version 1.120, 2001/05/30 12:55:09 |
version 1.121, 2001/05/31 10:30:14 |
|
|
#include "includes.h" |
#include "includes.h" |
RCSID("$OpenBSD$"); |
RCSID("$OpenBSD$"); |
|
|
#include <openssl/rsa.h> |
|
#include <openssl/dsa.h> |
|
|
|
#include "ssh.h" |
#include "ssh.h" |
#include "ssh1.h" |
#include "ssh1.h" |
#include "ssh2.h" |
#include "ssh2.h" |
#include "packet.h" |
#include "packet.h" |
#include "xmalloc.h" |
#include "xmalloc.h" |
#include "buffer.h" |
|
#include "bufaux.h" |
|
#include "uidswap.h" |
#include "uidswap.h" |
#include "log.h" |
#include "log.h" |
#include "misc.h" |
#include "misc.h" |
#include "channels.h" |
#include "channels.h" |
#include "nchan.h" |
|
#include "compat.h" |
#include "compat.h" |
#include "canohost.h" |
#include "canohost.h" |
#include "key.h" |
#include "key.h" |
#include "authfd.h" |
#include "authfd.h" |
|
|
/* Maximum number of fake X11 displays to try. */ |
|
#define MAX_DISPLAYS 1000 |
|
|
|
/* Max len of agent socket */ |
/* -- channel core */ |
#define MAX_SOCKET_NAME 100 |
|
|
|
/* |
/* |
* Pointer to an array containing all allocated channels. The array is |
* Pointer to an array containing all allocated channels. The array is |
|
|
*/ |
*/ |
static int channel_max_fd = 0; |
static int channel_max_fd = 0; |
|
|
/* Name and directory of socket for authentication agent forwarding. */ |
|
static char *channel_forwarded_auth_socket_name = NULL; |
|
static char *channel_forwarded_auth_socket_dir = NULL; |
|
|
|
/* Saved X11 authentication protocol name. */ |
/* -- tcp forwarding */ |
char *x11_saved_proto = NULL; |
|
|
|
/* Saved X11 authentication data. This is the real data. */ |
|
char *x11_saved_data = NULL; |
|
u_int x11_saved_data_len = 0; |
|
|
|
/* |
/* |
* Fake X11 authentication data. This is what the server will be sending us; |
|
* we should replace any occurrences of this by the real data. |
|
*/ |
|
char *x11_fake_data = NULL; |
|
u_int x11_fake_data_len; |
|
|
|
/* |
|
* Data structure for storing which hosts are permitted for forward requests. |
* Data structure for storing which hosts are permitted for forward requests. |
* The local sides of any remote forwards are stored in this array to prevent |
* The local sides of any remote forwards are stored in this array to prevent |
* a corrupt remote server from accessing arbitrary TCP/IP ports on our local |
* a corrupt remote server from accessing arbitrary TCP/IP ports on our local |
|
|
|
|
/* List of all permitted host/port pairs to connect. */ |
/* List of all permitted host/port pairs to connect. */ |
static ForwardPermission permitted_opens[SSH_MAX_FORWARDS_PER_DIRECTION]; |
static ForwardPermission permitted_opens[SSH_MAX_FORWARDS_PER_DIRECTION]; |
|
|
/* Number of permitted host/port pairs in the array. */ |
/* Number of permitted host/port pairs in the array. */ |
static int num_permitted_opens = 0; |
static int num_permitted_opens = 0; |
/* |
/* |
|
|
*/ |
*/ |
static int all_opens_permitted = 0; |
static int all_opens_permitted = 0; |
|
|
/* This is set to true if both sides support SSH_PROTOFLAG_HOST_IN_FWD_OPEN. */ |
|
static int have_hostname_in_open = 0; |
|
|
|
/* AF_UNSPEC or AF_INET or AF_INET6 */ |
/* -- X11 forwarding */ |
extern int IPv4or6; |
|
|
|
void port_open_helper(Channel *c, char *rtype); |
/* Maximum number of fake X11 displays to try. */ |
|
#define MAX_DISPLAYS 1000 |
|
|
/* Sets specific protocol options. */ |
/* Saved X11 authentication protocol name. */ |
|
static char *x11_saved_proto = NULL; |
|
|
void |
/* Saved X11 authentication data. This is the real data. */ |
channel_set_options(int hostname_in_open) |
static char *x11_saved_data = NULL; |
{ |
static u_int x11_saved_data_len = 0; |
have_hostname_in_open = hostname_in_open; |
|
} |
|
|
|
/* lookup channel by id */ |
/* |
|
* Fake X11 authentication data. This is what the server will be sending us; |
|
* we should replace any occurrences of this by the real data. |
|
*/ |
|
static char *x11_fake_data = NULL; |
|
static u_int x11_fake_data_len; |
|
|
|
|
|
/* -- agent forwarding */ |
|
|
|
#define NUM_SOCKS 10 |
|
|
|
/* Name and directory of socket for authentication agent forwarding. */ |
|
static char *auth_sock_name = NULL; |
|
static char *auth_sock_dir = NULL; |
|
|
|
|
|
/* AF_UNSPEC or AF_INET or AF_INET6 */ |
|
extern int IPv4or6; |
|
|
|
/* helper */ |
|
void port_open_helper(Channel *c, char *rtype); |
|
|
|
/* -- channel core */ |
|
|
Channel * |
Channel * |
channel_lookup(int id) |
channel_lookup(int id) |
{ |
{ |
|
|
xfree(c); |
xfree(c); |
} |
} |
|
|
|
|
/* |
/* |
|
* Stops listening for channels, and removes any unix domain sockets that we |
|
* might have. |
|
*/ |
|
|
|
void |
|
channel_stop_listening() |
|
{ |
|
int i; |
