channel.c 44.6 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
/* channel.c
 *
 * $Id$
 */

/* lsh, an implementation of the ssh protocol
 *
 * Copyright (C) 1998 Niels Mller
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 * General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
J.H.M. Dassen's avatar
J.H.M. Dassen committed
22
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
Niels Möller's avatar
Niels Möller committed
23
24
25
26
27
 */

#include "channel.h"

#include "format.h"
28
#include "io.h"
Niels Möller's avatar
Niels Möller committed
29
#include "read_data.h"
Niels Möller's avatar
Niels Möller committed
30
31
32
33
34
#include "ssh.h"
#include "werror.h"
#include "xalloc.h"

#include <assert.h>
35
#include <string.h>
Niels Möller's avatar
Niels Möller committed
36

37
#define GABA_DEFINE
38
#include "channel.h.x"
39
#undef GABA_DEFINE
40

41
42
#include "channel.c.x"

Niels Möller's avatar
Niels Möller committed
43
44
45
struct exception *make_channel_open_exception(UINT32 error_code, char *msg)
{
  NEW(channel_open_exception, self);
Niels Möller's avatar
Niels Möller committed
46
47
48
49
50
51
52
53
54
55
56
57
58
59

#define MAX_ERROR 4
  static const char *msgs[MAX_ERROR + 1] = {
    "",
    "Administratively prohibited",
    "Connect failed",
    "Unknown channel type",
    "Resource shortage"
  };

  assert(error_code > 0);
  assert(error_code <= MAX_ERROR);
#undef MAX_ERROR
  
Niels Möller's avatar
Niels Möller committed
60
  self->super.type = EXC_CHANNEL_OPEN;
Niels Möller's avatar
Niels Möller committed
61
  self->super.msg = msg ? msg : msgs[error_code];
Niels Möller's avatar
Niels Möller committed
62
63
64
65
66
  self->error_code = error_code;

  return &self->super;
}

67
/* GABA:
68
69
   (class
     (name connection_service)
70
     (super command)
71
72
73
74
     (vars
       ; Supported global requests 
       (global_requests object alist)

75
       (channel_types object alist) ))
76
77
78
79

       ; Initialize connection (for instance, request channels to be 
       ; opened or services to be forwarded).

80
       ; (start object connection_startup)))
81
82
*/

83
/* ;; GABA:
84
85
   (class
     (name global_request_handler)
86
     (super packet_handler)
87
88
89
90
     (vars
       (global_requests object alist)))
*/

91
/* ;; GABA:
92
93
   (class
     (name channel_open_handler)
94
     (super packet_handler)
95
96
97
98
     (vars
       (channel_types object alist)))
*/

Niels Möller's avatar
Niels Möller committed
99
/* ;; GABA:
100
101
102
103
104
105
106
107
108
   (class
     (name channel_open_response)
     (super channel_open_callback)
     (vars
       (remote_channel_number simple UINT32)
       (window_size simple UINT32)
       (max_packet simple UINT32)))
*/

Niels Möller's avatar
Niels Möller committed
109
110
111
112
113
struct lsh_string *format_global_failure(void)
{
  return ssh_format("%c", SSH_MSG_REQUEST_FAILURE);
}

114
115
116
117
118
struct lsh_string *format_global_success(void)
{
  return ssh_format("%c", SSH_MSG_REQUEST_SUCCESS);
}

119
120
struct lsh_string *format_open_confirmation(struct ssh_channel *channel,
					    UINT32 channel_number,
121
					    const char *format, ...)
122
123
124
125
126
127
{
  va_list args;
  UINT32 l1, l2;
  struct lsh_string *packet;

#define CONFIRM_FORMAT "%c%i%i%i%i"
128
129
#define CONFIRM_ARGS \
  SSH_MSG_CHANNEL_OPEN_CONFIRMATION, channel->channel_number, \
130
131
132
133
134
135
136
137
138
139
140
141
142
  channel_number, channel->rec_window_size, channel->rec_max_packet
    
  l1 = ssh_format_length(CONFIRM_FORMAT, CONFIRM_ARGS);

  va_start(args, format);
  l2 = ssh_vformat_length(format, args);
  va_end(args);

  packet = lsh_string_alloc(l1 + l2);

  ssh_format_write(CONFIRM_FORMAT, l1, packet->data, CONFIRM_ARGS);

  va_start(args, format);
143
  ssh_vformat_write(format, l2, packet->data+l1, args);
144
145
146
147
148
149
150
  va_end(args);

  return packet;
#undef CONFIRM_FORMAT
#undef CONFIRM_ARGS
}

Niels Möller's avatar
Niels Möller committed
151
struct lsh_string *format_open_failure(UINT32 channel, UINT32 reason,
152
				       const char *msg, const char *language)
Niels Möller's avatar
Niels Möller committed
153
154
155
156
157
{
  return ssh_format("%c%i%i%z%z", SSH_MSG_CHANNEL_OPEN_FAILURE,
		    channel, reason, msg, language);
}

