search for: identity_file

...((r = sshkey_load_private_type(KEY_UNSPEC, path, NULL, &public, &comment)) != 0) { debug("load private \"%s\": %s", path, ssh_err(r)); fatal("%s is not a key file.", path); @@ -1349,7 +1350,8 @@ do_change_passphrase(struct passwd *pw) if (stat(identity_file, &st) == -1) fatal("%s: %s", identity_file, strerror(errno)); /* Try to load the file with empty passphrase. */ - r = sshkey_load_private(identity_file, "", &private, &comment); + r = sshkey_load_private_type(KEY_UNSPEC, identity_file, "", + &pri...

...; +/* + * General data structure for command line options and options configurable + * in configuration files. See readconf.h. + */ +Options options; +uid_t original_real_uid; + static void ask_filename(struct passwd *pw, const char *prompt) { @@ -103,7 +113,28 @@ break; } - snprintf(identity_file, sizeof(identity_file), "%s/%s", pw->pw_dir, name); + + if(options.num_identity_files > 0) { + char *file=NULL; + char *p=strrchr(name,'/'); + if(p) file = p+1; + + name = tilde_expand_filename(options.identity_files[0], + original_real_uid); + name = ex...

https://bugzilla.mindrot.org/show_bug.cgi?id=2700 Bug ID: 2700 Summary: Missing PEM identity_file should be a fatal error Product: Portable OpenSSH Version: 7.2p2 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: ssh Assignee: unassigned-bugs at mindrot.org...

...&prv, commentp); +?? ?r = sshkey_load_private(filename, pass, &prv, commentp, vault_infop); ??? ?freezero(pass, strlen(pass)); ??? ?if (r != 0) ??? ??? ?fatal("Load key \"%s\": %s", filename, ssh_err(r)); @@ -429,7 +431,7 @@ do_convert_to(struct passwd *pw) ??? ?if (stat(identity_file, &st) == -1) ??? ??? ?fatal("%s: %s: %s", __progname, identity_file, strerror(errno)); ??? ?if ((r = sshkey_load_public(identity_file, &k, NULL)) != 0) -?? ??? ?k = load_identity(identity_file, NULL); +?? ??? ?k = load_identity(identity_file, NULL, NULL); ??? ?switch (convert_form...

...nd should not be set by default */ /* options->user will be set in the main program if appropriate */ /* options->hostname will be set in the main program if appropriate */ --- readconf.h.orig Thu Nov 27 15:19:30 2003 +++ readconf.h Thu Nov 27 15:20:11 2003 @@ -87,6 +87,7 @@ int num_identity_files; /* Number of files for RSA/DSA identities. */ char *identity_files[SSH_MAX_IDENTITY_FILES]; Key *identity_keys[SSH_MAX_IDENTITY_FILES]; + int group_private_key; /* Local TCP/IP forward requests. */ int num_local_forwards; --- ssh.c.orig Thu Nov 27 16:31:08 2003 +++ ssh.c Thu No...

...---------------------------- diff -U2 openssh-2.2.0p1/ssh.0 openssh-2.2.0p1.nigelw/ssh.0 --- openssh-2.2.0p1/ssh.0 Sat Sep 2 10:08:46 2000 +++ openssh-2.2.0p1.nigelw/ssh.0 Thu Dec 21 10:53:07 2000 @@ -224,5 +224,5 @@ -g Allows remote hosts to connect to local forwarded ports. - -i identity_file + -i rsa_identity_file Selects the file from which the identity (private key) for RSA authentication is read. Default is $HOME/.ssh/identity in the @@ -230,4 +230,12 @@ per-host basis in the configuration file. It is possible to have mul...

...y *prv; + if (read_public_only) { + Key *pub; + + pub = key_load_public(filename, NULL); + return pub; + } + prv = key_load_private(filename, "", NULL); if (prv == NULL) { if (identity_passphrase) @@ -705,7 +713,13 @@ perror(identity_file); exit(1); } - prv = load_identity(identity_file); + + if (read_public_only == 1) { + prv = key_load_public(identity_file, NULL); + } else { + prv = load_identity(identity_file); + } + if (prv == NULL) { fprintf(stderr, "load failed\n&quot...

Hi, I don't see any way to view the details of a certificate once it is generated. Having such a capability would be very handy for debugging purposes to check what constraints, principals, and validity interval are associated with a given cert. -- Iain Morgan

...hat works as an human friendly entrypoint for more information about command would certainly save some time. Current output from `ssh --help`: usage: ssh [-1246AaCfgkMNnqsTtVvXxY] [-b bind_address] [-c cipher_spec] [-D [bind_address:]port] [-e escape_char] [-F configfile] [-i identity_file] [-L [bind_address:]port:host:hostport] [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port] [-R [bind_address:]port:host:hostport] [-S ctl_path] [-w local_tun[:remote_tun]] [user@]hostname [command] Proposed output: C:\Program Files\Git\bin>ssh.exe...

