Enforcing sha2 algorithm in ssh-keygen.c

Dmitry Belyavskiy dbelyavs at redhat.com
Fri Mar 3 21:04:56 AEDT 2023

Dear colleagues,

Could you please take a look?

On Fri, Jan 20, 2023 at 12:55 PM Dmitry Belyavskiy <dbelyavs at redhat.com> wrote:
> Dear colleagues,
> ssh-keygen uses SHA1 algorithm (default) when verifying that the key is usable. It causes problems on recent systems where SHA1 is disabled for use with signatures (at least, RHEL 9+).
> The proposed patch enforces using a sha2 algorithm for key verification.
> --
> Dmitry Belyavskiy

Dmitry Belyavskiy

More information about the openssh-unix-dev mailing list