b7c6ee7b43
Fix punctuatio and typo in README.md.
...
Some very minor fixes, missing 's' and punctuation.
2021-02-27 12:26:08 +11:00
6248b86074
Revert "ssh: optional bind interface if bind address specified."
...
This reverts commit 5a878a71a3
2021-02-26 16:45:50 +11:00
493339a940
detech BSD libc hash functions in libbsd / libmd
...
Some Linux distributions are shipping the BSD-style hashing functions
(e.g. SHA256Update) in libbsd and/or libmd. Detect this situation to
avoid header/replacement clashes later. ok dtucker@
2021-02-26 15:46:47 +11:00
5a878a71a3
ssh: optional bind interface if bind address specified.
...
Allows the -b and -B options to be used together.
For example, when the interface is in the VRF.
2021-02-26 15:46:47 +11:00
1fe4d70df9
upstream: remove this KEX fuzzer; it's awkward to use and doesn't play
...
nice with popular fuzzing drivers like libfuzzer. AFAIK nobody has used it
but me.
OpenBSD-Regress-ID: cad919522b3ce90c147c95abaf81b0492ac296c9
2021-02-26 15:23:42 +11:00
24a3a67bd7
Remove macos-11.00 PAM test target too.
...
These are failing apparently due to some kind of infrastructure problem,
making it look like every commit is busted.
2021-02-26 11:50:37 +11:00
473201783f
upstream: a bit more debugging behind #ifdef DEBUG_SK
...
OpenBSD-Commit-ID: d9fbce14945721061cb322f0084c2165d33d1993
2021-02-26 11:18:26 +11:00
fd9fa76a34
Remove macos-11.0 from the test target list.
...
It has been consistently failing for the past few days with a github
actions internal error.
2021-02-26 01:15:10 +11:00
476ac8e9d3
tidy the $INSTALLKEY_SH code layout a little
...
SSH-Copy-ID-Upstream: 78178aa5017222773e4c23d9001391eeaeca8983
2021-02-26 01:06:15 +11:00
983e05ef3b
if unable to add a missing newline, fail
...
SSH-Copy-ID-Upstream: 76b25e18f55499ea9edb4c4d6dc4a80bebc36d95
2021-02-26 01:06:15 +11:00
3594b3b015
use $AUTH_KEY_DIR, now that we have it
...
since that was a change made since jjelen's commit was written
also, quote the variables
SSH-Copy-ID-Upstream: 588cd8e5cbf95f3443d92b9ab27c5d73ceaf6616
2021-02-26 01:06:15 +11:00
333e25f7bc
restorecon the correct directory
...
if using different path for authorized_keys file
SSH-Copy-ID-Upstream: 791a3df47b48412c726bff6f7b1d190721e65d51
2021-02-26 01:06:15 +11:00
9beeab8a37
upstream: s/PubkeyAcceptedKeyTypes/PubkeyAcceptedAlgorithms/
...
OpenBSD-Regress-ID: 3dbc005fa29f69dc23d97e433b6dffed6fe7cb69
2021-02-25 15:15:46 +11:00
2dd9870c16
upstream: Rename pubkeyacceptedkeytypes to pubkeyacceptedalgorithms in
...
test to match change to config-dump output.
OpenBSD-Regress-ID: 74c9a4ad50306be873d032819d5e55c24eb74d5d
2021-02-25 10:31:47 +11:00
b9225c3a1c
upstream: Put obsolete aliases for hostbasedalgorithms and
...
pubkeyacceptedalgorithms after their current names so that the config-dump
mode finds and uses the current names. Spotted by Phil Pennock.
OpenBSD-Commit-ID: 5dd10e93cccfaff3aaaa09060c917adff04a9b15
2021-02-25 00:28:45 +11:00
8b8b60542d
upstream: lots more s/key types/signature algorithms/ mostly in
...
HostbasedAcceptedAlgorithms and HostKeyAlgorithms; prompted by Jakub Jelen
OpenBSD-Commit-ID: 3f719de4385b1a89e4323b2549c66aae050129cb
2021-02-24 08:56:22 +11:00
0aeb508aaa
upstream: Correct reference to signature algorithms as keys; from
...
Jakub Jelen
OpenBSD-Commit-ID: 36f7ecee86fc811aa0f8e21e7a872eee044b4be5
2021-02-24 08:56:22 +11:00
f186a020f2
Add a couple more test VMs.
2021-02-23 16:05:22 +11:00
ffcdd3d90e
Valgrind test: split and move up list.
...
Since the valgrind test takes so long it approaches the limit allowed by
github, move it to the head of the list so it's the first one started and
split the longest tests out into a second instance that runs concurrently
with the first.
2021-02-23 11:18:49 +11:00
c3b1636770
upstream: warn when the user specifies a ForwardAgent path that does
...
not exist and exit if ExitOnForwardFailure is set; bz3264
OpenBSD-Commit-ID: 72f7875865e723e464c71bf8692e83110699bf26
2021-02-23 11:09:07 +11:00
5fcb051494
Disable rlimit sandbox, doesn't work with valgrind
...
Only run regress tests, runing unit tests as well makes it run longer
than allowed y github.
2021-02-21 15:39:01 +11:00
bb0b9bf453
Upload valgrind logs on failure.
