4 files changed, 12 insertions, 141 deletions
diff --git a/regress/unittests/sshkey/mktestdata.sh b/regress/unittests/sshkey/mktestdata.sh
index e11100145..8047bc62f 100755
--- a/regress/unittests/sshkey/mktestdata.sh
+++ b/regress/unittests/sshkey/mktestdata.sh
@@ -1,25 +1,8 @@
 #!/bin/sh
-# $OpenBSD: mktestdata.sh,v 1.5 2015/07/07 14:53:30 markus Exp $
+# $OpenBSD: mktestdata.sh,v 1.6 2017/04/30 23:33:48 djm Exp $
 PW=mekmitasdigoat
-rsa1_params() {
-        _in="$1"
-        _outbase="$2"
-        set -e
-        ssh-keygen -f $_in -e -m pkcs8 | \
-            openssl rsa -noout -text -pubin | \
-            awk '/^Modulus:$/,/^Exponent:/' | \
-            grep -v '^[a-zA-Z]' | tr -d ' \n:' > ${_outbase}.n
-        # XXX need conversion support in ssh-keygen for the other params
-        for x in n ; do
-                echo "" >> ${_outbase}.$x
-                echo ============ ${_outbase}.$x
-                cat ${_outbase}.$x
-                echo ============
-        done
-}
 rsa_params() {
        _in="$1"
        _outbase="$2"
@@ -87,20 +70,18 @@ set -ex
 cd testdata
-rm -f rsa1_1 rsa_1 dsa_1 ecdsa_1 ed25519_1
+rm -f rsa_1 dsa_1 ecdsa_1 ed25519_1
-rm -f rsa1_2 rsa_2 dsa_2 ecdsa_2 ed25519_2
+rm -f rsa_2 dsa_2 ecdsa_2 ed25519_2
 rm -f rsa_n dsa_n ecdsa_n # new-format keys
-rm -f rsa1_1_pw rsa_1_pw dsa_1_pw ecdsa_1_pw ed25519_1_pw
+rm -f rsa_1_pw dsa_1_pw ecdsa_1_pw ed25519_1_pw
 rm -f rsa_n_pw dsa_n_pw ecdsa_n_pw
 rm -f pw *.pub *.bn.* *.param.* *.fp *.fp.bb
-ssh-keygen -t rsa1 -b 1024 -C "RSA1 test key #1" -N "" -f rsa1_1
 ssh-keygen -t rsa -b 1024 -C "RSA test key #1" -N "" -f rsa_1
 ssh-keygen -t dsa -b 1024 -C "DSA test key #1" -N "" -f dsa_1
 ssh-keygen -t ecdsa -b 256 -C "ECDSA test key #1" -N "" -f ecdsa_1
 ssh-keygen -t ed25519 -C "ED25519 test key #1" -N "" -f ed25519_1
-ssh-keygen -t rsa1 -b 2048 -C "RSA1 test key #2" -N "" -f rsa1_2
 ssh-keygen -t rsa -b 2048 -C "RSA test key #2" -N "" -f rsa_2
 ssh-keygen -t dsa -b 1024 -C "DSA test key #2" -N "" -f dsa_2
 ssh-keygen -t ecdsa -b 521 -C "ECDSA test key #2" -N "" -f ecdsa_2
@@ -110,7 +91,6 @@ cp rsa_1 rsa_n
 cp dsa_1 dsa_n
 cp ecdsa_1 ecdsa_n
-cp rsa1_1 rsa1_1_pw
 cp rsa_1 rsa_1_pw
 cp dsa_1 dsa_1_pw
 cp ecdsa_1 ecdsa_1_pw
@@ -119,7 +99,6 @@ cp rsa_1 rsa_n_pw
 cp dsa_1 dsa_n_pw
 cp ecdsa_1 ecdsa_n_pw
-ssh-keygen -pf rsa1_1_pw -N "$PW"
 ssh-keygen -pf rsa_1_pw -N "$PW"
 ssh-keygen -pf dsa_1_pw -N "$PW"
 ssh-keygen -pf ecdsa_1_pw -N "$PW"
@@ -128,8 +107,6 @@ ssh-keygen -opf rsa_n_pw -N "$PW"
 ssh-keygen -opf dsa_n_pw -N "$PW"
 ssh-keygen -opf ecdsa_n_pw -N "$PW"
-rsa1_params rsa1_1 rsa1_1.param
-rsa1_params rsa1_2 rsa1_2.param
 rsa_params rsa_1 rsa_1.param
 rsa_params rsa_2 rsa_2.param
 dsa_params dsa_1 dsa_1.param
@@ -160,12 +137,10 @@ ssh-keygen -s ecdsa_1 -I julius -n host1,host2 -h \
 ssh-keygen -s ed25519_1 -I julius -n host1,host2 -h \
    -V 19990101:20110101 -z 8 ed25519_1.pub
-ssh-keygen -lf rsa1_1 | awk '{print $2}' > rsa1_1.fp
 ssh-keygen -lf rsa_1 | awk '{print $2}' > rsa_1.fp
 ssh-keygen -lf dsa_1 | awk '{print $2}' > dsa_1.fp
 ssh-keygen -lf ecdsa_1 | awk '{print $2}' > ecdsa_1.fp
 ssh-keygen -lf ed25519_1 | awk '{print $2}' > ed25519_1.fp
-ssh-keygen -lf rsa1_2 | awk '{print $2}' > rsa1_2.fp
