blob: a222233d0aa99b29f48d2bed061ee3d318ab5a3e [file] [log] [blame]
Damien Millerf4bcd102006-10-24 03:02:23 +10001/* $OpenBSD: sshconnect.c,v 1.200 2006/10/10 10:12:45 markus Exp $ */
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002/*
Damien Miller95def091999-11-25 00:26:21 +11003 * Author: Tatu Ylonen <ylo@cs.hut.fi>
4 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5 * All rights reserved
Damien Miller95def091999-11-25 00:26:21 +11006 * Code to connect to a remote host, and to perform the client side of the
7 * login (authentication) dialog.
Damien Millere4340be2000-09-16 13:29:08 +11008 *
9 * As far as I am concerned, the code I have written for this software
10 * can be used freely for any purpose. Any derived versions of this
11 * software must be clearly marked as such, and if the derived work is
12 * incompatible with the protocol description in the RFC file, it must be
13 * called by a name other than "ssh" or "Secure Shell".
Damien Miller95def091999-11-25 00:26:21 +110014 */
Damien Millerd4a8b7e1999-10-27 13:42:43 +100015
16#include "includes.h"
Damien Miller9cf6d072006-03-15 11:29:24 +110017
18#include <sys/types.h>
19#include <sys/wait.h>
Damien Millerf17883e2006-03-15 11:45:54 +110020#include <sys/stat.h>
Damien Miller8ec8c3e2006-07-10 20:35:38 +100021#include <sys/socket.h>
Damien Miller9aec9192006-08-05 10:57:45 +100022#ifdef HAVE_SYS_TIME_H
23# include <sys/time.h>
24#endif
Damien Miller8ec8c3e2006-07-10 20:35:38 +100025
26#include <netinet/in.h>
Darren Tucker46aa3e02006-09-02 15:32:40 +100027#include <arpa/inet.h>
Damien Miller03e20032006-03-15 11:16:59 +110028
Damien Millerc7b06362006-03-15 11:53:45 +110029#include <ctype.h>
Darren Tucker39972492006-07-12 22:22:46 +100030#include <errno.h>
Damien Millerb8fe89c2006-07-24 14:51:00 +100031#include <netdb.h>
Damien Miller6645e7a2006-03-15 14:42:54 +110032#ifdef HAVE_PATHS_H
Damien Miller03e20032006-03-15 11:16:59 +110033#include <paths.h>
Damien Miller6645e7a2006-03-15 14:42:54 +110034#endif
Damien Miller9f2abc42006-07-10 20:53:08 +100035#include <pwd.h>
Damien Millerded319c2006-09-01 15:38:36 +100036#include <stdarg.h>
Damien Millera7a73ee2006-08-05 11:37:59 +100037#include <stdio.h>
Damien Millere7a1e5c2006-08-05 11:34:19 +100038#include <stdlib.h>
Damien Millere3476ed2006-07-24 14:13:33 +100039#include <string.h>
Damien Millere6b3b612006-07-24 14:01:23 +100040#include <unistd.h>
Damien Millerd4a8b7e1999-10-27 13:42:43 +100041
Damien Millerd4a8b7e1999-10-27 13:42:43 +100042#include "xmalloc.h"
Damien Millerd7834352006-08-05 12:39:39 +100043#include "key.h"
44#include "hostfile.h"
45#include "ssh.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +100046#include "rsa.h"
Damien Miller1383bd82000-04-06 12:32:37 +100047#include "buffer.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +100048#include "packet.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +100049#include "uidswap.h"
50#include "compat.h"
Damien Miller450a7a12000-03-26 13:04:51 +100051#include "key.h"
Damien Millereba71ba2000-04-29 23:57:08 +100052#include "sshconnect.h"
Damien Miller450a7a12000-03-26 13:04:51 +100053#include "hostfile.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +000054#include "log.h"
55#include "readconf.h"
56#include "atomicio.h"
57#include "misc.h"
Damien Miller37876e92003-05-15 10:19:46 +100058#include "dns.h"
Damien Millerb7576772006-07-10 20:23:39 +100059#include "version.h"
Damien Miller37876e92003-05-15 10:19:46 +100060
Damien Millereba71ba2000-04-29 23:57:08 +100061char *client_version_string = NULL;
62char *server_version_string = NULL;
Damien Miller1383bd82000-04-06 12:32:37 +100063
Damien Millerc1af1d52005-11-05 15:08:57 +110064static int matching_host_key_dns = 0;
Damien Miller7392ae62003-06-11 22:05:25 +100065
Ben Lindstromf9c48842002-06-11 16:37:51 +000066/* import */
Damien Milleraae6c611999-12-06 11:47:28 +110067extern Options options;
Damien Miller34132e52000-01-14 15:45:46 +110068extern char *__progname;
Ben Lindstromf9c48842002-06-11 16:37:51 +000069extern uid_t original_real_uid;
70extern uid_t original_effective_uid;
Damien Miller8c4e18a2002-09-19 12:05:02 +100071extern pid_t proxy_command_pid;
Damien Milleraae6c611999-12-06 11:47:28 +110072
Tim Ricee991e3c2001-08-07 15:29:07 -070073#ifndef INET6_ADDRSTRLEN /* for non IPv6 machines */
74#define INET6_ADDRSTRLEN 46
75#endif
76
Ben Lindstrom3ed66402002-08-01 01:21:56 +000077static int show_other_keys(const char *, Key *);
Damien Miller5a388972003-11-17 21:10:47 +110078static void warn_changed_key(Key *);
Ben Lindstrom3ed66402002-08-01 01:21:56 +000079
Damien Miller95def091999-11-25 00:26:21 +110080/*
81 * Connect to the given ssh server using a proxy command.
82 */
Ben Lindstrombba81212001-06-25 05:01:22 +000083static int
Ben Lindstromf9c48842002-06-11 16:37:51 +000084ssh_proxy_connect(const char *host, u_short port, const char *proxy_command)
Damien Millerd4a8b7e1999-10-27 13:42:43 +100085{
Damien Miller6476cad2005-06-16 13:18:34 +100086 char *command_string, *tmp;
Damien Miller95def091999-11-25 00:26:21 +110087 int pin[2], pout[2];
Damien Miller166fca82000-04-20 07:42:21 +100088 pid_t pid;
Damien Miller34132e52000-01-14 15:45:46 +110089 char strport[NI_MAXSERV];
Damien Millerd4a8b7e1999-10-27 13:42:43 +100090
Damien Miller95def091999-11-25 00:26:21 +110091 /* Convert the port number into a string. */
Damien Miller34132e52000-01-14 15:45:46 +110092 snprintf(strport, sizeof strport, "%hu", port);
Damien Millerd4a8b7e1999-10-27 13:42:43 +100093
Damien Miller8c4e18a2002-09-19 12:05:02 +100094 /*
95 * Build the final command string in the buffer by making the
96 * appropriate substitutions to the given proxy command.
