Mercurial > dropbear
comparison auth.h @ 391:00fcf5045160
propagate from branch 'au.asn.ucc.matt.ltc.dropbear' (head c1db4398d56c56c6d06ae1e20c1e0d04dbb598ed)
to branch 'au.asn.ucc.matt.dropbear' (head d26d5eb2837f46b56a33fb0e7573aa0201abd4d5)
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Thu, 11 Jan 2007 04:29:08 +0000 |
parents | 8f3ec7c104d9 |
children | c1e9c81d1d27 4317be8b7cf9 |
comparison
equal
deleted
inserted
replaced
390:d8e44bef7917 | 391:00fcf5045160 |
---|---|
1 /* | |
2 * Dropbear - a SSH2 server | |
3 * | |
4 * Copyright (c) 2002,2003 Matt Johnston | |
5 * All rights reserved. | |
6 * | |
7 * Permission is hereby granted, free of charge, to any person obtaining a copy | |
8 * of this software and associated documentation files (the "Software"), to deal | |
9 * in the Software without restriction, including without limitation the rights | |
10 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | |
11 * copies of the Software, and to permit persons to whom the Software is | |
12 * furnished to do so, subject to the following conditions: | |
13 * | |
14 * The above copyright notice and this permission notice shall be included in | |
15 * all copies or substantial portions of the Software. | |
16 * | |
17 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR | |
18 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, | |
19 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE | |
20 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER | |
21 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, | |
22 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | |
23 * SOFTWARE. */ | |
24 | |
25 #ifndef _AUTH_H_ | |
26 #define _AUTH_H_ | |
27 | |
28 #include "includes.h" | |
29 | |
30 void svr_authinitialise(); | |
31 void cli_authinitialise(); | |
32 | |
33 /* Server functions */ | |
34 void recv_msg_userauth_request(); | |
35 void send_msg_userauth_failure(int partial, int incrfail); | |
36 void send_msg_userauth_success(); | |
37 void svr_auth_password(); | |
38 void svr_auth_pubkey(); | |
39 void svr_auth_pam(); | |
40 | |
41 /* Client functions */ | |
42 void recv_msg_userauth_failure(); | |
43 void recv_msg_userauth_success(); | |
44 void recv_msg_userauth_specific_60(); | |
45 void recv_msg_userauth_pk_ok(); | |
46 void recv_msg_userauth_info_request(); | |
47 void cli_get_user(); | |
48 void cli_auth_getmethods(); | |
49 void cli_auth_try(); | |
50 void recv_msg_userauth_banner(); | |
51 void cli_pubkeyfail(); | |
52 void cli_auth_password(); | |
53 int cli_auth_pubkey(); | |
54 void cli_auth_interactive(); | |
55 char* getpass_or_cancel(char* prompt); | |
56 | |
57 | |
58 #define MAX_USERNAME_LEN 25 /* arbitrary for the moment */ | |
59 | |
60 #define AUTH_TYPE_NONE 1 | |
61 #define AUTH_TYPE_PUBKEY 1 << 1 | |
62 #define AUTH_TYPE_PASSWORD 1 << 2 | |
63 #define AUTH_TYPE_INTERACT 1 << 3 | |
64 | |
65 #define AUTH_METHOD_NONE "none" | |
66 #define AUTH_METHOD_NONE_LEN 4 | |
67 #define AUTH_METHOD_PUBKEY "publickey" | |
68 #define AUTH_METHOD_PUBKEY_LEN 9 | |
69 #define AUTH_METHOD_PASSWORD "password" | |
70 #define AUTH_METHOD_PASSWORD_LEN 8 | |
71 #define AUTH_METHOD_INTERACT "keyboard-interactive" | |
72 #define AUTH_METHOD_INTERACT_LEN 20 | |
73 | |
74 | |
75 | |
76 /* This structure is shared between server and client - it contains | |
77 * relatively little extraneous bits when used for the client rather than the | |
78 * server */ | |
79 struct AuthState { | |
80 | |
81 char *username; /* This is the username the client presents to check. It | |
82 is updated each run through, used for auth checking */ | |
83 unsigned char authtypes; /* Flags indicating which auth types are still | |
84 valid */ | |
85 unsigned int failcount; /* Number of (failed) authentication attempts.*/ | |
86 unsigned authdone : 1; /* 0 if we haven't authed, 1 if we have. Applies for | |
87 client and server (though has differing [obvious] | |
88 meanings). */ | |
89 unsigned perm_warn : 1; /* Server only, set if bad permissions on | |
90 ~/.ssh/authorized_keys have already been | |
91 logged. */ | |
92 | |
93 /* These are only used for the server */ | |
94 char *printableuser; /* stripped of control chars, used for logs etc */ | |
95 struct passwd * pw; | |
96 | |
97 }; | |
98 | |
99 struct SignKeyList; | |
100 /* A singly linked list of signing keys */ | |
101 struct SignKeyList { | |
102 | |
103 sign_key *key; | |
104 int type; /* The type of key */ | |
105 struct SignKeyList *next; | |
106 /* filename? or the buffer? for encrypted keys, so we can later get | |
107 * the private key portion */ | |
108 | |
109 }; | |
110 | |
111 #endif /* _AUTH_H_ */ |