RepoMirrors/openssh
1
0
Fork 0
mirror of git://anongit.mindrot.org/openssh.git synced 2024-12-28 04:52:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,575 Commits 69 Branches 0 Tags 27 MiB
0088c57af3
Commit Graph

446 Commits

Author SHA1 Message Date
Damien Miller
c332110291 some systems lack SO_REUSEPORT 2015-01-15 02:59:51 +11:00
djm@openbsd.org
c4bfafcc2a upstream commit 
adjust for sshkey_load_file() API change
 2015-01-09 00:46:04 +11:00
Damien Miller
293cac52dc include and use OpenBSD netcat in regress/ 2014-12-23 08:38:12 +11:00
djm@openbsd.org
4bea0ab329 upstream commit 
regression test for multiple required pubkey authentication;
 ok markus@
 2014-12-22 19:13:38 +11:00
djm@openbsd.org
0d1b241a26 upstream commit 
make this slightly easier to diff against portable
 2014-12-22 17:21:51 +11:00
Damien Miller
0715bcdddb add missing regress output file 2014-12-22 13:47:07 +11:00
djm@openbsd.org
1e30483c8a upstream commit 
adjust for new SHA256 key fingerprints and
 slightly-different MD5 hex fingerprint format
 2014-12-22 13:21:07 +11:00
djm@openbsd.org
6b40567ed7 upstream commit 
poll changes to netcat (usr.bin/netcat.c r1.125) broke
 this test; fix it by ensuring more stdio fds are sent to devnull
 2014-12-22 13:18:41 +11:00
djm@openbsd.org
3dfd8d93df upstream commit 
add tests for new client RevokedHostKeys option; refactor
 to make it a bit more readable
 2014-12-05 09:31:08 +11:00
krw@openbsd.org
a31046cad1 upstream commit 
Nuke yet more obvious #include duplications.

ok deraadt@
 2014-12-05 09:31:07 +11:00
djm@openbsd.org
51b64e4412 upstream commit 
fix KRL generation when multiple CAs are in use

We would generate an invalid KRL when revoking certs by serial
number for multiple CA keys due to a section being written out
twice.

Also extend the regress test to catch this case by having it
produce a multi-CA KRL.

Reported by peter AT pean.org
 2014-11-19 09:20:14 +11:00
Damien Miller
1b215c098b - (djm) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c] 
[regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
   [regress/unittests/sshkey/common.c]
   [regress/unittests/sshkey/test_file.c]
   [regress/unittests/sshkey/test_fuzz.c]
   [regress/unittests/sshkey/test_sshkey.c] Don't include openssl/ec.h
   on !ECC OpenSSL systems
 2014-08-27 04:04:40 +10:00
Damien Miller
4f1ff1ed78 - (djm) [regress/unittests/test_helper/test_helper.c] Fix for systems that 
don't set __progname. Diagnosed by Tom Christensen.
 2014-08-21 15:54:50 +10:00
Damien Miller
f8988fbef0 - (djm) [regress/multiplex.sh] Use -d (detach stdin) flag to disassociate 
nc from stdin, it's more portable
 2014-08-01 13:31:52 +10:00
Damien Miller
5b3879fd4b - (djm) [regress/multiplex.sh] Instruct nc not to quit as soon as stdin 
is closed; avoid regress failures when stdin is /dev/null
 2014-08-01 12:28:31 +10:00
Damien Miller
a9c46746d2 - (djm) [regress/multiplex.sh] Skip test for non-OpenBSD netcat. We need 
a better solution, but this will have to do for now.
 2014-08-01 12:26:49 +10:00
Damien Miller
56b840f2b8 - (djm) [regress/multiplex.sh] restore incorrectly deleted line; 
pointed out by Christian Hesse
 2014-07-25 08:11:30 +10:00
Darren Tucker
dd417b60d5 - dtucker@cvs.openbsd.org 2014/07/22 23:35:38 
[regress/unittests/sshkey/testdata/*]
     Regenerate test keys with certs signed with ed25519 instead of ecdsa.