97 *
Damien Millera8e06ce2003-11-21 23:48:55 +110098 * Use "exec" to avoid "sh -c" processes on some platforms
Damien Miller8c4e18a2002-09-19 12:05:02 +100099 * (e.g. Solaris)
100 */
Damien Miller07d86be2006-03-26 14:19:21 +1100101 xasprintf(&tmp, "exec %s", proxy_command);
Damien Miller6476cad2005-06-16 13:18:34 +1000102 command_string = percent_expand(tmp, "h", host,
103 "p", strport, (char *)NULL);
104 xfree(tmp);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000105
Damien Miller95def091999-11-25 00:26:21 +1100106 /* Create pipes for communicating with the proxy. */
107 if (pipe(pin) < 0 || pipe(pout) < 0)
108 fatal("Could not create pipes to communicate with the proxy: %.100s",
Damien Miller9f0f5c62001-12-21 14:45:46 +1100109 strerror(errno));
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000110
Damien Miller95def091999-11-25 00:26:21 +1100111 debug("Executing proxy command: %.500s", command_string);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000112
Damien Miller95def091999-11-25 00:26:21 +1100113 /* Fork and execute the proxy command. */
114 if ((pid = fork()) == 0) {
115 char *argv[10];
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000116
Damien Miller95def091999-11-25 00:26:21 +1100117 /* Child. Permanently give up superuser privileges. */
Damien Miller2e5fe882006-06-13 13:10:00 +1000118 permanently_drop_suid(original_real_uid);
Damien Miller95def091999-11-25 00:26:21 +1100119
120 /* Redirect stdin and stdout. */
121 close(pin[1]);
122 if (pin[0] != 0) {
123 if (dup2(pin[0], 0) < 0)
124 perror("dup2 stdin");
125 close(pin[0]);
126 }
127 close(pout[0]);
128 if (dup2(pout[1], 1) < 0)
129 perror("dup2 stdout");
130 /* Cannot be 1 because pin allocated two descriptors. */
131 close(pout[1]);
132
133 /* Stderr is left as it is so that error messages get
134 printed on the user's terminal. */
Damien Miller7b413d22000-07-01 13:24:21 +1000135 argv[0] = _PATH_BSHELL;
Damien Miller95def091999-11-25 00:26:21 +1100136 argv[1] = "-c";
137 argv[2] = command_string;
138 argv[3] = NULL;
139
140 /* Execute the proxy command. Note that we gave up any
141 extra privileges above. */
Kevin Stevesfcd5d602001-01-07 11:45:22 +0000142 execv(argv[0], argv);
143 perror(argv[0]);
Damien Miller95def091999-11-25 00:26:21 +1100144 exit(1);
145 }
146 /* Parent. */
147 if (pid < 0)
148 fatal("fork failed: %.100s", strerror(errno));
Damien Miller8c4e18a2002-09-19 12:05:02 +1000149 else
150 proxy_command_pid = pid; /* save pid to clean up later */
Damien Miller95def091999-11-25 00:26:21 +1100151
152 /* Close child side of the descriptors. */
153 close(pin[0]);
154 close(pout[1]);
155
156 /* Free the command name. */
Damien Miller6476cad2005-06-16 13:18:34 +1000157 xfree(command_string);
Damien Miller95def091999-11-25 00:26:21 +1100158
159 /* Set the connection file descriptors. */
160 packet_set_connection(pout[0], pin[1]);
161
Ben Lindstromf9cedb92001-08-06 21:07:11 +0000162 /* Indicate OK return */
163 return 0;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000164}
165
Damien Miller95def091999-11-25 00:26:21 +1100166/*
167 * Creates a (possibly privileged) socket for use as the ssh connection.
168 */
Ben Lindstrombba81212001-06-25 05:01:22 +0000169static int
Damien Miller2372ace2003-05-14 13:42:23 +1000170ssh_create_socket(int privileged, struct addrinfo *ai)
Damien Miller95def091999-11-25 00:26:21 +1100171{
Ben Lindstrome0f88042001-04-30 13:06:24 +0000172 int sock, gaierr;
173 struct addrinfo hints, *res;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000174
Damien Miller5428f641999-11-25 11:54:57 +1100175 /*
176 * If we are running as root and want to connect to a privileged
177 * port, bind our own socket to a privileged port.
178 */
Damien Miller95def091999-11-25 00:26:21 +1100179 if (privileged) {
180 int p = IPPORT_RESERVED - 1;
Ben Lindstromf9c48842002-06-11 16:37:51 +0000181 PRIV_START;
Damien Miller2372ace2003-05-14 13:42:23 +1000182 sock = rresvport_af(&p, ai->ai_family);
Ben Lindstromf9c48842002-06-11 16:37:51 +0000183 PRIV_END;
Damien Miller95def091999-11-25 00:26:21 +1100184 if (sock < 0)
Damien Miller2372ace2003-05-14 13:42:23 +1000185 error("rresvport: af=%d %.100s", ai->ai_family,
186 strerror(errno));
Damien Miller98c7ad62000-03-09 21:27:49 +1100187 else
188 debug("Allocated local port %d.", p);
Ben Lindstrome0f88042001-04-30 13:06:24 +0000189 return sock;
Damien Miller95def091999-11-25 00:26:21 +1100190 }
Damien Miller2372ace2003-05-14 13:42:23 +1000191 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
Ben Lindstrome0f88042001-04-30 13:06:24 +0000192 if (sock < 0)
193 error("socket: %.100s", strerror(errno));
Ben Lindstrome0f88042001-04-30 13:06:24 +0000194
195 /* Bind the socket to an alternative local IP address */
196 if (options.bind_address == NULL)
197 return sock;
198
199 memset(&hints, 0, sizeof(hints));
Damien Miller2372ace2003-05-14 13:42:23 +1000200 hints.ai_family = ai->ai_family;
201 hints.ai_socktype = ai->ai_socktype;
202 hints.ai_protocol = ai->ai_protocol;
Ben Lindstrome0f88042001-04-30 13:06:24 +0000203 hints.ai_flags = AI_PASSIVE;
204 gaierr = getaddrinfo(options.bind_address, "0", &hints, &res);
205 if (gaierr) {
206 error("getaddrinfo: %s: %s", options.bind_address,
207 gai_strerror(gaierr));
208 close(sock);
209 return -1;
210 }
211 if (bind(sock, res->ai_addr, res->ai_addrlen) < 0) {
212 error("bind: %s: %s", options.bind_address, strerror(errno));
213 close(sock);
214 freeaddrinfo(res);
215 return -1;
216 }
217 freeaddrinfo(res);
Damien Miller95def091999-11-25 00:26:21 +1100218 return sock;
219}
220
Damien Millerb78d5eb2003-05-16 11:39:04 +1000221static int
222timeout_connect(int sockfd, const struct sockaddr *serv_addr,
223 socklen_t addrlen, int timeout)
224{
225 fd_set *fdset;
226 struct timeval tv;
227 socklen_t optlen;
Damien Miller07d86be2006-03-26 14:19:21 +1100228 int optval, rc, result = -1;
Damien Millerb78d5eb2003-05-16 11:39:04 +1000229
230 if (timeout <= 0)
231 return (connect(sockfd, serv_addr, addrlen));
232
Damien Millerf6723f02004-01-27 21:21:27 +1100233 set_nonblock(sockfd);
Damien Millerb78d5eb2003-05-16 11:39:04 +1000234 rc = connect(sockfd, serv_addr, addrlen);
Damien Millerf6723f02004-01-27 21:21:27 +1100235 if (rc == 0) {
236 unset_nonblock(sockfd);
Damien Millerb78d5eb2003-05-16 11:39:04 +1000237 return (0);
Damien Millerf6723f02004-01-27 21:21:27 +1100238 }
Damien Millerb78d5eb2003-05-16 11:39:04 +1000239 if (errno != EINPROGRESS)
240 return (-1);
241
Damien Miller07d86be2006-03-26 14:19:21 +1100242 fdset = (fd_set *)xcalloc(howmany(sockfd + 1, NFDBITS),
243 sizeof(fd_mask));
Damien Millerb78d5eb2003-05-16 11:39:04 +1000244 FD_SET(sockfd, fdset);
245 tv.tv_sec = timeout;
246 tv.tv_usec = 0;
247
Darren Tucker47eede72005-03-14 23:08:12 +1100248 for (;;) {
Damien Millerb78d5eb2003-05-16 11:39:04 +1000249 rc = select(sockfd + 1, NULL, fdset, NULL, &tv);
250 if (rc != -1 || errno != EINTR)
251 break;
252 }
253
Darren Tucker47eede72005-03-14 23:08:12 +1100254 switch (rc) {
Damien Millerb78d5eb2003-05-16 11:39:04 +1000255 case 0:
256 /* Timed out */
257 errno = ETIMEDOUT;
Damien Miller08293fa2003-05-23 18:44:41 +1000258 break;
Damien Millerb78d5eb2003-05-16 11:39:04 +1000259 case -1:
260 /* Select error */
Damien Millera8e06ce2003-11-21 23:48:55 +1100261 debug("select: %s", strerror(errno));
Damien Miller08293fa2003-05-23 18:44:41 +1000262 break;
Damien Millerb78d5eb2003-05-16 11:39:04 +1000263 case 1:
264 /* Completed or failed */
265 optval = 0;
266 optlen = sizeof(optval);
Damien Millera8e06ce2003-11-21 23:48:55 +1100267 if (getsockopt(sockfd, SOL_SOCKET, SO_ERROR, &optval,
Darren Tuckerbd5361b2003-09-22 20:59:16 +1000268 &optlen) == -1) {
Damien Millera8e06ce2003-11-21 23:48:55 +1100269 debug("getsockopt: %s", strerror(errno));
Damien Miller08293fa2003-05-23 18:44:41 +1000270 break;
Darren Tuckerbd5361b2003-09-22 20:59:16 +1000271 }
Damien Millerb78d5eb2003-05-16 11:39:04 +1000272 if (optval != 0) {
273 errno = optval;
Damien Miller08293fa2003-05-23 18:44:41 +1000274 break;
Damien Millerb78d5eb2003-05-16 11:39:04 +1000275 }
Damien Miller08293fa2003-05-23 18:44:41 +1000276 result = 0;
Damien Millerf6723f02004-01-27 21:21:27 +1100277 unset_nonblock(sockfd);
Damien Millerb78d5eb2003-05-16 11:39:04 +1000278 break;
279 default:
280 /* Should not occur */
281 fatal("Bogus return (%d) from select()", rc);
282 }
283
Damien Miller08293fa2003-05-23 18:44:41 +1000284 xfree(fdset);
285 return (result);
Damien Millerb78d5eb2003-05-16 11:39:04 +1000286}
287
Damien Miller95def091999-11-25 00:26:21 +1100288/*
Damien Miller34132e52000-01-14 15:45:46 +1100289 * Opens a TCP/IP connection to the remote server on the given host.
