channel.c 46.8 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
/* channel.c
 *
 * $Id$
 */

/* lsh, an implementation of the ssh protocol
 *
 * Copyright (C) 1998 Niels Mller
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 * General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
J.H.M. Dassen's avatar
J.H.M. Dassen committed
22
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
Niels Möller's avatar
Niels Möller committed
23
24
25
26
27
 */

#include "channel.h"

#include "format.h"
28
#include "io.h"
Niels Möller's avatar
Niels Möller committed
29
#include "read_data.h"
Niels Möller's avatar
Niels Möller committed
30
31
32
33
34
#include "ssh.h"
#include "werror.h"
#include "xalloc.h"

#include <assert.h>
35
#include <string.h>
Niels Möller's avatar
Niels Möller committed
36

37
#define GABA_DEFINE
38
#include "channel.h.x"
39
#undef GABA_DEFINE
40

41
42
#include "channel.c.x"

Niels Möller's avatar
Niels Möller committed
43
44
45
46
47
48
49
50
51
52
struct exception *make_channel_open_exception(UINT32 error_code, char *msg)
{
  NEW(channel_open_exception, self);
  self->super.type = EXC_CHANNEL_OPEN;
  self->super.msg = msg;
  self->error_code = error_code;

  return &self->super;
}

53
/* GABA:
54
55
   (class
     (name connection_service)
56
     (super command)
57
58
59
60
     (vars
       ; Supported global requests 
       (global_requests object alist)

61
       (channel_types object alist) ))
62
63
64
65

       ; Initialize connection (for instance, request channels to be 
       ; opened or services to be forwarded).

66
       ; (start object connection_startup)))
67
68
*/

69
/* ;; GABA:
70
71
   (class
     (name global_request_handler)
72
     (super packet_handler)
73
74
75
76
     (vars
       (global_requests object alist)))
*/

77
/* ;; GABA:
78
79
   (class
     (name channel_open_handler)
80
     (super packet_handler)
81
82
83
84
     (vars
       (channel_types object alist)))
*/

Niels Möller's avatar
Niels Möller committed
85
/* ;; GABA:
86
87
88
89
90
91
92
93
94
   (class
     (name channel_open_response)
     (super channel_open_callback)
     (vars
       (remote_channel_number simple UINT32)
       (window_size simple UINT32)
       (max_packet simple UINT32)))
*/

Niels Möller's avatar
Niels Möller committed
95
96
97
98
99
struct lsh_string *format_global_failure(void)
{
  return ssh_format("%c", SSH_MSG_REQUEST_FAILURE);
}

100
101
102
103
104
struct lsh_string *format_global_success(void)
{
  return ssh_format("%c", SSH_MSG_REQUEST_SUCCESS);
}

105
106
struct lsh_string *format_open_confirmation(struct ssh_channel *channel,
					    UINT32 channel_number,
107
					    const char *format, ...)
108
109
110
111
112
113
{
  va_list args;
  UINT32 l1, l2;
  struct lsh_string *packet;

#define CONFIRM_FORMAT "%c%i%i%i%i"
114
115
#define CONFIRM_ARGS \
  SSH_MSG_CHANNEL_OPEN_CONFIRMATION, channel->channel_number, \
116
117
118
119
120
121
122
123
124
125
126
127
128
  channel_number, channel->rec_window_size, channel->rec_max_packet
    
  l1 = ssh_format_length(CONFIRM_FORMAT, CONFIRM_ARGS);

  va_start(args, format);
  l2 = ssh_vformat_length(format, args);
  va_end(args);

  packet = lsh_string_alloc(l1 + l2);

  ssh_format_write(CONFIRM_FORMAT, l1, packet->data, CONFIRM_ARGS);

  va_start(args, format);
129
  ssh_vformat_write(format, l2, packet->data+l1, args);
130
131
132
133
134
135
136
  va_end(args);

  return packet;
#undef CONFIRM_FORMAT
#undef CONFIRM_ARGS
}

Niels Möller's avatar
Niels Möller committed
137
struct lsh_string *format_open_failure(UINT32 channel, UINT32 reason,
138
				       const char *msg, const char *language)
Niels Möller's avatar
Niels Möller committed
139
140
141
142
143
{
  return ssh_format("%c%i%i%z%z", SSH_MSG_CHANNEL_OPEN_FAILURE,
		    channel, reason, msg, language);
}

144
145
146
147
148
struct lsh_string *format_channel_success(UINT32 channel)
{
  return ssh_format("%c%i", SSH_MSG_CHANNEL_SUCCESS, channel);
}

Niels Möller's avatar
Niels Möller committed
149
150
151
152
153
struct lsh_string *format_channel_failure(UINT32 channel)
{
  return ssh_format("%c%i", SSH_MSG_CHANNEL_FAILURE, channel);
}

154
155
156
157
158
159
160
161
162
163
struct lsh_string *prepare_window_adjust(struct ssh_channel *channel,
					 UINT32 add)
{
  channel->rec_window_size += add;
  
  return ssh_format("%c%i%i",
		    SSH_MSG_CHANNEL_WINDOW_ADJUST,
		    channel->channel_number, add);
}

Niels Möller's avatar
Niels Möller committed
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
/* ;; GABA:
   (class
     (name channel_exception)
     (super exception)
     (vars
       (channel object ssh_channel)
       (pending_close . int)))
*/

/* GABA:
   (class
     (name exc_finish_channel_handler)
     (super exception_handler)
     (vars
       (table object channel_table)
       ; Local channel number 
       (channel_number . UINT32)))
*/

static void do_exc_finish_channel_handler(struct exception_handler *s,
Niels Möller's avatar
Niels Möller committed
184
					  const struct exception *e)
Niels Möller's avatar
Niels Möller committed
185
186
187
188
189
{
  CAST(exc_finish_channel_handler, self, s);

  switch (e->type)
    {
Niels Möller's avatar
Niels Möller committed
190
191
192
193
194
195
196
    case EXC_FINISH_PENDING:
      self->table->pending_close = 1;

      if (!self->table->next_channel)
	EXCEPTION_RAISE(self->super.parent, &finish_read_exception);
      break;
      
