Lines Matching refs:OBJ
6 rm -f $OBJ/known_hosts-cert* $OBJ/host_ca_key* $OBJ/host_revoked_*
7 rm -f $OBJ/cert_host_key* $OBJ/host_krl_*
33 ) >> $OBJ/ssh_proxy
34 cp $OBJ/sshd_proxy $OBJ/sshd_proxy_bak
38 ) >> $OBJ/sshd_proxy_bak
45 cat $OBJ/$k || fatal "couldn't cat $k"
51 cat $OBJ/$k || fatal "couldn't cat $k"
59 ${SSHKEYGEN} -q -N '' -t ed25519 -f $OBJ/host_ca_key ||\
61 ${SSHKEYGEN} -q -N '' -t $ktype2 -f $OBJ/host_ca_key2 ||\
64 kh_ca host_ca_key.pub host_ca_key2.pub > $OBJ/known_hosts-cert.orig
65 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
68 touch $OBJ/host_revoked_empty
69 touch $OBJ/host_revoked_plain
70 touch $OBJ/host_revoked_cert
71 cat $OBJ/host_ca_key.pub $OBJ/host_ca_key2.pub > $OBJ/host_revoked_ca
80 ${SSHKEYGEN} -kf $OBJ/host_krl_empty || fatal "KRL init failed"
81 ${SSHKEYGEN} -kf $OBJ/host_krl_plain || fatal "KRL init failed"
82 ${SSHKEYGEN} -kf $OBJ/host_krl_cert || fatal "KRL init failed"
83 ${SSHKEYGEN} -kf $OBJ/host_krl_ca $OBJ/host_ca_key.pub $OBJ/host_ca_key2.pub \
92 -f $OBJ/cert_host_key_${ktype} || \
94 ${SSHKEYGEN} -ukf $OBJ/host_krl_plain \
95 $OBJ/cert_host_key_${ktype}.pub || fatal "KRL update failed"
96 cat $OBJ/cert_host_key_${ktype}.pub >> $OBJ/host_revoked_plain
98 rsa-sha2-*) tflag="-t $ktype"; ca="$OBJ/host_ca_key2" ;;
99 *) tflag=""; ca="$OBJ/host_ca_key" ;;
103 -n $HOSTS $OBJ/cert_host_key_${ktype} ||
105 ${SSHKEYGEN} -ukf $OBJ/host_krl_cert \
106 $OBJ/cert_host_key_${ktype}-cert.pub || \
108 cat $OBJ/cert_host_key_${ktype}-cert.pub >> $OBJ/host_revoked_cert
117 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
118 ${SSH} -oUserKnownHostsFile=$OBJ/known_hosts-cert \
119 -oGlobalKnownHostsFile=$OBJ/known_hosts-cert \
120 "$@" -F $OBJ/ssh_proxy somehost true
137 cat $OBJ/sshd_proxy_bak
138 echo HostKey $OBJ/cert_host_key_${ktype}
139 echo HostCertificate $OBJ/cert_host_key_${ktype}-cert.pub
140 ) > $OBJ/sshd_proxy
145 -oRevokedHostKeys=$OBJ/host_krl_empty
147 -oRevokedHostKeys=$OBJ/host_krl_plain
149 -oRevokedHostKeys=$OBJ/host_krl_cert
151 -oRevokedHostKeys=$OBJ/host_krl_ca
153 -oRevokedHostKeys=$OBJ/host_revoked_empty
155 -oRevokedHostKeys=$OBJ/host_revoked_plain
157 -oRevokedHostKeys=$OBJ/host_revoked_cert
159 -oRevokedHostKeys=$OBJ/host_revoked_ca
163 kh_ca host_ca_key.pub host_ca_key2.pub > $OBJ/known_hosts-cert.orig
165 test -f "$OBJ/cert_host_key_${ktype}.pub" || fatal "no pubkey"
166 kh_revoke cert_host_key_${ktype}.pub >> $OBJ/known_hosts-cert.orig
168 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
172 cat $OBJ/sshd_proxy_bak
173 echo HostKey $OBJ/cert_host_key_${ktype}
174 echo HostCertificate $OBJ/cert_host_key_${ktype}-cert.pub
175 ) > $OBJ/sshd_proxy
177 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
178 ${SSH} -oUserKnownHostsFile=$OBJ/known_hosts-cert \
179 -oGlobalKnownHostsFile=$OBJ/known_hosts-cert \
