Develop and Download Open Source Software

Tera Term

Browse Subversion Repository

/[ttssh2]/branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Contents of /branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Parent Directory Parent Directory | Revision Log Revision Log

Revision 4374 - (show annotations) (download) (as text)
Tue Mar 8 01:00:58 2011 UTC (13 years, 1 month ago) by doda
Original Path: trunk/ttssh2/ttxssh/ssh.h
File MIME type: text/x-chdr
File size: 21640 byte(s) 
鍵生成ダイアログの挙動を変更
・ECDSA 鍵を選んだ時はビット数の入力ボックスを無効化するようにした
・ECDSA 鍵を選んだ後に RSA/DSA 鍵を選んだ時はビット数の値を元に戻すようにした
1 /*
2 Copyright (c) 1998-2001, Robert O'Callahan
3 All rights reserved.
4
5 Redistribution and use in source and binary forms, with or without modification,
6 are permitted provided that the following conditions are met:
7
8 Redistributions of source code must retain the above copyright notice, this list of
9 conditions and the following disclaimer.
10
11 Redistributions in binary form must reproduce the above copyright notice, this list
12 of conditions and the following disclaimer in the documentation and/or other materials
13 provided with the distribution.
14
15 The name of Robert O'Callahan may not be used to endorse or promote products derived from
16 this software without specific prior written permission.
17
18 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ``AS IS'' AND
19 ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
21 THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
22 EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
23 SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
25 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
26 SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27 */
28
29 /*
30 This code is copyright (C) 1998-1999 Robert O'Callahan.
31 See LICENSE.TXT for the license.
32 */
33
34 #ifndef __SSH_H
35 #define __SSH_H
36
37 #include "zlib.h"
38 #include <openssl/evp.h>
39
40 #include "buffer.h"
41
42 #define DEBUG_PRINT_TO_FILE(base, msg, len) { \
43 static int count = 0; \
44 debug_print(count + base, msg, len); \
45 count++; \
46 }
47
48 // from OpenSSH
49 extern const EVP_CIPHER *evp_aes_128_ctr(void);
50 extern const EVP_CIPHER *evp_des3_ctr(void);
51 extern const EVP_CIPHER *evp_bf_ctr(void);
52 extern const EVP_CIPHER *evp_cast5_ctr(void);
53
54 // yutaka
55 #define SSH2_USE
56
57
58 /* Some of this code has been adapted from Ian Goldberg's Pilot SSH */
59
60 typedef enum {
61 SSH_MSG_NONE, SSH_MSG_DISCONNECT, SSH_SMSG_PUBLIC_KEY, //2
