Develop and Download Open Source Software

Tera Term

Browse Subversion Repository

/[ttssh2]/branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Contents of /branches/ssh_chacha20poly1305/ttssh2/ttxssh/ssh.h

Parent Directory Parent Directory | Revision Log Revision Log

Revision 4425 - (show annotations) (download) (as text)
Fri Apr 8 08:31:26 2011 UTC (13 years ago) by doda
Original Path: trunk/ttssh2/ttxssh/ssh.h
File MIME type: text/x-chdr
File size: 21375 byte(s) 
hmac-sha2 サポート。ドラフトだし、動作確認もまだなので無効化中。
http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-00.txt

# 気が早すぎ
1 /*
2 Copyright (c) 1998-2001, Robert O'Callahan
3 All rights reserved.
4
5 Redistribution and use in source and binary forms, with or without modification,
6 are permitted provided that the following conditions are met:
7
8 Redistributions of source code must retain the above copyright notice, this list of
9 conditions and the following disclaimer.
10
11 Redistributions in binary form must reproduce the above copyright notice, this list
12 of conditions and the following disclaimer in the documentation and/or other materials
13 provided with the distribution.
14
15 The name of Robert O'Callahan may not be used to endorse or promote products derived from
16 this software without specific prior written permission.
17
18 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ``AS IS'' AND
19 ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
21 THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
22 EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
23 SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
25 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
26 SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27 */
28
29 /*
30 This code is copyright (C) 1998-1999 Robert O'Callahan.
31 See LICENSE.TXT for the license.
32 */
33
34 #ifndef __SSH_H
35 #define __SSH_H
36
37 #include "zlib.h"
38 #include <openssl/evp.h>
39
40 #include "buffer.h"
41
42 #define DEBUG_PRINT_TO_FILE(base, msg, len) { \
43 static int count = 0; \
44 debug_print(count + base, msg, len); \
45 count++; \
46 }
47
48 // from OpenSSH
49 extern const EVP_CIPHER *evp_aes_128_ctr(void);
50 extern const EVP_CIPHER *evp_des3_ctr(void);
51 extern const EVP_CIPHER *evp_bf_ctr(void);
52 extern const EVP_CIPHER *evp_cast5_ctr(void);
53
54 // yutaka
55 #define SSH2_USE
56
57
58 /* Some of this code has been adapted from Ian Goldberg's Pilot SSH */
59
60 typedef enum {
61 SSH_MSG_NONE, SSH_MSG_DISCONNECT, SSH_SMSG_PUBLIC_KEY, //2
62 SSH_CMSG_SESSION_KEY, SSH_CMSG_USER, SSH_CMSG_AUTH_RHOSTS, // 5
63 SSH_CMSG_AUTH_RSA, SSH_SMSG_AUTH_RSA_CHALLENGE,
64 SSH_CMSG_AUTH_RSA_RESPONSE, SSH_CMSG_AUTH_PASSWORD,
