Develop and Download Open Source Software

Tera Term

Browse Subversion Repository

/[ttssh2]/branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Contents of /branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Parent Directory Parent Directory | Revision Log Revision Log

Revision 4367 - (show annotations) (download) (as text)
Sat Mar 5 14:52:45 2011 UTC (13 years, 1 month ago) by yutakapon
Original Path: trunk/ttssh2/ttxssh/ssh.h
File MIME type: text/x-chdr
File size: 21563 byte(s) 
TTSSHの各種暗号設定に関して、teraterm.iniのエントリでカスタマイズできるようにした。
正式なUIに関しては、これから検討する。

KexOrder=56743210
HostKeyOrder=456230
MacOrder=120
CompOrder=012
1 /*
2 Copyright (c) 1998-2001, Robert O'Callahan
3 All rights reserved.
4
5 Redistribution and use in source and binary forms, with or without modification,
6 are permitted provided that the following conditions are met:
7
8 Redistributions of source code must retain the above copyright notice, this list of
9 conditions and the following disclaimer.
10
11 Redistributions in binary form must reproduce the above copyright notice, this list
12 of conditions and the following disclaimer in the documentation and/or other materials
13 provided with the distribution.
14
15 The name of Robert O'Callahan may not be used to endorse or promote products derived from
16 this software without specific prior written permission.
17
18 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ``AS IS'' AND
19 ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
21 THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
22 EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
23 SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
25 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
26 SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27 */
28
29 /*
30 This code is copyright (C) 1998-1999 Robert O'Callahan.
31 See LICENSE.TXT for the license.
32 */
33
34 #ifndef __SSH_H
35 #define __SSH_H
36
37 #include "zlib.h"
38 #include <openssl/evp.h>
39
40 #include "buffer.h"
41
42 #define DEBUG_PRINT_TO_FILE(base, msg, len) { \
43 static int count = 0; \
44 debug_print(count + base, msg, len); \
45 count++; \
46 }
47
48 // from OpenSSH
49 extern const EVP_CIPHER *evp_aes_128_ctr(void);
50 extern const EVP_CIPHER *evp_des3_ctr(void);
51 extern const EVP_CIPHER *evp_bf_ctr(void);
52 extern const EVP_CIPHER *evp_cast5_ctr(void);
53
54 // yutaka
55 #define SSH2_USE
56
57
58 /* Some of this code has been adapted from Ian Goldberg's Pilot SSH */
59
60 typedef enum {
61 SSH_MSG_NONE, SSH_MSG_DISCONNECT, SSH_SMSG_PUBLIC_KEY, //2
