2024-06-13 00:36:00 +02:00
|
|
|
/* $OpenBSD: servconf.h,v 1.165 2024/06/12 22:36:00 djm Exp $ */
|
2002-03-05 02:53:02 +01:00
|
|
|
|
1999-10-27 05:42:43 +02:00
|
|
|
/*
|
1999-11-24 14:26:21 +01:00
|
|
|
* Author: Tatu Ylonen <ylo@cs.hut.fi>
|
|
|
|
|
* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
|
|
|
|
|
* All rights reserved
|
|
|
|
|
* Definitions for server configuration data and for the functions reading it.
|
2000-04-16 03:18:38 +02:00
|
|
|
*
|
2000-09-16 04:29:08 +02:00
|
|
|
* As far as I am concerned, the code I have written for this software
|
|
|
|
|
* can be used freely for any purpose. Any derived versions of this
|
|
|
|
|
* software must be clearly marked as such, and if the derived work is
|
|
|
|
|
* incompatible with the protocol description in the RFC file, it must be
|
|
|
|
|
* called by a name other than "ssh" or "Secure Shell".
|
1999-11-24 14:26:21 +01:00
|
|
|
*/
|
1999-10-27 05:42:43 +02:00
|
|
|
|
|
|
|
|
#ifndef SERVCONF_H
|
|
|
|
|
#define SERVCONF_H
|
|
|
|
|
|
2020-02-01 07:25:09 +01:00
|
|
|
#include <openbsd-compat/sys-queue.h>
|
2020-01-31 23:42:45 +01:00
|
|
|
|
2000-01-14 05:45:46 +01:00
|
|
|
#define MAX_PORTS 256 /* Max # ports. */
|
|
|
|
|
|
2001-02-15 04:08:27 +01:00
|
|
|
/* permit_root_login */
|
|
|
|
|
#define PERMIT_NOT_SET -1
|
|
|
|
|
#define PERMIT_NO 0
|
|
|
|
|
#define PERMIT_FORCED_ONLY 1
|
|
|
|
|
#define PERMIT_NO_PASSWD 2
|
|
|
|
|
#define PERMIT_YES 3
|
|
|
|
|
|
2017-09-12 08:32:07 +02:00
|
|
|
/* PermitOpen */
|
|
|
|
|
#define PERMITOPEN_ANY 0
|
|
|
|
|
#define PERMITOPEN_NONE -2
|
|
|
|
|
|
2020-04-17 05:30:05 +02:00
|
|
|
/* IgnoreRhosts */
|
|
|
|
|
#define IGNORE_RHOSTS_NO 0
|
|
|
|
|
#define IGNORE_RHOSTS_YES 1
|
|
|
|
|
#define IGNORE_RHOSTS_SHOSTS 2
|
|
|
|
|
|
2004-05-24 02:36:23 +02:00
|
|
|
#define DEFAULT_AUTH_FAIL_MAX 6 /* Default for MaxAuthTries */
|
2008-05-19 07:34:50 +02:00
|
|
|
#define DEFAULT_SESSIONS_MAX 10 /* Default for MaxSessions */
|
2001-02-15 04:08:27 +01:00
|
|
|
|
2008-03-07 08:31:24 +01:00
|
|
|
/* Magic name for internal sftp-server */
|
|
|
|
|
#define INTERNAL_SFTP_NAME "internal-sftp"
|
|
|
|
|
|
2019-11-25 01:52:46 +01:00
|
|
|
/* PubkeyAuthOptions flags */
|
2020-08-27 03:07:09 +02:00
|
|
|
#define PUBKEYAUTH_TOUCH_REQUIRED (1)
|
|
|
|
|
#define PUBKEYAUTH_VERIFY_REQUIRED (1<<1)
|
2019-11-25 01:52:46 +01:00
|
|
|
|
2017-09-12 08:32:07 +02:00
|
|
|
struct ssh;
|
|
|
|
|
|
2017-10-25 02:15:35 +02:00
|
|
|
/*
|
|
|
|
|
* Used to store addresses from ListenAddr directives. These may be
|
|
|
|
|
* incomplete, as they may specify addresses that need to be merged
|
|
|
|
|
* with any ports requested by ListenPort.
|
|
|
|
|
*/
|
|
|
|
|
struct queued_listenaddr {
|
|
|
|
|
char *addr;
|
|
|
|
|
int port; /* <=0 if unspecified */
|
|
|
|
|
char *rdomain;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
/* Resolved listen addresses, grouped by optional routing domain */
|
|
|
|
|
struct listenaddr {
|
|
|
|
|
char *rdomain;
|
|
|
|
|
struct addrinfo *addrs;
|
|
|
|
|
};
|
|
|
|
|
|
upstream: Add a facility to sshd(8) to penalise particular
problematic client behaviours, controlled by two new sshd_config(5) options:
PerSourcePenalties and PerSourcePenaltyExemptList.
