Ana Sayfa Keşfet Yardım
Giriş Yap
trn
/
j-hpn-ssh
şunun yansıması git://github.com/johnsonjh/j-hpn-ssh
İzle 1
Yıldızla 1
Çatalla 0
Dosyalar
Ağaç: e677f121eb
Dallar Biçim İmleri
j-hpn-ssh
/
regress
/
keytype.sh

keytype.sh 2.4 KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. #	$OpenBSD: keytype.sh,v 1.10 2019/12/16 02:39:05 djm Exp $
    2. 

  2. #	Placed in the Public Domain.
    3. 

  3. 

  4. tid="login with different key types"
    5. 

  5. 

  6. cp $OBJ/sshd_proxy $OBJ/sshd_proxy_bak
    7. 

  7. cp $OBJ/ssh_proxy $OBJ/ssh_proxy_bak
    8. 

  8. 

  9. # Construct list of key types based on what the built binaries support.
    10. 

  10. ktypes=""
    11. 

  11. for i in ${SSH_KEYTYPES}; do
    12. 

  12. 	case "$i" in
    13. 

  13. 		ssh-dss) ktypes="$ktypes dsa-1024" ;;
    14. 

  14. 		ssh-rsa) ktypes="$ktypes rsa-2048 rsa-3072" ;;
    15. 

  15. 		ssh-ed25519) ktypes="$ktypes ed25519-512" ;;
    16. 

  16. 		ecdsa-sha2-nistp256) ktypes="$ktypes ecdsa-256" ;;
    17. 

  17. 		ecdsa-sha2-nistp384) ktypes="$ktypes ecdsa-384" ;;
    18. 

  18. 		ecdsa-sha2-nistp521) ktypes="$ktypes ecdsa-521" ;;
    19. 

  19. 		sk-ssh-ed25519*) ktypes="$ktypes ed25519-sk" ;;
    20. 

  20. 		sk-ecdsa-sha2-nistp256*) ktypes="$ktypes ecdsa-sk" ;;
    21. 

  21. 	esac
    22. 

  22. done
    23. 

  23. 

  24. for kt in $ktypes; do
    25. 

  25. 	rm -f $OBJ/key.$kt
    26. 

  26. 	xbits=$(echo ${kt} | awk -F- '{print $2}')
    27. 

  27. 	xtype=$(echo ${kt} | awk -F- '{print $1}')
    28. 

  28. 	case "$kt" in
    29. 

  29. 		*sk)
    30. 

  30. 			type="$kt"
    31. 

  31. 			bits="n/a"
    32. 

  32. 			bits_arg=""
    33. 

  33. 			;;
    34. 

  34. 		*)
    35. 

  35. 			type=$xtype
    36. 

  36. 			bits=$xbits
    37. 

  37. 			bits_arg="-b $bits"
    38. 

  38. 			;;
    39. 

  39. 	esac
    40. 

  40. 	verbose "keygen $type, $bits bits"
    41. 

  41. 	${SSHKEYGEN} $bits_arg -q -N '' -t $type -f $OBJ/key.$kt ||
    42. 

  42. 		fail "ssh-keygen for type $type, $bits bits failed"
    43. 

  43. done
    44. 

  44. 

  45. kname_to_ktype()
    46. 

  46. {
    47. 

  47. 	case $1 in
    48. 

  48. 		dsa-1024) echo ssh-dss ;;
    49. 

  49. 		ecdsa-256) echo ecdsa-sha2-nistp256 ;;
    50. 

  50. 		ecdsa-384) echo ecdsa-sha2-nistp384 ;;
    51. 

  51. 		ecdsa-521) echo ecdsa-sha2-nistp521 ;;
    52. 

  52. 		ed25519-512) echo ssh-ed25519 ;;
    53. 

  53. 		rsa-*) echo rsa-sha2-512,rsa-sha2-256,ssh-rsa ;;
    54. 

  54. 		ed25519-sk) echo sk-ssh-ed25519@openssh.com ;;
    55. 

  55. 		ecdsa-sk) echo sk-ecdsa-sha2-nistp256@openssh.com ;;
    56. 

  56. 	esac
    57. 

  57. }
    58. 

  58. 

  59. tries="1 2 3"
    60. 

  60. for ut in $ktypes; do
    61. 

  61. 	user_type=$(kname_to_ktype "$ut")
    62. 

  62. 	htypes="$ut"
    63. 

  63. 	#htypes=$ktypes
    64. 

  64. 	for ht in $htypes; do
    65. 

  65. 		host_type=$(kname_to_ktype "$ht")
    66. 

  66. 		trace "ssh connect, userkey $ut, hostkey $ht"
    67. 

  67. 		(
    68. 

  68. 			grep -v HostKey $OBJ/sshd_proxy_bak
    69. 

  69. 			echo HostKey $OBJ/key.$ht
    70. 

  70. 			echo PubkeyAcceptedKeyAlgorithms $user_type
    71. 

  71. 			echo HostKeyAlgorithms $host_type
    72. 

  72. 		) > $OBJ/sshd_proxy
    73. 

  73. 		(
    74. 

  74. 			grep -v IdentityFile $OBJ/ssh_proxy_bak
    75. 

  75. 			echo IdentityFile $OBJ/key.$ut
    76. 

  76. 			echo PubkeyAcceptedKeyAlgorithms $user_type
    77. 

  77. 			echo HostKeyAlgorithms $host_type
    78. 

  78. 		) > $OBJ/ssh_proxy
    79. 

  79. 		(
    80. 

  80. 			printf 'localhost-with-alias,127.0.0.1,::1 '
    81. 

  81. 			cat $OBJ/key.$ht.pub
    82. 

  82. 		) > $OBJ/known_hosts
    83. 

  83. 		cat $OBJ/key.$ut.pub > $OBJ/authorized_keys_$USER
    84. 

  84. 		for i in $tries; do
    85. 

  85. 			verbose "userkey $ut, hostkey ${ht}"
    86. 

  86. 			${SSH} -F $OBJ/ssh_proxy 999.999.999.999 true
    87. 

  87. 			if [ $? -ne 0 ]; then
    88. 

  88. 				fail "ssh userkey $ut, hostkey $ht failed"
    89. 

  89. 			fi
    90. 

  90. 		done
    91. 

  91. 	done
    92. 

  92. done
    93. 

  93.