~ubuntu-branches/debian/stretch/dropbear/stretch

Viewing changes to session.h

Committer: Package Import Robot
Author(s): Gerrit Pape, Matt Johnston, Gerrit Pape
Date: 2013-10-25 15:00:48 UTC
mfrom: (1.4.6)
Revision ID: package-import@ubuntu.com-20131025150048-3jq765x96xayk392

Tags: 2013.60-1

http://bugs.debian.org/692653

[ Matt Johnston ]
* New upstream release.

[ Gerrit Pape ]
* debian/diff/0004-cve-2013-4421.diff, 0005-user-disclosure.diff:
remove; fixed upstream.
* debian/dropbear.postinst: don't fail if initramfs-tools it not
installed (closes: #692653).

files added:
configure.ac

dropbearconvert.1

dropbearkey.1

files removed:
cli-algo.c

cli-service.c

configure.in

debian/diff/0004-cve-2013-4421.diff

debian/diff/0005-user-disclosure.diff

dropbearkey.8

svr-algo.c

files modified:
.hg_archival.txt

.hgsigs

.hgtags

CHANGES

LICENSE

MULTI

Makefile.in

README

agentfwd.h

algo.h

auth.h

bignum.h

buffer.c

channel.h

circbuffer.c

cli-agentfwd.c

cli-auth.c

cli-authpubkey.c

cli-chansession.c

cli-kex.c

cli-main.c

cli-runopts.c

cli-session.c

common-algo.c

common-channel.c

common-kex.c

common-runopts.c

common-session.c

compat.c

config.guess

config.h.in

config.sub

configure

dbclient.1

dbmulti.c

dbutil.c

dbutil.h

debian/changelog

debian/diff/0001-dbclient.1-dbclient-uses-compression-if-compiled-with.diff

debian/diff/0002-dropbearkey.8-mention-y-option-add-example.diff

debian/diff/0003-options.h-use-usr-bin-xauth-instead-of-usr-bin-X11-xa.diff

debian/dropbear.postinst

debian/rules

debug.h

dropbear.8

dropbearkey.c

dss.c

includes.h

kex.h

libtomcrypt/src/headers/tomcrypt_custom.h

libtommath/Makefile.in

loginrec.c

options.h

packet.c

process-packet.c

queue.c

queue.h

random.c

random.h

rsa.c

runopts.h

scp.c

scpmisc.c

service.h

session.h

signkey.c

sshpty.c

svr-auth.c

svr-authpam.c

svr-authpasswd.c

svr-authpubkeyoptions.c

svr-chansession.c

svr-kex.c

svr-main.c

svr-runopts.c

svr-session.c

svr-tcpfwd.c

svr-x11fwd.c

sysoptions.h

tcp-accept.c

tcpfwd.h

termcodes.c

Show diffs side-by-side

added added

removed removed

session.h

void common_session_init(int sock_in, int sock_out);

void session_loop(void(*loophandler)());

void common_session_cleanup();

void session_identification();

void session_cleanup();

void send_session_identification();

void send_msg_ignore();

const char* get_user_shell();

/* Client */

void cli_session(int sock_in, int sock_out);

void cli_session_cleanup();

void cleantext(unsigned char* dirtytext);

/* crypto parameters that are stored individually for transmit and receive */

struct key_context_directional {

const struct dropbear_cipher *algo_crypt; /* NULL for none */

const struct dropbear_cipher *algo_crypt;

const struct dropbear_cipher_mode *crypt_mode;

const struct dropbear_hash *algo_mac; /* NULL for none */

const struct dropbear_hash *algo_mac;

int hash_index; /* lookup for libtomcrypt */

char algo_comp; /* compression */

#ifndef DISABLE_ZLIB

symmetric_CTR ctr;

#endif

} cipher_state;

unsigned char mackey[MAX_MAC_KEY];

unsigned char mackey[MAX_MAC_LEN];

int valid;

};

struct key_context {

111

int sock_in;

112

int sock_out;

113

114

unsigned char *remoteident;

114

/* remotehost will be initially NULL as we delay

115

* reading the remote version string. it will be set

116

* by the time any recv_() packet methods are called */

117

unsigned char *remoteident;

115

118

116

119

int maxfd; /* the maximum file descriptor to check with select() */

117

120

132

135

unsigned dataallowed : 1; /* whether we can send data packets or we are in

133

136

the middle of a KEX or something */

134

137

135

unsigned char requirenext; /* byte indicating what packet we require next,

136

or 0x00 for any */

138

unsigned char requirenext[2]; /* bytes indicating what packets we require next,

139

or 0x00 for any. Second option can only be

140

used if the first byte is also set */

137

141

138

142

unsigned char ignorenext; /* whether to ignore the next packet,

139

143

used for kex_follows stuff */

169

173

concluded (ie, while dataallowed was unset)*/

170

174

struct packetlist *reply_queue_head, *reply_queue_tail;

171

175

172

algo_type*(*buf_match_algo)(buffer*buf, algo_type localalgos[],

173

int *goodguess); /* The function to use to choose which algorithm

174

to use from the ones presented by the remote

175

side. Is specific to the client/server mode,

176

hence the function-pointer callback.*/

177

178

176

void(*remoteclosed)(); /* A callback to handle closure of the

179

177

remote connection */

180

178

179

void(*extra_session_cleanup)(); /* client or server specific cleanup */

180

void(*send_kex_first_guess)();

181

182

struct AuthState authstate; /* Common amongst client and server, since most

183

struct elements are common */

218

/* The resolved remote address, used for lastlog etc */

219

char *remotehost;

220

221

#ifdef __uClinux__

221

#ifdef USE_VFORK

222

pid_t server_pid;

223

#endif

224

233

234

typedef enum {

235

STATE_NOTHING,

236

SERVICE_AUTH_REQ_SENT,

237

SERVICE_AUTH_ACCEPT_RCVD,

238

SERVICE_CONN_REQ_SENT,

239

SERVICE_CONN_ACCEPT_RCVD,

240

236

USERAUTH_REQ_SENT,

241

237

USERAUTH_FAIL_RCVD,

242

238

USERAUTH_SUCCESS_RCVD,

246

242

struct clientsession {

247

243

248

244

mp_int *dh_e, *dh_x; /* Used during KEX */

245

int dh_val_algo; /* KEX algorithm corresponding to current dh_e and dh_x */

249

246

cli_kex_state kex_state; /* Used for progressing KEX */

250

247

cli_state state; /* Used to progress auth/channelsession etc */

251

248

unsigned donefirstkex : 1; /* Set when we set sentnewkeys, never reset */

259

256

int stderrcopy;

260

257

int stderrflags;

261

258

259

/* for escape char handling */

260

int last_char;

261

262

int winchange; /* Set to 1 when a windowchange signal happens */

263

264

int lastauthtype; /* either AUTH_TYPE_PUBKEY or AUTH_TYPE_PASSWORD,

269

int interact_request_received; /* flag whether we've received an

270

info request from the server for

271

interactive auth.*/

272

273

int cipher_none_after_auth; /* Set to 1 if the user requested "none"

274

auth */

272

275

#endif

273

276

sign_key *lastprivkey;

274

277

Older »