auth-chall.c revision 98941
1/* 2 * Copyright (c) 2001 Markus Friedl. All rights reserved. 3 * 4 * Redistribution and use in source and binary forms, with or without 5 * modification, are permitted provided that the following conditions 6 * are met: 7 * 1. Redistributions of source code must retain the above copyright 8 * notice, this list of conditions and the following disclaimer. 9 * 2. Redistributions in binary form must reproduce the above copyright 10 * notice, this list of conditions and the following disclaimer in the 11 * documentation and/or other materials provided with the distribution. 12 * 13 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 14 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 15 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 16 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 17 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 18 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 19 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 20 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 21 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 22 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 23 */ 24 25#include "includes.h" 26RCSID("$OpenBSD: auth-chall.c,v 1.8 2001/05/18 14:13:28 markus Exp $"); 27 28#include "auth.h" 29#include "log.h" 30#include "xmalloc.h" 31 32/* limited protocol v1 interface to kbd-interactive authentication */ 33 34extern KbdintDevice *devices[]; 35static KbdintDevice *device; 36 37char * 38get_challenge(Authctxt *authctxt) 39{ 40 char *challenge, *name, *info, **prompts; 41 u_int i, numprompts; 42 u_int *echo_on; 43 44 device = devices[0]; /* we always use the 1st device for protocol 1 */ 45 if (device == NULL) 46 return NULL; 47 if ((authctxt->kbdintctxt = device->init_ctx(authctxt)) == NULL) 48 return NULL; 49 if (device->query(authctxt->kbdintctxt, &name, &info, 50 &numprompts, &prompts, &echo_on)) { 51 device->free_ctx(authctxt->kbdintctxt); 52 authctxt->kbdintctxt = NULL; 53 return NULL; 54 } 55 if (numprompts < 1) 56 fatal("get_challenge: numprompts < 1"); 57 challenge = xstrdup(prompts[0]); 58 for (i = 0; i < numprompts; i++) 59 xfree(prompts[i]); 60 xfree(prompts); 61 xfree(name); 62 xfree(echo_on); 63 xfree(info); 64 65 return (challenge); 66} 67int 68verify_response(Authctxt *authctxt, const char *response) 69{ 70 char *resp[1]; 71 int res; 72 73 if (device == NULL) 74 return 0; 75 if (authctxt->kbdintctxt == NULL) 76 return 0; 77 resp[0] = (char *)response; 78 res = device->respond(authctxt->kbdintctxt, 1, resp); 79 device->free_ctx(authctxt->kbdintctxt); 80 authctxt->kbdintctxt = NULL; 81 return res ? 0 : 1; 82} 83