summaryrefslogtreecommitdiffstats
path: root/regress (follow)
Commit message (Collapse)AuthorAgeFilesLines
* upstream: regression test for UpdateHostkeys with multiple keys backeddjm@openbsd.org6 days1-1/+25
| | | | | | by ssh-agent. Patch from Maxime Rey. OpenBSD-Regress-ID: 1777ab6e639e57c0e20cbcb6df60455b49fd8bb3
* upstream: test SIGUSR1 dropping all keys from ssh-agentdjm@openbsd.org2024-10-241-2/+25
| | | | OpenBSD-Regress-ID: 8654b9aa8eb695b1499fffc408c25319592bf0e0
* upstream: Remove sshd logfile in start_sshddtucker@openbsd.org2024-10-221-1/+4
| | | | | | | | ... and ssh and sshd log wrappers before recreating them. Prevents "can't create" errors during tests when running tests without SUDO after having run them with SUDO. OpenBSD-Regress-ID: 2f0a83532e3dccd673a9bf0291090277268c69a6
* upstream: regress support for split sshd-auth binarydjm@openbsd.org2024-10-141-1/+6
| | | | OpenBSD-Regress-ID: df7d18a87b475f70004770f0f4e404adba5f6ab7
* upstream: test some more Match syntax, including criteria=arg anddjm@openbsd.org2024-10-143-48/+50
| | | | | | negations OpenBSD-Regress-ID: 67476baccc60bf1a255fd4e329ada950047b8b8d
* fix bug in recently-added sntrup761 fuzzerDamien Miller2024-09-171-2/+2
| | | | | key values need to be static to persist across invocations; spotted by the Qualys Security Advisory team.
* avoid gcc warning in fuzz testDamien Miller2024-09-151-1/+1
|
* test for compiler feature needed for ML-KEMDamien Miller2024-09-091-1/+3
| | | | | | | The ML-KEM implementation we uses need the compiler to support C99-style named struct initialisers (e.g foo = {.bar = 1}). We still support (barely) building OpenSSH with older compilers, so add a configure test for this.
* upstream: test mlkem768x25519-sha256djm@openbsd.org2024-09-092-2/+5
| | | | OpenBSD-Regress-ID: 7baf6bc39ae55648db1a2bfdc55a624954847611
* add basic fuzzers for our import of sntrup761Damien Miller2024-09-045-14/+263
|
* upstream: regression test for Include variable expansiondjm@openbsd.org2024-09-031-2/+24
| | | | OpenBSD-Regress-ID: 35477da3ba1abd9ca64bc49080c50a9c1350c6ca
* upstream: fix test: -F is the argument to specify a non-defaultdjm@openbsd.org2024-08-281-3/+3
| | | | | | ssh_config, not -f (this is sadly not a new bug) OpenBSD-Regress-ID: 45a7bda4cf33f2cea218507d8b6a55cddbcfb322
* upstream: Use aes128-ctr for MAC tests since default has implicit MAC.dtucker@openbsd.org2024-08-221-8/+19
| | | | | | | Also verify that the Cipher or MAC we intended to use is actually the one selected during the test. OpenBSD-Regress-ID: ff43fed30552afe23d1364526fe8cf88cbfafe1d
* upstream: Some awks won't match on the \r so delete it instead. Fixesdtucker@openbsd.org2024-08-211-3/+3
| | | | | | regress in portable on, eg Solaris. OpenBSD-Regress-ID: 44a96d6d2f8341d89b7d5fff777502b92ac9e9ba
* upstream: Use curve25519-sha256 kex where possible.dtucker@openbsd.org2024-08-211-2/+13
| | | | | | | | | Except where we're explicitly testing a different kex, use curve25519-sha256 since it's faster than the default and supported even when configured without OpenSSL. Add a check to ensure that the kex we intended to test is the one we actually tested. Speeds test up by ~5%. OpenBSD-Regress-ID: 3b27fcc2ae953cb08fd82a0d3155c498b226d6e0
* upstream: Send only as much data as needed to trigger rekeying. Speedsdtucker@openbsd.org2024-08-211-14/+23
| | | | | | | up tests by about 10% in the common case, hopefully more when instrumented with something like valgrind. OpenBSD-Regress-ID: 7bf9292b4803357efcf0baf7cfbdc8521f212da1
* upstream: Merge AEAD test into main test loop.dtucker@openbsd.org2024-08-201-12/+10
