RepoMirrors
/
openssh
mirror of git://anongit.mindrot.org/openssh.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

upstream: test -Oprint-pubkey 

OpenBSD-Regress-ID: 3d51afb6d1f287975fb6fddd7a2c00a3bc5094e0
This commit is contained in:
djm@openbsd.org 2021-08-11 08:55:04 +00:00 committed by Damien Miller
parent b9f4635ea5
commit 2a2cd00783
1 changed files with 12 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
regress/sshsig.sh
View File

@ -1,4 +1,4 @@
# $OpenBSD: sshsig.sh,v 1.6 2021/07/23 03:54:55 djm Exp $ # $OpenBSD: sshsig.sh,v 1.7 2021/08/11 08:55:04 djm Exp $
# Placed in the Public Domain. # Placed in the Public Domain.
tid="sshsig" tid="sshsig"
@ -64,6 +64,17 @@ for t in $SIGNKEYS; do
< $DATA >/dev/null 2>&1 || \ < $DATA >/dev/null 2>&1 || \
fail "failed signature for $t key w/ limited namespace" fail "failed signature for $t key w/ limited namespace"
(printf "$sig_principal namespaces=\"$sig_namespace,whatever\" ";
cat $pubkey) > $OBJ/allowed_signers
${SSHKEYGEN} -q -Y verify -s $sigfile -n $sig_namespace \
-I $sig_principal -f $OBJ/allowed_signers \
-O print-pubkey \
< $DATA | cut -d' ' -f1-2 > ${OBJ}/${keybase}-fromsig.pub || \
fail "failed signature for $t key w/ print-pubkey"
cut -d' ' -f1-2 ${OBJ}/${keybase}.pub > ${OBJ}/${keybase}-strip.pub
diff -r ${OBJ}/${keybase}-strip.pub ${OBJ}/${keybase}-fromsig.pub || \
fail "print-pubkey differs from signature key"
# Invalid option # Invalid option
(printf "$sig_principal octopus " ; cat $pubkey) > $OBJ/allowed_signers (printf "$sig_principal octopus " ; cat $pubkey) > $OBJ/allowed_signers
${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \ ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \