1# $OpenBSD: try-ciphers.sh,v 1.9 2004/02/28 13:44:45 dtucker Exp $ 2# Placed in the Public Domain. 3 4tid="try ciphers" 5 6ciphers="aes128-cbc 3des-cbc blowfish-cbc cast128-cbc arcfour 7 aes192-cbc aes256-cbc rijndael-cbc@lysator.liu.se 8 aes128-ctr aes192-ctr aes256-ctr" 9macs="hmac-sha1 hmac-md5 hmac-sha1-96 hmac-md5-96" 10 11for c in $ciphers; do 12 for m in $macs; do 13 trace "proto 2 cipher $c mac $m" 14 verbose "test $tid: proto 2 cipher $c mac $m" 15 ${SSH} -F $OBJ/ssh_proxy -2 -m $m -c $c somehost true 16 if [ $? -ne 0 ]; then 17 fail "ssh -2 failed with mac $m cipher $c" 18 fi 19 done 20done 21 22ciphers="3des blowfish" 23for c in $ciphers; do 24 trace "proto 1 cipher $c" 25 verbose "test $tid: proto 1 cipher $c" 26 ${SSH} -F $OBJ/ssh_proxy -1 -c $c somehost true 27 if [ $? -ne 0 ]; then 28 fail "ssh -1 failed with cipher $c" 29 fi 30done 31 32if ${SSH} -oCiphers=acss@openssh.org 2>&1 | grep "Bad SSH2 cipher" >/dev/null 33then 34 : 35else 36 37echo "Ciphers acss@openssh.org" >> $OBJ/sshd_proxy 38c=acss@openssh.org 39for m in $macs; do 40 trace "proto 2 $c mac $m" 41 verbose "test $tid: proto 2 cipher $c mac $m" 42 ${SSH} -F $OBJ/ssh_proxy -2 -m $m -c $c somehost true 43 if [ $? -ne 0 ]; then 44 fail "ssh -2 failed with mac $m cipher $c" 45 fi 46done 47 48fi 49