Source: openssh Version: 1:9.9p2-1 Severity: important Tags: patch fixed-upstream
Hi,
Since 2025.87-1 dropbear(8) and dbclient(1) are now built without
support for the ‘hmac-sha1’ integrity algorithm, ‘ssh-rsa’ key
algorithm, and ‘diffie-hellman-group14-sha1’ key exchange algorithm.
That change broke OpenSSH's regression test suite (regress/dropbear-*.sh),
hence its autopkgtests. OpenSSH upstream has a patch available at:
https://github.com/openssh/openssh-portable/commit/97e10c0005a784622c61cb4e8bb7858b410bbcc6
Indeed, applying this change fixes OpenSSH's autopkgtest.
I (dropbear maintainer) didn't foresee breakage in other packages,
apologies for that.
--
Guilhem.
signature.asc
Description: PGP signature
