~mdw / sgt / putty / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add a config option to emulate the HMAC bug in commercial SSH v2.3.x
[sgt/putty] / sshsha.c
diff --git a/sshsha.c b/sshsha.c
index 95d5259..48cabb5 100644 (file)
--- a/sshsha.c
+++ b/sshsha.c
@@ -199,6 +199,14 @@ static void sha1_sckey(unsigned char *key) {
     sha1_key(&sha1_sc_mac_s1, &sha1_sc_mac_s2, key, 20);
 }
 
+static void sha1_cskey_buggy(unsigned char *key) {
+    sha1_key(&sha1_cs_mac_s1, &sha1_cs_mac_s2, key, 16);
+}
+
+static void sha1_sckey_buggy(unsigned char *key) {
+    sha1_key(&sha1_sc_mac_s1, &sha1_sc_mac_s2, key, 16);
+}
+
 static void sha1_do_hmac(SHA_State *s1, SHA_State *s2,
                          unsigned char *blk, int len, unsigned long seq,
                          unsigned char *hmac) {
@@ -236,3 +244,11 @@ struct ssh_mac ssh_sha1 = {
     "hmac-sha1",
     20
 };
+
+struct ssh_mac ssh_sha1_buggy = {
+    sha1_cskey_buggy, sha1_sckey_buggy,
+    sha1_generate,
+    sha1_verify,
+    "hmac-sha1",
+    20
+};
Simon Tatham's PuTTY GUI SSH client; import of svn://svn.tartarus.org/sgt/putty