mirror of
https://git.libssh.org/projects/libssh.git
synced 2025-11-27 13:21:11 +03:00
a3a13eb3a8
Solving issue #110. The original work is at !231 Some changes were needed because the newly added features in master through time Signed-off-by: Mohammad Shehar Yaar Tausif <sheharyaar48@gmail.com> Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>
181 lines
5.6 KiB
C
181 lines
5.6 KiB
C
/*
|
|
* pkd_keyutil.c -- pkd test key utilities
|
|
*
|
|
* (c) 2014 Jon Simons
|
|
*/
|
|
|
|
#include "config.h"
|
|
|
|
#include <setjmp.h> // for cmocka
|
|
#include <stdarg.h> // for cmocka
|
|
#include <unistd.h> // for cmocka
|
|
#include <cmocka.h>
|
|
|
|
#include <stdlib.h>
|
|
#include <stdio.h>
|
|
#include <string.h>
|
|
#include <unistd.h>
|
|
|
|
#include "torture.h" // for ssh_fips_mode()
|
|
|
|
#include "pkd_client.h"
|
|
#include "pkd_keyutil.h"
|
|
#include "pkd_util.h"
|
|
|
|
void setup_rsa_key(void) {
|
|
int rc = 0;
|
|
if (access(LIBSSH_RSA_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t rsa -q -N \"\" -f "
|
|
LIBSSH_RSA_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
|
|
void setup_ed25519_key(void) {
|
|
int rc = 0;
|
|
if (access(LIBSSH_ED25519_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ed25519 -q -N \"\" -f "
|
|
LIBSSH_ED25519_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
|
|
void setup_ecdsa_keys(void) {
|
|
int rc = 0;
|
|
|
|
if (access(LIBSSH_ECDSA_256_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ecdsa -b 256 -q -N \"\" -f "
|
|
LIBSSH_ECDSA_256_TESTKEY);
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
if (access(LIBSSH_ECDSA_384_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ecdsa -b 384 -q -N \"\" -f "
|
|
LIBSSH_ECDSA_384_TESTKEY);
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
if (access(LIBSSH_ECDSA_521_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ecdsa -b 521 -q -N \"\" -f "
|
|
LIBSSH_ECDSA_521_TESTKEY);
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
}
|
|
|
|
void cleanup_rsa_key(void) {
|
|
cleanup_key(LIBSSH_RSA_TESTKEY);
|
|
}
|
|
|
|
void cleanup_ed25519_key(void) {
|
|
cleanup_key(LIBSSH_ED25519_TESTKEY);
|
|
}
|
|
|
|
void cleanup_ecdsa_keys(void) {
|
|
cleanup_key(LIBSSH_ECDSA_256_TESTKEY);
|
|
cleanup_key(LIBSSH_ECDSA_384_TESTKEY);
|
|
cleanup_key(LIBSSH_ECDSA_521_TESTKEY);
|
|
}
|
|
|
|
void setup_openssh_client_keys(void) {
|
|
int rc = 0;
|
|
|
|
if (access(OPENSSH_CA_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t rsa -q -N \"\" -f "
|
|
OPENSSH_CA_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_RSA_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t rsa -q -N \"\" -f "
|
|
OPENSSH_RSA_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_RSA_TESTKEY "-cert.pub", F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -I ident -s " OPENSSH_CA_TESTKEY " "
|
|
OPENSSH_RSA_TESTKEY ".pub 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_RSA_TESTKEY "-sha256-cert.pub", F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -I ident -t rsa-sha2-256 "
|
|
"-s " OPENSSH_CA_TESTKEY " "
|
|
OPENSSH_RSA_TESTKEY ".pub 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ECDSA256_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ecdsa -b 256 -q -N \"\" -f "
|
|
OPENSSH_ECDSA256_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ECDSA256_TESTKEY "-cert.pub", F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -I ident -s " OPENSSH_CA_TESTKEY " "
|
|
OPENSSH_ECDSA256_TESTKEY ".pub 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ECDSA384_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ecdsa -b 384 -q -N \"\" -f "
|
|
OPENSSH_ECDSA384_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ECDSA384_TESTKEY "-cert.pub", F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -I ident -s " OPENSSH_CA_TESTKEY " "
|
|
OPENSSH_ECDSA384_TESTKEY ".pub 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ECDSA521_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ecdsa -b 521 -q -N \"\" -f "
|
|
OPENSSH_ECDSA521_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ECDSA521_TESTKEY "-cert.pub", F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -I ident -s " OPENSSH_CA_TESTKEY " "
|
|
OPENSSH_ECDSA521_TESTKEY ".pub 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (!ssh_fips_mode()) {
|
|
|
|
if (access(OPENSSH_ED25519_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -t ed25519 -q -N \"\" -f "
|
|
OPENSSH_ED25519_TESTKEY);
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
|
|
if (access(OPENSSH_ED25519_TESTKEY "-cert.pub", F_OK) != 0) {
|
|
rc = system_checked(OPENSSH_KEYGEN " -I ident -s " OPENSSH_CA_TESTKEY " "
|
|
OPENSSH_ED25519_TESTKEY ".pub 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
}
|
|
|
|
void cleanup_openssh_client_keys(void) {
|
|
cleanup_key(OPENSSH_CA_TESTKEY);
|
|
cleanup_key(OPENSSH_RSA_TESTKEY);
|
|
cleanup_file(OPENSSH_RSA_TESTKEY "-sha256-cert.pub");
|
|
cleanup_key(OPENSSH_ECDSA256_TESTKEY);
|
|
cleanup_key(OPENSSH_ECDSA384_TESTKEY);
|
|
cleanup_key(OPENSSH_ECDSA521_TESTKEY);
|
|
if (!ssh_fips_mode()) {
|
|
cleanup_key(OPENSSH_ED25519_TESTKEY);
|
|
}
|
|
}
|
|
|
|
void setup_dropbear_client_rsa_key(void) {
|
|
int rc = 0;
|
|
if (access(DROPBEAR_RSA_TESTKEY, F_OK) != 0) {
|
|
rc = system_checked(DROPBEAR_KEYGEN " -t rsa -f "
|
|
DROPBEAR_RSA_TESTKEY " 1>/dev/null 2>/dev/null");
|
|
}
|
|
assert_int_equal(rc, 0);
|
|
}
|
|
|
|
void cleanup_dropbear_client_rsa_key(void) {
|
|
unlink(DROPBEAR_RSA_TESTKEY);
|
|
}
|