ports/libssh
ports/libssh
1
1
Форкнуть 0
Код Релизы 1 Активность

Improve SSHv1 key exchange functions.

Просмотр исходного кода 
git-svn-id: svn+ssh://svn.berlios.de/svnroot/repos/libssh/trunk@426 7dcaeef0-15fb-0310-b436-a5af3365683c
Этот коммит содержится в:
Andreas Schneider 2009-04-08 08:40:29 +00:00
родитель faa83b2380
Коммит 4f6fd0c451
1 изменённых файлов: 249 добавлений и 161 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

218
libssh/kex.c
Просмотреть файл

@ -472,17 +472,15 @@ error:
return ret; return ret;
} }
/* TODO FIXME add return value and error checking in callers */ static int build_session_id1(SSH_SESSION *session, STRING *servern,
static void build_session_id1(SSH_SESSION *session, STRING *servern,
STRING *hostn) { STRING *hostn) {
MD5CTX md5; MD5CTX md5 = NULL;
md5 = md5_init(); md5 = md5_init();
if (md5 == NULL) { if (md5 == NULL) {
return; return -1;
} }
#ifdef DEBUG_CRYPTO #ifdef DEBUG_CRYPTO
ssh_print_hexa("host modulus",hostn->string,string_len(hostn)); ssh_print_hexa("host modulus",hostn->string,string_len(hostn));
ssh_print_hexa("server modulus",servern->string,string_len(servern)); ssh_print_hexa("server modulus",servern->string,string_len(servern));
@ -494,6 +492,8 @@ static void build_session_id1(SSH_SESSION *session, STRING *servern,
#ifdef DEBUG_CRYPTO #ifdef DEBUG_CRYPTO
ssh_print_hexa("session_id",session->next_crypto->session_id,MD5_DIGEST_LEN); ssh_print_hexa("session_id",session->next_crypto->session_id,MD5_DIGEST_LEN);
#endif #endif
return 0;
} }
/* returns 1 if the modulus of k1 is < than the one of k2 */ /* returns 1 if the modulus of k1 is < than the one of k2 */
@ -526,24 +526,30 @@ static int modulus_smaller(PUBLIC_KEY *k1, PUBLIC_KEY *k2){
} }
#define ABS(A) ( (A)<0 ? -(A):(A) ) #define ABS(A) ( (A)<0 ? -(A):(A) )
static STRING *encrypt_session_key(SSH_SESSION *session, PUBLIC_KEY *svrkey, static STRING *encrypt_session_key(SSH_SESSION *session, PUBLIC_KEY *srvkey,
PUBLIC_KEY *hostkey, int slen, int hlen) { PUBLIC_KEY *hostkey, int slen, int hlen) {
unsigned char buffer[32]; unsigned char buffer[32] = {0};
int i; int i;
STRING *data1,*data2; STRING *data1 = NULL;
/* first, generate a session key */ STRING *data2 = NULL;
/* first, generate a session key */
ssh_get_random(session->next_crypto->encryptkey, 32, 1); ssh_get_random(session->next_crypto->encryptkey, 32, 1);
memcpy(buffer, session->next_crypto->encryptkey, 32); memcpy(buffer, session->next_crypto->encryptkey, 32);
memcpy(session->next_crypto->decryptkey, memcpy(session->next_crypto->decryptkey, session->next_crypto->encryptkey, 32);
session->next_crypto->encryptkey,32);
#ifdef DEBUG_CRYPTO #ifdef DEBUG_CRYPTO
ssh_print_hexa("session key",buffer,32); ssh_print_hexa("session key",buffer,32);
#endif #endif
/* xor session key with session_id */ /* xor session key with session_id */
for (i=0;i<16;++i) for (i = 0; i < 16; i++) {
buffer[i] ^= session->next_crypto->session_id[i]; buffer[i] ^= session->next_crypto->session_id[i];
}
data1 = string_new(32); data1 = string_new(32);
if (data1 == NULL) {
return NULL;
}
string_fill(data1, buffer, 32); string_fill(data1, buffer, 32);
if (ABS(hlen - slen) < 128){ if (ABS(hlen - slen) < 128){
ssh_log(session, SSH_LOG_FUNCTIONS, ssh_log(session, SSH_LOG_FUNCTIONS,