62 SSH_CMSG_SESSION_KEY, SSH_CMSG_USER, SSH_CMSG_AUTH_RHOSTS, // 5
63 SSH_CMSG_AUTH_RSA, SSH_SMSG_AUTH_RSA_CHALLENGE,
64 SSH_CMSG_AUTH_RSA_RESPONSE, SSH_CMSG_AUTH_PASSWORD,
65 SSH_CMSG_REQUEST_PTY, // 10
66 SSH_CMSG_WINDOW_SIZE, SSH_CMSG_EXEC_SHELL,
67 SSH_CMSG_EXEC_CMD, SSH_SMSG_SUCCESS, SSH_SMSG_FAILURE,
68 SSH_CMSG_STDIN_DATA, SSH_SMSG_STDOUT_DATA, SSH_SMSG_STDERR_DATA,
69 SSH_CMSG_EOF, SSH_SMSG_EXITSTATUS,
70 SSH_MSG_CHANNEL_OPEN_CONFIRMATION, SSH_MSG_CHANNEL_OPEN_FAILURE,
71 SSH_MSG_CHANNEL_DATA, SSH_MSG_CHANNEL_INPUT_EOF,
72 SSH_MSG_CHANNEL_OUTPUT_CLOSED, SSH_MSG_OBSOLETED0,
73 SSH_SMSG_X11_OPEN, SSH_CMSG_PORT_FORWARD_REQUEST, SSH_MSG_PORT_OPEN,
74 SSH_CMSG_AGENT_REQUEST_FORWARDING, SSH_SMSG_AGENT_OPEN,
75 SSH_MSG_IGNORE, SSH_CMSG_EXIT_CONFIRMATION,
76 SSH_CMSG_X11_REQUEST_FORWARDING, SSH_CMSG_AUTH_RHOSTS_RSA,
77 SSH_MSG_DEBUG, SSH_CMSG_REQUEST_COMPRESSION,
78 SSH_CMSG_MAX_PACKET_SIZE, SSH_CMSG_AUTH_TIS,
79 SSH_SMSG_AUTH_TIS_CHALLENGE, SSH_CMSG_AUTH_TIS_RESPONSE,
80 SSH_CMSG_AUTH_KERBEROS, SSH_SMSG_AUTH_KERBEROS_RESPONSE
81 } SSHMessage;
82
83 typedef enum {
84 SSH_CIPHER_NONE, SSH_CIPHER_IDEA, SSH_CIPHER_DES, SSH_CIPHER_3DES,
85 SSH_CIPHER_TSS, SSH_CIPHER_RC4, SSH_CIPHER_BLOWFISH,
86 // for SSH2
87 SSH2_CIPHER_3DES_CBC, SSH2_CIPHER_AES128_CBC,
88 SSH2_CIPHER_AES192_CBC, SSH2_CIPHER_AES256_CBC,
89 SSH2_CIPHER_BLOWFISH_CBC, SSH2_CIPHER_AES128_CTR,
90 SSH2_CIPHER_AES192_CTR, SSH2_CIPHER_AES256_CTR,
91 SSH2_CIPHER_ARCFOUR, SSH2_CIPHER_ARCFOUR128, SSH2_CIPHER_ARCFOUR256,
92 SSH2_CIPHER_CAST128_CBC,
93 SSH2_CIPHER_3DES_CTR, SSH2_CIPHER_BLOWFISH_CTR, SSH2_CIPHER_CAST128_CTR,
94 } SSHCipher;
95
96 #define SSH_CIPHER_MAX SSH2_CIPHER_CAST128_CTR
97
98 typedef enum {
99 SSH_AUTH_NONE, SSH_AUTH_RHOSTS, SSH_AUTH_RSA, SSH_AUTH_PASSWORD,
100 SSH_AUTH_RHOSTS_RSA, SSH_AUTH_TIS, SSH_AUTH_KERBEROS,
101 SSH_AUTH_PAGEANT = 16,
102 } SSHAuthMethod;
103
104 #define SSH_AUTH_MAX SSH_AUTH_PAGEANT
105
106 typedef enum {
107 SSH_GENERIC_AUTHENTICATION, SSH_TIS_AUTHENTICATION
108 } SSHAuthMode;
109
110 #define SSH_PROTOFLAG_SCREEN_NUMBER 1
111 #define SSH_PROTOFLAG_HOST_IN_FWD_OPEN 2
112
113 enum channel_type {
114 TYPE_SHELL, TYPE_PORTFWD, TYPE_SCP, TYPE_SFTP, TYPE_AGENT,
115 };
116
117 // for SSH1
118 #define SSH_MAX_SEND_PACKET_SIZE 250000
119
120 // for SSH2
121 /* default window/packet sizes for tcp/x11-fwd-channel */
122 // changed CHAN_SES_WINDOW_DEFAULT from 32KB to 128KB. (2007.10.29 maya)
123 #define CHAN_SES_PACKET_DEFAULT (32*1024)
124 #define CHAN_SES_WINDOW_DEFAULT (4*CHAN_SES_PACKET_DEFAULT)
125 #define CHAN_TCP_PACKET_DEFAULT (32*1024)
