Blame - monitor_wrap.c - platform/external/openssh

blob: 99dc13b61cd29d9e5e9b15ead4555eb6a135afed [file] [log] [blame]

djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1	/* $OpenBSD: monitor_wrap.c,v 1.88 2016/03/07 19:02:43 djm Exp $ */
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2	/*
				3	* Copyright 2002 Niels Provos <provos@citi.umich.edu>
				4	* Copyright 2002 Markus Friedl <markus@openbsd.org>
				5	* All rights reserved.
				6	*
				7	* Redistribution and use in source and binary forms, with or without
				8	* modification, are permitted provided that the following conditions
				9	* are met:
				10	* 1. Redistributions of source code must retain the above copyright
				11	* notice, this list of conditions and the following disclaimer.
				12	* 2. Redistributions in binary form must reproduce the above copyright
				13	* notice, this list of conditions and the following disclaimer in the
				14	* documentation and/or other materials provided with the distribution.
				15	*
				16	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
				17	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
				18	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
				19	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
				20	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
				21	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
				22	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
				23	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
				24	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
				25	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
				26	*/
				27
				28	#include "includes.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	29
Damien Miller	9f2abc4	2006-07-10 20:53:08 +1000	[diff] [blame]	30	#include <sys/types.h>
Darren Tucker	1a3d6e7	2006-08-05 18:46:47 +1000	[diff] [blame]	31	#include <sys/uio.h>
Damien Miller	9f2abc4	2006-07-10 20:53:08 +1000	[diff] [blame]	32
Darren Tucker	3997249	2006-07-12 22:22:46 +1000	[diff] [blame]	33	#include <errno.h>
Damien Miller	9f2abc4	2006-07-10 20:53:08 +1000	[diff] [blame]	34	#include <pwd.h>
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	35	#include <signal.h>
Damien Miller	ded319c	2006-09-01 15:38:36 +1000	[diff] [blame]	36	#include <stdarg.h>
Damien Miller	a7a73ee	2006-08-05 11:37:59 +1000	[diff] [blame]	37	#include <stdio.h>
Damien Miller	e3476ed	2006-07-24 14:13:33 +1000	[diff] [blame]	38	#include <string.h>
Darren Tucker	1a3d6e7	2006-08-05 18:46:47 +1000	[diff] [blame]	39	#include <unistd.h>
Damien Miller	9f2abc4	2006-07-10 20:53:08 +1000	[diff] [blame]	40
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	41	#ifdef WITH_OPENSSL
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	42	#include <openssl/bn.h>
				43	#include <openssl/dh.h>
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	44	#include <openssl/evp.h>
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	45	#endif
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	46
Damien Miller	b84886b	2008-05-19 15:05:07 +1000	[diff] [blame]	47	#include "openbsd-compat/sys-queue.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	48	#include "xmalloc.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	49	#include "ssh.h"
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	50	#ifdef WITH_OPENSSL
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	51	#include "dh.h"
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	52	#endif
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	53	#include "buffer.h"
				54	#include "key.h"
				55	#include "cipher.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	56	#include "kex.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	57	#include "hostfile.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	58	#include "auth.h"
Damien Miller	06ebedf	2003-02-24 12:03:38 +1100	[diff] [blame]	59	#include "auth-options.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	60	#include "packet.h"
				61	#include "mac.h"
				62	#include "log.h"
Darren Tucker	01558b7	2016-07-18 09:33:25 +1000	[diff] [blame^]	63	#include "auth-pam.h"
Ben Lindstrom	036768e	2004-04-08 16:12:30 +0000	[diff] [blame]	64	#ifdef TARGET_OS_MAC /* XXX Broken krb5 headers on Mac */
				65	#undef TARGET_OS_MAC
Ben Lindstrom	1b9f2a6	2004-04-08 05:11:03 +0000	[diff] [blame]	66	#include "zlib.h"
Ben Lindstrom	036768e	2004-04-08 16:12:30 +0000	[diff] [blame]	67	#define TARGET_OS_MAC 1
				68	#else
				69	#include "zlib.h"
				70	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	71	#include "monitor.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	72	#ifdef GSSAPI
				73	#include "ssh-gss.h"
				74	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	75	#include "monitor_wrap.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	76	#include "atomicio.h"
				77	#include "monitor_fdpass.h"
Damien Miller	3f94188	2006-03-31 23:13:02 +1100	[diff] [blame]	78	#include "misc.h"
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	79	#include "uuencode.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	80
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	81	#include "channels.h"
				82	#include "session.h"
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	83	#include "servconf.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	84
markus@openbsd.org	091c302	2015-01-19 19:52:16 +0000	[diff] [blame]	85	#include "ssherr.h"
				86
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	87	/* Imports */
				88	extern int compat20;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	89	extern z_stream incoming_stream;
				90	extern z_stream outgoing_stream;
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	91	extern struct monitor *pmonitor;
Darren Tucker	0999174	2004-07-17 17:05:14 +1000	[diff] [blame]	92	extern Buffer loginmsg;
Damien Miller	4e448a3	2003-05-14 15:11:48 +1000	[diff] [blame]	93	extern ServerOptions options;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	94
Damien Miller	8f0bf23	2011-06-20 14:42:23 +1000	[diff] [blame]	95	void
				96	mm_log_handler(LogLevel level, const char msg, void ctx)
				97	{
				98	Buffer log_msg;
				99	struct monitor mon = (struct monitor )ctx;
				100
				101	if (mon->m_log_sendfd == -1)
				102	fatal("%s: no log channel", __func__);
				103
				104	buffer_init(&log_msg);
				105	/*
				106	* Placeholder for packet length. Will be filled in with the actual
				107	* packet length once the packet has been constucted. This saves
				108	* fragile math.