When PerSourcePenalties are enabled, sshd(8) will monitor the exit
status of its child pre-auth session processes. Through the exit
status, it can observe situations where the session did not
authenticate as expected. These conditions include when the client
repeatedly attempted authentication unsucessfully (possibly indicating
an attack against one or more accounts, e.g. password guessing), or
when client behaviour caused sshd to crash (possibly indicating
attempts to exploit sshd).
When such a condition is observed, sshd will record a penalty of some
duration (e.g. 30 seconds) against the client's address. If this time
is above a minimum threshold specified by the PerSourcePenalties, then
connections from the client address will be refused (along with any
others in the same PerSourceNetBlockSize CIDR range).
Repeated offenses by the same client address will accrue greater
penalties, up to a configurable maximum. A PerSourcePenaltyExemptList
option allows certain address ranges to be exempt from all penalties.
We hope these options will make it significantly more difficult for
attackers to find accounts with weak/guessable passwords or exploit
bugs in sshd(8) itself.
PerSourcePenalties is off by default, but we expect to enable it
automatically in the near future.
much feedback markus@ and others, ok markus@
OpenBSD-Commit-ID: 89ded70eccb2b4926ef0366a4d58a693de366cca
2024-06-06 19:15:25 +02:00
|
|
|
#define PER_SOURCE_PENALTY_OVERFLOW_DENY_ALL 1
|
|
|
|
|
#define PER_SOURCE_PENALTY_OVERFLOW_PERMISSIVE 2
|
|
|
|
|
struct per_source_penalty {
|
|
|
|
|
int enabled;
|
2024-06-13 00:36:00 +02:00
|
|
|
int max_sources4;
|
|
|
|
|
int max_sources6;
|
upstream: Add a facility to sshd(8) to penalise particular
problematic client behaviours, controlled by two new sshd_config(5) options:
PerSourcePenalties and PerSourcePenaltyExemptList.
When PerSourcePenalties are enabled, sshd(8) will monitor the exit
status of its child pre-auth session processes. Through the exit
status, it can observe situations where the session did not
authenticate as expected. These conditions include when the client
repeatedly attempted authentication unsucessfully (possibly indicating
an attack against one or more accounts, e.g. password guessing), or
when client behaviour caused sshd to crash (possibly indicating
attempts to exploit sshd).
When such a condition is observed, sshd will record a penalty of some
duration (e.g. 30 seconds) against the client's address. If this time
is above a minimum threshold specified by the PerSourcePenalties, then
connections from the client address will be refused (along with any
others in the same PerSourceNetBlockSize CIDR range).
Repeated offenses by the same client address will accrue greater
penalties, up to a configurable maximum. A PerSourcePenaltyExemptList
option allows certain address ranges to be exempt from all penalties.
We hope these options will make it significantly more difficult for
attackers to find accounts with weak/guessable passwords or exploit
bugs in sshd(8) itself.
PerSourcePenalties is off by default, but we expect to enable it
automatically in the near future.
much feedback markus@ and others, ok markus@
OpenBSD-Commit-ID: 89ded70eccb2b4926ef0366a4d58a693de366cca
2024-06-06 19:15:25 +02:00
|
|
|
int overflow_mode;
|
2024-06-13 00:36:00 +02:00
|
|
|
int overflow_mode6;
|
upstream: Add a facility to sshd(8) to penalise particular
problematic client behaviours, controlled by two new sshd_config(5) options:
PerSourcePenalties and PerSourcePenaltyExemptList.