 ssh-keygen -lf rsa_2 | awk '{print $2}' > rsa_2.fp
 ssh-keygen -lf dsa_2 | awk '{print $2}' > dsa_2.fp
 ssh-keygen -lf ecdsa_2 | awk '{print $2}' > ecdsa_2.fp
@@ -176,12 +151,10 @@ ssh-keygen -lf ecdsa_1-cert.pub  | awk '{print $2}' > ecdsa_1-cert.fp
 ssh-keygen -lf ed25519_1-cert.pub  | awk '{print $2}' > ed25519_1-cert.fp
 ssh-keygen -lf rsa_1-cert.pub  | awk '{print $2}' > rsa_1-cert.fp
-ssh-keygen -Bf rsa1_1 | awk '{print $2}' > rsa1_1.fp.bb
 ssh-keygen -Bf rsa_1 | awk '{print $2}' > rsa_1.fp.bb
 ssh-keygen -Bf dsa_1 | awk '{print $2}' > dsa_1.fp.bb
 ssh-keygen -Bf ecdsa_1 | awk '{print $2}' > ecdsa_1.fp.bb
 ssh-keygen -Bf ed25519_1 | awk '{print $2}' > ed25519_1.fp.bb
-ssh-keygen -Bf rsa1_2 | awk '{print $2}' > rsa1_2.fp.bb
 ssh-keygen -Bf rsa_2 | awk '{print $2}' > rsa_2.fp.bb
 ssh-keygen -Bf dsa_2 | awk '{print $2}' > dsa_2.fp.bb
 ssh-keygen -Bf ecdsa_2 | awk '{print $2}' > ecdsa_2.fp.bb
diff --git a/regress/unittests/sshkey/test_file.c b/regress/unittests/sshkey/test_file.c
index 906491f2b..99b7e21c0 100644
--- a/regress/unittests/sshkey/test_file.c
+++ b/regress/unittests/sshkey/test_file.c
@@ -1,4 +1,4 @@
-/*      $OpenBSD: test_file.c,v 1.5 2015/10/06 01:20:59 djm Exp $ */
+/*      $OpenBSD: test_file.c,v 1.6 2017/04/30 23:33:48 djm Exp $ */
 /*
 * Regress test for sshkey.h key management API
 *
@@ -51,55 +51,6 @@ sshkey_file_tests(void)
        pw = load_text_file("pw");
        TEST_DONE();
-#ifdef WITH_SSH1
-        TEST_START("parse RSA1 from private");
-        buf = load_file("rsa1_1");
-        ASSERT_INT_EQ(sshkey_parse_private_fileblob(buf, "", &k1, NULL), 0);
-        sshbuf_free(buf);
-        ASSERT_PTR_NE(k1, NULL);
-        a = load_bignum("rsa1_1.param.n");
-        ASSERT_BIGNUM_EQ(k1->rsa->n, a);
-        BN_free(a);
-        TEST_DONE();
-        TEST_START("parse RSA1 from private w/ passphrase");
-        buf = load_file("rsa1_1_pw");
-        ASSERT_INT_EQ(sshkey_parse_private_fileblob(buf,
-            (const char *)sshbuf_ptr(pw), &k2, NULL), 0);
-        sshbuf_free(buf);
-        ASSERT_PTR_NE(k2, NULL);
-        ASSERT_INT_EQ(sshkey_equal(k1, k2), 1);
-        sshkey_free(k2);
-        TEST_DONE();
-        TEST_START("load RSA1 from public");
-        ASSERT_INT_EQ(sshkey_load_public(test_data_file("rsa1_1.pub"), &k2,
-            NULL), 0);
-        ASSERT_PTR_NE(k2, NULL);
-        ASSERT_INT_EQ(sshkey_equal(k1, k2), 1);
-        sshkey_free(k2);
-        TEST_DONE();
-        TEST_START("RSA1 key hex fingerprint");
-        buf = load_text_file("rsa1_1.fp");
-        cp = sshkey_fingerprint(k1, SSH_DIGEST_SHA256, SSH_FP_BASE64);
-        ASSERT_PTR_NE(cp, NULL);
-        ASSERT_STRING_EQ(cp, (const char *)sshbuf_ptr(buf));
-        sshbuf_free(buf);
-        free(cp);
-        TEST_DONE();
-        TEST_START("RSA1 key bubblebabble fingerprint");
-        buf = load_text_file("rsa1_1.fp.bb");
-        cp = sshkey_fingerprint(k1, SSH_DIGEST_SHA1, SSH_FP_BUBBLEBABBLE);
-        ASSERT_PTR_NE(cp, NULL);
-        ASSERT_STRING_EQ(cp, (const char *)sshbuf_ptr(buf));
-        sshbuf_free(buf);
-        free(cp);
-        TEST_DONE();
-        sshkey_free(k1);
-#endif
        TEST_START("parse RSA from private");
