Blame - readconf.c - platform/external/openssh

blob: 096d1a71b9c406e274f14adfac657661cdd10cde [file] [log] [blame]

Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1	/*
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	2	* Author: Tatu Ylonen <ylo@cs.hut.fi>
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	3	* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
				4	* All rights reserved
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	5	* Functions for reading the configuration files.
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	6	*
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	7	* As far as I am concerned, the code I have written for this software
				8	* can be used freely for any purpose. Any derived versions of this
				9	* software must be clearly marked as such, and if the derived work is
				10	* incompatible with the protocol description in the RFC file, it must be
				11	* called by a name other than "ssh" or "Secure Shell".
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	12	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	13
				14	#include "includes.h"
Damien Miller	57a4476	2004-04-20 20:11:57 +1000	[diff] [blame]	15	RCSID("$OpenBSD: readconf.c,v 1.129 2004/04/18 23:10:26 djm Exp $");
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	16
				17	#include "ssh.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	18	#include "xmalloc.h"
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	19	#include "compat.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	20	#include "cipher.h"
				21	#include "pathnames.h"
				22	#include "log.h"
				23	#include "readconf.h"
				24	#include "match.h"
				25	#include "misc.h"
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	26	#include "kex.h"
				27	#include "mac.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	28
				29	/* Format of the configuration file:
				30
				31	# Configuration data is parsed as follows:
				32	# 1. command line options
				33	# 2. user-specific file
				34	# 3. system-wide file
				35	# Any configuration value is only changed the first time it is set.
				36	# Thus, host-specific definitions should be at the beginning of the
				37	# configuration file, and defaults at the end.
				38
				39	# Host-specific declarations. These may override anything above. A single
				40	# host may match multiple declarations; these are processed in the order
				41	# that they are given in.
				42
				43	Host *.ngs.fi ngs.fi
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	44	User foo
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	45
				46	Host fake.com
				47	HostName another.host.name.real.org
				48	User blaah
				49	Port 34289
				50	ForwardX11 no
				51	ForwardAgent no
				52
				53	Host books.com
				54	RemoteForward 9999 shadows.cs.hut.fi:9999
				55	Cipher 3des
				56
				57	Host fascist.blob.com
				58	Port 23123
				59	User tylonen
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	60	PasswordAuthentication no
				61
				62	Host puukko.hut.fi
				63	User t35124p
				64	ProxyCommand ssh-proxy %h %p
				65
				66	Host *.fr
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	67	PublicKeyAuthentication no
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	68
				69	Host *.su
				70	Cipher none
				71	PasswordAuthentication no
				72
				73	# Defaults for various options
				74	Host *
				75	ForwardAgent no
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	76	ForwardX11 no
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	77	PasswordAuthentication yes
				78	RSAAuthentication yes
				79	RhostsRSAAuthentication yes
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	80	StrictHostKeyChecking yes
Damien Miller	12c150e	2003-12-17 16:31:10 +1100	[diff] [blame]	81	TcpKeepAlive no
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	82	IdentityFile ~/.ssh/identity
				83	Port 22
				84	EscapeChar ~
				85
				86	*/
				87
				88	/* Keyword tokens. */
				89
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	90	typedef enum {
				91	oBadOption,
Darren Tucker	0a118da	2003-10-15 15:54:32 +1000	[diff] [blame]	92	oForwardAgent, oForwardX11, oForwardX11Trusted, oGatewayPorts,
Ben Lindstrom	cb72e4f	2002-06-21 00:41:51 +0000	[diff] [blame]	93	oPasswordAuthentication, oRSAAuthentication,
Ben Lindstrom	95fb2dd	2001-01-23 03:12:10 +0000	[diff] [blame]	94	oChallengeResponseAuthentication, oXAuthLocation,
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	95	oIdentityFile, oHostName, oPort, oCipher, oRemoteForward, oLocalForward,
				96	oUser, oHost, oEscapeChar, oRhostsRSAAuthentication, oProxyCommand,
				97	oGlobalKnownHostsFile, oUserKnownHostsFile, oConnectionAttempts,
				98	oBatchMode, oCheckHostIP, oStrictHostKeyChecking, oCompression,
Damien Miller	12c150e	2003-12-17 16:31:10 +1100	[diff] [blame]	99	oCompressionLevel, oTCPKeepAlive, oNumberOfPasswordPrompts,
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	100	oUsePrivilegedPort, oLogLevel, oCiphers, oProtocol, oMacs,
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	101	oGlobalKnownHostsFile2, oUserKnownHostsFile2, oPubkeyAuthentication,
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	102	oKbdInteractiveAuthentication, oKbdInteractiveDevices, oHostKeyAlias,
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	103	oDynamicForward, oPreferredAuthentications, oHostbasedAuthentication,
Ben Lindstrom	2b7a0e9	2001-09-20 00:57:55 +0000	[diff] [blame]	104	oHostKeyAlgorithms, oBindAddress, oSmartcardDevice,
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	105	oClearAllForwardings, oNoHostAuthenticationForLocalhost,
Damien Miller	b78d5eb	2003-05-16 11:39:04 +1000	[diff] [blame]	106	oEnableSSHKeysign, oRekeyLimit, oVerifyHostKeyDNS, oConnectTimeout,
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	107	oAddressFamily, oGssAuthentication, oGssDelegateCreds,
Damien Miller	bd394c3	2004-03-08 23:12:36 +1100	[diff] [blame]	108	oServerAliveInterval, oServerAliveCountMax, oIdentitiesOnly,
Damien Miller	f9b3feb	2003-05-16 11:38:32 +1000	[diff] [blame]	109	oDeprecated, oUnsupported
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	110	} OpCodes;
				111
				112	/* Textual representations of the tokens. */
				113
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	114	static struct {
				115	const char *name;
				116	OpCodes opcode;
				117	} keywords[] = {
				118	{ "forwardagent", oForwardAgent },
				119	{ "forwardx11", oForwardX11 },
Darren Tucker	0a118da	2003-10-15 15:54:32 +1000	[diff] [blame]	120	{ "forwardx11trusted", oForwardX11Trusted },
Damien Miller	d3a1857	2000-06-07 19:55:44 +1000	[diff] [blame]	121	{ "xauthlocation", oXAuthLocation },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	122	{ "gatewayports", oGatewayPorts },
				123	{ "useprivilegedport", oUsePrivilegedPort },
Darren Tucker	ec960f2	2003-08-13 20:37:05 +1000	[diff] [blame]	124	{ "rhostsauthentication", oDeprecated },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	125	{ "passwordauthentication", oPasswordAuthentication },
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	126	{ "kbdinteractiveauthentication", oKbdInteractiveAuthentication },
				127	{ "kbdinteractivedevices", oKbdInteractiveDevices },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	128	{ "rsaauthentication", oRSAAuthentication },