When PerSourcePenalties are enabled, sshd(8) will monitor the exit
status of its child pre-auth session processes. Through the exit
status, it can observe situations where the session did not
authenticate as expected. These conditions include when the client
repeatedly attempted authentication unsucessfully (possibly indicating
an attack against one or more accounts, e.g. password guessing), or
when client behaviour caused sshd to crash (possibly indicating
attempts to exploit sshd).
When such a condition is observed, sshd will record a penalty of some
duration (e.g. 30 seconds) against the client's address. If this time
is above a minimum threshold specified by the PerSourcePenalties, then
connections from the client address will be refused (along with any
others in the same PerSourceNetBlockSize CIDR range).
Repeated offenses by the same client address will accrue greater
penalties, up to a configurable maximum. A PerSourcePenaltyExemptList
option allows certain address ranges to be exempt from all penalties.
We hope these options will make it significantly more difficult for
attackers to find accounts with weak/guessable passwords or exploit
bugs in sshd(8) itself.
PerSourcePenalties is off by default, but we expect to enable it
automatically in the near future.
much feedback markus@ and others, ok markus@
OpenBSD-Commit-ID: 89ded70eccb2b4926ef0366a4d58a693de366cca
2024-06-06 19:15:25 +02:00
|
|
|
int penalty_crash;
|
|
|
|
|
int penalty_grace;
|
|
|
|
|
int penalty_authfail;
|
|
|
|
|
int penalty_noauth;
|
|
|
|
|
int penalty_max;
|
|
|
|
|
int penalty_min;
|
|
|
|
|
};
|
|
|
|
|
|
1999-11-24 14:26:21 +01:00
|
|
|
typedef struct {
|
2009-01-28 06:31:22 +01:00
|
|
|
u_int num_ports;
|
|
|
|
|
u_int ports_from_cmdline;
|
|
|
|
|
int ports[MAX_PORTS]; /* Port number to listen on. */
|
2017-10-25 02:15:35 +02:00
|
|
|
struct queued_listenaddr *queued_listen_addrs;
|
2015-04-29 05:48:56 +02:00
|
|
|
u_int num_queued_listens;
|
2017-10-25 02:15:35 +02:00
|
|
|
struct listenaddr *listen_addrs;
|
|
|
|
|
u_int num_listen_addrs;
|
2017-10-20 03:52:50 +02:00
|
|
|
int address_family; /* Address family used by the server. */
|
|
|
|
|
|
2017-10-25 02:17:08 +02:00
|
|
|
char *routing_domain; /* Bind session to routing domain */
|
|
|
|
|
|
2017-10-20 03:52:50 +02:00
|
|
|
char **host_key_files; /* Files containing host keys. */
|
2018-11-19 05:12:32 +01:00
|
|
|
int *host_key_file_userprovided; /* Key was specified by user. */
|
2017-10-20 03:52:50 +02:00
|
|
|
u_int num_host_key_files; /* Number of files for host keys. */
|
|
|
|
|
char **host_cert_files; /* Files containing host certs. */
|
|
|
|
|
u_int num_host_cert_files; /* Number of files for host certs. */
|
|
|
|
|
|
|
|
|
|
char *host_key_agent; /* ssh-agent socket for host keys. */
|
|
|
|
|
char *pid_file; /* Where to put our pid */
|
2021-03-12 05:08:19 +01:00
|
|
|
char *moduli_file; /* moduli file for DH-GEX */
|
1999-11-24 14:26:21 +01:00
|
|
|
int login_grace_time; /* Disconnect if no auth in this time
|
|
|
|
|
* (sec). */
|
2001-02-15 04:08:27 +01:00
|
|
|
int permit_root_login; /* PERMIT_*, see above */
|
1999-11-24 14:26:21 +01:00
|
|
|
int ignore_rhosts; /* Ignore .rhosts and .shosts. */
|
|
|
|
|
int ignore_user_known_hosts; /* Ignore ~/.ssh/known_hosts
|
|
|
|
|
* for RhostsRsaAuth */
|
|
|
|
|
int print_motd; /* If true, print /etc/motd. */
|