        buf = load_file("rsa_1");
diff --git a/regress/unittests/sshkey/test_fuzz.c b/regress/unittests/sshkey/test_fuzz.c
index 1f414e0ac..6706045d5 100644
--- a/regress/unittests/sshkey/test_fuzz.c
+++ b/regress/unittests/sshkey/test_fuzz.c
@@ -1,4 +1,4 @@
-/*      $OpenBSD: test_fuzz.c,v 1.6 2015/12/07 02:20:46 djm Exp $ */
+/*      $OpenBSD: test_fuzz.c,v 1.7 2017/04/30 23:33:48 djm Exp $ */
 /*
 * Fuzz tests for key parsing
 *
@@ -104,49 +104,6 @@ sshkey_fuzz_tests(void)
        struct fuzz *fuzz;
        int r;
-#ifdef WITH_SSH1
-        TEST_START("fuzz RSA1 private");
-        buf = load_file("rsa1_1");
-        fuzz = fuzz_begin(FUZZ_1_BIT_FLIP | FUZZ_1_BYTE_FLIP |
-            FUZZ_TRUNCATE_START | FUZZ_TRUNCATE_END,
-            sshbuf_mutable_ptr(buf), sshbuf_len(buf));
-        ASSERT_INT_EQ(sshkey_parse_private_fileblob(buf, "", &k1, NULL), 0);
-        sshkey_free(k1);
-        sshbuf_free(buf);
-        ASSERT_PTR_NE(fuzzed = sshbuf_new(), NULL);
-        TEST_ONERROR(onerror, fuzz);
-        for(; !fuzz_done(fuzz); fuzz_next(fuzz)) {
-                r = sshbuf_put(fuzzed, fuzz_ptr(fuzz), fuzz_len(fuzz));
-                ASSERT_INT_EQ(r, 0);
-                if (sshkey_parse_private_fileblob(fuzzed, "", &k1, NULL) == 0)
-                        sshkey_free(k1);
-                sshbuf_reset(fuzzed);
-        }
-        sshbuf_free(fuzzed);
-        fuzz_cleanup(fuzz);
-        TEST_DONE();
-        TEST_START("fuzz RSA1 public");
-        buf = load_file("rsa1_1_pw");
-        fuzz = fuzz_begin(FUZZ_1_BIT_FLIP | FUZZ_1_BYTE_FLIP |
-            FUZZ_TRUNCATE_START | FUZZ_TRUNCATE_END,
-            sshbuf_mutable_ptr(buf), sshbuf_len(buf));
-        ASSERT_INT_EQ(sshkey_parse_public_rsa1_fileblob(buf, &k1, NULL), 0);
-        sshkey_free(k1);
-        sshbuf_free(buf);
-        ASSERT_PTR_NE(fuzzed = sshbuf_new(), NULL);
-        TEST_ONERROR(onerror, fuzz);
-        for(; !fuzz_done(fuzz); fuzz_next(fuzz)) {
-                r = sshbuf_put(fuzzed, fuzz_ptr(fuzz), fuzz_len(fuzz));
-                ASSERT_INT_EQ(r, 0);
-                if (sshkey_parse_public_rsa1_fileblob(fuzzed, &k1, NULL) == 0)
-                        sshkey_free(k1);
-                sshbuf_reset(fuzzed);
-        }
-        sshbuf_free(fuzzed);
-        fuzz_cleanup(fuzz);
-        TEST_DONE();
-#endif
        TEST_START("fuzz RSA private");
        buf = load_file("rsa_1");
diff --git a/regress/unittests/sshkey/test_sshkey.c b/regress/unittests/sshkey/test_sshkey.c
index 1476dc2e3..0a73322a3 100644
--- a/regress/unittests/sshkey/test_sshkey.c
+++ b/regress/unittests/sshkey/test_sshkey.c
@@ -1,4 +1,4 @@
-/*      $OpenBSD: test_sshkey.c,v 1.10 2016/05/02 09:52:00 djm Exp $ */
+/*      $OpenBSD: test_sshkey.c,v 1.12 2017/05/08 06:08:42 djm Exp $ */
 /*
 * Regress test for sshkey.h key management API
 *
@@ -193,16 +193,6 @@ sshkey_tests(void)
        sshkey_free(k1);
        TEST_DONE();
-        TEST_START("new/free KEY_RSA1");
-        k1 = sshkey_new(KEY_RSA1);
-        ASSERT_PTR_NE(k1, NULL);
-        ASSERT_PTR_NE(k1->rsa, NULL);
-        ASSERT_PTR_NE(k1->rsa->n, NULL);
-        ASSERT_PTR_NE(k1->rsa->e, NULL);
-        ASSERT_PTR_EQ(k1->rsa->p, NULL);