290 * The address of the remote host will be returned in hostaddr.
Ben Lindstromf9c48842002-06-11 16:37:51 +0000291 * If port is 0, the default port will be used. If needpriv is true,
Damien Miller95def091999-11-25 00:26:21 +1100292 * a privileged port will be allocated to make the connection.
Ben Lindstromf9c48842002-06-11 16:37:51 +0000293 * This requires super-user privileges if needpriv is true.
Damien Miller95def091999-11-25 00:26:21 +1100294 * Connection_attempts specifies the maximum number of tries (one per
295 * second). If proxy_command is non-NULL, it specifies the command (with %h
296 * and %p substituted for host and port, respectively) to use to contact
297 * the daemon.
298 */
299int
Damien Miller34132e52000-01-14 15:45:46 +1100300ssh_connect(const char *host, struct sockaddr_storage * hostaddr,
Damien Miller139d4cd2001-10-10 15:07:44 +1000301 u_short port, int family, int connection_attempts,
Ben Lindstromf9c48842002-06-11 16:37:51 +0000302 int needpriv, const char *proxy_command)
Damien Miller95def091999-11-25 00:26:21 +1100303{
Damien Miller34132e52000-01-14 15:45:46 +1100304 int gaierr;
Ben Lindstrombf555ba2001-01-18 02:04:35 +0000305 int on = 1;
306 int sock = -1, attempt;
307 char ntop[NI_MAXHOST], strport[NI_MAXSERV];
308 struct addrinfo hints, *ai, *aitop;
Damien Miller95def091999-11-25 00:26:21 +1100309
Ben Lindstrom064496f2002-12-23 02:04:22 +0000310 debug2("ssh_connect: needpriv %d", needpriv);
Damien Miller95def091999-11-25 00:26:21 +1100311
Damien Miller95def091999-11-25 00:26:21 +1100312 /* If a proxy command is given, connect using it. */
313 if (proxy_command != NULL)
Ben Lindstromf9c48842002-06-11 16:37:51 +0000314 return ssh_proxy_connect(host, port, proxy_command);
Damien Miller95def091999-11-25 00:26:21 +1100315
316 /* No proxy command. */
317
Damien Miller34132e52000-01-14 15:45:46 +1100318 memset(&hints, 0, sizeof(hints));
Damien Miller139d4cd2001-10-10 15:07:44 +1000319 hints.ai_family = family;
Damien Miller34132e52000-01-14 15:45:46 +1100320 hints.ai_socktype = SOCK_STREAM;
Ben Lindstrom5c385522002-06-23 21:23:20 +0000321 snprintf(strport, sizeof strport, "%u", port);
Damien Miller34132e52000-01-14 15:45:46 +1100322 if ((gaierr = getaddrinfo(host, strport, &hints, &aitop)) != 0)
323 fatal("%s: %.100s: %s", __progname, host,
324 gai_strerror(gaierr));
Damien Miller95def091999-11-25 00:26:21 +1100325
Damien Miller56e5e6a2006-04-23 12:08:59 +1000326 for (attempt = 0; attempt < connection_attempts; attempt++) {
Damien Millerf4bcd102006-10-24 03:02:23 +1000327 if (attempt > 0) {
328 /* Sleep a moment before retrying. */
329 sleep(1);
Damien Miller95def091999-11-25 00:26:21 +1100330 debug("Trying again...");
Damien Millerf4bcd102006-10-24 03:02:23 +1000331 }
Damien Miller56e5e6a2006-04-23 12:08:59 +1000332 /*
333 * Loop through addresses for this host, and try each one in
334 * sequence until the connection succeeds.
335 */
Damien Miller34132e52000-01-14 15:45:46 +1100336 for (ai = aitop; ai; ai = ai->ai_next) {
337 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
338 continue;
339 if (getnameinfo(ai->ai_addr, ai->ai_addrlen,
340 ntop, sizeof(ntop), strport, sizeof(strport),
341 NI_NUMERICHOST|NI_NUMERICSERV) != 0) {
342 error("ssh_connect: getnameinfo failed");
343 continue;
344 }
345 debug("Connecting to %.200s [%.100s] port %s.",
346 host, ntop, strport);
Damien Miller95def091999-11-25 00:26:21 +1100347
Damien Miller34132e52000-01-14 15:45:46 +1100348 /* Create a socket for connecting. */
Damien Miller2372ace2003-05-14 13:42:23 +1000349 sock = ssh_create_socket(needpriv, ai);
Damien Miller34132e52000-01-14 15:45:46 +1100350 if (sock < 0)
Ben Lindstromf9cedb92001-08-06 21:07:11 +0000351 /* Any error is already output */
Damien Miller34132e52000-01-14 15:45:46 +1100352 continue;
Damien Miller95def091999-11-25 00:26:21 +1100353
Damien Millerb78d5eb2003-05-16 11:39:04 +1000354 if (timeout_connect(sock, ai->ai_addr, ai->ai_addrlen,
355 options.connection_timeout) >= 0) {
Damien Miller34132e52000-01-14 15:45:46 +1100356 /* Successful connection. */
Ben Lindstroma3700052001-04-05 23:26:32 +0000357 memcpy(hostaddr, ai->ai_addr, ai->ai_addrlen);
Damien Miller95def091999-11-25 00:26:21 +1100358 break;
Damien Miller34132e52000-01-14 15:45:46 +1100359 } else {
Ben Lindstrom728aa7e2002-07-15 17:48:11 +0000360 debug("connect to address %s port %s: %s",
361 ntop, strport, strerror(errno));
Damien Miller95def091999-11-25 00:26:21 +1100362 close(sock);
Damien Miller56e5e6a2006-04-23 12:08:59 +1000363 sock = -1;
Damien Miller95def091999-11-25 00:26:21 +1100364 }
Damien Miller95def091999-11-25 00:26:21 +1100365 }
Damien Miller56e5e6a2006-04-23 12:08:59 +1000366 if (sock != -1)
Damien Miller34132e52000-01-14 15:45:46 +1100367 break; /* Successful connection. */
Damien Miller95def091999-11-25 00:26:21 +1100368 }
Damien Miller34132e52000-01-14 15:45:46 +1100369
370 freeaddrinfo(aitop);
371
Damien Miller95def091999-11-25 00:26:21 +1100372 /* Return failure if we didn't get a successful connection. */
Damien Miller56e5e6a2006-04-23 12:08:59 +1000373 if (sock == -1) {
Darren Tuckerb2161e32005-01-20 11:00:46 +1100374 error("ssh: connect to host %s port %s: %s",
Ben Lindstroma6cd75c2002-07-11 04:00:19 +0000375 host, strport, strerror(errno));
Darren Tuckerb2161e32005-01-20 11:00:46 +1100376 return (-1);
Ben Lindstroma6cd75c2002-07-11 04:00:19 +0000377 }
Damien Miller95def091999-11-25 00:26:21 +1100378
379 debug("Connection established.");
380
Damien Miller12c150e2003-12-17 16:31:10 +1100381 /* Set SO_KEEPALIVE if requested. */
382 if (options.tcp_keep_alive &&
Ben Lindstrombf555ba2001-01-18 02:04:35 +0000383 setsockopt(sock, SOL_SOCKET, SO_KEEPALIVE, (void *)&on,
384 sizeof(on)) < 0)
385 error("setsockopt SO_KEEPALIVE: %.100s", strerror(errno));
Damien Miller95def091999-11-25 00:26:21 +1100386
387 /* Set the connection. */
388 packet_set_connection(sock, sock);
389
Ben Lindstromf9cedb92001-08-06 21:07:11 +0000390 return 0;
Damien Miller95def091999-11-25 00:26:21 +1100391}
392
Damien Milleraae6c611999-12-06 11:47:28 +1100393/*
Damien Miller95def091999-11-25 00:26:21 +1100394 * Waits for the server identification string, and sends our own
395 * identification string.
