mirror of
https://github.com/freebsd/freebsd-src
synced 2024-07-21 10:19:04 +00:00
069ac18495
From the release notes, > This release contains a number of security fixes, some small features > and bugfixes. The most significant change in 9.6p1 is a set of fixes for a newly- discovered weakness in the SSH transport protocol. The fix was already merged into FreeBSD and released as FreeBSD-SA-23:19.openssh. Full release notes at https://www.openssh.com/txt/release-9.6 Relnotes: Yes Sponsored by: The FreeBSD Foundation
32 lines
879 B
Bash
32 lines
879 B
Bash
# $OpenBSD: conch-ciphers.sh,v 1.7 2023/10/26 12:44:07 dtucker Exp $
|
|
# Placed in the Public Domain.
|
|
|
|
tid="conch ciphers"
|
|
|
|
if test "x$REGRESS_INTEROP_CONCH" != "xyes" ; then
|
|
skip "conch interop tests not enabled"
|
|
fi
|
|
|
|
if ! [ -t 0 ]; then
|
|
skip "conch interop tests requires a controlling terminal"
|
|
fi
|
|
|
|
start_sshd
|
|
|
|
for c in aes256-ctr aes256-cbc aes192-ctr aes192-cbc aes128-ctr aes128-cbc \
|
|
cast128-cbc blowfish 3des-cbc ; do
|
|
verbose "$tid: cipher $c"
|
|
rm -f ${COPY}
|
|
# XXX the 2nd "cat" seems to be needed because of buggy FD handling
|
|
# in conch
|
|
${CONCH} --identity $OBJ/ssh-ed25519 --port $PORT --user $USER -e none \
|
|
--known-hosts $OBJ/known_hosts --notty --noagent --nox11 -n \
|
|
127.0.0.1 "cat ${DATA}" 2>/dev/null | cat > ${COPY}
|
|
if [ $? -ne 0 ]; then
|
|
fail "ssh cat $DATA failed"
|
|
fi
|
|
cmp ${DATA} ${COPY} || fail "corrupted copy"
|
|
done
|
|
rm -f ${COPY}
|
|
|