },
162 { NULL, 0 }
6a17f9c2 163};
164
8efc0c15 165/* Characters considered whitespace in strtok calls. */
166#define WHITESPACE " \t\r\n"
167
168
aa3378df 169/*
170 * Adds a local TCP/IP port forward to options. Never returns if there is an
171 * error.
172 */
8efc0c15 173
6ae2364d 174void
57112b5a 175add_local_forward(Options *options, u_short port, const char *host,
176 u_short host_port)
8efc0c15 177{
5260325f 178 Forward *fwd;
179 extern uid_t original_real_uid;
5260325f 180 if (port < IPPORT_RESERVED && original_real_uid != 0)
181 fatal("Privileged ports can only be forwarded by root.\n");
182 if (options->num_local_forwards >= SSH_MAX_FORWARDS_PER_DIRECTION)
183 fatal("Too many local forwards (max %d).", SSH_MAX_FORWARDS_PER_DIRECTION);
184 fwd = &options->local_forwards[options->num_local_forwards++];
185 fwd->port = port;
186 fwd->host = xstrdup(host);
187 fwd->host_port = host_port;
8efc0c15 188}
189
aa3378df 190/*
191 * Adds a remote TCP/IP port forward to options. Never returns if there is
192 * an error.
193 */
8efc0c15 194
6ae2364d 195void
57112b5a 196add_remote_forward(Options *options, u_short port, const char *host,
197 u_short host_port)
8efc0c15 198{
5260325f 199 Forward *fwd;
200 if (options->num_remote_forwards >= SSH_MAX_FORWARDS_PER_DIRECTION)
201 fatal("Too many remote forwards (max %d).",
202 SSH_MAX_FORWARDS_PER_DIRECTION);
203 fwd = &options->remote_forwards[options->num_remote_forwards++];
204 fwd->port = port;
205 fwd->host = xstrdup(host);
206 fwd->host_port = host_port;
8efc0c15 207}
208
aa3378df 209/*
210 * Returns the number of the token pointed to by cp of length len. Never
211 * returns if the token is not known.
212 */
8efc0c15 213
6ae2364d 214static OpCodes
5260325f 215parse_token(const char *cp, const char *filename, int linenum)
8efc0c15 216{
5260325f 217 unsigned int i;
8efc0c15 218
5260325f 219 for (i = 0; keywords[i].name; i++)
aa3378df 220 if (strcasecmp(cp, keywords[i].name) == 0)
5260325f 221 return keywords[i].opcode;
8efc0c15 222
5260325f 223 fprintf(stderr, "%s: line %d: Bad configuration option: %s\n",
224 filename, linenum, cp);
225 return oBadOption;
8efc0c15 226}
227
aa3378df 228/*
229 * Processes a single option line as used in the configuration files. This
230 * only sets those values that have not already been set.