158
159
160
161
162
struct lsh_string *format_channel_success(UINT32 channel)
{
  return ssh_format("%c%i", SSH_MSG_CHANNEL_SUCCESS, channel);
}

Niels Möller's avatar
Niels Möller committed
163
164
165
166
167
struct lsh_string *format_channel_failure(UINT32 channel)
{
  return ssh_format("%c%i", SSH_MSG_CHANNEL_FAILURE, channel);
}

168
169
170
171
172
173
174
175
176
177
struct lsh_string *prepare_window_adjust(struct ssh_channel *channel,
					 UINT32 add)
{
  channel->rec_window_size += add;
  
  return ssh_format("%c%i%i",
		    SSH_MSG_CHANNEL_WINDOW_ADJUST,
		    channel->channel_number, add);
}

Niels Möller's avatar
Niels Möller committed
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
/* ;; GABA:
   (class
     (name channel_exception)
     (super exception)
     (vars
       (channel object ssh_channel)
       (pending_close . int)))
*/

/* GABA:
   (class
     (name exc_finish_channel_handler)
     (super exception_handler)
     (vars
       (table object channel_table)
       ; Local channel number 
       (channel_number . UINT32)))
*/

static void do_exc_finish_channel_handler(struct exception_handler *s,
Niels Möller's avatar
Niels Möller committed
198
					  const struct exception *e)
Niels Möller's avatar
Niels Möller committed
199
200
201
202
203
{
  CAST(exc_finish_channel_handler, self, s);

  switch (e->type)
    {
Niels Möller's avatar
Niels Möller committed
204
205
206
207
208
209
210
    case EXC_FINISH_PENDING:
      self->table->pending_close = 1;

      if (!self->table->next_channel)
	EXCEPTION_RAISE(self->super.parent, &finish_read_exception);
      break;
      
Niels Möller's avatar
Niels Möller committed
211
212
213
214
215
216
217
218
219
    case EXC_FINISH_CHANNEL:
      /* NOTE: This type of exception must be handled only once.
       * Perhaps we must add a liveness flag in the ssh_channel struct
       * to avoid deallocating dead channels? */
      {
	struct ssh_channel *channel
	  = self->table->channels[self->channel_number];

	assert(channel);
220
221
	assert(channel->resources->super.alive);

Niels Möller's avatar
Niels Möller committed
222
223
	if (channel->close)
	  CHANNEL_CLOSE(channel);
224
225

	KILL_RESOURCE_LIST(channel->resources);
Niels Möller's avatar
Niels Möller committed
226
227
228
229
	
	dealloc_channel(self->table, self->channel_number);

	if (self->table->pending_close && !self->table->next_channel)
230
231
232
233
	  {
	    /* FIXME: Send a SSH_DISCONNECT_BY_APPLICATION message? */
	    EXCEPTION_RAISE(self->super.parent, &finish_read_exception);
	  }
Niels Möller's avatar
Niels Möller committed
234
235
236
237
238
239
240
241
242
243
      }
      break;
    default:
      EXCEPTION_RAISE(self->super.parent, e);
    }
}

static struct exception_handler *
make_exc_finish_channel_handler(struct channel_table *table,
				UINT32 channel_number,
244
245
				struct exception_handler *e,
				const char *context)
Niels Möller's avatar
Niels Möller committed
246
247
248
249
{
  NEW(exc_finish_channel_handler, self);
  self->super.parent = e;
  self->super.raise = do_exc_finish_channel_handler;
250
  self->super.context = context;
Niels Möller's avatar
Niels Möller committed
251

252
253
254
  self->table = table;
  self->channel_number = channel_number;
  
Niels Möller's avatar
Niels Möller committed
255
  return &self->super;
Niels Möller's avatar
Niels Möller committed
256
257
258
}
				

259
/* Channel objects */
Niels Möller's avatar
Niels Möller committed
260
261
262
263
264

#define INITIAL_CHANNELS 32
/* Arbitrary limit */
#define MAX_CHANNELS (1L<<17)

Niels Möller's avatar
Niels Möller committed
265
struct channel_table *make_channel_table(void)
Niels Möller's avatar
Niels Möller committed
266
{
267
  NEW(channel_table, table);
Niels Möller's avatar
Niels Möller committed
268

269
  table->channels = lsh_space_alloc(sizeof(struct ssh_channel *)
270
				      * INITIAL_CHANNELS);
Niels Möller's avatar
Niels Möller committed
271
272
  table->in_use = lsh_space_alloc(INITIAL_CHANNELS);
  
273
274
275
276
  table->allocated_channels = INITIAL_CHANNELS;
  table->next_channel = 0;
  table->used_channels = 0;
  table->max_channels = MAX_CHANNELS;
Niels Möller's avatar
Niels Möller committed
277

Niels Möller's avatar
Niels Möller committed
278
  table->pending_close = 0;
279

280
281
282
  table->global_requests = make_alist(0, -1);
  table->channel_types = make_alist(0, -1);
  