     These can be used in -portable on platforms that don't support ECDSA.
 2014-07-23 10:41:21 +10:00
Darren Tucker
40e5021189 - dtucker@cvs.openbsd.org 2014/07/22 23:57:40 
[regress/unittests/sshkey/mktestdata.sh]
     Add $OpenBSD tag to make syncs easier
 2014-07-23 10:35:45 +10:00
Darren Tucker
07e644251e - dtucker@cvs.openbsd.org 2014/07/22 23:23:22 
[regress/unittests/sshkey/mktestdata.sh]
     Sign test certs with ed25519 instead of ecdsa so that they'll work in
     -portable on platforms that don't have ECDSA in their OpenSSL.  ok djm
 2014-07-23 10:34:26 +10:00
Darren Tucker
cea099a7c4 - djm@cvs.openbsd.org 2014/07/22 01:32:12 
[regress/multiplex.sh]
     change the test for still-open Unix domain sockets to be robust against
     nc implementations that produce error messages. from -portable
     (Id sync only)
 2014-07-23 10:04:02 +10:00
Darren Tucker
c4ee219a66 - (dtucker) [regress/unittests/sshkey/test_{file,fuzz,sshkey}.c] Wrap ecdsa- 
specific tests inside OPENSSL_HAS_ECC.
 2014-07-23 04:27:50 +10:00
Damien Miller
04f4824940 - (djm) [regress/multiplex.sh] change the test for still-open Unix 
domain sockets to be robust against nc implementations that produce
    error messages.
 2014-07-22 11:31:47 +10:00
Damien Miller
5ea4fe00d5 - (djm) [regress/multiplex.sh] ssh mux master lost -N somehow; 
put it back
 2014-07-22 09:39:19 +10:00
Damien Miller
c8f610f6cc - (djm) [regress/multiplex.sh] Not all netcat accept the -N option. 2014-07-21 10:23:27 +10:00
Damien Miller
0e4e95566c - millert@cvs.openbsd.org 2014/07/15 15:54:15 
[forwarding.sh multiplex.sh]
     Add support for Unix domain socket forwarding.  A remote TCP port
     may be forwarded to a local Unix domain socket and vice versa or
     both ends may be a Unix domain socket.  This is a reimplementation
     of the streamlocal patches by William Ahern from:
         http://www.25thandclement.com/~william/projects/streamlocal.html
     OK djm@ markus@
 2014-07-21 09:52:54 +10:00
Darren Tucker
93a87ab27e - (dtucker) [regress/unittests/sshkey/ 
{common,test_file,test_fuzz,test_sshkey}.c] Wrap stdint.h includes in
   ifdefs.
 2014-07-21 06:30:25 +10:00
Damien Miller
7a57eb3d10 - djm@cvs.openbsd.org 2014/07/07 08:15:26 
[multiplex.sh]
     remove forced-fatal that I stuck in there to test the new cleanup
     logic and forgot to remove...
