Red Hat Bugzilla – Bug 481100
Enable OpenSSH to use ssl encryption engines by default
Last modified: 2009-01-30 10:44:55 EST
Created attachment 329692 [details]
Specfile modifcation to allow SSL Engines with openssh (Doesn't include any changes to the changelog)
Description of problem:
Currently our packages of OpenSSH are not compiled with --with-ssl-engine. Users that do have hardware encryption need to recompile OpenSSH with this option to allow OpenSSH to use their hardware encryption engine. This patch to the spec file allows OpenSSH to be built with engine support by default.
It's good to note that this works with our OpenSSL 0.9.8j (available in rawhide). It does not work in Fedora 10 with OpenSSL 0.9.8g. The upstream bug that tracks that is:
I felt that needs to be mentioned because this patch alone will only work in rawhide and not Fedora 10. If we care about fixing this in Fedora 10 we need to fix OpenSSL 0.9.8g.