|
Channel *c; |
|
|
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c != NULL) { |
|
switch (c->type) { |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
close(c->sock); |
|
unlink(c->path); |
|
channel_free(c); |
|
break; |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_X11_LISTENER: |
|
close(c->sock); |
|
channel_free(c); |
|
break; |
|
default: |
|
break; |
|
} |
|
} |
|
} |
|
} |
|
|
|
/* |
|
* Closes the sockets/fds of all channels. This is used to close extra file |
|
* descriptors after a fork. |
|
*/ |
|
|
|
void |
|
channel_close_all() |
|
{ |
|
int i; |
|
|
|
for (i = 0; i < channels_alloc; i++) |
|
if (channels[i] != NULL) |
|
channel_close_fds(channels[i]); |
|
} |
|
|
|
/* |
|
* Returns true if no channel has too much buffered data, and false if one or |
|
* more channel is overfull. |
|
*/ |
|
|
|
int |
|
channel_not_very_much_buffered_data() |
|
{ |
|
u_int i; |
|
Channel *c; |
|
|
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c != NULL && c->type == SSH_CHANNEL_OPEN) { |
|
if (!compat20 && buffer_len(&c->input) > packet_get_maxsize()) { |
|
debug("channel %d: big input buffer %d", |
|
c->self, buffer_len(&c->input)); |
|
return 0; |
|
} |
|
if (buffer_len(&c->output) > packet_get_maxsize()) { |
|
debug("channel %d: big output buffer %d", |
|
c->self, buffer_len(&c->output)); |
|
return 0; |
|
} |
|
} |
|
} |
|
return 1; |
|
} |
|
|
|
/* Returns true if any channel is still open. */ |
|
|
|
int |
|
channel_still_open() |
|
{ |
|
int i; |
|
Channel *c; |
|
|
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c == NULL) |
|
continue; |
|
switch (c->type) { |
|
case SSH_CHANNEL_X11_LISTENER: |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_CLOSED: |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
case SSH_CHANNEL_DYNAMIC: |
|
case SSH_CHANNEL_CONNECTING: |
|
case SSH_CHANNEL_ZOMBIE: |
|
continue; |
|
case SSH_CHANNEL_LARVAL: |
|
if (!compat20) |
|
fatal("cannot happen: SSH_CHANNEL_LARVAL"); |
|
continue; |
|
case SSH_CHANNEL_OPENING: |
|
case SSH_CHANNEL_OPEN: |
|
case SSH_CHANNEL_X11_OPEN: |
|
return 1; |
|
case SSH_CHANNEL_INPUT_DRAINING: |
|
case SSH_CHANNEL_OUTPUT_DRAINING: |
|
if (!compat13) |
|
fatal("cannot happen: OUT_DRAIN"); |
|
return 1; |
|
default: |
|
fatal("channel_still_open: bad channel type %d", c->type); |
|
/* NOTREACHED */ |
|
} |
|
} |
|
return 0; |
|
} |
|
|
|
/* Returns the id of an open channel suitable for keepaliving */ |
|
|
|
int |
|
channel_find_open() |
|
{ |
|
int i; |
|
Channel *c; |
|
|
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c == NULL) |
|
continue; |
|
switch (c->type) { |
|
case SSH_CHANNEL_CLOSED: |
|
case SSH_CHANNEL_DYNAMIC: |
|
case SSH_CHANNEL_X11_LISTENER: |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_OPENING: |
|
case SSH_CHANNEL_CONNECTING: |
|
case SSH_CHANNEL_ZOMBIE: |
|
continue; |
|
case SSH_CHANNEL_LARVAL: |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
case SSH_CHANNEL_OPEN: |
|
case SSH_CHANNEL_X11_OPEN: |
|
return i; |
|
case SSH_CHANNEL_INPUT_DRAINING: |
|
case SSH_CHANNEL_OUTPUT_DRAINING: |
|
if (!compat13) |
|
fatal("cannot happen: OUT_DRAIN"); |
|
return i; |
|
default: |
|
fatal("channel_find_open: bad channel type %d", c->type); |
|
/* NOTREACHED */ |
|
} |
|
} |
|
return -1; |
|
} |
|
|
|
|
|
/* |
|
* Returns a message describing the currently open forwarded connections, |
|
* suitable for sending to the client. The message contains crlf pairs for |
|
* newlines. |
|
*/ |
|
|
|
char * |
|
channel_open_message() |
|
{ |
|
Buffer buffer; |
|
Channel *c; |
|
char buf[1024], *cp; |
|
int i; |
|
|
|
buffer_init(&buffer); |
|
snprintf(buf, sizeof buf, "The following connections are open:\r\n"); |
|
buffer_append(&buffer, buf, strlen(buf)); |
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c == NULL) |
|
continue; |
|
switch (c->type) { |
|
case SSH_CHANNEL_X11_LISTENER: |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_CLOSED: |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
case SSH_CHANNEL_ZOMBIE: |
|
continue; |
|
case SSH_CHANNEL_LARVAL: |
|
case SSH_CHANNEL_OPENING: |
|
case SSH_CHANNEL_CONNECTING: |
|
case SSH_CHANNEL_DYNAMIC: |
|
case SSH_CHANNEL_OPEN: |
|
case SSH_CHANNEL_X11_OPEN: |
|
case SSH_CHANNEL_INPUT_DRAINING: |
|
case SSH_CHANNEL_OUTPUT_DRAINING: |
|
snprintf(buf, sizeof buf, " #%d %.300s (t%d r%d i%d/%d o%d/%d fd %d/%d)\r\n", |
|
c->self, c->remote_name, |
|
c->type, c->remote_id, |
|
c->istate, buffer_len(&c->input), |
|
c->ostate, buffer_len(&c->output), |
|
c->rfd, c->wfd); |
|
buffer_append(&buffer, buf, strlen(buf)); |
|
continue; |
|
default: |
|
fatal("channel_open_message: bad channel type %d", c->type); |
|
/* NOTREACHED */ |
|
} |
|
} |
|
buffer_append(&buffer, "\0", 1); |
