C0ffeeCode/redox-ssh
1
0
Fork 0
mirror of https://gitlab.redox-os.org/CoffeeCode/redox-ssh.git synced 2025-12-28 17:02:19 +01:00
Code Issues Activity Actions

Don't use TcpStream::try_clone for now

Browse source
This commit is contained in:
Thomas Gatzweiler 2017-07-20 14:14:31 +02:00
parent 743cb40e39
commit 8c911fec23
2 changed files with 289 additions and 269 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

548
src/connection.rs
View file

@ -1,9 +1,11 @@
use std::io::{self, BufRead, BufReader, Read, Write}; use std::collections::VecDeque;
use std::io::{self, BufReader, Read, Write};
use std::net::TcpStream;
use std::sync::Arc; use std::sync::Arc;
use encryption::{AesCtr, Decryptor, Encryption}; use encryption::{AesCtr, Decryptor, Encryption};
use error::{ConnectionError, ConnectionResult}; use error::{ConnectionError, ConnectionResult as Result};
use key_exchange::{self, KexResult, KeyExchange}; use key_exchange::{KexResult, KeyExchange};
use mac::{Hmac, MacAlgorithm}; use mac::{Hmac, MacAlgorithm};
use message::MessageType; use message::MessageType;
use packet::{Packet, ReadPacketExt, WritePacketExt}; use packet::{Packet, ReadPacketExt, WritePacketExt};
@ -34,122 +36,150 @@ pub struct Connection {
pub hash_data: HashData, pub hash_data: HashData,
state: ConnectionState, state: ConnectionState,
key_exchange: Option<Box<KeyExchange>>, key_exchange: Option<Box<KeyExchange>>,
stream: Box<Write>,
session_id: Option<Vec<u8>>, session_id: Option<Vec<u8>>,
encryption: Option<(Box<Encryption>, Box<Encryption>)>, encryption: Option<(Box<Encryption>, Box<Encryption>)>,
mac: Option<(Box<MacAlgorithm>, Box<MacAlgorithm>)>, mac: Option<(Box<MacAlgorithm>, Box<MacAlgorithm>)>,
seq: (u32, u32), seq: (u32, u32),
tx_queue: VecDeque<Packet>,
} }
impl<'a> Connection { impl<'a> Connection {
pub fn new(conn_type: ConnectionType, stream: Box<Write>) -> Connection { pub fn new(conn_type: ConnectionType) -> Connection {
Connection { Connection {
conn_type: conn_type, conn_type: conn_type,
hash_data: HashData::default(), hash_data: HashData::default(),
state: ConnectionState::Initial, state: ConnectionState::Initial,
key_exchange: None, key_exchange: None,
stream: Box::new(stream),
session_id: None, session_id: None,
encryption: None, encryption: None,
mac: None, mac: None,
seq: (0, 0), seq: (0, 0),
tx_queue: VecDeque::new(),
} }
} }
pub fn run(&mut self, stream: &mut Read) -> ConnectionResult<()> { pub fn run(&mut self, mut stream: TcpStream) -> Result<()> {
let mut reader = BufReader::new(stream); self.send_id(&mut stream)?;
self.read_id(&stream)?;
self.send_id()?; let mut reader = BufReader::new(&stream);
self.read_id(&mut reader)?;
loop { loop {
let packet = if let Some((ref mut c2s, _)) = self.encryption { let packet = self.recv(&mut reader)?;
let mut decryptor = Decryptor::new(&mut **c2s, &mut reader); let response = self.process(packet)?;
Packet::read_from(&mut decryptor)?
}
else {
Packet::read_from(&mut reader)?
};
if let Some((ref mut mac, _)) = self.mac { let mut stream = reader.get_mut();
let mut sig = vec![0; mac.size()];
reader.read_exact(&mut sig)?;
let mut sig_cmp = vec![0; mac.size()]; if let Some(packet) = response {
mac.sign(packet.data(), self.seq.0, sig_cmp.as_mut_slice()); self.send(&mut stream, packet)?;
if sig != sig_cmp {
return Err(ConnectionError::IntegrityError);
}
} }
trace!("Packet {} received: {:?}", self.seq.0, packet); // Send additional packets from the queue
self.process(packet)?; let mut packets: Vec<Packet> = self.tx_queue.drain(..).collect();
for packet in packets.drain(..) {
self.seq.0 = self.seq.0.wrapping_add(1); self.send(&mut stream, packet)?;
}
} }
} }
pub fn send(&mut self, packet: Packet) -> io::Result<()> { fn recv(&mut self, mut stream: &mut Read) -> Result<Packet> {
let packet = if let Some((ref mut c2s, _)) = self.encryption {
let mut decryptor = Decryptor::new(&mut **c2s, &mut stream);
Packet::read_from(&mut decryptor)?
