Name | Modified | Size | Downloads / Week |
---|---|---|---|
README | 2014-04-14 | 1.3 kB | |
openssh-brainpool.patch | 2014-04-14 | 18.9 kB | |
Totals: 2 Items | 20.3 kB | 0 |
OpenSSH Brainpool patch: ------------------------ This patch is for OpenSSH 6.6-p1 and OpenSSL 1.0.2-beta1 or newer. Please note that OpenSSL 1.0.2-beta1 suffers from heartbleed, so please use the next (not yet available) version for production environments (although TLS functionality is obviously not used by OpenSSH). Installation instructions: -------------------------- 1.) Get OpenSSL 1.0.2-beta1 or newer (only this version includes Brainpool EC). 2.) Build and install it. 3.) Get OpenSSH 6.6-p1. 4.) Patch the source using the patch file, e.g. cd openssh-6.6p1 patch -p1 < <patch file> 5.) Execute "autoreconf". 6.) Configure OpenSSH, e.g.: ./configure --prefix=<install dir> --with-ssl-dir=<ssl install dir from 2.)> --with-cppflags="-I<ssl install dir from 2.)>/include" --with-ldflags="-L<ssl install dir from 2.)>/lib" 7.) Build and install it. Usage instructions: ------------------- Just execute ssh-keygen to get an online help. This "-b" (bits) switch was extended to support not only bit lengths but also 'friendly curve names'. The Brainpool curves can be selected via: brainpoolP256r1 brainpoolP256t1 brainpoolP384r1 brainpoolP384t1 brainpoolP512r1 brainpoolP512t1 You can also use these 'nick names' for NIST curves: nistp256 nistp384 nistp521