mirror of
https://git.tartarus.org/simon/putty.git
synced 2025-01-09 17:38:00 +00:00
21d4754b6a
Now we offer the OpenSSH certificate key types in our KEXINIT host key algorithm list, so that if the server has a certificate, they can send it to us. There's a new storage.h abstraction for representing a list of trusted host CAs, and which ones are trusted to certify hosts for what domains. This is stored outside the normal saved session data, because the whole point of host certificates is to avoid per-host faffing. Configuring this set of trusted CAs is done via a new GUI dialog box, separate from the main PuTTY config box (because it modifies a single set of settings across all saved sessions), which you can launch by clicking a button in the 'Host keys' pane. The GUI is pretty crude for the moment, and very much at a 'just about usable' stage right now. It will want some polishing. If we have no CA configured that matches the hostname, we don't offer to receive certified host keys in the first place. So for existing users who haven't set any of this up yet, nothing will immediately change. Currently, if we do offer to receive certified host keys and the server presents one signed by a CA we don't trust, PuTTY will bomb out unconditionally with an error, instead of offering a confirmation box. That's an unfinished part which I plan to fix before this goes into a release.
140 lines
4.9 KiB
C
140 lines
4.9 KiB
C
/*
|
|
* storage.h: interface defining functions for storage and recovery
|
|
* of PuTTY's persistent data.
|
|
*/
|
|
|
|
#ifndef PUTTY_STORAGE_H
|
|
#define PUTTY_STORAGE_H
|
|
|
|
/* ----------------------------------------------------------------------
|
|
* Functions to save and restore PuTTY sessions. Note that this is
|
|
* only the low-level code to do the reading and writing. The
|
|
* higher-level code that translates an internal Conf structure into
|
|
* a set of (key,value) pairs in their external storage format is
|
|
* elsewhere, since it doesn't (mostly) change between platforms.
|
|
*/
|
|
|
|
/*
|
|
* Write a saved session. The caller is expected to call
|
|
* open_setting_w() to get a `void *' handle, then pass that to a
|
|
* number of calls to write_setting_s() and write_setting_i(), and
|
|
* then close it using close_settings_w(). At the end of this call
|
|
* sequence the settings should have been written to the PuTTY
|
|
* persistent storage area.
|
|
*
|
|
* A given key will be written at most once while saving a session.
|
|
* Keys may be up to 255 characters long. String values have no length
|
|
* limit.
|
|
*
|
|
* Any returned error message must be freed after use.
|
|
*/
|
|
settings_w *open_settings_w(const char *sessionname, char **errmsg);
|
|
void write_setting_s(settings_w *handle, const char *key, const char *value);
|
|
void write_setting_i(settings_w *handle, const char *key, int value);
|
|
void write_setting_filename(settings_w *handle,
|
|
const char *key, Filename *value);
|
|
void write_setting_fontspec(settings_w *handle,
|
|
const char *key, FontSpec *font);
|
|
void close_settings_w(settings_w *handle);
|
|
|
|
/*
|
|
* Read a saved session. The caller is expected to call
|
|
* open_setting_r() to get a `void *' handle, then pass that to a
|
|
* number of calls to read_setting_s() and read_setting_i(), and
|
|
* then close it using close_settings_r().
|
|
*
|
|
* read_setting_s() returns a dynamically allocated string which the
|
|
* caller must free. read_setting_filename() and
|
|
* read_setting_fontspec() likewise return dynamically allocated
|
|
* structures.
|
|
*
|
|
* If a particular string setting is not present in the session,
|
|
* read_setting_s() can return NULL, in which case the caller
|
|
* should invent a sensible default. If an integer setting is not
|
|
* present, read_setting_i() returns its provided default.
|
|
*/
|
|
settings_r *open_settings_r(const char *sessionname);
|
|
char *read_setting_s(settings_r *handle, const char *key);
|
|
int read_setting_i(settings_r *handle, const char *key, int defvalue);
|
|
Filename *read_setting_filename(settings_r *handle, const char *key);
|
|
FontSpec *read_setting_fontspec(settings_r *handle, const char *key);
|
|
void close_settings_r(settings_r *handle);
|
|
|
|
/*
|
|
* Delete a whole saved session.
|
|
*/
|
|
void del_settings(const char *sessionname);
|
|
|
|
/*
|
|
* Enumerate all saved sessions.
|
|
*/
|
|
settings_e *enum_settings_start(void);
|
|
bool enum_settings_next(settings_e *handle, strbuf *out);
|
|
void enum_settings_finish(settings_e *handle);
|
|
|
|
/* ----------------------------------------------------------------------
|
|
* Functions to access PuTTY's host key database.
|
|
*/
|
|
|
|
/*
|
|
* See if a host key matches the database entry. Return values can
|
|
* be 0 (entry matches database), 1 (entry is absent in database),
|
|
* or 2 (entry exists in database and is different).
|
|
*/
|
|
int check_stored_host_key(const char *hostname, int port,
|
|
const char *keytype, const char *key);
|
|
|
|
/*
|
|
* Write a host key into the database, overwriting any previous
|
|
* entry that might have been there.
|
|
*/
|
|
void store_host_key(const char *hostname, int port,
|
|
const char *keytype, const char *key);
|
|
|
|
/* ----------------------------------------------------------------------
|
|
* Functions to access PuTTY's configuration for trusted host
|
|
* certification authorities. This must be stored separately from the
|
|
* saved-session data, because the whole point is to avoid having to
|
|
* configure CAs separately per session.
|
|
*/
|
|
|
|
struct host_ca {
|
|
char *name;
|
|
strbuf *ca_public_key;
|
|
char **hostname_wildcards;
|
|
size_t n_hostname_wildcards;
|
|
};
|
|
|
|
host_ca_enum *enum_host_ca_start(void);
|
|
bool enum_host_ca_next(host_ca_enum *handle, strbuf *out);
|
|
void enum_host_ca_finish(host_ca_enum *handle);
|
|
|
|
host_ca *host_ca_load(const char *name);
|
|
char *host_ca_save(host_ca *); /* NULL on success, or dynamic error msg */
|
|
char *host_ca_delete(const char *name); /* likewise */
|
|
void host_ca_free(host_ca *);
|
|
|
|
/* ----------------------------------------------------------------------
|
|
* Functions to access PuTTY's random number seed file.
|
|
*/
|
|
|
|
typedef void (*noise_consumer_t) (void *data, int len);
|
|
|
|
/*
|
|
* Read PuTTY's random seed file and pass its contents to a noise
|
|
* consumer function.
|
|
*/
|
|
void read_random_seed(noise_consumer_t consumer);
|
|
|
|
/*
|
|
* Write PuTTY's random seed file from a given chunk of noise.
|
|
*/
|
|
void write_random_seed(void *data, int len);
|
|
|
|
/* ----------------------------------------------------------------------
|
|
* Cleanup function: remove all of PuTTY's persistent state.
|
|
*/
|
|
void cleanup_all(void);
|
|
|
|
#endif
|