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	129	{ "pubkeyauthentication", oPubkeyAuthentication },
Ben Lindstrom	95fb2dd	2001-01-23 03:12:10 +0000	[diff] [blame]	130	{ "dsaauthentication", oPubkeyAuthentication }, /* alias */
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	131	{ "rhostsrsaauthentication", oRhostsRSAAuthentication },
Ben Lindstrom	d69dab3	2001-04-12 23:36:05 +0000	[diff] [blame]	132	{ "hostbasedauthentication", oHostbasedAuthentication },
Ben Lindstrom	95fb2dd	2001-01-23 03:12:10 +0000	[diff] [blame]	133	{ "challengeresponseauthentication", oChallengeResponseAuthentication },
				134	{ "skeyauthentication", oChallengeResponseAuthentication }, /* alias */
				135	{ "tisauthentication", oChallengeResponseAuthentication }, /* alias */
Damien Miller	f9b3feb	2003-05-16 11:38:32 +1000	[diff] [blame]	136	{ "kerberosauthentication", oUnsupported },
				137	{ "kerberostgtpassing", oUnsupported },
Damien Miller	f9b3feb	2003-05-16 11:38:32 +1000	[diff] [blame]	138	{ "afstokenpassing", oUnsupported },
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	139	#if defined(GSSAPI)
				140	{ "gssapiauthentication", oGssAuthentication },
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	141	{ "gssapidelegatecredentials", oGssDelegateCreds },
				142	#else
				143	{ "gssapiauthentication", oUnsupported },
				144	{ "gssapidelegatecredentials", oUnsupported },
				145	#endif
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	146	{ "fallbacktorsh", oDeprecated },
				147	{ "usersh", oDeprecated },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	148	{ "identityfile", oIdentityFile },
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	149	{ "identityfile2", oIdentityFile }, /* alias */
Damien Miller	bd394c3	2004-03-08 23:12:36 +1100	[diff] [blame]	150	{ "identitiesonly", oIdentitiesOnly },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	151	{ "hostname", oHostName },
Ben Lindstrom	4dccfa5	2000-12-28 16:40:05 +0000	[diff] [blame]	152	{ "hostkeyalias", oHostKeyAlias },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	153	{ "proxycommand", oProxyCommand },
				154	{ "port", oPort },
				155	{ "cipher", oCipher },
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	156	{ "ciphers", oCiphers },
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	157	{ "macs", oMacs },
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	158	{ "protocol", oProtocol },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	159	{ "remoteforward", oRemoteForward },
				160	{ "localforward", oLocalForward },
				161	{ "user", oUser },
				162	{ "host", oHost },
				163	{ "escapechar", oEscapeChar },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	164	{ "globalknownhostsfile", oGlobalKnownHostsFile },
Ben Lindstrom	d6481ea	2001-06-25 04:37:41 +0000	[diff] [blame]	165	{ "userknownhostsfile", oUserKnownHostsFile }, /* obsolete */
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	166	{ "globalknownhostsfile2", oGlobalKnownHostsFile2 },
Ben Lindstrom	d6481ea	2001-06-25 04:37:41 +0000	[diff] [blame]	167	{ "userknownhostsfile2", oUserKnownHostsFile2 }, /* obsolete */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	168	{ "connectionattempts", oConnectionAttempts },
				169	{ "batchmode", oBatchMode },
				170	{ "checkhostip", oCheckHostIP },
				171	{ "stricthostkeychecking", oStrictHostKeyChecking },
				172	{ "compression", oCompression },
				173	{ "compressionlevel", oCompressionLevel },
Damien Miller	12c150e	2003-12-17 16:31:10 +1100	[diff] [blame]	174	{ "tcpkeepalive", oTCPKeepAlive },
				175	{ "keepalive", oTCPKeepAlive }, /* obsolete */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	176	{ "numberofpasswordprompts", oNumberOfPasswordPrompts },
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	177	{ "loglevel", oLogLevel },
Ben Lindstrom	3bb4f9d	2001-04-08 18:30:26 +0000	[diff] [blame]	178	{ "dynamicforward", oDynamicForward },
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	179	{ "preferredauthentications", oPreferredAuthentications },
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	180	{ "hostkeyalgorithms", oHostKeyAlgorithms },
Ben Lindstrom	e0f8804	2001-04-30 13:06:24 +0000	[diff] [blame]	181	{ "bindaddress", oBindAddress },
Damien Miller	f9b3feb	2003-05-16 11:38:32 +1000	[diff] [blame]	182	#ifdef SMARTCARD
Ben Lindstrom	ae996bf	2001-08-06 21:27:53 +0000	[diff] [blame]	183	{ "smartcarddevice", oSmartcardDevice },
Damien Miller	f9b3feb	2003-05-16 11:38:32 +1000	[diff] [blame]	184	#else
				185	{ "smartcarddevice", oUnsupported },
				186	#endif
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	187	{ "clearallforwardings", oClearAllForwardings },
Ben Lindstrom	b6df73b	2002-11-09 15:52:31 +0000	[diff] [blame]	188	{ "enablesshkeysign", oEnableSSHKeysign },
Damien Miller	37876e9	2003-05-15 10:19:46 +1000	[diff] [blame]	189	{ "verifyhostkeydns", oVerifyHostKeyDNS },
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	190	{ "nohostauthenticationforlocalhost", oNoHostAuthenticationForLocalhost },
Damien Miller	a5539d2	2003-04-09 20:50:06 +1000	[diff] [blame]	191	{ "rekeylimit", oRekeyLimit },
Damien Miller	b78d5eb	2003-05-16 11:39:04 +1000	[diff] [blame]	192	{ "connecttimeout", oConnectTimeout },
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	193	{ "addressfamily", oAddressFamily },
Damien Miller	509b010	2003-12-17 16:33:10 +1100	[diff] [blame]	194	{ "serveraliveinterval", oServerAliveInterval },
				195	{ "serveralivecountmax", oServerAliveCountMax },
Ben Lindstrom	65366a8	2001-12-06 16:32:47 +0000	[diff] [blame]	196	{ NULL, oBadOption }
Damien Miller	5ce662a	1999-11-11 17:57:39 +1100	[diff] [blame]	197	};
				198
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	199	/*
				200	* Adds a local TCP/IP port forward to options. Never returns if there is an
				201	* error.
				202	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	203
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	204	void
Damien Miller	aae6c61	1999-12-06 11:47:28 +1100	[diff] [blame]	205	add_local_forward(Options options, u_short port, const char host,
				206	u_short host_port)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	207	{
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	208	Forward *fwd;
Ben Lindstrom	99a4e14	2002-07-09 14:06:40 +0000	[diff] [blame]	209	#ifndef NO_IPPORT_RESERVED_CONCEPT
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	210	extern uid_t original_real_uid;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	211	if (port < IPPORT_RESERVED && original_real_uid != 0)
Ben Lindstrom	6df8ef4	2001-03-05 07:47:23 +0000	[diff] [blame]	212	fatal("Privileged ports can only be forwarded by root.");
Damien Miller	bac2d8a	2000-09-05 16:13:06 +1100	[diff] [blame]	213	#endif
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	214	if (options->num_local_forwards >= SSH_MAX_FORWARDS_PER_DIRECTION)
				215	fatal("Too many local forwards (max %d).", SSH_MAX_FORWARDS_PER_DIRECTION);
				216	fwd = &options->local_forwards[options->num_local_forwards++];
				217	fwd->port = port;
				218	fwd->host = xstrdup(host);
				219	fwd->host_port = host_port;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	220	}
				221
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	222	/*
				223	* Adds a remote TCP/IP port forward to options. Never returns if there is
				224	* an error.
