1 files changed, 198 insertions, 0 deletions
diff --git a/other/ssharp/compat.c b/other/ssharp/compat.c
new file mode 100644
index 0000000..f5eeda0
--- /dev/null
+++ b/other/ssharp/compat.c
@@ -0,0 +1,198 @@
+/*
+ * Copyright (c) 1999,2000 Markus Friedl.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+ * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+ * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+ * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+ * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+ * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+ * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+ * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+#include "includes.h"
+RCSID("$OpenBSD: compat.c,v 1.47 2001/04/18 23:43:25 markus Exp $");
+#ifdef HAVE_LIBPCRE
+#  include <pcreposix.h>
+#else /* Use native regex libraries */
+#  ifdef HAVE_REGEX_H
+#    include <regex.h>
+#  else
+#    include "openbsd-compat/fake-regex.h"
+#  endif
+#endif /* HAVE_LIBPCRE */
+#include "packet.h"
+#include "xmalloc.h"
+#include "compat.h"
+#include "log.h"
+int compat13 = 0;
+int compat20 = 0;
+int datafellows = 0;
+void
+enable_compat20(void)
+{
+        verbose("Enabling compatibility mode for protocol 2.0");
+        compat20 = 1;
+}
+void
+enable_compat13(void)
+{
+        verbose("Enabling compatibility mode for protocol 1.3");
+        compat13 = 1;
+}
+/* datafellows bug compatibility */
+void
+compat_datafellows(const char *version)
+{
+        int i, ret;
+        char ebuf[1024];
+        regex_t reg;
+        static struct {
+                char    *pat;
+                int     bugs;
+        } check[] = {
+                { "^OpenSSH[-_]2\\.[012]",
+                                        SSH_OLD_SESSIONID|SSH_BUG_BANNER|
+                                        SSH_OLD_DHGEX|SSH_BUG_NOREKEY },
+                { "^OpenSSH_2\\.3\\.0", SSH_BUG_BANNER|SSH_BUG_BIGENDIANAES|
+                                        SSH_OLD_DHGEX|SSH_BUG_NOREKEY},
+                { "^OpenSSH_2\\.3\\.",  SSH_BUG_BIGENDIANAES|SSH_OLD_DHGEX|
+                                        SSH_BUG_NOREKEY},
+                { "^OpenSSH_2\\.5\\.[01]p1",
+                                        SSH_BUG_BIGENDIANAES|SSH_OLD_DHGEX|
+                                        SSH_BUG_NOREKEY },
+                { "^OpenSSH_2\\.5\\.[012]",
+                                        SSH_OLD_DHGEX|SSH_BUG_NOREKEY },
+                { "^OpenSSH_2\\.5\\.3",
+                                        SSH_BUG_NOREKEY },
+                { "^OpenSSH",           0 },
+                { "MindTerm",           0 },
+                { "^2\\.1\\.0",         SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
+                                        SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
+                                        SSH_BUG_RSASIGMD5|SSH_BUG_HBSERVICE },
+                { "^2\\.1 ",            SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
+                                        SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
+                                        SSH_BUG_RSASIGMD5|SSH_BUG_HBSERVICE },
+                { "^2\\.0\\.1[3-9]",    SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
+                                        SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
+                                        SSH_BUG_PKSERVICE|SSH_BUG_X11FWD|
+                                        SSH_BUG_PKOK|SSH_BUG_RSASIGMD5|
+                                        SSH_BUG_HBSERVICE },
+                { "^2\\.0\\.",          SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
+                                        SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
+                                        SSH_BUG_PKSERVICE|SSH_BUG_X11FWD|
+                                        SSH_BUG_PKAUTH|SSH_BUG_PKOK|
+                                        SSH_BUG_RSASIGMD5 },
+                { "^2\\.[23]\\.0",      SSH_BUG_HMAC|SSH_BUG_RSASIGMD5 },
+                { "^2\\.3\\.",          SSH_BUG_RSASIGMD5 },
+                { "^2\\.[2-9]\\.",      0 },
+                { "^2\\.4$",            SSH_OLD_SESSIONID },    /* Van Dyke */
