diff options
Diffstat (limited to 'servconf.h')
| -rw-r--r-- | servconf.h | 14 |
1 files changed, 12 insertions, 2 deletions
diff --git a/servconf.h b/servconf.h index c2848a765..ffcbc3319 100644 --- a/servconf.h +++ b/servconf.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: servconf.h,v 1.124 2017/06/24 06:34:38 djm Exp $ */ | 1 | /* $OpenBSD: servconf.h,v 1.125 2017/09/12 06:32:07 djm Exp $ */ |
| 2 | 2 | ||
| 3 | /* | 3 | /* |
| 4 | * Author: Tatu Ylonen <ylo@cs.hut.fi> | 4 | * Author: Tatu Ylonen <ylo@cs.hut.fi> |
| @@ -48,12 +48,19 @@ | |||
| 48 | #define FORWARD_LOCAL (1<<1) | 48 | #define FORWARD_LOCAL (1<<1) |
| 49 | #define FORWARD_ALLOW (FORWARD_REMOTE|FORWARD_LOCAL) | 49 | #define FORWARD_ALLOW (FORWARD_REMOTE|FORWARD_LOCAL) |
| 50 | 50 | ||
| 51 | /* PermitOpen */ | ||
| 52 | #define PERMITOPEN_ANY 0 | ||
| 53 | #define PERMITOPEN_NONE -2 | ||
| 54 | |||
| 51 | #define DEFAULT_AUTH_FAIL_MAX 6 /* Default for MaxAuthTries */ | 55 | #define DEFAULT_AUTH_FAIL_MAX 6 /* Default for MaxAuthTries */ |
| 52 | #define DEFAULT_SESSIONS_MAX 10 /* Default for MaxSessions */ | 56 | #define DEFAULT_SESSIONS_MAX 10 /* Default for MaxSessions */ |
| 53 | 57 | ||
| 54 | /* Magic name for internal sftp-server */ | 58 | /* Magic name for internal sftp-server */ |
| 55 | #define INTERNAL_SFTP_NAME "internal-sftp" | 59 | #define INTERNAL_SFTP_NAME "internal-sftp" |
| 56 | 60 | ||
| 61 | struct ssh; | ||
| 62 | struct fwd_perm_list; | ||
| 63 | |||
| 57 | typedef struct { | 64 | typedef struct { |
| 58 | u_int num_ports; | 65 | u_int num_ports; |
| 59 | u_int ports_from_cmdline; | 66 | u_int ports_from_cmdline; |
| @@ -169,7 +176,8 @@ typedef struct { | |||
| 169 | 176 | ||
| 170 | int permit_tun; | 177 | int permit_tun; |
| 171 | 178 | ||
| 172 | int num_permitted_opens; | 179 | char **permitted_opens; |
| 180 | u_int num_permitted_opens; /* May also be one of PERMITOPEN_* */ | ||
| 173 | 181 | ||
| 174 | char *chroot_directory; | 182 | char *chroot_directory; |
| 175 | char *revoked_keys_file; | 183 | char *revoked_keys_file; |
| @@ -229,6 +237,7 @@ struct connection_info { | |||
| 229 | M_CP_STRARRAYOPT(deny_groups, num_deny_groups); \ | 237 | M_CP_STRARRAYOPT(deny_groups, num_deny_groups); \ |
| 230 | M_CP_STRARRAYOPT(accept_env, num_accept_env); \ | 238 | M_CP_STRARRAYOPT(accept_env, num_accept_env); \ |
| 231 | M_CP_STRARRAYOPT(auth_methods, num_auth_methods); \ | 239 | M_CP_STRARRAYOPT(auth_methods, num_auth_methods); \ |
| 240 | M_CP_STRARRAYOPT(permitted_opens, num_permitted_opens); \ | ||
| 232 | } while (0) | 241 | } while (0) |
| 233 | 242 | ||
| 234 | struct connection_info *get_connection_info(int, int); | 243 | struct connection_info *get_connection_info(int, int); |
| @@ -236,6 +245,7 @@ void initialize_server_options(ServerOptions *); | |||
| 236 | void fill_default_server_options(ServerOptions *); | 245 | void fill_default_server_options(ServerOptions *); |
| 237 | int process_server_config_line(ServerOptions *, char *, const char *, int, | 246 | int process_server_config_line(ServerOptions *, char *, const char *, int, |
| 238 | int *, struct connection_info *); | 247 | int *, struct connection_info *); |
| 248 | void process_permitopen(struct ssh *ssh, ServerOptions *options); | ||
| 239 | void load_server_config(const char *, Buffer *); | 249 | void load_server_config(const char *, Buffer *); |
| 240 | void parse_server_config(ServerOptions *, const char *, Buffer *, | 250 | void parse_server_config(ServerOptions *, const char *, Buffer *, |
| 241 | struct connection_info *); | 251 | struct connection_info *); |