Blame - sshconnect2.c - platform/external/openssh

blob: 0d339b9c5c347b25ed7b5e763560f3f14c19ac57 [file] [log] [blame]

Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame^]	1	/* $OpenBSD: sshconnect2.c,v 1.200 2013/12/30 23:52:28 djm Exp $ */
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	2	/*
				3	* Copyright (c) 2000 Markus Friedl. All rights reserved.
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	4	* Copyright (c) 2008 Damien Miller. All rights reserved.
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	5	*
				6	* Redistribution and use in source and binary forms, with or without
				7	* modification, are permitted provided that the following conditions
				8	* are met:
				9	* 1. Redistributions of source code must retain the above copyright
				10	* notice, this list of conditions and the following disclaimer.
				11	* 2. Redistributions in binary form must reproduce the above copyright
				12	* notice, this list of conditions and the following disclaimer in the
				13	* documentation and/or other materials provided with the distribution.
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	14	*
				15	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
				16	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
				17	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
				18	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
				19	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
				20	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
				21	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
				22	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
				23	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
				24	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
				25	*/
				26
				27	#include "includes.h"
Damien Miller	2eb6340	2006-03-15 11:09:42 +1100	[diff] [blame]	28
Damien Miller	9cf6d07	2006-03-15 11:29:24 +1100	[diff] [blame]	29	#include <sys/types.h>
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	30	#include <sys/socket.h>
Damien Miller	9cf6d07	2006-03-15 11:29:24 +1100	[diff] [blame]	31	#include <sys/wait.h>
Damien Miller	f17883e	2006-03-15 11:45:54 +1100	[diff] [blame]	32	#include <sys/stat.h>
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	33
Darren Tucker	3997249	2006-07-12 22:22:46 +1000	[diff] [blame]	34	#include <errno.h>
Darren Tucker	6e7fe1c	2010-01-08 17:07:22 +1100	[diff] [blame]	35	#include <fcntl.h>
Darren Tucker	f520ea1	2007-05-20 15:11:33 +1000	[diff] [blame]	36	#include <netdb.h>
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	37	#include <pwd.h>
				38	#include <signal.h>
Damien Miller	ded319c	2006-09-01 15:38:36 +1000	[diff] [blame]	39	#include <stdarg.h>
Damien Miller	a7a73ee	2006-08-05 11:37:59 +1000	[diff] [blame]	40	#include <stdio.h>
Damien Miller	e3476ed	2006-07-24 14:13:33 +1000	[diff] [blame]	41	#include <string.h>
Damien Miller	1cdde6f	2006-07-24 14:07:35 +1000	[diff] [blame]	42	#include <unistd.h>
Damien Miller	63b4bcd	2013-03-20 12:55:14 +1100	[diff] [blame]	43	#if defined(HAVE_STRNVIS) && defined(HAVE_VIS_H) && !defined(BROKEN_STRNVIS)
Damien Miller	7ba0ca7	2008-07-17 18:57:06 +1000	[diff] [blame]	44	#include <vis.h>
Damien Miller	2e28d86	2008-07-17 19:15:43 +1000	[diff] [blame]	45	#endif
Darren Tucker	3997249	2006-07-12 22:22:46 +1000	[diff] [blame]	46
Damien Miller	9c61769	2003-05-14 14:31:11 +1000	[diff] [blame]	47	#include "openbsd-compat/sys-queue.h"
				48
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	49	#include "xmalloc.h"
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	50	#include "ssh.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	51	#include "ssh2.h"
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	52	#include "buffer.h"
				53	#include "packet.h"
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	54	#include "compat.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	55	#include "cipher.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	56	#include "key.h"
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	57	#include "kex.h"
				58	#include "myproposal.h"
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	59	#include "sshconnect.h"
				60	#include "authfile.h"
Ben Lindstrom	df22139	2001-03-29 00:36:16 +0000	[diff] [blame]	61	#include "dh.h"
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	62	#include "authfd.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	63	#include "log.h"
				64	#include "readconf.h"
Darren Tucker	e608ca2	2004-05-13 16:15:47 +1000	[diff] [blame]	65	#include "misc.h"
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	66	#include "match.h"
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	67	#include "dispatch.h"
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	68	#include "canohost.h"
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	69	#include "msg.h"
				70	#include "pathnames.h"
Damien Miller	6b4069a	2006-06-13 13:05:15 +1000	[diff] [blame]	71	#include "uidswap.h"
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	72	#include "hostfile.h"
Damien Miller	cee8523	2009-03-06 00:58:22 +1100	[diff] [blame]	73	#include "schnorr.h"
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	74	#include "jpake.h"
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	75
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	76	#ifdef GSSAPI
				77	#include "ssh-gss.h"
				78	#endif
				79
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	80	/* import */
				81	extern char *client_version_string;
				82	extern char *server_version_string;
				83	extern Options options;
				84
				85	/*
				86	* SSH2 key exchange
				87	*/
				88
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	89	u_char *session_id2 = NULL;
Darren Tucker	502d384	2003-06-28 12:38:01 +1000	[diff] [blame]	90	u_int session_id2_len = 0;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	91
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	92	char *xxx_host;
				93	struct sockaddr *xxx_hostaddr;
				94
Ben Lindstrom	f28f634	2001-04-04 02:03:04 +0000	[diff] [blame]	95	Kex *xxx_kex = NULL;
				96
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	97	static int
Ben Lindstrom	d6481ea	2001-06-25 04:37:41 +0000	[diff] [blame]	98	verify_host_key_callback(Key *hostkey)
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	99	{
Ben Lindstrom	d6481ea	2001-06-25 04:37:41 +0000	[diff] [blame]	100	if (verify_host_key(xxx_host, xxx_hostaddr, hostkey) == -1)
Damien Miller	59d9fb9	2001-10-10 15:03:11 +1000	[diff] [blame]	101	fatal("Host key verification failed.");
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	102	return 0;
				103	}
				104
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	105	static char *
				106	order_hostkeyalgs(char host, struct sockaddr hostaddr, u_short port)
				107	{
				108	char oavail, avail, first, last, alg, hostname, *ret;
				109	size_t maxlen;
				110	struct hostkeys *hostkeys;
				111	int ktype;
Damien Miller	295ee63	2011-05-29 21:42:31 +1000	[diff] [blame]	112	u_int i;
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	113
				114	/* Find all hostkeys for this hostname */
				115	get_hostfile_hostname_ipaddr(host, hostaddr, port, &hostname, NULL);
				116	hostkeys = init_hostkeys();
Damien Miller	295ee63	2011-05-29 21:42:31 +1000	[diff] [blame]	117	for (i = 0; i < options.num_user_hostfiles; i++)
				118	load_hostkeys(hostkeys, hostname, options.user_hostfiles[i]);
				119	for (i = 0; i < options.num_system_hostfiles; i++)
				120	load_hostkeys(hostkeys, hostname, options.system_hostfiles[i]);
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	121
				122	oavail = avail = xstrdup(KEX_DEFAULT_PK_ALG);
				123	maxlen = strlen(avail) + 1;
				124	first = xmalloc(maxlen);
				125	last = xmalloc(maxlen);
				126	first = last = '\0';
				127
				128	#define ALG_APPEND(to, from) \
				129	do { \
				130	if (*to != '\0') \
				131	strlcat(to, ",", maxlen); \
				132	strlcat(to, from, maxlen); \
				133	} while (0)
				134
				135	while ((alg = strsep(&avail, ",")) && *alg != '\0') {
				136	if ((ktype = key_type_from_name(alg)) == KEY_UNSPEC)
				137	fatal("%s: unknown alg %s", __func__, alg);
				138	if (lookup_key_in_hostkeys_by_type(hostkeys,
				139	key_type_plain(ktype), NULL))
				140	ALG_APPEND(first, alg);
				141	else
				142	ALG_APPEND(last, alg);
				143	}
				144	#undef ALG_APPEND
				145	xasprintf(&ret, "%s%s%s", first, *first == '\0' ? "" : ",", last);
				146	if (*first != '\0')
				147	debug3("%s: prefer hostkeyalgs: %s", __func__, first);
				148
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	149	free(first);
				150	free(last);
				151	free(hostname);
				152	free(oavail);
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	153	free_hostkeys(hostkeys);
				154
				155	return ret;
				156	}
				157
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	158	void
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	159	ssh_kex2(char host, struct sockaddr hostaddr, u_short port)
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	160	{
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	161	Kex *kex;
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	162
				163	xxx_host = host;
				164	xxx_hostaddr = hostaddr;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	165
Damien Miller	e39cacc	2000-11-29 12:18:44 +1100	[diff] [blame]	166	if (options.ciphers == (char *)-1) {
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	167	logit("No valid ciphers for protocol version 2 given, using defaults.");
Damien Miller	e39cacc	2000-11-29 12:18:44 +1100	[diff] [blame]	168	options.ciphers = NULL;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	169	}
				170	if (options.ciphers != NULL) {
				171	myproposal[PROPOSAL_ENC_ALGS_CTOS] =
				172	myproposal[PROPOSAL_ENC_ALGS_STOC] = options.ciphers;
				173	}
Damien Miller	a0ff466	2001-03-30 10:49:35 +1000	[diff] [blame]	174	myproposal[PROPOSAL_ENC_ALGS_CTOS] =
				175	compat_cipher_proposal(myproposal[PROPOSAL_ENC_ALGS_CTOS]);
				176	myproposal[PROPOSAL_ENC_ALGS_STOC] =
				177	compat_cipher_proposal(myproposal[PROPOSAL_ENC_ALGS_STOC]);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	178	if (options.compression) {
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	179	myproposal[PROPOSAL_COMP_ALGS_CTOS] =
Damien Miller	9786e6e	2005-07-26 21:54:56 +1000	[diff] [blame]	180	myproposal[PROPOSAL_COMP_ALGS_STOC] = "zlib@openssh.com,zlib,none";
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	181	} else {
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	182	myproposal[PROPOSAL_COMP_ALGS_CTOS] =
Damien Miller	9786e6e	2005-07-26 21:54:56 +1000	[diff] [blame]	183	myproposal[PROPOSAL_COMP_ALGS_STOC] = "none,zlib@openssh.com,zlib";
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	184	}
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	185	if (options.macs != NULL) {
				186	myproposal[PROPOSAL_MAC_ALGS_CTOS] =
				187	myproposal[PROPOSAL_MAC_ALGS_STOC] = options.macs;
				188	}
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	189	if (options.hostkeyalgorithms != NULL)
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	190	myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] =
Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame^]	191	compat_pkalg_proposal(options.hostkeyalgorithms);
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	192	else {
				193	/* Prefer algorithms that we already have keys for */
				194	myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] =
Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame^]	195	compat_pkalg_proposal(
				196	order_hostkeyalgs(host, hostaddr, port));
Damien Miller	d925dcd	2010-12-01 12:21:51 +1100	[diff] [blame]	197	}
Damien Miller	d5f62bf	2010-09-24 22:11:14 +1000	[diff] [blame]	198	if (options.kex_algorithms != NULL)
				199	myproposal[PROPOSAL_KEX_ALGS] = options.kex_algorithms;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	200
Darren Tucker	c53c2af	2013-05-16 20:28:16 +1000	[diff] [blame]	201	if (options.rekey_limit \|\| options.rekey_interval)
				202	packet_set_rekey_limits((u_int32_t)options.rekey_limit,
				203	(time_t)options.rekey_interval);
Damien Miller	a5539d2	2003-04-09 20:50:06 +1000	[diff] [blame]	204
Ben Lindstrom	8ac9106	2001-04-04 17:57:54 +0000	[diff] [blame]	205	/* start key exchange */
Ben Lindstrom	238abf6	2001-04-04 17:52:53 +0000	[diff] [blame]	206	kex = kex_setup(myproposal);
Damien Miller	8e7fb33	2003-02-24 12:03:03 +1100	[diff] [blame]	207	kex->kex[KEX_DH_GRP1_SHA1] = kexdh_client;
Damien Miller	f675fc4	2004-06-15 10:30:09 +1000	[diff] [blame]	208	kex->kex[KEX_DH_GRP14_SHA1] = kexdh_client;
Damien Miller	8e7fb33	2003-02-24 12:03:03 +1100	[diff] [blame]	209	kex->kex[KEX_DH_GEX_SHA1] = kexgex_client;
Damien Miller	a63128d	2006-03-15 12:08:28 +1100	[diff] [blame]	210	kex->kex[KEX_DH_GEX_SHA256] = kexgex_client;
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	211	kex->kex[KEX_ECDH_SHA2] = kexecdh_client;
Damien Miller	1e12426	2013-11-04 08:26:52 +1100	[diff] [blame]	212	kex->kex[KEX_C25519_SHA256] = kexc25519_client;
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	213	kex->client_version_string=client_version_string;
				214	kex->server_version_string=server_version_string;
Ben Lindstrom	d6481ea	2001-06-25 04:37:41 +0000	[diff] [blame]	215	kex->verify_host_key=&verify_host_key_callback;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	216
Ben Lindstrom	f28f634	2001-04-04 02:03:04 +0000	[diff] [blame]	217	xxx_kex = kex;
				218
Ben Lindstrom	be2cc43	2001-04-04 23:46:07 +0000	[diff] [blame]	219	dispatch_run(DISPATCH_BLOCK, &kex->done, kex);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	220
