File Manager

003 File Manager

Current Path: /usr/src/crypto/openssh/regress

usr / src / crypto / openssh / regress /

📁 ..
📄 Makefile(6.8 KB)
📄 README.regress(3.91 KB)
📄 addrmatch.sh(2.06 KB)
📄 agent-getpeereid.sh(1.13 KB)
📄 agent-pkcs11.sh(1.86 KB)
📄 agent-ptrace.sh(1.31 KB)
📄 agent-timeout.sh(928 B)
📄 agent.sh(2.96 KB)
📄 allow-deny-users.sh(1.45 KB)
📄 authinfo.sh(574 B)
📄 banner.sh(1.24 KB)
📄 broken-pipe.sh(281 B)
📄 brokenkeys.sh(462 B)
📄 cert-file.sh(5.25 KB)
📄 cert-hostkey.sh(10.34 KB)
📄 cert-userkey.sh(11.95 KB)
📄 cfginclude.sh(4.39 KB)
📄 cfgmatch.sh(3.5 KB)
📄 cfgmatchlisten.sh(6.34 KB)
📄 cfgparse.sh(2.17 KB)
📄 check-perm.c(4.33 KB)
📄 cipher-speed.sh(799 B)
📄 conch-ciphers.sh(796 B)
📄 connect-privsep.sh(1.02 KB)
📄 connect-uri.sh(816 B)
📄 connect.sh(222 B)
📄 dhgex.sh(1.47 KB)
📄 dsa_ssh2.prv(863 B)
📄 dsa_ssh2.pub(732 B)
📄 dynamic-forward.sh(1.48 KB)
📄 envpass.sh(1.54 KB)
📄 exit-status.sh(562 B)
📄 forcecommand.sh(1.1 KB)
📄 forward-control.sh(7.71 KB)
📄 forwarding.sh(4.22 KB)
📄 host-expand.sh(384 B)
📄 hostkey-agent.sh(1.6 KB)
📄 hostkey-rotate.sh(3.86 KB)
📄 integrity.sh(2.33 KB)
📄 kextype.sh(587 B)
📄 key-options.sh(3.22 KB)
📄 keygen-change.sh(581 B)
📄 keygen-convert.sh(1.08 KB)
📄 keygen-knownhosts.sh(6.42 KB)
📄 keygen-moduli.sh(702 B)
📄 keys-command.sh(2.39 KB)
📄 keyscan.sh(403 B)
📄 keytype.sh(1.84 KB)
📄 krl.sh(6.45 KB)
📄 limit-keytype.sh(3.65 KB)
📄 localcommand.sh(351 B)
📄 login-timeout.sh(588 B)
📁 misc
📄 mkdtemp.c(1.53 KB)
📄 modpipe.c(3.81 KB)
📄 moduli.in(1.59 KB)
📄 multiplex.sh(7.09 KB)
📄 multipubkey.sh(2.31 KB)
📄 netcat.c(39.92 KB)
📄 portnum.sh(624 B)
📄 principals-command.sh(5.48 KB)
📄 proto-mismatch.sh(368 B)
📄 proto-version.sh(527 B)
📄 proxy-connect.sh(624 B)
📄 putty-ciphers.sh(678 B)
📄 putty-kex.sh(553 B)
📄 putty-transfer.sh(1021 B)
📄 reconfigure.sh(855 B)
📄 reexec.sh(878 B)
📄 rekey.sh(4.12 KB)
📄 rsa_openssh.prv(883 B)
📄 rsa_openssh.pub(213 B)
📄 rsa_ssh2.prv(924 B)
📄 scp-ssh-wrapper.sh(914 B)
📄 scp-uri.sh(2.01 KB)
📄 scp.sh(3.5 KB)
📄 setuid-allowed.c(1.45 KB)
📄 sftp-badcmds.sh(2.22 KB)
📄 sftp-batch.sh(1.16 KB)
📄 sftp-chroot.sh(845 B)
📄 sftp-cmds.sh(7.29 KB)
📄 sftp-glob.sh(2.47 KB)
📄 sftp-perm.sh(5.23 KB)
📄 sftp-uri.sh(1.59 KB)
📄 sftp.sh(737 B)
📄 ssh-com-client.sh(3.02 KB)
📄 ssh-com-keygen.sh(1.38 KB)
📄 ssh-com-sftp.sh(1.19 KB)
📄 ssh-com.sh(2.71 KB)
📄 ssh2putty.sh(693 B)
📄 sshcfgparse.sh(3.8 KB)
📄 sshd-log-wrapper.sh(285 B)
📄 stderr-after-eof.sh(603 B)
📄 stderr-data.sh(709 B)
📄 t11.ok(51 B)
📄 t4.ok(52 B)
📄 t5.ok(66 B)
📄 test-exec.sh(13.05 KB)
📄 transfer.sh(583 B)
📄 try-ciphers.sh(715 B)
📁 unittests
📄 valgrind-unit.sh(610 B)
📄 yes-head.sh(401 B)

