| version 1.39, 2000/12/06 22:58:15 |
version 1.40, 2000/12/19 23:17:57 |
|
|
| static int cipher_type = SSH_CIPHER_NONE; |
static int cipher_type = SSH_CIPHER_NONE; |
| |
|
| /* Protocol flags for the remote side. */ |
/* Protocol flags for the remote side. */ |
| static unsigned int remote_protocol_flags = 0; |
static u_int remote_protocol_flags = 0; |
| |
|
| /* Encryption context for receiving data. This is only used for decryption. */ |
/* Encryption context for receiving data. This is only used for decryption. */ |
| static CipherContext receive_context; |
static CipherContext receive_context; |
|
|
| connection_in = fd_in; |
connection_in = fd_in; |
| connection_out = fd_out; |
connection_out = fd_out; |
| cipher_type = SSH_CIPHER_NONE; |
cipher_type = SSH_CIPHER_NONE; |
| cipher_init(&send_context, none, (unsigned char *) "", 0, NULL, 0); |
cipher_init(&send_context, none, (u_char *) "", 0, NULL, 0); |
| cipher_init(&receive_context, none, (unsigned char *) "", 0, NULL, 0); |
cipher_init(&receive_context, none, (u_char *) "", 0, NULL, 0); |
| if (!initialized) { |
if (!initialized) { |
| initialized = 1; |
initialized = 1; |
| buffer_init(&input); |
buffer_init(&input); |
|
|
| /* Sets remote side protocol flags. */ |
/* Sets remote side protocol flags. */ |
| |
|
| void |
void |
| packet_set_protocol_flags(unsigned int protocol_flags) |
packet_set_protocol_flags(u_int protocol_flags) |
| { |
{ |
| remote_protocol_flags = protocol_flags; |
remote_protocol_flags = protocol_flags; |
| channel_set_options((protocol_flags & SSH_PROTOFLAG_HOST_IN_FWD_OPEN) != 0); |
channel_set_options((protocol_flags & SSH_PROTOFLAG_HOST_IN_FWD_OPEN) != 0); |
|
|
| |
|
| /* Returns the remote protocol flags set earlier by the above function. */ |
/* Returns the remote protocol flags set earlier by the above function. */ |
| |
|
| unsigned int |
u_int |
| packet_get_protocol_flags() |
packet_get_protocol_flags() |
| { |
{ |
| return remote_protocol_flags; |
return remote_protocol_flags; |
|
|
| |
|
| void |
void |
| packet_encrypt(CipherContext * cc, void *dest, void *src, |
packet_encrypt(CipherContext * cc, void *dest, void *src, |
| unsigned int bytes) |
u_int bytes) |
| { |
{ |
| cipher_encrypt(cc, dest, src, bytes); |
cipher_encrypt(cc, dest, src, bytes); |
| } |
} |
|
|
| */ |
*/ |
| |
|
| void |
void |
| packet_decrypt(CipherContext *context, void *dest, void *src, unsigned int bytes) |
packet_decrypt(CipherContext *context, void *dest, void *src, u_int bytes) |
| { |
{ |
| /* |
/* |
| * Cryptographic attack detector for ssh - Modifications for packet.c |
* Cryptographic attack detector for ssh - Modifications for packet.c |
|
|
| */ |
*/ |
| |
|
| void |
void |
| packet_set_encryption_key(const unsigned char *key, unsigned int keylen, |
packet_set_encryption_key(const u_char *key, u_int keylen, |
| int number) |
int number) |
| { |
{ |
| Cipher *cipher = cipher_by_number(number); |
Cipher *cipher = cipher_by_number(number); |
|
|
| /* Appends an integer to the packet data. */ |
/* Appends an integer to the packet data. */ |
| |
|
| void |
void |
| packet_put_int(unsigned int value) |
packet_put_int(u_int value) |
| { |
{ |
| buffer_put_int(&outgoing_packet, value); |
buffer_put_int(&outgoing_packet, value); |
| } |
} |
|
|
| /* Appends a string to packet data. */ |
/* Appends a string to packet data. */ |
| |
|
| void |
void |
| packet_put_string(const char *buf, unsigned int len) |
packet_put_string(const char *buf, u_int len) |
| { |
{ |
| buffer_put_string(&outgoing_packet, buf, len); |
buffer_put_string(&outgoing_packet, buf, len); |
| } |
} |
|
|
| } |
} |
| |
|
| void |
void |
| packet_put_raw(const char *buf, unsigned int len) |
packet_put_raw(const char *buf, u_int len) |
