hrr_rb_ssh 0.1.4 → 0.1.5

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp256/signature.rb

@@ -0,0 +1,23 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp256
+        module Signature
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::String, :'ecdsa-sha2-[identifier]'],
+            [DataType::String, :'ecdsa_signature_blob'],
+          ]
+        end
+      end
+    end
+  end
+end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp256.rb

@@ -0,0 +1,79 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/logger'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp256 < ServerHostKeyAlgorithm
+        NAME = 'ecdsa-sha2-nistp256'
+        PREFERENCE = 30
+        DIGEST = 'sha256'
+        IDENTIFIER = 'nistp256'
+        SECRET_KEY = <<-EOB
+-----BEGIN EC PRIVATE KEY-----
+MHcCAQEEIB+8vCekxXfgw+Nz10ZykUGaI+X6ftdGG6b2UX2iz7oEoAoGCCqGSM49
+AwEHoUQDQgAEt1em9ko6A2kZFFwVtKgQ0xpggZg17EJQmhFz7ObGNsZ8VIFEc0Hg
+SpNC6qrqdhUfVAjsF9y5O/3Z/LGh/lNTig==
+-----END EC PRIVATE KEY-----
+        EOB
+
+        def initialize
+          @logger = HrrRbSsh::Logger.new(self.class.name)
+          @algorithm = OpenSSL::PKey::EC.new SECRET_KEY
+        end
+
+        def server_public_host_key
+          payload = {
+            :'ecdsa-sha2-[identifier]' => self.class::NAME,
+            :'[identifier]'            => self.class::IDENTIFIER,
+            :'Q'                       => @algorithm.public_key.to_bn.to_s(2)
+          }
+          PublicKeyBlob.encode payload
+        end
+
+        def ecdsa_signature_blob data
+          hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
+          sign_der = @algorithm.dsa_sign_asn1(hash)
+          sign_asn1 = OpenSSL::ASN1.decode(sign_der)
+          r = sign_asn1.value[0].value.to_i
+          s = sign_asn1.value[1].value.to_i
+          payload = {
+            :'r' => r,
+            :'s' => s,
+          }
+          EcdsaSignatureBlob.encode payload
+        end
+
+        def sign data
+          payload = {
+            :'ecdsa-sha2-[identifier]' => self.class::NAME,
+            :'ecdsa_signature_blob'    => ecdsa_signature_blob(data),
+          }
+          Signature.encode payload
+        end
+
+        def verify sign, data
+          payload = Signature.decode sign
+          ecdsa_signature_blob = EcdsaSignatureBlob.decode payload[:'ecdsa_signature_blob']
+          r = ecdsa_signature_blob[:'r']
+          s = ecdsa_signature_blob[:'s']
+          sign_asn1 = OpenSSL::ASN1::Sequence.new(
+            [
+              OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(r)),
+              OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(s)),
+            ]
+          )
+          sign_der = sign_asn1.to_der
+          hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
+          payload[:'ecdsa-sha2-[identifier]'] == self.class::NAME && @algorithm.dsa_verify_asn1(hash, sign_der)
+        end
+      end
+    end
+  end
+end
+
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp256/public_key_blob'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp256/ecdsa_signature_blob'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp256/signature'

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384/ecdsa_signature_blob.rb

@@ -0,0 +1,23 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp384
+        module EcdsaSignatureBlob
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::Mpint, :'r'],
+            [DataType::Mpint, :'s'],
+          ]
+        end
+      end
+    end
+  end
+end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384/public_key_blob.rb

@@ -0,0 +1,25 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp384
+        module PublicKeyBlob
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::String, :'ecdsa-sha2-[identifier]'],
+            [DataType::String, :'[identifier]'],
+            [DataType::String, :'Q'],
+          ]
+        end
+      end
+    end
+  end
+end
+

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384/signature.rb

@@ -0,0 +1,23 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp384
+        module Signature
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::String, :'ecdsa-sha2-[identifier]'],
+            [DataType::String, :'ecdsa_signature_blob'],
+          ]
+        end
+      end
+    end
+  end
+end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384.rb

