Ron Frederick
Ron Frederick
Happy to help, and that the library is working for you! Let me know if you run into any other issues.
Thanks for the report! I haven't run into this here yet. Is this change specific to CentOS Stream/RHEL 9, or did it come in as part of a particular version...
Looking more closely, the OpenSSL backend has multiple checks related to SHA1: - hash_supported(): returns `False` if non-FIPS hash is used in FIPS mode (which would apply to SHA1) -...
Thanks for the additional links. If I understand right, support for disabling this option seems related to a new openssl.cnf setting called "rh-allow-sha1-signatures" under "[evp_properties]". However, it looks to me...
> You can try running it in Docker or Podman: > > > podman run -it --rm quay.io/centos/centos:stream9 I'm on an M1 Mac here, but after a bit of fiddling...
Thanks very much, @gsauthof ! Following your instructions, I was able to reproduce this here. It looks like many of the errors are actually happening when trying to run OpenSSH...
Still working on this. Here are some updates: It looks like many of the errors are related to using command-line OpenSSH/OpenSSL tools to check for interoperability. Performing these same operations...
I was able to confirm that all of the test failures in test_connection_auth.py were in fact related to attempting to use the SSH agent to do signing with a SHA-1...
These changes are now available in AsyncSSH 2.12.0.
This should be pretty simple. If I understand your use case, you can use the existing forward_local_port() function on the SSHServerConnection to do the bulk of the work for you....