session: OpenSSH is using SHA256 fingerprints now

Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2019-06-13 16:23:35 +02:00 · 2019-06-13 16:23:35 +02:00 · c0c1454298
--- a/src/session.c
+++ b/src/session.c
@ -1091,7 +1091,7 @@ int ssh_get_publickey(ssh_session session, ssh_key *key)
 * @warning It is very important that you verify at some moment that the hash
 *          matches a known server. If you don't do it, cryptography wont help
 *          you at making things secure.
- *          OpenSSH uses SHA1 to print public key digests.
+ *          OpenSSH uses SHA256 to print public key digests.
 *
 * @see ssh_session_update_known_hosts()
 * @see ssh_get_hexa()