Shell access to SSH KDF

Eric Ferguson eric at
Fri Aug 31 08:45:28 EST 2012

Hi everyone.
I'm currently running through FIPS validation, and this year CAVP
requires KDF tests for SSH.  I'm running OpenSSH v5.6p1 and I see that
the 6 keys that I need are derived in kex_derived_keys in kex.c. 
However, I don't yet see any way for me to access this function from an
existing command line tool, being able to pass in K, H, and the
session_id from the test vector.  Is my only option to build a custom
executable, linking in key derivation function I need, or am I missing

Thank you.


More information about the openssh-unix-dev mailing list