blob: 46f693a8ef2819a1d322eda98144c08934dd7442 [file] [log] [blame]
djm@openbsd.org70d38c32020-01-21 22:39:57 +00001/* $OpenBSD: sshd.c,v 1.543 2020/01/21 22:39:57 djm Exp $ */
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002/*
Damien Miller95def091999-11-25 00:26:21 +11003 * Author: Tatu Ylonen <ylo@cs.hut.fi>
4 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5 * All rights reserved
Damien Millere4340be2000-09-16 13:29:08 +11006 * This program is the ssh daemon. It listens for connections from clients,
7 * and performs authentication, executes use commands or shell, and forwards
Damien Miller95def091999-11-25 00:26:21 +11008 * information to/from the application to the user client over an encrypted
Damien Millere4340be2000-09-16 13:29:08 +11009 * connection. This can also handle forwarding of X11, TCP/IP, and
10 * authentication agent connections.
Damien Millerefb4afe2000-04-12 18:45:05 +100011 *
Damien Millere4340be2000-09-16 13:29:08 +110012 * As far as I am concerned, the code I have written for this software
13 * can be used freely for any purpose. Any derived versions of this
14 * software must be clearly marked as such, and if the derived work is
15 * incompatible with the protocol description in the RFC file, it must be
16 * called by a name other than "ssh" or "Secure Shell".
17 *
18 * SSH2 implementation:
Ben Lindstrom7a2073c2002-03-22 02:30:41 +000019 * Privilege Separation:
Damien Millere4340be2000-09-16 13:29:08 +110020 *
Ben Lindstrom7a2073c2002-03-22 02:30:41 +000021 * Copyright (c) 2000, 2001, 2002 Markus Friedl. All rights reserved.
22 * Copyright (c) 2002 Niels Provos. All rights reserved.
Damien Millere4340be2000-09-16 13:29:08 +110023 *
24 * Redistribution and use in source and binary forms, with or without
25 * modification, are permitted provided that the following conditions
26 * are met:
27 * 1. Redistributions of source code must retain the above copyright
28 * notice, this list of conditions and the following disclaimer.
29 * 2. Redistributions in binary form must reproduce the above copyright
30 * notice, this list of conditions and the following disclaimer in the
31 * documentation and/or other materials provided with the distribution.
32 *
33 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
34 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
35 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
36 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
37 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
38 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
39 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
40 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
41 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
42 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
Damien Miller95def091999-11-25 00:26:21 +110043 */
Damien Millerd4a8b7e1999-10-27 13:42:43 +100044
45#include "includes.h"
Damien Miller17e91c02006-03-15 11:28:34 +110046
Damien Miller9cf6d072006-03-15 11:29:24 +110047#include <sys/types.h>
Damien Millerd7834352006-08-05 12:39:39 +100048#include <sys/ioctl.h>
49#include <sys/socket.h>
Damien Millerf17883e2006-03-15 11:45:54 +110050#ifdef HAVE_SYS_STAT_H
51# include <sys/stat.h>
52#endif
Damien Miller9aec9192006-08-05 10:57:45 +100053#ifdef HAVE_SYS_TIME_H
54# include <sys/time.h>
55#endif
Damien Millerd7834352006-08-05 12:39:39 +100056#include "openbsd-compat/sys-tree.h"
Damien Millerb84886b2008-05-19 15:05:07 +100057#include "openbsd-compat/sys-queue.h"
Damien Miller9cf6d072006-03-15 11:29:24 +110058#include <sys/wait.h>
Damien Miller03e20032006-03-15 11:16:59 +110059
Darren Tucker39972492006-07-12 22:22:46 +100060#include <errno.h>
Damien Miller57cf6382006-07-10 21:13:46 +100061#include <fcntl.h>
Damien Millerb8fe89c2006-07-24 14:51:00 +100062#include <netdb.h>
Damien Miller6645e7a2006-03-15 14:42:54 +110063#ifdef HAVE_PATHS_H
Damien Miller03e20032006-03-15 11:16:59 +110064#include <paths.h>
Damien Miller6645e7a2006-03-15 14:42:54 +110065#endif
Damien Millera1738e42006-07-10 21:33:04 +100066#include <grp.h>
Damien Miller9f2abc42006-07-10 20:53:08 +100067#include <pwd.h>
Damien Miller6ff3cad2006-03-15 11:52:09 +110068#include <signal.h>
Damien Millerded319c2006-09-01 15:38:36 +100069#include <stdarg.h>
Damien Millera7a73ee2006-08-05 11:37:59 +100070#include <stdio.h>
Damien Millere7a1e5c2006-08-05 11:34:19 +100071#include <stdlib.h>
Damien Millere3476ed2006-07-24 14:13:33 +100072#include <string.h>
Damien Miller75bb6642006-08-05 14:07:20 +100073#include <unistd.h>
deraadt@openbsd.org087266e2015-01-20 23:14:00 +000074#include <limits.h>
Damien Millerd4a8b7e1999-10-27 13:42:43 +100075
Damien Miller1f0311c2014-05-15 14:24:09 +100076#ifdef WITH_OPENSSL
Ben Lindstrom226cfa02001-01-22 05:34:40 +000077#include <openssl/dh.h>
78#include <openssl/bn.h>
Ben Lindstrom7a2073c2002-03-22 02:30:41 +000079#include <openssl/rand.h>
Darren Tuckerbfaaf962008-02-28 19:13:52 +110080#include "openbsd-compat/openssl-compat.h"
Damien Miller1f0311c2014-05-15 14:24:09 +100081#endif
Darren Tuckerbfaaf962008-02-28 19:13:52 +110082
Kevin Steves0ea1d9d2002-04-25 18:17:04 +000083#ifdef HAVE_SECUREWARE
84#include <sys/security.h>
85#include <prot.h>
86#endif
Ben Lindstrom226cfa02001-01-22 05:34:40 +000087
Damien Millerd7834352006-08-05 12:39:39 +100088#include "xmalloc.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +000089#include "ssh.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +000090#include "ssh2.h"
Ben Lindstromd95c09c2001-02-18 19:13:33 +000091#include "sshpty.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +100092#include "packet.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +000093#include "log.h"
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +000094#include "sshbuf.h"
Damien Miller7acefbb2014-07-18 14:11:24 +100095#include "misc.h"
markus@openbsd.org3a1638d2015-07-10 06:21:53 +000096#include "match.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +100097#include "servconf.h"
98#include "uidswap.h"
99#include "compat.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +0000100#include "cipher.h"
Damien Miller4a1c7aa2014-02-04 11:03:36 +1100101#include "digest.h"
markus@openbsd.org5467fbc2018-07-11 18:53:29 +0000102#include "sshkey.h"
Damien Millerd7834352006-08-05 12:39:39 +1000103#include "kex.h"
Damien Millerefb4afe2000-04-12 18:45:05 +1000104#include "myproposal.h"
Damien Millereba71ba2000-04-29 23:57:08 +1000105#include "authfile.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +0000106#include "pathnames.h"
107#include "atomicio.h"
108#include "canohost.h"
Damien Millerd7834352006-08-05 12:39:39 +1000109#include "hostfile.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +0000110#include "auth.h"
Damien Miller85b45e02013-07-20 13:21:52 +1000111#include "authfd.h"
Darren Tucker645ab752004-06-25 13:33:20 +1000112#include "msg.h"
Ben Lindstrom20d7c7b2001-04-04 01:56:17 +0000113#include "dispatch.h"
Ben Lindstrom1bae4042001-10-03 17:46:39 +0000114#include "channels.h"
Ben Lindstrom73ab9ba2002-03-22 01:27:35 +0000115#include "session.h"
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000116#include "monitor.h"
Damien Millerd7834352006-08-05 12:39:39 +1000117#ifdef GSSAPI
118#include "ssh-gss.h"
119#endif
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000120#include "monitor_wrap.h"
Damien Millerdcbd41e2011-06-23 19:45:51 +1000121#include "ssh-sandbox.h"
djm@openbsd.org7c856852018-03-03 03:15:51 +0000122#include "auth-options.h"
Damien Millerb7576772006-07-10 20:23:39 +1000123#include "version.h"
djm@openbsd.org141efe42015-01-14 20:05:27 +0000124#include "ssherr.h"
djm@openbsd.org56584cc2019-12-15 18:57:30 +0000125#include "sk-api.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000126
Damien Miller035a5b42004-06-26 08:16:31 +1000127/* Re-exec fds */
128#define REEXEC_DEVCRYPTO_RESERVED_FD (STDERR_FILENO + 1)
129#define REEXEC_STARTUP_PIPE_FD (STDERR_FILENO + 2)
130#define REEXEC_CONFIG_PASS_FD (STDERR_FILENO + 3)
131#define REEXEC_MIN_FREE_FD (STDERR_FILENO + 4)
132
Ben Lindstrom49a79c02000-11-17 03:47:20 +0000133extern char *__progname;
Ben Lindstrom49a79c02000-11-17 03:47:20 +0000134
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000135/* Server configuration options. */
136ServerOptions options;
137
138/* Name of the server configuration file. */
Ben Lindstrom226cfa02001-01-22 05:34:40 +0000139char *config_file_name = _PATH_SERVER_CONFIG_FILE;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000140
Damien Miller4af51302000-04-16 11:18:38 +1000141/*
Damien Miller95def091999-11-25 00:26:21 +1100142 * Debug mode flag. This can be set on the command line. If debug
143 * mode is enabled, extra debugging output will be sent to the system
144 * log, the daemon will not go to background, and will exit after processing
145 * the first connection.
146 */
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000147int debug_flag = 0;
148
djm@openbsd.org@openbsd.org548d3a62017-11-14 00:45:29 +0000149/*
150 * Indicating that the daemon should only test the configuration and keys.
151 * If test_flag > 1 ("-T" flag), then sshd will also dump the effective
152 * configuration, optionally using connection information provided by the
153 * "-C" flag.
154 */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000155static int test_flag = 0;
Ben Lindstrom794325a2001-08-06 21:09:07 +0000156
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000157/* Flag indicating that the daemon is being started from inetd. */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000158static int inetd_flag = 0;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000159
Ben Lindstromc72745a2000-12-02 19:03:54 +0000160/* Flag indicating that sshd should not detach and become a daemon. */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000161static int no_daemon_flag = 0;
Ben Lindstromc72745a2000-12-02 19:03:54 +0000162
Damien Miller5ce662a1999-11-11 17:57:39 +1100163/* debug goes to stderr unless inetd_flag is set */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000164static int log_stderr = 0;
Damien Miller5ce662a1999-11-11 17:57:39 +1100165
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000166/* Saved arguments to main(). */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000167static char **saved_argv;
168static int saved_argc;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000169
Darren Tucker645ab752004-06-25 13:33:20 +1000170/* re-exec */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000171static int rexeced_flag = 0;
172static int rexec_flag = 1;
173static int rexec_argc = 0;
174static char **rexec_argv;
Darren Tucker645ab752004-06-25 13:33:20 +1000175
Damien Miller5428f641999-11-25 11:54:57 +1100176/*
Damien Miller34132e52000-01-14 15:45:46 +1100177 * The sockets that the server is listening; this is used in the SIGHUP
178 * signal handler.
Damien Miller5428f641999-11-25 11:54:57 +1100179 */
Damien Miller34132e52000-01-14 15:45:46 +1100180#define MAX_LISTEN_SOCKS 16
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000181static int listen_socks[MAX_LISTEN_SOCKS];
182static int num_listen_socks = 0;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000183
Damien Miller85b45e02013-07-20 13:21:52 +1000184/* Daemon's agent connection */
djm@openbsd.org141efe42015-01-14 20:05:27 +0000185int auth_sock = -1;
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000186static int have_agent = 0;
Damien Miller85b45e02013-07-20 13:21:52 +1000187
Damien Miller5428f641999-11-25 11:54:57 +1100188/*
189 * Any really sensitive data in the application is contained in this
190 * structure. The idea is that this structure could be locked into memory so
191 * that the pages do not get written into swap. However, there are some
192 * problems. The private key contains BIGNUMs, and we do not (in principle)
193 * have access to the internals of them, and locking just the structure is
194 * not very useful. Currently, memory locking is not implemented.
195 */
Damien Miller95def091999-11-25 00:26:21 +1100196struct {
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000197 struct sshkey **host_keys; /* all private host keys */
198 struct sshkey **host_pubkeys; /* all public host keys */
199 struct sshkey **host_certificates; /* all public host certificates */
200 int have_ssh2_key;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000201} sensitive_data;
202
Ben Lindstromec46e0b2001-06-09 01:27:31 +0000203/* This is set to true when a signal is received. */
Ben Lindstrom5e71c542001-12-06 16:48:14 +0000204static volatile sig_atomic_t received_sighup = 0;
205static volatile sig_atomic_t received_sigterm = 0;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000206
Damien Millerb38eff82000-04-01 11:09:21 +1000207/* session identifier, used by RSA-auth */
Ben Lindstrom46c16222000-12-22 01:43:59 +0000208u_char session_id[16];
Damien Millerb38eff82000-04-01 11:09:21 +1000209
Damien Millereba71ba2000-04-29 23:57:08 +1000210/* same for ssh2 */
Ben Lindstrom46c16222000-12-22 01:43:59 +0000211u_char *session_id2 = NULL;
Darren Tucker502d3842003-06-28 12:38:01 +1000212u_int session_id2_len = 0;
Damien Millereba71ba2000-04-29 23:57:08 +1000213
Damien Miller942da032000-08-18 13:59:06 +1000214/* record remote hostname or ip */
deraadt@openbsd.org087266e2015-01-20 23:14:00 +0000215u_int utmp_len = HOST_NAME_MAX+1;
Damien Miller942da032000-08-18 13:59:06 +1000216
djm@openbsd.org76a24b32019-03-01 02:32:39 +0000217/*
218 * startup_pipes/flags are used for tracking children of the listening sshd
219 * process early in their lifespans. This tracking is needed for three things:
220 *
221 * 1) Implementing the MaxStartups limit of concurrent unauthenticated
222 * connections.
223 * 2) Avoiding a race condition for SIGHUP processing, where child processes
224 * may have listen_socks open that could collide with main listener process
225 * after it restarts.
226 * 3) Ensuring that rexec'd sshd processes have received their initial state
227 * from the parent listen process before handling SIGHUP.
228 *
229 * Child processes signal that they have completed closure of the listen_socks
230 * and (if applicable) received their rexec state by sending a char over their
231 * sock. Child processes signal that authentication has completed by closing
232 * the sock (or by exiting).
233 */
djm@openbsd.orgdbb4dec2019-01-17 01:50:24 +0000234static int *startup_pipes = NULL;
djm@openbsd.org76a24b32019-03-01 02:32:39 +0000235static int *startup_flags = NULL; /* Indicates child closed listener */
236static int startup_pipe = -1; /* in child */
Ben Lindstromd84df982001-12-06 16:35:40 +0000237
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000238/* variables used for privilege separation */
Darren Tucker45150472006-07-12 22:34:17 +1000239int use_privsep = -1;
Darren Tuckera8be9e22004-02-06 16:40:27 +1100240struct monitor *pmonitor = NULL;
Damien Miller9ee2c602011-09-22 21:38:30 +1000241int privsep_is_preauth = 1;
Darren Tuckerd13281f2017-03-29 12:39:39 +1100242static int privsep_chroot = 1;
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000243
djm@openbsd.org04c091f2019-01-19 21:43:56 +0000244/* global connection state and authentication contexts */
Darren Tucker3e33cec2003-10-02 16:12:36 +1000245Authctxt *the_authctxt = NULL;
djm@openbsd.org04c091f2019-01-19 21:43:56 +0000246struct ssh *the_active_state;
Darren Tucker3e33cec2003-10-02 16:12:36 +1000247
djm@openbsd.org7c856852018-03-03 03:15:51 +0000248/* global key/cert auth options. XXX move to permanent ssh->authctxt? */
249struct sshauthopt *auth_opts = NULL;
250
Darren Tucker45150472006-07-12 22:34:17 +1000251/* sshd_config buffer */
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000252struct sshbuf *cfg;
Darren Tucker45150472006-07-12 22:34:17 +1000253
Darren Tucker09991742004-07-17 17:05:14 +1000254/* message to be displayed after login */
markus@openbsd.org2808d182018-07-09 21:26:02 +0000255struct sshbuf *loginmsg;
Darren Tucker09991742004-07-17 17:05:14 +1000256
Damien Miller6433df02006-09-07 10:36:43 +1000257/* Unprivileged user */
258struct passwd *privsep_pw = NULL;
259
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000260/* Prototypes for various functions defined later in this file. */
Ben Lindstrombba81212001-06-25 05:01:22 +0000261void destroy_sensitive_data(void);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000262void demote_sensitive_data(void);
djm@openbsd.org6350e032019-01-19 21:42:30 +0000263static void do_ssh2_kex(struct ssh *);
Damien Miller874d77b2000-10-14 16:23:11 +1100264
Damien Miller98c7ad62000-03-09 21:27:49 +1100265/*
Damien Miller34132e52000-01-14 15:45:46 +1100266 * Close all listening sockets
267 */
Ben Lindstrombba81212001-06-25 05:01:22 +0000268static void
Damien Miller34132e52000-01-14 15:45:46 +1100269close_listen_socks(void)
270{
271 int i;
Ben Lindstrom822b6342002-06-23 21:38:49 +0000272
Damien Miller34132e52000-01-14 15:45:46 +1100273 for (i = 0; i < num_listen_socks; i++)
274 close(listen_socks[i]);
275 num_listen_socks = -1;
276}
277
Ben Lindstromd84df982001-12-06 16:35:40 +0000278static void
279close_startup_pipes(void)
280{
281 int i;
Ben Lindstrom822b6342002-06-23 21:38:49 +0000282
Ben Lindstromd84df982001-12-06 16:35:40 +0000283 if (startup_pipes)
284 for (i = 0; i < options.max_startups; i++)
285 if (startup_pipes[i] != -1)
286 close(startup_pipes[i]);
287}
288
Damien Miller34132e52000-01-14 15:45:46 +1100289/*
Damien Miller95def091999-11-25 00:26:21 +1100290 * Signal handler for SIGHUP. Sshd execs itself when it receives SIGHUP;
291 * the effect is to reread the configuration file (and to regenerate
292 * the server key).
