[Bug 2708] New: openssh: 7.5p1 update breaks ldns/sshfp

bugzilla-daemon Fri, 07 Apr 2017 20:52:33 -0700

https://bugzilla.mindrot.org/show_bug.cgi?id=2708


            Bug ID: 2708
           Summary: openssh: 7.5p1 update breaks ldns/sshfp
           Product: Portable OpenSSH
           Version: 7.5p1
          Hardware: Other
                OS: FreeBSD
            Status: NEW
          Severity: normal
          Priority: P5
         Component: ssh
          Assignee: [email protected]
          Reporter: [email protected]

Created attachment 2974
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2974&action=edit
patch

I'm building the FreeBSD security/openssh-portable port and have found
that upgrading from 7.4p1 to 7.5p1 breaks sshfp:

    debug1: found 8 insecure fingerprints in DNS
    debug1: matching host key fingerprint found in DNS

When configure is given --with-ldns config.h ends up with:

    /* #undef HAVE_LDNS */

I believe this is because ldns=yes is missing from the new ldns-config
logic in configure.ac. The attached patch fixes this issue for me.

FreeBSD zinc.ee.lbl.gov 10.3-RELEASE-p17 FreeBSD 10.3-RELEASE-p17 #17
r26: Thu Feb 23 10:08:13 PST 2017    
[email protected]:/usr/src/sys/amd64/compile/LBL  amd64

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
[email protected]
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 2708] New: openssh: 7.5p1 update breaks ldns/sshfp

Reply via email to