Blame - sshd.c - platform/external/openssh

blob: 06cb81f277a7c2769078b3f8fa54464ae8e80d78 [file] [log] [blame]

markus@openbsd.org	1e0cdf8	2017-05-31 08:09:45 +0000	[diff] [blame]	1	/* $OpenBSD: sshd.c,v 1.490 2017/05/31 08:09:45 markus Exp $ */
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	2	/*
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	3	* Author: Tatu Ylonen <ylo@cs.hut.fi>
				4	* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
				5	* All rights reserved
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	6	* This program is the ssh daemon. It listens for connections from clients,
				7	* and performs authentication, executes use commands or shell, and forwards
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	8	* information to/from the application to the user client over an encrypted
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	9	* connection. This can also handle forwarding of X11, TCP/IP, and
				10	* authentication agent connections.
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	11	*
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	12	* As far as I am concerned, the code I have written for this software
				13	* can be used freely for any purpose. Any derived versions of this
				14	* software must be clearly marked as such, and if the derived work is
				15	* incompatible with the protocol description in the RFC file, it must be
				16	* called by a name other than "ssh" or "Secure Shell".
				17	*
				18	* SSH2 implementation:
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	19	* Privilege Separation:
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	20	*
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	21	* Copyright (c) 2000, 2001, 2002 Markus Friedl. All rights reserved.
				22	* Copyright (c) 2002 Niels Provos. All rights reserved.
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	23	*
				24	* Redistribution and use in source and binary forms, with or without
				25	* modification, are permitted provided that the following conditions
				26	* are met:
				27	* 1. Redistributions of source code must retain the above copyright
				28	* notice, this list of conditions and the following disclaimer.
				29	* 2. Redistributions in binary form must reproduce the above copyright
				30	* notice, this list of conditions and the following disclaimer in the
				31	* documentation and/or other materials provided with the distribution.
				32	*
				33	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
				34	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
				35	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
				36	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
				37	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
				38	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
				39	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
				40	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
				41	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
				42	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	43	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	44
				45	#include "includes.h"
Damien Miller	17e91c0	2006-03-15 11:28:34 +1100	[diff] [blame]	46
Damien Miller	9cf6d07	2006-03-15 11:29:24 +1100	[diff] [blame]	47	#include <sys/types.h>
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	48	#include <sys/ioctl.h>
				49	#include <sys/socket.h>
Damien Miller	f17883e	2006-03-15 11:45:54 +1100	[diff] [blame]	50	#ifdef HAVE_SYS_STAT_H
				51	# include <sys/stat.h>
				52	#endif
Damien Miller	9aec919	2006-08-05 10:57:45 +1000	[diff] [blame]	53	#ifdef HAVE_SYS_TIME_H
				54	# include <sys/time.h>
				55	#endif
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	56	#include "openbsd-compat/sys-tree.h"
Damien Miller	b84886b	2008-05-19 15:05:07 +1000	[diff] [blame]	57	#include "openbsd-compat/sys-queue.h"
Damien Miller	9cf6d07	2006-03-15 11:29:24 +1100	[diff] [blame]	58	#include <sys/wait.h>
Damien Miller	03e2003	2006-03-15 11:16:59 +1100	[diff] [blame]	59
Darren Tucker	3997249	2006-07-12 22:22:46 +1000	[diff] [blame]	60	#include <errno.h>
Damien Miller	57cf638	2006-07-10 21:13:46 +1000	[diff] [blame]	61	#include <fcntl.h>
Damien Miller	b8fe89c	2006-07-24 14:51:00 +1000	[diff] [blame]	62	#include <netdb.h>
Damien Miller	6645e7a	2006-03-15 14:42:54 +1100	[diff] [blame]	63	#ifdef HAVE_PATHS_H
Damien Miller	03e2003	2006-03-15 11:16:59 +1100	[diff] [blame]	64	#include <paths.h>
Damien Miller	6645e7a	2006-03-15 14:42:54 +1100	[diff] [blame]	65	#endif
Damien Miller	a1738e4	2006-07-10 21:33:04 +1000	[diff] [blame]	66	#include <grp.h>
Damien Miller	9f2abc4	2006-07-10 20:53:08 +1000	[diff] [blame]	67	#include <pwd.h>
Damien Miller	6ff3cad	2006-03-15 11:52:09 +1100	[diff] [blame]	68	#include <signal.h>
Damien Miller	ded319c	2006-09-01 15:38:36 +1000	[diff] [blame]	69	#include <stdarg.h>
Damien Miller	a7a73ee	2006-08-05 11:37:59 +1000	[diff] [blame]	70	#include <stdio.h>
Damien Miller	e7a1e5c	2006-08-05 11:34:19 +1000	[diff] [blame]	71	#include <stdlib.h>
Damien Miller	e3476ed	2006-07-24 14:13:33 +1000	[diff] [blame]	72	#include <string.h>
Damien Miller	75bb664	2006-08-05 14:07:20 +1000	[diff] [blame]	73	#include <unistd.h>
deraadt@openbsd.org	087266e	2015-01-20 23:14:00 +0000	[diff] [blame]	74	#include <limits.h>
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	75
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	76	#ifdef WITH_OPENSSL
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	77	#include <openssl/dh.h>
				78	#include <openssl/bn.h>
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	79	#include <openssl/rand.h>
Darren Tucker	bfaaf96	2008-02-28 19:13:52 +1100	[diff] [blame]	80	#include "openbsd-compat/openssl-compat.h"
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	81	#endif
Darren Tucker	bfaaf96	2008-02-28 19:13:52 +1100	[diff] [blame]	82
Kevin Steves	0ea1d9d	2002-04-25 18:17:04 +0000	[diff] [blame]	83	#ifdef HAVE_SECUREWARE
				84	#include <sys/security.h>
				85	#include <prot.h>
				86	#endif
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	87
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	88	#include "xmalloc.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	89	#include "ssh.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	90	#include "ssh2.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	91	#include "rsa.h"
Ben Lindstrom	d95c09c	2001-02-18 19:13:33 +0000	[diff] [blame]	92	#include "sshpty.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	93	#include "packet.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	94	#include "log.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	95	#include "buffer.h"
Damien Miller	7acefbb	2014-07-18 14:11:24 +1000	[diff] [blame]	96	#include "misc.h"
markus@openbsd.org	3a1638d	2015-07-10 06:21:53 +0000	[diff] [blame]	97	#include "match.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	98	#include "servconf.h"
				99	#include "uidswap.h"
				100	#include "compat.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	101	#include "cipher.h"
Damien Miller	4a1c7aa	2014-02-04 11:03:36 +1100	[diff] [blame]	102	#include "digest.h"
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	103	#include "key.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	104	#include "kex.h"
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	105	#include "myproposal.h"
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	106	#include "authfile.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	107	#include "pathnames.h"
				108	#include "atomicio.h"
				109	#include "canohost.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	110	#include "hostfile.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	111	#include "auth.h"
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	112	#include "authfd.h"
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	113	#include "msg.h"
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	114	#include "dispatch.h"
Ben Lindstrom	1bae404	2001-10-03 17:46:39 +0000	[diff] [blame]	115	#include "channels.h"
Ben Lindstrom	73ab9ba	2002-03-22 01:27:35 +0000	[diff] [blame]	116	#include "session.h"
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	117	#include "monitor.h"
Damien Miller	d783435	2006-08-05 12:39:39 +1000	[diff] [blame]	118	#ifdef GSSAPI
				119	#include "ssh-gss.h"
				120	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	121	#include "monitor_wrap.h"
Damien Miller	dcbd41e	2011-06-23 19:45:51 +1000	[diff] [blame]	122	#include "ssh-sandbox.h"
Damien Miller	b757677	2006-07-10 20:23:39 +1000	[diff] [blame]	123	#include "version.h"
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	124	#include "ssherr.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	125
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	126	/* Re-exec fds */
				127	#define REEXEC_DEVCRYPTO_RESERVED_FD (STDERR_FILENO + 1)
				128	#define REEXEC_STARTUP_PIPE_FD (STDERR_FILENO + 2)
				129	#define REEXEC_CONFIG_PASS_FD (STDERR_FILENO + 3)
				130	#define REEXEC_MIN_FREE_FD (STDERR_FILENO + 4)
				131
Ben Lindstrom	49a79c0	2000-11-17 03:47:20 +0000	[diff] [blame]	132	extern char *__progname;
Ben Lindstrom	49a79c0	2000-11-17 03:47:20 +0000	[diff] [blame]	133
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	134	/* Server configuration options. */
				135	ServerOptions options;
				136
				137	/* Name of the server configuration file. */
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	138	char *config_file_name = _PATH_SERVER_CONFIG_FILE;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	139
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	140	/*
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	141	* Debug mode flag. This can be set on the command line. If debug
				142	* mode is enabled, extra debugging output will be sent to the system
				143	* log, the daemon will not go to background, and will exit after processing
				144	* the first connection.
				145	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	146	int debug_flag = 0;
				147
Ben Lindstrom	794325a	2001-08-06 21:09:07 +0000	[diff] [blame]	148	/* Flag indicating that the daemon should only test the configuration and keys. */
				149	int test_flag = 0;
				150
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	151	/* Flag indicating that the daemon is being started from inetd. */
				152	int inetd_flag = 0;
				153
Ben Lindstrom	c72745a	2000-12-02 19:03:54 +0000	[diff] [blame]	154	/* Flag indicating that sshd should not detach and become a daemon. */
				155	int no_daemon_flag = 0;
				156
Damien Miller	5ce662a	1999-11-11 17:57:39 +1100	[diff] [blame]	157	/* debug goes to stderr unless inetd_flag is set */
				158	int log_stderr = 0;
				159
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	160	/* Saved arguments to main(). */
				161	char **saved_argv;
Damien Miller	b8c656e	2000-06-28 15:22:41 +1000	[diff] [blame]	162	int saved_argc;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	163
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	164	/* re-exec */
				165	int rexeced_flag = 0;
				166	int rexec_flag = 1;
				167	int rexec_argc = 0;
				168	char **rexec_argv;
				169
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	170	/*
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	171	* The sockets that the server is listening; this is used in the SIGHUP
				172	* signal handler.
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	173	*/
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	174	#define MAX_LISTEN_SOCKS 16
				175	int listen_socks[MAX_LISTEN_SOCKS];
				176	int num_listen_socks = 0;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	177
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	178	/*
				179	* the client's version string, passed by sshd2 in compat mode. if != NULL,
				180	* sshd will skip the version-number exchange
				181	*/
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	182	char *client_version_string = NULL;
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	183	char *server_version_string = NULL;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	184
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	185	/* Daemon's agent connection */
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	186	int auth_sock = -1;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	187	int have_agent = 0;
				188
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	189	/*
				190	* Any really sensitive data in the application is contained in this
				191	* structure. The idea is that this structure could be locked into memory so
				192	* that the pages do not get written into swap. However, there are some
				193	* problems. The private key contains BIGNUMs, and we do not (in principle)
				194	* have access to the internals of them, and locking just the structure is
				195	* not very useful. Currently, memory locking is not implemented.
				196	*/
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	197	struct {
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	198	struct sshkey *host_keys; / all private host keys */
				199	struct sshkey *host_pubkeys; / all public host keys */
				200	struct sshkey *host_certificates; / all public host certificates */
				201	int have_ssh2_key;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	202	} sensitive_data;
				203
Ben Lindstrom	ec46e0b	2001-06-09 01:27:31 +0000	[diff] [blame]	204	/* This is set to true when a signal is received. */
Ben Lindstrom	5e71c54	2001-12-06 16:48:14 +0000	[diff] [blame]	205	static volatile sig_atomic_t received_sighup = 0;
				206	static volatile sig_atomic_t received_sigterm = 0;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	207
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	208	/* session identifier, used by RSA-auth */
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	209	u_char session_id[16];
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	210
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	211	/* same for ssh2 */
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	212	u_char *session_id2 = NULL;
Darren Tucker	502d384	2003-06-28 12:38:01 +1000	[diff] [blame]	213	u_int session_id2_len = 0;
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	214
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	215	/* record remote hostname or ip */
deraadt@openbsd.org	087266e	2015-01-20 23:14:00 +0000	[diff] [blame]	216	u_int utmp_len = HOST_NAME_MAX+1;
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	217
Ben Lindstrom	d84df98	2001-12-06 16:35:40 +0000	[diff] [blame]	218	/* options.max_startup sized array of fd ints */
				219	int *startup_pipes = NULL;
				220	int startup_pipe; /* in child */
				221
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	222	/* variables used for privilege separation */
Darren Tucker	4515047	2006-07-12 22:34:17 +1000	[diff] [blame]	223	int use_privsep = -1;
Darren Tucker	a8be9e2	2004-02-06 16:40:27 +1100	[diff] [blame]	224	struct monitor *pmonitor = NULL;
Damien Miller	9ee2c60	2011-09-22 21:38:30 +1000	[diff] [blame]	225	int privsep_is_preauth = 1;
Darren Tucker	d13281f	2017-03-29 12:39:39 +1100	[diff] [blame]	226	static int privsep_chroot = 1;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	227
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	228	/* global authentication context */
				229	Authctxt *the_authctxt = NULL;
				230
Darren Tucker	4515047	2006-07-12 22:34:17 +1000	[diff] [blame]	231	/* sshd_config buffer */
				232	Buffer cfg;
				233
Darren Tucker	0999174	2004-07-17 17:05:14 +1000	[diff] [blame]	234	/* message to be displayed after login */
				235	Buffer loginmsg;
				236
Damien Miller	6433df0	2006-09-07 10:36:43 +1000	[diff] [blame]	237	/* Unprivileged user */
				238	struct passwd *privsep_pw = NULL;
				239
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	240	/* Prototypes for various functions defined later in this file. */
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	241	void destroy_sensitive_data(void);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	242	void demote_sensitive_data(void);
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	243	static void do_ssh2_kex(void);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	244
Damien Miller	98c7ad6	2000-03-09 21:27:49 +1100	[diff] [blame]	245	/*
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	246	* Close all listening sockets
				247	*/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	248	static void
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	249	close_listen_socks(void)
				250	{
				251	int i;
Ben Lindstrom	822b634	2002-06-23 21:38:49 +0000	[diff] [blame]	252
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	253	for (i = 0; i < num_listen_socks; i++)
				254	close(listen_socks[i]);
				255	num_listen_socks = -1;
				256	}
				257
Ben Lindstrom	d84df98	2001-12-06 16:35:40 +0000	[diff] [blame]	258	static void
				259	close_startup_pipes(void)
				260	{
				261	int i;
Ben Lindstrom	822b634	2002-06-23 21:38:49 +0000	[diff] [blame]	262
Ben Lindstrom	d84df98	2001-12-06 16:35:40 +0000	[diff] [blame]	263	if (startup_pipes)
				264	for (i = 0; i < options.max_startups; i++)
				265	if (startup_pipes[i] != -1)
				266	close(startup_pipes[i]);
				267	}
				268
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	269	/*
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	270	* Signal handler for SIGHUP. Sshd execs itself when it receives SIGHUP;
				271	* the effect is to reread the configuration file (and to regenerate
				272	* the server key).
				273	*/
Damien Miller	f0b15df	2006-03-26 13:59:20 +1100	[diff] [blame]	274
				275	/ARGSUSED/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	276	static void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	277	sighup_handler(int sig)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	278	{
Ben Lindstrom	0795848	2001-12-06 16:19:01 +0000	[diff] [blame]	279	int save_errno = errno;
				280
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	281	received_sighup = 1;
				282	signal(SIGHUP, sighup_handler);
Ben Lindstrom	0795848	2001-12-06 16:19:01 +0000	[diff] [blame]	283	errno = save_errno;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	284	}
				285
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	286	/*
				287	* Called from the main program after receiving SIGHUP.
				288	* Restarts the server.
