2534 – option to get host key list from HostKeyAgent

Bug 2534 - option to get host key list from HostKeyAgent

Summary: option to get host key list from HostKeyAgent

Status:	NEW

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	sshd (show other bugs)
Version:	7.1p1
Hardware:	All All

Importance:	P5 enhancement
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2016-01-28 18:42 AEDT by Igor Bukanov
Modified:	2016-01-28 18:42 AEDT (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Igor Bukanov 2016-01-28 18:42:12 AEDT

Currently, when sshd runs with HostKeyAgent, it still requires to list the server keys with HostKey options pointing to the public keys that agent provides. It would be nice to have an option to load this list from the agent when a client connects, not on startup.

This is very useful when sshd runs, for example, in a restricted container that do not have access to a file system holding the private keys. Thus to change the server keys I not only need to signal sshd to reload its config, but also to ensure that the public keys are transferred into the sshd container complicating the key management.