396 */
Ben Lindstrombba81212001-06-25 05:01:22 +0000397static void
Ben Lindstrom31ca54a2001-02-09 02:11:24 +0000398ssh_exchange_identification(void)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000399{
Damien Miller95def091999-11-25 00:26:21 +1100400 char buf[256], remote_version[256]; /* must be same size! */
Damien Millereccb9de2005-06-17 12:59:34 +1000401 int remote_major, remote_minor, mismatch;
Damien Miller95def091999-11-25 00:26:21 +1100402 int connection_in = packet_get_connection_in();
403 int connection_out = packet_get_connection_out();
Kevin Stevesef4eea92001-02-05 12:42:17 +0000404 int minor1 = PROTOCOL_MINOR_1;
Damien Miller1e88ea62006-07-10 20:15:56 +1000405 u_int i, n;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000406
Damien Millerb253cc42005-05-26 12:23:44 +1000407 /* Read other side's version identification. */
Damien Miller1e88ea62006-07-10 20:15:56 +1000408 for (n = 0;;) {
Damien Millerf6d9e222000-06-18 14:50:44 +1000409 for (i = 0; i < sizeof(buf) - 1; i++) {
Damien Millerb253cc42005-05-26 12:23:44 +1000410 size_t len = atomicio(read, connection_in, &buf[i], 1);
411
Damien Miller46d38de2005-07-17 17:02:09 +1000412 if (len != 1 && errno == EPIPE)
Damien Millerf6d9e222000-06-18 14:50:44 +1000413 fatal("ssh_exchange_identification: Connection closed by remote host");
Damien Millerb253cc42005-05-26 12:23:44 +1000414 else if (len != 1)
415 fatal("ssh_exchange_identification: read: %.100s", strerror(errno));
Damien Millerf6d9e222000-06-18 14:50:44 +1000416 if (buf[i] == '\r') {
417 buf[i] = '\n';
418 buf[i + 1] = 0;
419 continue; /**XXX wait for \n */
420 }
421 if (buf[i] == '\n') {
422 buf[i + 1] = 0;
423 break;
424 }
Damien Miller1e88ea62006-07-10 20:15:56 +1000425 if (++n > 65536)
426 fatal("ssh_exchange_identification: No banner received");
Damien Miller95def091999-11-25 00:26:21 +1100427 }
Damien Millerf6d9e222000-06-18 14:50:44 +1000428 buf[sizeof(buf) - 1] = 0;
429 if (strncmp(buf, "SSH-", 4) == 0)
Damien Miller95def091999-11-25 00:26:21 +1100430 break;
Damien Millerf6d9e222000-06-18 14:50:44 +1000431 debug("ssh_exchange_identification: %s", buf);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000432 }
Damien Miller1383bd82000-04-06 12:32:37 +1000433 server_version_string = xstrdup(buf);
Damien Miller95def091999-11-25 00:26:21 +1100434
Damien Miller5428f641999-11-25 11:54:57 +1100435 /*
436 * Check that the versions match. In future this might accept
437 * several versions and set appropriate flags to handle them.
438 */
Damien Miller1383bd82000-04-06 12:32:37 +1000439 if (sscanf(server_version_string, "SSH-%d.%d-%[^\n]\n",
440 &remote_major, &remote_minor, remote_version) != 3)
Damien Miller95def091999-11-25 00:26:21 +1100441 fatal("Bad remote protocol version identification: '%.100s'", buf);
442 debug("Remote protocol version %d.%d, remote software version %.100s",
Damien Miller9f0f5c62001-12-21 14:45:46 +1100443 remote_major, remote_minor, remote_version);
Damien Miller95def091999-11-25 00:26:21 +1100444
Damien Miller1383bd82000-04-06 12:32:37 +1000445 compat_datafellows(remote_version);
Damien Miller78928792000-04-12 20:17:38 +1000446 mismatch = 0;
Damien Miller1383bd82000-04-06 12:32:37 +1000447
Ben Lindstrom1c37c6a2001-12-06 18:00:18 +0000448 switch (remote_major) {
Damien Miller78928792000-04-12 20:17:38 +1000449 case 1:
450 if (remote_minor == 99 &&
451 (options.protocol & SSH_PROTO_2) &&
452 !(options.protocol & SSH_PROTO_1_PREFERRED)) {
453 enable_compat20();
454 break;
Damien Miller95def091999-11-25 00:26:21 +1100455 }
Damien Miller78928792000-04-12 20:17:38 +1000456 if (!(options.protocol & SSH_PROTO_1)) {
457 mismatch = 1;
458 break;
459 }
460 if (remote_minor < 3) {
461 fatal("Remote machine has too old SSH software version.");
Damien Miller0bc1bd82000-11-13 22:57:25 +1100462 } else if (remote_minor == 3 || remote_minor == 4) {
Damien Miller78928792000-04-12 20:17:38 +1000463 /* We speak 1.3, too. */
464 enable_compat13();
Damien Miller0bc1bd82000-11-13 22:57:25 +1100465 minor1 = 3;
Damien Miller78928792000-04-12 20:17:38 +1000466 if (options.forward_agent) {
Damien Miller996acd22003-04-09 20:59:48 +1000467 logit("Agent forwarding disabled for protocol 1.3");
Damien Miller78928792000-04-12 20:17:38 +1000468 options.forward_agent = 0;
469 }
470 }
471 break;
472 case 2:
473 if (options.protocol & SSH_PROTO_2) {
474 enable_compat20();
475 break;
476 }
477 /* FALLTHROUGH */
Damien Miller4af51302000-04-16 11:18:38 +1000478 default:
Damien Miller78928792000-04-12 20:17:38 +1000479 mismatch = 1;
480 break;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000481 }
Damien Miller78928792000-04-12 20:17:38 +1000482 if (mismatch)
Damien Miller95def091999-11-25 00:26:21 +1100483 fatal("Protocol major versions differ: %d vs. %d",
Damien Miller78928792000-04-12 20:17:38 +1000484 (options.protocol & SSH_PROTO_2) ? PROTOCOL_MAJOR_2 : PROTOCOL_MAJOR_1,
485 remote_major);
Damien Miller95def091999-11-25 00:26:21 +1100486 /* Send our own protocol version identification. */
487 snprintf(buf, sizeof buf, "SSH-%d.%d-%.100s\n",
Damien Miller78928792000-04-12 20:17:38 +1000488 compat20 ? PROTOCOL_MAJOR_2 : PROTOCOL_MAJOR_1,
Damien Miller0bc1bd82000-11-13 22:57:25 +1100489 compat20 ? PROTOCOL_MINOR_2 : minor1,
Damien Miller1383bd82000-04-06 12:32:37 +1000490 SSH_VERSION);
Darren Tucker9f63f222003-07-03 13:46:56 +1000491 if (atomicio(vwrite, connection_out, buf, strlen(buf)) != strlen(buf))
Damien Miller95def091999-11-25 00:26:21 +1100492 fatal("write: %.100s", strerror(errno));
Damien Miller1383bd82000-04-06 12:32:37 +1000493 client_version_string = xstrdup(buf);
494 chop(client_version_string);
495 chop(server_version_string);
496 debug("Local version string %.100s", client_version_string);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000497}
498
Ben Lindstromb6c06d92001-02-10 23:21:09 +0000499/* defaults to 'no' */
Ben Lindstrombba81212001-06-25 05:01:22 +0000500static int
Damien Millere3980042001-10-10 15:02:03 +1000501confirm(const char *prompt)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000502{
Damien Miller49d795c2002-01-22 23:34:12 +1100503 const char *msg, *again = "Please type 'yes' or 'no': ";
504 char *p;
505 int ret = -1;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000506
Ben Lindstromb6c06d92001-02-10 23:21:09 +0000507 if (options.batch_mode)
508 return 0;
Damien Miller49d795c2002-01-22 23:34:12 +1100509 for (msg = prompt;;msg = again) {
510 p = read_passphrase(msg, RP_ECHO);
511 if (p == NULL ||
512 (p[0] == '\0') || (p[0] == '\n') ||
513 strncasecmp(p, "no", 2) == 0)
514 ret = 0;
Ben Lindstrom04f9af72002-07-04 00:03:56 +0000515 if (p && strncasecmp(p, "yes", 3) == 0)
Damien Miller49d795c2002-01-22 23:34:12 +1100516 ret = 1;
517 if (p)
518 xfree(p);
519 if (ret != -1)
520 return ret;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000521 }
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000522}
523
Damien Miller95def091999-11-25 00:26:21 +1100524/*
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000525 * check whether the supplied host key is valid, return -1 if the key
526 * is not valid. the user_hostfile will not be updated if 'readonly' is true.
