===================================================================
RCS file: /cvsrepo/anoncvs/cvs/src/usr.bin/ssh/packet.c,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -r1.8 -r1.9
--- src/usr.bin/ssh/packet.c	1999/10/03 19:22:38	1.8
+++ src/usr.bin/ssh/packet.c	1999/10/05 01:23:54	1.9
@@ -15,7 +15,7 @@
 */
 
 #include "includes.h"
-RCSID("$Id: packet.c,v 1.8 1999/10/03 19:22:38 deraadt Exp $");
+RCSID("$Id: packet.c,v 1.9 1999/10/05 01:23:54 dugsong Exp $");
 
 #include "xmalloc.h"
 #include "buffer.h"
@@ -27,6 +27,7 @@
 #include "getput.h"
 
 #include "compress.h"
+#include "deattack.h"
 
 /* This variable contains the file descriptors used for communicating with
    the other side.  connection_in is used for reading; connection_out
@@ -204,7 +205,28 @@
 packet_decrypt(CipherContext *cc, void *dest, void *src, 
 	       unsigned int bytes)
 {
+  int i;
+  
   assert((bytes % 8) == 0);
+  
+  /*
+    Cryptographic attack detector for ssh - Modifications for packet.c 
+    (C)1998 CORE-SDI, Buenos Aires Argentina
+    Ariel Futoransky(futo@core-sdi.com)
+  */
+  switch (cc->type)
+    {
+    case SSH_CIPHER_NONE:
+      i = DEATTACK_OK;
+      break;
+    default:
+      i = detect_attack(src, bytes, NULL);
+      break;
+    }
+  
+  if (i == DEATTACK_DETECTED)
+    packet_disconnect("crc32 compensation attack: network attack detected");
+  
   cipher_decrypt(cc, dest, src, bytes);
 }