293 */
Damien Millerf0b15df2006-03-26 13:59:20 +1100294
295/*ARGSUSED*/
Ben Lindstrombba81212001-06-25 05:01:22 +0000296static void
Damien Miller95def091999-11-25 00:26:21 +1100297sighup_handler(int sig)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000298{
Damien Miller95def091999-11-25 00:26:21 +1100299 received_sighup = 1;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000300}
301
Damien Miller95def091999-11-25 00:26:21 +1100302/*
303 * Called from the main program after receiving SIGHUP.
304 * Restarts the server.
305 */
Ben Lindstrombba81212001-06-25 05:01:22 +0000306static void
Ben Lindstrom31ca54a2001-02-09 02:11:24 +0000307sighup_restart(void)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000308{
Damien Miller996acd22003-04-09 20:59:48 +1000309 logit("Received SIGHUP; restarting.");
dtucker@openbsd.orgf2398eb2016-12-04 22:27:25 +0000310 if (options.pid_file != NULL)
311 unlink(options.pid_file);
Darren Tuckerf2bf36c2013-09-22 19:02:40 +1000312 platform_pre_restart();
Damien Miller34132e52000-01-14 15:45:46 +1100313 close_listen_socks();
Ben Lindstromd84df982001-12-06 16:35:40 +0000314 close_startup_pipes();
Darren Tuckered623962007-02-25 20:37:21 +1100315 alarm(0); /* alarm timer persists across exec */
Darren Tucker2c671bf2010-01-09 22:28:43 +1100316 signal(SIGHUP, SIG_IGN); /* will be restored after exec */
Damien Miller95def091999-11-25 00:26:21 +1100317 execv(saved_argv[0], saved_argv);
Damien Miller996acd22003-04-09 20:59:48 +1000318 logit("RESTART FAILED: av[0]='%.100s', error: %.100s.", saved_argv[0],
Ben Lindstrom822b6342002-06-23 21:38:49 +0000319 strerror(errno));
Damien Miller95def091999-11-25 00:26:21 +1100320 exit(1);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000321}
322
Damien Miller95def091999-11-25 00:26:21 +1100323/*
324 * Generic signal handler for terminating signals in the master daemon.
Damien Miller95def091999-11-25 00:26:21 +1100325 */
Damien Millerf0b15df2006-03-26 13:59:20 +1100326/*ARGSUSED*/
Ben Lindstrombba81212001-06-25 05:01:22 +0000327static void
Damien Miller95def091999-11-25 00:26:21 +1100328sigterm_handler(int sig)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000329{
Ben Lindstromec46e0b2001-06-09 01:27:31 +0000330 received_sigterm = sig;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000331}
332
Damien Miller95def091999-11-25 00:26:21 +1100333/*
334 * SIGCHLD handler. This is called whenever a child dies. This will then
Ben Lindstromec46e0b2001-06-09 01:27:31 +0000335 * reap any zombies left by exited children.
Damien Miller95def091999-11-25 00:26:21 +1100336 */
Damien Millerf0b15df2006-03-26 13:59:20 +1100337/*ARGSUSED*/
Ben Lindstrombba81212001-06-25 05:01:22 +0000338static void
Damien Miller95def091999-11-25 00:26:21 +1100339main_sigchld_handler(int sig)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000340{
Damien Miller95def091999-11-25 00:26:21 +1100341 int save_errno = errno;
Ben Lindstrom822b6342002-06-23 21:38:49 +0000342 pid_t pid;
Damien Miller95def091999-11-25 00:26:21 +1100343 int status;
Damien Miller431f66b1999-11-21 18:31:57 +1100344
Ben Lindstrom47fd8112002-04-02 20:48:19 +0000345 while ((pid = waitpid(-1, &status, WNOHANG)) > 0 ||
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +0000346 (pid == -1 && errno == EINTR))
Damien Miller95def091999-11-25 00:26:21 +1100347 ;
Damien Miller95def091999-11-25 00:26:21 +1100348 errno = save_errno;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000349}
350
Damien Miller95def091999-11-25 00:26:21 +1100351/*
352 * Signal handler for the alarm after the login grace period has expired.
353 */
Damien Millerf0b15df2006-03-26 13:59:20 +1100354/*ARGSUSED*/
Ben Lindstrombba81212001-06-25 05:01:22 +0000355static void
Damien Miller95def091999-11-25 00:26:21 +1100356grace_alarm_handler(int sig)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000357{
Darren Tuckera8be9e22004-02-06 16:40:27 +1100358 if (use_privsep && pmonitor != NULL && pmonitor->m_pid > 0)
359 kill(pmonitor->m_pid, SIGALRM);
360
Damien Miller09d3e122012-10-31 08:58:58 +1100361 /*
362 * Try to kill any processes that we have spawned, E.g. authorized
363 * keys command helpers.
364 */
365 if (getpgid(0) == getpid()) {
366 signal(SIGTERM, SIG_IGN);
Damien Millerab16ef42014-01-28 15:08:12 +1100367 kill(0, SIGTERM);
Damien Miller09d3e122012-10-31 08:58:58 +1100368 }
369
djm@openbsd.org04c091f2019-01-19 21:43:56 +0000370 /* XXX pre-format ipaddr/port so we don't need to access active_state */
Damien Miller95def091999-11-25 00:26:21 +1100371 /* Log error and exit. */
djm@openbsd.org95767262016-03-07 19:02:43 +0000372 sigdie("Timeout before authentication for %s port %d",
djm@openbsd.org04c091f2019-01-19 21:43:56 +0000373 ssh_remote_ipaddr(the_active_state),
374 ssh_remote_port(the_active_state));
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000375}
376
Damien Miller0bc1bd82000-11-13 22:57:25 +1100377/* Destroy the host and server keys. They will no longer be needed. */
Damien Millereba71ba2000-04-29 23:57:08 +1000378void
379destroy_sensitive_data(void)
380{
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000381 u_int i;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100382
Damien Miller9f0f5c62001-12-21 14:45:46 +1100383 for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller0bc1bd82000-11-13 22:57:25 +1100384 if (sensitive_data.host_keys[i]) {
markus@openbsd.org5467fbc2018-07-11 18:53:29 +0000385 sshkey_free(sensitive_data.host_keys[i]);
Damien Miller0bc1bd82000-11-13 22:57:25 +1100386 sensitive_data.host_keys[i] = NULL;
387 }
Damien Miller0a80ca12010-02-27 07:55:05 +1100388 if (sensitive_data.host_certificates[i]) {
markus@openbsd.org5467fbc2018-07-11 18:53:29 +0000389 sshkey_free(sensitive_data.host_certificates[i]);
Damien Miller0a80ca12010-02-27 07:55:05 +1100390 sensitive_data.host_certificates[i] = NULL;
391 }
Damien Miller0bc1bd82000-11-13 22:57:25 +1100392 }
Damien Miller0bc1bd82000-11-13 22:57:25 +1100393}
Damien Miller0bc1bd82000-11-13 22:57:25 +1100394
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000395/* Demote private to public keys for network child */
396void
397demote_sensitive_data(void)
398{
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000399 struct sshkey *tmp;
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000400 u_int i;
markus@openbsd.org5467fbc2018-07-11 18:53:29 +0000401 int r;
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000402
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000403 for (i = 0; i < options.num_host_key_files; i++) {
404 if (sensitive_data.host_keys[i]) {
djm@openbsd.org482d23b2018-09-13 02:08:33 +0000405 if ((r = sshkey_from_private(
406 sensitive_data.host_keys[i], &tmp)) != 0)
markus@openbsd.org5467fbc2018-07-11 18:53:29 +0000407 fatal("could not demote host %s key: %s",
408 sshkey_type(sensitive_data.host_keys[i]),
409 ssh_err(r));
410 sshkey_free(sensitive_data.host_keys[i]);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000411 sensitive_data.host_keys[i] = tmp;
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000412 }
Damien Miller0a80ca12010-02-27 07:55:05 +1100413 /* Certs do not need demotion */
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000414 }
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000415}
416
Ben Lindstrom08105192002-03-22 02:50:06 +0000417static void
Damien Millerc9f880c2016-11-30 13:51:49 +1100418reseed_prngs(void)
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000419{
Darren Tucker64cee362009-06-21 20:26:17 +1000420 u_int32_t rnd[256];
Damien Millerc9f880c2016-11-30 13:51:49 +1100421
422#ifdef WITH_OPENSSL
423 RAND_poll();
424#endif
425 arc4random_stir(); /* noop on recent arc4random() implementations */
426 arc4random_buf(rnd, sizeof(rnd)); /* let arc4random notice PID change */
427
428#ifdef WITH_OPENSSL
429 RAND_seed(rnd, sizeof(rnd));
430 /* give libcrypto a chance to notice the PID change */
431 if ((RAND_bytes((u_char *)rnd, 1)) != 1)
432 fatal("%s: RAND_bytes failed", __func__);
433#endif
434
435 explicit_bzero(rnd, sizeof(rnd));
436}
437
438static void
439privsep_preauth_child(void)
440{
Ben Lindstrom810af962002-07-04 00:11:40 +0000441 gid_t gidset[1];
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000442
443 /* Enable challenge-response authentication for privilege separation */
444 privsep_challenge_enable();
445
Damien Millerfb3423b2014-02-27 10:20:07 +1100446#ifdef GSSAPI
Damien Millere6a74ae2014-02-27 10:17:49 +1100447 /* Cache supported mechanism OIDs for later use */
djm@openbsd.orgcb24d9f2018-09-21 12:23:17 +0000448 ssh_gssapi_prepare_supported_oids();
Damien Millerfb3423b2014-02-27 10:20:07 +1100449#endif
Damien Millere6a74ae2014-02-27 10:17:49 +1100450
Damien Millerc9f880c2016-11-30 13:51:49 +1100451 reseed_prngs();
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000452
453 /* Demote the private keys to public keys. */
454 demote_sensitive_data();
455
djm@openbsd.org5b4010d2015-11-16 22:51:05 +0000456 /* Demote the child */
Darren Tuckerd13281f2017-03-29 12:39:39 +1100457 if (privsep_chroot) {
djm@openbsd.org5b4010d2015-11-16 22:51:05 +0000458 /* Change our root directory */
459 if (chroot(_PATH_PRIVSEP_CHROOT_DIR) == -1)
460 fatal("chroot(\"%s\"): %s", _PATH_PRIVSEP_CHROOT_DIR,
461 strerror(errno));
462 if (chdir("/") == -1)
463 fatal("chdir(\"/\"): %s", strerror(errno));
Ben Lindstrom6328ab32002-03-22 02:54:23 +0000464
djm@openbsd.org5b4010d2015-11-16 22:51:05 +0000465 /* Drop our privileges */
466 debug3("privsep user:group %u:%u", (u_int)privsep_pw->pw_uid,
467 (u_int)privsep_pw->pw_gid);
468 gidset[0] = privsep_pw->pw_gid;
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +0000469 if (setgroups(1, gidset) == -1)
djm@openbsd.org5b4010d2015-11-16 22:51:05 +0000470 fatal("setgroups: %.100s", strerror(errno));
471 permanently_set_uid(privsep_pw);
472 }
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000473}
474
Darren Tucker3e33cec2003-10-02 16:12:36 +1000475static int
djm@openbsd.org6350e032019-01-19 21:42:30 +0000476privsep_preauth(struct ssh *ssh)
Ben Lindstrom943481c2002-03-22 03:43:46 +0000477{
djm@openbsd.org141efe42015-01-14 20:05:27 +0000478 int status, r;
Ben Lindstrom943481c2002-03-22 03:43:46 +0000479 pid_t pid;
Damien Miller69ff1df2011-06-23 08:30:03 +1000480 struct ssh_sandbox *box = NULL;
Ben Lindstrom943481c2002-03-22 03:43:46 +0000481
482 /* Set up unprivileged child process to deal with network data */
Ben Lindstrom7339b2a2002-05-15 16:25:01 +0000483 pmonitor = monitor_init();
Ben Lindstrom943481c2002-03-22 03:43:46 +0000484 /* Store a pointer to the kex for later rekeying */
djm@openbsd.org6350e032019-01-19 21:42:30 +0000485 pmonitor->m_pkex = &ssh->kex;
Ben Lindstrom943481c2002-03-22 03:43:46 +0000486
Damien Miller5a5c2b92012-07-31 12:21:34 +1000487 if (use_privsep == PRIVSEP_ON)
Damien Miller868ea1e2014-01-17 16:47:04 +1100488 box = ssh_sandbox_init(pmonitor);
Ben Lindstrom943481c2002-03-22 03:43:46 +0000489 pid = fork();
490 if (pid == -1) {
491 fatal("fork of unprivileged child failed");
492 } else if (pid != 0) {
Ben Lindstromce0f6342002-06-11 16:42:49 +0000493 debug2("Network child is on pid %ld", (long)pid);
Ben Lindstrom943481c2002-03-22 03:43:46 +0000494
Darren Tucker3b4b2d32012-07-02 18:54:31 +1000495 pmonitor->m_pid = pid;
djm@openbsd.org141efe42015-01-14 20:05:27 +0000496 if (have_agent) {
497 r = ssh_get_authentication_socket(&auth_sock);
498 if (r != 0) {
499 error("Could not get agent socket: %s",
500 ssh_err(r));
501 have_agent = 0;
502 }
503 }
Damien Miller69ff1df2011-06-23 08:30:03 +1000504 if (box != NULL)
505 ssh_sandbox_parent_preauth(box, pid);
djm@openbsd.orgec00f912019-01-19 21:43:07 +0000506 monitor_child_preauth(ssh, pmonitor);
Ben Lindstrom943481c2002-03-22 03:43:46 +0000507
Ben Lindstrom943481c2002-03-22 03:43:46 +0000508 /* Wait for the child's exit status */
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +0000509 while (waitpid(pid, &status, 0) == -1) {
Damien Miller9ee2c602011-09-22 21:38:30 +1000510 if (errno == EINTR)
511 continue;
512 pmonitor->m_pid = -1;
513 fatal("%s: waitpid: %s", __func__, strerror(errno));
Damien Miller69ff1df2011-06-23 08:30:03 +1000514 }
Damien Miller9ee2c602011-09-22 21:38:30 +1000515 privsep_is_preauth = 0;
516 pmonitor->m_pid = -1;
Damien Miller69ff1df2011-06-23 08:30:03 +1000517 if (WIFEXITED(status)) {
518 if (WEXITSTATUS(status) != 0)
519 fatal("%s: preauth child exited with status %d",
520 __func__, WEXITSTATUS(status));
521 } else if (WIFSIGNALED(status))
522 fatal("%s: preauth child terminated by signal %d",
523 __func__, WTERMSIG(status));
524 if (box != NULL)
525 ssh_sandbox_parent_finish(box);
526 return 1;
Ben Lindstrom943481c2002-03-22 03:43:46 +0000527 } else {
528 /* child */
Ben Lindstrom7339b2a2002-05-15 16:25:01 +0000529 close(pmonitor->m_sendfd);
Damien Miller8f0bf232011-06-20 14:42:23 +1000530 close(pmonitor->m_log_recvfd);
531
532 /* Arrange for logging to be sent to the monitor */
533 set_log_handler(mm_log_handler, pmonitor);
Ben Lindstrom943481c2002-03-22 03:43:46 +0000534
djm@openbsd.org5b4010d2015-11-16 22:51:05 +0000535 privsep_preauth_child();
Ben Lindstromf90f58d2002-03-26 01:53:03 +0000536 setproctitle("%s", "[net]");
Damien Miller69ff1df2011-06-23 08:30:03 +1000537 if (box != NULL)
538 ssh_sandbox_child(box);
539
540 return 0;
Ben Lindstrom943481c2002-03-22 03:43:46 +0000541 }
Ben Lindstrom943481c2002-03-22 03:43:46 +0000542}
543
Ben Lindstrom08105192002-03-22 02:50:06 +0000544static void
djm@openbsd.org6350e032019-01-19 21:42:30 +0000545privsep_postauth(struct ssh *ssh, Authctxt *authctxt)
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000546{
Tim Rice9dd30812002-07-07 13:43:36 -0700547#ifdef DISABLE_FD_PASSING
Tim Rice8eff3192002-06-25 15:35:15 -0700548 if (1) {
549#else
djm@openbsd.org83b58182016-08-19 03:18:06 +0000550 if (authctxt->pw->pw_uid == 0) {
Tim Rice8eff3192002-06-25 15:35:15 -0700551#endif
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000552 /* File descriptor passing is broken or root login */
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000553 use_privsep = 0;
Darren Tucker45b01422005-10-03 18:20:00 +1000554 goto skip;
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000555 }
Ben Lindstrom6328ab32002-03-22 02:54:23 +0000556
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000557 /* New socket pair */
Ben Lindstrom7339b2a2002-05-15 16:25:01 +0000558 monitor_reinit(pmonitor);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000559
Ben Lindstrom7339b2a2002-05-15 16:25:01 +0000560 pmonitor->m_pid = fork();
561 if (pmonitor->m_pid == -1)
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000562 fatal("fork of unprivileged child failed");
Ben Lindstrom7339b2a2002-05-15 16:25:01 +0000563 else if (pmonitor->m_pid != 0) {
Damien Millerb61f3fc2008-07-11 17:36:48 +1000564 verbose("User child is on pid %ld", (long)pmonitor->m_pid);
markus@openbsd.org2808d182018-07-09 21:26:02 +0000565 sshbuf_reset(loginmsg);
djm@openbsd.orgec00f912019-01-19 21:43:07 +0000566 monitor_clear_keystate(ssh, pmonitor);
567 monitor_child_postauth(ssh, pmonitor);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000568
569 /* NEVERREACHED */
570 exit(0);
571 }
572
Damien Miller8f0bf232011-06-20 14:42:23 +1000573 /* child */
574
Ben Lindstrom7339b2a2002-05-15 16:25:01 +0000575 close(pmonitor->m_sendfd);
Damien Miller8f0bf232011-06-20 14:42:23 +1000576 pmonitor->m_sendfd = -1;
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000577
578 /* Demote the private keys to public keys. */
579 demote_sensitive_data();
580
Damien Millerc9f880c2016-11-30 13:51:49 +1100581 reseed_prngs();
Damien Miller76e95da2008-03-07 18:31:24 +1100582
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000583 /* Drop privileges */
584 do_setusercontext(authctxt->pw);
585
Darren Tucker45b01422005-10-03 18:20:00 +1000586 skip:
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000587 /* It is safe now to apply the key state */
djm@openbsd.orgec00f912019-01-19 21:43:07 +0000588 monitor_apply_keystate(ssh, pmonitor);
Damien Miller9786e6e2005-07-26 21:54:56 +1000589
590 /*
591 * Tell the packet layer that authentication was successful, since
592 * this information is not part of the key state.
