- markus@cvs.openbsd.org 2001/02/28 09:57:07

[packet.c packet.h sshconnect2.c] in ssh protocol v2 use ignore messages for padding (instead of trailing \0).
author: Ben Lindstrom <mouring@eviladmin.org> 2001-03-05 06:17:49 +0000
committer: Ben Lindstrom <mouring@eviladmin.org> 2001-03-05 06:17:49 +0000
commit: 5699c5f9acb09d8e210856c3dd3cdeb4078d41a4 (patch)
tree: d865640d602faefb7f1b8e26648d1938c2caa224 /packet.c
parent: 7fbd455c780e96065dc2bd8d96d21f0c017c0f99 (diff)
1 files changed, 55 insertions, 1 deletions
diff --git a/packet.c b/packet.c
index 02f8ab1bb..26abf0e1a 100644
--- a/packet.c
+++ b/packet.c
@@ -37,7 +37,7 @@
 */
 #include "includes.h"
-RCSID("$OpenBSD: packet.c,v 1.52 2001/02/27 10:35:27 markus Exp $");
+RCSID("$OpenBSD: packet.c,v 1.53 2001/02/28 09:57:06 markus Exp $");
 #include "xmalloc.h"
 #include "buffer.h"
@@ -1305,3 +1305,57 @@ packet_set_maxsize(int s)
        max_packet_size = s;
        return s;
 }
+/*
+ * 9.2.  Ignored Data Message
+ * 
+ *   byte      SSH_MSG_IGNORE
+ *   string    data
+ * 
+ * All implementations MUST understand (and ignore) this message at any
+ * time (after receiving the protocol version). No implementation is
+ * required to send them. This message can be used as an additional
+ * protection measure against advanced traffic analysis techniques.
+ */
+/* size of current + ignore message should be n*sumlen bytes (w/o mac) */
+void
+packet_inject_ignore(int sumlen)
+{
+        u_int32_t rand = 0;
+        int i, blocksize, padlen, have, need, nb, mini, nbytes;
+        Enc *enc = NULL;
+        if (use_ssh2_packet_format == 0)
+                return;
+        have = buffer_len(&outgoing_packet);
+        debug2("packet_inject_ignore: current %d", have);
+        if (kex != NULL)
+        enc  = &kex->enc[MODE_OUT];
+        blocksize = enc ? enc->cipher->block_size : 8;
+        padlen = blocksize - (have % blocksize);
+        if (padlen < 4)
+                padlen += blocksize;
+        have += padlen;
+        have /= blocksize;      /* # of blocks for current message */
+        nb   = roundup(sumlen,  blocksize) / blocksize; /* blocks for both */
+        mini = roundup(5+1+4+4, blocksize) / blocksize; /* minsize ignore msg */
+        need = nb - (have % nb);                        /* blocks for ignore */
+        if (need <= mini)
+                need += nb;
+        nbytes = (need - mini) * blocksize;     /* size of ignore payload */
+        debug2("packet_inject_ignore: block %d have %d nb %d mini %d need %d",
+            blocksize, have, nb, mini, need);
+        /* enqueue current message and append a ignore message */
+        packet_send();
+        packet_start(SSH2_MSG_IGNORE);
+        packet_put_int(nbytes);
+        for(i = 0; i < nbytes; i++) {
+                if (i % 4 == 0)
+                        rand = arc4random();
+                packet_put_char(rand & 0xff);
+                rand >>= 8;
+        }
+}
author	Ben Lindstrom <mouring@eviladmin.org>	2001-03-05 06:17:49 +0000
committer	Ben Lindstrom <mouring@eviladmin.org>	2001-03-05 06:17:49 +0000
commit	5699c5f9acb09d8e210856c3dd3cdeb4078d41a4 (patch)
tree	d865640d602faefb7f1b8e26648d1938c2caa224 /packet.c
parent	7fbd455c780e96065dc2bd8d96d21f0c017c0f99 (diff)

diff --git a/packet.c b/packet.c index 02f8ab1bb..26abf0e1a 100644 --- a/packet.c +++ b/packet.c
@@ -37,7 +37,7 @@
37	*/	37	*/
38		38
39	#include "includes.h"	39	#include "includes.h"
40	RCSID("$OpenBSD: packet.c,v 1.52 2001/02/27 10:35:27 markus Exp $");	40	RCSID("$OpenBSD: packet.c,v 1.53 2001/02/28 09:57:06 markus Exp $");
41		41
42	#include "xmalloc.h"	42	#include "xmalloc.h"
43	#include "buffer.h"	43	#include "buffer.h"
@@ -1305,3 +1305,57 @@ packet_set_maxsize(int s)
1305	max_packet_size = s;	1305	max_packet_size = s;
1306	return s;	1306	return s;
1307	}	1307	}
		1308
		1309	/*
		1310	* 9.2. Ignored Data Message
		1311	*
		1312	* byte SSH_MSG_IGNORE
		1313	* string data
		1314	*
		1315	* All implementations MUST understand (and ignore) this message at any
		1316	* time (after receiving the protocol version). No implementation is
		1317	* required to send them. This message can be used as an additional
		1318	* protection measure against advanced traffic analysis techniques.
		1319	*/
		1320	/* size of current + ignore message should be nsumlen bytes (w/o mac) /
		1321	void
		1322	packet_inject_ignore(int sumlen)
		1323	{
		1324	u_int32_t rand = 0;
		1325	int i, blocksize, padlen, have, need, nb, mini, nbytes;
		1326	Enc *enc = NULL;
		1327
		1328	if (use_ssh2_packet_format == 0)
		1329	return;
		1330
		1331	have = buffer_len(&outgoing_packet);
		1332	debug2("packet_inject_ignore: current %d", have);
		1333	if (kex != NULL)
		1334	enc = &kex->enc[MODE_OUT];
		1335	blocksize = enc ? enc->cipher->block_size : 8;
		1336	padlen = blocksize - (have % blocksize);
		1337	if (padlen < 4)
		1338	padlen += blocksize;
		1339	have += padlen;
		1340	have /= blocksize; /* # of blocks for current message */
		1341
		1342	nb = roundup(sumlen, blocksize) / blocksize; /* blocks for both */
		1343	mini = roundup(5+1+4+4, blocksize) / blocksize; /* minsize ignore msg */
		1344	need = nb - (have % nb); /* blocks for ignore */
		1345	if (need <= mini)
		1346	need += nb;
		1347	nbytes = (need - mini) * blocksize; /* size of ignore payload */
		1348	debug2("packet_inject_ignore: block %d have %d nb %d mini %d need %d",
		1349	blocksize, have, nb, mini, need);
		1350
		1351	/* enqueue current message and append a ignore message */
		1352	packet_send();
		1353	packet_start(SSH2_MSG_IGNORE);
		1354	packet_put_int(nbytes);
		1355	for(i = 0; i < nbytes; i++) {
		1356	if (i % 4 == 0)
		1357	rand = arc4random();
		1358	packet_put_char(rand & 0xff);
		1359	rand >>= 8;
		1360	}
		1361	}