-        sshkey_free(k1);
-        TEST_DONE();
        TEST_START("new/free KEY_RSA");
        k1 = sshkey_new(KEY_RSA);
        ASSERT_PTR_NE(k1, NULL);
@@ -263,19 +253,19 @@ sshkey_tests(void)
        TEST_START("generate KEY_RSA too small modulus");
        ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 128, &k1),
-            SSH_ERR_INVALID_ARGUMENT);
+            SSH_ERR_KEY_LENGTH);
        ASSERT_PTR_EQ(k1, NULL);
        TEST_DONE();
        TEST_START("generate KEY_RSA too large modulus");
        ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 1 << 20, &k1),
-            SSH_ERR_INVALID_ARGUMENT);
+            SSH_ERR_KEY_LENGTH);
        ASSERT_PTR_EQ(k1, NULL);
        TEST_DONE();
        TEST_START("generate KEY_DSA wrong bits");
        ASSERT_INT_EQ(sshkey_generate(KEY_DSA, 2048, &k1),
-            SSH_ERR_INVALID_ARGUMENT);
+            SSH_ERR_KEY_LENGTH);
        ASSERT_PTR_EQ(k1, NULL);
        sshkey_free(k1);
        TEST_DONE();
@@ -283,7 +273,7 @@ sshkey_tests(void)
 #ifdef OPENSSL_HAS_ECC
        TEST_START("generate KEY_ECDSA wrong bits");
        ASSERT_INT_EQ(sshkey_generate(KEY_ECDSA, 42, &k1),
-            SSH_ERR_INVALID_ARGUMENT);
+            SSH_ERR_KEY_LENGTH);
        ASSERT_PTR_EQ(k1, NULL);
        sshkey_free(k1);
        TEST_DONE();
@@ -291,7 +281,7 @@ sshkey_tests(void)
        TEST_START("generate KEY_RSA");
        ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 767, &kr),
-            SSH_ERR_INVALID_ARGUMENT);
+            SSH_ERR_KEY_LENGTH);
        ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 1024, &kr), 0);
        ASSERT_PTR_NE(kr, NULL);
        ASSERT_PTR_NE(kr->rsa, NULL);

diff --git a/regress/unittests/sshkey/mktestdata.sh b/regress/unittests/sshkey/mktestdata.sh index e11100145..8047bc62f 100755 --- a/regress/unittests/sshkey/mktestdata.sh +++ b/regress/unittests/sshkey/mktestdata.sh
@@ -1,25 +1,8 @@
1	#!/bin/sh	1	#!/bin/sh
2	# $OpenBSD: mktestdata.sh,v 1.5 2015/07/07 14:53:30 markus Exp $	2	# $OpenBSD: mktestdata.sh,v 1.6 2017/04/30 23:33:48 djm Exp $
3		3
4	PW=mekmitasdigoat	4	PW=mekmitasdigoat
5		5
6	rsa1_params() {
7	_in="$1"
8	_outbase="$2"
9	set -e
10	ssh-keygen -f $_in -e -m pkcs8 \| \
11	openssl rsa -noout -text -pubin \| \
12	awk '/^Modulus:$/,/^Exponent:/' \| \
13	grep -v '^[a-zA-Z]' \| tr -d ' \n:' > ${_outbase}.n
14	# XXX need conversion support in ssh-keygen for the other params
15	for x in n ; do
16	echo "" >> ${_outbase}.$x
17	echo ============ ${_outbase}.$x
18	cat ${_outbase}.$x
19	echo ============
20	done
21	}
22
23	rsa_params() {	6	rsa_params() {
24	_in="$1"	7	_in="$1"
25	_outbase="$2"	8	_outbase="$2"
@@ -87,20 +70,18 @@ set -ex
87		70
88	cd testdata	71	cd testdata
89		72
90	rm -f rsa1_1 rsa_1 dsa_1 ecdsa_1 ed25519_1	73	rm -f rsa_1 dsa_1 ecdsa_1 ed25519_1
91	rm -f rsa1_2 rsa_2 dsa_2 ecdsa_2 ed25519_2	74	rm -f rsa_2 dsa_2 ecdsa_2 ed25519_2
92	rm -f rsa_n dsa_n ecdsa_n # new-format keys	75	rm -f rsa_n dsa_n ecdsa_n # new-format keys
93	rm -f rsa1_1_pw rsa_1_pw dsa_1_pw ecdsa_1_pw ed25519_1_pw	76	rm -f rsa_1_pw dsa_1_pw ecdsa_1_pw ed25519_1_pw
94	rm -f rsa_n_pw dsa_n_pw ecdsa_n_pw	77	rm -f rsa_n_pw dsa_n_pw ecdsa_n_pw
95	rm -f pw .pub .bn.* .param. .fp .fp.bb	78	rm -f pw .pub .bn.* .param. .fp .fp.bb