@@ -0,0 +1,80 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/logger'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp384 < ServerHostKeyAlgorithm
+        NAME = 'ecdsa-sha2-nistp384'
+        PREFERENCE = 40
+        DIGEST = 'sha384'
+        IDENTIFIER = 'nistp384'
+        SECRET_KEY = <<-EOB
+-----BEGIN EC PRIVATE KEY-----
+MIGkAgEBBDCKZ6ulBka9rUw+gqKiQdVBG6fzH1klswyMrxrzCcfwRfoc5CGnj8e7
+emk+IHyUsd6gBwYFK4EEACKhZANiAATnWMWRgfp3DFiBmdT7LunyBk9YIBYqPsrk
+Zil+AWvlISusiW2JcZVB+Hz79tyrgzfwp6n6k9r5s31EIGTGf/n7UMwISrUCfcx+
+xVrnYV8pOoy+dcUiGb9okf1jc41bLHc=
+-----END EC PRIVATE KEY-----
+        EOB
+
+        def initialize
+          @logger = HrrRbSsh::Logger.new(self.class.name)
+          @algorithm = OpenSSL::PKey::EC.new SECRET_KEY
+        end
+
+        def server_public_host_key
+          payload = {
+            :'ecdsa-sha2-[identifier]' => self.class::NAME,
+            :'[identifier]'            => self.class::IDENTIFIER,
+            :'Q'                       => @algorithm.public_key.to_bn.to_s(2)
+          }
+          PublicKeyBlob.encode payload
+        end
+
+        def ecdsa_signature_blob data
+          hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
+          sign_der = @algorithm.dsa_sign_asn1(hash)
+          sign_asn1 = OpenSSL::ASN1.decode(sign_der)
+          r = sign_asn1.value[0].value.to_i
+          s = sign_asn1.value[1].value.to_i
+          payload = {
+            :'r' => r,
+            :'s' => s,
+          }
+          EcdsaSignatureBlob.encode payload
+        end
+
+        def sign data
+          payload = {
+            :'ecdsa-sha2-[identifier]' => self.class::NAME,
+            :'ecdsa_signature_blob'    => ecdsa_signature_blob(data),
+          }
+          Signature.encode payload
+        end
+
+        def verify sign, data
+          payload = Signature.decode sign
+          ecdsa_signature_blob = EcdsaSignatureBlob.decode payload[:'ecdsa_signature_blob']
+          r = ecdsa_signature_blob[:'r']
+          s = ecdsa_signature_blob[:'s']
+          sign_asn1 = OpenSSL::ASN1::Sequence.new(
+            [
+              OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(r)),
+              OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(s)),
+            ]
+          )
+          sign_der = sign_asn1.to_der
+          hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
+          payload[:'ecdsa-sha2-[identifier]'] == self.class::NAME && @algorithm.dsa_verify_asn1(hash, sign_der)
+        end
+      end
+    end
+  end
+end
+
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384/public_key_blob'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384/ecdsa_signature_blob'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384/signature'

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521/ecdsa_signature_blob.rb

@@ -0,0 +1,23 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp521
+        module EcdsaSignatureBlob
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::Mpint, :'r'],
+            [DataType::Mpint, :'s'],
+          ]
+        end
+      end
+    end
+  end
+end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521/public_key_blob.rb

@@ -0,0 +1,25 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp521
+        module PublicKeyBlob
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::String, :'ecdsa-sha2-[identifier]'],
+            [DataType::String, :'[identifier]'],
+            [DataType::String, :'Q'],
+          ]
+        end
+      end
+    end
+  end
+end
+

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521/signature.rb

@@ -0,0 +1,23 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/data_type'
+require 'hrr_rb_ssh/codable'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp521
+        module Signature
+          class << self
+            include Codable
+          end
+          DEFINITION = [
+            [DataType::String, :'ecdsa-sha2-[identifier]'],
+            [DataType::String, :'ecdsa_signature_blob'],
+          ]
+        end
+      end
+    end
+  end
+end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521.rb