Editing: integrity.sh

#	$OpenBSD: integrity.sh,v 1.23 2017/04/30 23:34:55 djm Exp $
#	Placed in the Public Domain.

tid="integrity"
cp $OBJ/sshd_proxy $OBJ/sshd_proxy_bak

# start at byte 2900 (i.e. after kex) and corrupt at different offsets
tries=10
startoffset=2900
macs=`${SSH} -Q mac`
# The following are not MACs, but ciphers with integrated integrity. They are
# handled specially below.
macs="$macs `${SSH} -Q cipher-auth`"

# avoid DH group exchange as the extra traffic makes it harder to get the
# offset into the stream right.
echo "KexAlgorithms diffie-hellman-group14-sha1,diffie-hellman-group1-sha1" \
	>> $OBJ/ssh_proxy

# sshd-command for proxy (see test-exec.sh)
cmd="$SUDO sh ${SRC}/sshd-log-wrapper.sh ${TEST_SSHD_LOGFILE} ${SSHD} -i -f $OBJ/sshd_proxy"

for m in $macs; do
	trace "test $tid: mac $m"
	elen=0
	epad=0
	emac=0
	etmo=0
	ecnt=0
	skip=0
	for off in `jot $tries $startoffset`; do
		skip=`expr $skip - 1`
		if [ $skip -gt 0 ]; then
			# avoid modifying the high bytes of the length
			continue
		fi
		cp $OBJ/sshd_proxy_bak $OBJ/sshd_proxy
		# modify output from sshd at offset $off
		pxy="proxycommand=$cmd | $OBJ/modpipe -wm xor:$off:1"
		if ${SSH} -Q cipher-auth | grep "^${m}\$" >/dev/null 2>&1 ; then
			echo "Ciphers=$m" >> $OBJ/sshd_proxy
			macopt="-c $m"
		else
			echo "Ciphers=aes128-ctr" >> $OBJ/sshd_proxy
			echo "MACs=$m" >> $OBJ/sshd_proxy
			macopt="-m $m -c aes128-ctr"
		fi
		verbose "test $tid: $m @$off"
		${SSH} $macopt -F $OBJ/ssh_proxy -o "$pxy" \
		    -oServerAliveInterval=1 -oServerAliveCountMax=30 \
		    999.999.999.999 'printf "%4096s" " "' >/dev/null
		if [ $? -eq 0 ]; then
			fail "ssh -m $m succeeds with bit-flip at $off"
		fi
		ecnt=`expr $ecnt + 1`
		out=$(egrep -v "^debug" $TEST_SSH_LOGFILE | tail -2 | \
		     tr -s '\r\n' '.')
		case "$out" in
		Bad?packet*)	elen=`expr $elen + 1`; skip=3;;
		Corrupted?MAC* | *message?authentication?code?incorrect*)
				emac=`expr $emac + 1`; skip=0;;
		padding*)	epad=`expr $epad + 1`; skip=0;;
		*Timeout,?server*)
				etmo=`expr $etmo + 1`; skip=0;;
		*)		fail "unexpected error mac $m at $off: $out";;
		esac
	done
	verbose "test $tid: $ecnt errors: mac $emac padding $epad length $elen timeout $etmo"
	if [ $emac -eq 0 ]; then
		fail "$m: no mac errors"
	fi
	expect=`expr $ecnt - $epad - $elen - $etmo`
	if [ $emac -ne $expect ]; then
		fail "$m: expected $expect mac errors, got $emac"
	fi
done

003 File Manager

Editing: integrity.sh

Upload File

Create Folder