62 SSH_CMSG_SESSION_KEY, SSH_CMSG_USER, SSH_CMSG_AUTH_RHOSTS, // 5
63 SSH_CMSG_AUTH_RSA, SSH_SMSG_AUTH_RSA_CHALLENGE,
64 SSH_CMSG_AUTH_RSA_RESPONSE, SSH_CMSG_AUTH_PASSWORD,
65 SSH_CMSG_REQUEST_PTY, // 10
66 SSH_CMSG_WINDOW_SIZE, SSH_CMSG_EXEC_SHELL,
67 SSH_CMSG_EXEC_CMD, SSH_SMSG_SUCCESS, SSH_SMSG_FAILURE,
68 SSH_CMSG_STDIN_DATA, SSH_SMSG_STDOUT_DATA, SSH_SMSG_STDERR_DATA,
69 SSH_CMSG_EOF, SSH_SMSG_EXITSTATUS,
70 SSH_MSG_CHANNEL_OPEN_CONFIRMATION, SSH_MSG_CHANNEL_OPEN_FAILURE,
71 SSH_MSG_CHANNEL_DATA, SSH_MSG_CHANNEL_INPUT_EOF,
72 SSH_MSG_CHANNEL_OUTPUT_CLOSED, SSH_MSG_OBSOLETED0,
73 SSH_SMSG_X11_OPEN, SSH_CMSG_PORT_FORWARD_REQUEST, SSH_MSG_PORT_OPEN,
74 SSH_CMSG_AGENT_REQUEST_FORWARDING, SSH_SMSG_AGENT_OPEN,
75 SSH_MSG_IGNORE, SSH_CMSG_EXIT_CONFIRMATION,
76 SSH_CMSG_X11_REQUEST_FORWARDING, SSH_CMSG_AUTH_RHOSTS_RSA,
77 SSH_MSG_DEBUG, SSH_CMSG_REQUEST_COMPRESSION,
78 SSH_CMSG_MAX_PACKET_SIZE, SSH_CMSG_AUTH_TIS,
79 SSH_SMSG_AUTH_TIS_CHALLENGE, SSH_CMSG_AUTH_TIS_RESPONSE,
80 SSH_CMSG_AUTH_KERBEROS, SSH_SMSG_AUTH_KERBEROS_RESPONSE
81 } SSHMessage;
82
83 typedef enum {
84 SSH_CIPHER_NONE, SSH_CIPHER_IDEA, SSH_CIPHER_DES, SSH_CIPHER_3DES,
85 SSH_CIPHER_TSS, SSH_CIPHER_RC4, SSH_CIPHER_BLOWFISH,
86 // for SSH2
87 SSH2_CIPHER_3DES_CBC, SSH2_CIPHER_AES128_CBC,
88 SSH2_CIPHER_AES192_CBC, SSH2_CIPHER_AES256_CBC,
89 SSH2_CIPHER_BLOWFISH_CBC, SSH2_CIPHER_AES128_CTR,
90 SSH2_CIPHER_AES192_CTR, SSH2_CIPHER_AES256_CTR,
91 SSH2_CIPHER_ARCFOUR, SSH2_CIPHER_ARCFOUR128, SSH2_CIPHER_ARCFOUR256,
92 SSH2_CIPHER_CAST128_CBC,
93 SSH2_CIPHER_3DES_CTR, SSH2_CIPHER_BLOWFISH_CTR, SSH2_CIPHER_CAST128_CTR,
94 } SSHCipher;
95
96 #define SSH_CIPHER_MAX SSH2_CIPHER_CAST128_CTR
97
98 typedef enum {
99 SSH_AUTH_NONE, SSH_AUTH_RHOSTS, SSH_AUTH_RSA, SSH_AUTH_PASSWORD,
100 SSH_AUTH_RHOSTS_RSA, SSH_AUTH_TIS, SSH_AUTH_KERBEROS,
101 SSH_AUTH_PAGEANT = 16,
102 } SSHAuthMethod;
103
104 #define SSH_AUTH_MAX SSH_AUTH_PAGEANT
105
106 typedef enum {
107 SSH_GENERIC_AUTHENTICATION, SSH_TIS_AUTHENTICATION
108 } SSHAuthMode;
109
110 #define SSH_PROTOFLAG_SCREEN_NUMBER 1
111 #define SSH_PROTOFLAG_HOST_IN_FWD_OPEN 2
112
113 enum channel_type {
114 TYPE_SHELL, TYPE_PORTFWD, TYPE_SCP, TYPE_SFTP, TYPE_AGENT,
115 };
116
117 // for SSH1
118 #define SSH_MAX_SEND_PACKET_SIZE 250000
119
120 // for SSH2
121 /* default window/packet sizes for tcp/x11-fwd-channel */
122 // changed CHAN_SES_WINDOW_DEFAULT from 32KB to 128KB. (2007.10.29 maya)
123 #define CHAN_SES_PACKET_DEFAULT (32*1024)
124 #define CHAN_SES_WINDOW_DEFAULT (4*CHAN_SES_PACKET_DEFAULT)