593 */
djm@openbsd.org6350e032019-01-19 21:42:30 +0000594 ssh_packet_set_authenticated(ssh);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000595}
596
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000597static void
598append_hostkey_type(struct sshbuf *b, const char *s)
599{
600 int r;
601
602 if (match_pattern_list(s, options.hostkeyalgorithms, 0) != 1) {
603 debug3("%s: %s key not permitted by HostkeyAlgorithms",
604 __func__, s);
605 return;
606 }
607 if ((r = sshbuf_putf(b, "%s%s", sshbuf_len(b) > 0 ? "," : "", s)) != 0)
608 fatal("%s: sshbuf_putf: %s", __func__, ssh_err(r));
609}
610
Ben Lindstrombba81212001-06-25 05:01:22 +0000611static char *
Damien Miller0bc1bd82000-11-13 22:57:25 +1100612list_hostkey_types(void)
613{
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000614 struct sshbuf *b;
615 struct sshkey *key;
Damien Millerf58b58c2003-11-17 21:18:23 +1100616 char *ret;
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000617 u_int i;
Damien Miller0e3b8722002-01-22 23:26:38 +1100618
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000619 if ((b = sshbuf_new()) == NULL)
620 fatal("%s: sshbuf_new failed", __func__);
Damien Miller9f0f5c62001-12-21 14:45:46 +1100621 for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller0a80ca12010-02-27 07:55:05 +1100622 key = sensitive_data.host_keys[i];
djm@openbsd.orgce63c4b2015-02-16 22:30:03 +0000623 if (key == NULL)
Damien Miller85b45e02013-07-20 13:21:52 +1000624 key = sensitive_data.host_pubkeys[i];
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +0000625 if (key == NULL)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100626 continue;
Ben Lindstrom1c37c6a2001-12-06 18:00:18 +0000627 switch (key->type) {
Damien Miller0bc1bd82000-11-13 22:57:25 +1100628 case KEY_RSA:
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000629 /* for RSA we also support SHA2 signatures */
630 append_hostkey_type(b, "rsa-sha2-512");
631 append_hostkey_type(b, "rsa-sha2-256");
632 /* FALLTHROUGH */
Damien Miller0bc1bd82000-11-13 22:57:25 +1100633 case KEY_DSA:
Damien Millereb8b60e2010-08-31 22:41:14 +1000634 case KEY_ECDSA:
Damien Miller5be9d9e2013-12-07 11:24:01 +1100635 case KEY_ED25519:
djm@openbsd.org56584cc2019-12-15 18:57:30 +0000636 case KEY_ECDSA_SK:
637 case KEY_ED25519_SK:
markus@openbsd.org1b11ea72018-02-23 15:58:37 +0000638 case KEY_XMSS:
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000639 append_hostkey_type(b, sshkey_ssh_name(key));
Damien Miller0bc1bd82000-11-13 22:57:25 +1100640 break;
641 }
Damien Miller0a80ca12010-02-27 07:55:05 +1100642 /* If the private key has a cert peer, then list that too */
643 key = sensitive_data.host_certificates[i];
644 if (key == NULL)
645 continue;
646 switch (key->type) {
647 case KEY_RSA_CERT:
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000648 /* for RSA we also support SHA2 signatures */
649 append_hostkey_type(b,
650 "rsa-sha2-512-cert-v01@openssh.com");
651 append_hostkey_type(b,
652 "rsa-sha2-256-cert-v01@openssh.com");
653 /* FALLTHROUGH */
Damien Miller0a80ca12010-02-27 07:55:05 +1100654 case KEY_DSA_CERT:
Damien Millereb8b60e2010-08-31 22:41:14 +1000655 case KEY_ECDSA_CERT:
Damien Miller5be9d9e2013-12-07 11:24:01 +1100656 case KEY_ED25519_CERT:
djm@openbsd.org56584cc2019-12-15 18:57:30 +0000657 case KEY_ECDSA_SK_CERT:
658 case KEY_ED25519_SK_CERT:
markus@openbsd.org1b11ea72018-02-23 15:58:37 +0000659 case KEY_XMSS_CERT:
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000660 append_hostkey_type(b, sshkey_ssh_name(key));
Damien Miller0a80ca12010-02-27 07:55:05 +1100661 break;
662 }
Damien Miller0bc1bd82000-11-13 22:57:25 +1100663 }
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000664 if ((ret = sshbuf_dup_string(b)) == NULL)
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000665 fatal("%s: sshbuf_dup_string failed", __func__);
djm@openbsd.org4ba0d542018-07-03 11:39:54 +0000666 sshbuf_free(b);
667 debug("%s: %s", __func__, ret);
Damien Millerf58b58c2003-11-17 21:18:23 +1100668 return ret;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100669}
670
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000671static struct sshkey *
djm@openbsd.org5104db72015-01-26 06:10:03 +0000672get_hostkey_by_type(int type, int nid, int need_private, struct ssh *ssh)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100673{
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000674 u_int i;
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000675 struct sshkey *key;
Ben Lindstrom822b6342002-06-23 21:38:49 +0000676
Damien Miller9f0f5c62001-12-21 14:45:46 +1100677 for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller4e270b02010-04-16 15:56:21 +1000678 switch (type) {
Damien Miller4e270b02010-04-16 15:56:21 +1000679 case KEY_RSA_CERT:
680 case KEY_DSA_CERT:
Damien Millereb8b60e2010-08-31 22:41:14 +1000681 case KEY_ECDSA_CERT:
Damien Miller5be9d9e2013-12-07 11:24:01 +1100682 case KEY_ED25519_CERT:
djm@openbsd.org56584cc2019-12-15 18:57:30 +0000683 case KEY_ECDSA_SK_CERT:
684 case KEY_ED25519_SK_CERT:
markus@openbsd.org1b11ea72018-02-23 15:58:37 +0000685 case KEY_XMSS_CERT:
Damien Miller0a80ca12010-02-27 07:55:05 +1100686 key = sensitive_data.host_certificates[i];
Damien Miller4e270b02010-04-16 15:56:21 +1000687 break;
688 default:
Damien Miller0a80ca12010-02-27 07:55:05 +1100689 key = sensitive_data.host_keys[i];
Damien Miller85b45e02013-07-20 13:21:52 +1000690 if (key == NULL && !need_private)
691 key = sensitive_data.host_pubkeys[i];
Damien Miller4e270b02010-04-16 15:56:21 +1000692 break;
693 }
djm@openbsd.org56584cc2019-12-15 18:57:30 +0000694 if (key == NULL || key->type != type)
695 continue;
696 switch (type) {
697 case KEY_ECDSA:
698 case KEY_ECDSA_SK:
699 case KEY_ECDSA_CERT:
700 case KEY_ECDSA_SK_CERT:
701 if (key->ecdsa_nid != nid)
702 continue;
703 /* FALLTHROUGH */
704 default:
Damien Miller0a80ca12010-02-27 07:55:05 +1100705 return need_private ?
706 sensitive_data.host_keys[i] : key;
djm@openbsd.org56584cc2019-12-15 18:57:30 +0000707 }
Damien Miller0bc1bd82000-11-13 22:57:25 +1100708 }
709 return NULL;
Damien Millerb38eff82000-04-01 11:09:21 +1000710}
711
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000712struct sshkey *
djm@openbsd.org5104db72015-01-26 06:10:03 +0000713get_hostkey_public_by_type(int type, int nid, struct ssh *ssh)
Damien Miller0a80ca12010-02-27 07:55:05 +1100714{
djm@openbsd.org5104db72015-01-26 06:10:03 +0000715 return get_hostkey_by_type(type, nid, 0, ssh);
Damien Miller0a80ca12010-02-27 07:55:05 +1100716}
717
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000718struct sshkey *
djm@openbsd.org5104db72015-01-26 06:10:03 +0000719get_hostkey_private_by_type(int type, int nid, struct ssh *ssh)
Damien Miller0a80ca12010-02-27 07:55:05 +1100720{
djm@openbsd.org5104db72015-01-26 06:10:03 +0000721 return get_hostkey_by_type(type, nid, 1, ssh);
Damien Miller0a80ca12010-02-27 07:55:05 +1100722}
723
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000724struct sshkey *
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000725get_hostkey_by_index(int ind)
726{
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000727 if (ind < 0 || (u_int)ind >= options.num_host_key_files)
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000728 return (NULL);
729 return (sensitive_data.host_keys[ind]);
730}
731
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000732struct sshkey *
markus@openbsd.org57d10cb2015-01-19 20:16:15 +0000733get_hostkey_public_by_index(int ind, struct ssh *ssh)
Damien Miller85b45e02013-07-20 13:21:52 +1000734{
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000735 if (ind < 0 || (u_int)ind >= options.num_host_key_files)
Damien Miller85b45e02013-07-20 13:21:52 +1000736 return (NULL);
737 return (sensitive_data.host_pubkeys[ind]);
738}
739
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000740int
markus@openbsd.org54d90ac2017-05-30 08:52:19 +0000741get_hostkey_index(struct sshkey *key, int compare, struct ssh *ssh)
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000742{
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000743 u_int i;
Ben Lindstrom822b6342002-06-23 21:38:49 +0000744
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000745 for (i = 0; i < options.num_host_key_files; i++) {
markus@openbsd.org5467fbc2018-07-11 18:53:29 +0000746 if (sshkey_is_cert(key)) {
djm@openbsd.org523463a2015-02-16 22:13:32 +0000747 if (key == sensitive_data.host_certificates[i] ||
748 (compare && sensitive_data.host_certificates[i] &&
749 sshkey_equal(key,
750 sensitive_data.host_certificates[i])))
Damien Miller0a80ca12010-02-27 07:55:05 +1100751 return (i);
752 } else {
djm@openbsd.org523463a2015-02-16 22:13:32 +0000753 if (key == sensitive_data.host_keys[i] ||
754 (compare && sensitive_data.host_keys[i] &&
755 sshkey_equal(key, sensitive_data.host_keys[i])))
Damien Miller0a80ca12010-02-27 07:55:05 +1100756 return (i);
djm@openbsd.org523463a2015-02-16 22:13:32 +0000757 if (key == sensitive_data.host_pubkeys[i] ||
758 (compare && sensitive_data.host_pubkeys[i] &&
759 sshkey_equal(key, sensitive_data.host_pubkeys[i])))
Damien Miller85b45e02013-07-20 13:21:52 +1000760 return (i);
Damien Miller0a80ca12010-02-27 07:55:05 +1100761 }
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000762 }
763 return (-1);
764}
765
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000766/* Inform the client of all hostkeys */
767static void
768notify_hostkeys(struct ssh *ssh)
769{
770 struct sshbuf *buf;
771 struct sshkey *key;
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000772 u_int i, nkeys;
773 int r;
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000774 char *fp;
775
dtucker@openbsd.orgd8f391c2015-04-10 05:16:50 +0000776 /* Some clients cannot cope with the hostkeys message, skip those. */
djm@openbsd.org04c091f2019-01-19 21:43:56 +0000777 if (ssh->compat & SSH_BUG_HOSTKEYS)
dtucker@openbsd.orgd8f391c2015-04-10 05:16:50 +0000778 return;
779
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000780 if ((buf = sshbuf_new()) == NULL)
781 fatal("%s: sshbuf_new", __func__);
782 for (i = nkeys = 0; i < options.num_host_key_files; i++) {
783 key = get_hostkey_public_by_index(i, ssh);
784 if (key == NULL || key->type == KEY_UNSPEC ||
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +0000785 sshkey_is_cert(key))
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000786 continue;
787 fp = sshkey_fingerprint(key, options.fingerprint_hash,
788 SSH_FP_DEFAULT);
789 debug3("%s: key %d: %s %s", __func__, i,
790 sshkey_ssh_name(key), fp);
791 free(fp);
djm@openbsd.org523463a2015-02-16 22:13:32 +0000792 if (nkeys == 0) {
djm@openbsd.org6350e032019-01-19 21:42:30 +0000793 /*
794 * Start building the request when we find the
795 * first usable key.
796 */
797 if ((r = sshpkt_start(ssh, SSH2_MSG_GLOBAL_REQUEST)) != 0 ||
798 (r = sshpkt_put_cstring(ssh, "hostkeys-00@openssh.com")) != 0 ||
799 (r = sshpkt_put_u8(ssh, 0)) != 0) /* want reply */
800 sshpkt_fatal(ssh, r, "%s: start request", __func__);
djm@openbsd.org523463a2015-02-16 22:13:32 +0000801 }
djm@openbsd.org6350e032019-01-19 21:42:30 +0000802 /* Append the key to the request */
djm@openbsd.org523463a2015-02-16 22:13:32 +0000803 sshbuf_reset(buf);
804 if ((r = sshkey_putb(key, buf)) != 0)
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000805 fatal("%s: couldn't put hostkey %d: %s",
806 __func__, i, ssh_err(r));
djm@openbsd.org6350e032019-01-19 21:42:30 +0000807 if ((r = sshpkt_put_stringb(ssh, buf)) != 0)
808 sshpkt_fatal(ssh, r, "%s: append key", __func__);
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000809 nkeys++;
810 }
djm@openbsd.orgdceabc72017-10-05 15:52:03 +0000811 debug3("%s: sent %u hostkeys", __func__, nkeys);
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000812 if (nkeys == 0)
813 fatal("%s: no hostkeys", __func__);
djm@openbsd.org6350e032019-01-19 21:42:30 +0000814 if ((r = sshpkt_send(ssh)) != 0)
815 sshpkt_fatal(ssh, r, "%s: send", __func__);
djm@openbsd.org523463a2015-02-16 22:13:32 +0000816 sshbuf_free(buf);
djm@openbsd.org8d4f8722015-01-26 03:04:45 +0000817}
818
Damien Miller942da032000-08-18 13:59:06 +1000819/*
820 * returns 1 if connection should be dropped, 0 otherwise.
821 * dropping starts at connection #max_startups_begin with a probability
822 * of (max_startups_rate/100). the probability increases linearly until
823 * all connections are dropped for startups > max_startups
824 */
Ben Lindstrombba81212001-06-25 05:01:22 +0000825static int
Damien Miller942da032000-08-18 13:59:06 +1000826drop_connection(int startups)
827{
Darren Tucker178fa662004-11-05 20:09:09 +1100828 int p, r;
Damien Miller942da032000-08-18 13:59:06 +1000829
830 if (startups < options.max_startups_begin)
831 return 0;
832 if (startups >= options.max_startups)
833 return 1;
834 if (options.max_startups_rate == 100)
835 return 1;
836
837 p = 100 - options.max_startups_rate;
838 p *= startups - options.max_startups_begin;
Darren Tucker178fa662004-11-05 20:09:09 +1100839 p /= options.max_startups - options.max_startups_begin;
Damien Miller942da032000-08-18 13:59:06 +1000840 p += options.max_startups_rate;
Damien Miller354c48c2008-05-19 14:50:00 +1000841 r = arc4random_uniform(100);
Damien Miller942da032000-08-18 13:59:06 +1000842
Darren Tucker3269b132004-11-05 20:20:59 +1100843 debug("drop_connection: p %d, r %d", p, r);
Damien Miller942da032000-08-18 13:59:06 +1000844 return (r < p) ? 1 : 0;
845}
846
Ben Lindstromade03f62001-12-06 18:22:17 +0000847static void
848usage(void)
849{
Damien Miller0c889cd2004-03-22 09:36:00 +1100850 fprintf(stderr, "%s, %s\n",
Damien Miller1f0311c2014-05-15 14:24:09 +1000851 SSH_RELEASE,
852#ifdef WITH_OPENSSL
djm@openbsd.orga65784c2018-10-23 05:56:35 +0000853 OpenSSL_version(OPENSSL_VERSION)
Damien Miller1f0311c2014-05-15 14:24:09 +1000854#else
855 "without OpenSSL"
856#endif
857 );
Damien Millerb4087862004-03-22 09:35:21 +1100858 fprintf(stderr,
naddy@openbsd.orgc38ea632016-08-15 12:27:56 +0000859"usage: sshd [-46DdeiqTt] [-C connection_spec] [-c host_cert_file]\n"
Damien Miller03d4d7e2013-04-23 15:21:06 +1000860" [-E log_file] [-f config_file] [-g login_grace_time]\n"
naddy@openbsd.orgc38ea632016-08-15 12:27:56 +0000861" [-h host_key_file] [-o option] [-p port] [-u len]\n"
Damien Millerb4087862004-03-22 09:35:21 +1100862 );
Ben Lindstromade03f62001-12-06 18:22:17 +0000863 exit(1);
864}
865
Darren Tucker645ab752004-06-25 13:33:20 +1000866static void
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000867send_rexec_state(int fd, struct sshbuf *conf)
Darren Tucker645ab752004-06-25 13:33:20 +1000868{
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000869 struct sshbuf *m;
870 int r;
Darren Tucker645ab752004-06-25 13:33:20 +1000871
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000872 debug3("%s: entering fd = %d config len %zu", __func__, fd,
873 sshbuf_len(conf));
Darren Tucker645ab752004-06-25 13:33:20 +1000874
875 /*
876 * Protocol from reexec master to child:
877 * string configuration
Darren Tuckerc6f82192005-09-27 22:46:32 +1000878 * string rngseed (only if OpenSSL is not self-seeded)
Darren Tucker645ab752004-06-25 13:33:20 +1000879 */
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000880 if ((m = sshbuf_new()) == NULL)
881 fatal("%s: sshbuf_new failed", __func__);
882 if ((r = sshbuf_put_stringb(m, conf)) != 0)
883 fatal("%s: buffer error: %s", __func__, ssh_err(r));
Darren Tucker645ab752004-06-25 13:33:20 +1000884
Damien Miller72ef7c12015-01-15 02:21:31 +1100885#if defined(WITH_OPENSSL) && !defined(OPENSSL_PRNG_ONLY)
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000886 rexec_send_rng_seed(m);
Darren Tuckerc6f82192005-09-27 22:46:32 +1000887#endif
888
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000889 if (ssh_msg_send(fd, 0, m) == -1)
Darren Tucker645ab752004-06-25 13:33:20 +1000890 fatal("%s: ssh_msg_send failed", __func__);
891
djm@openbsd.org1a31d022016-05-02 08:49:03 +0000892 sshbuf_free(m);
Darren Tucker645ab752004-06-25 13:33:20 +1000893
894 debug3("%s: done", __func__);
895}
896
897static void
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000898recv_rexec_state(int fd, struct sshbuf *conf)
Darren Tucker645ab752004-06-25 13:33:20 +1000899{
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000900 struct sshbuf *m;
901 u_char *cp, ver;
902 size_t len;
903 int r;
Darren Tucker645ab752004-06-25 13:33:20 +1000904
905 debug3("%s: entering fd = %d", __func__, fd);
906
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000907 if ((m = sshbuf_new()) == NULL)
908 fatal("%s: sshbuf_new failed", __func__);
909 if (ssh_msg_recv(fd, m) == -1)
Darren Tucker645ab752004-06-25 13:33:20 +1000910 fatal("%s: ssh_msg_recv failed", __func__);
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000911 if ((r = sshbuf_get_u8(m, &ver)) != 0)
912 fatal("%s: buffer error: %s", __func__, ssh_err(r));
913 if (ver != 0)
Darren Tucker645ab752004-06-25 13:33:20 +1000914 fatal("%s: rexec version mismatch", __func__);
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000915 if ((r = sshbuf_get_string(m, &cp, &len)) != 0)
916 fatal("%s: buffer error: %s", __func__, ssh_err(r));
917 if (conf != NULL && (r = sshbuf_put(conf, cp, len)))
918 fatal("%s: buffer error: %s", __func__, ssh_err(r));
Damien Miller72ef7c12015-01-15 02:21:31 +1100919#if defined(WITH_OPENSSL) && !defined(OPENSSL_PRNG_ONLY)
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000920 rexec_recv_rng_seed(m);
Darren Tuckerc6f82192005-09-27 22:46:32 +1000921#endif
922
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +0000923 free(cp);
924 sshbuf_free(m);
Darren Tucker645ab752004-06-25 13:33:20 +1000925
926 debug3("%s: done", __func__);
927}
928
Damien Millera1f68402006-08-19 00:31:39 +1000929/* Accept a connection from inetd */
930static void
931server_accept_inetd(int *sock_in, int *sock_out)
932{
933 int fd;
934
Damien Millera1f68402006-08-19 00:31:39 +1000935 if (rexeced_flag) {
936 close(REEXEC_CONFIG_PASS_FD);
937 *sock_in = *sock_out = dup(STDIN_FILENO);
Damien Millera1f68402006-08-19 00:31:39 +1000938 } else {
939 *sock_in = dup(STDIN_FILENO);
940 *sock_out = dup(STDOUT_FILENO);
941 }
942 /*
943 * We intentionally do not close the descriptors 0, 1, and 2
944 * as our code for setting the descriptors won't work if
945 * ttyfd happens to be one of those.
