Develop and Download Open Source Software

Tera Term

Browse Subversion Repository

/[ttssh2]/branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Contents of /branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Parent Directory Parent Directory | Revision Log Revision Log

Revision 2921 - (show annotations) (download) (as text)
Sun Oct 29 16:45:38 2006 UTC (17 years, 5 months ago) by yutakapon
Original Path: ttssh2/trunk/ttxssh/ssh.h
File MIME type: text/x-chdr
File size: 14583 byte(s) 
DEBUG_PRINT_TO_FILEマクロを追加。
1 /*
2 Copyright (c) 1998-2001, Robert O'Callahan
3 All rights reserved.
4
5 Redistribution and use in source and binary forms, with or without modification,
6 are permitted provided that the following conditions are met:
7
8 Redistributions of source code must retain the above copyright notice, this list of
9 conditions and the following disclaimer.
10
11 Redistributions in binary form must reproduce the above copyright notice, this list
12 of conditions and the following disclaimer in the documentation and/or other materials
13 provided with the distribution.
14
15 The name of Robert O'Callahan may not be used to endorse or promote products derived from
16 this software without specific prior written permission.
17
18 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ``AS IS'' AND
19 ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
21 THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
22 EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
23 SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
25 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
26 SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27 */
28
29 /*
30 This code is copyright (C) 1998-1999 Robert O'Callahan.
31 See LICENSE.TXT for the license.
32 */
33
34 #ifndef __SSH_H
35 #define __SSH_H
36
37 #include "zlib.h"
38 #include <openssl/evp.h>
39
40
41 #define DEBUG_PRINT_TO_FILE(base, msg, len) { \
42 static int count = 0; \
43 debug_print(count + base, msg, len); \
44 count++; \
45 }
46
47
48 // yutaka
49 #define SSH2_USE
50
51
52 /* Some of this code has been adapted from Ian Goldberg's Pilot SSH */
53
54 typedef enum {
55 SSH_MSG_NONE, SSH_MSG_DISCONNECT, SSH_SMSG_PUBLIC_KEY, //2
56 SSH_CMSG_SESSION_KEY, SSH_CMSG_USER, SSH_CMSG_AUTH_RHOSTS, // 5
57 SSH_CMSG_AUTH_RSA, SSH_SMSG_AUTH_RSA_CHALLENGE,
58 SSH_CMSG_AUTH_RSA_RESPONSE, SSH_CMSG_AUTH_PASSWORD,
59 SSH_CMSG_REQUEST_PTY, // 10
60 SSH_CMSG_WINDOW_SIZE, SSH_CMSG_EXEC_SHELL,
61 SSH_CMSG_EXEC_CMD, SSH_SMSG_SUCCESS, SSH_SMSG_FAILURE,
62 SSH_CMSG_STDIN_DATA, SSH_SMSG_STDOUT_DATA, SSH_SMSG_STDERR_DATA,
63 SSH_CMSG_EOF, SSH_SMSG_EXITSTATUS,
64 SSH_MSG_CHANNEL_OPEN_CONFIRMATION, SSH_MSG_CHANNEL_OPEN_FAILURE,
65 SSH_MSG_CHANNEL_DATA, SSH_MSG_CHANNEL_INPUT_EOF,
66 SSH_MSG_CHANNEL_OUTPUT_CLOSED, SSH_MSG_OBSOLETED0,
67 SSH_SMSG_X11_OPEN, SSH_CMSG_PORT_FORWARD_REQUEST, SSH_MSG_PORT_OPEN,
68 SSH_CMSG_AGENT_REQUEST_FORWARDING, SSH_SMSG_AGENT_OPEN,
69 SSH_MSG_IGNORE, SSH_CMSG_EXIT_CONFIRMATION,