125 #define CHAN_TCP_PACKET_DEFAULT (32*1024)
126 #define CHAN_TCP_WINDOW_DEFAULT (4*CHAN_TCP_PACKET_DEFAULT)
127 #if 0 // unused
128 #define CHAN_X11_PACKET_DEFAULT (16*1024)
129 #define CHAN_X11_WINDOW_DEFAULT (4*CHAN_X11_PACKET_DEFAULT)
130 #endif
131
132
133 /* SSH2 constants */
134
135 /* SSH2 messages */
136 #define SSH2_MSG_DISCONNECT 1
137 #define SSH2_MSG_IGNORE 2
138 #define SSH2_MSG_UNIMPLEMENTED 3
139 #define SSH2_MSG_DEBUG 4
140 #define SSH2_MSG_SERVICE_REQUEST 5
141 #define SSH2_MSG_SERVICE_ACCEPT 6
142
143 #define SSH2_MSG_KEXINIT 20
144 #define SSH2_MSG_NEWKEYS 21
145
146 #define SSH2_MSG_KEXDH_INIT 30
147 #define SSH2_MSG_KEXDH_REPLY 31
148
149 #define SSH2_MSG_KEX_DH_GEX_GROUP 31
150 #define SSH2_MSG_KEX_DH_GEX_INIT 32
151 #define SSH2_MSG_KEX_DH_GEX_REPLY 33
152 #define SSH2_MSG_KEX_DH_GEX_REQUEST 34
153
154 #define SSH2_MSG_KEX_ECDH_INIT 30
155 #define SSH2_MSG_KEX_ECDH_REPLY 31
156
157 #define SSH2_MSG_USERAUTH_REQUEST 50
158 #define SSH2_MSG_USERAUTH_FAILURE 51
159 #define SSH2_MSG_USERAUTH_SUCCESS 52
160 #define SSH2_MSG_USERAUTH_BANNER 53
161
162 #define SSH2_MSG_USERAUTH_PK_OK 60
163 #define SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ 60
164 #define SSH2_MSG_USERAUTH_INFO_REQUEST 60
165 #define SSH2_MSG_USERAUTH_INFO_RESPONSE 61
166
167 #define SSH2_MSG_GLOBAL_REQUEST 80
168 #define SSH2_MSG_REQUEST_SUCCESS 81
169 #define SSH2_MSG_REQUEST_FAILURE 82
170 #define SSH2_MSG_CHANNEL_OPEN 90
171 #define SSH2_MSG_CHANNEL_OPEN_CONFIRMATION 91
172 #define SSH2_MSG_CHANNEL_OPEN_FAILURE 92
173 #define SSH2_MSG_CHANNEL_WINDOW_ADJUST 93
174 #define SSH2_MSG_CHANNEL_DATA 94
175 #define SSH2_MSG_CHANNEL_EXTENDED_DATA 95
176 #define SSH2_MSG_CHANNEL_EOF 96
177 #define SSH2_MSG_CHANNEL_CLOSE 97
178 #define SSH2_MSG_CHANNEL_REQUEST 98
179 #define SSH2_MSG_CHANNEL_SUCCESS 99
180 #define SSH2_MSG_CHANNEL_FAILURE 100
181
182 /* SSH2 miscellaneous constants */
183 #define SSH2_DISCONNECT_HOST_NOT_ALLOWED_TO_CONNECT 1
184 #define SSH2_DISCONNECT_PROTOCOL_ERROR 2
185 #define SSH2_DISCONNECT_KEY_EXCHANGE_FAILED 3
186 #define SSH2_DISCONNECT_HOST_AUTHENTICATION_FAILED 4
187 #define SSH2_DISCONNECT_MAC_ERROR 5
188 #define SSH2_DISCONNECT_COMPRESSION_ERROR 6
189 #define SSH2_DISCONNECT_SERVICE_NOT_AVAILABLE 7
190 #define SSH2_DISCONNECT_PROTOCOL_VERSION_NOT_SUPPORTED 8
191 #define SSH2_DISCONNECT_HOST_KEY_NOT_VERIFIABLE 9
192 #define SSH2_DISCONNECT_CONNECTION_LOST 10
193 #define SSH2_DISCONNECT_BY_APPLICATION 11
194
195 #define SSH2_OPEN_ADMINISTRATIVELY_PROHIBITED 1
196 #define SSH2_OPEN_CONNECT_FAILED 2