Niels Möller's avatar
Niels Möller committed
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
    case EXC_FINISH_CHANNEL:
      /* NOTE: This type of exception must be handled only once.
       * Perhaps we must add a liveness flag in the ssh_channel struct
       * to avoid deallocating dead channels? */
      {
	struct ssh_channel *channel
	  = self->table->channels[self->channel_number];

	assert(channel);
	
	if (channel->close)
	  CHANNEL_CLOSE(channel);
	
	dealloc_channel(self->table, self->channel_number);

	if (self->table->pending_close && !self->table->next_channel)
	  EXCEPTION_RAISE(self->super.parent, &finish_read_exception);
      }
      break;
    default:
      EXCEPTION_RAISE(self->super.parent, e);
    }
}

static struct exception_handler *
make_exc_finish_channel_handler(struct channel_table *table,
				UINT32 channel_number,
				struct exception_handler *e)
{
  NEW(exc_finish_channel_handler, self);
  self->table = table;
  self->channel_number = channel_number;
  self->super.parent = e;
  self->super.raise = do_exc_finish_channel_handler;
Niels Möller's avatar
Niels Möller committed
231
232

  return &self->super;
Niels Möller's avatar
Niels Möller committed
233
234
235
}
				

236
/* Channel objects */
Niels Möller's avatar
Niels Möller committed
237
238
239
240
241

#define INITIAL_CHANNELS 32
/* Arbitrary limit */
#define MAX_CHANNELS (1L<<17)

Niels Möller's avatar
Niels Möller committed
242
struct channel_table *make_channel_table(void)
Niels Möller's avatar
Niels Möller committed
243
{
244
  NEW(channel_table, table);
Niels Möller's avatar
Niels Möller committed
245

246
  table->channels = lsh_space_alloc(sizeof(struct ssh_channel *)
247
				      * INITIAL_CHANNELS);
Niels Möller's avatar
Niels Möller committed
248
249
  table->in_use = lsh_space_alloc(INITIAL_CHANNELS);
  
250
251
252
253
  table->allocated_channels = INITIAL_CHANNELS;
  table->next_channel = 0;
  table->used_channels = 0;
  table->max_channels = MAX_CHANNELS;
Niels Möller's avatar
Niels Möller committed
254

Niels Möller's avatar
Niels Möller committed
255
  table->pending_close = 0;
256

257
258
259
  table->global_requests = make_alist(0, -1);
  table->channel_types = make_alist(0, -1);
  
260
261
262
  object_queue_init(&table->local_ports);
  object_queue_init(&table->remote_ports);
  
263
264
  object_queue_init(&table->active_global_requests);
  object_queue_init(&table->pending_global_requests);
Niels Möller's avatar
Niels Möller committed
265
  
266
  return table;
Niels Möller's avatar
Niels Möller committed
267
268
269
};

/* Returns -1 if allocation fails */
270
271
272
/* NOTE: This function returns locally chosen channel numbers, which
 * are always small integers. So there's no problem fitting them in
 * a signed int. */
273
int alloc_channel(struct channel_table *table)
Niels Möller's avatar
Niels Möller committed
274
{
275
  UINT32 i;
276
  
277
  for(i = table->next_channel; i < table->used_channels; i++)
Niels Möller's avatar
Niels Möller committed
278
    {
Niels Möller's avatar
Niels Möller committed
279
      if (!table->in_use[i])
Niels Möller's avatar
Niels Möller committed
280
	{
Niels Möller's avatar
Niels Möller committed
281
282
	  assert(!table->channels[i]);
	  table->in_use[i] = 1;
283
	  table->next_channel = i+1;
Niels Möller's avatar
Niels Möller committed
284
285
286
	  return i;
	}
    }
287
  if (i == table->max_channels)
Niels Möller's avatar
Niels Möller committed
288
    return -1;
289

290
  if (i == table->allocated_channels) 
Niels Möller's avatar
Niels Möller committed
291
    {
292
      int new_size = table->allocated_channels * 2;
Niels Möller's avatar
Niels Möller committed
293
      struct ssh_channel **new_channels;
Niels Möller's avatar
Niels Möller committed
294
      UINT8 *new_in_use;
Niels Möller's avatar
Niels Möller committed
295

Niels Möller's avatar
Niels Möller committed
296
297
298
      new_channels = lsh_space_alloc(sizeof(struct ssh_channel *)
				     * new_size);
      memcpy(new_channels, table->channels,
299
	     sizeof(struct ssh_channel *) * table->used_channels);
Niels Möller's avatar
Niels Möller committed
300
301
302
303
304
305
306
307
      lsh_space_free(table->channels);
      table->channels = new_channels;

      new_in_use = lsh_space_alloc(new_size);
      memcpy(new_in_use, table->in_use, table->used_channels);
      lsh_space_free(table->in_use);
      table->in_use = new_in_use;

308
      table->allocated_channels = new_size;
Niels Möller's avatar
Niels Möller committed
309
310
    }

311
  table->next_channel = table->used_channels = i+1;
Niels Möller's avatar
Niels Möller committed
312
313
314
315

  return i;
}

316
void dealloc_channel(struct channel_table *table, int i)
Niels Möller's avatar
Niels Möller committed
317
318
{
  assert(i >= 0);
319
  assert( (unsigned) i < table->used_channels);
Niels Möller's avatar
Niels Möller committed
320
  
321
  table->channels[i] = NULL;
Niels Möller's avatar
Niels Möller committed
322
323
  table->in_use[i] = 0;
  
324
  if ( (unsigned) i < table->next_channel)
325
326
327
    table->next_channel = i;
}

Niels Möller's avatar
Niels Möller committed
328
void register_channel(struct channel_table *table,
Niels Möller's avatar
Niels Möller committed
329
330
		      UINT32 local_channel_number,
		      struct ssh_channel *channel)
331
{
Niels Möller's avatar
Niels Möller committed
332
333
  assert(table->in_use[local_channel_number]);
  assert(!table->channels[local_channel_number]);
Niels Möller's avatar
Niels Möller committed
334
  
Niels Möller's avatar
Niels Möller committed
335
336
337
338
339
340
  table->channels[local_channel_number] = channel;

  /* FIXME: Is this the right place to install this exception handler? */
  channel->e = make_exc_finish_channel_handler(table,
					       local_channel_number,
					       channel->e);
Niels Möller's avatar
Niels Möller committed
341
342
}

343
struct ssh_channel *lookup_channel(struct channel_table *table, UINT32 i)
Niels Möller's avatar
Niels Möller committed
344
{
345
346
  return (i < table->used_channels)
    ? table->channels[i] : NULL;
Niels Möller's avatar
Niels Möller committed
347
348
}