				225	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	226
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	227	void
Damien Miller	aae6c61	1999-12-06 11:47:28 +1100	[diff] [blame]	228	add_remote_forward(Options options, u_short port, const char host,
				229	u_short host_port)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	230	{
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	231	Forward *fwd;
				232	if (options->num_remote_forwards >= SSH_MAX_FORWARDS_PER_DIRECTION)
				233	fatal("Too many remote forwards (max %d).",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	234	SSH_MAX_FORWARDS_PER_DIRECTION);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	235	fwd = &options->remote_forwards[options->num_remote_forwards++];
				236	fwd->port = port;
				237	fwd->host = xstrdup(host);
				238	fwd->host_port = host_port;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	239	}
				240
Ben Lindstrom	2b7a0e9	2001-09-20 00:57:55 +0000	[diff] [blame]	241	static void
				242	clear_forwardings(Options *options)
				243	{
				244	int i;
				245
				246	for (i = 0; i < options->num_local_forwards; i++)
				247	xfree(options->local_forwards[i].host);
				248	options->num_local_forwards = 0;
				249	for (i = 0; i < options->num_remote_forwards; i++)
				250	xfree(options->remote_forwards[i].host);
				251	options->num_remote_forwards = 0;
				252	}
				253
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	254	/*
Ben Lindstrom	3704c26	2001-04-02 18:20:03 +0000	[diff] [blame]	255	* Returns the number of the token pointed to by cp or oBadOption.
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	256	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	257
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	258	static OpCodes
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	259	parse_token(const char cp, const char filename, int linenum)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	260	{
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	261	u_int i;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	262
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	263	for (i = 0; keywords[i].name; i++)
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	264	if (strcasecmp(cp, keywords[i].name) == 0)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	265	return keywords[i].opcode;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	266
Ben Lindstrom	b5cdc66	2001-04-16 02:13:26 +0000	[diff] [blame]	267	error("%s: line %d: Bad configuration option: %s",
				268	filename, linenum, cp);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	269	return oBadOption;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	270	}
				271
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	272	/*
				273	* Processes a single option line as used in the configuration files. This
				274	* only sets those values that have not already been set.
				275	*/
Damien Miller	61f08ac	2003-02-24 11:56:27 +1100	[diff] [blame]	276	#define WHITESPACE " \t\r\n"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	277
Damien Miller	2ccf661	1999-11-15 15:25:10 +1100	[diff] [blame]	278	int
				279	process_config_line(Options options, const char host,
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	280	char line, const char filename, int linenum,
				281	int *activep)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	282	{
Damien Miller	61f08ac	2003-02-24 11:56:27 +1100	[diff] [blame]	283	char buf[256], s, charptr, endofnumber, keyword, arg;
Damien Miller	aae6c61	1999-12-06 11:47:28 +1100	[diff] [blame]	284	int opcode, *intptr, value;
Damien Miller	61f08ac	2003-02-24 11:56:27 +1100	[diff] [blame]	285	size_t len;
Damien Miller	aae6c61	1999-12-06 11:47:28 +1100	[diff] [blame]	286	u_short fwd_port, fwd_host_port;
Ben Lindstrom	62c25a4	2001-09-12 18:01:59 +0000	[diff] [blame]	287	char sfwd_host_port[6];
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	288
Damien Miller	c652cac	2003-05-14 13:40:54 +1000	[diff] [blame]	289	/* Strip trailing whitespace */
				290	for(len = strlen(line) - 1; len > 0; len--) {
				291	if (strchr(WHITESPACE, line[len]) == NULL)
				292	break;
				293	line[len] = '\0';
				294	}
				295
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	296	s = line;
				297	/* Get the keyword. (Each line is supposed to begin with a keyword). */
				298	keyword = strdelim(&s);
				299	/* Ignore leading whitespace. */
				300	if (*keyword == '\0')
				301	keyword = strdelim(&s);
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	302	if (keyword == NULL \|\| !keyword \|\| keyword == '\n' \|\| *keyword == '#')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	303	return 0;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	304
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	305	opcode = parse_token(keyword, filename, linenum);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	306
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	307	switch (opcode) {
				308	case oBadOption:
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	309	/* don't panic, but count bad options */
				310	return -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	311	/* NOTREACHED */
Damien Miller	b78d5eb	2003-05-16 11:39:04 +1000	[diff] [blame]	312	case oConnectTimeout:
				313	intptr = &options->connection_timeout;
Damien Miller	509b010	2003-12-17 16:33:10 +1100	[diff] [blame]	314	parse_time:
Damien Miller	b78d5eb	2003-05-16 11:39:04 +1000	[diff] [blame]	315	arg = strdelim(&s);
				316	if (!arg \|\| *arg == '\0')
				317	fatal("%s line %d: missing time value.",
				318	filename, linenum);
				319	if ((value = convtime(arg)) == -1)
				320	fatal("%s line %d: invalid time value.",
				321	filename, linenum);
				322	if (*intptr == -1)
				323	*intptr = value;
				324	break;
				325
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	326	case oForwardAgent:
				327	intptr = &options->forward_agent;
				328	parse_flag:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	329	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	330	if (!arg \|\| *arg == '\0')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	331	fatal("%.200s line %d: Missing yes/no argument.", filename, linenum);
				332	value = 0; /* To avoid compiler warning... */
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	333	if (strcmp(arg, "yes") == 0 \|\| strcmp(arg, "true") == 0)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	334	value = 1;
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	335	else if (strcmp(arg, "no") == 0 \|\| strcmp(arg, "false") == 0)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	336	value = 0;
				337	else
				338	fatal("%.200s line %d: Bad yes/no argument.", filename, linenum);
				339	if (activep && intptr == -1)
				340	*intptr = value;
				341	break;
				342
				343	case oForwardX11:
				344	intptr = &options->forward_x11;
				345	goto parse_flag;
				346
Darren Tucker	0a118da	2003-10-15 15:54:32 +1000	[diff] [blame]	347	case oForwardX11Trusted:
				348	intptr = &options->forward_x11_trusted;
				349	goto parse_flag;
				350
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	351	case oGatewayPorts:
				352	intptr = &options->gateway_ports;
				353	goto parse_flag;
				354
				355	case oUsePrivilegedPort:
				356	intptr = &options->use_privileged_port;
				357	goto parse_flag;
				358
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	359	case oPasswordAuthentication:
				360	intptr = &options->password_authentication;
				361	goto parse_flag;
				362
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	363	case oKbdInteractiveAuthentication:
				364	intptr = &options->kbd_interactive_authentication;
				365	goto parse_flag;
				366
				367	case oKbdInteractiveDevices:
				368	charptr = &options->kbd_interactive_devices;
				369	goto parse_string;
				370
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	371	case oPubkeyAuthentication:
				372	intptr = &options->pubkey_authentication;
Damien Miller	e247cc4	2000-05-07 12:03:14 +1000	[diff] [blame]	373	goto parse_flag;
				374
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	375	case oRSAAuthentication:
				376	intptr = &options->rsa_authentication;