283
284
285
  object_queue_init(&table->local_ports);
  object_queue_init(&table->remote_ports);
  
286
287
  object_queue_init(&table->active_global_requests);
  object_queue_init(&table->pending_global_requests);
Niels Möller's avatar
Niels Möller committed
288
  
289
  return table;
Niels Möller's avatar
Niels Möller committed
290
291
292
};

/* Returns -1 if allocation fails */
293
294
295
/* NOTE: This function returns locally chosen channel numbers, which
 * are always small integers. So there's no problem fitting them in
 * a signed int. */
296
int alloc_channel(struct channel_table *table)
Niels Möller's avatar
Niels Möller committed
297
{
298
  UINT32 i;
299
  
300
  for(i = table->next_channel; i < table->used_channels; i++)
Niels Möller's avatar
Niels Möller committed
301
    {
Niels Möller's avatar
Niels Möller committed
302
      if (!table->in_use[i])
Niels Möller's avatar
Niels Möller committed
303
	{
Niels Möller's avatar
Niels Möller committed
304
305
	  assert(!table->channels[i]);
	  table->in_use[i] = 1;
306
	  table->next_channel = i+1;
Niels Möller's avatar
Niels Möller committed
307
308
309
	  return i;
	}
    }
310
  if (i == table->max_channels)
Niels Möller's avatar
Niels Möller committed
311
    return -1;
312

313
  if (i == table->allocated_channels) 
Niels Möller's avatar
Niels Möller committed
314
    {
315
      int new_size = table->allocated_channels * 2;
Niels Möller's avatar
Niels Möller committed
316
      struct ssh_channel **new_channels;
Niels Möller's avatar
Niels Möller committed
317
      UINT8 *new_in_use;
Niels Möller's avatar
Niels Möller committed
318

Niels Möller's avatar
Niels Möller committed
319
320
321
      new_channels = lsh_space_alloc(sizeof(struct ssh_channel *)
				     * new_size);
      memcpy(new_channels, table->channels,
322
	     sizeof(struct ssh_channel *) * table->used_channels);
Niels Möller's avatar
Niels Möller committed
323
324
325
326
327
328
329
330
      lsh_space_free(table->channels);
      table->channels = new_channels;

      new_in_use = lsh_space_alloc(new_size);
      memcpy(new_in_use, table->in_use, table->used_channels);
      lsh_space_free(table->in_use);
      table->in_use = new_in_use;

331
      table->allocated_channels = new_size;
Niels Möller's avatar
Niels Möller committed
332
333
    }

334
  table->next_channel = table->used_channels = i+1;
Niels Möller's avatar
Niels Möller committed
335

336
  table->in_use[i] = 1;
Niels Möller's avatar
Niels Möller committed
337
338
339
  return i;
}

340
void dealloc_channel(struct channel_table *table, int i)
Niels Möller's avatar
Niels Möller committed
341
342
{
  assert(i >= 0);
343
  assert( (unsigned) i < table->used_channels);
Niels Möller's avatar
Niels Möller committed
344
  
345
  table->channels[i] = NULL;
Niels Möller's avatar
Niels Möller committed
346
347
  table->in_use[i] = 0;
  
348
  if ( (unsigned) i < table->next_channel)
349
350
351
    table->next_channel = i;
}

352
353
354
355
void
register_channel(struct ssh_connection *connection,
		 UINT32 local_channel_number,
		 struct ssh_channel *channel)
356
{
357
358
  struct channel_table *table = connection->table;
  
Niels Möller's avatar
Niels Möller committed
359
360
  assert(table->in_use[local_channel_number]);
  assert(!table->channels[local_channel_number]);
Niels Möller's avatar
Niels Möller committed
361
  
Niels Möller's avatar
Niels Möller committed
362
363
364
365
366
  table->channels[local_channel_number] = channel;

  /* FIXME: Is this the right place to install this exception handler? */
  channel->e = make_exc_finish_channel_handler(table,
					       local_channel_number,
367
368
					       connection->e,
					       HANDLER_CONTEXT);
369
370

  REMEMBER_RESOURCE(connection->resources, &channel->resources->super);
Niels Möller's avatar
Niels Möller committed
371
372
}

373
struct ssh_channel *lookup_channel(struct channel_table *table, UINT32 i)
Niels Möller's avatar
Niels Möller committed
374
{
375
376
  return (i < table->used_channels)
    ? table->channels[i] : NULL;
Niels Möller's avatar
Niels Möller committed
377
378
}

379
380
381
382
383
384
385
386
387
388
/* FIXME: It seems suboptimal to send a window adjust message for *every* write that we do.
 * A better scheme might be as follows:
 *
 * Delay window adjust messages, keeping track of both the locally
 * maintained window size, which is updated after each write, and the
 * size that has been reported to the remote end. When the difference
 * between these two values gets large enough (say, larger than one
 * half or one third of the maximum window size), we send a
 * window_adjust message to sync them. */
static void adjust_rec_window(struct flow_controlled *f, UINT32 written)
389
{
390
391
  CAST_SUBTYPE(ssh_channel, channel, f);

