Please add certificates support to openssh service

  • Open
  • quality assurance status badge
Details
2 participants
  • david larsson
  • Nathan Dehnel
Owner
unassigned
Submitted by
Nathan Dehnel
Severity
normal
N
N
Nathan Dehnel wrote on 2 Dec 2021 02:02
(name . Tobias Geerinckx-Rice via Bug reports for GNU Guix)(address . bug-guix@gnu.org)
CAEEhgEs2MJ-3qznO6Rcq+L+8KdX-+_SSX8i3Xv9zufSciosoNg@mail.gmail.com
Please add support in config.scm for these two fields from sshd_config:

HostCertificate
TrustedUserCAKeys

Thanks in advance.
D
D
david larsson wrote on 2 Dec 2021 08:19
(name . Nathan Dehnel)(address . ncdehnel@gmail.com)
ab7dc53357d2c2d9a9e201a9b8061d7c@selfhosted.xyz
On 2021-12-02 02:02, Nathan Dehnel wrote:
Toggle quote (7 lines)
> Please add support in config.scm for these two fields from sshd_config:
>
> HostCertificate
> TrustedUserCAKeys
>
> Thanks in advance.

Hi Nathan,

This should be fairly easy. You do have an "extra-content" field also,
to use in the meantime:

Best regards,
David
N
N
Nathan Dehnel wrote on 2 Dec 2021 20:50
(name . david larsson)(address . david.larsson@selfhosted.xyz)
CAEEhgEu=tY-aMZtsQvk+DOunuO6x9qVitaoDV+scEdjr3DB_5g@mail.gmail.com
Oh, thank you.

On Thu, Dec 2, 2021 at 1:19 AM david larsson
<david.larsson@selfhosted.xyz> wrote:
Toggle quote (17 lines)
>
> On 2021-12-02 02:02, Nathan Dehnel wrote:
> > Please add support in config.scm for these two fields from sshd_config:
> >
> > HostCertificate
> > TrustedUserCAKeys
> >
> > Thanks in advance.
>
> Hi Nathan,
>
> This should be fairly easy. You do have an "extra-content" field also,
> to use in the meantime:
> https://github.com/guix-mirror/guix/blob/master/gnu/services/ssh.scm#L344
>
> Best regards,
> David
N
N
Nathan Dehnel wrote on 2 Dec 2021 23:27
(name . david larsson)(address . david.larsson@selfhosted.xyz)
CAEEhgEsngkPmxc31-d0B_uBj2bTS8DHHt5dDU=q-PzvKWJExRQ@mail.gmail.com
Oh, also the HostKey field is needed.

On Thu, Dec 2, 2021 at 1:50 PM Nathan Dehnel <ncdehnel@gmail.com> wrote:
Toggle quote (22 lines)
>
> Oh, thank you.
>
> On Thu, Dec 2, 2021 at 1:19 AM david larsson
> <david.larsson@selfhosted.xyz> wrote:
> >
> > On 2021-12-02 02:02, Nathan Dehnel wrote:
> > > Please add support in config.scm for these two fields from sshd_config:
> > >
> > > HostCertificate
> > > TrustedUserCAKeys
> > >
> > > Thanks in advance.
> >
> > Hi Nathan,
> >
> > This should be fairly easy. You do have an "extra-content" field also,
> > to use in the meantime:
> > https://github.com/guix-mirror/guix/blob/master/gnu/services/ssh.scm#L344
> >
> > Best regards,
> > David
?
Your comment

Commenting via the web interface is currently disabled.

To comment on this conversation send an email to 52234@debbugs.gnu.org

To respond to this issue using the mumi CLI, first switch to it
mumi current 52234
Then, you may apply the latest patchset in this issue (with sign off)
mumi am -- -s
Or, compose a reply to this issue
mumi compose
Or, send patches to this issue
mumi send-email *.patch