freebsd-skq/readconf.h

172 lines
6.4 KiB
C
Raw Normal View History

2013-09-18 17:27:38 +00:00
/* $OpenBSD: readconf.h,v 1.95 2013/05/16 04:27:50 djm Exp $ */
2002-03-18 09:55:03 +00:00
2000-02-24 14:29:47 +00:00
/*
* Author: Tatu Ylonen <ylo@cs.hut.fi>
* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
* All rights reserved
* Functions for reading the configuration file.
2000-05-15 04:37:24 +00:00
*
* As far as I am concerned, the code I have written for this software
* can be used freely for any purpose. Any derived versions of this
* software must be clearly marked as such, and if the derived work is
* incompatible with the protocol description in the RFC file, it must be
* called by a name other than "ssh" or "Secure Shell".
2000-02-24 14:29:47 +00:00
*/
#ifndef READCONF_H
#define READCONF_H
/* Data structure for representing a forwarding request. */
typedef struct {
2005-06-05 15:40:50 +00:00
char *listen_host; /* Host (address) to listen on. */
2009-02-24 18:49:27 +00:00
int listen_port; /* Port to forward. */
2005-06-05 15:40:50 +00:00
char *connect_host; /* Host to connect. */
2009-02-24 18:49:27 +00:00
int connect_port; /* Port to connect on connect_host. */
2010-11-08 10:45:44 +00:00
int allocated_port; /* Dynamically allocated listen port */
2012-08-29 15:46:01 +00:00
int handle; /* Handle for dynamic listen ports */
2000-02-24 14:29:47 +00:00
} Forward;
/* Data structure for representing option data. */
2011-09-28 08:14:41 +00:00
#define MAX_SEND_ENV 256
#define SSH_MAX_HOSTS_FILES 256
2004-10-28 16:03:53 +00:00
2000-02-24 14:29:47 +00:00
typedef struct {
int forward_agent; /* Forward authentication agent. */
int forward_x11; /* Forward X11 display. */
2010-11-08 10:45:44 +00:00
int forward_x11_timeout; /* Expiration for Cookies */
2004-02-26 10:38:49 +00:00
int forward_x11_trusted; /* Trust Forward X11 display. */
2006-09-30 13:29:51 +00:00
int exit_on_forward_failure; /* Exit if bind(2) fails for -L/-R */
char *xauth_location; /* Location for xauth program */
2000-02-24 14:29:47 +00:00
int gateway_ports; /* Allow remote connects to forwarded ports. */
int use_privileged_port; /* Don't use privileged port if false. */
int rhosts_rsa_authentication; /* Try rhosts with RSA
* authentication. */
int rsa_authentication; /* Try RSA authentication. */
int pubkey_authentication; /* Try ssh2 pubkey authentication. */
int hostbased_authentication; /* ssh2's rhosts_rsa */
2002-03-18 09:55:03 +00:00
int challenge_response_authentication;
/* Try S/Key or TIS, authentication. */
2004-01-07 11:10:17 +00:00
int gss_authentication; /* Try GSS authentication */
int gss_deleg_creds; /* Delegate GSS credentials */
2000-02-24 14:29:47 +00:00
int password_authentication; /* Try password
* authentication. */
int kbd_interactive_authentication; /* Try keyboard-interactive auth. */
char *kbd_interactive_devices; /* Keyboard-interactive auth devices. */
2009-02-24 18:49:27 +00:00
int zero_knowledge_password_authentication; /* Try jpake */
2000-02-24 14:29:47 +00:00
int batch_mode; /* Batch mode: do not ask for passwords. */
int check_host_ip; /* Also keep track of keys for IP address */
int strict_host_key_checking; /* Strict host key checking. */
int compression; /* Compress packets in both directions. */
int compression_level; /* Compression level 1 (fast) to 9
* (best). */
2004-02-26 10:38:49 +00:00
int tcp_keep_alive; /* Set SO_KEEPALIVE. */
2011-02-17 11:47:40 +00:00
int ip_qos_interactive; /* IP ToS/DSCP/class for interactive */
int ip_qos_bulk; /* IP ToS/DSCP/class for bulk traffic */
2000-02-24 14:29:47 +00:00
LogLevel log_level; /* Level for logging. */
int port; /* Port to connect. */
2004-01-07 11:10:17 +00:00
int address_family;
2000-02-24 14:29:47 +00:00
int connection_attempts; /* Max attempts (seconds) before
* giving up */
2004-01-07 11:10:17 +00:00
int connection_timeout; /* Max time (seconds) before
2004-02-26 10:38:49 +00:00
* aborting connection attempt */
2000-02-24 14:29:47 +00:00
int number_of_password_prompts; /* Max number of password
* prompts. */
int cipher; /* Cipher to use. */
2000-05-15 04:37:24 +00:00