				289	*/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	290	static void
Ben Lindstrom	31ca54a	2001-02-09 02:11:24 +0000	[diff] [blame]	291	sighup_restart(void)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	292	{
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	293	logit("Received SIGHUP; restarting.");
dtucker@openbsd.org	f2398eb	2016-12-04 22:27:25 +0000	[diff] [blame]	294	if (options.pid_file != NULL)
				295	unlink(options.pid_file);
Darren Tucker	f2bf36c	2013-09-22 19:02:40 +1000	[diff] [blame]	296	platform_pre_restart();
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	297	close_listen_socks();
Ben Lindstrom	d84df98	2001-12-06 16:35:40 +0000	[diff] [blame]	298	close_startup_pipes();
Darren Tucker	ed62396	2007-02-25 20:37:21 +1100	[diff] [blame]	299	alarm(0); /* alarm timer persists across exec */
Darren Tucker	2c671bf	2010-01-09 22:28:43 +1100	[diff] [blame]	300	signal(SIGHUP, SIG_IGN); /* will be restored after exec */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	301	execv(saved_argv[0], saved_argv);
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	302	logit("RESTART FAILED: av[0]='%.100s', error: %.100s.", saved_argv[0],
Ben Lindstrom	822b634	2002-06-23 21:38:49 +0000	[diff] [blame]	303	strerror(errno));
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	304	exit(1);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	305	}
				306
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	307	/*
				308	* Generic signal handler for terminating signals in the master daemon.
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	309	*/
Damien Miller	f0b15df	2006-03-26 13:59:20 +1100	[diff] [blame]	310	/ARGSUSED/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	311	static void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	312	sigterm_handler(int sig)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	313	{
Ben Lindstrom	ec46e0b	2001-06-09 01:27:31 +0000	[diff] [blame]	314	received_sigterm = sig;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	315	}
				316
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	317	/*
				318	* SIGCHLD handler. This is called whenever a child dies. This will then
Ben Lindstrom	ec46e0b	2001-06-09 01:27:31 +0000	[diff] [blame]	319	* reap any zombies left by exited children.
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	320	*/
Damien Miller	f0b15df	2006-03-26 13:59:20 +1100	[diff] [blame]	321	/ARGSUSED/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	322	static void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	323	main_sigchld_handler(int sig)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	324	{
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	325	int save_errno = errno;
Ben Lindstrom	822b634	2002-06-23 21:38:49 +0000	[diff] [blame]	326	pid_t pid;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	327	int status;
Damien Miller	431f66b	1999-11-21 18:31:57 +1100	[diff] [blame]	328
Ben Lindstrom	47fd811	2002-04-02 20:48:19 +0000	[diff] [blame]	329	while ((pid = waitpid(-1, &status, WNOHANG)) > 0 \|\|
				330	(pid < 0 && errno == EINTR))
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	331	;
Damien Miller	431f66b	1999-11-21 18:31:57 +1100	[diff] [blame]	332
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	333	signal(SIGCHLD, main_sigchld_handler);
				334	errno = save_errno;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	335	}
				336
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	337	/*
				338	* Signal handler for the alarm after the login grace period has expired.
				339	*/
Damien Miller	f0b15df	2006-03-26 13:59:20 +1100	[diff] [blame]	340	/ARGSUSED/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	341	static void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	342	grace_alarm_handler(int sig)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	343	{
Darren Tucker	a8be9e2	2004-02-06 16:40:27 +1100	[diff] [blame]	344	if (use_privsep && pmonitor != NULL && pmonitor->m_pid > 0)
				345	kill(pmonitor->m_pid, SIGALRM);
				346
Damien Miller	09d3e12	2012-10-31 08:58:58 +1100	[diff] [blame]	347	/*
				348	* Try to kill any processes that we have spawned, E.g. authorized
				349	* keys command helpers.
				350	*/
				351	if (getpgid(0) == getpid()) {
				352	signal(SIGTERM, SIG_IGN);
Damien Miller	ab16ef4	2014-01-28 15:08:12 +1100	[diff] [blame]	353	kill(0, SIGTERM);
Damien Miller	09d3e12	2012-10-31 08:58:58 +1100	[diff] [blame]	354	}
				355
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	356	/* Log error and exit. */
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	357	sigdie("Timeout before authentication for %s port %d",
				358	ssh_remote_ipaddr(active_state), ssh_remote_port(active_state));
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	359	}
				360
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	361	static void
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	362	sshd_exchange_identification(struct ssh *ssh, int sock_in, int sock_out)
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	363	{
Damien Miller	eccb9de	2005-06-17 12:59:34 +1000	[diff] [blame]	364	u_int i;
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	365	int remote_major, remote_minor;
djm@openbsd.org	5b90709	2017-02-06 09:22:51 +0000	[diff] [blame]	366	char *s;
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	367	char buf[256]; /* Must not be larger than remote_version. */
				368	char remote_version[256]; /* Must be at least as big as buf. */
				369
djm@openbsd.org	5b90709	2017-02-06 09:22:51 +0000	[diff] [blame]	370	xasprintf(&server_version_string, "SSH-%d.%d-%.100s%s%s\r\n",
naddy@openbsd.org	c38ea63	2016-08-15 12:27:56 +0000	[diff] [blame]	371	PROTOCOL_MAJOR_2, PROTOCOL_MINOR_2, SSH_VERSION,
Damien Miller	2352881	2012-04-22 11:24:43 +1000	[diff] [blame]	372	*options.version_addendum == '\0' ? "" : " ",
djm@openbsd.org	5b90709	2017-02-06 09:22:51 +0000	[diff] [blame]	373	options.version_addendum);
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	374
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	375	/* Send our protocol version identification. */
markus@openbsd.org	a306863	2016-01-14 16:17:39 +0000	[diff] [blame]	376	if (atomicio(vwrite, sock_out, server_version_string,
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	377	strlen(server_version_string))
				378	!= strlen(server_version_string)) {
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	379	logit("Could not write ident string to %s port %d",
				380	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh));
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	381	cleanup_exit(255);
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	382	}
				383
				384	/* Read other sides version identification. */
				385	memset(buf, 0, sizeof(buf));
				386	for (i = 0; i < sizeof(buf) - 1; i++) {
markus@openbsd.org	a306863	2016-01-14 16:17:39 +0000	[diff] [blame]	387	if (atomicio(read, sock_in, &buf[i], 1) != 1) {
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	388	logit("Did not receive identification string "
				389	"from %s port %d",
				390	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh));
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	391	cleanup_exit(255);
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	392	}
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	393	if (buf[i] == '\r') {
				394	buf[i] = 0;
				395	/* Kludge for F-Secure Macintosh < 1.0.2 */
				396	if (i == 12 &&
				397	strncmp(buf, "SSH-1.5-W1.0", 12) == 0)
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	398	break;
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	399	continue;
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	400	}
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	401	if (buf[i] == '\n') {
				402	buf[i] = 0;
				403	break;
				404	}
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	405	}
Darren Tucker	fe0078a	2003-07-19 19:52:28 +1000	[diff] [blame]	406	buf[sizeof(buf) - 1] = 0;
				407	client_version_string = xstrdup(buf);
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	408
				409	/*
				410	* Check that the versions match. In future this might accept
				411	* several versions and set appropriate flags to handle them.
				412	*/
				413	if (sscanf(client_version_string, "SSH-%d.%d-%[^\n]\n",
				414	&remote_major, &remote_minor, remote_version) != 3) {
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	415	s = "Protocol mismatch.\n";
Darren Tucker	9f63f22	2003-07-03 13:46:56 +1000	[diff] [blame]	416	(void) atomicio(vwrite, sock_out, s, strlen(s));
Damien Miller	4502f88	2013-10-18 10:17:36 +1100	[diff] [blame]	417	logit("Bad protocol version identification '%.100s' "
				418	"from %s port %d", client_version_string,
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	419	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh));
Damien Miller	23e00aa	2013-11-21 13:56:28 +1100	[diff] [blame]	420	close(sock_in);
				421	close(sock_out);
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	422	cleanup_exit(255);
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	423	}
				424	debug("Client protocol version %d.%d; client software version %.100s",
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	425	remote_major, remote_minor, remote_version);
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	426
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	427	ssh->compat = compat_datafellows(remote_version);
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	428
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	429	if ((ssh->compat & SSH_BUG_PROBE) != 0) {
				430	logit("probed from %s port %d with %s. Don't panic.",
				431	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh),
				432	client_version_string);
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	433	cleanup_exit(255);
Damien Miller	e926497	2002-09-30 11:59:21 +1000	[diff] [blame]	434	}
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	435	if ((ssh->compat & SSH_BUG_SCANNER) != 0) {
				436	logit("scanned from %s port %d with %s. Don't panic.",
				437	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh),
				438	client_version_string);
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	439	cleanup_exit(255);
Damien Miller	27dbe6f	2001-03-19 22:36:20 +1100	[diff] [blame]	440	}
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	441	if ((ssh->compat & SSH_BUG_RSASIGMD5) != 0) {
Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame]	442	logit("Client version \"%.100s\" uses unsafe RSA signature "
				443	"scheme; disabling use of RSA keys", remote_version);
Damien Miller	58cd63b	2014-01-10 10:59:24 +1100	[diff] [blame]	444	}
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	445	if ((ssh->compat & SSH_BUG_DERIVEKEY) != 0) {
Damien Miller	58cd63b	2014-01-10 10:59:24 +1100	[diff] [blame]	446	fatal("Client version \"%.100s\" uses unsafe key agreement; "
				447	"refusing connection", remote_version);
				448	}
Damien Miller	27dbe6f	2001-03-19 22:36:20 +1100	[diff] [blame]	449
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	450	chop(server_version_string);
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	451	debug("Local version string %.200s", server_version_string);
				452
djm@openbsd.org	97f4d30	2017-04-30 23:13:25 +0000	[diff] [blame]	453	if (remote_major != 2 \|\|
				454	(remote_major == 1 && remote_minor != 99)) {
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	455	s = "Protocol major versions differ.\n";
Darren Tucker	9f63f22	2003-07-03 13:46:56 +1000	[diff] [blame]	456	(void) atomicio(vwrite, sock_out, s, strlen(s));
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	457	close(sock_in);
				458	close(sock_out);
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	459	logit("Protocol major versions differ for %s port %d: "
				460	"%.200s vs. %.200s",
				461	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh),
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	462	server_version_string, client_version_string);
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	463	cleanup_exit(255);
Damien Miller	7892879	2000-04-12 20:17:38 +1000	[diff] [blame]	464	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	465	}
				466
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	467	/* Destroy the host and server keys. They will no longer be needed. */
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	468	void
				469	destroy_sensitive_data(void)
				470	{
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	471	int i;
				472
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	473	for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	474	if (sensitive_data.host_keys[i]) {
				475	key_free(sensitive_data.host_keys[i]);
				476	sensitive_data.host_keys[i] = NULL;
				477	}
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	478	if (sensitive_data.host_certificates[i]) {
				479	key_free(sensitive_data.host_certificates[i]);
				480	sensitive_data.host_certificates[i] = NULL;
				481	}
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	482	}
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	483	}
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	484
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	485	/* Demote private to public keys for network child */
				486	void
				487	demote_sensitive_data(void)
				488	{
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	489	struct sshkey *tmp;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	490	int i;
				491
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	492	for (i = 0; i < options.num_host_key_files; i++) {
				493	if (sensitive_data.host_keys[i]) {
				494	tmp = key_demote(sensitive_data.host_keys[i]);
				495	key_free(sensitive_data.host_keys[i]);
				496	sensitive_data.host_keys[i] = tmp;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	497	}
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	498	/* Certs do not need demotion */
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	499	}
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	500	}
				501
Ben Lindstrom	0810519	2002-03-22 02:50:06 +0000	[diff] [blame]	502	static void
Damien Miller	c9f880c	2016-11-30 13:51:49 +1100	[diff] [blame]	503	reseed_prngs(void)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	504	{
Darren Tucker	64cee36	2009-06-21 20:26:17 +1000	[diff] [blame]	505	u_int32_t rnd[256];
Damien Miller	c9f880c	2016-11-30 13:51:49 +1100	[diff] [blame]	506
				507	#ifdef WITH_OPENSSL
				508	RAND_poll();
				509	#endif
				510	arc4random_stir(); /* noop on recent arc4random() implementations */
				511	arc4random_buf(rnd, sizeof(rnd)); /* let arc4random notice PID change */
				512
				513	#ifdef WITH_OPENSSL
				514	RAND_seed(rnd, sizeof(rnd));
				515	/* give libcrypto a chance to notice the PID change */
				516	if ((RAND_bytes((u_char *)rnd, 1)) != 1)
				517	fatal("%s: RAND_bytes failed", __func__);
				518	#endif
				519
				520	explicit_bzero(rnd, sizeof(rnd));
				521	}
				522
				523	static void
				524	privsep_preauth_child(void)
				525	{
Ben Lindstrom	810af96	2002-07-04 00:11:40 +0000	[diff] [blame]	526	gid_t gidset[1];
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	527
				528	/* Enable challenge-response authentication for privilege separation */
				529	privsep_challenge_enable();
				530
Damien Miller	fb3423b	2014-02-27 10:20:07 +1100	[diff] [blame]	531	#ifdef GSSAPI
Damien Miller	e6a74ae	2014-02-27 10:17:49 +1100	[diff] [blame]	532	/* Cache supported mechanism OIDs for later use */
				533	if (options.gss_authentication)
				534	ssh_gssapi_prepare_supported_oids();
Damien Miller	fb3423b	2014-02-27 10:20:07 +1100	[diff] [blame]	535	#endif
Damien Miller	e6a74ae	2014-02-27 10:17:49 +1100	[diff] [blame]	536
Damien Miller	c9f880c	2016-11-30 13:51:49 +1100	[diff] [blame]	537	reseed_prngs();
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	538
				539	/* Demote the private keys to public keys. */
				540	demote_sensitive_data();
				541
djm@openbsd.org	5b4010d	2015-11-16 22:51:05 +0000	[diff] [blame]	542	/* Demote the child */
Darren Tucker	d13281f	2017-03-29 12:39:39 +1100	[diff] [blame]	543	if (privsep_chroot) {
djm@openbsd.org	5b4010d	2015-11-16 22:51:05 +0000	[diff] [blame]	544	/* Change our root directory */
				545	if (chroot(_PATH_PRIVSEP_CHROOT_DIR) == -1)
				546	fatal("chroot(\"%s\"): %s", _PATH_PRIVSEP_CHROOT_DIR,
				547	strerror(errno));
				548	if (chdir("/") == -1)
				549	fatal("chdir(\"/\"): %s", strerror(errno));
Ben Lindstrom	6328ab3	2002-03-22 02:54:23 +0000	[diff] [blame]	550
djm@openbsd.org	5b4010d	2015-11-16 22:51:05 +0000	[diff] [blame]	551	/* Drop our privileges */
				552	debug3("privsep user:group %u:%u", (u_int)privsep_pw->pw_uid,
				553	(u_int)privsep_pw->pw_gid);
				554	gidset[0] = privsep_pw->pw_gid;
				555	if (setgroups(1, gidset) < 0)
				556	fatal("setgroups: %.100s", strerror(errno));
				557	permanently_set_uid(privsep_pw);
				558	}
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	559	}
				560
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	561	static int
				562	privsep_preauth(Authctxt *authctxt)
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	563	{
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	564	int status, r;
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	565	pid_t pid;
Damien Miller	69ff1df	2011-06-23 08:30:03 +1000	[diff] [blame]	566	struct ssh_sandbox *box = NULL;
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	567
				568	/* Set up unprivileged child process to deal with network data */
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	569	pmonitor = monitor_init();