Darren Tucker	36331b5	2010-01-08 16:50:41 +1100	[diff] [blame]	221	if (options.use_roaming && !kex->roaming) {
				222	debug("Roaming not allowed by server");
				223	options.use_roaming = 0;
				224	}
				225
Ben Lindstrom	2d90e00	2001-04-04 02:00:54 +0000	[diff] [blame]	226	session_id2 = kex->session_id;
				227	session_id2_len = kex->session_id_len;
				228
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	229	#ifdef DEBUG_KEXDH
				230	/* send 1st encrypted/maced/compressed message */
				231	packet_start(SSH2_MSG_IGNORE);
				232	packet_put_cstring("markus");
				233	packet_send();
				234	packet_write_wait();
				235	#endif
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	236	}
Damien Miller	b1715dc	2000-05-30 13:44:51 +1000	[diff] [blame]	237
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	238	/*
				239	* Authenticate user
				240	*/
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	241
				242	typedef struct Authctxt Authctxt;
				243	typedef struct Authmethod Authmethod;
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	244	typedef struct identity Identity;
				245	typedef struct idlist Idlist;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	246
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	247	struct identity {
				248	TAILQ_ENTRY(identity) next;
				249	AuthenticationConnection ac; / set if agent supports key */
				250	Key key; / public/private key */
				251	char filename; / comment for agent-only keys */
				252	int tried;
				253	int isprivate; /* key points to the private key */
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	254	int userprovided;
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	255	};
				256	TAILQ_HEAD(idlist, identity);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	257
				258	struct Authctxt {
				259	const char *server_user;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	260	const char *local_user;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	261	const char *host;
				262	const char *service;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	263	Authmethod *method;
Damien Miller	79442c0	2010-05-10 11:55:38 +1000	[diff] [blame]	264	sig_atomic_t success;
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	265	char *authlist;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	266	/* pubkey */
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	267	Idlist keys;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	268	AuthenticationConnection *agent;
				269	/* hostbased */
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	270	Sensitive *sensitive;
Ben Lindstrom	7d19996	2001-09-12 18:29:00 +0000	[diff] [blame]	271	/* kbd-interactive */
				272	int info_req_seen;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	273	/* generic */
				274	void *methoddata;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	275	};
				276	struct Authmethod {
				277	char name; / string to compare against server's list */
				278	int (userauth)(Authctxt authctxt);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	279	void (cleanup)(Authctxt authctxt);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	280	int enabled; / flag in option struct that enables method */
				281	int batch_flag; / flag in option struct that disables method */
				282	};
				283
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	284	void input_userauth_success(int, u_int32_t, void *);
Darren Tucker	2f29a8c	2009-10-24 11:47:58 +1100	[diff] [blame]	285	void input_userauth_success_unexpected(int, u_int32_t, void *);
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	286	void input_userauth_failure(int, u_int32_t, void *);
				287	void input_userauth_banner(int, u_int32_t, void *);
				288	void input_userauth_error(int, u_int32_t, void *);
				289	void input_userauth_info_req(int, u_int32_t, void *);
				290	void input_userauth_pk_ok(int, u_int32_t, void *);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	291	void input_userauth_passwd_changereq(int, u_int32_t, void *);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	292	void input_userauth_jpake_server_step1(int, u_int32_t, void *);
				293	void input_userauth_jpake_server_step2(int, u_int32_t, void *);
				294	void input_userauth_jpake_server_confirm(int, u_int32_t, void *);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	295
Ben Lindstrom	3c36bb2	2001-12-06 17:55:26 +0000	[diff] [blame]	296	int userauth_none(Authctxt *);
				297	int userauth_pubkey(Authctxt *);
				298	int userauth_passwd(Authctxt *);
				299	int userauth_kbdint(Authctxt *);
				300	int userauth_hostbased(Authctxt *);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	301	int userauth_jpake(Authctxt *);
				302
				303	void userauth_jpake_cleanup(Authctxt *);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	304
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	305	#ifdef GSSAPI
				306	int userauth_gssapi(Authctxt *authctxt);
				307	void input_gssapi_response(int type, u_int32_t, void *);
				308	void input_gssapi_token(int type, u_int32_t, void *);
				309	void input_gssapi_hash(int type, u_int32_t, void *);
				310	void input_gssapi_error(int, u_int32_t, void *);
				311	void input_gssapi_errtok(int, u_int32_t, void *);
				312	#endif
				313
Ben Lindstrom	3c36bb2	2001-12-06 17:55:26 +0000	[diff] [blame]	314	void userauth(Authctxt , char );
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	315
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	316	static int sign_and_send_pubkey(Authctxt , Identity );
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	317	static void pubkey_prepare(Authctxt *);
				318	static void pubkey_cleanup(Authctxt *);
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	319	static Key load_identity_file(char , int);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	320
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	321	static Authmethod authmethod_get(char authlist);
				322	static Authmethod authmethod_lookup(const char name);
				323	static char *authmethods_get(void);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	324
				325	Authmethod authmethods[] = {
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	326	#ifdef GSSAPI
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	327	{"gssapi-with-mic",
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	328	userauth_gssapi,
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	329	NULL,
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	330	&options.gss_authentication,
				331	NULL},
				332	#endif
Ben Lindstrom	1bfe291	2001-06-05 19:37:25 +0000	[diff] [blame]	333	{"hostbased",
				334	userauth_hostbased,
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	335	NULL,
Ben Lindstrom	1bfe291	2001-06-05 19:37:25 +0000	[diff] [blame]	336	&options.hostbased_authentication,
				337	NULL},
Ben Lindstrom	45350e8	2001-08-06 20:57:11 +0000	[diff] [blame]	338	{"publickey",
				339	userauth_pubkey,
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	340	NULL,
Ben Lindstrom	45350e8	2001-08-06 20:57:11 +0000	[diff] [blame]	341	&options.pubkey_authentication,
				342	NULL},
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	343	#ifdef JPAKE
				344	{"jpake-01@openssh.com",
				345	userauth_jpake,
				346	userauth_jpake_cleanup,
				347	&options.zero_knowledge_password_authentication,
				348	&options.batch_mode},
				349	#endif
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	350	{"keyboard-interactive",
				351	userauth_kbdint,
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	352	NULL,
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	353	&options.kbd_interactive_authentication,
				354	&options.batch_mode},
Ben Lindstrom	45350e8	2001-08-06 20:57:11 +0000	[diff] [blame]	355	{"password",
				356	userauth_passwd,
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	357	NULL,
Ben Lindstrom	45350e8	2001-08-06 20:57:11 +0000	[diff] [blame]	358	&options.password_authentication,
				359	&options.batch_mode},
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	360	{"none",
				361	userauth_none,
				362	NULL,
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	363	NULL,
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	364	NULL},
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	365	{NULL, NULL, NULL, NULL, NULL}
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	366	};
				367
				368	void
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	369	ssh_userauth2(const char local_user, const char server_user, char *host,
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	370	Sensitive *sensitive)
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	371	{
				372	Authctxt authctxt;
				373	int type;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	374
Ben Lindstrom	551ea37	2001-06-05 18:56:16 +0000	[diff] [blame]	375	if (options.challenge_response_authentication)
Ben Lindstrom	95fb2dd	2001-01-23 03:12:10 +0000	[diff] [blame]	376	options.kbd_interactive_authentication = 1;
				377
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	378	packet_start(SSH2_MSG_SERVICE_REQUEST);
				379	packet_put_cstring("ssh-userauth");
				380	packet_send();
Ben Lindstrom	064496f	2002-12-23 02:04:22 +0000	[diff] [blame]	381	debug("SSH2_MSG_SERVICE_REQUEST sent");
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	382	packet_write_wait();
Damien Miller	dff5099	2002-01-22 23:16:32 +1100	[diff] [blame]	383	type = packet_read();
Ben Lindstrom	064496f	2002-12-23 02:04:22 +0000	[diff] [blame]	384	if (type != SSH2_MSG_SERVICE_ACCEPT)
				385	fatal("Server denied authentication request: %d", type);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	386	if (packet_remaining() > 0) {
Damien Miller	dff5099	2002-01-22 23:16:32 +1100	[diff] [blame]	387	char *reply = packet_get_string(NULL);
Ben Lindstrom	064496f	2002-12-23 02:04:22 +0000	[diff] [blame]	388	debug2("service_accept: %s", reply);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	389	free(reply);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	390	} else {
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	391	debug2("buggy server: service_accept w/o service");
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	392	}
Damien Miller	48b03fc	2002-01-22 23:11:40 +1100	[diff] [blame]	393	packet_check_eom();
Ben Lindstrom	064496f	2002-12-23 02:04:22 +0000	[diff] [blame]	394	debug("SSH2_MSG_SERVICE_ACCEPT received");
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	395
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	396	if (options.preferred_authentications == NULL)
				397	options.preferred_authentications = authmethods_get();
				398
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	399	/* setup authentication context */
Ben Lindstrom	7d19996	2001-09-12 18:29:00 +0000	[diff] [blame]	400	memset(&authctxt, 0, sizeof(authctxt));
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	401	pubkey_prepare(&authctxt);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	402	authctxt.server_user = server_user;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	403	authctxt.local_user = local_user;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	404	authctxt.host = host;
				405	authctxt.service = "ssh-connection"; /* service name */
				406	authctxt.success = 0;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	407	authctxt.method = authmethod_lookup("none");
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	408	authctxt.authlist = NULL;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	409	authctxt.methoddata = NULL;
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	410	authctxt.sensitive = sensitive;
Ben Lindstrom	7d19996	2001-09-12 18:29:00 +0000	[diff] [blame]	411	authctxt.info_req_seen = 0;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	412	if (authctxt.method == NULL)
				413	fatal("ssh_userauth2: internal error: cannot send userauth none request");
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	414
				415	/* initial userauth request */
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	416	userauth_none(&authctxt);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	417
Ben Lindstrom	8ac9106	2001-04-04 17:57:54 +0000	[diff] [blame]	418	dispatch_init(&input_userauth_error);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	419	dispatch_set(SSH2_MSG_USERAUTH_SUCCESS, &input_userauth_success);
				420	dispatch_set(SSH2_MSG_USERAUTH_FAILURE, &input_userauth_failure);
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	421	dispatch_set(SSH2_MSG_USERAUTH_BANNER, &input_userauth_banner);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	422	dispatch_run(DISPATCH_BLOCK, &authctxt.success, &authctxt); /* loop until success */
				423
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	424	pubkey_cleanup(&authctxt);
Damien Miller	f842fcb	2003-05-15 12:01:28 +1000	[diff] [blame]	425	dispatch_range(SSH2_MSG_USERAUTH_MIN, SSH2_MSG_USERAUTH_MAX, NULL);
				426
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	427	debug("Authentication succeeded (%s).", authctxt.method->name);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	428	}
Damien Miller	f842fcb	2003-05-15 12:01:28 +1000	[diff] [blame]	429
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	430	void
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	431	userauth(Authctxt authctxt, char authlist)
				432	{
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	433	if (authctxt->method != NULL && authctxt->method->cleanup != NULL)
				434	authctxt->method->cleanup(authctxt);
				435