				109	*/
				110	buffer_put_int(&log_msg, 0);
				111
				112	buffer_put_int(&log_msg, level);
				113	buffer_put_cstring(&log_msg, msg);
				114	put_u32(buffer_ptr(&log_msg), buffer_len(&log_msg) - 4);
				115	if (atomicio(vwrite, mon->m_log_sendfd, buffer_ptr(&log_msg),
				116	buffer_len(&log_msg)) != buffer_len(&log_msg))
				117	fatal("%s: write: %s", __func__, strerror(errno));
				118	buffer_free(&log_msg);
				119	}
				120
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	121	int
				122	mm_is_monitor(void)
				123	{
				124	/*
				125	* m_pid is only set in the privileged part, and
				126	* points to the unprivileged child.
				127	*/
Darren Tucker	a47c9bc	2003-11-03 20:03:25 +1100	[diff] [blame]	128	return (pmonitor && pmonitor->m_pid > 0);
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	129	}
				130
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	131	void
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	132	mm_request_send(int sock, enum monitor_reqtype type, Buffer *m)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	133	{
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	134	u_int mlen = buffer_len(m);
Ben Lindstrom	b1bdc5a	2002-07-04 00:09:26 +0000	[diff] [blame]	135	u_char buf[5];
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	136
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	137	debug3("%s entering: type %d", __func__, type);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	138
Damien Miller	3f94188	2006-03-31 23:13:02 +1100	[diff] [blame]	139	put_u32(buf, mlen + 1);
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	140	buf[4] = (u_char) type; /* 1st byte of payload is mesg-type */
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	141	if (atomicio(vwrite, sock, buf, sizeof(buf)) != sizeof(buf))
Damien Miller	b253cc4	2005-05-26 12:23:44 +1000	[diff] [blame]	142	fatal("%s: write: %s", __func__, strerror(errno));
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	143	if (atomicio(vwrite, sock, buffer_ptr(m), mlen) != mlen)
Damien Miller	b253cc4	2005-05-26 12:23:44 +1000	[diff] [blame]	144	fatal("%s: write: %s", __func__, strerror(errno));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	145	}
				146
				147	void
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	148	mm_request_receive(int sock, Buffer *m)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	149	{
				150	u_char buf[4];
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	151	u_int msg_len;
				152
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	153	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	154
Damien Miller	b253cc4	2005-05-26 12:23:44 +1000	[diff] [blame]	155	if (atomicio(read, sock, buf, sizeof(buf)) != sizeof(buf)) {
Damien Miller	4d24b3b	2015-03-20 09:11:59 +1100	[diff] [blame]	156	if (errno == EPIPE)
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	157	cleanup_exit(255);
Damien Miller	b253cc4	2005-05-26 12:23:44 +1000	[diff] [blame]	158	fatal("%s: read: %s", __func__, strerror(errno));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	159	}
Damien Miller	3f94188	2006-03-31 23:13:02 +1100	[diff] [blame]	160	msg_len = get_u32(buf);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	161	if (msg_len > 256 * 1024)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	162	fatal("%s: read: bad msg_len %d", __func__, msg_len);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	163	buffer_clear(m);
				164	buffer_append_space(m, msg_len);
Damien Miller	b253cc4	2005-05-26 12:23:44 +1000	[diff] [blame]	165	if (atomicio(read, sock, buffer_ptr(m), msg_len) != msg_len)
				166	fatal("%s: read: %s", __func__, strerror(errno));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	167	}
				168
				169	void
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	170	mm_request_receive_expect(int sock, enum monitor_reqtype type, Buffer *m)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	171	{
				172	u_char rtype;
				173
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	174	debug3("%s entering: type %d", __func__, type);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	175
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	176	mm_request_receive(sock, m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	177	rtype = buffer_get_char(m);
				178	if (rtype != type)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	179	fatal("%s: read: rtype %d != type %d", __func__,
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	180	rtype, type);
				181	}
				182
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	183	#ifdef WITH_OPENSSL
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	184	DH *
				185	mm_choose_dh(int min, int nbits, int max)
				186	{
				187	BIGNUM p, g;
				188	int success = 0;
				189	Buffer m;
				190
				191	buffer_init(&m);
				192	buffer_put_int(&m, min);
				193	buffer_put_int(&m, nbits);
				194	buffer_put_int(&m, max);
				195
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	196	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_MODULI, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	197
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	198	debug3("%s: waiting for MONITOR_ANS_MODULI", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	199	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_MODULI, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	200
				201	success = buffer_get_char(&m);
				202	if (success == 0)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	203	fatal("%s: MONITOR_ANS_MODULI failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	204
				205	if ((p = BN_new()) == NULL)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	206	fatal("%s: BN_new failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	207	if ((g = BN_new()) == NULL)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	208	fatal("%s: BN_new failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	209	buffer_get_bignum2(&m, p);
				210	buffer_get_bignum2(&m, g);
				211
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	212	debug3("%s: remaining %d", __func__, buffer_len(&m));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	213	buffer_free(&m);
				214
				215	return (dh_new_group(g, p));
				216	}
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	217	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	218
				219	int
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	220	mm_key_sign(Key key, u_char sigp, u_int lenp,
markus@openbsd.org	76c9fbb	2015-12-04 16:41:28 +0000	[diff] [blame]	221	const u_char data, u_int datalen, const char hostkey_alg)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	222	{
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	223	struct kex kex = pmonitor->m_pkex;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	224	Buffer m;
