diff options
| author |   djm <djm@openbsd.org> | 2017-12-18 23:14:34 +0000 |
|---|---|---|
| committer | djm <djm@openbsd.org> | 2017-12-18 23:14:34 +0000 |
| commit | d22407ec0f1be1d77ab59f992abc023ce5b92b12 (patch) | |
| tree | 8ce3069232d8daa1006350a0afe735bd6736149f /usr.bin/ssh/ssh-rsa.c | |
| parent | pass kex->hostkey_alg and kex->hostkey_nid from pre-auth to post-auth (diff) | |
| download | wireguard-openbsd-d22407ec0f1be1d77ab59f992abc023ce5b92b12.tar.xz wireguard-openbsd-d22407ec0f1be1d77ab59f992abc023ce5b92b12.zip | |
log mismatched RSA signature types; ok markus@
Diffstat (limited to 'usr.bin/ssh/ssh-rsa.c')
| -rw-r--r-- | usr.bin/ssh/ssh-rsa.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.bin/ssh/ssh-rsa.c b/usr.bin/ssh/ssh-rsa.c index fb9265709e7..edda40b717a 100644 --- a/usr.bin/ssh/ssh-rsa.c +++ b/usr.bin/ssh/ssh-rsa.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ssh-rsa.c,v 1.63 2017/12/18 02:25:15 djm Exp $ */ +/* $OpenBSD: ssh-rsa.c,v 1.64 2017/12/18 23:14:34 djm Exp $ */ /* * Copyright (c) 2000, 2003 Markus Friedl <markus@openbsd.org> * @@ -28,6 +28,7 @@ #define SSHKEY_INTERNAL #include "sshkey.h" #include "digest.h" +#include "log.h" static int openssh_RSA_verify(int, u_char *, size_t, u_char *, size_t, RSA *); @@ -218,6 +219,8 @@ ssh_rsa_verify(const struct sshkey *key, /* XXX djm: need cert types that reliably yield SHA-2 signatures */ if (alg != NULL && strcmp(alg, sigtype) != 0 && strcmp(alg, "ssh-rsa-cert-v01@openssh.com") != 0) { + error("%s: RSA signature type mismatch: " + "expected %s received %s", __func__, alg, sigtype); ret = SSH_ERR_SIGNATURE_INVALID; goto out; } |