@@ -0,0 +1,81 @@
+# coding: utf-8
+# vim: et ts=2 sw=2
+
+require 'hrr_rb_ssh/logger'
+
+module HrrRbSsh
+  class Transport
+    class ServerHostKeyAlgorithm
+      class EcdsaSha2Nistp521 < ServerHostKeyAlgorithm
+        NAME = 'ecdsa-sha2-nistp521'
+        PREFERENCE = 50
+        DIGEST = 'sha512'
+        IDENTIFIER = 'nistp521'
+        SECRET_KEY = <<-EOB
+-----BEGIN EC PRIVATE KEY-----
+MIHcAgEBBEIByLZ82qYoJid43PwFAdhr3mSH7SalBTdrK8H6h4p3RKEisAsVhmVb
+Sx+uGtgKVxxZT5s9tjr7W7Aqc6We5Fg9z7igBwYFK4EEACOhgYkDgYYABAFLHJ3H
+6HBJyJFsN2PRsjJyRMfYE57BB8dmZgwTsHuSAXBkj+2g4ucwtF240zAWw6JOYdqE
+V5O4BMNxGfYj+0ceKABJ4MgfUXQ3a1cXn8Dk2Q2uibbfVi7tQ7ET4k/A6B9f/Zwq
+/zEM5OVWhfyc+vuEg+TfTtTqgVI2zJpLI7+mSjB/5Q==
+-----END EC PRIVATE KEY-----
+        EOB
+
+        def initialize
+          @logger = HrrRbSsh::Logger.new(self.class.name)
+          @algorithm = OpenSSL::PKey::EC.new SECRET_KEY
+        end
+
+        def server_public_host_key
+          payload = {
+            :'ecdsa-sha2-[identifier]' => self.class::NAME,
+            :'[identifier]'            => self.class::IDENTIFIER,
+            :'Q'                       => @algorithm.public_key.to_bn.to_s(2)
+          }
+          PublicKeyBlob.encode payload
+        end
+
+        def ecdsa_signature_blob data
+          hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
+          sign_der = @algorithm.dsa_sign_asn1(hash)
+          sign_asn1 = OpenSSL::ASN1.decode(sign_der)
+          r = sign_asn1.value[0].value.to_i
+          s = sign_asn1.value[1].value.to_i
+          payload = {
+            :'r' => r,
+            :'s' => s,
+          }
+          EcdsaSignatureBlob.encode payload
+        end
+
+        def sign data
+          payload = {
+            :'ecdsa-sha2-[identifier]' => self.class::NAME,
+            :'ecdsa_signature_blob'    => ecdsa_signature_blob(data),
+          }
+          Signature.encode payload
+        end
+
+        def verify sign, data
+          payload = Signature.decode sign
+          ecdsa_signature_blob = EcdsaSignatureBlob.decode payload[:'ecdsa_signature_blob']
+          r = ecdsa_signature_blob[:'r']
+          s = ecdsa_signature_blob[:'s']
+          sign_asn1 = OpenSSL::ASN1::Sequence.new(
+            [
+              OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(r)),
+              OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(s)),
+            ]
+          )
+          sign_der = sign_asn1.to_der
+          hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
+          payload[:'ecdsa-sha2-[identifier]'] == self.class::NAME && @algorithm.dsa_verify_asn1(hash, sign_der)
+        end
+      end
+    end
+  end
+end
+
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521/public_key_blob'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521/ecdsa_signature_blob'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521/signature'

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ssh_dss/public_key_blob.rb

@@ -13,11 +13,11 @@ module HrrRbSsh
             include Codable
           end
           DEFINITION = [
-            [DataType::String, 'ssh-dss'],
-            [DataType::Mpint,  'p'],
-            [DataType::Mpint,  'q'],
-            [DataType::Mpint,  'g'],
-            [DataType::Mpint,  'y'],
+            [DataType::String, :'ssh-dss'],
+            [DataType::Mpint,  :'p'],
+            [DataType::Mpint,  :'q'],
+            [DataType::Mpint,  :'g'],
+            [DataType::Mpint,  :'y'],
           ]
         end
       end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ssh_dss/signature.rb

