- OpenBSD CVS update:

- [packet.h packet.c] ssh2 packet format - [packet.h packet.c nchan2.ms nchan.h compat.h compat.c] [channels.h channels.c] channel layer support for ssh2 - [kex.h kex.c hmac.h hmac.c dsa.c dsa.h] DSA, keyexchange, algorithm agreement for ssh2
author: Damien Miller <djm@mindrot.org> 2000-04-04 14:38:59 +1000
committer: Damien Miller <djm@mindrot.org> 2000-04-04 14:38:59 +1000
commit: 33b13568b520b25990261206e10c941a9270238f (patch)
tree: be9d549ee0c9c7774e3ec1da8d807b2e04b00bec /kex.h
parent: 193ba88dd6e9d6bcd5f476c7f5ddde8fd0b752bf (diff)
1 files changed, 111 insertions, 0 deletions
diff --git a/kex.h b/kex.h
new file mode 100644
index 000000000..f9e799948
--- /dev/null
+++ b/kex.h
@@ -0,0 +1,111 @@
+/*
+ * Copyright (c) 2000 Markus Friedl.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *      This product includes software developed by Markus Friedl.
+ * 4. The name of the author may not be used to endorse or promote products
+ *    derived from this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+ * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+ * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+ * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+ * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+ * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+ * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+ * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+#ifndef KEX_H
+#define KEX_H
+#define KEX_DH1 "diffie-hellman-group1-sha1"
+#define KEX_DSS "ssh-dss"
+enum kex_init_proposals {
+        PROPOSAL_KEX_ALGS,
+        PROPOSAL_SERVER_HOST_KEY_ALGS,
+        PROPOSAL_ENC_ALGS_CTOS,
+        PROPOSAL_ENC_ALGS_STOC,
+        PROPOSAL_MAC_ALGS_CTOS,
+        PROPOSAL_MAC_ALGS_STOC,
+        PROPOSAL_COMP_ALGS_CTOS,
+        PROPOSAL_COMP_ALGS_STOC,
+        PROPOSAL_LANG_CTOS,
+        PROPOSAL_LANG_STOC,
+        PROPOSAL_MAX
+};
+enum kex_modes {
+        MODE_IN,
+        MODE_OUT,
+        MODE_MAX
+};
+typedef struct Kex Kex;
+typedef struct Mac Mac;
+typedef struct Comp Comp;
+typedef struct Enc Enc;
+struct Enc {
+        int             type;
+        int             enabled;
+        int             block_size;
+        unsigned char   *key;
+        unsigned char   *iv;
+        int             key_len;
+        int             iv_len;
+        char            *name;
+};
+struct Mac {
+        EVP_MD          *md;
+        int             enabled;
+        int             mac_len;
+        unsigned char   *key;
+        int             key_len;
+        char            *name;
+};
+struct Comp {
+        int             type;
+        int             enabled;
+        char            *name;
+};
+struct Kex {
+        Enc             enc [MODE_MAX];
+        Mac             mac [MODE_MAX];
+        Comp            comp[MODE_MAX];
+        int             we_need;
+        int             server;
+        char            *name;
+        char            *hostkeyalg;
+};
+Buffer  *kex_init(char *myproposal[PROPOSAL_MAX]);
+DH      *new_dh_group1();
+Kex     *kex_choose_conf(char *cprop[PROPOSAL_MAX], char *sprop[PROPOSAL_MAX], int server);
+int     kex_derive_keys(Kex *k, unsigned char *hash, BIGNUM *shared_secret);
+void    bignum_print(BIGNUM *b);
+void    packet_set_kex(Kex *k);
+unsigned char *
+kex_hash(
+    char *client_version_string,
+    char *server_version_string,
+    char *ckexinit, int ckexinitlen,
+    char *skexinit, int skexinitlen,
+    char *serverhostkeyblob, int sbloblen,
+    BIGNUM *client_dh_pub,
+    BIGNUM *server_dh_pub,
+    BIGNUM *shared_secret);
+#endif
author	Damien Miller <djm@mindrot.org>	2000-04-04 14:38:59 +1000
committer	Damien Miller <djm@mindrot.org>	2000-04-04 14:38:59 +1000
commit	33b13568b520b25990261206e10c941a9270238f (patch)
tree	be9d549ee0c9c7774e3ec1da8d807b2e04b00bec /kex.h
parent	193ba88dd6e9d6bcd5f476c7f5ddde8fd0b752bf (diff)

diff --git a/kex.h b/kex.h new file mode 100644 index 000000000..f9e799948 --- /dev/null +++ b/kex.h
@@ -0,0 +1,111 @@
	1	/*
	2	* Copyright (c) 2000 Markus Friedl. All rights reserved.
