| Summary: | Do not fail DNS canonicalization lookup on ProxyJump | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Portable OpenSSH | Reporter: | Sven Wegener <sven.wegener> | ||||
| Component: | ssh | Assignee: | Assigned to nobody <unassigned-bugs> | ||||
| Status: | CLOSED FIXED | ||||||
| Severity: | enhancement | CC: | djm | ||||
| Priority: | P5 | ||||||
| Version: | 7.7p1 | ||||||
| Hardware: | Other | ||||||
| OS: | Linux | ||||||
| Bug Depends on: | |||||||
| Bug Blocks: | 2893 | ||||||
| Attachments: |
|
||||||
Thanks for the patch - this has been committed and will be in the 7.9 release, due later this year.
> commit 383a33d160cefbfd1b40fef81f72eadbf9303a66 (HEAD -> master, origin/master, origin/HEAD)
> Author: djm@openbsd.org <djm@openbsd.org>
> Date: Fri Sep 21 03:11:36 2018 +0000
>
> upstream: Treat connections with ProxyJump specified the same as ones
>
> with a ProxyCommand set with regards to hostname canonicalisation (i.e. don't
> try to canonicalise the hostname unless CanonicalizeHostname is set to
> 'always').
>
> Patch from Sven Wegener via bz#2896
>
> OpenBSD-Commit-ID: 527ff501cf98bf65fb4b29ed0cb847dda10f4d37
closing resolved bugs as of 8.6p1 release |
Created attachment 3170 [details] openssh-proxyjump-canonicalization.patch Currently using ProxyJump with CanonicalizeHostname set to always, results in ssh exiting on DNS lookup failure. ProxyJump gets converted to ProxyCommand later in the code, so both should be treated equally. Use the direct variable, which covers both. See the attched patch.