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	436	free(authctxt->methoddata);
				437	authctxt->methoddata = NULL;
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	438	if (authlist == NULL) {
				439	authlist = authctxt->authlist;
				440	} else {
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	441	free(authctxt->authlist);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	442	authctxt->authlist = authlist;
				443	}
				444	for (;;) {
				445	Authmethod *method = authmethod_get(authlist);
				446	if (method == NULL)
				447	fatal("Permission denied (%s).", authlist);
				448	authctxt->method = method;
Damien Miller	f842fcb	2003-05-15 12:01:28 +1000	[diff] [blame]	449
				450	/* reset the per method handler */
				451	dispatch_range(SSH2_MSG_USERAUTH_PER_METHOD_MIN,
				452	SSH2_MSG_USERAUTH_PER_METHOD_MAX, NULL);
				453
				454	/* and try new method */
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	455	if (method->userauth(authctxt) != 0) {
				456	debug2("we sent a %s packet, wait for reply", method->name);
				457	break;
				458	} else {
				459	debug2("we did not send a packet, disable method");
				460	method->enabled = NULL;
				461	}
				462	}
				463	}
Ben Lindstrom	5c38552	2002-06-23 21:23:20 +0000	[diff] [blame]	464
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	465	/* ARGSUSED */
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	466	void
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	467	input_userauth_error(int type, u_int32_t seq, void *ctxt)
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	468	{
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	469	fatal("input_userauth_error: bad message during authentication: "
Damien Miller	0dc1bef	2005-07-17 17:22:45 +1000	[diff] [blame]	470	"type %d", type);
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	471	}
Ben Lindstrom	5c38552	2002-06-23 21:23:20 +0000	[diff] [blame]	472
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	473	/* ARGSUSED */
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	474	void
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	475	input_userauth_banner(int type, u_int32_t seq, void *ctxt)
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	476	{
Damien Miller	7ba0ca7	2008-07-17 18:57:06 +1000	[diff] [blame]	477	char msg, raw, *lang;
				478	u_int len;
Darren Tucker	7964482	2003-10-08 17:37:58 +1000	[diff] [blame]	479
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	480	debug3("input_userauth_banner");
Damien Miller	7ba0ca7	2008-07-17 18:57:06 +1000	[diff] [blame]	481	raw = packet_get_string(&len);
Ben Lindstrom	d26dcf3	2001-01-06 15:18:16 +0000	[diff] [blame]	482	lang = packet_get_string(NULL);
Damien Miller	c674d58	2008-11-03 19:16:57 +1100	[diff] [blame]	483	if (len > 0 && options.log_level >= SYSLOG_LEVEL_INFO) {
Damien Miller	7ba0ca7	2008-07-17 18:57:06 +1000	[diff] [blame]	484	if (len > 65536)
				485	len = 65536;
Damien Miller	c4d1b36	2008-11-03 19:22:09 +1100	[diff] [blame]	486	msg = xmalloc(len * 4 + 1); /* max expansion from strnvis() */
Darren Tucker	0c348f5	2010-01-08 18:58:05 +1100	[diff] [blame]	487	strnvis(msg, raw, len * 4 + 1, VIS_SAFE\|VIS_OCTAL\|VIS_NOSLASH);
Darren Tucker	046dff2	2003-10-08 17:32:02 +1000	[diff] [blame]	488	fprintf(stderr, "%s", msg);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	489	free(msg);
Damien Miller	7ba0ca7	2008-07-17 18:57:06 +1000	[diff] [blame]	490	}
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	491	free(raw);
				492	free(lang);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	493	}
Ben Lindstrom	5c38552	2002-06-23 21:23:20 +0000	[diff] [blame]	494
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	495	/* ARGSUSED */
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	496	void
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	497	input_userauth_success(int type, u_int32_t seq, void *ctxt)
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	498	{
				499	Authctxt *authctxt = ctxt;
Darren Tucker	2f29a8c	2009-10-24 11:47:58 +1100	[diff] [blame]	500
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	501	if (authctxt == NULL)
				502	fatal("input_userauth_success: no authentication context");
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	503	free(authctxt->authlist);
				504	authctxt->authlist = NULL;
Darren Tucker	2f29a8c	2009-10-24 11:47:58 +1100	[diff] [blame]	505	if (authctxt->method != NULL && authctxt->method->cleanup != NULL)
				506	authctxt->method->cleanup(authctxt);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	507	free(authctxt->methoddata);
				508	authctxt->methoddata = NULL;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	509	authctxt->success = 1; /* break out */
				510	}
Ben Lindstrom	5c38552	2002-06-23 21:23:20 +0000	[diff] [blame]	511
Darren Tucker	2f29a8c	2009-10-24 11:47:58 +1100	[diff] [blame]	512	void
				513	input_userauth_success_unexpected(int type, u_int32_t seq, void *ctxt)
				514	{
				515	Authctxt *authctxt = ctxt;
				516
				517	if (authctxt == NULL)
				518	fatal("%s: no authentication context", __func__);
				519
				520	fatal("Unexpected authentication success during %s.",
				521	authctxt->method->name);
				522	}
				523
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	524	/* ARGSUSED */
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	525	void
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	526	input_userauth_failure(int type, u_int32_t seq, void *ctxt)
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	527	{
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	528	Authctxt *authctxt = ctxt;
				529	char *authlist = NULL;
				530	int partial;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	531
				532	if (authctxt == NULL)
				533	fatal("input_userauth_failure: no authentication context");
				534
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	535	authlist = packet_get_string(NULL);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	536	partial = packet_get_char();
Damien Miller	48b03fc	2002-01-22 23:11:40 +1100	[diff] [blame]	537	packet_check_eom();
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	538
Damien Miller	62e9c4f	2013-04-23 15:15:49 +1000	[diff] [blame]	539	if (partial != 0) {
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	540	logit("Authenticated with partial success.");
Damien Miller	62e9c4f	2013-04-23 15:15:49 +1000	[diff] [blame]	541	/* reset state */
				542	pubkey_cleanup(authctxt);
				543	pubkey_prepare(authctxt);
				544	}
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	545	debug("Authentications that can continue: %s", authlist);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	546
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	547	userauth(authctxt, authlist);
				548	}
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	549
				550	/* ARGSUSED */
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	551	void
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	552	input_userauth_pk_ok(int type, u_int32_t seq, void *ctxt)
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	553	{
				554	Authctxt *authctxt = ctxt;
				555	Key *key = NULL;
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	556	Identity *id = NULL;
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	557	Buffer b;
Ben Lindstrom	90fd814	2002-02-26 18:09:42 +0000	[diff] [blame]	558	int pktype, sent = 0;
				559	u_int alen, blen;
				560	char pkalg, fp;
				561	u_char *pkblob;
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	562
				563	if (authctxt == NULL)
				564	fatal("input_userauth_pk_ok: no authentication context");
				565	if (datafellows & SSH_BUG_PKOK) {
				566	/* this is similar to SSH_BUG_PKAUTH */
				567	debug2("input_userauth_pk_ok: SSH_BUG_PKOK");
				568	pkblob = packet_get_string(&blen);
				569	buffer_init(&b);
				570	buffer_append(&b, pkblob, blen);
				571	pkalg = buffer_get_string(&b, &alen);
				572	buffer_free(&b);
				573	} else {
				574	pkalg = packet_get_string(&alen);
				575	pkblob = packet_get_string(&blen);
Kevin Steves	ef4eea9	2001-02-05 12:42:17 +0000	[diff] [blame]	576	}
Damien Miller	48b03fc	2002-01-22 23:11:40 +1100	[diff] [blame]	577	packet_check_eom();
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	578
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	579	debug("Server accepts key: pkalg %s blen %u", pkalg, blen);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	580
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	581	if ((pktype = key_type_from_name(pkalg)) == KEY_UNSPEC) {
				582	debug("unknown pkalg %s", pkalg);
				583	goto done;
				584	}
				585	if ((key = key_from_blob(pkblob, blen)) == NULL) {
				586	debug("no key from blob. pkalg %s", pkalg);
				587	goto done;
				588	}
				589	if (key->type != pktype) {
				590	error("input_userauth_pk_ok: type mismatch "
				591	"for decoded key (received %d, expected %d)",
				592	key->type, pktype);
				593	goto done;
				594	}
				595	fp = key_fingerprint(key, SSH_FP_MD5, SSH_FP_HEX);
				596	debug2("input_userauth_pk_ok: fp %s", fp);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	597	free(fp);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	598
Darren Tucker	d05b601	2003-10-15 15:55:59 +1000	[diff] [blame]	599	/*
				600	* search keys in the reverse order, because last candidate has been
				601	* moved to the end of the queue. this also avoids confusion by
				602	* duplicate keys
				603	*/
Damien Miller	0b51a52	2004-04-20 20:07:19 +1000	[diff] [blame]	604	TAILQ_FOREACH_REVERSE(id, &authctxt->keys, idlist, next) {
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	605	if (key_equal(key, id->key)) {
				606	sent = sign_and_send_pubkey(authctxt, id);
				607	break;
				608	}
				609	}
				610	done:
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	611	if (key != NULL)
				612	key_free(key);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	613	free(pkalg);
				614	free(pkblob);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	615
Ben Lindstrom	a962c2f	2002-07-04 00:14:17 +0000	[diff] [blame]	616	/* try another method if we did not send a packet */
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	617	if (sent == 0)
				618	userauth(authctxt, NULL);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	619	}
				620
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	621	#ifdef GSSAPI
Damien Miller	a8e06ce	2003-11-21 23:48:55 +1100	[diff] [blame]	622	int
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	623	userauth_gssapi(Authctxt *authctxt)
				624	{
				625	Gssctxt *gssctxt = NULL;
Darren Tucker	56afe14	2003-11-03 20:06:14 +1100	[diff] [blame]	626	static gss_OID_set gss_supported = NULL;
Damien Miller	eccb9de	2005-06-17 12:59:34 +1000	[diff] [blame]	627	static u_int mech = 0;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	628	OM_uint32 min;
				629	int ok = 0;
				630
				631	/* Try one GSSAPI method at a time, rather than sending them all at
				632	* once. */
				633
Darren Tucker	56afe14	2003-11-03 20:06:14 +1100	[diff] [blame]	634	if (gss_supported == NULL)
				635	gss_indicate_mechs(&min, &gss_supported);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	636
				637	/* Check to see if the mechanism is usable before we offer it */
Darren Tucker	56afe14	2003-11-03 20:06:14 +1100	[diff] [blame]	638	while (mech < gss_supported->count && !ok) {
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	639	/* My DER encoding requires length<128 */
Darren Tucker	56afe14	2003-11-03 20:06:14 +1100	[diff] [blame]	640	if (gss_supported->elements[mech].length < 128 &&
Damien Miller	a1cb9f3	2006-08-19 00:33:34 +1000	[diff] [blame]	641	ssh_gssapi_check_mechanism(&gssctxt,
				642	&gss_supported->elements[mech], authctxt->host)) {
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	643	ok = 1; /* Mechanism works */
				644	} else {
				645	mech++;
				646	}
				647	}
				648
Damien Miller	a1cb9f3	2006-08-19 00:33:34 +1000	[diff] [blame]	649	if (!ok)
Damien Miller	eccb9de	2005-06-17 12:59:34 +1000	[diff] [blame]	650	return 0;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	651
				652	authctxt->methoddata=(void *)gssctxt;
				653
				654	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				655	packet_put_cstring(authctxt->server_user);
				656	packet_put_cstring(authctxt->service);
				657	packet_put_cstring(authctxt->method->name);
				658
				659	packet_put_int(1);
				660
Darren Tucker	655a5e0	2003-11-03 20:09:03 +1100	[diff] [blame]	661	packet_put_int((gss_supported->elements[mech].length) + 2);
				662	packet_put_char(SSH_GSS_OIDTYPE);
				663	packet_put_char(gss_supported->elements[mech].length);
				664	packet_put_raw(gss_supported->elements[mech].elements,
				665	gss_supported->elements[mech].length);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	666
				667	packet_send();
				668
				669	dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_RESPONSE, &input_gssapi_response);
				670	dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_TOKEN, &input_gssapi_token);
				671	dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_ERROR, &input_gssapi_error);
				672	dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_ERRTOK, &input_gssapi_errtok);
				673
				674	mech++; /* Move along to next candidate */
				675
				676	return 1;
				677	}
				678
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	679	static OM_uint32
				680	process_gssapi_token(void *ctxt, gss_buffer_t recv_tok)
				681	{
				682	Authctxt *authctxt = ctxt;
				683	Gssctxt *gssctxt = authctxt->methoddata;
				684	gss_buffer_desc send_tok = GSS_C_EMPTY_BUFFER;