Niels Möller's avatar
Niels Möller committed
392
  A_WRITE(channel->write,
393
	  prepare_window_adjust(channel, written));
394
395
}

Niels Möller's avatar
Niels Möller committed
396
void channel_start_receive(struct ssh_channel *channel)
397
{
Niels Möller's avatar
Niels Möller committed
398
399
  A_WRITE(channel->write,
	  prepare_window_adjust
400
	  (channel, channel->max_window - channel->rec_window_size));
401
402
}

Niels Möller's avatar
Niels Möller committed
403

404
405
406
/* Ugly macros to make it a little simpler to free the input packet at
 * the right time. */

Niels Möller's avatar
Niels Möller committed
407
408
409
410
411
#define RETURN goto foo_finish
#define END(s) do { foo_finish: \
                    lsh_string_free((s)); \
                    return; } while(0)

412

Niels Möller's avatar
Niels Möller committed
413
/* Channel related messages */
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432

/* GABA:
   (class
     (name global_request_status)
     (vars
       ; -1 for still active requests,
       ; 0 for failure,
       ; 1 for success
       (status . int)))
*/

static struct global_request_status *make_global_request_status(void)
{
  NEW(global_request_status, self);
  self->status = -1;

  return self;
}

Niels Möller's avatar
Niels Möller committed
433
/* FIXME: Split into a continuation and an exception handler */
434
435
436
437
438
439
440
441
/* GABA:
   (class
     (name global_request_response)
     (super global_request_callback)
     (vars
       (active object global_request_status)))
*/

Niels Möller's avatar
Niels Möller committed
442
static void
443
444
445
446
do_global_request_response(struct global_request_callback *c,
			   int success)
{
  CAST(global_request_response, self, c);
Niels Möller's avatar
Niels Möller committed
447
  struct object_queue *q = &self->super.connection->table->active_global_requests;
448
449
450
451
452
453
454
455
456
457
458

  assert( self->active->status == -1);
  assert( (success == 0) || (success == 1) );
  assert( !object_queue_is_empty(q));
	  
  self->active->status = success;

  for (;;)
    {
      CAST(global_request_status, n, object_queue_peek_head(q));
      if (!n || (n->status < 0))
Niels Möller's avatar
Niels Möller committed
459
	break;
460
461

      object_queue_remove_head(q);
Niels Möller's avatar
Niels Möller committed
462
463
464

      /* FIXME: Perhaps install some exception handler that cancels
       * the queue as soon as a write failes. */
465
      C_WRITE(self->super.connection,
Niels Möller's avatar
Niels Möller committed
466
467
	      (n->status
	       ? format_global_success()
468
	       : format_global_failure()));
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
    }
}

static struct global_request_callback *
make_global_request_response(struct ssh_connection *connection,
			     struct global_request_status *active)
{
  NEW(global_request_response, self);

  self->super.connection = connection;
  self->super.response = do_global_request_response;

  self->active = active;

  return &self->super;
}
     
Niels Möller's avatar
Niels Möller committed
486
487
488
static void do_global_request(struct packet_handler *s UNUSED,
			      struct ssh_connection *connection,
			      struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
489
{
490
  /* CAST(global_request_handler, closure, c); */
Niels Möller's avatar
Niels Möller committed
491
492

  struct simple_buffer buffer;
493
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
494
495
496
497
498
499
500
501
502
503
504
  int name;
  int want_reply;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_GLOBAL_REQUEST)
      && parse_atom(&buffer, &name)
      && parse_boolean(&buffer, &want_reply))
    {
      struct global_request *req;
505
506
      struct global_request_callback *c = NULL;
      
Niels Möller's avatar
Niels Möller committed
507
      if (!name || !(req = ALIST_GET(connection->table->global_requests,
508
				     name)))
509
	{
Niels Möller's avatar
Niels Möller committed
510
	  lsh_string_free(packet);
511

Niels Möller's avatar
Niels Möller committed
512
513
	  C_WRITE(connection, format_global_failure());
	  return;
Niels Möller's avatar
Niels Möller committed
514
515
516
517
518
519
520
	}
      else
	{
	  if (want_reply)
	    {
	      struct global_request_status *a = make_global_request_status();
	      
Niels Möller's avatar
Niels Möller committed
521
	      object_queue_add_tail(&connection->table->active_global_requests,
Niels Möller's avatar
Niels Möller committed
522
523
524
525
526
				    &a->super);
	      
	      c = make_global_request_response(connection, a);
	    }
	  GLOBAL_REQUEST(req, connection, &buffer, c);
527
	}
Niels Möller's avatar
Niels Möller committed
528
    }
Niels Möller's avatar
Niels Möller committed
529
530
  else
    {
531
      PROTOCOL_ERROR(connection->e, "Invalid SSH_MSG_GLOBAL_REQUEST message.");
Niels Möller's avatar
Niels Möller committed
532
533
    }
  lsh_string_free(packet);
Niels Möller's avatar
Niels Möller committed
534
535
}