| | | | | | Removes 3 duplicate tests and speeds overall test up by about 1%. OpenBSD-Regress-ID: 5e5c9ff3f7588091ed369e34ac28520490ad2619
* upstream: Set a default RekeyLimit of 256k.dtucker@openbsd.org2024-08-201-3/+4
| | | | | | | Used unless overridden by a command-line flag, which simplifies some of the ssh command lines. OpenBSD-Regress-ID: e7cffa57027088e10336e412b34113969f88cb87
* upstream: Add Compression=no to default ssh_config.dtucker@openbsd.org2024-08-201-7/+9
| | | | | | | All of the rekey tests use it (otherwise the encrypted byte counts would not match) so this lets us simplify the command lines. OpenBSD-Regress-ID: dab7ce10f4cf6c68827eb8658141272aab3ea262
* upstream: Remove duplicate curve25519-sha256 kex.dtucker@openbsd.org2024-08-201-4/+10
| | | | | | | curve25519-sha256@libssh.org is the pre-standardization name for the same thing, so remove it as a duplicate. Speeds up test by a tiny amount. OpenBSD-Regress-ID: 5a5ee5fa1595a6e140b1cc16040bedf5996a5715
* upstream: Unnest rekey param parsing test and use ssh not sshd.dtucker@openbsd.org2024-08-201-12/+12
| | | | | | | | | ssh uses the same parsing code, now has "-G" to dump its config and is slightly faster to start up. This speeds up the test slightly (~5%) in the common case but should help more during instrumented tests, eg under valgrind, where startup costs are magnified. OpenBSD-Regress-ID: 07c3acaf4c728e641033071f4441afc88141b0d0
* upstream: adapt to EVP_PKEY conversiondjm@openbsd.org2024-08-153-25/+30
| | | | OpenBSD-Regress-ID: 0e2d4efb0ed0e392e23cd8fda183fe56531ac446
* upstream: test transfers in mux proxy mode toodjm@openbsd.org2024-08-151-14/+15
| | | | OpenBSD-Regress-ID: 2edfc980628cfef3550649cab8d69fa23b5cd6c4
* upstream: use "lcd" to change directory before "lls" rather then "cd",djm@openbsd.org2024-07-011-2/+2
| | | | | | | since the directory we're trying to list is local. Spotted by Corinna Vinschen OpenBSD-Regress-ID: 821feca4a4bebe491944e624c8f7f2990b891415
* upstream: Work around dbclient cipher/mac query bug.dtucker@openbsd.org2024-06-201-10/+5
| | | | | | | | | Unlike earlier versions, recent Dropbear (at least v2024.85) requires a host arg when querying supported ciphers and macs via "-c/-m help". Earlier versions accept but do not require it, so always provide it. If these queries fail, skip the test with a warning. OpenBSD-Regress-ID: 98eb863a3f0363416922efb273885e6b3c7f68d4
* upstream: Remove dropbear key types not supporteddtucker@openbsd.org2024-06-201-11/+9
| | | | | | | by current OpenSSH. Allows subsequent test runs to work if OpenSSH is rebuilt w/out OpenSSL. OpenBSD-Regress-ID: e0129eb2b1d31771105903a8055216fbba20a770
* upstream: Provide defaults for ciphers and macsdtucker@openbsd.org2024-06-191-3/+13
| | | | | | | | if querying for them fails since on some versions of Dropbear (at least v2024.85) "-m help" doesn't seem to work. Enable all supported pubkey algorithms in the server. OpenBSD-Regress-ID: 4f95556a49ee9f621789f25217c367a33d2745ca
* upstream: Use ed25519 keys for kex testsdtucker@openbsd.org2024-06-191-8/+6
| | | | | | | since that's supported by OpenSSH even when built without OpenSSL. Only test diffie-hellman kex if OpenSSH is compiled with support for it. OpenBSD-Regress-ID: a5d09ef9bbd171f9e4ec73ed0d9eeb49a8878e97
* upstream: Rework dropbear key setupdtucker@openbsd.org2024-06-191-8/+16
| | | | | | | to always generate ed25519 keys, other types only if OpenSSH has support for the corresponding key type. OpenBSD-Regress-ID: 8f91f12604cddb9f8d93aa34f3f93a3f6074395d
* upstream: Re-enable ssh-dss testsdtucker@openbsd.org2024-06-181-1/+5
