1/* $OpenBSD: ssh.h,v 1.71 2002/06/22 02:00:29 stevesk Exp $ */ 2 3#ifndef _SSH_H 4#define _SSH_H 5 6#ifdef __cplusplus 7extern "C" { 8#endif 9 10 11/* 12 * Author: Tatu Ylonen <ylo@cs.hut.fi> 13 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 14 * All rights reserved 15 * 16 * As far as I am concerned, the code I have written for this software 17 * can be used freely for any purpose. Any derived versions of this 18 * software must be clearly marked as such, and if the derived work is 19 * incompatible with the protocol description in the RFC file, it must be 20 * called by a name other than "ssh" or "Secure Shell". 21 */ 22/* 23 * Copyright 2009 Sun Microsystems, Inc. All rights reserved. 24 * Use is subject to license terms. 25 */ 26 27#include <netinet/in.h> /* For struct sockaddr_in */ 28#include <pwd.h> /* For struct pw */ 29#include <stdarg.h> /* For va_list */ 30#include <syslog.h> /* For LOG_AUTH and friends */ 31#include <sys/socket.h> /* For struct sockaddr_storage */ 32#include "fake-socket.h" /* For struct sockaddr_storage */ 33#ifdef HAVE_SYS_SELECT_H 34# include <sys/select.h> 35#endif 36 37/* Cipher used for encrypting authentication files. */ 38#define SSH_AUTHFILE_CIPHER SSH_CIPHER_3DES 39 40/* Default port number. */ 41#define SSH_DEFAULT_PORT 22 42 43/* Maximum number of TCP/IP ports forwarded per direction. */ 44#define SSH_MAX_FORWARDS_PER_DIRECTION 100 45 46/* 47 * Maximum number of RSA authentication identity files that can be specified 48 * in configuration files or on the command line. 49 */ 50#define SSH_MAX_IDENTITY_FILES 100 51 52/* 53 * Major protocol version. Different version indicates major incompatibility 54 * that prevents communication. 55 * 56 * Minor protocol version. Different version indicates minor incompatibility 57 * that does not prevent interoperation. 58 */ 59#define PROTOCOL_MAJOR_1 1 60#define PROTOCOL_MINOR_1 5 61 62/* We support both SSH1 and SSH2 */ 63#define PROTOCOL_MAJOR_2 2 64#define PROTOCOL_MINOR_2 0 65 66/* 67 * Name for the service. The port named by this service overrides the 68 * default port if present. 69 */ 70#define SSH_SERVICE_NAME "ssh" 71 72/* 73 * Name of the environment variable containing the process ID of the 74 * authentication agent. 75 */ 76#define SSH_AGENTPID_ENV_NAME "SSH_AGENT_PID" 77 78/* 79 * Name of the environment variable containing the pathname of the 80 * authentication socket. 81 */ 82#define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK" 83 84/* 85 * Environment variable for overwriting the default location of askpass 86 */ 87#define SSH_ASKPASS_ENV "SSH_ASKPASS" 88 89/* 90 * Force host key length and server key length to differ by at least this 91 * many bits. This is to make double encryption with rsaref work. 92 */ 93#define SSH_KEY_BITS_RESERVED 128 94 95/* 96 * Length of the session key in bytes. (Specified as 256 bits in the 97 * protocol.) 98 */ 99#define SSH_SESSION_KEY_LENGTH 32 100 101/* Name of Kerberos service for SSH to use. */ 102#define KRB4_SERVICE_NAME "rcmd" 103 104/* Used to identify ``EscapeChar none'' */ 105#define SSH_ESCAPECHAR_NONE -2 106 107/* 108 * unprivileged user when UsePrivilegeSeparation=yes; 109 * sshd will change its privileges to this user and its 110 * primary group. 111 */ 112#ifndef SSH_PRIVSEP_USER 113#define SSH_PRIVSEP_USER "sshd" 114#endif 115 116/* Minimum modulus size (n) for RSA keys. */ 117#define SSH_RSA_MINIMUM_MODULUS_SIZE 768 118 119/* Listen backlog for sshd, ssh-agent and forwarding sockets */ 120#define SSH_LISTEN_BACKLOG 128 121 122/* 123 * Do not display banner when in remote command mode only. Note that RFC 4254 124 * uses "exec" as a mode name for the channel opened for the execution of the 125 * given command. 126 */ 127#define SSH_NO_BANNER_IN_EXEC_MODE 2 128 129#ifdef __cplusplus 130} 131#endif 132 133#endif /* _SSH_H */ 134