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	570	/* Store a pointer to the kex for later rekeying */
markus@openbsd.org	091c302	2015-01-19 19:52:16 +0000	[diff] [blame]	571	pmonitor->m_pkex = &active_state->kex;
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	572
Damien Miller	5a5c2b9	2012-07-31 12:21:34 +1000	[diff] [blame]	573	if (use_privsep == PRIVSEP_ON)
Damien Miller	868ea1e	2014-01-17 16:47:04 +1100	[diff] [blame]	574	box = ssh_sandbox_init(pmonitor);
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	575	pid = fork();
				576	if (pid == -1) {
				577	fatal("fork of unprivileged child failed");
				578	} else if (pid != 0) {
Ben Lindstrom	ce0f634	2002-06-11 16:42:49 +0000	[diff] [blame]	579	debug2("Network child is on pid %ld", (long)pid);
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	580
Darren Tucker	3b4b2d3	2012-07-02 18:54:31 +1000	[diff] [blame]	581	pmonitor->m_pid = pid;
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	582	if (have_agent) {
				583	r = ssh_get_authentication_socket(&auth_sock);
				584	if (r != 0) {
				585	error("Could not get agent socket: %s",
				586	ssh_err(r));
				587	have_agent = 0;
				588	}
				589	}
Damien Miller	69ff1df	2011-06-23 08:30:03 +1000	[diff] [blame]	590	if (box != NULL)
				591	ssh_sandbox_parent_preauth(box, pid);
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	592	monitor_child_preauth(authctxt, pmonitor);
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	593
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	594	/* Wait for the child's exit status */
Damien Miller	69ff1df	2011-06-23 08:30:03 +1000	[diff] [blame]	595	while (waitpid(pid, &status, 0) < 0) {
Damien Miller	9ee2c60	2011-09-22 21:38:30 +1000	[diff] [blame]	596	if (errno == EINTR)
				597	continue;
				598	pmonitor->m_pid = -1;
				599	fatal("%s: waitpid: %s", __func__, strerror(errno));
Damien Miller	69ff1df	2011-06-23 08:30:03 +1000	[diff] [blame]	600	}
Damien Miller	9ee2c60	2011-09-22 21:38:30 +1000	[diff] [blame]	601	privsep_is_preauth = 0;
				602	pmonitor->m_pid = -1;
Damien Miller	69ff1df	2011-06-23 08:30:03 +1000	[diff] [blame]	603	if (WIFEXITED(status)) {
				604	if (WEXITSTATUS(status) != 0)
				605	fatal("%s: preauth child exited with status %d",
				606	__func__, WEXITSTATUS(status));
				607	} else if (WIFSIGNALED(status))
				608	fatal("%s: preauth child terminated by signal %d",
				609	__func__, WTERMSIG(status));
				610	if (box != NULL)
				611	ssh_sandbox_parent_finish(box);
				612	return 1;
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	613	} else {
				614	/* child */
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	615	close(pmonitor->m_sendfd);
Damien Miller	8f0bf23	2011-06-20 14:42:23 +1000	[diff] [blame]	616	close(pmonitor->m_log_recvfd);
				617
				618	/* Arrange for logging to be sent to the monitor */
				619	set_log_handler(mm_log_handler, pmonitor);
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	620
djm@openbsd.org	5b4010d	2015-11-16 22:51:05 +0000	[diff] [blame]	621	privsep_preauth_child();
Ben Lindstrom	f90f58d	2002-03-26 01:53:03 +0000	[diff] [blame]	622	setproctitle("%s", "[net]");
Damien Miller	69ff1df	2011-06-23 08:30:03 +1000	[diff] [blame]	623	if (box != NULL)
				624	ssh_sandbox_child(box);
				625
				626	return 0;
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	627	}
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	628	}
				629
Ben Lindstrom	0810519	2002-03-22 02:50:06 +0000	[diff] [blame]	630	static void
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	631	privsep_postauth(Authctxt *authctxt)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	632	{
Tim Rice	9dd3081	2002-07-07 13:43:36 -0700	[diff] [blame]	633	#ifdef DISABLE_FD_PASSING
Tim Rice	8eff319	2002-06-25 15:35:15 -0700	[diff] [blame]	634	if (1) {
				635	#else
djm@openbsd.org	83b5818	2016-08-19 03:18:06 +0000	[diff] [blame]	636	if (authctxt->pw->pw_uid == 0) {
Tim Rice	8eff319	2002-06-25 15:35:15 -0700	[diff] [blame]	637	#endif
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	638	/* File descriptor passing is broken or root login */
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	639	use_privsep = 0;
Darren Tucker	45b0142	2005-10-03 18:20:00 +1000	[diff] [blame]	640	goto skip;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	641	}
Ben Lindstrom	6328ab3	2002-03-22 02:54:23 +0000	[diff] [blame]	642
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	643	/* New socket pair */
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	644	monitor_reinit(pmonitor);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	645
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	646	pmonitor->m_pid = fork();
				647	if (pmonitor->m_pid == -1)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	648	fatal("fork of unprivileged child failed");
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	649	else if (pmonitor->m_pid != 0) {
Damien Miller	b61f3fc	2008-07-11 17:36:48 +1000	[diff] [blame]	650	verbose("User child is on pid %ld", (long)pmonitor->m_pid);
Darren Tucker	eb57862	2004-08-12 23:08:14 +1000	[diff] [blame]	651	buffer_clear(&loginmsg);
markus@openbsd.org	1e0cdf8	2017-05-31 08:09:45 +0000	[diff] [blame]	652	monitor_clear_keystate(pmonitor);
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	653	monitor_child_postauth(pmonitor);
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	654
				655	/* NEVERREACHED */
				656	exit(0);
				657	}
				658
Damien Miller	8f0bf23	2011-06-20 14:42:23 +1000	[diff] [blame]	659	/* child */
				660
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	661	close(pmonitor->m_sendfd);
Damien Miller	8f0bf23	2011-06-20 14:42:23 +1000	[diff] [blame]	662	pmonitor->m_sendfd = -1;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	663
				664	/* Demote the private keys to public keys. */
				665	demote_sensitive_data();
				666
Damien Miller	c9f880c	2016-11-30 13:51:49 +1100	[diff] [blame]	667	reseed_prngs();
Damien Miller	76e95da	2008-03-07 18:31:24 +1100	[diff] [blame]	668
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	669	/* Drop privileges */
				670	do_setusercontext(authctxt->pw);
				671
Darren Tucker	45b0142	2005-10-03 18:20:00 +1000	[diff] [blame]	672	skip:
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	673	/* It is safe now to apply the key state */
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	674	monitor_apply_keystate(pmonitor);
Damien Miller	9786e6e	2005-07-26 21:54:56 +1000	[diff] [blame]	675
				676	/*
				677	* Tell the packet layer that authentication was successful, since
				678	* this information is not part of the key state.
				679	*/
				680	packet_set_authenticated();
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	681	}
				682
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	683	static char *
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	684	list_hostkey_types(void)
				685	{
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	686	Buffer b;
Damien Miller	f58b58c	2003-11-17 21:18:23 +1100	[diff] [blame]	687	const char *p;
				688	char *ret;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	689	int i;
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	690	struct sshkey *key;
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	691
				692	buffer_init(&b);
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	693	for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	694	key = sensitive_data.host_keys[i];
djm@openbsd.org	ce63c4b	2015-02-16 22:30:03 +0000	[diff] [blame]	695	if (key == NULL)
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	696	key = sensitive_data.host_pubkeys[i];
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	697	if (key == NULL)
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	698	continue;
markus@openbsd.org	3a1638d	2015-07-10 06:21:53 +0000	[diff] [blame]	699	/* Check that the key is accepted in HostkeyAlgorithms */
				700	if (match_pattern_list(sshkey_ssh_name(key),
				701	options.hostkeyalgorithms, 0) != 1) {
				702	debug3("%s: %s key not permitted by HostkeyAlgorithms",
				703	__func__, sshkey_ssh_name(key));
				704	continue;
				705	}
Ben Lindstrom	1c37c6a	2001-12-06 18:00:18 +0000	[diff] [blame]	706	switch (key->type) {
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	707	case KEY_RSA:
				708	case KEY_DSA:
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	709	case KEY_ECDSA:
Damien Miller	5be9d9e	2013-12-07 11:24:01 +1100	[diff] [blame]	710	case KEY_ED25519:
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	711	if (buffer_len(&b) > 0)
				712	buffer_append(&b, ",", 1);
				713	p = key_ssh_name(key);
				714	buffer_append(&b, p, strlen(p));
markus@openbsd.org	76c9fbb	2015-12-04 16:41:28 +0000	[diff] [blame]	715
				716	/* for RSA we also support SHA2 signatures */
				717	if (key->type == KEY_RSA) {
				718	p = ",rsa-sha2-512,rsa-sha2-256";
				719	buffer_append(&b, p, strlen(p));
				720	}
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	721	break;
				722	}
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	723	/* If the private key has a cert peer, then list that too */
				724	key = sensitive_data.host_certificates[i];
				725	if (key == NULL)
				726	continue;
				727	switch (key->type) {
				728	case KEY_RSA_CERT:
				729	case KEY_DSA_CERT:
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	730	case KEY_ECDSA_CERT:
Damien Miller	5be9d9e	2013-12-07 11:24:01 +1100	[diff] [blame]	731	case KEY_ED25519_CERT:
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	732	if (buffer_len(&b) > 0)
				733	buffer_append(&b, ",", 1);
				734	p = key_ssh_name(key);
				735	buffer_append(&b, p, strlen(p));
				736	break;
				737	}
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	738	}
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	739	if ((ret = sshbuf_dup_string(&b)) == NULL)
				740	fatal("%s: sshbuf_dup_string failed", __func__);
Damien Miller	0e3b872	2002-01-22 23:26:38 +1100	[diff] [blame]	741	buffer_free(&b);
Damien Miller	f58b58c	2003-11-17 21:18:23 +1100	[diff] [blame]	742	debug("list_hostkey_types: %s", ret);
				743	return ret;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	744	}
				745
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	746	static struct sshkey *
djm@openbsd.org	5104db7	2015-01-26 06:10:03 +0000	[diff] [blame]	747	get_hostkey_by_type(int type, int nid, int need_private, struct ssh *ssh)
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	748	{
				749	int i;
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	750	struct sshkey *key;
Ben Lindstrom	822b634	2002-06-23 21:38:49 +0000	[diff] [blame]	751
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	752	for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller	4e270b0	2010-04-16 15:56:21 +1000	[diff] [blame]	753	switch (type) {
Damien Miller	4e270b0	2010-04-16 15:56:21 +1000	[diff] [blame]	754	case KEY_RSA_CERT:
				755	case KEY_DSA_CERT:
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	756	case KEY_ECDSA_CERT:
Damien Miller	5be9d9e	2013-12-07 11:24:01 +1100	[diff] [blame]	757	case KEY_ED25519_CERT:
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	758	key = sensitive_data.host_certificates[i];
Damien Miller	4e270b0	2010-04-16 15:56:21 +1000	[diff] [blame]	759	break;
				760	default:
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	761	key = sensitive_data.host_keys[i];
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	762	if (key == NULL && !need_private)
				763	key = sensitive_data.host_pubkeys[i];
Damien Miller	4e270b0	2010-04-16 15:56:21 +1000	[diff] [blame]	764	break;
				765	}
djm@openbsd.org	5104db7	2015-01-26 06:10:03 +0000	[diff] [blame]	766	if (key != NULL && key->type == type &&
				767	(key->type != KEY_ECDSA \|\| key->ecdsa_nid == nid))
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	768	return need_private ?
				769	sensitive_data.host_keys[i] : key;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	770	}
				771	return NULL;
Damien Miller	b38eff8	2000-04-01 11:09:21 +1000	[diff] [blame]	772	}
				773
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	774	struct sshkey *
djm@openbsd.org	5104db7	2015-01-26 06:10:03 +0000	[diff] [blame]	775	get_hostkey_public_by_type(int type, int nid, struct ssh *ssh)
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	776	{
djm@openbsd.org	5104db7	2015-01-26 06:10:03 +0000	[diff] [blame]	777	return get_hostkey_by_type(type, nid, 0, ssh);
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	778	}
				779
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	780	struct sshkey *
djm@openbsd.org	5104db7	2015-01-26 06:10:03 +0000	[diff] [blame]	781	get_hostkey_private_by_type(int type, int nid, struct ssh *ssh)
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	782	{
djm@openbsd.org	5104db7	2015-01-26 06:10:03 +0000	[diff] [blame]	783	return get_hostkey_by_type(type, nid, 1, ssh);
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	784	}
				785
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	786	struct sshkey *
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	787	get_hostkey_by_index(int ind)
				788	{
				789	if (ind < 0 \|\| ind >= options.num_host_key_files)
				790	return (NULL);
				791	return (sensitive_data.host_keys[ind]);
				792	}
				793
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	794	struct sshkey *
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	795	get_hostkey_public_by_index(int ind, struct ssh *ssh)
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	796	{
				797	if (ind < 0 \|\| ind >= options.num_host_key_files)
				798	return (NULL);
				799	return (sensitive_data.host_pubkeys[ind]);
				800	}
				801
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	802	int
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	803	get_hostkey_index(struct sshkey key, int compare, struct ssh ssh)
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	804	{
				805	int i;
Ben Lindstrom	822b634	2002-06-23 21:38:49 +0000	[diff] [blame]	806
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	807	for (i = 0; i < options.num_host_key_files; i++) {
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	808	if (key_is_cert(key)) {
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	809	if (key == sensitive_data.host_certificates[i] \|\|
				810	(compare && sensitive_data.host_certificates[i] &&
				811	sshkey_equal(key,
				812	sensitive_data.host_certificates[i])))
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	813	return (i);
				814	} else {
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	815	if (key == sensitive_data.host_keys[i] \|\|
				816	(compare && sensitive_data.host_keys[i] &&
				817	sshkey_equal(key, sensitive_data.host_keys[i])))
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	818	return (i);
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	819	if (key == sensitive_data.host_pubkeys[i] \|\|
				820	(compare && sensitive_data.host_pubkeys[i] &&
				821	sshkey_equal(key, sensitive_data.host_pubkeys[i])))
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	822	return (i);
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	823	}
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	824	}
				825	return (-1);
				826	}
				827
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	828	/* Inform the client of all hostkeys */
				829	static void
				830	notify_hostkeys(struct ssh *ssh)
				831	{
				832	struct sshbuf *buf;
				833	struct sshkey *key;
				834	int i, nkeys, r;
				835	char *fp;
				836
dtucker@openbsd.org	d8f391c	2015-04-10 05:16:50 +0000	[diff] [blame]	837	/* Some clients cannot cope with the hostkeys message, skip those. */
				838	if (datafellows & SSH_BUG_HOSTKEYS)
				839	return;
				840
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	841	if ((buf = sshbuf_new()) == NULL)
				842	fatal("%s: sshbuf_new", __func__);
				843	for (i = nkeys = 0; i < options.num_host_key_files; i++) {
				844	key = get_hostkey_public_by_index(i, ssh);
				845	if (key == NULL \|\| key->type == KEY_UNSPEC \|\|
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	846	sshkey_is_cert(key))
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	847	continue;
				848	fp = sshkey_fingerprint(key, options.fingerprint_hash,
				849	SSH_FP_DEFAULT);
				850	debug3("%s: key %d: %s %s", __func__, i,
				851	sshkey_ssh_name(key), fp);
				852	free(fp);
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	853	if (nkeys == 0) {
				854	packet_start(SSH2_MSG_GLOBAL_REQUEST);
djm@openbsd.org	44732de	2015-02-20 22:17:21 +0000	[diff] [blame]	855	packet_put_cstring("hostkeys-00@openssh.com");
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	856	packet_put_char(0); /* want-reply */
				857	}
				858	sshbuf_reset(buf);
				859	if ((r = sshkey_putb(key, buf)) != 0)
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	860	fatal("%s: couldn't put hostkey %d: %s",
				861	__func__, i, ssh_err(r));
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	862	packet_put_string(sshbuf_ptr(buf), sshbuf_len(buf));
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	863	nkeys++;
				864	}
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	865	debug3("%s: sent %d hostkeys", __func__, nkeys);
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	866	if (nkeys == 0)
				867	fatal("%s: no hostkeys", __func__);
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	868	packet_send();
djm@openbsd.org	523463a	2015-02-16 22:13:32 +0000	[diff] [blame]	869	sshbuf_free(buf);
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	870	}
				871
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	872	/*
				873	* returns 1 if connection should be dropped, 0 otherwise.