126 #define CHAN_TCP_WINDOW_DEFAULT (4*CHAN_TCP_PACKET_DEFAULT)
127 #if 0 // unused
128 #define CHAN_X11_PACKET_DEFAULT (16*1024)
129 #define CHAN_X11_WINDOW_DEFAULT (4*CHAN_X11_PACKET_DEFAULT)
130 #endif
131
132
133 /* SSH2 constants */
134
135 /* SSH2 messages */
136 #define SSH2_MSG_DISCONNECT 1
137 #define SSH2_MSG_IGNORE 2
138 #define SSH2_MSG_UNIMPLEMENTED 3
139 #define SSH2_MSG_DEBUG 4
140 #define SSH2_MSG_SERVICE_REQUEST 5
141 #define SSH2_MSG_SERVICE_ACCEPT 6
142
143 #define SSH2_MSG_KEXINIT 20
144 #define SSH2_MSG_NEWKEYS 21
145
146 #define SSH2_MSG_KEXDH_INIT 30
147 #define SSH2_MSG_KEXDH_REPLY 31
148
149 #define SSH2_MSG_KEX_DH_GEX_GROUP 31
150 #define SSH2_MSG_KEX_DH_GEX_INIT 32
151 #define SSH2_MSG_KEX_DH_GEX_REPLY 33
152 #define SSH2_MSG_KEX_DH_GEX_REQUEST 34
153
154 #define SSH2_MSG_KEX_ECDH_INIT 30
155 #define SSH2_MSG_KEX_ECDH_REPLY 31
156
157 #define SSH2_MSG_USERAUTH_REQUEST 50
158 #define SSH2_MSG_USERAUTH_FAILURE 51
159 #define SSH2_MSG_USERAUTH_SUCCESS 52
160 #define SSH2_MSG_USERAUTH_BANNER 53
161
162 #define SSH2_MSG_USERAUTH_PK_OK 60
163 #define SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ 60
164 #define SSH2_MSG_USERAUTH_INFO_REQUEST 60
165 #define SSH2_MSG_USERAUTH_INFO_RESPONSE 61
166
167 #define SSH2_MSG_GLOBAL_REQUEST 80
168 #define SSH2_MSG_REQUEST_SUCCESS 81
169 #define SSH2_MSG_REQUEST_FAILURE 82
170 #define SSH2_MSG_CHANNEL_OPEN 90
171 #define SSH2_MSG_CHANNEL_OPEN_CONFIRMATION 91
172 #define SSH2_MSG_CHANNEL_OPEN_FAILURE 92
173 #define SSH2_MSG_CHANNEL_WINDOW_ADJUST 93
174 #define SSH2_MSG_CHANNEL_DATA 94
175 #define SSH2_MSG_CHANNEL_EXTENDED_DATA 95
176 #define SSH2_MSG_CHANNEL_EOF 96
177 #define SSH2_MSG_CHANNEL_CLOSE 97
178 #define SSH2_MSG_CHANNEL_REQUEST 98
179 #define SSH2_MSG_CHANNEL_SUCCESS 99
180 #define SSH2_MSG_CHANNEL_FAILURE 100
181
182 /* SSH2 miscellaneous constants */
183 #define SSH2_DISCONNECT_HOST_NOT_ALLOWED_TO_CONNECT 1
184 #define SSH2_DISCONNECT_PROTOCOL_ERROR 2
185 #define SSH2_DISCONNECT_KEY_EXCHANGE_FAILED 3
186 #define SSH2_DISCONNECT_HOST_AUTHENTICATION_FAILED 4
187 #define SSH2_DISCONNECT_MAC_ERROR 5
188 #define SSH2_DISCONNECT_COMPRESSION_ERROR 6
189 #define SSH2_DISCONNECT_SERVICE_NOT_AVAILABLE 7
190 #define SSH2_DISCONNECT_PROTOCOL_VERSION_NOT_SUPPORTED 8
191 #define SSH2_DISCONNECT_HOST_KEY_NOT_VERIFIABLE 9
192 #define SSH2_DISCONNECT_CONNECTION_LOST 10
193 #define SSH2_DISCONNECT_BY_APPLICATION 11
194
195 #define SSH2_OPEN_ADMINISTRATIVELY_PROHIBITED 1
196 #define SSH2_OPEN_CONNECT_FAILED 2
197 #define SSH2_OPEN_UNKNOWN_CHANNEL_TYPE 3
