Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-07 06:40:54 +03:00
Code Issues Packages Projects Releases Wiki Activity

sshd: improve docs about supported ciphers, KEX and MACs

Browse Source 
also added a check to ensure that the configured values are valid

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
This commit is contained in:
Nicola Murino
2022-01-06 18:09:49 +01:00
parent 1f619d5ea6
commit ec1d20f46f
10 changed files with 122 additions and 1107 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
sftpd/sftpd_test.go
View File

@@ -373,6 +373,23 @@ func TestInitialization(t *testing.T) {
sftpdConf.Bindings = nil
err = sftpdConf.Initialize(configDir)
assert.EqualError(t, err, common.ErrNoBinding.Error())
sftpdConf = config.GetSFTPDConfig()
sftpdConf.Ciphers = []string{"not a cipher"}
err = sftpdConf.Initialize(configDir)
if assert.Error(t, err) {
assert.Contains(t, err.Error(), "unsupported cipher")
}
sftpdConf.Ciphers = nil
sftpdConf.MACs = []string{"not a MAC"}
err = sftpdConf.Initialize(configDir)
if assert.Error(t, err) {
assert.Contains(t, err.Error(), "unsupported MAC algorithm")
}
sftpdConf.KexAlgorithms = []string{"not a KEX"}
err = sftpdConf.Initialize(configDir)
if assert.Error(t, err) {
assert.Contains(t, err.Error(), "unsupported key-exchange algorithm")
}
}
func TestBasicSFTPHandling(t *testing.T) {