dropbear: session.h comparison

comparison session.h @ 534:0431915df79f

- Get rid of decryptreadbuf, just decrypt in-place with readbuf - Share make_mac function for both packet creation and validation - Split recv/trans parts of key_context into their own structures

author	Matt Johnston <matt@ucc.asn.au>
date	Sun, 01 Mar 2009 16:15:57 +0000
parents	a3748e54273c
children	cf376c696dfc 8711f20b89ab

comparison

equal deleted inserted replaced

-:805ae74ec024
+:0431915df79f
 /* Client */
 void cli_session(int sock_in, int sock_out, char *remotehost);
 void cli_session_cleanup();
 void cleantext(unsigned char* dirtytext);
-struct key_context {
+/* crypto parameters that are stored individually for transmit and receive */
+struct key_context_directional {
-	const struct dropbear_cipher *recv_algo_crypt; /* NULL for none */
+	const struct dropbear_cipher *algo_crypt; /* NULL for none */
-	const struct dropbear_cipher *trans_algo_crypt; /* NULL for none */
+	const struct dropbear_cipher_mode *crypt_mode;
-	const struct dropbear_cipher_mode *recv_crypt_mode;
+	const struct dropbear_hash *algo_mac; /* NULL for none */
-	const struct dropbear_cipher_mode *trans_crypt_mode;
+	int hash_index; /* lookup for libtomcrypt */
-	const struct dropbear_hash *recv_algo_mac; /* NULL for none */
+	char algo_comp; /* compression */
-	const struct dropbear_hash *trans_algo_mac; /* NULL for none */
-	char algo_kex;
-	char algo_hostkey;
-	char recv_algo_comp; /* compression */
-	char trans_algo_comp;
-	int allow_compress; /* whether compression has started (useful in
-							[email protected] delayed compression case) */
 #ifndef DISABLE_ZLIB
-	z_streamp recv_zstream;
+	z_streamp zstream;
-	z_streamp trans_zstream;
+#endif
-#endif
 	/* actual keys */
 	union {
 		symmetric_CBC cbc;
 #ifdef DROPBEAR_ENABLE_CTR_MODE
 		symmetric_CTR ctr;
 #endif
-	} recv_cipher_state;
+	} cipher_state;
-	union {
+	unsigned char mackey[MAX_MAC_KEY];
-		symmetric_CBC cbc;
+};
-#ifdef DROPBEAR_ENABLE_CTR_MODE
-		symmetric_CTR ctr;
+struct key_context {
-#endif
-	} trans_cipher_state;
+	struct key_context_directional recv;
-	unsigned char recvmackey[MAX_MAC_KEY];
+	struct key_context_directional trans;
-	unsigned char transmackey[MAX_MAC_KEY];
+	char algo_kex;
+	char algo_hostkey;
+	int allow_compress; /* whether compression has started (useful in
+							[email protected] delayed compression case) */
 };
 struct packetlist;
 struct packetlist {
 	struct packetlist *next;
 	/* Packet buffers/values etc */
 	buffer *writepayload; /* Unencrypted payload to write - this is used
 							 throughout the code, as handlers fill out this
 							 buffer with the packet to send. */
 	struct Queue writequeue; /* A queue of encrypted packets to send */
-	buffer *readbuf; /* Encrypted */
+	buffer *readbuf; /* From the wire, decrypted in-place */
-	buffer *decryptreadbuf; /* Post-decryption */
 	buffer *payload; /* Post-decompression, the actual SSH packet */
 	unsigned int transseq, recvseq; /* Sequence IDs */
 	/* Packet-handling flags */
 	const packettype * packettypes; /* Packet handler mappings for this

Mercurial > dropbear

comparison session.h @ 534:0431915df79f