349
350
351
352
353
354
355
356
357
358
/* FIXME: It seems suboptimal to send a window adjust message for *every* write that we do.
 * A better scheme might be as follows:
 *
 * Delay window adjust messages, keeping track of both the locally
 * maintained window size, which is updated after each write, and the
 * size that has been reported to the remote end. When the difference
 * between these two values gets large enough (say, larger than one
 * half or one third of the maximum window size), we send a
 * window_adjust message to sync them. */
static void adjust_rec_window(struct flow_controlled *f, UINT32 written)
359
{
360
361
  CAST_SUBTYPE(ssh_channel, channel, f);

Niels Möller's avatar
Niels Möller committed
362
363
364
365
  A_WRITE(channel->write,
	  prepare_window_adjust
	  (channel, written),
	  channel->e);
366
367
}

Niels Möller's avatar
Niels Möller committed
368
void channel_start_receive(struct ssh_channel *channel)
369
{
Niels Möller's avatar
Niels Möller committed
370
371
372
373
  A_WRITE(channel->write,
	  prepare_window_adjust
	  (channel, channel->max_window - channel->rec_window_size),
	  channel->e);
374
375
}

Niels Möller's avatar
Niels Möller committed
376
#if 0
377
378
/* Process channel-related status codes. Used by the packet handlers,
 * before returning. */
Niels Möller's avatar
Niels Möller committed
379
380
381
382
static int channel_process_status(struct channel_table *table,
				  int channel,
				  int status)
{
383
384
385
386
  struct ssh_channel *c = table->channels[channel];
  
  while (!LSH_CLOSEDP(status))
    {
387
388
389
390
391
392
393
      if (status & LSH_CHANNEL_CLOSE)
	{ /* Close the channel now */ 
	  if (!c->flags & CHANNEL_SENT_CLOSE)
	    status |= channel_close(c);
	  break;
	}
      
394
395
396
397
398
399
400
401
402
      if (status & LSH_CHANNEL_READY_SEND)
	{
	  status &= ~ LSH_CHANNEL_READY_SEND;
	  if (c->send_window_size)
	    status |= CHANNEL_SEND(c);
	}
      else if (status & LSH_CHANNEL_READY_REC)
	{
	  status &= ~ LSH_CHANNEL_READY_REC;
403
	  status |= channel_start_receive(c);
404
405
406
407
408
	}
      else
	break;
    }
	
Niels Möller's avatar
Niels Möller committed
409
410
411
412
  if (status & LSH_CHANNEL_FINISHED)
    {
      /* Clear this bit */
      status &= ~LSH_CHANNEL_FINISHED;
413

414
      if (c->close)
415
	status |= CHANNEL_CLOSE(c);
Niels Möller's avatar
Niels Möller committed
416
417
418
419
      
      dealloc_channel(table, channel);
    }

420
421
422
423
424
425
426
  if (status & LSH_CHANNEL_PENDING_CLOSE)
    table->pending_close = 1;
  
  /* If this was the last channel, close connection */
  if (table->pending_close && !table->next_channel)
    status |= LSH_CLOSE;

Niels Möller's avatar
Niels Möller committed
427
428
  return status;
}
Niels Möller's avatar
Niels Möller committed
429
430
#endif

Niels Möller's avatar
Niels Möller committed
431

432
433
434
/* Ugly macros to make it a little simpler to free the input packet at
 * the right time. */

Niels Möller's avatar
Niels Möller committed
435
436
437
438
439
440
441
442
#define RETURN goto foo_finish
#define END(s) do { foo_finish: \
                    lsh_string_free((s)); \
                    return; } while(0)

#define ERROR(e, msg) \
  EXCEPTION_RAISE(e, make_protocol_exception \
    (SSH_DISCONNECT_PROTOCOL_ERROR, msg))
443

Niels Möller's avatar
Niels Möller committed
444
/* Channel related messages */
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471

/* GABA:
   (class
     (name global_request_status)
     (vars
       ; -1 for still active requests,
       ; 0 for failure,
       ; 1 for success
       (status . int)))
*/

static struct global_request_status *make_global_request_status(void)
{
  NEW(global_request_status, self);
  self->status = -1;

  return self;
}

/* GABA:
   (class
     (name global_request_response)
     (super global_request_callback)
     (vars
       (active object global_request_status)))
*/

Niels Möller's avatar
Niels Möller committed
472
static void
473
474
475
476
do_global_request_response(struct global_request_callback *c,
			   int success)
{
  CAST(global_request_response, self, c);
Niels Möller's avatar
Niels Möller committed
477
  struct object_queue *q = &self->super.connection->table->active_global_requests;
478
479
480
481
482
483
484
485
486
487
488

  assert( self->active->status == -1);
  assert( (success == 0) || (success == 1) );
  assert( !object_queue_is_empty(q));
	  
  self->active->status = success;

  for (;;)
    {
      CAST(global_request_status, n, object_queue_peek_head(q));
      if (!n || (n->status < 0))
Niels Möller's avatar
Niels Möller committed
489
	break;
490
491

      object_queue_remove_head(q);
Niels Möller's avatar
Niels Möller committed
492
493
494
495
496
497
498
499

      /* FIXME: Perhaps install some exception handler that cancels
       * the queue as soon as a write failes. */
      A_WRITE(self->super.connection->write,
	      (n->status
	       ? format_global_success()
	       : format_global_failure()),
	      self->super.connection->e);
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
    }
}

static struct global_request_callback *
make_global_request_response(struct ssh_connection *connection,
			     struct global_request_status *active)
{
  NEW(global_request_response, self);

  self->super.connection = connection;
  self->super.response = do_global_request_response;

  self->active = active;

  return &self->super;
}
     
Niels Möller's avatar
Niels Möller committed
517
518
519
static void do_global_request(struct packet_handler *s UNUSED,
			      struct ssh_connection *connection,
			      struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
520
{
521
  /* CAST(global_request_handler, closure, c); */
Niels Möller's avatar
Niels Möller committed
522
523

  struct simple_buffer buffer;
524
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
525
526
527
528
529
530
531
532
533
534
535
  int name;
  int want_reply;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_GLOBAL_REQUEST)
      && parse_atom(&buffer, &name)
      && parse_boolean(&buffer, &want_reply))
    {
      struct global_request *req;
536
537
      struct global_request_callback *c = NULL;
      