@@ -13,8 +13,8 @@ module HrrRbSsh
             include Codable
           end
           DEFINITION = [
-            [DataType::String, 'ssh-dss'],
-            [DataType::String, 'dss_signature_blob'],
+            [DataType::String, :'ssh-dss'],
+            [DataType::String, :'dss_signature_blob'],
           ]
         end
       end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ssh_dss.rb

@@ -33,11 +33,11 @@ MRl/p42OrQzL/chRPvRf
 
         def server_public_host_key
           payload = {
-            'ssh-dss' => 'ssh-dss',
-            'p'       => @dss.p.to_i,
-            'q'       => @dss.q.to_i,
-            'g'       => @dss.g.to_i,
-            'y'       => @dss.pub_key.to_i,
+            :'ssh-dss' => "ssh-dss",
+            :'p'       => @dss.p.to_i,
+            :'q'       => @dss.q.to_i,
+            :'g'       => @dss.g.to_i,
+            :'y'       => @dss.pub_key.to_i,
           }
           PublicKeyBlob.encode payload
         end
@@ -49,15 +49,15 @@ MRl/p42OrQzL/chRPvRf
           sign_r = sign_asn1.value[0].value.to_s(2).rjust(20, ["00"].pack("H"))
           sign_s = sign_asn1.value[1].value.to_s(2).rjust(20, ["00"].pack("H"))
           payload = {
-            'ssh-dss'            => 'ssh-dss',
-            'dss_signature_blob' => (sign_r + sign_s),
+            :'ssh-dss'            => "ssh-dss",
+            :'dss_signature_blob' => (sign_r + sign_s),
           }
           Signature.encode payload
         end
 
         def verify sign, data
           payload = Signature.decode sign
-          dss_signature_blob = payload['dss_signature_blob']
+          dss_signature_blob = payload[:'dss_signature_blob']
           sign_r = dss_signature_blob[ 0, 20]
           sign_s = dss_signature_blob[20, 20]
           sign_asn1 = OpenSSL::ASN1::Sequence.new(
@@ -68,7 +68,7 @@ MRl/p42OrQzL/chRPvRf
           )
           sign_der = sign_asn1.to_der
           hash = OpenSSL::Digest.digest(self.class::DIGEST, data)
-          payload['ssh-dss'] == 'ssh-dss' && @dss.sysverify(hash, sign_der)
+          payload[:'ssh-dss'] == "ssh-dss" && @dss.sysverify(hash, sign_der)
         end
       end
     end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ssh_rsa/public_key_blob.rb

@@ -13,9 +13,9 @@ module HrrRbSsh
             include Codable
           end
           DEFINITION = [
-            [DataType::String, 'ssh-rsa'],
-            [DataType::Mpint,  'e'],
-            [DataType::Mpint,  'n'],
+            [DataType::String, :'ssh-rsa'],
+            [DataType::Mpint,  :'e'],
+            [DataType::Mpint,  :'n'],
           ]
         end
       end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ssh_rsa/signature.rb

@@ -13,8 +13,8 @@ module HrrRbSsh
             include Codable
           end
           DEFINITION = [
-            [DataType::String, 'ssh-rsa'],
-            [DataType::String, 'rsa_signature_blob'],
+            [DataType::String, :'ssh-rsa'],
+            [DataType::String, :'rsa_signature_blob'],
           ]
         end
       end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm/ssh_rsa.rb