				874	* dropping starts at connection #max_startups_begin with a probability
				875	* of (max_startups_rate/100). the probability increases linearly until
				876	* all connections are dropped for startups > max_startups
				877	*/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	878	static int
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	879	drop_connection(int startups)
				880	{
Darren Tucker	178fa66	2004-11-05 20:09:09 +1100	[diff] [blame]	881	int p, r;
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	882
				883	if (startups < options.max_startups_begin)
				884	return 0;
				885	if (startups >= options.max_startups)
				886	return 1;
				887	if (options.max_startups_rate == 100)
				888	return 1;
				889
				890	p = 100 - options.max_startups_rate;
				891	p *= startups - options.max_startups_begin;
Darren Tucker	178fa66	2004-11-05 20:09:09 +1100	[diff] [blame]	892	p /= options.max_startups - options.max_startups_begin;
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	893	p += options.max_startups_rate;
Damien Miller	354c48c	2008-05-19 14:50:00 +1000	[diff] [blame]	894	r = arc4random_uniform(100);
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	895
Darren Tucker	3269b13	2004-11-05 20:20:59 +1100	[diff] [blame]	896	debug("drop_connection: p %d, r %d", p, r);
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	897	return (r < p) ? 1 : 0;
				898	}
				899
Ben Lindstrom	ade03f6	2001-12-06 18:22:17 +0000	[diff] [blame]	900	static void
				901	usage(void)
				902	{
Damien Miller	0c889cd	2004-03-22 09:36:00 +1100	[diff] [blame]	903	fprintf(stderr, "%s, %s\n",
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	904	SSH_RELEASE,
				905	#ifdef WITH_OPENSSL
				906	SSLeay_version(SSLEAY_VERSION)
				907	#else
				908	"without OpenSSL"
				909	#endif
				910	);
Damien Miller	b408786	2004-03-22 09:35:21 +1100	[diff] [blame]	911	fprintf(stderr,
naddy@openbsd.org	c38ea63	2016-08-15 12:27:56 +0000	[diff] [blame]	912	"usage: sshd [-46DdeiqTt] [-C connection_spec] [-c host_cert_file]\n"
Damien Miller	03d4d7e	2013-04-23 15:21:06 +1000	[diff] [blame]	913	" [-E log_file] [-f config_file] [-g login_grace_time]\n"
naddy@openbsd.org	c38ea63	2016-08-15 12:27:56 +0000	[diff] [blame]	914	" [-h host_key_file] [-o option] [-p port] [-u len]\n"
Damien Miller	b408786	2004-03-22 09:35:21 +1100	[diff] [blame]	915	);
Ben Lindstrom	ade03f6	2001-12-06 18:22:17 +0000	[diff] [blame]	916	exit(1);
				917	}
				918
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	919	static void
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	920	send_rexec_state(int fd, struct sshbuf *conf)
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	921	{
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	922	struct sshbuf *m;
				923	int r;
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	924
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	925	debug3("%s: entering fd = %d config len %zu", __func__, fd,
				926	sshbuf_len(conf));
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	927
				928	/*
				929	* Protocol from reexec master to child:
				930	* string configuration
Darren Tucker	c6f8219	2005-09-27 22:46:32 +1000	[diff] [blame]	931	* string rngseed (only if OpenSSL is not self-seeded)
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	932	*/
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	933	if ((m = sshbuf_new()) == NULL)
				934	fatal("%s: sshbuf_new failed", __func__);
				935	if ((r = sshbuf_put_stringb(m, conf)) != 0)
				936	fatal("%s: buffer error: %s", __func__, ssh_err(r));
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	937
Damien Miller	72ef7c1	2015-01-15 02:21:31 +1100	[diff] [blame]	938	#if defined(WITH_OPENSSL) && !defined(OPENSSL_PRNG_ONLY)
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	939	rexec_send_rng_seed(m);
Darren Tucker	c6f8219	2005-09-27 22:46:32 +1000	[diff] [blame]	940	#endif
				941
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	942	if (ssh_msg_send(fd, 0, m) == -1)
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	943	fatal("%s: ssh_msg_send failed", __func__);
				944
djm@openbsd.org	1a31d02	2016-05-02 08:49:03 +0000	[diff] [blame]	945	sshbuf_free(m);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	946
				947	debug3("%s: done", __func__);
				948	}
				949
				950	static void
				951	recv_rexec_state(int fd, Buffer *conf)
				952	{
				953	Buffer m;
				954	char *cp;
				955	u_int len;
				956
				957	debug3("%s: entering fd = %d", __func__, fd);
				958
				959	buffer_init(&m);
				960
				961	if (ssh_msg_recv(fd, &m) == -1)
				962	fatal("%s: ssh_msg_recv failed", __func__);
				963	if (buffer_get_char(&m) != 0)
				964	fatal("%s: rexec version mismatch", __func__);
				965
				966	cp = buffer_get_string(&m, &len);
				967	if (conf != NULL)
djm@openbsd.org	31bc01c	2016-05-02 14:10:58 +0000	[diff] [blame]	968	buffer_append(conf, cp, len);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	969	free(cp);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	970
Damien Miller	72ef7c1	2015-01-15 02:21:31 +1100	[diff] [blame]	971	#if defined(WITH_OPENSSL) && !defined(OPENSSL_PRNG_ONLY)
Darren Tucker	c6f8219	2005-09-27 22:46:32 +1000	[diff] [blame]	972	rexec_recv_rng_seed(&m);
				973	#endif
				974
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	975	buffer_free(&m);
				976
				977	debug3("%s: done", __func__);
				978	}
				979
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	980	/* Accept a connection from inetd */
				981	static void
				982	server_accept_inetd(int sock_in, int sock_out)
				983	{
				984	int fd;
				985
				986	startup_pipe = -1;
				987	if (rexeced_flag) {
				988	close(REEXEC_CONFIG_PASS_FD);
				989	sock_in = sock_out = dup(STDIN_FILENO);
				990	if (!debug_flag) {
				991	startup_pipe = dup(REEXEC_STARTUP_PIPE_FD);
				992	close(REEXEC_STARTUP_PIPE_FD);
				993	}
				994	} else {
				995	*sock_in = dup(STDIN_FILENO);
				996	*sock_out = dup(STDOUT_FILENO);
				997	}
				998	/*
				999	* We intentionally do not close the descriptors 0, 1, and 2
				1000	* as our code for setting the descriptors won't work if
				1001	* ttyfd happens to be one of those.
				1002	*/
				1003	if ((fd = open(_PATH_DEVNULL, O_RDWR, 0)) != -1) {
				1004	dup2(fd, STDIN_FILENO);
				1005	dup2(fd, STDOUT_FILENO);
Darren Tucker	0cca17f	2013-06-06 08:21:14 +1000	[diff] [blame]	1006	if (!log_stderr)
				1007	dup2(fd, STDERR_FILENO);
				1008	if (fd > (log_stderr ? STDERR_FILENO : STDOUT_FILENO))
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1009	close(fd);
				1010	}
				1011	debug("inetd sockets after dupping: %d, %d", sock_in, sock_out);
				1012	}
				1013
				1014	/*
				1015	* Listen for TCP connections
				1016	*/
				1017	static void
				1018	server_listen(void)
				1019	{
				1020	int ret, listen_sock, on = 1;
				1021	struct addrinfo *ai;
				1022	char ntop[NI_MAXHOST], strport[NI_MAXSERV];
				1023
				1024	for (ai = options.listen_addrs; ai; ai = ai->ai_next) {
				1025	if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
				1026	continue;
				1027	if (num_listen_socks >= MAX_LISTEN_SOCKS)
				1028	fatal("Too many listen sockets. "
				1029	"Enlarge MAX_LISTEN_SOCKS");
				1030	if ((ret = getnameinfo(ai->ai_addr, ai->ai_addrlen,
				1031	ntop, sizeof(ntop), strport, sizeof(strport),
				1032	NI_NUMERICHOST\|NI_NUMERICSERV)) != 0) {
				1033	error("getnameinfo failed: %.100s",
Darren Tucker	4abde77	2007-12-29 02:43:51 +1100	[diff] [blame]	1034	ssh_gai_strerror(ret));
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1035	continue;
				1036	}
				1037	/* Create socket for listening. */
Darren Tucker	7bd98e7	2010-01-10 10:31:12 +1100	[diff] [blame]	1038	listen_sock = socket(ai->ai_family, ai->ai_socktype,
				1039	ai->ai_protocol);
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1040	if (listen_sock < 0) {
				1041	/* kernel may not support ipv6 */
				1042	verbose("socket: %.100s", strerror(errno));
				1043	continue;
				1044	}
				1045	if (set_nonblock(listen_sock) == -1) {
				1046	close(listen_sock);
				1047	continue;
				1048	}
djm@openbsd.org	8071a69	2017-02-24 03:16:34 +0000	[diff] [blame]	1049	if (fcntl(listen_sock, F_SETFD, FD_CLOEXEC) == -1) {
				1050	verbose("socket: CLOEXEC: %s", strerror(errno));
				1051	close(listen_sock);
				1052	continue;
				1053	}
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1054	/*
				1055	* Set socket options.
				1056	* Allow local port reuse in TIME_WAIT.
				1057	*/
				1058	if (setsockopt(listen_sock, SOL_SOCKET, SO_REUSEADDR,
				1059	&on, sizeof(on)) == -1)
				1060	error("setsockopt SO_REUSEADDR: %s", strerror(errno));
				1061
Damien Miller	49d2a28	2008-01-20 08:56:00 +1100	[diff] [blame]	1062	/* Only communicate in IPv6 over AF_INET6 sockets. */
Damien Miller	04ee0f8	2009-11-18 17:48:30 +1100	[diff] [blame]	1063	if (ai->ai_family == AF_INET6)
				1064	sock_set_v6only(listen_sock);
Damien Miller	49d2a28	2008-01-20 08:56:00 +1100	[diff] [blame]	1065
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1066	debug("Bind to port %s on %s.", strport, ntop);
				1067
				1068	/* Bind the socket to the desired port. */
				1069	if (bind(listen_sock, ai->ai_addr, ai->ai_addrlen) < 0) {
				1070	error("Bind to port %s on %s failed: %.200s.",
				1071	strport, ntop, strerror(errno));
				1072	close(listen_sock);
				1073	continue;
				1074	}
				1075	listen_socks[num_listen_socks] = listen_sock;
				1076	num_listen_socks++;
				1077
				1078	/* Start listening on the port. */
				1079	if (listen(listen_sock, SSH_LISTEN_BACKLOG) < 0)
				1080	fatal("listen on [%s]:%s: %.100s",
				1081	ntop, strport, strerror(errno));
				1082	logit("Server listening on %s port %s.", ntop, strport);
				1083	}
				1084	freeaddrinfo(options.listen_addrs);
				1085
				1086	if (!num_listen_socks)
				1087	fatal("Cannot bind any address.");
				1088	}
				1089
				1090	/*
				1091	* The main TCP accept loop. Note that, for the non-debug case, returns
				1092	* from this function are in a forked subprocess.
				1093	*/
				1094	static void
				1095	server_accept_loop(int sock_in, int sock_out, int newsock, int config_s)
				1096	{
				1097	fd_set *fdset;
				1098	int i, j, ret, maxfd;
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	1099	int startups = 0;
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1100	int startup_p[2] = { -1 , -1 };
				1101	struct sockaddr_storage from;
				1102	socklen_t fromlen;
				1103	pid_t pid;
Damien Miller	045bda5	2013-09-14 09:44:37 +1000	[diff] [blame]	1104	u_char rnd[256];
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1105
				1106	/* setup fd set for accept */
				1107	fdset = NULL;
				1108	maxfd = 0;
				1109	for (i = 0; i < num_listen_socks; i++)
				1110	if (listen_socks[i] > maxfd)
				1111	maxfd = listen_socks[i];
				1112	/* pipes connected to unauthenticated childs */
				1113	startup_pipes = xcalloc(options.max_startups, sizeof(int));
				1114	for (i = 0; i < options.max_startups; i++)
				1115	startup_pipes[i] = -1;
				1116
				1117	/*
				1118	* Stay listening for connections until the system crashes or
				1119	* the daemon is killed with a signal.
				1120	*/
				1121	for (;;) {
				1122	if (received_sighup)
				1123	sighup_restart();
mmcc@openbsd.org	d59ce08	2015-12-10 17:08:40 +0000	[diff] [blame]	1124	free(fdset);
deraadt@openbsd.org	ce445b0	2015-08-20 22:32:42 +0000	[diff] [blame]	1125	fdset = xcalloc(howmany(maxfd + 1, NFDBITS),
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1126	sizeof(fd_mask));
				1127
				1128	for (i = 0; i < num_listen_socks; i++)
				1129	FD_SET(listen_socks[i], fdset);
				1130	for (i = 0; i < options.max_startups; i++)
				1131	if (startup_pipes[i] != -1)
				1132	FD_SET(startup_pipes[i], fdset);
				1133
				1134	/* Wait in select until there is a connection. */
				1135	ret = select(maxfd+1, fdset, NULL, NULL, NULL);
				1136	if (ret < 0 && errno != EINTR)
				1137	error("select: %.100s", strerror(errno));
				1138	if (received_sigterm) {
				1139	logit("Received signal %d; terminating.",
				1140	(int) received_sigterm);
				1141	close_listen_socks();
djm@openbsd.org	161cf41	2014-12-22 07:55:51 +0000	[diff] [blame]	1142	if (options.pid_file != NULL)
				1143	unlink(options.pid_file);
Damien Miller	26b57ce	2011-05-05 14:15:09 +1000	[diff] [blame]	1144	exit(received_sigterm == SIGTERM ? 0 : 255);
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1145	}
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1146	if (ret < 0)
				1147	continue;
				1148
				1149	for (i = 0; i < options.max_startups; i++)
				1150	if (startup_pipes[i] != -1 &&
				1151	FD_ISSET(startup_pipes[i], fdset)) {
				1152	/*
				1153	* the read end of the pipe is ready
				1154	* if the child has closed the pipe
				1155	* after successful authentication
				1156	* or if the child has died
				1157	*/
				1158	close(startup_pipes[i]);
				1159	startup_pipes[i] = -1;
				1160	startups--;
				1161	}
				1162	for (i = 0; i < num_listen_socks; i++) {
				1163	if (!FD_ISSET(listen_socks[i], fdset))
				1164	continue;
				1165	fromlen = sizeof(from);
				1166	*newsock = accept(listen_socks[i],
				1167	(struct sockaddr *)&from, &fromlen);
				1168	if (*newsock < 0) {
Damien Miller	37f1c08	2013-04-23 15:20:43 +1000	[diff] [blame]	1169	if (errno != EINTR && errno != EWOULDBLOCK &&
				1170	errno != ECONNABORTED && errno != EAGAIN)
Damien Miller	a116d13	2012-04-22 11:23:46 +1000	[diff] [blame]	1171	error("accept: %.100s",
				1172	strerror(errno));
				1173	if (errno == EMFILE \|\| errno == ENFILE)
				1174	usleep(100 * 1000);
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1175	continue;
				1176	}
				1177	if (unset_nonblock(*newsock) == -1) {
				1178	close(*newsock);
				1179	continue;
				1180	}
				1181	if (drop_connection(startups) == 1) {
djm@openbsd.org	08a1e70	2016-12-09 03:04:29 +0000	[diff] [blame]	1182	char laddr = get_local_ipaddr(newsock);
				1183	char raddr = get_peer_ipaddr(newsock);
				1184
				1185	verbose("drop connection #%d from [%s]:%d "
				1186	"on [%s]:%d past MaxStartups", startups,
				1187	raddr, get_peer_port(*newsock),
				1188	laddr, get_local_port(*newsock));
				1189	free(laddr);
				1190	free(raddr);
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1191	close(*newsock);
				1192	continue;
				1193	}
				1194	if (pipe(startup_p) == -1) {
				1195	close(*newsock);
				1196	continue;
				1197	}
				1198
				1199	if (rexec_flag && socketpair(AF_UNIX,
				1200	SOCK_STREAM, 0, config_s) == -1) {
				1201	error("reexec socketpair: %s",
				1202	strerror(errno));
				1203	close(*newsock);
				1204	close(startup_p[0]);
				1205	close(startup_p[1]);
				1206	continue;
				1207	}
				1208
				1209	for (j = 0; j < options.max_startups; j++)
				1210	if (startup_pipes[j] == -1) {
				1211	startup_pipes[j] = startup_p[0];
				1212	if (maxfd < startup_p[0])
				1213	maxfd = startup_p[0];
				1214	startups++;
				1215	break;
				1216	}
				1217
				1218	/*
				1219	* Got connection. Fork a child to handle it, unless
				1220	* we are in debugging mode.
				1221	*/
				1222	if (debug_flag) {
				1223	/*
				1224	* In debugging mode. Close the listening
				1225	* socket, and start processing the
				1226	* connection without forking.