				377	goto parse_flag;
				378
				379	case oRhostsRSAAuthentication:
				380	intptr = &options->rhosts_rsa_authentication;
				381	goto parse_flag;
				382
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	383	case oHostbasedAuthentication:
				384	intptr = &options->hostbased_authentication;
				385	goto parse_flag;
				386
Ben Lindstrom	95fb2dd	2001-01-23 03:12:10 +0000	[diff] [blame]	387	case oChallengeResponseAuthentication:
Ben Lindstrom	551ea37	2001-06-05 18:56:16 +0000	[diff] [blame]	388	intptr = &options->challenge_response_authentication;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	389	goto parse_flag;
Damien Miller	2aa0ab4	2003-05-15 12:05:28 +1000	[diff] [blame]	390
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	391	case oGssAuthentication:
				392	intptr = &options->gss_authentication;
				393	goto parse_flag;
				394
				395	case oGssDelegateCreds:
				396	intptr = &options->gss_deleg_creds;
				397	goto parse_flag;
				398
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	399	case oBatchMode:
				400	intptr = &options->batch_mode;
				401	goto parse_flag;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	402
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	403	case oCheckHostIP:
				404	intptr = &options->check_host_ip;
				405	goto parse_flag;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	406
Damien Miller	37876e9	2003-05-15 10:19:46 +1000	[diff] [blame]	407	case oVerifyHostKeyDNS:
				408	intptr = &options->verify_host_key_dns;
Damien Miller	150b557	2003-11-17 21:19:29 +1100	[diff] [blame]	409	goto parse_yesnoask;
Damien Miller	37876e9	2003-05-15 10:19:46 +1000	[diff] [blame]	410
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	411	case oStrictHostKeyChecking:
				412	intptr = &options->strict_host_key_checking;
Damien Miller	150b557	2003-11-17 21:19:29 +1100	[diff] [blame]	413	parse_yesnoask:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	414	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	415	if (!arg \|\| *arg == '\0')
Ben Lindstrom	5ed8acd	2001-01-29 08:00:54 +0000	[diff] [blame]	416	fatal("%.200s line %d: Missing yes/no/ask argument.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	417	filename, linenum);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	418	value = 0; /* To avoid compiler warning... */
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	419	if (strcmp(arg, "yes") == 0 \|\| strcmp(arg, "true") == 0)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	420	value = 1;
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	421	else if (strcmp(arg, "no") == 0 \|\| strcmp(arg, "false") == 0)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	422	value = 0;
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	423	else if (strcmp(arg, "ask") == 0)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	424	value = 2;
				425	else
				426	fatal("%.200s line %d: Bad yes/no/ask argument.", filename, linenum);
				427	if (activep && intptr == -1)
				428	*intptr = value;
				429	break;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	430
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	431	case oCompression:
				432	intptr = &options->compression;
				433	goto parse_flag;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	434
Damien Miller	12c150e	2003-12-17 16:31:10 +1100	[diff] [blame]	435	case oTCPKeepAlive:
				436	intptr = &options->tcp_keep_alive;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	437	goto parse_flag;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	438
Ben Lindstrom	3cecc9a	2001-10-03 17:39:38 +0000	[diff] [blame]	439	case oNoHostAuthenticationForLocalhost:
				440	intptr = &options->no_host_authentication_for_localhost;
				441	goto parse_flag;
				442
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	443	case oNumberOfPasswordPrompts:
				444	intptr = &options->number_of_password_prompts;
				445	goto parse_int;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	446
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	447	case oCompressionLevel:
				448	intptr = &options->compression_level;
				449	goto parse_int;
				450
Damien Miller	a5539d2	2003-04-09 20:50:06 +1000	[diff] [blame]	451	case oRekeyLimit:
				452	intptr = &options->rekey_limit;
				453	arg = strdelim(&s);
				454	if (!arg \|\| *arg == '\0')
				455	fatal("%.200s line %d: Missing argument.", filename, linenum);
				456	if (arg[0] < '0' \|\| arg[0] > '9')
				457	fatal("%.200s line %d: Bad number.", filename, linenum);
				458	value = strtol(arg, &endofnumber, 10);
				459	if (arg == endofnumber)
				460	fatal("%.200s line %d: Bad number.", filename, linenum);
				461	switch (toupper(*endofnumber)) {
				462	case 'K':
				463	value *= 1<<10;
				464	break;
				465	case 'M':
				466	value *= 1<<20;
				467	break;
				468	case 'G':
				469	value *= 1<<30;
				470	break;
				471	}
				472	if (activep && intptr == -1)
				473	*intptr = value;
				474	break;
				475
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	476	case oIdentityFile:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	477	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	478	if (!arg \|\| *arg == '\0')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	479	fatal("%.200s line %d: Missing argument.", filename, linenum);
				480	if (*activep) {
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	481	intptr = &options->num_identity_files;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	482	if (*intptr >= SSH_MAX_IDENTITY_FILES)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	483	fatal("%.200s line %d: Too many identity files specified (max %d).",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	484	filename, linenum, SSH_MAX_IDENTITY_FILES);
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	485	charptr = &options->identity_files[*intptr];
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	486	*charptr = xstrdup(arg);
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	487	intptr = intptr + 1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	488	}
				489	break;
				490
Damien Miller	d3a1857	2000-06-07 19:55:44 +1000	[diff] [blame]	491	case oXAuthLocation:
				492	charptr=&options->xauth_location;
				493	goto parse_string;
				494
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	495	case oUser:
				496	charptr = &options->user;
				497	parse_string:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	498	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	499	if (!arg \|\| *arg == '\0')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	500	fatal("%.200s line %d: Missing argument.", filename, linenum);
				501	if (activep && charptr == NULL)
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	502	*charptr = xstrdup(arg);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	503	break;
				504
				505	case oGlobalKnownHostsFile:
				506	charptr = &options->system_hostfile;
				507	goto parse_string;
				508
				509	case oUserKnownHostsFile:
				510	charptr = &options->user_hostfile;
				511	goto parse_string;
				512
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	513	case oGlobalKnownHostsFile2:
				514	charptr = &options->system_hostfile2;
				515	goto parse_string;
				516
				517	case oUserKnownHostsFile2:
				518	charptr = &options->user_hostfile2;
				519	goto parse_string;
				520
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	521	case oHostName:
				522	charptr = &options->hostname;
				523	goto parse_string;
				524
Ben Lindstrom	4dccfa5	2000-12-28 16:40:05 +0000	[diff] [blame]	525	case oHostKeyAlias:
				526	charptr = &options->host_key_alias;
				527	goto parse_string;
				528
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	529	case oPreferredAuthentications:
				530	charptr = &options->preferred_authentications;
				531	goto parse_string;
				532
Ben Lindstrom	e0f8804	2001-04-30 13:06:24 +0000	[diff] [blame]	533	case oBindAddress:
				534	charptr = &options->bind_address;
				535	goto parse_string;
				536
Ben Lindstrom	ae996bf	2001-08-06 21:27:53 +0000	[diff] [blame]	537	case oSmartcardDevice:
Ben Lindstrom	f7db3bb	2001-08-06 21:35:51 +0000	[diff] [blame]	538	charptr = &options->smartcard_device;