65 SSH_CMSG_REQUEST_PTY, // 10
66 SSH_CMSG_WINDOW_SIZE, SSH_CMSG_EXEC_SHELL,
67 SSH_CMSG_EXEC_CMD, SSH_SMSG_SUCCESS, SSH_SMSG_FAILURE,
68 SSH_CMSG_STDIN_DATA, SSH_SMSG_STDOUT_DATA, SSH_SMSG_STDERR_DATA,
69 SSH_CMSG_EOF, SSH_SMSG_EXITSTATUS,
70 SSH_MSG_CHANNEL_OPEN_CONFIRMATION, SSH_MSG_CHANNEL_OPEN_FAILURE,
71 SSH_MSG_CHANNEL_DATA, SSH_MSG_CHANNEL_INPUT_EOF,
72 SSH_MSG_CHANNEL_OUTPUT_CLOSED, SSH_MSG_OBSOLETED0,
73 SSH_SMSG_X11_OPEN, SSH_CMSG_PORT_FORWARD_REQUEST, SSH_MSG_PORT_OPEN,
74 SSH_CMSG_AGENT_REQUEST_FORWARDING, SSH_SMSG_AGENT_OPEN,
75 SSH_MSG_IGNORE, SSH_CMSG_EXIT_CONFIRMATION,
76 SSH_CMSG_X11_REQUEST_FORWARDING, SSH_CMSG_AUTH_RHOSTS_RSA,
77 SSH_MSG_DEBUG, SSH_CMSG_REQUEST_COMPRESSION,
78 SSH_CMSG_MAX_PACKET_SIZE, SSH_CMSG_AUTH_TIS,
79 SSH_SMSG_AUTH_TIS_CHALLENGE, SSH_CMSG_AUTH_TIS_RESPONSE,
80 SSH_CMSG_AUTH_KERBEROS, SSH_SMSG_AUTH_KERBEROS_RESPONSE
81 } SSHMessage;
82
83 typedef enum {
84 SSH_CIPHER_NONE, SSH_CIPHER_IDEA, SSH_CIPHER_DES, SSH_CIPHER_3DES,
85 SSH_CIPHER_TSS, SSH_CIPHER_RC4, SSH_CIPHER_BLOWFISH,
86 // for SSH2
87 SSH2_CIPHER_3DES_CBC, SSH2_CIPHER_AES128_CBC,
88 SSH2_CIPHER_AES192_CBC, SSH2_CIPHER_AES256_CBC,
89 SSH2_CIPHER_BLOWFISH_CBC, SSH2_CIPHER_AES128_CTR,
90 SSH2_CIPHER_AES192_CTR, SSH2_CIPHER_AES256_CTR,
91 SSH2_CIPHER_ARCFOUR, SSH2_CIPHER_ARCFOUR128, SSH2_CIPHER_ARCFOUR256,
92 SSH2_CIPHER_CAST128_CBC,
93 SSH2_CIPHER_3DES_CTR, SSH2_CIPHER_BLOWFISH_CTR, SSH2_CIPHER_CAST128_CTR,
94 SSH_CIPHER_MAX = SSH2_CIPHER_CAST128_CTR,
95 } SSHCipher;
96
97 typedef enum {
98 SSH_AUTH_NONE, SSH_AUTH_RHOSTS, SSH_AUTH_RSA, SSH_AUTH_PASSWORD,
99 SSH_AUTH_RHOSTS_RSA, SSH_AUTH_TIS, SSH_AUTH_KERBEROS,
100 SSH_AUTH_PAGEANT = 16,
101 SSH_AUTH_MAX = SSH_AUTH_PAGEANT,
102 } SSHAuthMethod;
103
104 typedef enum {
105 SSH_GENERIC_AUTHENTICATION, SSH_TIS_AUTHENTICATION
106 } SSHAuthMode;
107
108 #define SSH_PROTOFLAG_SCREEN_NUMBER 1
109 #define SSH_PROTOFLAG_HOST_IN_FWD_OPEN 2
110
111 enum channel_type {
112 TYPE_SHELL, TYPE_PORTFWD, TYPE_SCP, TYPE_SFTP, TYPE_AGENT,
113 };
114
115 // for SSH1
116 #define SSH_MAX_SEND_PACKET_SIZE 250000
117
118 // for SSH2
119 /* default window/packet sizes for tcp/x11-fwd-channel */
120 // changed CHAN_SES_WINDOW_DEFAULT from 32KB to 128KB. (2007.10.29 maya)
121 #define CHAN_SES_PACKET_DEFAULT (32*1024)
122 #define CHAN_SES_WINDOW_DEFAULT (4*CHAN_SES_PACKET_DEFAULT)
123 #define CHAN_TCP_PACKET_DEFAULT (32*1024)
124 #define CHAN_TCP_WINDOW_DEFAULT (4*CHAN_TCP_PACKET_DEFAULT)
125 #if 0 // unused
126 #define CHAN_X11_PACKET_DEFAULT (16*1024)
127 #define CHAN_X11_WINDOW_DEFAULT (4*CHAN_X11_PACKET_DEFAULT)
128 #endif
129
130
131 /* SSH2 constants */
132
133 /* SSH2 messages */
134 #define SSH2_MSG_DISCONNECT 1
135 #define SSH2_MSG_IGNORE 2