2001-03-26 07:45:53 +02:00
|
|
|
int print_lastlog; /* If true, print lastlog */
|
1999-11-24 14:26:21 +01:00
|
|
|
int x11_forwarding; /* If true, permit inet (spoofing) X11 fwd. */
|
|
|
|
|
int x11_display_offset; /* What DISPLAY number to start
|
|
|
|
|
* searching at */
|
2002-02-05 02:11:34 +01:00
|
|
|
int x11_use_localhost; /* If true, use localhost for fake X11 server. */
|
2000-06-07 11:55:44 +02:00
|
|
|
char *xauth_location; /* Location of xauth program */
|
2013-10-30 12:21:50 +01:00
|
|
|
int permit_tty; /* If false, deny pty allocation */
|
2014-07-04 01:00:04 +02:00
|
|
|
int permit_user_rc; /* If false, deny ~/.ssh/rc execution */
|
1999-11-24 14:26:21 +01:00
|
|
|
int strict_modes; /* If true, require string home dir modes. */
|
2003-12-17 06:31:10 +01:00
|
|
|
int tcp_keep_alive; /* If true, set SO_KEEPALIVE. */
|
2010-11-20 05:19:38 +01:00
|
|
|
int ip_qos_interactive; /* IP ToS/DSCP/class for interactive */
|
|
|
|
|
int ip_qos_bulk; /* IP ToS/DSCP/class for bulk traffic */
|
2001-02-15 04:01:59 +01:00
|
|
|
char *ciphers; /* Supported SSH2 ciphers. */
|
|
|
|
|
char *macs; /* Supported SSH2 macs. */
|
2010-09-24 14:11:14 +02:00
|
|
|
char *kex_algorithms; /* SSH2 kex methods in order of preference. */
|
2014-07-18 06:11:24 +02:00
|
|
|
struct ForwardOptions fwd_opts; /* forwarding options */
|
1999-11-24 14:26:21 +01:00
|
|
|
SyslogFacility log_facility; /* Facility for system logging. */
|
|
|
|
|
LogLevel log_level; /* Level for system logging. */
|
2020-10-16 15:26:13 +02:00
|
|
|
u_int num_log_verbose; /* Verbose log overrides */
|
|
|
|
|
char **log_verbose;
|
2001-04-13 01:34:34 +02:00
|
|
|
int hostbased_authentication; /* If true, permit ssh2 hostbased auth */
|
|
|
|
|
int hostbased_uses_name_from_packet_only; /* experimental */
|
2021-01-26 06:32:21 +01:00
|
|
|
char *hostbased_accepted_algos; /* Algos allowed for hostbased */
|
2015-07-10 08:21:53 +02:00
|
|
|
char *hostkeyalgorithms; /* SSH2 server key types */
|
2018-09-20 05:28:06 +02:00
|
|
|
char *ca_sign_algorithms; /* Allowed CA signature algorithms */
|
2000-11-13 12:57:25 +01:00
|
|
|
int pubkey_authentication; /* If true, permit ssh2 pubkey authentication. */
|
2021-01-22 03:44:58 +01:00
|
|
|
char *pubkey_accepted_algos; /* Signature algos allowed for pubkey */
|
2019-11-25 01:52:46 +01:00
|
|
|
int pubkey_auth_options; /* -1 or mask of PUBKEYAUTH_* flags */
|
1999-11-24 14:26:21 +01:00
|
|
|
int kerberos_authentication; /* If true, permit Kerberos
|
|
|
|
|
* authentication. */
|
|
|
|
|
int kerberos_or_local_passwd; /* If true, permit kerberos
|
|
|
|
|
* and any other password
|
|
|
|
|
* authentication mechanism,
|
|
|
|
|
* such as SecurID or
|
|
|
|
|
* /etc/passwd */
|
|
|
|
|
int kerberos_ticket_cleanup; /* If true, destroy ticket
|
|
|
|
|
* file on logout. */
|
2003-12-31 01:37:34 +01:00
|
|
|
int kerberos_get_afs_token; /* If true, try to get AFS token if
|
|
|
|
|
* authenticated with Kerberos. */
|
2003-08-26 03:49:55 +02:00
|
|
|
int gss_authentication; /* If true, permit GSSAPI authentication */
|
|
|
|
|
int gss_cleanup_creds; /* If true, destroy cred cache on logout */
|
2015-05-22 05:50:02 +02:00
|
|
|
int gss_strict_acceptor; /* If true, restrict the GSSAPI acceptor name */
|
1999-11-24 14:26:21 +01:00
|
|
|
int password_authentication; /* If true, permit password
|
|
|
|
|
* authentication. */
|
2000-10-14 07:23:11 +02:00