				539	goto parse_string;
Ben Lindstrom	ae996bf	2001-08-06 21:27:53 +0000	[diff] [blame]	540
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	541	case oProxyCommand:
Darren Tucker	a99c1b7	2003-06-28 12:40:12 +1000	[diff] [blame]	542	if (s == NULL)
				543	fatal("%.200s line %d: Missing argument.", filename, linenum);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	544	charptr = &options->proxy_command;
Damien Miller	61f08ac	2003-02-24 11:56:27 +1100	[diff] [blame]	545	len = strspn(s, WHITESPACE "=");
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	546	if (activep && charptr == NULL)
Damien Miller	61f08ac	2003-02-24 11:56:27 +1100	[diff] [blame]	547	*charptr = xstrdup(s + len);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	548	return 0;
				549
				550	case oPort:
				551	intptr = &options->port;
				552	parse_int:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	553	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	554	if (!arg \|\| *arg == '\0')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	555	fatal("%.200s line %d: Missing argument.", filename, linenum);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	556	if (arg[0] < '0' \|\| arg[0] > '9')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	557	fatal("%.200s line %d: Bad number.", filename, linenum);
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	558
				559	/* Octal, decimal, or hex format? */
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	560	value = strtol(arg, &endofnumber, 0);
				561	if (arg == endofnumber)
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	562	fatal("%.200s line %d: Bad number.", filename, linenum);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	563	if (activep && intptr == -1)
				564	*intptr = value;
				565	break;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	566
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	567	case oConnectionAttempts:
				568	intptr = &options->connection_attempts;
				569	goto parse_int;
Damien Miller	5ce662a	1999-11-11 17:57:39 +1100	[diff] [blame]	570
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	571	case oCipher:
				572	intptr = &options->cipher;
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	573	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	574	if (!arg \|\| *arg == '\0')
Damien Miller	b1715dc	2000-05-30 13:44:51 +1000	[diff] [blame]	575	fatal("%.200s line %d: Missing argument.", filename, linenum);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	576	value = cipher_number(arg);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	577	if (value == -1)
				578	fatal("%.200s line %d: Bad cipher '%s'.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	579	filename, linenum, arg ? arg : "<NONE>");
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	580	if (activep && intptr == -1)
				581	*intptr = value;
				582	break;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	583
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	584	case oCiphers:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	585	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	586	if (!arg \|\| *arg == '\0')
Damien Miller	b1715dc	2000-05-30 13:44:51 +1000	[diff] [blame]	587	fatal("%.200s line %d: Missing argument.", filename, linenum);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	588	if (!ciphers_valid(arg))
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	589	fatal("%.200s line %d: Bad SSH2 cipher spec '%s'.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	590	filename, linenum, arg ? arg : "<NONE>");
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	591	if (*activep && options->ciphers == NULL)
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	592	options->ciphers = xstrdup(arg);
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	593	break;
				594
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	595	case oMacs:
				596	arg = strdelim(&s);
				597	if (!arg \|\| *arg == '\0')
				598	fatal("%.200s line %d: Missing argument.", filename, linenum);
				599	if (!mac_valid(arg))
				600	fatal("%.200s line %d: Bad SSH2 Mac spec '%s'.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	601	filename, linenum, arg ? arg : "<NONE>");
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	602	if (*activep && options->macs == NULL)
				603	options->macs = xstrdup(arg);
				604	break;
				605
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	606	case oHostKeyAlgorithms:
				607	arg = strdelim(&s);
				608	if (!arg \|\| *arg == '\0')
				609	fatal("%.200s line %d: Missing argument.", filename, linenum);
				610	if (!key_names_valid2(arg))
				611	fatal("%.200s line %d: Bad protocol 2 host key algorithms '%s'.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	612	filename, linenum, arg ? arg : "<NONE>");
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	613	if (*activep && options->hostkeyalgorithms == NULL)
				614	options->hostkeyalgorithms = xstrdup(arg);
				615	break;
				616
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	617	case oProtocol:
				618	intptr = &options->protocol;
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	619	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	620	if (!arg \|\| *arg == '\0')
Damien Miller	b1715dc	2000-05-30 13:44:51 +1000	[diff] [blame]	621	fatal("%.200s line %d: Missing argument.", filename, linenum);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	622	value = proto_spec(arg);
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	623	if (value == SSH_PROTO_UNKNOWN)
				624	fatal("%.200s line %d: Bad protocol spec '%s'.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	625	filename, linenum, arg ? arg : "<NONE>");
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	626	if (activep && intptr == SSH_PROTO_UNKNOWN)
				627	*intptr = value;
				628	break;
				629
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	630	case oLogLevel:
				631	intptr = (int *) &options->log_level;
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	632	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	633	value = log_level_number(arg);
Damien Miller	fcd9320	2002-02-05 12:26:34 +1100	[diff] [blame]	634	if (value == SYSLOG_LEVEL_NOT_SET)
Ben Lindstrom	6df8ef4	2001-03-05 07:47:23 +0000	[diff] [blame]	635	fatal("%.200s line %d: unsupported log level '%s'",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	636	filename, linenum, arg ? arg : "<NONE>");
Damien Miller	fcd9320	2002-02-05 12:26:34 +1100	[diff] [blame]	637	if (activep && (LogLevel) intptr == SYSLOG_LEVEL_NOT_SET)
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	638	*intptr = (LogLevel) value;
				639	break;
				640
Ben Lindstrom	62c25a4	2001-09-12 18:01:59 +0000	[diff] [blame]	641	case oLocalForward:
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	642	case oRemoteForward:
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	643	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	644	if (!arg \|\| *arg == '\0')
Ben Lindstrom	62c25a4	2001-09-12 18:01:59 +0000	[diff] [blame]	645	fatal("%.200s line %d: Missing port argument.",
				646	filename, linenum);
				647	if ((fwd_port = a2port(arg)) == 0)
				648	fatal("%.200s line %d: Bad listen port.",
				649	filename, linenum);
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	650	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	651	if (!arg \|\| *arg == '\0')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	652	fatal("%.200s line %d: Missing second argument.",
Ben Lindstrom	62c25a4	2001-09-12 18:01:59 +0000	[diff] [blame]	653	filename, linenum);
				654	if (sscanf(arg, "%255[^:]:%5[0-9]", buf, sfwd_host_port) != 2 &&
				655	sscanf(arg, "%255[^/]/%5[0-9]", buf, sfwd_host_port) != 2)
				656	fatal("%.200s line %d: Bad forwarding specification.",
				657	filename, linenum);
				658	if ((fwd_host_port = a2port(sfwd_host_port)) == 0)
				659	fatal("%.200s line %d: Bad forwarding port.",
				660	filename, linenum);
				661	if (*activep) {
				662	if (opcode == oLocalForward)
				663	add_local_forward(options, fwd_port, buf,
				664	fwd_host_port);
				665	else if (opcode == oRemoteForward)
				666	add_remote_forward(options, fwd_port, buf,
				667	fwd_host_port);