+                { "^3\\.0 SecureCRT",   SSH_OLD_SESSIONID },
+                { "^1\\.7 SecureFX",    SSH_OLD_SESSIONID },
+                { "^1\\.2\\.1[89]",     SSH_BUG_IGNOREMSG },
+                { "^1\\.2\\.2[012]",    SSH_BUG_IGNOREMSG },
+                { "^1\\.3\\.2",         SSH_BUG_IGNOREMSG },    /* f-secure */
+                { "^SSH Compatible Server",                     /* Netscreen */
+                                        SSH_BUG_PASSWORDPAD },
+                { "^OSU_0",             SSH_BUG_PASSWORDPAD },
+                { "^OSU_1\\.[0-4]",     SSH_BUG_PASSWORDPAD },
+                { "^OSU_1\\.5alpha[1-3]",
+                                        SSH_BUG_PASSWORDPAD },
+                { "^SSH_Version_Mapper",
+                                        SSH_BUG_SCANNER },
+                { NULL,                 0 }
+        };
+        /* process table, return first match */
+        for (i = 0; check[i].pat; i++) {
+                ret = regcomp(&reg, check[i].pat, REG_EXTENDED|REG_NOSUB);
+                if (ret != 0) {
+                        regerror(ret, &reg, ebuf, sizeof(ebuf));
+                        ebuf[sizeof(ebuf)-1] = '\0';
+                        error("regerror: %s", ebuf);
+                        continue;
+                }
+                ret = regexec(&reg, version, 0, NULL, 0);
+                regfree(&reg);
+                if (ret == 0) {
+                        debug("match: %s pat %s", version, check[i].pat);
+                        datafellows = check[i].bugs;
+                        return;
+                }
+        }
+        debug("no match: %s", version);
+}
+#define SEP     ","
+int
+proto_spec(const char *spec)
+{
+        char *s, *p, *q;
+        int ret = SSH_PROTO_UNKNOWN;
+        if (spec == NULL)
+                return ret;
+        q = s = xstrdup(spec);
+        for ((p = strsep(&q, SEP)); p && *p != '\0'; (p = strsep(&q, SEP))) {
+                switch(atoi(p)) {
+                case 1:
+                        if (ret == SSH_PROTO_UNKNOWN)
+                                ret |= SSH_PROTO_1_PREFERRED;
+                        ret |= SSH_PROTO_1;
+                        break;
+                case 2:
+                        ret |= SSH_PROTO_2;
+                        break;
+                default:
+                        log("ignoring bad proto spec: '%s'.", p);
+                        break;
+                }
+        }
+        xfree(s);
+        return ret;
+}
+char *
+compat_cipher_proposal(char *cipher_prop)
+{
+        char *orig_prop, *fix_ciphers;
+        char *cp, *tmp;
+        size_t len;
+        if (!(datafellows & SSH_BUG_BIGENDIANAES))
+                return(cipher_prop);
+        len = strlen(cipher_prop) + 1;
+        fix_ciphers = xmalloc(len);
+        *fix_ciphers = '\0';
+        tmp = orig_prop = xstrdup(cipher_prop);
+        while((cp = strsep(&tmp, ",")) != NULL) {
+                if (strncmp(cp, "aes", 3) && strncmp(cp, "rijndael", 8)) {
+                        if (*fix_ciphers)
+                                strlcat(fix_ciphers, ",", len);
+                        strlcat(fix_ciphers, cp, len);
+                }
+        }
+        xfree(orig_prop);
+        debug2("Original cipher proposal: %s", cipher_prop);
+        debug2("Compat cipher proposal: %s", fix_ciphers);
+        if (!*fix_ciphers)
+                fatal("No available ciphers found.");
+        return(fix_ciphers);
+}

diff --git a/other/ssharp/compat.c b/other/ssharp/compat.c new file mode 100644 index 0000000..f5eeda0 --- /dev/null +++ b/other/ssharp/compat.c
@@ -0,0 +1,198 @@
	1	/*
	2	* Copyright (c) 1999,2000 Markus Friedl. All rights reserved.
	3	*
	4	* Redistribution and use in source and binary forms, with or without
	5	* modification, are permitted provided that the following conditions
	6	* are met:
	7	* 1. Redistributions of source code must retain the above copyright
	8	* notice, this list of conditions and the following disclaimer.
	9	* 2. Redistributions in binary form must reproduce the above copyright
	10	* notice, this list of conditions and the following disclaimer in the
	11	* documentation and/or other materials provided with the distribution.