Damien Miller	da9984f	2005-08-31 19:46:26 +1000	[diff] [blame]	685	gss_buffer_desc mic = GSS_C_EMPTY_BUFFER;
				686	gss_buffer_desc gssbuf;
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	687	OM_uint32 status, ms, flags;
				688	Buffer b;
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	689
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	690	status = ssh_gssapi_init_ctx(gssctxt, options.gss_deleg_creds,
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	691	recv_tok, &send_tok, &flags);
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	692
				693	if (send_tok.length > 0) {
				694	if (GSS_ERROR(status))
				695	packet_start(SSH2_MSG_USERAUTH_GSSAPI_ERRTOK);
				696	else
				697	packet_start(SSH2_MSG_USERAUTH_GSSAPI_TOKEN);
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	698
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	699	packet_put_string(send_tok.value, send_tok.length);
				700	packet_send();
				701	gss_release_buffer(&ms, &send_tok);
				702	}
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	703
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	704	if (status == GSS_S_COMPLETE) {
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	705	/* send either complete or MIC, depending on mechanism */
				706	if (!(flags & GSS_C_INTEG_FLAG)) {
				707	packet_start(SSH2_MSG_USERAUTH_GSSAPI_EXCHANGE_COMPLETE);
				708	packet_send();
				709	} else {
				710	ssh_gssapi_buildmic(&b, authctxt->server_user,
				711	authctxt->service, "gssapi-with-mic");
				712
				713	gssbuf.value = buffer_ptr(&b);
				714	gssbuf.length = buffer_len(&b);
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	715
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	716	status = ssh_gssapi_sign(gssctxt, &gssbuf, &mic);
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	717
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	718	if (!GSS_ERROR(status)) {
				719	packet_start(SSH2_MSG_USERAUTH_GSSAPI_MIC);
				720	packet_put_string(mic.value, mic.length);
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	721
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	722	packet_send();
				723	}
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	724
Damien Miller	0425d40	2003-11-17 22:18:21 +1100	[diff] [blame]	725	buffer_free(&b);
				726	gss_release_buffer(&ms, &mic);
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	727	}
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	728	}
Damien Miller	787b2ec	2003-11-21 23:56:47 +1100	[diff] [blame]	729
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	730	return status;
				731	}
				732
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	733	/* ARGSUSED */
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	734	void
				735	input_gssapi_response(int type, u_int32_t plen, void *ctxt)
				736	{
				737	Authctxt *authctxt = ctxt;
				738	Gssctxt *gssctxt;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	739	int oidlen;
				740	char *oidv;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	741
				742	if (authctxt == NULL)
				743	fatal("input_gssapi_response: no authentication context");
				744	gssctxt = authctxt->methoddata;
				745
				746	/* Setup our OID */
				747	oidv = packet_get_string(&oidlen);
				748
Darren Tucker	655a5e0	2003-11-03 20:09:03 +1100	[diff] [blame]	749	if (oidlen <= 2 \|\|
				750	oidv[0] != SSH_GSS_OIDTYPE \|\|
				751	oidv[1] != oidlen - 2) {
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	752	free(oidv);
Darren Tucker	655a5e0	2003-11-03 20:09:03 +1100	[diff] [blame]	753	debug("Badly encoded mechanism OID received");
				754	userauth(authctxt, NULL);
Darren Tucker	655a5e0	2003-11-03 20:09:03 +1100	[diff] [blame]	755	return;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	756	}
				757
Darren Tucker	655a5e0	2003-11-03 20:09:03 +1100	[diff] [blame]	758	if (!ssh_gssapi_check_oid(gssctxt, oidv + 2, oidlen - 2))
				759	fatal("Server returned different OID than expected");
				760
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	761	packet_check_eom();
				762
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	763	free(oidv);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	764
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	765	if (GSS_ERROR(process_gssapi_token(ctxt, GSS_C_NO_BUFFER))) {
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	766	/* Start again with next method on list */
				767	debug("Trying to start again");
				768	userauth(authctxt, NULL);
				769	return;
				770	}
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	771	}
				772
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	773	/* ARGSUSED */
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	774	void
				775	input_gssapi_token(int type, u_int32_t plen, void *ctxt)
				776	{
				777	Authctxt *authctxt = ctxt;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	778	gss_buffer_desc recv_tok;
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	779	OM_uint32 status;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	780	u_int slen;
				781
				782	if (authctxt == NULL)
				783	fatal("input_gssapi_response: no authentication context");
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	784
				785	recv_tok.value = packet_get_string(&slen);
				786	recv_tok.length = slen; /* safe typecast */
				787
				788	packet_check_eom();
				789
Damien Miller	91c6aa4	2003-11-17 21:20:18 +1100	[diff] [blame]	790	status = process_gssapi_token(ctxt, &recv_tok);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	791
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	792	free(recv_tok.value);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	793
				794	if (GSS_ERROR(status)) {
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	795	/* Start again with the next method in the list */
				796	userauth(authctxt, NULL);
				797	return;
				798	}
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	799	}
				800
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	801	/* ARGSUSED */
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	802	void
				803	input_gssapi_errtok(int type, u_int32_t plen, void *ctxt)
				804	{
				805	Authctxt *authctxt = ctxt;
				806	Gssctxt *gssctxt;
				807	gss_buffer_desc send_tok = GSS_C_EMPTY_BUFFER;
				808	gss_buffer_desc recv_tok;
Damien Miller	d677ad1	2013-04-23 15:18:51 +1000	[diff] [blame]	809	OM_uint32 ms;
Darren Tucker	600ad8d	2003-08-26 12:10:48 +1000	[diff] [blame]	810	u_int len;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	811
				812	if (authctxt == NULL)
				813	fatal("input_gssapi_response: no authentication context");
				814	gssctxt = authctxt->methoddata;
				815
Darren Tucker	600ad8d	2003-08-26 12:10:48 +1000	[diff] [blame]	816	recv_tok.value = packet_get_string(&len);
				817	recv_tok.length = len;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	818
				819	packet_check_eom();
				820
				821	/* Stick it into GSSAPI and see what it says */
Damien Miller	d677ad1	2013-04-23 15:18:51 +1000	[diff] [blame]	822	(void)ssh_gssapi_init_ctx(gssctxt, options.gss_deleg_creds,
Damien Miller	0dc1bef	2005-07-17 17:22:45 +1000	[diff] [blame]	823	&recv_tok, &send_tok, NULL);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	824
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	825	free(recv_tok.value);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	826	gss_release_buffer(&ms, &send_tok);
				827
				828	/* Server will be returning a failed packet after this one */
				829	}
				830
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	831	/* ARGSUSED */
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	832	void
				833	input_gssapi_error(int type, u_int32_t plen, void *ctxt)
				834	{
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	835	char *msg;
				836	char *lang;
				837
Damien Miller	d677ad1	2013-04-23 15:18:51 +1000	[diff] [blame]	838	/* maj */(void)packet_get_int();
				839	/* min */(void)packet_get_int();
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	840	msg=packet_get_string(NULL);
				841	lang=packet_get_string(NULL);
				842
				843	packet_check_eom();
				844
Damien Miller	15d72a0	2005-11-05 15:07:33 +1100	[diff] [blame]	845	debug("Server GSSAPI Error:\n%s", msg);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	846	free(msg);
				847	free(lang);
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	848	}
				849	#endif /* GSSAPI */
				850
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	851	int
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	852	userauth_none(Authctxt *authctxt)
				853	{
				854	/* initial userauth request */
				855	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				856	packet_put_cstring(authctxt->server_user);
				857	packet_put_cstring(authctxt->service);
				858	packet_put_cstring(authctxt->method->name);
				859	packet_send();
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	860	return 1;
				861	}
				862
				863	int
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	864	userauth_passwd(Authctxt *authctxt)
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	865	{
Damien Miller	e247cc4	2000-05-07 12:03:14 +1000	[diff] [blame]	866	static int attempt = 0;
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	867	char prompt[150];
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	868	char *password;
Darren Tucker	ab79169	2010-01-08 18:48:02 +1100	[diff] [blame]	869	const char *host = options.host_key_alias ? options.host_key_alias :
				870	authctxt->host;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	871
Damien Miller	d3a1857	2000-06-07 19:55:44 +1000	[diff] [blame]	872	if (attempt++ >= options.number_of_password_prompts)
Damien Miller	e247cc4	2000-05-07 12:03:14 +1000	[diff] [blame]	873	return 0;
				874
Ben Lindstrom	1c37c6a	2001-12-06 18:00:18 +0000	[diff] [blame]	875	if (attempt != 1)
Damien Miller	d3a1857	2000-06-07 19:55:44 +1000	[diff] [blame]	876	error("Permission denied, please try again.");
				877
Ben Lindstrom	03df5bd	2001-02-10 22:16:41 +0000	[diff] [blame]	878	snprintf(prompt, sizeof(prompt), "%.30s@%.128s's password: ",
Darren Tucker	ab79169	2010-01-08 18:48:02 +1100	[diff] [blame]	879	authctxt->server_user, host);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	880	password = read_passphrase(prompt, 0);
				881	packet_start(SSH2_MSG_USERAUTH_REQUEST);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	882	packet_put_cstring(authctxt->server_user);
				883	packet_put_cstring(authctxt->service);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	884	packet_put_cstring(authctxt->method->name);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	885	packet_put_char(0);
Ben Lindstrom	5699c5f	2001-03-05 06:17:49 +0000	[diff] [blame]	886	packet_put_cstring(password);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	887	memset(password, 0, strlen(password));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	888	free(password);
Damien Miller	9f64390	2001-11-12 11:02:52 +1100	[diff] [blame]	889	packet_add_padding(64);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	890	packet_send();
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	891
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	892	dispatch_set(SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ,
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	893	&input_userauth_passwd_changereq);
				894
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	895	return 1;
				896	}
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	897
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	898	/*
				899	* parse PASSWD_CHANGEREQ, prompt user and send SSH2_MSG_USERAUTH_REQUEST
				900	*/
Damien Miller	f7475d7	2008-11-03 19:26:18 +1100	[diff] [blame]	901	/* ARGSUSED */
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	902	void
Tim Rice	c854962	2002-03-31 12:49:38 -0800	[diff] [blame]	903	input_userauth_passwd_changereq(int type, u_int32_t seqnr, void *ctxt)
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	904	{
				905	Authctxt *authctxt = ctxt;
				906	char info, lang, password = NULL, retype = NULL;
				907	char prompt[150];
Darren Tucker	ab79169	2010-01-08 18:48:02 +1100	[diff] [blame]	908	const char *host = options.host_key_alias ? options.host_key_alias :
				909	authctxt->host;
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	910
				911	debug2("input_userauth_passwd_changereq");
				912
				913	if (authctxt == NULL)
				914	fatal("input_userauth_passwd_changereq: "
				915	"no authentication context");
				916
				917	info = packet_get_string(NULL);
				918	lang = packet_get_string(NULL);
				919	if (strlen(info) > 0)
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	920	logit("%s", info);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	921	free(info);
				922	free(lang);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	923	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				924	packet_put_cstring(authctxt->server_user);
				925	packet_put_cstring(authctxt->service);
				926	packet_put_cstring(authctxt->method->name);
				927	packet_put_char(1); /* additional info */
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	928	snprintf(prompt, sizeof(prompt),
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	929	"Enter %.30s@%.128s's old password: ",
Darren Tucker	ab79169	2010-01-08 18:48:02 +1100	[diff] [blame]	930	authctxt->server_user, host);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	931	password = read_passphrase(prompt, 0);
				932	packet_put_cstring(password);
				933	memset(password, 0, strlen(password));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	934	free(password);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	935	password = NULL;