}
else {
Packet::read_from(&mut stream)?
};
if let Some((ref mut mac, _)) = self.mac {
let mut sig = vec![0; mac.size()];
stream.read_exact(&mut sig)?;
let mut sig_cmp = vec![0; mac.size()];
mac.sign(packet.data(), self.seq.0, sig_cmp.as_mut_slice());
if sig != sig_cmp {
return Err(ConnectionError::IntegrityError);
}
}
trace!("Packet {} received: {:?}", self.seq.0, packet);
// Count up the received packet sequence number
self.seq.0 = self.seq.0.wrapping_add(1);
Ok(packet)
}
fn send(&mut self, mut stream: &mut Write, packet: Packet)
-> io::Result<()> {
trace!("Sending packet {}: {:?}", self.seq.1, packet); trace!("Sending packet {}: {:?}", self.seq.1, packet);
let packet = packet.to_raw()?; let packet = packet.to_raw()?;
if let Some((_, ref mut s2c)) = self.encryption { if let Some((_, ref mut s2c)) = self.encryption {
let mut encrypted = vec![0; packet.data().len()]; let mut encrypted = vec![0; packet.data().len()];
s2c.encrypt(packet.data(), encrypted.as_mut_slice()); s2c.encrypt(packet.data(), encrypted.as_mut_slice());
// Sending encrypted packet // Sending encrypted packet
self.stream.write_all(encrypted.as_slice())?; stream.write_all(encrypted.as_slice())?;
} }
else { else {
packet.write_to(&mut self.stream)?; packet.write_to(&mut stream)?;
} }
self.seq.1 = self.seq.1.wrapping_add(1);
if let Some((_, ref mut mac)) = self.mac { if let Some((_, ref mut mac)) = self.mac {
let mut sig = vec![0; mac.size()]; let mut sig = vec![0; mac.size()];
mac.sign(packet.data(), self.seq.1, sig.as_mut_slice()); mac.sign(packet.data(), self.seq.1, sig.as_mut_slice());
self.stream.write_all(sig.as_slice())?; stream.write_all(sig.as_slice())?;
} }
self.seq.1 = self.seq.1.wrapping_add(1);
Ok(()) Ok(())
} }
fn send_id(&mut self) -> io::Result<()> { fn send_id(&mut self, stream: &mut TcpStream) -> io::Result<()> {
let id = format!("SSH-2.0-RedoxSSH_{}", env!("CARGO_PKG_VERSION")); let id = format!("SSH-2.0-RedoxSSH_{}", env!("CARGO_PKG_VERSION"));
info!("Identifying as {:?}", id); info!("Identifying as {:?}", id);
self.stream.write(id.as_bytes())?; stream.write(id.as_bytes())?;
self.stream.write(b"\r\n")?; stream.write(b"\r\n")?;
self.stream.flush()?; stream.flush()?;
self.hash_data.server_id = Some(id); self.hash_data.server_id = Some(id);
Ok(()) Ok(())
} }
fn read_id(&mut self, mut reader: &mut BufRead) -> io::Result<()> { fn read_id(&mut self, stream: &TcpStream) -> io::Result<()> {
// The identification string has a maximum length of 255 bytes use std::ascii::AsciiExt;
// TODO: Make sure to stop reading if the client sends too much
let mut id = String::new(); let mut id = String::new();
while !id.starts_with("SSH-") { for byte in stream.take(255).bytes() {
reader.read_line(&mut id)?; match byte
{
Ok(b'\n') => break,
Ok(b) if b.is_ascii() => id.push(b as char),
Ok(_) => {}
Err(_) => break,
}
} }
let peer_id = id.trim_right().to_owned(); let id = id.trim().to_owned();
info!("Peer identifies as {:?}", peer_id);
self.hash_data.client_id = Some(peer_id);
Ok(()) if id.starts_with("SSH-") {
info!("Peer identifies as {:?}", id);
self.hash_data.client_id = Some(id);
Ok(())
}
else {
Err(io::Error::new(io::ErrorKind::InvalidData, "invalid id"))
}
} }
fn generate_key(&mut self, id: &[u8], len: usize) fn generate_key(&mut self, id: &[u8], len: usize) -> Result<Vec<u8>> {
-> ConnectionResult<Vec<u8>> {
use self::ConnectionError::KeyGenerationError; use self::ConnectionError::KeyGenerationError;
let kex = self.key_exchange.take().ok_or(KeyGenerationError)?; let kex = self.key_exchange.take().ok_or(KeyGenerationError)?;