96		79
97	ssh-keygen -t rsa1 -b 1024 -C "RSA1 test key #1" -N "" -f rsa1_1
98	ssh-keygen -t rsa -b 1024 -C "RSA test key #1" -N "" -f rsa_1	80	ssh-keygen -t rsa -b 1024 -C "RSA test key #1" -N "" -f rsa_1
99	ssh-keygen -t dsa -b 1024 -C "DSA test key #1" -N "" -f dsa_1	81	ssh-keygen -t dsa -b 1024 -C "DSA test key #1" -N "" -f dsa_1
100	ssh-keygen -t ecdsa -b 256 -C "ECDSA test key #1" -N "" -f ecdsa_1	82	ssh-keygen -t ecdsa -b 256 -C "ECDSA test key #1" -N "" -f ecdsa_1
101	ssh-keygen -t ed25519 -C "ED25519 test key #1" -N "" -f ed25519_1	83	ssh-keygen -t ed25519 -C "ED25519 test key #1" -N "" -f ed25519_1
102		84
103	ssh-keygen -t rsa1 -b 2048 -C "RSA1 test key #2" -N "" -f rsa1_2
104	ssh-keygen -t rsa -b 2048 -C "RSA test key #2" -N "" -f rsa_2	85	ssh-keygen -t rsa -b 2048 -C "RSA test key #2" -N "" -f rsa_2
105	ssh-keygen -t dsa -b 1024 -C "DSA test key #2" -N "" -f dsa_2	86	ssh-keygen -t dsa -b 1024 -C "DSA test key #2" -N "" -f dsa_2
106	ssh-keygen -t ecdsa -b 521 -C "ECDSA test key #2" -N "" -f ecdsa_2	87	ssh-keygen -t ecdsa -b 521 -C "ECDSA test key #2" -N "" -f ecdsa_2
@@ -110,7 +91,6 @@ cp rsa_1 rsa_n
110	cp dsa_1 dsa_n	91	cp dsa_1 dsa_n
111	cp ecdsa_1 ecdsa_n	92	cp ecdsa_1 ecdsa_n
112		93
113	cp rsa1_1 rsa1_1_pw
114	cp rsa_1 rsa_1_pw	94	cp rsa_1 rsa_1_pw
115	cp dsa_1 dsa_1_pw	95	cp dsa_1 dsa_1_pw
116	cp ecdsa_1 ecdsa_1_pw	96	cp ecdsa_1 ecdsa_1_pw
@@ -119,7 +99,6 @@ cp rsa_1 rsa_n_pw
119	cp dsa_1 dsa_n_pw	99	cp dsa_1 dsa_n_pw
120	cp ecdsa_1 ecdsa_n_pw	100	cp ecdsa_1 ecdsa_n_pw
121		101
122	ssh-keygen -pf rsa1_1_pw -N "$PW"
123	ssh-keygen -pf rsa_1_pw -N "$PW"	102	ssh-keygen -pf rsa_1_pw -N "$PW"
124	ssh-keygen -pf dsa_1_pw -N "$PW"	103	ssh-keygen -pf dsa_1_pw -N "$PW"
125	ssh-keygen -pf ecdsa_1_pw -N "$PW"	104	ssh-keygen -pf ecdsa_1_pw -N "$PW"
@@ -128,8 +107,6 @@ ssh-keygen -opf rsa_n_pw -N "$PW"
128	ssh-keygen -opf dsa_n_pw -N "$PW"	107	ssh-keygen -opf dsa_n_pw -N "$PW"
129	ssh-keygen -opf ecdsa_n_pw -N "$PW"	108	ssh-keygen -opf ecdsa_n_pw -N "$PW"
130		109
131	rsa1_params rsa1_1 rsa1_1.param
132	rsa1_params rsa1_2 rsa1_2.param
133	rsa_params rsa_1 rsa_1.param	110	rsa_params rsa_1 rsa_1.param
134	rsa_params rsa_2 rsa_2.param	111	rsa_params rsa_2 rsa_2.param
135	dsa_params dsa_1 dsa_1.param	112	dsa_params dsa_1 dsa_1.param
@@ -160,12 +137,10 @@ ssh-keygen -s ecdsa_1 -I julius -n host1,host2 -h \
160	ssh-keygen -s ed25519_1 -I julius -n host1,host2 -h \	137	ssh-keygen -s ed25519_1 -I julius -n host1,host2 -h \
161	-V 19990101:20110101 -z 8 ed25519_1.pub	138	-V 19990101:20110101 -z 8 ed25519_1.pub
162		139
163	ssh-keygen -lf rsa1_1 \| awk '{print $2}' > rsa1_1.fp
164	ssh-keygen -lf rsa_1 \| awk '{print $2}' > rsa_1.fp	140	ssh-keygen -lf rsa_1 \| awk '{print $2}' > rsa_1.fp
165	ssh-keygen -lf dsa_1 \| awk '{print $2}' > dsa_1.fp	141	ssh-keygen -lf dsa_1 \| awk '{print $2}' > dsa_1.fp
166	ssh-keygen -lf ecdsa_1 \| awk '{print $2}' > ecdsa_1.fp	142	ssh-keygen -lf ecdsa_1 \| awk '{print $2}' > ecdsa_1.fp
167	ssh-keygen -lf ed25519_1 \| awk '{print $2}' > ed25519_1.fp	143	ssh-keygen -lf ed25519_1 \| awk '{print $2}' > ed25519_1.fp
168	ssh-keygen -lf rsa1_2 \| awk '{print $2}' > rsa1_2.fp