				936	while (password == NULL) {
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	937	snprintf(prompt, sizeof(prompt),
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	938	"Enter %.30s@%.128s's new password: ",
Darren Tucker	ab79169	2010-01-08 18:48:02 +1100	[diff] [blame]	939	authctxt->server_user, host);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	940	password = read_passphrase(prompt, RP_ALLOW_EOF);
				941	if (password == NULL) {
				942	/* bail out */
				943	return;
				944	}
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	945	snprintf(prompt, sizeof(prompt),
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	946	"Retype %.30s@%.128s's new password: ",
Darren Tucker	ab79169	2010-01-08 18:48:02 +1100	[diff] [blame]	947	authctxt->server_user, host);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	948	retype = read_passphrase(prompt, 0);
				949	if (strcmp(password, retype) != 0) {
				950	memset(password, 0, strlen(password));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	951	free(password);
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	952	logit("Mismatch; try again, EOF to quit.");
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	953	password = NULL;
				954	}
				955	memset(retype, 0, strlen(retype));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	956	free(retype);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	957	}
				958	packet_put_cstring(password);
				959	memset(password, 0, strlen(password));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	960	free(password);
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	961	packet_add_padding(64);
				962	packet_send();
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	963
				964	dispatch_set(SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ,
Ben Lindstrom	38a69e6	2002-03-27 17:28:46 +0000	[diff] [blame]	965	&input_userauth_passwd_changereq);
				966	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	967
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	968	#ifdef JPAKE
				969	static char *
				970	pw_encrypt(const char password, const char crypt_scheme, const char *salt)
				971	{
				972	/* OpenBSD crypt(3) handles all of these */
				973	if (strcmp(crypt_scheme, "crypt") == 0 \|\|
				974	strcmp(crypt_scheme, "bcrypt") == 0 \|\|
				975	strcmp(crypt_scheme, "md5crypt") == 0 \|\|
				976	strcmp(crypt_scheme, "crypt-extended") == 0)
				977	return xstrdup(crypt(password, salt));
				978	error("%s: unsupported password encryption scheme \"%.100s\"",
				979	__func__, crypt_scheme);
				980	return NULL;
				981	}
				982
				983	static BIGNUM *
				984	jpake_password_to_secret(Authctxt authctxt, const char crypt_scheme,
				985	const char *salt)
				986	{
				987	char prompt[256], password, crypted;
				988	u_char *secret;
				989	u_int secret_len;
				990	BIGNUM *ret;
				991
				992	snprintf(prompt, sizeof(prompt), "%.30s@%.128s's password (JPAKE): ",
				993	authctxt->server_user, authctxt->host);
				994	password = read_passphrase(prompt, 0);
				995
				996	if ((crypted = pw_encrypt(password, crypt_scheme, salt)) == NULL) {
				997	logit("Disabling %s authentication", authctxt->method->name);
				998	authctxt->method->enabled = NULL;
				999	/* Continue with an empty password to fail gracefully */
				1000	crypted = xstrdup("");
				1001	}
				1002
				1003	#ifdef JPAKE_DEBUG
				1004	debug3("%s: salt = %s", __func__, salt);
				1005	debug3("%s: scheme = %s", __func__, crypt_scheme);
				1006	debug3("%s: crypted = %s", __func__, crypted);
				1007	#endif
				1008
				1009	if (hash_buffer(crypted, strlen(crypted), EVP_sha256(),
				1010	&secret, &secret_len) != 0)
				1011	fatal("%s: hash_buffer", __func__);
				1012
				1013	bzero(password, strlen(password));
				1014	bzero(crypted, strlen(crypted));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1015	free(password);
				1016	free(crypted);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1017
				1018	if ((ret = BN_bin2bn(secret, secret_len, NULL)) == NULL)
				1019	fatal("%s: BN_bin2bn (secret)", __func__);
				1020	bzero(secret, secret_len);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1021	free(secret);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1022
				1023	return ret;
				1024	}
				1025
				1026	/* ARGSUSED */
				1027	void
				1028	input_userauth_jpake_server_step1(int type, u_int32_t seq, void *ctxt)
				1029	{
				1030	Authctxt *authctxt = ctxt;
				1031	struct jpake_ctx *pctx = authctxt->methoddata;
				1032	u_char x3_proof, x4_proof, *x2_s_proof;
				1033	u_int x3_proof_len, x4_proof_len, x2_s_proof_len;
				1034	char crypt_scheme, salt;
				1035
				1036	/* Disable this message */
				1037	dispatch_set(SSH2_MSG_USERAUTH_JPAKE_SERVER_STEP1, NULL);
				1038
				1039	if ((pctx->g_x3 = BN_new()) == NULL \|\|
				1040	(pctx->g_x4 = BN_new()) == NULL)
				1041	fatal("%s: BN_new", __func__);
				1042
				1043	/* Fetch step 1 values */
				1044	crypt_scheme = packet_get_string(NULL);
				1045	salt = packet_get_string(NULL);
				1046	pctx->server_id = packet_get_string(&pctx->server_id_len);
				1047	packet_get_bignum2(pctx->g_x3);
				1048	packet_get_bignum2(pctx->g_x4);
				1049	x3_proof = packet_get_string(&x3_proof_len);
				1050	x4_proof = packet_get_string(&x4_proof_len);
				1051	packet_check_eom();
				1052
				1053	JPAKE_DEBUG_CTX((pctx, "step 1 received in %s", __func__));
				1054
				1055	/* Obtain password and derive secret */
				1056	pctx->s = jpake_password_to_secret(authctxt, crypt_scheme, salt);
				1057	bzero(crypt_scheme, strlen(crypt_scheme));
				1058	bzero(salt, strlen(salt));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1059	free(crypt_scheme);
				1060	free(salt);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1061	JPAKE_DEBUG_BN((pctx->s, "%s: s = ", __func__));
				1062
				1063	/* Calculate step 2 values */
				1064	jpake_step2(pctx->grp, pctx->s, pctx->g_x1,
				1065	pctx->g_x3, pctx->g_x4, pctx->x2,
				1066	pctx->server_id, pctx->server_id_len,
				1067	pctx->client_id, pctx->client_id_len,
				1068	x3_proof, x3_proof_len,
				1069	x4_proof, x4_proof_len,
				1070	&pctx->a,
				1071	&x2_s_proof, &x2_s_proof_len);
				1072
				1073	bzero(x3_proof, x3_proof_len);
				1074	bzero(x4_proof, x4_proof_len);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1075	free(x3_proof);
				1076	free(x4_proof);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1077
				1078	JPAKE_DEBUG_CTX((pctx, "step 2 sending in %s", __func__));
				1079
				1080	/* Send values for step 2 */
				1081	packet_start(SSH2_MSG_USERAUTH_JPAKE_CLIENT_STEP2);
				1082	packet_put_bignum2(pctx->a);
				1083	packet_put_string(x2_s_proof, x2_s_proof_len);
				1084	packet_send();
				1085
				1086	bzero(x2_s_proof, x2_s_proof_len);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1087	free(x2_s_proof);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1088
				1089	/* Expect step 2 packet from peer */
				1090	dispatch_set(SSH2_MSG_USERAUTH_JPAKE_SERVER_STEP2,
				1091	input_userauth_jpake_server_step2);
				1092	}
				1093
				1094	/* ARGSUSED */
				1095	void
				1096	input_userauth_jpake_server_step2(int type, u_int32_t seq, void *ctxt)
				1097	{
				1098	Authctxt *authctxt = ctxt;
				1099	struct jpake_ctx *pctx = authctxt->methoddata;
				1100	u_char *x4_s_proof;
				1101	u_int x4_s_proof_len;
				1102
				1103	/* Disable this message */
				1104	dispatch_set(SSH2_MSG_USERAUTH_JPAKE_SERVER_STEP2, NULL);
				1105
				1106	if ((pctx->b = BN_new()) == NULL)
				1107	fatal("%s: BN_new", __func__);
				1108
				1109	/* Fetch step 2 values */
				1110	packet_get_bignum2(pctx->b);
				1111	x4_s_proof = packet_get_string(&x4_s_proof_len);
				1112	packet_check_eom();
				1113
				1114	JPAKE_DEBUG_CTX((pctx, "step 2 received in %s", __func__));
				1115
				1116	/* Derive shared key and calculate confirmation hash */
				1117	jpake_key_confirm(pctx->grp, pctx->s, pctx->b,
				1118	pctx->x2, pctx->g_x1, pctx->g_x2, pctx->g_x3, pctx->g_x4,
				1119	pctx->client_id, pctx->client_id_len,
				1120	pctx->server_id, pctx->server_id_len,
				1121	session_id2, session_id2_len,
				1122	x4_s_proof, x4_s_proof_len,
				1123	&pctx->k,
				1124	&pctx->h_k_cid_sessid, &pctx->h_k_cid_sessid_len);
				1125
				1126	bzero(x4_s_proof, x4_s_proof_len);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1127	free(x4_s_proof);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1128
				1129	JPAKE_DEBUG_CTX((pctx, "confirm sending in %s", __func__));
				1130
				1131	/* Send key confirmation proof */
				1132	packet_start(SSH2_MSG_USERAUTH_JPAKE_CLIENT_CONFIRM);
				1133	packet_put_string(pctx->h_k_cid_sessid, pctx->h_k_cid_sessid_len);
				1134	packet_send();
				1135
				1136	/* Expect confirmation from peer */
				1137	dispatch_set(SSH2_MSG_USERAUTH_JPAKE_SERVER_CONFIRM,
				1138	input_userauth_jpake_server_confirm);
				1139	}
				1140
				1141	/* ARGSUSED */
				1142	void
				1143	input_userauth_jpake_server_confirm(int type, u_int32_t seq, void *ctxt)
				1144	{
				1145	Authctxt *authctxt = ctxt;
				1146	struct jpake_ctx *pctx = authctxt->methoddata;
				1147
				1148	/* Disable this message */
				1149	dispatch_set(SSH2_MSG_USERAUTH_JPAKE_SERVER_CONFIRM, NULL);
				1150
				1151	pctx->h_k_sid_sessid = packet_get_string(&pctx->h_k_sid_sessid_len);
				1152	packet_check_eom();
				1153
				1154	JPAKE_DEBUG_CTX((pctx, "confirm received in %s", __func__));
				1155
				1156	/* Verify expected confirmation hash */
				1157	if (jpake_check_confirm(pctx->k,
				1158	pctx->server_id, pctx->server_id_len,
				1159	session_id2, session_id2_len,
				1160	pctx->h_k_sid_sessid, pctx->h_k_sid_sessid_len) == 1)
				1161	debug("%s: %s success", __func__, authctxt->method->name);
				1162	else {
				1163	debug("%s: confirmation mismatch", __func__);
				1164	/* XXX stash this so if auth succeeds then we can warn/kill */
				1165	}
				1166
				1167	userauth_jpake_cleanup(authctxt);
				1168	}
				1169	#endif /* JPAKE */
				1170
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	1171	static int
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1172	identity_sign(Identity id, u_char sigp, u_int lenp,
				1173	u_char *data, u_int datalen)
				1174	{
				1175	Key *prv;
				1176	int ret;
				1177
				1178	/* the agent supports this key */
				1179	if (id->ac)
				1180	return (ssh_agent_sign(id->ac, id->key, sigp, lenp,
				1181	data, datalen));
				1182	/*
				1183	* we have already loaded the private key or
				1184	* the private key is stored in external hardware
				1185	*/
				1186	if (id->isprivate \|\| (id->key->flags & KEY_FLAG_EXT))
				1187	return (key_sign(id->key, sigp, lenp, data, datalen));
				1188	/* load the private key from the file */
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	1189	if ((prv = load_identity_file(id->filename, id->userprovided)) == NULL)
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1190	return (-1);
				1191	ret = key_sign(prv, sigp, lenp, data, datalen);
				1192	key_free(prv);
				1193	return (ret);
				1194	}
				1195
				1196	static int
				1197	sign_and_send_pubkey(Authctxt authctxt, Identity id)
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1198	{
				1199	Buffer b;
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	1200	u_char blob, signature;
Ben Lindstrom	90fd814	2002-02-26 18:09:42 +0000	[diff] [blame]	1201	u_int bloblen, slen;
Darren Tucker	502d384	2003-06-28 12:38:01 +1000	[diff] [blame]	1202	u_int skip = 0;
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1203	int ret = -1;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1204	int have_sig = 1;
Damien Miller	4e270b0	2010-04-16 15:56:21 +1000	[diff] [blame]	1205	char *fp;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1206
Damien Miller	4e270b0	2010-04-16 15:56:21 +1000	[diff] [blame]	1207	fp = key_fingerprint(id->key, SSH_FP_MD5, SSH_FP_HEX);
				1208	debug3("sign_and_send_pubkey: %s %s", key_type(id->key), fp);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1209	free(fp);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1210
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1211	if (key_to_blob(id->key, &blob, &bloblen) == 0) {
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1212	/* we cannot handle this key */
Ben Lindstrom	d121f61	2000-12-03 17:00:47 +0000	[diff] [blame]	1213	debug3("sign_and_send_pubkey: cannot handle key");
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1214	return 0;
				1215	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1216	/* data to be signed */
				1217	buffer_init(&b);
Damien Miller	50a41ed	2000-10-16 12:14:42 +1100	[diff] [blame]	1218	if (datafellows & SSH_OLD_SESSIONID) {
Damien Miller	6536c7d	2000-06-22 21:32:31 +1000	[diff] [blame]	1219	buffer_append(&b, session_id2, session_id2_len);
Kevin Steves	ef4eea9	2001-02-05 12:42:17 +0000	[diff] [blame]	1220	skip = session_id2_len;
Damien Miller	50a41ed	2000-10-16 12:14:42 +1100	[diff] [blame]	1221	} else {
				1222	buffer_put_string(&b, session_id2, session_id2_len);
				1223	skip = buffer_len(&b);
Damien Miller	6536c7d	2000-06-22 21:32:31 +1000	[diff] [blame]	1224	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1225	buffer_put_char(&b, SSH2_MSG_USERAUTH_REQUEST);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1226	buffer_put_cstring(&b, authctxt->server_user);
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	1227	buffer_put_cstring(&b,
Ben Lindstrom	d121f61	2000-12-03 17:00:47 +0000	[diff] [blame]	1228	datafellows & SSH_BUG_PKSERVICE ?
