fix bug in HostbasedAcceptedKeyTypes and PubkeyAcceptedKeyTypes options. - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	djm <djm@openbsd.org>	2018-11-16 02:43:56 +0000
committer	djm <djm@openbsd.org>	2018-11-16 02:43:56 +0000
commit	860bbf327d27bcce064171716b1fb49bd60f6c05 (patch)
tree	af92386b9e940dc8be82beaaff350541cf18940b /usr.bin/ssh/readconf.c
parent	Unbreak legacy ciphers for prior to 1.1 by setting having a legacy (diff)
download	wireguard-openbsd-860bbf327d27bcce064171716b1fb49bd60f6c05.tar.xz wireguard-openbsd-860bbf327d27bcce064171716b1fb49bd60f6c05.zip

fix bug in HostbasedAcceptedKeyTypes and PubkeyAcceptedKeyTypes options.

If only RSA-SHA2 siganture types were specified, then authentication would always fail for RSA keys as the monitor checks only the base key (not the signature algorithm) type against *AcceptedKeyTypes. bz#2746; reported by Jakub Jelen; ok dtucker

Diffstat (limited to 'usr.bin/ssh/readconf.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: