1f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project/* 2f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * Dropbear - a SSH2 server 3f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * 4f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * Copyright (c) 2002,2003 Matt Johnston 5f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * All rights reserved. 6f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * 7f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * Permission is hereby granted, free of charge, to any person obtaining a copy 8f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * of this software and associated documentation files (the "Software"), to deal 9f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * in the Software without restriction, including without limitation the rights 10f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 11f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * copies of the Software, and to permit persons to whom the Software is 12f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * furnished to do so, subject to the following conditions: 13f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * 14f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * The above copyright notice and this permission notice shall be included in 15f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * all copies or substantial portions of the Software. 16f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * 17f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 18f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 19f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 20f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 21f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 22f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 23f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * SOFTWARE. */ 24f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 25f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#ifndef _AUTH_H_ 26f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define _AUTH_H_ 27f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 28f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#include "includes.h" 29f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 30f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid svr_authinitialise(); 31f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_authinitialise(); 32f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 33f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project/* Server functions */ 34f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_request(); 35f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid send_msg_userauth_failure(int partial, int incrfail); 36f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid send_msg_userauth_success(); 37f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid svr_auth_password(); 38f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid svr_auth_pubkey(); 39f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid svr_auth_pam(); 40f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 41f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project/* Client functions */ 42f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_failure(); 43f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_success(); 44f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_specific_60(); 45f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_pk_ok(); 46f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_info_request(); 47f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_get_user(); 48f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_auth_getmethods(); 49f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_auth_try(); 50f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid recv_msg_userauth_banner(); 51f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_pubkeyfail(); 52f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_auth_password(); 53f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectint cli_auth_pubkey(); 54f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectvoid cli_auth_interactive(); 55f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectchar* getpass_or_cancel(char* prompt); 56f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 57f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 58f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define MAX_USERNAME_LEN 25 /* arbitrary for the moment */ 59f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 60f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_TYPE_NONE 1 61f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_TYPE_PUBKEY 1 << 1 62f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_TYPE_PASSWORD 1 << 2 63f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_TYPE_INTERACT 1 << 3 64f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 65f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_NONE "none" 66f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_NONE_LEN 4 67f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_PUBKEY "publickey" 68f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_PUBKEY_LEN 9 69f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_PASSWORD "password" 70f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_PASSWORD_LEN 8 71f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_INTERACT "keyboard-interactive" 72f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#define AUTH_METHOD_INTERACT_LEN 20 73f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 74f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 75f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 76f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project/* This structure is shared between server and client - it contains 77f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * relatively little extraneous bits when used for the client rather than the 78f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * server */ 79f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectstruct AuthState { 80f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 81f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project char *username; /* This is the username the client presents to check. It 82f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project is updated each run through, used for auth checking */ 83f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project unsigned char authtypes; /* Flags indicating which auth types are still 84f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project valid */ 85f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project unsigned int failcount; /* Number of (failed) authentication attempts.*/ 86f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project unsigned authdone : 1; /* 0 if we haven't authed, 1 if we have. Applies for 87f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project client and server (though has differing [obvious] 88f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project meanings). */ 89f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project unsigned perm_warn : 1; /* Server only, set if bad permissions on 90f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project ~/.ssh/authorized_keys have already been 91f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project logged. */ 92f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 93f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project /* These are only used for the server */ 94f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project char *printableuser; /* stripped of control chars, used for logs etc */ 95f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project struct passwd * pw; 96f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 97f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project}; 98f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 99f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectstruct SignKeyList; 100f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project/* A singly linked list of signing keys */ 101f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Projectstruct SignKeyList { 102f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 103f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project sign_key *key; 104f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project int type; /* The type of key */ 105f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project struct SignKeyList *next; 106f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project /* filename? or the buffer? for encrypted keys, so we can later get 107f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project * the private key portion */ 108f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 109f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project}; 110f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project 111f7fc46c63fdc8f39234fea409b8dbe116d73ebf8The Android Open Source Project#endif /* _AUTH_H_ */ 112