|
|
|
int kbd_interactive_authentication; /* If true, permit */
|
1999-11-24 14:26:21 +01:00
|
|
|
int permit_empty_passwd; /* If false, do not permit empty
|
|
|
|
|
* passwords. */
|
2002-08-01 03:28:38 +02:00
|
|
|
int permit_user_env; /* If true, read ~/.ssh/environment */
|
2020-07-06 01:59:45 +02:00
|
|
|
char *permit_user_env_allowlist; /* pattern-list of allowed env names */
|
2002-06-21 03:09:47 +02:00
|
|
|
int compression; /* If true, compression is allowed */
|
2012-12-02 23:50:54 +01:00
|
|
|
int allow_tcp_forwarding; /* One of FORWARD_* */
|
2014-07-18 06:11:24 +02:00
|
|
|
int allow_streamlocal_forwarding; /* One of FORWARD_* */
|
2008-05-19 06:57:41 +02:00
|
|
|
int allow_agent_forwarding;
|
2016-11-30 04:00:05 +01:00
|
|
|
int disable_forwarding;
|
2000-12-22 02:43:59 +01:00
|
|
|
u_int num_allow_users;
|
2017-10-20 03:52:50 +02:00
|
|
|
char **allow_users;
|
2000-12-22 02:43:59 +01:00
|
|
|
u_int num_deny_users;
|
2017-10-20 03:52:50 +02:00
|
|
|
char **deny_users;
|
2000-12-22 02:43:59 +01:00
|
|
|
u_int num_allow_groups;
|
2017-10-20 03:52:50 +02:00
|
|
|
char **allow_groups;
|
2000-12-22 02:43:59 +01:00
|
|
|
u_int num_deny_groups;
|
2017-10-20 03:52:50 +02:00
|
|
|
char **deny_groups;
|
2000-06-18 06:50:44 +02:00
|
|
|
|
2000-12-22 02:43:59 +01:00
|
|
|
u_int num_subsystems;
|
2023-09-07 01:35:35 +02:00
|
|
|
char **subsystem_name;
|
|
|
|
|
char **subsystem_command;
|
|
|
|
|
char **subsystem_args;
|
2000-07-11 09:31:38 +02:00
|
|
|
|
2004-05-02 14:11:30 +02:00
|
|
|
u_int num_accept_env;
|
2017-10-20 03:52:50 +02:00
|
|
|
char **accept_env;
|
2018-06-09 05:03:10 +02:00
|
|
|
u_int num_setenv;
|
|
|
|
|
char **setenv;
|
2004-05-02 14:11:30 +02:00
|
|
|
|
2000-08-18 05:59:06 +02:00
|
|
|
int max_startups_begin;
|
|
|
|
|
int max_startups_rate;
|
2000-07-11 09:31:38 +02:00
|
|
|
int max_startups;
|
2021-01-09 13:10:02 +01:00
|
|
|
int per_source_max_startups;
|
|
|
|
|
int per_source_masklen_ipv4;
|
|
|
|
|
int per_source_masklen_ipv6;
|
upstream: Add a facility to sshd(8) to penalise particular
problematic client behaviours, controlled by two new sshd_config(5) options:
PerSourcePenalties and PerSourcePenaltyExemptList.
When PerSourcePenalties are enabled, sshd(8) will monitor the exit
status of its child pre-auth session processes. Through the exit
status, it can observe situations where the session did not
authenticate as expected. These conditions include when the client
repeatedly attempted authentication unsucessfully (possibly indicating
an attack against one or more accounts, e.g. password guessing), or
when client behaviour caused sshd to crash (possibly indicating
attempts to exploit sshd).
When such a condition is observed, sshd will record a penalty of some
duration (e.g. 30 seconds) against the client's address. If this time
is above a minimum threshold specified by the PerSourcePenalties, then
connections from the client address will be refused (along with any
others in the same PerSourceNetBlockSize CIDR range).
Repeated offenses by the same client address will accrue greater
penalties, up to a configurable maximum. A PerSourcePenaltyExemptList
option allows certain address ranges to be exempt from all penalties.
We hope these options will make it significantly more difficult for
attackers to find accounts with weak/guessable passwords or exploit
bugs in sshd(8) itself.
