blob: 2ac27a7a20e7a0adc097cd5908a8bc0e47d8392e [file] [log] [blame]
Ben Lindstromd1aed9c2001-06-10 00:41:18 +00001/*
2 * Copyright (c) 2001 Markus Friedl. All rights reserved.
3 *
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions
6 * are met:
7 * 1. Redistributions of source code must retain the above copyright
8 * notice, this list of conditions and the following disclaimer.
9 * 2. Redistributions in binary form must reproduce the above copyright
10 * notice, this list of conditions and the following disclaimer in the
11 * documentation and/or other materials provided with the distribution.
12 *
13 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
14 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
15 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
16 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
17 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
18 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
19 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
20 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
21 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
22 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
23 */
24#include "includes.h"
Ben Lindstroma962c2f2002-07-04 00:14:17 +000025RCSID("$OpenBSD: auth-bsdauth.c,v 1.5 2002/06/30 21:59:45 deraadt Exp $");
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000026
27#ifdef BSD_AUTH
28#include "xmalloc.h"
29#include "auth.h"
30#include "log.h"
Ben Lindstrom7a2073c2002-03-22 02:30:41 +000031#include "monitor_wrap.h"
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000032
33static void *
34bsdauth_init_ctx(Authctxt *authctxt)
35{
36 return authctxt;
37}
38
Ben Lindstrom7a2073c2002-03-22 02:30:41 +000039int
Damien Miller9f0f5c62001-12-21 14:45:46 +110040bsdauth_query(void *ctx, char **name, char **infotxt,
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000041 u_int *numprompts, char ***prompts, u_int **echo_on)
42{
Damien Miller9f0f5c62001-12-21 14:45:46 +110043 Authctxt *authctxt = ctx;
44 char *challenge = NULL;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000045
Damien Miller9f0f5c62001-12-21 14:45:46 +110046 if (authctxt->as != NULL) {
47 debug2("bsdauth_query: try reuse session");
48 challenge = auth_getitem(authctxt->as, AUTHV_CHALLENGE);
49 if (challenge == NULL) {
50 auth_close(authctxt->as);
51 authctxt->as = NULL;
52 }
53 }
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000054
Damien Miller9f0f5c62001-12-21 14:45:46 +110055 if (challenge == NULL) {
56 debug2("bsdauth_query: new bsd auth session");
57 debug3("bsdauth_query: style %s",
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000058 authctxt->style ? authctxt->style : "<default>");
Damien Miller9f0f5c62001-12-21 14:45:46 +110059 authctxt->as = auth_userchallenge(authctxt->user,
Ben Lindstromcb72e4f2002-06-21 00:41:51 +000060 authctxt->style, "auth-ssh", &challenge);
Damien Miller9f0f5c62001-12-21 14:45:46 +110061 if (authctxt->as == NULL)
62 challenge = NULL;
63 debug2("bsdauth_query: <%s>", challenge ? challenge : "empty");
64 }
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000065
Damien Miller9f0f5c62001-12-21 14:45:46 +110066 if (challenge == NULL)
67 return -1;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000068
Ben Lindstromcb72e4f2002-06-21 00:41:51 +000069 *name = xstrdup("");
70 *infotxt = xstrdup("");
Damien Miller9f0f5c62001-12-21 14:45:46 +110071 *numprompts = 1;
Ben Lindstroma962c2f2002-07-04 00:14:17 +000072 *prompts = xmalloc(*numprompts * sizeof(char *));
Damien Miller9f0f5c62001-12-21 14:45:46 +110073 *echo_on = xmalloc(*numprompts * sizeof(u_int));
74 (*echo_on)[0] = 0;
75 (*prompts)[0] = xstrdup(challenge);
76
77 return 0;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000078}
79
Ben Lindstrom7a2073c2002-03-22 02:30:41 +000080int
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000081bsdauth_respond(void *ctx, u_int numresponses, char **responses)
82{
Damien Miller9f0f5c62001-12-21 14:45:46 +110083 Authctxt *authctxt = ctx;
84 int authok;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000085
Damien Miller9f0f5c62001-12-21 14:45:46 +110086 if (authctxt->as == 0)
87 error("bsdauth_respond: no bsd auth session");
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000088
Damien Miller9f0f5c62001-12-21 14:45:46 +110089 if (numresponses != 1)
90 return -1;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000091
Damien Miller9f0f5c62001-12-21 14:45:46 +110092 authok = auth_userresponse(authctxt->as, responses[0], 0);
93 authctxt->as = NULL;
94 debug3("bsdauth_respond: <%s> = <%d>", responses[0], authok);
95
96 return (authok == 0) ? -1 : 0;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +000097}
98
99static void
100bsdauth_free_ctx(void *ctx)
101{
Damien Miller9f0f5c62001-12-21 14:45:46 +1100102 Authctxt *authctxt = ctx;
Ben Lindstromd1aed9c2001-06-10 00:41:18 +0000103
Damien Miller9f0f5c62001-12-21 14:45:46 +1100104 if (authctxt && authctxt->as) {
105 auth_close(authctxt->as);
106 authctxt->as = NULL;
107 }
Ben Lindstromd1aed9c2001-06-10 00:41:18 +0000108}
109
110KbdintDevice bsdauth_device = {
111 "bsdauth",
112 bsdauth_init_ctx,
113 bsdauth_query,
114 bsdauth_respond,
115 bsdauth_free_ctx
116};
Ben Lindstrom7a2073c2002-03-22 02:30:41 +0000117
118KbdintDevice mm_bsdauth_device = {
119 "bsdauth",
120 bsdauth_init_ctx,
121 mm_bsdauth_query,
122 mm_bsdauth_respond,
123 bsdauth_free_ctx
124};
Ben Lindstromd1aed9c2001-06-10 00:41:18 +0000125#endif