Home | History | Annotate | Line # | Download | only in dist 
      1  1.1  christos /*	$NetBSD: auth-skey.c,v 1.5 2017/04/18 18:41:46 christos Exp $	*/
      2  1.1  christos /* $OpenBSD: auth-skey.c,v 1.27 2007/01/21 01:41:54 stevesk Exp $ */
      3  1.1  christos /*
      4  1.1  christos  * Copyright (c) 2001 Markus Friedl.  All rights reserved.
      5  1.1  christos  *
      6  1.1  christos  * Redistribution and use in source and binary forms, with or without
      7  1.1  christos  * modification, are permitted provided that the following conditions
      8  1.1  christos  * are met:
      9  1.1  christos  * 1. Redistributions of source code must retain the above copyright
     10  1.1  christos  *    notice, this list of conditions and the following disclaimer.
     11  1.1  christos  * 2. Redistributions in binary form must reproduce the above copyright
     12  1.1  christos  *    notice, this list of conditions and the following disclaimer in the
     13  1.1  christos  *    documentation and/or other materials provided with the distribution.
     14  1.1  christos  *
     15  1.1  christos  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
     16  1.1  christos  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
     17  1.1  christos  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
     18  1.1  christos  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
     19  1.1  christos  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
     20  1.1  christos  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
     21  1.1  christos  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
     22  1.1  christos  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
     23  1.1  christos  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
     24  1.1  christos  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
     25  1.1  christos  */
     26  1.1  christos #include "includes.h"
     27  1.1  christos __RCSID("$NetBSD: auth-skey.c,v 1.5 2017/04/18 18:41:46 christos Exp $");
     28  1.1  christos 
     29  1.1  christos #ifdef SKEY
     30  1.1  christos 
     31  1.1  christos #include <sys/types.h>
     32  1.1  christos 
     33  1.1  christos #include <pwd.h>
     34  1.1  christos #include <stdio.h>
     35  1.1  christos 
     36  1.1  christos #include <skey.h>
     37  1.1  christos 
     38  1.1  christos #include "xmalloc.h"
     39  1.1  christos #include "key.h"
     40  1.1  christos #include "hostfile.h"
     41  1.1  christos #include "auth.h"
     42  1.1  christos 
     43  1.1  christos #ifdef GSSAPI
     44  1.1  christos #include "buffer.h"
     45  1.1  christos #include "ssh-gss.h"
     46  1.1  christos #endif
     47  1.1  christos 
     48  1.1  christos #include "monitor_wrap.h"
     49  1.1  christos 
     50  1.1  christos static void *
     51  1.1  christos skey_init_ctx(Authctxt *authctxt)
     52  1.1  christos {
     53  1.1  christos 	return authctxt;
     54  1.1  christos }
     55  1.1  christos 
     56  1.1  christos int
     57  1.1  christos skey_query(void *ctx, char **name, char **infotxt,
     58  1.1  christos     u_int* numprompts, char ***prompts, u_int **echo_on)
     59  1.1  christos {
     60  1.1  christos 	Authctxt *authctxt = ctx;
     61  1.1  christos 	char challenge[1024];
     62  1.1  christos 	struct skey skey;
     63  1.1  christos 
     64  1.1  christos 	if (skeychallenge(&skey, authctxt->user, challenge, sizeof(challenge)) == -1)
     65  1.1  christos 		return -1;
     66  1.1  christos 
     67  1.1  christos 	*name = xstrdup("");
     68  1.1  christos 	*infotxt = xstrdup("");
     69  1.1  christos 	*numprompts = 1;
     70  1.1  christos 	*prompts = xcalloc(*numprompts, sizeof(char *));
     71  1.1  christos 	*echo_on = xcalloc(*numprompts, sizeof(u_int));
     72  1.1  christos 
     73  1.1  christos 	xasprintf(*prompts, "%s%s", challenge, SKEY_PROMPT);
     74  1.1  christos 
     75  1.1  christos 	return 0;
     76  1.1  christos }
     77  1.1  christos 
     78  1.1  christos int
     79  1.1  christos skey_respond(void *ctx, u_int numresponses, char **responses)
     80  1.1  christos {
     81  1.1  christos 	Authctxt *authctxt = ctx;
     82  1.1  christos 
     83  1.1  christos 	if (authctxt->valid &&
     84  1.1  christos 	    numresponses == 1 &&
     85  1.1  christos 	    skey_haskey(authctxt->pw->pw_name) == 0 &&
     86  1.1  christos 	    skey_passcheck(authctxt->pw->pw_name, responses[0]) != -1)
     87  1.1  christos 	    return 0;
     88  1.1  christos 	return -1;
     89  1.1  christos }
     90  1.1  christos 
     91  1.1  christos static void
     92  1.1  christos skey_free_ctx(void *ctx)
     93  1.1  christos {
     94  1.1  christos 	/* we don't have a special context */
     95  1.1  christos }
     96  1.1  christos 
     97  1.1  christos KbdintDevice skey_device = {
     98  1.1  christos 	"skey",
     99  1.1  christos 	skey_init_ctx,
    100  1.1  christos 	skey_query,
    101  1.1  christos 	skey_respond,
    102  1.1  christos 	skey_free_ctx
    103  1.1  christos };
    104  1.1  christos 
    105  1.1  christos KbdintDevice mm_skey_device = {
    106  1.1  christos 	"skey",
    107  1.1  christos 	skey_init_ctx,
    108  1.1  christos 	mm_skey_query,
    109  1.1  christos 	mm_skey_respond,
    110  1.1  christos 	skey_free_ctx
    111  1.1  christos };
    112  1.1  christos #endif /* SKEY */
    113