946 */
947 if ((fd = open(_PATH_DEVNULL, O_RDWR, 0)) != -1) {
948 dup2(fd, STDIN_FILENO);
949 dup2(fd, STDOUT_FILENO);
Darren Tucker0cca17f2013-06-06 08:21:14 +1000950 if (!log_stderr)
951 dup2(fd, STDERR_FILENO);
952 if (fd > (log_stderr ? STDERR_FILENO : STDOUT_FILENO))
Damien Millera1f68402006-08-19 00:31:39 +1000953 close(fd);
954 }
955 debug("inetd sockets after dupping: %d, %d", *sock_in, *sock_out);
956}
957
958/*
959 * Listen for TCP connections
960 */
961static void
djm@openbsd.orgacf559e2017-10-25 00:15:35 +0000962listen_on_addrs(struct listenaddr *la)
Damien Millera1f68402006-08-19 00:31:39 +1000963{
djm@openbsd.orgacf559e2017-10-25 00:15:35 +0000964 int ret, listen_sock;
Damien Millera1f68402006-08-19 00:31:39 +1000965 struct addrinfo *ai;
966 char ntop[NI_MAXHOST], strport[NI_MAXSERV];
967
djm@openbsd.orgacf559e2017-10-25 00:15:35 +0000968 for (ai = la->addrs; ai; ai = ai->ai_next) {
Damien Millera1f68402006-08-19 00:31:39 +1000969 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
970 continue;
971 if (num_listen_socks >= MAX_LISTEN_SOCKS)
972 fatal("Too many listen sockets. "
973 "Enlarge MAX_LISTEN_SOCKS");
974 if ((ret = getnameinfo(ai->ai_addr, ai->ai_addrlen,
975 ntop, sizeof(ntop), strport, sizeof(strport),
976 NI_NUMERICHOST|NI_NUMERICSERV)) != 0) {
977 error("getnameinfo failed: %.100s",
Darren Tucker4abde772007-12-29 02:43:51 +1100978 ssh_gai_strerror(ret));
Damien Millera1f68402006-08-19 00:31:39 +1000979 continue;
980 }
981 /* Create socket for listening. */
Darren Tucker7bd98e72010-01-10 10:31:12 +1100982 listen_sock = socket(ai->ai_family, ai->ai_socktype,
983 ai->ai_protocol);
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +0000984 if (listen_sock == -1) {
Damien Millera1f68402006-08-19 00:31:39 +1000985 /* kernel may not support ipv6 */
986 verbose("socket: %.100s", strerror(errno));
987 continue;
988 }
989 if (set_nonblock(listen_sock) == -1) {
990 close(listen_sock);
991 continue;
992 }
djm@openbsd.org8071a692017-02-24 03:16:34 +0000993 if (fcntl(listen_sock, F_SETFD, FD_CLOEXEC) == -1) {
994 verbose("socket: CLOEXEC: %s", strerror(errno));
995 close(listen_sock);
996 continue;
997 }
djm@openbsd.orgacf559e2017-10-25 00:15:35 +0000998 /* Socket options */
999 set_reuseaddr(listen_sock);
1000 if (la->rdomain != NULL &&
1001 set_rdomain(listen_sock, la->rdomain) == -1) {
1002 close(listen_sock);
1003 continue;
1004 }
Damien Millera1f68402006-08-19 00:31:39 +10001005
Damien Miller49d2a282008-01-20 08:56:00 +11001006 /* Only communicate in IPv6 over AF_INET6 sockets. */
Damien Miller04ee0f82009-11-18 17:48:30 +11001007 if (ai->ai_family == AF_INET6)
1008 sock_set_v6only(listen_sock);
Damien Miller49d2a282008-01-20 08:56:00 +11001009
Damien Millera1f68402006-08-19 00:31:39 +10001010 debug("Bind to port %s on %s.", strport, ntop);
1011
1012 /* Bind the socket to the desired port. */
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001013 if (bind(listen_sock, ai->ai_addr, ai->ai_addrlen) == -1) {
Damien Millera1f68402006-08-19 00:31:39 +10001014 error("Bind to port %s on %s failed: %.200s.",
1015 strport, ntop, strerror(errno));
1016 close(listen_sock);
1017 continue;
1018 }
1019 listen_socks[num_listen_socks] = listen_sock;
1020 num_listen_socks++;
1021
1022 /* Start listening on the port. */
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001023 if (listen(listen_sock, SSH_LISTEN_BACKLOG) == -1)
Damien Millera1f68402006-08-19 00:31:39 +10001024 fatal("listen on [%s]:%s: %.100s",
1025 ntop, strport, strerror(errno));
djm@openbsd.orgacf559e2017-10-25 00:15:35 +00001026 logit("Server listening on %s port %s%s%s.",
1027 ntop, strport,
1028 la->rdomain == NULL ? "" : " rdomain ",
1029 la->rdomain == NULL ? "" : la->rdomain);
Damien Millera1f68402006-08-19 00:31:39 +10001030 }
djm@openbsd.orgacf559e2017-10-25 00:15:35 +00001031}
1032
1033static void
1034server_listen(void)
1035{
1036 u_int i;
1037
1038 for (i = 0; i < options.num_listen_addrs; i++) {
1039 listen_on_addrs(&options.listen_addrs[i]);
1040 freeaddrinfo(options.listen_addrs[i].addrs);
1041 free(options.listen_addrs[i].rdomain);
1042 memset(&options.listen_addrs[i], 0,
1043 sizeof(options.listen_addrs[i]));
1044 }
1045 free(options.listen_addrs);
1046 options.listen_addrs = NULL;
1047 options.num_listen_addrs = 0;
Damien Millera1f68402006-08-19 00:31:39 +10001048
1049 if (!num_listen_socks)
1050 fatal("Cannot bind any address.");
1051}
1052
1053/*
1054 * The main TCP accept loop. Note that, for the non-debug case, returns
1055 * from this function are in a forked subprocess.
1056 */
1057static void
1058server_accept_loop(int *sock_in, int *sock_out, int *newsock, int *config_s)
1059{
1060 fd_set *fdset;
1061 int i, j, ret, maxfd;
djm@openbsd.org70d38c32020-01-21 22:39:57 +00001062 int ostartups = -1, startups = 0, listening = 0, lameduck = 0;
Damien Millera1f68402006-08-19 00:31:39 +10001063 int startup_p[2] = { -1 , -1 };
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001064 char c = 0;
Damien Millera1f68402006-08-19 00:31:39 +10001065 struct sockaddr_storage from;
1066 socklen_t fromlen;
1067 pid_t pid;
Damien Miller045bda52013-09-14 09:44:37 +10001068 u_char rnd[256];
Damien Millera1f68402006-08-19 00:31:39 +10001069
1070 /* setup fd set for accept */
1071 fdset = NULL;
1072 maxfd = 0;
1073 for (i = 0; i < num_listen_socks; i++)
1074 if (listen_socks[i] > maxfd)
1075 maxfd = listen_socks[i];
1076 /* pipes connected to unauthenticated childs */
1077 startup_pipes = xcalloc(options.max_startups, sizeof(int));
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001078 startup_flags = xcalloc(options.max_startups, sizeof(int));
Damien Millera1f68402006-08-19 00:31:39 +10001079 for (i = 0; i < options.max_startups; i++)
1080 startup_pipes[i] = -1;
1081
1082 /*
1083 * Stay listening for connections until the system crashes or
1084 * the daemon is killed with a signal.
1085 */
1086 for (;;) {
djm@openbsd.org70d38c32020-01-21 22:39:57 +00001087 if (ostartups != startups) {
1088 setproctitle("[listener] %d of %d-%d startups",
1089 startups, options.max_startups_begin,
1090 options.max_startups);
1091 ostartups = startups;
1092 }
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001093 if (received_sighup) {
1094 if (!lameduck) {
1095 debug("Received SIGHUP; waiting for children");
1096 close_listen_socks();
1097 lameduck = 1;
1098 }
1099 if (listening <= 0)
1100 sighup_restart();
1101 }
mmcc@openbsd.orgd59ce082015-12-10 17:08:40 +00001102 free(fdset);
deraadt@openbsd.orgce445b02015-08-20 22:32:42 +00001103 fdset = xcalloc(howmany(maxfd + 1, NFDBITS),
Damien Millera1f68402006-08-19 00:31:39 +10001104 sizeof(fd_mask));
1105
1106 for (i = 0; i < num_listen_socks; i++)
1107 FD_SET(listen_socks[i], fdset);
1108 for (i = 0; i < options.max_startups; i++)
1109 if (startup_pipes[i] != -1)
1110 FD_SET(startup_pipes[i], fdset);
1111
1112 /* Wait in select until there is a connection. */
1113 ret = select(maxfd+1, fdset, NULL, NULL, NULL);
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001114 if (ret == -1 && errno != EINTR)
Damien Millera1f68402006-08-19 00:31:39 +10001115 error("select: %.100s", strerror(errno));
1116 if (received_sigterm) {
1117 logit("Received signal %d; terminating.",
1118 (int) received_sigterm);
1119 close_listen_socks();
djm@openbsd.org161cf412014-12-22 07:55:51 +00001120 if (options.pid_file != NULL)
1121 unlink(options.pid_file);
Damien Miller26b57ce2011-05-05 14:15:09 +10001122 exit(received_sigterm == SIGTERM ? 0 : 255);
Damien Millera1f68402006-08-19 00:31:39 +10001123 }
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001124 if (ret == -1)
Damien Millera1f68402006-08-19 00:31:39 +10001125 continue;
1126
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001127 for (i = 0; i < options.max_startups; i++) {
1128 if (startup_pipes[i] == -1 ||
1129 !FD_ISSET(startup_pipes[i], fdset))
1130 continue;
1131 switch (read(startup_pipes[i], &c, sizeof(c))) {
1132 case -1:
1133 if (errno == EINTR || errno == EAGAIN)
1134 continue;
1135 if (errno != EPIPE) {
1136 error("%s: startup pipe %d (fd=%d): "
1137 "read %s", __func__, i,
1138 startup_pipes[i], strerror(errno));
1139 }
1140 /* FALLTHROUGH */
1141 case 0:
1142 /* child exited or completed auth */
Damien Millera1f68402006-08-19 00:31:39 +10001143 close(startup_pipes[i]);
1144 startup_pipes[i] = -1;
1145 startups--;
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001146 if (startup_flags[i])
1147 listening--;
1148 break;
1149 case 1:
1150 /* child has finished preliminaries */
1151 if (startup_flags[i]) {
1152 listening--;
1153 startup_flags[i] = 0;
1154 }
1155 break;
Damien Millera1f68402006-08-19 00:31:39 +10001156 }
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001157 }
Damien Millera1f68402006-08-19 00:31:39 +10001158 for (i = 0; i < num_listen_socks; i++) {
1159 if (!FD_ISSET(listen_socks[i], fdset))
1160 continue;
1161 fromlen = sizeof(from);
1162 *newsock = accept(listen_socks[i],
1163 (struct sockaddr *)&from, &fromlen);
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001164 if (*newsock == -1) {
Damien Miller37f1c082013-04-23 15:20:43 +10001165 if (errno != EINTR && errno != EWOULDBLOCK &&
1166 errno != ECONNABORTED && errno != EAGAIN)
Damien Millera116d132012-04-22 11:23:46 +10001167 error("accept: %.100s",
1168 strerror(errno));
1169 if (errno == EMFILE || errno == ENFILE)
1170 usleep(100 * 1000);
Damien Millera1f68402006-08-19 00:31:39 +10001171 continue;
1172 }
1173 if (unset_nonblock(*newsock) == -1) {
1174 close(*newsock);
1175 continue;
1176 }
1177 if (drop_connection(startups) == 1) {
djm@openbsd.org08a1e702016-12-09 03:04:29 +00001178 char *laddr = get_local_ipaddr(*newsock);
1179 char *raddr = get_peer_ipaddr(*newsock);
dtucker@openbsd.orgfc173ae2019-11-13 11:25:11 +00001180 char msg[] = "Exceeded MaxStartups\r\n";
djm@openbsd.org08a1e702016-12-09 03:04:29 +00001181
1182 verbose("drop connection #%d from [%s]:%d "
1183 "on [%s]:%d past MaxStartups", startups,
1184 raddr, get_peer_port(*newsock),
1185 laddr, get_local_port(*newsock));
1186 free(laddr);
1187 free(raddr);
dtucker@openbsd.orgfc173ae2019-11-13 11:25:11 +00001188 /* best-effort notification to client */
1189 (void)write(*newsock, msg, strlen(msg));
Damien Millera1f68402006-08-19 00:31:39 +10001190 close(*newsock);
1191 continue;
1192 }
1193 if (pipe(startup_p) == -1) {
1194 close(*newsock);
1195 continue;
1196 }
1197
1198 if (rexec_flag && socketpair(AF_UNIX,
1199 SOCK_STREAM, 0, config_s) == -1) {
1200 error("reexec socketpair: %s",
1201 strerror(errno));
1202 close(*newsock);
1203 close(startup_p[0]);
1204 close(startup_p[1]);
1205 continue;
1206 }
1207
1208 for (j = 0; j < options.max_startups; j++)
1209 if (startup_pipes[j] == -1) {
1210 startup_pipes[j] = startup_p[0];
1211 if (maxfd < startup_p[0])
1212 maxfd = startup_p[0];
1213 startups++;
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001214 startup_flags[j] = 1;
Damien Millera1f68402006-08-19 00:31:39 +10001215 break;
1216 }
1217
1218 /*
1219 * Got connection. Fork a child to handle it, unless
1220 * we are in debugging mode.
1221 */
1222 if (debug_flag) {
1223 /*
1224 * In debugging mode. Close the listening
1225 * socket, and start processing the
1226 * connection without forking.
1227 */
1228 debug("Server will not fork when running in debugging mode.");
1229 close_listen_socks();
1230 *sock_in = *newsock;
1231 *sock_out = *newsock;
1232 close(startup_p[0]);
1233 close(startup_p[1]);
1234 startup_pipe = -1;
1235 pid = getpid();
1236 if (rexec_flag) {
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001237 send_rexec_state(config_s[0], cfg);
Damien Millera1f68402006-08-19 00:31:39 +10001238 close(config_s[0]);
1239 }
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001240 return;
Damien Millera1f68402006-08-19 00:31:39 +10001241 }
1242
1243 /*
1244 * Normal production daemon. Fork, and have
1245 * the child process the connection. The
1246 * parent continues listening.
1247 */
Damien Miller1b06dc32006-08-31 03:24:41 +10001248 platform_pre_fork();
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001249 listening++;
Damien Millera1f68402006-08-19 00:31:39 +10001250 if ((pid = fork()) == 0) {
1251 /*
1252 * Child. Close the listening and
1253 * max_startup sockets. Start using
1254 * the accepted socket. Reinitialize
1255 * logging (since our pid has changed).
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001256 * We return from this function to handle
Damien Millera1f68402006-08-19 00:31:39 +10001257 * the connection.
1258 */
Damien Miller1b06dc32006-08-31 03:24:41 +10001259 platform_post_fork_child();
Damien Millera1f68402006-08-19 00:31:39 +10001260 startup_pipe = startup_p[1];
1261 close_startup_pipes();
1262 close_listen_socks();
1263 *sock_in = *newsock;
1264 *sock_out = *newsock;
1265 log_init(__progname,
1266 options.log_level,
1267 options.log_facility,
1268 log_stderr);
1269 if (rexec_flag)
1270 close(config_s[0]);
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001271 else {
1272 /*
1273 * Signal parent that the preliminaries
1274 * for this child are complete. For the
1275 * re-exec case, this happens after the
1276 * child has received the rexec state
1277 * from the server.