PerSourcePenalties is off by default, but we expect to enable it
automatically in the near future.
much feedback markus@ and others, ok markus@
OpenBSD-Commit-ID: 89ded70eccb2b4926ef0366a4d58a693de366cca
2024-06-06 19:15:25 +02:00
|
|
|
char *per_source_penalty_exempt;
|
|
|
|
|
struct per_source_penalty per_source_penalty;
|
2004-05-24 02:36:23 +02:00
|
|
|
int max_authtries;
|
2008-05-19 07:34:50 +02:00
|
|
|
int max_sessions;
|
2001-01-09 01:35:42 +01:00
|
|
|
char *banner; /* SSH-2 banner message */
|
2003-06-03 02:25:48 +02:00
|
|
|
int use_dns;
|
2001-04-14 01:28:01 +02:00
|
|
|
int client_alive_interval; /*
|
2001-12-21 04:45:46 +01:00
|
|
|
* poke the client this often to
|
|
|
|
|
* see if it's still there
|
2001-04-14 01:28:01 +02:00
|
|
|
*/
|
|
|
|
|
int client_alive_count_max; /*
|
2001-09-12 18:40:05 +02:00
|
|
|
* If the client is unresponsive
|
|
|
|
|
* for this many intervals above,
|
2001-12-21 04:45:46 +01:00
|
|
|
* disconnect the session
|
2001-04-14 01:28:01 +02:00
|
|
|
*/
|
2001-07-04 20:37:20 +02:00
|
|
|
|
2017-10-20 03:52:50 +02:00
|
|
|
u_int num_authkeys_files; /* Files containing public keys */
|
|
|
|
|
char **authorized_keys_files;
|
2005-12-13 09:29:02 +01:00
|
|
|
|
2006-07-24 06:06:47 +02:00
|
|
|
char *adm_forced_command;
|
|
|
|
|
|
2003-05-14 07:11:48 +02:00
|
|
|
int use_pam; /* Enable auth via PAM */
|
2024-06-14 06:19:23 +02:00
|
|
|
char *pam_service_name;
|
2005-12-13 09:29:02 +01:00
|
|
|
|
|
|
|
|
int permit_tun;
|
2006-07-24 06:08:13 +02:00
|
|
|
|
2018-06-06 20:22:41 +02:00
|
|
|
char **permitted_opens; /* May also be one of PERMITOPEN_* */
|
|
|
|
|
u_int num_permitted_opens;
|
2018-06-06 20:23:32 +02:00
|
|
|
char **permitted_listens; /* May also be one of PERMITOPEN_* */
|
|
|
|
|
u_int num_permitted_listens;
|
2008-02-10 12:40:12 +01:00
|
|
|
|
|
|
|
|
char *chroot_directory;
|
2010-03-04 11:53:35 +01:00
|
|
|
char *revoked_keys_file;
|
|
|
|
|
char *trusted_user_ca_keys;
|
2012-10-30 22:58:58 +01:00
|
|
|
char *authorized_keys_command;
|
|
|
|
|
char *authorized_keys_command_user;
|
2015-05-21 08:43:30 +02:00
|
|
|
char *authorized_principals_file;
|
|
|
|
|
char *authorized_principals_command;
|
|
|
|
|
char *authorized_principals_command_user;
|
2012-04-22 03:24:43 +02:00
|
|
|
|
2013-05-16 12:29:28 +02:00
|
|
|
int64_t rekey_limit;
|
|
|
|
|
int rekey_interval;
|
|
|
|
|
|
2012-04-22 03:24:43 +02:00
|
|
|
char *version_addendum; /* Appended to SSH banner */
|
2012-11-04 13:21:40 +01:00
|
|
|
|
|
|
|
|
u_int num_auth_methods;
|
2017-10-20 03:52:50 +02:00
|
|
|
char **auth_methods;
|
2014-12-21 23:27:55 +01:00
|
|
|
|
|
|
|
|
int fingerprint_hash;
|
2017-06-24 08:34:38 +02:00
|
|
|
int expose_userauth_info;
|
2018-04-13 05:57:26 +02:00
|
|
|
u_int64_t timing_secret;
|
2019-12-15 19:57:30 +01:00
|
|
|
char *sk_provider;
|
2022-09-17 12:34:29 +02:00
|
|
|
int required_rsa_size; /* minimum size of RSA keys */
|