Damien Miller95def091999-11-25 00:26:21 +1100527 */
Damien Millerda828392006-08-05 11:35:45 +1000528#define RDRW 0
529#define RDONLY 1
530#define ROQUIET 2
Ben Lindstrombba81212001-06-25 05:01:22 +0000531static int
Damien Millerda828392006-08-05 11:35:45 +1000532check_host_key(char *hostname, struct sockaddr *hostaddr, u_short port,
533 Key *host_key, int readonly, const char *user_hostfile,
534 const char *system_hostfile)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000535{
Damien Miller450a7a12000-03-26 13:04:51 +1000536 Key *file_key;
Damien Millerf58b58c2003-11-17 21:18:23 +1100537 const char *type = key_type(host_key);
Darren Tuckerda345532006-07-10 23:04:19 +1000538 char *ip = NULL, *host = NULL;
Ben Lindstromcfccef92001-03-13 04:57:58 +0000539 char hostline[1000], *hostp, *fp;
Damien Miller95def091999-11-25 00:26:21 +1100540 HostStatus host_status;
541 HostStatus ip_status;
Damien Miller1227d4c2005-03-02 12:06:51 +1100542 int r, local = 0, host_ip_differ = 0;
Damien Millereaf99942000-01-19 13:45:07 +1100543 int salen;
Damien Miller34132e52000-01-14 15:45:46 +1100544 char ntop[NI_MAXHOST];
Damien Miller49d795c2002-01-22 23:34:12 +1100545 char msg[1024];
Damien Miller7392ae62003-06-11 22:05:25 +1000546 int len, host_line, ip_line;
Ben Lindstrom46c16222000-12-22 01:43:59 +0000547 const char *host_file = NULL, *ip_file = NULL;
Damien Miller34132e52000-01-14 15:45:46 +1100548
549 /*
550 * Force accepting of the host key for loopback/localhost. The
551 * problem is that if the home directory is NFS-mounted to multiple
552 * machines, localhost will refer to a different machine in each of
553 * them, and the user will get bogus HOST_CHANGED warnings. This
554 * essentially disables host authentication for localhost; however,
555 * this is probably not a real problem.
556 */
Damien Millereba71ba2000-04-29 23:57:08 +1000557 /** hostaddr == 0! */
Damien Miller34132e52000-01-14 15:45:46 +1100558 switch (hostaddr->sa_family) {
559 case AF_INET:
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000560 local = (ntohl(((struct sockaddr_in *)hostaddr)->
Damien Miller0dc1bef2005-07-17 17:22:45 +1000561 sin_addr.s_addr) >> 24) == IN_LOOPBACKNET;
Damien Millereaf99942000-01-19 13:45:07 +1100562 salen = sizeof(struct sockaddr_in);
Damien Miller34132e52000-01-14 15:45:46 +1100563 break;
564 case AF_INET6:
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000565 local = IN6_IS_ADDR_LOOPBACK(
566 &(((struct sockaddr_in6 *)hostaddr)->sin6_addr));
Damien Millereaf99942000-01-19 13:45:07 +1100567 salen = sizeof(struct sockaddr_in6);
Damien Miller34132e52000-01-14 15:45:46 +1100568 break;
569 default:
570 local = 0;
Damien Millereaf99942000-01-19 13:45:07 +1100571 salen = sizeof(struct sockaddr_storage);
Damien Miller34132e52000-01-14 15:45:46 +1100572 break;
573 }
Ben Lindstrom3cecc9a2001-10-03 17:39:38 +0000574 if (options.no_host_authentication_for_localhost == 1 && local &&
575 options.host_key_alias == NULL) {
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000576 debug("Forcing accepting of host key for "
577 "loopback/localhost.");
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000578 return 0;
Damien Miller34132e52000-01-14 15:45:46 +1100579 }
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000580
Damien Milleraae6c611999-12-06 11:47:28 +1100581 /*
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000582 * We don't have the remote ip-address for connections
583 * using a proxy command
Damien Milleraae6c611999-12-06 11:47:28 +1100584 */
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000585 if (options.proxy_command == NULL) {
586 if (getnameinfo(hostaddr, salen, ntop, sizeof(ntop),
587 NULL, 0, NI_NUMERICHOST) != 0)
588 fatal("check_host_key: getnameinfo failed");
Damien Millerda828392006-08-05 11:35:45 +1000589 ip = put_host_port(ntop, port);
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000590 } else {
591 ip = xstrdup("<no hostip for proxy command>");
592 }
593 /*
594 * Turn off check_host_ip if the connection is to localhost, via proxy
595 * command or if we don't have a hostname to compare with
596 */
Darren Tuckerda345532006-07-10 23:04:19 +1000597 if (options.check_host_ip && (local ||
598 strcmp(hostname, ip) == 0 || options.proxy_command != NULL))
Damien Milleraae6c611999-12-06 11:47:28 +1100599 options.check_host_ip = 0;
600
Damien Millera34a28b1999-12-14 10:47:15 +1100601 /*
Darren Tuckerda345532006-07-10 23:04:19 +1000602 * Allow the user to record the key under a different name or
603 * differentiate a non-standard port. This is useful for ssh
604 * tunneling over forwarded connections or if you run multiple
605 * sshd's on different ports on the same machine.
Ben Lindstrom4dccfa52000-12-28 16:40:05 +0000606 */
607 if (options.host_key_alias != NULL) {
Darren Tuckerda345532006-07-10 23:04:19 +1000608 host = xstrdup(options.host_key_alias);
Ben Lindstrom4dccfa52000-12-28 16:40:05 +0000609 debug("using hostkeyalias: %s", host);
Darren Tuckerda345532006-07-10 23:04:19 +1000610 } else {
Damien Millerda828392006-08-05 11:35:45 +1000611 host = put_host_port(hostname, port);
Ben Lindstrom4dccfa52000-12-28 16:40:05 +0000612 }
613
614 /*
Damien Millera34a28b1999-12-14 10:47:15 +1100615 * Store the host key from the known host file in here so that we can
616 * compare it with the key for the IP address.
617 */
Damien Miller450a7a12000-03-26 13:04:51 +1000618 file_key = key_new(host_key->type);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000619
Damien Miller5428f641999-11-25 11:54:57 +1100620 /*
Damien Miller788f2122005-11-05 15:14:59 +1100621 * Check if the host key is present in the user's list of known
Damien Miller5428f641999-11-25 11:54:57 +1100622 * hosts or in the systemwide list.