1278 */
1279 (void)atomicio(vwrite, startup_pipe,
1280 "\0", 1);
1281 }
1282 return;
Damien Millera1f68402006-08-19 00:31:39 +10001283 }
1284
1285 /* Parent. Stay in the loop. */
Damien Miller1b06dc32006-08-31 03:24:41 +10001286 platform_post_fork_parent(pid);
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001287 if (pid == -1)
Damien Millera1f68402006-08-19 00:31:39 +10001288 error("fork: %.100s", strerror(errno));
1289 else
1290 debug("Forked child %ld.", (long)pid);
1291
1292 close(startup_p[1]);
1293
1294 if (rexec_flag) {
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001295 send_rexec_state(config_s[0], cfg);
Damien Millera1f68402006-08-19 00:31:39 +10001296 close(config_s[0]);
1297 close(config_s[1]);
1298 }
Damien Millera1f68402006-08-19 00:31:39 +10001299 close(*newsock);
1300
1301 /*
1302 * Ensure that our random state differs
1303 * from that of the child
1304 */
1305 arc4random_stir();
Damien Miller045bda52013-09-14 09:44:37 +10001306 arc4random_buf(rnd, sizeof(rnd));
Damien Miller72ef7c12015-01-15 02:21:31 +11001307#ifdef WITH_OPENSSL
Damien Miller045bda52013-09-14 09:44:37 +10001308 RAND_seed(rnd, sizeof(rnd));
Damien Miller07889c72015-11-14 18:44:49 +11001309 if ((RAND_bytes((u_char *)rnd, 1)) != 1)
1310 fatal("%s: RAND_bytes failed", __func__);
Damien Miller72ef7c12015-01-15 02:21:31 +11001311#endif
Damien Miller1d2c4562014-02-04 11:18:20 +11001312 explicit_bzero(rnd, sizeof(rnd));
Damien Millera1f68402006-08-19 00:31:39 +10001313 }
Damien Millera1f68402006-08-19 00:31:39 +10001314 }
1315}
1316
djm@openbsd.org95767262016-03-07 19:02:43 +00001317/*
1318 * If IP options are supported, make sure there are none (log and
1319 * return an error if any are found). Basically we are worried about
1320 * source routing; it can be used to pretend you are somebody
1321 * (ip-address) you are not. That itself may be "almost acceptable"
djm@openbsd.org001aa552018-04-10 00:10:49 +00001322 * under certain circumstances, but rhosts authentication is useless
djm@openbsd.org95767262016-03-07 19:02:43 +00001323 * if source routing is accepted. Notice also that if we just dropped
1324 * source routing here, the other side could use IP spoofing to do
1325 * rest of the interaction and could still bypass security. So we
1326 * exit here if we detect any IP options.
1327 */
1328static void
1329check_ip_options(struct ssh *ssh)
1330{
1331#ifdef IP_OPTIONS
1332 int sock_in = ssh_packet_get_connection_in(ssh);
1333 struct sockaddr_storage from;
djm@openbsd.org95767262016-03-07 19:02:43 +00001334 u_char opts[200];
djm@openbsd.orgdc664d12016-08-28 22:28:12 +00001335 socklen_t i, option_size = sizeof(opts), fromlen = sizeof(from);
djm@openbsd.org95767262016-03-07 19:02:43 +00001336 char text[sizeof(opts) * 3 + 1];
1337
1338 memset(&from, 0, sizeof(from));
1339 if (getpeername(sock_in, (struct sockaddr *)&from,
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001340 &fromlen) == -1)
djm@openbsd.org95767262016-03-07 19:02:43 +00001341 return;
1342 if (from.ss_family != AF_INET)
1343 return;
1344 /* XXX IPv6 options? */
1345
1346 if (getsockopt(sock_in, IPPROTO_IP, IP_OPTIONS, opts,
1347 &option_size) >= 0 && option_size != 0) {
1348 text[0] = '\0';
1349 for (i = 0; i < option_size; i++)
1350 snprintf(text + i*3, sizeof(text) - i*3,
1351 " %2.2x", opts[i]);
1352 fatal("Connection from %.100s port %d with IP opts: %.800s",
1353 ssh_remote_ipaddr(ssh), ssh_remote_port(ssh), text);
1354 }
1355 return;
1356#endif /* IP_OPTIONS */
1357}
Damien Millera1f68402006-08-19 00:31:39 +10001358
djm@openbsd.org35eb33f2017-10-25 00:17:08 +00001359/* Set the routing domain for this process */
1360static void
1361set_process_rdomain(struct ssh *ssh, const char *name)
1362{
Damien Miller43c29bb2017-10-25 13:10:59 +11001363#if defined(HAVE_SYS_SET_PROCESS_RDOMAIN)
1364 if (name == NULL)
1365 return; /* default */
1366
1367 if (strcmp(name, "%D") == 0) {
1368 /* "expands" to routing domain of connection */
1369 if ((name = ssh_packet_rdomain_in(ssh)) == NULL)
1370 return;
1371 }
1372 /* NB. We don't pass 'ssh' to sys_set_process_rdomain() */
1373 return sys_set_process_rdomain(name);
1374#elif defined(__OpenBSD__)
djm@openbsd.org35eb33f2017-10-25 00:17:08 +00001375 int rtable, ortable = getrtable();
1376 const char *errstr;
1377
1378 if (name == NULL)
1379 return; /* default */
1380
1381 if (strcmp(name, "%D") == 0) {
1382 /* "expands" to routing domain of connection */
1383 if ((name = ssh_packet_rdomain_in(ssh)) == NULL)
1384 return;
1385 }
1386
1387 rtable = (int)strtonum(name, 0, 255, &errstr);
1388 if (errstr != NULL) /* Shouldn't happen */
1389 fatal("Invalid routing domain \"%s\": %s", name, errstr);
1390 if (rtable != ortable && setrtable(rtable) != 0)
1391 fatal("Unable to set routing domain %d: %s",
1392 rtable, strerror(errno));
1393 debug("%s: set routing domain %d (was %d)", __func__, rtable, ortable);
Damien Miller43c29bb2017-10-25 13:10:59 +11001394#else /* defined(__OpenBSD__) */
1395 fatal("Unable to set routing domain: not supported in this platform");
1396#endif
djm@openbsd.org35eb33f2017-10-25 00:17:08 +00001397}
1398
dtucker@openbsd.orge9d910b2018-04-13 03:57:26 +00001399static void
1400accumulate_host_timing_secret(struct sshbuf *server_cfg,
djm@openbsd.org4f7a56d2019-06-21 04:21:04 +00001401 struct sshkey *key)
dtucker@openbsd.orge9d910b2018-04-13 03:57:26 +00001402{
1403 static struct ssh_digest_ctx *ctx;
1404 u_char *hash;
1405 size_t len;
1406 struct sshbuf *buf;
1407 int r;
1408
1409 if (ctx == NULL && (ctx = ssh_digest_start(SSH_DIGEST_SHA512)) == NULL)
1410 fatal("%s: ssh_digest_start", __func__);
1411 if (key == NULL) { /* finalize */
1412 /* add server config in case we are using agent for host keys */
1413 if (ssh_digest_update(ctx, sshbuf_ptr(server_cfg),
1414 sshbuf_len(server_cfg)) != 0)
1415 fatal("%s: ssh_digest_update", __func__);
1416 len = ssh_digest_bytes(SSH_DIGEST_SHA512);
1417 hash = xmalloc(len);
1418 if (ssh_digest_final(ctx, hash, len) != 0)
1419 fatal("%s: ssh_digest_final", __func__);
1420 options.timing_secret = PEEK_U64(hash);
1421 freezero(hash, len);
1422 ssh_digest_free(ctx);
1423 ctx = NULL;
1424 return;
1425 }
1426 if ((buf = sshbuf_new()) == NULL)
1427 fatal("%s could not allocate buffer", __func__);
1428 if ((r = sshkey_private_serialize(key, buf)) != 0)
1429 fatal("sshkey_private_serialize: %s", ssh_err(r));
1430 if (ssh_digest_update(ctx, sshbuf_ptr(buf), sshbuf_len(buf)) != 0)
1431 fatal("%s: ssh_digest_update", __func__);
1432 sshbuf_reset(buf);
1433 sshbuf_free(buf);
1434}
1435
Damien Miller95def091999-11-25 00:26:21 +11001436/*
1437 * Main program for the daemon.
1438 */
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001439int
1440main(int ac, char **av)
1441{
djm@openbsd.org95767262016-03-07 19:02:43 +00001442 struct ssh *ssh = NULL;
Damien Miller95def091999-11-25 00:26:21 +11001443 extern char *optarg;
1444 extern int optind;
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001445 int r, opt, on = 1, already_daemon, remote_port;
Damien Miller386c6a22004-06-30 22:40:20 +10001446 int sock_in = -1, sock_out = -1, newsock = -1;
djm@openbsd.org68af80e2017-10-25 00:19:47 +00001447 const char *remote_ip, *rdomain;
dtucker@openbsd.org15fdfc92015-04-15 23:23:25 +00001448 char *fp, *line, *laddr, *logfile = NULL;
Damien Millera1f68402006-08-19 00:31:39 +10001449 int config_s[2] = { -1 , -1 };
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001450 u_int i, j;
Damien Millerb61f3fc2008-07-11 17:36:48 +10001451 u_int64_t ibytes, obytes;
Damien Miller6ca16c62008-06-16 07:50:58 +10001452 mode_t new_umask;
markus@openbsd.org54d90ac2017-05-30 08:52:19 +00001453 struct sshkey *key;
1454 struct sshkey *pubkey;
Damien Miller85b45e02013-07-20 13:21:52 +10001455 int keytype;
Darren Tucker3e33cec2003-10-02 16:12:36 +10001456 Authctxt *authctxt;
dtucker@openbsd.org@openbsd.org0208a482017-11-03 03:18:53 +00001457 struct connection_info *connection_info = NULL;
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001458
Kevin Steves0ea1d9d2002-04-25 18:17:04 +00001459#ifdef HAVE_SECUREWARE
1460 (void)set_auth_parameters(ac, av);
1461#endif
Damien Miller59d3d5b2003-08-22 09:34:41 +10001462 __progname = ssh_get_progname(av[0]);
Damien Millerf9b625c2000-07-09 22:42:32 +10001463
Damien Millera8ed44b2003-01-10 09:53:12 +11001464 /* Save argv. Duplicate so setproctitle emulation doesn't clobber it */
Damien Millerb8c656e2000-06-28 15:22:41 +10001465 saved_argc = ac;
Darren Tucker17c5d032004-06-25 14:22:23 +10001466 rexec_argc = ac;
Darren Tuckerd8093e42006-05-04 16:24:34 +10001467 saved_argv = xcalloc(ac + 1, sizeof(*saved_argv));
Damien Millere3fa20e2017-10-23 16:25:24 +11001468 for (i = 0; (int)i < ac; i++)
Damien Millera8ed44b2003-01-10 09:53:12 +11001469 saved_argv[i] = xstrdup(av[i]);
Damien Miller04cb5362003-05-15 21:29:10 +10001470 saved_argv[i] = NULL;
Damien Millera8ed44b2003-01-10 09:53:12 +11001471
1472#ifndef HAVE_SETPROCTITLE
1473 /* Prepare for later setproctitle emulation */
1474 compat_init_setproctitle(ac, av);
Damien Millerf2e3e9d2003-06-02 12:15:54 +10001475 av = saved_argv;
Damien Millera8ed44b2003-01-10 09:53:12 +11001476#endif
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001477
Damien Millerbfba3542004-03-22 09:29:57 +11001478 if (geteuid() == 0 && setgroups(0, NULL) == -1)
1479 debug("setgroups(): %.200s", strerror(errno));
1480
Darren Tuckerce321d82005-10-03 18:11:24 +10001481 /* Ensure that fds 0, 1 and 2 are open or directed to /dev/null */
1482 sanitise_stdfd();
1483
Damien Miller42c5ec42018-11-23 10:40:06 +11001484 seed_rng();
1485
Damien Miller95def091999-11-25 00:26:21 +11001486 /* Initialize configuration options to their default values. */
1487 initialize_server_options(&options);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001488
Damien Miller95def091999-11-25 00:26:21 +11001489 /* Parse command-line arguments. */
djm@openbsd.org3e91b4e2015-05-24 23:39:16 +00001490 while ((opt = getopt(ac, av,
1491 "C:E:b:c:f:g:h:k:o:p:u:46DQRTdeiqrt")) != -1) {
Damien Miller95def091999-11-25 00:26:21 +11001492 switch (opt) {
Damien Miller34132e52000-01-14 15:45:46 +11001493 case '4':
Darren Tucker0f383232005-01-20 10:57:56 +11001494 options.address_family = AF_INET;
Damien Miller34132e52000-01-14 15:45:46 +11001495 break;
1496 case '6':
Darren Tucker0f383232005-01-20 10:57:56 +11001497 options.address_family = AF_INET6;
Damien Miller34132e52000-01-14 15:45:46 +11001498 break;
Damien Miller95def091999-11-25 00:26:21 +11001499 case 'f':
1500 config_file_name = optarg;
1501 break;
Damien Miller0a80ca12010-02-27 07:55:05 +11001502 case 'c':
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001503 servconf_add_hostcert("[command-line]", 0,
1504 &options, optarg);
Damien Miller0a80ca12010-02-27 07:55:05 +11001505 break;
Damien Miller95def091999-11-25 00:26:21 +11001506 case 'd':
Darren Tuckere98dfa32003-07-19 19:54:31 +10001507 if (debug_flag == 0) {
Damien Millere4340be2000-09-16 13:29:08 +11001508 debug_flag = 1;
1509 options.log_level = SYSLOG_LEVEL_DEBUG1;
Darren Tuckere98dfa32003-07-19 19:54:31 +10001510 } else if (options.log_level < SYSLOG_LEVEL_DEBUG3)
Damien Millere4340be2000-09-16 13:29:08 +11001511 options.log_level++;
Damien Miller95def091999-11-25 00:26:21 +11001512 break;
Ben Lindstromc72745a2000-12-02 19:03:54 +00001513 case 'D':
1514 no_daemon_flag = 1;
1515 break;
Damien Miller03d4d7e2013-04-23 15:21:06 +10001516 case 'E':
dtucker@openbsd.org4f7cc2f2015-09-04 08:21:47 +00001517 logfile = optarg;
Damien Miller03d4d7e2013-04-23 15:21:06 +10001518 /* FALLTHROUGH */
Ben Lindstrom9fce9f02001-04-11 23:10:09 +00001519 case 'e':
1520 log_stderr = 1;
1521 break;
Damien Miller95def091999-11-25 00:26:21 +11001522 case 'i':
1523 inetd_flag = 1;
1524 break;
Darren Tucker645ab752004-06-25 13:33:20 +10001525 case 'r':
1526 rexec_flag = 0;
1527 break;
1528 case 'R':
1529 rexeced_flag = 1;
1530 inetd_flag = 1;
1531 break;
Damien Miller95def091999-11-25 00:26:21 +11001532 case 'Q':
Ben Lindstromd5390202001-01-29 08:07:43 +00001533 /* ignored */
Damien Miller95def091999-11-25 00:26:21 +11001534 break;
1535 case 'q':
1536 options.log_level = SYSLOG_LEVEL_QUIET;
1537 break;
1538 case 'b':
naddy@openbsd.orgc38ea632016-08-15 12:27:56 +00001539 /* protocol 1, ignored */
Damien Miller95def091999-11-25 00:26:21 +11001540 break;
1541 case 'p':
Damien Miller34132e52000-01-14 15:45:46 +11001542 options.ports_from_cmdline = 1;
Damien Millere4340be2000-09-16 13:29:08 +11001543 if (options.num_ports >= MAX_PORTS) {
1544 fprintf(stderr, "too many ports.\n");
1545 exit(1);
1546 }
Ben Lindstrom19066a12001-04-12 23:39:26 +00001547 options.ports[options.num_ports++] = a2port(optarg);
Damien Miller3dc71ad2009-01-28 16:31:22 +11001548 if (options.ports[options.num_ports-1] <= 0) {
Ben Lindstrom19066a12001-04-12 23:39:26 +00001549 fprintf(stderr, "Bad port number.\n");
1550 exit(1);
1551 }
Damien Miller95def091999-11-25 00:26:21 +11001552 break;
1553 case 'g':
Ben Lindstrom1bda4c82001-06-05 19:59:08 +00001554 if ((options.login_grace_time = convtime(optarg)) == -1) {
1555 fprintf(stderr, "Invalid login grace time.\n");
1556 exit(1);
1557 }
Damien Miller95def091999-11-25 00:26:21 +11001558 break;
1559 case 'k':
naddy@openbsd.orgc38ea632016-08-15 12:27:56 +00001560 /* protocol 1, ignored */
Damien Miller95def091999-11-25 00:26:21 +11001561 break;
1562 case 'h':
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001563 servconf_add_hostkey("[command-line]", 0,
djm@openbsd.org928f1232018-11-19 04:12:32 +00001564 &options, optarg, 1);
Damien Miller95def091999-11-25 00:26:21 +11001565 break;
Ben Lindstrom794325a2001-08-06 21:09:07 +00001566 case 't':
1567 test_flag = 1;
1568 break;
Darren Tuckere7140f22008-06-10 23:01:51 +10001569 case 'T':
1570 test_flag = 2;
1571 break;
1572 case 'C':
djm@openbsd.org172a5922019-01-19 21:37:48 +00001573 connection_info = get_connection_info(ssh, 0, 0);
Darren Tuckerfbcf8272012-05-19 19:37:01 +10001574 if (parse_server_match_testspec(connection_info,
1575 optarg) == -1)
1576 exit(1);
Darren Tuckere7140f22008-06-10 23:01:51 +10001577 break;
Damien Miller942da032000-08-18 13:59:06 +10001578 case 'u':
deraadt@openbsd.org087266e2015-01-20 23:14:00 +00001579 utmp_len = (u_int)strtonum(optarg, 0, HOST_NAME_MAX+1+1, NULL);
1580 if (utmp_len > HOST_NAME_MAX+1) {
Ben Lindstrom41daec72002-07-23 21:15:13 +00001581 fprintf(stderr, "Invalid utmp length.\n");
1582 exit(1);
1583 }
Damien Miller942da032000-08-18 13:59:06 +10001584 break;
Ben Lindstromade03f62001-12-06 18:22:17 +00001585 case 'o':
Damien Millerb9997192003-12-17 16:29:22 +11001586 line = xstrdup(optarg);
1587 if (process_server_config_line(&options, line,
Darren Tuckerfbcf8272012-05-19 19:37:01 +10001588 "command-line", 0, NULL, NULL) != 0)
Damien Miller9f0f5c62001-12-21 14:45:46 +11001589 exit(1);
Darren Tuckera627d422013-06-02 07:31:17 +10001590 free(line);
Ben Lindstromade03f62001-12-06 18:22:17 +00001591 break;
Damien Miller95def091999-11-25 00:26:21 +11001592 case '?':
1593 default:
Ben Lindstromade03f62001-12-06 18:22:17 +00001594 usage();
1595 break;
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001596 }
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001597 }
Darren Tucker645ab752004-06-25 13:33:20 +10001598 if (rexeced_flag || inetd_flag)
1599 rexec_flag = 0;
djm@openbsd.org2a358622018-11-16 03:26:01 +00001600 if (!test_flag && rexec_flag && !path_absolute(av[0]))
Darren Tucker645ab752004-06-25 13:33:20 +10001601 fatal("sshd re-exec requires execution with an absolute path");
1602 if (rexeced_flag)
Damien Miller035a5b42004-06-26 08:16:31 +10001603 closefrom(REEXEC_MIN_FREE_FD);
1604 else
1605 closefrom(REEXEC_DEVCRYPTO_RESERVED_FD);
Darren Tucker645ab752004-06-25 13:33:20 +10001606
Damien Miller03d4d7e2013-04-23 15:21:06 +10001607 /* If requested, redirect the logs to the specified logfile. */
dtucker@openbsd.org4f7cc2f2015-09-04 08:21:47 +00001608 if (logfile != NULL)
Damien Miller03d4d7e2013-04-23 15:21:06 +10001609 log_redirect_stderr_to(logfile);
Damien Miller34132e52000-01-14 15:45:46 +11001610 /*
1611 * Force logging to stderr until we have loaded the private host
1612 * key (unless started from inetd)
1613 */
Kevin Stevesec84dc12000-12-13 17:45:15 +00001614 log_init(__progname,
Damien Miller5aa5d782002-02-08 22:01:54 +11001615 options.log_level == SYSLOG_LEVEL_NOT_SET ?
