| Summary: | ECDSA & SHA256 support in SSHFP DNS records | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Portable OpenSSH | Reporter: | martian67 <bugzilla-m67> | ||||||
| Component: | ssh | Assignee: | Assigned to nobody <unassigned-bugs> | ||||||
| Status: | CLOSED FIXED | ||||||||
| Severity: | normal | CC: | aleksey.morarash, djm, julien.decharne | ||||||
| Priority: | P2 | Keywords: | low-hanging-fruit | ||||||
| Version: | 5.9p1 | ||||||||
| Hardware: | All | ||||||||
| OS: | All | ||||||||
| URL: | https://tools.ietf.org/html/draft-os-ietf-sshfp-ecdsa-sha2-07 | ||||||||
| Bug Depends on: | |||||||||
| Bug Blocks: | 1986 | ||||||||
| Attachments: |
|
||||||||
|
Description
martian67
2012-02-07 19:25:29 AEDT
Created attachment 2144 [details]
Patch to add support to ssh-keygen -r and ssh for ECDSA/SHA-256 SSHPF records
oops, meant to say patch applies cleanly to 5.8 and 5.9, patch obtained from https://git.nic.cz/redmine/projects/ietf/repository/revisions/master/entry/ssh-sshfp-ecdsa.patch patch applied - this will be in openssh-6.1. Thanks! Created attachment 2161 [details]
patch to add ECDSA key records to host keys records printed by ssh-keygen -r <hostname>
when called without filename (option -f), ssh-keygen -r <hostname> print SSHFP records for 'host' key files (e.g. in /etc/ssh/ on most system). This patch add ECDSA public key file to these host key files.
just forget to say that previous patch in this bug report (attachment 2144 [details]) need obviously to be applied before ...
yes, the patch as committed included this fix *** Bug 1972 has been marked as a duplicate of this bug. *** Set all RESOLVED bugs to CLOSED with release of OpenSSH 7.1 |