@ -551,15 +557,33 @@ static STRING *encrypt_session_key(SSH_SESSION *session, PUBLIC_KEY *svrkey,
"It's illegal and may not work", "It's illegal and may not work",
ABS(hlen - slen)); ABS(hlen - slen));
} }
if(modulus_smaller(svrkey,hostkey)){
data2=ssh_encrypt_rsa1(session,data1,svrkey); if (modulus_smaller(srvkey, hostkey)) {
free(data1); data2 = ssh_encrypt_rsa1(session, data1, srvkey);
string_free(data1);
data1 = NULL;
if (data2 == NULL) {
return NULL;
}
data1 = ssh_encrypt_rsa1(session, data2, hostkey); data1 = ssh_encrypt_rsa1(session, data2, hostkey);
string_free(data2);
if (data1 == NULL) {
return NULL;
}
} else { } else {
data2 = ssh_encrypt_rsa1(session, data1, hostkey); data2 = ssh_encrypt_rsa1(session, data1, hostkey);
free(data1); string_free(data1);
data1=ssh_encrypt_rsa1(session,data2,svrkey); data1 = NULL;
if (data2 == NULL) {
return NULL;
} }
data1 = ssh_encrypt_rsa1(session, data2, srvkey);
string_free(data2);
if (data1 == NULL) {
return NULL;
}
}
return data1; return data1;
} }
@ -580,119 +604,183 @@ static STRING *encrypt_session_key(SSH_SESSION *session, PUBLIC_KEY *svrkey,
*/ */
int ssh_get_kex1(SSH_SESSION *session) { int ssh_get_kex1(SSH_SESSION *session) {
u32 server_bits, host_bits, protocol_flags,
supported_ciphers_mask, supported_authentications_mask;
STRING *server_exp = NULL; STRING *server_exp = NULL;
STRING *server_mod = NULL; STRING *server_mod = NULL;
STRING *host_exp = NULL; STRING *host_exp = NULL;
STRING *host_mod = NULL; STRING *host_mod = NULL;
STRING *serverkey; STRING *serverkey = NULL;
STRING *hostkey; STRING *hostkey = NULL;
STRING *enc_session; STRING *enc_session = NULL;
PUBLIC_KEY *svr,*host; PUBLIC_KEY *srv = NULL;
int ko; PUBLIC_KEY *host = NULL;
u32 server_bits;
u32 host_bits;
u32 protocol_flags;
u32 supported_ciphers_mask;
u32 supported_authentications_mask;
u16 bits; u16 bits;
int rc = -1;
int ko;
enter_function(); enter_function();
ssh_log(session, SSH_LOG_PROTOCOL, "Waiting for a SSH_SMSG_PUBLIC_KEY"); ssh_log(session, SSH_LOG_PROTOCOL, "Waiting for a SSH_SMSG_PUBLIC_KEY");
if (packet_wait(session, SSH_SMSG_PUBLIC_KEY, 1)) { if (packet_wait(session, SSH_SMSG_PUBLIC_KEY, 1)) {
leave_function(); leave_function();
return -1; return -1;
} }
ssh_log(session, SSH_LOG_PROTOCOL, "Got a SSH_SMSG_PUBLIC_KEY"); ssh_log(session, SSH_LOG_PROTOCOL, "Got a SSH_SMSG_PUBLIC_KEY");
if (buffer_get_data(session->in_buffer, session->server_kex.cookie, 8) != 8) { if (buffer_get_data(session->in_buffer, session->server_kex.cookie, 8) != 8) {
ssh_set_error(session, SSH_FATAL, "Can't get cookie in buffer"); ssh_set_error(session, SSH_FATAL, "Can't get cookie in buffer");
leave_function(); leave_function();
return -1; return -1;
} }
buffer_get_u32(session->in_buffer, &server_bits); buffer_get_u32(session->in_buffer, &server_bits);
server_exp = buffer_get_mpint(session->in_buffer); server_exp = buffer_get_mpint(session->in_buffer);
if (server_exp == NULL) {
goto error;
}
server_mod = buffer_get_mpint(session->in_buffer); server_mod = buffer_get_mpint(session->in_buffer);
if (server_mod == NULL) {
goto error;
}
buffer_get_u32(session->in_buffer, &host_bits); buffer_get_u32(session->in_buffer, &host_bits);
host_exp = buffer_get_mpint(session->in_buffer); host_exp = buffer_get_mpint(session->in_buffer);
if (host_exp == NULL) {
goto error;
}
