Develop and Download Open Source Software

Tera Term

Browse Subversion Repository

/[ttssh2]/branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Contents of /branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Parent Directory Parent Directory | Revision Log Revision Log

Revision 2856 - (show annotations) (download) (as text)
Sun Mar 26 15:43:58 2006 UTC (18 years ago) by yutakakn
Original Path: ttssh2/trunk/ttxssh/ssh.h
File MIME type: text/x-chdr
File size: 14212 byte(s) 
SSH2のknown_hosts対応を追加した。
1 /*
2 Copyright (c) 1998-2001, Robert O'Callahan
3 All rights reserved.
4
5 Redistribution and use in source and binary forms, with or without modification,
6 are permitted provided that the following conditions are met:
7
8 Redistributions of source code must retain the above copyright notice, this list of
9 conditions and the following disclaimer.
10
11 Redistributions in binary form must reproduce the above copyright notice, this list
12 of conditions and the following disclaimer in the documentation and/or other materials
13 provided with the distribution.
14
15 The name of Robert O'Callahan may not be used to endorse or promote products derived from
16 this software without specific prior written permission.
17
18 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ``AS IS'' AND
19 ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
21 THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
22 EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
23 SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
25 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
26 SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27 */
28
29 /*
30 This code is copyright (C) 1998-1999 Robert O'Callahan.
31 See LICENSE.TXT for the license.
32 */
33
34 #ifndef __SSH_H
35 #define __SSH_H
36
37 #include "zlib.h"
38 #include <openssl/evp.h>
39
40
41 // yutaka
42 #define SSH2_USE
43
44
45 /* Some of this code has been adapted from Ian Goldberg's Pilot SSH */
46
47 typedef enum {
48 SSH_MSG_NONE, SSH_MSG_DISCONNECT, SSH_SMSG_PUBLIC_KEY, //2
49 SSH_CMSG_SESSION_KEY, SSH_CMSG_USER, SSH_CMSG_AUTH_RHOSTS, // 5
50 SSH_CMSG_AUTH_RSA, SSH_SMSG_AUTH_RSA_CHALLENGE,
51 SSH_CMSG_AUTH_RSA_RESPONSE, SSH_CMSG_AUTH_PASSWORD,
52 SSH_CMSG_REQUEST_PTY, // 10
53 SSH_CMSG_WINDOW_SIZE, SSH_CMSG_EXEC_SHELL,
54 SSH_CMSG_EXEC_CMD, SSH_SMSG_SUCCESS, SSH_SMSG_FAILURE,
55 SSH_CMSG_STDIN_DATA, SSH_SMSG_STDOUT_DATA, SSH_SMSG_STDERR_DATA,
56 SSH_CMSG_EOF, SSH_SMSG_EXITSTATUS,
57 SSH_MSG_CHANNEL_OPEN_CONFIRMATION, SSH_MSG_CHANNEL_OPEN_FAILURE,
58 SSH_MSG_CHANNEL_DATA, SSH_MSG_CHANNEL_INPUT_EOF,
59 SSH_MSG_CHANNEL_OUTPUT_CLOSED, SSH_MSG_OBSOLETED0,
60 SSH_SMSG_X11_OPEN, SSH_CMSG_PORT_FORWARD_REQUEST, SSH_MSG_PORT_OPEN,
61 SSH_CMSG_AGENT_REQUEST_FORWARDING, SSH_SMSG_AGENT_OPEN,
62 SSH_MSG_IGNORE, SSH_CMSG_EXIT_CONFIRMATION,
63 SSH_CMSG_X11_REQUEST_FORWARDING, SSH_CMSG_AUTH_RHOSTS_RSA,