 2014-07-09 13:22:31 +10:00
Damien Miller
612f965239 - djm@cvs.openbsd.org 2014/07/06 07:42:03 
[multiplex.sh test-exec.sh]
     add a hook to the cleanup() function to kill $SSH_PID if it is set

     use it to kill the mux master started in multiplex.sh (it was being left
     around on fatal failures)
 2014-07-09 13:22:03 +10:00
Damien Miller
81309c857d - (djm) [regress/Makefile] fix execution of sshkey unit/fuzz test 2014-07-02 17:45:55 +10:00
Damien Miller
dd8b1dd793 - djm@cvs.openbsd.org 2014/06/24 01:14:17 
[Makefile.in regress/Makefile regress/unittests/Makefile]
     [regress/unittests/sshkey/Makefile]
     [regress/unittests/sshkey/common.c]
     [regress/unittests/sshkey/common.h]
     [regress/unittests/sshkey/mktestdata.sh]
     [regress/unittests/sshkey/test_file.c]
     [regress/unittests/sshkey/test_fuzz.c]
     [regress/unittests/sshkey/test_sshkey.c]
     [regress/unittests/sshkey/tests.c]
     [regress/unittests/sshkey/testdata/dsa_1]
     [regress/unittests/sshkey/testdata/dsa_1-cert.fp]
     [regress/unittests/sshkey/testdata/dsa_1-cert.pub]
     [regress/unittests/sshkey/testdata/dsa_1.fp]
     [regress/unittests/sshkey/testdata/dsa_1.fp.bb]
     [regress/unittests/sshkey/testdata/dsa_1.param.g]
     [regress/unittests/sshkey/testdata/dsa_1.param.priv]
     [regress/unittests/sshkey/testdata/dsa_1.param.pub]
     [regress/unittests/sshkey/testdata/dsa_1.pub]
     [regress/unittests/sshkey/testdata/dsa_1_pw]
     [regress/unittests/sshkey/testdata/dsa_2]
     [regress/unittests/sshkey/testdata/dsa_2.fp]
     [regress/unittests/sshkey/testdata/dsa_2.fp.bb]
     [regress/unittests/sshkey/testdata/dsa_2.pub]
     [regress/unittests/sshkey/testdata/dsa_n]
     [regress/unittests/sshkey/testdata/dsa_n_pw]
     [regress/unittests/sshkey/testdata/ecdsa_1]
     [regress/unittests/sshkey/testdata/ecdsa_1-cert.fp]
     [regress/unittests/sshkey/testdata/ecdsa_1-cert.pub]
     [regress/unittests/sshkey/testdata/ecdsa_1.fp]
     [regress/unittests/sshkey/testdata/ecdsa_1.fp.bb]
     [regress/unittests/sshkey/testdata/ecdsa_1.param.curve]
     [regress/unittests/sshkey/testdata/ecdsa_1.param.priv]
     [regress/unittests/sshkey/testdata/ecdsa_1.param.pub]
     [regress/unittests/sshkey/testdata/ecdsa_1.pub]
     [regress/unittests/sshkey/testdata/ecdsa_1_pw]
     [regress/unittests/sshkey/testdata/ecdsa_2]
     [regress/unittests/sshkey/testdata/ecdsa_2.fp]
     [regress/unittests/sshkey/testdata/ecdsa_2.fp.bb]
     [regress/unittests/sshkey/testdata/ecdsa_2.param.curve]
     [regress/unittests/sshkey/testdata/ecdsa_2.param.priv]
     [regress/unittests/sshkey/testdata/ecdsa_2.param.pub]
     [regress/unittests/sshkey/testdata/ecdsa_2.pub]
     [regress/unittests/sshkey/testdata/ecdsa_n]
     [regress/unittests/sshkey/testdata/ecdsa_n_pw]
     [regress/unittests/sshkey/testdata/ed25519_1]
     [regress/unittests/sshkey/testdata/ed25519_1-cert.fp]
     [regress/unittests/sshkey/testdata/ed25519_1-cert.pub]
     [regress/unittests/sshkey/testdata/ed25519_1.fp]
     [regress/unittests/sshkey/testdata/ed25519_1.fp.bb]
     [regress/unittests/sshkey/testdata/ed25519_1.pub]
