meta-stx: re-name and re-org to align with upstream

[pti/rtp.git] / meta-starlingx / meta-stx-integ / recipes-connectivity / openssh / files / openssh-config-rm-hmac-ripemd160.patch

diff --git a/meta-starlingx/meta-stx-integ/recipes-connectivity/openssh/files/openssh-config-rm-hmac-ripemd160.patch b/meta-starlingx/meta-stx-integ/recipes-connectivity/openssh/files/openssh-config-rm-hmac-ripemd160.patch
new file mode 100644 (file)
index 0000000..59076e6
--- /dev/null
+++ b/meta-starlingx/meta-stx-integ/recipes-connectivity/openssh/files/openssh-config-rm-hmac-ripemd160.patch
@@ -0,0 +1,11 @@
+diff --git a/sshd_config b/sshd_config
+index 0dfc0e2..b767509 100644
+--- a/sshd_config
++++ b/sshd_config
+@@ -144,5 +144,5 @@ DenyUsers admin secadmin operator
+ # TODO (aning): once openssh is updated to 7.5, an explicit exclusion list
+ # using "-" should be used for cipher, MAC and kex excluded suites.
+ Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com
+-MACs hmac-sha1,hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,hmac-ripemd160@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha1-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-ripemd160-etm@openssh.com,umac-64-etm@openssh.com,umac-128-etm@openssh.com
++MACs hmac-sha1,hmac-sha2-256,hmac-sha2-512,umac-64@openssh.com,umac-128@openssh.com,hmac-sha1-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,umac-64-etm@openssh.com,umac-128-etm@openssh.com
+ KexAlgorithms curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256