1 /* $OpenBSD: auth-bsdauth.c,v 1.15 2018/07/09 21:35:50 markus Exp $ */
3 * Copyright (c) 2001 Markus Friedl. All rights reserved.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
15 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
16 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
17 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
18 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
19 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
20 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
21 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
22 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
23 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
28 #include <sys/types.h>
42 #include "monitor_wrap.h"
45 bsdauth_init_ctx(Authctxt
*authctxt
)
51 bsdauth_query(void *ctx
, char **name
, char **infotxt
,
52 u_int
*numprompts
, char ***prompts
, u_int
**echo_on
)
54 Authctxt
*authctxt
= ctx
;
55 char *challenge
= NULL
;
62 if (authctxt
->as
!= NULL
) {
63 debug2("bsdauth_query: try reuse session");
64 challenge
= auth_getitem(authctxt
->as
, AUTHV_CHALLENGE
);
65 if (challenge
== NULL
) {
66 auth_close(authctxt
->as
);
71 if (challenge
== NULL
) {
72 debug2("bsdauth_query: new bsd auth session");
73 debug3("bsdauth_query: style %s",
74 authctxt
->style
? authctxt
->style
: "<default>");
75 authctxt
->as
= auth_userchallenge(authctxt
->user
,
76 authctxt
->style
, "auth-ssh", &challenge
);
77 if (authctxt
->as
== NULL
)
79 debug2("bsdauth_query: <%s>", challenge
? challenge
: "empty");
82 if (challenge
== NULL
)
86 *infotxt
= xstrdup("");
88 *prompts
= xcalloc(*numprompts
, sizeof(char *));
89 *echo_on
= xcalloc(*numprompts
, sizeof(u_int
));
90 (*prompts
)[0] = xstrdup(challenge
);
96 bsdauth_respond(void *ctx
, u_int numresponses
, char **responses
)
98 Authctxt
*authctxt
= ctx
;
101 if (!authctxt
->valid
)
104 if (authctxt
->as
== NULL
)
105 error("bsdauth_respond: no bsd auth session");
107 if (numresponses
!= 1)
110 authok
= auth_userresponse(authctxt
->as
, responses
[0], 0);
112 debug3("bsdauth_respond: <%s> = <%d>", responses
[0], authok
);
114 return (authok
== 0) ? -1 : 0;
118 bsdauth_free_ctx(void *ctx
)
120 Authctxt
*authctxt
= ctx
;
122 if (authctxt
&& authctxt
->as
) {
123 auth_close(authctxt
->as
);
128 KbdintDevice bsdauth_device
= {
136 KbdintDevice mm_bsdauth_device
= {