djm@openbsd.org | 45f17a1 | 2019-11-01 02:32:05 +0000 | [diff] [blame] | 1 | /* $OpenBSD: myproposal.h,v 1.60 2019/11/01 02:32:05 djm Exp $ */ |
Ben Lindstrom | 36579d3 | 2001-01-29 07:39:26 +0000 | [diff] [blame] | 2 | |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 3 | /* |
| 4 | * Copyright (c) 2000 Markus Friedl. All rights reserved. |
| 5 | * |
| 6 | * Redistribution and use in source and binary forms, with or without |
| 7 | * modification, are permitted provided that the following conditions |
| 8 | * are met: |
| 9 | * 1. Redistributions of source code must retain the above copyright |
| 10 | * notice, this list of conditions and the following disclaimer. |
| 11 | * 2. Redistributions in binary form must reproduce the above copyright |
| 12 | * notice, this list of conditions and the following disclaimer in the |
| 13 | * documentation and/or other materials provided with the distribution. |
| 14 | * |
| 15 | * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR |
| 16 | * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
| 17 | * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
| 18 | * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, |
| 19 | * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
| 20 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| 21 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| 22 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| 23 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 24 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 25 | */ |
Tim Rice | 425a688 | 2006-03-15 20:17:05 -0800 | [diff] [blame] | 26 | |
Darren Tucker | 850ec17 | 2019-10-28 15:57:22 +1100 | [diff] [blame] | 27 | #ifdef WITH_OPENSSL |
Tim Rice | 425a688 | 2006-03-15 20:17:05 -0800 | [diff] [blame] | 28 | #include <openssl/opensslv.h> |
Darren Tucker | 850ec17 | 2019-10-28 15:57:22 +1100 | [diff] [blame] | 29 | #endif |
Tim Rice | 425a688 | 2006-03-15 20:17:05 -0800 | [diff] [blame] | 30 | |
Darren Tucker | b8ae92d | 2013-06-11 12:10:02 +1000 | [diff] [blame] | 31 | /* conditional algorithm support */ |
| 32 | |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 33 | #ifdef OPENSSL_HAS_ECC |
Darren Tucker | 37bcef5 | 2013-11-09 18:39:25 +1100 | [diff] [blame] | 34 | #ifdef OPENSSL_HAS_NISTP521 |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 35 | # define KEX_ECDH_METHODS \ |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame] | 36 | "ecdh-sha2-nistp256," \ |
| 37 | "ecdh-sha2-nistp384," \ |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 38 | "ecdh-sha2-nistp521," |
| 39 | # define HOSTKEY_ECDSA_CERT_METHODS \ |
| 40 | "ecdsa-sha2-nistp256-cert-v01@openssh.com," \ |
| 41 | "ecdsa-sha2-nistp384-cert-v01@openssh.com," \ |
| 42 | "ecdsa-sha2-nistp521-cert-v01@openssh.com," |
| 43 | # define HOSTKEY_ECDSA_METHODS \ |
| 44 | "ecdsa-sha2-nistp256," \ |
| 45 | "ecdsa-sha2-nistp384," \ |
| 46 | "ecdsa-sha2-nistp521," |
| 47 | #else |
Darren Tucker | 37bcef5 | 2013-11-09 18:39:25 +1100 | [diff] [blame] | 48 | # define KEX_ECDH_METHODS \ |
| 49 | "ecdh-sha2-nistp256," \ |
| 50 | "ecdh-sha2-nistp384," |
| 51 | # define HOSTKEY_ECDSA_CERT_METHODS \ |
| 52 | "ecdsa-sha2-nistp256-cert-v01@openssh.com," \ |
| 53 | "ecdsa-sha2-nistp384-cert-v01@openssh.com," |
| 54 | # define HOSTKEY_ECDSA_METHODS \ |
| 55 | "ecdsa-sha2-nistp256," \ |
| 56 | "ecdsa-sha2-nistp384," |
| 57 | #endif |
| 58 | #else |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 59 | # define KEX_ECDH_METHODS |
