Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Tunnel device forwarding (-w) broken in openssh 7.7p1, major issue for NixOps #48016
In openssh 7.7p1 (which is currently a part of 18.09), the tunnel device forwarding feature is broken:
The above command is a shortened version of what NixOps does to establish encrypted connections between machines in the network. So, after I upgraded to 18.09, all encrypted connections stopped working.
There is an upstream bug: https://bugzilla.mindrot.org/show_bug.cgi?id=2855
It's fixed by openssh/openssh-portable@b81b2d1 (which is a part of the V_7_7 branch), so probably this can be fixed in nixpkgs by switching the package source to the latest commit of the V_7_7 branch.
Alternatively, openssh can be upgraded to 8.8p1, which doesn't have this bug, or downgraded to 7.6p1.
Steps to reproduce
Create a network in NixOps, use
Or just ssh somewhere where tunneling is enabled with the