				1227	*/
				1228	debug("Server will not fork when running in debugging mode.");
				1229	close_listen_socks();
				1230	sock_in = newsock;
				1231	sock_out = newsock;
				1232	close(startup_p[0]);
				1233	close(startup_p[1]);
				1234	startup_pipe = -1;
				1235	pid = getpid();
				1236	if (rexec_flag) {
				1237	send_rexec_state(config_s[0],
				1238	&cfg);
				1239	close(config_s[0]);
				1240	}
				1241	break;
				1242	}
				1243
				1244	/*
				1245	* Normal production daemon. Fork, and have
				1246	* the child process the connection. The
				1247	* parent continues listening.
				1248	*/
Damien Miller	1b06dc3	2006-08-31 03:24:41 +1000	[diff] [blame]	1249	platform_pre_fork();
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1250	if ((pid = fork()) == 0) {
				1251	/*
				1252	* Child. Close the listening and
				1253	* max_startup sockets. Start using
				1254	* the accepted socket. Reinitialize
				1255	* logging (since our pid has changed).
				1256	* We break out of the loop to handle
				1257	* the connection.
				1258	*/
Damien Miller	1b06dc3	2006-08-31 03:24:41 +1000	[diff] [blame]	1259	platform_post_fork_child();
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1260	startup_pipe = startup_p[1];
				1261	close_startup_pipes();
				1262	close_listen_socks();
				1263	sock_in = newsock;
				1264	sock_out = newsock;
				1265	log_init(__progname,
				1266	options.log_level,
				1267	options.log_facility,
				1268	log_stderr);
				1269	if (rexec_flag)
				1270	close(config_s[0]);
				1271	break;
				1272	}
				1273
				1274	/* Parent. Stay in the loop. */
Damien Miller	1b06dc3	2006-08-31 03:24:41 +1000	[diff] [blame]	1275	platform_post_fork_parent(pid);
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1276	if (pid < 0)
				1277	error("fork: %.100s", strerror(errno));
				1278	else
				1279	debug("Forked child %ld.", (long)pid);
				1280
				1281	close(startup_p[1]);
				1282
				1283	if (rexec_flag) {
				1284	send_rexec_state(config_s[0], &cfg);
				1285	close(config_s[0]);
				1286	close(config_s[1]);
				1287	}
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1288	close(*newsock);
				1289
				1290	/*
				1291	* Ensure that our random state differs
				1292	* from that of the child
				1293	*/
				1294	arc4random_stir();
Damien Miller	045bda5	2013-09-14 09:44:37 +1000	[diff] [blame]	1295	arc4random_buf(rnd, sizeof(rnd));
Damien Miller	72ef7c1	2015-01-15 02:21:31 +1100	[diff] [blame]	1296	#ifdef WITH_OPENSSL
Damien Miller	045bda5	2013-09-14 09:44:37 +1000	[diff] [blame]	1297	RAND_seed(rnd, sizeof(rnd));
Damien Miller	07889c7	2015-11-14 18:44:49 +1100	[diff] [blame]	1298	if ((RAND_bytes((u_char *)rnd, 1)) != 1)
				1299	fatal("%s: RAND_bytes failed", __func__);
Damien Miller	72ef7c1	2015-01-15 02:21:31 +1100	[diff] [blame]	1300	#endif
Damien Miller	1d2c456	2014-02-04 11:18:20 +1100	[diff] [blame]	1301	explicit_bzero(rnd, sizeof(rnd));
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1302	}
				1303
				1304	/* child process check (or debug mode) */
				1305	if (num_listen_socks < 0)
				1306	break;
				1307	}
				1308	}
				1309
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1310	/*
				1311	* If IP options are supported, make sure there are none (log and
				1312	* return an error if any are found). Basically we are worried about
				1313	* source routing; it can be used to pretend you are somebody
				1314	* (ip-address) you are not. That itself may be "almost acceptable"
				1315	* under certain circumstances, but rhosts autentication is useless
				1316	* if source routing is accepted. Notice also that if we just dropped
				1317	* source routing here, the other side could use IP spoofing to do
				1318	* rest of the interaction and could still bypass security. So we
				1319	* exit here if we detect any IP options.
				1320	*/
				1321	static void
				1322	check_ip_options(struct ssh *ssh)
				1323	{
				1324	#ifdef IP_OPTIONS
				1325	int sock_in = ssh_packet_get_connection_in(ssh);
				1326	struct sockaddr_storage from;
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1327	u_char opts[200];
djm@openbsd.org	dc664d1	2016-08-28 22:28:12 +0000	[diff] [blame]	1328	socklen_t i, option_size = sizeof(opts), fromlen = sizeof(from);
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1329	char text[sizeof(opts) * 3 + 1];
				1330
				1331	memset(&from, 0, sizeof(from));
				1332	if (getpeername(sock_in, (struct sockaddr *)&from,
				1333	&fromlen) < 0)
				1334	return;
				1335	if (from.ss_family != AF_INET)
				1336	return;
				1337	/* XXX IPv6 options? */
				1338
				1339	if (getsockopt(sock_in, IPPROTO_IP, IP_OPTIONS, opts,
				1340	&option_size) >= 0 && option_size != 0) {
				1341	text[0] = '\0';
				1342	for (i = 0; i < option_size; i++)
				1343	snprintf(text + i3, sizeof(text) - i3,
				1344	" %2.2x", opts[i]);
				1345	fatal("Connection from %.100s port %d with IP opts: %.800s",
				1346	ssh_remote_ipaddr(ssh), ssh_remote_port(ssh), text);
				1347	}
				1348	return;
				1349	#endif /* IP_OPTIONS */
				1350	}
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1351
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1352	/*
				1353	* Main program for the daemon.
				1354	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1355	int
				1356	main(int ac, char **av)
				1357	{
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1358	struct ssh *ssh = NULL;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1359	extern char *optarg;
				1360	extern int optind;
dtucker@openbsd.org	7fc4766	2016-11-30 00:28:31 +0000	[diff] [blame]	1361	int r, opt, i, j, on = 1, already_daemon;
Damien Miller	386c6a2	2004-06-30 22:40:20 +1000	[diff] [blame]	1362	int sock_in = -1, sock_out = -1, newsock = -1;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1363	const char *remote_ip;
				1364	int remote_port;
dtucker@openbsd.org	15fdfc9	2015-04-15 23:23:25 +0000	[diff] [blame]	1365	char fp, line, laddr, logfile = NULL;
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1366	int config_s[2] = { -1 , -1 };
Damien Miller	a6e3f01	2012-11-04 23:21:40 +1100	[diff] [blame]	1367	u_int n;
Damien Miller	b61f3fc	2008-07-11 17:36:48 +1000	[diff] [blame]	1368	u_int64_t ibytes, obytes;
Damien Miller	6ca16c6	2008-06-16 07:50:58 +1000	[diff] [blame]	1369	mode_t new_umask;
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	1370	struct sshkey *key;
				1371	struct sshkey *pubkey;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1372	int keytype;
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	1373	Authctxt *authctxt;
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1374	struct connection_info *connection_info = get_connection_info(0, 0);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1375
dtucker@openbsd.org	ffb1e7e	2016-02-15 09:47:49 +0000	[diff] [blame]	1376	ssh_malloc_init(); /* must be called before any mallocs */
				1377
Kevin Steves	0ea1d9d	2002-04-25 18:17:04 +0000	[diff] [blame]	1378	#ifdef HAVE_SECUREWARE
				1379	(void)set_auth_parameters(ac, av);
				1380	#endif
Damien Miller	59d3d5b	2003-08-22 09:34:41 +1000	[diff] [blame]	1381	__progname = ssh_get_progname(av[0]);
Damien Miller	f9b625c	2000-07-09 22:42:32 +1000	[diff] [blame]	1382
Damien Miller	a8ed44b	2003-01-10 09:53:12 +1100	[diff] [blame]	1383	/* Save argv. Duplicate so setproctitle emulation doesn't clobber it */
Damien Miller	b8c656e	2000-06-28 15:22:41 +1000	[diff] [blame]	1384	saved_argc = ac;
Darren Tucker	17c5d03	2004-06-25 14:22:23 +1000	[diff] [blame]	1385	rexec_argc = ac;
Darren Tucker	d8093e4	2006-05-04 16:24:34 +1000	[diff] [blame]	1386	saved_argv = xcalloc(ac + 1, sizeof(*saved_argv));
Damien Miller	a8ed44b	2003-01-10 09:53:12 +1100	[diff] [blame]	1387	for (i = 0; i < ac; i++)
				1388	saved_argv[i] = xstrdup(av[i]);
Damien Miller	04cb536	2003-05-15 21:29:10 +1000	[diff] [blame]	1389	saved_argv[i] = NULL;
Damien Miller	a8ed44b	2003-01-10 09:53:12 +1100	[diff] [blame]	1390
				1391	#ifndef HAVE_SETPROCTITLE
				1392	/* Prepare for later setproctitle emulation */
				1393	compat_init_setproctitle(ac, av);
Damien Miller	f2e3e9d	2003-06-02 12:15:54 +1000	[diff] [blame]	1394	av = saved_argv;
Damien Miller	a8ed44b	2003-01-10 09:53:12 +1100	[diff] [blame]	1395	#endif
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1396
Damien Miller	bfba354	2004-03-22 09:29:57 +1100	[diff] [blame]	1397	if (geteuid() == 0 && setgroups(0, NULL) == -1)
				1398	debug("setgroups(): %.200s", strerror(errno));
				1399
Darren Tucker	ce321d8	2005-10-03 18:11:24 +1000	[diff] [blame]	1400	/* Ensure that fds 0, 1 and 2 are open or directed to /dev/null */
				1401	sanitise_stdfd();
				1402
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1403	/* Initialize configuration options to their default values. */
				1404	initialize_server_options(&options);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1405
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1406	/* Parse command-line arguments. */
djm@openbsd.org	3e91b4e	2015-05-24 23:39:16 +0000	[diff] [blame]	1407	while ((opt = getopt(ac, av,
				1408	"C:E:b:c:f:g:h:k:o:p:u:46DQRTdeiqrt")) != -1) {
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1409	switch (opt) {
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1410	case '4':
Darren Tucker	0f38323	2005-01-20 10:57:56 +1100	[diff] [blame]	1411	options.address_family = AF_INET;
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1412	break;
				1413	case '6':
Darren Tucker	0f38323	2005-01-20 10:57:56 +1100	[diff] [blame]	1414	options.address_family = AF_INET6;
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1415	break;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1416	case 'f':
				1417	config_file_name = optarg;
				1418	break;
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	1419	case 'c':
				1420	if (options.num_host_cert_files >= MAX_HOSTCERTS) {
				1421	fprintf(stderr, "too many host certificates.\n");
				1422	exit(1);
				1423	}
				1424	options.host_cert_files[options.num_host_cert_files++] =
				1425	derelativise_path(optarg);
				1426	break;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1427	case 'd':
Darren Tucker	e98dfa3	2003-07-19 19:54:31 +1000	[diff] [blame]	1428	if (debug_flag == 0) {
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	1429	debug_flag = 1;
				1430	options.log_level = SYSLOG_LEVEL_DEBUG1;
Darren Tucker	e98dfa3	2003-07-19 19:54:31 +1000	[diff] [blame]	1431	} else if (options.log_level < SYSLOG_LEVEL_DEBUG3)
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	1432	options.log_level++;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1433	break;
Ben Lindstrom	c72745a	2000-12-02 19:03:54 +0000	[diff] [blame]	1434	case 'D':
				1435	no_daemon_flag = 1;
				1436	break;
Damien Miller	03d4d7e	2013-04-23 15:21:06 +1000	[diff] [blame]	1437	case 'E':
dtucker@openbsd.org	4f7cc2f	2015-09-04 08:21:47 +0000	[diff] [blame]	1438	logfile = optarg;
Damien Miller	03d4d7e	2013-04-23 15:21:06 +1000	[diff] [blame]	1439	/* FALLTHROUGH */
Ben Lindstrom	9fce9f0	2001-04-11 23:10:09 +0000	[diff] [blame]	1440	case 'e':
				1441	log_stderr = 1;
				1442	break;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1443	case 'i':
				1444	inetd_flag = 1;
				1445	break;
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1446	case 'r':
				1447	rexec_flag = 0;
				1448	break;
				1449	case 'R':
				1450	rexeced_flag = 1;
				1451	inetd_flag = 1;
				1452	break;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1453	case 'Q':
Ben Lindstrom	d539020	2001-01-29 08:07:43 +0000	[diff] [blame]	1454	/* ignored */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1455	break;
				1456	case 'q':
				1457	options.log_level = SYSLOG_LEVEL_QUIET;
				1458	break;
				1459	case 'b':
naddy@openbsd.org	c38ea63	2016-08-15 12:27:56 +0000	[diff] [blame]	1460	/* protocol 1, ignored */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1461	break;
				1462	case 'p':
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1463	options.ports_from_cmdline = 1;
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	1464	if (options.num_ports >= MAX_PORTS) {
				1465	fprintf(stderr, "too many ports.\n");
				1466	exit(1);
				1467	}
Ben Lindstrom	19066a1	2001-04-12 23:39:26 +0000	[diff] [blame]	1468	options.ports[options.num_ports++] = a2port(optarg);
Damien Miller	3dc71ad	2009-01-28 16:31:22 +1100	[diff] [blame]	1469	if (options.ports[options.num_ports-1] <= 0) {
Ben Lindstrom	19066a1	2001-04-12 23:39:26 +0000	[diff] [blame]	1470	fprintf(stderr, "Bad port number.\n");
				1471	exit(1);
				1472	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1473	break;
				1474	case 'g':
Ben Lindstrom	1bda4c8	2001-06-05 19:59:08 +0000	[diff] [blame]	1475	if ((options.login_grace_time = convtime(optarg)) == -1) {
				1476	fprintf(stderr, "Invalid login grace time.\n");
				1477	exit(1);
				1478	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1479	break;
				1480	case 'k':
naddy@openbsd.org	c38ea63	2016-08-15 12:27:56 +0000	[diff] [blame]	1481	/* protocol 1, ignored */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1482	break;
				1483	case 'h':
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1484	if (options.num_host_key_files >= MAX_HOSTKEYS) {
				1485	fprintf(stderr, "too many host keys.\n");
				1486	exit(1);
				1487	}
Darren Tucker	88b6fb2	2010-01-13 22:44:29 +1100	[diff] [blame]	1488	options.host_key_files[options.num_host_key_files++] =
				1489	derelativise_path(optarg);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1490	break;
Ben Lindstrom	794325a	2001-08-06 21:09:07 +0000	[diff] [blame]	1491	case 't':
				1492	test_flag = 1;
				1493	break;
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1494	case 'T':
				1495	test_flag = 2;
				1496	break;
				1497	case 'C':
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1498	if (parse_server_match_testspec(connection_info,
				1499	optarg) == -1)
				1500	exit(1);
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1501	break;
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	1502	case 'u':
deraadt@openbsd.org	087266e	2015-01-20 23:14:00 +0000	[diff] [blame]	1503	utmp_len = (u_int)strtonum(optarg, 0, HOST_NAME_MAX+1+1, NULL);
				1504	if (utmp_len > HOST_NAME_MAX+1) {
Ben Lindstrom	41daec7	2002-07-23 21:15:13 +0000	[diff] [blame]	1505	fprintf(stderr, "Invalid utmp length.\n");
				1506	exit(1);
				1507	}
Damien Miller	942da03	2000-08-18 13:59:06 +1000	[diff] [blame]	1508	break;
Ben Lindstrom	ade03f6	2001-12-06 18:22:17 +0000	[diff] [blame]	1509	case 'o':
Damien Miller	b999719	2003-12-17 16:29:22 +1100	[diff] [blame]	1510	line = xstrdup(optarg);
				1511	if (process_server_config_line(&options, line,
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1512	"command-line", 0, NULL, NULL) != 0)
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	1513	exit(1);
Darren Tucker	a627d42	2013-06-02 07:31:17 +1000	[diff] [blame]	1514	free(line);
Ben Lindstrom	ade03f6	2001-12-06 18:22:17 +0000	[diff] [blame]	1515	break;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1516	case '?':
				1517	default:
Ben Lindstrom	ade03f6	2001-12-06 18:22:17 +0000	[diff] [blame]	1518	usage();
				1519	break;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1520	}
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1521	}
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1522	if (rexeced_flag \|\| inetd_flag)
				1523	rexec_flag = 0;
Damien Miller	2ee0c43	2008-03-07 18:31:47 +1100	[diff] [blame]	1524	if (!test_flag && (rexec_flag && (av[0] == NULL \|\| *av[0] != '/')))
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1525	fatal("sshd re-exec requires execution with an absolute path");
				1526	if (rexeced_flag)
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1527	closefrom(REEXEC_MIN_FREE_FD);
				1528	else
				1529	closefrom(REEXEC_DEVCRYPTO_RESERVED_FD);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1530
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	1531	#ifdef WITH_OPENSSL
Damien Miller	4314c2b	2010-09-10 11:12:09 +1000	[diff] [blame]	1532	OpenSSL_add_all_algorithms();
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	1533	#endif
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1534
Damien Miller	03d4d7e	2013-04-23 15:21:06 +1000	[diff] [blame]	1535	/* If requested, redirect the logs to the specified logfile. */
dtucker@openbsd.org	4f7cc2f	2015-09-04 08:21:47 +0000	[diff] [blame]	1536	if (logfile != NULL)
Damien Miller	03d4d7e	2013-04-23 15:21:06 +1000	[diff] [blame]	1537	log_redirect_stderr_to(logfile);
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1538	/*
				1539	* Force logging to stderr until we have loaded the private host
				1540	* key (unless started from inetd)
				1541	*/
Kevin Steves	ec84dc1	2000-12-13 17:45:15 +0000	[diff] [blame]	1542	log_init(__progname,
Damien Miller	5aa5d78	2002-02-08 22:01:54 +1100	[diff] [blame]	1543	options.log_level == SYSLOG_LEVEL_NOT_SET ?