180 -F $OBJ/ssh_proxy somehost true >/dev/null 2>&1
187 kh_ca host_ca_key.pub host_ca_key2.pub > $OBJ/known_hosts-cert.orig
188 kh_revoke host_ca_key.pub host_ca_key2.pub >> $OBJ/known_hosts-cert.orig
189 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
193 cat $OBJ/sshd_proxy_bak
194 echo HostKey $OBJ/cert_host_key_${ktype}
195 echo HostCertificate $OBJ/cert_host_key_${ktype}-cert.pub
196 ) > $OBJ/sshd_proxy
197 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
198 ${SSH} -oUserKnownHostsFile=$OBJ/known_hosts-cert \
199 -oGlobalKnownHostsFile=$OBJ/known_hosts-cert \
200 -F $OBJ/ssh_proxy somehost true >/dev/null 2>&1
207 kh_ca host_ca_key.pub host_ca_key2.pub > $OBJ/known_hosts-cert.orig
208 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
217 rsa-sha2-*) tflag="-t $ktype"; ca="$OBJ/host_ca_key2" ;;
218 *) tflag=""; ca="$OBJ/host_ca_key" ;;
221 $sign_opts $OBJ/cert_host_key_${kt} ||
224 cat $OBJ/sshd_proxy_bak
225 echo HostKey $OBJ/cert_host_key_${kt}
226 echo HostCertificate $OBJ/cert_host_key_${kt}-cert.pub
227 ) > $OBJ/sshd_proxy
229 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
230 ${SSH} -oUserKnownHostsFile=$OBJ/known_hosts-cert \
231 -oGlobalKnownHostsFile=$OBJ/known_hosts-cert \
232 -F $OBJ/ssh_proxy somehost true >/dev/null 2>&1
256 rm -f $OBJ/known_hosts-cert $OBJ/cert_host_key*
259 ${SSHKEYGEN} -q -N '' -t ${ktype} -f $OBJ/cert_host_key_${ktype} || \
262 rsa-sha2-*) tflag="-t $ktype"; ca="$OBJ/host_ca_key2" ;;
263 *) tflag=""; ca="$OBJ/host_ca_key" ;;
267 -n $HOSTS $OBJ/cert_host_key_${ktype} ||
271 cat $OBJ/cert_host_key_${ktype}.pub
272 ) > $OBJ/known_hosts-cert
274 cat $OBJ/sshd_proxy_bak
275 echo HostKey $OBJ/cert_host_key_${ktype}
276 echo HostCertificate $OBJ/cert_host_key_${ktype}-cert.pub
277 ) > $OBJ/sshd_proxy
279 ${SSH} -oUserKnownHostsFile=$OBJ/known_hosts-cert \
280 -oGlobalKnownHostsFile=none -F $OBJ/ssh_proxy somehost true
286 ${SSH} -oUserKnownHostsFile="/dev/null $OBJ/known_hosts-cert" \
287 -oGlobalKnownHostsFile=none -F $OBJ/ssh_proxy somehost true
294 kh_ca host_ca_key.pub host_ca_key2.pub > $OBJ/known_hosts-cert.orig
295 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
298 rm -f $OBJ/cert_host_key*
300 ${SSHKEYGEN} -q -N '' -t ${kt} -f $OBJ/cert_host_key_${kt} || \
306 ${SSHKEYGEN} $tflag -h -q -s $OBJ/cert_host_key_${kt} \
308 -n $HOSTS $OBJ/cert_host_key_${kt} ||
311 cat $OBJ/sshd_proxy_bak
312 echo HostKey $OBJ/cert_host_key_${kt}
313 echo HostCertificate $OBJ/cert_host_key_${kt}-cert.pub
314 ) > $OBJ/sshd_proxy
316 cp $OBJ/known_hosts-cert.orig $OBJ/known_hosts-cert
317 ${SSH} -oUserKnownHostsFile=$OBJ/known_hosts-cert \
318 -oGlobalKnownHostsFile=$OBJ/known_hosts-cert \
319 -F $OBJ/ssh_proxy -q somehost true >/dev/null 2>&1
325 rm -f $OBJ/known_hosts-cert* $OBJ/host_ca_key* $OBJ/cert_host_key*