				225
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	226	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	227
				228	buffer_init(&m);
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	229	buffer_put_int(&m, kex->host_key_index(key, 0, active_state));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	230	buffer_put_string(&m, data, datalen);
markus@openbsd.org	76c9fbb	2015-12-04 16:41:28 +0000	[diff] [blame]	231	buffer_put_cstring(&m, hostkey_alg);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	232
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	233	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_SIGN, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	234
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	235	debug3("%s: waiting for MONITOR_ANS_SIGN", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	236	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_SIGN, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	237	*sigp = buffer_get_string(&m, lenp);
				238	buffer_free(&m);
				239
				240	return (0);
				241	}
				242
				243	struct passwd *
Darren Tucker	b09b677	2004-06-22 15:06:46 +1000	[diff] [blame]	244	mm_getpwnamallow(const char *username)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	245	{
				246	Buffer m;
				247	struct passwd *pw;
Damien Miller	d8478b6	2011-05-29 21:39:36 +1000	[diff] [blame]	248	u_int len, i;
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	249	ServerOptions *newopts;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	250
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	251	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	252
				253	buffer_init(&m);
Darren Tucker	b09b677	2004-06-22 15:06:46 +1000	[diff] [blame]	254	buffer_put_cstring(&m, username);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	255
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	256	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PWNAM, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	257
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	258	debug3("%s: waiting for MONITOR_ANS_PWNAM", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	259	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PWNAM, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	260
				261	if (buffer_get_char(&m) == 0) {
Darren Tucker	2f8b3d9	2007-12-02 23:02:15 +1100	[diff] [blame]	262	pw = NULL;
				263	goto out;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	264	}
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	265	pw = buffer_get_string(&m, &len);
				266	if (len != sizeof(struct passwd))
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	267	fatal("%s: struct passwd size mismatch", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	268	pw->pw_name = buffer_get_string(&m, NULL);
				269	pw->pw_passwd = buffer_get_string(&m, NULL);
Damien Miller	6332da2	2013-04-23 14:25:52 +1000	[diff] [blame]	270	#ifdef HAVE_STRUCT_PASSWD_PW_GECOS
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	271	pw->pw_gecos = buffer_get_string(&m, NULL);
Damien Miller	6332da2	2013-04-23 14:25:52 +1000	[diff] [blame]	272	#endif
				273	#ifdef HAVE_STRUCT_PASSWD_PW_CLASS
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	274	pw->pw_class = buffer_get_string(&m, NULL);
Kevin Steves	7e14760	2002-03-22 18:07:17 +0000	[diff] [blame]	275	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	276	pw->pw_dir = buffer_get_string(&m, NULL);
				277	pw->pw_shell = buffer_get_string(&m, NULL);
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	278
Darren Tucker	2f8b3d9	2007-12-02 23:02:15 +1100	[diff] [blame]	279	out:
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	280	/* copy options block as a Match directive may have changed some */
				281	newopts = buffer_get_string(&m, &len);
				282	if (len != sizeof(*newopts))
				283	fatal("%s: option block size mismatch", __func__);
Damien Miller	f2e407e	2011-05-20 19:04:14 +1000	[diff] [blame]	284
				285	#define M_CP_STROPT(x) do { \
				286	if (newopts->x != NULL) \
				287	newopts->x = buffer_get_string(&m, NULL); \
				288	} while (0)
Damien Miller	d8478b6	2011-05-29 21:39:36 +1000	[diff] [blame]	289	#define M_CP_STRARRAYOPT(x, nx) do { \
				290	for (i = 0; i < newopts->nx; i++) \
				291	newopts->x[i] = buffer_get_string(&m, NULL); \
				292	} while (0)
Damien Miller	f2e407e	2011-05-20 19:04:14 +1000	[diff] [blame]	293	/* See comment in servconf.h */
				294	COPY_MATCH_STRING_OPTS();
				295	#undef M_CP_STROPT
Damien Miller	d8478b6	2011-05-29 21:39:36 +1000	[diff] [blame]	296	#undef M_CP_STRARRAYOPT
Damien Miller	f2e407e	2011-05-20 19:04:14 +1000	[diff] [blame]	297
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	298	copy_set_server_options(&options, newopts, 1);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	299	free(newopts);
Darren Tucker	1629c07	2007-02-19 22:25:37 +1100	[diff] [blame]	300
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	301	buffer_free(&m);
				302
				303	return (pw);
				304	}
				305
Darren Tucker	7eb3de0	2003-10-15 15:56:58 +1000	[diff] [blame]	306	char *
				307	mm_auth2_read_banner(void)
Damien Miller	5ad9fd9	2002-05-13 11:07:41 +1000	[diff] [blame]	308	{
				309	Buffer m;
				310	char *banner;
				311
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	312	debug3("%s entering", __func__);
Damien Miller	5ad9fd9	2002-05-13 11:07:41 +1000	[diff] [blame]	313
				314	buffer_init(&m);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	315	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUTH2_READ_BANNER, &m);
Damien Miller	5ad9fd9	2002-05-13 11:07:41 +1000	[diff] [blame]	316	buffer_clear(&m);
				317
Darren Tucker	7eb3de0	2003-10-15 15:56:58 +1000	[diff] [blame]	318	mm_request_receive_expect(pmonitor->m_recvfd,
				319	MONITOR_ANS_AUTH2_READ_BANNER, &m);
Damien Miller	5ad9fd9	2002-05-13 11:07:41 +1000	[diff] [blame]	320	banner = buffer_get_string(&m, NULL);
				321	buffer_free(&m);
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	322
Darren Tucker	7eb3de0	2003-10-15 15:56:58 +1000	[diff] [blame]	323	/* treat empty banner as missing banner */
				324	if (strlen(banner) == 0) {
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	325	free(banner);
Darren Tucker	7eb3de0	2003-10-15 15:56:58 +1000	[diff] [blame]	326	banner = NULL;
				327	}
Damien Miller	5ad9fd9	2002-05-13 11:07:41 +1000	[diff] [blame]	328	return (banner);
				329	}
				330
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	331	/* Inform the privileged process about service and style */
				332
				333	void
				334	mm_inform_authserv(char service, char style)
				335	{
				336	Buffer m;
				337
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	338	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	339
