Bug#1067594: ITP: golang-github-skeema-knownhosts -- Go SSH known_hosts wrapper with host key lookup
Package: wnpp
Severity: wishlist
Owner: Maytham Alsudany <maytha8thedev@gmail.com>
X-Debbugs-CC: debian-devel@lists.debian.org, debian-go@lists.debian.org
Control: block 1060701 by -1
* Package name : golang-github-skeema-knownhosts
Version : 1.2.2
Upstream Contact: https://github.com/skeema/knownhosts/issues
* URL : https://github.com/skeema/knownhosts
* License : Apache-2.0
Programming Lang: Go
Description : Go SSH known_hosts wrapper with host key lookup
Go provides excellent functionality for OpenSSH known_hosts files in its
external package golang.org/x/crypto/ssh/knownhosts. However, that package is
somewhat low-level, making it difficult to implement full known_hosts
management similar to command-line ssh's behavior for StrictHostKeyChecking=no
configuration.
.
This repo is a thin wrapper package around golang.org/x/crypto/ssh/knownhosts,
adding the following functionality:
* Look up known_hosts public keys for any given host
* Auto-populate ssh.ClientConfig.HostKeyAlgorithms easily based on
known_hosts, providing a solution for golang/go#29286
* Write new known_hosts entries to an io.Writer
* Properly format/normalize new known_hosts entries containing ipv6
addresses, providing a solution for golang/go#53463
* Determine if an ssh.HostKeyCallback's error corresponds to a host whose key
has changed (indicating potential MitM attack) vs a host that just isn't
known yet
New dependency for golang-github-go-git-go-git.
This package will be maintained within the Debian Go Packaging Team.
I will need a DD to sponsor and upload this package.
--
Kind regards,
Maytham Alsudany
Reply to: