search for: ssh_proxy

....1 copy.2 \ sshd_proxy_bak rsa_ssh2_cr.prv rsa_ssh2_crnl.prv \ known_hosts-cert host_ca_key* cert_host_key* \ putty.rsa2 sshd_proxy_orig \ - authorized_principals_${USER} expect actual + authorized_principals_${USER} expect actual \ + localenvmods.in localenvmods.expect localenvmods.out ssh_proxy.tmpl # Enable all malloc(3) randomisations and checks TEST_ENV= "MALLOC_OPTIONS=AFGJPRX" diff --git a/regress/localenvmod.sh b/regress/localenvmod.sh new file mode 100644 index 0000000..c986816 --- /dev/null +++ b/regress/localenvmod.sh @@ -0,0 +1,210 @@ +# Placed in the Public D...

...key-agent.sh b/regress/hostkey-agent.sh index 222d424bd..3fa80655e 100644 --- a/regress/hostkey-agent.sh +++ b/regress/hostkey-agent.sh @@ -82,6 +82,37 @@ for k in $SSH_CERTTYPES ; do fi done +# Run sshd with multiple keys handeled by agent + +cp $OBJ/sshd_proxy.orig $OBJ/sshd_proxy + +mv $OBJ/ssh_proxy $OBJ/ssh_proxy.orig +grep -vi 'globalknownhostsfile' $OBJ/ssh_proxy.orig > $OBJ/ssh_proxy +echo "UpdateHostkeys=yes" >> $OBJ/ssh_proxy +echo "GlobalKnownHostsFile=none" >> $OBJ/ssh_proxy + +read -p "Doing the multiple keys (y/n)? " answer +for k...

From: Maxime Rey <maximejeanrey at gmail.com> Hello, I've discovered an issue with sshd when it's configured to use the SSH agent alongside multiple host keys. Specifically, this problem happens during the hostkeys-prove-00 at openssh.com request, when the server attempts to demonstrate ownership of the host keys by calling the agent. The issue occurs because, while processing the

...dd -l did not fail with exit code 1" +r=$? +if [ $r -ne 0 ]; then + fail "with no keys, ssh-add -l failed: exit code $r" fi rm -f $OBJ/user_ca_key $OBJ/user_ca_key.pub @@ -99,11 +100,15 @@ for t in ${SSH_KEYTYPES}; do done trace "agent forwarding" -${SSH} -A -F $OBJ/ssh_proxy somehost ${SSHADD} -l > /dev/null 2>&1 +AGENT_LISTING=$(${SSH} -A -F $OBJ/ssh_proxy somehost ${SSHADD} -l 2> /dev/null) r=$? if [ $r -ne 0 ]; then fail "ssh-add -l via agent fwd failed (exit code $r)" fi +NUM_LINES=$(printf "%s" "$AGENT_LISTING" | wc...

On 23 April 2018 at 19:49, Michael Felt <michael at felt.demon.nl> wrote: [...] > run test agent.sh ... [...] > Question: I have not dug into the tests yet. Will copy to a "local" > directory, and not build out of tree and see if that fixes it (as it does > for many other packages). However, just in case it does not - how can I > fast-forward the tests to the

Hi, In addition to the strptime change that Darren has just committed to fix Irix, I have committed a change to ssh(1) that affects all platforms: > - djm at cvs.openbsd.org 2010/08/12 21:49:44 > [ssh.c] > close any extra file descriptors inherited from parent at start and > reopen stdin/stdout to /dev/null when forking for ControlPersist. > > prevents tools that

...lem for my system. JGH -------------- next part -------------- --- openssh.orig/regress/yes-head.sh 2003-09-13 03:21:14.000000000 +0700 +++ openssh/regress/yes-head.sh 2005-11-26 00:44:16.000000000 +0700 @@ -4,7 +4,7 @@ tid="yes pipe head" for p in 1 2; do - lines=`${SSH} -$p -F $OBJ/ssh_proxy thishost 'sh -c "while true;do echo yes;done | head -2000"' | (sleep 3 ; wc -l)` + lines=`${SSH} -$p -F $OBJ/ssh_proxy thishost 'sh -c "while true;do echo yes;done | (export _POSIX2_VERSION=199209 ; head -2000)"' | (sleep 3 ; wc -l)` if [ $? -ne 0 ]; then fa...