host_mod = buffer_get_mpint(session->in_buffer); host_mod = buffer_get_mpint(session->in_buffer);
if (host_mod == NULL) {
goto error;
}
buffer_get_u32(session->in_buffer, &protocol_flags); buffer_get_u32(session->in_buffer, &protocol_flags);
buffer_get_u32(session->in_buffer, &supported_ciphers_mask); buffer_get_u32(session->in_buffer, &supported_ciphers_mask);
ko = buffer_get_u32(session->in_buffer, &supported_authentications_mask); ko = buffer_get_u32(session->in_buffer, &supported_authentications_mask);
if((ko!=sizeof(u32)) || !host_mod || !host_exp || !server_mod || !server_exp){
if ((ko != sizeof(u32)) || !host_mod || !host_exp
|| !server_mod || !server_exp) {
ssh_log(session, SSH_LOG_RARE, "Invalid SSH_SMSG_PUBLIC_KEY packet"); ssh_log(session, SSH_LOG_RARE, "Invalid SSH_SMSG_PUBLIC_KEY packet");
ssh_set_error(session, SSH_FATAL, "Invalid SSH_SMSG_PUBLIC_KEY packet"); ssh_set_error(session, SSH_FATAL, "Invalid SSH_SMSG_PUBLIC_KEY packet");
if(host_mod) goto error;
free(host_mod);
if(host_exp)
free(host_exp);
if(server_mod)
free(server_mod);
if(server_exp)
free(server_exp);
leave_function();
return -1;
} }
server_bits = ntohl(server_bits); server_bits = ntohl(server_bits);
host_bits = ntohl(host_bits); host_bits = ntohl(host_bits);
protocol_flags = ntohl(protocol_flags); protocol_flags = ntohl(protocol_flags);
supported_ciphers_mask = ntohl(supported_ciphers_mask); supported_ciphers_mask = ntohl(supported_ciphers_mask);
supported_authentications_mask = ntohl(supported_authentications_mask); supported_authentications_mask = ntohl(supported_authentications_mask);
ssh_log(session,SSH_LOG_PROTOCOL,"server bits: %d ; host bits: %d Protocol flags : %.8lx ; " ssh_log(session, SSH_LOG_PROTOCOL,
"cipher mask : %.8lx ; auth mask: %.8lx", "Server bits: %d; Host bits: %d; Protocol flags: %.8lx; "
"Cipher mask: %.8lx; Auth mask: %.8lx",
server_bits, server_bits,
host_bits, host_bits,
(unsigned long int) protocol_flags, (unsigned long int) protocol_flags,
(unsigned long int) supported_ciphers_mask, (unsigned long int) supported_ciphers_mask,
(unsigned long int) supported_authentications_mask); (unsigned long int) supported_authentications_mask);
serverkey = make_rsa1_string(server_exp, server_mod); serverkey = make_rsa1_string(server_exp, server_mod);
if (serverkey == NULL) {
goto error;
}
hostkey = make_rsa1_string(host_exp,host_mod); hostkey = make_rsa1_string(host_exp,host_mod);
build_session_id1(session,server_mod,host_mod); if (serverkey == NULL) {
free(server_exp); goto error;
free(server_mod); }
free(host_exp); if (build_session_id1(session, server_mod, host_mod) < 0) {
free(host_mod); goto error;
svr=publickey_from_string(session, serverkey); }
srv = publickey_from_string(session, serverkey);
if (srv == NULL) {
goto error;
}
host = publickey_from_string(session, hostkey); host = publickey_from_string(session, hostkey);
if (host == NULL) {
goto error;
}
session->next_crypto->server_pubkey = string_copy(hostkey); session->next_crypto->server_pubkey = string_copy(hostkey);
if (session->next_crypto->server_pubkey == NULL) {
goto error;
}
session->next_crypto->server_pubkey_type = "ssh-rsa1"; session->next_crypto->server_pubkey_type = "ssh-rsa1";
/* now, we must choose an encryption algo */ /* now, we must choose an encryption algo */
/* hardcode 3des */ /* hardcode 3des */