				1544	SYSLOG_LEVEL_INFO : options.log_level,
				1545	options.log_facility == SYSLOG_FACILITY_NOT_SET ?
				1546	SYSLOG_FACILITY_AUTH : options.log_facility,
Ben Lindstrom	c2faa4a	2002-11-09 15:50:03 +0000	[diff] [blame]	1547	log_stderr \|\| !inetd_flag);
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1548
Darren Tucker	86c093d	2004-03-08 22:59:03 +1100	[diff] [blame]	1549	/*
				1550	* Unset KRB5CCNAME, otherwise the user's session may inherit it from
				1551	* root's environment
Damien Miller	94cf4c8	2005-07-17 17:04:47 +1000	[diff] [blame]	1552	*/
Darren Tucker	9dc6c7d	2005-02-02 18:30:33 +1100	[diff] [blame]	1553	if (getenv("KRB5CCNAME") != NULL)
Tim Rice	e3609c9	2012-02-14 10:03:30 -0800	[diff] [blame]	1554	(void) unsetenv("KRB5CCNAME");
Darren Tucker	9dc6c7d	2005-02-02 18:30:33 +1100	[diff] [blame]	1555
Tim Rice	81ed518	2002-09-25 17:38:46 -0700	[diff] [blame]	1556	#ifdef _UNICOS
Darren Tucker	1298496	2004-05-24 13:37:13 +1000	[diff] [blame]	1557	/* Cray can define user privs drop all privs now!
Ben Lindstrom	6db66ff	2001-08-06 23:29:16 +0000	[diff] [blame]	1558	* Not needed on PRIV_SU systems!
				1559	*/
				1560	drop_cray_privs();
				1561	#endif
				1562
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1563	sensitive_data.have_ssh2_key = 0;
				1564
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1565	/*
				1566	* If we're doing an extended config test, make sure we have all of
				1567	* the parameters we need. If we're not doing an extended test,
				1568	* do not silently ignore connection test params.
				1569	*/
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1570	if (test_flag >= 2 && server_match_spec_complete(connection_info) == 0)
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1571	fatal("user, host and addr are all required when testing "
				1572	"Match configs");
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1573	if (test_flag < 2 && server_match_spec_complete(connection_info) >= 0)
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1574	fatal("Config test connection parameter (-C) provided without "
				1575	"test mode (-T)");
				1576
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1577	/* Fetch our configuration */
				1578	buffer_init(&cfg);
				1579	if (rexeced_flag)
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1580	recv_rexec_state(REEXEC_CONFIG_PASS_FD, &cfg);
djm@openbsd.org	dbcc652	2015-04-27 00:21:21 +0000	[diff] [blame]	1581	else if (strcasecmp(config_file_name, "none") != 0)
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1582	load_server_config(config_file_name, &cfg);
				1583
Darren Tucker	4515047	2006-07-12 22:34:17 +1000	[diff] [blame]	1584	parse_server_config(&options, rexeced_flag ? "rexec" : config_file_name,
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1585	&cfg, NULL);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1586
Darren Tucker	c6f8219	2005-09-27 22:46:32 +1000	[diff] [blame]	1587	seed_rng();
				1588
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1589	/* Fill in default values for those options not explicitly set. */
				1590	fill_default_server_options(&options);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1591
Darren Tucker	97b1bb5	2007-03-21 20:38:53 +1100	[diff] [blame]	1592	/* challenge-response is implemented via keyboard interactive */
				1593	if (options.challenge_response_authentication)
				1594	options.kbd_interactive_authentication = 1;
				1595
Damien Miller	d0d1099	2012-11-04 22:23:14 +1100	[diff] [blame]	1596	/* Check that options are sensible */
				1597	if (options.authorized_keys_command_user == NULL &&
				1598	(options.authorized_keys_command != NULL &&
				1599	strcasecmp(options.authorized_keys_command, "none") != 0))
				1600	fatal("AuthorizedKeysCommand set without "
				1601	"AuthorizedKeysCommandUser");
djm@openbsd.org	bcc50d8	2015-05-21 06:43:30 +0000	[diff] [blame]	1602	if (options.authorized_principals_command_user == NULL &&
				1603	(options.authorized_principals_command != NULL &&
				1604	strcasecmp(options.authorized_principals_command, "none") != 0))
				1605	fatal("AuthorizedPrincipalsCommand set without "
				1606	"AuthorizedPrincipalsCommandUser");
Damien Miller	d0d1099	2012-11-04 22:23:14 +1100	[diff] [blame]	1607
Damien Miller	a6e3f01	2012-11-04 23:21:40 +1100	[diff] [blame]	1608	/*
				1609	* Check whether there is any path through configured auth methods.
				1610	* Unfortunately it is not possible to verify this generally before
				1611	* daemonisation in the presence of Match block, but this catches
				1612	* and warns for trivial misconfigurations that could break login.
				1613	*/
				1614	if (options.num_auth_methods != 0) {
Damien Miller	a6e3f01	2012-11-04 23:21:40 +1100	[diff] [blame]	1615	for (n = 0; n < options.num_auth_methods; n++) {
				1616	if (auth2_methods_valid(options.auth_methods[n],
				1617	1) == 0)
				1618	break;
				1619	}
				1620	if (n >= options.num_auth_methods)
				1621	fatal("AuthenticationMethods cannot be satisfied by "
				1622	"enabled authentication methods");
				1623	}
				1624
Darren Tucker	7bd98e7	2010-01-10 10:31:12 +1100	[diff] [blame]	1625	/* set default channel AF */
Darren Tucker	0f38323	2005-01-20 10:57:56 +1100	[diff] [blame]	1626	channel_set_af(options.address_family);
				1627
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1628	/* Check that there are no remaining arguments. */
				1629	if (optind < ac) {
				1630	fprintf(stderr, "Extra argument %s.\n", av[optind]);
				1631	exit(1);
				1632	}
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1633
Damien Miller	22e8a1e	2013-02-12 11:04:48 +1100	[diff] [blame]	1634	debug("sshd version %s, %s", SSH_VERSION,
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	1635	#ifdef WITH_OPENSSL
				1636	SSLeay_version(SSLEAY_VERSION)
				1637	#else
				1638	"without OpenSSL"
				1639	#endif
				1640	);
Damien Miller	2ccf661	1999-11-15 15:25:10 +1100	[diff] [blame]	1641
Darren Tucker	df0e438	2006-11-07 11:28:40 +1100	[diff] [blame]	1642	/* Store privilege separation user for later use if required. */
Darren Tucker	d13281f	2017-03-29 12:39:39 +1100	[diff] [blame]	1643	privsep_chroot = use_privsep && (getuid() == 0 \|\| geteuid() == 0);
Darren Tucker	df0e438	2006-11-07 11:28:40 +1100	[diff] [blame]	1644	if ((privsep_pw = getpwnam(SSH_PRIVSEP_USER)) == NULL) {
Darren Tucker	d13281f	2017-03-29 12:39:39 +1100	[diff] [blame]	1645	if (privsep_chroot \|\| options.kerberos_authentication)
Darren Tucker	df0e438	2006-11-07 11:28:40 +1100	[diff] [blame]	1646	fatal("Privilege separation user %s does not exist",
				1647	SSH_PRIVSEP_USER);
				1648	} else {
Damien Miller	a5103f4	2014-02-04 11:20:14 +1100	[diff] [blame]	1649	explicit_bzero(privsep_pw->pw_passwd,
				1650	strlen(privsep_pw->pw_passwd));
Darren Tucker	df0e438	2006-11-07 11:28:40 +1100	[diff] [blame]	1651	privsep_pw = pwcopy(privsep_pw);
Darren Tucker	f60845f	2013-06-02 08:07:31 +1000	[diff] [blame]	1652	free(privsep_pw->pw_passwd);
Darren Tucker	df0e438	2006-11-07 11:28:40 +1100	[diff] [blame]	1653	privsep_pw->pw_passwd = xstrdup("*");
				1654	}
Damien Miller	6433df0	2006-09-07 10:36:43 +1000	[diff] [blame]	1655	endpwent();
				1656
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1657	/* load host keys */
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	1658	sensitive_data.host_keys = xcalloc(options.num_host_key_files,
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	1659	sizeof(struct sshkey *));
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1660	sensitive_data.host_pubkeys = xcalloc(options.num_host_key_files,
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	1661	sizeof(struct sshkey *));
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1662
				1663	if (options.host_key_agent) {
				1664	if (strcmp(options.host_key_agent, SSH_AUTHSOCKET_ENV_NAME))
				1665	setenv(SSH_AUTHSOCKET_ENV_NAME,
				1666	options.host_key_agent, 1);
djm@openbsd.org	83f8ffa	2015-01-17 18:53:34 +0000	[diff] [blame]	1667	if ((r = ssh_get_authentication_socket(NULL)) == 0)
				1668	have_agent = 1;
				1669	else
				1670	error("Could not connect to agent \"%s\": %s",
				1671	options.host_key_agent, ssh_err(r));
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1672	}
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1673
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	1674	for (i = 0; i < options.num_host_key_files; i++) {
djm@openbsd.org	161cf41	2014-12-22 07:55:51 +0000	[diff] [blame]	1675	if (options.host_key_files[i] == NULL)
				1676	continue;
Ben Lindstrom	d0fca42	2001-03-26 13:44:06 +0000	[diff] [blame]	1677	key = key_load_private(options.host_key_files[i], "", NULL);
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1678	pubkey = key_load_public(options.host_key_files[i], NULL);
djm@openbsd.org	a8c5eea	2017-03-15 02:19:09 +0000	[diff] [blame]	1679
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	1680	if (pubkey == NULL && key != NULL)
				1681	pubkey = key_demote(key);
Ben Lindstrom	d0fca42	2001-03-26 13:44:06 +0000	[diff] [blame]	1682	sensitive_data.host_keys[i] = key;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1683	sensitive_data.host_pubkeys[i] = pubkey;
				1684
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	1685	if (key == NULL && pubkey != NULL && have_agent) {
djm@openbsd.org	ce63c4b	2015-02-16 22:30:03 +0000	[diff] [blame]	1686	debug("will rely on agent for hostkey %s",
				1687	options.host_key_files[i]);
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1688	keytype = pubkey->type;
				1689	} else if (key != NULL) {
				1690	keytype = key->type;
				1691	} else {
Ben Lindstrom	15f3386	2001-04-16 02:00:02 +0000	[diff] [blame]	1692	error("Could not load host key: %s",
				1693	options.host_key_files[i]);
Ben Lindstrom	d0fca42	2001-03-26 13:44:06 +0000	[diff] [blame]	1694	sensitive_data.host_keys[i] = NULL;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1695	sensitive_data.host_pubkeys[i] = NULL;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1696	continue;
				1697	}
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	1698
				1699	switch (keytype) {
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1700	case KEY_RSA:
				1701	case KEY_DSA:
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	1702	case KEY_ECDSA:
Damien Miller	5be9d9e	2013-12-07 11:24:01 +1100	[diff] [blame]	1703	case KEY_ED25519:
djm@openbsd.org	6049a54	2015-01-31 20:30:05 +0000	[diff] [blame]	1704	if (have_agent \|\| key != NULL)
				1705	sensitive_data.have_ssh2_key = 1;
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1706	break;
				1707	}
djm@openbsd.org	6049a54	2015-01-31 20:30:05 +0000	[diff] [blame]	1708	if ((fp = sshkey_fingerprint(pubkey, options.fingerprint_hash,
				1709	SSH_FP_DEFAULT)) == NULL)
				1710	fatal("sshkey_fingerprint failed");
				1711	debug("%s host key #%d: %s %s",
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	1712	key ? "private" : "agent", i, sshkey_ssh_name(pubkey), fp);
djm@openbsd.org	6049a54	2015-01-31 20:30:05 +0000	[diff] [blame]	1713	free(fp);
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	1714	}
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	1715	if (!sensitive_data.have_ssh2_key) {
Damien Miller	996acd2	2003-04-09 20:59:48 +1000	[diff] [blame]	1716	logit("sshd: no hostkeys available -- exiting.");
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1717	exit(1);
				1718	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1719
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	1720	/*
				1721	* Load certificates. They are stored in an array at identical
				1722	* indices to the public keys that they relate to.
				1723	*/
				1724	sensitive_data.host_certificates = xcalloc(options.num_host_key_files,
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	1725	sizeof(struct sshkey *));
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	1726	for (i = 0; i < options.num_host_key_files; i++)
				1727	sensitive_data.host_certificates[i] = NULL;
				1728
				1729	for (i = 0; i < options.num_host_cert_files; i++) {
djm@openbsd.org	161cf41	2014-12-22 07:55:51 +0000	[diff] [blame]	1730	if (options.host_cert_files[i] == NULL)
				1731	continue;
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	1732	key = key_load_public(options.host_cert_files[i], NULL);
				1733	if (key == NULL) {
				1734	error("Could not load host certificate: %s",
				1735	options.host_cert_files[i]);
				1736	continue;
				1737	}
				1738	if (!key_is_cert(key)) {
				1739	error("Certificate file is not a certificate: %s",
				1740	options.host_cert_files[i]);
				1741	key_free(key);
				1742	continue;
				1743	}
				1744	/* Find matching private key */
				1745	for (j = 0; j < options.num_host_key_files; j++) {
				1746	if (key_equal_public(key,
				1747	sensitive_data.host_keys[j])) {
				1748	sensitive_data.host_certificates[j] = key;
				1749	break;
				1750	}
				1751	}
				1752	if (j >= options.num_host_key_files) {
				1753	error("No matching private key for certificate: %s",
				1754	options.host_cert_files[i]);
				1755	key_free(key);
				1756	continue;
				1757	}
				1758	sensitive_data.host_certificates[j] = key;
				1759	debug("host certificate: #%d type %d %s", j, key->type,
				1760	key_type(key));
				1761	}
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	1762
Darren Tucker	d13281f	2017-03-29 12:39:39 +1100	[diff] [blame]	1763	if (privsep_chroot) {
Ben Lindstrom	a26ea63	2002-06-06 20:46:25 +0000	[diff] [blame]	1764	struct stat st;
				1765
Ben Lindstrom	a26ea63	2002-06-06 20:46:25 +0000	[diff] [blame]	1766	if ((stat(_PATH_PRIVSEP_CHROOT_DIR, &st) == -1) \|\|
				1767	(S_ISDIR(st.st_mode) == 0))
				1768	fatal("Missing privilege separation directory: %s",
				1769	_PATH_PRIVSEP_CHROOT_DIR);
Ben Lindstrom	5962735	2002-06-27 18:02:21 +0000	[diff] [blame]	1770
				1771	#ifdef HAVE_CYGWIN
				1772	if (check_ntsec(_PATH_PRIVSEP_CHROOT_DIR) &&
				1773	(st.st_uid != getuid () \|\|
				1774	(st.st_mode & (S_IWGRP\|S_IWOTH)) != 0))
				1775	#else
Ben Lindstrom	2dfacb3	2002-06-23 00:33:47 +0000	[diff] [blame]	1776	if (st.st_uid != 0 \|\| (st.st_mode & (S_IWGRP\|S_IWOTH)) != 0)
Ben Lindstrom	5962735	2002-06-27 18:02:21 +0000	[diff] [blame]	1777	#endif
Damien Miller	180fc5b	2003-02-24 11:50:18 +1100	[diff] [blame]	1778	fatal("%s must be owned by root and not group or "
				1779	"world-writable.", _PATH_PRIVSEP_CHROOT_DIR);
Ben Lindstrom	a26ea63	2002-06-06 20:46:25 +0000	[diff] [blame]	1780	}
				1781
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1782	if (test_flag > 1) {
Darren Tucker	fbcf827	2012-05-19 19:37:01 +1000	[diff] [blame]	1783	if (server_match_spec_complete(connection_info) == 1)
				1784	parse_server_match_config(&options, connection_info);
Darren Tucker	e7140f2	2008-06-10 23:01:51 +1000	[diff] [blame]	1785	dump_config(&options);
				1786	}
				1787
Ben Lindstrom	794325a	2001-08-06 21:09:07 +0000	[diff] [blame]	1788	/* Configuration looks good, so exit if in test mode. */
				1789	if (test_flag)
				1790	exit(0);
				1791
Damien Miller	87aea25	2002-05-10 12:20:24 +1000	[diff] [blame]	1792	/*
				1793	* Clear out any supplemental groups we may have inherited. This
				1794	* prevents inadvertent creation of files with bad modes (in the
Damien Miller	a8e06ce	2003-11-21 23:48:55 +1100	[diff] [blame]	1795	* portable version at least, it's certainly possible for PAM
				1796	* to create a file, and we can't control the code in every
Damien Miller	87aea25	2002-05-10 12:20:24 +1000	[diff] [blame]	1797	* module which might be used).