				668	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	669	break;
				670
Ben Lindstrom	3bb4f9d	2001-04-08 18:30:26 +0000	[diff] [blame]	671	case oDynamicForward:
				672	arg = strdelim(&s);
				673	if (!arg \|\| *arg == '\0')
				674	fatal("%.200s line %d: Missing port argument.",
				675	filename, linenum);
Ben Lindstrom	19066a1	2001-04-12 23:39:26 +0000	[diff] [blame]	676	fwd_port = a2port(arg);
				677	if (fwd_port == 0)
Ben Lindstrom	3bb4f9d	2001-04-08 18:30:26 +0000	[diff] [blame]	678	fatal("%.200s line %d: Badly formatted port number.",
				679	filename, linenum);
Ben Lindstrom	525a093	2001-09-12 17:35:27 +0000	[diff] [blame]	680	if (*activep)
Darren Tucker	1c52ee3	2003-08-13 20:38:36 +1000	[diff] [blame]	681	add_local_forward(options, fwd_port, "socks", 0);
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	682	break;
Ben Lindstrom	3bb4f9d	2001-04-08 18:30:26 +0000	[diff] [blame]	683
Ben Lindstrom	2b7a0e9	2001-09-20 00:57:55 +0000	[diff] [blame]	684	case oClearAllForwardings:
				685	intptr = &options->clear_forwardings;
				686	goto parse_flag;
				687
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	688	case oHost:
				689	*activep = 0;
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	690	while ((arg = strdelim(&s)) != NULL && *arg != '\0')
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	691	if (match_pattern(host, arg)) {
				692	debug("Applying options for %.100s", arg);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	693	*activep = 1;
				694	break;
				695	}
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	696	/* Avoid garbage check below, as strdelim is done. */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	697	return 0;
				698
				699	case oEscapeChar:
				700	intptr = &options->escape_char;
Damien Miller	be484b5	2000-07-15 14:14:16 +1000	[diff] [blame]	701	arg = strdelim(&s);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	702	if (!arg \|\| *arg == '\0')
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	703	fatal("%.200s line %d: Missing argument.", filename, linenum);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	704	if (arg[0] == '^' && arg[2] == 0 &&
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	705	(u_char) arg[1] >= 64 && (u_char) arg[1] < 128)
				706	value = (u_char) arg[1] & 31;
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	707	else if (strlen(arg) == 1)
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	708	value = (u_char) arg[0];
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	709	else if (strcmp(arg, "none") == 0)
Ben Lindstrom	2b1f71b	2001-06-05 20:32:21 +0000	[diff] [blame]	710	value = SSH_ESCAPECHAR_NONE;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	711	else {
				712	fatal("%.200s line %d: Bad escape character.",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	713	filename, linenum);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	714	/* NOTREACHED */
				715	value = 0; /* Avoid compiler warning. */
				716	}
				717	if (activep && intptr == -1)
				718	*intptr = value;
				719	break;
				720
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	721	case oAddressFamily:
				722	arg = strdelim(&s);
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	723	intptr = &options->address_family;
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	724	if (strcasecmp(arg, "inet") == 0)
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	725	value = AF_INET;
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	726	else if (strcasecmp(arg, "inet6") == 0)
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	727	value = AF_INET6;
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	728	else if (strcasecmp(arg, "any") == 0)
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	729	value = AF_UNSPEC;
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	730	else
				731	fatal("Unsupported AddressFamily \"%s\"", arg);
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	732	if (activep && intptr == -1)
				733	*intptr = value;
Damien Miller	20a8f97	2003-05-18 20:50:30 +1000	[diff] [blame]	734	break;
				735
Ben Lindstrom	b6df73b	2002-11-09 15:52:31 +0000	[diff] [blame]	736	case oEnableSSHKeysign:
				737	intptr = &options->enable_ssh_keysign;
				738	goto parse_flag;
				739
Damien Miller	bd394c3	2004-03-08 23:12:36 +1100	[diff] [blame]	740	case oIdentitiesOnly:
				741	intptr = &options->identities_only;
				742	goto parse_flag;
				743
Damien Miller	509b010	2003-12-17 16:33:10 +1100	[diff] [blame]	744	case oServerAliveInterval:
				745	intptr = &options->server_alive_interval;
				746	goto parse_time;
				747
				748	case oServerAliveCountMax:
				749	intptr = &options->server_alive_count_max;
				750	goto parse_int;
				751
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	752	case oDeprecated:
Ben Lindstrom	2e17b08	2002-06-09 20:13:27 +0000	[diff] [blame]	753	debug("%s line %d: Deprecated option \"%s\"",
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	754	filename, linenum, keyword);
Ben Lindstrom	2e17b08	2002-06-09 20:13:27 +0000	[diff] [blame]	755	return 0;
Ben Lindstrom	4daea86	2002-06-09 20:04:02 +0000	[diff] [blame]	756
Damien Miller	f9b3feb	2003-05-16 11:38:32 +1000	[diff] [blame]	757	case oUnsupported:
				758	error("%s line %d: Unsupported option \"%s\"",
				759	filename, linenum, keyword);
				760	return 0;
				761
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	762	default:
				763	fatal("process_config_line: Unimplemented opcode %d", opcode);
				764	}
				765
				766	/* Check that there is no garbage at end of line. */
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	767	if ((arg = strdelim(&s)) != NULL && *arg != '\0') {
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	768	fatal("%.200s line %d: garbage at end of line; \"%.200s\".",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	769	filename, linenum, arg);
Damien Miller	3702396	2000-07-11 17:31:38 +1000	[diff] [blame]	770	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	771	return 0;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	772	}
				773
				774
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	775	/*
				776	* Reads the config file and modifies the options accordingly. Options
				777	* should already be initialized before this call. This never returns if
Ben Lindstrom	edc0cf2	2001-09-12 18:32:20 +0000	[diff] [blame]	778	* there is an error. If the file does not exist, this returns 0.
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	779	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	780
Ben Lindstrom	edc0cf2	2001-09-12 18:32:20 +0000	[diff] [blame]	781	int
Damien Miller	57a4476	2004-04-20 20:11:57 +1000	[diff] [blame]	782	read_config_file(const char filename, const char host, Options *options,
				783	int checkperm)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	784	{
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	785	FILE *f;
				786	char line[1024];
				787	int active, linenum;
				788	int bad_options = 0;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	789
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	790	/* Open the file. */
Damien Miller	57a4476	2004-04-20 20:11:57 +1000	[diff] [blame]	791	if ((f = fopen(filename, "r")) == NULL)
Ben Lindstrom	edc0cf2	2001-09-12 18:32:20 +0000	[diff] [blame]	792	return 0;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	793
Damien Miller	57a4476	2004-04-20 20:11:57 +1000	[diff] [blame]	794	if (checkperm) {
				795	struct stat sb;
				796
				797	if (fstat(fileno(f), &sb) == -1) {
				798	fatal("fstat %s: %s", filename, strerror(errno));
				799	fclose(f);
				800	return (0);
				801	}
				802	if (((sb.st_uid != 0 && sb.st_uid != getuid()) \|\|
				803	(sb.st_mode & 022) != 0)) {
				804	fatal("Bad owner or permissions on %s", filename);
				805	return 0;
				806	}
				807	}
				808
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	809	debug("Reading configuration data %.200s", filename);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	810
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	811	/*
				812	* Mark that we are now processing the options. This flag is turned
				813	* on/off by Host specifications.