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	1229	"ssh-userauth" :
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1230	authctxt->service);
Ben Lindstrom	d121f61	2000-12-03 17:00:47 +0000	[diff] [blame]	1231	if (datafellows & SSH_BUG_PKAUTH) {
				1232	buffer_put_char(&b, have_sig);
				1233	} else {
				1234	buffer_put_cstring(&b, authctxt->method->name);
				1235	buffer_put_char(&b, have_sig);
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1236	buffer_put_cstring(&b, key_ssh_name(id->key));
Ben Lindstrom	d121f61	2000-12-03 17:00:47 +0000	[diff] [blame]	1237	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1238	buffer_put_string(&b, blob, bloblen);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1239
				1240	/* generate signature */
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1241	ret = identity_sign(id, &signature, &slen,
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1242	buffer_ptr(&b), buffer_len(&b));
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1243	if (ret == -1) {
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1244	free(blob);
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1245	buffer_free(&b);
				1246	return 0;
				1247	}
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1248	#ifdef DEBUG_PK
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1249	buffer_dump(&b);
				1250	#endif
Ben Lindstrom	d121f61	2000-12-03 17:00:47 +0000	[diff] [blame]	1251	if (datafellows & SSH_BUG_PKSERVICE) {
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	1252	buffer_clear(&b);
				1253	buffer_append(&b, session_id2, session_id2_len);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1254	skip = session_id2_len;
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	1255	buffer_put_char(&b, SSH2_MSG_USERAUTH_REQUEST);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1256	buffer_put_cstring(&b, authctxt->server_user);
				1257	buffer_put_cstring(&b, authctxt->service);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1258	buffer_put_cstring(&b, authctxt->method->name);
				1259	buffer_put_char(&b, have_sig);
Ben Lindstrom	d121f61	2000-12-03 17:00:47 +0000	[diff] [blame]	1260	if (!(datafellows & SSH_BUG_PKAUTH))
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1261	buffer_put_cstring(&b, key_ssh_name(id->key));
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	1262	buffer_put_string(&b, blob, bloblen);
				1263	}
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1264	free(blob);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1265
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1266	/* append signature */
				1267	buffer_put_string(&b, signature, slen);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1268	free(signature);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1269
				1270	/* skip session id and packet type */
Damien Miller	6536c7d	2000-06-22 21:32:31 +1000	[diff] [blame]	1271	if (buffer_len(&b) < skip + 1)
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1272	fatal("userauth_pubkey: internal error");
Damien Miller	6536c7d	2000-06-22 21:32:31 +1000	[diff] [blame]	1273	buffer_consume(&b, skip + 1);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1274
				1275	/* put remaining data from buffer into packet */
				1276	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				1277	packet_put_raw(buffer_ptr(&b), buffer_len(&b));
				1278	buffer_free(&b);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1279	packet_send();
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1280
				1281	return 1;
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1282	}
				1283
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	1284	static int
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1285	send_pubkey_test(Authctxt authctxt, Identity id)
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1286	{
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1287	u_char *blob;
Ben Lindstrom	c58ab02	2002-02-26 18:15:09 +0000	[diff] [blame]	1288	u_int bloblen, have_sig = 0;
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1289
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1290	debug3("send_pubkey_test");
				1291
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1292	if (key_to_blob(id->key, &blob, &bloblen) == 0) {
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1293	/* we cannot handle this key */
				1294	debug3("send_pubkey_test: cannot handle key");
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1295	return 0;
				1296	}
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1297	/* register callback for USERAUTH_PK_OK message */
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1298	dispatch_set(SSH2_MSG_USERAUTH_PK_OK, &input_userauth_pk_ok);
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1299
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1300	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				1301	packet_put_cstring(authctxt->server_user);
				1302	packet_put_cstring(authctxt->service);
				1303	packet_put_cstring(authctxt->method->name);
				1304	packet_put_char(have_sig);
				1305	if (!(datafellows & SSH_BUG_PKAUTH))
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1306	packet_put_cstring(key_ssh_name(id->key));
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1307	packet_put_string(blob, bloblen);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1308	free(blob);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1309	packet_send();
				1310	return 1;
				1311	}
				1312
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	1313	static Key *
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	1314	load_identity_file(char *filename, int userprovided)
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1315	{
				1316	Key *private;
				1317	char prompt[300], *passphrase;
Darren Tucker	d4c86b1	2010-01-12 19:41:22 +1100	[diff] [blame]	1318	int perm_ok = 0, quit, i;
Ben Lindstrom	329782e	2001-03-10 17:08:59 +0000	[diff] [blame]	1319	struct stat st;
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1320
Ben Lindstrom	329782e	2001-03-10 17:08:59 +0000	[diff] [blame]	1321	if (stat(filename, &st) < 0) {
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	1322	(userprovided ? logit : debug3)("no such identity: %s: %s",
				1323	filename, strerror(errno));
Ben Lindstrom	329782e	2001-03-10 17:08:59 +0000	[diff] [blame]	1324	return NULL;
				1325	}
Darren Tucker	232b76f	2006-05-06 17:41:51 +1000	[diff] [blame]	1326	private = key_load_private_type(KEY_UNSPEC, filename, "", NULL, &perm_ok);
Darren Tucker	e52a260	2013-06-06 08:22:05 +1000	[diff] [blame]	1327	if (!perm_ok) {
				1328	if (private != NULL)
				1329	key_free(private);
Darren Tucker	232b76f	2006-05-06 17:41:51 +1000	[diff] [blame]	1330	return NULL;
Darren Tucker	e52a260	2013-06-06 08:22:05 +1000	[diff] [blame]	1331	}
Ben Lindstrom	d0fca42	2001-03-26 13:44:06 +0000	[diff] [blame]	1332	if (private == NULL) {
				1333	if (options.batch_mode)
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1334	return NULL;
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1335	snprintf(prompt, sizeof prompt,
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	1336	"Enter passphrase for key '%.100s': ", filename);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1337	for (i = 0; i < options.number_of_password_prompts; i++) {
				1338	passphrase = read_passphrase(prompt, 0);
				1339	if (strcmp(passphrase, "") != 0) {
Darren Tucker	232b76f	2006-05-06 17:41:51 +1000	[diff] [blame]	1340	private = key_load_private_type(KEY_UNSPEC,
				1341	filename, passphrase, NULL, NULL);
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1342	quit = 0;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1343	} else {
				1344	debug2("no passphrase given, try next key");
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1345	quit = 1;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1346	}
				1347	memset(passphrase, 0, strlen(passphrase));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1348	free(passphrase);
Ben Lindstrom	d0fca42	2001-03-26 13:44:06 +0000	[diff] [blame]	1349	if (private != NULL \|\| quit)
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1350	break;
				1351	debug2("bad passphrase given, try again...");
				1352	}
Damien Miller	994cf14	2000-07-21 10:19:44 +1000	[diff] [blame]	1353	}
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1354	return private;
				1355	}
				1356
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1357	/*
				1358	* try keys in the following order:
				1359	* 1. agent keys that are found in the config file
				1360	* 2. other agent keys
				1361	* 3. keys that are only listed in the config file
				1362	*/
				1363	static void
				1364	pubkey_prepare(Authctxt *authctxt)
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1365	{
Damien Miller	cb6b68b	2012-12-03 09:49:52 +1100	[diff] [blame]	1366	Identity id, id2, *tmp;
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1367	Idlist agent, files, *preferred;
				1368	Key *key;
				1369	AuthenticationConnection *ac;
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1370	char *comment;
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1371	int i, found;
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1372
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1373	TAILQ_INIT(&agent); /* keys from the agent */
				1374	TAILQ_INIT(&files); /* keys from the config file */
				1375	preferred = &authctxt->keys;
				1376	TAILQ_INIT(preferred); /* preferred order of keys */
				1377
Damien Miller	cb6b68b	2012-12-03 09:49:52 +1100	[diff] [blame]	1378	/* list of keys stored in the filesystem and PKCS#11 */
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1379	for (i = 0; i < options.num_identity_files; i++) {
				1380	key = options.identity_keys[i];
				1381	if (key && key->type == KEY_RSA1)
				1382	continue;
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	1383	if (key && key->cert && key->cert->type != SSH2_CERT_TYPE_USER)
				1384	continue;
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1385	options.identity_keys[i] = NULL;
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	1386	id = xcalloc(1, sizeof(*id));
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1387	id->key = key;
				1388	id->filename = xstrdup(options.identity_files[i]);
Darren Tucker	1910478	2013-04-05 11:13:08 +1100	[diff] [blame]	1389	id->userprovided = options.identity_file_userprovided[i];
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1390	TAILQ_INSERT_TAIL(&files, id, next);
Damien Miller	ad833b3	2000-08-23 10:46:23 +1000	[diff] [blame]	1391	}
Damien Miller	cb6b68b	2012-12-03 09:49:52 +1100	[diff] [blame]	1392	/* Prefer PKCS11 keys that are explicitly listed */
				1393	TAILQ_FOREACH_SAFE(id, &files, next, tmp) {
				1394	if (id->key == NULL \|\| (id->key->flags & KEY_FLAG_EXT) == 0)
				1395	continue;
				1396	found = 0;
				1397	TAILQ_FOREACH(id2, &files, next) {
				1398	if (id2->key == NULL \|\|
				1399	(id2->key->flags & KEY_FLAG_EXT) != 0)
				1400	continue;
				1401	if (key_equal(id->key, id2->key)) {
				1402	TAILQ_REMOVE(&files, id, next);
				1403	TAILQ_INSERT_TAIL(preferred, id, next);
				1404	found = 1;
				1405	break;
				1406	}
				1407	}
				1408	/* If IdentitiesOnly set and key not found then don't use it */
				1409	if (!found && options.identities_only) {
				1410	TAILQ_REMOVE(&files, id, next);
Darren Tucker	54da6be	2013-05-16 20:25:04 +1000	[diff] [blame]	1411	bzero(id, sizeof(*id));
Damien Miller	cb6b68b	2012-12-03 09:49:52 +1100	[diff] [blame]	1412	free(id);
				1413	}
				1414	}
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1415	/* list of keys supported by the agent */
				1416	if ((ac = ssh_get_authentication_connection())) {
				1417	for (key = ssh_get_first_identity(ac, &comment, 2);
				1418	key != NULL;
				1419	key = ssh_get_next_identity(ac, &comment, 2)) {
				1420	found = 0;
				1421	TAILQ_FOREACH(id, &files, next) {
Damien Miller	a8e06ce	2003-11-21 23:48:55 +1100	[diff] [blame]	1422	/* agent keys from the config file are preferred */
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1423	if (key_equal(key, id->key)) {
				1424	key_free(key);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1425	free(comment);
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1426	TAILQ_REMOVE(&files, id, next);
				1427	TAILQ_INSERT_TAIL(preferred, id, next);
				1428	id->ac = ac;
				1429	found = 1;
				1430	break;
				1431	}
				1432	}
Damien Miller	bd394c3	2004-03-08 23:12:36 +1100	[diff] [blame]	1433	if (!found && !options.identities_only) {
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	1434	id = xcalloc(1, sizeof(*id));
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1435	id->key = key;
				1436	id->filename = comment;
				1437	id->ac = ac;
				1438	TAILQ_INSERT_TAIL(&agent, id, next);
				1439	}
				1440	}
				1441	/* append remaining agent keys */
				1442	for (id = TAILQ_FIRST(&agent); id; id = TAILQ_FIRST(&agent)) {
				1443	TAILQ_REMOVE(&agent, id, next);
				1444	TAILQ_INSERT_TAIL(preferred, id, next);
				1445	}
				1446	authctxt->agent = ac;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1447	}
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1448	/* append remaining keys from the config file */
				1449	for (id = TAILQ_FIRST(&files); id; id = TAILQ_FIRST(&files)) {
				1450	TAILQ_REMOVE(&files, id, next);
				1451	TAILQ_INSERT_TAIL(preferred, id, next);
				1452	}
				1453	TAILQ_FOREACH(id, preferred, next) {
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	1454	debug2("key: %s (%p),%s", id->filename, id->key,
				1455	id->userprovided ? " explicit" : "");
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1456	}
				1457	}
				1458
				1459	static void
				1460	pubkey_cleanup(Authctxt *authctxt)
				1461	{
				1462	Identity *id;
				1463
				1464	if (authctxt->agent != NULL)
				1465	ssh_close_authentication_connection(authctxt->agent);
				1466	for (id = TAILQ_FIRST(&authctxt->keys); id;
				1467	id = TAILQ_FIRST(&authctxt->keys)) {
				1468	TAILQ_REMOVE(&authctxt->keys, id, next);
				1469	if (id->key)
				1470	key_free(id->key);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1471	free(id->filename);
				1472	free(id);
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1473	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1474	}
				1475
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1476	int
				1477	userauth_pubkey(Authctxt *authctxt)
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1478	{
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1479	Identity *id;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1480	int sent = 0;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1481
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1482	while ((id = TAILQ_FIRST(&authctxt->keys))) {
				1483	if (id->tried++)
				1484	return (0);
Darren Tucker	d05b601	2003-10-15 15:55:59 +1000	[diff] [blame]	1485	/* move key to the end of the queue */
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1486	TAILQ_REMOVE(&authctxt->keys, id, next);
				1487	TAILQ_INSERT_TAIL(&authctxt->keys, id, next);
				1488	/*
				1489	* send a test message if we have the public key. for
				1490	* encrypted keys we cannot do this and have to load the
				1491	* private key instead
				1492	*/
Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame^]	1493	if (id->key != NULL) {
				1494	if (key_type_plain(id->key->type) == KEY_RSA &&
				1495	(datafellows & SSH_BUG_RSASIGMD5) != 0) {
				1496	debug("Skipped %s key %s for RSA/MD5 server",
				1497	key_type(id->key), id->filename);
				1498	} else if (id->key->type != KEY_RSA1) {
				1499	debug("Offering %s public key: %s",
				1500	key_type(id->key), id->filename);
				1501	sent = send_pubkey_test(authctxt, id);
				1502	}
				1503	} else {
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1504	debug("Trying private key: %s", id->filename);
Damien Miller	5ceddc3	2013-02-15 12:18:32 +1100	[diff] [blame]	1505	id->key = load_identity_file(id->filename,
				1506	id->userprovided);
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1507	if (id->key != NULL) {
				1508	id->isprivate = 1;
Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame^]	1509	if (key_type_plain(id->key->type) == KEY_RSA &&
				1510	(datafellows & SSH_BUG_RSASIGMD5) != 0) {
				1511	debug("Skipped %s key %s for RSA/MD5 "
				1512	"server", key_type(id->key),
				1513	id->filename);
				1514	} else {
				1515	sent = sign_and_send_pubkey(
				1516	authctxt, id);
				1517	}
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1518	key_free(id->key);
				1519	id->key = NULL;
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1520	}
Ben Lindstrom	266dfdf	2001-03-09 00:12:22 +0000	[diff] [blame]	1521	}
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1522	if (sent)
				1523	return (sent);
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1524	}
Damien Miller	280ecfb	2003-05-14 13:46:00 +1000	[diff] [blame]	1525	return (0);
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1526	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1527
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1528	/*
				1529	* Send userauth request message specifying keyboard-interactive method.