70 SSH_CMSG_X11_REQUEST_FORWARDING, SSH_CMSG_AUTH_RHOSTS_RSA,
71 SSH_MSG_DEBUG, SSH_CMSG_REQUEST_COMPRESSION,
72 SSH_CMSG_MAX_PACKET_SIZE, SSH_CMSG_AUTH_TIS,
73 SSH_SMSG_AUTH_TIS_CHALLENGE, SSH_CMSG_AUTH_TIS_RESPONSE,
74 SSH_CMSG_AUTH_KERBEROS, SSH_SMSG_AUTH_KERBEROS_RESPONSE
75 } SSHMessage;
76
77 typedef enum {
78 SSH_CIPHER_NONE, SSH_CIPHER_IDEA, SSH_CIPHER_DES, SSH_CIPHER_3DES,
79 SSH_CIPHER_TSS, SSH_CIPHER_RC4, SSH_CIPHER_BLOWFISH,
80 // for SSH2
81 SSH_CIPHER_3DES_CBC, SSH_CIPHER_AES128,
82 } SSHCipher;
83
84 //#define SSH_CIPHER_MAX SSH_CIPHER_BLOWFISH
85 #define SSH_CIPHER_MAX SSH_CIPHER_AES128
86
87 typedef enum {
88 SSH_AUTH_NONE, SSH_AUTH_RHOSTS, SSH_AUTH_RSA, SSH_AUTH_PASSWORD,
89 SSH_AUTH_RHOSTS_RSA, SSH_AUTH_TIS, SSH_AUTH_KERBEROS,
90 // for SSH2
91 SSH_AUTH_DSA,
92 } SSHAuthMethod;
93
94 /* we don't support Kerberos at this time */
95 //#define SSH_AUTH_MAX SSH_AUTH_TIS
96 #define SSH_AUTH_MAX SSH_AUTH_DSA
97
98 typedef enum {
99 SSH_GENERIC_AUTHENTICATION, SSH_TIS_AUTHENTICATION
100 } SSHAuthMode;
101
102 #define SSH_PROTOFLAG_SCREEN_NUMBER 1
103 #define SSH_PROTOFLAG_HOST_IN_FWD_OPEN 2
104
105 #define SSH_MAX_SEND_PACKET_SIZE 250000
106
107
108 /* SSH2 constants */
109
110 /* SSH2 messages */
111 #define SSH2_MSG_DISCONNECT 1
112 #define SSH2_MSG_IGNORE 2
113 #define SSH2_MSG_UNIMPLEMENTED 3
114 #define SSH2_MSG_DEBUG 4
115 #define SSH2_MSG_SERVICE_REQUEST 5
116 #define SSH2_MSG_SERVICE_ACCEPT 6
117
118 #define SSH2_MSG_KEXINIT 20
119 #define SSH2_MSG_NEWKEYS 21
120
121 #define SSH2_MSG_KEXDH_INIT 30
122 #define SSH2_MSG_KEXDH_REPLY 31
123
124 #define SSH2_MSG_KEX_DH_GEX_GROUP 31
125 #define SSH2_MSG_KEX_DH_GEX_INIT 32
126 #define SSH2_MSG_KEX_DH_GEX_REPLY 33
127 #define SSH2_MSG_KEX_DH_GEX_REQUEST 34
128
129 #define SSH2_MSG_USERAUTH_REQUEST 50
130 #define SSH2_MSG_USERAUTH_FAILURE 51
131 #define SSH2_MSG_USERAUTH_SUCCESS 52
132 #define SSH2_MSG_USERAUTH_BANNER 53
133
134 #define SSH2_MSG_USERAUTH_PK_OK 60
135 #define SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ 60
136 #define SSH2_MSG_USERAUTH_INFO_REQUEST 60
137 #define SSH2_MSG_USERAUTH_INFO_RESPONSE 61
138
139 #define SSH2_MSG_GLOBAL_REQUEST 80
140 #define SSH2_MSG_REQUEST_SUCCESS 81
141 #define SSH2_MSG_REQUEST_FAILURE 82
142 #define SSH2_MSG_CHANNEL_OPEN 90
143 #define SSH2_MSG_CHANNEL_OPEN_CONFIRMATION 91
144 #define SSH2_MSG_CHANNEL_OPEN_FAILURE 92
145 #define SSH2_MSG_CHANNEL_WINDOW_ADJUST 93
146 #define SSH2_MSG_CHANNEL_DATA 94
147 #define SSH2_MSG_CHANNEL_EXTENDED_DATA 95
148 #define SSH2_MSG_CHANNEL_EOF 96
149 #define SSH2_MSG_CHANNEL_CLOSE 97
150 #define SSH2_MSG_CHANNEL_REQUEST 98
151 #define SSH2_MSG_CHANNEL_SUCCESS 99
152 #define SSH2_MSG_CHANNEL_FAILURE 100
153
154 /* SSH2 miscellaneous constants */
155 #define SSH2_DISCONNECT_HOST_NOT_ALLOWED_TO_CONNECT 1
156 #define SSH2_DISCONNECT_PROTOCOL_ERROR 2
157 #define SSH2_DISCONNECT_KEY_EXCHANGE_FAILED 3
158 #define SSH2_DISCONNECT_HOST_AUTHENTICATION_FAILED 4