1616 SYSLOG_LEVEL_INFO : options.log_level,
1617 options.log_facility == SYSLOG_FACILITY_NOT_SET ?
1618 SYSLOG_FACILITY_AUTH : options.log_facility,
Ben Lindstromc2faa4a2002-11-09 15:50:03 +00001619 log_stderr || !inetd_flag);
Damien Miller34132e52000-01-14 15:45:46 +11001620
Darren Tucker86c093d2004-03-08 22:59:03 +11001621 /*
1622 * Unset KRB5CCNAME, otherwise the user's session may inherit it from
1623 * root's environment
Damien Miller94cf4c82005-07-17 17:04:47 +10001624 */
Darren Tucker9dc6c7d2005-02-02 18:30:33 +11001625 if (getenv("KRB5CCNAME") != NULL)
Tim Ricee3609c92012-02-14 10:03:30 -08001626 (void) unsetenv("KRB5CCNAME");
Darren Tucker9dc6c7d2005-02-02 18:30:33 +11001627
Darren Tucker645ab752004-06-25 13:33:20 +10001628 sensitive_data.have_ssh2_key = 0;
1629
Darren Tuckere7140f22008-06-10 23:01:51 +10001630 /*
dtucker@openbsd.org@openbsd.org0208a482017-11-03 03:18:53 +00001631 * If we're not doing an extended test do not silently ignore connection
1632 * test params.
Darren Tuckere7140f22008-06-10 23:01:51 +10001633 */
dtucker@openbsd.org@openbsd.org0208a482017-11-03 03:18:53 +00001634 if (test_flag < 2 && connection_info != NULL)
Darren Tuckere7140f22008-06-10 23:01:51 +10001635 fatal("Config test connection parameter (-C) provided without "
1636 "test mode (-T)");
1637
Darren Tucker645ab752004-06-25 13:33:20 +10001638 /* Fetch our configuration */
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001639 if ((cfg = sshbuf_new()) == NULL)
1640 fatal("%s: sshbuf_new failed", __func__);
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001641 if (rexeced_flag) {
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001642 recv_rexec_state(REEXEC_CONFIG_PASS_FD, cfg);
djm@openbsd.org76a24b32019-03-01 02:32:39 +00001643 if (!debug_flag) {
1644 startup_pipe = dup(REEXEC_STARTUP_PIPE_FD);
1645 close(REEXEC_STARTUP_PIPE_FD);
1646 /*
1647 * Signal parent that this child is at a point where
1648 * they can go away if they have a SIGHUP pending.
1649 */
1650 (void)atomicio(vwrite, startup_pipe, "\0", 1);
1651 }
1652 }
djm@openbsd.orgdbcc6522015-04-27 00:21:21 +00001653 else if (strcasecmp(config_file_name, "none") != 0)
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001654 load_server_config(config_file_name, cfg);
Darren Tucker645ab752004-06-25 13:33:20 +10001655
Darren Tucker45150472006-07-12 22:34:17 +10001656 parse_server_config(&options, rexeced_flag ? "rexec" : config_file_name,
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001657 cfg, NULL);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001658
Damien Miller95def091999-11-25 00:26:21 +11001659 /* Fill in default values for those options not explicitly set. */
1660 fill_default_server_options(&options);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001661
Darren Tucker97b1bb52007-03-21 20:38:53 +11001662 /* challenge-response is implemented via keyboard interactive */
1663 if (options.challenge_response_authentication)
1664 options.kbd_interactive_authentication = 1;
1665
Damien Millerd0d10992012-11-04 22:23:14 +11001666 /* Check that options are sensible */
1667 if (options.authorized_keys_command_user == NULL &&
1668 (options.authorized_keys_command != NULL &&
1669 strcasecmp(options.authorized_keys_command, "none") != 0))
1670 fatal("AuthorizedKeysCommand set without "
1671 "AuthorizedKeysCommandUser");
djm@openbsd.orgbcc50d82015-05-21 06:43:30 +00001672 if (options.authorized_principals_command_user == NULL &&
1673 (options.authorized_principals_command != NULL &&
1674 strcasecmp(options.authorized_principals_command, "none") != 0))
1675 fatal("AuthorizedPrincipalsCommand set without "
1676 "AuthorizedPrincipalsCommandUser");
Damien Millerd0d10992012-11-04 22:23:14 +11001677
Damien Millera6e3f012012-11-04 23:21:40 +11001678 /*
1679 * Check whether there is any path through configured auth methods.
1680 * Unfortunately it is not possible to verify this generally before
1681 * daemonisation in the presence of Match block, but this catches
1682 * and warns for trivial misconfigurations that could break login.
1683 */
1684 if (options.num_auth_methods != 0) {
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001685 for (i = 0; i < options.num_auth_methods; i++) {
1686 if (auth2_methods_valid(options.auth_methods[i],
Damien Millera6e3f012012-11-04 23:21:40 +11001687 1) == 0)
1688 break;
1689 }
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001690 if (i >= options.num_auth_methods)
Damien Millera6e3f012012-11-04 23:21:40 +11001691 fatal("AuthenticationMethods cannot be satisfied by "
1692 "enabled authentication methods");
1693 }
1694
Damien Miller95def091999-11-25 00:26:21 +11001695 /* Check that there are no remaining arguments. */
1696 if (optind < ac) {
1697 fprintf(stderr, "Extra argument %s.\n", av[optind]);
1698 exit(1);
1699 }
Damien Millerd4a8b7e1999-10-27 13:42:43 +10001700
Damien Miller22e8a1e2013-02-12 11:04:48 +11001701 debug("sshd version %s, %s", SSH_VERSION,
Damien Miller1f0311c2014-05-15 14:24:09 +10001702#ifdef WITH_OPENSSL
djm@openbsd.orga65784c2018-10-23 05:56:35 +00001703 OpenSSL_version(OPENSSL_VERSION)
Damien Miller1f0311c2014-05-15 14:24:09 +10001704#else
1705 "without OpenSSL"
1706#endif
1707 );
Damien Miller2ccf6611999-11-15 15:25:10 +11001708
Darren Tuckerdf0e4382006-11-07 11:28:40 +11001709 /* Store privilege separation user for later use if required. */
Darren Tuckerd13281f2017-03-29 12:39:39 +11001710 privsep_chroot = use_privsep && (getuid() == 0 || geteuid() == 0);
Darren Tuckerdf0e4382006-11-07 11:28:40 +11001711 if ((privsep_pw = getpwnam(SSH_PRIVSEP_USER)) == NULL) {
Darren Tuckerd13281f2017-03-29 12:39:39 +11001712 if (privsep_chroot || options.kerberos_authentication)
Darren Tuckerdf0e4382006-11-07 11:28:40 +11001713 fatal("Privilege separation user %s does not exist",
1714 SSH_PRIVSEP_USER);
1715 } else {
Darren Tuckerdf0e4382006-11-07 11:28:40 +11001716 privsep_pw = pwcopy(privsep_pw);
djm@openbsd.orgd6364f62018-01-23 05:01:15 +00001717 freezero(privsep_pw->pw_passwd, strlen(privsep_pw->pw_passwd));
Darren Tuckerdf0e4382006-11-07 11:28:40 +11001718 privsep_pw->pw_passwd = xstrdup("*");
1719 }
Damien Miller6433df02006-09-07 10:36:43 +10001720 endpwent();
1721
Damien Miller85b45e02013-07-20 13:21:52 +10001722 /* load host keys */
Damien Miller07d86be2006-03-26 14:19:21 +11001723 sensitive_data.host_keys = xcalloc(options.num_host_key_files,
markus@openbsd.org54d90ac2017-05-30 08:52:19 +00001724 sizeof(struct sshkey *));
Damien Miller85b45e02013-07-20 13:21:52 +10001725 sensitive_data.host_pubkeys = xcalloc(options.num_host_key_files,
markus@openbsd.org54d90ac2017-05-30 08:52:19 +00001726 sizeof(struct sshkey *));
Damien Miller85b45e02013-07-20 13:21:52 +10001727
1728 if (options.host_key_agent) {
1729 if (strcmp(options.host_key_agent, SSH_AUTHSOCKET_ENV_NAME))
1730 setenv(SSH_AUTHSOCKET_ENV_NAME,
1731 options.host_key_agent, 1);
djm@openbsd.org83f8ffa2015-01-17 18:53:34 +00001732 if ((r = ssh_get_authentication_socket(NULL)) == 0)
1733 have_agent = 1;
1734 else
1735 error("Could not connect to agent \"%s\": %s",
1736 options.host_key_agent, ssh_err(r));
Damien Miller85b45e02013-07-20 13:21:52 +10001737 }
Damien Millereba71ba2000-04-29 23:57:08 +10001738
Damien Miller9f0f5c62001-12-21 14:45:46 +11001739 for (i = 0; i < options.num_host_key_files; i++) {
djm@openbsd.org928f1232018-11-19 04:12:32 +00001740 int ll = options.host_key_file_userprovided[i] ?
1741 SYSLOG_LEVEL_ERROR : SYSLOG_LEVEL_DEBUG1;
1742
djm@openbsd.org161cf412014-12-22 07:55:51 +00001743 if (options.host_key_files[i] == NULL)
1744 continue;
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001745 if ((r = sshkey_load_private(options.host_key_files[i], "",
1746 &key, NULL)) != 0 && r != SSH_ERR_SYSTEM_ERROR)
djm@openbsd.org928f1232018-11-19 04:12:32 +00001747 do_log2(ll, "Unable to load host key \"%s\": %s",
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001748 options.host_key_files[i], ssh_err(r));
djm@openbsd.org56584cc2019-12-15 18:57:30 +00001749 if (sshkey_is_sk(key) &&
1750 key->sk_flags & SSH_SK_USER_PRESENCE_REQD) {
1751 debug("host key %s requires user presence, ignoring",
1752 options.host_key_files[i]);
1753 key->sk_flags &= ~SSH_SK_USER_PRESENCE_REQD;
1754 }
1755 if (r == 0 && key != NULL &&
1756 (r = sshkey_shield_private(key)) != 0) {
djm@openbsd.org4f7a56d2019-06-21 04:21:04 +00001757 do_log2(ll, "Unable to shield host key \"%s\": %s",
1758 options.host_key_files[i], ssh_err(r));
1759 sshkey_free(key);
1760 key = NULL;
1761 }
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001762 if ((r = sshkey_load_public(options.host_key_files[i],
1763 &pubkey, NULL)) != 0 && r != SSH_ERR_SYSTEM_ERROR)
djm@openbsd.org928f1232018-11-19 04:12:32 +00001764 do_log2(ll, "Unable to load host key \"%s\": %s",
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001765 options.host_key_files[i], ssh_err(r));
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00001766 if (pubkey == NULL && key != NULL)
djm@openbsd.org482d23b2018-09-13 02:08:33 +00001767 if ((r = sshkey_from_private(key, &pubkey)) != 0)
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001768 fatal("Could not demote key: \"%s\": %s",
1769 options.host_key_files[i], ssh_err(r));
Ben Lindstromd0fca422001-03-26 13:44:06 +00001770 sensitive_data.host_keys[i] = key;
Damien Miller85b45e02013-07-20 13:21:52 +10001771 sensitive_data.host_pubkeys[i] = pubkey;
1772
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +00001773 if (key == NULL && pubkey != NULL && have_agent) {
djm@openbsd.orgce63c4b2015-02-16 22:30:03 +00001774 debug("will rely on agent for hostkey %s",
1775 options.host_key_files[i]);
Damien Miller85b45e02013-07-20 13:21:52 +10001776 keytype = pubkey->type;
1777 } else if (key != NULL) {
1778 keytype = key->type;
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001779 accumulate_host_timing_secret(cfg, key);
Damien Miller85b45e02013-07-20 13:21:52 +10001780 } else {
djm@openbsd.org928f1232018-11-19 04:12:32 +00001781 do_log2(ll, "Unable to load host key: %s",
Ben Lindstrom15f33862001-04-16 02:00:02 +00001782 options.host_key_files[i]);
Ben Lindstromd0fca422001-03-26 13:44:06 +00001783 sensitive_data.host_keys[i] = NULL;
Damien Miller85b45e02013-07-20 13:21:52 +10001784 sensitive_data.host_pubkeys[i] = NULL;
Damien Miller0bc1bd82000-11-13 22:57:25 +11001785 continue;
1786 }
Damien Miller85b45e02013-07-20 13:21:52 +10001787
1788 switch (keytype) {
Damien Miller0bc1bd82000-11-13 22:57:25 +11001789 case KEY_RSA:
1790 case KEY_DSA:
Damien Millereb8b60e2010-08-31 22:41:14 +10001791 case KEY_ECDSA:
Damien Miller5be9d9e2013-12-07 11:24:01 +11001792 case KEY_ED25519:
djm@openbsd.org56584cc2019-12-15 18:57:30 +00001793 case KEY_ECDSA_SK:
1794 case KEY_ED25519_SK:
markus@openbsd.org1b11ea72018-02-23 15:58:37 +00001795 case KEY_XMSS:
djm@openbsd.org6049a542015-01-31 20:30:05 +00001796 if (have_agent || key != NULL)
1797 sensitive_data.have_ssh2_key = 1;
Damien Miller0bc1bd82000-11-13 22:57:25 +11001798 break;
1799 }
djm@openbsd.org6049a542015-01-31 20:30:05 +00001800 if ((fp = sshkey_fingerprint(pubkey, options.fingerprint_hash,
1801 SSH_FP_DEFAULT)) == NULL)
1802 fatal("sshkey_fingerprint failed");
1803 debug("%s host key #%d: %s %s",
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +00001804 key ? "private" : "agent", i, sshkey_ssh_name(pubkey), fp);
djm@openbsd.org6049a542015-01-31 20:30:05 +00001805 free(fp);
Damien Miller0bc1bd82000-11-13 22:57:25 +11001806 }
markus@openbsd.orgc3cb7792018-07-09 21:29:36 +00001807 accumulate_host_timing_secret(cfg, NULL);
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +00001808 if (!sensitive_data.have_ssh2_key) {
Damien Miller996acd22003-04-09 20:59:48 +10001809 logit("sshd: no hostkeys available -- exiting.");
Damien Miller95def091999-11-25 00:26:21 +11001810 exit(1);
1811 }
Damien Miller95def091999-11-25 00:26:21 +11001812
Damien Miller0a80ca12010-02-27 07:55:05 +11001813 /*
1814 * Load certificates. They are stored in an array at identical
1815 * indices to the public keys that they relate to.
1816 */
1817 sensitive_data.host_certificates = xcalloc(options.num_host_key_files,
markus@openbsd.org54d90ac2017-05-30 08:52:19 +00001818 sizeof(struct sshkey *));
Damien Miller0a80ca12010-02-27 07:55:05 +11001819 for (i = 0; i < options.num_host_key_files; i++)
1820 sensitive_data.host_certificates[i] = NULL;
1821
1822 for (i = 0; i < options.num_host_cert_files; i++) {
djm@openbsd.org161cf412014-12-22 07:55:51 +00001823 if (options.host_cert_files[i] == NULL)
1824 continue;
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001825 if ((r = sshkey_load_public(options.host_cert_files[i],
1826 &key, NULL)) != 0) {
1827 error("Could not load host certificate \"%s\": %s",
1828 options.host_cert_files[i], ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +11001829 continue;
1830 }
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001831 if (!sshkey_is_cert(key)) {
Damien Miller0a80ca12010-02-27 07:55:05 +11001832 error("Certificate file is not a certificate: %s",
1833 options.host_cert_files[i]);
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001834 sshkey_free(key);
Damien Miller0a80ca12010-02-27 07:55:05 +11001835 continue;
1836 }
1837 /* Find matching private key */
1838 for (j = 0; j < options.num_host_key_files; j++) {
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001839 if (sshkey_equal_public(key,
Damien Miller0a80ca12010-02-27 07:55:05 +11001840 sensitive_data.host_keys[j])) {
1841 sensitive_data.host_certificates[j] = key;
1842 break;
1843 }
1844 }
1845 if (j >= options.num_host_key_files) {
1846 error("No matching private key for certificate: %s",
1847 options.host_cert_files[i]);
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001848 sshkey_free(key);
Damien Miller0a80ca12010-02-27 07:55:05 +11001849 continue;
1850 }
1851 sensitive_data.host_certificates[j] = key;
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001852 debug("host certificate: #%u type %d %s", j, key->type,
markus@openbsd.org5467fbc2018-07-11 18:53:29 +00001853 sshkey_type(key));
Damien Miller0a80ca12010-02-27 07:55:05 +11001854 }
Damien Miller1f0311c2014-05-15 14:24:09 +10001855
Darren Tuckerd13281f2017-03-29 12:39:39 +11001856 if (privsep_chroot) {
Ben Lindstroma26ea632002-06-06 20:46:25 +00001857 struct stat st;
1858
Ben Lindstroma26ea632002-06-06 20:46:25 +00001859 if ((stat(_PATH_PRIVSEP_CHROOT_DIR, &st) == -1) ||
1860 (S_ISDIR(st.st_mode) == 0))
1861 fatal("Missing privilege separation directory: %s",
1862 _PATH_PRIVSEP_CHROOT_DIR);
Ben Lindstrom59627352002-06-27 18:02:21 +00001863
1864#ifdef HAVE_CYGWIN
1865 if (check_ntsec(_PATH_PRIVSEP_CHROOT_DIR) &&
1866 (st.st_uid != getuid () ||
1867 (st.st_mode & (S_IWGRP|S_IWOTH)) != 0))
1868#else
Ben Lindstrom2dfacb32002-06-23 00:33:47 +00001869 if (st.st_uid != 0 || (st.st_mode & (S_IWGRP|S_IWOTH)) != 0)
Ben Lindstrom59627352002-06-27 18:02:21 +00001870#endif
Damien Miller180fc5b2003-02-24 11:50:18 +11001871 fatal("%s must be owned by root and not group or "
1872 "world-writable.", _PATH_PRIVSEP_CHROOT_DIR);
Ben Lindstroma26ea632002-06-06 20:46:25 +00001873 }
1874
Darren Tuckere7140f22008-06-10 23:01:51 +10001875 if (test_flag > 1) {
djm@openbsd.org@openbsd.org548d3a62017-11-14 00:45:29 +00001876 /*
1877 * If no connection info was provided by -C then use
1878 * use a blank one that will cause no predicate to match.