136 #define SSH2_MSG_UNIMPLEMENTED 3
137 #define SSH2_MSG_DEBUG 4
138 #define SSH2_MSG_SERVICE_REQUEST 5
139 #define SSH2_MSG_SERVICE_ACCEPT 6
140
141 #define SSH2_MSG_KEXINIT 20
142 #define SSH2_MSG_NEWKEYS 21
143
144 #define SSH2_MSG_KEXDH_INIT 30
145 #define SSH2_MSG_KEXDH_REPLY 31
146
147 #define SSH2_MSG_KEX_DH_GEX_GROUP 31
148 #define SSH2_MSG_KEX_DH_GEX_INIT 32
149 #define SSH2_MSG_KEX_DH_GEX_REPLY 33
150 #define SSH2_MSG_KEX_DH_GEX_REQUEST 34
151
152 #define SSH2_MSG_KEX_ECDH_INIT 30
153 #define SSH2_MSG_KEX_ECDH_REPLY 31
154
155 #define SSH2_MSG_USERAUTH_REQUEST 50
156 #define SSH2_MSG_USERAUTH_FAILURE 51
157 #define SSH2_MSG_USERAUTH_SUCCESS 52
158 #define SSH2_MSG_USERAUTH_BANNER 53
159
160 #define SSH2_MSG_USERAUTH_PK_OK 60
161 #define SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ 60
162 #define SSH2_MSG_USERAUTH_INFO_REQUEST 60
163 #define SSH2_MSG_USERAUTH_INFO_RESPONSE 61
164
165 #define SSH2_MSG_GLOBAL_REQUEST 80
166 #define SSH2_MSG_REQUEST_SUCCESS 81
167 #define SSH2_MSG_REQUEST_FAILURE 82
168 #define SSH2_MSG_CHANNEL_OPEN 90
169 #define SSH2_MSG_CHANNEL_OPEN_CONFIRMATION 91
170 #define SSH2_MSG_CHANNEL_OPEN_FAILURE 92
171 #define SSH2_MSG_CHANNEL_WINDOW_ADJUST 93
172 #define SSH2_MSG_CHANNEL_DATA 94
173 #define SSH2_MSG_CHANNEL_EXTENDED_DATA 95
174 #define SSH2_MSG_CHANNEL_EOF 96
175 #define SSH2_MSG_CHANNEL_CLOSE 97
176 #define SSH2_MSG_CHANNEL_REQUEST 98
177 #define SSH2_MSG_CHANNEL_SUCCESS 99
178 #define SSH2_MSG_CHANNEL_FAILURE 100
179
180 /* SSH2 miscellaneous constants */
181 #define SSH2_DISCONNECT_HOST_NOT_ALLOWED_TO_CONNECT 1
182 #define SSH2_DISCONNECT_PROTOCOL_ERROR 2
183 #define SSH2_DISCONNECT_KEY_EXCHANGE_FAILED 3
184 #define SSH2_DISCONNECT_HOST_AUTHENTICATION_FAILED 4
185 #define SSH2_DISCONNECT_MAC_ERROR 5
186 #define SSH2_DISCONNECT_COMPRESSION_ERROR 6
187 #define SSH2_DISCONNECT_SERVICE_NOT_AVAILABLE 7
188 #define SSH2_DISCONNECT_PROTOCOL_VERSION_NOT_SUPPORTED 8
189 #define SSH2_DISCONNECT_HOST_KEY_NOT_VERIFIABLE 9
190 #define SSH2_DISCONNECT_CONNECTION_LOST 10
191 #define SSH2_DISCONNECT_BY_APPLICATION 11
192
193 #define SSH2_OPEN_ADMINISTRATIVELY_PROHIBITED 1
194 #define SSH2_OPEN_CONNECT_FAILED 2
195 #define SSH2_OPEN_UNKNOWN_CHANNEL_TYPE 3
196 #define SSH2_OPEN_RESOURCE_SHORTAGE 4
197
198
199 // �N���C�A���g�����T�[�o������������
200 enum kex_init_proposals {
201 PROPOSAL_KEX_ALGS,
202 PROPOSAL_SERVER_HOST_KEY_ALGS,
203 PROPOSAL_ENC_ALGS_CTOS,
204 PROPOSAL_ENC_ALGS_STOC,
205 PROPOSAL_MAC_ALGS_CTOS,
206 PROPOSAL_MAC_ALGS_STOC,
207 PROPOSAL_COMP_ALGS_CTOS,
208 PROPOSAL_COMP_ALGS_STOC,
209 PROPOSAL_LANG_CTOS,
210 PROPOSAL_LANG_STOC,
211 PROPOSAL_MAX
212 };
213
214 #define KEX_DEFAULT_KEX ""
