Displaying 3 results from an estimated 3 matches for "export_dns_rr".
2011 Nov 21
3
ssh-keygen -r should support SSHFP records for ECDSA (or at least return non-zero error code on failure)
hi folks:
it looks like ssh-keygen -r can''t export SSHFP records for ECDSA keys:
0 dkg@pip:/tmp/cdtemp.oiRYAS$ ssh-keygen -f foobar -t ecdsa -q -P ''''
0 dkg@pip:/tmp/cdtemp.oiRYAS$ ssh-keygen -r foobar -f foobar.pub
export_dns_rr: unsupported algorithm
0 dkg@pip:/tmp/cdtemp.oiRYAS$
the first number in my prompt is the return code of the last command;
note that ssh-keygen -r fails to produce an SSHFP DNS RR, but it returns 0.
at the least, it should return non-zero on failure.
I note that the relevant RFC doesn''...
2013 Jul 09
5
[Bug 2127] New: incorrectness of do_print_resource_record()
...e, &st) < 0) {
1306 if (errno == ENOENT)
1307 return 0;
1308 perror(fname);
1309 exit(1);
1310 }
1311 public = key_load_public(fname, &comment);
1312 if (public != NULL) {
1313 export_dns_rr(hname, public, stdout,
print_generic);
1314 key_free(public);
1315 xfree(comment);
1316 return 1;
1317 }
1318 if (comment)
1319 xfree(comment);
1320
1321 printf("failed to read v2 public key from %s.\n&quo...
2010 Nov 28
2
[PATCH] Use canonical hostname for DNS SSHFP lookup
...010-11-28 10:34:56.536431386 +0100
@@ -46,7 +46,8 @@
#define DNS_VERIFY_MATCH 0x00000002
#define DNS_VERIFY_SECURE 0x00000004
-int verify_host_key_dns(const char *, struct sockaddr *, Key *, int *);
+int verify_host_key_dns(const char *, struct sockaddr *, Key *, int *,
+ const char *);
int export_dns_rr(const char *, Key *, FILE *, int);
#endif /* DNS_H */
diff -ur openssh/openbsd-compat/fake-rfc2553.c openssh-sshfp/openbsd-compat/fake-rfc2553.c
--- openssh/openbsd-compat/fake-rfc2553.c 2008-07-14 13:37:37.000000000 +0200
+++ openssh-sshfp/openbsd-compat/fake-rfc2553.c 2010-11-28 12:01:24.57426...