Page MenuHomeFreeBSD
Differential D38648

ssh: default VerifyHostKeyDNS to no, following upstream
ClosedPublic
Actions

Authored by emaste on Feb 17 2023, 1:35 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Apr 21, 9:42 AM
Unknown Object (File)
Mar 22 2024, 8:12 PM
Unknown Object (File)
Mar 22 2024, 8:12 PM
Unknown Object (File)
Mar 9 2024, 2:02 PM
Unknown Object (File)
Mar 9 2024, 2:47 AM
Unknown Object (File)
Feb 17 2024, 9:58 AM
Unknown Object (File)
Jan 18 2024, 3:11 AM
Unknown Object (File)
Jan 3 2024, 9:58 PM
View All 24 Files
Subscribers
gordon
imp
zlei

Details

Reviewers
kevans
des
gordon
Group Reviewers
secteam
Commits
rGd54953d6abc9: ssh: default VerifyHostKeyDNS to no, following upstream
rG43fd77233cd4: ssh: default VerifyHostKeyDNS to no, following upstream
rG41ff5ea22cb9: ssh: default VerifyHostKeyDNS to no, following upstream
Summary
Revert to upstream's default.  Using VerifyHostKeyDNS may depend on a
trusted nameserver and network path.

This reverts commit 83c6a5242c80160fff76fb85454938761645b0c4.

Reported by:    David Leadbeater, G-Research
Relnotes:       Yes
Sponsored by:   The FreeBSD Foundation

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

emaste requested review of this revision.Feb 17 2023, 1:35 AM
emaste created this revision.
zlei added a subscriber: zlei.Feb 17 2023, 8:02 AM
emaste added a comment.Feb 21 2023, 4:55 PM

Reference: https://blog.des.no/2013/10/verifyhostkeydns/

zlei added a comment.Feb 22 2023, 4:54 AM
In D38648#880933, @emaste wrote:

Reference: https://blog.des.no/2013/10/verifyhostkeydns/

3. If an SSHFP record was found:
     1. If it matches the server’s key:
         1. If it has a valid DNSSEC signature and VerifyHostKeyDNS is “yes”, continue connecting
         2. Otherwise, set a flag to indicate that a matching SSHFP record was found
     2. Otherwise, warn about the mismatch

I've not looked into OpenSSH's source code, but the logic seems not right.

IMO a SSHFP record should be used only when its DNSSEC signature is validated and valid, otherwise the record is not trusted and should be not be used and ignored.
So the step 3 should be If an SSHFP record was found and has a valid DNSSEC signature.

A landscape:

3. If an SSHFP record was found and has a valid DNSSEC signature:
     1. If it matches the server’s key:
         1. If VerifyHostKeyDNS is “yes”, continue connecting
         2. Otherwise, set a flag to indicate that a matching SSHFP record was found
     2. Otherwise, warn about the mismatch

Back to this topic, any chance that the logic could not be fixed ? Or this is only a temporary fix ?

gordon accepted this revision.Feb 27 2023, 3:14 PM
gordon added a subscriber: gordon.

Looks good to me.

This revision is now accepted and ready to land.Feb 27 2023, 3:14 PM
Closed by commit rG41ff5ea22cb9: ssh: default VerifyHostKeyDNS to no, following upstream (authored by emaste). · Explain WhyMar 1 2023, 2:21 PM
This revision was automatically updated to reflect the committed changes.
emaste added a commit: rG41ff5ea22cb9: ssh: default VerifyHostKeyDNS to no, following upstream.
Herald added a subscriber: imp. · View Herald TranscriptMar 1 2023, 2:21 PM
emaste added a comment.Mar 1 2023, 2:33 PM

Back to this topic, any chance that the logic could not be fixed ?

Yes, we should fix OpenSSH's host key handling, and also improve the resolver.

emaste added a commit: rG43fd77233cd4: ssh: default VerifyHostKeyDNS to no, following upstream.Mar 2 2023, 3:11 AM
emaste added a commit: rGd54953d6abc9: ssh: default VerifyHostKeyDNS to no, following upstream.Mar 2 2023, 5:43 PM

Revision Contents
Changeset List

PathSize
crypto/
openssh/
1 line
6 lines
1 line
5 lines

Diff 118126

View Options

crypto/openssh/FREEBSD-upgrade

Loading...
View Options

crypto/openssh/readconf.c

Loading...
View Options

crypto/openssh/ssh_config

Loading...
View Options

crypto/openssh/ssh_config.5

Loading...