198 #define SSH2_OPEN_RESOURCE_SHORTAGE 4
199
200 enum ssh_keytype {
201 KEY_NONE,
202 KEY_RSA1,
203 KEY_RSA,
204 KEY_DSA,
205 KEY_ECDSA256,
206 KEY_ECDSA384,
207 KEY_ECDSA521,
208 KEY_UNSPEC,
209 KEY_MAX = KEY_UNSPEC,
210 };
211 #define isECDSAkey(type) ((type) >= KEY_ECDSA256 && (type) <= KEY_ECDSA521)
212
213 typedef struct ssh2_host_key {
214 enum ssh_keytype type;
215 char *name;
216 } ssh2_host_key_t;
217
218 static ssh2_host_key_t ssh2_host_key[] = {
219 {KEY_NONE, "none"},
220 {KEY_RSA1, "ssh-rsa1"}, // for SSH1 only
221 {KEY_RSA, "ssh-rsa"},
222 {KEY_DSA, "ssh-dss"},
223 {KEY_ECDSA256, "ecdsa-sha2-nistp256"},
224 {KEY_ECDSA384, "ecdsa-sha2-nistp384"},
225 {KEY_ECDSA521, "ecdsa-sha2-nistp521"},
226 {KEY_UNSPEC, "ssh-unknown"},
227 };
228
229 #define KEX_DEFAULT_KEX "ecdh-sha2-nistp256," \
230 "ecdh-sha2-nistp384," \
231 "ecdh-sha2-nistp521," \
232 "diffie-hellman-group-exchange-sha256," \
233 "diffie-hellman-group-exchange-sha1," \
234 "diffie-hellman-group14-sha1," \
235 "diffie-hellman-group1-sha1"
236 #define KEX_DEFAULT_PK_ALG "ecdsa-sha2-nistp256," \
237 "ecdsa-sha2-nistp384," \
238 "ecdsa-sha2-nistp521," \
239 "ssh-rsa,ssh-dss"
240 // use the setting of pvar.CipherOrder.
241 #define KEX_DEFAULT_ENCRYPT ""
242 #define KEX_DEFAULT_MAC "hmac-sha1,hmac-md5"
243 // support of "Compression delayed" (2006.6.23 maya)
244 #define KEX_DEFAULT_COMP "none,zlib@openssh.com,zlib"
245 #define KEX_DEFAULT_LANG ""
246
247 /* Minimum modulus size (n) for RSA keys. */
248 #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
249
250 #define SSH_KEYGEN_DEFAULT_BITS 2048
251 #define SSH_RSA_MINIMUM_KEY_SIZE 768
252 #define SSH_DSA_MINIMUM_KEY_SIZE 1024
253
254 enum kex_init_proposals {
255 PROPOSAL_KEX_ALGS,
256 PROPOSAL_SERVER_HOST_KEY_ALGS,
257 PROPOSAL_ENC_ALGS_CTOS,
258 PROPOSAL_ENC_ALGS_STOC,
259 PROPOSAL_MAC_ALGS_CTOS,
260 PROPOSAL_MAC_ALGS_STOC,
261 PROPOSAL_COMP_ALGS_CTOS,
262 PROPOSAL_COMP_ALGS_STOC,
263 PROPOSAL_LANG_CTOS,
264 PROPOSAL_LANG_STOC,
265 PROPOSAL_MAX
266 };
267
268
269 // �N���C�A���g�����T�[�o������������
270 #ifdef SSH2_DEBUG
271 static char *myproposal[PROPOSAL_MAX] = {
272 // KEX_DEFAULT_KEX,
273 "diffie-hellman-group14-sha1,diffie-hellman-group1-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group-exchange-sha256",
274 KEX_DEFAULT_PK_ALG,
275 // "ssh-dss,ssh-rsa",
276 KEX_DEFAULT_ENCRYPT,
277 KEX_DEFAULT_ENCRYPT,
278 "hmac-md5,hmac-sha1",
279 "hmac-md5,hmac-sha1",
280 // "hmac-sha1",
281 // "hmac-sha1",
282 // KEX_DEFAULT_MAC,
283 // KEX_DEFAULT_MAC,
284 KEX_DEFAULT_COMP,
285 KEX_DEFAULT_COMP,