215 #define KEX_DEFAULT_PK_ALG ""
216 #define KEX_DEFAULT_ENCRYPT ""
217 #define KEX_DEFAULT_MAC ""
218 #define KEX_DEFAULT_COMP ""
219 #define KEX_DEFAULT_LANG ""
220
221 static char *myproposal[PROPOSAL_MAX] = {
222 KEX_DEFAULT_KEX,
223 KEX_DEFAULT_PK_ALG,
224 KEX_DEFAULT_ENCRYPT,
225 KEX_DEFAULT_ENCRYPT,
226 KEX_DEFAULT_MAC,
227 KEX_DEFAULT_MAC,
228 KEX_DEFAULT_COMP,
229 KEX_DEFAULT_COMP,
230 KEX_DEFAULT_LANG,
231 KEX_DEFAULT_LANG,
232 };
233
234
235 typedef enum {
236 KEY_NONE,
237 KEY_RSA1,
238 KEY_RSA,
239 KEY_DSA,
240 KEY_ECDSA256,
241 KEY_ECDSA384,
242 KEY_ECDSA521,
243 KEY_UNSPEC,
244 KEY_MAX = KEY_UNSPEC,
245 } ssh_keytype;
246 #define isECDSAkey(type) ((type) >= KEY_ECDSA256 && (type) <= KEY_ECDSA521)
247
248 typedef struct ssh2_host_key {
249 ssh_keytype type;
250 char *name;
251 } ssh2_host_key_t;
252
253 static ssh2_host_key_t ssh2_host_key[] = {
254 {KEY_RSA1, "ssh-rsa1"}, // for SSH1 only
255 {KEY_RSA, "ssh-rsa"},
256 {KEY_DSA, "ssh-dss"},
257 {KEY_ECDSA256, "ecdsa-sha2-nistp256"},
258 {KEY_ECDSA384, "ecdsa-sha2-nistp384"},
259 {KEY_ECDSA521, "ecdsa-sha2-nistp521"},
260 {KEY_UNSPEC, "ssh-unknown"},
261 {KEY_NONE, NULL},
262 };
263
264 /* Minimum modulus size (n) for RSA keys. */
265 #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
266
267 #define SSH_KEYGEN_DEFAULT_BITS 2048
268 #define SSH_RSA_MINIMUM_KEY_SIZE 768
269 #define SSH_DSA_MINIMUM_KEY_SIZE 1024
270
271
272 typedef struct ssh2_cipher {
273 SSHCipher cipher;
274 char *name;
275 int block_size;
276 int key_len;
277 int discard_len;
278 const EVP_CIPHER *(*func)(void);
279 } ssh2_cipher_t;
280
281 static ssh2_cipher_t ssh2_ciphers[] = {
282 {SSH2_CIPHER_3DES_CBC, "3des-cbc", 8, 24, 0, EVP_des_ede3_cbc},
283 {SSH2_CIPHER_AES128_CBC, "aes128-cbc", 16, 16, 0, EVP_aes_128_cbc},
284 {SSH2_CIPHER_AES192_CBC, "aes192-cbc", 16, 24, 0, EVP_aes_192_cbc},
285 {SSH2_CIPHER_AES256_CBC, "aes256-cbc", 16, 32, 0, EVP_aes_256_cbc},
286 {SSH2_CIPHER_BLOWFISH_CBC, "blowfish-cbc", 8, 16, 0, EVP_bf_cbc},
287 {SSH2_CIPHER_AES128_CTR, "aes128-ctr", 16, 16, 0, evp_aes_128_ctr},
288 {SSH2_CIPHER_AES192_CTR, "aes192-ctr", 16, 24, 0, evp_aes_128_ctr},
289 {SSH2_CIPHER_AES256_CTR, "aes256-ctr", 16, 32, 0, evp_aes_128_ctr},
290 {SSH2_CIPHER_ARCFOUR, "arcfour", 8, 16, 0, EVP_rc4},
291 {SSH2_CIPHER_ARCFOUR128, "arcfour128", 8, 16, 1536, EVP_rc4},
292 {SSH2_CIPHER_ARCFOUR256, "arcfour256", 8, 32, 1536, EVP_rc4},
293 {SSH2_CIPHER_CAST128_CBC, "cast128-cbc", 8, 16, 0, EVP_cast5_cbc},
294 {SSH2_CIPHER_3DES_CTR, "3des-ctr", 8, 24, 0, evp_des3_ctr},
295 {SSH2_CIPHER_BLOWFISH_CTR, "blowfish-ctr", 8, 16, 0, evp_bf_ctr},
296 {SSH2_CIPHER_CAST128_CTR, "cast128-ctr", 8, 16, 0, evp_cast5_ctr},
297 {SSH_CIPHER_NONE, NULL, 0, 0, 0, NULL},
