HomePhabricator

tests/pkd: repro rsa-sha2-{256,512} negotiation bug

Authored by simonsj on Mon, Feb 4, 11:39 PM.

Description

tests/pkd: repro rsa-sha2-{256,512} negotiation bug

Add four passes to the pkd tests to exercise codepaths where an
OpenSSH client requests these HostKeyAlgorithms combinations:

  • rsa-sha2-256
  • rsa-sha2-512
  • rsa-sha2-256,rsa-sha2-512
  • rsa-sha2-512,rsa-sha2-256

The tests demonstrate that the third combination currently fails:
libssh ends up choosing rsa-sha2-512 instead of rsa-sha2-256,
and the initial exchange fails on the client side citing a signature
failure.

Signed-off-by: Jon Simons <jon@jonsimons.org>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>

Details

Committed
asnThu, Feb 7, 1:54 PM
Parents
rLIBSSH128015bb1795: pki_container_openssh: Add padding to be compatible with OpenSSH
Branches
Unknown
Tags
Unknown