				340	buffer_init(&m);
				341	buffer_put_cstring(&m, service);
				342	buffer_put_cstring(&m, style ? style : "");
				343
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	344	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUTHSERV, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	345
				346	buffer_free(&m);
				347	}
				348
				349	/* Do the password authentication */
				350	int
				351	mm_auth_password(Authctxt authctxt, char password)
				352	{
				353	Buffer m;
				354	int authenticated = 0;
				355
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	356	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	357
				358	buffer_init(&m);
				359	buffer_put_cstring(&m, password);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	360	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUTHPASSWORD, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	361
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	362	debug3("%s: waiting for MONITOR_ANS_AUTHPASSWORD", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	363	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_AUTHPASSWORD, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	364
				365	authenticated = buffer_get_int(&m);
Darren Tucker	01558b7	2016-07-18 09:33:25 +1000	[diff] [blame^]	366	#ifdef USE_PAM
				367	sshpam_set_maxtries_reached(buffer_get_int(&m));
				368	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	369
				370	buffer_free(&m);
				371
				372	debug3("%s: user %sauthenticated",
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	373	__func__, authenticated ? "" : "not ");
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	374	return (authenticated);
				375	}
				376
				377	int
djm@openbsd.org	179be0f	2015-05-01 03:23:51 +0000	[diff] [blame]	378	mm_user_key_allowed(struct passwd pw, Key key, int pubkey_auth_attempt)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	379	{
djm@openbsd.org	179be0f	2015-05-01 03:23:51 +0000	[diff] [blame]	380	return (mm_key_allowed(MM_USERKEY, NULL, NULL, key,
				381	pubkey_auth_attempt));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	382	}
				383
				384	int
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	385	mm_hostbased_key_allowed(struct passwd pw, const char user, const char *host,
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	386	Key *key)
				387	{
djm@openbsd.org	179be0f	2015-05-01 03:23:51 +0000	[diff] [blame]	388	return (mm_key_allowed(MM_HOSTKEY, user, host, key, 0));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	389	}
				390
				391	int
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	392	mm_auth_rhosts_rsa_key_allowed(struct passwd pw, const char user,
				393	const char host, Key key)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	394	{
				395	int ret;
				396
				397	key->type = KEY_RSA; /* XXX hack for key_to_blob */
djm@openbsd.org	179be0f	2015-05-01 03:23:51 +0000	[diff] [blame]	398	ret = mm_key_allowed(MM_RSAHOSTKEY, user, host, key, 0);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	399	key->type = KEY_RSA1;
				400	return (ret);
				401	}
				402
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	403	int
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	404	mm_key_allowed(enum mm_keytype type, const char user, const char host,
				405	Key *key, int pubkey_auth_attempt)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	406	{
				407	Buffer m;
				408	u_char *blob;
				409	u_int len;
Damien Miller	06ebedf	2003-02-24 12:03:38 +1100	[diff] [blame]	410	int allowed = 0, have_forced = 0;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	411
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	412	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	413
				414	/* Convert the key to a blob and the pass it over */
				415	if (!key_to_blob(key, &blob, &len))
				416	return (0);
				417
				418	buffer_init(&m);
				419	buffer_put_int(&m, type);
				420	buffer_put_cstring(&m, user ? user : "");
				421	buffer_put_cstring(&m, host ? host : "");
				422	buffer_put_string(&m, blob, len);
djm@openbsd.org	179be0f	2015-05-01 03:23:51 +0000	[diff] [blame]	423	buffer_put_int(&m, pubkey_auth_attempt);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	424	free(blob);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	425
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	426	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_KEYALLOWED, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	427
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	428	debug3("%s: waiting for MONITOR_ANS_KEYALLOWED", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	429	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_KEYALLOWED, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	430
				431	allowed = buffer_get_int(&m);
				432
Damien Miller	06ebedf	2003-02-24 12:03:38 +1100	[diff] [blame]	433	/* fake forced command */
				434	auth_clear_options();
				435	have_forced = buffer_get_int(&m);
				436	forced_command = have_forced ? xstrdup("true") : NULL;
				437
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	438	buffer_free(&m);
				439
				440	return (allowed);
				441	}
				442
				443	/*
				444	* This key verify needs to send the key type along, because the
				445	* privileged parent makes the decision if the key is allowed
				446	* for authentication.
				447	*/
				448
				449	int
				450	mm_key_verify(Key key, u_char sig, u_int siglen, u_char *data, u_int datalen)
				451	{
				452	Buffer m;
				453	u_char *blob;
				454	u_int len;
				455	int verified = 0;
				456
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	457	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	458
				459	/* Convert the key to a blob and the pass it over */
				460	if (!key_to_blob(key, &blob, &len))
				461	return (0);
				462
				463	buffer_init(&m);
				464	buffer_put_string(&m, blob, len);
				465	buffer_put_string(&m, sig, siglen);
				466	buffer_put_string(&m, data, datalen);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	467	free(blob);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	468
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	469	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_KEYVERIFY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	470
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	471	debug3("%s: waiting for MONITOR_ANS_KEYVERIFY", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	472	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_KEYVERIFY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	473
				474	verified = buffer_get_int(&m);
				475
				476	buffer_free(&m);
				477
				478	return (verified);
				479	}
				480
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	481	void
