mirror of
https://github.com/freebsd/freebsd-src
synced 2024-07-21 10:19:04 +00:00
069ac18495
From the release notes, > This release contains a number of security fixes, some small features > and bugfixes. The most significant change in 9.6p1 is a set of fixes for a newly- discovered weakness in the SSH transport protocol. The fix was already merged into FreeBSD and released as FreeBSD-SA-23:19.openssh. Full release notes at https://www.openssh.com/txt/release-9.6 Relnotes: Yes Sponsored by: The FreeBSD Foundation
34 lines
937 B
Bash
34 lines
937 B
Bash
# $OpenBSD: dropbear-ciphers.sh,v 1.1 2023/10/20 06:56:45 dtucker Exp $
|
|
# Placed in the Public Domain.
|
|
|
|
tid="dropbear ciphers"
|
|
|
|
if test "x$REGRESS_INTEROP_DROPBEAR" != "xyes" ; then
|
|
skip "dropbear interop tests not enabled"
|
|
fi
|
|
|
|
cat >>$OBJ/sshd_proxy <<EOD
|
|
PubkeyAcceptedAlgorithms +ssh-rsa,ssh-dss
|
|
HostkeyAlgorithms +ssh-rsa,ssh-dss
|
|
EOD
|
|
|
|
ciphers=`$DBCLIENT -c help 2>&1 | awk '/ ciphers: /{print $4}' | tr ',' ' '`
|
|
macs=`$DBCLIENT -m help 2>&1 | awk '/ MACs: /{print $4}' | tr ',' ' '`
|
|
keytype=`(cd $OBJ/.dropbear && ls id_*)`
|
|
|
|
for c in $ciphers ; do
|
|
for m in $macs; do
|
|
for kt in $keytype; do
|
|
verbose "$tid: cipher $c mac $m kt $kt"
|
|
rm -f ${COPY}
|
|
env HOME=$OBJ dbclient -y -i $OBJ/.dropbear/$kt 2>$OBJ/dbclient.log \
|
|
-c $c -m $m -J "$OBJ/ssh_proxy.sh" somehost cat ${DATA} > ${COPY}
|
|
if [ $? -ne 0 ]; then
|
|
fail "ssh cat $DATA failed"
|
|
fi
|
|
cmp ${DATA} ${COPY} || fail "corrupted copy"
|
|
done
|
|
done
|
|
done
|
|
rm -f ${COPY}
|