				1530	*/
				1531	int
				1532	userauth_kbdint(Authctxt *authctxt)
				1533	{
				1534	static int attempt = 0;
				1535
				1536	if (attempt++ >= options.number_of_password_prompts)
				1537	return 0;
Ben Lindstrom	7d19996	2001-09-12 18:29:00 +0000	[diff] [blame]	1538	/* disable if no SSH2_MSG_USERAUTH_INFO_REQUEST has been seen */
				1539	if (attempt > 1 && !authctxt->info_req_seen) {
				1540	debug3("userauth_kbdint: disable: no info_req_seen");
				1541	dispatch_set(SSH2_MSG_USERAUTH_INFO_REQUEST, NULL);
				1542	return 0;
				1543	}
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1544
				1545	debug2("userauth_kbdint");
				1546	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				1547	packet_put_cstring(authctxt->server_user);
				1548	packet_put_cstring(authctxt->service);
				1549	packet_put_cstring(authctxt->method->name);
				1550	packet_put_cstring(""); /* lang */
				1551	packet_put_cstring(options.kbd_interactive_devices ?
				1552	options.kbd_interactive_devices : "");
				1553	packet_send();
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1554
				1555	dispatch_set(SSH2_MSG_USERAUTH_INFO_REQUEST, &input_userauth_info_req);
				1556	return 1;
				1557	}
				1558
				1559	/*
Ben Lindstrom	03df5bd	2001-02-10 22:16:41 +0000	[diff] [blame]	1560	* parse INFO_REQUEST, prompt user and send INFO_RESPONSE
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1561	*/
				1562	void
Damien Miller	630d6f4	2002-01-22 23:17:30 +1100	[diff] [blame]	1563	input_userauth_info_req(int type, u_int32_t seq, void *ctxt)
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1564	{
				1565	Authctxt *authctxt = ctxt;
Ben Lindstrom	03df5bd	2001-02-10 22:16:41 +0000	[diff] [blame]	1566	char name, inst, lang, prompt, *response;
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	1567	u_int num_prompts, i;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1568	int echo = 0;
				1569
				1570	debug2("input_userauth_info_req");
				1571
				1572	if (authctxt == NULL)
				1573	fatal("input_userauth_info_req: no authentication context");
				1574
Ben Lindstrom	7d19996	2001-09-12 18:29:00 +0000	[diff] [blame]	1575	authctxt->info_req_seen = 1;
				1576
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1577	name = packet_get_string(NULL);
				1578	inst = packet_get_string(NULL);
				1579	lang = packet_get_string(NULL);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1580	if (strlen(name) > 0)
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	1581	logit("%s", name);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1582	if (strlen(inst) > 0)
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	1583	logit("%s", inst);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1584	free(name);
				1585	free(inst);
				1586	free(lang);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1587
				1588	num_prompts = packet_get_int();
				1589	/*
				1590	* Begin to build info response packet based on prompts requested.
				1591	* We commit to providing the correct number of responses, so if
				1592	* further on we run into a problem that prevents this, we have to
				1593	* be sure and clean this up and send a correct error response.
				1594	*/
				1595	packet_start(SSH2_MSG_USERAUTH_INFO_RESPONSE);
				1596	packet_put_int(num_prompts);
				1597
Ben Lindstrom	551ea37	2001-06-05 18:56:16 +0000	[diff] [blame]	1598	debug2("input_userauth_info_req: num_prompts %d", num_prompts);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1599	for (i = 0; i < num_prompts; i++) {
				1600	prompt = packet_get_string(NULL);
				1601	echo = packet_get_char();
				1602
Ben Lindstrom	949974b	2001-06-25 05:20:31 +0000	[diff] [blame]	1603	response = read_passphrase(prompt, echo ? RP_ECHO : 0);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1604
Ben Lindstrom	5699c5f	2001-03-05 06:17:49 +0000	[diff] [blame]	1605	packet_put_cstring(response);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1606	memset(response, 0, strlen(response));
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1607	free(response);
				1608	free(prompt);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1609	}
Damien Miller	48b03fc	2002-01-22 23:11:40 +1100	[diff] [blame]	1610	packet_check_eom(); /* done with parsing incoming message. */
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1611
Damien Miller	9f64390	2001-11-12 11:02:52 +1100	[diff] [blame]	1612	packet_add_padding(64);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1613	packet_send();
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1614	}
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1615
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1616	static int
Ben Lindstrom	5c38552	2002-06-23 21:23:20 +0000	[diff] [blame]	1617	ssh_keysign(Key key, u_char sigp, u_int lenp,
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1618	u_char *data, u_int datalen)
				1619	{
				1620	Buffer b;
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1621	struct stat st;
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1622	pid_t pid;
Ben Lindstrom	cec2ea8	2002-06-06 20:51:04 +0000	[diff] [blame]	1623	int to[2], from[2], status, version = 2;
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1624
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	1625	debug2("ssh_keysign called");
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1626
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1627	if (stat(_PATH_SSH_KEY_SIGN, &st) < 0) {
Darren Tucker	daaa450	2010-01-13 22:43:33 +1100	[diff] [blame]	1628	error("ssh_keysign: not installed: %s", strerror(errno));
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1629	return -1;
				1630	}
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1631	if (fflush(stdout) != 0)
				1632	error("ssh_keysign: fflush: %s", strerror(errno));
				1633	if (pipe(to) < 0) {
				1634	error("ssh_keysign: pipe: %s", strerror(errno));
				1635	return -1;
				1636	}
				1637	if (pipe(from) < 0) {
				1638	error("ssh_keysign: pipe: %s", strerror(errno));
				1639	return -1;
				1640	}
				1641	if ((pid = fork()) < 0) {
				1642	error("ssh_keysign: fork: %s", strerror(errno));
				1643	return -1;
				1644	}
				1645	if (pid == 0) {
Darren Tucker	6e7fe1c	2010-01-08 17:07:22 +1100	[diff] [blame]	1646	/* keep the socket on exec */
				1647	fcntl(packet_get_connection_in(), F_SETFD, 0);
Damien Miller	2e5fe88	2006-06-13 13:10:00 +1000	[diff] [blame]	1648	permanently_drop_suid(getuid());
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1649	close(from[0]);
				1650	if (dup2(from[1], STDOUT_FILENO) < 0)
				1651	fatal("ssh_keysign: dup2: %s", strerror(errno));
				1652	close(to[1]);
				1653	if (dup2(to[0], STDIN_FILENO) < 0)
				1654	fatal("ssh_keysign: dup2: %s", strerror(errno));
Ben Lindstrom	cec2ea8	2002-06-06 20:51:04 +0000	[diff] [blame]	1655	close(from[1]);
				1656	close(to[0]);
Ben Lindstrom	4887da2	2002-06-06 20:05:57 +0000	[diff] [blame]	1657	execl(_PATH_SSH_KEY_SIGN, _PATH_SSH_KEY_SIGN, (char *) 0);
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1658	fatal("ssh_keysign: exec(%s): %s", _PATH_SSH_KEY_SIGN,
				1659	strerror(errno));
				1660	}
				1661	close(from[1]);
				1662	close(to[0]);
				1663
				1664	buffer_init(&b);
Ben Lindstrom	cec2ea8	2002-06-06 20:51:04 +0000	[diff] [blame]	1665	buffer_put_int(&b, packet_get_connection_in()); /* send # of socket */
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1666	buffer_put_string(&b, data, datalen);
Damien Miller	51bf11f	2003-11-17 21:20:47 +1100	[diff] [blame]	1667	if (ssh_msg_send(to[1], version, &b) == -1)
				1668	fatal("ssh_keysign: couldn't send request");
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1669
Damien Miller	901119b	2002-10-04 11:10:04 +1000	[diff] [blame]	1670	if (ssh_msg_recv(from[0], &b) < 0) {
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1671	error("ssh_keysign: no reply");
Damien Miller	fb1310e	2004-01-21 11:02:50 +1100	[diff] [blame]	1672	buffer_free(&b);
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1673	return -1;
				1674	}
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1675	close(from[0]);
				1676	close(to[1]);
				1677
Ben Lindstrom	cec2ea8	2002-06-06 20:51:04 +0000	[diff] [blame]	1678	while (waitpid(pid, &status, 0) < 0)
				1679	if (errno != EINTR)
				1680	break;
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1681
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1682	if (buffer_get_char(&b) != version) {
				1683	error("ssh_keysign: bad version");
Damien Miller	fb1310e	2004-01-21 11:02:50 +1100	[diff] [blame]	1684	buffer_free(&b);
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1685	return -1;
				1686	}
				1687	*sigp = buffer_get_string(&b, lenp);
Damien Miller	fb1310e	2004-01-21 11:02:50 +1100	[diff] [blame]	1688	buffer_free(&b);
Ben Lindstrom	5206b95	2002-06-06 19:59:29 +0000	[diff] [blame]	1689
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1690	return 0;
				1691	}
				1692
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1693	int
				1694	userauth_hostbased(Authctxt *authctxt)
				1695	{
				1696	Key *private = NULL;
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1697	Sensitive *sensitive = authctxt->sensitive;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1698	Buffer b;
				1699	u_char signature, blob;
Darren Tucker	daaa450	2010-01-13 22:43:33 +1100	[diff] [blame]	1700	char chost, pkalg, *p;
Ben Lindstrom	671388f	2001-04-19 20:40:45 +0000	[diff] [blame]	1701	const char *service;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1702	u_int blen, slen;
Darren Tucker	5246df4	2010-01-08 18:50:46 +1100	[diff] [blame]	1703	int ok, i, found = 0;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1704
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1705	/* check for a useful key */
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1706	for (i = 0; i < sensitive->nkeys; i++) {
				1707	private = sensitive->keys[i];
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1708	if (private && private->type != KEY_RSA1) {
				1709	found = 1;
				1710	/* we take and free the key */
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1711	sensitive->keys[i] = NULL;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1712	break;
				1713	}
				1714	}
				1715	if (!found) {
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	1716	debug("No more client hostkeys for hostbased authentication.");
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1717	return 0;
				1718	}
				1719	if (key_to_blob(private, &blob, &blen) == 0) {
				1720	key_free(private);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1721	return 0;
				1722	}
Damien Miller	91c1847	2001-11-12 11:02:03 +1100	[diff] [blame]	1723	/* figure out a name for the client host */
Darren Tucker	daaa450	2010-01-13 22:43:33 +1100	[diff] [blame]	1724	p = get_local_name(packet_get_connection_in());
Damien Miller	91c1847	2001-11-12 11:02:03 +1100	[diff] [blame]	1725	if (p == NULL) {
				1726	error("userauth_hostbased: cannot get local ipaddr/name");
				1727	key_free(private);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1728	free(blob);
Damien Miller	91c1847	2001-11-12 11:02:03 +1100	[diff] [blame]	1729	return 0;
				1730	}
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	1731	xasprintf(&chost, "%s.", p);
Damien Miller	91c1847	2001-11-12 11:02:03 +1100	[diff] [blame]	1732	debug2("userauth_hostbased: chost %s", chost);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1733	free(p);
