dropbear: adjust allowed shell list
authorKonstantin Demin <rockdrilla@gmail.com>
Tue, 9 Jan 2024 00:40:01 +0000 (03:40 +0300)
committerRui Salvaterra <rsalvaterra@gmail.com>
Fri, 9 Feb 2024 09:13:05 +0000 (09:13 +0000)
this takes an effect only if getusershell(3) is missing

Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
package/network/services/dropbear/Makefile

index 77104431db9092edd93a5327243b7e6750e7f75b..ef67371e1d8a90b1fbcabb86ec0a2312c643df90 100644 (file)
@@ -104,6 +104,8 @@ CONFIGURE_ARGS += \
 #
 ##############################################################################
 
+# adjust allowed shell list (if getusershell(3) is missing):
+# - COMPAT_USER_SHELLS
 # remove protocol idented software version number:
 # - LOCAL_IDENT
 # disable legacy/unsafe methods and unused functionality:
@@ -114,6 +116,7 @@ CONFIGURE_ARGS += \
 # - DROPBEAR_SHA1_HMAC
 DB_OPT_COMMON = \
        !!LOCAL_IDENT,"SSH-2.0-dropbear" \
+       COMPAT_USER_SHELLS,"/bin/ash","/bin/sh" \
        DEFAULT_PATH,"$(TARGET_INIT_PATH)" \
        DEFAULT_ROOT_PATH,"$(TARGET_INIT_PATH)" \
        DROPBEAR_DSS,0 \