	12	*
	13	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
	14	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
	15	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
	16	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
	17	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	18	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
	19	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
	20	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
	21	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
	22	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	23	*/
	24
	25	#include "includes.h"
	26	RCSID("$OpenBSD: compat.c,v 1.47 2001/04/18 23:43:25 markus Exp $");
	27
	28	#ifdef HAVE_LIBPCRE
	29	# include <pcreposix.h>
	30	#else /* Use native regex libraries */
	31	# ifdef HAVE_REGEX_H
	32	# include <regex.h>
	33	# else
	34	# include "openbsd-compat/fake-regex.h"
	35	# endif
	36	#endif /* HAVE_LIBPCRE */
	37
	38	#include "packet.h"
	39	#include "xmalloc.h"
	40	#include "compat.h"
	41	#include "log.h"
	42
	43	int compat13 = 0;
	44	int compat20 = 0;
	45	int datafellows = 0;
	46
	47	void
	48	enable_compat20(void)
	49	{
	50	verbose("Enabling compatibility mode for protocol 2.0");
	51	compat20 = 1;
	52	}
	53	void
	54	enable_compat13(void)
	55	{
	56	verbose("Enabling compatibility mode for protocol 1.3");
	57	compat13 = 1;
	58	}
	59	/* datafellows bug compatibility */
	60	void
	61	compat_datafellows(const char *version)
	62	{
	63	int i, ret;
	64	char ebuf[1024];
	65	regex_t reg;
	66	static struct {
	67	char *pat;
	68	int bugs;
	69	} check[] = {
	70	{ "^OpenSSH[-_]2\\.[012]",
	71	SSH_OLD_SESSIONID\|SSH_BUG_BANNER\|
	72	SSH_OLD_DHGEX\|SSH_BUG_NOREKEY },
	73	{ "^OpenSSH_2\\.3\\.0", SSH_BUG_BANNER\|SSH_BUG_BIGENDIANAES\|
	74	SSH_OLD_DHGEX\|SSH_BUG_NOREKEY},
	75	{ "^OpenSSH_2\\.3\\.", SSH_BUG_BIGENDIANAES\|SSH_OLD_DHGEX\|
	76	SSH_BUG_NOREKEY},
	77	{ "^OpenSSH_2\\.5\\.[01]p1",
	78	SSH_BUG_BIGENDIANAES\|SSH_OLD_DHGEX\|
	79	SSH_BUG_NOREKEY },
	80	{ "^OpenSSH_2\\.5\\.[012]",
	81	SSH_OLD_DHGEX\|SSH_BUG_NOREKEY },
	82	{ "^OpenSSH_2\\.5\\.3",
	83	SSH_BUG_NOREKEY },
	84	{ "^OpenSSH", 0 },
	85	{ "MindTerm", 0 },
	86	{ "^2\\.1\\.0", SSH_BUG_SIGBLOB\|SSH_BUG_HMAC\|
	87	SSH_OLD_SESSIONID\|SSH_BUG_DEBUG\|
	88	SSH_BUG_RSASIGMD5\|SSH_BUG_HBSERVICE },
	89	{ "^2\\.1 ", SSH_BUG_SIGBLOB\|SSH_BUG_HMAC\|
	90	SSH_OLD_SESSIONID\|SSH_BUG_DEBUG\|
	91	SSH_BUG_RSASIGMD5\|SSH_BUG_HBSERVICE },
	92	{ "^2\\.0\\.1[3-9]", SSH_BUG_SIGBLOB\|SSH_BUG_HMAC\|
	93	SSH_OLD_SESSIONID\|SSH_BUG_DEBUG\|
	94	SSH_BUG_PKSERVICE\|SSH_BUG_X11FWD\|
	95	SSH_BUG_PKOK\|SSH_BUG_RSASIGMD5\|
	96	SSH_BUG_HBSERVICE },
	97	{ "^2\\.0\\.", SSH_BUG_SIGBLOB\|SSH_BUG_HMAC\|
	98	SSH_OLD_SESSIONID\|SSH_BUG_DEBUG\|
	99	SSH_BUG_PKSERVICE\|SSH_BUG_X11FWD\|