231 */
8efc0c15 232
e7c0f9d5 233int
234process_config_line(Options *options, const char *host,
5260325f 235 char *line, const char *filename, int linenum,
236 int *activep)
8efc0c15 237{
aa3378df 238 char buf[256], *cp, *string, **charptr, *cp2;
57112b5a 239 int opcode, *intptr, value;
240 u_short fwd_port, fwd_host_port;
5260325f 241
242 /* Skip leading whitespace. */
243 cp = line + strspn(line, WHITESPACE);
244 if (!*cp || *cp == '\n' || *cp == '#')
245 return 0;
246
aa3378df 247 /* Get the keyword. (Each line is supposed to begin with a keyword). */
5260325f 248 cp = strtok(cp, WHITESPACE);
5260325f 249 opcode = parse_token(cp, filename, linenum);
250
251 switch (opcode) {
252 case oBadOption:
aa3378df 253 /* don't panic, but count bad options */
254 return -1;
5260325f 255 /* NOTREACHED */
256 case oForwardAgent:
257 intptr = &options->forward_agent;
258parse_flag:
259 cp = strtok(NULL, WHITESPACE);
260 if (!cp)
261 fatal("%.200s line %d: Missing yes/no argument.", filename, linenum);
262 value = 0; /* To avoid compiler warning... */
263 if (strcmp(cp, "yes") == 0 || strcmp(cp, "true") == 0)
264 value = 1;
265 else if (strcmp(cp, "no") == 0 || strcmp(cp, "false") == 0)
266 value = 0;
267 else
268 fatal("%.200s line %d: Bad yes/no argument.", filename, linenum);
269 if (*activep && *intptr == -1)
270 *intptr = value;
271 break;
272
273 case oForwardX11:
274 intptr = &options->forward_x11;
275 goto parse_flag;
276
277 case oGatewayPorts:
278 intptr = &options->gateway_ports;
279 goto parse_flag;
280
281 case oUsePrivilegedPort:
282 intptr = &options->use_privileged_port;
283 goto parse_flag;
284
285 case oRhostsAuthentication:
286 intptr = &options->rhosts_authentication;
287 goto parse_flag;
288
289 case oPasswordAuthentication:
290 intptr = &options->password_authentication;
291 goto parse_flag;
292
293 case oRSAAuthentication:
294 intptr = &options->rsa_authentication;
295 goto parse_flag;
296
297 case oRhostsRSAAuthentication:
298 intptr = &options->rhosts_rsa_authentication;
299 goto parse_flag;
300
301 case oTISAuthentication:
302 /* fallthrough, there is no difference on the client side */
303 case oSkeyAuthentication:
304 intptr = &options->skey_authentication;
305 goto parse_flag;
8efc0c15 306
307#ifdef KRB4
5260325f 308 case oKerberosAuthentication:
309 intptr = &options->kerberos_authentication;
310 goto parse_flag;
8efc0c15 311#endif /* KRB4 */
312
313#ifdef AFS
5260325f 314 case oKerberosTgtPassing:
315 intptr = &options->kerberos_tgt_passing;
316 goto parse_flag;
8efc0c15 317
5260325f 318 case oAFSTokenPassing:
319 intptr = &options->afs_token_passing;
320 goto parse_flag;
8efc0c15 321#endif
5260325f 322
323 case oFallBackToRsh:
324 intptr = &options->fallback_to_rsh;
325 goto parse_flag;
326
327 case oUseRsh:
328 intptr = &options->use_rsh;
329 goto parse_flag;
330
331 case oBatchMode:
332 intptr = &options->batch_mode;
333 goto parse_flag;
334
335 case oCheckHostIP:
336 intptr = &options->check_host_ip;
337 goto parse_flag;
338
339 case oStrictHostKeyChecking:
340 intptr = &options->strict_host_key_checking;
341 cp = strtok(NULL, WHITESPACE);
342 if (!cp)
343 fatal("%.200s line %d: Missing yes/no argument.",
344 filename, linenum);
345 value = 0; /* To avoid compiler warning... */
346 if (strcmp(cp, "yes") == 0 || strcmp(cp, "true") == 0)
347 value = 1;
348 else if (strcmp(cp, "no") == 0 || strcmp(cp, "false") == 0)
349 value = 0;
350 else if (strcmp(cp, "ask") == 0)
351 value = 2;
352 else
353 fatal("%.200s line %d: Bad yes/no/ask argument.", filename, linenum);
354 if (*activep && *intptr == -1)
355 *intptr = value;
356 break;
357
358 case oCompression:
359 intptr = &options->compression;
360 goto parse_flag;
361
362 case oKeepAlives:
363 intptr = &options->keepalives;
364 goto parse_flag;
365
366 case oNumberOfPasswordPrompts:
367 intptr = &options->number_of_password_prompts;
368 goto parse_int;
369
370 case oCompressionLevel:
371 intptr = &options->compression_level;
372 goto parse_int;
373
374 case oIdentityFile:
a306f2dd 375 case oIdentityFile2:
5260325f 376 cp = strtok(NULL, WHITESPACE);
377 if (!cp)
378 fatal("%.200s line %d: Missing argument.", filename, linenum);
379 if (*activep) {
a306f2dd 380 intptr = (opcode == oIdentityFile) ?