169	ssh-keygen -lf rsa_2 \| awk '{print $2}' > rsa_2.fp	144	ssh-keygen -lf rsa_2 \| awk '{print $2}' > rsa_2.fp
170	ssh-keygen -lf dsa_2 \| awk '{print $2}' > dsa_2.fp	145	ssh-keygen -lf dsa_2 \| awk '{print $2}' > dsa_2.fp
171	ssh-keygen -lf ecdsa_2 \| awk '{print $2}' > ecdsa_2.fp	146	ssh-keygen -lf ecdsa_2 \| awk '{print $2}' > ecdsa_2.fp
@@ -176,12 +151,10 @@ ssh-keygen -lf ecdsa_1-cert.pub \| awk '{print $2}' > ecdsa_1-cert.fp
176	ssh-keygen -lf ed25519_1-cert.pub \| awk '{print $2}' > ed25519_1-cert.fp	151	ssh-keygen -lf ed25519_1-cert.pub \| awk '{print $2}' > ed25519_1-cert.fp
177	ssh-keygen -lf rsa_1-cert.pub \| awk '{print $2}' > rsa_1-cert.fp	152	ssh-keygen -lf rsa_1-cert.pub \| awk '{print $2}' > rsa_1-cert.fp
178		153
179	ssh-keygen -Bf rsa1_1 \| awk '{print $2}' > rsa1_1.fp.bb
180	ssh-keygen -Bf rsa_1 \| awk '{print $2}' > rsa_1.fp.bb	154	ssh-keygen -Bf rsa_1 \| awk '{print $2}' > rsa_1.fp.bb
181	ssh-keygen -Bf dsa_1 \| awk '{print $2}' > dsa_1.fp.bb	155	ssh-keygen -Bf dsa_1 \| awk '{print $2}' > dsa_1.fp.bb
182	ssh-keygen -Bf ecdsa_1 \| awk '{print $2}' > ecdsa_1.fp.bb	156	ssh-keygen -Bf ecdsa_1 \| awk '{print $2}' > ecdsa_1.fp.bb
183	ssh-keygen -Bf ed25519_1 \| awk '{print $2}' > ed25519_1.fp.bb	157	ssh-keygen -Bf ed25519_1 \| awk '{print $2}' > ed25519_1.fp.bb
184	ssh-keygen -Bf rsa1_2 \| awk '{print $2}' > rsa1_2.fp.bb
185	ssh-keygen -Bf rsa_2 \| awk '{print $2}' > rsa_2.fp.bb	158	ssh-keygen -Bf rsa_2 \| awk '{print $2}' > rsa_2.fp.bb
186	ssh-keygen -Bf dsa_2 \| awk '{print $2}' > dsa_2.fp.bb	159	ssh-keygen -Bf dsa_2 \| awk '{print $2}' > dsa_2.fp.bb
187	ssh-keygen -Bf ecdsa_2 \| awk '{print $2}' > ecdsa_2.fp.bb	160	ssh-keygen -Bf ecdsa_2 \| awk '{print $2}' > ecdsa_2.fp.bb


diff --git a/regress/unittests/sshkey/test_file.c b/regress/unittests/sshkey/test_file.c index 906491f2b..99b7e21c0 100644 --- a/regress/unittests/sshkey/test_file.c +++ b/regress/unittests/sshkey/test_file.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: test_file.c,v 1.5 2015/10/06 01:20:59 djm Exp $ */	1	/* $OpenBSD: test_file.c,v 1.6 2017/04/30 23:33:48 djm Exp $ */
2	/*	2	/*
3	* Regress test for sshkey.h key management API	3	* Regress test for sshkey.h key management API
4	*	4	*
@@ -51,55 +51,6 @@ sshkey_file_tests(void)
51	pw = load_text_file("pw");	51	pw = load_text_file("pw");
52	TEST_DONE();	52	TEST_DONE();
53		53
54	#ifdef WITH_SSH1
55	TEST_START("parse RSA1 from private");
56	buf = load_file("rsa1_1");
57	ASSERT_INT_EQ(sshkey_parse_private_fileblob(buf, "", &k1, NULL), 0);
58	sshbuf_free(buf);
59	ASSERT_PTR_NE(k1, NULL);
60	a = load_bignum("rsa1_1.param.n");
61	ASSERT_BIGNUM_EQ(k1->rsa->n, a);
62	BN_free(a);
63	TEST_DONE();
64
65	TEST_START("parse RSA1 from private w/ passphrase");
66	buf = load_file("rsa1_1_pw");
67	ASSERT_INT_EQ(sshkey_parse_private_fileblob(buf,
68	(const char *)sshbuf_ptr(pw), &k2, NULL), 0);
69	sshbuf_free(buf);
70	ASSERT_PTR_NE(k2, NULL);
71	ASSERT_INT_EQ(sshkey_equal(k1, k2), 1);
72	sshkey_free(k2);
73	TEST_DONE();
74
75	TEST_START("load RSA1 from public");
76	ASSERT_INT_EQ(sshkey_load_public(test_data_file("rsa1_1.pub"), &k2,
77	NULL), 0);
78	ASSERT_PTR_NE(k2, NULL);
79	ASSERT_INT_EQ(sshkey_equal(k1, k2), 1);
80	sshkey_free(k2);
81	TEST_DONE();
82