2023-01-06 03:47:18 +01:00
|
|
|
|
|
|
|
|
char **channel_timeouts; /* inactivity timeout by channel type */
|
|
|
|
|
u_int num_channel_timeouts;
|
2023-01-17 10:44:48 +01:00
|
|
|
|
|
|
|
|
int unused_connection_timeout;
|
2024-05-17 02:30:23 +02:00
|
|
|
|
|
|
|
|
char *sshd_session_path;
|
1999-11-24 14:26:21 +01:00
|
|
|
} ServerOptions;
|
1999-10-27 05:42:43 +02:00
|
|
|
|
2012-05-19 11:37:01 +02:00
|
|
|
/* Information about the incoming connection as used by Match */
|
|
|
|
|
struct connection_info {
|
|
|
|
|
const char *user;
|
|
|
|
|
const char *host; /* possibly resolved hostname */
|
2021-04-03 07:54:14 +02:00
|
|
|
const char *address; /* remote address */
|
2012-05-19 11:37:01 +02:00
|
|
|
const char *laddress; /* local address */
|
|
|
|
|
int lport; /* local port */
|
2017-10-25 02:19:47 +02:00
|
|
|
const char *rdomain; /* routing domain if available */
|
2019-04-18 20:56:16 +02:00
|
|
|
int test; /* test mode, allow some attributes to be
|
|
|
|
|
* unspecified */
|
2012-05-19 11:37:01 +02:00
|
|
|
};
|
|
|
|
|
|
2020-01-31 23:42:45 +01:00
|
|
|
/* List of included files for re-exec from the parsed configuration */
|
|
|
|
|
struct include_item {
|
|
|
|
|
char *selector;
|
|
|
|
|
char *filename;
|
|
|
|
|
struct sshbuf *contents;
|
|
|
|
|
TAILQ_ENTRY(include_item) entry;
|
|
|
|
|
};
|
|
|
|
|
TAILQ_HEAD(include_list, include_item);
|
|
|
|
|
|
2012-05-19 11:37:01 +02:00
|
|
|
|
2011-05-20 11:04:14 +02:00
|
|
|
/*
|
|
|
|
|
* These are string config options that must be copied between the
|
|
|
|
|
* Match sub-config and the main config, and must be sent from the
|
2020-07-06 01:59:45 +02:00
|
|
|
* privsep child to the privsep master. We use a macro to ensure all
|
2011-05-20 11:04:14 +02:00
|
|
|
* the options are copied and the copies are done in the correct order.
|
2013-12-05 04:07:27 +01:00
|
|
|
*
|
|
|
|
|
* NB. an option must appear in servconf.c:copy_set_server_options() or
|
|
|
|
|
* COPY_MATCH_STRING_OPTS here but never both.
|
2011-05-20 11:04:14 +02:00
|
|
|
*/
|
|
|
|
|
#define COPY_MATCH_STRING_OPTS() do { \
|
|
|
|
|
M_CP_STROPT(banner); \
|
|
|
|
|
M_CP_STROPT(trusted_user_ca_keys); \
|
|
|
|
|
M_CP_STROPT(revoked_keys_file); \
|
2013-01-09 05:56:45 +01:00
|
|
|
M_CP_STROPT(authorized_keys_command); \
|
|
|
|
|
M_CP_STROPT(authorized_keys_command_user); \
|
2015-05-21 08:43:30 +02:00
|
|
|
M_CP_STROPT(authorized_principals_file); \
|
|
|
|
|
M_CP_STROPT(authorized_principals_command); \
|
|
|
|
|
M_CP_STROPT(authorized_principals_command_user); \
|
2021-01-26 06:32:21 +01:00
|
|
|
M_CP_STROPT(hostbased_accepted_algos); \
|
2021-01-22 03:44:58 +01:00
|
|
|
M_CP_STROPT(pubkey_accepted_algos); \
|
2018-09-20 05:28:06 +02:00
|
|
|
M_CP_STROPT(ca_sign_algorithms); \
|
2017-10-25 02:17:08 +02:00
|
|
|
M_CP_STROPT(routing_domain); \
|
2020-07-06 01:59:45 +02:00
|
|
|
M_CP_STROPT(permit_user_env_allowlist); \
|
2024-06-14 06:19:23 +02:00
