compat.c

   1 /*
   2  * Copyright (c) 1999,2000 Markus Friedl.  All rights reserved.
   3  *
   4  * Redistribution and use in source and binary forms, with or without
   5  * modification, are permitted provided that the following conditions
   6  * are met:
   7  * 1. Redistributions of source code must retain the above copyright
   8  *    notice, this list of conditions and the following disclaimer.
   9  * 2. Redistributions in binary form must reproduce the above copyright
  10  *    notice, this list of conditions and the following disclaimer in the
  11  *    documentation and/or other materials provided with the distribution.
  12  *
  13  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
  14  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
  15  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
  16  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
  17  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  18  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
  19  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
  20  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
  21  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
  22  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  23  */
  24
  25 #include "includes.h"
  26 RCSID("$OpenBSD: compat.c,v 1.44 2001/04/05 10:00:06 markus Exp $");
  27
  28 #ifdef HAVE_LIBPCRE
  29 #  include <pcreposix.h>
  30 #else /* Use native regex libraries */
  31 #  ifdef HAVE_REGEX_H
  32 #    include <regex.h>
  33 #  else
  34 #    include "openbsd-compat/fake-regex.h"
  35 #  endif
  36 #endif /* HAVE_LIBPCRE */
  37
  38 #include "packet.h"
  39 #include "xmalloc.h"
  40 #include "compat.h"
  41 #include "log.h"
  42
  43 int compat13 = 0;
  44 int compat20 = 0;
  45 int datafellows = 0;
  46
  47 void
  48 enable_compat20(void)
  49 {
  50         verbose("Enabling compatibility mode for protocol 2.0");
  51         compat20 = 1;
  52 }
  53 void
  54 enable_compat13(void)
  55 {
  56         verbose("Enabling compatibility mode for protocol 1.3");
  57         compat13 = 1;
  58 }
  59 /* datafellows bug compatibility */
  60 void
  61 compat_datafellows(const char *version)
  62 {
  63         int i, ret;
  64         char ebuf[1024];
  65         regex_t reg;
  66         static struct {
  67                 char    *pat;
  68                 int     bugs;
  69         } check[] = {
  70                 { "^OpenSSH[-_]2\\.[012]",
  71                                         SSH_OLD_SESSIONID|SSH_BUG_BANNER|
  72                                         SSH_OLD_DHGEX },
  73                 { "^OpenSSH_2\\.3\\.0", SSH_BUG_BANNER|SSH_BUG_BIGENDIANAES|
  74                                         SSH_OLD_DHGEX},
  75                 { "^OpenSSH_2\\.3\\.",  SSH_BUG_BIGENDIANAES|SSH_OLD_DHGEX},
  76                 { "^OpenSSH_2\\.5\\.[01]p1",
  77                                         SSH_BUG_BIGENDIANAES|SSH_OLD_DHGEX },
  78                 { "^OpenSSH_2\\.5\\.[012]",
  79                                         SSH_OLD_DHGEX },
  80                 { "^OpenSSH",           0 },
  81                 { "MindTerm",           0 },
  82                 { "^2\\.1\\.0",         SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
  83                                         SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
  84                                         SSH_BUG_RSASIGMD5 },
  85                 { "^2\\.1 ",            SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
  86                                         SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
  87                                         SSH_BUG_RSASIGMD5 },
  88                 { "^2\\.0\\.1[3-9]",    SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
  89                                         SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
  90                                         SSH_BUG_PKSERVICE|SSH_BUG_X11FWD|
  91                                         SSH_BUG_PKOK|SSH_BUG_RSASIGMD5 },
  92                 { "^2\\.0\\.",          SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
  93                                         SSH_OLD_SESSIONID|SSH_BUG_DEBUG|
  94                                         SSH_BUG_PKSERVICE|SSH_BUG_X11FWD|