if (!(supported_ciphers_mask & (1 << SSH_CIPHER_3DES))) { if (!(supported_ciphers_mask & (1 << SSH_CIPHER_3DES))) {
ssh_set_error(session,SSH_FATAL,"Remote server doesn't accept 3des"); ssh_set_error(session, SSH_FATAL, "Remote server doesn't accept 3DES");
leave_function(); goto error;
return -1; }
ssh_log(session, SSH_LOG_PROTOCOL, "Sending SSH_CMSG_SESSION_KEY");
if (buffer_add_u8(session->out_buffer, SSH_CMSG_SESSION_KEY) < 0) {
goto error;
}
if (buffer_add_u8(session->out_buffer, SSH_CIPHER_3DES) < 0) {
goto error;
}
if (buffer_add_data(session->out_buffer, session->server_kex.cookie, 8) < 0) {
goto error;
}
enc_session = encrypt_session_key(session, srv, host, server_bits, host_bits);
if (enc_session == NULL) {
goto error;
} }
ssh_log(session,SSH_LOG_PROTOCOL,"sending SSH_CMSG_SESSION_KEY");
buffer_add_u8(session->out_buffer,SSH_CMSG_SESSION_KEY);
buffer_add_u8(session->out_buffer,SSH_CIPHER_3DES);
buffer_add_data(session->out_buffer,session->server_kex.cookie,8);
enc_session=encrypt_session_key(session,svr,host,server_bits, host_bits);
bits = string_len(enc_session) * 8 - 7; bits = string_len(enc_session) * 8 - 7;
ssh_log(session, SSH_LOG_PROTOCOL, "%d bits, %zu bytes encrypted session", ssh_log(session, SSH_LOG_PROTOCOL, "%d bits, %zu bytes encrypted session",
bits, string_len(enc_session)); bits, string_len(enc_session));
bits = htons(bits); bits = htons(bits);
/* the encrypted mpint */ /* the encrypted mpint */
buffer_add_data(session->out_buffer,&bits,sizeof(u16)); if (buffer_add_data(session->out_buffer, &bits, sizeof(u16)) < 0) {
buffer_add_data(session->out_buffer,enc_session->string, goto error;
string_len(enc_session)); }
if (buffer_add_data(session->out_buffer, enc_session->string,
string_len(enc_session)) < 0) {
goto error;
}
/* the protocol flags */ /* the protocol flags */
buffer_add_u32(session->out_buffer,0); if (buffer_add_u32(session->out_buffer, 0) < 0) {
goto error;
}
if (packet_send(session) != SSH_OK) {
goto error;
}
packet_send(session);
/* we can set encryption */ /* we can set encryption */
if (crypt_set_algorithms(session)) { if (crypt_set_algorithms(session)) {
leave_function(); goto error;
return -1;
} }
session->current_crypto = session->next_crypto; session->current_crypto = session->next_crypto;
session->next_crypto = NULL; session->next_crypto = NULL;
ssh_log(session, SSH_LOG_PROTOCOL, "Waiting for a SSH_SMSG_SUCCESS"); ssh_log(session, SSH_LOG_PROTOCOL, "Waiting for a SSH_SMSG_SUCCESS");
if (packet_wait(session,SSH_SMSG_SUCCESS,1)) { if (packet_wait(session,SSH_SMSG_SUCCESS,1)) {
char buffer[1024]; char buffer[1024] = {0};
snprintf(buffer,sizeof(buffer),"Key exchange failed : %s",ssh_get_error(session)); snprintf(buffer, sizeof(buffer),
"Key exchange failed: %s", ssh_get_error(session));
ssh_set_error(session, SSH_FATAL, "%s",buffer); ssh_set_error(session, SSH_FATAL, "%s",buffer);
goto error;
}
ssh_log(session, SSH_LOG_PROTOCOL, "received SSH_SMSG_SUCCESS\n");
rc = 0;
error:
string_free(host_mod);
string_free(host_exp);
string_free(server_mod);
string_free(server_exp);
string_free(serverkey);
string_free(hostkey);
publickey_free(srv);
publickey_free(host);
leave_function(); leave_function();
return -1; return -1;
} }
ssh_log(session,SSH_LOG_PROTOCOL,"received SSH_SMSG_SUCCESS\n");
leave_function();
return 0;
}