159 #define SSH2_DISCONNECT_MAC_ERROR 5
160 #define SSH2_DISCONNECT_COMPRESSION_ERROR 6
161 #define SSH2_DISCONNECT_SERVICE_NOT_AVAILABLE 7
162 #define SSH2_DISCONNECT_PROTOCOL_VERSION_NOT_SUPPORTED 8
163 #define SSH2_DISCONNECT_HOST_KEY_NOT_VERIFIABLE 9
164 #define SSH2_DISCONNECT_CONNECTION_LOST 10
165 #define SSH2_DISCONNECT_BY_APPLICATION 11
166
167 #define SSH2_OPEN_ADMINISTRATIVELY_PROHIBITED 1
168 #define SSH2_OPEN_CONNECT_FAILED 2
169 #define SSH2_OPEN_UNKNOWN_CHANNEL_TYPE 3
170 #define SSH2_OPEN_RESOURCE_SHORTAGE 4
171
172 // �L�[�����A���S���Y��
173 #define KEX_DH1 "diffie-hellman-group1-sha1"
174 #define KEX_DH14 "diffie-hellman-group14-sha1"
175 #define KEX_DHGEX "diffie-hellman-group-exchange-sha1"
176
177 // support of "Compression delayed" (2006.6.23 maya)
178 enum compression_algorithm {
179 COMP_NONE,
180 COMP_ZLIB,
181 COMP_DELAYED,
182 COMP_UNKNOWN
183 };
184
185 enum kex_exchange {
186 KEX_DH_GRP1_SHA1,
187 KEX_DH_GRP14_SHA1,
188 KEX_DH_GEX_SHA1,
189 KEX_MAX
190 };
191
192 enum hostkey_type {
193 KEY_RSA1,
194 KEY_RSA,
195 KEY_DSA,
196 KEY_UNSPEC,
197 };
198
199 // ���L���C���f�b�N�X�� ssh2_macs[] ���������������B
200 enum hmac_type {
201 HMAC_SHA1,
202 HMAC_MD5,
203 HMAC_UNKNOWN
204 };
205
206 #define KEX_DEFAULT_KEX "diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1"
207
208 #define KEX_DEFAULT_PK_ALG "ssh-rsa,ssh-dss"
209 #define KEX_DEFAULT_ENCRYPT \
210 "aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour," \
211 "aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se," \
212 "aes128-ctr,aes192-ctr,aes256-ctr"
213 #define KEX_DEFAULT_MAC \
214 "hmac-md5,hmac-sha1,hmac-ripemd160," \
215 "hmac-ripemd160@openssh.com," \
216 "hmac-sha1-96,hmac-md5-96"
217 // support of "Compression delayed" (2006.6.23 maya)
218 #define KEX_DEFAULT_COMP "none,zlib@openssh.com,zlib"
219 #define KEX_DEFAULT_LANG ""
220
221 /* Minimum modulus size (n) for RSA keys. */
222 #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
223
224
225 enum kex_init_proposals {
226 PROPOSAL_KEX_ALGS,
227 PROPOSAL_SERVER_HOST_KEY_ALGS,
228 PROPOSAL_ENC_ALGS_CTOS,
229 PROPOSAL_ENC_ALGS_STOC,
230 PROPOSAL_MAC_ALGS_CTOS,
231 PROPOSAL_MAC_ALGS_STOC,
232 PROPOSAL_COMP_ALGS_CTOS,
233 PROPOSAL_COMP_ALGS_STOC,
234 PROPOSAL_LANG_CTOS,
235 PROPOSAL_LANG_STOC,
236 PROPOSAL_MAX
237 };
238
239 struct Enc {
240 u_char *key;
241 u_char *iv;
242 unsigned int key_len;
243 unsigned int block_size;
244 };
245
246 struct Mac {
247 char *name;
248 int enabled;
249 const EVP_MD *md;
250 int mac_len;
251 u_char *key;
252 int key_len;
253 };
254
255 struct Comp {
256 int type;
257 int enabled;
258 char *name;
259 };
260
261 typedef struct {
262 struct Enc enc;
263 struct Mac mac;
264 struct Comp comp;
265 } Newkeys;
266
267 #define roundup(x, y) ((((x)+((y)-1))/(y))*(y))
268
269 enum kex_modes {
270 MODE_IN,
271 MODE_OUT,
272 MODE_MAX
273 };
274
275
276 // �z�X�g�L�[(SSH1, SSH2����)���f�[�^�\�� (2006.3.21 yutaka)
277 typedef struct Key {
278 // host key type