298 };
299
300
301 typedef enum {
302 KEX_DH_NONE, /* disabled line */
303 KEX_DH_GRP1_SHA1,
304 KEX_DH_GRP14_SHA1,
305 KEX_DH_GEX_SHA1,
306 KEX_DH_GEX_SHA256,
307 KEX_ECDH_SHA2_256,
308 KEX_ECDH_SHA2_384,
309 KEX_ECDH_SHA2_521,
310 KEX_DH_UNKNOWN,
311 KEX_DH_MAX = KEX_DH_UNKNOWN,
312 } kex_algorithm;
313
314 typedef struct ssh2_kex_algorithm {
315 kex_algorithm kextype;
316 char *name;
317 const EVP_MD *(*evp_md)(void);
318 } ssh2_kex_algorithm_t;
319
320 static ssh2_kex_algorithm_t ssh2_kex_algorithms[] = {
321 {KEX_DH_GRP1_SHA1, "diffie-hellman-group1-sha1", EVP_sha1},
322 {KEX_DH_GRP14_SHA1, "diffie-hellman-group14-sha1", EVP_sha1},
323 {KEX_DH_GEX_SHA1, "diffie-hellman-group-exchange-sha1", EVP_sha1},
324 {KEX_DH_GEX_SHA256, "diffie-hellman-group-exchange-sha256", EVP_sha256},
325 {KEX_ECDH_SHA2_256, "ecdh-sha2-nistp256", EVP_sha256},
326 {KEX_ECDH_SHA2_384, "ecdh-sha2-nistp384", EVP_sha384},
327 {KEX_ECDH_SHA2_521, "ecdh-sha2-nistp521", EVP_sha512},
328 {KEX_DH_NONE , NULL, NULL},
329 };
330
331
332 typedef enum {
333 HMAC_NONE, /* disabled line */
334 HMAC_SHA1,
335 HMAC_MD5,
336 HMAC_SHA1_96,
337 HMAC_MD5_96,
338 HMAC_RIPEMD160,
339 #if 0 // HMAC-SHA2 support
340 HMAC_SHA2_256,
341 HMAC_SHA2_256_96,
342 HMAC_SHA2_512,
343 HMAC_SHA2_512_96,
344 #endif // HMAC-SHA2 support
345 HMAC_UNKNOWN,
346 HMAC_MAX = HMAC_UNKNOWN,
347 } hmac_type;
348
349 typedef struct ssh2_mac {
350 hmac_type type;
351 char *name;
352 const EVP_MD *(*evp_md)(void);
353 int truncatebits;
354 } ssh2_mac_t;
355
356 static ssh2_mac_t ssh2_macs[] = {
357 {HMAC_SHA1, "hmac-sha1", EVP_sha1, 0},
358 {HMAC_MD5, "hmac-md5", EVP_md5, 0},
359 {HMAC_SHA1_96, "hmac-sha1-96", EVP_sha1, 96},
360 {HMAC_MD5_96, "hmac-md5-96", EVP_md5, 96},
361 {HMAC_RIPEMD160, "hmac-ripemd160@openssh.com", EVP_ripemd160, 0},
362 #if 0 // HMAC-SHA2 support
363 {HMAC_SHA2_256, "hmac-sha2-256", EVP_sha256, 0},
364 {HMAC_SHA2_256_96, "hmac-sha2-256-96", EVP_sha256, 96},
365 {HMAC_SHA2_512, "hmac-sha2-512", EVP_sha512, 0},
366 {HMAC_SHA2_512_96, "hmac-sha2-512-96", EVP_sha512, 96},
367 #endif // HMAC-SHA2 support
368 {HMAC_NONE, NULL, NULL, 0},
369 };
370
371
372 typedef enum {
373 COMP_NONE, /* disabled line */
374 COMP_NOCOMP,
375 COMP_ZLIB,
376 COMP_DELAYED,
377 COMP_UNKNOWN,
378 COMP_MAX = COMP_UNKNOWN,
379 } compression_type;
380
381 typedef struct ssh2_comp {
382 compression_type type;
383 char *name;
384 } ssh2_comp_t;
385
386 static ssh2_comp_t ssh2_comps[] = {
387 {COMP_NOCOMP, "none"},
388 {COMP_ZLIB, "zlib"},
389 {COMP_DELAYED, "zlib@openssh.com"},
390 {COMP_NONE, NULL},
391 };
392
393
394 struct Enc {
395 u_char *key;
396 u_char *iv;
397 unsigned int key_len;
398 unsigned int block_size;
399 };