| { |
{ |
| buffer_append(&outgoing_packet, buf, len); |
buffer_append(&outgoing_packet, buf, len); |
| } |
} |
|
|
| { |
{ |
| char buf[8], *cp; |
char buf[8], *cp; |
| int i, padding, len; |
int i, padding, len; |
| unsigned int checksum; |
u_int checksum; |
| u_int32_t rand = 0; |
u_int32_t rand = 0; |
| |
|
| /* |
/* |
|
|
| buffer_consume(&outgoing_packet, 8 - padding); |
buffer_consume(&outgoing_packet, 8 - padding); |
| |
|
| /* Add check bytes. */ |
/* Add check bytes. */ |
| checksum = ssh_crc32((unsigned char *) buffer_ptr(&outgoing_packet), |
checksum = ssh_crc32((u_char *) buffer_ptr(&outgoing_packet), |
| buffer_len(&outgoing_packet)); |
buffer_len(&outgoing_packet)); |
| PUT_32BIT(buf, checksum); |
PUT_32BIT(buf, checksum); |
| buffer_append(&outgoing_packet, buf, 4); |
buffer_append(&outgoing_packet, buf, 4); |
|
|
| void |
void |
| packet_send2() |
packet_send2() |
| { |
{ |
| unsigned char *macbuf = NULL; |
u_char *macbuf = NULL; |
| char *cp; |
char *cp; |
| unsigned int packet_length = 0; |
u_int packet_length = 0; |
| unsigned int i, padlen, len; |
u_int i, padlen, len; |
| u_int32_t rand = 0; |
u_int32_t rand = 0; |
| static unsigned int seqnr = 0; |
static u_int seqnr = 0; |
| int type; |
int type; |
| Enc *enc = NULL; |
Enc *enc = NULL; |
| Mac *mac = NULL; |
Mac *mac = NULL; |
|
|
| /* compute MAC over seqnr and packet(length fields, payload, padding) */ |
/* compute MAC over seqnr and packet(length fields, payload, padding) */ |
| if (mac && mac->enabled) { |
if (mac && mac->enabled) { |
| macbuf = hmac( mac->md, seqnr, |
macbuf = hmac( mac->md, seqnr, |
| (unsigned char *) buffer_ptr(&outgoing_packet), |
(u_char *) buffer_ptr(&outgoing_packet), |
| buffer_len(&outgoing_packet), |
buffer_len(&outgoing_packet), |
| mac->key, mac->key_len |
mac->key, mac->key_len |
| ); |
); |
|
|
| int |
int |
| packet_read_poll1(int *payload_len_ptr) |
packet_read_poll1(int *payload_len_ptr) |
| { |
{ |
| unsigned int len, padded_len; |
u_int len, padded_len; |
| unsigned char *ucp; |
u_char *ucp; |
| char buf[8], *cp; |
char buf[8], *cp; |
| unsigned int checksum, stored_checksum; |
u_int checksum, stored_checksum; |
| |
|
| /* Check if input size is less than minimum packet size. */ |
/* Check if input size is less than minimum packet size. */ |
| if (buffer_len(&input) < 4 + 8) |
if (buffer_len(&input) < 4 + 8) |
| return SSH_MSG_NONE; |
return SSH_MSG_NONE; |
| /* Get length of incoming packet. */ |
/* Get length of incoming packet. */ |
| ucp = (unsigned char *) buffer_ptr(&input); |
ucp = (u_char *) buffer_ptr(&input); |
| len = GET_32BIT(ucp); |
len = GET_32BIT(ucp); |
| if (len < 1 + 2 + 2 || len > 256 * 1024) |
if (len < 1 + 2 + 2 || len > 256 * 1024) |
| packet_disconnect("Bad packet length %d.", len); |
packet_disconnect("Bad packet length %d.", len); |
|
|
| #endif |
#endif |
| |
|
| /* Compute packet checksum. */ |
/* Compute packet checksum. */ |
| checksum = ssh_crc32((unsigned char *) buffer_ptr(&incoming_packet), |
checksum = ssh_crc32((u_char *) buffer_ptr(&incoming_packet), |
| buffer_len(&incoming_packet) - 4); |
buffer_len(&incoming_packet) - 4); |
| |
|
| /* Skip padding. */ |
/* Skip padding. */ |
|
|
| packet_disconnect("packet_read_poll: len %d != buffer_len %d.", |
packet_disconnect("packet_read_poll: len %d != buffer_len %d.", |
| len, buffer_len(&incoming_packet)); |
len, buffer_len(&incoming_packet)); |
| |
|
| ucp = (unsigned char *) buffer_ptr(&incoming_packet) + len - 4; |
ucp = (u_char *) buffer_ptr(&incoming_packet) + len - 4; |
| stored_checksum = GET_32BIT(ucp); |
stored_checksum = GET_32BIT(ucp); |
| if (checksum != stored_checksum) |
if (checksum != stored_checksum) |
| packet_disconnect("Corrupted check bytes on input."); |
