| 1 |
maya |
4304 |
/* |
| 2 |
nmaya |
9048 |
* (C) 2011- TeraTerm Project |
| 3 |
doda |
6841 |
* All rights reserved. |
| 4 |
|
|
* |
| 5 |
|
|
* Redistribution and use in source and binary forms, with or without |
| 6 |
|
|
* modification, are permitted provided that the following conditions |
| 7 |
|
|
* are met: |
| 8 |
|
|
* |
| 9 |
|
|
* 1. Redistributions of source code must retain the above copyright |
| 10 |
|
|
* notice, this list of conditions and the following disclaimer. |
| 11 |
|
|
* 2. Redistributions in binary form must reproduce the above copyright |
| 12 |
|
|
* notice, this list of conditions and the following disclaimer in the |
| 13 |
|
|
* documentation and/or other materials provided with the distribution. |
| 14 |
|
|
* 3. The name of the author may not be used to endorse or promote products |
| 15 |
|
|
* derived from this software without specific prior written permission. |
| 16 |
|
|
* |
| 17 |
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS OR |
| 18 |
|
|
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
| 19 |
|
|
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
| 20 |
|
|
* IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY DIRECT, INDIRECT, |
| 21 |
|
|
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
| 22 |
|
|
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| 23 |
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| 24 |
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| 25 |
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 26 |
|
|
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 27 |
|
|
*/ |
| 28 |
maya |
4304 |
|
| 29 |
nmaya |
9255 |
#ifndef KEX_H |
| 30 |
|
|
#define KEX_H |
| 31 |
|
|
|
| 32 |
maya |
4304 |
#include "ttxssh.h" |
| 33 |
|
|
|
| 34 |
nmaya |
9255 |
// �N���C�A���g�����T�[�o������������ |
| 35 |
|
|
enum kex_init_proposals { |
| 36 |
|
|
PROPOSAL_KEX_ALGS, |
| 37 |
|
|
PROPOSAL_SERVER_HOST_KEY_ALGS, |
| 38 |
|
|
PROPOSAL_ENC_ALGS_CTOS, |
| 39 |
|
|
PROPOSAL_ENC_ALGS_STOC, |
| 40 |
|
|
PROPOSAL_MAC_ALGS_CTOS, |
| 41 |
|
|
PROPOSAL_MAC_ALGS_STOC, |
| 42 |
|
|
PROPOSAL_COMP_ALGS_CTOS, |
| 43 |
|
|
PROPOSAL_COMP_ALGS_STOC, |
| 44 |
|
|
PROPOSAL_LANG_CTOS, |
| 45 |
|
|
PROPOSAL_LANG_STOC, |
| 46 |
|
|
PROPOSAL_MAX |
| 47 |
|
|
}; |
| 48 |
|
|
|
| 49 |
|
|
#define KEX_DEFAULT_KEX "" |
| 50 |
|
|
#define KEX_DEFAULT_PK_ALG "" |
| 51 |
|
|
#define KEX_DEFAULT_ENCRYPT "" |
| 52 |
|
|
#define KEX_DEFAULT_MAC "" |
| 53 |
|
|
#define KEX_DEFAULT_COMP "" |
| 54 |
|
|
#define KEX_DEFAULT_LANG "" |
| 55 |
|
|
|
| 56 |
|
|
extern char *myproposal[PROPOSAL_MAX]; |
| 57 |
|
|
|
| 58 |
|
|
typedef enum { |
| 59 |
|
|
KEX_DH_NONE, /* disabled line */ |
| 60 |
|
|
KEX_DH_GRP1_SHA1, |
| 61 |
|
|
KEX_DH_GRP14_SHA1, |
| 62 |
|
|
KEX_DH_GEX_SHA1, |
| 63 |
|
|
KEX_DH_GEX_SHA256, |
| 64 |
|
|
KEX_ECDH_SHA2_256, |
| 65 |
|
|
KEX_ECDH_SHA2_384, |
| 66 |
|
|
KEX_ECDH_SHA2_521, |
| 67 |
|
|
KEX_DH_GRP14_SHA256, |
| 68 |
|
|
KEX_DH_GRP16_SHA512, |
| 69 |
|
|
KEX_DH_GRP18_SHA512, |
| 70 |
|
|
KEX_DH_UNKNOWN, |
| 71 |
|
|
KEX_DH_MAX = KEX_DH_UNKNOWN, |
| 72 |
|
|
} kex_algorithm; |
| 73 |
|
|
|
| 74 |
|
|
char* get_kex_algorithm_name(kex_algorithm kextype); |
| 75 |
|
|