83	TEST_START("RSA1 key hex fingerprint");
84	buf = load_text_file("rsa1_1.fp");
85	cp = sshkey_fingerprint(k1, SSH_DIGEST_SHA256, SSH_FP_BASE64);
86	ASSERT_PTR_NE(cp, NULL);
87	ASSERT_STRING_EQ(cp, (const char *)sshbuf_ptr(buf));
88	sshbuf_free(buf);
89	free(cp);
90	TEST_DONE();
91
92	TEST_START("RSA1 key bubblebabble fingerprint");
93	buf = load_text_file("rsa1_1.fp.bb");
94	cp = sshkey_fingerprint(k1, SSH_DIGEST_SHA1, SSH_FP_BUBBLEBABBLE);
95	ASSERT_PTR_NE(cp, NULL);
96	ASSERT_STRING_EQ(cp, (const char *)sshbuf_ptr(buf));
97	sshbuf_free(buf);
98	free(cp);
99	TEST_DONE();
100
101	sshkey_free(k1);
102	#endif
103		54
104	TEST_START("parse RSA from private");	55	TEST_START("parse RSA from private");
105	buf = load_file("rsa_1");	56	buf = load_file("rsa_1");


diff --git a/regress/unittests/sshkey/test_fuzz.c b/regress/unittests/sshkey/test_fuzz.c index 1f414e0ac..6706045d5 100644 --- a/regress/unittests/sshkey/test_fuzz.c +++ b/regress/unittests/sshkey/test_fuzz.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: test_fuzz.c,v 1.6 2015/12/07 02:20:46 djm Exp $ */	1	/* $OpenBSD: test_fuzz.c,v 1.7 2017/04/30 23:33:48 djm Exp $ */
2	/*	2	/*
3	* Fuzz tests for key parsing	3	* Fuzz tests for key parsing
4	*	4	*
@@ -104,49 +104,6 @@ sshkey_fuzz_tests(void)
104	struct fuzz *fuzz;	104	struct fuzz *fuzz;
105	int r;	105	int r;
106		106
107	#ifdef WITH_SSH1
108	TEST_START("fuzz RSA1 private");
109	buf = load_file("rsa1_1");
110	fuzz = fuzz_begin(FUZZ_1_BIT_FLIP \| FUZZ_1_BYTE_FLIP \|
111	FUZZ_TRUNCATE_START \| FUZZ_TRUNCATE_END,
112	sshbuf_mutable_ptr(buf), sshbuf_len(buf));
113	ASSERT_INT_EQ(sshkey_parse_private_fileblob(buf, "", &k1, NULL), 0);
114	sshkey_free(k1);
115	sshbuf_free(buf);
116	ASSERT_PTR_NE(fuzzed = sshbuf_new(), NULL);
117	TEST_ONERROR(onerror, fuzz);
118	for(; !fuzz_done(fuzz); fuzz_next(fuzz)) {
119	r = sshbuf_put(fuzzed, fuzz_ptr(fuzz), fuzz_len(fuzz));
120	ASSERT_INT_EQ(r, 0);
121	if (sshkey_parse_private_fileblob(fuzzed, "", &k1, NULL) == 0)
122	sshkey_free(k1);
123	sshbuf_reset(fuzzed);
124	}
125	sshbuf_free(fuzzed);
126	fuzz_cleanup(fuzz);
127	TEST_DONE();
128
129	TEST_START("fuzz RSA1 public");
130	buf = load_file("rsa1_1_pw");
131	fuzz = fuzz_begin(FUZZ_1_BIT_FLIP \| FUZZ_1_BYTE_FLIP \|
132	FUZZ_TRUNCATE_START \| FUZZ_TRUNCATE_END,
133	sshbuf_mutable_ptr(buf), sshbuf_len(buf));
134	ASSERT_INT_EQ(sshkey_parse_public_rsa1_fileblob(buf, &k1, NULL), 0);
135	sshkey_free(k1);
136	sshbuf_free(buf);
137	ASSERT_PTR_NE(fuzzed = sshbuf_new(), NULL);
138	TEST_ONERROR(onerror, fuzz);
139	for(; !fuzz_done(fuzz); fuzz_next(fuzz)) {
140	r = sshbuf_put(fuzzed, fuzz_ptr(fuzz), fuzz_len(fuzz));
141	ASSERT_INT_EQ(r, 0);
142	if (sshkey_parse_public_rsa1_fileblob(fuzzed, &k1, NULL) == 0)
143	sshkey_free(k1);
144	sshbuf_reset(fuzzed);
145	}
146	sshbuf_free(fuzzed);
147	fuzz_cleanup(fuzz);
148	TEST_DONE();
149	#endif
150		107
151	TEST_START("fuzz RSA private");	108	TEST_START("fuzz RSA private");
152	buf = load_file("rsa_1");	109	buf = load_file("rsa_1");


diff --git a/regress/unittests/sshkey/test_sshkey.c b/regress/unittests/sshkey/test_sshkey.c index 1476dc2e3..0a73322a3 100644 --- a/regress/unittests/sshkey/test_sshkey.c +++ b/regress/unittests/sshkey/test_sshkey.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: test_sshkey.c,v 1.10 2016/05/02 09:52:00 djm Exp $ */	1	/* $OpenBSD: test_sshkey.c,v 1.12 2017/05/08 06:08:42 djm Exp $ */