| | | | | | ... if ssh is compiled with DSA support OpenBSD-Regress-ID: bbfaf8c17f2b50a2d46ac35cb97af99b990c990d
* upstream: Stop using DSA in dropbear interop tests.anton@openbsd.org2024-06-182-5/+5
| | | | OpenBSD-Regress-ID: abfd4457d99d8cc1417fd22ca2c570270f74c1cf
* missed a bit of DSA in the fuzzerDamien Miller2024-06-181-3/+4
|
* DSA support is disabled, so remove from fuzzersDamien Miller2024-06-183-9/+1
|
* upstream: same treatment for this testdjm@openbsd.org2024-06-161-0/+1
| | | | OpenBSD-Regress-ID: d0cc9efca7833e673ea7b0cb3a679a3acee8d4c7
* upstream: penalty test is still a bit racydjm@openbsd.org2024-06-161-0/+4
| | | | OpenBSD-Regress-ID: 90c9ac224db454637baf1ebee5857e007321e824
* upstream: crank up penalty timeouts so this should work on even thedjm@openbsd.org2024-06-151-1/+1
| | | | | | slowest of test builders OpenBSD-Regress-ID: 70bda39c83e3fc9d0f3c1fad4542ed33e173d468
* upstream: split the PerSourcePenalties test in two: one tests penaltydjm@openbsd.org2024-06-143-8/+40
| | | | | | | | enforcement but not penalty expiry, the other tests penalty expiry. This lets us disable the expiry testing in certain CI test environments. OpenBSD-Regress-ID: f56811064f3e3cb52ee73a206b8c2a06af1c8791
* upstream: don't redirect stderr for ssh-keyscan we expect to succeeddjm@openbsd.org2024-06-141-1/+1
| | | | OpenBSD-Regress-ID: 8878b8eb4e070ed2e343166d3eb86db4a08a216c
* upstream: specify an algorithm for ssh-keyscan, otherwise it will makedjm@openbsd.org2024-06-141-2/+2
| | | | | | multiple attempts simultaneously and confuse the test OpenBSD-Regress-ID: 6e910f3315c4345053db1bf5cbf61826b194d0b9
* missing file for PerSourcePenalties regress testDamien Miller2024-06-131-0/+51
|
* upstream: fix PIDFILE handling, broken for SUDO=doas in last commitdjm@openbsd.org2024-06-111-1/+3
| | | | | | here OpenBSD-Regress-ID: 96fec579af228f87a036e94801eb294af9074625
* upstream: regress test for PerSourcePenaltiesdjm@openbsd.org2024-06-061-2/+3
| | | | OpenBSD-Regress-ID: a1af13d411b25a727742644459d26480b9a1b0f1
* upstream: make sure logs are saved from sshd run via start_sshddjm@openbsd.org2024-06-061-1/+2
| | | | OpenBSD-Regress-ID: de4ef0e32e3ab85ff3a6c36eb08d1909c0dd1b4a
* upstream: simplifydjm@openbsd.org2024-06-061-25/+23
| | | | OpenBSD-Regress-ID: 50316e0d1ae0c0a057a45af042253e54ce23d11c
* upstream: prepare for PerSourcePenalties being enabled by defaultdjm@openbsd.org2024-06-061-1/+2
| | | | | | in future OpenBSD-Regress-ID: 5236c6d1c823997aac5a35e2915da30f1903bec7
* upstream: this test has been broken since 2014, and has beendjm@openbsd.org2024-05-221-2/+2
| | | | | | | | | testing the same key exchange algorithm repeatedly instead of testing all of them. Spotted by nreilly AT blackberry.com in bz3692 Who broke the test? me. OpenBSD-Regress-ID: 48f4f5946276f975667141957d25441b3c9a50e2
* upstream: Add missing kex-names.c source file required since theanton@openbsd.org2024-05-221-1/+2
| | | | | | ssh split. OpenBSD-Regress-ID: ca666223f828fc4b069cb9016bff1eb50faf9fbb
* upstream: allow overriding the sshd-session binary pathdjm@openbsd.org2024-05-171-1/+6
| | | | OpenBSD-Regress-ID: 5058cd1c4b6ca1a15474e33546142931d9f964da
* upstream: Since ssh-agent(1) is only readable by root by now, useanton@openbsd.org2024-05-171-3/+3
| | | | | | ssh(1) while generating data in tests. OpenBSD-Regress-ID: 24eb40de2e6b0ace185caaba35e2d470331ffe68
* Shell syntax fix (leftover from a sync).renmingshuai2024-04-251-1/+1
| | | | Signed-off-by: renmingshuai <renmingshuai@huawei.com>
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-03 08:13:11 +0100