1879 */
1880 if (connection_info == NULL)
djm@openbsd.org172a5922019-01-19 21:37:48 +00001881 connection_info = get_connection_info(ssh, 0, 0);
dtucker@openbsd.orge826bbc2019-04-18 18:56:16 +00001882 connection_info->test = 1;
dtucker@openbsd.org@openbsd.org0208a482017-11-03 03:18:53 +00001883 parse_server_match_config(&options, connection_info);
Darren Tuckere7140f22008-06-10 23:01:51 +10001884 dump_config(&options);
1885 }
1886
Ben Lindstrom794325a2001-08-06 21:09:07 +00001887 /* Configuration looks good, so exit if in test mode. */
1888 if (test_flag)
1889 exit(0);
1890
Damien Miller87aea252002-05-10 12:20:24 +10001891 /*
1892 * Clear out any supplemental groups we may have inherited. This
1893 * prevents inadvertent creation of files with bad modes (in the
Damien Millera8e06ce2003-11-21 23:48:55 +11001894 * portable version at least, it's certainly possible for PAM
1895 * to create a file, and we can't control the code in every
Damien Miller87aea252002-05-10 12:20:24 +10001896 * module which might be used).
1897 */
1898 if (setgroups(0, NULL) < 0)
1899 debug("setgroups() failed: %.200s", strerror(errno));
1900
Darren Tucker645ab752004-06-25 13:33:20 +10001901 if (rexec_flag) {
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001902 if (rexec_argc < 0)
1903 fatal("rexec_argc %d < 0", rexec_argc);
Damien Miller07d86be2006-03-26 14:19:21 +11001904 rexec_argv = xcalloc(rexec_argc + 2, sizeof(char *));
djm@openbsd.orgdceabc72017-10-05 15:52:03 +00001905 for (i = 0; i < (u_int)rexec_argc; i++) {
Darren Tucker645ab752004-06-25 13:33:20 +10001906 debug("rexec_argv[%d]='%s'", i, saved_argv[i]);
1907 rexec_argv[i] = saved_argv[i];
1908 }
1909 rexec_argv[rexec_argc] = "-R";
1910 rexec_argv[rexec_argc + 1] = NULL;
1911 }
1912
Damien Miller6ca16c62008-06-16 07:50:58 +10001913 /* Ensure that umask disallows at least group and world write */
1914 new_umask = umask(0077) | 0022;
1915 (void) umask(new_umask);
1916
Damien Millereba71ba2000-04-29 23:57:08 +10001917 /* Initialize the log (it is reinitialized below in case we forked). */
Darren Tuckerea7c8122005-01-20 11:03:08 +11001918 if (debug_flag && (!inetd_flag || rexeced_flag))
Damien Miller95def091999-11-25 00:26:21 +11001919 log_stderr = 1;
Kevin Stevesec84dc12000-12-13 17:45:15 +00001920 log_init(__progname, options.log_level, options.log_facility, log_stderr);
Damien Miller95def091999-11-25 00:26:21 +11001921
Damien Millereba71ba2000-04-29 23:57:08 +10001922 /*
dtucker@openbsd.org7fc47662016-11-30 00:28:31 +00001923 * If not in debugging mode, not started from inetd and not already
1924 * daemonized (eg re-exec via SIGHUP), disconnect from the controlling
1925 * terminal, and fork. The original process exits.
Damien Millereba71ba2000-04-29 23:57:08 +10001926 */
dtucker@openbsd.org7fc47662016-11-30 00:28:31 +00001927 already_daemon = daemonized();
1928 if (!(debug_flag || inetd_flag || no_daemon_flag || already_daemon)) {
dtucker@openbsd.orgb0899ee2016-11-29 03:54:50 +00001929
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001930 if (daemon(0, 0) == -1)
Damien Miller95def091999-11-25 00:26:21 +11001931 fatal("daemon() failed: %.200s", strerror(errno));
1932
dtucker@openbsd.orgb0899ee2016-11-29 03:54:50 +00001933 disconnect_controlling_tty();
Damien Miller95def091999-11-25 00:26:21 +11001934 }
1935 /* Reinitialize the log (because of the fork above). */
Kevin Stevesec84dc12000-12-13 17:45:15 +00001936 log_init(__progname, options.log_level, options.log_facility, log_stderr);
Damien Miller95def091999-11-25 00:26:21 +11001937
Damien Miller95def091999-11-25 00:26:21 +11001938 /* Chdir to the root directory so that the current disk can be
1939 unmounted if desired. */
Darren Tuckerdbee3082013-05-16 20:32:29 +10001940 if (chdir("/") == -1)
1941 error("chdir(\"/\"): %s", strerror(errno));
Damien Miller9f0f5c62001-12-21 14:45:46 +11001942
Ben Lindstromde71cda2001-03-24 00:43:26 +00001943 /* ignore SIGPIPE */
1944 signal(SIGPIPE, SIG_IGN);
Damien Miller95def091999-11-25 00:26:21 +11001945
Damien Millera1f68402006-08-19 00:31:39 +10001946 /* Get a connection, either from inetd or a listening TCP socket */
Damien Miller95def091999-11-25 00:26:21 +11001947 if (inetd_flag) {
Damien Millera1f68402006-08-19 00:31:39 +10001948 server_accept_inetd(&sock_in, &sock_out);
Damien Miller95def091999-11-25 00:26:21 +11001949 } else {
Darren Tuckerc8802aa2009-12-08 13:39:48 +11001950 platform_pre_listen();
Damien Millera1f68402006-08-19 00:31:39 +10001951 server_listen();
Damien Miller34132e52000-01-14 15:45:46 +11001952
Ben Lindstrom98097862001-06-25 05:10:20 +00001953 signal(SIGHUP, sighup_handler);
Damien Millera1f68402006-08-19 00:31:39 +10001954 signal(SIGCHLD, main_sigchld_handler);
Ben Lindstrom98097862001-06-25 05:10:20 +00001955 signal(SIGTERM, sigterm_handler);
1956 signal(SIGQUIT, sigterm_handler);
1957
Damien Millera1f68402006-08-19 00:31:39 +10001958 /*
1959 * Write out the pid file after the sigterm handler
1960 * is setup and the listen sockets are bound
1961 */
dtucker@openbsd.orgf2398eb2016-12-04 22:27:25 +00001962 if (options.pid_file != NULL && !debug_flag) {
Damien Millera1f68402006-08-19 00:31:39 +10001963 FILE *f = fopen(options.pid_file, "w");
1964
Darren Tuckere5327042003-07-03 13:40:44 +10001965 if (f == NULL) {
1966 error("Couldn't create pid file \"%s\": %s",
1967 options.pid_file, strerror(errno));
1968 } else {
Ben Lindstromce0f6342002-06-11 16:42:49 +00001969 fprintf(f, "%ld\n", (long) getpid());
Damien Miller95def091999-11-25 00:26:21 +11001970 fclose(f);
1971 }
1972 }
Damien Miller95def091999-11-25 00:26:21 +11001973
Damien Millera1f68402006-08-19 00:31:39 +10001974 /* Accept a connection and return in a forked child */
1975 server_accept_loop(&sock_in, &sock_out,
1976 &newsock, config_s);
Damien Miller95def091999-11-25 00:26:21 +11001977 }
1978
1979 /* This is the child processing a new connection. */
Damien Miller57aae982004-03-08 23:11:25 +11001980 setproctitle("%s", "[accepted]");
Damien Miller95def091999-11-25 00:26:21 +11001981
Darren Tucker6832b832004-08-12 22:36:51 +10001982 /*
1983 * Create a new session and process group since the 4.4BSD
1984 * setlogin() affects the entire process group. We don't
1985 * want the child to be able to affect the parent.
1986 */
1987#if !defined(SSHD_ACQUIRES_CTTY)
1988 /*
1989 * If setsid is called, on some platforms sshd will later acquire a
1990 * controlling terminal which will result in "could not set
1991 * controlling tty" errors.
1992 */
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00001993 if (!debug_flag && !inetd_flag && setsid() == -1)
Darren Tucker6832b832004-08-12 22:36:51 +10001994 error("setsid: %.100s", strerror(errno));
1995#endif
1996
Darren Tucker645ab752004-06-25 13:33:20 +10001997 if (rexec_flag) {
1998 int fd;
1999
Damien Miller035a5b42004-06-26 08:16:31 +10002000 debug("rexec start in %d out %d newsock %d pipe %d sock %d",
2001 sock_in, sock_out, newsock, startup_pipe, config_s[0]);
Darren Tucker645ab752004-06-25 13:33:20 +10002002 dup2(newsock, STDIN_FILENO);
2003 dup2(STDIN_FILENO, STDOUT_FILENO);
2004 if (startup_pipe == -1)
Damien Miller035a5b42004-06-26 08:16:31 +10002005 close(REEXEC_STARTUP_PIPE_FD);
Damien Miller61ee4d62013-10-15 11:56:47 +11002006 else if (startup_pipe != REEXEC_STARTUP_PIPE_FD) {
Damien Miller035a5b42004-06-26 08:16:31 +10002007 dup2(startup_pipe, REEXEC_STARTUP_PIPE_FD);
Damien Miller61ee4d62013-10-15 11:56:47 +11002008 close(startup_pipe);
2009 startup_pipe = REEXEC_STARTUP_PIPE_FD;
2010 }
Darren Tucker645ab752004-06-25 13:33:20 +10002011
Damien Miller035a5b42004-06-26 08:16:31 +10002012 dup2(config_s[1], REEXEC_CONFIG_PASS_FD);
Darren Tucker645ab752004-06-25 13:33:20 +10002013 close(config_s[1]);
Damien Miller035a5b42004-06-26 08:16:31 +10002014
Darren Tucker645ab752004-06-25 13:33:20 +10002015 execv(rexec_argv[0], rexec_argv);
2016
2017 /* Reexec has failed, fall back and continue */
2018 error("rexec of %s failed: %s", rexec_argv[0], strerror(errno));
Damien Miller035a5b42004-06-26 08:16:31 +10002019 recv_rexec_state(REEXEC_CONFIG_PASS_FD, NULL);
Darren Tucker645ab752004-06-25 13:33:20 +10002020 log_init(__progname, options.log_level,
2021 options.log_facility, log_stderr);
2022
2023 /* Clean up fds */
Damien Miller035a5b42004-06-26 08:16:31 +10002024 close(REEXEC_CONFIG_PASS_FD);
2025 newsock = sock_out = sock_in = dup(STDIN_FILENO);
Darren Tucker645ab752004-06-25 13:33:20 +10002026 if ((fd = open(_PATH_DEVNULL, O_RDWR, 0)) != -1) {
2027 dup2(fd, STDIN_FILENO);
2028 dup2(fd, STDOUT_FILENO);
2029 if (fd > STDERR_FILENO)
2030 close(fd);
2031 }
Damien Miller035a5b42004-06-26 08:16:31 +10002032 debug("rexec cleanup in %d out %d newsock %d pipe %d sock %d",
2033 sock_in, sock_out, newsock, startup_pipe, config_s[0]);
Darren Tucker645ab752004-06-25 13:33:20 +10002034 }
2035
Damien Miller133d9d32010-01-30 17:30:04 +11002036 /* Executed child processes don't need these. */
2037 fcntl(sock_out, F_SETFD, FD_CLOEXEC);
2038 fcntl(sock_in, F_SETFD, FD_CLOEXEC);
2039
Damien Miller5428f641999-11-25 11:54:57 +11002040 /*
2041 * Disable the key regeneration alarm. We will not regenerate the
2042 * key since we are no longer in a position to give it to anyone. We
2043 * will not restart on SIGHUP since it no longer makes sense.
2044 */
Damien Miller95def091999-11-25 00:26:21 +11002045 alarm(0);
2046 signal(SIGALRM, SIG_DFL);
2047 signal(SIGHUP, SIG_DFL);
2048 signal(SIGTERM, SIG_DFL);
2049 signal(SIGQUIT, SIG_DFL);
2050 signal(SIGCHLD, SIG_DFL);
Damien Miller4e0f5e12000-08-29 11:05:50 +11002051 signal(SIGINT, SIG_DFL);
Damien Miller95def091999-11-25 00:26:21 +11002052
Damien Miller5428f641999-11-25 11:54:57 +11002053 /*
2054 * Register our connection. This turns encryption off because we do
2055 * not have a key.
2056 */
djm@openbsd.org6350e032019-01-19 21:42:30 +00002057 if ((ssh = ssh_packet_set_connection(NULL, sock_in, sock_out)) == NULL)
2058 fatal("Unable to create connection");
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002059 the_active_state = ssh;
djm@openbsd.org6350e032019-01-19 21:42:30 +00002060 ssh_packet_set_server(ssh);
djm@openbsd.orgdbee4112017-09-12 06:32:07 +00002061
djm@openbsd.org95767262016-03-07 19:02:43 +00002062 check_ip_options(ssh);
Damien Miller95def091999-11-25 00:26:21 +11002063
djm@openbsd.orgdbee4112017-09-12 06:32:07 +00002064 /* Prepare the channels layer */
2065 channel_init_channels(ssh);
2066 channel_set_af(ssh, options.address_family);
2067 process_permitopen(ssh, &options);
2068
Damien Miller4f1d6b22005-05-26 11:59:32 +10002069 /* Set SO_KEEPALIVE if requested. */
djm@openbsd.org6350e032019-01-19 21:42:30 +00002070 if (options.tcp_keep_alive && ssh_packet_connection_is_on_socket(ssh) &&
deraadt@openbsd.org4d28fa72019-06-28 13:35:04 +00002071 setsockopt(sock_in, SOL_SOCKET, SO_KEEPALIVE, &on, sizeof(on)) == -1)
Damien Miller4f1d6b22005-05-26 11:59:32 +10002072 error("setsockopt SO_KEEPALIVE: %.100s", strerror(errno));
2073
djm@openbsd.org95767262016-03-07 19:02:43 +00002074 if ((remote_port = ssh_remote_port(ssh)) < 0) {
2075 debug("ssh_remote_port failed");
Damien Miller677257f2005-06-17 12:55:03 +10002076 cleanup_exit(255);
2077 }
Damien Miller4d3fd542005-11-05 15:13:24 +11002078
djm@openbsd.org35eb33f2017-10-25 00:17:08 +00002079 if (options.routing_domain != NULL)
2080 set_process_rdomain(ssh, options.routing_domain);
2081
Damien Miller4d3fd542005-11-05 15:13:24 +11002082 /*
Damien Millereb13e552006-06-13 13:03:53 +10002083 * The rest of the code depends on the fact that
djm@openbsd.org95767262016-03-07 19:02:43 +00002084 * ssh_remote_ipaddr() caches the remote ip, even if
Damien Millereb13e552006-06-13 13:03:53 +10002085 * the socket goes away.
2086 */
djm@openbsd.org95767262016-03-07 19:02:43 +00002087 remote_ip = ssh_remote_ipaddr(ssh);
Damien Miller95def091999-11-25 00:26:21 +11002088
Darren Tucker2e0cf0d2005-02-08 21:52:47 +11002089#ifdef SSH_AUDIT_EVENTS
Darren Tucker269a1ea2005-02-03 00:20:53 +11002090 audit_connection_from(remote_ip, remote_port);
2091#endif
Damien Miller6a4a4b92001-11-12 11:07:11 +11002092
djm@openbsd.org68af80e2017-10-25 00:19:47 +00002093 rdomain = ssh_packet_rdomain_in(ssh);
2094
Damien Miller95def091999-11-25 00:26:21 +11002095 /* Log the connection. */
dtucker@openbsd.org15fdfc92015-04-15 23:23:25 +00002096 laddr = get_local_ipaddr(sock_in);
djm@openbsd.org@openbsd.orgb77c29a2017-10-27 00:18:41 +00002097 verbose("Connection from %s port %d on %s port %d%s%s%s",
djm@openbsd.org68af80e2017-10-25 00:19:47 +00002098 remote_ip, remote_port, laddr, ssh_local_port(ssh),
djm@openbsd.org@openbsd.orgb77c29a2017-10-27 00:18:41 +00002099 rdomain == NULL ? "" : " rdomain \"",
2100 rdomain == NULL ? "" : rdomain,
2101 rdomain == NULL ? "" : "\"");
dtucker@openbsd.org15fdfc92015-04-15 23:23:25 +00002102 free(laddr);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002103
Damien Miller5428f641999-11-25 11:54:57 +11002104 /*
Damien Miller788f2122005-11-05 15:14:59 +11002105 * We don't want to listen forever unless the other side
Damien Miller5428f641999-11-25 11:54:57 +11002106 * successfully authenticates itself. So we set up an alarm which is
2107 * cleared after successful authentication. A limit of zero
Damien Miller788f2122005-11-05 15:14:59 +11002108 * indicates no limit. Note that we don't set the alarm in debugging
Damien Miller5428f641999-11-25 11:54:57 +11002109 * mode; it is just annoying to have the server exit just when you
2110 * are about to discover the bug.
