xref: /freebsd/crypto/openssh/regress/dropbear-kex.sh (revision 6580f5c38dd5b01aeeaed16b370f1a12423437f0) 
1#	$OpenBSD: dropbear-kex.sh,v 1.1 2023/10/20 06:56:45 dtucker Exp $
2#	Placed in the Public Domain.
3
4tid="dropbear kex"
5
6if test "x$REGRESS_INTEROP_DROPBEAR" != "xyes" ; then
7	skip "dropbear interop tests not enabled"
8fi
9
10cat >>$OBJ/sshd_proxy <<EOD
11PubkeyAcceptedAlgorithms +ssh-rsa,ssh-dss
12HostkeyAlgorithms +ssh-rsa,ssh-dss
13EOD
14cp $OBJ/sshd_proxy $OBJ/sshd_proxy.bak
15
16kex="curve25519-sha256 curve25519-sha256@libssh.org
17    diffie-hellman-group14-sha256 diffie-hellman-group14-sha1"
18
19for k in $kex; do
20	verbose "$tid: kex $k"
21	rm -f ${COPY}
22	# dbclient doesn't have switch for kex, so force in server
23	(cat $OBJ/sshd_proxy.bak; echo "KexAlgorithms $k") >$OBJ/sshd_proxy
24	env HOME=$OBJ dbclient -y -i $OBJ/.dropbear/id_rsa 2>$OBJ/dbclient.log \
25	    -J "$OBJ/ssh_proxy.sh" somehost cat ${DATA} > ${COPY}
26	if [ $? -ne 0 ]; then
27		fail "ssh cat $DATA failed"
28	fi
29	cmp ${DATA} ${COPY}		|| fail "corrupted copy"
30done
31rm -f ${COPY}
32