64 SSH_MSG_DEBUG, SSH_CMSG_REQUEST_COMPRESSION,
65 SSH_CMSG_MAX_PACKET_SIZE, SSH_CMSG_AUTH_TIS,
66 SSH_SMSG_AUTH_TIS_CHALLENGE, SSH_CMSG_AUTH_TIS_RESPONSE,
67 SSH_CMSG_AUTH_KERBEROS, SSH_SMSG_AUTH_KERBEROS_RESPONSE
68 } SSHMessage;
69
70 typedef enum {
71 SSH_CIPHER_NONE, SSH_CIPHER_IDEA, SSH_CIPHER_DES, SSH_CIPHER_3DES,
72 SSH_CIPHER_TSS, SSH_CIPHER_RC4, SSH_CIPHER_BLOWFISH,
73 // for SSH2
74 SSH_CIPHER_3DES_CBC, SSH_CIPHER_AES128,
75 } SSHCipher;
76
77 //#define SSH_CIPHER_MAX SSH_CIPHER_BLOWFISH
78 #define SSH_CIPHER_MAX SSH_CIPHER_AES128
79
80 typedef enum {
81 SSH_AUTH_NONE, SSH_AUTH_RHOSTS, SSH_AUTH_RSA, SSH_AUTH_PASSWORD,
82 SSH_AUTH_RHOSTS_RSA, SSH_AUTH_TIS, SSH_AUTH_KERBEROS,
83 // for SSH2
84 SSH_AUTH_DSA,
85 } SSHAuthMethod;
86
87 /* we don't support Kerberos at this time */
88 //#define SSH_AUTH_MAX SSH_AUTH_TIS
89 #define SSH_AUTH_MAX SSH_AUTH_DSA
90
91 typedef enum {
92 SSH_GENERIC_AUTHENTICATION, SSH_TIS_AUTHENTICATION
93 } SSHAuthMode;
94
95 #define SSH_PROTOFLAG_SCREEN_NUMBER 1
96 #define SSH_PROTOFLAG_HOST_IN_FWD_OPEN 2
97
98 #define SSH_MAX_SEND_PACKET_SIZE 250000
99
100
101 /* SSH2 constants */
102
103 /* SSH2 messages */
104 #define SSH2_MSG_DISCONNECT 1
105 #define SSH2_MSG_IGNORE 2
106 #define SSH2_MSG_UNIMPLEMENTED 3
107 #define SSH2_MSG_DEBUG 4
108 #define SSH2_MSG_SERVICE_REQUEST 5
109 #define SSH2_MSG_SERVICE_ACCEPT 6
110
111 #define SSH2_MSG_KEXINIT 20
112 #define SSH2_MSG_NEWKEYS 21
113
114 #define SSH2_MSG_KEXDH_INIT 30
115 #define SSH2_MSG_KEXDH_REPLY 31
116
117 #define SSH2_MSG_KEX_DH_GEX_GROUP 31
118 #define SSH2_MSG_KEX_DH_GEX_INIT 32
119 #define SSH2_MSG_KEX_DH_GEX_REPLY 33
120 #define SSH2_MSG_KEX_DH_GEX_REQUEST 34
121
122 #define SSH2_MSG_USERAUTH_REQUEST 50
123 #define SSH2_MSG_USERAUTH_FAILURE 51
124 #define SSH2_MSG_USERAUTH_SUCCESS 52
125 #define SSH2_MSG_USERAUTH_BANNER 53
126
127 #define SSH2_MSG_USERAUTH_PK_OK 60
128 #define SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ 60
129 #define SSH2_MSG_USERAUTH_INFO_REQUEST 60
130 #define SSH2_MSG_USERAUTH_INFO_RESPONSE 61
131
132 #define SSH2_MSG_GLOBAL_REQUEST 80
133 #define SSH2_MSG_REQUEST_SUCCESS 81
134 #define SSH2_MSG_REQUEST_FAILURE 82
135 #define SSH2_MSG_CHANNEL_OPEN 90
136 #define SSH2_MSG_CHANNEL_OPEN_CONFIRMATION 91
137 #define SSH2_MSG_CHANNEL_OPEN_FAILURE 92
138 #define SSH2_MSG_CHANNEL_WINDOW_ADJUST 93
139 #define SSH2_MSG_CHANNEL_DATA 94
140 #define SSH2_MSG_CHANNEL_EXTENDED_DATA 95
141 #define SSH2_MSG_CHANNEL_EOF 96
142 #define SSH2_MSG_CHANNEL_CLOSE 97
143 #define SSH2_MSG_CHANNEL_REQUEST 98
144 #define SSH2_MSG_CHANNEL_SUCCESS 99
145 #define SSH2_MSG_CHANNEL_FAILURE 100
146
147 /* SSH2 miscellaneous constants */
148 #define SSH2_DISCONNECT_HOST_NOT_ALLOWED_TO_CONNECT 1
149 #define SSH2_DISCONNECT_PROTOCOL_ERROR 2
150 #define SSH2_DISCONNECT_KEY_EXCHANGE_FAILED 3
151 #define SSH2_DISCONNECT_HOST_AUTHENTICATION_FAILED 4