197 #define SSH2_OPEN_UNKNOWN_CHANNEL_TYPE 3
198 #define SSH2_OPEN_RESOURCE_SHORTAGE 4
199
200 enum ssh_keytype {
201 KEY_NONE,
202 KEY_RSA1,
203 KEY_RSA,
204 KEY_DSA,
205 KEY_ECDSA256,
206 KEY_ECDSA384,
207 KEY_ECDSA521,
208 KEY_UNSPEC,
209 KEY_MAX = KEY_UNSPEC,
210 };
211
212 typedef struct ssh2_host_key {
213 enum ssh_keytype type;
214 char *name;
215 } ssh2_host_key_t;
216
217 static ssh2_host_key_t ssh2_host_key[] = {
218 {KEY_NONE, "none"},
219 {KEY_RSA1, "ssh-rsa1"}, // for SSH1 only
220 {KEY_RSA, "ssh-rsa"},
221 {KEY_DSA, "ssh-dss"},
222 {KEY_ECDSA256, "ecdsa-sha2-nistp256"},
223 {KEY_ECDSA384, "ecdsa-sha2-nistp384"},
224 {KEY_ECDSA521, "ecdsa-sha2-nistp521"},
225 {KEY_UNSPEC, "ssh-unknown"},
226 };
227
228 #define KEX_DEFAULT_KEX "ecdh-sha2-nistp256," \
229 "ecdh-sha2-nistp384," \
230 "ecdh-sha2-nistp521," \
231 "diffie-hellman-group-exchange-sha256," \
232 "diffie-hellman-group-exchange-sha1," \
233 "diffie-hellman-group14-sha1," \
234 "diffie-hellman-group1-sha1"
235 #define KEX_DEFAULT_PK_ALG "ecdsa-sha2-nistp256," \
236 "ecdsa-sha2-nistp384," \
237 "ecdsa-sha2-nistp521," \
238 "ssh-rsa,ssh-dss"
239 // use the setting of pvar.CipherOrder.
240 #define KEX_DEFAULT_ENCRYPT ""
241 #define KEX_DEFAULT_MAC "hmac-sha1,hmac-md5"
242 // support of "Compression delayed" (2006.6.23 maya)
243 #define KEX_DEFAULT_COMP "none,zlib@openssh.com,zlib"
244 #define KEX_DEFAULT_LANG ""
245
246 /* Minimum modulus size (n) for RSA keys. */
247 #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
248
249 #define SSH_KEYGEN_DEFAULT_BITS 2048
250 #define SSH_RSA_MINIMUM_KEY_SIZE 768
251 #define SSH_DSA_MINIMUM_KEY_SIZE 1024
252
253 enum kex_init_proposals {
254 PROPOSAL_KEX_ALGS,
255 PROPOSAL_SERVER_HOST_KEY_ALGS,
256 PROPOSAL_ENC_ALGS_CTOS,
257 PROPOSAL_ENC_ALGS_STOC,
258 PROPOSAL_MAC_ALGS_CTOS,
259 PROPOSAL_MAC_ALGS_STOC,
260 PROPOSAL_COMP_ALGS_CTOS,
261 PROPOSAL_COMP_ALGS_STOC,
262 PROPOSAL_LANG_CTOS,
263 PROPOSAL_LANG_STOC,
264 PROPOSAL_MAX
265 };
266
267
268 // �N���C�A���g�����T�[�o������������
269 #ifdef SSH2_DEBUG
270 static char *myproposal[PROPOSAL_MAX] = {
271 // KEX_DEFAULT_KEX,
272 "diffie-hellman-group14-sha1,diffie-hellman-group1-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group-exchange-sha256",
273 KEX_DEFAULT_PK_ALG,
274 // "ssh-dss,ssh-rsa",
275 KEX_DEFAULT_ENCRYPT,
276 KEX_DEFAULT_ENCRYPT,
277 "hmac-md5,hmac-sha1",
278 "hmac-md5,hmac-sha1",
279 // "hmac-sha1",
280 // "hmac-sha1",
281 // KEX_DEFAULT_MAC,
282 // KEX_DEFAULT_MAC,
283 KEX_DEFAULT_COMP,
284 KEX_DEFAULT_COMP,
285 KEX_DEFAULT_LANG,
