ssh-rs 0.2.2

In addition to encryption library, pure RUST implementation of SSH-2.0 client protocol
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257

use std::io::{Read, Write};

use crate::algorithm::hash;
use crate::algorithm::key_exchange::KeyExchange;
use crate::algorithm::public_key::PublicKey;
use crate::config::{
    CompressionAlgorithm, Config, EncryptionAlgorithm, KeyExchangeAlgorithm, MacAlgorithm,
    PublicKeyAlgorithm,
};
use crate::constant::ssh_msg_code;
use crate::data::Data;
use crate::error::{SshError, SshResult};
use crate::slog::log;
use crate::window_size::WindowSize;
use crate::{client::Client, h::H, util};

/// 发送客户端的算法列表
pub(crate) fn send_algorithm<S>(
    h: &mut H,
    client: &mut Client<S>,
    rws: Option<&mut WindowSize>,
) -> SshResult<()>
where
    S: Read + Write,
{
    log::info!(
        "client algorithms: [{}]",
        client.config.algorithm.client_algorithm.to_string()
    );
    let mut data = Data::new();
    data.put_u8(ssh_msg_code::SSH_MSG_KEXINIT);
    data.extend(util::cookie());
    data.extend(client.config.algorithm.client_algorithm.as_i());
    data.put_str("")
        .put_str("")
        .put_u8(false as u8)
        .put_u32(0_u32);
    // 客户端算法
    h.set_i_c(data.clone().as_slice());
    match rws {
        None => client.write(data)?,
        Some(ws) => client.write_data(data, Some(ws))?,
    }
    Ok(())
}

/// 获取服务端的算法列表
pub(crate) fn receive_algorithm<S>(
    h: &mut H,
    client: &mut Client<S>,
    mut rws: Option<&mut WindowSize>,
) -> SshResult<()>
where
    S: Read + Write,
{
    loop {
        let results = match &mut rws {
            None => client.read()?,
            Some(ws) => client.read_data(Some(ws))?,
        };
        for result in results {
            if result.is_empty() {
                continue;
            }
            let message_code = result[0];
            if message_code == ssh_msg_code::SSH_MSG_KEXINIT {
                h.set_i_s(result.as_slice());
                processing_server_algorithm(&mut client.config, result)?;
                return Ok(());
            }
        }
    }
}

/// 处理服务端的算法列表
pub(crate) fn processing_server_algorithm(config: &mut Config, mut data: Data) -> SshResult<()> {
    data.get_u8();
    // 跳过16位cookie
    data.skip(16);
    let server_algorithm = &mut config.algorithm.server_algorithm;
    server_algorithm.key_exchange_algorithm =
        KeyExchangeAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.public_key_algorithm =
        PublicKeyAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.c_encryption_algorithm =
        EncryptionAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.s_encryption_algorithm =
        EncryptionAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.c_mac_algorithm = MacAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.s_mac_algorithm = MacAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.c_compression_algorithm =
        CompressionAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    server_algorithm.s_compression_algorithm =
        CompressionAlgorithm(util::vec_u8_to_string(data.get_u8s(), ",")?);
    log::info!("server algorithms: [{}]", server_algorithm.to_string());
    Ok(())
}

/// 发送客户端公钥
pub(crate) fn send_qc<S>(
    client: &mut Client<S>,
    public_key: &[u8],
    rws: Option<&mut WindowSize>,
) -> SshResult<()>
where
    S: Read + Write,
{
    let mut data = Data::new();
    data.put_u8(ssh_msg_code::SSH_MSG_KEXDH_INIT);
    data.put_u8s(public_key);
    match rws {
        None => client.write(data),
        Some(ws) => client.write_data(data, Some(ws)),
    }
}