381 &options->num_identity_files :
382 &options->num_identity_files2;
383 if (*intptr >= SSH_MAX_IDENTITY_FILES)
5260325f 384 fatal("%.200s line %d: Too many identity files specified (max %d).",
385 filename, linenum, SSH_MAX_IDENTITY_FILES);
a306f2dd 386 charptr = (opcode == oIdentityFile) ?
387 &options->identity_files[*intptr] :
388 &options->identity_files2[*intptr];
389 *charptr = xstrdup(cp);
390 *intptr = *intptr + 1;
5260325f 391 }
392 break;
393
394 case oUser:
395 charptr = &options->user;
396parse_string:
397 cp = strtok(NULL, WHITESPACE);
398 if (!cp)
399 fatal("%.200s line %d: Missing argument.", filename, linenum);
400 if (*activep && *charptr == NULL)
401 *charptr = xstrdup(cp);
402 break;
403
404 case oGlobalKnownHostsFile:
405 charptr = &options->system_hostfile;
406 goto parse_string;
407
408 case oUserKnownHostsFile:
409 charptr = &options->user_hostfile;
410 goto parse_string;
411
a306f2dd 412 case oGlobalKnownHostsFile2:
413 charptr = &options->system_hostfile2;
414 goto parse_string;
415
416 case oUserKnownHostsFile2:
417 charptr = &options->user_hostfile2;
418 goto parse_string;
419
5260325f 420 case oHostName:
421 charptr = &options->hostname;
422 goto parse_string;
423
424 case oProxyCommand:
425 charptr = &options->proxy_command;
426 string = xstrdup("");
427 while ((cp = strtok(NULL, WHITESPACE)) != NULL) {
428 string = xrealloc(string, strlen(string) + strlen(cp) + 2);
429 strcat(string, " ");
430 strcat(string, cp);
431 }
432 if (*activep && *charptr == NULL)
433 *charptr = string;
434 else
435 xfree(string);
436 return 0;
437
438 case oPort:
439 intptr = &options->port;
440parse_int:
441 cp = strtok(NULL, WHITESPACE);
442 if (!cp)
443 fatal("%.200s line %d: Missing argument.", filename, linenum);
444 if (cp[0] < '0' || cp[0] > '9')
445 fatal("%.200s line %d: Bad number.", filename, linenum);
aa3378df 446
447 /* Octal, decimal, or hex format? */
448 value = strtol(cp, &cp2, 0);
449 if (cp == cp2)
450 fatal("%.200s line %d: Bad number.", filename, linenum);
5260325f 451 if (*activep && *intptr == -1)
452 *intptr = value;
453 break;
454
455 case oConnectionAttempts:
456 intptr = &options->connection_attempts;
457 goto parse_int;
458
459 case oCipher:
460 intptr = &options->cipher;
461 cp = strtok(NULL, WHITESPACE);
462 value = cipher_number(cp);
463 if (value == -1)
464 fatal("%.200s line %d: Bad cipher '%s'.",
465 filename, linenum, cp ? cp : "<NONE>");
466 if (*activep && *intptr == -1)
467 *intptr = value;
468 break;
469
a8be9f80 470 case oCiphers:
471 cp = strtok(NULL, WHITESPACE);
472 if (!ciphers_valid(cp))
473 fatal("%.200s line %d: Bad cipher spec '%s'.",
474 filename, linenum, cp ? cp : "<NONE>");
475 if (*activep && options->ciphers == NULL)
476 options->ciphers = xstrdup(cp);
477 break;
478
479 case oProtocol:
480 intptr = &options->protocol;
481 cp = strtok(NULL, WHITESPACE);
482 value = proto_spec(cp);
483 if (value == SSH_PROTO_UNKNOWN)
484 fatal("%.200s line %d: Bad protocol spec '%s'.",
485 filename, linenum, cp ? cp : "<NONE>");
486 if (*activep && *intptr == SSH_PROTO_UNKNOWN)
487 *intptr = value;
488 break;
489
5260325f 490 case oLogLevel:
491 intptr = (int *) &options->log_level;