@ -171,213 +201,17 @@ impl<'a> Connection {
Ok(key) Ok(key)
} }
pub fn process(&mut self, packet: Packet) -> ConnectionResult<()> { pub fn process(&mut self, packet: Packet) -> Result<Option<Packet>> {
match packet.msg_type() match packet.msg_type()
{ {
MessageType::KexInit => { MessageType::KexInit => self.kex_init(packet),
debug!("Starting key exchange"); MessageType::NewKeys => self.new_keys(packet),
self.kex_init(packet) MessageType::ServiceRequest => self.service_request(packet),
} MessageType::UserAuthRequest => self.user_auth_request(packet),
MessageType::NewKeys => { MessageType::ChannelOpen => self.channel_open(packet),
debug!("Switching to new keys"); MessageType::ChannelRequest => self.channel_request(packet),
MessageType::ChannelData => self.channel_data(packet),
let iv_c2s = self.generate_key(b"A", 256)?; MessageType::KeyExchange(_) => self.key_exchange(packet),
let iv_s2c = self.generate_key(b"B", 256)?;
let enc_c2s = self.generate_key(b"C", 256)?;
let enc_s2c = self.generate_key(b"D", 256)?;
let mac_c2s = self.generate_key(b"E", 256)?;
let mac_s2c = self.generate_key(b"F", 256)?;
self.encryption =
Some((
Box::new(
AesCtr::new(enc_c2s.as_slice(), iv_c2s.as_slice()),
),
Box::new(
AesCtr::new(enc_s2c.as_slice(), iv_s2c.as_slice()),
),
));
self.mac = Some((
Box::new(Hmac::new(mac_c2s.as_slice())),
Box::new(Hmac::new(mac_s2c.as_slice())),
));
Ok(())
}
MessageType::ServiceRequest => {
let mut reader = packet.reader();
let name = reader.read_string()?;
trace!(
"{:?}",
::std::str::from_utf8(&name.as_slice()).unwrap()
);
let mut res = Packet::new(MessageType::ServiceAccept);
res.with_writer(&|w| {
w.write_bytes(name.as_slice())?;
Ok(())
})?;
self.send(res)?;
Ok(())
}
MessageType::UserAuthRequest => {
let mut reader = packet.reader();
let name = reader.read_utf8()?;
let service = reader.read_utf8()?;
let method = reader.read_utf8()?;
let success = if method == "password" {
assert!(reader.read_bool()? == false);
let pass = reader.read_utf8()?;
pass == "hunter2"
}
else {
false
};
if success {
self.send(Packet::new(MessageType::UserAuthSuccess))?;
}
else {
let mut res = Packet::new(MessageType::UserAuthFailure);
res.with_writer(&|w| {
w.write_string("password")?;
w.write_bool(false)?;
Ok(())
})?;
self.send(res)?;
}
debug!("User Auth {:?}, {:?}, {:?}", name, service, method);
Ok(())
}
MessageType::ChannelOpen => {
let mut reader = packet.reader();
let channel_type = reader.read_utf8()?;
let sender_channel = reader.read_uint32()?;
let window_size = reader.read_uint32()?;
let max_packet_size = reader.read_uint32()?;
let mut res = Packet::new(MessageType::ChannelOpenConfirmation);
res.with_writer(&|w| {
w.write_uint32(sender_channel)?;
w.write_uint32(0)?;
w.write_uint32(window_size)?;
w.write_uint32(max_packet_size)?;
Ok(())
})?;
self.send(res)?;
debug!(
"Channel Open {:?}, {:?}, {:?}, {:?}",
channel_type,
sender_channel,
window_size,
max_packet_size
);
Ok(())
}
MessageType::ChannelRequest => {
let mut reader = packet.reader();
let channel = reader.read_uint32()?;
let request = reader.read_utf8()?;
let want_reply = reader.read_bool()?;
debug!(
"Channel Request {:?}, {:?}, {:?}",
channel,
request,
want_reply
);
if request == "pty-req" {
let term = reader.read_utf8()?;
let char_width = reader.read_uint32()?;
let row_height = reader.read_uint32()?;
let pixel_width = reader.read_uint32()?;
let pixel_height = reader.read_uint32()?;
let modes = reader.read_string()?;
debug!(
