src/usr.bin/ssh/ssh-keygen.c - diff

Return to ssh-keygen.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/ssh-keygen.c between version 1.441 and 1.445

version 1.441, 2021/11/27 07:14:46

version 1.445, 2022/01/05 04:50:11

Line 2489

static int

sign_one(struct sshkey *signkey, const char *filename, int fd,

const char *sig_namespace, sshsig_signer *signer, void *signer_ctx)

const char *sig_namespace, const char *hashalg, sshsig_signer *signer,

void *signer_ctx)

{

struct sshbuf *sigbuf = NULL, *abuf = NULL;

int r = SSH_ERR_INTERNAL_ERROR, wfd = -1, oerrno;

Line 2519

Line 2520

free(fp);

}

if ((r = sshsig_sign_fd(signkey, NULL, sk_provider, pin,

if ((r = sshsig_sign_fd(signkey, hashalg, sk_provider, pin,

fd, sig_namespace, &sigbuf, signer, signer_ctx)) != 0) {

error_r(r, "Signing %s failed", filename);

goto out;

Line 2580

Line 2581

}

static int

sig_sign(const char *keypath, const char *sig_namespace, int argc, char **argv)

sig_process_opts(char * const *opts, size_t nopts, char **hashalgp,

uint64_t *verify_timep, int *print_pubkey)

{

size_t i;

time_t now;

if (verify_timep != NULL)

*verify_timep = 0;

if (print_pubkey != NULL)

*print_pubkey = 0;

if (hashalgp != NULL)

*hashalgp = NULL;

for (i = 0; i < nopts; i++) {

if (hashalgp != NULL &&

strncasecmp(opts[i], "hashalg=", 8) == 0) {

*hashalgp = xstrdup(opts[i] + 8);

} else if (verify_timep &&

strncasecmp(opts[i], "verify-time=", 12) == 0) {

if (parse_absolute_time(opts[i] + 12,

verify_timep) != 0 || *verify_timep == 0) {

error("Invalid \"verify-time\" option");

return SSH_ERR_INVALID_ARGUMENT;

}

} else if (print_pubkey &&

strcasecmp(opts[i], "print-pubkey") == 0) {

*print_pubkey = 1;

} else {

error("Invalid option \"%s\"", opts[i]);

return SSH_ERR_INVALID_ARGUMENT;

}

if (verify_timep && *verify_timep == 0) {

if ((now = time(NULL)) < 0) {

error("Time is before epoch");

return SSH_ERR_INVALID_ARGUMENT;

}

*verify_timep = (uint64_t)now;

}

return 0;

}

static int

sig_sign(const char *keypath, const char *sig_namespace, int argc, char **argv,

char * const *opts, size_t nopts)

{

int i, fd = -1, r, ret = -1;

int agent_fd = -1;

struct sshkey *pubkey = NULL, *privkey = NULL, *signkey = NULL;

sshsig_signer *signer = NULL;

char *hashalg = NULL;

/* Check file arguments. */

for (i = 0; i < argc; i++) {

Line 2595

Line 2641

fatal("Cannot sign mix of paths and standard input");

}

if (sig_process_opts(opts, nopts, &hashalg, NULL, NULL) != 0)

goto done; /* error already logged */

if ((r = sshkey_load_public(keypath, &pubkey, NULL)) != 0) {

error_r(r, "Couldn't load public key %s", keypath);

goto done;

Line 2621

Line 2670

if (argc == 0) {

if ((r = sign_one(signkey, "(stdin)", STDIN_FILENO,

sig_namespace, signer, &agent_fd)) != 0)

sig_namespace, hashalg, signer, &agent_fd)) != 0)

goto done;

} else {

for (i = 0; i < argc; i++) {

Line 2633

Line 2682

goto done;

}

if ((r = sign_one(signkey, argv[i], fd, sig_namespace,

signer, &agent_fd)) != 0)

hashalg, signer, &agent_fd)) != 0)

goto done;

if (fd != STDIN_FILENO)

close(fd);

Line 2647

Line 2696

close(fd);

sshkey_free(pubkey);

sshkey_free(privkey);

free(hashalg);

return ret;

}

static int

sig_process_opts(char * const *opts, size_t nopts, uint64_t *verify_timep,

int *print_pubkey)

{

size_t i;

time_t now;

if (verify_timep != NULL)

*verify_timep = 0;

if (print_pubkey != NULL)

*print_pubkey = 0;

for (i = 0; i < nopts; i++) {

if (verify_timep &&

strncasecmp(opts[i], "verify-time=", 12) == 0) {

if (parse_absolute_time(opts[i] + 12,

verify_timep) != 0 || *verify_timep == 0) {

error("Invalid \"verify-time\" option");

return SSH_ERR_INVALID_ARGUMENT;

}

} else if (print_pubkey &&

strcasecmp(opts[i], "print-pubkey") == 0) {

*print_pubkey = 1;

} else {

error("Invalid option \"%s\"", opts[i]);

return SSH_ERR_INVALID_ARGUMENT;

}

if (verify_timep && *verify_timep == 0) {

if ((now = time(NULL)) < 0) {

error("Time is before epoch");

return SSH_ERR_INVALID_ARGUMENT;

}

*verify_timep = (uint64_t)now;

}

return 0;

}

static int

sig_verify(const char *signature, const char *sig_namespace,

const char *principal, const char *allowed_keys, const char *revoked_keys,

char * const *opts, size_t nopts)

Line 2700

Line 2713

struct sshkey_sig_details *sig_details = NULL;

uint64_t verify_time = 0;

if (sig_process_opts(opts, nopts, &verify_time, &print_pubkey) != 0)

if (sig_process_opts(opts, nopts, NULL, &verify_time,

&print_pubkey) != 0)

goto done; /* error already logged */

memset(&sig_details, 0, sizeof(sig_details));

Line 2788

Line 2802

char *principals = NULL, *cp, *tmp;

uint64_t verify_time = 0;

if (sig_process_opts(opts, nopts, &verify_time, NULL) != 0)

if (sig_process_opts(opts, nopts, NULL, &verify_time, NULL) != 0)

goto done; /* error already logged */

if ((r = sshbuf_load_file(signature, &abuf)) != 0) {

Line 2834

Line 2848

char **principals = NULL;

size_t i, nprincipals = 0;

if ((r = sig_process_opts(opts, nopts, NULL, NULL)) != 0)

if ((r = sig_process_opts(opts, nopts, NULL, NULL, NULL)) != 0)

return r; /* error already logged */

if ((r = sshsig_match_principals(allowed_keys, principal,

Line 3190

Line 3204

" file ...\n"

" ssh-keygen -Q [-l] -f krl_file [file ...]\n"

" ssh-keygen -Y find-principals -s signature_file -f allowed_signers_file\n"

" ssh-keygen -Y match-principals -I signer_identity -f allowed_signers_file\n"

" ssh-keygen -Y check-novalidate -n namespace -s signature_file\n"

" ssh-keygen -Y sign -f key_file -n namespace file ...\n"

" ssh-keygen -Y sign -f key_file -n namespace file [-O option] ...\n"

" ssh-keygen -Y verify -f allowed_signers_file -I signer_identity\n"

" -n namespace -s signature_file [-r revocation_file]\n");

" -n namespace -s signature_file [-r krl_file] [-O option]\n");

exit(1);

}

Line 3495

Line 3509

exit(1);

}

return sig_sign(identity_file, cert_principals,

argc, argv);

argc, argv, opts, nopts);

} else if (strncmp(sign_op, "check-novalidate", 16) == 0) {

if (ca_key_path == NULL) {

error("Too few arguments for check-novalidate: "