1 files changed, 110 insertions, 0 deletions
diff --git a/sshd.c b/sshd.c
index 481d00155..e6706a886 100644
--- a/sshd.c
+++ b/sshd.c
@@ -123,6 +123,10 @@
 #include "ssh-sandbox.h"
 #include "version.h"
+#ifdef USE_SECURITY_SESSION_API
+#include <Security/AuthSession.h>
+#endif
 #ifndef O_NOCTTY
 #define O_NOCTTY        0
 #endif
@@ -1745,10 +1749,13 @@ main(int ac, char **av)
                logit("Disabling protocol version 1. Could not load host key");
                options.protocol &= ~SSH_PROTO_1;
        }
+#ifndef GSSAPI
+        /* The GSSAPI key exchange can run without a host key */
        if ((options.protocol & SSH_PROTO_2) && !sensitive_data.have_ssh2_key) {
                logit("Disabling protocol version 2. Could not load host key");
                options.protocol &= ~SSH_PROTO_2;
        }
+#endif
        if (!(options.protocol & (SSH_PROTO_1|SSH_PROTO_2))) {
                logit("sshd: no hostkeys available -- exiting.");
                exit(1);
@@ -2060,6 +2067,60 @@ main(int ac, char **av)
            remote_ip, remote_port,
            get_local_ipaddr(sock_in), get_local_port());
+#ifdef USE_SECURITY_SESSION_API
+        /*
+         * Create a new security session for use by the new user login if
+         * the current session is the root session or we are not launched
+         * by inetd (eg: debugging mode or server mode).  We do not
+         * necessarily need to create a session if we are launched from
+         * inetd because Panther xinetd will create a session for us.
+         *
+         * The only case where this logic will fail is if there is an
+         * inetd running in a non-root session which is not creating
+         * new sessions for us.  Then all the users will end up in the
+         * same session (bad).
+         *
+         * When the client exits, the session will be destroyed for us
+         * automatically.
+         *
+         * We must create the session before any credentials are stored
+         * (including AFS pags, which happens a few lines below).
+         */
+        {
+                OSStatus err = 0;
+                SecuritySessionId sid = 0;
+                SessionAttributeBits sattrs = 0;
+                err = SessionGetInfo(callerSecuritySession, &sid, &sattrs);
+                if (err)
+                        error("SessionGetInfo() failed with error %.8X",
+                            (unsigned) err);
+                else
+                        debug("Current Session ID is %.8X / Session Attributes are %.8X",
+                            (unsigned) sid, (unsigned) sattrs);
+                if (inetd_flag && !(sattrs & sessionIsRoot))
+                        debug("Running in inetd mode in a non-root session... "
+                            "assuming inetd created the session for us.");
+                else {
+                        debug("Creating new security session...");
+                        err = SessionCreate(0, sessionHasTTY | sessionIsRemote);
+                        if (err)
+                                error("SessionCreate() failed with error %.8X",
+                                    (unsigned) err);
+                        err = SessionGetInfo(callerSecuritySession, &sid, 
+                            &sattrs);
+                        if (err)
+                                error("SessionGetInfo() failed with error %.8X",
+                                    (unsigned) err);
+                        else
+                                debug("New Session ID is %.8X / Session Attributes are %.8X",
+                                    (unsigned) sid, (unsigned) sattrs);
+                }
+        }
+#endif
        /*
         * We don't want to listen forever unless the other side
         * successfully authenticates itself.  So we set up an alarm which is
@@ -2482,6 +2543,48 @@ do_ssh2_kex(void)
        myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = compat_pkalg_proposal(
            list_hostkey_types());
+#ifdef GSSAPI
+        {
+        char *orig;
+        char *gss = NULL;
+        char *newstr = NULL;
+        orig = myproposal[PROPOSAL_KEX_ALGS];
+        /* 
+         * If we don't have a host key, then there's no point advertising