"PTY request: {:?} {:?} {:?} {:?} {:?} {:?}",
term,
char_width,
row_height,
pixel_width,
pixel_height,
modes
);
}
if request == "shell" {
debug!("Shell request");
}
if want_reply {
let mut res = Packet::new(MessageType::ChannelSuccess);
res.with_writer(&|w| w.write_uint32(0))?;
self.send(res)?;
}
Ok(())
}
MessageType::ChannelData => {
let mut reader = packet.reader();
let channel = reader.read_uint32()?;
let data = reader.read_string()?;
let mut res = Packet::new(MessageType::ChannelData);
res.with_writer(&|w| {
w.write_uint32(0)?;
w.write_bytes(data.as_slice())?;
Ok(())
})?;
self.send(res)?;
debug!(
"Channel {} Data ({} bytes): {:?}",
channel,
data.len(),
data
);
Ok(())
}
MessageType::KeyExchange(_) => {
let mut kex = self.key_exchange.take().ok_or(
ConnectionError::KeyExchangeError,
)?;
match kex.process(self, packet)
{
KexResult::Done(packet) => {
self.state = ConnectionState::Established;
self.send(packet)?;
if self.session_id.is_none() {
self.session_id =
kex.exchange_hash().map(|h| h.to_vec());
}
let packet = Packet::new(MessageType::NewKeys);
self.send(packet)?;
Ok(())
}
KexResult::Ok(packet) => {
self.send(packet)?;
Ok(())
}
KexResult::Error => Err(ConnectionError::KeyExchangeError),
}?;
self.key_exchange = Some(kex);
Ok(())
}
_ => { _ => {
error!("Unhandled packet: {:?}", packet); error!("Unhandled packet: {:?}", packet);
Err(ConnectionError::ProtocolError) Err(ConnectionError::ProtocolError)
@ -385,7 +219,172 @@ impl<'a> Connection {
} }
} }
pub fn kex_init(&mut self, packet: Packet) -> ConnectionResult<()> { fn new_keys(&mut self, packet: Packet) -> Result<Option<Packet>> {
debug!("Switching to new keys");
let iv_c2s = self.generate_key(b"A", 256)?;
let iv_s2c = self.generate_key(b"B", 256)?;
let enc_c2s = self.generate_key(b"C", 256)?;
let enc_s2c = self.generate_key(b"D", 256)?;
let mac_c2s = self.generate_key(b"E", 256)?;
let mac_s2c = self.generate_key(b"F", 256)?;
self.encryption =
Some((
Box::new(AesCtr::new(enc_c2s.as_slice(), iv_c2s.as_slice())),
Box::new(AesCtr::new(enc_s2c.as_slice(), iv_s2c.as_slice())),
));
self.mac = Some((
Box::new(Hmac::new(mac_c2s.as_slice())),
Box::new(Hmac::new(mac_s2c.as_slice())),
));
Ok(None)
}
fn service_request(&mut self, packet: Packet) -> Result<Option<Packet>> {
let mut reader = packet.reader();
let name = reader.read_string()?;
trace!("{:?}", ::std::str::from_utf8(&name.as_slice()).unwrap());
let mut res = Packet::new(MessageType::ServiceAccept);
res.with_writer(&|w| {
w.write_bytes(name.as_slice())?;
Ok(())
})?;
Ok(Some(res))
}
fn user_auth_request(&mut self, packet: Packet) -> Result<Option<Packet>> {
let mut reader = packet.reader();
let name = reader.read_utf8()?;
let service = reader.read_utf8()?;
let method = reader.read_utf8()?;
let success = if method == "password" {
assert!(reader.read_bool()? == false);
let pass = reader.read_utf8()?;
pass == "hunter2"
}
else {
false
};
debug!("User Auth {:?}, {:?}, {:?}", name, service, method);
if success {
Ok(Some(Packet::new(MessageType::UserAuthSuccess)))
}
else {
let mut res = Packet::new(MessageType::UserAuthFailure);
res.with_writer(&|w| {
w.write_string("password")?;
w.write_bool(false)?;
Ok(())
})?;
Ok(Some(res))
}
}
fn channel_open(&mut self, packet: Packet) -> Result<Option<Packet>> {
let mut reader = packet.reader();
let channel_type = reader.read_utf8()?;
let sender_channel = reader.read_uint32()?;
let window_size = reader.read_uint32()?;
let max_packet_size = reader.read_uint32()?;
let mut res = Packet::new(MessageType::ChannelOpenConfirmation);