	3	*
	4	* Redistribution and use in source and binary forms, with or without
	5	* modification, are permitted provided that the following conditions
	6	* are met:
	7	* 1. Redistributions of source code must retain the above copyright
	8	* notice, this list of conditions and the following disclaimer.
	9	* 2. Redistributions in binary form must reproduce the above copyright
	10	* notice, this list of conditions and the following disclaimer in the
	11	* documentation and/or other materials provided with the distribution.
	12	* 3. All advertising materials mentioning features or use of this software
	13	* must display the following acknowledgement:
	14	* This product includes software developed by Markus Friedl.
	15	* 4. The name of the author may not be used to endorse or promote products
	16	* derived from this software without specific prior written permission.
	17	*
	18	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
	19	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
	20	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
	21	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
	22	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	23	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
	24	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
	25	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
	26	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
	27	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	28	*/
	29	#ifndef KEX_H
	30	#define KEX_H
	31
	32	#define KEX_DH1 "diffie-hellman-group1-sha1"
	33	#define KEX_DSS "ssh-dss"
	34
	35	enum kex_init_proposals {
	36	PROPOSAL_KEX_ALGS,
	37	PROPOSAL_SERVER_HOST_KEY_ALGS,
	38	PROPOSAL_ENC_ALGS_CTOS,
	39	PROPOSAL_ENC_ALGS_STOC,
	40	PROPOSAL_MAC_ALGS_CTOS,
	41	PROPOSAL_MAC_ALGS_STOC,
	42	PROPOSAL_COMP_ALGS_CTOS,
	43	PROPOSAL_COMP_ALGS_STOC,
	44	PROPOSAL_LANG_CTOS,
	45	PROPOSAL_LANG_STOC,
	46	PROPOSAL_MAX
	47	};
	48
	49	enum kex_modes {
	50	MODE_IN,
	51	MODE_OUT,
	52	MODE_MAX
	53	};
	54
	55	typedef struct Kex Kex;
	56	typedef struct Mac Mac;
	57	typedef struct Comp Comp;
	58	typedef struct Enc Enc;
	59
	60	struct Enc {
	61	int type;
	62	int enabled;
	63	int block_size;
	64	unsigned char *key;
	65	unsigned char *iv;
	66	int key_len;
	67	int iv_len;
	68	char *name;
	69	};
	70	struct Mac {
	71	EVP_MD *md;
	72	int enabled;
	73	int mac_len;
	74	unsigned char *key;
	75	int key_len;
	76	char *name;
	77	};
	78	struct Comp {
	79	int type;
	80	int enabled;
	81	char *name;
	82	};
	83	struct Kex {
	84	Enc enc [MODE_MAX];
	85	Mac mac [MODE_MAX];
	86	Comp comp[MODE_MAX];
	87	int we_need;
	88	int server;
	89	char *name;
	90	char *hostkeyalg;
	91	};
	92
	93	Buffer kex_init(char myproposal[PROPOSAL_MAX]);
	94	DH *new_dh_group1();
	95	Kex kex_choose_conf(char cprop[PROPOSAL_MAX], char *sprop[PROPOSAL_MAX], int server);
	96	int kex_derive_keys(Kex k, unsigned char hash, BIGNUM *shared_secret);
	97	void bignum_print(BIGNUM *b);
	98	void packet_set_kex(Kex *k);
	99
	100	unsigned char *
	101	kex_hash(
	102	char *client_version_string,
	103	char *server_version_string,
	104	char *ckexinit, int ckexinitlen,
	105	char *skexinit, int skexinitlen,
	106	char *serverhostkeyblob, int sbloblen,
	107	BIGNUM *client_dh_pub,
	108	BIGNUM *server_dh_pub,
	109	BIGNUM *shared_secret);
	110
	111	#endif