Warren
d8ab2287d9
Test / test (push) Has been cancelled
Test / build (push) Has been cancelled
feat(ssh): complete encrypted packet handling and auth flow
SSH加密packet处理和认证流程完成:
实现内容:
1. EncryptedPacket::read()方法实现
- 读取加密packet并验证MAC
- 解密payload(AES-256-CTR)
- HMAC-SHA256 MAC验证
- payload提取
2. perform_ssh_auth()完整加密实现
- 接收加密SSH_MSG_SERVICE_REQUEST
- 发送加密SSH_MSG_SERVICE_ACCEPT
- 接收加密SSH_MSG_USERAUTH_REQUEST
- 发送加密SSH_MSG_USERAUTH_SUCCESS/FAILURE
3. encryption_ctx获取修复
- server.rs使用真实会话密钥
- 从perform_complete_kex_exchange获取
- 不再使用临时默认密钥
编译结果:
- ✅ 编译成功(144 warnings, 0 errors)
- ✅ SSH服务器成功监听port 2024
测试进展:
- ✅ Connection established
- ✅ SSH2_MSG_KEX_ECDH_REPLY received
- ✅ SSH2_MSG_NEWKEYS sent/received
- ✅ SSH认证流程实现完成
下一步:
- SSH Channel打开(SSH_MSG_CHANNEL_OPEN)
- Shell执行实现(bash/zsh登录)
技术实现:
- 加密packet完整处理(接收+发送)
- MAC验证(防重放攻击)
- 真实会话密钥使用(非临时默认密钥)