623 */
Ben Lindstrom46c16222000-12-22 01:43:59 +0000624 host_file = user_hostfile;
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000625 host_status = check_host_in_hostfile(host_file, host, host_key,
Damien Miller9f0f5c62001-12-21 14:45:46 +1100626 file_key, &host_line);
Ben Lindstrom46c16222000-12-22 01:43:59 +0000627 if (host_status == HOST_NEW) {
628 host_file = system_hostfile;
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000629 host_status = check_host_in_hostfile(host_file, host, host_key,
630 file_key, &host_line);
Ben Lindstrom46c16222000-12-22 01:43:59 +0000631 }
Damien Miller5428f641999-11-25 11:54:57 +1100632 /*
Damien Miller5428f641999-11-25 11:54:57 +1100633 * Also perform check for the ip address, skip the check if we are
634 * localhost or the hostname was an ip address to begin with
635 */
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000636 if (options.check_host_ip) {
Damien Miller450a7a12000-03-26 13:04:51 +1000637 Key *ip_key = key_new(host_key->type);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000638
Ben Lindstrom46c16222000-12-22 01:43:59 +0000639 ip_file = user_hostfile;
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000640 ip_status = check_host_in_hostfile(ip_file, ip, host_key,
641 ip_key, &ip_line);
Ben Lindstrom46c16222000-12-22 01:43:59 +0000642 if (ip_status == HOST_NEW) {
643 ip_file = system_hostfile;
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000644 ip_status = check_host_in_hostfile(ip_file, ip,
645 host_key, ip_key, &ip_line);
Ben Lindstrom46c16222000-12-22 01:43:59 +0000646 }
Damien Miller95def091999-11-25 00:26:21 +1100647 if (host_status == HOST_CHANGED &&
Damien Miller450a7a12000-03-26 13:04:51 +1000648 (ip_status != HOST_CHANGED || !key_equal(ip_key, file_key)))
Damien Miller95def091999-11-25 00:26:21 +1100649 host_ip_differ = 1;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000650
Damien Miller450a7a12000-03-26 13:04:51 +1000651 key_free(ip_key);
Damien Miller95def091999-11-25 00:26:21 +1100652 } else
653 ip_status = host_status;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000654
Damien Miller450a7a12000-03-26 13:04:51 +1000655 key_free(file_key);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000656
Damien Miller95def091999-11-25 00:26:21 +1100657 switch (host_status) {
658 case HOST_OK:
659 /* The host is known and the key matches. */
Damien Millere247cc42000-05-07 12:03:14 +1000660 debug("Host '%.200s' is known and matches the %s host key.",
661 host, type);
Ben Lindstrom46c16222000-12-22 01:43:59 +0000662 debug("Found key in %s:%d", host_file, host_line);
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000663 if (options.check_host_ip && ip_status == HOST_NEW) {
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000664 if (readonly)
Damien Miller996acd22003-04-09 20:59:48 +1000665 logit("%s host key for IP address "
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000666 "'%.128s' not in list of known hosts.",
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000667 type, ip);
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000668 else if (!add_host_to_hostfile(user_hostfile, ip,
Damien Millere1776152005-03-01 21:47:37 +1100669 host_key, options.hash_known_hosts))
Damien Miller996acd22003-04-09 20:59:48 +1000670 logit("Failed to add the %s host key for IP "
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000671 "address '%.128s' to the list of known "
672 "hosts (%.30s).", type, ip, user_hostfile);
673 else
Damien Miller996acd22003-04-09 20:59:48 +1000674 logit("Warning: Permanently added the %s host "
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000675 "key for IP address '%.128s' to the list "
676 "of known hosts.", type, ip);
Damien Miller95def091999-11-25 00:26:21 +1100677 }
678 break;
679 case HOST_NEW:
Damien Millerda828392006-08-05 11:35:45 +1000680 if (options.host_key_alias == NULL && port != 0 &&
681 port != SSH_DEFAULT_PORT) {
682 debug("checking without port identifier");
683 if (check_host_key(hostname, hostaddr, 0, host_key, 2,
684 user_hostfile, system_hostfile) == 0) {
685 debug("found matching key w/out port");
686 break;
687 }
688 }
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000689 if (readonly)
690 goto fail;
Damien Miller95def091999-11-25 00:26:21 +1100691 /* The host is new. */
692 if (options.strict_host_key_checking == 1) {
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000693 /*
694 * User has requested strict host key checking. We
695 * will not add the host key automatically. The only
696 * alternative left is to abort.
697 */
698 error("No %s host key is known for %.200s and you "
699 "have requested strict checking.", type, host);
700 goto fail;
Damien Miller95def091999-11-25 00:26:21 +1100701 } else if (options.strict_host_key_checking == 2) {
Damien Miller7392ae62003-06-11 22:05:25 +1000702 char msg1[1024], msg2[1024];
703
704 if (show_other_keys(host, host_key))
705 snprintf(msg1, sizeof(msg1),
Damien Miller0dc1bef2005-07-17 17:22:45 +1000706 "\nbut keys of different type are already"
707 " known for this host.");
Damien Miller7392ae62003-06-11 22:05:25 +1000708 else
709 snprintf(msg1, sizeof(msg1), ".");
Damien Miller95def091999-11-25 00:26:21 +1100710 /* The default */
Ben Lindstromcfccef92001-03-13 04:57:58 +0000711 fp = key_fingerprint(host_key, SSH_FP_MD5, SSH_FP_HEX);
Damien Miller7392ae62003-06-11 22:05:25 +1000712 msg2[0] = '\0';
Damien Miller7392ae62003-06-11 22:05:25 +1000713 if (options.verify_host_key_dns) {
Damien Miller150b5572003-11-17 21:19:29 +1100714 if (matching_host_key_dns)
Damien Miller7392ae62003-06-11 22:05:25 +1000715 snprintf(msg2, sizeof(msg2),
716 "Matching host key fingerprint"
717 " found in DNS.\n");
718 else
719 snprintf(msg2, sizeof(msg2),
720 "No matching host key fingerprint"
721 " found in DNS.\n");
722 }
Damien Miller49d795c2002-01-22 23:34:12 +1100723 snprintf(msg, sizeof(msg),
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000724 "The authenticity of host '%.200s (%s)' can't be "
Ben Lindstrom3ed66402002-08-01 01:21:56 +0000725 "established%s\n"
Damien Miller7392ae62003-06-11 22:05:25 +1000726 "%s key fingerprint is %s.\n%s"
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000727 "Are you sure you want to continue connecting "
Ben Lindstrom3ed66402002-08-01 01:21:56 +0000728 "(yes/no)? ",
Damien Miller7392ae62003-06-11 22:05:25 +1000729 host, ip, msg1, type, fp, msg2);
Ben Lindstromcfccef92001-03-13 04:57:58 +0000730 xfree(fp);
Damien Miller49d795c2002-01-22 23:34:12 +1100731 if (!confirm(msg))
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000732 goto fail;
Damien Miller95def091999-11-25 00:26:21 +1100733 }
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000734 /*
735 * If not in strict mode, add the key automatically to the
736 * local known_hosts file.
737 */
Damien Miller1227d4c2005-03-02 12:06:51 +1100738 if (options.check_host_ip && ip_status == HOST_NEW) {
739 snprintf(hostline, sizeof(hostline), "%s,%s",
740 host, ip);
741 hostp = hostline;
742 if (options.hash_known_hosts) {
743 /* Add hash of host and IP separately */
744 r = add_host_to_hostfile(user_hostfile, host,
745 host_key, options.hash_known_hosts) &&
746 add_host_to_hostfile(user_hostfile, ip,
747 host_key, options.hash_known_hosts);
748 } else {
749 /* Add unhashed "host,ip" */
750 r = add_host_to_hostfile(user_hostfile,
751 hostline, host_key,
752 options.hash_known_hosts);
753 }
754 } else {
755 r = add_host_to_hostfile(user_hostfile, host, host_key,
756 options.hash_known_hosts);
757 hostp = host;
758 }
759
760 if (!r)
Damien Miller996acd22003-04-09 20:59:48 +1000761 logit("Failed to add the host to the list of known "
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000762 "hosts (%.500s).", user_hostfile);
Damien Miller95def091999-11-25 00:26:21 +1100763 else
Damien Miller996acd22003-04-09 20:59:48 +1000764 logit("Warning: Permanently added '%.200s' (%s) to the "
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000765 "list of known hosts.", hostp, type);
Damien Miller95def091999-11-25 00:26:21 +1100766 break;
767 case HOST_CHANGED:
Damien Millerda828392006-08-05 11:35:45 +1000768 if (readonly == ROQUIET)
769 goto fail;
Damien Miller95def091999-11-25 00:26:21 +1100770 if (options.check_host_ip && host_ip_differ) {
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000771 char *key_msg;
Damien Miller95def091999-11-25 00:26:21 +1100772 if (ip_status == HOST_NEW)
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000773 key_msg = "is unknown";
Damien Miller95def091999-11-25 00:26:21 +1100774 else if (ip_status == HOST_OK)
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000775 key_msg = "is unchanged";
Damien Miller95def091999-11-25 00:26:21 +1100776 else
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000777 key_msg = "has a different value";
Damien Miller95def091999-11-25 00:26:21 +1100778 error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@");
779 error("@ WARNING: POSSIBLE DNS SPOOFING DETECTED! @");
780 error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@");
Damien Millere247cc42000-05-07 12:03:14 +1000781 error("The %s host key for %s has changed,", type, host);
Damien Miller95def091999-11-25 00:26:21 +1100782 error("and the key for the according IP address %s", ip);
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000783 error("%s. This could either mean that", key_msg);
Damien Miller95def091999-11-25 00:26:21 +1100784 error("DNS SPOOFING is happening or the IP address for the host");
Ben Lindstrom46c16222000-12-22 01:43:59 +0000785 error("and its host key have changed at the same time.");
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000786 if (ip_status != HOST_NEW)
Ben Lindstrom46c16222000-12-22 01:43:59 +0000787 error("Offending key for IP in %s:%d", ip_file, ip_line);
Damien Miller95def091999-11-25 00:26:21 +1100788 }
789 /* The host key has changed. */
Damien Miller5a388972003-11-17 21:10:47 +1100790 warn_changed_key(host_key);
Damien Miller95def091999-11-25 00:26:21 +1100791 error("Add correct host key in %.100s to get rid of this message.",
Ben Lindstrom4dccfa52000-12-28 16:40:05 +0000792 user_hostfile);
Ben Lindstrom46c16222000-12-22 01:43:59 +0000793 error("Offending key in %s:%d", host_file, host_line);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000794
Damien Miller5428f641999-11-25 11:54:57 +1100795 /*
796 * If strict host key checking is in use, the user will have
797 * to edit the key manually and we can only abort.