|
|
|
M_CP_STROPT(pam_service_name); \
|
2011-05-29 13:39:36 +02:00
|
|
|
M_CP_STRARRAYOPT(authorized_keys_files, num_authkeys_files); \
|
2012-06-20 13:53:58 +02:00
|
|
|
M_CP_STRARRAYOPT(allow_users, num_allow_users); \
|
|
|
|
|
M_CP_STRARRAYOPT(deny_users, num_deny_users); \
|
|
|
|
|
M_CP_STRARRAYOPT(allow_groups, num_allow_groups); \
|
|
|
|
|
M_CP_STRARRAYOPT(deny_groups, num_deny_groups); \
|
|
|
|
|
M_CP_STRARRAYOPT(accept_env, num_accept_env); \
|
2020-10-29 04:13:06 +01:00
|
|
|
M_CP_STRARRAYOPT(setenv, num_setenv); \
|
2012-11-04 13:21:40 +01:00
|
|
|
M_CP_STRARRAYOPT(auth_methods, num_auth_methods); \
|
2017-10-20 03:52:50 +02:00
|
|
|
M_CP_STRARRAYOPT(permitted_opens, num_permitted_opens); \
|
2018-06-06 20:23:32 +02:00
|
|
|
M_CP_STRARRAYOPT(permitted_listens, num_permitted_listens); \
|
2023-01-06 03:47:18 +01:00
|
|
|
M_CP_STRARRAYOPT(channel_timeouts, num_channel_timeouts); \
|
2020-10-16 15:26:13 +02:00
|
|
|
M_CP_STRARRAYOPT(log_verbose, num_log_verbose); \
|
2023-09-07 01:35:35 +02:00
|
|
|
M_CP_STRARRAYOPT(subsystem_name, num_subsystems); \
|
|
|
|
|
M_CP_STRARRAYOPT(subsystem_command, num_subsystems); \
|
|
|
|
|
M_CP_STRARRAYOPT(subsystem_args, num_subsystems); \
|
2011-05-20 11:04:14 +02:00
|
|
|
} while (0)
|
|
|
|
|
|
2001-07-04 06:46:56 +02:00
|
|
|
void initialize_server_options(ServerOptions *);
|
|
|
|
|
void fill_default_server_options(ServerOptions *);
|
2006-07-12 14:34:17 +02:00
|
|
|
int process_server_config_line(ServerOptions *, char *, const char *, int,
|
2021-04-03 08:18:40 +02:00
|
|
|
int *, struct connection_info *, struct include_list *includes);
|
2018-07-09 23:26:02 +02:00
|
|
|
void load_server_config(const char *, struct sshbuf *);
|
|
|
|
|
void parse_server_config(ServerOptions *, const char *, struct sshbuf *,
|
2022-03-18 05:04:11 +01:00
|
|
|
struct include_list *includes, struct connection_info *, int);
|
2020-01-31 23:42:45 +01:00
|
|
|
void parse_server_match_config(ServerOptions *,
|
2021-04-03 08:18:40 +02:00
|
|
|
struct include_list *includes, struct connection_info *);
|
2012-05-19 11:37:01 +02:00
|
|
|
int parse_server_match_testspec(struct connection_info *, char *);
|
2023-09-07 01:35:35 +02:00
|
|
|
void servconf_merge_subsystems(ServerOptions *, ServerOptions *);
|
2007-02-19 12:25:37 +01:00
|
|
|
void copy_set_server_options(ServerOptions *, ServerOptions *, int);
|
2008-06-10 15:01:51 +02:00
|
|
|
void dump_config(ServerOptions *);
|
2010-01-13 12:44:29 +01:00
|
|
|
char *derelativise_path(const char *);
|
2017-10-20 03:52:50 +02:00
|
|
|
void servconf_add_hostkey(const char *, const int,
|
2018-11-19 05:12:32 +01:00
|
|
|
ServerOptions *, const char *path, int);
|
2017-10-20 03:52:50 +02:00
|
|
|
void servconf_add_hostcert(const char *, const int,
|
|
|
|
|
ServerOptions *, const char *path);
|
1999-10-27 05:42:43 +02:00
|
|
|
|
1999-11-24 14:26:21 +01:00
|
|
|
#endif /* SERVCONF_H */
|