152 #define SSH2_DISCONNECT_MAC_ERROR 5
153 #define SSH2_DISCONNECT_COMPRESSION_ERROR 6
154 #define SSH2_DISCONNECT_SERVICE_NOT_AVAILABLE 7
155 #define SSH2_DISCONNECT_PROTOCOL_VERSION_NOT_SUPPORTED 8
156 #define SSH2_DISCONNECT_HOST_KEY_NOT_VERIFIABLE 9
157 #define SSH2_DISCONNECT_CONNECTION_LOST 10
158 #define SSH2_DISCONNECT_BY_APPLICATION 11
159
160 #define SSH2_OPEN_ADMINISTRATIVELY_PROHIBITED 1
161 #define SSH2_OPEN_CONNECT_FAILED 2
162 #define SSH2_OPEN_UNKNOWN_CHANNEL_TYPE 3
163 #define SSH2_OPEN_RESOURCE_SHORTAGE 4
164
165 // �L�[�����A���S���Y��
166 #define KEX_DH1 "diffie-hellman-group1-sha1"
167 #define KEX_DH14 "diffie-hellman-group14-sha1"
168 #define KEX_DHGEX "diffie-hellman-group-exchange-sha1"
169
170 enum kex_exchange {
171 KEX_DH_GRP1_SHA1,
172 KEX_DH_GRP14_SHA1,
173 KEX_DH_GEX_SHA1,
174 KEX_MAX
175 };
176
177 enum hostkey_type {
178 KEY_RSA1,
179 KEY_RSA,
180 KEY_DSA,
181 KEY_UNSPEC,
182 };
183
184 // ���L���C���f�b�N�X�� ssh2_macs[] ���������������B
185 enum hmac_type {
186 HMAC_SHA1,
187 HMAC_MD5,
188 HMAC_UNKNOWN
189 };
190
191 #define KEX_DEFAULT_KEX "diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1"
192
193 #define KEX_DEFAULT_PK_ALG "ssh-rsa,ssh-dss"
194 #define KEX_DEFAULT_ENCRYPT \
195 "aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour," \
196 "aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se," \
197 "aes128-ctr,aes192-ctr,aes256-ctr"
198 #define KEX_DEFAULT_MAC \
199 "hmac-md5,hmac-sha1,hmac-ripemd160," \
200 "hmac-ripemd160@openssh.com," \
201 "hmac-sha1-96,hmac-md5-96"
202 #define KEX_DEFAULT_COMP "none,zlib"
203 #define KEX_DEFAULT_LANG ""
204
205 /* Minimum modulus size (n) for RSA keys. */
206 #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
207
208
209 enum kex_init_proposals {
210 PROPOSAL_KEX_ALGS,
211 PROPOSAL_SERVER_HOST_KEY_ALGS,
212 PROPOSAL_ENC_ALGS_CTOS,
213 PROPOSAL_ENC_ALGS_STOC,
214 PROPOSAL_MAC_ALGS_CTOS,
215 PROPOSAL_MAC_ALGS_STOC,
216 PROPOSAL_COMP_ALGS_CTOS,
217 PROPOSAL_COMP_ALGS_STOC,
218 PROPOSAL_LANG_CTOS,
219 PROPOSAL_LANG_STOC,
220 PROPOSAL_MAX
221 };
222
223 struct Enc {
224 u_char *key;
225 u_char *iv;
226 unsigned int key_len;
227 unsigned int block_size;
228 };
229
230 struct Mac {
231 char *name;
232 int enabled;
233 const EVP_MD *md;
234 int mac_len;
235 u_char *key;
236 int key_len;
237 };
238
239 struct Comp {
240 int type;
241 int enabled;
242 char *name;
243 };
244
245 typedef struct {
246 struct Enc enc;
247 struct Mac mac;
248 struct Comp comp;
249 } Newkeys;
250
251 #define roundup(x, y) ((((x)+((y)-1))/(y))*(y))
252
253 enum kex_modes {
254 MODE_IN,
255 MODE_OUT,
256 MODE_MAX
257 };
258
259
260 // �z�X�g�L�[(SSH1, SSH2����)���f�[�^�\�� (2006.3.21 yutaka)
261 typedef struct Key {
262 // host key type
263 enum hostkey_type type;
264 // SSH2 RSA
265 RSA *rsa;
266 // SSH2 DSA
267 DSA *dsa;
268 // SSH1 RSA
269 int bits;