...;ssh-add -l did not fail with exit code 1" +r=$? +if [ $r -ne 0 ]; then + fail "with no keys, ssh-add -l failed: exit code $r" fi rm -f $OBJ/user_ca_key $OBJ/user_ca_key.pub @@ -99,11 +100,15 @@ for t in ${SSH_KEYTYPES}; do done trace "agent forwarding" -${SSH} -A -F $OBJ/ssh_proxy somehost ${SSHADD} -l > /dev/null 2>&1 +AGENT_LISTING=$(${SSH} -A -F $OBJ/ssh_proxy somehost ${SSHADD} -l 2> /dev/null) r=$? if [ $r -ne 0 ]; then fail "ssh-add -l via agent fwd failed (exit code $r)" fi +NUM_LINES=$(printf "%s" "$AGENT_LISTING" | wc -l) +...

...GJPRX" diff --git a/regress/host-expand.sh b/regress/host-expand.sh new file mode 100644 index 0000000..cd4e03c --- /dev/null +++ b/regress/host-expand.sh @@ -0,0 +1,18 @@ +# Placed in the Public Domain. + +tid="expand %h and %n" + +echo 'PermitLocalCommand yes' >> $OBJ/ssh_proxy +printf 'LocalCommand printf "%%%%s\\n" "%%n" "%%h"\n' >> $OBJ/ssh_proxy + +cat >expect <<EOE +somehost +127.0.0.1 +EOE + +for p in 1 2; do + verbose "test $tid: proto $p" + ${SSH} -F $OBJ/ssh_proxy -$p somehost true >actual + diff -...

...519 + 1>> /home/git/openssh-portable/regress/sshd_proxy + chmod 644 /home/git/openssh-portable/regress/authorized_keys_randall + REGRESS_INTEROP_CONCH=no + test -x + REGRESS_INTEROP_PUTTY=no + test -x -a -x + REGRESS_INTEROP_PUTTY=no + test no = yes + 1> /home/git/openssh-portable/regress/ssh_proxy + cat /home/git/openssh-portable/regress/ssh_config + echo proxycommand sudo sh /home/git/openssh-portable/regress/sshd-log-wrapper.sh /home/git/openssh-portable/regress/sshd.log /home/git/openssh-portable/sshd -i -f /home/git/openssh-portable/regress/sshd_proxy + /home/git/openssh-portable/sshd -t...

From: Corey Hickey <chickey at tagged.com> When ssh-add is used in a script like: if ! KEY_LISTING=$(ssh-add -l 2>&1) ; then echo "SSH agent error" >&2 exit 2 fi ...the operation fails when there is an agent but there are no keys in the agent. This is because ssh-add exits with status of 1. If the intent is to examine the keys in the agent,

...ess/authinfo.sh index e725296c..b47f4e5a 100644 --- a/regress/authinfo.sh +++ b/regress/authinfo.sh @@ -5,8 +5,10 @@ tid="authinfo" # Ensure the environment variable doesn't leak when ExposeAuthInfo=no. verbose "ExposeAuthInfo=no" + env SSH_USER_AUTH=blah ${SSH} -F $OBJ/ssh_proxy x \ - 'test -z "$SSH_USER_AUTH"' || fail "SSH_USER_AUTH present" + "exec sh -c 'test -z \"\$SSH_USER_AUTH\"'" || \ + fail "SSH_USER_AUTH present" verbose "ExposeAuthInfo=yes" echo ExposeAuthInfo=yes >> $OBJ/sshd_p...