2021-02-20 13:29:41 +11:00
ebb3b75e97
Rename "vm" to "os" in selfhosted to match c-cpp.
...
Should make it easier to share code or maybe merge at some point.
2021-02-19 22:20:00 +11:00
76c0be0fe0
Upload regress failure logs in c-cpp too.
2021-02-19 22:19:38 +11:00
8751b6c313
Comment out Solaris 64bit PAM build...
...
until I can figure out why it's failing.
2021-02-19 22:13:36 +11:00
e9f6d563c0
Actually run Valgrind tests.
2021-02-19 10:20:17 +11:00
41d232e226
Add test against Valgrind.
2021-02-19 10:16:56 +11:00
e6528d91f1
Add fbsd12 test target.
2021-02-18 16:30:01 +11:00
6506cb2798
Remove unused arg.
2021-02-18 15:21:13 +11:00
93c31a6239
Add DEBUG_SK to kitchensink builds.
2021-02-18 14:54:07 +11:00
65085740d3
Add bbone test target (arm32).
2021-02-18 14:53:14 +11:00
63238f5aed
upstream: Fix the hostkeys rotation extension documentation
...
The documentation was lacking the needed want-reply field in the initial
global request.
https://github.com/openssh/openssh-portable/pull/218 by dbussink
OpenBSD-Commit-ID: 051824fd78edf6d647a0b9ac011bf88e28775054
2021-02-18 13:50:37 +11:00
34c5ef6e2d
upstream: make names in function prototypes match those in
...
definition from https://github.com/openssh/openssh-portable/pull/225 by
ZenithalHourlyRate
OpenBSD-Commit-ID: 7c736307bf3f2c7cb24d6f82f244eee959485acd
2021-02-18 13:17:43 +11:00
88e3d4de31
upstream: unbreak SK_DEBUG builds
...
from https://github.com/openssh/openssh-portable/pull/225 by
ZenithalHourlyRate
OpenBSD-Commit-ID: 28d7259ce1b04d025411464decfa2f1a097b43eb
2021-02-18 13:17:43 +11:00
788cbc5b74
upstream: sftp-server: implement limits@openssh.com extension
...
This is a simple extension that allows the server to clearly
communicate transfer limits it is imposing so the client doesn't
have to guess, or force the user to manually tune. This is
particularly useful when an attempt to use too large of a value
causes the server to abort the connection.
Patch from Mike Frysinger; ok dtucker@
OpenBSD-Commit-ID: f96293221e5aa24102d9bf30e4f4ef04d5f4fb51
2021-02-18 13:17:43 +11:00
324449a68d
support OpenSSL 3.x cipher IV API change
...
OpenSSL renamed the "get current CIPHER_CTX" IV operation in 3.x.
This uses the new name if available.
https://github.com/openssl/openssl/issues/13411
bz#3238 ok dtucker@
2021-02-18 12:06:25 +11:00
845fe9811c
prefer login_getpwclass() to login_getclass()
...
FreeBSD has login_getpwclass() that does some special magic for
UID=0. Prefer this to login_getclass() as its easier to emulate
the former with the latter.
Based on FreeBSD PR 37416 via Ed Maste; ok dtucker@
2021-02-18 11:27:09 +11:00
d0763c8d56
Fixing quoting for installing moduli on target guest.
2021-02-18 11:05:48 +11:00
b3afc243bc
Install moduli on target not host.
2021-02-18 10:41:58 +11:00
f060c2bc85
don't free string returned by login_getcapstr(3)
...
OpenBSD and NetBSD require the caller to free strings returned
bu the login_* functions, but FreeBSD requires that callers don't.
Fortunately in this case, we can harmlessly leak as the process is
about to exec the shell/command.
From https://reviews.freebsd.org/D28617 via Ed Maste; ok dtucker@
2021-02-18 10:36:54 +11:00
bc9b0c2570
Skip unit tests on sol11 to speed things up.
2021-02-18 10:10:00 +11:00
161873035c
Remove SKIP_UNIT as it needs to be a make arg.
2021-02-18 10:09:27 +11:00
1c293868e4
Always intall moduli.
...
Allows us to run tests without falling back to a fixed modulus. Ensure that
the directory exists.
2021-02-18 10:05:03 +11:00
5c8f41ad10
Quote SSHD_CONFOPTS in case it contains spaces.
2021-02-18 09:59:09 +11:00
4653116c1f
Fix labels on targets (dots vs underscores).
2021-02-18 09:51:18 +11:00
4512047f57
More compact representation of config matrix.
2021-02-17 21:47:48 +11:00
0406cd09f0
Skip unit tests on hosted VMs to speed things up.
2021-02-17 21:19:18 +11:00
4582612e61
Merge macos and ubuntu tests.
2021-02-17 20:46:03 +11:00
09f4b84654
Convert most github hosted tests to new config structure.
2021-02-17 20:46:03 +11:00
65380ff7e0
Only run selfhosted tests from selfhosted repo.
2021-02-17 18:27:36 +11:00
Jeffrey H. Johnson
Damien Miller
Dmitrii Turlupov
djm@openbsd.org
Darren Tucker
Philip Hands
Jakub Jelen
dtucker@openbsd.org