				814	*/
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	815	active = 1;
				816	linenum = 0;
				817	while (fgets(line, sizeof(line), f)) {
				818	/* Update line number counter. */
				819	linenum++;
				820	if (process_config_line(options, host, line, filename, linenum, &active) != 0)
				821	bad_options++;
				822	}
				823	fclose(f);
				824	if (bad_options > 0)
Ben Lindstrom	6df8ef4	2001-03-05 07:47:23 +0000	[diff] [blame]	825	fatal("%s: terminating, %d bad configuration options",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	826	filename, bad_options);
Ben Lindstrom	edc0cf2	2001-09-12 18:32:20 +0000	[diff] [blame]	827	return 1;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	828	}
				829
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	830	/*
				831	* Initializes options to special values that indicate that they have not yet
				832	* been set. Read_config_file will only set options with this value. Options
				833	* are processed in the following order: command line, user config file,
				834	* system config file. Last, fill_default_options is called.
				835	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	836
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	837	void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	838	initialize_options(Options * options)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	839	{
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	840	memset(options, 'X', sizeof(*options));
				841	options->forward_agent = -1;
				842	options->forward_x11 = -1;
Darren Tucker	0a118da	2003-10-15 15:54:32 +1000	[diff] [blame]	843	options->forward_x11_trusted = -1;
Damien Miller	d3a1857	2000-06-07 19:55:44 +1000	[diff] [blame]	844	options->xauth_location = NULL;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	845	options->gateway_ports = -1;
				846	options->use_privileged_port = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	847	options->rsa_authentication = -1;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	848	options->pubkey_authentication = -1;
Ben Lindstrom	551ea37	2001-06-05 18:56:16 +0000	[diff] [blame]	849	options->challenge_response_authentication = -1;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	850	options->gss_authentication = -1;
				851	options->gss_deleg_creds = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	852	options->password_authentication = -1;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	853	options->kbd_interactive_authentication = -1;
				854	options->kbd_interactive_devices = NULL;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	855	options->rhosts_rsa_authentication = -1;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	856	options->hostbased_authentication = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	857	options->batch_mode = -1;
				858	options->check_host_ip = -1;
				859	options->strict_host_key_checking = -1;
				860	options->compression = -1;
Damien Miller	12c150e	2003-12-17 16:31:10 +1100	[diff] [blame]	861	options->tcp_keep_alive = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	862	options->compression_level = -1;
				863	options->port = -1;
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	864	options->address_family = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	865	options->connection_attempts = -1;
Damien Miller	b78d5eb	2003-05-16 11:39:04 +1000	[diff] [blame]	866	options->connection_timeout = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	867	options->number_of_password_prompts = -1;
				868	options->cipher = -1;
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	869	options->ciphers = NULL;
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	870	options->macs = NULL;
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	871	options->hostkeyalgorithms = NULL;
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	872	options->protocol = SSH_PROTO_UNKNOWN;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	873	options->num_identity_files = 0;
				874	options->hostname = NULL;
Ben Lindstrom	4dccfa5	2000-12-28 16:40:05 +0000	[diff] [blame]	875	options->host_key_alias = NULL;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	876	options->proxy_command = NULL;
				877	options->user = NULL;
				878	options->escape_char = -1;
				879	options->system_hostfile = NULL;
				880	options->user_hostfile = NULL;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	881	options->system_hostfile2 = NULL;
				882	options->user_hostfile2 = NULL;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	883	options->num_local_forwards = 0;
				884	options->num_remote_forwards = 0;
Ben Lindstrom	2b7a0e9	2001-09-20 00:57:55 +0000	[diff] [blame]	885	options->clear_forwardings = -1;
Damien Miller	fcd9320	2002-02-05 12:26:34 +1100	[diff] [blame]	886	options->log_level = SYSLOG_LEVEL_NOT_SET;
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	887	options->preferred_authentications = NULL;
Ben Lindstrom	e0f8804	2001-04-30 13:06:24 +0000	[diff] [blame]	888	options->bind_address = NULL;
Ben Lindstrom	f7db3bb	2001-08-06 21:35:51 +0000	[diff] [blame]	889	options->smartcard_device = NULL;
Ben Lindstrom	b6df73b	2002-11-09 15:52:31 +0000	[diff] [blame]	890	options->enable_ssh_keysign = - 1;
Ben Lindstrom	3cecc9a	2001-10-03 17:39:38 +0000	[diff] [blame]	891	options->no_host_authentication_for_localhost = - 1;
Damien Miller	bd394c3	2004-03-08 23:12:36 +1100	[diff] [blame]	892	options->identities_only = - 1;
Damien Miller	a5539d2	2003-04-09 20:50:06 +1000	[diff] [blame]	893	options->rekey_limit = - 1;
Damien Miller	37876e9	2003-05-15 10:19:46 +1000	[diff] [blame]	894	options->verify_host_key_dns = -1;
Damien Miller	509b010	2003-12-17 16:33:10 +1100	[diff] [blame]	895	options->server_alive_interval = -1;
				896	options->server_alive_count_max = -1;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	897	}
				898
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	899	/*
				900	* Called after processing other sources of option data, this fills those
				901	* options for which no value has been specified with their default values.
				902	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	903
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	904	void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	905	fill_default_options(Options * options)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	906	{
Ben Lindstrom	4f7a64a	2001-02-10 22:50:09 +0000	[diff] [blame]	907	int len;
				908
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	909	if (options->forward_agent == -1)
Damien Miller	b1715dc	2000-05-30 13:44:51 +1000	[diff] [blame]	910	options->forward_agent = 0;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	911	if (options->forward_x11 == -1)
Damien Miller	98c7ad6	2000-03-09 21:27:49 +1100	[diff] [blame]	912	options->forward_x11 = 0;
Darren Tucker	0a118da	2003-10-15 15:54:32 +1000	[diff] [blame]	913	if (options->forward_x11_trusted == -1)
				914	options->forward_x11_trusted = 0;
Damien Miller	d3a1857	2000-06-07 19:55:44 +1000	[diff] [blame]	915	if (options->xauth_location == NULL)
Ben Lindstrom	1bf11f6	2001-06-09 01:48:01 +0000	[diff] [blame]	916	options->xauth_location = _PATH_XAUTH;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	917	if (options->gateway_ports == -1)
				918	options->gateway_ports = 0;
				919	if (options->use_privileged_port == -1)
Ben Lindstrom	cebc858	2001-03-08 03:39:10 +0000	[diff] [blame]	920	options->use_privileged_port = 0;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	921	if (options->rsa_authentication == -1)
				922	options->rsa_authentication = 1;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	923	if (options->pubkey_authentication == -1)
				924	options->pubkey_authentication = 1;