Niels Möller's avatar
Niels Möller committed
538
      if (!name || !(req = ALIST_GET(connection->table->global_requests,
539
				     name)))
540
	{
Niels Möller's avatar
Niels Möller committed
541
	  lsh_string_free(packet);
542

Niels Möller's avatar
Niels Möller committed
543
544
	  C_WRITE(connection, format_global_failure());
	  return;
Niels Möller's avatar
Niels Möller committed
545
546
547
548
549
550
551
	}
      else
	{
	  if (want_reply)
	    {
	      struct global_request_status *a = make_global_request_status();
	      
Niels Möller's avatar
Niels Möller committed
552
	      object_queue_add_tail(&connection->table->active_global_requests,
Niels Möller's avatar
Niels Möller committed
553
554
555
556
557
				    &a->super);
	      
	      c = make_global_request_response(connection, a);
	    }
	  GLOBAL_REQUEST(req, connection, &buffer, c);
558
	}
Niels Möller's avatar
Niels Möller committed
559
    }
Niels Möller's avatar
Niels Möller committed
560
561
  else
    {
Niels Möller's avatar
Niels Möller committed
562
      ERROR(connection->e, "Invalid SSH_MSG_GLOBAL_REQUEST message.");
Niels Möller's avatar
Niels Möller committed
563
564
    }
  lsh_string_free(packet);
Niels Möller's avatar
Niels Möller committed
565
566
}

Niels Möller's avatar
Niels Möller committed
567
568
569
570
static void
do_global_request_success(struct packet_handler *s UNUSED,
			  struct ssh_connection *connection,
			  struct lsh_string *packet)
571
572
{
  if (packet->length != 1)
Niels Möller's avatar
Niels Möller committed
573
574
575
576
    {
      ERROR(connection->e, "Invalid GLOBAL_REQUEST_SUCCESS message.");
      RETURN;
    }
577
578
579

  assert(packet->data[0] == SSH_MSG_REQUEST_SUCCESS);

Niels Möller's avatar
Niels Möller committed
580
  if (object_queue_is_empty(&connection->table->pending_global_requests))
581
582
    {
      werror("do_global_request_success: Unexpected message, ignoring.\n");
Niels Möller's avatar
Niels Möller committed
583
      return;
584
585
    }
  {
586
    CAST_SUBTYPE(command_context, ctx,
Niels Möller's avatar
Niels Möller committed
587
588
		 object_queue_remove_head(&connection->table->pending_global_requests));
    COMMAND_RETURN(ctx->c, connection);
589
  }
Niels Möller's avatar
Niels Möller committed
590
  END(packet);
591
592
}

593
594
595
struct exception global_request_exception =
STATIC_EXCEPTION(EXC_GLOBAL_REQUEST, "Global request failed");

Niels Möller's avatar
Niels Möller committed
596
597
598
599
static void
do_global_request_failure(struct packet_handler *s UNUSED,
			  struct ssh_connection *connection,
			  struct lsh_string *packet)
600
601
{
  if (packet->length != 1)
Niels Möller's avatar
Niels Möller committed
602
603
604
605
    {
      ERROR(connection->e, "Invalid GLOBAL_REQUEST_FAILURE message.");
      RETURN;
    }
606
607
608

  assert(packet->data[0] == SSH_MSG_REQUEST_FAILURE);

Niels Möller's avatar
Niels Möller committed
609
  if (object_queue_is_empty(&connection->table->pending_global_requests))
610
611
612
    {
      werror("do_global_request_failure: Unexpected message, ignoring.\n");
    }
Niels Möller's avatar
Niels Möller committed
613
614
615
616
617
618
619
  else
    {
      CAST_SUBTYPE(command_context, ctx,
		   object_queue_remove_head(&connection->table->pending_global_requests));
      EXCEPTION_RAISE(ctx->e, &global_request_exception);
    }
  END(packet);
620
621
}

Niels Möller's avatar
Niels Möller committed
622
623
#if 0
/* HERE!!! */
624
/* FIXME: Split into a continuation and an exception handler */
625
626
627
628
629
630
631
632
633
634
635
636
637
/* Callback given to the CHANNEL_OPEN method */
static int do_channel_open_response(struct channel_open_callback *c,
                                    struct ssh_channel *channel,
                                    UINT32 error, char *error_msg,
                                    struct lsh_string *args)
{
  CAST(channel_open_response, closure, c);
  
  int local_channel_number;

  if (!channel)
    {
      if (error)
Niels Möller's avatar
Niels Möller committed
638
639
640
641
642
643
        C_WRITE(closure->super.connection->write,
		format_open_failure(closure->remote_channel_number,
				    error, error_msg, ""));
      else
	EXCEPTION_RAISE(closure->super.connection->e,
			make_protocol_exception())
644
      return LSH_FAIL | LSH_DIE;
645
646
    }

Niels Möller's avatar
Niels Möller committed
647
648
649
  /* FIXME: It would be better to allocate or at least reserve a channel number earlier,
   * so that we can't fail at this point.
   */
650
651
652
653
654
655
656
657
658
659
660
661
  if ( (local_channel_number
            = register_channel(closure->super.connection->channels,
			       channel)) < 0)
    {
      werror("Could not allocate a channel number for opened channel!\n");
      return A_WRITE(closure->super.connection->write,
                     format_open_failure(closure->remote_channel_number,
                                         SSH_OPEN_RESOURCE_SHORTAGE,
                                         "Could not allocate a channel number "
                                         "(shouldn't happen...)", ""));
    }

662
  /* FIXME: This copying could just as well be done by the
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
   * CHANNEL_OPEN handler? Then we can remove the corresponding fields
   * from the closure as well. */
  channel->send_window_size = closure->window_size;
  channel->send_max_packet = closure->max_packet;
  channel->channel_number = closure->remote_channel_number;

  /* FIXME: Is the channel->write field really needed? */
  channel->write = closure->super.connection->write;

  return A_WRITE(closure->super.connection->write,
                 args
                 ? format_open_confirmation(channel, local_channel_number,
                                            "%lfS", args)
                 : format_open_confirmation(channel, local_channel_number,
                                            ""));
}

static struct channel_open_response *
make_channel_open_response(struct ssh_connection* connection,
			   UINT32 remote_channel_number,
			   UINT32 window_size,
			   UINT32 max_packet)
{
  NEW(channel_open_response, closure);

  closure->super.response = do_channel_open_response;
  closure->super.connection = connection;
  closure->remote_channel_number = remote_channel_number;
  closure->window_size = window_size;
  closure->max_packet = max_packet;

  return closure;
}
Niels Möller's avatar
Niels Möller committed
696
#endif
697

Niels Möller's avatar
Niels Möller committed
698
/* GABA:
699
700
701
702
703
   (class
     (name channel_open_continuation)
     (super command_continuation)
     (vars
       (connection object ssh_connection)
Niels Möller's avatar
Niels Möller committed
704
705
706
707
       (local_channel_number . UINT32)
       (remote_channel_number . UINT32)
       (window_size . UINT32)
       (max_packet . UINT32)))
708
*/
709