492 cp = strtok(NULL, WHITESPACE);
493 value = log_level_number(cp);
494 if (value == (LogLevel) - 1)
495 fatal("%.200s line %d: unsupported log level '%s'\n",
496 filename, linenum, cp ? cp : "<NONE>");
497 if (*activep && (LogLevel) * intptr == -1)
498 *intptr = (LogLevel) value;
499 break;
500
501 case oRemoteForward:
502 cp = strtok(NULL, WHITESPACE);
503 if (!cp)
504 fatal("%.200s line %d: Missing argument.", filename, linenum);
505 if (cp[0] < '0' || cp[0] > '9')
506 fatal("%.200s line %d: Badly formatted port number.",
507 filename, linenum);
508 fwd_port = atoi(cp);
509 cp = strtok(NULL, WHITESPACE);
510 if (!cp)
511 fatal("%.200s line %d: Missing second argument.",
512 filename, linenum);
57112b5a 513 if (sscanf(cp, "%255[^:]:%hu", buf, &fwd_host_port) != 2)
5260325f 514 fatal("%.200s line %d: Badly formatted host:port.",
515 filename, linenum);
516 if (*activep)
517 add_remote_forward(options, fwd_port, buf, fwd_host_port);
518 break;
519
520 case oLocalForward:
521 cp = strtok(NULL, WHITESPACE);
522 if (!cp)
523 fatal("%.200s line %d: Missing argument.", filename, linenum);
524 if (cp[0] < '0' || cp[0] > '9')
525 fatal("%.200s line %d: Badly formatted port number.",
526 filename, linenum);
527 fwd_port = atoi(cp);
528 cp = strtok(NULL, WHITESPACE);
529 if (!cp)
530 fatal("%.200s line %d: Missing second argument.",
531 filename, linenum);
57112b5a 532 if (sscanf(cp, "%255[^:]:%hu", buf, &fwd_host_port) != 2)
5260325f 533 fatal("%.200s line %d: Badly formatted host:port.",
534 filename, linenum);
535 if (*activep)
536 add_local_forward(options, fwd_port, buf, fwd_host_port);
537 break;
538
539 case oHost:
540 *activep = 0;
541 while ((cp = strtok(NULL, WHITESPACE)) != NULL)
542 if (match_pattern(host, cp)) {
543 debug("Applying options for %.100s", cp);
544 *activep = 1;
545 break;
546 }
aa3378df 547 /* Avoid garbage check below, as strtok already returned NULL. */
5260325f 548 return 0;
549
550 case oEscapeChar:
551 intptr = &options->escape_char;
552 cp = strtok(NULL, WHITESPACE);
553 if (!cp)
554 fatal("%.200s line %d: Missing argument.", filename, linenum);
555 if (cp[0] == '^' && cp[2] == 0 &&
556 (unsigned char) cp[1] >= 64 && (unsigned char) cp[1] < 128)
557 value = (unsigned char) cp[1] & 31;
558 else if (strlen(cp) == 1)
559 value = (unsigned char) cp[0];
560 else if (strcmp(cp, "none") == 0)
561 value = -2;
562 else {
563 fatal("%.200s line %d: Bad escape character.",
564 filename, linenum);
565 /* NOTREACHED */
566 value = 0; /* Avoid compiler warning. */
567 }
568 if (*activep && *intptr == -1)
569 *intptr = value;
570 break;
571
572 default:
573 fatal("process_config_line: Unimplemented opcode %d", opcode);
574 }
575
576 /* Check that there is no garbage at end of line. */
577 if (strtok(NULL, WHITESPACE) != NULL)
578 fatal("%.200s line %d: garbage at end of line.",
579 filename, linenum);
580 return 0;
8efc0c15 581}
582
583
aa3378df 584/*
585 * Reads the config file and modifies the options accordingly. Options
586 * should already be initialized before this call. This never returns if
587 * there is an error. If the file does not exist, this returns immediately.