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	482	mm_send_keystate(struct monitor *monitor)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	483	{
markus@openbsd.org	091c302	2015-01-19 19:52:16 +0000	[diff] [blame]	484	struct ssh ssh = active_state; / XXX */
				485	struct sshbuf *m;
				486	int r;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	487
markus@openbsd.org	091c302	2015-01-19 19:52:16 +0000	[diff] [blame]	488	if ((m = sshbuf_new()) == NULL)
				489	fatal("%s: sshbuf_new failed", __func__);
				490	if ((r = ssh_packet_get_state(ssh, m)) != 0)
				491	fatal("%s: get_state failed: %s",
				492	__func__, ssh_err(r));
				493	mm_request_send(monitor->m_recvfd, MONITOR_REQ_KEYEXPORT, m);
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	494	debug3("%s: Finished sending state", __func__);
markus@openbsd.org	091c302	2015-01-19 19:52:16 +0000	[diff] [blame]	495	sshbuf_free(m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	496	}
				497
				498	int
Damien Miller	71a7367	2006-03-26 14:04:36 +1100	[diff] [blame]	499	mm_pty_allocate(int ptyfd, int ttyfd, char *namebuf, size_t namebuflen)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	500	{
				501	Buffer m;
Darren Tucker	0999174	2004-07-17 17:05:14 +1000	[diff] [blame]	502	char p, msg;
Damien Miller	7207f64	2008-05-19 15:34:50 +1000	[diff] [blame]	503	int success = 0, tmp1 = -1, tmp2 = -1;
				504
				505	/* Kludge: ensure there are fds free to receive the pty/tty */
				506	if ((tmp1 = dup(pmonitor->m_recvfd)) == -1 \|\|
				507	(tmp2 = dup(pmonitor->m_recvfd)) == -1) {
				508	error("%s: cannot allocate fds for pty", __func__);
				509	if (tmp1 > 0)
				510	close(tmp1);
				511	if (tmp2 > 0)
				512	close(tmp2);
				513	return 0;
				514	}
				515	close(tmp1);
				516	close(tmp2);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	517
				518	buffer_init(&m);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	519	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PTY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	520
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	521	debug3("%s: waiting for MONITOR_ANS_PTY", __func__);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	522	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PTY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	523
				524	success = buffer_get_int(&m);
				525	if (success == 0) {
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	526	debug3("%s: pty alloc failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	527	buffer_free(&m);
				528	return (0);
				529	}
				530	p = buffer_get_string(&m, NULL);
Darren Tucker	0999174	2004-07-17 17:05:14 +1000	[diff] [blame]	531	msg = buffer_get_string(&m, NULL);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	532	buffer_free(&m);
				533
				534	strlcpy(namebuf, p, namebuflen); /* Possible truncation */
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	535	free(p);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	536
Darren Tucker	0999174	2004-07-17 17:05:14 +1000	[diff] [blame]	537	buffer_append(&loginmsg, msg, strlen(msg));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	538	free(msg);
Darren Tucker	0999174	2004-07-17 17:05:14 +1000	[diff] [blame]	539
Damien Miller	54fd7cf	2007-09-17 12:04:08 +1000	[diff] [blame]	540	if ((*ptyfd = mm_receive_fd(pmonitor->m_recvfd)) == -1 \|\|
				541	(*ttyfd = mm_receive_fd(pmonitor->m_recvfd)) == -1)
				542	fatal("%s: receive fds failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	543
				544	/* Success */
				545	return (1);
				546	}
				547
				548	void
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	549	mm_session_pty_cleanup2(Session *s)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	550	{
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	551	Buffer m;
				552
				553	if (s->ttyfd == -1)
				554	return;
				555	buffer_init(&m);
				556	buffer_put_cstring(&m, s->tty);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	557	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PTYCLEANUP, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	558	buffer_free(&m);
				559
				560	/* closed dup'ed master */
Damien Miller	7207f64	2008-05-19 15:34:50 +1000	[diff] [blame]	561	if (s->ptymaster != -1 && close(s->ptymaster) < 0)
				562	error("close(s->ptymaster/%d): %s",
				563	s->ptymaster, strerror(errno));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	564
				565	/* unlink pty from session */
				566	s->ttyfd = -1;
				567	}
				568
Damien Miller	7941855	2002-04-23 20:28:48 +1000	[diff] [blame]	569	#ifdef USE_PAM
				570	void
Darren Tucker	dbf7a74	2004-03-08 23:04:06 +1100	[diff] [blame]	571	mm_start_pam(Authctxt *authctxt)
Damien Miller	7941855	2002-04-23 20:28:48 +1000	[diff] [blame]	572	{
				573	Buffer m;
				574
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	575	debug3("%s entering", __func__);
Damien Miller	4e448a3	2003-05-14 15:11:48 +1000	[diff] [blame]	576	if (!options.use_pam)
				577	fatal("UsePAM=no, but ended up in %s anyway", __func__);
Damien Miller	7941855	2002-04-23 20:28:48 +1000	[diff] [blame]	578
				579	buffer_init(&m);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	580	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_START, &m);
Damien Miller	7941855	2002-04-23 20:28:48 +1000	[diff] [blame]	581
				582	buffer_free(&m);
				583	}
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	584
Damien Miller	1f499fd	2003-08-25 13:08:49 +1000	[diff] [blame]	585	u_int
				586	mm_do_pam_account(void)
				587	{
				588	Buffer m;
				589	u_int ret;
Darren Tucker	77fc29e	2004-09-11 23:07:03 +1000	[diff] [blame]	590	char *msg;
Damien Miller	1f499fd	2003-08-25 13:08:49 +1000	[diff] [blame]	591
				592	debug3("%s entering", __func__);
				593	if (!options.use_pam)
				594	fatal("UsePAM=no, but ended up in %s anyway", __func__);
				595
				596	buffer_init(&m);
				597	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_ACCOUNT, &m);
				598
Damien Miller	a8e06ce	2003-11-21 23:48:55 +1100	[diff] [blame]	599	mm_request_receive_expect(pmonitor->m_recvfd,
Damien Miller	1f499fd	2003-08-25 13:08:49 +1000	[diff] [blame]	600	MONITOR_ANS_PAM_ACCOUNT, &m);
				601	ret = buffer_get_int(&m);
Darren Tucker	77fc29e	2004-09-11 23:07:03 +1000	[diff] [blame]	602	msg = buffer_get_string(&m, NULL);
				603	buffer_append(&loginmsg, msg, strlen(msg));
Darren Tucker	f60845f	2013-06-02 08:07:31 +1000	[diff] [blame]	604	free(msg);
Damien Miller	1f499fd	2003-08-25 13:08:49 +1000	[diff] [blame]	605
				606	buffer_free(&m);
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	607
Damien Miller	1f499fd	2003-08-25 13:08:49 +1000	[diff] [blame]	608	debug3("%s returning %d", __func__, ret);
				609
				610	return (ret);
				611	}
