2016-01-23 02:25:51 +03:00
|
|
|
/* $NetBSD: skey.h,v 1.10 2016/01/22 23:25:51 dholland Exp $ */
|
1996-09-19 23:39:36 +04:00
|
|
|
|
1994-05-21 09:45:58 +04:00
|
|
|
/*
|
|
|
|
* S/KEY v1.1b (skey.h)
|
|
|
|
*
|
|
|
|
* Authors:
|
|
|
|
* Neil M. Haller <nmh@thumper.bellcore.com>
|
|
|
|
* Philip R. Karn <karn@chicago.qualcomm.com>
|
|
|
|
* John S. Walden <jsw@thumper.bellcore.com>
|
|
|
|
*
|
|
|
|
* Modifications:
|
|
|
|
* Scott Chasin <chasin@crimelab.com>
|
2000-07-07 02:30:18 +04:00
|
|
|
* Todd C. Miller <Todd.Miller@courtesan.com>
|
1994-05-21 09:45:58 +04:00
|
|
|
*
|
|
|
|
* Main client header
|
|
|
|
*/
|
|
|
|
|
2016-01-23 02:25:51 +03:00
|
|
|
#include <stdio.h>
|
|
|
|
|
1994-05-21 09:45:58 +04:00
|
|
|
/* Server-side data structure for reading keys file during login */
|
2005-02-04 19:12:13 +03:00
|
|
|
struct skey {
|
1994-05-21 09:45:58 +04:00
|
|
|
FILE *keyfile;
|
|
|
|
char buf[256];
|
|
|
|
char *logname;
|
|
|
|
int n;
|
|
|
|
char *seed;
|
|
|
|
char *val;
|
|
|
|
long recstart; /* needed so reread of buffer is efficient */
|
|
|
|
};
|
|
|
|
|
|
|
|
/* Client-side structure for scanning data stream for challenge */
|
2005-02-04 19:12:13 +03:00
|
|
|
struct mc {
|
1994-05-21 09:45:58 +04:00
|
|
|
char buf[256];
|
|
|
|
int skip;
|
|
|
|
int cnt;
|
|
|
|
};
|
|
|
|
|
2000-07-07 02:30:18 +04:00
|
|
|
/* Maximum sequence number we allow */
|
|
|
|
#ifndef SKEY_MAX_SEQ
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_MAX_SEQ 10000
|
2000-07-07 02:30:18 +04:00
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Minimum secret password length (rfc2289) */
|
|
|
|
#ifndef SKEY_MIN_PW_LEN
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_MIN_PW_LEN 10
|
2000-07-07 02:30:18 +04:00
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Max secret password length (rfc2289 says 63 but allows more) */
|
|
|
|
#ifndef SKEY_MAX_PW_LEN
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_MAX_PW_LEN 255
|
2000-07-07 02:30:18 +04:00
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Max length of an S/Key seed (rfc2289) */
|
|
|
|
#ifndef SKEY_MAX_SEED_LEN
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_MAX_SEED_LEN 16
|
2000-07-07 02:30:18 +04:00
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Max length of S/Key challenge (otp-???? 9999 seed) */
|
|
|
|
#ifndef SKEY_MAX_CHALLENGE
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_MAX_CHALLENGE (11 + SKEY_MAX_HASHNAME_LEN + SKEY_MAX_SEED_LEN)
|
2000-07-07 02:30:18 +04:00
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Max length of hash algorithm name (md4/md5/sha1/rmd160) */
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_MAX_HASHNAME_LEN 6
|
2000-07-07 02:30:18 +04:00
|
|
|
|
|
|
|
/* Size of a binary key (not NULL-terminated) */
|
2005-02-04 19:12:13 +03:00
|
|
|
#define SKEY_BINKEY_SIZE 8
|
2000-07-07 02:30:18 +04:00
|
|
|
|
|
|
|
/* Location of random file for bogus challenges */
|
2005-02-04 19:12:13 +03:00
|
|
|
#define _SKEY_RAND_FILE_PATH_ "/var/db/host.random"
|
1995-06-05 23:48:33 +04:00
|
|
|
|
2000-07-07 02:30:18 +04:00
|
|
|
/* Prototypes */
|
2005-02-04 19:12:13 +03:00
|
|
|
void f(char *);
|
|
|
|
int keycrunch(char *, const char *, const char *);
|
|
|
|
char *btoe(char *, const char *);
|
|
|
|
char *put8(char *, const char *);
|
|
|
|
int etob(char *, const char *);
|
|
|
|
void rip(char *);
|
|
|
|
int skeychallenge(struct skey *, const char *, char *, size_t);
|
|
|
|
int skeylookup(struct skey *, const char *);
|
|
|
|
int skeyverify(struct skey *, char *);
|
|
|
|
void sevenbit(char *);
|
|
|
|
void backspace(char *);
|
|
|
|
const char *skipspace(const char *);
|
|
|
|
char *readpass(char *, int);
|
|
|
|
char *readskey(char *, int);
|
|
|
|
int skey_authenticate(const char *);
|
|
|
|
int skey_passcheck(const char *, char *);
|
|
|
|
const char *skey_keyinfo(const char *);
|
|
|
|
int skey_haskey(const char *);
|
|
|
|
int getskeyprompt(struct skey *, char *, char *);
|
|
|
|
int atob8(char *, const char *);
|
|
|
|
int btoa8(char *, const char *);
|
|
|
|
int htoi(int);
|
|
|
|
const char *skey_get_algorithm(void);
|
|
|
|
const char *skey_set_algorithm(const char *);
|
|
|
|
int skeygetnext(struct skey *);
|
|
|
|
int skeyzero(struct skey *, char *);
|