From: Damien Miller Date: Mon, 18 Aug 2025 06:47:23 +0000 (+1000) Subject: Match version instead of groups in connect-bigconf X-Git-Url: http://git.ipfire.org/gitweb/?a=commitdiff_plain;h=refs%2Fremotes%2Fgithub-selfhosted%2Fmaster;p=thirdparty%2Fopenssh-portable.git Match version instead of groups in connect-bigconf The connect-bigconf makes a giant config file to test config passing between the sshd subprocesses. Previously it used a bunch of "Match group" lines to construct a large file. However checking group membership can be expensive (e.g. if a large groups database is present or if group lookup is remote via NSS). This could be slow enough to exceed LoginGraceTime. This switches it to "Match version" which is just a string compare and does just as well for making a giant nonsense config file. --- diff --git a/regress/connect-bigconf.sh b/regress/connect-bigconf.sh index 56cf0ea64..ca2c11918 100644 --- a/regress/connect-bigconf.sh +++ b/regress/connect-bigconf.sh @@ -4,7 +4,7 @@ tid="simple connect" for x in `jot 10000 1` ; do - echo "Match group NONEXIST" >> $OBJ/sshd_config + echo "Match version NONEXIST" >> $OBJ/sshd_config echo "ChrootDirectory /some/path/for/group/NONEXIST" >> $OBJ/sshd_config done #cat $OBJ/sshd_config