286 KEX_DEFAULT_LANG,
287 KEX_DEFAULT_LANG,
288 };
289 #else
290 static char *myproposal[PROPOSAL_MAX] = {
291 KEX_DEFAULT_KEX,
292 KEX_DEFAULT_PK_ALG,
293 KEX_DEFAULT_ENCRYPT,
294 KEX_DEFAULT_ENCRYPT,
295 KEX_DEFAULT_MAC,
296 KEX_DEFAULT_MAC,
297 KEX_DEFAULT_COMP,
298 KEX_DEFAULT_COMP,
299 KEX_DEFAULT_LANG,
300 KEX_DEFAULT_LANG,
301 };
302 #endif
303
304
305 typedef struct ssh2_cipher {
306 SSHCipher cipher;
307 char *name;
308 int block_size;
309 int key_len;
310 int discard_len;
311 const EVP_CIPHER *(*func)(void);
312 } ssh2_cipher_t;
313
314 static ssh2_cipher_t ssh2_ciphers[] = {
315 {SSH2_CIPHER_3DES_CBC, "3des-cbc", 8, 24, 0, EVP_des_ede3_cbc},
316 {SSH2_CIPHER_AES128_CBC, "aes128-cbc", 16, 16, 0, EVP_aes_128_cbc},
317 {SSH2_CIPHER_AES192_CBC, "aes192-cbc", 16, 24, 0, EVP_aes_192_cbc},
318 {SSH2_CIPHER_AES256_CBC, "aes256-cbc", 16, 32, 0, EVP_aes_256_cbc},
319 {SSH2_CIPHER_BLOWFISH_CBC, "blowfish-cbc", 8, 16, 0, EVP_bf_cbc},
320 {SSH2_CIPHER_AES128_CTR, "aes128-ctr", 16, 16, 0, evp_aes_128_ctr},
321 {SSH2_CIPHER_AES192_CTR, "aes192-ctr", 16, 24, 0, evp_aes_128_ctr},
322 {SSH2_CIPHER_AES256_CTR, "aes256-ctr", 16, 32, 0, evp_aes_128_ctr},
323 {SSH2_CIPHER_ARCFOUR, "arcfour", 8, 16, 0, EVP_rc4},
324 {SSH2_CIPHER_ARCFOUR128, "arcfour128", 8, 16, 1536, EVP_rc4},
325 {SSH2_CIPHER_ARCFOUR256, "arcfour256", 8, 32, 1536, EVP_rc4},
326 {SSH2_CIPHER_CAST128_CBC, "cast128-cbc", 8, 16, 0, EVP_cast5_cbc},
327 {SSH2_CIPHER_3DES_CTR, "3des-ctr", 8, 24, 0, evp_des3_ctr},
328 {SSH2_CIPHER_BLOWFISH_CTR, "blowfish-ctr", 8, 16, 0, evp_bf_ctr},
329 {SSH2_CIPHER_CAST128_CTR, "cast128-ctr", 8, 16, 0, evp_cast5_ctr},
330 {SSH_CIPHER_NONE, NULL, 0, 0, 0, NULL},
331 };
332
333
334 // ���L���C���f�b�N�X�� ssh2_kex_algorithms[] ���������������B
335 enum kex_algorithm {
336 KEX_DH_NONE, /* disabled line */
337 KEX_DH_GRP1_SHA1,
338 KEX_DH_GRP14_SHA1,
339 KEX_DH_GEX_SHA1,
340 KEX_DH_GEX_SHA256,
341 KEX_ECDH_SHA2_256,
342 KEX_ECDH_SHA2_384,
343 KEX_ECDH_SHA2_521,
344 KEX_DH_UNKNOWN,
345 KEX_DH_MAX = KEX_DH_UNKNOWN,
346 };
347
348 typedef struct ssh2_kex_algorithm {
349 enum kex_algorithm kextype;
350 char *name;
351 const EVP_MD *(*evp_md)(void);
352 } ssh2_kex_algorithm_t;
353
354 static ssh2_kex_algorithm_t ssh2_kex_algorithms[] = {
355 {KEX_DH_NONE , "none", NULL},
356 {KEX_DH_GRP1_SHA1, "diffie-hellman-group1-sha1", EVP_sha1},
357 {KEX_DH_GRP14_SHA1, "diffie-hellman-group14-sha1", EVP_sha1},
358 {KEX_DH_GEX_SHA1, "diffie-hellman-group-exchange-sha1", EVP_sha1},
359 {KEX_DH_GEX_SHA256, "diffie-hellman-group-exchange-sha256", EVP_sha256},