286 KEX_DEFAULT_LANG,
287 };
288 #else
289 static char *myproposal[PROPOSAL_MAX] = {
290 KEX_DEFAULT_KEX,
291 KEX_DEFAULT_PK_ALG,
292 KEX_DEFAULT_ENCRYPT,
293 KEX_DEFAULT_ENCRYPT,
294 KEX_DEFAULT_MAC,
295 KEX_DEFAULT_MAC,
296 KEX_DEFAULT_COMP,
297 KEX_DEFAULT_COMP,
298 KEX_DEFAULT_LANG,
299 KEX_DEFAULT_LANG,
300 };
301 #endif
302
303
304 typedef struct ssh2_cipher {
305 SSHCipher cipher;
306 char *name;
307 int block_size;
308 int key_len;
309 int discard_len;
310 const EVP_CIPHER *(*func)(void);
311 } ssh2_cipher_t;
312
313 static ssh2_cipher_t ssh2_ciphers[] = {
314 {SSH2_CIPHER_3DES_CBC, "3des-cbc", 8, 24, 0, EVP_des_ede3_cbc},
315 {SSH2_CIPHER_AES128_CBC, "aes128-cbc", 16, 16, 0, EVP_aes_128_cbc},
316 {SSH2_CIPHER_AES192_CBC, "aes192-cbc", 16, 24, 0, EVP_aes_192_cbc},
317 {SSH2_CIPHER_AES256_CBC, "aes256-cbc", 16, 32, 0, EVP_aes_256_cbc},
318 {SSH2_CIPHER_BLOWFISH_CBC, "blowfish-cbc", 8, 16, 0, EVP_bf_cbc},
319 {SSH2_CIPHER_AES128_CTR, "aes128-ctr", 16, 16, 0, evp_aes_128_ctr},
320 {SSH2_CIPHER_AES192_CTR, "aes192-ctr", 16, 24, 0, evp_aes_128_ctr},
321 {SSH2_CIPHER_AES256_CTR, "aes256-ctr", 16, 32, 0, evp_aes_128_ctr},
322 {SSH2_CIPHER_ARCFOUR, "arcfour", 8, 16, 0, EVP_rc4},
323 {SSH2_CIPHER_ARCFOUR128, "arcfour128", 8, 16, 1536, EVP_rc4},
324 {SSH2_CIPHER_ARCFOUR256, "arcfour256", 8, 32, 1536, EVP_rc4},
325 {SSH2_CIPHER_CAST128_CBC, "cast128-cbc", 8, 16, 0, EVP_cast5_cbc},
326 {SSH2_CIPHER_3DES_CTR, "3des-ctr", 8, 24, 0, evp_des3_ctr},
327 {SSH2_CIPHER_BLOWFISH_CTR, "blowfish-ctr", 8, 16, 0, evp_bf_ctr},
328 {SSH2_CIPHER_CAST128_CTR, "cast128-ctr", 8, 16, 0, evp_cast5_ctr},
329 {SSH_CIPHER_NONE, NULL, 0, 0, 0, NULL},
330 };
331
332
333 // ���L���C���f�b�N�X�� ssh2_kex_algorithms[] ���������������B
334 enum kex_algorithm {
335 KEX_DH_NONE, /* disabled line */
336 KEX_DH_GRP1_SHA1,
337 KEX_DH_GRP14_SHA1,
338 KEX_DH_GEX_SHA1,
339 KEX_DH_GEX_SHA256,
340 KEX_ECDH_SHA2_256,
341 KEX_ECDH_SHA2_384,
342 KEX_ECDH_SHA2_521,
343 KEX_DH_UNKNOWN,
344 KEX_DH_MAX = KEX_DH_UNKNOWN,
345 };
346
347 typedef struct ssh2_kex_algorithm {
348 enum kex_algorithm kextype;
349 char *name;
350 const EVP_MD *(*evp_md)(void);
351 } ssh2_kex_algorithm_t;
352
353 static ssh2_kex_algorithm_t ssh2_kex_algorithms[] = {
354 {KEX_DH_NONE , "none", NULL},
355 {KEX_DH_GRP1_SHA1, "diffie-hellman-group1-sha1", EVP_sha1},
356 {KEX_DH_GRP14_SHA1, "diffie-hellman-group14-sha1", EVP_sha1},
357 {KEX_DH_GEX_SHA1, "diffie-hellman-group-exchange-sha1", EVP_sha1},
358 {KEX_DH_GEX_SHA256, "diffie-hellman-group-exchange-sha256", EVP_sha256},