Niels Möller's avatar
Niels Möller committed
536
537
538
539
static void
do_global_request_success(struct packet_handler *s UNUSED,
			  struct ssh_connection *connection,
			  struct lsh_string *packet)
540
541
{
  if (packet->length != 1)
Niels Möller's avatar
Niels Möller committed
542
    {
543
      PROTOCOL_ERROR(connection->e, "Invalid GLOBAL_REQUEST_SUCCESS message.");
Niels Möller's avatar
Niels Möller committed
544
545
      RETURN;
    }
546
547
548

  assert(packet->data[0] == SSH_MSG_REQUEST_SUCCESS);

Niels Möller's avatar
Niels Möller committed
549
  if (object_queue_is_empty(&connection->table->pending_global_requests))
550
551
    {
      werror("do_global_request_success: Unexpected message, ignoring.\n");
Niels Möller's avatar
Niels Möller committed
552
      return;
553
554
    }
  {
555
    CAST_SUBTYPE(command_context, ctx,
Niels Möller's avatar
Niels Möller committed
556
557
		 object_queue_remove_head(&connection->table->pending_global_requests));
    COMMAND_RETURN(ctx->c, connection);
558
  }
Niels Möller's avatar
Niels Möller committed
559
  END(packet);
560
561
}

562
563
564
struct exception global_request_exception =
STATIC_EXCEPTION(EXC_GLOBAL_REQUEST, "Global request failed");

Niels Möller's avatar
Niels Möller committed
565
566
567
568
static void
do_global_request_failure(struct packet_handler *s UNUSED,
			  struct ssh_connection *connection,
			  struct lsh_string *packet)
569
570
{
  if (packet->length != 1)
Niels Möller's avatar
Niels Möller committed
571
    {
572
      PROTOCOL_ERROR(connection->e, "Invalid GLOBAL_REQUEST_FAILURE message.");
Niels Möller's avatar
Niels Möller committed
573
574
      RETURN;
    }
575
576
577

  assert(packet->data[0] == SSH_MSG_REQUEST_FAILURE);

Niels Möller's avatar
Niels Möller committed
578
  if (object_queue_is_empty(&connection->table->pending_global_requests))
579
580
581
    {
      werror("do_global_request_failure: Unexpected message, ignoring.\n");
    }
Niels Möller's avatar
Niels Möller committed
582
583
584
585
586
587
588
  else
    {
      CAST_SUBTYPE(command_context, ctx,
		   object_queue_remove_head(&connection->table->pending_global_requests));
      EXCEPTION_RAISE(ctx->e, &global_request_exception);
    }
  END(packet);
589
590
}

591

Niels Möller's avatar
Niels Möller committed
592
/* GABA:
593
594
595
596
597
   (class
     (name channel_open_continuation)
     (super command_continuation)
     (vars
       (connection object ssh_connection)
Niels Möller's avatar
Niels Möller committed
598
599
600
601
       (local_channel_number . UINT32)
       (remote_channel_number . UINT32)
       (window_size . UINT32)
       (max_packet . UINT32)))
602
*/
603

Niels Möller's avatar
Niels Möller committed
604
605
606
static void
do_channel_open_continue(struct command_continuation *c,
			 struct lsh_object *value)
607
608
{
  CAST(channel_open_continuation, self, c);
Niels Möller's avatar
Niels Möller committed
609
610
611
612
613
614
615
616
617
618
619
620
  CAST_SUBTYPE(ssh_channel, channel, value);

  assert(channel);

  /* FIXME: This copying could just as well be done by the
   * CHANNEL_OPEN handler? Then we can remove the corresponding fields
   * from the closure as well. */
  channel->send_window_size = self->window_size;
  channel->send_max_packet = self->max_packet;
  channel->channel_number = self->remote_channel_number;

  /* FIXME: Is the channel->write field really needed? */
Niels Möller's avatar
Niels Möller committed
621
  channel->write = self->connection->write;
Niels Möller's avatar
Niels Möller committed
622

623
  register_channel(self->connection,
Niels Möller's avatar
Niels Möller committed
624
		   self->local_channel_number, channel);
Niels Möller's avatar
Niels Möller committed
625
626
627
628
629

  /* FIXME: Doesn't support sending extra arguments with the
   * confirmation message. */

  C_WRITE(self->connection,
Niels Möller's avatar
Niels Möller committed
630
	  format_open_confirmation(channel, self->local_channel_number, ""));
631
}
Niels Möller's avatar
Niels Möller committed
632

Niels Möller's avatar
Niels Möller committed
633
static struct command_continuation *
Niels Möller's avatar
Niels Möller committed
634
635
636
637
638
639
640
make_channel_open_continuation(struct ssh_connection *connection,
			       UINT32 local_channel_number,
			       UINT32 remote_channel_number,
			       UINT32 window_size,
			       UINT32 max_packet)
{
  NEW(channel_open_continuation, self);
Niels Möller's avatar
Niels Möller committed
641