270 unsigned char *exp;
271 unsigned char *mod;
272 } Key;
273
274
275 /* The packet handler returns TRUE to keep the handler in place,
276 FALSE to remove the handler. */
277 typedef BOOL (* SSHPacketHandler)(PTInstVar pvar);
278
279 typedef struct _SSHPacketHandlerItem SSHPacketHandlerItem;
280 struct _SSHPacketHandlerItem {
281 SSHPacketHandler handler;
282 /* Circular list of handlers for given message */
283 SSHPacketHandlerItem FAR * next_for_message;
284 SSHPacketHandlerItem FAR * last_for_message;
285 /* Circular list of handlers in set */
286 SSHPacketHandlerItem FAR * next_in_set;
287 int active_for_message;
288 };
289
290 typedef struct {
291 char FAR * hostname;
292
293 int server_protocol_flags;
294 char FAR * server_ID;
295
296 /* This buffer is used to hold the outgoing data, and encrypted in-place
297 here if necessary. */
298 unsigned char FAR * outbuf;
299 long outbuflen;
300 /* This buffer is used by the SSH protocol processing to store uncompressed
301 packet data for compression. User data is never streamed through here;
302 it is compressed directly from the user's buffer. */
303 unsigned char FAR * precompress_outbuf;
304 long precompress_outbuflen;
305 /* this is the length of the packet data, including the type header */
306 long outgoing_packet_len;
307
308 /* This buffer is used by the SSH protocol processing to store decompressed
309 packet data. User data is never streamed through here; it is decompressed
310 directly to the user's buffer. */
311 unsigned char FAR * postdecompress_inbuf;
312 long postdecompress_inbuflen;
313
314 unsigned char FAR * payload;
315 long payload_grabbed;
316 long payloadlen;
317 long payload_datastart;
318 long payload_datalen;
319
320 uint32 receiver_sequence_number;
321 uint32 sender_sequence_number;
322
323 z_stream compress_stream;
324 z_stream decompress_stream;
325 BOOL compressing;
326 BOOL decompressing;
327 int compression_level;
328
329 SSHPacketHandlerItem FAR * packet_handlers[256];
330 int status_flags;
331
332 int win_cols;
333 int win_rows;
334 } SSHState;
335
336 #define STATUS_DONT_SEND_USER_NAME 0x01
337 #define STATUS_EXPECTING_COMPRESSION_RESPONSE 0x02
338 #define STATUS_DONT_SEND_CREDENTIALS 0x04
339 #define STATUS_HOST_OK 0x08
340 #define STATUS_INTERACTIVE 0x10
341 #define STATUS_IN_PARTIAL_ID_STRING 0x20
342
343 void SSH_init(PTInstVar pvar);
344 void SSH_open(PTInstVar pvar);
345 void SSH_notify_disconnecting(PTInstVar pvar, char FAR * reason);
346 /* SSH_handle_server_ID returns TRUE iff a valid ID string has been
347 received. If it returns FALSE, we need to keep looking for another
348 ID string. */
349 BOOL SSH_handle_server_ID(PTInstVar pvar, char FAR * ID, int ID_len);
350 /* SSH_handle_packet requires NO PAYLOAD on entry.
351 'len' is the size of the packet: payload + padding (+ CRC for SSHv1)
352 'padding' is the size of the padding.