|
cp = xstrdup(buffer_ptr(&buffer)); |
|
buffer_free(&buffer); |
|
return cp; |
|
} |
|
|
|
void |
|
channel_send_open(int id) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_send_open: %d: bad id", id); |
|
return; |
|
} |
|
debug("send channel open %d", id); |
|
packet_start(SSH2_MSG_CHANNEL_OPEN); |
|
packet_put_cstring(c->ctype); |
|
packet_put_int(c->self); |
|
packet_put_int(c->local_window); |
|
packet_put_int(c->local_maxpacket); |
|
packet_send(); |
|
} |
|
|
|
void |
|
channel_request(int id, char *service, int wantconfirm) |
|
{ |
|
channel_request_start(id, service, wantconfirm); |
|
packet_send(); |
|
debug("channel request %d: %s", id, service) ; |
|
} |
|
void |
|
channel_request_start(int id, char *service, int wantconfirm) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_request: %d: bad id", id); |
|
return; |
|
} |
|
packet_start(SSH2_MSG_CHANNEL_REQUEST); |
|
packet_put_int(c->remote_id); |
|
packet_put_cstring(service); |
|
packet_put_char(wantconfirm); |
|
} |
|
void |
|
channel_register_callback(int id, int mtype, channel_callback_fn *fn, void *arg) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_register_callback: %d: bad id", id); |
|
return; |
|
} |
|
c->cb_event = mtype; |
|
c->cb_fn = fn; |
|
c->cb_arg = arg; |
|
} |
|
void |
|
channel_register_cleanup(int id, channel_callback_fn *fn) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_register_cleanup: %d: bad id", id); |
|
return; |
|
} |
|
c->dettach_user = fn; |
|
} |
|
void |
|
channel_cancel_cleanup(int id) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_cancel_cleanup: %d: bad id", id); |
|
return; |
|
} |
|
c->dettach_user = NULL; |
|
} |
|
void |
|
channel_register_filter(int id, channel_filter_fn *fn) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_register_filter: %d: bad id", id); |
|
return; |
|
} |
|
c->input_filter = fn; |
|
} |
|
|
|
void |
|
channel_set_fds(int id, int rfd, int wfd, int efd, |
|
int extusage, int nonblock) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL || c->type != SSH_CHANNEL_LARVAL) |
|
fatal("channel_activate for non-larval channel %d.", id); |
|
channel_register_fds(c, rfd, wfd, efd, extusage, nonblock); |
|
c->type = SSH_CHANNEL_OPEN; |
|
/* XXX window size? */ |
|
c->local_window = c->local_window_max = c->local_maxpacket * 2; |
|
packet_start(SSH2_MSG_CHANNEL_WINDOW_ADJUST); |
|
packet_put_int(c->remote_id); |
|
packet_put_int(c->local_window); |
|
packet_send(); |
|
} |
|
|
|
/* |
* 'channel_pre*' are called just before select() to add any bits relevant to |
* 'channel_pre*' are called just before select() to add any bits relevant to |
* channels in the select bitmasks. |
* channels in the select bitmasks. |
*/ |
*/ |
|
|
* data in that packet is then substituted by the real data if it matches the |
* data in that packet is then substituted by the real data if it matches the |
* fake data, and the channel is put into normal mode. |
* fake data, and the channel is put into normal mode. |
* XXX All this happens at the client side. |
* XXX All this happens at the client side. |
|
* Returns: 0 = need more data, -1 = wrong cookie, 1 = ok |
*/ |
*/ |
int |
int |
x11_open_helper(Channel *c) |
x11_open_helper(Buffer *b) |
{ |
{ |
u_char *ucp; |
u_char *ucp; |
u_int proto_len, data_len; |
u_int proto_len, data_len; |
|
|
/* Check if the fixed size part of the packet is in buffer. */ |
/* Check if the fixed size part of the packet is in buffer. */ |
if (buffer_len(&c->output) < 12) |
if (buffer_len(b) < 12) |
return 0; |
return 0; |
|
|
/* Parse the lengths of variable-length fields. */ |
/* Parse the lengths of variable-length fields. */ |
ucp = (u_char *) buffer_ptr(&c->output); |
ucp = (u_char *) buffer_ptr(b); |
if (ucp[0] == 0x42) { /* Byte order MSB first. */ |
if (ucp[0] == 0x42) { /* Byte order MSB first. */ |
proto_len = 256 * ucp[6] + ucp[7]; |
proto_len = 256 * ucp[6] + ucp[7]; |
data_len = 256 * ucp[8] + ucp[9]; |
data_len = 256 * ucp[8] + ucp[9]; |
|
|
} |
} |
|
|
/* Check if the whole packet is in buffer. */ |
/* Check if the whole packet is in buffer. */ |
if (buffer_len(&c->output) < |
if (buffer_len(b) < |
12 + ((proto_len + 3) & ~3) + ((data_len + 3) & ~3)) |
12 + ((proto_len + 3) & ~3) + ((data_len + 3) & ~3)) |
return 0; |
return 0; |
|
|
|
|
void |
void |
channel_pre_x11_open_13(Channel *c, fd_set * readset, fd_set * writeset) |
channel_pre_x11_open_13(Channel *c, fd_set * readset, fd_set * writeset) |
{ |
{ |
int ret = x11_open_helper(c); |
int ret = x11_open_helper(&c->output); |
if (ret == 1) { |
if (ret == 1) { |
/* Start normal processing for the channel. */ |
/* Start normal processing for the channel. */ |
c->type = SSH_CHANNEL_OPEN; |
c->type = SSH_CHANNEL_OPEN; |