     [regress/unittests/sshkey/testdata/ed25519_1_pw]
     [regress/unittests/sshkey/testdata/ed25519_2]
     [regress/unittests/sshkey/testdata/ed25519_2.fp]
     [regress/unittests/sshkey/testdata/ed25519_2.fp.bb]
     [regress/unittests/sshkey/testdata/ed25519_2.pub]
     [regress/unittests/sshkey/testdata/pw]
     [regress/unittests/sshkey/testdata/rsa1_1]
     [regress/unittests/sshkey/testdata/rsa1_1.fp]
     [regress/unittests/sshkey/testdata/rsa1_1.fp.bb]
     [regress/unittests/sshkey/testdata/rsa1_1.param.n]
     [regress/unittests/sshkey/testdata/rsa1_1.pub]
     [regress/unittests/sshkey/testdata/rsa1_1_pw]
     [regress/unittests/sshkey/testdata/rsa1_2]
     [regress/unittests/sshkey/testdata/rsa1_2.fp]
     [regress/unittests/sshkey/testdata/rsa1_2.fp.bb]
     [regress/unittests/sshkey/testdata/rsa1_2.param.n]
     [regress/unittests/sshkey/testdata/rsa1_2.pub]
     [regress/unittests/sshkey/testdata/rsa_1]
     [regress/unittests/sshkey/testdata/rsa_1-cert.fp]
     [regress/unittests/sshkey/testdata/rsa_1-cert.pub]
     [regress/unittests/sshkey/testdata/rsa_1.fp]
     [regress/unittests/sshkey/testdata/rsa_1.fp.bb]
     [regress/unittests/sshkey/testdata/rsa_1.param.n]
     [regress/unittests/sshkey/testdata/rsa_1.param.p]
     [regress/unittests/sshkey/testdata/rsa_1.param.q]
     [regress/unittests/sshkey/testdata/rsa_1.pub]
     [regress/unittests/sshkey/testdata/rsa_1_pw]
     [regress/unittests/sshkey/testdata/rsa_2]
     [regress/unittests/sshkey/testdata/rsa_2.fp]
     [regress/unittests/sshkey/testdata/rsa_2.fp.bb]
     [regress/unittests/sshkey/testdata/rsa_2.param.n]
     [regress/unittests/sshkey/testdata/rsa_2.param.p]
     [regress/unittests/sshkey/testdata/rsa_2.param.q]
     [regress/unittests/sshkey/testdata/rsa_2.pub]
     [regress/unittests/sshkey/testdata/rsa_n]
     [regress/unittests/sshkey/testdata/rsa_n_pw]
     unit and fuzz tests for new key API
 2014-07-02 17:38:31 +10:00
Damien Miller
c1dc24b71f - djm@cvs.openbsd.org 2014/06/24 01:04:43 
[regress/krl.sh]
     regress test for broken consecutive revoked serial number ranges
 2014-07-02 17:02:03 +10:00
Damien Miller
43d3ed2dd3 - djm@cvs.openbsd.org 2014/05/21 07:04:21 
[regress/integrity.sh]
     when failing because of unexpected output, show the offending output
 2014-07-02 17:01:08 +10:00
Damien Miller
5a96707ffc - djm@cvs.openbsd.org 2014/04/30 05:32:00 
[regress/Makefile]
     unit tests for new buffer API; including basic fuzz testing
     NB. Id sync only.
 2014-07-02 15:38:05 +10:00
Tim Rice
5e2b8894b0 - (tim) [regress/unittests/test_helper/test_helper.h] Add includes.h for 
u_intXX_t types.
 2014-06-11 18:31:10 -07:00
Darren Tucker
985ee2cbc3 - (dtucker) [regress/unittests/sshbuf/*.c regress/unittests/test_helper/*] 
Wrap stdlib.h include an ifdef for platforms that don't have it.
 2014-06-12 05:32:29 +10:00
Darren Tucker
15c254a253 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] ifdef 
ECC variable too.
 2014-06-11 07:38:49 +10:00
Darren Tucker
67508ac256 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c 
regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] Only do NISTP256
   curve tests if OpenSSL has them.