+         * the other key exchange algorithms
+         */
+        if (strlen(myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS]) == 0)
+                orig = NULL;
+        if (options.gss_keyex)
+                gss = ssh_gssapi_server_mechanisms();
+        else
+                gss = NULL;
+        if (gss && orig)
+                xasprintf(&newstr, "%s,%s", gss, orig);
+        else if (gss)
+                newstr = gss;
+        else if (orig)
+                newstr = orig;
+        /* 
+         * If we've got GSSAPI mechanisms, then we've got the 'null' host
+         * key alg, but we can't tell people about it unless its the only
+         * host key algorithm we support
+         */
+        if (gss && (strlen(myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS])) == 0)
+                myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = "null";
+        if (newstr)
+                myproposal[PROPOSAL_KEX_ALGS] = newstr;
+        else
+                fatal("No supported key exchange algorithms");
+        }
+#endif
        /* start key exchange */
        kex = kex_setup(myproposal);
 #ifdef WITH_OPENSSL
@@ -2492,6 +2595,13 @@ do_ssh2_kex(void)
        kex->kex[KEX_ECDH_SHA2] = kexecdh_server;
 #endif
        kex->kex[KEX_C25519_SHA256] = kexc25519_server;
+#ifdef GSSAPI
+        if (options.gss_keyex) {
+                kex->kex[KEX_GSS_GRP1_SHA1] = kexgss_server;
+                kex->kex[KEX_GSS_GRP14_SHA1] = kexgss_server;
+                kex->kex[KEX_GSS_GEX_SHA1] = kexgss_server;
+        }
+#endif
        kex->server = 1;
        kex->client_version_string=client_version_string;
        kex->server_version_string=server_version_string;

diff --git a/sshd.c b/sshd.c index 481d00155..e6706a886 100644 --- a/sshd.c +++ b/sshd.c
@@ -123,6 +123,10 @@
123	#include "ssh-sandbox.h"	123	#include "ssh-sandbox.h"
124	#include "version.h"	124	#include "version.h"
125		125
		126	#ifdef USE_SECURITY_SESSION_API
		127	#include <Security/AuthSession.h>
		128	#endif
		129
126	#ifndef O_NOCTTY	130	#ifndef O_NOCTTY
127	#define O_NOCTTY 0	131	#define O_NOCTTY 0
128	#endif	132	#endif
@@ -1745,10 +1749,13 @@ main(int ac, char **av)
1745	logit("Disabling protocol version 1. Could not load host key");	1749	logit("Disabling protocol version 1. Could not load host key");
1746	options.protocol &= ~SSH_PROTO_1;	1750	options.protocol &= ~SSH_PROTO_1;
1747	}	1751	}
		1752	#ifndef GSSAPI
		1753	/* The GSSAPI key exchange can run without a host key */
1748	if ((options.protocol & SSH_PROTO_2) && !sensitive_data.have_ssh2_key) {	1754	if ((options.protocol & SSH_PROTO_2) && !sensitive_data.have_ssh2_key) {
1749	logit("Disabling protocol version 2. Could not load host key");	1755	logit("Disabling protocol version 2. Could not load host key");
1750	options.protocol &= ~SSH_PROTO_2;	1756	options.protocol &= ~SSH_PROTO_2;
1751	}	1757	}
		1758	#endif
1752	if (!(options.protocol & (SSH_PROTO_1\|SSH_PROTO_2))) {	1759	if (!(options.protocol & (SSH_PROTO_1\|SSH_PROTO_2))) {
1753	logit("sshd: no hostkeys available -- exiting.");	1760	logit("sshd: no hostkeys available -- exiting.");
1754	exit(1);	1761	exit(1);
@@ -2060,6 +2067,60 @@ main(int ac, char **av)
2060	remote_ip, remote_port,	2067	remote_ip, remote_port,
2061	get_local_ipaddr(sock_in), get_local_port());	2068	get_local_ipaddr(sock_in), get_local_port());
2062		2069
		2070	#ifdef USE_SECURITY_SESSION_API
		2071	/*
		2072	* Create a new security session for use by the new user login if
		2073	* the current session is the root session or we are not launched
		2074	* by inetd (eg: debugging mode or server mode). We do not
		2075	* necessarily need to create a session if we are launched from
		2076	* inetd because Panther xinetd will create a session for us.
		2077	*
		2078	* The only case where this logic will fail is if there is an
		2079	* inetd running in a non-root session which is not creating
		2080	* new sessions for us. Then all the users will end up in the
		2081	* same session (bad).
		2082	*
		2083	* When the client exits, the session will be destroyed for us
		2084	* automatically.
		2085	*
		2086	* We must create the session before any credentials are stored
		2087	* (including AFS pags, which happens a few lines below).