400
401 struct Mac {
402 char *name;
403 int enabled;
404 const EVP_MD *md;
405 int mac_len;
406 u_char *key;
407 int key_len;
408 };
409
410 struct Comp {
411 int type;
412 int enabled;
413 char *name;
414 };
415
416 typedef struct {
417 struct Enc enc;
418 struct Mac mac;
419 struct Comp comp;
420 } Newkeys;
421
422 #define roundup(x, y) ((((x)+((y)-1))/(y))*(y))
423
424 enum kex_modes {
425 MODE_IN,
426 MODE_OUT,
427 MODE_MAX
428 };
429
430
431 // �z�X�g�L�[(SSH1, SSH2����)���f�[�^�\�� (2006.3.21 yutaka)
432 typedef struct Key {
433 // host key type
434 ssh_keytype type;
435 // SSH2 RSA
436 RSA *rsa;
437 // SSH2 DSA
438 DSA *dsa;
439 // SSH2 ECDSA
440 EC_KEY *ecdsa;
441 // SSH1 RSA
442 int bits;
443 unsigned char *exp;
444 unsigned char *mod;
445 } Key;
446
447 // fingerprint������
448 enum fp_rep {
449 SSH_FP_HEX,
450 SSH_FP_BUBBLEBABBLE,
451 SSH_FP_RANDOMART
452 };
453
454 enum scp_dir {
455 TOREMOTE, FROMREMOTE,
456 };
457
458 /* The packet handler returns TRUE to keep the handler in place,
459 FALSE to remove the handler. */
460 typedef BOOL (* SSHPacketHandler)(PTInstVar pvar);
461
462 typedef struct _SSHPacketHandlerItem SSHPacketHandlerItem;
463 struct _SSHPacketHandlerItem {
464 SSHPacketHandler handler;
465 /* Circular list of handlers for given message */
466 SSHPacketHandlerItem FAR * next_for_message;
467 SSHPacketHandlerItem FAR * last_for_message;
468 /* Circular list of handlers in set */
469 SSHPacketHandlerItem FAR * next_in_set;
470 int active_for_message;
471 };
472
473 typedef struct {
474 char FAR * hostname;
475
476 int server_protocol_flags;
477 char FAR * server_ID;
478
479 /* This buffer is used to hold the outgoing data, and encrypted in-place
480 here if necessary. */
481 unsigned char FAR * outbuf;
482 long outbuflen;
483 /* This buffer is used by the SSH protocol processing to store uncompressed
484 packet data for compression. User data is never streamed through here;
485 it is compressed directly from the user's buffer. */
486 unsigned char FAR * precompress_outbuf;
487 long precompress_outbuflen;
488 /* this is the length of the packet data, including the type header */
489 long outgoing_packet_len;
490
491 /* This buffer is used by the SSH protocol processing to store decompressed
492 packet data. User data is never streamed through here; it is decompressed
493 directly to the user's buffer. */
494 unsigned char FAR * postdecompress_inbuf;
495 long postdecompress_inbuflen;
496
497 unsigned char FAR * payload;
498 long payload_grabbed;
499 long payloadlen;
500 long payload_datastart;
501 long payload_datalen;
502
503 uint32 receiver_sequence_number;
504 uint32 sender_sequence_number;
505
506 z_stream compress_stream;
