GSSAPI key exchange support

This patch has been rejected upstream: "None of the OpenSSH developers are in favour of adding this, and this situation has not changed for several years. This is not a slight on Simon's patch, which is of fine quality, but just that a) we don't trust GSSAPI implementations that much and b) we don't like adding new KEX since they are pre-auth attack surface. This one is particularly scary, since it requires hooks out to typically root-owned system resources." However, quite a lot of people rely on this in Debian, and it's better to have it merged into the main openssh package rather than having separate -krb5 packages (as we used to have). It seems to have a generally good security history. Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1242 Last-Updated: 2014-02-10 Patch-Name: gssapi.patch
author: Simon Wilkinson <simon@sxw.org.uk> 2014-02-09 16:09:48 +0000
committer: Colin Watson <cjwatson@debian.org> 2014-02-10 02:40:08 +0000
commit: cd404114ded78fc51d5d9cbd458d55c9b2f67daa (patch)
tree: df7a424d9301b69af906b50d550bfce6e6e2c5f3 /monitor_wrap.c
parent: 9a975a9faed7c4f334e8c8490db3e77e102f2b21 (diff)
1 files changed, 46 insertions, 1 deletions
diff --git a/monitor_wrap.c b/monitor_wrap.c
index 4ce469605..44019f32a 100644
--- a/monitor_wrap.c
+++ b/monitor_wrap.c
@@ -1273,7 +1273,7 @@ mm_ssh_gssapi_checkmic(Gssctxt *ctx, gss_buffer_t gssbuf, gss_buffer_t gssmic)
 }
 int
-mm_ssh_gssapi_userok(char *user)
+mm_ssh_gssapi_userok(char *user, struct passwd *pw)
 {
        Buffer m;
        int authenticated = 0;
@@ -1290,6 +1290,51 @@ mm_ssh_gssapi_userok(char *user)
        debug3("%s: user %sauthenticated",__func__, authenticated ? "" : "not ");
        return (authenticated);
 }
+OM_uint32
+mm_ssh_gssapi_sign(Gssctxt *ctx, gss_buffer_desc *data, gss_buffer_desc *hash)
+{
+        Buffer m;
+        OM_uint32 major;
+        u_int len;
+        buffer_init(&m);
+        buffer_put_string(&m, data->value, data->length);
+        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSSIGN, &m);
+        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSSIGN, &m);
+        major = buffer_get_int(&m);
+        hash->value = buffer_get_string(&m, &len);
+        hash->length = len;
+        buffer_free(&m);
+        return(major);
+}
+int
+mm_ssh_gssapi_update_creds(ssh_gssapi_ccache *store)
+{
+        Buffer m;
+        int ok;
+        buffer_init(&m);
+        buffer_put_cstring(&m, store->filename ? store->filename : "");
+        buffer_put_cstring(&m, store->envvar ? store->envvar : "");
+        buffer_put_cstring(&m, store->envval ? store->envval : "");
+        
+        mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSUPCREDS, &m);
+        mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSUPCREDS, &m);
+        ok = buffer_get_int(&m);
+        buffer_free(&m);
+        
+        return (ok);
+}
 #endif /* GSSAPI */
 #ifdef JPAKE
author	Simon Wilkinson <simon@sxw.org.uk>	2014-02-09 16:09:48 +0000
committer	Colin Watson <cjwatson@debian.org>	2014-02-10 02:40:08 +0000
commit	cd404114ded78fc51d5d9cbd458d55c9b2f67daa (patch)
tree	df7a424d9301b69af906b50d550bfce6e6e2c5f3 /monitor_wrap.c
parent	9a975a9faed7c4f334e8c8490db3e77e102f2b21 (diff)

diff --git a/monitor_wrap.c b/monitor_wrap.c index 4ce469605..44019f32a 100644 --- a/monitor_wrap.c +++ b/monitor_wrap.c
@@ -1273,7 +1273,7 @@ mm_ssh_gssapi_checkmic(Gssctxt *ctx, gss_buffer_t gssbuf, gss_buffer_t gssmic)
1273	}	1273	}
1274		1274
1275	int	1275	int
1276	mm_ssh_gssapi_userok(char *user)	1276	mm_ssh_gssapi_userok(char user, struct passwd pw)
1277	{	1277	{
1278	Buffer m;	1278	Buffer m;
1279	int authenticated = 0;	1279	int authenticated = 0;
@@ -1290,6 +1290,51 @@ mm_ssh_gssapi_userok(char *user)
1290	debug3("%s: user %sauthenticated",__func__, authenticated ? "" : "not ");	1290	debug3("%s: user %sauthenticated",__func__, authenticated ? "" : "not ");
1291	return (authenticated);	1291	return (authenticated);
1292	}	1292	}
		1293
		1294	OM_uint32
		1295	mm_ssh_gssapi_sign(Gssctxt ctx, gss_buffer_desc data, gss_buffer_desc *hash)
		1296	{
		1297	Buffer m;
		1298	OM_uint32 major;
		1299	u_int len;
		1300
		1301	buffer_init(&m);
		1302	buffer_put_string(&m, data->value, data->length);
		1303
		1304	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSSIGN, &m);
		1305	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSSIGN, &m);
		1306
		1307	major = buffer_get_int(&m);
		1308	hash->value = buffer_get_string(&m, &len);
		1309	hash->length = len;
		1310
		1311	buffer_free(&m);
		1312
		1313	return(major);
		1314	}
		1315
		1316	int
		1317	mm_ssh_gssapi_update_creds(ssh_gssapi_ccache *store)
		1318	{
		1319	Buffer m;
		1320	int ok;
		1321
		1322	buffer_init(&m);
		1323
		1324	buffer_put_cstring(&m, store->filename ? store->filename : "");
		1325	buffer_put_cstring(&m, store->envvar ? store->envvar : "");
		1326	buffer_put_cstring(&m, store->envval ? store->envval : "");
		1327
		1328	mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_GSSUPCREDS, &m);
		1329	mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_GSSUPCREDS, &m);
		1330
		1331	ok = buffer_get_int(&m);
		1332
		1333	buffer_free(&m);
		1334
		1335	return (ok);
		1336	}
		1337
1293	#endif /* GSSAPI */	1338	#endif /* GSSAPI */
1294		1339
1295	#ifdef JPAKE	1340	#ifdef JPAKE