|
|
void |
void |
channel_pre_x11_open(Channel *c, fd_set * readset, fd_set * writeset) |
channel_pre_x11_open(Channel *c, fd_set * readset, fd_set * writeset) |
{ |
{ |
int ret = x11_open_helper(c); |
int ret = x11_open_helper(&c->output); |
if (ret == 1) { |
if (ret == 1) { |
c->type = SSH_CHANNEL_OPEN; |
c->type = SSH_CHANNEL_OPEN; |
if (compat20) |
if (compat20) |
|
|
} else { |
} else { |
packet_start(SSH_SMSG_X11_OPEN); |
packet_start(SSH_SMSG_X11_OPEN); |
packet_put_int(nc->self); |
packet_put_int(nc->self); |
if (have_hostname_in_open) |
if (packet_get_protocol_flags() & |
|
SSH_PROTOFLAG_HOST_IN_FWD_OPEN) |
packet_put_string(buf, strlen(buf)); |
packet_put_string(buf, strlen(buf)); |
packet_send(); |
packet_send(); |
} |
} |
|
|
packet_put_int(c->self); |
packet_put_int(c->self); |
packet_put_cstring(c->path); |
packet_put_cstring(c->path); |
packet_put_int(c->host_port); |
packet_put_int(c->host_port); |
if (have_hostname_in_open) |
if (packet_get_protocol_flags() & |
|
SSH_PROTOFLAG_HOST_IN_FWD_OPEN) |
packet_put_cstring(c->remote_name); |
packet_put_cstring(c->remote_name); |
packet_send(); |
packet_send(); |
} |
} |
|
|
channel_post_auth_listener(Channel *c, fd_set * readset, fd_set * writeset) |
channel_post_auth_listener(Channel *c, fd_set * readset, fd_set * writeset) |
{ |
{ |
Channel *nc; |
Channel *nc; |
|
char *name; |
int newsock; |
int newsock; |
struct sockaddr addr; |
struct sockaddr addr; |
socklen_t addrlen; |
socklen_t addrlen; |
|
|
error("accept from auth socket: %.100s", strerror(errno)); |
error("accept from auth socket: %.100s", strerror(errno)); |
return; |
return; |
} |
} |
|
name = xstrdup("accepted auth socket"); |
nc = channel_new("accepted auth socket", |
nc = channel_new("accepted auth socket", |
SSH_CHANNEL_OPENING, newsock, newsock, -1, |
SSH_CHANNEL_OPENING, newsock, newsock, -1, |
c->local_window_max, c->local_maxpacket, |
c->local_window_max, c->local_maxpacket, |
0, xstrdup("accepted auth socket"), 1); |
0, name, 1); |
if (nc == NULL) { |
if (nc == NULL) { |
error("channel_post_auth_listener: channel_new failed"); |
error("channel_post_auth_listener: channel_new failed"); |
|
xfree(name); |
close(newsock); |
close(newsock); |
} |
} |
if (compat20) { |
if (compat20) { |
|
|
} else if (compat13) { |
} else if (compat13) { |
buffer_consume(&c->output, buffer_len(&c->output)); |
buffer_consume(&c->output, buffer_len(&c->output)); |
c->type = SSH_CHANNEL_INPUT_DRAINING; |
c->type = SSH_CHANNEL_INPUT_DRAINING; |
debug("channel %d: status set to input draining.", c->self); |
debug("channel %d: input draining.", c->self); |
} else { |
} else { |
chan_read_failed(c); |
chan_read_failed(c); |
} |
} |
|
|
return -1; |
return -1; |
} else if (compat13) { |
} else if (compat13) { |
buffer_consume(&c->output, buffer_len(&c->output)); |
buffer_consume(&c->output, buffer_len(&c->output)); |
debug("channel %d: status set to input draining.", c->self); |
debug("channel %d: input draining.", c->self); |
c->type = SSH_CHANNEL_INPUT_DRAINING; |
c->type = SSH_CHANNEL_INPUT_DRAINING; |
} else { |
} else { |
chan_write_failed(c); |
chan_write_failed(c); |
|
|
} |
} |
} |
} |
|
|
|
/* |
|
* Allocate/update select bitmasks and add any bits relevant to channels in |
|
* select bitmasks. |
|
*/ |
void |
void |
channel_prepare_select(fd_set **readsetp, fd_set **writesetp, int *maxfdp, |
channel_prepare_select(fd_set **readsetp, fd_set **writesetp, int *maxfdp, |
int rekeying) |
int rekeying) |
|
|
channel_handler(channel_pre, *readsetp, *writesetp); |
channel_handler(channel_pre, *readsetp, *writesetp); |
} |
} |
|
|
|
/* |
|
* After select, perform any appropriate operations for channels which have |
|
* events pending. |
|
*/ |
void |
void |
channel_after_select(fd_set * readset, fd_set * writeset) |
channel_after_select(fd_set * readset, fd_set * writeset) |
{ |
{ |
channel_handler(channel_post, readset, writeset); |
channel_handler(channel_post, readset, writeset); |
} |
} |
|
|
|
|
/* If there is data to send to the connection, enqueue some of it now. */ |
/* If there is data to send to the connection, enqueue some of it now. */ |
|
|
void |
void |
|
|
Channel *c; |
Channel *c; |
|
|
for (i = 0; i < channels_alloc; i++) { |
for (i = 0; i < channels_alloc; i++) { |
|
|
c = channels[i]; |
c = channels[i]; |
if (c == NULL) |
if (c == NULL) |
continue; |
continue; |
|
|
/* We are only interested in channels that can have buffered incoming data. */ |
/* |
|
* We are only interested in channels that can have buffered |
|
* incoming data. |
|
*/ |
if (compat13) { |
if (compat13) { |
if (c->type != SSH_CHANNEL_OPEN && |
if (c->type != SSH_CHANNEL_OPEN && |
c->type != SSH_CHANNEL_INPUT_DRAINING) |
