service_matcher-go/ssh/ssh.go

package ssh

import (
	"bufio"
	"bytes"
	"strings"

	osm "git.loafle.net/overflow/service_matcher-go"
)

type SSHMatcher struct {
	osm.Matchers
}

func (m *SSHMatcher) Key(matchCtx *osm.MatchCtx) string {
	return "SSH"
}

func (m *SSHMatcher) Type(matchCtx *osm.MatchCtx) string {
	return "NETWORK"
}

func (m *SSHMatcher) Vendor(matchCtx *osm.MatchCtx) string {
	return "UNKNOWN"
}

func (m *SSHMatcher) Version(matchCtx *osm.MatchCtx) string {
	v := "UNKNOWN"
	if _v, ok := matchCtx.GetAttribute("softwareversion"); ok {
		v = _v
	}

	return v
}

func (m *SSHMatcher) OsType(matchCtx *osm.MatchCtx) string {
	return "UNKNOWN"
}

func (m *SSHMatcher) OsVersion(matchCtx *osm.MatchCtx) string {
	return "UNKNOWN"
}

func (m *SSHMatcher) Name(matchCtx *osm.MatchCtx) string {
	name := "SSH"
	return name
}

func (m *SSHMatcher) IsPrePacket() bool {
	return true
}

func (m *SSHMatcher) HasResponse(matchCtx *osm.MatchCtx, index int) bool {
	return true
}

func (m *SSHMatcher) IsError(matchCtx *osm.MatchCtx, index int, packet *osm.Packet) bool {
	return false
}

func (m *SSHMatcher) Match(matchCtx *osm.MatchCtx, index int, packet *osm.Packet) error {

	if packet == nil || !packet.Valid() {
		return osm.NoPacketReceivedError()
	}

	// SSH-protoversion-softwareversion SP comments CR LF
	// e.g. ) SSH-2.0-OpenSSH_7.5p1 Ubuntu-10ubuntu0.1\n
	scanner := bufio.NewScanner(bytes.NewReader(packet.Buffer))
	for scanner.Scan() {
		exchange := scanner.Text()

		if !strings.HasPrefix(exchange, "SSH") {
			return osm.NotMatchedError()
		}

		temp := strings.Split(exchange, " ")
		versions := strings.Split(temp[0], "-")

		protoversion := versions[1]
		softwareversion := versions[2]

		if strings.HasPrefix(protoversion, "1") || strings.HasPrefix(protoversion, "2") {
			matchCtx.SetAttribute("protoversion", protoversion)
			matchCtx.SetAttribute("softwareversion", softwareversion)

			if len(temp) > 1 {
				matchCtx.SetAttribute("comments", temp[1])
			}
			return nil
		}
		break
	}

	return osm.NotMatchedError()
}

func NewMatcher() osm.Matcher {
	m := &SSHMatcher{}

	return m
}
init 2018-08-13 07:48:32 +00:00			`package ssh`

			`import (`
			`"bufio"`
			`"bytes"`
			`"strings"`

import path 2018-08-15 07:17:18 +00:00			`osm "git.loafle.net/overflow/service_matcher-go"`
init 2018-08-13 07:48:32 +00:00			`)`

			`type SSHMatcher struct {`
import path 2018-08-15 07:17:18 +00:00			`osm.Matchers`
init 2018-08-13 07:48:32 +00:00			`}`

ing 2018-10-23 04:31:25 +00:00			`func (m SSHMatcher) Key(matchCtx osm.MatchCtx) string {`
init 2018-08-13 07:48:32 +00:00			`return "SSH"`
			`}`

ing 2018-10-23 04:31:25 +00:00			`func (m SSHMatcher) Type(matchCtx osm.MatchCtx) string {`
type added 2018-09-12 04:26:27 +00:00			`return "NETWORK"`
			`}`

Revert "Revert "ing"" This reverts commit 7e4a2f177588a5c5d273eb62ab190f629ab0e36d 2018-09-13 08:31:11 +00:00			`func (m SSHMatcher) Vendor(matchCtx osm.MatchCtx) string {`
			`return "UNKNOWN"`
			`}`