Damien Miller	91c1847	2001-11-12 11:02:03 +1100	[diff] [blame]	1734
Ben Lindstrom	671388f	2001-04-19 20:40:45 +0000	[diff] [blame]	1735	service = datafellows & SSH_BUG_HBSERVICE ? "ssh-userauth" :
				1736	authctxt->service;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1737	pkalg = xstrdup(key_ssh_name(private));
				1738	buffer_init(&b);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1739	/* construct data */
Ben Lindstrom	671388f	2001-04-19 20:40:45 +0000	[diff] [blame]	1740	buffer_put_string(&b, session_id2, session_id2_len);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1741	buffer_put_char(&b, SSH2_MSG_USERAUTH_REQUEST);
				1742	buffer_put_cstring(&b, authctxt->server_user);
Ben Lindstrom	671388f	2001-04-19 20:40:45 +0000	[diff] [blame]	1743	buffer_put_cstring(&b, service);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1744	buffer_put_cstring(&b, authctxt->method->name);
				1745	buffer_put_cstring(&b, pkalg);
				1746	buffer_put_string(&b, blob, blen);
				1747	buffer_put_cstring(&b, chost);
				1748	buffer_put_cstring(&b, authctxt->local_user);
				1749	#ifdef DEBUG_PK
				1750	buffer_dump(&b);
				1751	#endif
Ben Lindstrom	1bad256	2002-06-06 19:57:33 +0000	[diff] [blame]	1752	if (sensitive->external_keysign)
				1753	ok = ssh_keysign(private, &signature, &slen,
				1754	buffer_ptr(&b), buffer_len(&b));
				1755	else
				1756	ok = key_sign(private, &signature, &slen,
				1757	buffer_ptr(&b), buffer_len(&b));
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1758	key_free(private);
				1759	buffer_free(&b);
				1760	if (ok != 0) {
				1761	error("key_sign failed");
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1762	free(chost);
				1763	free(pkalg);
				1764	free(blob);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1765	return 0;
				1766	}
				1767	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				1768	packet_put_cstring(authctxt->server_user);
				1769	packet_put_cstring(authctxt->service);
				1770	packet_put_cstring(authctxt->method->name);
				1771	packet_put_cstring(pkalg);
				1772	packet_put_string(blob, blen);
				1773	packet_put_cstring(chost);
				1774	packet_put_cstring(authctxt->local_user);
				1775	packet_put_string(signature, slen);
				1776	memset(signature, 's', slen);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1777	free(signature);
				1778	free(chost);
				1779	free(pkalg);
				1780	free(blob);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	1781
				1782	packet_send();
				1783	return 1;
				1784	}
				1785
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1786	#ifdef JPAKE
				1787	int
				1788	userauth_jpake(Authctxt *authctxt)
				1789	{
				1790	struct jpake_ctx *pctx;
				1791	u_char x1_proof, x2_proof;
				1792	u_int x1_proof_len, x2_proof_len;
				1793	static int attempt = 0; /* XXX share with userauth_password's? */
				1794
				1795	if (attempt++ >= options.number_of_password_prompts)
				1796	return 0;
				1797	if (attempt != 1)
				1798	error("Permission denied, please try again.");
				1799
				1800	if (authctxt->methoddata != NULL)
				1801	fatal("%s: authctxt->methoddata already set (%p)",
				1802	__func__, authctxt->methoddata);
				1803
				1804	authctxt->methoddata = pctx = jpake_new();
				1805
				1806	/*
				1807	* Send request immediately, to get the protocol going while
				1808	* we do the initial computations.
				1809	*/
				1810	packet_start(SSH2_MSG_USERAUTH_REQUEST);
				1811	packet_put_cstring(authctxt->server_user);
				1812	packet_put_cstring(authctxt->service);
				1813	packet_put_cstring(authctxt->method->name);
				1814	packet_send();
				1815	packet_write_wait();
				1816
				1817	jpake_step1(pctx->grp,
				1818	&pctx->client_id, &pctx->client_id_len,
				1819	&pctx->x1, &pctx->x2, &pctx->g_x1, &pctx->g_x2,
				1820	&x1_proof, &x1_proof_len,
				1821	&x2_proof, &x2_proof_len);
				1822
				1823	JPAKE_DEBUG_CTX((pctx, "step 1 sending in %s", __func__));
				1824
				1825	packet_start(SSH2_MSG_USERAUTH_JPAKE_CLIENT_STEP1);
				1826	packet_put_string(pctx->client_id, pctx->client_id_len);
				1827	packet_put_bignum2(pctx->g_x1);
				1828	packet_put_bignum2(pctx->g_x2);
				1829	packet_put_string(x1_proof, x1_proof_len);
				1830	packet_put_string(x2_proof, x2_proof_len);
				1831	packet_send();
				1832
				1833	bzero(x1_proof, x1_proof_len);
				1834	bzero(x2_proof, x2_proof_len);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1835	free(x1_proof);
				1836	free(x2_proof);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1837
				1838	/* Expect step 1 packet from peer */
				1839	dispatch_set(SSH2_MSG_USERAUTH_JPAKE_SERVER_STEP1,
				1840	input_userauth_jpake_server_step1);
Darren Tucker	2f29a8c	2009-10-24 11:47:58 +1100	[diff] [blame]	1841	dispatch_set(SSH2_MSG_USERAUTH_SUCCESS,
				1842	&input_userauth_success_unexpected);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1843
				1844	return 1;
				1845	}
				1846
				1847	void
				1848	userauth_jpake_cleanup(Authctxt *authctxt)
				1849	{
				1850	debug3("%s: clean up", __func__);
				1851	if (authctxt->methoddata != NULL) {
				1852	jpake_free(authctxt->methoddata);
				1853	authctxt->methoddata = NULL;
				1854	}
Darren Tucker	2f29a8c	2009-10-24 11:47:58 +1100	[diff] [blame]	1855	dispatch_set(SSH2_MSG_USERAUTH_SUCCESS, &input_userauth_success);
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1856	}
				1857	#endif /* JPAKE */
				1858
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1859	/* find auth method */
				1860
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1861	/*
				1862	* given auth method name, if configurable options permit this method fill
				1863	* in auth_ident field and return true, otherwise return false.
				1864	*/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	1865	static int
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1866	authmethod_is_enabled(Authmethod *method)
				1867	{
				1868	if (method == NULL)
				1869	return 0;
				1870	/* return false if options indicate this method is disabled */
				1871	if (method->enabled == NULL \|\| *method->enabled == 0)
				1872	return 0;
				1873	/* return false if batch mode is enabled but method needs interactive mode */
				1874	if (method->batch_flag != NULL && *method->batch_flag != 0)
				1875	return 0;
				1876	return 1;
				1877	}
				1878
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	1879	static Authmethod *
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1880	authmethod_lookup(const char *name)
				1881	{
				1882	Authmethod *method = NULL;
				1883	if (name != NULL)
				1884	for (method = authmethods; method->name != NULL; method++)
				1885	if (strcmp(name, method->name) == 0)
				1886	return method;
				1887	debug2("Unrecognized authentication method name: %s", name ? name : "NULL");
				1888	return NULL;
				1889	}
				1890
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1891	/* XXX internal state */
				1892	static Authmethod *current = NULL;
				1893	static char *supported = NULL;
				1894	static char *preferred = NULL;
Ben Lindstrom	5c38552	2002-06-23 21:23:20 +0000	[diff] [blame]	1895
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1896	/*
				1897	* Given the authentication method list sent by the server, return the
				1898	* next method we should try. If the server initially sends a nil list,
Ben Lindstrom	a370005	2001-04-05 23:26:32 +0000	[diff] [blame]	1899	* use a built-in default list.
Kevin Steves	ef4eea9	2001-02-05 12:42:17 +0000	[diff] [blame]	1900	*/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	1901	static Authmethod *
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1902	authmethod_get(char *authlist)
				1903	{
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1904	char *name = NULL;
Ben Lindstrom	c58ab02	2002-02-26 18:15:09 +0000	[diff] [blame]	1905	u_int next;
Kevin Steves	ef4eea9	2001-02-05 12:42:17 +0000	[diff] [blame]	1906
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1907	/* Use a suitable default if we're passed a nil list. */
				1908	if (authlist == NULL \|\| strlen(authlist) == 0)
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1909	authlist = options.preferred_authentications;
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1910
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1911	if (supported == NULL \|\| strcmp(authlist, supported) != 0) {
				1912	debug3("start over, passed a different list %s", authlist);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1913	free(supported);
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1914	supported = xstrdup(authlist);
				1915	preferred = options.preferred_authentications;
				1916	debug3("preferred %s", preferred);
				1917	current = NULL;
				1918	} else if (current != NULL && authmethod_is_enabled(current))
				1919	return current;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1920
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1921	for (;;) {
				1922	if ((name = match_list(preferred, supported, &next)) == NULL) {
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	1923	debug("No more authentication methods to try.");
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1924	current = NULL;
				1925	return NULL;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	1926	}
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1927	preferred += next;
				1928	debug3("authmethod_lookup %s", name);
				1929	debug3("remaining preferred: %s", preferred);
				1930	if ((current = authmethod_lookup(name)) != NULL &&
				1931	authmethod_is_enabled(current)) {
				1932	debug3("authmethod_is_enabled %s", name);
Ben Lindstrom	1d568f9	2002-12-23 02:44:36 +0000	[diff] [blame]	1933	debug("Next authentication method: %s", name);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1934	free(name);
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1935	return current;
				1936	}
Darren Tucker	e52a260	2013-06-06 08:22:05 +1000	[diff] [blame]	1937	free(name);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1938	}
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1939	}
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1940
Ben Lindstrom	7907382	2001-07-04 03:42:30 +0000	[diff] [blame]	1941	static char *
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1942	authmethods_get(void)
				1943	{
				1944	Authmethod *method = NULL;
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	1945	Buffer b;
				1946	char *list;
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1947
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	1948	buffer_init(&b);
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1949	for (method = authmethods; method->name != NULL; method++) {
				1950	if (authmethod_is_enabled(method)) {
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	1951	if (buffer_len(&b) > 0)
				1952	buffer_append(&b, ",", 1);
				1953	buffer_append(&b, method->name, strlen(method->name));
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1954	}
Damien Miller	62cee00	2000-09-23 17:15:56 +1100	[diff] [blame]	1955	}
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	1956	buffer_append(&b, "\0", 1);
				1957	list = xstrdup(buffer_ptr(&b));
				1958	buffer_free(&b);
				1959	return list;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1960	}
Damien Miller	01ed227	2008-11-05 16:20:46 +1100	[diff] [blame]	1961