c->type != SSH_CHANNEL_INPUT_DRAINING) |
|
|
if ((c->istate == CHAN_INPUT_OPEN || |
if ((c->istate == CHAN_INPUT_OPEN || |
c->istate == CHAN_INPUT_WAIT_DRAIN) && |
c->istate == CHAN_INPUT_WAIT_DRAIN) && |
(len = buffer_len(&c->input)) > 0) { |
(len = buffer_len(&c->input)) > 0) { |
/* Send some data for the other side over the secure connection. */ |
/* |
|
* Send some data for the other side over the secure |
|
* connection. |
|
*/ |
if (compat20) { |
if (compat20) { |
if (len > c->remote_window) |
if (len > c->remote_window) |
len = c->remote_window; |
len = c->remote_window; |
|
|
} |
} |
} |
} |
|
|
/* |
|
* This is called when a packet of type CHANNEL_DATA has just been received. |
|
* The message type has already been consumed, but channel number and data is |
|
* still there. |
|
*/ |
|
|
|
|
/* -- protocol input */ |
|
|
void |
void |
channel_input_data(int type, int plen, void *ctxt) |
channel_input_data(int type, int plen, void *ctxt) |
{ |
{ |
|
|
buffer_append(&c->output, data, data_len); |
buffer_append(&c->output, data, data_len); |
xfree(data); |
xfree(data); |
} |
} |
|
|
void |
void |
channel_input_extended_data(int type, int plen, void *ctxt) |
channel_input_extended_data(int type, int plen, void *ctxt) |
{ |
{ |
|
|
xfree(data); |
xfree(data); |
} |
} |
|
|
|
|
/* |
|
* Returns true if no channel has too much buffered data, and false if one or |
|
* more channel is overfull. |
|
*/ |
|
|
|
int |
|
channel_not_very_much_buffered_data() |
|
{ |
|
u_int i; |
|
Channel *c; |
|
|
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c != NULL && c->type == SSH_CHANNEL_OPEN) { |
|
if (!compat20 && buffer_len(&c->input) > packet_get_maxsize()) { |
|
debug("channel %d: big input buffer %d", |
|
c->self, buffer_len(&c->input)); |
|
return 0; |
|
} |
|
if (buffer_len(&c->output) > packet_get_maxsize()) { |
|
debug("channel %d: big output buffer %d", |
|
c->self, buffer_len(&c->output)); |
|
return 0; |
|
} |
|
} |
|
} |
|
return 1; |
|
} |
|
|
|
void |
void |
channel_input_ieof(int type, int plen, void *ctxt) |
channel_input_ieof(int type, int plen, void *ctxt) |
{ |
{ |
|
|
c->remote_window += adjust; |
c->remote_window += adjust; |
} |
} |
|
|
/* |
|
* Stops listening for channels, and removes any unix domain sockets that we |
|
* might have. |
|
*/ |
|
|
|
void |
void |
channel_stop_listening() |
channel_input_port_open(int type, int plen, void *ctxt) |
{ |
{ |
int i; |
Channel *c = NULL; |
Channel *c; |
u_short host_port; |
|
char *host, *originator_string; |
|
int remote_id, sock = -1; |
|
|
for (i = 0; i < channels_alloc; i++) { |
remote_id = packet_get_int(); |
c = channels[i]; |
host = packet_get_string(NULL); |
if (c != NULL) { |
host_port = packet_get_int(); |
switch (c->type) { |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
close(c->sock); |
|
unlink(c->path); |
|
channel_free(c); |
|
break; |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_X11_LISTENER: |
|
close(c->sock); |
|
channel_free(c); |
|
break; |
|
default: |
|
break; |
|
} |
|
} |
|
} |
|
} |
|
|
|
/* |
if (packet_get_protocol_flags() & SSH_PROTOFLAG_HOST_IN_FWD_OPEN) { |
* Closes the sockets/fds of all channels. This is used to close extra file |
originator_string = packet_get_string(NULL); |
* descriptors after a fork. |
} else { |
*/ |
originator_string = xstrdup("unknown (remote did not supply name)"); |
|
|
void |
|
channel_close_all() |
|
{ |
|
int i; |
|
|
|
for (i = 0; i < channels_alloc; i++) |
|
if (channels[i] != NULL) |
|
channel_close_fds(channels[i]); |
|
} |
|
|
|
/* Returns true if any channel is still open. */ |
|
|
|
int |
|
channel_still_open() |
|
{ |
|
int i; |
|
Channel *c; |
|
|
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c == NULL) |
|
continue; |
|
switch (c->type) { |
|
case SSH_CHANNEL_X11_LISTENER: |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_CLOSED: |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
case SSH_CHANNEL_DYNAMIC: |
|
case SSH_CHANNEL_CONNECTING: |
|
case SSH_CHANNEL_ZOMBIE: |
|
continue; |
|
case SSH_CHANNEL_LARVAL: |
|
if (!compat20) |
|
fatal("cannot happen: SSH_CHANNEL_LARVAL"); |
|
continue; |
|
case SSH_CHANNEL_OPENING: |
|
case SSH_CHANNEL_OPEN: |
|
case SSH_CHANNEL_X11_OPEN: |
|
return 1; |
|
case SSH_CHANNEL_INPUT_DRAINING: |
|
case SSH_CHANNEL_OUTPUT_DRAINING: |
|
if (!compat13) |
|
fatal("cannot happen: OUT_DRAIN"); |
|
return 1; |
|
default: |
|
fatal("channel_still_open: bad channel type %d", c->type); |
|
/* NOTREACHED */ |
|
} |
|
} |
} |
return 0; |
packet_done(); |
} |
sock = channel_connect_to(host, host_port); |
|
if (sock != -1) { |
/* Returns the id of an open channel suitable for keepaliving */ |
c = channel_new("connected socket", |
|
SSH_CHANNEL_CONNECTING, sock, sock, -1, 0, 0, 0, |