				1798	*/
				1799	if (setgroups(0, NULL) < 0)
				1800	debug("setgroups() failed: %.200s", strerror(errno));
				1801
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1802	if (rexec_flag) {
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	1803	rexec_argv = xcalloc(rexec_argc + 2, sizeof(char *));
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1804	for (i = 0; i < rexec_argc; i++) {
				1805	debug("rexec_argv[%d]='%s'", i, saved_argv[i]);
				1806	rexec_argv[i] = saved_argv[i];
				1807	}
				1808	rexec_argv[rexec_argc] = "-R";
				1809	rexec_argv[rexec_argc + 1] = NULL;
				1810	}
				1811
Damien Miller	6ca16c6	2008-06-16 07:50:58 +1000	[diff] [blame]	1812	/* Ensure that umask disallows at least group and world write */
				1813	new_umask = umask(0077) \| 0022;
				1814	(void) umask(new_umask);
				1815
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1816	/* Initialize the log (it is reinitialized below in case we forked). */
Darren Tucker	ea7c812	2005-01-20 11:03:08 +1100	[diff] [blame]	1817	if (debug_flag && (!inetd_flag \|\| rexeced_flag))
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1818	log_stderr = 1;
Kevin Steves	ec84dc1	2000-12-13 17:45:15 +0000	[diff] [blame]	1819	log_init(__progname, options.log_level, options.log_facility, log_stderr);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1820
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1821	/*
dtucker@openbsd.org	7fc4766	2016-11-30 00:28:31 +0000	[diff] [blame]	1822	* If not in debugging mode, not started from inetd and not already
				1823	* daemonized (eg re-exec via SIGHUP), disconnect from the controlling
				1824	* terminal, and fork. The original process exits.
Damien Miller	eba71ba	2000-04-29 23:57:08 +1000	[diff] [blame]	1825	*/
dtucker@openbsd.org	7fc4766	2016-11-30 00:28:31 +0000	[diff] [blame]	1826	already_daemon = daemonized();
				1827	if (!(debug_flag \|\| inetd_flag \|\| no_daemon_flag \|\| already_daemon)) {
dtucker@openbsd.org	b0899ee	2016-11-29 03:54:50 +0000	[diff] [blame]	1828
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1829	if (daemon(0, 0) < 0)
				1830	fatal("daemon() failed: %.200s", strerror(errno));
				1831
dtucker@openbsd.org	b0899ee	2016-11-29 03:54:50 +0000	[diff] [blame]	1832	disconnect_controlling_tty();
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1833	}
				1834	/* Reinitialize the log (because of the fork above). */
Kevin Steves	ec84dc1	2000-12-13 17:45:15 +0000	[diff] [blame]	1835	log_init(__progname, options.log_level, options.log_facility, log_stderr);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1836
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1837	/* Chdir to the root directory so that the current disk can be
				1838	unmounted if desired. */
Darren Tucker	dbee308	2013-05-16 20:32:29 +1000	[diff] [blame]	1839	if (chdir("/") == -1)
				1840	error("chdir(\"/\"): %s", strerror(errno));
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	1841
Ben Lindstrom	de71cda	2001-03-24 00:43:26 +0000	[diff] [blame]	1842	/* ignore SIGPIPE */
				1843	signal(SIGPIPE, SIG_IGN);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1844
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1845	/* Get a connection, either from inetd or a listening TCP socket */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1846	if (inetd_flag) {
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1847	server_accept_inetd(&sock_in, &sock_out);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1848	} else {
Darren Tucker	c8802aa	2009-12-08 13:39:48 +1100	[diff] [blame]	1849	platform_pre_listen();
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1850	server_listen();
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	1851
Ben Lindstrom	9809786	2001-06-25 05:10:20 +0000	[diff] [blame]	1852	signal(SIGHUP, sighup_handler);
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1853	signal(SIGCHLD, main_sigchld_handler);
Ben Lindstrom	9809786	2001-06-25 05:10:20 +0000	[diff] [blame]	1854	signal(SIGTERM, sigterm_handler);
				1855	signal(SIGQUIT, sigterm_handler);
				1856
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1857	/*
				1858	* Write out the pid file after the sigterm handler
				1859	* is setup and the listen sockets are bound
				1860	*/
dtucker@openbsd.org	f2398eb	2016-12-04 22:27:25 +0000	[diff] [blame]	1861	if (options.pid_file != NULL && !debug_flag) {
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1862	FILE *f = fopen(options.pid_file, "w");
				1863
Darren Tucker	e532704	2003-07-03 13:40:44 +1000	[diff] [blame]	1864	if (f == NULL) {
				1865	error("Couldn't create pid file \"%s\": %s",
				1866	options.pid_file, strerror(errno));
				1867	} else {
Ben Lindstrom	ce0f634	2002-06-11 16:42:49 +0000	[diff] [blame]	1868	fprintf(f, "%ld\n", (long) getpid());
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1869	fclose(f);
				1870	}
				1871	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1872
Damien Miller	a1f6840	2006-08-19 00:31:39 +1000	[diff] [blame]	1873	/* Accept a connection and return in a forked child */
				1874	server_accept_loop(&sock_in, &sock_out,
				1875	&newsock, config_s);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1876	}
				1877
				1878	/* This is the child processing a new connection. */
Damien Miller	57aae98	2004-03-08 23:11:25 +1100	[diff] [blame]	1879	setproctitle("%s", "[accepted]");
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1880
Darren Tucker	6832b83	2004-08-12 22:36:51 +1000	[diff] [blame]	1881	/*
				1882	* Create a new session and process group since the 4.4BSD
				1883	* setlogin() affects the entire process group. We don't
				1884	* want the child to be able to affect the parent.
				1885	*/
				1886	#if !defined(SSHD_ACQUIRES_CTTY)
				1887	/*
				1888	* If setsid is called, on some platforms sshd will later acquire a
				1889	* controlling terminal which will result in "could not set
				1890	* controlling tty" errors.
				1891	*/
				1892	if (!debug_flag && !inetd_flag && setsid() < 0)
				1893	error("setsid: %.100s", strerror(errno));
				1894	#endif
				1895
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1896	if (rexec_flag) {
				1897	int fd;
				1898
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1899	debug("rexec start in %d out %d newsock %d pipe %d sock %d",
				1900	sock_in, sock_out, newsock, startup_pipe, config_s[0]);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1901	dup2(newsock, STDIN_FILENO);
				1902	dup2(STDIN_FILENO, STDOUT_FILENO);
				1903	if (startup_pipe == -1)
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1904	close(REEXEC_STARTUP_PIPE_FD);
Damien Miller	61ee4d6	2013-10-15 11:56:47 +1100	[diff] [blame]	1905	else if (startup_pipe != REEXEC_STARTUP_PIPE_FD) {
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1906	dup2(startup_pipe, REEXEC_STARTUP_PIPE_FD);
Damien Miller	61ee4d6	2013-10-15 11:56:47 +1100	[diff] [blame]	1907	close(startup_pipe);
				1908	startup_pipe = REEXEC_STARTUP_PIPE_FD;
				1909	}
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1910
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1911	dup2(config_s[1], REEXEC_CONFIG_PASS_FD);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1912	close(config_s[1]);
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1913
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1914	execv(rexec_argv[0], rexec_argv);
				1915
				1916	/* Reexec has failed, fall back and continue */
				1917	error("rexec of %s failed: %s", rexec_argv[0], strerror(errno));
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1918	recv_rexec_state(REEXEC_CONFIG_PASS_FD, NULL);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1919	log_init(__progname, options.log_level,
				1920	options.log_facility, log_stderr);
				1921
				1922	/* Clean up fds */
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1923	close(REEXEC_CONFIG_PASS_FD);
				1924	newsock = sock_out = sock_in = dup(STDIN_FILENO);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1925	if ((fd = open(_PATH_DEVNULL, O_RDWR, 0)) != -1) {
				1926	dup2(fd, STDIN_FILENO);
				1927	dup2(fd, STDOUT_FILENO);
				1928	if (fd > STDERR_FILENO)
				1929	close(fd);
				1930	}
Damien Miller	035a5b4	2004-06-26 08:16:31 +1000	[diff] [blame]	1931	debug("rexec cleanup in %d out %d newsock %d pipe %d sock %d",
				1932	sock_in, sock_out, newsock, startup_pipe, config_s[0]);
Darren Tucker	645ab75	2004-06-25 13:33:20 +1000	[diff] [blame]	1933	}
				1934
Damien Miller	133d9d3	2010-01-30 17:30:04 +1100	[diff] [blame]	1935	/* Executed child processes don't need these. */
				1936	fcntl(sock_out, F_SETFD, FD_CLOEXEC);
				1937	fcntl(sock_in, F_SETFD, FD_CLOEXEC);
				1938
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	1939	/*
				1940	* Disable the key regeneration alarm. We will not regenerate the
				1941	* key since we are no longer in a position to give it to anyone. We
				1942	* will not restart on SIGHUP since it no longer makes sense.
				1943	*/
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1944	alarm(0);
				1945	signal(SIGALRM, SIG_DFL);
				1946	signal(SIGHUP, SIG_DFL);
				1947	signal(SIGTERM, SIG_DFL);
				1948	signal(SIGQUIT, SIG_DFL);
				1949	signal(SIGCHLD, SIG_DFL);
Damien Miller	4e0f5e1	2000-08-29 11:05:50 +1100	[diff] [blame]	1950	signal(SIGINT, SIG_DFL);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1951
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	1952	/*
				1953	* Register our connection. This turns encryption off because we do
				1954	* not have a key.
				1955	*/
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1956	packet_set_connection(sock_in, sock_out);
Damien Miller	9786e6e	2005-07-26 21:54:56 +1000	[diff] [blame]	1957	packet_set_server();
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1958	ssh = active_state; /* XXX */
				1959	check_ip_options(ssh);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1960
Damien Miller	4f1d6b2	2005-05-26 11:59:32 +1000	[diff] [blame]	1961	/* Set SO_KEEPALIVE if requested. */
				1962	if (options.tcp_keep_alive && packet_connection_is_on_socket() &&
				1963	setsockopt(sock_in, SOL_SOCKET, SO_KEEPALIVE, &on, sizeof(on)) < 0)
				1964	error("setsockopt SO_KEEPALIVE: %.100s", strerror(errno));
				1965
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1966	if ((remote_port = ssh_remote_port(ssh)) < 0) {
				1967	debug("ssh_remote_port failed");
Damien Miller	677257f	2005-06-17 12:55:03 +1000	[diff] [blame]	1968	cleanup_exit(255);
				1969	}
Damien Miller	4d3fd54	2005-11-05 15:13:24 +1100	[diff] [blame]	1970
				1971	/*
Damien Miller	eb13e55	2006-06-13 13:03:53 +1000	[diff] [blame]	1972	* The rest of the code depends on the fact that
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1973	* ssh_remote_ipaddr() caches the remote ip, even if
Damien Miller	eb13e55	2006-06-13 13:03:53 +1000	[diff] [blame]	1974	* the socket goes away.
				1975	*/
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1976	remote_ip = ssh_remote_ipaddr(ssh);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1977
Darren Tucker	2e0cf0d	2005-02-08 21:52:47 +1100	[diff] [blame]	1978	#ifdef SSH_AUDIT_EVENTS
Darren Tucker	269a1ea	2005-02-03 00:20:53 +1100	[diff] [blame]	1979	audit_connection_from(remote_ip, remote_port);
				1980	#endif
Damien Miller	6a4a4b9	2001-11-12 11:07:11 +1100	[diff] [blame]	1981
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1982	/* Log the connection. */
dtucker@openbsd.org	15fdfc9	2015-04-15 23:23:25 +0000	[diff] [blame]	1983	laddr = get_local_ipaddr(sock_in);
Damien Miller	5ecb416	2013-10-24 21:02:02 +1100	[diff] [blame]	1984	verbose("Connection from %s port %d on %s port %d",
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	1985	remote_ip, remote_port, laddr, ssh_local_port(ssh));
dtucker@openbsd.org	15fdfc9	2015-04-15 23:23:25 +0000	[diff] [blame]	1986	free(laddr);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1987
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	1988	/*
Damien Miller	788f212	2005-11-05 15:14:59 +1100	[diff] [blame]	1989	* We don't want to listen forever unless the other side
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	1990	* successfully authenticates itself. So we set up an alarm which is
				1991	* cleared after successful authentication. A limit of zero
Damien Miller	788f212	2005-11-05 15:14:59 +1100	[diff] [blame]	1992	* indicates no limit. Note that we don't set the alarm in debugging
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	1993	* mode; it is just annoying to have the server exit just when you
				1994	* are about to discover the bug.
				1995	*/
Ben Lindstrom	5ade9ab	2003-08-25 01:16:21 +0000	[diff] [blame]	1996	signal(SIGALRM, grace_alarm_handler);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	1997	if (!debug_flag)
				1998	alarm(options.login_grace_time);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1999
djm@openbsd.org	9576726	2016-03-07 19:02:43 +0000	[diff] [blame]	2000	sshd_exchange_identification(ssh, sock_in, sock_out);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	2001	packet_set_nonblocking();
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	2002
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2003	/* allocate authentication context */
Damien Miller	07d86be	2006-03-26 14:19:21 +1100	[diff] [blame]	2004	authctxt = xcalloc(1, sizeof(*authctxt));
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2005
Darren Tucker	f3bb434	2005-03-31 21:39:25 +1000	[diff] [blame]	2006	authctxt->loginmsg = &loginmsg;
				2007
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2008	/* XXX global for cleanup, access from other modules */
				2009	the_authctxt = authctxt;
				2010
Darren Tucker	5c14c73	2005-01-24 21:55:49 +1100	[diff] [blame]	2011	/* prepare buffer to collect messages to display to user after login */
				2012	buffer_init(&loginmsg);
Darren Tucker	cd70e1b	2010-03-07 23:05:17 +1100	[diff] [blame]	2013	auth_debug_reset();
Darren Tucker	5c14c73	2005-01-24 21:55:49 +1100	[diff] [blame]	2014
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2015	if (use_privsep) {
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2016	if (privsep_preauth(authctxt) == 1)
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	2017	goto authenticated;
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	2018	} else if (have_agent) {
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	2019	if ((r = ssh_get_authentication_socket(&auth_sock)) != 0) {
				2020	error("Unable to get agent socket: %s", ssh_err(r));
djm@openbsd.org	83f8ffa	2015-01-17 18:53:34 +0000	[diff] [blame]	2021	have_agent = 0;
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	2022	}
				2023	}
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2024
Damien Miller	396691a	2000-01-20 22:44:08 +1100	[diff] [blame]	2025	/* perform the key exchange */
Damien Miller	396691a	2000-01-20 22:44:08 +1100	[diff] [blame]	2026	/* authenticate user and start session */
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	2027	do_ssh2_kex();
				2028	do_authentication2(authctxt);
				2029
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	2030	/*
				2031	* If we use privilege separation, the unprivileged child transfers
				2032	* the current keystate and exits
				2033	*/
				2034	if (use_privsep) {
Ben Lindstrom	7339b2a	2002-05-15 16:25:01 +0000	[diff] [blame]	2035	mm_send_keystate(pmonitor);
markus@openbsd.org	1e0cdf8	2017-05-31 08:09:45 +0000	[diff] [blame]	2036	packet_clear_keys();
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2037	exit(0);
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	2038	}
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2039
				2040	authenticated:
Damien Miller	7bff1a9	2005-12-24 14:59:12 +1100	[diff] [blame]	2041	/*
				2042	* Cancel the alarm we set to limit the time taken for
				2043	* authentication.
