Don't link sftp, sftp-server or scp with libcrypto
Demi Marie Obenour
demiobenour at gmail.com
Sun Jul 24 18:57:30 AEST 2022
On 7/22/22 00:00, Darren Tucker wrote:
> On Wed, 13 Jul 2022 at 18:04, Demi Marie Obenour <demiobenour at gmail.com> wrote:
> [...]
>> That reminds me: is there any chance that OpenSSH’s SSH client
>> code could be made into a library that other code could use as well?
>> Having to spawn a child process is a bit annoying, and I would like
>> to be able to use all of ssh(1)’s features.
>
> There's a libssh.a built as part of the build process but making it
> externally consumable with a stable API/ABI is not a goal. There are
> other projects which do have that goal (eg libssh and libssh2, both of
> which seem to be actively maintained).
That is a valid decision. libssh2 has a somewhat underwhelming
security track-record, but libssh seems to be quite good.
I do wish there was a library for ssh-keygen -Y signing and
verification. Right now Git has to spawn a subprocess and parse its
output, which is less than great.
--
Sincerely,
Demi Marie Obenour (she/her/hers)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xB288B55FFF9C22C1.asc
Type: application/pgp-keys
Size: 4885 bytes
Desc: OpenPGP public key
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20220724/263c8b41/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20220724/263c8b41/attachment.asc>
More information about the openssh-unix-dev
mailing list