		2088	*/
		2089	{
		2090	OSStatus err = 0;
		2091	SecuritySessionId sid = 0;
		2092	SessionAttributeBits sattrs = 0;
		2093
		2094	err = SessionGetInfo(callerSecuritySession, &sid, &sattrs);
		2095	if (err)
		2096	error("SessionGetInfo() failed with error %.8X",
		2097	(unsigned) err);
		2098	else
		2099	debug("Current Session ID is %.8X / Session Attributes are %.8X",
		2100	(unsigned) sid, (unsigned) sattrs);
		2101
		2102	if (inetd_flag && !(sattrs & sessionIsRoot))
		2103	debug("Running in inetd mode in a non-root session... "
		2104	"assuming inetd created the session for us.");
		2105	else {
		2106	debug("Creating new security session...");
		2107	err = SessionCreate(0, sessionHasTTY \| sessionIsRemote);
		2108	if (err)
		2109	error("SessionCreate() failed with error %.8X",
		2110	(unsigned) err);
		2111
		2112	err = SessionGetInfo(callerSecuritySession, &sid,
		2113	&sattrs);
		2114	if (err)
		2115	error("SessionGetInfo() failed with error %.8X",
		2116	(unsigned) err);
		2117	else
		2118	debug("New Session ID is %.8X / Session Attributes are %.8X",
		2119	(unsigned) sid, (unsigned) sattrs);
		2120	}
		2121	}
		2122	#endif
		2123
2063	/*	2124	/*
2064	* We don't want to listen forever unless the other side	2125	* We don't want to listen forever unless the other side
2065	* successfully authenticates itself. So we set up an alarm which is	2126	* successfully authenticates itself. So we set up an alarm which is
@@ -2482,6 +2543,48 @@ do_ssh2_kex(void)
2482	myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = compat_pkalg_proposal(	2543	myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = compat_pkalg_proposal(
2483	list_hostkey_types());	2544	list_hostkey_types());
2484		2545
		2546	#ifdef GSSAPI
		2547	{
		2548	char *orig;
		2549	char *gss = NULL;
		2550	char *newstr = NULL;
		2551	orig = myproposal[PROPOSAL_KEX_ALGS];
		2552
		2553	/*
		2554	* If we don't have a host key, then there's no point advertising
		2555	* the other key exchange algorithms
		2556	*/
		2557
		2558	if (strlen(myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS]) == 0)
		2559	orig = NULL;
		2560
		2561	if (options.gss_keyex)
		2562	gss = ssh_gssapi_server_mechanisms();
		2563	else
		2564	gss = NULL;
		2565
		2566	if (gss && orig)
		2567	xasprintf(&newstr, "%s,%s", gss, orig);
		2568	else if (gss)
		2569	newstr = gss;
		2570	else if (orig)
		2571	newstr = orig;
		2572
		2573	/*
		2574	* If we've got GSSAPI mechanisms, then we've got the 'null' host
		2575	* key alg, but we can't tell people about it unless its the only
		2576	* host key algorithm we support
		2577	*/
		2578	if (gss && (strlen(myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS])) == 0)
		2579	myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = "null";
		2580
		2581	if (newstr)
		2582	myproposal[PROPOSAL_KEX_ALGS] = newstr;
		2583	else
		2584	fatal("No supported key exchange algorithms");
		2585	}
		2586	#endif
		2587
2485	/* start key exchange */	2588	/* start key exchange */
2486	kex = kex_setup(myproposal);	2589	kex = kex_setup(myproposal);
2487	#ifdef WITH_OPENSSL	2590	#ifdef WITH_OPENSSL
@@ -2492,6 +2595,13 @@ do_ssh2_kex(void)
2492	kex->kex[KEX_ECDH_SHA2] = kexecdh_server;	2595	kex->kex[KEX_ECDH_SHA2] = kexecdh_server;
2493	#endif	2596	#endif
2494	kex->kex[KEX_C25519_SHA256] = kexc25519_server;	2597	kex->kex[KEX_C25519_SHA256] = kexc25519_server;
		2598	#ifdef GSSAPI
		2599	if (options.gss_keyex) {
		2600	kex->kex[KEX_GSS_GRP1_SHA1] = kexgss_server;
		2601	kex->kex[KEX_GSS_GRP14_SHA1] = kexgss_server;
		2602	kex->kex[KEX_GSS_GEX_SHA1] = kexgss_server;
		2603	}
		2604	#endif
2495	kex->server = 1;	2605	kex->server = 1;
2496	kex->client_version_string=client_version_string;	2606	kex->client_version_string=client_version_string;
2497	kex->server_version_string=server_version_string;	2607	kex->server_version_string=server_version_string;