[Bug 2708] New: openssh: 7.5p1 update breaks ldns/sshfp
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Sat Apr 8 13:51:20 AEST 2017
https://bugzilla.mindrot.org/show_bug.cgi?id=2708
Bug ID: 2708
Summary: openssh: 7.5p1 update breaks ldns/sshfp
Product: Portable OpenSSH
Version: 7.5p1
Hardware: Other
OS: FreeBSD
Status: NEW
Severity: normal
Priority: P5
Component: ssh
Assignee: unassigned-bugs at mindrot.org
Reporter: mindrot10 at xse.com
Created attachment 2974
--> https://bugzilla.mindrot.org/attachment.cgi?id=2974&action=edit
patch
I'm building the FreeBSD security/openssh-portable port and have found
that upgrading from 7.4p1 to 7.5p1 breaks sshfp:
debug1: found 8 insecure fingerprints in DNS
debug1: matching host key fingerprint found in DNS
When configure is given --with-ldns config.h ends up with:
/* #undef HAVE_LDNS */
I believe this is because ldns=yes is missing from the new ldns-config
logic in configure.ac. The attached patch fixes this issue for me.
FreeBSD zinc.ee.lbl.gov 10.3-RELEASE-p17 FreeBSD 10.3-RELEASE-p17 #17
r26: Thu Feb 23 10:08:13 PST 2017
leres at zinc.ee.lbl.gov:/usr/src/sys/amd64/compile/LBL amd64
--
You are receiving this mail because:
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list