588 */
8efc0c15 589
6ae2364d 590void
5260325f 591read_config_file(const char *filename, const char *host, Options *options)
8efc0c15 592{
5260325f 593 FILE *f;
594 char line[1024];
595 int active, linenum;
596 int bad_options = 0;
597
598 /* Open the file. */
599 f = fopen(filename, "r");
600 if (!f)
601 return;
602
603 debug("Reading configuration data %.200s", filename);
604
aa3378df 605 /*
606 * Mark that we are now processing the options. This flag is turned
607 * on/off by Host specifications.
608 */
5260325f 609 active = 1;
610 linenum = 0;
611 while (fgets(line, sizeof(line), f)) {
612 /* Update line number counter. */
613 linenum++;
614 if (process_config_line(options, host, line, filename, linenum, &active) != 0)
615 bad_options++;
616 }
617 fclose(f);
618 if (bad_options > 0)
619 fatal("%s: terminating, %d bad configuration options\n",
620 filename, bad_options);
8efc0c15 621}
622
aa3378df 623/*
624 * Initializes options to special values that indicate that they have not yet
625 * been set. Read_config_file will only set options with this value. Options
626 * are processed in the following order: command line, user config file,
627 * system config file. Last, fill_default_options is called.
628 */
8efc0c15 629
6ae2364d 630void
5260325f 631initialize_options(Options * options)
8efc0c15 632{
5260325f 633 memset(options, 'X', sizeof(*options));
634 options->forward_agent = -1;
635 options->forward_x11 = -1;
636 options->gateway_ports = -1;
637 options->use_privileged_port = -1;
638 options->rhosts_authentication = -1;
639 options->rsa_authentication = -1;
640 options->skey_authentication = -1;
8efc0c15 641#ifdef KRB4
5260325f 642 options->kerberos_authentication = -1;
8efc0c15 643#endif
644#ifdef AFS
5260325f 645 options->kerberos_tgt_passing = -1;
646 options->afs_token_passing = -1;
8efc0c15 647#endif
5260325f 648 options->password_authentication = -1;
649 options->rhosts_rsa_authentication = -1;
650 options->fallback_to_rsh = -1;
651 options->use_rsh = -1;
652 options->batch_mode = -1;
653 options->check_host_ip = -1;
654 options->strict_host_key_checking = -1;
655 options->compression = -1;
656 options->keepalives = -1;
657 options->compression_level = -1;
658 options->port = -1;
659 options->connection_attempts = -1;
660 options->number_of_password_prompts = -1;
661 options->cipher = -1;
a8be9f80 662 options->ciphers = NULL;
663 options->protocol = SSH_PROTO_UNKNOWN;
5260325f 664 options->num_identity_files = 0;
a306f2dd 665 options->num_identity_files2 = 0;
5260325f 666 options->hostname = NULL;
667 options->proxy_command = NULL;
668 options->user = NULL;
669 options->escape_char = -1;
670 options->system_hostfile = NULL;
671 options->user_hostfile = NULL;
a306f2dd 672 options->system_hostfile2 = NULL;
673 options->user_hostfile2 = NULL;
5260325f 674 options->num_local_forwards = 0;
675 options->num_remote_forwards = 0;
676 options->log_level = (LogLevel) - 1;
8efc0c15 677}
678
aa3378df 679/*
680 * Called after processing other sources of option data, this fills those
681 * options for which no value has been specified with their default values.