int |
originator_string, 1); |
channel_find_open() |
if (c == NULL) { |
{ |
error("channel_input_port_open: channel_new failed"); |
int i; |
close(sock); |
Channel *c; |
} else { |
|
c->remote_id = remote_id; |
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c == NULL) |
|
continue; |
|
switch (c->type) { |
|
case SSH_CHANNEL_CLOSED: |
|
case SSH_CHANNEL_DYNAMIC: |
|
case SSH_CHANNEL_X11_LISTENER: |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_OPENING: |
|
case SSH_CHANNEL_CONNECTING: |
|
case SSH_CHANNEL_ZOMBIE: |
|
continue; |
|
case SSH_CHANNEL_LARVAL: |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
case SSH_CHANNEL_OPEN: |
|
case SSH_CHANNEL_X11_OPEN: |
|
return i; |
|
case SSH_CHANNEL_INPUT_DRAINING: |
|
case SSH_CHANNEL_OUTPUT_DRAINING: |
|
if (!compat13) |
|
fatal("cannot happen: OUT_DRAIN"); |
|
return i; |
|
default: |
|
fatal("channel_find_open: bad channel type %d", c->type); |
|
/* NOTREACHED */ |
|
} |
} |
} |
} |
return -1; |
if (c == NULL) { |
|
packet_start(SSH_MSG_CHANNEL_OPEN_FAILURE); |
|
packet_put_int(remote_id); |
|
packet_send(); |
|
} |
|
xfree(host); |
} |
} |
|
|
|
|
/* |
/* -- tcp forwarding */ |
* Returns a message describing the currently open forwarded connections, |
|
* suitable for sending to the client. The message contains crlf pairs for |
|
* newlines. |
|
*/ |
|
|
|
char * |
|
channel_open_message() |
|
{ |
|
Buffer buffer; |
|
Channel *c; |
|
char buf[1024], *cp; |
|
int i; |
|
|
|
buffer_init(&buffer); |
|
snprintf(buf, sizeof buf, "The following connections are open:\r\n"); |
|
buffer_append(&buffer, buf, strlen(buf)); |
|
for (i = 0; i < channels_alloc; i++) { |
|
c = channels[i]; |
|
if (c == NULL) |
|
continue; |
|
switch (c->type) { |
|
case SSH_CHANNEL_X11_LISTENER: |
|
case SSH_CHANNEL_PORT_LISTENER: |
|
case SSH_CHANNEL_RPORT_LISTENER: |
|
case SSH_CHANNEL_CLOSED: |
|
case SSH_CHANNEL_AUTH_SOCKET: |
|
case SSH_CHANNEL_ZOMBIE: |
|
continue; |
|
case SSH_CHANNEL_LARVAL: |
|
case SSH_CHANNEL_OPENING: |
|
case SSH_CHANNEL_CONNECTING: |
|
case SSH_CHANNEL_DYNAMIC: |
|
case SSH_CHANNEL_OPEN: |
|
case SSH_CHANNEL_X11_OPEN: |
|
case SSH_CHANNEL_INPUT_DRAINING: |
|
case SSH_CHANNEL_OUTPUT_DRAINING: |
|
snprintf(buf, sizeof buf, " #%d %.300s (t%d r%d i%d/%d o%d/%d fd %d/%d)\r\n", |
|
c->self, c->remote_name, |
|
c->type, c->remote_id, |
|
c->istate, buffer_len(&c->input), |
|
c->ostate, buffer_len(&c->output), |
|
c->rfd, c->wfd); |
|
buffer_append(&buffer, buf, strlen(buf)); |
|
continue; |
|
default: |
|
fatal("channel_open_message: bad channel type %d", c->type); |
|
/* NOTREACHED */ |
|
} |
|
} |
|
buffer_append(&buffer, "\0", 1); |
|
cp = xstrdup(buffer_ptr(&buffer)); |
|
buffer_free(&buffer); |
|
return cp; |
|
} |
|
|
|
/* |
/* |
* Initiate forwarding of connections to local port "port" through the secure |
* Initiate forwarding of connections to local port "port" through the secure |
* channel to host:port from remote side. |
* channel to host:port from remote side. |
|
|
int gateway_ports, int remote_fwd) |
int gateway_ports, int remote_fwd) |
{ |
{ |
Channel *c; |
Channel *c; |
int success, sock, on = 1, ctype; |
int success, sock, on = 1, type; |
struct addrinfo hints, *ai, *aitop; |
struct addrinfo hints, *ai, *aitop; |
char ntop[NI_MAXHOST], strport[NI_MAXSERV]; |
char ntop[NI_MAXHOST], strport[NI_MAXSERV]; |
const char *host; |
const char *host; |
|
|
|
|
if (remote_fwd) { |
if (remote_fwd) { |
host = listen_address; |
host = listen_address; |
ctype = SSH_CHANNEL_RPORT_LISTENER; |
type = SSH_CHANNEL_RPORT_LISTENER; |
} else { |
} else { |
host = host_to_connect; |
host = host_to_connect; |
ctype =SSH_CHANNEL_PORT_LISTENER; |
type = SSH_CHANNEL_PORT_LISTENER; |
} |
} |
|
|
if (strlen(host) > SSH_CHANNEL_PATH_LEN - 1) { |
if (strlen(host) > SSH_CHANNEL_PATH_LEN - 1) { |
|
|
continue; |
continue; |
} |
} |
/* Allocate a channel number for the socket. */ |
/* Allocate a channel number for the socket. */ |
c = channel_new("port listener", ctype, sock, sock, -1, |
c = channel_new("port listener", type, sock, sock, -1, |
CHAN_TCP_WINDOW_DEFAULT, CHAN_TCP_PACKET_DEFAULT, |
CHAN_TCP_WINDOW_DEFAULT, CHAN_TCP_PACKET_DEFAULT, |
0, xstrdup("port listener"), 1); |
0, xstrdup("port listener"), 1); |
if (c == NULL) { |
if (c == NULL) { |
|
|
return connect_to(host, port); |
return connect_to(host, port); |
} |
} |
|
|
/* |
/* -- X11 forwarding */ |
* This is called after receiving PORT_OPEN message. This attempts to |
|
* connect to the given host:port, and sends back CHANNEL_OPEN_CONFIRMATION |
|
* or CHANNEL_OPEN_FAILURE. |
|
*/ |
|
|
|
void |
|
channel_input_port_open(int type, int plen, void *ctxt) |
|
{ |
|
Channel *c = NULL; |
|
u_short host_port; |
|
char *host, *originator_string; |