res.with_writer(&|w| {
w.write_uint32(sender_channel)?;
w.write_uint32(0)?;
w.write_uint32(window_size)?;
w.write_uint32(max_packet_size)?;
Ok(())
})?;
debug!(
"Channel Open {:?}, {:?}, {:?}, {:?}",
channel_type,
sender_channel,
window_size,
max_packet_size
);
Ok(Some(res))
}
fn channel_request(&mut self, packet: Packet) -> Result<Option<Packet>> {
let mut reader = packet.reader();
let channel = reader.read_uint32()?;
let request = reader.read_utf8()?;
let want_reply = reader.read_bool()?;
debug!(
"Channel Request {:?}, {:?}, {:?}",
channel,
request,
want_reply
);
if request == "pty-req" {
let term = reader.read_utf8()?;
let char_width = reader.read_uint32()?;
let row_height = reader.read_uint32()?;
let pixel_width = reader.read_uint32()?;
let pixel_height = reader.read_uint32()?;
let modes = reader.read_string()?;
debug!(
"PTY request: {:?} {:?} {:?} {:?} {:?} {:?}",
term,
char_width,
row_height,
pixel_width,
pixel_height,
modes
);
}
if request == "shell" {
debug!("Shell request");
}
if want_reply {
let mut res = Packet::new(MessageType::ChannelSuccess);
res.with_writer(&|w| w.write_uint32(0))?;
Ok(Some(res))
}
else {
Ok(None)
}
}
fn channel_data(&mut self, packet: Packet) -> Result<Option<Packet>> {
let mut reader = packet.reader();
let channel = reader.read_uint32()?;
let data = reader.read_string()?;
let mut res = Packet::new(MessageType::ChannelData);
res.with_writer(&|w| {
w.write_uint32(0)?;
w.write_bytes(data.as_slice())?;
Ok(())
})?;
debug!(
"Channel {} Data ({} bytes): {:?}",
channel,
data.len(),
data
);
Ok(Some(res))
}
fn kex_init(&mut self, packet: Packet) -> Result<Option<Packet>> {
use algorithm::*; use algorithm::*;
let (kex_algo, srv_host_key_algo, enc_algo, mac_algo, comp_algo) = { let (kex_algo, srv_host_key_algo, enc_algo, mac_algo, comp_algo) = {
@ -451,11 +450,36 @@ impl<'a> Connection {
self.state = ConnectionState::KeyExchange; self.state = ConnectionState::KeyExchange;
self.key_exchange = kex_algo.instance(); self.key_exchange = kex_algo.instance();
packet.write_to(&mut self.stream)?;
// Save payload for hash generation // Save payload for hash generation
self.hash_data.server_kexinit = Some(packet.payload()); self.hash_data.server_kexinit = Some(packet.data().to_vec());
Ok(()) Ok(Some(packet))
}
fn key_exchange(&mut self, packet: Packet) -> Result<Option<Packet>> {
let mut kex = self.key_exchange.take().ok_or(
ConnectionError::KeyExchangeError,
)?;
let result = match kex.process(self, packet)
{
KexResult::Done(packet) => {
self.state = ConnectionState::Established;
if self.session_id.is_none() {
self.session_id = kex.exchange_hash().map(|h| h.to_vec());
}
self.tx_queue.push_back(Packet::new(MessageType::NewKeys));
Ok(Some(packet))
}
KexResult::Ok(packet) => Ok(Some(packet)),
KexResult::Error => Err(ConnectionError::KeyExchangeError),
};
self.key_exchange = Some(kex);
result
} }
} }

10
src/server.rs
View file

@ -32,14 +32,10 @@ impl Server {
debug!("Incoming connection from {}", addr); debug!("Incoming connection from {}", addr);
thread::spawn(move || { thread::spawn(move || {
let mut read_stream = stream.try_clone().unwrap(); let mut connection =
Connection::new(ConnectionType::Server(config));
let mut connection = Connection::new( let result = connection.run(stream);
ConnectionType::Server(config),
Box::new(stream),
);
let result = connection.run(&mut read_stream);
if let Some(error) = result.err() { if let Some(error) = result.err() {
println!("sshd: {}", error) println!("sshd: {}", error)