	100	SSH_BUG_PKAUTH\|SSH_BUG_PKOK\|
	101	SSH_BUG_RSASIGMD5 },
	102	{ "^2\\.[23]\\.0", SSH_BUG_HMAC\|SSH_BUG_RSASIGMD5 },
	103	{ "^2\\.3\\.", SSH_BUG_RSASIGMD5 },
	104	{ "^2\\.[2-9]\\.", 0 },
	105	{ "^2\\.4$", SSH_OLD_SESSIONID }, /* Van Dyke */
	106	{ "^3\\.0 SecureCRT", SSH_OLD_SESSIONID },
	107	{ "^1\\.7 SecureFX", SSH_OLD_SESSIONID },
	108	{ "^1\\.2\\.1[89]", SSH_BUG_IGNOREMSG },
	109	{ "^1\\.2\\.2[012]", SSH_BUG_IGNOREMSG },
	110	{ "^1\\.3\\.2", SSH_BUG_IGNOREMSG }, /* f-secure */
	111	{ "^SSH Compatible Server", /* Netscreen */
	112	SSH_BUG_PASSWORDPAD },
	113	{ "^OSU_0", SSH_BUG_PASSWORDPAD },
	114	{ "^OSU_1\\.[0-4]", SSH_BUG_PASSWORDPAD },
	115	{ "^OSU_1\\.5alpha[1-3]",
	116	SSH_BUG_PASSWORDPAD },
	117	{ "^SSH_Version_Mapper",
	118	SSH_BUG_SCANNER },
	119	{ NULL, 0 }
	120	};
	121	/* process table, return first match */
	122	for (i = 0; check[i].pat; i++) {
	123	ret = regcomp(&reg, check[i].pat, REG_EXTENDED\|REG_NOSUB);
	124	if (ret != 0) {
	125	regerror(ret, &reg, ebuf, sizeof(ebuf));
	126	ebuf[sizeof(ebuf)-1] = '\0';
	127	error("regerror: %s", ebuf);
	128	continue;
	129	}
	130	ret = regexec(&reg, version, 0, NULL, 0);
	131	regfree(&reg);
	132	if (ret == 0) {
	133	debug("match: %s pat %s", version, check[i].pat);
	134	datafellows = check[i].bugs;
	135	return;
	136	}
	137	}
	138	debug("no match: %s", version);
	139	}
	140
	141	#define SEP ","
	142	int
	143	proto_spec(const char *spec)
	144	{
	145	char s, p, *q;
	146	int ret = SSH_PROTO_UNKNOWN;
	147
	148	if (spec == NULL)
	149	return ret;
	150	q = s = xstrdup(spec);
	151	for ((p = strsep(&q, SEP)); p && *p != '\0'; (p = strsep(&q, SEP))) {
	152	switch(atoi(p)) {
	153	case 1:
	154	if (ret == SSH_PROTO_UNKNOWN)
	155	ret \|= SSH_PROTO_1_PREFERRED;
	156	ret \|= SSH_PROTO_1;
	157	break;
	158	case 2:
	159	ret \|= SSH_PROTO_2;
	160	break;
	161	default:
	162	log("ignoring bad proto spec: '%s'.", p);
	163	break;
	164	}
	165	}
	166	xfree(s);
	167	return ret;
	168	}
	169
	170	char *
	171	compat_cipher_proposal(char *cipher_prop)
	172	{
	173	char orig_prop, fix_ciphers;
	174	char cp, tmp;
	175	size_t len;
	176
	177	if (!(datafellows & SSH_BUG_BIGENDIANAES))
	178	return(cipher_prop);
	179
	180	len = strlen(cipher_prop) + 1;
	181	fix_ciphers = xmalloc(len);
	182	*fix_ciphers = '\0';
	183	tmp = orig_prop = xstrdup(cipher_prop);
	184	while((cp = strsep(&tmp, ",")) != NULL) {
	185	if (strncmp(cp, "aes", 3) && strncmp(cp, "rijndael", 8)) {
	186	if (*fix_ciphers)
	187	strlcat(fix_ciphers, ",", len);
	188	strlcat(fix_ciphers, cp, len);
	189	}
	190	}
	191	xfree(orig_prop);
	192	debug2("Original cipher proposal: %s", cipher_prop);
	193	debug2("Compat cipher proposal: %s", fix_ciphers);
	194	if (!*fix_ciphers)
	195	fatal("No available ciphers found.");
	196
	197	return(fix_ciphers);
	198	}