The rebase of libssh to 0.10.5 was stuck for last week because two tests failed during the build on i686 arch: [ FAILED ] tests: 2 test(s), listed below: [ FAILED ] torture_rekey_different_kex [ FAILED ] torture_rekey_server_different_kex https://koji.fedoraproject.org/koji/taskinfo?taskID=100917069 This was pinpointed to the patch openssh-9.0p1-evp-fips-dh.patch in OpenSSH, which if reverted, makes the tests work as expected. Note, that the above tests do two things: * connect to the server * change the preferred key exchange algorithm * initiate (or let the server to initiate) rekey This does not happen during the initial key exchange nor in case the key exchange algorithms are same for the second time (covered with other tests). Given that this is very corner case, I will probably skip these tests for now in libssh, but it needs to be fixed anyway. Reproducible: Always Steps to Reproduce: 1. Run libssh testsuite (with client tests enabled) 2. See the failure Actual Results: [ FAILED ] tests: 2 test(s), listed below: [ FAILED ] torture_rekey_different_kex [ FAILED ] torture_rekey_server_different_kex Expected Results: all tests pass
Created attachment 1964608 [details] reproducer using libssh
Looks like a timing issue. Closing.
For the record, I filled the upstream merge request to address this: https://gitlab.com/libssh/libssh-mirror/-/merge_requests/370 Running the builds in koji to verify the fix: https://koji.fedoraproject.org/koji/taskinfo?taskID=101218310