507 z_stream decompress_stream;
508 BOOL compressing;
509 BOOL decompressing;
510 int compression_level;
511
512 SSHPacketHandlerItem FAR * packet_handlers[256];
513 int status_flags;
514
515 int win_cols;
516 int win_rows;
517
518 unsigned short tcpport;
519 } SSHState;
520
521 #define STATUS_DONT_SEND_USER_NAME 0x01
522 #define STATUS_EXPECTING_COMPRESSION_RESPONSE 0x02
523 #define STATUS_DONT_SEND_CREDENTIALS 0x04
524 #define STATUS_HOST_OK 0x08
525 #define STATUS_INTERACTIVE 0x10
526 #define STATUS_IN_PARTIAL_ID_STRING 0x20
527
528 void SSH_init(PTInstVar pvar);
529 void SSH_open(PTInstVar pvar);
530 void SSH_notify_disconnecting(PTInstVar pvar, char FAR * reason);
531 /* SSH_handle_server_ID returns TRUE iff a valid ID string has been
532 received. If it returns FALSE, we need to keep looking for another
533 ID string. */
534 BOOL SSH_handle_server_ID(PTInstVar pvar, char FAR * ID, int ID_len);
535 /* SSH_handle_packet requires NO PAYLOAD on entry.
536 'len' is the size of the packet: payload + padding (+ CRC for SSHv1)
537 'padding' is the size of the padding.
538 'data' points to the start of the packet data (the length field)
539 */
540 void SSH_handle_packet(PTInstVar pvar, char FAR * data, int len, int padding);
541 void SSH_notify_win_size(PTInstVar pvar, int cols, int rows);
542 void SSH_notify_user_name(PTInstVar pvar);
543 void SSH_notify_cred(PTInstVar pvar);
544 void SSH_notify_host_OK(PTInstVar pvar);
545 void SSH_send(PTInstVar pvar, unsigned char const FAR * buf, unsigned int buflen);
546 /* SSH_extract_payload returns number of bytes extracted */
547 int SSH_extract_payload(PTInstVar pvar, unsigned char FAR * dest, int len);
548 void SSH_end(PTInstVar pvar);
549
550 void SSH_get_server_ID_info(PTInstVar pvar, char FAR * dest, int len);
551 void SSH_get_protocol_version_info(PTInstVar pvar, char FAR * dest, int len);
552 void SSH_get_compression_info(PTInstVar pvar, char FAR * dest, int len);
553
554 /* len must be <= SSH_MAX_SEND_PACKET_SIZE */
555 void SSH_channel_send(PTInstVar pvar, int channel_num,
556 uint32 remote_channel_num,
557 unsigned char FAR * buf, int len);
558 void SSH_fail_channel_open(PTInstVar pvar, uint32 remote_channel_num);
559 void SSH_confirm_channel_open(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
560 void SSH_channel_output_eof(PTInstVar pvar, uint32 remote_channel_num);
561 void SSH_channel_input_eof(PTInstVar pvar, uint32 remote_channel_num, uint32 local_channel_num);
562 void SSH_request_forwarding(PTInstVar pvar, char FAR * bind_address, int from_server_port,
563 char FAR * to_local_host, int to_local_port);
564 void SSH_request_X11_forwarding(PTInstVar pvar,