2111 */
Ben Lindstrom5ade9ab2003-08-25 01:16:21 +00002112 signal(SIGALRM, grace_alarm_handler);
Damien Miller95def091999-11-25 00:26:21 +11002113 if (!debug_flag)
2114 alarm(options.login_grace_time);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002115
djm@openbsd.org0a843d92018-12-27 03:25:24 +00002116 if (kex_exchange_identification(ssh, -1, options.version_addendum) != 0)
2117 cleanup_exit(255); /* error already logged */
2118
djm@openbsd.org6350e032019-01-19 21:42:30 +00002119 ssh_packet_set_nonblocking(ssh);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002120
Darren Tucker3e33cec2003-10-02 16:12:36 +10002121 /* allocate authentication context */
Damien Miller07d86be2006-03-26 14:19:21 +11002122 authctxt = xcalloc(1, sizeof(*authctxt));
djm@openbsd.org6350e032019-01-19 21:42:30 +00002123 ssh->authctxt = authctxt;
Darren Tucker3e33cec2003-10-02 16:12:36 +10002124
Damien Miller120a1ec2018-07-10 19:39:52 +10002125 authctxt->loginmsg = loginmsg;
Darren Tuckerf3bb4342005-03-31 21:39:25 +10002126
Darren Tucker3e33cec2003-10-02 16:12:36 +10002127 /* XXX global for cleanup, access from other modules */
2128 the_authctxt = authctxt;
2129
djm@openbsd.org7c856852018-03-03 03:15:51 +00002130 /* Set default key authentication options */
2131 if ((auth_opts = sshauthopt_new_with_keys_defaults()) == NULL)
2132 fatal("allocation failed");
2133
Darren Tucker5c14c732005-01-24 21:55:49 +11002134 /* prepare buffer to collect messages to display to user after login */
markus@openbsd.org2808d182018-07-09 21:26:02 +00002135 if ((loginmsg = sshbuf_new()) == NULL)
2136 fatal("%s: sshbuf_new failed", __func__);
Darren Tuckercd70e1b2010-03-07 23:05:17 +11002137 auth_debug_reset();
Darren Tucker5c14c732005-01-24 21:55:49 +11002138
Damien Miller85b45e02013-07-20 13:21:52 +10002139 if (use_privsep) {
djm@openbsd.org6350e032019-01-19 21:42:30 +00002140 if (privsep_preauth(ssh) == 1)
Ben Lindstrom943481c2002-03-22 03:43:46 +00002141 goto authenticated;
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +00002142 } else if (have_agent) {
djm@openbsd.org141efe42015-01-14 20:05:27 +00002143 if ((r = ssh_get_authentication_socket(&auth_sock)) != 0) {
2144 error("Unable to get agent socket: %s", ssh_err(r));
djm@openbsd.org83f8ffa2015-01-17 18:53:34 +00002145 have_agent = 0;
djm@openbsd.org141efe42015-01-14 20:05:27 +00002146 }
2147 }
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002148
Damien Miller396691a2000-01-20 22:44:08 +11002149 /* perform the key exchange */
Damien Miller396691a2000-01-20 22:44:08 +11002150 /* authenticate user and start session */
djm@openbsd.org6350e032019-01-19 21:42:30 +00002151 do_ssh2_kex(ssh);
Damien Miller5ebce132019-01-20 09:44:53 +11002152 do_authentication2(ssh);
markus@openbsd.org6cb6dcf2016-08-13 17:47:40 +00002153
Ben Lindstrom943481c2002-03-22 03:43:46 +00002154 /*
2155 * If we use privilege separation, the unprivileged child transfers
2156 * the current keystate and exits
2157 */
2158 if (use_privsep) {
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002159 mm_send_keystate(ssh, pmonitor);
djm@openbsd.org6350e032019-01-19 21:42:30 +00002160 ssh_packet_clear_keys(ssh);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002161 exit(0);
Ben Lindstrom943481c2002-03-22 03:43:46 +00002162 }
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002163
2164 authenticated:
Damien Miller7bff1a92005-12-24 14:59:12 +11002165 /*
2166 * Cancel the alarm we set to limit the time taken for
2167 * authentication.
2168 */
2169 alarm(0);
2170 signal(SIGALRM, SIG_DFL);
Damien Miller3f8123c2006-08-19 00:32:46 +10002171 authctxt->authenticated = 1;
Damien Miller7bff1a92005-12-24 14:59:12 +11002172 if (startup_pipe != -1) {
2173 close(startup_pipe);
2174 startup_pipe = -1;
2175 }
2176
Darren Tucker2e0cf0d2005-02-08 21:52:47 +11002177#ifdef SSH_AUDIT_EVENTS
Damien Miller9b655dc2019-01-20 14:55:27 +11002178 audit_event(ssh, SSH_AUTH_SUCCESS);
Darren Tucker269a1ea2005-02-03 00:20:53 +11002179#endif
2180
Darren Tucker52358d62008-03-11 22:58:25 +11002181#ifdef GSSAPI
2182 if (options.gss_authentication) {
2183 temporarily_use_uid(authctxt->pw);
2184 ssh_gssapi_storecreds();
2185 restore_uid();
2186 }
2187#endif
2188#ifdef USE_PAM
2189 if (options.use_pam) {
2190 do_pam_setcred(1);
djm@openbsd.org7c856852018-03-03 03:15:51 +00002191 do_pam_session(ssh);
Darren Tucker52358d62008-03-11 22:58:25 +11002192 }
2193#endif
2194
Ben Lindstrom6328ab32002-03-22 02:54:23 +00002195 /*
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002196 * In privilege separation, we fork another child and prepare
2197 * file descriptor passing.
2198 */
2199 if (use_privsep) {
djm@openbsd.org6350e032019-01-19 21:42:30 +00002200 privsep_postauth(ssh, authctxt);
Ben Lindstrom943481c2002-03-22 03:43:46 +00002201 /* the monitor process [priv] will not return */
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002202 }
Ben Lindstrom73ab9ba2002-03-22 01:27:35 +00002203
djm@openbsd.org6350e032019-01-19 21:42:30 +00002204 ssh_packet_set_timeout(ssh, options.client_alive_interval,
Darren Tucker3fc464e2008-06-13 06:42:45 +10002205 options.client_alive_count_max);
2206
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00002207 /* Try to send all our hostkeys to the client */
djm@openbsd.orgdbee4112017-09-12 06:32:07 +00002208 notify_hostkeys(ssh);
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00002209
Darren Tucker3e33cec2003-10-02 16:12:36 +10002210 /* Start session. */
djm@openbsd.orgdbee4112017-09-12 06:32:07 +00002211 do_authenticated(ssh, authctxt);
Ben Lindstrom73ab9ba2002-03-22 01:27:35 +00002212
Damien Miller3a5b0232002-03-13 13:19:42 +11002213 /* The connection has been terminated. */
djm@openbsd.org6350e032019-01-19 21:42:30 +00002214 ssh_packet_get_bytes(ssh, &ibytes, &obytes);
Damien Miller821de0a2011-01-11 17:20:29 +11002215 verbose("Transferred: sent %llu, received %llu bytes",
2216 (unsigned long long)obytes, (unsigned long long)ibytes);
Damien Millerb61f3fc2008-07-11 17:36:48 +10002217
2218 verbose("Closing connection to %.500s port %d", remote_ip, remote_port);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002219
Damien Millerbeb4ba51999-12-28 15:09:35 +11002220#ifdef USE_PAM
Damien Miller4e448a32003-05-14 15:11:48 +10002221 if (options.use_pam)
2222 finish_pam();
Damien Millerbeb4ba51999-12-28 15:09:35 +11002223#endif /* USE_PAM */
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002224
Darren Tucker2b59a6d2005-03-06 22:38:51 +11002225#ifdef SSH_AUDIT_EVENTS
Damien Miller9b655dc2019-01-20 14:55:27 +11002226 PRIVSEP(audit_event(ssh, SSH_CONNECTION_CLOSE));
Darren Tucker2b59a6d2005-03-06 22:38:51 +11002227#endif
2228
djm@openbsd.org6350e032019-01-19 21:42:30 +00002229 ssh_packet_close(ssh);
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002230
2231 if (use_privsep)
2232 mm_terminate();
2233
Damien Miller95def091999-11-25 00:26:21 +11002234 exit(0);
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002235}
2236
markus@openbsd.org57d10cb2015-01-19 20:16:15 +00002237int
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002238sshd_hostkey_sign(struct ssh *ssh, struct sshkey *privkey,
2239 struct sshkey *pubkey, u_char **signature, size_t *slenp,
2240 const u_char *data, size_t dlen, const char *alg)
Damien Miller85b45e02013-07-20 13:21:52 +10002241{
djm@openbsd.org141efe42015-01-14 20:05:27 +00002242 int r;
2243
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002244 if (use_privsep) {
2245 if (privkey) {
2246 if (mm_sshkey_sign(ssh, privkey, signature, slenp,
djm@openbsd.org56584cc2019-12-15 18:57:30 +00002247 data, dlen, alg, options.sk_provider,
2248 ssh->compat) < 0)
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002249 fatal("%s: privkey sign failed", __func__);
2250 } else {
2251 if (mm_sshkey_sign(ssh, pubkey, signature, slenp,
djm@openbsd.org56584cc2019-12-15 18:57:30 +00002252 data, dlen, alg, options.sk_provider,
2253 ssh->compat) < 0)
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002254 fatal("%s: pubkey sign failed", __func__);
2255 }
Damien Miller85b45e02013-07-20 13:21:52 +10002256 } else {
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002257 if (privkey) {
2258 if (sshkey_sign(privkey, signature, slenp, data, dlen,
djm@openbsd.org56584cc2019-12-15 18:57:30 +00002259 alg, options.sk_provider, ssh->compat) < 0)
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002260 fatal("%s: privkey sign failed", __func__);
2261 } else {
2262 if ((r = ssh_agent_sign(auth_sock, pubkey,
2263 signature, slenp, data, dlen, alg,
2264 ssh->compat)) != 0) {
2265 fatal("%s: agent sign failed: %s",
2266 __func__, ssh_err(r));
2267 }
2268 }
Damien Miller85b45e02013-07-20 13:21:52 +10002269 }
markus@openbsd.org57d10cb2015-01-19 20:16:15 +00002270 return 0;
Damien Miller85b45e02013-07-20 13:21:52 +10002271}
2272
djm@openbsd.orgbdfd29f2015-07-03 03:47:00 +00002273/* SSH2 key exchange */
Ben Lindstrombba81212001-06-25 05:01:22 +00002274static void
djm@openbsd.org6350e032019-01-19 21:42:30 +00002275do_ssh2_kex(struct ssh *ssh)
Damien Millerefb4afe2000-04-12 18:45:05 +10002276{
Damien Miller9235a032014-04-20 13:17:20 +10002277 char *myproposal[PROPOSAL_MAX] = { KEX_SERVER };
markus@openbsd.org57d10cb2015-01-19 20:16:15 +00002278 struct kex *kex;
markus@openbsd.org57e783c2015-01-20 20:16:21 +00002279 int r;
Damien Millerefb4afe2000-04-12 18:45:05 +10002280
djm@openbsd.orgf9eca242015-07-30 00:01:34 +00002281 myproposal[PROPOSAL_KEX_ALGS] = compat_kex_proposal(
djm@openbsd.orgc3903c32018-08-13 02:41:05 +00002282 options.kex_algorithms);
djm@openbsd.orgf9eca242015-07-30 00:01:34 +00002283 myproposal[PROPOSAL_ENC_ALGS_CTOS] = compat_cipher_proposal(
djm@openbsd.orgc3903c32018-08-13 02:41:05 +00002284 options.ciphers);
djm@openbsd.orgf9eca242015-07-30 00:01:34 +00002285 myproposal[PROPOSAL_ENC_ALGS_STOC] = compat_cipher_proposal(
djm@openbsd.orgc3903c32018-08-13 02:41:05 +00002286 options.ciphers);
djm@openbsd.orgf9eca242015-07-30 00:01:34 +00002287 myproposal[PROPOSAL_MAC_ALGS_CTOS] =
2288 myproposal[PROPOSAL_MAC_ALGS_STOC] = options.macs;
Damien Millera0ff4662001-03-30 10:49:35 +10002289
Damien Miller9786e6e2005-07-26 21:54:56 +10002290 if (options.compression == COMP_NONE) {
Ben Lindstrom23e0f662002-06-21 01:09:47 +00002291 myproposal[PROPOSAL_COMP_ALGS_CTOS] =
dtucker@openbsd.org8c02e362016-05-24 04:43:45 +00002292 myproposal[PROPOSAL_COMP_ALGS_STOC] = "none";
Ben Lindstrom23e0f662002-06-21 01:09:47 +00002293 }
Damien Miller9395b282014-04-20 13:25:30 +10002294
Darren Tucker5f96f3b2013-05-16 20:29:28 +10002295 if (options.rekey_limit || options.rekey_interval)
djm@openbsd.org6350e032019-01-19 21:42:30 +00002296 ssh_packet_set_rekey_limits(ssh, options.rekey_limit,
dtucker@openbsd.orgc998bf02017-02-03 02:56:00 +00002297 options.rekey_interval);
Darren Tucker5f96f3b2013-05-16 20:29:28 +10002298
Damien Miller324541e2013-12-31 12:25:40 +11002299 myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = compat_pkalg_proposal(
djm@openbsd.orgc3903c32018-08-13 02:41:05 +00002300 list_hostkey_types());
Damien Miller0bc1bd82000-11-13 22:57:25 +11002301
Ben Lindstrom8ac91062001-04-04 17:57:54 +00002302 /* start key exchange */
djm@openbsd.org6350e032019-01-19 21:42:30 +00002303 if ((r = kex_setup(ssh, myproposal)) != 0)
markus@openbsd.org57e783c2015-01-20 20:16:21 +00002304 fatal("kex_setup: %s", ssh_err(r));
djm@openbsd.org6350e032019-01-19 21:42:30 +00002305 kex = ssh->kex;
Damien Miller1f0311c2014-05-15 14:24:09 +10002306#ifdef WITH_OPENSSL
djm@openbsd.orgaaca72d2019-01-21 10:40:11 +00002307 kex->kex[KEX_DH_GRP1_SHA1] = kex_gen_server;
2308 kex->kex[KEX_DH_GRP14_SHA1] = kex_gen_server;
2309 kex->kex[KEX_DH_GRP14_SHA256] = kex_gen_server;
2310 kex->kex[KEX_DH_GRP16_SHA512] = kex_gen_server;
2311 kex->kex[KEX_DH_GRP18_SHA512] = kex_gen_server;
Damien Miller8e7fb332003-02-24 12:03:03 +11002312 kex->kex[KEX_DH_GEX_SHA1] = kexgex_server;
Damien Millera63128d2006-03-15 12:08:28 +11002313 kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;
Darren Tuckerf2004cd2015-02-23 05:04:21 +11002314# ifdef OPENSSL_HAS_ECC
djm@openbsd.orgaaca72d2019-01-21 10:40:11 +00002315 kex->kex[KEX_ECDH_SHA2] = kex_gen_server;
Darren Tuckerf2004cd2015-02-23 05:04:21 +11002316# endif
Damien Miller1f0311c2014-05-15 14:24:09 +10002317#endif
djm@openbsd.orgaaca72d2019-01-21 10:40:11 +00002318 kex->kex[KEX_C25519_SHA256] = kex_gen_server;
2319 kex->kex[KEX_KEM_SNTRUP4591761X25519_SHA512] = kex_gen_server;
Damien Miller0a80ca12010-02-27 07:55:05 +11002320 kex->load_host_public_key=&get_hostkey_public_by_type;
2321 kex->load_host_private_key=&get_hostkey_private_by_type;
Ben Lindstrom7a2073c2002-03-22 02:30:41 +00002322 kex->host_key_index=&get_hostkey_index;
Damien Miller85b45e02013-07-20 13:21:52 +10002323 kex->sign = sshd_hostkey_sign;
Damien Millerefb4afe2000-04-12 18:45:05 +10002324
djm@openbsd.org6350e032019-01-19 21:42:30 +00002325 ssh_dispatch_run_fatal(ssh, DISPATCH_BLOCK, &kex->done);
Damien Miller874d77b2000-10-14 16:23:11 +11002326
Ben Lindstrom2d90e002001-04-04 02:00:54 +00002327 session_id2 = kex->session_id;
2328 session_id2_len = kex->session_id_len;
2329
Damien Miller874d77b2000-10-14 16:23:11 +11002330#ifdef DEBUG_KEXDH
2331 /* send 1st encrypted/maced/compressed message */
2332 packet_start(SSH2_MSG_IGNORE);
2333 packet_put_cstring("markus");
2334 packet_send();
2335 packet_write_wait();
2336#endif
Ben Lindstrom20d7c7b2001-04-04 01:56:17 +00002337 debug("KEX done");
Damien Millerefb4afe2000-04-12 18:45:05 +10002338}
Darren Tucker3e33cec2003-10-02 16:12:36 +10002339
2340/* server specific fatal cleanup */
2341void
2342cleanup_exit(int i)
2343{
djm@openbsd.org04c091f2019-01-19 21:43:56 +00002344 if (the_active_state != NULL && the_authctxt != NULL) {
2345 do_cleanup(the_active_state, the_authctxt);
Damien Miller75c62722014-04-20 13:24:31 +10002346 if (use_privsep && privsep_is_preauth &&
2347 pmonitor != NULL && pmonitor->m_pid > 1) {
Damien Miller9ee2c602011-09-22 21:38:30 +10002348 debug("Killing privsep child %d", pmonitor->m_pid);
2349 if (kill(pmonitor->m_pid, SIGKILL) != 0 &&
Darren Tucker2e135602011-10-02 19:10:13 +11002350 errno != ESRCH)
Damien Miller9ee2c602011-09-22 21:38:30 +10002351 error("%s: kill(%d): %s", __func__,
2352 pmonitor->m_pid, strerror(errno));
2353 }
2354 }
Darren Tucker2e0cf0d2005-02-08 21:52:47 +11002355#ifdef SSH_AUDIT_EVENTS
Darren Tucker269a1ea2005-02-03 00:20:53 +11002356 /* done after do_cleanup so it can cancel the PAM auth 'thread' */
Damien Miller9b655dc2019-01-20 14:55:27 +11002357 if (the_active_state != NULL && (!use_privsep || mm_is_monitor()))
2358 audit_event(the_active_state, SSH_CONNECTION_ABANDON);
Darren Tucker269a1ea2005-02-03 00:20:53 +11002359#endif
Darren Tucker3e33cec2003-10-02 16:12:36 +10002360 _exit(i);
2361}