/// 接收服务端公钥和签名,并验证签名的正确性
pub(crate) fn verify_signature_and_new_keys<S>(
    client: &mut Client<S>,
    public_key: &mut Box<dyn PublicKey>,
    key_exchange: &mut Box<dyn KeyExchange>,
    h: &mut H,
    mut rws: Option<&mut WindowSize>,
) -> SshResult<Vec<u8>>
where
    S: Read + Write,
{
    let mut session_id = vec![];
    loop {
        let results = match &mut rws {
            None => client.read()?,
            Some(ws) => client.read_data(Some(ws))?,
        };
        for mut result in results {
            if result.is_empty() {
                continue;
            }
            let message_code = result.get_u8();
            match message_code {
                ssh_msg_code::SSH_MSG_KEXDH_REPLY => {
                    // 生成session_id并且获取signature
                    let sig = generate_signature(result, h, key_exchange)?;
                    // 验签
                    session_id = hash::digest(&h.as_bytes(), key_exchange.get_hash_type());
                    let flag = public_key.verify_signature(&h.k_s, &session_id, &sig)?;
                    if !flag {
                        log::error!("signature verification failure.");
                        return Err(SshError::from("signature verification failure."));
                    }
                    log::info!("signature verification success.");
                }
                ssh_msg_code::SSH_MSG_NEWKEYS => {
                    match &mut rws {
                        None => new_keys(client, None)?,
                        Some(ws) => new_keys(client, Some(ws))?,
                    };
                    return Ok(session_id);
                }
                _ => {}
            }
        }
    }
}

/// 生成签名
pub(crate) fn generate_signature(
    mut data: Data,
    h: &mut H,
    key_exchange: &mut Box<dyn KeyExchange>,
) -> SshResult<Vec<u8>> {
    let ks = data.get_u8s();
    h.set_k_s(&ks);
    // TODO 未进行密钥指纹验证!!
    let qs = data.get_u8s();
    h.set_q_c(key_exchange.get_public_key());
    h.set_q_s(&qs);
    let vec = key_exchange.get_shared_secret(qs)?;
    h.set_k(&vec);
    let h = data.get_u8s();
    let mut hd = Data::from(h);
    hd.get_u8s();
    let signature = hd.get_u8s();
    Ok(signature)
}

/// SSH_MSG_NEWKEYS 代表密钥交换完成
pub(crate) fn new_keys<S>(
    client: &mut Client<S>,
    rws: Option<&mut WindowSize>,
) -> Result<(), SshError>
where
    S: Read + Write,
{
    let mut data = Data::new();
    data.put_u8(ssh_msg_code::SSH_MSG_NEWKEYS);
    match rws {
        None => client.write(data)?,
        Some(ws) => client.write_data(data, Some(ws))?,
    }
    log::info!("send new keys");
    Ok(())
}

pub(crate) fn key_agreement<S>(
    h: &mut H,
    client: &mut Client<S>,
    mut rws: Option<&mut WindowSize>,
) -> SshResult<hash::HashType>
where
    S: Read + Write,
{
    log::info!("start for key negotiation.");
    log::info!("send client algorithm list.");
    match &mut rws {
        None => send_algorithm(h, client, None)?,
        Some(ws) => send_algorithm(h, client, Some(ws))?,
    }
    log::info!("receive server algorithm list.");
    match &mut rws {
        None => receive_algorithm(h, client, None)?,
        Some(ws) => receive_algorithm(h, client, Some(ws))?,
    }
    let mut key_exchange = client.config.algorithm.matching_key_exchange_algorithm()?;
    let mut public_key = client.config.algorithm.matching_public_key_algorithm()?;
    match &mut rws {
        None => send_qc(client, key_exchange.get_public_key(), None)?,
        Some(ws) => send_qc(client, key_exchange.get_public_key(), Some(ws))?,
    }
    let session_id = match &mut rws {
        None => verify_signature_and_new_keys(client, &mut public_key, &mut key_exchange, h, None)?,
        Some(ws) => {
            verify_signature_and_new_keys(client, &mut public_key, &mut key_exchange, h, Some(ws))?
        }
    };
    // session id 只使用第一次密钥交换时生成的
    if client.session_id.is_empty() {
        if session_id.is_empty() {
            return Err(SshError::from("session id is none."));
        }
        client.session_id = session_id;
    }
    let hash_type = key_exchange.get_hash_type();
    let hash = hash::hash::Hash::new(h.clone(), &client.session_id, hash_type);
    // mac 算法
    let mac = client.config.algorithm.matching_mac_algorithm()?;
    // 加密算法
    let encryption = client
        .config
        .algorithm
        .matching_encryption_algorithm(hash, mac)?;

    client.encryption = Some(encryption);
    client.is_encryption = true;

    log::info!("key negotiation successful.");
    Ok(hash_type)
}