2	/*	2	/*
3	* Regress test for sshkey.h key management API	3	* Regress test for sshkey.h key management API
4	*	4	*
@@ -193,16 +193,6 @@ sshkey_tests(void)
193	sshkey_free(k1);	193	sshkey_free(k1);
194	TEST_DONE();	194	TEST_DONE();
195		195
196	TEST_START("new/free KEY_RSA1");
197	k1 = sshkey_new(KEY_RSA1);
198	ASSERT_PTR_NE(k1, NULL);
199	ASSERT_PTR_NE(k1->rsa, NULL);
200	ASSERT_PTR_NE(k1->rsa->n, NULL);
201	ASSERT_PTR_NE(k1->rsa->e, NULL);
202	ASSERT_PTR_EQ(k1->rsa->p, NULL);
203	sshkey_free(k1);
204	TEST_DONE();
205
206	TEST_START("new/free KEY_RSA");	196	TEST_START("new/free KEY_RSA");
207	k1 = sshkey_new(KEY_RSA);	197	k1 = sshkey_new(KEY_RSA);
208	ASSERT_PTR_NE(k1, NULL);	198	ASSERT_PTR_NE(k1, NULL);
@@ -263,19 +253,19 @@ sshkey_tests(void)
263		253
264	TEST_START("generate KEY_RSA too small modulus");	254	TEST_START("generate KEY_RSA too small modulus");
265	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 128, &k1),	255	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 128, &k1),
266	SSH_ERR_INVALID_ARGUMENT);	256	SSH_ERR_KEY_LENGTH);
267	ASSERT_PTR_EQ(k1, NULL);	257	ASSERT_PTR_EQ(k1, NULL);
268	TEST_DONE();	258	TEST_DONE();
269		259
270	TEST_START("generate KEY_RSA too large modulus");	260	TEST_START("generate KEY_RSA too large modulus");
271	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 1 << 20, &k1),	261	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 1 << 20, &k1),
272	SSH_ERR_INVALID_ARGUMENT);	262	SSH_ERR_KEY_LENGTH);
273	ASSERT_PTR_EQ(k1, NULL);	263	ASSERT_PTR_EQ(k1, NULL);
274	TEST_DONE();	264	TEST_DONE();
275		265
276	TEST_START("generate KEY_DSA wrong bits");	266	TEST_START("generate KEY_DSA wrong bits");
277	ASSERT_INT_EQ(sshkey_generate(KEY_DSA, 2048, &k1),	267	ASSERT_INT_EQ(sshkey_generate(KEY_DSA, 2048, &k1),
278	SSH_ERR_INVALID_ARGUMENT);	268	SSH_ERR_KEY_LENGTH);
279	ASSERT_PTR_EQ(k1, NULL);	269	ASSERT_PTR_EQ(k1, NULL);
280	sshkey_free(k1);	270	sshkey_free(k1);
281	TEST_DONE();	271	TEST_DONE();
@@ -283,7 +273,7 @@ sshkey_tests(void)
283	#ifdef OPENSSL_HAS_ECC	273	#ifdef OPENSSL_HAS_ECC
284	TEST_START("generate KEY_ECDSA wrong bits");	274	TEST_START("generate KEY_ECDSA wrong bits");
285	ASSERT_INT_EQ(sshkey_generate(KEY_ECDSA, 42, &k1),	275	ASSERT_INT_EQ(sshkey_generate(KEY_ECDSA, 42, &k1),
286	SSH_ERR_INVALID_ARGUMENT);	276	SSH_ERR_KEY_LENGTH);
287	ASSERT_PTR_EQ(k1, NULL);	277	ASSERT_PTR_EQ(k1, NULL);
288	sshkey_free(k1);	278	sshkey_free(k1);
289	TEST_DONE();	279	TEST_DONE();
@@ -291,7 +281,7 @@ sshkey_tests(void)
291		281
292	TEST_START("generate KEY_RSA");	282	TEST_START("generate KEY_RSA");
293	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 767, &kr),	283	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 767, &kr),
294	SSH_ERR_INVALID_ARGUMENT);	284	SSH_ERR_KEY_LENGTH);
295	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 1024, &kr), 0);	285	ASSERT_INT_EQ(sshkey_generate(KEY_RSA, 1024, &kr), 0);
296	ASSERT_PTR_NE(kr, NULL);	286	ASSERT_PTR_NE(kr, NULL);
297	ASSERT_PTR_NE(kr->rsa, NULL);	287	ASSERT_PTR_NE(kr->rsa, NULL);