packet_disconnect("Corrupted check bytes on input."); |
|
|
| *payload_len_ptr = buffer_len(&incoming_packet); |
*payload_len_ptr = buffer_len(&incoming_packet); |
| |
|
| /* Return type. */ |
/* Return type. */ |
| return (unsigned char) buf[0]; |
return (u_char) buf[0]; |
| } |
} |
| |
|
| int |
int |
| packet_read_poll2(int *payload_len_ptr) |
packet_read_poll2(int *payload_len_ptr) |
| { |
{ |
| unsigned int padlen, need; |
u_int padlen, need; |
| unsigned char buf[8], *macbuf; |
u_char buf[8], *macbuf; |
| unsigned char *ucp; |
u_char *ucp; |
| char *cp; |
char *cp; |
| static unsigned int packet_length = 0; |
static u_int packet_length = 0; |
| static unsigned int seqnr = 0; |
static u_int seqnr = 0; |
| int type; |
int type; |
| int maclen, block_size; |
int maclen, block_size; |
| Enc *enc = NULL; |
Enc *enc = NULL; |
|
|
| buffer_append_space(&incoming_packet, &cp, block_size); |
buffer_append_space(&incoming_packet, &cp, block_size); |
| packet_decrypt(&receive_context, cp, buffer_ptr(&input), |
packet_decrypt(&receive_context, cp, buffer_ptr(&input), |
| block_size); |
block_size); |
| ucp = (unsigned char *) buffer_ptr(&incoming_packet); |
ucp = (u_char *) buffer_ptr(&incoming_packet); |
| packet_length = GET_32BIT(ucp); |
packet_length = GET_32BIT(ucp); |
| if (packet_length < 1 + 4 || packet_length > 256 * 1024) { |
if (packet_length < 1 + 4 || packet_length > 256 * 1024) { |
| buffer_dump(&incoming_packet); |
buffer_dump(&incoming_packet); |
|
|
| */ |
*/ |
| if (mac && mac->enabled) { |
if (mac && mac->enabled) { |
| macbuf = hmac( mac->md, seqnr, |
macbuf = hmac( mac->md, seqnr, |
| (unsigned char *) buffer_ptr(&incoming_packet), |
(u_char *) buffer_ptr(&incoming_packet), |
| buffer_len(&incoming_packet), |
buffer_len(&incoming_packet), |
| mac->key, mac->key_len |
mac->key, mac->key_len |
| ); |
); |
|
|
| packet_length = 0; |
packet_length = 0; |
| |
|
| /* extract packet type */ |
/* extract packet type */ |
| type = (unsigned char)buf[0]; |
type = (u_char)buf[0]; |
| |
|
| if (type == SSH2_MSG_NEWKEYS) { |
if (type == SSH2_MSG_NEWKEYS) { |
| if (kex==NULL || mac==NULL || enc==NULL || comp==NULL) |
if (kex==NULL || mac==NULL || enc==NULL || comp==NULL) |
|
|
| fprintf(stderr, "read/plain[%d]:\r\n",type); |
fprintf(stderr, "read/plain[%d]:\r\n",type); |
| buffer_dump(&incoming_packet); |
buffer_dump(&incoming_packet); |
| #endif |
#endif |
| return (unsigned char)type; |
return (u_char)type; |
| } |
} |
| |
|
| int |
int |
|
|
| */ |
*/ |
| |
|
| void |
void |
| packet_process_incoming(const char *buf, unsigned int len) |
packet_process_incoming(const char *buf, u_int len) |
| { |
{ |
| buffer_append(&input, buf, len); |
buffer_append(&input, buf, len); |
| } |
} |
| |
|
| /* Returns a character from the packet. */ |
/* Returns a character from the packet. */ |
| |
|
| unsigned int |
u_int |
| packet_get_char() |
packet_get_char() |
| { |
{ |
| char ch; |
char ch; |
| buffer_get(&incoming_packet, &ch, 1); |
buffer_get(&incoming_packet, &ch, 1); |
| return (unsigned char) ch; |
return (u_char) ch; |
| } |
} |
| |
|
| /* Returns an integer from the packet data. */ |
/* Returns an integer from the packet data. */ |
| |
|
| unsigned int |
u_int |
| packet_get_int() |
packet_get_int() |
| { |
{ |
| return buffer_get_int(&incoming_packet); |
return buffer_get_int(&incoming_packet); |
|
|
| */ |
*/ |
| |
|
| char * |
char * |
| packet_get_string(unsigned int *length_ptr) |
packet_get_string(u_int *length_ptr) |
| { |
{ |
| return buffer_get_string(&incoming_packet, length_ptr); |
return buffer_get_string(&incoming_packet, length_ptr); |
| } |
} |
![[BACK]](/icons/back.gif){kind=icon}
Return to packet.c CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / ssh