|
int remote_id, sock = -1; |
|
|
|
remote_id = packet_get_int(); |
|
host = packet_get_string(NULL); |
|
host_port = packet_get_int(); |
|
|
|
if (have_hostname_in_open) { |
|
originator_string = packet_get_string(NULL); |
|
} else { |
|
originator_string = xstrdup("unknown (remote did not supply name)"); |
|
} |
|
packet_done(); |
|
sock = channel_connect_to(host, host_port); |
|
if (sock != -1) { |
|
c = channel_new("connected socket", |
|
SSH_CHANNEL_CONNECTING, sock, sock, -1, 0, 0, 0, |
|
originator_string, 1); |
|
if (c == NULL) { |
|
error("channel_input_port_open: channel_new failed"); |
|
close(sock); |
|
} else { |
|
c->remote_id = remote_id; |
|
} |
|
} |
|
if (c == NULL) { |
|
packet_start(SSH_MSG_CHANNEL_OPEN_FAILURE); |
|
packet_put_int(remote_id); |
|
packet_send(); |
|
} |
|
xfree(host); |
|
} |
|
|
|
/* |
/* |
* Creates an internet domain socket for listening for X11 connections. |
* Creates an internet domain socket for listening for X11 connections. |
* Returns a suitable value for the DISPLAY variable, or NULL if an error |
* Returns a suitable value for the DISPLAY variable, or NULL if an error |
* occurs. |
* occurs. |
*/ |
*/ |
|
|
#define NUM_SOCKS 10 |
|
|
|
char * |
char * |
x11_create_display_inet(int screen_number, int x11_display_offset) |
x11_create_display_inet(int screen_number, int x11_display_offset) |
{ |
{ |
|
|
debug("Received X11 open request."); |
debug("Received X11 open request."); |
|
|
remote_id = packet_get_int(); |
remote_id = packet_get_int(); |
if (have_hostname_in_open) { |
|
|
if (packet_get_protocol_flags() & SSH_PROTOFLAG_HOST_IN_FWD_OPEN) { |
remote_host = packet_get_string(NULL); |
remote_host = packet_get_string(NULL); |
} else { |
} else { |
remote_host = xstrdup("unknown (remote did not supply name)"); |
remote_host = xstrdup("unknown (remote did not supply name)"); |
|
|
/* |
/* |
* Requests forwarding of X11 connections, generates fake authentication |
* Requests forwarding of X11 connections, generates fake authentication |
* data, and enables authentication spoofing. |
* data, and enables authentication spoofing. |
|
* This should be called in the client only. |
*/ |
*/ |
|
|
void |
void |
x11_request_forwarding_with_spoofing(int client_session_id, |
x11_request_forwarding_with_spoofing(int client_session_id, |
const char *proto, const char *data) |
const char *proto, const char *data) |
|
|
xfree(new_data); |
xfree(new_data); |
} |
} |
|
|
|
|
|
/* -- agent forwarding */ |
|
|
/* Sends a message to the server to request authentication fd forwarding. */ |
/* Sends a message to the server to request authentication fd forwarding. */ |
|
|
void |
void |
|
|
char * |
char * |
auth_get_socket_name() |
auth_get_socket_name() |
{ |
{ |
return channel_forwarded_auth_socket_name; |
return auth_sock_name; |
} |
} |
|
|
/* removes the agent forwarding socket */ |
/* removes the agent forwarding socket */ |
|
|
void |
void |
cleanup_socket(void) |
cleanup_socket(void) |
{ |
{ |
unlink(channel_forwarded_auth_socket_name); |
unlink(auth_sock_name); |
rmdir(channel_forwarded_auth_socket_dir); |
rmdir(auth_sock_dir); |
} |
} |
|
|
/* |
/* |
|
|
int sock; |
int sock; |
struct sockaddr_un sunaddr; |
struct sockaddr_un sunaddr; |
|
|
if (auth_get_socket_name() != NULL) |
if (auth_get_socket_name() != NULL) { |
fatal("Protocol error: authentication forwarding requested twice."); |
error("authentication forwarding requested twice."); |
|
return 0; |
|
} |
|
|
/* Temporarily drop privileged uid for mkdir/bind. */ |
/* Temporarily drop privileged uid for mkdir/bind. */ |
temporarily_use_uid(pw); |
temporarily_use_uid(pw); |
|
|
/* Allocate a buffer for the socket name, and format the name. */ |
/* Allocate a buffer for the socket name, and format the name. */ |
channel_forwarded_auth_socket_name = xmalloc(MAX_SOCKET_NAME); |
auth_sock_name = xmalloc(MAXPATHLEN); |
channel_forwarded_auth_socket_dir = xmalloc(MAX_SOCKET_NAME); |
auth_sock_dir = xmalloc(MAXPATHLEN); |
strlcpy(channel_forwarded_auth_socket_dir, "/tmp/ssh-XXXXXXXX", MAX_SOCKET_NAME); |
strlcpy(auth_sock_dir, "/tmp/ssh-XXXXXXXX", MAXPATHLEN); |
|
|
/* Create private directory for socket */ |
/* Create private directory for socket */ |
if (mkdtemp(channel_forwarded_auth_socket_dir) == NULL) { |
if (mkdtemp(auth_sock_dir) == NULL) { |
packet_send_debug("Agent forwarding disabled: mkdtemp() failed: %.100s", |
packet_send_debug("Agent forwarding disabled: " |
strerror(errno)); |
"mkdtemp() failed: %.100s", strerror(errno)); |
restore_uid(); |
restore_uid(); |
xfree(channel_forwarded_auth_socket_name); |
xfree(auth_sock_name); |
xfree(channel_forwarded_auth_socket_dir); |
xfree(auth_sock_dir); |
channel_forwarded_auth_socket_name = NULL; |