@@ -47,24 +47,24 @@ vzTNM3SFzgt3bHkdEtDLc64aoBX+dHOot6u71XLZrshnHPtiZ0C/ZA==
 
         def server_public_host_key
           payload = {
-            'ssh-rsa' => 'ssh-rsa',
-            'e'       => @rsa.e.to_i,
-            'n'       => @rsa.n.to_i,
+            :'ssh-rsa' => "ssh-rsa",
+            :'e'       => @rsa.e.to_i,
+            :'n'       => @rsa.n.to_i,
           }
           PublicKeyBlob.encode payload
         end
 
         def sign data
           payload = {
-            'ssh-rsa'            => 'ssh-rsa',
-            'rsa_signature_blob' => @rsa.sign(self.class::DIGEST, data),
+            :'ssh-rsa'            => "ssh-rsa",
+            :'rsa_signature_blob' => @rsa.sign(self.class::DIGEST, data),
           }
           Signature.encode payload
         end
 
         def verify sign, data
           payload = Signature.decode sign
-          payload['ssh-rsa'] == 'ssh-rsa' && @rsa.verify(self.class::DIGEST, payload['rsa_signature_blob'], data)
+          payload[:'ssh-rsa'] == "ssh-rsa" && @rsa.verify(self.class::DIGEST, payload[:'rsa_signature_blob'], data)
         end
       end
     end

data/lib/hrr_rb_ssh/transport/server_host_key_algorithm.rb

@@ -16,3 +16,6 @@ end
 
 require 'hrr_rb_ssh/transport/server_host_key_algorithm/ssh_dss'
 require 'hrr_rb_ssh/transport/server_host_key_algorithm/ssh_rsa'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp256'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp384'
+require 'hrr_rb_ssh/transport/server_host_key_algorithm/ecdsa_sha2_nistp521'

data/lib/hrr_rb_ssh/transport.rb

@@ -238,7 +238,7 @@ module HrrRbSsh
 
     def verify_service_request
       service_request_message = receive_service_request
-      service_name = service_request_message['service name']
+      service_name = service_request_message[:'service name']
       if @acceptable_services.include? service_name
         send_service_accept service_name
       else
@@ -333,10 +333,10 @@ module HrrRbSsh
 
     def send_disconnect
       message = {
-        'message number' => HrrRbSsh::Message::SSH_MSG_DISCONNECT::VALUE,
-        "reason code"    => HrrRbSsh::Message::SSH_MSG_DISCONNECT::ReasonCode::SSH_DISCONNECT_BY_APPLICATION,
-        "description"    => "disconnected by user",
-        "language tag"   => ""
+        :'message number' => HrrRbSsh::Message::SSH_MSG_DISCONNECT::VALUE,
+        :'reason code'    => HrrRbSsh::Message::SSH_MSG_DISCONNECT::ReasonCode::SSH_DISCONNECT_BY_APPLICATION,
+        :'description'    => "disconnected by user",
+        :'language tag'   => ""
       }
       payload = HrrRbSsh::Message::SSH_MSG_DISCONNECT.encode message
       send payload
@@ -344,20 +344,20 @@ module HrrRbSsh
 