279 enum hostkey_type type;
280 // SSH2 RSA
281 RSA *rsa;
282 // SSH2 DSA
283 DSA *dsa;
284 // SSH1 RSA
285 int bits;
286 unsigned char *exp;
287 unsigned char *mod;
288 } Key;
289
290
291 /* The packet handler returns TRUE to keep the handler in place,
292 FALSE to remove the handler. */
293 typedef BOOL (* SSHPacketHandler)(PTInstVar pvar);
294
295 typedef struct _SSHPacketHandlerItem SSHPacketHandlerItem;
296 struct _SSHPacketHandlerItem {
297 SSHPacketHandler handler;
298 /* Circular list of handlers for given message */
299 SSHPacketHandlerItem FAR * next_for_message;
300 SSHPacketHandlerItem FAR * last_for_message;
301 /* Circular list of handlers in set */
302 SSHPacketHandlerItem FAR * next_in_set;
303 int active_for_message;
304 };
305
306 typedef struct {
307 char FAR * hostname;
308
309 int server_protocol_flags;
310 char FAR * server_ID;
311
312 /* This buffer is used to hold the outgoing data, and encrypted in-place
313 here if necessary. */
314 unsigned char FAR * outbuf;
315 long outbuflen;
316 /* This buffer is used by the SSH protocol processing to store uncompressed
317 packet data for compression. User data is never streamed through here;
318 it is compressed directly from the user's buffer. */
319 unsigned char FAR * precompress_outbuf;
320 long precompress_outbuflen;
321 /* this is the length of the packet data, including the type header */
322 long outgoing_packet_len;
323
324 /* This buffer is used by the SSH protocol processing to store decompressed
325 packet data. User data is never streamed through here; it is decompressed
326 directly to the user's buffer. */
327 unsigned char FAR * postdecompress_inbuf;
328 long postdecompress_inbuflen;
329
330 unsigned char FAR * payload;
331 long payload_grabbed;
332 long payloadlen;
333 long payload_datastart;
334 long payload_datalen;
335
336 uint32 receiver_sequence_number;
337 uint32 sender_sequence_number;
338
339 z_stream compress_stream;
340 z_stream decompress_stream;
341 BOOL compressing;
342 BOOL decompressing;
343 int compression_level;
344
345 SSHPacketHandlerItem FAR * packet_handlers[256];
346 int status_flags;
347
348 int win_cols;
349 int win_rows;
350 } SSHState;
351
352 #define STATUS_DONT_SEND_USER_NAME 0x01
353 #define STATUS_EXPECTING_COMPRESSION_RESPONSE 0x02
354 #define STATUS_DONT_SEND_CREDENTIALS 0x04
355 #define STATUS_HOST_OK 0x08
356 #define STATUS_INTERACTIVE 0x10
357 #define STATUS_IN_PARTIAL_ID_STRING 0x20
358
359 void SSH_init(PTInstVar pvar);
360 void SSH_open(PTInstVar pvar);
361 void SSH_notify_disconnecting(PTInstVar pvar, char FAR * reason);
362 /* SSH_handle_server_ID returns TRUE iff a valid ID string has been
363 received. If it returns FALSE, we need to keep looking for another
364 ID string. */
365 BOOL SSH_handle_server_ID(PTInstVar pvar, char FAR * ID, int ID_len);
366 /* SSH_handle_packet requires NO PAYLOAD on entry.
367 'len' is the size of the packet: payload + padding (+ CRC for SSHv1)
368 'padding' is the size of the padding.
