Add launch hardening gates
This commit is contained in:
@@ -218,6 +218,20 @@ fast path after the first authentication has issued an attach ticket. See
|
||||
`docs/PUBLIC_READINESS.md` before using the numbers publicly; Dosh's current
|
||||
strongest claim is fast attach/reconnect, not full Mosh feature parity yet.
|
||||
|
||||
Run the explicit pre-launch soak and fuzz gates:
|
||||
|
||||
```bash
|
||||
make soak-local # 30-minute sleep/roaming gate by default
|
||||
make fuzz-deep # 5 minutes per fuzz target by default
|
||||
```
|
||||
|
||||
Both are configurable for shorter local shakedowns:
|
||||
|
||||
```bash
|
||||
DOSH_SOAK_SECONDS=30 make soak-local
|
||||
DOSH_FUZZ_SECONDS=60 make fuzz-deep
|
||||
```
|
||||
|
||||
The CI workflow includes an optional remote benchmark job. It runs when
|
||||
`DOSH_BENCH_HOST`, `DOSH_BENCH_USER`, and `DOSH_BENCH_SSH_KEY` repository secrets are
|
||||
configured.
|
||||
@@ -303,11 +317,11 @@ the native authenticated path is tried first and falls back to SSH bootstrap
|
||||
explicitly when native auth is disabled, unavailable, or rejected. It never silently
|
||||
degrades to an unauthenticated mode.
|
||||
|
||||
Native v1 is **not yet fully verified**. Protocol VERSION compatibility policy,
|
||||
long-running sleep/roaming soak tests, adversarial forwarding/network tests, deeper
|
||||
fuzzing, and an external security review are still open. See `docs/THREAT_MODEL.md`
|
||||
for the published threat model and accepted residual risks, and the "Native v1
|
||||
verification checklist status" table in `docs/PUBLIC_READINESS.md` for the
|
||||
item-by-item state. Dosh does not yet claim a fully verified SSH replacement; its
|
||||
defensible claim remains fast encrypted native attach/reconnect with SSH-equivalent
|
||||
transport security and SSH fallback.
|
||||
Native v1 is **not yet fully verified**. Long-running sleep/roaming soak evidence,
|
||||
reliable packet-loss recovery for forwarded stream data, deeper fuzzing evidence,
|
||||
and an external security review are still open. See `docs/THREAT_MODEL.md` for the
|
||||
published threat model and accepted residual risks, `docs/PROTOCOL_VERSIONING.md`
|
||||
for the v1 versioning policy, and the "Native v1 verification checklist status"
|
||||
table in `docs/PUBLIC_READINESS.md` for the item-by-item state. Dosh does not yet
|
||||
claim a fully verified SSH replacement; its defensible claim remains fast encrypted
|
||||
native attach/reconnect with SSH-equivalent transport security and SSH fallback.
|
||||
|
||||
Reference in New Issue
Block a user