798 */
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000799 if (options.strict_host_key_checking) {
800 error("%s host key for %.200s has changed and you have "
801 "requested strict checking.", type, host);
802 goto fail;
803 }
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000804
Damien Miller5428f641999-11-25 11:54:57 +1100805 /*
806 * If strict host key checking has not been requested, allow
Damien Miller941ac452003-06-04 20:31:53 +1000807 * the connection but without MITM-able authentication or
Damien Miller437edb92006-08-05 09:11:13 +1000808 * forwarding.
Damien Miller5428f641999-11-25 11:54:57 +1100809 */
Damien Miller95def091999-11-25 00:26:21 +1100810 if (options.password_authentication) {
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000811 error("Password authentication is disabled to avoid "
812 "man-in-the-middle attacks.");
Damien Miller95def091999-11-25 00:26:21 +1100813 options.password_authentication = 0;
814 }
Damien Miller941ac452003-06-04 20:31:53 +1000815 if (options.kbd_interactive_authentication) {
816 error("Keyboard-interactive authentication is disabled"
817 " to avoid man-in-the-middle attacks.");
818 options.kbd_interactive_authentication = 0;
819 options.challenge_response_authentication = 0;
820 }
821 if (options.challenge_response_authentication) {
822 error("Challenge/response authentication is disabled"
823 " to avoid man-in-the-middle attacks.");
824 options.challenge_response_authentication = 0;
825 }
Damien Miller95def091999-11-25 00:26:21 +1100826 if (options.forward_agent) {
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000827 error("Agent forwarding is disabled to avoid "
828 "man-in-the-middle attacks.");
Damien Miller95def091999-11-25 00:26:21 +1100829 options.forward_agent = 0;
830 }
Ben Lindstromc72745a2000-12-02 19:03:54 +0000831 if (options.forward_x11) {
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000832 error("X11 forwarding is disabled to avoid "
833 "man-in-the-middle attacks.");
Ben Lindstromc72745a2000-12-02 19:03:54 +0000834 options.forward_x11 = 0;
835 }
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000836 if (options.num_local_forwards > 0 ||
837 options.num_remote_forwards > 0) {
838 error("Port forwarding is disabled to avoid "
839 "man-in-the-middle attacks.");
840 options.num_local_forwards =
Damien Miller9f0f5c62001-12-21 14:45:46 +1100841 options.num_remote_forwards = 0;
Ben Lindstromc72745a2000-12-02 19:03:54 +0000842 }
Damien Miller437edb92006-08-05 09:11:13 +1000843 if (options.tun_open != SSH_TUNMODE_NO) {
844 error("Tunnel forwarding is disabled to avoid "
845 "man-in-the-middle attacks.");
846 options.tun_open = SSH_TUNMODE_NO;
847 }
Damien Miller5428f641999-11-25 11:54:57 +1100848 /*
849 * XXX Should permit the user to change to use the new id.
850 * This could be done by converting the host key to an
851 * identifying sentence, tell that the host identifies itself
852 * by that sentence, and ask the user if he/she whishes to
853 * accept the authentication.
854 */
Damien Miller95def091999-11-25 00:26:21 +1100855 break;
Ben Lindstrom3ed66402002-08-01 01:21:56 +0000856 case HOST_FOUND:
857 fatal("internal error");
858 break;
Damien Miller95def091999-11-25 00:26:21 +1100859 }
Ben Lindstromc72745a2000-12-02 19:03:54 +0000860
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000861 if (options.check_host_ip && host_status != HOST_CHANGED &&
862 ip_status == HOST_CHANGED) {
Damien Miller49d795c2002-01-22 23:34:12 +1100863 snprintf(msg, sizeof(msg),
864 "Warning: the %s host key for '%.200s' "
865 "differs from the key for the IP address '%.128s'"
866 "\nOffending key for IP in %s:%d",
867 type, host, ip, ip_file, ip_line);
868 if (host_status == HOST_OK) {
869 len = strlen(msg);
870 snprintf(msg + len, sizeof(msg) - len,
871 "\nMatching host key in %s:%d",
Ben Lindstromcb72e4f2002-06-21 00:41:51 +0000872 host_file, host_line);
Damien Miller49d795c2002-01-22 23:34:12 +1100873 }
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000874 if (options.strict_host_key_checking == 1) {
Damien Millerab2db412003-06-02 19:09:13 +1000875 logit("%s", msg);
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000876 error("Exiting, you have requested strict checking.");
877 goto fail;
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000878 } else if (options.strict_host_key_checking == 2) {
Damien Miller49d795c2002-01-22 23:34:12 +1100879 strlcat(msg, "\nAre you sure you want "
880 "to continue connecting (yes/no)? ", sizeof(msg));
881 if (!confirm(msg))
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000882 goto fail;
Damien Miller49d795c2002-01-22 23:34:12 +1100883 } else {
Damien Millerab2db412003-06-02 19:09:13 +1000884 logit("%s", msg);
Ben Lindstrom5c1fbab2001-01-03 03:51:15 +0000885 }
886 }
887
Ben Lindstromc72745a2000-12-02 19:03:54 +0000888 xfree(ip);
Darren Tuckerda345532006-07-10 23:04:19 +1000889 xfree(host);
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000890 return 0;
891
892fail:
893 xfree(ip);
Darren Tuckerda345532006-07-10 23:04:19 +1000894 xfree(host);
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000895 return -1;
896}
897
Damien Miller37876e92003-05-15 10:19:46 +1000898/* returns 0 if key verifies or -1 if key does NOT verify */
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000899int
900verify_host_key(char *host, struct sockaddr *hostaddr, Key *host_key)
901{
902 struct stat st;
Damien Miller150b5572003-11-17 21:19:29 +1100903 int flags = 0;
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000904
Damien Miller150b5572003-11-17 21:19:29 +1100905 if (options.verify_host_key_dns &&
906 verify_host_key_dns(host, hostaddr, host_key, &flags) == 0) {
907
908 if (flags & DNS_VERIFY_FOUND) {
909
910 if (options.verify_host_key_dns == 1 &&
911 flags & DNS_VERIFY_MATCH &&
912 flags & DNS_VERIFY_SECURE)
913 return 0;
914
915 if (flags & DNS_VERIFY_MATCH) {
916 matching_host_key_dns = 1;
917 } else {
918 warn_changed_key(host_key);
919 error("Update the SSHFP RR in DNS with the new "
920 "host key to get rid of this message.");
921 }
Damien Miller37876e92003-05-15 10:19:46 +1000922 }
923 }
Damien Miller37876e92003-05-15 10:19:46 +1000924
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000925 /* return ok if the key can be found in an old keyfile */
926 if (stat(options.system_hostfile2, &st) == 0 ||
927 stat(options.user_hostfile2, &st) == 0) {
Damien Millerda828392006-08-05 11:35:45 +1000928 if (check_host_key(host, hostaddr, options.port, host_key,
929 RDONLY, options.user_hostfile2,
930 options.system_hostfile2) == 0)
Ben Lindstromd6481ea2001-06-25 04:37:41 +0000931 return 0;
932 }
Damien Millerda828392006-08-05 11:35:45 +1000933 return check_host_key(host, hostaddr, options.port, host_key,
934 RDRW, options.user_hostfile, options.system_hostfile);
Damien Millera34a28b1999-12-14 10:47:15 +1100935}
Damien Miller037a0dc1999-12-07 15:38:31 +1100936
Damien Miller396691a2000-01-20 22:44:08 +1100937/*
938 * Starts a dialog with the server, and authenticates the current user on the
939 * server. This does not need any extra privileges. The basic connection
940 * to the server must already have been established before this is called.