 2014-06-11 06:27:16 +10:00
Damien Miller
e7429f2be8 - (djm) [regress/Makefile Makefile.in] 
[regress/unittests/sshbuf/test_sshbuf.c
   [regress/unittests/sshbuf/test_sshbuf_fixed.c]
   [regress/unittests/sshbuf/test_sshbuf_fuzz.c]
   [regress/unittests/sshbuf/test_sshbuf_getput_basic.c]
   [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c]
   [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
   [regress/unittests/sshbuf/test_sshbuf_misc.c]
   [regress/unittests/sshbuf/tests.c]
   [regress/unittests/test_helper/fuzz.c]
   [regress/unittests/test_helper/test_helper.c]
   Hook new unit tests into the build and "make tests"
 2014-05-15 18:01:01 +10:00
Damien Miller
def1de0867 - (djm) [regress/unittests/Makefile] 
[regress/unittests/Makefile.inc]
   [regress/unittests/sshbuf/Makefile]
   [regress/unittests/sshbuf/test_sshbuf.c]
   [regress/unittests/sshbuf/test_sshbuf_fixed.c]
   [regress/unittests/sshbuf/test_sshbuf_fuzz.c]
   [regress/unittests/sshbuf/test_sshbuf_getput_basic.c]
   [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c]
   [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
   [regress/unittests/sshbuf/test_sshbuf_misc.c]
   [regress/unittests/sshbuf/tests.c]
   [regress/unittests/test_helper/Makefile]
   [regress/unittests/test_helper/fuzz.c]
   [regress/unittests/test_helper/test_helper.c]
   [regress/unittests/test_helper/test_helper.h]
   Import new unit tests from OpenBSD; not yet hooked up to build.
 2014-05-15 15:17:15 +10:00
Damien Miller
167685756f - logan@cvs.openbsd.org 2014/05/04 10:40:59 
[connect-privsep.sh]
     Remove the Z flag from the list of malloc options as it
     was removed from malloc.c 10 days ago.

     OK from miod@
 2014-05-15 15:08:40 +10:00
Damien Miller
d0b69fe904 - dtucker@cvs.openbsd.org 2014/05/03 18:46:14 
[proxy-connect.sh]
     Add tests for with and without compression, with and without privsep.
 2014-05-15 15:08:19 +10:00
Damien Miller
edb1af5044 - djm@cvs.openbsd.org 2014/04/21 22:15:37 
[dhgex.sh integrity.sh kextype.sh rekey.sh try-ciphers.sh]
     repair regress tests broken by server-side default cipher/kex/mac changes
     by ensuring that the option under test is included in the server's
     algorithm list
 2014-05-15 15:07:53 +10:00
Damien Miller
54343e95c7 - djm@cvs.openbsd.org 2014/03/13 20:44:49 
[login-timeout.sh]
     this test is a sorry mess of race conditions; add another sleep
     to avoid a failure on slow machines (at least until I find a
     better way)
 2014-05-15 15:07:33 +10:00
Damien Miller
2476c31b96 - (djm) [regress/Makefile] Disable dhgex regress test; it breaks when 
no moduli file exists at the expected location.
 2014-03-02 04:01:00 +11:00
Damien Miller
c83fdf30e9 - (djm) [regress/host-expand.sh] Add RCS Id 2014-02-28 10:34:03 +11:00
Damien Miller
834aeac355 - djm@cvs.openbsd.org 2014/02/27 21:21:25 
[agent-ptrace.sh agent.sh]
     keep return values that are printed in error messages;
     from portable
     (Id sync only)
 2014-02-28 10:25:16 +11:00
Damien Miller
4f7f1a9a0d - djm@cvs.openbsd.org 2014/02/27 20:04:16 
[login-timeout.sh]
     remove any existing LoginGraceTime from sshd_config before adding
     a specific one for the test back in
 2014-02-28 10:24:11 +11:00
Damien Miller
d705d987c2 - djm@cvs.openbsd.org 2014/01/26 10:49:17 
[scp-ssh-wrapper.sh scp.sh]
     make sure $SCP is tested on the remote end rather than whichever one
     happens to be in $PATH; from portable
     (Id sync only)
 2014-02-28 10:23:26 +11:00
Damien Miller
624a3ca376 - djm@cvs.openbsd.org 2014/01/26 10:22:10 
[regress/cert-hostkey.sh]
     automatically generate revoked keys from listed keys rather than
     manually specifying each type; from portable
     (Id sync only)
 2014-02-28 10:22:37 +11:00