On Thu, Mar 20, 2025 at 09:09:34PM +0100, Guilhem Moulin wrote:
Since 2025.87-1 dropbear(8) and dbclient(1) are now built without
support for the ‘hmac-sha1’ integrity algorithm, ‘ssh-rsa’ key
algorithm, and ‘diffie-hellman-group14-sha1’ key exchange algorithm.
That change broke OpenSSH's regression test suite (regress/dropbear-*.sh),
hence its autopkgtests. OpenSSH upstream has a patch available at:
https://github.com/openssh/openssh-portable/commit/97e10c0005a784622c61cb4e8bb7858b410bbcc6
Indeed, applying this change fixes OpenSSH's autopkgtest.
I (dropbear maintainer) didn't foresee breakage in other packages,
apologies for that.
Thanks for the heads-up. I'll get that into unstable.
--
Colin Watson (he/him) [cjwat...@debian.org]