				612
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	613	void *
				614	mm_sshpam_init_ctx(Authctxt *authctxt)
				615	{
				616	Buffer m;
				617	int success;
				618
				619	debug3("%s", __func__);
				620	buffer_init(&m);
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	621	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_INIT_CTX, &m);
				622	debug3("%s: waiting for MONITOR_ANS_PAM_INIT_CTX", __func__);
				623	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_INIT_CTX, &m);
				624	success = buffer_get_int(&m);
				625	if (success == 0) {
				626	debug3("%s: pam_init_ctx failed", __func__);
				627	buffer_free(&m);
				628	return (NULL);
				629	}
				630	buffer_free(&m);
				631	return (authctxt);
				632	}
				633
				634	int
				635	mm_sshpam_query(void ctx, char name, char *info,
				636	u_int num, char prompts, u_int echo_on)
				637	{
				638	Buffer m;
Damien Miller	04b6533	2005-07-17 17:53:31 +1000	[diff] [blame]	639	u_int i;
				640	int ret;
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	641
				642	debug3("%s", __func__);
				643	buffer_init(&m);
				644	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_QUERY, &m);
				645	debug3("%s: waiting for MONITOR_ANS_PAM_QUERY", __func__);
				646	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_QUERY, &m);
				647	ret = buffer_get_int(&m);
				648	debug3("%s: pam_query returned %d", __func__, ret);
				649	*name = buffer_get_string(&m, NULL);
				650	*info = buffer_get_string(&m, NULL);
Darren Tucker	01558b7	2016-07-18 09:33:25 +1000	[diff] [blame^]	651	sshpam_set_maxtries_reached(buffer_get_int(&m));
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	652	*num = buffer_get_int(&m);
Darren Tucker	d8093e4	2006-05-04 16:24:34 +1000	[diff] [blame]	653	if (*num > PAM_MAX_NUM_MSG)
				654	fatal("%s: recieved %u PAM messages, expected <= %u",
				655	__func__, *num, PAM_MAX_NUM_MSG);
				656	prompts = xcalloc((num + 1), sizeof(char *));
				657	echo_on = xcalloc((num + 1), sizeof(u_int));
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	658	for (i = 0; i < *num; ++i) {
				659	(*prompts)[i] = buffer_get_string(&m, NULL);
				660	(*echo_on)[i] = buffer_get_int(&m);
				661	}
				662	buffer_free(&m);
				663	return (ret);
				664	}
				665
				666	int
				667	mm_sshpam_respond(void ctx, u_int num, char *resp)
				668	{
				669	Buffer m;
Damien Miller	04b6533	2005-07-17 17:53:31 +1000	[diff] [blame]	670	u_int i;
				671	int ret;
Damien Miller	4f9f42a	2003-05-10 19:28:02 +1000	[diff] [blame]	672
				673	debug3("%s", __func__);
				674	buffer_init(&m);
				675	buffer_put_int(&m, num);
				676	for (i = 0; i < num; ++i)
				677	buffer_put_cstring(&m, resp[i]);
				678	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_RESPOND, &m);
				679	debug3("%s: waiting for MONITOR_ANS_PAM_RESPOND", __func__);
				680	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_RESPOND, &m);
				681	ret = buffer_get_int(&m);
				682	debug3("%s: pam_respond returned %d", __func__, ret);
				683	buffer_free(&m);
				684	return (ret);
				685	}
				686
				687	void
				688	mm_sshpam_free_ctx(void *ctxtp)
				689	{
				690	Buffer m;
				691
				692	debug3("%s", __func__);
				693	buffer_init(&m);
				694	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_FREE_CTX, &m);
				695	debug3("%s: waiting for MONITOR_ANS_PAM_FREE_CTX", __func__);
				696	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_FREE_CTX, &m);
				697	buffer_free(&m);
				698	}
Damien Miller	7941855	2002-04-23 20:28:48 +1000	[diff] [blame]	699	#endif /* USE_PAM */
				700
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	701	/* Request process termination */
				702
				703	void
				704	mm_terminate(void)
				705	{
				706	Buffer m;
				707
				708	buffer_init(&m);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	709	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_TERM, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	710	buffer_free(&m);
				711	}
				712
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	713	#ifdef WITH_SSH1
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	714	int
				715	mm_ssh1_session_key(BIGNUM *num)
				716	{
				717	int rsafail;
				718	Buffer m;
				719
				720	buffer_init(&m);
				721	buffer_put_bignum2(&m, num);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	722	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_SESSKEY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	723
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	724	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_SESSKEY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	725
				726	rsafail = buffer_get_int(&m);
				727	buffer_get_bignum2(&m, num);
				728
				729	buffer_free(&m);
				730
				731	return (rsafail);
				732	}
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	733	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	734
				735	static void
				736	mm_chall_setup(char name, char infotxt, u_int *numprompts,
				737	char *prompts, u_int echo_on)
				738	{
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	739	*name = xstrdup("");
				740	*infotxt = xstrdup("");
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	741	*numprompts = 1;
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	742	prompts = xcalloc(numprompts, sizeof(char *));
				743	echo_on = xcalloc(numprompts, sizeof(u_int));
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	744	(*echo_on)[0] = 0;
				745	}
				746
				747	int
				748	mm_bsdauth_query(void ctx, char name, char *infotxt,
				749	u_int numprompts, char prompts, u_int echo_on)
				750	{
				751	Buffer m;
Damien Miller	b7df3af	2003-02-24 11:55:46 +1100	[diff] [blame]	752	u_int success;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	753	char *challenge;
				754
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	755	debug3("%s: entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	756
				757	buffer_init(&m);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	758	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_BSDAUTHQUERY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	759
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	760	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_BSDAUTHQUERY,
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	761	&m);
Damien Miller	b7df3af	2003-02-24 11:55:46 +1100	[diff] [blame]	762	success = buffer_get_int(&m);
				763	if (success == 0) {
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	764	debug3("%s: no challenge", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	765	buffer_free(&m);
				766	return (-1);
				767	}
				768
				769	/* Get the challenge, and format the response */
				770	challenge = buffer_get_string(&m, NULL);
				771	buffer_free(&m);
