1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
/*
* pkd_client.h -- macros for generating client-specific command
* invocations for use with pkd testing
*
* (c) 2014, 2018 Jon Simons <jon@jonsimons.org>
*/
#ifndef __PKD_CLIENT_H__
#define __PKD_CLIENT_H__
#include "config.h"
#include "tests_config.h"
/* OpenSSH */
#define OPENSSH_BINARY SSH_EXECUTABLE
#define OPENSSH_KEYGEN "ssh-keygen"
#define OPENSSH_HOSTKEY_ALGOS \
"-o HostKeyAlgorithms=" \
OPENSSH_KEYS
#define OPENSSH_PKACCEPTED_TYPES \
"-o PubkeyAcceptedKeyTypes=" \
OPENSSH_KEYS
#ifdef HAVE_SK_DUMMY
#define SECURITY_KEY_PROVIDER \
"-oSecurityKeyProvider=\"" SK_DUMMY_LIBRARY_PATH "\" "
#else
#define SECURITY_KEY_PROVIDER ""
#endif
/* GlobalKnownHostsFile is just a place holder and won't actually set the hostkey */
#define OPENSSH_CMD_START(hostkey_algos) \
OPENSSH_BINARY " " \
"-o UserKnownHostsFile=/dev/null " \
"-o StrictHostKeyChecking=no " \
SECURITY_KEY_PROVIDER \
"-o GlobalKnownHostsFile=%s " \
"-F /dev/null " \
hostkey_algos " " \
OPENSSH_PKACCEPTED_TYPES " " \
"-i " CLIENT_ID_FILE " " \
"1> %s.out " \
"2> %s.err " \
"-vvv "
#define OPENSSH_CMD_END "-p 1234 localhost ls"
#define OPENSSH_CMD \
OPENSSH_CMD_START(OPENSSH_HOSTKEY_ALGOS) OPENSSH_CMD_END
#define OPENSSH_KEX_CMD(kexalgo) \
OPENSSH_CMD_START(OPENSSH_HOSTKEY_ALGOS) "-o KexAlgorithms=" kexalgo " " OPENSSH_CMD_END
#define OPENSSH_CIPHER_CMD(ciphers) \
OPENSSH_CMD_START(OPENSSH_HOSTKEY_ALGOS) "-c " ciphers " " OPENSSH_CMD_END
#define OPENSSH_MAC_CMD(macs) \
OPENSSH_CMD_START(OPENSSH_HOSTKEY_ALGOS) "-c aes128-ctr,aes192-ctr,aes256-ctr,aes256-cbc,aes192-cbc,aes128-cbc -o MACs=" macs " " OPENSSH_CMD_END
#define OPENSSH_HOSTKEY_CMD(hostkeyalgo) \
OPENSSH_CMD_START("-o HostKeyAlgorithms=" hostkeyalgo " ") OPENSSH_CMD_END
#define OPENSSH_CERT_CMD \
OPENSSH_CMD_START(OPENSSH_HOSTKEY_ALGOS) "-o CertificateFile=" CLIENT_ID_FILE "-cert.pub " OPENSSH_CMD_END
#define OPENSSH_SHA256_CERT_CMD \
OPENSSH_CMD_START(OPENSSH_HOSTKEY_ALGOS) "-o CertificateFile=" CLIENT_ID_FILE "-sha256-cert.pub " OPENSSH_CMD_END
/* Dropbear */
#define DROPBEAR_BINARY DROPBEAR_EXECUTABLE
#define DROPBEAR_KEYGEN "dropbearkey"
/* HostKeyAlias is just a place holder and won't actually set the hostkey */
#define DROPBEAR_CMD_START \
DROPBEAR_BINARY " " \
"-y -y " \
"-o HostKeyAlias=%s " \
"-i " CLIENT_ID_FILE " " \
"1> %s.out " \
"2> %s.err "
#define DROPBEAR_CMD_END "-p 1234 localhost ls"
#define DROPBEAR_CMD \
DROPBEAR_CMD_START DROPBEAR_CMD_END
#if 0 /* dbclient does not expose control over kex algo */
#define DROPBEAR_KEX_CMD(kexalgo) \
DROPBEAR_CMD
#endif
#define DROPBEAR_CIPHER_CMD(ciphers) \
DROPBEAR_CMD_START "-c " ciphers " " DROPBEAR_CMD_END
#define DROPBEAR_MAC_CMD(macs) \
DROPBEAR_CMD_START "-m " macs " " DROPBEAR_CMD_END
/* PuTTY */
#define PUTTY_BINARY PUTTY_EXECUTABLE
#define PUTTY_KEYGEN PUTTYGEN_EXECUTABLE
#define PUTTY_CMD_START \
PUTTY_BINARY " " \
"-batch -ssh -P 1234 " \
"-i " CLIENT_ID_FILE " " \
"-hostkey $(" OPENSSH_KEYGEN \
" -l -f %s.pub -E md5 | awk '{print $2}' | cut -d: -f2-) " \
"1> %s.out 2> %s.err "
#define PUTTY_CMD_END " localhost ls"
#define PUTTY_CMD \
PUTTY_CMD_START PUTTY_CMD_END
#endif /* __PKD_CLIENT_H__ */
|
