GUACAMOLE-527: Add basic check for known hosts file for SSH connections.

2018-03-25 17:34:29 -04:00 · 2018-03-25 17:34:29 -04:00 · 171bae1f5c
commit 171bae1f5c
parent 334849e2a6
1 changed files with 42 additions and 0 deletions
--- a/src/common-ssh/ssh.c
+++ b/src/common-ssh/ssh.c
@ -35,6 +35,7 @@
 #include <netdb.h>
 #include <netinet/in.h>
 #include <pthread.h>
+#include <pwd.h>
 #include <stddef.h>
 #include <stdlib.h>
 #include <string.h>
@ -509,6 +510,47 @@ guac_common_ssh_session* guac_common_ssh_create_session(guac_client* client,
        return NULL;
    }

+    /* Check known_hosts */
+    size_t len;
+    int type;
+    struct passwd *pw = getpwuid(getuid());
+    char *homedir = pw->pw_dir;
+    char *known_hosts = strcat(homedir, "/.ssh/known_hosts");
+    LIBSSH2_KNOWNHOSTS *ssh_known_hosts = libssh2_knownhost_init(session);
+
+    libssh2_knownhost_readfile(ssh_known_hosts, known_hosts, LIBSSH2_KNOWNHOST_FILE_OPENSSH);
+    const char *fingerprint = libssh2_session_hostkey(session, &len, &type);
+
+    if (fingerprint) {
+        struct libssh2_knownhost *host;
+        int check = libssh2_knownhost_checkp(ssh_known_hosts, hostname, atoi(port),
+                                            fingerprint, len,
+                                            LIBSSH2_KNOWNHOST_TYPE_PLAIN|
+                                            LIBSSH2_KNOWNHOST_KEYENC_RAW,
+                                            &host);
+
+        switch (check) {
+            case LIBSSH2_KNOWNHOST_CHECK_MATCH:
+                guac_client_log(client, GUAC_LOG_DEBUG,
+                    "Host key match found.");
+                break;
+            case LIBSSH2_KNOWNHOST_CHECK_NOTFOUND:
+                guac_client_abort(client, GUAC_PROTOCOL_STATUS_SERVER_ERROR,
+                    "Host key not found in known hosts file.");
+                break;
+            case LIBSSH2_KNOWNHOST_CHECK_MISMATCH:
+                guac_client_abort(client, GUAC_PROTOCOL_STATUS_SERVER_ERROR,
+                    "Host key does not match host entry.");
+                break;
+            case LIBSSH2_KNOWNHOST_CHECK_FAILURE:
+            default:
+                guac_client_abort(client, GUAC_PROTOCOL_STATUS_SERVER_ERROR,
+                    "Host could not be checked against known hosts.");
+        }
+
+
+    }
+
    /* Perform handshake */
    if (libssh2_session_handshake(session, fd)) {
        guac_client_abort(client, GUAC_PROTOCOL_STATUS_UPSTREAM_ERROR,