Niels Möller's avatar
Niels Möller committed
710
711
712
static void
do_channel_open_continue(struct command_continuation *c,
			 struct lsh_object *value)
713
714
{
  CAST(channel_open_continuation, self, c);
Niels Möller's avatar
Niels Möller committed
715
716
717
718
719
720
721
722
723
724
725
726
  CAST_SUBTYPE(ssh_channel, channel, value);

  assert(channel);

  /* FIXME: This copying could just as well be done by the
   * CHANNEL_OPEN handler? Then we can remove the corresponding fields
   * from the closure as well. */
  channel->send_window_size = self->window_size;
  channel->send_max_packet = self->max_packet;
  channel->channel_number = self->remote_channel_number;

  /* FIXME: Is the channel->write field really needed? */
Niels Möller's avatar
Niels Möller committed
727
  channel->write = self->connection->write;
Niels Möller's avatar
Niels Möller committed
728

Niels Möller's avatar
Niels Möller committed
729
730
  register_channel(self->connection->table,
		   self->local_channel_number, channel);
Niels Möller's avatar
Niels Möller committed
731
732
733
734
735

  /* FIXME: Doesn't support sending extra arguments with the
   * confirmation message. */

  C_WRITE(self->connection,
Niels Möller's avatar
Niels Möller committed
736
	  format_open_confirmation(channel, self->local_channel_number, ""));
737
}
Niels Möller's avatar
Niels Möller committed
738

Niels Möller's avatar
Niels Möller committed
739
static struct command_continuation *
Niels Möller's avatar
Niels Möller committed
740
741
742
743
744
745
746
make_channel_open_continuation(struct ssh_connection *connection,
			       UINT32 local_channel_number,
			       UINT32 remote_channel_number,
			       UINT32 window_size,
			       UINT32 max_packet)
{
  NEW(channel_open_continuation, self);
Niels Möller's avatar
Niels Möller committed
747

Niels Möller's avatar
Niels Möller committed
748
749
750
751
752
753
754
  self->super.c = do_channel_open_continue;
  self->connection = connection;
  self->local_channel_number = local_channel_number;
  self->remote_channel_number = remote_channel_number;
  self->window_size = window_size;
  self->max_packet = max_packet;

Niels Möller's avatar
Niels Möller committed
755
  return &self->super;
Niels Möller's avatar
Niels Möller committed
756
757
758
759
760
761
762
763
764
}
			       
/* GABA:
   (class
     (name exc_channel_open_handler)
     (super exception_handler)
     (vars
       (connection object ssh_connection)
       (local_channel_number . UINT32)
Niels Möller's avatar
Niels Möller committed
765
       (remote_channel_number . UINT32)))
Niels Möller's avatar
Niels Möller committed
766
767
768
*/

static void do_exc_channel_open_handler(struct exception_handler *s,
Niels Möller's avatar
Niels Möller committed
769
					const struct exception *e)
Niels Möller's avatar
Niels Möller committed
770
771
772
773
774
775
776
777
{
  CAST(exc_channel_open_handler, self, s);

  switch (e->type)
    {
    case EXC_CHANNEL_OPEN:
      {
	CAST_SUBTYPE(channel_open_exception, exc, e);
Niels Möller's avatar
Niels Möller committed
778
	struct channel_table *table = self->connection->table;
Niels Möller's avatar
Niels Möller committed
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
	
	assert(table->in_use[self->local_channel_number]);
	assert(!table->channels[self->local_channel_number]);

	dealloc_channel(table, self->local_channel_number);
	
        C_WRITE(self->connection,
		format_open_failure(self->remote_channel_number,
				    exc->error_code, e->msg, ""));
	break;
      }
    default:
      EXCEPTION_RAISE(self->super.parent, e);
    }      
}

static struct exception_handler *
make_exc_channel_open_handler(struct ssh_connection *connection,
			      UINT32 local_channel_number,
			      UINT32 remote_channel_number,
			      struct exception_handler *parent)
{
Niels Möller's avatar
Niels Möller committed
801
  NEW(exc_channel_open_handler, self);
Niels Möller's avatar
Niels Möller committed
802
  self->super.parent = parent;
Niels Möller's avatar
Niels Möller committed
803
804
  self->super.raise = do_exc_channel_open_handler;
  self->connection = connection;
Niels Möller's avatar
Niels Möller committed
805
806
807
808
809
810
811
812
813
  self->local_channel_number = local_channel_number;
  self->remote_channel_number = remote_channel_number;

  return &self->super;
}

static void do_channel_open(struct packet_handler *c UNUSED,
			    struct ssh_connection *connection,
			    struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
814
{
815
  /* CAST(channel_open_handler, closure, c); */
Niels Möller's avatar
Niels Möller committed
816
817

  struct simple_buffer buffer;
818
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
819
  int type;
820
821
822
  UINT32 remote_channel_number;
  UINT32 window_size;
  UINT32 max_packet;
Niels Möller's avatar
Niels Möller committed
823
824
825
826
827
828
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_OPEN)
      && parse_atom(&buffer, &type)
829
830
831
      && parse_uint32(&buffer, &remote_channel_number)
      && parse_uint32(&buffer, &window_size)
      && parse_uint32(&buffer, &max_packet))
Niels Möller's avatar
Niels Möller committed
832
833
    {
      struct channel_open *open;
Niels Möller's avatar
Niels Möller committed
834

Niels Möller's avatar
Niels Möller committed
835
836
837
838
      /* NOTE: We can't free the packet yet, as the buffer is passed
       * to the CHANNEL_OPEN method later. */

      if (connection->table->pending_close)
Niels Möller's avatar
Niels Möller committed
839
840
841
842
843
844
845
846
	{
	  /* We are waiting for channels to close. Don't open any new ones. */