360 {KEX_ECDH_SHA2_256, "ecdh-sha2-nistp256", EVP_sha256},
361 {KEX_ECDH_SHA2_384, "ecdh-sha2-nistp384", EVP_sha384},
362 {KEX_ECDH_SHA2_521, "ecdh-sha2-nistp521", EVP_sha512},
363 {KEX_DH_UNKNOWN , NULL , NULL},
364 };
365
366
367 // ���L���C���f�b�N�X�� ssh2_macs[] ���������������B
368 enum hmac_type {
369 HMAC_NONE,
370 HMAC_SHA1,
371 HMAC_MD5,
372 HMAC_UNKNOWN,
373 HMAC_MAX = HMAC_UNKNOWN,
374 };
375
376 typedef struct ssh2_mac {
377 enum hmac_type type;
378 char *name;
379 const EVP_MD *(*func)(void);
380 int truncatebits;
381 } ssh2_mac_t;
382
383 static ssh2_mac_t ssh2_macs[] = {
384 {HMAC_NONE, "none", NULL, 0},
385 {HMAC_SHA1, "hmac-sha1", EVP_sha1, 0},
386 {HMAC_MD5, "hmac-md5", EVP_md5, 0},
387 {HMAC_UNKNOWN, NULL, NULL, 0},
388 };
389
390
391 // ���L���C���f�b�N�X�� ssh_comps[] ���������������B
392 enum compression_type {
393 COMP_NONE,
394 COMP_ZLIB,
395 COMP_DELAYED,
396 COMP_UNKNOWN,
397 COMP_MAX = COMP_UNKNOWN,
398 };
399
400 typedef struct ssh_comp {
401 enum compression_type type;
402 char *name;
403 } ssh_comp_t;
404
405 static ssh_comp_t ssh_comps[] = {
406 {COMP_NONE, "none"},
407 {COMP_ZLIB, "zlib"},
408 {COMP_DELAYED, "zlib@openssh.com"},
409 {COMP_UNKNOWN, NULL},
410 };
411
412
413 struct Enc {
414 u_char *key;
415 u_char *iv;
416 unsigned int key_len;
417 unsigned int block_size;
418 };
419
420 struct Mac {
421 char *name;
422 int enabled;
423 const EVP_MD *md;
424 int mac_len;
425 u_char *key;
426 int key_len;
427 };
428
429 struct Comp {
430 int type;
431 int enabled;
432 char *name;
433 };
434
435 typedef struct {
436 struct Enc enc;
437 struct Mac mac;
438 struct Comp comp;
439 } Newkeys;
440
441 #define roundup(x, y) ((((x)+((y)-1))/(y))*(y))
442
443 enum kex_modes {
444 MODE_IN,
445 MODE_OUT,
446 MODE_MAX
447 };
448
449
450 // �z�X�g�L�[(SSH1, SSH2����)���f�[�^�\�� (2006.3.21 yutaka)
451 typedef struct Key {
452 // host key type
453 enum ssh_keytype type;
454 // SSH2 RSA
455 RSA *rsa;
456 // SSH2 DSA
457 DSA *dsa;
458 // SSH2 ECDSA
459 EC_KEY *ecdsa;
460 // SSH1 RSA
461 int bits;
462 unsigned char *exp;
463 unsigned char *mod;
464 } Key;
465
466 // fingerprint������
467 enum fp_rep {
468 SSH_FP_HEX,
469 SSH_FP_BUBBLEBABBLE,
470 SSH_FP_RANDOMART
471 };
472
473 enum scp_dir {
474 TOREMOTE, FROMREMOTE,
475 };
476
477 /* The packet handler returns TRUE to keep the handler in place,
478 FALSE to remove the handler. */
479 typedef BOOL (* SSHPacketHandler)(PTInstVar pvar);
480
481 typedef struct _SSHPacketHandlerItem SSHPacketHandlerItem;
482 struct _SSHPacketHandlerItem {
483 SSHPacketHandler handler;