| 60 | # define HOSTKEY_ECDSA_CERT_METHODS |
| 61 | # define HOSTKEY_ECDSA_METHODS |
| 62 | #endif |
| 63 | |
Darren Tucker | 97b62f4 | 2013-06-11 11:47:24 +1000 | [diff] [blame] | 64 | #ifdef OPENSSL_HAVE_EVPGCM |
| 65 | # define AESGCM_CIPHER_MODES \ |
djm@openbsd.org | a22b9ef | 2015-03-24 09:17:21 +0000 | [diff] [blame] | 66 | ",aes128-gcm@openssh.com,aes256-gcm@openssh.com" |
Darren Tucker | 97b62f4 | 2013-06-11 11:47:24 +1000 | [diff] [blame] | 67 | #else |
| 68 | # define AESGCM_CIPHER_MODES |
| 69 | #endif |
| 70 | |
Darren Tucker | 2ea9eb7 | 2013-06-05 15:04:00 +1000 | [diff] [blame] | 71 | #ifdef HAVE_EVP_SHA256 |
djm@openbsd.org | 0e8eeec | 2016-05-02 10:26:04 +0000 | [diff] [blame] | 72 | # define KEX_SHA2_METHODS \ |
| 73 | "diffie-hellman-group-exchange-sha256," \ |
| 74 | "diffie-hellman-group16-sha512," \ |
| 75 | "diffie-hellman-group18-sha512," |
| 76 | # define KEX_SHA2_GROUP14 \ |
| 77 | "diffie-hellman-group14-sha256," |
Darren Tucker | b8ae92d | 2013-06-11 12:10:02 +1000 | [diff] [blame] | 78 | #define SHA2_HMAC_MODES \ |
| 79 | "hmac-sha2-256," \ |
| 80 | "hmac-sha2-512," |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 81 | #else |
djm@openbsd.org | 0e8eeec | 2016-05-02 10:26:04 +0000 | [diff] [blame] | 82 | # define KEX_SHA2_METHODS |
| 83 | # define KEX_SHA2_GROUP14 |
Darren Tucker | b8ae92d | 2013-06-11 12:10:02 +1000 | [diff] [blame] | 84 | # define SHA2_HMAC_MODES |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 85 | #endif |
| 86 | |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 87 | #ifdef WITH_OPENSSL |
Damien Miller | 2f3d1e7 | 2014-08-19 11:14:36 +1000 | [diff] [blame] | 88 | # ifdef HAVE_EVP_SHA256 |
djm@openbsd.org | 0493766 | 2016-09-22 17:52:53 +0000 | [diff] [blame] | 89 | # define KEX_CURVE25519_METHODS \ |
| 90 | "curve25519-sha256," \ |
| 91 | "curve25519-sha256@libssh.org," |
Darren Tucker | d7af0cc | 2014-06-11 07:37:25 +1000 | [diff] [blame] | 92 | # else |
| 93 | # define KEX_CURVE25519_METHODS "" |
| 94 | # endif |
djm@openbsd.org | 9b61130 | 2019-02-23 08:20:43 +0000 | [diff] [blame] | 95 | #define KEX_SERVER_KEX \ |
Darren Tucker | d7af0cc | 2014-06-11 07:37:25 +1000 | [diff] [blame] | 96 | KEX_CURVE25519_METHODS \ |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 97 | KEX_ECDH_METHODS \ |
djm@openbsd.org | 9b61130 | 2019-02-23 08:20:43 +0000 | [diff] [blame] | 98 | KEX_SHA2_METHODS \ |
djm@openbsd.org | 0e8eeec | 2016-05-02 10:26:04 +0000 | [diff] [blame] | 99 | KEX_SHA2_GROUP14 \ |
djm@openbsd.org | bdfd29f | 2015-07-03 03:47:00 +0000 | [diff] [blame] | 100 | "diffie-hellman-group14-sha1" |
Tim Rice | 425a688 | 2006-03-15 20:17:05 -0800 | [diff] [blame] | 101 | |
djm@openbsd.org | 9b61130 | 2019-02-23 08:20:43 +0000 | [diff] [blame] | 102 | #define KEX_CLIENT_KEX KEX_SERVER_KEX |
| 103 | |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 104 | #define KEX_DEFAULT_PK_ALG \ |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 105 | HOSTKEY_ECDSA_CERT_METHODS \ |
Damien Miller | 5be9d9e | 2013-12-07 11:24:01 +1100 | [diff] [blame] | 106 | "ssh-ed25519-cert-v01@openssh.com," \ |
djm@openbsd.org | 4ba0d54 | 2018-07-03 11:39:54 +0000 | [diff] [blame] | 107 | "rsa-sha2-512-cert-v01@openssh.com," \ |
| 108 | "rsa-sha2-256-cert-v01@openssh.com," \ |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame] | 109 | "ssh-rsa-cert-v01@openssh.com," \ |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 110 | HOSTKEY_ECDSA_METHODS \ |