369 'data' points to the start of the packet data (the length field)
370 */
371 void SSH_handle_packet(PTInstVar pvar, char FAR * data, int len, int padding);
372 void SSH_notify_win_size(PTInstVar pvar, int cols, int rows);
373 void SSH_notify_user_name(PTInstVar pvar);
374 void SSH_notify_cred(PTInstVar pvar);
375 void SSH_notify_host_OK(PTInstVar pvar);
376 void SSH_send(PTInstVar pvar, unsigned char const FAR * buf, int buflen);
377 /* SSH_extract_payload returns number of bytes extracted */
378 int SSH_extract_payload(PTInstVar pvar, unsigned char FAR * dest, int len);
379 void SSH_end(PTInstVar pvar);
380
381 void SSH_get_server_ID_info(PTInstVar pvar, char FAR * dest, int len);
382 void SSH_get_protocol_version_info(PTInstVar pvar, char FAR * dest, int len);
383 void SSH_get_compression_info(PTInstVar pvar, char FAR * dest, int len);
384
385 /* len must be <= SSH_MAX_SEND_PACKET_SIZE */
386 void SSH_channel_send(PTInstVar pvar, int channel_num,
387 uint32 remote_channel_num,
388 unsigned char FAR * buf, int len);
389 void SSH_fail_channel_open(PTInstVar pvar, uint32 remote_channel_num);
390 void SSH_confirm_channel_open(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
391 void SSH_channel_output_eof(PTInstVar pvar, uint32 remote_channel_num);
392 void SSH_channel_input_eof(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
393 void SSH_request_forwarding(PTInstVar pvar, int from_server_port,
394 char FAR * to_local_host, int to_local_port);
395 void SSH_request_X11_forwarding(PTInstVar pvar,
396 char FAR * auth_protocol, unsigned char FAR * auth_data, int auth_data_len, int screen_num);
397 void SSH_open_channel(PTInstVar pvar, uint32 local_channel_num,
398 char FAR * to_remote_host, int to_remote_port,
399 char FAR * originator, unsigned short originator_port);
400
401 /* auxiliary SSH2 interfaces for pkt.c */
402 int SSH_get_min_packet_size(PTInstVar pvar);
403 /* data is guaranteed to be at least SSH_get_min_packet_size bytes long
404 at least 5 bytes must be decrypted */
405 void SSH_predecrpyt_packet(PTInstVar pvar, char FAR * data);
406 int SSH_get_clear_MAC_size(PTInstVar pvar);
407
408 #define SSH_is_any_payload(pvar) ((pvar)->ssh_state.payload_datalen > 0)
409 #define SSH_get_host_name(pvar) ((pvar)->ssh_state.hostname)
410 #define SSH_get_compression_level(pvar) ((pvar)->ssh_state.compressing ? (pvar)->ts_SSH_CompressionLevel : 0)
411
412 void SSH2_send_kexinit(PTInstVar pvar);
413 BOOL do_SSH2_userauth(PTInstVar pvar);
414 void debug_print(int no, char *msg, int len);
415 void ssh_heartbeat_lock_initialize(void);
416 void ssh_heartbeat_lock_finalize(void);
417 void ssh_heartbeat_lock(void);
418 void ssh_heartbeat_unlock(void);
419 void halt_ssh_heartbeat_thread(PTInstVar pvar);
420 void ssh2_channel_free(void);
421 BOOL handle_SSH2_userauth_inforeq(PTInstVar pvar);
422 void SSH2_update_compression_myproposal(PTInstVar pvar);
423 void SSH2_update_cipher_myproposal(PTInstVar pvar);
424
425 enum hostkey_type get_keytype_from_name(char *name);
426 char *get_sshname_from_key(Key *key);
427 int key_to_blob(Key *key, char **blobp, int *lenp);
428 Key *key_from_blob(char *data, int blen);
429 void key_free(Key *key);
430 RSA *duplicate_RSA(RSA *src);
431 DSA *duplicate_DSA(DSA *src);
432 char *key_fingerprint(Key *key);
433
434 #endif
Back to OSDN">Back to OSDN
 ViewVC Help
Powered by ViewVC 1.1.26  
About OSDN
Find Software
Develop Software
Help