search for: key_load_private

...amp; 007) != 0)) { error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@"); error("@ WARNING: UNPROTECTED PRIVATE KEY FILE! @"); error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@"); @@ -525,14 +528,14 @@ Key * key_load_private_type(int type, const char *filename, const char *passphrase, - char **commentp) + char **commentp, int group_private_key) { int fd; fd = open(filename, O_RDONLY); if (fd < 0) return NULL; - if (!key_perm_ok(fd, filename)) { + if (!key_perm_ok(fd, filename, group_private_key)) {...

...seed_rng before read_server_config after read_server_config ?before fill_default_server_options after fill_default_server_options sshd version OpenSSH_3.7.1p2 before lodaing private keys ?after lodaing private keys ?after lodaing private keys options.host_key_files[i]=/etc/ssh/ssh_host_rsa_key ?in key_load_private ?before key_load_public_rsa1 in buffer_init in buffer_append_space in buffer_get leaving from buffer_get in buffer_free ?before key_load_private_pem ?returning from key_load_private ?after key_load_private private host key: #0 type 1 RSA options.host_key_files[i]=/etc/ssh/ssh_host_dsa_key ?in key_l...

...seed_rng before read_server_config after read_server_config before fill_default_server_options after fill_default_server_options sshd version OpenSSH_3.7.1p2 before lodaing private keys after lodaing private keys after lodaing private keys options.host_key_files[i]=/etc/ssh/ssh_host_rsa_key in key_load_private before key_load_public_rsa1 in buffer_init in buffer_append_space in buffer_get leaving from buffer_get in buffer_free before key_load_private_pem returning from key_load_private after key_load_private private host key: #0 type 1 RSA options.host_key_files[i]=/etc/ssh/ssh_host_dsa_key in key_l...

...n loading my password-protected SSHv1 key (used only for testing). "ssh-add ~/.ssh/identity" also fails to format the prompt properly ("Enter passphrase for :"). The issue is as follows: Starting at ssh-add.c:158 in add_file(ac, filename = "~/.ssh/identity"), we call key_load_private(filename = "~/.ssh/identity", passphrase = "", commentp = &comment) key_parse_private_type(blob = <contents of ~/.ssh/identity>, KEY_RSA1, passphrase = "", commentp = &comment) key_parse_private_rsa1(blob, passphrase = "", commentp = &commen...

...= 1; + break; + default: + fatal("%s: unsupported host key type", __func__); + } + } + buffer_free(&m); debug3("%s: done", __func__); @@ -1308,6 +1350,41 @@ server_accept_loop(int *sock_in, int *sock_out, int *newsock, int *config_s) } } +static Key * +sshd_key_load_private(const char *filename) +{ + Key *key; + char prompt[300], *passphrase = ""; + int quit, i; + + key = key_load_private(filename, passphrase, NULL); + + if (key == NULL) { + snprintf(prompt, sizeof prompt, + "Enter passphrase for key '%.100s': ", filename); + /* opti...

On Thu, 25 Jun 2015, Michael Felt wrote: > Just running a standard make, and then a make install to a packaging > directory. It seems to be complaining about missing keys - not sure yet if > this is a show stopper For packaging you want the install-nokeys rule not install. -- Tim Rice Multitalents tim at multitalents.net

I noticed this on DEBUG startup of Sun's SSH: debug2: mac_init: found hmac-sha1 debug2: mac_init: found hmac-md5 debug1: sshd version Sun_SSH_1.0 debug1: Bad RSA1 key file /etc/ssh/ssh_host_rsa_key. debug1: read SSH2 private key done: name rsa w/o comment success 1 debug1: load_private_key_autodetect: type 1 RSA debug1: Bad RSA1 key file /etc/ssh/ssh_host_dsa_key. debug1: read SSH2 private

...nd in 'ssh_host_rsa_key' and 'ssh_host_rsa_key.pub' respectively. Now I am tracing through the sshd.c file and I am interested about how the SSH2 protocol loads the host keys. Below I drew a rough call graph as [fileName]functionName [sshd.c]main() | \/ [authfile.c]key_load_private() | \/ [authfile.c]key_load_private_pem() | \/ [in openssl library]PEM_read_PrivateKey() I am a bit confused about the call to the function PEM_read_PrivateKey() Below is the call to PEM_read_PrivateKey() on line 463 of authfile.c =====================================...

Hello openssh-unix-dev list members, This is related to my previous post, but I need to ask specific questions. I'm building openssh with iPhone Toolchain (http://wikee.iphwn.org/howto:toolchain_on_leopard_aspen) for iPhone 2.1 firmware. This is not an iPhone mailing list, but probably anyone with deep knowledge of openssh could give a hint. So this is what I do: 1. I patch the files using

...= 0; int print_generic = 0; +int read_public_only = 0; char *key_type_name = NULL; @@ -240,6 +241,13 @@ char *pass; Key *prv; + if (read_public_only) { + Key *pub; + + pub = key_load_public(filename, NULL); + return pub; + } + prv = key_load_private(filename, "", NULL); if (prv == NULL) { if (identity_passphrase) @@ -705,7 +713,13 @@ perror(identity_file); exit(1); } - prv = load_identity(identity_file); + + if (read_public_only == 1) { + prv = key_load_public(identity_file, NULL); + } else { +...

...le.h 2005-05-19 23:03:35.000000000 +0200 @@ -18,6 +18,7 @@ int key_save_private(Key *, const char *, const char *, const char *); Key *key_load_public(const char *, char **); Key *key_load_public_type(int, const char *, char **); +int key_try_load_public(Key *, const char *, char **); Key *key_load_private(const char *, const char *, char **); Key *key_load_private_type(int, const char *, const char *, char **); Key *key_load_private_pem(int, int, const char *, char **); --- ssh-keygen.c.orig 2005-03-02 02:33:04.000000000 +0100 +++ ssh-keygen.c 2005-05-19 22:20:02.000000000 +0200 @@ -24,6 +24,7 @...

Hi, Is there any way to store HostKey in hardware (and delegate the related processing)? I have been using Roumen Petrov's x509 patch for clients, which works via an OpenSSL engine, but it does not seem to support server HostKey: http://roumenpetrov.info/pipermail/ssh_x509_roumenpetrov.info/2012q4/000019.html For PKCS#11, I have found an email on this list from a year back suggesting this

...loc(options.num_host_key_files, + sizeof(Key *)); + for (i = 0; i < options.num_host_key_files; i++) { sensitive_data.host_keys[i] = NULL; + sensitive_data.host_pubkeys[i] = NULL; + } + + have_agent = ssh_agent_present(); for (i = 0; i < options.num_host_key_files; i++) { key = key_load_private(options.host_key_files[i], "", NULL); + pubkey = key_load_public(options.host_key_files[i], + &pubkey_comment); sensitive_data.host_keys[i] = key; - if (key == NULL) { + sensitive_data.host_pubkeys[i] = pubkey; + + if (key == NULL && pubkey != NULL && pubke...

Tried the user discussion list to no avail, can't get 3.6.p2 portable running due to buffer_get errors. Does the latest portable SNAP incorporate the latest patches? Running Red Hat 8.0 AS SHIPPED /usr/sbin/sshd ... cool, listens on 22 with 3.4p1 WITH 3.6.1p2 ./configure make make install ... /usr/local/sbin/sshd -t -f /usr/local/etc/sshd_config buffer_get: trying to get more bytes 1 than