This message is in MIME format. The first part should be readable text,
while the remaining parts are likely unreadable without MIME-aware tools.

Content-type: TEXT/PLAIN; charset=US-ASCII
Content-transfer-encoding: 7BIT

hi, the corner case of '-HF' hashes the whole hostline and not just
the host xor IP address which means that usually it will hash "HOST,IP".
This will never be matched if manually included into the known_host file.
Patch against 4.7p1 attached.


Jan Pechanec

Content-type: TEXT/PLAIN; name=ssh-keygen_HF.patch; charset=US-ASCII
Content-transfer-encoding: 7BIT
Content-disposition: attachment; filename=ssh-keygen_HF.patch

--- openssh-4.7p1/ssh-keygen.c Mon Feb 19 12:10:25 2007
+++ openssh-4.7p1-patched/ssh-keygen.c Wed Oct 10 17:38:05 2007
@@ -598,7 +598,7 @@

static void
-print_host(FILE *f, char *name, Key *public, int hash)
+print_host(FILE *f, const char *name, Key *public, int hash)
if (hash && (name = host_hash(name, NULL, 0)) == NULL)
fatal("hash_host failed");
@@ -726,7 +726,7 @@
printf("# Host %s found: "
"line %d type %s\n", name,
num, key_type(public));
- print_host(out, cp, public, hash_hosts);
+ print_host(out, name, public, hash_hosts);
if (delete_host && !c)
print_host(out, cp, public, 0);

Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

openssh-unix-dev mailing list