wolfsshd: mark AuthorizedKeysFile as explicitly set in public setter

[yosuke-wolfssl]

wolfsshd: mark AuthorizedKeysFile as explicitly set in public setter

Summary

wolfSSHD_ConfigSetAuthKeysFile() updated conf->authKeysFile but never set
conf->authKeysFileSet. Applications that configure AuthorizedKeysFile
through the public setter (instead of the config-file parser) left the flag
clear, and RequestAuthentication then skipped the authorized-keys check for
certificate public-key logins, relying on CA validation alone. The setter now
owns the flag so both the parser and public-API paths behave identically.
Addressed by 5581.

Background

RequestAuthentication calls wolfSSHD_ConfigGetAuthKeysFileSet() to decide
whether a certificate public-key login must still be matched against the
configured authorized-keys file. Only the parser path
(HandleConfigOption / OPT_AUTH_KEYS_FILE) set authKeysFileSet; the public
setter did not. An embedder configuring both TrustedUserCAKeys and
AuthorizedKeysFile via the public setters could therefore unintentionally let
any otherwise-valid trusted certificate for the account identity bypass the
authorized-keys restriction.

Changes

• apps/wolfsshd/configuration.c
  • wolfSSHD_ConfigSetAuthKeysFile() now sets authKeysFileSet = 1 only after
    a non-NULL file is configured successfully, and clears it (= 0) when the
    file is removed (file == NULL). The flag stays consistent with
    authKeysFile on every path.
  • Removed the now-redundant (*conf)->authKeysFileSet = 1; assignment in the
    parser path. It previously set the flag before the setter ran, which would
    have wrongly left it set if CreateString() failed; the setter is now the
    single source of truth.
• apps/wolfsshd/test/test_configuration.c
  • Added test_ConfigSetAuthKeysFile: confirms the flag is 0 on a fresh
    config, becomes set after the public setter succeeds, and clears again when
    the file is set to NULL. Registered in testCases[].
  • Comment cleanups in test_ConfigCopy and around test_ConfigFree.

Testing

• apps/wolfsshd/test/test_configuration passes, including the new case.
• Negative control: with the setter's flag-set removed, the new test fails —
  confirming it actually guards the behavior.

[Copilot]

Pull request overview

This PR fixes a security-sensitive configuration inconsistency in wolfsshd by ensuring AuthorizedKeysFile configured through the public API is treated the same as when configured via the config-file parser.

Changes:

• Update wolfSSHD_ConfigSetAuthKeysFile() so it sets/clears authKeysFileSet when the public setter is used.
• Remove the redundant (and failure-prone) authKeysFileSet assignment from the config parser path.
• Add a unit test to validate the authKeysFileSet flag behavior when using the public setter.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

File	Description
apps/wolfsshd/configuration.c	Moves authKeysFileSet ownership into the public setter and removes the parser-side pre-set.
apps/wolfsshd/test/test_configuration.c	Adds a unit test covering authKeysFileSet transitions via the public setter and updates related comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[wolfSSL-Fenrir-bot]

Fenrir Automated Review — PR #1044

Scan targets checked: wolfssh-bugs, wolfssh-src

No new issues found in the changed files. ✅