← nischoy.ai

OpenSSH Verification

SMT2 formal verification of security-critical code paths

ALL VERIFIED
Overall
15
Properties Checked
15
Verified
0
Failed

Max Auth Tries Bounds (1-100)

🌳 tree-sitter (partial) VERIFIED

Function: auth_maxtries_exceeded · Z3 solved in 0.1ms

Max authentication tries bounded. auth_maxtries_exceeded() in auth.c checks against options.max_authtries.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun max_authtries () Int)
(assert
 (<= max_authtries 100))
(assert
 (>= max_authtries 1))
(assert
 (or (< max_authtries 1) (> max_authtries 100)))
(check-sat)

Channel ID Bounds (0-65535)

🌳 tree-sitter (partial) VERIFIED

Function: channel_by_id · Z3 solved in 0.0ms

SSH channel ID bounded. channel_by_id() in channels.c validates the ID against channels array.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun channel_id () Int)
(assert
 (<= channel_id 65535))
(assert
 (>= channel_id 0))
(assert
 (or (< channel_id 0) (> channel_id 65535)))
(check-sat)

SSH Packet Length Bounds (5-262144)

🌳 tree-sitter (partial) VERIFIED

Function: ssh_packet_read_poll2 · Z3 solved in 0.0ms

SSH packet length bounded to PACKET_MAX_SIZE (256*1024=262144). From ssh_packet_read_poll2() in packet.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun packet_len () Int)
(assert
 (<= packet_len 262144))
(assert
 (>= packet_len 5))
(assert
 (or (< packet_len 5) (> packet_len 262144)))
(check-sat)

SSH Key Bit Length Bounds (1024-16384)

🌳 tree-sitter (partial) VERIFIED

Function: sshkey_generate · Z3 solved in 0.0ms

SSH key bit length bounded. sshkey_generate() in sshkey.c validates key size.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun key_bits () Int)
(assert
 (<= key_bits 16384))
(assert
 (>= key_bits 1024))
(assert
 (or (< key_bits 1024) (> key_bits 16384)))
(check-sat)

SSH Packet Padding Length Bounds (4-255)

🌳 tree-sitter (partial) VERIFIED

Function: ssh_packet_read_poll2 · Z3 solved in 0.0ms

SSH packet padding 4-255 bytes per RFC 4253 §6. From ssh_packet_read_poll2() in packet.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun padding_len () Int)
(assert
 (<= padding_len 255))
(assert
 (>= padding_len 4))
(assert
 (or (< padding_len 4) (> padding_len 255)))
(check-sat)

KEX Proposal Length Bounds (1-32768)

🌳 tree-sitter (partial) VERIFIED

Function: kex_input_kexinit · Z3 solved in 0.0ms

KEX proposal string length bounded to prevent memory exhaustion. From kex_input_kexinit() in kex.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun kex_proposal_len () Int)
(assert
 (<= kex_proposal_len 32768))
(assert
 (>= kex_proposal_len 1))
(assert
 (or (< kex_proposal_len 1) (> kex_proposal_len 32768)))
(check-sat)

Max Startups Bounds (1-1024)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

MaxStartups bounded 1-1024 to limit concurrent unauthenticated connections. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun max_startups () Int)
(assert
 (<= max_startups 1024))
(assert
 (>= max_startups 1))
(assert
 (or (< max_startups 1) (> max_startups 1024)))
(check-sat)

LoginGraceTime Bounds (1-3600)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

LoginGraceTime defaults to 120s, bounded 1-3600 to ensure finite auth timeout. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun login_grace_time () Int)
(assert
 (<= login_grace_time 3600))
(assert
 (>= login_grace_time 1))
(assert
 (or (< login_grace_time 1) (> login_grace_time 3600)))
(check-sat)

MaxSessions Bounds (1-1024)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

MaxSessions defaults to 10, bounded 1-1024 to limit session multiplexing per connection. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun max_sessions () Int)
(assert
 (<= max_sessions 1024))
(assert
 (>= max_sessions 1))
(assert
 (or (< max_sessions 1) (> max_sessions 1024)))
(check-sat)

ClientAliveCountMax Bounds (0-256)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

ClientAliveCountMax defaults to 3, bounded 0-256 to limit missed keepalives before disconnect. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun client_alive_count_max () Int)
(assert
 (<= client_alive_count_max 256))
(assert
 (>= client_alive_count_max 0))
(assert
 (or (< client_alive_count_max 0) (> client_alive_count_max 256)))
(check-sat)

ClientAliveInterval Bounds (0-3600)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

ClientAliveInterval defaults to 0 (disabled), bounded 0-3600s to prevent excessively long keepalive intervals. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun client_alive_interval () Int)
(assert
 (<= client_alive_interval 3600))
(assert
 (>= client_alive_interval 0))
(assert
 (or (< client_alive_interval 0) (> client_alive_interval 3600)))
(check-sat)

PerSourceMasklenIPv4 Bounds (0-32)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

PerSourceNetBlockSize IPv4 mask defaults to 32 (single host), bounded 0-32 to ensure valid CIDR prefix length for per-source rate limiting. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun per_source_masklen_ipv4 () Int)
(assert
 (<= per_source_masklen_ipv4 32))
(assert
 (>= per_source_masklen_ipv4 0))
(assert
 (or (< per_source_masklen_ipv4 0) (> per_source_masklen_ipv4 32)))
(check-sat)

PerSourceMasklenIPv6 Bounds (0-128)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

PerSourceNetBlockSize IPv6 mask defaults to 128 (single host), bounded 0-128 to ensure valid CIDR prefix length for per-source rate limiting. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun per_source_masklen_ipv6 () Int)
(assert
 (<= per_source_masklen_ipv6 128))
(assert
 (>= per_source_masklen_ipv6 0))
(assert
 (or (< per_source_masklen_ipv6 0) (> per_source_masklen_ipv6 128)))
(check-sat)

MaxStartupsRate Bounds (0-100)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

MaxStartups rate (connection drop probability percentage) defaults to 30, bounded 0-100 to ensure valid percentage. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun max_startups_rate () Int)
(assert
 (<= max_startups_rate 100))
(assert
 (>= max_startups_rate 0))
(assert
 (or (< max_startups_rate 0) (> max_startups_rate 100)))
(check-sat)

PerSourcePenaltyMin Bounds (0-3600)

🌳 tree-sitter (partial) VERIFIED

Function: fill_default_server_options · Z3 solved in 0.0ms

PerSourcePenalties minimum penalty duration defaults to 15s, bounded 0-3600 to prevent negative or absurdly long minimum penalties for misbehaving clients. From fill_default_server_options() in servconf.c.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun penalty_min () Int)
(assert
 (<= penalty_min 3600))
(assert
 (>= penalty_min 0))
(assert
 (or (< penalty_min 0) (> penalty_min 3600)))
(check-sat)

Last verified: 2026-03-25 06:03:54 UTC · Solver: Z3 4.16.0