Age | Commit message (Collapse) | Author |
|
[regress/cipher-speed.sh regress/integrity.sh regress/rekey.sh]
[regress/try-ciphers.sh]
use new "ssh -Q cipher-auth" query to obtain lists of authenticated
encryption ciphers instead of specifying them manually; ensures that
the new chacha20poly1305@openssh.com mode is tested;
ok markus@ and naddy@ as part of the diff to add
chacha20poly1305@openssh.com
|
|
[regress/modpipe.c]
use unsigned long long instead of u_int64_t here to avoid warnings
on some systems portable OpenSSH is built on.
|
|
[regress/krl.sh]
add some reminders for additional tests that I'd like to implement
|
|
[regress/forward-control.sh]
bump timeout to 10 seconds to allow slow machines (e.g. Alpha PC164)
to successfully run this; ok djm@
(ID sync only; our timeouts are already longer)
|
|
querying the ones that are compiled in.
|
|
[regress/test-exec.sh regress/rekey.sh]
Use smaller test data files to speed up tests. Grow test datafiles
where necessary for a specific test.
|
|
[regress/rekey.sh]
Rekey less frequently during tests to speed them up
|
|
[regress/kextype.sh]
trailing space
|
|
[regress/kextype.sh]
Use ssh -Q to get kex types instead of a static list.
|
|
[regress/integrity.sh regress/cipher-speed.sh regress/try-ciphers.sh]
Use ssh -Q instead of hardcoding lists of ciphers or MACs.
|
|
[regress/rekey.sh]
Factor out the data transfer rekey tests
|
|
[regress/rekey.sh]
Test rekeying for every Cipher, MAC and KEX, plus test every KEX with
the GCM ciphers.
|
|
[regress/rekey.sh]
Test rekeying with all KexAlgorithms.
|
|
[regress/kextype.sh]
add curve25519-sha256@libssh.org
|
|
[regress/Makefile] (ID sync only)
regression test for sftp request white/blacklisting and readonly mode.
|
|
|
|
|
|
|
|
[regress/Makefile regress/sftp-perm.sh]
regression test for sftp request white/blacklisting and readonly mode.
|
|
removal. The "make clean" removes modpipe which is built by the top-level
directory before running the tests. Spotted by tim@
|
|
since some platforms (eg really old FreeBSD) don't have it. Instead,
run "make clean" before a complete regress run. ok djm.
|
|
|
|
[regress/sftp-cmds.sh regress/test-exec.sh]
unbreak sftp-cmds for renamed test data (s/ls/data/)
|
|
[regress/forwarding.sh]
Add test for forward config parsing
|
|
[regress/test-exec.sh]
use ssh and sshd as testdata since it needs to be >256k for the rekey test
|
|
forwarding test is extremely slow copying data on some machines so switch
back to copying the much smaller ls binary until we can figure out why
this is.
|
|
|
|
need a shell that can handle "[ file1 -nt file2 ]". Rather than keep
dealing with shell portability issues in regression tests, we let
configure find us a capable shell on those platforms with an old /bin/sh.
|
|
[regress/scp.sh]
use a file extention that's not special on some platforms. from portable
(id sync only)
|
|
[regress/portnum.sh]
use a more portable negated if structure. from portable (id sync only)
|
|
[regress/agent-getpeereid.sh]
don't redirect stdout from sudo. from portable (id sync only)
|
|
[regress/test-exec.sh]
wait a bit longer for startup and use case for absolute path.
from portable (id sync only)
|
|
[regress/sftp.sh]
only compare copied data if sftp succeeds. from portable (id sync only)
|
|
[regress/sftp-badcmds.sh]
remove unused BATCH variable. (id sync only)
|
|
[localcommand.sh]
use backticks for portability. (id sync only)
|
|
[regress/login-timeout.sh regress/reexec.sh regress/test-exec.sh]
Use SUDO when cat'ing pid files and running the sshd log wrapper so that
it works with a restrictive umask and the pid files are not world readable.
Changes from -portable. (id sync only)
|
|
[regress/try-ciphers.sh]
use expr for math to keep diffs vs portable down
(id sync only)
|
|
rev 1.6 which calls wait.
|
|
|
|
helper function to the portable part of test-exec.sh.
|
|
together and add a couple of missing lines from openbsd.
|
|
Move the jot helper function to portable-specific part of test-exec.sh.
|
|
|
|
|
|
[regress/sftp.sh regress/putty-ciphers.sh regress/cipher-speed.sh
regress/test-exec.sh regress/sftp-batch.sh regress/dynamic-forward.sh
regress/putty-transfer.sh regress/conch-ciphers.sh regress/sftp-cmds.sh
regress/scp.sh regress/ssh-com-sftp.sh regress/rekey.sh
regress/putty-kex.sh regress/stderr-data.sh regress/stderr-after-eof.sh
regress/sftp-badcmds.sh regress/reexec.sh regress/ssh-com-client.sh
regress/sftp-chroot.sh regress/forwarding.sh regress/transfer.sh
regress/multiplex.sh]
Move the setting of DATA and COPY into test-exec.sh
|
|
[regress/integrity.sh]
don't print output from ssh before getting it (it's available in ssh.log)
|
|
[regress/agent-timeout.sh]
Pull back some portability changes from -portable:
- TIMEOUT is a read-only variable in some shells
- not all greps have -q so redirect to /dev/null instead.
(ID sync only)
|
|
|
|
[regress/agent.sh regress/keytype.sh regress/cfgmatch.sh
regress/forcecommand.sh regress/proto-version.sh regress/test-exec.sh
regress/cipher-speed.sh regress/cert-hostkey.sh regress/cert-userkey.sh
regress/ssh-com.sh]
replace 'echo -n' with 'printf' since it's more portable
also remove "echon" hack.
|
|
methods. When the openssl version doesn't support ECDH then next one on
the list is DH group exchange, but that causes a bit more traffic which can
mean that the tests flip bits in the initial exchange rather than the MACed
traffic and we get different errors to what the tests look for.
|