- djm@cvs.openbsd.org 2008/06/12 05:15:41
[openssh-git.git] / auth-skey.c
blobcb43dba485211e9b6eca84cf02e7ba127f8f802a
1 /* $OpenBSD: auth-skey.c,v 1.27 2007/01/21 01:41:54 stevesk Exp $ */
2 /*
3 * Copyright (c) 2001 Markus Friedl. All rights reserved.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
15 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
16 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
17 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
18 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
19 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
20 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
21 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
22 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
23 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 #include "includes.h"
28 #ifdef SKEY
30 #include <sys/types.h>
32 #include <pwd.h>
33 #include <stdio.h>
35 #include <skey.h>
37 #include "xmalloc.h"
38 #include "key.h"
39 #include "hostfile.h"
40 #include "auth.h"
41 #include "ssh-gss.h"
42 #include "monitor_wrap.h"
44 static void *
45 skey_init_ctx(Authctxt *authctxt)
47 return authctxt;
50 int
51 skey_query(void *ctx, char **name, char **infotxt,
52 u_int* numprompts, char ***prompts, u_int **echo_on)
54 Authctxt *authctxt = ctx;
55 char challenge[1024];
56 struct skey skey;
58 if (_compat_skeychallenge(&skey, authctxt->user, challenge,
59 sizeof(challenge)) == -1)
60 return -1;
62 *name = xstrdup("");
63 *infotxt = xstrdup("");
64 *numprompts = 1;
65 *prompts = xcalloc(*numprompts, sizeof(char *));
66 *echo_on = xcalloc(*numprompts, sizeof(u_int));
68 xasprintf(*prompts, "%s%s", challenge, SKEY_PROMPT);
70 return 0;
73 int
74 skey_respond(void *ctx, u_int numresponses, char **responses)
76 Authctxt *authctxt = ctx;
78 if (authctxt->valid &&
79 numresponses == 1 &&
80 skey_haskey(authctxt->pw->pw_name) == 0 &&
81 skey_passcheck(authctxt->pw->pw_name, responses[0]) != -1)
82 return 0;
83 return -1;
86 static void
87 skey_free_ctx(void *ctx)
89 /* we don't have a special context */
92 KbdintDevice skey_device = {
93 "skey",
94 skey_init_ctx,
95 skey_query,
96 skey_respond,
97 skey_free_ctx
100 KbdintDevice mm_skey_device = {
101 "skey",
102 skey_init_ctx,
103 mm_skey_query,
104 mm_skey_respond,
105 skey_free_ctx
107 #endif /* SKEY */