353 'data' points to the start of the packet data (the length field)
354 */
355 void SSH_handle_packet(PTInstVar pvar, char FAR * data, int len, int padding);
356 void SSH_notify_win_size(PTInstVar pvar, int cols, int rows);
357 void SSH_notify_user_name(PTInstVar pvar);
358 void SSH_notify_cred(PTInstVar pvar);
359 void SSH_notify_host_OK(PTInstVar pvar);
360 void SSH_send(PTInstVar pvar, unsigned char const FAR * buf, int buflen);
361 /* SSH_extract_payload returns number of bytes extracted */
362 int SSH_extract_payload(PTInstVar pvar, unsigned char FAR * dest, int len);
363 void SSH_end(PTInstVar pvar);
364
365 void SSH_get_server_ID_info(PTInstVar pvar, char FAR * dest, int len);
366 void SSH_get_protocol_version_info(PTInstVar pvar, char FAR * dest, int len);
367 void SSH_get_compression_info(PTInstVar pvar, char FAR * dest, int len);
368
369 /* len must be <= SSH_MAX_SEND_PACKET_SIZE */
370 void SSH_channel_send(PTInstVar pvar, int channel_num,
371 uint32 remote_channel_num,
372 unsigned char FAR * buf, int len);
373 void SSH_fail_channel_open(PTInstVar pvar, uint32 remote_channel_num);
374 void SSH_confirm_channel_open(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
375 void SSH_channel_output_eof(PTInstVar pvar, uint32 remote_channel_num);
376 void SSH_channel_input_eof(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
377 void SSH_request_forwarding(PTInstVar pvar, int from_server_port,
378 char FAR * to_local_host, int to_local_port);
379 void SSH_request_X11_forwarding(PTInstVar pvar,
380 char FAR * auth_protocol, unsigned char FAR * auth_data, int auth_data_len, int screen_num);
381 void SSH_open_channel(PTInstVar pvar, uint32 local_channel_num,
382 char FAR * to_remote_host, int to_remote_port,
383 char FAR * originator, unsigned short originator_port);
384
385 /* auxiliary SSH2 interfaces for pkt.c */
386 int SSH_get_min_packet_size(PTInstVar pvar);
387 /* data is guaranteed to be at least SSH_get_min_packet_size bytes long
388 at least 5 bytes must be decrypted */
389 void SSH_predecrpyt_packet(PTInstVar pvar, char FAR * data);
390 int SSH_get_clear_MAC_size(PTInstVar pvar);
391
392 #define SSH_is_any_payload(pvar) ((pvar)->ssh_state.payload_datalen > 0)
393 #define SSH_get_host_name(pvar) ((pvar)->ssh_state.hostname)
394 #define SSH_get_compression_level(pvar) ((pvar)->ssh_state.compressing ? (pvar)->ts_SSH_CompressionLevel : 0)
395
396 void SSH2_send_kexinit(PTInstVar pvar);
397 BOOL do_SSH2_userauth(PTInstVar pvar);
398 void debug_print(int no, char *msg, int len);
399 void ssh_heartbeat_lock_initialize(void);
400 void ssh_heartbeat_lock_finalize(void);
401 void ssh_heartbeat_lock(void);
402 void ssh_heartbeat_unlock(void);
403 void halt_ssh_heartbeat_thread(PTInstVar pvar);
404 void ssh2_channel_free(void);
405 BOOL handle_SSH2_userauth_inforeq(PTInstVar pvar);
406 void SSH2_update_compression_myproposal(PTInstVar pvar);
407 void SSH2_update_cipher_myproposal(PTInstVar pvar);
408
409 enum hostkey_type get_keytype_from_name(char *name);
410 char *get_sshname_from_key(Key *key);
411 int key_to_blob(Key *key, char **blobp, int *lenp);
412 Key *key_from_blob(char *data, int blen);
413 void key_free(Key *key);
414 RSA *duplicate_RSA(RSA *src);
415 DSA *duplicate_DSA(DSA *src);
416
417 #endif
Back to OSDN">Back to OSDN
 ViewVC Help
Powered by ViewVC 1.1.26  
About OSDN
Find Software
Develop Software
Help