  95                                         SSH_BUG_PKAUTH|SSH_BUG_PKOK|
  96                                         SSH_BUG_RSASIGMD5 },
  97                 { "^2\\.[23]\\.0",      SSH_BUG_HMAC|SSH_BUG_RSASIGMD5 },
  98                 { "^2\\.3\\.",          SSH_BUG_RSASIGMD5 },
  99                 { "^2\\.[2-9]\\.",      0 },
 100                 { "^2\\.4$",            SSH_OLD_SESSIONID },    /* Van Dyke */
 101                 { "^3\\.0 SecureCRT",   SSH_OLD_SESSIONID },
 102                 { "^1\\.7 SecureFX",    SSH_OLD_SESSIONID },
 103                 { "^1\\.2\\.1[89]",     SSH_BUG_IGNOREMSG },
 104                 { "^1\\.2\\.2[012]",    SSH_BUG_IGNOREMSG },
 105                 { "^1\\.3\\.2",         SSH_BUG_IGNOREMSG },    /* f-secure */
 106                 { "^SSH Compatible Server",                     /* Netscreen */
 107                                         SSH_BUG_PASSWORDPAD },
 108                 { "^OSU_0",             SSH_BUG_PASSWORDPAD },
 109                 { "^OSU_1\\.[0-4]",     SSH_BUG_PASSWORDPAD },
 110                 { "^OSU_1\\.5alpha[1-3]",
 111                                         SSH_BUG_PASSWORDPAD },
 112                 { "^SSH_Version_Mapper",
 113                                         SSH_BUG_SCANNER },
 114                 { NULL,                 0 }
 115         };
 116         /* process table, return first match */
 117         for (i = 0; check[i].pat; i++) {
 118                 ret = regcomp(&reg, check[i].pat, REG_EXTENDED|REG_NOSUB);
 119                 if (ret != 0) {
 120                         regerror(ret, &reg, ebuf, sizeof(ebuf));
 121                         ebuf[sizeof(ebuf)-1] = '\0';
 122                         error("regerror: %s", ebuf);
 123                         continue;
 124                 }
 125                 ret = regexec(&reg, version, 0, NULL, 0);
 126                 regfree(&reg);
 127                 if (ret == 0) {
 128                         debug("match: %s pat %s", version, check[i].pat);
 129                         datafellows = check[i].bugs;
 130                         return;
 131                 }
 132         }
 133         debug("no match: %s", version);
 134 }
 135
 136 #define SEP     ","
 137 int
 138 proto_spec(const char *spec)
 139 {
 140         char *s, *p, *q;
 141         int ret = SSH_PROTO_UNKNOWN;
 142
 143         if (spec == NULL)
 144                 return ret;
 145         q = s = xstrdup(spec);
 146         for ((p = strsep(&q, SEP)); p && *p != '\0'; (p = strsep(&q, SEP))) {
 147                 switch(atoi(p)) {
 148                 case 1:
 149                         if (ret == SSH_PROTO_UNKNOWN)
 150                                 ret |= SSH_PROTO_1_PREFERRED;
 151                         ret |= SSH_PROTO_1;
 152                         break;
 153                 case 2:
 154                         ret |= SSH_PROTO_2;
 155                         break;
 156                 default:
 157                         log("ignoring bad proto spec: '%s'.", p);
 158                         break;
 159                 }
 160         }
 161         xfree(s);
 162         return ret;
 163 }
 164
 165 char *
 166 compat_cipher_proposal(char *cipher_prop)
 167 {
 168         char *orig_prop, *fix_ciphers;
 169         char *cp, *tmp;
 170         size_t len;
 171
 172         if (!(datafellows & SSH_BUG_BIGENDIANAES))
 173                 return(cipher_prop);
 174
 175         len = strlen(cipher_prop) + 1;
 176         fix_ciphers = xmalloc(len);
 177         *fix_ciphers = '\0';
 178         tmp = orig_prop = xstrdup(cipher_prop);
 179         while((cp = strsep(&tmp, ",")) != NULL) {
 180                 if (strncmp(cp, "aes", 3) && strncmp(cp, "rijndael", 8)) {
 181                         if (*fix_ciphers)
 182                                 strlcat(fix_ciphers, ",", len);
 183                         strlcat(fix_ciphers, cp, len);
 184                 }
 185         }
 186         xfree(orig_prop);
 187         debug2("Original cipher proposal: %s", cipher_prop);
 188         debug2("Compat cipher proposal: %s", fix_ciphers);
 189         if (!*fix_ciphers)
 190                 fatal("No available ciphers found.");
 191
 192         return(fix_ciphers);
 193 }