1 | /* $OpenBSD: monitor_wrap.h,v 1.8 2002/09/26 11:38:43 markus Exp $ */ |
---|
2 | |
---|
3 | /* |
---|
4 | * Copyright 2002 Niels Provos <provos@citi.umich.edu> |
---|
5 | * All rights reserved. |
---|
6 | * |
---|
7 | * Redistribution and use in source and binary forms, with or without |
---|
8 | * modification, are permitted provided that the following conditions |
---|
9 | * are met: |
---|
10 | * 1. Redistributions of source code must retain the above copyright |
---|
11 | * notice, this list of conditions and the following disclaimer. |
---|
12 | * 2. Redistributions in binary form must reproduce the above copyright |
---|
13 | * notice, this list of conditions and the following disclaimer in the |
---|
14 | * documentation and/or other materials provided with the distribution. |
---|
15 | * |
---|
16 | * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR |
---|
17 | * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
---|
18 | * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
---|
19 | * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, |
---|
20 | * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
---|
21 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
---|
22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
---|
23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
---|
24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
---|
25 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
---|
26 | */ |
---|
27 | |
---|
28 | #ifndef _MM_WRAP_H_ |
---|
29 | #define _MM_WRAP_H_ |
---|
30 | #include "key.h" |
---|
31 | #include "buffer.h" |
---|
32 | |
---|
33 | extern int use_privsep; |
---|
34 | #define PRIVSEP(x) (use_privsep ? mm_##x : x) |
---|
35 | |
---|
36 | enum mm_keytype {MM_NOKEY, MM_HOSTKEY, MM_USERKEY, MM_RSAHOSTKEY, MM_RSAUSERKEY}; |
---|
37 | |
---|
38 | struct monitor; |
---|
39 | struct mm_master; |
---|
40 | struct passwd; |
---|
41 | struct Authctxt; |
---|
42 | |
---|
43 | DH *mm_choose_dh(int, int, int); |
---|
44 | int mm_key_sign(Key *, u_char **, u_int *, u_char *, u_int); |
---|
45 | void mm_inform_authserv(char *, char *); |
---|
46 | struct passwd *mm_getpwnamallow(const char *); |
---|
47 | char *mm_auth2_read_banner(void); |
---|
48 | int mm_auth_password(struct Authctxt *, char *); |
---|
49 | int mm_key_allowed(enum mm_keytype, char *, char *, Key *); |
---|
50 | int mm_user_key_allowed(struct passwd *, Key *); |
---|
51 | int mm_hostbased_key_allowed(struct passwd *, char *, char *, Key *); |
---|
52 | int mm_auth_rhosts_rsa_key_allowed(struct passwd *, char *, char *, Key *); |
---|
53 | int mm_key_verify(Key *, u_char *, u_int, u_char *, u_int); |
---|
54 | int mm_auth_rsa_key_allowed(struct passwd *, BIGNUM *, Key **); |
---|
55 | int mm_auth_rsa_verify_response(Key *, BIGNUM *, u_char *); |
---|
56 | BIGNUM *mm_auth_rsa_generate_challenge(Key *); |
---|
57 | |
---|
58 | #ifdef USE_PAM |
---|
59 | void mm_start_pam(char *); |
---|
60 | #endif |
---|
61 | |
---|
62 | #ifdef GSSAPI |
---|
63 | #include "ssh-gss.h" |
---|
64 | OM_uint32 mm_ssh_gssapi_server_ctx(Gssctxt **ctxt, gss_OID oid); |
---|
65 | OM_uint32 mm_ssh_gssapi_accept_ctx(Gssctxt *ctxt, gss_buffer_desc *recv, |
---|
66 | gss_buffer_desc *send, OM_uint32 *flags); |
---|
67 | OM_uint32 mm_ssh_gssapi_sign(Gssctxt *ctxt, gss_buffer_desc *buffer, |
---|
68 | gss_buffer_desc *hash); |
---|
69 | int mm_ssh_gssapi_userok(char *user); |
---|
70 | #endif |
---|
71 | |
---|
72 | void mm_terminate(void); |
---|
73 | int mm_pty_allocate(int *, int *, char *, int); |
---|
74 | void mm_session_pty_cleanup2(void *); |
---|
75 | |
---|
76 | /* SSHv1 interfaces */ |
---|
77 | void mm_ssh1_session_id(u_char *); |
---|
78 | int mm_ssh1_session_key(BIGNUM *); |
---|
79 | |
---|
80 | /* Key export functions */ |
---|
81 | struct Newkeys *mm_newkeys_from_blob(u_char *, int); |
---|
82 | int mm_newkeys_to_blob(int, u_char **, u_int *); |
---|
83 | |
---|
84 | void monitor_apply_keystate(struct monitor *); |
---|
85 | void mm_get_keystate(struct monitor *); |
---|
86 | void mm_send_keystate(struct monitor*); |
---|
87 | |
---|
88 | /* bsdauth */ |
---|
89 | int mm_bsdauth_query(void *, char **, char **, u_int *, char ***, u_int **); |
---|
90 | int mm_bsdauth_respond(void *, u_int, char **); |
---|
91 | |
---|
92 | /* skey */ |
---|
93 | int mm_skey_query(void *, char **, char **, u_int *, char ***, u_int **); |
---|
94 | int mm_skey_respond(void *, u_int, char **); |
---|
95 | |
---|
96 | /* auth_krb */ |
---|
97 | #ifdef KRB4 |
---|
98 | int mm_auth_krb4(struct Authctxt *, void *, char **, void *); |
---|
99 | #endif |
---|
100 | #ifdef KRB5 |
---|
101 | /* auth and reply are really krb5_data objects, but we don't want to |
---|
102 | * include all of the krb5 headers here */ |
---|
103 | int mm_auth_krb5(void *authctxt, void *auth, char **client, void *reply); |
---|
104 | #endif |
---|
105 | |
---|
106 | /* zlib allocation hooks */ |
---|
107 | |
---|
108 | void *mm_zalloc(struct mm_master *, u_int, u_int); |
---|
109 | void mm_zfree(struct mm_master *, void *); |
---|
110 | void mm_init_compression(struct mm_master *); |
---|
111 | |
---|
112 | #endif /* _MM_H_ */ |
---|