359 {KEX_ECDH_SHA2_256, "ecdh-sha2-nistp256", EVP_sha256},
360 {KEX_ECDH_SHA2_384, "ecdh-sha2-nistp384", EVP_sha384},
361 {KEX_ECDH_SHA2_521, "ecdh-sha2-nistp521", EVP_sha512},
362 {KEX_DH_UNKNOWN , NULL , NULL},
363 };
364
365
366 // ���L���C���f�b�N�X�� ssh2_macs[] ���������������B
367 enum hmac_type {
368 HMAC_NONE,
369 HMAC_SHA1,
370 HMAC_MD5,
371 HMAC_UNKNOWN,
372 HMAC_MAX = HMAC_UNKNOWN,
373 };
374
375 typedef struct ssh2_mac {
376 enum hmac_type type;
377 char *name;
378 const EVP_MD *(*func)(void);
379 int truncatebits;
380 } ssh2_mac_t;
381
382 static ssh2_mac_t ssh2_macs[] = {
383 {HMAC_NONE, "none", NULL, 0},
384 {HMAC_SHA1, "hmac-sha1", EVP_sha1, 0},
385 {HMAC_MD5, "hmac-md5", EVP_md5, 0},
386 {HMAC_UNKNOWN, NULL, NULL, 0},
387 };
388
389
390 // ���L���C���f�b�N�X�� ssh_comps[] ���������������B
391 enum compression_type {
392 COMP_NONE,
393 COMP_ZLIB,
394 COMP_DELAYED,
395 COMP_UNKNOWN,
396 COMP_MAX = COMP_UNKNOWN,
397 };
398
399 typedef struct ssh_comp {
400 enum compression_type type;
401 char *name;
402 } ssh_comp_t;
403
404 static ssh_comp_t ssh_comps[] = {
405 {COMP_NONE, "none"},
406 {COMP_ZLIB, "zlib"},
407 {COMP_DELAYED, "zlib@openssh.com"},
408 {COMP_UNKNOWN, NULL},
409 };
410
411
412 struct Enc {
413 u_char *key;
414 u_char *iv;
415 unsigned int key_len;
416 unsigned int block_size;
417 };
418
419 struct Mac {
420 char *name;
421 int enabled;
422 const EVP_MD *md;
423 int mac_len;
424 u_char *key;
425 int key_len;
426 };
427
428 struct Comp {
429 int type;
430 int enabled;
431 char *name;
432 };
433
434 typedef struct {
435 struct Enc enc;
436 struct Mac mac;
437 struct Comp comp;
438 } Newkeys;
439
440 #define roundup(x, y) ((((x)+((y)-1))/(y))*(y))
441
442 enum kex_modes {
443 MODE_IN,
444 MODE_OUT,
445 MODE_MAX
446 };
447
448
449 // �z�X�g�L�[(SSH1, SSH2����)���f�[�^�\�� (2006.3.21 yutaka)
450 typedef struct Key {
451 // host key type
452 enum ssh_keytype type;
453 // SSH2 RSA
454 RSA *rsa;
455 // SSH2 DSA
456 DSA *dsa;
457 // SSH2 ECDSA
458 EC_KEY *ecdsa;
459 // SSH1 RSA
460 int bits;
461 unsigned char *exp;
462 unsigned char *mod;
463 } Key;
464
465 // fingerprint������
466 enum fp_rep {
467 SSH_FP_HEX,
468 SSH_FP_BUBBLEBABBLE,
469 SSH_FP_RANDOMART
470 };
471
472 enum scp_dir {
473 TOREMOTE, FROMREMOTE,
474 };
475
476 /* The packet handler returns TRUE to keep the handler in place,
477 FALSE to remove the handler. */
478 typedef BOOL (* SSHPacketHandler)(PTInstVar pvar);
479
480 typedef struct _SSHPacketHandlerItem SSHPacketHandlerItem;
481 struct _SSHPacketHandlerItem {
482 SSHPacketHandler handler;