				772
				773	mm_chall_setup(name, infotxt, numprompts, prompts, echo_on);
				774	(*prompts)[0] = challenge;
				775
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	776	debug3("%s: received challenge: %s", __func__, challenge);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	777
				778	return (0);
				779	}
				780
				781	int
				782	mm_bsdauth_respond(void ctx, u_int numresponses, char *responses)
				783	{
				784	Buffer m;
				785	int authok;
				786
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	787	debug3("%s: entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	788	if (numresponses != 1)
				789	return (-1);
				790
				791	buffer_init(&m);
				792	buffer_put_cstring(&m, responses[0]);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	793	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_BSDAUTHRESPOND, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	794
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	795	mm_request_receive_expect(pmonitor->m_recvfd,
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	796	MONITOR_ANS_BSDAUTHRESPOND, &m);
				797
				798	authok = buffer_get_int(&m);
				799	buffer_free(&m);
				800
				801	return ((authok == 0) ? -1 : 0);
				802	}
				803
Darren Tucker	042e2e8	2004-07-08 23:09:42 +1000	[diff] [blame]	804	#ifdef SKEY
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	805	int
				806	mm_skey_query(void ctx, char name, char *infotxt,
				807	u_int numprompts, char prompts, u_int echo_on)
				808	{
				809	Buffer m;
Damien Miller	b7df3af	2003-02-24 11:55:46 +1100	[diff] [blame]	810	u_int success;
Darren Tucker	d6a23f2	2006-08-05 18:50:35 +1000	[diff] [blame]	811	char *challenge;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	812
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	813	debug3("%s: entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	814
				815	buffer_init(&m);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	816	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_SKEYQUERY, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	817
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	818	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_SKEYQUERY,
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	819	&m);
Damien Miller	b7df3af	2003-02-24 11:55:46 +1100	[diff] [blame]	820	success = buffer_get_int(&m);
				821	if (success == 0) {
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	822	debug3("%s: no challenge", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	823	buffer_free(&m);
				824	return (-1);
				825	}
				826
				827	/* Get the challenge, and format the response */
				828	challenge = buffer_get_string(&m, NULL);
				829	buffer_free(&m);
				830
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	831	debug3("%s: received challenge: %s", __func__, challenge);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	832
				833	mm_chall_setup(name, infotxt, numprompts, prompts, echo_on);
				834
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	835	xasprintf(*prompts, "%s%s", challenge, SKEY_PROMPT);
Darren Tucker	f60845f	2013-06-02 08:07:31 +1000	[diff] [blame]	836	free(challenge);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	837
				838	return (0);
				839	}
				840
				841	int
				842	mm_skey_respond(void ctx, u_int numresponses, char *responses)
				843	{
				844	Buffer m;
				845	int authok;
				846
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	847	debug3("%s: entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	848	if (numresponses != 1)
				849	return (-1);
				850
				851	buffer_init(&m);
				852	buffer_put_cstring(&m, responses[0]);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	853	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_SKEYRESPOND, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	854
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	855	mm_request_receive_expect(pmonitor->m_recvfd,
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	856	MONITOR_ANS_SKEYRESPOND, &m);
				857
				858	authok = buffer_get_int(&m);
				859	buffer_free(&m);
				860
				861	return ((authok == 0) ? -1 : 0);
				862	}
Darren Tucker	042e2e8	2004-07-08 23:09:42 +1000	[diff] [blame]	863	#endif /* SKEY */
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	864
				865	void
				866	mm_ssh1_session_id(u_char session_id[16])
				867	{
				868	Buffer m;
				869	int i;
				870
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	871	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	872
				873	buffer_init(&m);
				874	for (i = 0; i < 16; i++)
				875	buffer_put_char(&m, session_id[i]);
				876
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	877	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_SESSID, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	878	buffer_free(&m);
				879	}
				880
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	881	#ifdef WITH_SSH1
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	882	int
				883	mm_auth_rsa_key_allowed(struct passwd pw, BIGNUM client_n, Key **rkey)
				884	{
				885	Buffer m;
				886	Key *key;
				887	u_char *blob;
				888	u_int blen;
Damien Miller	06ebedf	2003-02-24 12:03:38 +1100	[diff] [blame]	889	int allowed = 0, have_forced = 0;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	890
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	891	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	892
				893	buffer_init(&m);
				894	buffer_put_bignum2(&m, client_n);
				895
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	896	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_RSAKEYALLOWED, &m);
				897	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_RSAKEYALLOWED, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	898
				899	allowed = buffer_get_int(&m);
				900
Damien Miller	06ebedf	2003-02-24 12:03:38 +1100	[diff] [blame]	901	/* fake forced command */
				902	auth_clear_options();
				903	have_forced = buffer_get_int(&m);
				904	forced_command = have_forced ? xstrdup("true") : NULL;
				905
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	906	if (allowed && rkey != NULL) {
				907	blob = buffer_get_string(&m, &blen);
				908	if ((key = key_from_blob(blob, blen)) == NULL)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	909	fatal("%s: key_from_blob failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	910	*rkey = key;
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	911	free(blob);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	912	}
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	913	buffer_free(&m);
				914
				915	return (allowed);
				916	}
				917
				918	BIGNUM *
				919	mm_auth_rsa_generate_challenge(Key *key)
				920	{
				921	Buffer m;
				922	BIGNUM *challenge;