484 /* Circular list of handlers for given message */
485 SSHPacketHandlerItem FAR * next_for_message;
486 SSHPacketHandlerItem FAR * last_for_message;
487 /* Circular list of handlers in set */
488 SSHPacketHandlerItem FAR * next_in_set;
489 int active_for_message;
490 };
491
492 typedef struct {
493 char FAR * hostname;
494
495 int server_protocol_flags;
496 char FAR * server_ID;
497
498 /* This buffer is used to hold the outgoing data, and encrypted in-place
499 here if necessary. */
500 unsigned char FAR * outbuf;
501 long outbuflen;
502 /* This buffer is used by the SSH protocol processing to store uncompressed
503 packet data for compression. User data is never streamed through here;
504 it is compressed directly from the user's buffer. */
505 unsigned char FAR * precompress_outbuf;
506 long precompress_outbuflen;
507 /* this is the length of the packet data, including the type header */
508 long outgoing_packet_len;
509
510 /* This buffer is used by the SSH protocol processing to store decompressed
511 packet data. User data is never streamed through here; it is decompressed
512 directly to the user's buffer. */
513 unsigned char FAR * postdecompress_inbuf;
514 long postdecompress_inbuflen;
515
516 unsigned char FAR * payload;
517 long payload_grabbed;
518 long payloadlen;
519 long payload_datastart;
520 long payload_datalen;
521
522 uint32 receiver_sequence_number;
523 uint32 sender_sequence_number;
524
525 z_stream compress_stream;
526 z_stream decompress_stream;
527 BOOL compressing;
528 BOOL decompressing;
529 int compression_level;
530
531 SSHPacketHandlerItem FAR * packet_handlers[256];
532 int status_flags;
533
534 int win_cols;
535 int win_rows;
536
537 unsigned short tcpport;
538 } SSHState;
539
540 #define STATUS_DONT_SEND_USER_NAME 0x01
541 #define STATUS_EXPECTING_COMPRESSION_RESPONSE 0x02
542 #define STATUS_DONT_SEND_CREDENTIALS 0x04
543 #define STATUS_HOST_OK 0x08
544 #define STATUS_INTERACTIVE 0x10
545 #define STATUS_IN_PARTIAL_ID_STRING 0x20
546
547 void SSH_init(PTInstVar pvar);
548 void SSH_open(PTInstVar pvar);
549 void SSH_notify_disconnecting(PTInstVar pvar, char FAR * reason);
550 /* SSH_handle_server_ID returns TRUE iff a valid ID string has been
551 received. If it returns FALSE, we need to keep looking for another
552 ID string. */
553 BOOL SSH_handle_server_ID(PTInstVar pvar, char FAR * ID, int ID_len);
554 /* SSH_handle_packet requires NO PAYLOAD on entry.
555 'len' is the size of the packet: payload + padding (+ CRC for SSHv1)
556 'padding' is the size of the padding.