565 char FAR * auth_protocol, unsigned char FAR * auth_data, int auth_data_len, int screen_num);
566 void SSH_open_channel(PTInstVar pvar, uint32 local_channel_num,
567 char FAR * to_remote_host, int to_remote_port,
568 char FAR * originator, unsigned short originator_port);
569
570 int SSH_start_scp(PTInstVar pvar, char *sendfile, char *dstfile);
571 int SSH_start_scp_receive(PTInstVar pvar, char *filename);
572 int SSH_scp_transaction(PTInstVar pvar, char *sendfile, char *dstfile, enum scp_dir direction);
573 int SSH_sftp_transaction(PTInstVar pvar);
574
575 /* auxiliary SSH2 interfaces for pkt.c */
576 int SSH_get_min_packet_size(PTInstVar pvar);
577 /* data is guaranteed to be at least SSH_get_min_packet_size bytes long
578 at least 5 bytes must be decrypted */
579 void SSH_predecrpyt_packet(PTInstVar pvar, char FAR * data);
580 int SSH_get_clear_MAC_size(PTInstVar pvar);
581
582 #define SSH_is_any_payload(pvar) ((pvar)->ssh_state.payload_datalen > 0)
583 #define SSH_get_host_name(pvar) ((pvar)->ssh_state.hostname)
584 #define SSH_get_compression_level(pvar) ((pvar)->ssh_state.compressing ? (pvar)->ts_SSH_CompressionLevel : 0)
585
586 void SSH2_send_kexinit(PTInstVar pvar);
587 BOOL do_SSH2_userauth(PTInstVar pvar);
588 BOOL do_SSH2_authrequest(PTInstVar pvar);
589 void debug_print(int no, char *msg, int len);
590 int get_cipher_block_size(SSHCipher cipher);
591 int get_cipher_key_len(SSHCipher cipher);
592 char* get_kex_algorithm_name(kex_algorithm kextype);
593 const EVP_CIPHER* get_cipher_EVP_CIPHER(SSHCipher cipher);
594 const EVP_MD* get_kex_algorithm_EVP_MD(kex_algorithm kextype);
595 char* get_ssh2_mac_name(hmac_type type);
596 const EVP_MD* get_ssh2_mac_EVP_MD(hmac_type type);
597 int get_ssh2_mac_truncatebits(hmac_type type);
598 char* get_ssh2_comp_name(compression_type type);
599 char* get_ssh_keytype_name(ssh_keytype type);
600 int get_cipher_discard_len(SSHCipher cipher);
601 void ssh_heartbeat_lock_initialize(void);
602 void ssh_heartbeat_lock_finalize(void);
603 void ssh_heartbeat_lock(void);
604 void ssh_heartbeat_unlock(void);
605 void halt_ssh_heartbeat_thread(PTInstVar pvar);
606 void ssh2_channel_free(void);
607 BOOL handle_SSH2_userauth_inforeq(PTInstVar pvar);
608 BOOL handle_SSH2_userauth_passwd_changereq(PTInstVar pvar);
609 void SSH2_update_compression_myproposal(PTInstVar pvar);
610 void SSH2_update_cipher_myproposal(PTInstVar pvar);
611 void SSH2_update_kex_myproposal(PTInstVar pvar);
612 void SSH2_update_host_key_myproposal(PTInstVar pvar);
613 void SSH2_update_hmac_myproposal(PTInstVar pvar);
614 int SSH_notify_break_signal(PTInstVar pvar);
615
616 #endif
Back to OSDN">Back to OSDN
 ViewVC Help
Powered by ViewVC 1.1.26  
About OSDN
Find Software
Develop Software
Help