				923	u_char *blob;
				924	u_int blen;
				925
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	926	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	927
				928	if ((challenge = BN_new()) == NULL)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	929	fatal("%s: BN_new failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	930
				931	key->type = KEY_RSA; /* XXX cheat for key_to_blob */
				932	if (key_to_blob(key, &blob, &blen) == 0)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	933	fatal("%s: key_to_blob failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	934	key->type = KEY_RSA1;
				935
				936	buffer_init(&m);
				937	buffer_put_string(&m, blob, blen);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	938	free(blob);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	939
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	940	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_RSACHALLENGE, &m);
				941	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_RSACHALLENGE, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	942
				943	buffer_get_bignum2(&m, challenge);
				944	buffer_free(&m);
				945
				946	return (challenge);
				947	}
				948
				949	int
				950	mm_auth_rsa_verify_response(Key key, BIGNUM p, u_char response[16])
				951	{
				952	Buffer m;
				953	u_char *blob;
				954	u_int blen;
				955	int success = 0;
				956
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	957	debug3("%s entering", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	958
				959	key->type = KEY_RSA; /* XXX cheat for key_to_blob */
				960	if (key_to_blob(key, &blob, &blen) == 0)
Ben Lindstrom	7d9c38f	2002-06-06 21:40:51 +0000	[diff] [blame]	961	fatal("%s: key_to_blob failed", __func__);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	962	key->type = KEY_RSA1;
				963
				964	buffer_init(&m);
				965	buffer_put_string(&m, blob, blen);
				966	buffer_put_string(&m, response, 16);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	967	free(blob);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	968
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	969	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_RSARESPONSE, &m);
				970	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_RSARESPONSE, &m);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	971
				972	success = buffer_get_int(&m);
				973	buffer_free(&m);
				974
				975	return (success);
				976	}
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	977	#endif
Damien Miller	25162f2	2002-09-12 09:47:29 +1000	[diff] [blame]	978
Darren Tucker	2e0cf0d	2005-02-08 21:52:47 +1100	[diff] [blame]	979	#ifdef SSH_AUDIT_EVENTS
Darren Tucker	269a1ea	2005-02-03 00:20:53 +1100	[diff] [blame]	980	void
				981	mm_audit_event(ssh_audit_event_t event)
				982	{
				983	Buffer m;
				984
				985	debug3("%s entering", __func__);
				986
				987	buffer_init(&m);
				988	buffer_put_int(&m, event);
				989
				990	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUDIT_EVENT, &m);
				991	buffer_free(&m);
				992	}
				993
				994	void
				995	mm_audit_run_command(const char *command)
				996	{
				997	Buffer m;
				998
				999	debug3("%s entering command %s", __func__, command);
				1000
				1001	buffer_init(&m);
				1002	buffer_put_cstring(&m, command);
				1003
				1004	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_AUDIT_COMMAND, &m);
				1005	buffer_free(&m);
				1006	}
Darren Tucker	2e0cf0d	2005-02-08 21:52:47 +1100	[diff] [blame]	1007	#endif /* SSH_AUDIT_EVENTS */
Darren Tucker	269a1ea	2005-02-03 00:20:53 +1100	[diff] [blame]	1008
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	1009	#ifdef GSSAPI
				1010	OM_uint32
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	1011	mm_ssh_gssapi_server_ctx(Gssctxt **ctx, gss_OID goid)
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	1012	{
				1013	Buffer m;
				1014	OM_uint32 major;
				1015
				1016	/* Client doesn't get to see the context */
				1017	*ctx = NULL;
				1018
				1019	buffer_init(&m);
Darren Tucker	3f9fdc7	2004-06-22 12:56:01 +1000	[diff] [blame]	1020	buffer_put_string(&m, goid->elements, goid->length);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	1021
				1022	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSSETUP, &m);
				1023	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSSETUP, &m);
				1024
				1025	major = buffer_get_int(&m);
				1026
				1027	buffer_free(&m);
				1028	return (major);
				1029	}
				1030
				1031	OM_uint32
				1032	mm_ssh_gssapi_accept_ctx(Gssctxt ctx, gss_buffer_desc in,
				1033	gss_buffer_desc out, OM_uint32 flags)
				1034	{
				1035	Buffer m;
				1036	OM_uint32 major;
Darren Tucker	600ad8d	2003-08-26 12:10:48 +1000	[diff] [blame]	1037	u_int len;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	1038
				1039	buffer_init(&m);
				1040	buffer_put_string(&m, in->value, in->length);
				1041
				1042	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSSTEP, &m);
				1043	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSSTEP, &m);
				1044
				1045	major = buffer_get_int(&m);
Darren Tucker	600ad8d	2003-08-26 12:10:48 +1000	[diff] [blame]	1046	out->value = buffer_get_string(&m, &len);
				1047	out->length = len;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	1048	if (flags)
				1049	*flags = buffer_get_int(&m);
				1050
				1051	buffer_free(&m);
				1052
				1053	return (major);
				1054	}
				1055
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	1056	OM_uint32
				1057	mm_ssh_gssapi_checkmic(Gssctxt *ctx, gss_buffer_t gssbuf, gss_buffer_t gssmic)
				1058	{
				1059	Buffer m;
				1060	OM_uint32 major;
				1061
				1062	buffer_init(&m);
				1063	buffer_put_string(&m, gssbuf->value, gssbuf->length);
				1064	buffer_put_string(&m, gssmic->value, gssmic->length);
				1065
				1066	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSCHECKMIC, &m);
				1067	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSCHECKMIC,
				1068	&m);
				1069
				1070	major = buffer_get_int(&m);
				1071	buffer_free(&m);
				1072	return(major);
				1073	}
				1074
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	1075	int
				1076	mm_ssh_gssapi_userok(char *user)
				1077	{
				1078	Buffer m;
				1079	int authenticated = 0;
				1080
				1081	buffer_init(&m);
				1082
				1083	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSUSEROK, &m);
				1084	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSUSEROK,
				1085	&m);
				1086
				1087	authenticated = buffer_get_int(&m);
				1088
				1089	buffer_free(&m);
				1090	debug3("%s: user %sauthenticated",__func__, authenticated ? "" : "not ");
				1091	return (authenticated);
				1092	}
				1093	#endif /* GSSAPI */
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1094