char *ciphers; /* SSH2 ciphers in order of preference. */
char *macs; /* SSH2 macs in order of preference. */
char *hostkeyalgorithms; /* SSH2 server key types in order of preference. */
2011-02-17 11:47:40 +00:00
char *kex_algorithms; /* SSH2 kex methods in order of preference. */
2000-05-15 04:37:24 +00:00
int protocol; /* Protocol in order of preference. */
2000-02-24 14:29:47 +00:00
char *hostname; /* Real host to connect. */
char *host_key_alias; /* hostname alias for .ssh/known_hosts */
2000-02-24 14:29:47 +00:00
char *proxy_command; /* Proxy command for connecting the host. */
char *user; /* User to log in as. */
int escape_char; /* Escape character; -2 = none */
2011-09-28 08:14:41 +00:00
u_int num_system_hostfiles; /* Paths for /etc/ssh/ssh_known_hosts */
char *system_hostfiles[SSH_MAX_HOSTS_FILES];
u_int num_user_hostfiles; /* Path for $HOME/.ssh/known_hosts */
char *user_hostfiles[SSH_MAX_HOSTS_FILES];
char *preferred_authentications;
2002-03-18 09:55:03 +00:00
char *bind_address; /* local socket address for connection to sshd */
2010-03-08 11:19:52 +00:00
char *pkcs11_provider; /* PKCS#11 provider */
2004-01-07 11:10:17 +00:00
int verify_host_key_dns; /* Verify host key using DNS */
2000-02-24 14:29:47 +00:00
int num_identity_files; /* Number of files for RSA/DSA identities. */
2000-02-24 14:29:47 +00:00
char *identity_files[SSH_MAX_IDENTITY_FILES];
int identity_file_userprovided[SSH_MAX_IDENTITY_FILES];
Key *identity_keys[SSH_MAX_IDENTITY_FILES];
2000-02-24 14:29:47 +00:00
/* Local TCP/IP forward requests. */
int num_local_forwards;
2010-11-08 10:45:44 +00:00
Forward *local_forwards;
2000-02-24 14:29:47 +00:00
/* Remote TCP/IP forward requests. */
int num_remote_forwards;
2010-11-08 10:45:44 +00:00
Forward *remote_forwards;
2002-03-18 09:55:03 +00:00
int clear_forwardings;
int enable_ssh_keysign;
int64_t rekey_limit;
2013-09-18 17:27:38 +00:00
int rekey_interval;
2002-03-18 09:55:03 +00:00
int no_host_authentication_for_localhost;
2004-04-20 09:35:04 +00:00
int identities_only;
2004-10-28 16:03:53 +00:00
int server_alive_interval;
2004-02-26 10:38:49 +00:00
int server_alive_count_max;
2004-10-28 16:03:53 +00:00
int num_send_env;
char *send_env[MAX_SEND_ENV];
char *control_path;
int control_master;
2010-11-08 10:45:44 +00:00
int control_persist; /* ControlPersist flag */
int control_persist_timeout; /* ControlPersist timeout (seconds) */
2005-06-05 15:40:50 +00:00
int hash_known_hosts;
2006-03-22 19:46:12 +00:00
int tun_open; /* tun(4) */
int tun_local; /* force tun device (optional) */
int tun_remote; /* force tun device (optional) */
char *local_command;
int permit_local_command;
2008-07-23 09:33:08 +00:00
int visual_host_key;
2006-03-22 19:46:12 +00:00
2009-10-01 15:19:37 +00:00
int use_roaming;
2011-09-28 08:14:41 +00:00
int request_tty;
2013-09-18 17:27:38 +00:00
char *ignored_unknown; /* Pattern list of unknown tokens to ignore */
2000-02-24 14:29:47 +00:00
} Options;
2005-09-03 06:59:33 +00:00
#define SSHCTL_MASTER_NO 0
#define SSHCTL_MASTER_YES 1
#define SSHCTL_MASTER_AUTO 2
#define SSHCTL_MASTER_ASK 3
#define SSHCTL_MASTER_AUTO_ASK 4
2000-02-24 14:29:47 +00:00
2011-09-28 08:14:41 +00:00
#define REQUEST_TTY_AUTO 0
#define REQUEST_TTY_NO 1
#define REQUEST_TTY_YES 2
#define REQUEST_TTY_FORCE 3
#define SSHCONF_CHECKPERM 1 /* check permissions on config file */
#define SSHCONF_USERCONF 2 /* user provided config file not system */
2002-03-18 09:55:03 +00:00
void initialize_options(Options *);
void fill_default_options(Options *);
2004-10-28 16:03:53 +00:00
int read_config_file(const char *, const char *, Options *, int);
2009-02-24 18:49:27 +00:00
int parse_forward(Forward *, const char *, int, int);
2000-02-24 14:29:47 +00:00
2000-05-15 04:37:24 +00:00
int
process_config_line(Options *, const char *, char *, const char *, int, int *,
int);
2000-02-24 14:29:47 +00:00
2005-06-05 15:40:50 +00:00
void add_local_forward(Options *, const Forward *);
void add_remote_forward(Options *, const Forward *);
void add_identity_file(Options *, const char *, const char *, int);
2000-02-24 14:29:47 +00:00
#endif /* READCONF_H */