	  C_WRITE(connection,
		  format_open_failure(remote_channel_number,
				      SSH_OPEN_ADMINISTRATIVELY_PROHIBITED,
				      "Waiting for channels to close.", ""));
	}
Niels Möller's avatar
Niels Möller committed
847
      else if (!type || !(open = ALIST_GET(connection->table->channel_types,
848
				      type)))
Niels Möller's avatar
Niels Möller committed
849
850
851
852
853
854
855
856
	{
	  C_WRITE(connection,
		  format_open_failure(remote_channel_number,
				      SSH_OPEN_UNKNOWN_CHANNEL_TYPE,
				      "Unknown channel type", ""));
	}
      else
	{
Niels Möller's avatar
Niels Möller committed
857
      	  int local_number = alloc_channel(connection->table);
Niels Möller's avatar
Niels Möller committed
858
859
860
861
862
863
864
865

	  if (local_number < 0)
	    C_WRITE(connection,
		    format_open_failure(remote_channel_number,
					SSH_OPEN_RESOURCE_SHORTAGE,
					"Unknown channel type", ""));

	  
Niels Möller's avatar
Niels Möller committed
866
867
868
869
870
871
872
873
874
875
876
	  
	  CHANNEL_OPEN(open, connection, &buffer,
		       make_channel_open_continuation(connection,
						      local_number,
						      remote_channel_number,
						      window_size,
						      max_packet),
		       make_exc_channel_open_handler(connection,
						     local_number,
						     remote_channel_number,
						     connection->e));
Niels Möller's avatar
Niels Möller committed
877
	}
Niels Möller's avatar
Niels Möller committed
878
    }
Niels Möller's avatar
Niels Möller committed
879
  else
Niels Möller's avatar
Niels Möller committed
880
881
    ERROR(connection->e, "Invalid SSH_MSG_CHANNEL_OPEN message.");

Niels Möller's avatar
Niels Möller committed
882
  lsh_string_free(packet);
Niels Möller's avatar
Niels Möller committed
883
884
}     

Niels Möller's avatar
Niels Möller committed
885
886
887
888
static void
do_channel_request(struct packet_handler *closure UNUSED,
		   struct ssh_connection *connection,
		   struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
889
890
{
  struct simple_buffer buffer;
891
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
892
893
894
  UINT32 channel_number;
  int type;
  int want_reply;
895
  
Niels Möller's avatar
Niels Möller committed
896
897
898
899
900
901
902
903
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_REQUEST)
      && parse_uint32(&buffer, &channel_number)
      && parse_atom(&buffer, &type)
      && parse_boolean(&buffer, &want_reply))
    {
Niels Möller's avatar
Niels Möller committed
904
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
905
906
						   channel_number);

907
908
909
910
      /* NOTE: We can't free packet yet, because it is not yet fully
       * parsed. There may be some more arguments, which are parsed by
       * the CHANNEL_REQUEST method below. */

Niels Möller's avatar
Niels Möller committed
911
912
913
914
      if (channel)
	{
	  struct channel_request *req;

915
916
	  if (type && channel->request_types 
	      && ( (req = ALIST_GET(channel->request_types, type)) ))
Niels Möller's avatar
Niels Möller committed
917
	    CHANNEL_REQUEST(req, channel, connection, want_reply, &buffer);
918
	  else
Niels Möller's avatar
Niels Möller committed
919
920
	    {
	      if (want_reply)
Niels Möller's avatar
Niels Möller committed
921
		C_WRITE(connection,
Niels Möller's avatar
Niels Möller committed
922
923
924
925
926
927
928
			format_channel_failure(channel->channel_number));
	    }
	}
      else
	{
	  werror("SSH_MSG_CHANNEL_REQUEST on nonexistant channel %i\n",
		 channel_number);
Niels Möller's avatar
Niels Möller committed
929
	}
930
    }
Niels Möller's avatar
Niels Möller committed
931
  else
Niels Möller's avatar
Niels Möller committed
932
933
    ERROR(connection->e, "Invalid SSH_MSG_CHANNEL_REQUEST message.");
  
Niels Möller's avatar
Niels Möller committed
934
  lsh_string_free(packet);
Niels Möller's avatar
Niels Möller committed
935
936
}
      
Niels Möller's avatar
Niels Möller committed
937
938
939
940
static void
do_window_adjust(struct packet_handler *closure UNUSED,
		 struct ssh_connection *connection,
		 struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
941
942
{
  struct simple_buffer buffer;
943
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
944
945
946
947
948
949
950
  UINT32 channel_number;
  UINT32 size;

  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_WINDOW_ADJUST)
951
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
952
953
954
      && parse_uint32(&buffer, &size)
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
955
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
956
957
958
959
						   channel_number);

      lsh_string_free(packet);
      
Niels Möller's avatar
Niels Möller committed
960
      if (channel
961
962
	  && !(channel->flags & (CHANNEL_RECEIVED_EOF
				 | CHANNEL_RECEIVED_CLOSE)))
Niels Möller's avatar
Niels Möller committed
963
	{
Niels Möller's avatar
Niels Möller committed
964
965
966
967
	  if (! (channel->flags & CHANNEL_SENT_CLOSE))
	    {
	      channel->send_window_size += size;
	      if (channel->send_window_size && channel->send)
Niels Möller's avatar
Niels Möller committed
968
		CHANNEL_SEND(channel);
Niels Möller's avatar
Niels Möller committed
969
	    }
Niels Möller's avatar
Niels Möller committed
970
	}
Niels Möller's avatar
Niels Möller committed
971
972
973
974
975
976
977
978
979
980
981
982
983
      else
	{
	  /* FIXME: What to do now? Should unknown channel numbers be
	   * ignored silently? */
	  werror("SSH_MSG_CHANNEL_WINDOW_ADJUST on nonexistant or closed "
		 "channel %i\n", channel_number);
	  ERROR(connection->e, "Unexpected CHANNEL_WINDOW_ADJUST");
	}
    }
  else
    {
      lsh_string_free(packet);
      ERROR(connection->e, "Invalid CHANNEL_WINDOW_ADJUST message.");
Niels Möller's avatar
Niels Möller committed
984
985
986
    }
}