682 */
8efc0c15 683
6ae2364d 684void
5260325f 685fill_default_options(Options * options)
8efc0c15 686{
5260325f 687 if (options->forward_agent == -1)
688 options->forward_agent = 1;
689 if (options->forward_x11 == -1)
c8d54615 690 options->forward_x11 = 0;
5260325f 691 if (options->gateway_ports == -1)
692 options->gateway_ports = 0;
693 if (options->use_privileged_port == -1)
694 options->use_privileged_port = 1;
695 if (options->rhosts_authentication == -1)
696 options->rhosts_authentication = 1;
697 if (options->rsa_authentication == -1)
698 options->rsa_authentication = 1;
699 if (options->skey_authentication == -1)
700 options->skey_authentication = 0;
8efc0c15 701#ifdef KRB4
5260325f 702 if (options->kerberos_authentication == -1)
703 options->kerberos_authentication = 1;
8efc0c15 704#endif /* KRB4 */
705#ifdef AFS
5260325f 706 if (options->kerberos_tgt_passing == -1)
707 options->kerberos_tgt_passing = 1;
708 if (options->afs_token_passing == -1)
709 options->afs_token_passing = 1;
8efc0c15 710#endif /* AFS */
5260325f 711 if (options->password_authentication == -1)
712 options->password_authentication = 1;
713 if (options->rhosts_rsa_authentication == -1)
714 options->rhosts_rsa_authentication = 1;
715 if (options->fallback_to_rsh == -1)
716 options->fallback_to_rsh = 1;
717 if (options->use_rsh == -1)
718 options->use_rsh = 0;
719 if (options->batch_mode == -1)
720 options->batch_mode = 0;
721 if (options->check_host_ip == -1)
722 options->check_host_ip = 1;
723 if (options->strict_host_key_checking == -1)
724 options->strict_host_key_checking = 2; /* 2 is default */
725 if (options->compression == -1)
726 options->compression = 0;
727 if (options->keepalives == -1)
728 options->keepalives = 1;
729 if (options->compression_level == -1)
730 options->compression_level = 6;
731 if (options->port == -1)
732 options->port = 0; /* Filled in ssh_connect. */
733 if (options->connection_attempts == -1)
734 options->connection_attempts = 4;
735 if (options->number_of_password_prompts == -1)
736 options->number_of_password_prompts = 3;
737 /* Selected in ssh_login(). */
738 if (options->cipher == -1)
739 options->cipher = SSH_CIPHER_NOT_SET;
a8be9f80 740 if (options->protocol == SSH_PROTO_UNKNOWN)
a306f2dd 741 options->protocol = SSH_PROTO_1|SSH_PROTO_2|SSH_PROTO_1_PREFERRED;
5260325f 742 if (options->num_identity_files == 0) {
743 options->identity_files[0] =
744 xmalloc(2 + strlen(SSH_CLIENT_IDENTITY) + 1);
745 sprintf(options->identity_files[0], "~/%.100s", SSH_CLIENT_IDENTITY);
746 options->num_identity_files = 1;
747 }
a306f2dd 748#if 0
749 if (options->num_identity_files2 == 0) {
750 options->identity_files2[0] =
751 xmalloc(2 + strlen(SSH2_CLIENT_IDENTITY) + 1);
752 sprintf(options->identity_files2[0], "~/%.100s", SSH2_CLIENT_IDENTITY);
753 options->num_identity_files2 = 1;
754 }
755#endif
5260325f 756 if (options->escape_char == -1)
757 options->escape_char = '~';
758 if (options->system_hostfile == NULL)
759 options->system_hostfile = SSH_SYSTEM_HOSTFILE;
760 if (options->user_hostfile == NULL)
761 options->user_hostfile = SSH_USER_HOSTFILE;
a306f2dd 762 if (options->system_hostfile2 == NULL)
763 options->system_hostfile2 = SSH_SYSTEM_HOSTFILE2;
764 if (options->user_hostfile2 == NULL)
765 options->user_hostfile2 = SSH_USER_HOSTFILE2;
5260325f 766 if (options->log_level == (LogLevel) - 1)
767 options->log_level = SYSLOG_LEVEL_INFO;
768 /* options->proxy_command should not be set by default */
769 /* options->user will be set in the main program if appropriate */
770 /* options->hostname will be set in the main program if appropriate */
8efc0c15 771}
git-cvsimport mirror of OpenSSH
This page took 0.171415 seconds and 5 git commands to generate.