     def send_kexinit
       message = {
-        'message number'                          => HrrRbSsh::Message::SSH_MSG_KEXINIT::VALUE,
-        'cookie (random byte)'                    => lambda { rand(0x01_00) },
-        'kex_algorithms'                          => @local_kex_algorithms,
-        'server_host_key_algorithms'              => @local_server_host_key_algorithms,
-        'encryption_algorithms_client_to_server'  => @local_encryption_algorithms_client_to_server,
-        'encryption_algorithms_server_to_client'  => @local_encryption_algorithms_server_to_client,
-        'mac_algorithms_client_to_server'         => @local_mac_algorithms_client_to_server,
-        'mac_algorithms_server_to_client'         => @local_mac_algorithms_server_to_client,
-        'compression_algorithms_client_to_server' => @local_compression_algorithms_client_to_server,
-        'compression_algorithms_server_to_client' => @local_compression_algorithms_server_to_client,
-        'languages_client_to_server'              => [],
-        'languages_server_to_client'              => [],
-        'first_kex_packet_follows'                => false,
-        '0 (reserved for future extension)'       => 0,
+        :'message number'                          => HrrRbSsh::Message::SSH_MSG_KEXINIT::VALUE,
+        :'cookie (random byte)'                    => lambda { rand(0x01_00) },
+        :'kex_algorithms'                          => @local_kex_algorithms,
+        :'server_host_key_algorithms'              => @local_server_host_key_algorithms,
+        :'encryption_algorithms_client_to_server'  => @local_encryption_algorithms_client_to_server,
+        :'encryption_algorithms_server_to_client'  => @local_encryption_algorithms_server_to_client,
+        :'mac_algorithms_client_to_server'         => @local_mac_algorithms_client_to_server,
+        :'mac_algorithms_server_to_client'         => @local_mac_algorithms_server_to_client,
+        :'compression_algorithms_client_to_server' => @local_compression_algorithms_client_to_server,
+        :'compression_algorithms_server_to_client' => @local_compression_algorithms_server_to_client,
+        :'languages_client_to_server'              => [],
+        :'languages_server_to_client'              => [],
+        :'first_kex_packet_follows'                => false,
+        :'0 (reserved for future extension)'       => 0,
       }
       payload = HrrRbSsh::Message::SSH_MSG_KEXINIT.encode message
       send payload
@@ -383,7 +383,7 @@ module HrrRbSsh
 
     def send_newkeys
         message = {
-          'message number' => HrrRbSsh::Message::SSH_MSG_NEWKEYS::VALUE,
+          :'message number' => HrrRbSsh::Message::SSH_MSG_NEWKEYS::VALUE,
         }
         payload = HrrRbSsh::Message::SSH_MSG_NEWKEYS.encode message
         send payload
@@ -402,22 +402,22 @@ module HrrRbSsh
 
     def send_service_accept service_name
         message = {
-          'message number' => HrrRbSsh::Message::SSH_MSG_SERVICE_ACCEPT::VALUE,
-          'service name'   => service_name,
+          :'message number' => HrrRbSsh::Message::SSH_MSG_SERVICE_ACCEPT::VALUE,
+          :'service name'   => service_name,
         }
         payload = HrrRbSsh::Message::SSH_MSG_SERVICE_ACCEPT.encode message
         send payload
     end
 
     def update_remote_algorithms message
-      @remote_kex_algorithms                          = message['kex_algorithms']
-      @remote_server_host_key_algorithms              = message['server_host_key_algorithms']
-      @remote_encryption_algorithms_client_to_server  = message['encryption_algorithms_client_to_server']
-      @remote_encryption_algorithms_server_to_client  = message['encryption_algorithms_server_to_client']
-      @remote_mac_algorithms_client_to_server         = message['mac_algorithms_client_to_server']
-      @remote_mac_algorithms_server_to_client         = message['mac_algorithms_server_to_client']
-      @remote_compression_algorithms_client_to_server = message['compression_algorithms_client_to_server']
-      @remote_compression_algorithms_server_to_client = message['compression_algorithms_server_to_client']
+      @remote_kex_algorithms                          = message[:'kex_algorithms']
+      @remote_server_host_key_algorithms              = message[:'server_host_key_algorithms']
+      @remote_encryption_algorithms_client_to_server  = message[:'encryption_algorithms_client_to_server']
+      @remote_encryption_algorithms_server_to_client  = message[:'encryption_algorithms_server_to_client']
+      @remote_mac_algorithms_client_to_server         = message[:'mac_algorithms_client_to_server']
+      @remote_mac_algorithms_server_to_client         = message[:'mac_algorithms_server_to_client']
+      @remote_compression_algorithms_client_to_server = message[:'compression_algorithms_client_to_server']
+      @remote_compression_algorithms_server_to_client = message[:'compression_algorithms_server_to_client']
     end
 
     def update_kex_and_server_host_key_algorithms

data/lib/hrr_rb_ssh/version.rb

@@ -2,5 +2,5 @@
 # vim: et ts=2 sw=2
 
 module HrrRbSsh
-  VERSION = "0.1.4"
+  VERSION = "0.1.5"
 end