Bug#1100948: dropbear 2025.87 changes break OpenSSH's regression test suite

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1100948: dropbear 2025.87 changes break OpenSSH's regression test suite
From: Guilhem Moulin <guilhem@debian.org>
Date: Thu, 20 Mar 2025 21:09:34 +0100
Message-id: <[🔎] Z9x1_m07d0nfpW5X@debian.org>
Reply-to: Guilhem Moulin <guilhem@debian.org>, 1100948@bugs.debian.org

Source: openssh
Version: 1:9.9p2-1
Severity: important
Tags: patch fixed-upstream

Hi,

Since 2025.87-1 dropbear(8) and dbclient(1) are now built without
support for the ‘hmac-sha1’ integrity algorithm, ‘ssh-rsa’ key
algorithm, and ‘diffie-hellman-group14-sha1’ key exchange algorithm.

That change broke OpenSSH's regression test suite (regress/dropbear-*.sh),
hence its autopkgtests.  OpenSSH upstream has a patch available at:

    https://github.com/openssh/openssh-portable/commit/97e10c0005a784622c61cb4e8bb7858b410bbcc6

Indeed, applying this change fixes OpenSSH's autopkgtest.

I (dropbear maintainer) didn't foresee breakage in other packages,
apologies for that.

-- 
Guilhem.

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Processed: Bug#1100948 marked as pending in openssh
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>
- Bug#1100948: dropbear 2025.87 changes break OpenSSH's regression test suite
  - From: Colin Watson <cjwatson@debian.org>
- Bug#1100948: marked as done (dropbear 2025.87 changes break OpenSSH's regression test suite)
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>

Prev by Date: Stephen Harper's announcement on air took everyone by surprise
Next by Date: Processed: Bug#1100948 marked as pending in openssh
Previous by thread: Stephen Harper's announcement on air took everyone by surprise
Next by thread: Processed: Bug#1100948 marked as pending in openssh
Index(es):
- Date
- Thread