941 * If login fails, this function prints an error and never returns.
942 * This function does not require super-user privileges.
943 */
944void
Ben Lindstrom1bad2562002-06-06 19:57:33 +0000945ssh_login(Sensitive *sensitive, const char *orighost,
Ben Lindstrom3fcf1a22001-04-08 18:26:59 +0000946 struct sockaddr *hostaddr, struct passwd *pw)
Damien Miller396691a2000-01-20 22:44:08 +1100947{
948 char *host, *cp;
Damien Millereba71ba2000-04-29 23:57:08 +1000949 char *server_user, *local_user;
950
Damien Millereba71ba2000-04-29 23:57:08 +1000951 local_user = xstrdup(pw->pw_name);
952 server_user = options.user ? options.user : local_user;
Damien Miller396691a2000-01-20 22:44:08 +1100953
954 /* Convert the user-supplied hostname into all lowercase. */
955 host = xstrdup(orighost);
956 for (cp = host; *cp; cp++)
957 if (isupper(*cp))
Damien Miller1d2b6702006-03-26 14:09:54 +1100958 *cp = (char)tolower(*cp);
Damien Miller396691a2000-01-20 22:44:08 +1100959
960 /* Exchange protocol version identification strings with the server. */
961 ssh_exchange_identification();
962
963 /* Put the connection into non-blocking mode. */
964 packet_set_nonblocking();
965
Damien Miller396691a2000-01-20 22:44:08 +1100966 /* key exchange */
Damien Miller396691a2000-01-20 22:44:08 +1100967 /* authenticate user */
Damien Miller1383bd82000-04-06 12:32:37 +1000968 if (compat20) {
969 ssh_kex2(host, hostaddr);
Ben Lindstrom1bad2562002-06-06 19:57:33 +0000970 ssh_userauth2(local_user, server_user, host, sensitive);
Damien Miller1383bd82000-04-06 12:32:37 +1000971 } else {
Damien Miller1383bd82000-04-06 12:32:37 +1000972 ssh_kex(host, hostaddr);
Ben Lindstrom1bad2562002-06-06 19:57:33 +0000973 ssh_userauth1(local_user, server_user, host, sensitive);
Damien Miller1383bd82000-04-06 12:32:37 +1000974 }
Damien Miller40b59852006-06-13 13:00:25 +1000975 xfree(local_user);
Damien Miller396691a2000-01-20 22:44:08 +1100976}
Damien Miller79438cc2001-02-16 12:34:57 +1100977
978void
979ssh_put_password(char *password)
980{
981 int size;
982 char *padded;
983
Ben Lindstromd20d0f32001-03-10 17:22:20 +0000984 if (datafellows & SSH_BUG_PASSWORDPAD) {
Ben Lindstrom664408d2001-06-09 01:42:01 +0000985 packet_put_cstring(password);
Ben Lindstromd20d0f32001-03-10 17:22:20 +0000986 return;
987 }
Damien Miller79438cc2001-02-16 12:34:57 +1100988 size = roundup(strlen(password) + 1, 32);
Damien Miller07d86be2006-03-26 14:19:21 +1100989 padded = xcalloc(1, size);
Damien Miller79438cc2001-02-16 12:34:57 +1100990 strlcpy(padded, password, size);
991 packet_put_string(padded, size);
992 memset(padded, 0, size);
993 xfree(padded);
994}
Ben Lindstrom3ed66402002-08-01 01:21:56 +0000995
996static int
997show_key_from_file(const char *file, const char *host, int keytype)
998{
999 Key *found;
1000 char *fp;
1001 int line, ret;
1002
1003 found = key_new(keytype);
1004 if ((ret = lookup_key_in_hostfile_by_type(file, host,
1005 keytype, found, &line))) {
1006 fp = key_fingerprint(found, SSH_FP_MD5, SSH_FP_HEX);
Damien Miller996acd22003-04-09 20:59:48 +10001007 logit("WARNING: %s key found for host %s\n"
Ben Lindstrom4b99be82002-08-01 01:26:29 +00001008 "in %s:%d\n"
Ben Lindstrom3ed66402002-08-01 01:21:56 +00001009 "%s key fingerprint %s.",
1010 key_type(found), host, file, line,
1011 key_type(found), fp);
1012 xfree(fp);
1013 }
1014 key_free(found);
1015 return (ret);
1016}
1017
1018/* print all known host keys for a given host, but skip keys of given type */
1019static int
1020show_other_keys(const char *host, Key *key)
1021{
1022 int type[] = { KEY_RSA1, KEY_RSA, KEY_DSA, -1};
1023 int i, found = 0;
1024
1025 for (i = 0; type[i] != -1; i++) {
1026 if (type[i] == key->type)
1027 continue;
1028 if (type[i] != KEY_RSA1 &&
1029 show_key_from_file(options.user_hostfile2, host, type[i])) {
1030 found = 1;
1031 continue;
1032 }
1033 if (type[i] != KEY_RSA1 &&
1034 show_key_from_file(options.system_hostfile2, host, type[i])) {
1035 found = 1;
1036 continue;
1037 }
1038 if (show_key_from_file(options.user_hostfile, host, type[i])) {
1039 found = 1;
1040 continue;
1041 }
1042 if (show_key_from_file(options.system_hostfile, host, type[i])) {
1043 found = 1;
1044 continue;
1045 }
1046 debug2("no key of type %d for host %s", type[i], host);
1047 }
1048 return (found);
1049}
Damien Miller5a388972003-11-17 21:10:47 +11001050
1051static void
1052warn_changed_key(Key *host_key)
1053{
1054 char *fp;
Damien Miller8f746ec2003-11-17 21:11:15 +11001055 const char *type = key_type(host_key);
Damien Miller5a388972003-11-17 21:10:47 +11001056
1057 fp = key_fingerprint(host_key, SSH_FP_MD5, SSH_FP_HEX);
1058
1059 error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@");
1060 error("@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @");
1061 error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@");
1062 error("IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!");
1063 error("Someone could be eavesdropping on you right now (man-in-the-middle attack)!");
1064 error("It is also possible that the %s host key has just been changed.", type);
1065 error("The fingerprint for the %s key sent by the remote host is\n%s.",
1066 type, fp);
1067 error("Please contact your system administrator.");
1068
1069 xfree(fp);
Damien Miller5a388972003-11-17 21:10:47 +11001070}
Damien Millerd27b9472005-12-13 19:29:02 +11001071
1072/*
1073 * Execute a local command
1074 */
1075int
1076ssh_local_cmd(const char *args)
1077{
1078 char *shell;
1079 pid_t pid;
1080 int status;
1081
1082 if (!options.permit_local_command ||
1083 args == NULL || !*args)
1084 return (1);
1085
1086 if ((shell = getenv("SHELL")) == NULL)
1087 shell = _PATH_BSHELL;
1088
1089 pid = fork();
1090 if (pid == 0) {
1091 debug3("Executing %s -c \"%s\"", shell, args);
1092 execl(shell, shell, "-c", args, (char *)NULL);
1093 error("Couldn't execute %s -c \"%s\": %s",
1094 shell, args, strerror(errno));
1095 _exit(1);
1096 } else if (pid == -1)
1097 fatal("fork failed: %.100s", strerror(errno));
1098 while (waitpid(pid, &status, 0) == -1)
1099 if (errno != EINTR)
1100 fatal("Couldn't wait for child: %s", strerror(errno));
1101
1102 if (!WIFEXITED(status))
1103 return (1);
1104
1105 return (WEXITSTATUS(status));
1106}