const EVP_MD* get_kex_algorithm_EVP_MD(kex_algorithm kextype); |
| 76 |
|
|
|
| 77 |
|
|
void normalize_kex_order(char *buf); |
| 78 |
|
|
kex_algorithm choose_SSH2_kex_algorithm(char *server_proposal, char *my_proposal); |
| 79 |
|
|
void SSH2_update_kex_myproposal(PTInstVar pvar); |
| 80 |
|
|
|
| 81 |
|
|
|
| 82 |
doda |
7027 |
// SSH_MSG_KEY_DH_GEX_REQUEST ���� min, n, max ��������������������/���� (RFC 4419) |
| 83 |
|
|
#define GEX_GRP_LIMIT_MIN 1024 |
| 84 |
|
|
#define GEX_GRP_LIMIT_MAX 8192 |
| 85 |
doda |
7028 |
// GexMinimalGroupSize �� 0 (�f�t�H���g(������)) ���������� min ���g���l |
| 86 |
|
|
// RFC 8270 �� min �������l�� 2048 �������������������A������������ GEX_GRP_LIMIT_MIN |
| 87 |
|
|
// �������������������������A�f�t�H���g���l�����X���� |
| 88 |
|
|
#define GEX_GRP_DEFAULT_MIN 2048 |
| 89 |
doda |
5900 |
|
| 90 |
maya |
4304 |
DH *dh_new_group1(void); |
| 91 |
|
|
DH *dh_new_group14(void); |
| 92 |
doda |
6263 |
DH *dh_new_group15(void); |
| 93 |
|
|
DH *dh_new_group16(void); |
| 94 |
doda |
6310 |
DH *dh_new_group17(void); |
| 95 |
|
|
DH *dh_new_group18(void); |
| 96 |
maya |
4304 |
void dh_gen_key(PTInstVar pvar, DH *dh, int we_need /* bytes */ ); |
| 97 |
|
|
int dh_estimate(int bits); |
| 98 |
|
|
|
| 99 |
doda |
6263 |
unsigned char *kex_dh_hash(const EVP_MD *evp_md, |
| 100 |
|
|
char *client_version_string, |
| 101 |
maya |
4304 |
char *server_version_string, |
| 102 |
|
|
char *ckexinit, int ckexinitlen, |
| 103 |
|
|
char *skexinit, int skexinitlen, |
| 104 |
|
|
u_char *serverhostkeyblob, int sbloblen, |
| 105 |
|
|
BIGNUM *client_dh_pub, |
| 106 |
|
|
BIGNUM *server_dh_pub, |
| 107 |
maya |
4305 |
BIGNUM *shared_secret, |
| 108 |
|
|
unsigned int *hashlen); |
| 109 |
|
|
unsigned char *kex_dh_gex_hash(const EVP_MD *evp_md, |
| 110 |
|
|
char *client_version_string, |
| 111 |
maya |
4304 |
char *server_version_string, |
| 112 |
|
|
char *ckexinit, int ckexinitlen, |
| 113 |
|
|
char *skexinit, int skexinitlen, |
| 114 |
|
|
u_char *serverhostkeyblob, int sbloblen, |
| 115 |
|
|
int kexgex_min, |
| 116 |
|
|
int kexgex_bits, |
| 117 |
|
|
int kexgex_max, |
| 118 |
|
|
BIGNUM *kexgex_p, |
| 119 |
|
|
BIGNUM *kexgex_g, |
| 120 |
|
|
BIGNUM *client_dh_pub, |
| 121 |
|
|
BIGNUM *server_dh_pub, |
| 122 |
maya |
4305 |
BIGNUM *shared_secret, |
| 123 |
|
|
unsigned int *hashlen); |
| 124 |
maya |
4314 |
unsigned char *kex_ecdh_hash(const EVP_MD *evp_md, |
| 125 |
|
|
const EC_GROUP *ec_group, |
| 126 |
|
|
char *client_version_string, |
| 127 |
|
|
char *server_version_string, |
| 128 |
|
|
char *ckexinit, int ckexinitlen, |
| 129 |
|
|
char *skexinit, int skexinitlen, |
| 130 |
|
|
u_char *serverhostkeyblob, int sbloblen, |
| 131 |
|
|
const EC_POINT *client_dh_pub, |
| 132 |
|
|
const EC_POINT *server_dh_pub, |
| 133 |
|
|
BIGNUM *shared_secret, |
| 134 |
|
|
unsigned int *hashlen); |
| 135 |
maya |
4304 |
|
| 136 |
|
|
int dh_pub_is_valid(DH *dh, BIGNUM *dh_pub); |
| 137 |
doda |
10071 |
void kex_derive_keys(PTInstVar pvar, SSHKeys *newkeys, int need, u_char *hash, BIGNUM *shared_secret, |
| 138 |
maya |
4304 |
char *session_id, int session_id_len); |
| 139 |
nmaya |
9255 |
|
| 140 |
|
|
#endif /* KEX_H */ |
Tera Term
Parent Directory
Revision Log