			`func (m SSHMatcher) Version(matchCtx osm.MatchCtx) string {`
ing 2018-10-23 05:01:43 +00:00			`v := "UNKNOWN"`
			`if _v, ok := matchCtx.GetAttribute("softwareversion"); ok {`
			`v = _v`
			`}`

			`return v`
Revert "Revert "ing"" This reverts commit 7e4a2f177588a5c5d273eb62ab190f629ab0e36d 2018-09-13 08:31:11 +00:00			`}`

			`func (m SSHMatcher) OsType(matchCtx osm.MatchCtx) string {`
			`return "UNKNOWN"`
			`}`

			`func (m SSHMatcher) OsVersion(matchCtx osm.MatchCtx) string {`
			`return "UNKNOWN"`
			`}`

matchCtx added 2018-09-03 13:36:57 +00:00			`func (m SSHMatcher) Name(matchCtx osm.MatchCtx) string {`
init 2018-08-13 07:48:32 +00:00			`name := "SSH"`
			`return name`
			`}`

ing 2018-09-03 13:41:28 +00:00			`func (m *SSHMatcher) IsPrePacket() bool {`
init 2018-08-13 07:48:32 +00:00			`return true`
			`}`

matchCtx added 2018-09-03 13:36:57 +00:00			`func (m SSHMatcher) HasResponse(matchCtx osm.MatchCtx, index int) bool {`
init 2018-08-13 07:48:32 +00:00			`return true`
			`}`

matchCtx added 2018-09-03 13:36:57 +00:00			`func (m SSHMatcher) IsError(matchCtx osm.MatchCtx, index int, packet *osm.Packet) bool {`
init 2018-08-13 07:48:32 +00:00			`return false`
			`}`

matchCtx added 2018-09-03 13:36:57 +00:00			`func (m SSHMatcher) Match(matchCtx osm.MatchCtx, index int, packet *osm.Packet) error {`
init 2018-08-13 07:48:32 +00:00
ing 2018-09-03 06:42:56 +00:00			`if packet == nil \|\| !packet.Valid() {`
import path 2018-08-15 07:17:18 +00:00			`return osm.NoPacketReceivedError()`
init 2018-08-13 07:48:32 +00:00			`}`

			`// SSH-protoversion-softwareversion SP comments CR LF`
			`// e.g. ) SSH-2.0-OpenSSH_7.5p1 Ubuntu-10ubuntu0.1\n`
ing 2018-09-03 07:23:25 +00:00			`scanner := bufio.NewScanner(bytes.NewReader(packet.Buffer))`
init 2018-08-13 07:48:32 +00:00			`for scanner.Scan() {`
			`exchange := scanner.Text()`

			`if !strings.HasPrefix(exchange, "SSH") {`
import path 2018-08-15 07:17:18 +00:00			`return osm.NotMatchedError()`
init 2018-08-13 07:48:32 +00:00			`}`

			`temp := strings.Split(exchange, " ")`
			`versions := strings.Split(temp[0], "-")`

			`protoversion := versions[1]`
			`softwareversion := versions[2]`

			`if strings.HasPrefix(protoversion, "1") \|\| strings.HasPrefix(protoversion, "2") {`
matchCtx added 2018-09-03 13:36:57 +00:00			`matchCtx.SetAttribute("protoversion", protoversion)`
			`matchCtx.SetAttribute("softwareversion", softwareversion)`
init 2018-08-13 07:48:32 +00:00
			`if len(temp) > 1 {`
matchCtx added 2018-09-03 13:36:57 +00:00			`matchCtx.SetAttribute("comments", temp[1])`
init 2018-08-13 07:48:32 +00:00			`}`
			`return nil`
			`}`
			`break`
			`}`

import path 2018-08-15 07:17:18 +00:00			`return osm.NotMatchedError()`
init 2018-08-13 07:48:32 +00:00			`}`

import path 2018-08-15 07:17:18 +00:00			`func NewMatcher() osm.Matcher {`
init 2018-08-13 07:48:32 +00:00			`m := &SSHMatcher{}`
matchCtx added 2018-09-03 13:36:57 +00:00
init 2018-08-13 07:48:32 +00:00			`return m`
			`}`