557 'data' points to the start of the packet data (the length field)
558 */
559 void SSH_handle_packet(PTInstVar pvar, char FAR * data, int len, int padding);
560 void SSH_notify_win_size(PTInstVar pvar, int cols, int rows);
561 void SSH_notify_user_name(PTInstVar pvar);
562 void SSH_notify_cred(PTInstVar pvar);
563 void SSH_notify_host_OK(PTInstVar pvar);
564 void SSH_send(PTInstVar pvar, unsigned char const FAR * buf, unsigned int buflen);
565 /* SSH_extract_payload returns number of bytes extracted */
566 int SSH_extract_payload(PTInstVar pvar, unsigned char FAR * dest, int len);
567 void SSH_end(PTInstVar pvar);
568
569 void SSH_get_server_ID_info(PTInstVar pvar, char FAR * dest, int len);
570 void SSH_get_protocol_version_info(PTInstVar pvar, char FAR * dest, int len);
571 void SSH_get_compression_info(PTInstVar pvar, char FAR * dest, int len);
572
573 /* len must be <= SSH_MAX_SEND_PACKET_SIZE */
574 void SSH_channel_send(PTInstVar pvar, int channel_num,
575 uint32 remote_channel_num,
576 unsigned char FAR * buf, int len);
577 void SSH_fail_channel_open(PTInstVar pvar, uint32 remote_channel_num);
578 void SSH_confirm_channel_open(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
579 void SSH_channel_output_eof(PTInstVar pvar, uint32 remote_channel_num);
580 void SSH_channel_input_eof(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
581 void SSH_request_forwarding(PTInstVar pvar, char FAR * bind_address, int from_server_port,
582 char FAR * to_local_host, int to_local_port);
583 void SSH_request_X11_forwarding(PTInstVar pvar,
584 char FAR * auth_protocol, unsigned char FAR * auth_data, int auth_data_len, int screen_num);
585 void SSH_open_channel(PTInstVar pvar, uint32 local_channel_num,
586 char FAR * to_remote_host, int to_remote_port,
587 char FAR * originator, unsigned short originator_port);
588
589 int SSH_start_scp(PTInstVar pvar, char *sendfile, char *dstfile);
590 int SSH_start_scp_receive(PTInstVar pvar, char *filename);
591 int SSH_scp_transaction(PTInstVar pvar, char *sendfile, char *dstfile, enum scp_dir direction);
592 int SSH_sftp_transaction(PTInstVar pvar);
593
594 /* auxiliary SSH2 interfaces for pkt.c */
595 int SSH_get_min_packet_size(PTInstVar pvar);
596 /* data is guaranteed to be at least SSH_get_min_packet_size bytes long
597 at least 5 bytes must be decrypted */
598 void SSH_predecrpyt_packet(PTInstVar pvar, char FAR * data);
599 int SSH_get_clear_MAC_size(PTInstVar pvar);
600
601 #define SSH_is_any_payload(pvar) ((pvar)->ssh_state.payload_datalen > 0)
602 #define SSH_get_host_name(pvar) ((pvar)->ssh_state.hostname)
603 #define SSH_get_compression_level(pvar) ((pvar)->ssh_state.compressing ? (pvar)->ts_SSH_CompressionLevel : 0)
604
605 void SSH2_send_kexinit(PTInstVar pvar);
606 BOOL do_SSH2_userauth(PTInstVar pvar);
607 BOOL do_SSH2_authrequest(PTInstVar pvar);
608 void debug_print(int no, char *msg, int len);
609 int get_cipher_block_size(SSHCipher cipher);
610 int get_cipher_key_len(SSHCipher cipher);
611 const EVP_CIPHER* get_cipher_EVP_CIPHER(SSHCipher cipher);
612 int get_cipher_discard_len(SSHCipher cipher);
613 void ssh_heartbeat_lock_initialize(void);
614 void ssh_heartbeat_lock_finalize(void);
615 void ssh_heartbeat_lock(void);
616 void ssh_heartbeat_unlock(void);
617 void halt_ssh_heartbeat_thread(PTInstVar pvar);
618 void ssh2_channel_free(void);
619 BOOL handle_SSH2_userauth_inforeq(PTInstVar pvar);
620 BOOL handle_SSH2_userauth_passwd_changereq(PTInstVar pvar);
621 void SSH2_update_compression_myproposal(PTInstVar pvar);
622 void SSH2_update_cipher_myproposal(PTInstVar pvar);
623 void SSH2_update_kex_myproposal(PTInstVar pvar);
624 void SSH2_update_host_key_myproposal(PTInstVar pvar);
625 void SSH2_update_hmac_myproposal(PTInstVar pvar);
626 int SSH_notify_break_signal(PTInstVar pvar);
627
628 #endif
Back to OSDN">Back to OSDN
 ViewVC Help
Powered by ViewVC 1.1.26  
About OSDN
Find Software
Develop Software
Help