Niels Möller's avatar
Niels Möller committed
642
643
644
645
646
647
648
  self->super.c = do_channel_open_continue;
  self->connection = connection;
  self->local_channel_number = local_channel_number;
  self->remote_channel_number = remote_channel_number;
  self->window_size = window_size;
  self->max_packet = max_packet;

Niels Möller's avatar
Niels Möller committed
649
  return &self->super;
Niels Möller's avatar
Niels Möller committed
650
651
652
653
654
655
656
657
658
}
			       
/* GABA:
   (class
     (name exc_channel_open_handler)
     (super exception_handler)
     (vars
       (connection object ssh_connection)
       (local_channel_number . UINT32)
Niels Möller's avatar
Niels Möller committed
659
       (remote_channel_number . UINT32)))
Niels Möller's avatar
Niels Möller committed
660
661
662
*/

static void do_exc_channel_open_handler(struct exception_handler *s,
Niels Möller's avatar
Niels Möller committed
663
					const struct exception *e)
Niels Möller's avatar
Niels Möller committed
664
665
666
667
668
669
670
671
{
  CAST(exc_channel_open_handler, self, s);

  switch (e->type)
    {
    case EXC_CHANNEL_OPEN:
      {
	CAST_SUBTYPE(channel_open_exception, exc, e);
Niels Möller's avatar
Niels Möller committed
672
	struct channel_table *table = self->connection->table;
Niels Möller's avatar
Niels Möller committed
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
	
	assert(table->in_use[self->local_channel_number]);
	assert(!table->channels[self->local_channel_number]);

	dealloc_channel(table, self->local_channel_number);
	
        C_WRITE(self->connection,
		format_open_failure(self->remote_channel_number,
				    exc->error_code, e->msg, ""));
	break;
      }
    default:
      EXCEPTION_RAISE(self->super.parent, e);
    }      
}

static struct exception_handler *
make_exc_channel_open_handler(struct ssh_connection *connection,
			      UINT32 local_channel_number,
			      UINT32 remote_channel_number,
			      struct exception_handler *parent)
{
Niels Möller's avatar
Niels Möller committed
695
  NEW(exc_channel_open_handler, self);
Niels Möller's avatar
Niels Möller committed
696
  self->super.parent = parent;
Niels Möller's avatar
Niels Möller committed
697
698
  self->super.raise = do_exc_channel_open_handler;
  self->connection = connection;
Niels Möller's avatar
Niels Möller committed
699
700
701
702
703
704
705
706
707
  self->local_channel_number = local_channel_number;
  self->remote_channel_number = remote_channel_number;

  return &self->super;
}

static void do_channel_open(struct packet_handler *c UNUSED,
			    struct ssh_connection *connection,
			    struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
708
{
709
  /* CAST(channel_open_handler, closure, c); */
Niels Möller's avatar
Niels Möller committed
710
711

  struct simple_buffer buffer;
712
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
713
  int type;
714
715
716
  UINT32 remote_channel_number;
  UINT32 window_size;
  UINT32 max_packet;
Niels Möller's avatar
Niels Möller committed
717
718
719
720
721
722
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_OPEN)
      && parse_atom(&buffer, &type)
723
724
725
      && parse_uint32(&buffer, &remote_channel_number)
      && parse_uint32(&buffer, &window_size)
      && parse_uint32(&buffer, &max_packet))
Niels Möller's avatar
Niels Möller committed
726
727
    {
      struct channel_open *open;
Niels Möller's avatar
Niels Möller committed
728

Niels Möller's avatar
Niels Möller committed
729
730
731
732
      /* NOTE: We can't free the packet yet, as the buffer is passed
       * to the CHANNEL_OPEN method later. */

      if (connection->table->pending_close)
Niels Möller's avatar
Niels Möller committed
733
734
735
736
737
738
739
740
	{
	  /* We are waiting for channels to close. Don't open any new ones. */

	  C_WRITE(connection,
		  format_open_failure(remote_channel_number,
				      SSH_OPEN_ADMINISTRATIVELY_PROHIBITED,
				      "Waiting for channels to close.", ""));
	}
Niels Möller's avatar
Niels Möller committed
741
      else if (!type || !(open = ALIST_GET(connection->table->channel_types,
742
				      type)))
Niels Möller's avatar
Niels Möller committed
743
744
745
746
747
748
749
750
	{
	  C_WRITE(connection,
		  format_open_failure(remote_channel_number,
				      SSH_OPEN_UNKNOWN_CHANNEL_TYPE,
				      "Unknown channel type", ""));
	}
      else
	{
Niels Möller's avatar
Niels Möller committed
751
      	  int local_number = alloc_channel(connection->table);
Niels Möller's avatar
Niels Möller committed
752
753
754
755
756
757
758
759

	  if (local_number < 0)
	    C_WRITE(connection,
		    format_open_failure(remote_channel_number,
					SSH_OPEN_RESOURCE_SHORTAGE,
					"Unknown channel type", ""));