Niels Möller's avatar
Niels Möller committed
987
988
989
990
static void
do_channel_data(struct packet_handler *closure UNUSED,
		struct ssh_connection *connection,
		struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
991
992
{
  struct simple_buffer buffer;
993
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
994
995
996
997
998
999
1000
  UINT32 channel_number;
  struct lsh_string *data;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_DATA)
1001
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
1002
1003
1004
      && ( (data = parse_string_copy(&buffer)) )
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
1005
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
1006
1007
1008
1009
						   channel_number);

      lsh_string_free(packet);
      
1010
      if (channel && channel->receive
1011
1012
	  && !(channel->flags & (CHANNEL_RECEIVED_EOF
				 | CHANNEL_RECEIVED_CLOSE)))
Niels Möller's avatar
Niels Möller committed
1013
	{
Niels Möller's avatar
Niels Möller committed
1014
	  if (channel->flags & CHANNEL_SENT_CLOSE)
Niels Möller's avatar
Niels Möller committed
1015
	    {
Niels Möller's avatar
Niels Möller committed
1016
	      lsh_string_free(data);
1017
	      werror("Ignoring data on channel which is closing\n");
Niels Möller's avatar
Niels Möller committed
1018
	      return;
Niels Möller's avatar
Niels Möller committed
1019
	    }
Niels Möller's avatar
Niels Möller committed
1020
1021
1022
1023
1024
	  else
	    {
	      if (data->length > channel->rec_window_size)
		{
		  /* Truncate data to fit window */
1025
		  werror("Channel data overflow. Extra data ignored.\n"); 
Niels Möller's avatar
Niels Möller committed
1026
1027
		  data->length = channel->rec_window_size;
		}
1028
1029

	      if (!data->length)
Niels Möller's avatar
Niels Möller committed
1030
1031
1032
1033
1034
		{
		  /* Ignore data packet */
		  lsh_string_free(data);
		  return;
		}
1035
1036
	      channel->rec_window_size -= data->length;

Niels Möller's avatar
Niels Möller committed
1037
	      CHANNEL_RECEIVE(channel, CHANNEL_DATA, data);
Niels Möller's avatar
Niels Möller committed
1038
	    }
Niels Möller's avatar
Niels Möller committed
1039
	}
Niels Möller's avatar
Niels Möller committed
1040
1041
1042
1043
1044
1045
1046
1047
1048
1049
1050
      else
	{
	  werror("Data on closed or non-existant channel %i\n",
		 channel_number);
	  lsh_string_free(data);
	}
    }
  else
    {
      lsh_string_free(packet);
      ERROR(connection->e, "Invalid CHANNEL_DATA message.");
Niels Möller's avatar
Niels Möller committed
1051
1052
1053
    }
}

Niels Möller's avatar
Niels Möller committed
1054
1055
1056
1057
static void
do_channel_extended_data(struct packet_handler *closure UNUSED,
			 struct ssh_connection *connection,
			 struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
1058
1059
{
  struct simple_buffer buffer;
1060
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
1061
1062
1063
1064
1065
1066
1067
1068
  UINT32 channel_number;
  UINT32 type;
  struct lsh_string *data;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_EXTENDED_DATA)
1069
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
1070
1071
1072
1073
      && parse_uint32(&buffer, &type)
      && ( (data = parse_string_copy(&buffer)) )
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
1074
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
1075
1076
1077
1078
						   channel_number);

      lsh_string_free(packet);
      
1079
      if (channel && channel->receive
1080
1081
	  && !(channel->flags & (CHANNEL_RECEIVED_EOF
				 | CHANNEL_RECEIVED_CLOSE)))
Niels Möller's avatar
Niels Möller committed
1082
	{
Niels Möller's avatar
Niels Möller committed
1083
	  if (channel->flags & CHANNEL_SENT_CLOSE)
Niels Möller's avatar
Niels Möller committed
1084
	    {
Niels Möller's avatar
Niels Möller committed
1085
	      lsh_string_free(data);
1086
	      werror("Ignoring extended data on channel which is closing\n");
Niels Möller's avatar
Niels Möller committed
1087
	      return;
Niels Möller's avatar
Niels Möller committed
1088
	    }
Niels Möller's avatar
Niels Möller committed
1089
	  else
Niels Möller's avatar
Niels Möller committed
1090
	    {
Niels Möller's avatar
Niels Möller committed
1091
1092
1093
	      if (data->length > channel->rec_window_size)
		{
		  /* Truncate data to fit window */
1094
		  werror("Channel extended data overflow. "
Niels Möller's avatar
Niels Möller committed
1095
1096
1097
1098
			 "Extra data ignored.\n");
		  data->length = channel->rec_window_size;
		}
	      
Niels Möller's avatar
Niels Möller committed
1099
1100
1101
1102
1103
1104
	      if (!data->length)
		{
		  /* Ignore data packet */
		  lsh_string_free(data);
		  return;
		}
1105

Niels Möller's avatar
Niels Möller committed
1106
	      channel->rec_window_size -= data->length;
1107

Niels Möller's avatar
Niels Möller committed
1108
1109
1110
	      switch(type)
		{
		case SSH_EXTENDED_DATA_STDERR:
Niels Möller's avatar
Niels Möller committed
1111
1112
		  CHANNEL_RECEIVE(channel, CHANNEL_STDERR_DATA, data);
		  break;
Niels Möller's avatar
Niels Möller committed
1113
		default:
1114
		  werror("Unknown type %i of extended data.\n",
Niels Möller's avatar
Niels Möller committed
1115
1116
1117
			 type);
		  lsh_string_free(data);
		}
Niels Möller's avatar
Niels Möller committed
1118
1119
	    }
	}
Niels Möller's avatar
Niels Möller committed
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
      else
	{
	  werror("Extended data on closed or non-existant channel %i\n",
		 channel_number);
	  lsh_string_free(data);
	}
    }
  else
    {
      lsh_string_free(packet);
      ERROR(connection->e, "Invalid CHANNEL_EXTENDED_DATA message.");
Niels Möller's avatar
Niels Möller committed
1131
1132
1133
    }
}

Niels Möller's avatar
Niels Möller committed
1134
1135
1136
1137
static void
do_channel_eof(struct packet_handler *closure UNUSED,
	       struct ssh_connection *connection,
	       struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
1138
1139
{
  struct simple_buffer buffer;
1140
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
1141
1142
1143
1144
1145
1146
  UINT32 channel_number;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_EOF)
1147
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
1148
1149
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
1150
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
1151
1152
1153
1154
						   channel_number);

      lsh_string_free(packet);