auth_sock_name = NULL; |
channel_forwarded_auth_socket_dir = NULL; |
auth_sock_dir = NULL; |
return 0; |
return 0; |
} |
} |
snprintf(channel_forwarded_auth_socket_name, MAX_SOCKET_NAME, "%s/agent.%d", |
snprintf(auth_sock_name, MAXPATHLEN, "%s/agent.%d", |
channel_forwarded_auth_socket_dir, (int) getpid()); |
auth_sock_dir, (int) getpid()); |
|
|
if (atexit(cleanup_socket) < 0) { |
if (atexit(cleanup_socket) < 0) { |
int saved = errno; |
int saved = errno; |
|
|
/* Bind it to the name. */ |
/* Bind it to the name. */ |
memset(&sunaddr, 0, sizeof(sunaddr)); |
memset(&sunaddr, 0, sizeof(sunaddr)); |
sunaddr.sun_family = AF_UNIX; |
sunaddr.sun_family = AF_UNIX; |
strncpy(sunaddr.sun_path, channel_forwarded_auth_socket_name, |
strncpy(sunaddr.sun_path, auth_sock_name, |
sizeof(sunaddr.sun_path)); |
sizeof(sunaddr.sun_path)); |
|
|
if (bind(sock, (struct sockaddr *) & sunaddr, sizeof(sunaddr)) < 0) |
if (bind(sock, (struct sockaddr *) & sunaddr, sizeof(sunaddr)) < 0) |
|
|
close(sock); |
close(sock); |
return 0; |
return 0; |
} |
} |
strlcpy(nc->path, channel_forwarded_auth_socket_name, sizeof(nc->path)); |
strlcpy(nc->path, auth_sock_name, sizeof(nc->path)); |
return 1; |
return 1; |
} |
} |
|
|
|
|
{ |
{ |
Channel *c = NULL; |
Channel *c = NULL; |
int remote_id, sock; |
int remote_id, sock; |
char *dummyname; |
char *name; |
|
|
packet_integrity_check(plen, 4, type); |
packet_integrity_check(plen, 4, type); |
|
|
|
|
* agent. |
* agent. |
*/ |
*/ |
if (sock >= 0) { |
if (sock >= 0) { |
dummyname = xstrdup("authentication agent connection"); |
name = xstrdup("authentication agent connection"); |
c = channel_new("", SSH_CHANNEL_OPEN, sock, sock, -1, 0, 0, 0, dummyname, 1); |
c = channel_new("", SSH_CHANNEL_OPEN, sock, sock, |
|
-1, 0, 0, 0, name, 1); |
if (c == NULL) { |
if (c == NULL) { |
error("auth_input_open_request: channel_new failed"); |
error("auth_input_open_request: channel_new failed"); |
|
xfree(name); |
close(sock); |
close(sock); |
} else { |
} else { |
c->remote_id = remote_id; |
c->remote_id = remote_id; |
|
|
packet_put_int(remote_id); |
packet_put_int(remote_id); |
packet_put_int(c->self); |
packet_put_int(c->self); |
} |
} |
packet_send(); |
|
} |
|
|
|
void |
|
channel_start_open(int id) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_open: %d: bad id", id); |
|
return; |
|
} |
|
debug("send channel open %d", id); |
|
packet_start(SSH2_MSG_CHANNEL_OPEN); |
|
packet_put_cstring(c->ctype); |
|
packet_put_int(c->self); |
|
packet_put_int(c->local_window); |
|
packet_put_int(c->local_maxpacket); |
|
} |
|
void |
|
channel_open(int id) |
|
{ |
|
/* XXX REMOVE ME */ |
|
channel_start_open(id); |
|
packet_send(); |
|
} |
|
void |
|
channel_request(int id, char *service, int wantconfirm) |
|
{ |
|
channel_request_start(id, service, wantconfirm); |
|
packet_send(); |
|
debug("channel request %d: %s", id, service) ; |
|
} |
|
void |
|
channel_request_start(int id, char *service, int wantconfirm) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_request: %d: bad id", id); |
|
return; |
|
} |
|
packet_start(SSH2_MSG_CHANNEL_REQUEST); |
|
packet_put_int(c->remote_id); |
|
packet_put_cstring(service); |
|
packet_put_char(wantconfirm); |
|
} |
|
void |
|
channel_register_callback(int id, int mtype, channel_callback_fn *fn, void *arg) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_register_callback: %d: bad id", id); |
|
return; |
|
} |
|
c->cb_event = mtype; |
|
c->cb_fn = fn; |
|
c->cb_arg = arg; |
|
} |
|
void |
|
channel_register_cleanup(int id, channel_callback_fn *fn) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_register_cleanup: %d: bad id", id); |
|
return; |
|
} |
|
c->dettach_user = fn; |
|
} |
|
void |
|
channel_cancel_cleanup(int id) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_cancel_cleanup: %d: bad id", id); |
|
return; |
|
} |
|
c->dettach_user = NULL; |
|
} |
|
void |
|
channel_register_filter(int id, channel_filter_fn *fn) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL) { |
|
log("channel_register_filter: %d: bad id", id); |
|
return; |
|
} |
|
c->input_filter = fn; |
|
} |
|
|
|
void |
|
channel_set_fds(int id, int rfd, int wfd, int efd, |
|
int extusage, int nonblock) |
|
{ |
|
Channel *c = channel_lookup(id); |
|
if (c == NULL || c->type != SSH_CHANNEL_LARVAL) |
|
fatal("channel_activate for non-larval channel %d.", id); |
|
channel_register_fds(c, rfd, wfd, efd, extusage, nonblock); |
|
c->type = SSH_CHANNEL_OPEN; |
|
/* XXX window size? */ |
|
c->local_window = c->local_window_max = c->local_maxpacket * 2; |
|
packet_start(SSH2_MSG_CHANNEL_WINDOW_ADJUST); |
|
packet_put_int(c->remote_id); |
|
packet_put_int(c->local_window); |
|
packet_send(); |
packet_send(); |
} |
} |