483 /* Circular list of handlers for given message */
484 SSHPacketHandlerItem FAR * next_for_message;
485 SSHPacketHandlerItem FAR * last_for_message;
486 /* Circular list of handlers in set */
487 SSHPacketHandlerItem FAR * next_in_set;
488 int active_for_message;
489 };
490
491 typedef struct {
492 char FAR * hostname;
493
494 int server_protocol_flags;
495 char FAR * server_ID;
496
497 /* This buffer is used to hold the outgoing data, and encrypted in-place
498 here if necessary. */
499 unsigned char FAR * outbuf;
500 long outbuflen;
501 /* This buffer is used by the SSH protocol processing to store uncompressed
502 packet data for compression. User data is never streamed through here;
503 it is compressed directly from the user's buffer. */
504 unsigned char FAR * precompress_outbuf;
505 long precompress_outbuflen;
506 /* this is the length of the packet data, including the type header */
507 long outgoing_packet_len;
508
509 /* This buffer is used by the SSH protocol processing to store decompressed
510 packet data. User data is never streamed through here; it is decompressed
511 directly to the user's buffer. */
512 unsigned char FAR * postdecompress_inbuf;
513 long postdecompress_inbuflen;
514
515 unsigned char FAR * payload;
516 long payload_grabbed;
517 long payloadlen;
518 long payload_datastart;
519 long payload_datalen;
520
521 uint32 receiver_sequence_number;
522 uint32 sender_sequence_number;
523
524 z_stream compress_stream;
525 z_stream decompress_stream;
526 BOOL compressing;
527 BOOL decompressing;
528 int compression_level;
529
530 SSHPacketHandlerItem FAR * packet_handlers[256];
531 int status_flags;
532
533 int win_cols;
534 int win_rows;
535
536 unsigned short tcpport;
537 } SSHState;
538
539 #define STATUS_DONT_SEND_USER_NAME 0x01
540 #define STATUS_EXPECTING_COMPRESSION_RESPONSE 0x02
541 #define STATUS_DONT_SEND_CREDENTIALS 0x04
542 #define STATUS_HOST_OK 0x08
543 #define STATUS_INTERACTIVE 0x10
544 #define STATUS_IN_PARTIAL_ID_STRING 0x20
545
546 void SSH_init(PTInstVar pvar);
547 void SSH_open(PTInstVar pvar);
548 void SSH_notify_disconnecting(PTInstVar pvar, char FAR * reason);
549 /* SSH_handle_server_ID returns TRUE iff a valid ID string has been
550 received. If it returns FALSE, we need to keep looking for another
551 ID string. */
552 BOOL SSH_handle_server_ID(PTInstVar pvar, char FAR * ID, int ID_len);
553 /* SSH_handle_packet requires NO PAYLOAD on entry.
554 'len' is the size of the packet: payload + padding (+ CRC for SSHv1)
555 'padding' is the size of the padding.