Hello everybody, I write an update version of ssh-copy-id script in order to support sshd non running on standard port 22. So I added another parameter to the script to allow user to specify the daemon port. I've also changed the way the command line parameter are retrieved in order to have a more "robust" way of getting them using getopts. Due to this change host name must be

...1_proof_len); + memset(x2_proof, 0, x2_proof_len); xfree(x1_proof); xfree(x2_proof); -------------- next part -------------- --- ssh.c.orig 2012-12-19 17:30:53.992528775 -0800 +++ ssh.c 2012-12-19 17:32:16.421511581 -0800 @@ -1509,8 +1509,8 @@ #endif /* PKCS11 */ n_ids = 0; - bzero(identity_files, sizeof(identity_files)); - bzero(identity_keys, sizeof(identity_keys)); + memset(identity_files, 0, sizeof(identity_files)); + memset(identity_keys, 0, sizeof(identity_keys)); #ifdef ENABLE_PKCS11 if (options.pkcs11_provider != NULL && @@ -1584,9 +1584,9 @@ memcpy(optio...

...(void) atomicio(vwrite, remout, "", 1); ! } else run_err("%s: %s", name, strerror(haderr)); (void) response(); } *************** *** 1084,1090 **** usage(void) { (void) fprintf(stderr, ! "usage: scp [-1246BCpqrv] [-c cipher] [-F ssh_config] [-i identity_file]\n" " [-l limit] [-o ssh_option] [-P port] [-S program]\n" " [[user@]host1:]file1 [...] [[user@]host2:]file2\n"); exit(1); --- 1097,1103 ---- usage(void) { (void) fprintf(stderr, ! "usage: scp [-1246BCpqruv] [-c cipher]...

https://bugzilla.mindrot.org/show_bug.cgi?id=1784 Summary: ssh-keygen fails when filename of key file contains multiple slashes Product: Portable OpenSSH Version: 5.2p1 Platform: All OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: ssh-keygen AssignedTo:

A mixed bag, but all the patches make sense together! Patch 1: Fix a bug that Tingting found: https://bugzilla.redhat.com/show_bug.cgi?id=1256222 Patch 2: Revert a patch that makes no sense now that we've added virt-v2v into base RHEL. This is just included because it's a cleanup needed before applying patch 3. Patch 3: Add the ability to use SSH identities (private keys) for virt-p2v

Fix and/or document issues raised in this thread: https://www.redhat.com/archives/libguestfs/2017-February/msg00010.html Rich.

...hift + continue + ;; + -p) + shift + COMMAND="$COMMAND -p $1" + shift + continue + ;; + -h|--help) + shift $# + break + ;; + *) + break + ;; + esac +done + +if [ "$#" -ne 1 ]; then + echo "Usage: $0 [-i [identity_file]] [-p port] [user@]machine" >&2 + exit 1 +fi + +if [ -z "$OPT_I" ] && [ x$SSH_AUTH_SOCK != x ] && ssh-add -L >/dev/null 2>&1; then + GET_ID="$GET_ID ssh-add -L" fi if [ -z "`eval $GET_ID`" ] && [ -r "${ID_FILE}&...

Fixes https://bugzilla.redhat.com/1256222

...e(&b); + return len; +} + static void do_convert_to_ssh2(struct passwd *pw) { @@ -161,6 +258,7 @@ u_int len; u_char *blob; struct stat st; + int private = 0; if (!have_identity) ask_filename(pw, "Enter file in which the key is"); @@ -168,27 +266,39 @@ perror(identity_file); exit(1); } - if ((k = key_load_public(identity_file, NULL)) == NULL) { + k = key_new(KEY_UNSPEC); + if (key_try_load_public(k, identity_file, NULL) != 1) { if ((k = load_identity(identity_file)) == NULL) { fprintf(stderr, "load failed\n"); exit(1); } + private...

...I've replaced the bzero() calls with the equivalent memset() calls. The patch file is below in (diff -u) format: --- ssh.c.orig 2012-12-19 17:30:53.992528775 -0800 +++ ssh.c 2012-12-19 17:32:16.421511581 -0800 @@ -1509,8 +1509,8 @@ #endif /* PKCS11 */ n_ids = 0; - bzero(identity_files, sizeof(identity_files)); - bzero(identity_keys, sizeof(identity_keys)); + memset(identity_files, 0, sizeof(identity_files)); + memset(identity_keys, 0, sizeof(identity_keys)); #ifdef ENABLE_PKCS11 if (options.pkcs11_provider != NULL && @@ -1584,9 +1584,9 @@...

...hacked/ssh.c 2005-07-25 23:29:10.000000000 +0200 @@ -73,6 +73,10 @@ #include "monitor_fdpass.h" #include "uidswap.h" +#ifdef HAVE_LIBKEYUTIL +#include "keyutil.h" +#endif + #ifdef SMARTCARD #include "scard.h" #endif @@ -1211,15 +1215,18 @@ load_public_identity_files(void) { char *filename; - int i = 0; + int i = 0, count; Key *public; +#ifdef HAVE_LIBKEYUTIL + key_serial_t *keylist; +#endif #ifdef SMARTCARD Key **keys; if (options.smartcard_device != NULL && options.num_identity_files < SSH_MAX_IDENTITY_FILES && (key...