				2044	*/
				2045	alarm(0);
				2046	signal(SIGALRM, SIG_DFL);
Damien Miller	3f8123c	2006-08-19 00:32:46 +1000	[diff] [blame]	2047	authctxt->authenticated = 1;
Damien Miller	7bff1a9	2005-12-24 14:59:12 +1100	[diff] [blame]	2048	if (startup_pipe != -1) {
				2049	close(startup_pipe);
				2050	startup_pipe = -1;
				2051	}
				2052
Darren Tucker	2e0cf0d	2005-02-08 21:52:47 +1100	[diff] [blame]	2053	#ifdef SSH_AUDIT_EVENTS
				2054	audit_event(SSH_AUTH_SUCCESS);
Darren Tucker	269a1ea	2005-02-03 00:20:53 +1100	[diff] [blame]	2055	#endif
				2056
Darren Tucker	52358d6	2008-03-11 22:58:25 +1100	[diff] [blame]	2057	#ifdef GSSAPI
				2058	if (options.gss_authentication) {
				2059	temporarily_use_uid(authctxt->pw);
				2060	ssh_gssapi_storecreds();
				2061	restore_uid();
				2062	}
				2063	#endif
				2064	#ifdef USE_PAM
				2065	if (options.use_pam) {
				2066	do_pam_setcred(1);
				2067	do_pam_session();
				2068	}
				2069	#endif
				2070
Ben Lindstrom	6328ab3	2002-03-22 02:54:23 +0000	[diff] [blame]	2071	/*
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2072	* In privilege separation, we fork another child and prepare
				2073	* file descriptor passing.
				2074	*/
				2075	if (use_privsep) {
Ben Lindstrom	943481c	2002-03-22 03:43:46 +0000	[diff] [blame]	2076	privsep_postauth(authctxt);
				2077	/* the monitor process [priv] will not return */
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2078	}
Ben Lindstrom	73ab9ba	2002-03-22 01:27:35 +0000	[diff] [blame]	2079
Darren Tucker	3fc464e	2008-06-13 06:42:45 +1000	[diff] [blame]	2080	packet_set_timeout(options.client_alive_interval,
				2081	options.client_alive_count_max);
				2082
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	2083	/* Try to send all our hostkeys to the client */
markus@openbsd.org	6cb6dcf	2016-08-13 17:47:40 +0000	[diff] [blame]	2084	notify_hostkeys(active_state);
djm@openbsd.org	8d4f872	2015-01-26 03:04:45 +0000	[diff] [blame]	2085
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2086	/* Start session. */
Ben Lindstrom	73ab9ba	2002-03-22 01:27:35 +0000	[diff] [blame]	2087	do_authenticated(authctxt);
				2088
Damien Miller	3a5b023	2002-03-13 13:19:42 +1100	[diff] [blame]	2089	/* The connection has been terminated. */
markus@openbsd.org	091c302	2015-01-19 19:52:16 +0000	[diff] [blame]	2090	packet_get_bytes(&ibytes, &obytes);
Damien Miller	821de0a	2011-01-11 17:20:29 +1100	[diff] [blame]	2091	verbose("Transferred: sent %llu, received %llu bytes",
				2092	(unsigned long long)obytes, (unsigned long long)ibytes);
Damien Miller	b61f3fc	2008-07-11 17:36:48 +1000	[diff] [blame]	2093
				2094	verbose("Closing connection to %.500s port %d", remote_ip, remote_port);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	2095
Damien Miller	beb4ba5	1999-12-28 15:09:35 +1100	[diff] [blame]	2096	#ifdef USE_PAM
Damien Miller	4e448a3	2003-05-14 15:11:48 +1000	[diff] [blame]	2097	if (options.use_pam)
				2098	finish_pam();
Damien Miller	beb4ba5	1999-12-28 15:09:35 +1100	[diff] [blame]	2099	#endif /* USE_PAM */
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	2100
Darren Tucker	2b59a6d	2005-03-06 22:38:51 +1100	[diff] [blame]	2101	#ifdef SSH_AUDIT_EVENTS
				2102	PRIVSEP(audit_event(SSH_CONNECTION_CLOSE));
				2103	#endif
				2104
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	2105	packet_close();
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2106
				2107	if (use_privsep)
				2108	mm_terminate();
				2109
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	2110	exit(0);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	2111	}
				2112
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2113	int
markus@openbsd.org	54d90ac	2017-05-30 08:52:19 +0000	[diff] [blame]	2114	sshd_hostkey_sign(struct sshkey privkey, struct sshkey pubkey,
				2115	u_char *signature, size_t slen, const u_char *data, size_t dlen,
				2116	const char *alg, u_int flag)
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2117	{
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	2118	int r;
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2119	u_int xxx_slen, xxx_dlen = dlen;
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	2120
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2121	if (privkey) {
markus@openbsd.org	76c9fbb	2015-12-04 16:41:28 +0000	[diff] [blame]	2122	if (PRIVSEP(key_sign(privkey, signature, &xxx_slen, data, xxx_dlen,
				2123	alg) < 0))
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2124	fatal("%s: key_sign failed", __func__);
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2125	if (slen)
				2126	*slen = xxx_slen;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2127	} else if (use_privsep) {
markus@openbsd.org	76c9fbb	2015-12-04 16:41:28 +0000	[diff] [blame]	2128	if (mm_key_sign(pubkey, signature, &xxx_slen, data, xxx_dlen,
				2129	alg) < 0)
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2130	fatal("%s: pubkey_sign failed", __func__);
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2131	if (slen)
				2132	*slen = xxx_slen;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2133	} else {
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2134	if ((r = ssh_agent_sign(auth_sock, pubkey, signature, slen,
markus@openbsd.org	76c9fbb	2015-12-04 16:41:28 +0000	[diff] [blame]	2135	data, dlen, alg, datafellows)) != 0)
djm@openbsd.org	141efe4	2015-01-14 20:05:27 +0000	[diff] [blame]	2136	fatal("%s: ssh_agent_sign failed: %s",
				2137	__func__, ssh_err(r));
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2138	}
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2139	return 0;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2140	}
				2141
djm@openbsd.org	bdfd29f	2015-07-03 03:47:00 +0000	[diff] [blame]	2142	/* SSH2 key exchange */
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	2143	static void
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	2144	do_ssh2_kex(void)
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	2145	{
Damien Miller	9235a03	2014-04-20 13:17:20 +1000	[diff] [blame]	2146	char *myproposal[PROPOSAL_MAX] = { KEX_SERVER };
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2147	struct kex *kex;
markus@openbsd.org	57e783c	2015-01-20 20:16:21 +0000	[diff] [blame]	2148	int r;
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	2149
djm@openbsd.org	f9eca24	2015-07-30 00:01:34 +0000	[diff] [blame]	2150	myproposal[PROPOSAL_KEX_ALGS] = compat_kex_proposal(
				2151	options.kex_algorithms);
				2152	myproposal[PROPOSAL_ENC_ALGS_CTOS] = compat_cipher_proposal(
				2153	options.ciphers);
				2154	myproposal[PROPOSAL_ENC_ALGS_STOC] = compat_cipher_proposal(
				2155	options.ciphers);
				2156	myproposal[PROPOSAL_MAC_ALGS_CTOS] =
				2157	myproposal[PROPOSAL_MAC_ALGS_STOC] = options.macs;
Damien Miller	a0ff466	2001-03-30 10:49:35 +1000	[diff] [blame]	2158
Damien Miller	9786e6e	2005-07-26 21:54:56 +1000	[diff] [blame]	2159	if (options.compression == COMP_NONE) {
Ben Lindstrom	23e0f66	2002-06-21 01:09:47 +0000	[diff] [blame]	2160	myproposal[PROPOSAL_COMP_ALGS_CTOS] =
dtucker@openbsd.org	8c02e36	2016-05-24 04:43:45 +0000	[diff] [blame]	2161	myproposal[PROPOSAL_COMP_ALGS_STOC] = "none";
Ben Lindstrom	23e0f66	2002-06-21 01:09:47 +0000	[diff] [blame]	2162	}
Damien Miller	9395b28	2014-04-20 13:25:30 +1000	[diff] [blame]	2163
Darren Tucker	5f96f3b	2013-05-16 20:29:28 +1000	[diff] [blame]	2164	if (options.rekey_limit \|\| options.rekey_interval)
dtucker@openbsd.org	921ff00	2016-01-29 02:54:45 +0000	[diff] [blame]	2165	packet_set_rekey_limits(options.rekey_limit,
dtucker@openbsd.org	c998bf0	2017-02-03 02:56:00 +0000	[diff] [blame]	2166	options.rekey_interval);
Darren Tucker	5f96f3b	2013-05-16 20:29:28 +1000	[diff] [blame]	2167
Damien Miller	324541e	2013-12-31 12:25:40 +1100	[diff] [blame]	2168	myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = compat_pkalg_proposal(
				2169	list_hostkey_types());
Damien Miller	0bc1bd8	2000-11-13 22:57:25 +1100	[diff] [blame]	2170
Ben Lindstrom	8ac9106	2001-04-04 17:57:54 +0000	[diff] [blame]	2171	/* start key exchange */
markus@openbsd.org	57e783c	2015-01-20 20:16:21 +0000	[diff] [blame]	2172	if ((r = kex_setup(active_state, myproposal)) != 0)
				2173	fatal("kex_setup: %s", ssh_err(r));
markus@openbsd.org	57d10cb	2015-01-19 20:16:15 +0000	[diff] [blame]	2174	kex = active_state->kex;
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	2175	#ifdef WITH_OPENSSL
Damien Miller	8e7fb33	2003-02-24 12:03:03 +1100	[diff] [blame]	2176	kex->kex[KEX_DH_GRP1_SHA1] = kexdh_server;
Damien Miller	f675fc4	2004-06-15 10:30:09 +1000	[diff] [blame]	2177	kex->kex[KEX_DH_GRP14_SHA1] = kexdh_server;
djm@openbsd.org	0e8eeec	2016-05-02 10:26:04 +0000	[diff] [blame]	2178	kex->kex[KEX_DH_GRP14_SHA256] = kexdh_server;
				2179	kex->kex[KEX_DH_GRP16_SHA512] = kexdh_server;
				2180	kex->kex[KEX_DH_GRP18_SHA512] = kexdh_server;
Damien Miller	8e7fb33	2003-02-24 12:03:03 +1100	[diff] [blame]	2181	kex->kex[KEX_DH_GEX_SHA1] = kexgex_server;
Damien Miller	a63128d	2006-03-15 12:08:28 +1100	[diff] [blame]	2182	kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;
Darren Tucker	f2004cd	2015-02-23 05:04:21 +1100	[diff] [blame]	2183	# ifdef OPENSSL_HAS_ECC
Damien Miller	eb8b60e	2010-08-31 22:41:14 +1000	[diff] [blame]	2184	kex->kex[KEX_ECDH_SHA2] = kexecdh_server;
Darren Tucker	f2004cd	2015-02-23 05:04:21 +1100	[diff] [blame]	2185	# endif
Damien Miller	1f0311c	2014-05-15 14:24:09 +1000	[diff] [blame]	2186	#endif
Damien Miller	1e12426	2013-11-04 08:26:52 +1100	[diff] [blame]	2187	kex->kex[KEX_C25519_SHA256] = kexc25519_server;
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	2188	kex->server = 1;
				2189	kex->client_version_string=client_version_string;
				2190	kex->server_version_string=server_version_string;
Damien Miller	0a80ca1	2010-02-27 07:55:05 +1100	[diff] [blame]	2191	kex->load_host_public_key=&get_hostkey_public_by_type;
				2192	kex->load_host_private_key=&get_hostkey_private_by_type;
Ben Lindstrom	7a2073c	2002-03-22 02:30:41 +0000	[diff] [blame]	2193	kex->host_key_index=&get_hostkey_index;
Damien Miller	85b45e0	2013-07-20 13:21:52 +1000	[diff] [blame]	2194	kex->sign = sshd_hostkey_sign;
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	2195
markus@openbsd.org	92e9fe6	2017-05-31 07:00:13 +0000	[diff] [blame]	2196	ssh_dispatch_run_fatal(active_state, DISPATCH_BLOCK, &kex->done);
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	2197
Ben Lindstrom	2d90e00	2001-04-04 02:00:54 +0000	[diff] [blame]	2198	session_id2 = kex->session_id;
				2199	session_id2_len = kex->session_id_len;
				2200
Damien Miller	874d77b	2000-10-14 16:23:11 +1100	[diff] [blame]	2201	#ifdef DEBUG_KEXDH
				2202	/* send 1st encrypted/maced/compressed message */
				2203	packet_start(SSH2_MSG_IGNORE);
				2204	packet_put_cstring("markus");
				2205	packet_send();
				2206	packet_write_wait();
				2207	#endif
Ben Lindstrom	20d7c7b	2001-04-04 01:56:17 +0000	[diff] [blame]	2208	debug("KEX done");
Damien Miller	efb4afe	2000-04-12 18:45:05 +1000	[diff] [blame]	2209	}
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2210
				2211	/* server specific fatal cleanup */
				2212	void
				2213	cleanup_exit(int i)
				2214	{
Damien Miller	9ee2c60	2011-09-22 21:38:30 +1000	[diff] [blame]	2215	if (the_authctxt) {
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2216	do_cleanup(the_authctxt);
Damien Miller	75c6272	2014-04-20 13:24:31 +1000	[diff] [blame]	2217	if (use_privsep && privsep_is_preauth &&
				2218	pmonitor != NULL && pmonitor->m_pid > 1) {
Damien Miller	9ee2c60	2011-09-22 21:38:30 +1000	[diff] [blame]	2219	debug("Killing privsep child %d", pmonitor->m_pid);
				2220	if (kill(pmonitor->m_pid, SIGKILL) != 0 &&
Darren Tucker	2e13560	2011-10-02 19:10:13 +1100	[diff] [blame]	2221	errno != ESRCH)
Damien Miller	9ee2c60	2011-09-22 21:38:30 +1000	[diff] [blame]	2222	error("%s: kill(%d): %s", __func__,
				2223	pmonitor->m_pid, strerror(errno));
				2224	}
				2225	}
Darren Tucker	2e0cf0d	2005-02-08 21:52:47 +1100	[diff] [blame]	2226	#ifdef SSH_AUDIT_EVENTS
Darren Tucker	269a1ea	2005-02-03 00:20:53 +1100	[diff] [blame]	2227	/* done after do_cleanup so it can cancel the PAM auth 'thread' */
				2228	if (!use_privsep \|\| mm_is_monitor())
Darren Tucker	2e0cf0d	2005-02-08 21:52:47 +1100	[diff] [blame]	2229	audit_event(SSH_CONNECTION_ABANDON);
Darren Tucker	269a1ea	2005-02-03 00:20:53 +1100	[diff] [blame]	2230	#endif
Darren Tucker	3e33cec	2003-10-02 16:12:36 +1000	[diff] [blame]	2231	_exit(i);
				2232	}