	  
Niels Möller's avatar
Niels Möller committed
760
761
762
763
764
765
766
767
768
769
770
	  
	  CHANNEL_OPEN(open, connection, &buffer,
		       make_channel_open_continuation(connection,
						      local_number,
						      remote_channel_number,
						      window_size,
						      max_packet),
		       make_exc_channel_open_handler(connection,
						     local_number,
						     remote_channel_number,
						     connection->e));
Niels Möller's avatar
Niels Möller committed
771
	}
Niels Möller's avatar
Niels Möller committed
772
    }
Niels Möller's avatar
Niels Möller committed
773
  else
774
    PROTOCOL_ERROR(connection->e, "Invalid SSH_MSG_CHANNEL_OPEN message.");
Niels Möller's avatar
Niels Möller committed
775

Niels Möller's avatar
Niels Möller committed
776
  lsh_string_free(packet);
Niels Möller's avatar
Niels Möller committed
777
778
}     

Niels Möller's avatar
Niels Möller committed
779
780
781
782
static void
do_channel_request(struct packet_handler *closure UNUSED,
		   struct ssh_connection *connection,
		   struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
783
784
{
  struct simple_buffer buffer;
785
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
786
787
788
  UINT32 channel_number;
  int type;
  int want_reply;
789
  
Niels Möller's avatar
Niels Möller committed
790
791
792
793
794
795
796
797
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_REQUEST)
      && parse_uint32(&buffer, &channel_number)
      && parse_atom(&buffer, &type)
      && parse_boolean(&buffer, &want_reply))
    {
Niels Möller's avatar
Niels Möller committed
798
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
799
800
						   channel_number);

801
802
803
804
      /* NOTE: We can't free packet yet, because it is not yet fully
       * parsed. There may be some more arguments, which are parsed by
       * the CHANNEL_REQUEST method below. */

Niels Möller's avatar
Niels Möller committed
805
806
807
808
      if (channel)
	{
	  struct channel_request *req;

809
810
	  if (type && channel->request_types 
	      && ( (req = ALIST_GET(channel->request_types, type)) ))
Niels Möller's avatar
Niels Möller committed
811
	    CHANNEL_REQUEST(req, channel, connection, want_reply, &buffer);
812
	  else
Niels Möller's avatar
Niels Möller committed
813
814
	    {
	      if (want_reply)
Niels Möller's avatar
Niels Möller committed
815
		C_WRITE(connection,
Niels Möller's avatar
Niels Möller committed
816
817
818
819
820
821
822
			format_channel_failure(channel->channel_number));
	    }
	}
      else
	{
	  werror("SSH_MSG_CHANNEL_REQUEST on nonexistant channel %i\n",
		 channel_number);
Niels Möller's avatar
Niels Möller committed
823
	}
824
    }
Niels Möller's avatar
Niels Möller committed
825
  else
826
    PROTOCOL_ERROR(connection->e, "Invalid SSH_MSG_CHANNEL_REQUEST message.");
Niels Möller's avatar
Niels Möller committed
827
  
Niels Möller's avatar
Niels Möller committed
828
  lsh_string_free(packet);
Niels Möller's avatar
Niels Möller committed
829
830
}
      
Niels Möller's avatar
Niels Möller committed
831
832
833
834
static void
do_window_adjust(struct packet_handler *closure UNUSED,
		 struct ssh_connection *connection,
		 struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
835
836
{
  struct simple_buffer buffer;
837
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
838
839
840
841
842
843
844
  UINT32 channel_number;
  UINT32 size;

  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_WINDOW_ADJUST)
845
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
846
847
848
      && parse_uint32(&buffer, &size)
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
849
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
850
851
852
853
						   channel_number);

      lsh_string_free(packet);
      
Niels Möller's avatar
Niels Möller committed
854
      if (channel
855
856
	  && !(channel->flags & (CHANNEL_RECEIVED_EOF
				 | CHANNEL_RECEIVED_CLOSE)))
Niels Möller's avatar
Niels Möller committed
857
	{
Niels Möller's avatar
Niels Möller committed
858
859
860
861
	  if (! (channel->flags & CHANNEL_SENT_CLOSE))
	    {
	      channel->send_window_size += size;
	      if (channel->send_window_size && channel->send)
862
		CHANNEL_SEND(channel, connection);
Niels Möller's avatar
Niels Möller committed
863
	    }
Niels Möller's avatar
Niels Möller committed
864
	}
Niels Möller's avatar
Niels Möller committed
865
866
867
868
869
870
      else
	{
	  /* FIXME: What to do now? Should unknown channel numbers be
	   * ignored silently? */
	  werror("SSH_MSG_CHANNEL_WINDOW_ADJUST on nonexistant or closed "
		 "channel %i\n", channel_number);
871
	  PROTOCOL_ERROR(connection->e, "Unexpected CHANNEL_WINDOW_ADJUST");
Niels Möller's avatar
Niels Möller committed
872
873
874
875
876
	}
    }
  else
    {
      lsh_string_free(packet);
877
      PROTOCOL_ERROR(connection->e, "Invalid CHANNEL_WINDOW_ADJUST message.");
Niels Möller's avatar
Niels Möller committed
878
879
880
    }
}

