Hello, On Tue, Dec 19, 2023 at 03:04:35PM -0500, Nicolas Mora wrote: > Hello, > > Le 2023-12-19 à 14 h 32, Salvatore Bonaccorso a écrit : > > > > It's not the same version :). > > > > bookworm has 0.10.0 based version, whereas in testing and bove we have > > 1.11.0 based one. For bookworm and older there is no haCha20-Poly1305 > > and CBC-EtM support, which was only introduced after the 0.10.0 > > release. > > > > Thus for libssh2 only unstable needs fixing (and then the fix mgirate > > to testing). > > > > Does this help? > > > My bad, I missed the difference between 1.10 and 1.11 :p
Yeah the same Debian revision was confusing, after your question I had to double check again :) > I'll prepare a fix for unstable then, thanks! Looking from the commit activity in the upstream repository and last commits touching the release notes I guess upstream is finalizing a new release? If so it might be worth to just go to the new upstream version rather than cherry-picking the commit adding strict KEX support. But that said, fully trusting you on the matter and up to you on next steps. Thanks for working on it! Regards, Salvatore