556 'data' points to the start of the packet data (the length field)
557 */
558 void SSH_handle_packet(PTInstVar pvar, char FAR * data, int len, int padding);
559 void SSH_notify_win_size(PTInstVar pvar, int cols, int rows);
560 void SSH_notify_user_name(PTInstVar pvar);
561 void SSH_notify_cred(PTInstVar pvar);
562 void SSH_notify_host_OK(PTInstVar pvar);
563 void SSH_send(PTInstVar pvar, unsigned char const FAR * buf, unsigned int buflen);
564 /* SSH_extract_payload returns number of bytes extracted */
565 int SSH_extract_payload(PTInstVar pvar, unsigned char FAR * dest, int len);
566 void SSH_end(PTInstVar pvar);
567
568 void SSH_get_server_ID_info(PTInstVar pvar, char FAR * dest, int len);
569 void SSH_get_protocol_version_info(PTInstVar pvar, char FAR * dest, int len);
570 void SSH_get_compression_info(PTInstVar pvar, char FAR * dest, int len);
571
572 /* len must be <= SSH_MAX_SEND_PACKET_SIZE */
573 void SSH_channel_send(PTInstVar pvar, int channel_num,
574 uint32 remote_channel_num,
575 unsigned char FAR * buf, int len);
576 void SSH_fail_channel_open(PTInstVar pvar, uint32 remote_channel_num);
577 void SSH_confirm_channel_open(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
578 void SSH_channel_output_eof(PTInstVar pvar, uint32 remote_channel_num);
579 void SSH_channel_input_eof(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
580 void SSH_request_forwarding(PTInstVar pvar, char FAR * bind_address, int from_server_port,
581 char FAR * to_local_host, int to_local_port);
582 void SSH_request_X11_forwarding(PTInstVar pvar,
583 char FAR * auth_protocol, unsigned char FAR * auth_data, int auth_data_len, int screen_num);
584 void SSH_open_channel(PTInstVar pvar, uint32 local_channel_num,
585 char FAR * to_remote_host, int to_remote_port,
586 char FAR * originator, unsigned short originator_port);
587
588 int SSH_start_scp(PTInstVar pvar, char *sendfile, char *dstfile);
589 int SSH_start_scp_receive(PTInstVar pvar, char *filename);
590 int SSH_scp_transaction(PTInstVar pvar, char *sendfile, char *dstfile, enum scp_dir direction);
591 int SSH_sftp_transaction(PTInstVar pvar);
592
593 /* auxiliary SSH2 interfaces for pkt.c */
594 int SSH_get_min_packet_size(PTInstVar pvar);
595 /* data is guaranteed to be at least SSH_get_min_packet_size bytes long
596 at least 5 bytes must be decrypted */
597 void SSH_predecrpyt_packet(PTInstVar pvar, char FAR * data);
598 int SSH_get_clear_MAC_size(PTInstVar pvar);
599
600 #define SSH_is_any_payload(pvar) ((pvar)->ssh_state.payload_datalen > 0)
601 #define SSH_get_host_name(pvar) ((pvar)->ssh_state.hostname)
602 #define SSH_get_compression_level(pvar) ((pvar)->ssh_state.compressing ? (pvar)->ts_SSH_CompressionLevel : 0)
603
604 void SSH2_send_kexinit(PTInstVar pvar);
605 BOOL do_SSH2_userauth(PTInstVar pvar);
606 BOOL do_SSH2_authrequest(PTInstVar pvar);
607 void debug_print(int no, char *msg, int len);
608 int get_cipher_block_size(SSHCipher cipher);
609 int get_cipher_key_len(SSHCipher cipher);
610 const EVP_CIPHER* get_cipher_EVP_CIPHER(SSHCipher cipher);
611 int get_cipher_discard_len(SSHCipher cipher);
612 void ssh_heartbeat_lock_initialize(void);
613 void ssh_heartbeat_lock_finalize(void);
614 void ssh_heartbeat_lock(void);
615 void ssh_heartbeat_unlock(void);
616 void halt_ssh_heartbeat_thread(PTInstVar pvar);
617 void ssh2_channel_free(void);
618 BOOL handle_SSH2_userauth_inforeq(PTInstVar pvar);
619 BOOL handle_SSH2_userauth_passwd_changereq(PTInstVar pvar);
620 void SSH2_update_compression_myproposal(PTInstVar pvar);
621 void SSH2_update_cipher_myproposal(PTInstVar pvar);
622 void SSH2_update_kex_myproposal(PTInstVar pvar);
623 void SSH2_update_host_key_myproposal(PTInstVar pvar);
624 void SSH2_update_hmac_myproposal(PTInstVar pvar);
625 int SSH_notify_break_signal(PTInstVar pvar);
626
627 #endif
Back to OSDN">Back to OSDN
 ViewVC Help
Powered by ViewVC 1.1.26  
About OSDN
Find Software
Develop Software
Help