Niels Möller's avatar
Niels Möller committed
881
882
883
884
static void
do_channel_data(struct packet_handler *closure UNUSED,
		struct ssh_connection *connection,
		struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
885
886
{
  struct simple_buffer buffer;
887
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
888
889
890
891
892
893
894
  UINT32 channel_number;
  struct lsh_string *data;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_DATA)
895
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
896
897
898
      && ( (data = parse_string_copy(&buffer)) )
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
899
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
900
901
902
903
						   channel_number);

      lsh_string_free(packet);
      
904
      if (channel && channel->receive
905
906
	  && !(channel->flags & (CHANNEL_RECEIVED_EOF
				 | CHANNEL_RECEIVED_CLOSE)))
Niels Möller's avatar
Niels Möller committed
907
	{
Niels Möller's avatar
Niels Möller committed
908
	  if (channel->flags & CHANNEL_SENT_CLOSE)
Niels Möller's avatar
Niels Möller committed
909
	    {
Niels Möller's avatar
Niels Möller committed
910
	      lsh_string_free(data);
911
	      werror("Ignoring data on channel which is closing\n");
Niels Möller's avatar
Niels Möller committed
912
	      return;
Niels Möller's avatar
Niels Möller committed
913
	    }
Niels Möller's avatar
Niels Möller committed
914
915
916
917
918
	  else
	    {
	      if (data->length > channel->rec_window_size)
		{
		  /* Truncate data to fit window */
919
		  werror("Channel data overflow. Extra data ignored.\n"); 
Niels Möller's avatar
Niels Möller committed
920
921
		  data->length = channel->rec_window_size;
		}
922
923

	      if (!data->length)
Niels Möller's avatar
Niels Möller committed
924
925
926
927
928
		{
		  /* Ignore data packet */
		  lsh_string_free(data);
		  return;
		}
929
930
	      channel->rec_window_size -= data->length;

Niels Möller's avatar
Niels Möller committed
931
	      CHANNEL_RECEIVE(channel, CHANNEL_DATA, data);
Niels Möller's avatar
Niels Möller committed
932
	    }
Niels Möller's avatar
Niels Möller committed
933
	}
Niels Möller's avatar
Niels Möller committed
934
935
936
937
938
939
940
941
942
943
      else
	{
	  werror("Data on closed or non-existant channel %i\n",
		 channel_number);
	  lsh_string_free(data);
	}
    }
  else
    {
      lsh_string_free(packet);
944
      PROTOCOL_ERROR(connection->e, "Invalid CHANNEL_DATA message.");
Niels Möller's avatar
Niels Möller committed
945
946
947
    }
}

Niels Möller's avatar
Niels Möller committed
948
949
950
951
static void
do_channel_extended_data(struct packet_handler *closure UNUSED,
			 struct ssh_connection *connection,
			 struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
952
953
{
  struct simple_buffer buffer;
954
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
955
956
957
958
959
960
961
962
  UINT32 channel_number;
  UINT32 type;
  struct lsh_string *data;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_EXTENDED_DATA)
963
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
964
965
966
967
      && parse_uint32(&buffer, &type)
      && ( (data = parse_string_copy(&buffer)) )
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
968
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
969
970
971
972
						   channel_number);

      lsh_string_free(packet);
      
973
      if (channel && channel->receive
974
975
	  && !(channel->flags & (CHANNEL_RECEIVED_EOF
				 | CHANNEL_RECEIVED_CLOSE)))
Niels Möller's avatar
Niels Möller committed
976
	{
Niels Möller's avatar
Niels Möller committed
977
	  if (channel->flags & CHANNEL_SENT_CLOSE)
Niels Möller's avatar
Niels Möller committed
978
	    {
Niels Möller's avatar
Niels Möller committed
979
	      lsh_string_free(data);
980
	      werror("Ignoring extended data on channel which is closing\n");
Niels Möller's avatar
Niels Möller committed
981
	      return;
Niels Möller's avatar
Niels Möller committed
982
	    }
Niels Möller's avatar
Niels Möller committed
983
	  else
Niels Möller's avatar
Niels Möller committed
984
	    {
Niels Möller's avatar
Niels Möller committed
985
986
987
	      if (data->length > channel->rec_window_size)
		{
		  /* Truncate data to fit window */
988
		  werror("Channel extended data overflow. "
Niels Möller's avatar
Niels Möller committed
989
990
991
992
			 "Extra data ignored.\n");
		  data->length = channel->rec_window_size;
		}
	      
Niels Möller's avatar
Niels Möller committed
993
994
995
996
997
998
	      if (!data->length)
		{
		  /* Ignore data packet */
		  lsh_string_free(data);
		  return;
		}
999

Niels Möller's avatar
Niels Möller committed
1000
	      channel->rec_window_size -= data->length;
For faster browsing, not all history is shown. View entire blame