Damien Miller | 5be9d9e | 2013-12-07 11:24:01 +1100 | [diff] [blame] | 111 | "ssh-ed25519," \ |
markus@openbsd.org | 76c9fbb | 2015-12-04 16:41:28 +0000 | [diff] [blame] | 112 | "rsa-sha2-512," \ |
markus@openbsd.org | 3da893f | 2015-12-05 20:53:21 +0000 | [diff] [blame] | 113 | "rsa-sha2-256," \ |
markus@openbsd.org | 76c9fbb | 2015-12-04 16:41:28 +0000 | [diff] [blame] | 114 | "ssh-rsa" |
Damien Miller | 67081b5 | 2009-01-28 16:33:31 +1100 | [diff] [blame] | 115 | |
Darren Tucker | b8ae92d | 2013-06-11 12:10:02 +1000 | [diff] [blame] | 116 | /* the actual algorithms */ |
| 117 | |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 118 | #define KEX_SERVER_ENCRYPT \ |
djm@openbsd.org | a22b9ef | 2015-03-24 09:17:21 +0000 | [diff] [blame] | 119 | "chacha20-poly1305@openssh.com," \ |
| 120 | "aes128-ctr,aes192-ctr,aes256-ctr" \ |
| 121 | AESGCM_CIPHER_MODES |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 122 | |
djm@openbsd.org | 70c1218 | 2017-05-07 23:13:42 +0000 | [diff] [blame] | 123 | #define KEX_CLIENT_ENCRYPT KEX_SERVER_ENCRYPT |
Darren Tucker | b8ae92d | 2013-06-11 12:10:02 +1000 | [diff] [blame] | 124 | |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 125 | #define KEX_SERVER_MAC \ |
Damien Miller | af43a7a | 2012-12-12 10:46:31 +1100 | [diff] [blame] | 126 | "umac-64-etm@openssh.com," \ |
| 127 | "umac-128-etm@openssh.com," \ |
| 128 | "hmac-sha2-256-etm@openssh.com," \ |
| 129 | "hmac-sha2-512-etm@openssh.com," \ |
Damien Miller | 6262d76 | 2014-07-17 09:52:07 +1000 | [diff] [blame] | 130 | "hmac-sha1-etm@openssh.com," \ |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 131 | "umac-64@openssh.com," \ |
| 132 | "umac-128@openssh.com," \ |
| 133 | "hmac-sha2-256," \ |
Damien Miller | 6262d76 | 2014-07-17 09:52:07 +1000 | [diff] [blame] | 134 | "hmac-sha2-512," \ |
| 135 | "hmac-sha1" |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 136 | |
djm@openbsd.org | 714e367 | 2016-02-09 05:30:04 +0000 | [diff] [blame] | 137 | #define KEX_CLIENT_MAC KEX_SERVER_MAC |
Damien Miller | 20bd453 | 2011-08-06 06:17:30 +1000 | [diff] [blame] | 138 | |
djm@openbsd.org | 4cc259b | 2018-09-12 01:34:02 +0000 | [diff] [blame] | 139 | /* Not a KEX value, but here so all the algorithm defaults are together */ |
| 140 | #define SSH_ALLOWED_CA_SIGALGS \ |
Darren Tucker | 1ac98be | 2019-05-17 12:42:17 +1000 | [diff] [blame] | 141 | HOSTKEY_ECDSA_METHODS \ |
djm@openbsd.org | 4cc259b | 2018-09-12 01:34:02 +0000 | [diff] [blame] | 142 | "ssh-ed25519," \ |
| 143 | "rsa-sha2-512," \ |
| 144 | "rsa-sha2-256," \ |
| 145 | "ssh-rsa" |
| 146 | |
djm@openbsd.org | 01a0670 | 2019-10-31 21:17:49 +0000 | [diff] [blame] | 147 | #define PUBKEY_DEFAULT_PK_ALG \ |
| 148 | "sk-ecdsa-sha2-nistp256-cert-v01@openssh.com," \ |
| 149 | "ecdsa-sha2-nistp256-cert-v01@openssh.com," \ |
| 150 | "ecdsa-sha2-nistp384-cert-v01@openssh.com," \ |
| 151 | "ecdsa-sha2-nistp521-cert-v01@openssh.com," \ |
| 152 | "ssh-ed25519-cert-v01@openssh.com," \ |
| 153 | "rsa-sha2-512-cert-v01@openssh.com," \ |
| 154 | "rsa-sha2-256-cert-v01@openssh.com," \ |
| 155 | "ssh-rsa-cert-v01@openssh.com," \ |
| 156 | "sk-ecdsa-sha2-nistp256@openssh.com," \ |
| 157 | "ecdsa-sha2-nistp256," \ |
| 158 | "ecdsa-sha2-nistp384," \ |
| 159 | "ecdsa-sha2-nistp521," \ |
| 160 | "ssh-ed25519," \ |
| 161 | "rsa-sha2-512," \ |
| 162 | "rsa-sha2-256," \ |
| 163 | "ssh-rsa" |
| 164 | |