...bc arcfour128 arcfour256 arcfour @@ -26,7 +27,7 @@ for c in $ciphers; do n=0; for m in $macs; do trace "proto 2 cipher $c mac $m" for x in $tries; do - echon "$c/$m:\t" + printf "%-60s" "$c/$m:" ( ${SSH} -o 'compression no' \ -F $OBJ/ssh_proxy -2 -m $m -c $c somehost \ exec sh -c \'"dd of=/dev/null obs=32k"\' \ @@ -47,7 +48,7 @@ for c in $ciphers; do trace "proto 1 cipher $c" for x in $tries; do - echon "$c:\t" + printf "%-60s" "$c:" ( ${SSH} -o 'compression no...

...wing steps: a) copy src and do in-tree build b) run the command (without having rerun make checks - in case there are hiddne dependancies!) root at x066:[/home/aixtools/openbsd/openssh-7.7p1]sh -x /home/aixtools/openbsd/openssh-7.7p1/ssh-log-wrapper.sh -A -F /home/aixtools/openbsd/openssh-7.7p1/ssh_proxy somehost ssh-add -l + exec ssh -E/home/aixtools/openbsd/openssh-7.7p1/ssh.log -A -F /home/aixtools/openbsd/openssh-7.7p1/ssh_proxy somehost ssh-add -l Question: can the key_load_public: statements be ignored? ????????? Likewise, can the "Trying private key" messages be ignored (at the...

...otocol 1 failed failed simple connect make[1]: *** [t-exec] Error 1 make: *** [tests] Error 2 However, when I run as a normal user I got: test remote exit status: proto 1 status 0 /Users/rapier/Desktop/sshtest/openssh/regress/test-exec.sh: line 24: 14772 Bus error ${SSH} -$p -F $OBJ/ssh_proxy -n otherhost exec sh -c \'"sleep 2; exec > /dev/null 2>&1; sleep 3; exit $s"\' exit code (with sleep) mismatch for protocol 1: 138 != 0 test remote exit status: proto 1 status 1 test remote exit status: proto 1 status 4 Connection closed by UNKNOWN exit code mismatch fo...

On 2/17/16 6:02 PM, Darren Tucker wrote: > On Thu, Feb 18, 2016 at 12:43 PM, Carson Gaspar <carson at taltos.org> wrote: > [...] >> Is there a sane way to run just one test script? LTESTS can't be overridden >> AFAIK... > > make t-exec LTESTS=testname > > where testname is the name of the specific test script without the .sh > extension. Nope, that runs

...dev/stdin to send commands to sftp via the -b (batch) option. Some platforms (eg AIX & HP-UX) don't have /dev/stdin or equivalent. I moved the commands to a normal file. The call to loginrestricted() in auth.c fails when sshd is running as a non-root user. I added a "${SUDO}" to ssh_proxy's ProxyCommand. You'll need to define SUDO in test-exec.sh on AIX or some tests will fail. I had problems with paths, so I added more explicit ones. This may not be necessary. One other thing: do authorized_keys_root, copy.1 and copy.2 need to be in CVS? -- Darren Tucker (dtucker at zip...

Hi All, I finally got around to trying to test the 7.7p1 release on the HPE NonStop Platform. 7.6p1 worked just fine - no issues at all. In 7.7p1, when the agent test ran, the following happened (prior tests worked perfectly): run test agent.sh ... Couldn't open logfile /home/git/openssh-portable/regress/ssh.log: Permission denied agent fwd failed (exit code 1) failed simple agent test

Hi, It's that time again... OpenSSH 6.2 is almost ready for release, so we would appreciate testing on as many platforms and systems as possible. This release contains some substantial new features and a number of bugfixes. Snapshot releases for portable OpenSSH are available from http://www.mindrot.org/openssh_snap/ The OpenBSD version is available in CVS HEAD:

Get the following error: root at x065:[/data/prj/openbsd/openssh/openssh-7.7p1/openbsd-compat]make ??????? xlc_r -I/opt/include -O2 -qmaxmem=-1 -qarch=pwr5 -q64 -I. -I.. -I../../src/openssh-7.7p1/openbsd-compat -I../../src/openssh-7.7p1/openbsd-compat/.. -I/opt/include -DHAVE_CONFIG_H -c ../../src/openssh-7.7p1/openbsd-compat/strndup.c