Ben Lindstrom	551ea37	2001-06-05 18:56:16 +0000	[diff] [blame]	925	if (options->challenge_response_authentication == -1)
Ben Lindstrom	0076d75	2001-08-06 20:53:26 +0000	[diff] [blame]	926	options->challenge_response_authentication = 1;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	927	if (options->gss_authentication == -1)
Darren Tucker	a044f47	2003-10-15 15:52:03 +1000	[diff] [blame]	928	options->gss_authentication = 0;
Darren Tucker	0efd155	2003-08-26 11:49:55 +1000	[diff] [blame]	929	if (options->gss_deleg_creds == -1)
				930	options->gss_deleg_creds = 0;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	931	if (options->password_authentication == -1)
				932	options->password_authentication = 1;
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	933	if (options->kbd_interactive_authentication == -1)
Ben Lindstrom	95fb2dd	2001-01-23 03:12:10 +0000	[diff] [blame]	934	options->kbd_interactive_authentication = 1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	935	if (options->rhosts_rsa_authentication == -1)
Ben Lindstrom	2bf8276	2002-06-11 15:53:05 +0000	[diff] [blame]	936	options->rhosts_rsa_authentication = 0;
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	937	if (options->hostbased_authentication == -1)
				938	options->hostbased_authentication = 0;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	939	if (options->batch_mode == -1)
				940	options->batch_mode = 0;
				941	if (options->check_host_ip == -1)
				942	options->check_host_ip = 1;
				943	if (options->strict_host_key_checking == -1)
				944	options->strict_host_key_checking = 2; /* 2 is default */
				945	if (options->compression == -1)
				946	options->compression = 0;
Damien Miller	12c150e	2003-12-17 16:31:10 +1100	[diff] [blame]	947	if (options->tcp_keep_alive == -1)
				948	options->tcp_keep_alive = 1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	949	if (options->compression_level == -1)
				950	options->compression_level = 6;
				951	if (options->port == -1)
				952	options->port = 0; /* Filled in ssh_connect. */
Darren Tucker	0a4f04b	2003-07-03 20:37:47 +1000	[diff] [blame]	953	if (options->address_family == -1)
				954	options->address_family = AF_UNSPEC;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	955	if (options->connection_attempts == -1)
Ben Lindstrom	f9cedb9	2001-08-06 21:07:11 +0000	[diff] [blame]	956	options->connection_attempts = 1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	957	if (options->number_of_password_prompts == -1)
				958	options->number_of_password_prompts = 3;
				959	/* Selected in ssh_login(). */
				960	if (options->cipher == -1)
				961	options->cipher = SSH_CIPHER_NOT_SET;
Damien Miller	30c3d42	2000-05-09 11:02:59 +1000	[diff] [blame]	962	/* options->ciphers, default set in myproposals.h */
Ben Lindstrom	06b33aa	2001-02-15 03:01:59 +0000	[diff] [blame]	963	/* options->macs, default set in myproposals.h */
Ben Lindstrom	982dbbc	2001-04-17 18:11:36 +0000	[diff] [blame]	964	/* options->hostkeyalgorithms, default set in myproposals.h */
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	965	if (options->protocol == SSH_PROTO_UNKNOWN)
Ben Lindstrom	6b77643	2001-03-22 01:24:04 +0000	[diff] [blame]	966	options->protocol = SSH_PROTO_1\|SSH_PROTO_2;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	967	if (options->num_identity_files == 0) {
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	968	if (options->protocol & SSH_PROTO_1) {
Ben Lindstrom	4f7a64a	2001-02-10 22:50:09 +0000	[diff] [blame]	969	len = 2 + strlen(_PATH_SSH_CLIENT_IDENTITY) + 1;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	970	options->identity_files[options->num_identity_files] =
Ben Lindstrom	4f7a64a	2001-02-10 22:50:09 +0000	[diff] [blame]	971	xmalloc(len);
				972	snprintf(options->identity_files[options->num_identity_files++],
				973	len, "~/%.100s", _PATH_SSH_CLIENT_IDENTITY);
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	974	}
				975	if (options->protocol & SSH_PROTO_2) {
Ben Lindstrom	b00d4fb	2001-03-05 06:03:03 +0000	[diff] [blame]	976	len = 2 + strlen(_PATH_SSH_CLIENT_ID_RSA) + 1;
				977	options->identity_files[options->num_identity_files] =
				978	xmalloc(len);
				979	snprintf(options->identity_files[options->num_identity_files++],
				980	len, "~/%.100s", _PATH_SSH_CLIENT_ID_RSA);
				981
Ben Lindstrom	4f7a64a	2001-02-10 22:50:09 +0000	[diff] [blame]	982	len = 2 + strlen(_PATH_SSH_CLIENT_ID_DSA) + 1;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	983	options->identity_files[options->num_identity_files] =
Ben Lindstrom	4f7a64a	2001-02-10 22:50:09 +0000	[diff] [blame]	984	xmalloc(len);
				985	snprintf(options->identity_files[options->num_identity_files++],
				986	len, "~/%.100s", _PATH_SSH_CLIENT_ID_DSA);
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	987	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	988	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	989	if (options->escape_char == -1)
				990	options->escape_char = '~';
				991	if (options->system_hostfile == NULL)
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	992	options->system_hostfile = _PATH_SSH_SYSTEM_HOSTFILE;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	993	if (options->user_hostfile == NULL)
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	994	options->user_hostfile = _PATH_SSH_USER_HOSTFILE;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	995	if (options->system_hostfile2 == NULL)
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	996	options->system_hostfile2 = _PATH_SSH_SYSTEM_HOSTFILE2;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	997	if (options->user_hostfile2 == NULL)
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	998	options->user_hostfile2 = _PATH_SSH_USER_HOSTFILE2;
Damien Miller	fcd9320	2002-02-05 12:26:34 +1100	[diff] [blame]	999	if (options->log_level == SYSLOG_LEVEL_NOT_SET)
Ben Lindstrom	db65e8f	2001-01-19 04:26:52 +0000	[diff] [blame]	1000	options->log_level = SYSLOG_LEVEL_INFO;
Ben Lindstrom	2b7a0e9	2001-09-20 00:57:55 +0000	[diff] [blame]	1001	if (options->clear_forwardings == 1)
				1002	clear_forwardings(options);
Ben Lindstrom	3cecc9a	2001-10-03 17:39:38 +0000	[diff] [blame]	1003	if (options->no_host_authentication_for_localhost == - 1)
				1004	options->no_host_authentication_for_localhost = 0;
Damien Miller	bd394c3	2004-03-08 23:12:36 +1100	[diff] [blame]	1005	if (options->identities_only == -1)
				1006	options->identities_only = 0;
Ben Lindstrom	b6df73b	2002-11-09 15:52:31 +0000	[diff] [blame]	1007	if (options->enable_ssh_keysign == -1)
				1008	options->enable_ssh_keysign = 0;
Damien Miller	a5539d2	2003-04-09 20:50:06 +1000	[diff] [blame]	1009	if (options->rekey_limit == -1)
				1010	options->rekey_limit = 0;
Damien Miller	37876e9	2003-05-15 10:19:46 +1000	[diff] [blame]	1011	if (options->verify_host_key_dns == -1)
				1012	options->verify_host_key_dns = 0;
Damien Miller	509b010	2003-12-17 16:33:10 +1100	[diff] [blame]	1013	if (options->server_alive_interval == -1)
				1014	options->server_alive_interval = 0;
				1015	if (options->server_alive_count_max == -1)
				1016	options->server_alive_count_max = 3;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1017	/* options->proxy_command should not be set by default */
				1018	/* options->user will be set in the main program if appropriate */
				1019	/* options->hostname will be set in the main program if appropriate */
Ben Lindstrom	4dccfa5	2000-12-28 16:40:05 +0000	[diff] [blame]	1020	/* options->host_key_alias should not be set by default */
Ben Lindstrom	b9be60a	2001-03-11 01:49:19 +0000	[diff] [blame]	1021	/* options->preferred_authentications will be set in ssh */
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1022	}