Niels Möller's avatar
Niels Möller committed
1155
1156
      if (channel)
	{
1157
	  if (channel->flags & (CHANNEL_RECEIVED_EOF | CHANNEL_RECEIVED_CLOSE))
Niels Möller's avatar
Niels Möller committed
1158
	    {
1159
	      werror("Receiving EOF on channel on closed channel.\n");
Niels Möller's avatar
Niels Möller committed
1160
1161
1162
1163
	      EXCEPTION_RAISE
		(connection->e,
		 make_protocol_exception(SSH_DISCONNECT_PROTOCOL_ERROR,
					 "Received EOF on channel on closed channel."));
Niels Möller's avatar
Niels Möller committed
1164
	    }
1165
	  else
Niels Möller's avatar
Niels Möller committed
1166
	    {
Niels Möller's avatar
Niels Möller committed
1167
	      channel->flags |= CHANNEL_RECEIVED_EOF;
1168
	      
Niels Möller's avatar
Niels Möller committed
1169
1170
1171
1172
1173
1174
1175
	      if (channel->eof)
		CHANNEL_EOF(channel);
	      else
		/* FIXME: What is a reasonable default behaviour?
		 * Closing the channel may be the right thing to do. */
		if (! (channel->flags & CHANNEL_SENT_CLOSE))
		  channel_close(channel);
Niels Möller's avatar
Niels Möller committed
1176
1177
	    }
	}
Niels Möller's avatar
Niels Möller committed
1178
1179
1180
1181
1182
1183
1184
1185
1186
1187
1188
      else
	{
	  werror("EOF on non-existant channel %i\n",
		 channel_number);
	  ERROR(connection->e, "EOF on non-existant channel");
	}
    }
  else
    {
      lsh_string_free(packet);
      ERROR(connection->e, "Invalid CHANNEL_EOF message");
Niels Möller's avatar
Niels Möller committed
1189
1190
1191
    }
}

Niels Möller's avatar
Niels Möller committed
1192
1193
1194
1195
static void
do_channel_close(struct packet_handler *closure UNUSED,
		 struct ssh_connection *connection,
		 struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
1196
1197
{
  struct simple_buffer buffer;
1198
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
1199
1200
1201
1202
1203
1204
  UINT32 channel_number;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_CLOSE)
1205
      && parse_uint32(&buffer, &channel_number)
Niels Möller's avatar
Niels Möller committed
1206
1207
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
1208
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
1209
1210
1211
1212
						   channel_number);

      lsh_string_free(packet);
      
Niels Möller's avatar
Niels Möller committed
1213
1214
      if (channel)
	{
1215
	  if (channel->flags & CHANNEL_RECEIVED_CLOSE)
Niels Möller's avatar
Niels Möller committed
1216
	    {
1217
	      werror("Receiving multiple CLOSE on channel.\n");
Niels Möller's avatar
Niels Möller committed
1218
	      ERROR(connection->e, "Receiving multiple CLOSE on channel.");
Niels Möller's avatar
Niels Möller committed
1219
	    }
Niels Möller's avatar
Niels Möller committed
1220
	  else
Niels Möller's avatar
Niels Möller committed
1221
	    {
Niels Möller's avatar
Niels Möller committed
1222
	      channel->flags |= CHANNEL_RECEIVED_CLOSE;
Niels Möller's avatar
Niels Möller committed
1223
	  
Niels Möller's avatar
Niels Möller committed
1224
1225
1226
1227
1228
1229
1230
1231
1232
1233
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
1245
1246
1247
1248
1249
1250
	      if (! (channel->flags & (CHANNEL_RECEIVED_EOF | CHANNEL_SENT_EOF
				       | CHANNEL_SENT_CLOSE)))
		{
		  werror("Unexpected channel CLOSE.\n");
		}

	      if (! (channel->flags & (CHANNEL_RECEIVED_EOF))
		  && channel->eof)
		CHANNEL_EOF(channel);

	      if (channel->flags & (CHANNEL_SENT_CLOSE))
		{
		  static const struct exception finish_exception
		    = STATIC_EXCEPTION(EXC_FINISH_CHANNEL, "Received CLOSE message.");
	      
		  EXCEPTION_RAISE(channel->e,
				  &finish_exception);
		}
	      else
		channel_close(channel);
	    }
	}
      else
	{
	  werror("CLOSE on non-existant channel %i\n",
		 channel_number);
	  ERROR(connection->e, "CLOSE on non-existant channel");
Niels Möller's avatar
Niels Möller committed
1251
	}
Niels Möller's avatar
Niels Möller committed
1252
    }
Niels Möller's avatar
Niels Möller committed
1253
1254
1255
1256
1257
  else
    {
      lsh_string_free(packet);
      ERROR(connection->e, "Invalid CHANNEL_CLOSE message");
    }
Niels Möller's avatar
Niels Möller committed
1258
1259
}

Niels Möller's avatar
Niels Möller committed
1260
1261
1262
1263
static void
do_channel_open_confirm(struct packet_handler *closure UNUSED,
			struct ssh_connection *connection,
			struct lsh_string *packet)
Niels Möller's avatar
Niels Möller committed
1264
1265
{
  struct simple_buffer buffer;
1266
  unsigned msg_number;
Niels Möller's avatar
Niels Möller committed
1267
1268
1269
1270
1271
1272
1273
1274
1275
1276
1277
1278
1279
1280
1281
  UINT32 local_channel_number;
  UINT32 remote_channel_number;  
  UINT32 window_size;
  UINT32 max_packet;
  
  simple_buffer_init(&buffer, packet->length, packet->data);

  if (parse_uint8(&buffer, &msg_number)
      && (msg_number == SSH_MSG_CHANNEL_OPEN_CONFIRMATION)
      && parse_uint32(&buffer, &local_channel_number)
      && parse_uint32(&buffer, &remote_channel_number)
      && parse_uint32(&buffer, &window_size)
      && parse_uint32(&buffer, &max_packet)
      && parse_eod(&buffer))
    {
Niels Möller's avatar
Niels Möller committed
1282
      struct ssh_channel *channel = lookup_channel(connection->table,
Niels Möller's avatar
Niels Möller committed
1283
1284
1285
1286
						   local_channel_number);

      lsh_string_free(packet);

1287
      if (channel && channel->open_continuation)
Niels Möller's avatar
Niels Möller committed
1288
	{
1289
1290
1291
	  struct command_continuation *c = channel->open_continuation;
	  channel->open_continuation = NULL;