djm@openbsd.org | 714e367 | 2016-02-09 05:30:04 +0000 | [diff] [blame] | 165 | #else /* WITH_OPENSSL */ |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 166 | |
| 167 | #define KEX_SERVER_KEX \ |
djm@openbsd.org | 0493766 | 2016-09-22 17:52:53 +0000 | [diff] [blame] | 168 | "curve25519-sha256," \ |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 169 | "curve25519-sha256@libssh.org" |
| 170 | #define KEX_DEFAULT_PK_ALG \ |
| 171 | "ssh-ed25519-cert-v01@openssh.com," \ |
| 172 | "ssh-ed25519" |
djm@openbsd.org | 01a0670 | 2019-10-31 21:17:49 +0000 | [diff] [blame] | 173 | #define PUBKEY_DEFAULT_PK_ALG KEX_DEFAULT_PK_ALG |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 174 | #define KEX_SERVER_ENCRYPT \ |
jsg@openbsd.org | 39bfbf7 | 2015-04-21 07:01:00 +0000 | [diff] [blame] | 175 | "chacha20-poly1305@openssh.com," \ |
djm@openbsd.org | a22b9ef | 2015-03-24 09:17:21 +0000 | [diff] [blame] | 176 | "aes128-ctr,aes192-ctr,aes256-ctr" |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 177 | #define KEX_SERVER_MAC \ |
Damien Miller | 294c58a | 2014-05-15 14:35:03 +1000 | [diff] [blame] | 178 | "umac-64-etm@openssh.com," \ |
| 179 | "umac-128-etm@openssh.com," \ |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 180 | "hmac-sha2-256-etm@openssh.com," \ |
| 181 | "hmac-sha2-512-etm@openssh.com," \ |
Damien Miller | 6262d76 | 2014-07-17 09:52:07 +1000 | [diff] [blame] | 182 | "hmac-sha1-etm@openssh.com," \ |
Damien Miller | 294c58a | 2014-05-15 14:35:03 +1000 | [diff] [blame] | 183 | "umac-64@openssh.com," \ |
| 184 | "umac-128@openssh.com," \ |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 185 | "hmac-sha2-256," \ |
Damien Miller | 6262d76 | 2014-07-17 09:52:07 +1000 | [diff] [blame] | 186 | "hmac-sha2-512," \ |
| 187 | "hmac-sha1" |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 188 | |
| 189 | #define KEX_CLIENT_KEX KEX_SERVER_KEX |
| 190 | #define KEX_CLIENT_ENCRYPT KEX_SERVER_ENCRYPT |
Damien Miller | 6262d76 | 2014-07-17 09:52:07 +1000 | [diff] [blame] | 191 | #define KEX_CLIENT_MAC KEX_SERVER_MAC |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 192 | |
djm@openbsd.org | 4cc259b | 2018-09-12 01:34:02 +0000 | [diff] [blame] | 193 | #define SSH_ALLOWED_CA_SIGALGS "ssh-ed25519" |
| 194 | |
Damien Miller | 1f0311c | 2014-05-15 14:24:09 +1000 | [diff] [blame] | 195 | #endif /* WITH_OPENSSL */ |
| 196 | |
djm@openbsd.org | 0082fba | 2016-09-28 16:33:06 +0000 | [diff] [blame] | 197 | #define KEX_DEFAULT_COMP "none,zlib@openssh.com" |
Damien Miller | 1383bd8 | 2000-04-06 12:32:37 +1000 | [diff] [blame] | 198 | #define KEX_DEFAULT_LANG "" |
| 199 | |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 200 | #define KEX_CLIENT \ |
| 201 | KEX_CLIENT_KEX, \ |
| 202 | KEX_DEFAULT_PK_ALG, \ |
| 203 | KEX_CLIENT_ENCRYPT, \ |
| 204 | KEX_CLIENT_ENCRYPT, \ |
| 205 | KEX_CLIENT_MAC, \ |
| 206 | KEX_CLIENT_MAC, \ |
| 207 | KEX_DEFAULT_COMP, \ |
| 208 | KEX_DEFAULT_COMP, \ |
| 209 | KEX_DEFAULT_LANG, \ |
Damien Miller | 1383bd8 | 2000-04-06 12:32:37 +1000 | [diff] [blame] | 210 | KEX_DEFAULT_LANG |
Damien Miller | 9235a03 | 2014-04-20 13:17:20 +1000 | [diff] [blame] | 211 | |
| 212 | #define KEX_SERVER \ |
| 213 | KEX_SERVER_KEX, \ |
| 214 | KEX_DEFAULT_PK_ALG, \ |
| 215 | KEX_SERVER_ENCRYPT, \ |
| 216 | KEX_SERVER_ENCRYPT, \ |
| 217 | KEX_SERVER_MAC, \ |
| 218 | KEX_SERVER_MAC, \ |
| 219 | KEX_DEFAULT_COMP, \ |
| 220 | KEX_DEFAULT_COMP, \ |
| 221 | KEX_DEFAULT_LANG, \ |
| 222 | KEX_DEFAULT_LANG |
| 223 | |