dropbear: session.h comparison

comparison session.h @ 641:2b1bb792cd4d dropbear-tfm

- Update tfm changes to current default tip

author	Matt Johnston <matt@ucc.asn.au>
date	Mon, 21 Nov 2011 19:52:28 +0800
parents	76097ec1a29a 00eca37e47e8
children

comparison

equal deleted inserted replaced

-:76097ec1a29a
+:2b1bb792cd4d
 #include "queue.h"
 #include "listener.h"
 #include "packet.h"
 #include "tcpfwd.h"
 #include "chansession.h"
+#include "dbutil.h"
 extern int sessinitdone; /* Is set to 0 somewhere */
 extern int exitflag;
-void common_session_init(int sock_in, int sock_out, char* remotehost);
+void common_session_init(int sock_in, int sock_out);
 void session_loop(void(*loophandler)());
 void common_session_cleanup();
 void session_identification();
 void send_msg_ignore();
 const char* get_user_shell();
 void fill_passwd(const char* username);
 /* Server */
-void svr_session(int sock, int childpipe, char *remotehost, char *addrstring);
+void svr_session(int sock, int childpipe);
-void svr_dropbear_exit(int exitcode, const char* format, va_list param);
+void svr_dropbear_exit(int exitcode, const char* format, va_list param) ATTRIB_NORETURN;
 void svr_dropbear_log(int priority, const char* format, va_list param);
 /* Client */
-void cli_session(int sock_in, int sock_out, char *remotehost);
+void cli_session(int sock_in, int sock_out);
 void cli_session_cleanup();
 void cleantext(unsigned char* dirtytext);
-struct key_context {
+/* crypto parameters that are stored individually for transmit and receive */
+struct key_context_directional {
-	const struct dropbear_cipher *recv_algo_crypt; /* NULL for none */
+	const struct dropbear_cipher *algo_crypt; /* NULL for none */
-	const struct dropbear_cipher *trans_algo_crypt; /* NULL for none */
+	const struct dropbear_cipher_mode *crypt_mode;
-	const struct dropbear_cipher_mode *recv_crypt_mode;
+	const struct dropbear_hash *algo_mac; /* NULL for none */
-	const struct dropbear_cipher_mode *trans_crypt_mode;
+	int hash_index; /* lookup for libtomcrypt */
-	const struct dropbear_hash *recv_algo_mac; /* NULL for none */
+	char algo_comp; /* compression */
-	const struct dropbear_hash *trans_algo_mac; /* NULL for none */
-	char algo_kex;
-	char algo_hostkey;
-	char recv_algo_comp; /* compression */
-	char trans_algo_comp;
-	int allow_compress; /* whether compression has started (useful in
-							[email protected] delayed compression case) */
 #ifndef DISABLE_ZLIB
-	z_streamp recv_zstream;
+	z_streamp zstream;
-	z_streamp trans_zstream;
+#endif
-#endif
 	/* actual keys */
 	union {
 		symmetric_CBC cbc;
 #ifdef DROPBEAR_ENABLE_CTR_MODE
 		symmetric_CTR ctr;
 #endif
-	} recv_cipher_state;
+	} cipher_state;
-	union {
+	unsigned char mackey[MAX_MAC_KEY];
-		symmetric_CBC cbc;
+};
-#ifdef DROPBEAR_ENABLE_CTR_MODE
-		symmetric_CTR ctr;
+struct key_context {
-#endif
-	} trans_cipher_state;
+	struct key_context_directional recv;
-	unsigned char recvmackey[MAX_MAC_KEY];
+	struct key_context_directional trans;
-	unsigned char transmackey[MAX_MAC_KEY];
+	char algo_kex;
+	char algo_hostkey;
+	int allow_compress; /* whether compression has started (useful in
+							[email protected] delayed compression case) */
 };
 struct packetlist;
 struct packetlist {
 	struct packetlist *next;
 							(cleared after auth once we're not
 							respecting AUTH_TIMEOUT any more) */
 	int sock_in;
 	int sock_out;
-	unsigned char *remotehost; /* the peer hostname */
 	unsigned char *remoteident;
 	int maxfd; /* the maximum file descriptor to check with select() */
 	/* Packet buffers/values etc */
 	buffer *writepayload; /* Unencrypted payload to write - this is used
 							 throughout the code, as handlers fill out this
 							 buffer with the packet to send. */
 	struct Queue writequeue; /* A queue of encrypted packets to send */
-	buffer *readbuf; /* Encrypted */
+	buffer *readbuf; /* From the wire, decrypted in-place */
-	buffer *decryptreadbuf; /* Post-decryption */
 	buffer *payload; /* Post-decompression, the actual SSH packet */
 	unsigned int transseq, recvseq; /* Sequence IDs */
 	/* Packet-handling flags */
 	const packettype * packettypes; /* Packet handler mappings for this
 	fp_int * dh_K; /* SSH_MSG_KEXDH_REPLY and sending SSH_MSH_NEWKEYS */
 	unsigned char hash[SHA1_HASH_SIZE]; /* the hash*/
 	buffer* kexhashbuf; /* session hash buffer calculated from various packets*/
 	buffer* transkexinit; /* the kexinit packet we send should be kept so we
 							 can add it to the hash when generating keys */
+	/* Enables/disables compression */
+	algo_type *compress_algos;
 	/* a list of queued replies that should be sent after a KEX has
 	   concluded (ie, while dataallowed was unset)*/
 	struct packetlist *reply_queue_head, *reply_queue_tail;
 	 * svr-chansession.c for details */
 	struct exitinfo lastexit;
 	/* The numeric address they connected from, used for logging */
 	char * addrstring;
+	/* The resolved remote address, used for lastlog etc */
+	char *remotehost;
+#ifdef __uClinux__
+	pid_t server_pid;
+#endif
 };
 typedef enum {
 	KEX_NOTHING,
 								 be used */
 	int interact_request_received; /* flag whether we've received an
 									  info request from the server for
 									  interactive auth.*/
 #endif
-	struct SignKeyList *lastprivkey;
+	sign_key *lastprivkey;
 	int retval; /* What the command exit status was - we emulate it */
 #if 0
 	TODO
 	struct AgentkeyList *agentkeys; /* Keys to use for public-key auth */

Mercurial > dropbear

comparison session.h @ 641:2b1bb792cd4d dropbear-tfm