artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f682646) | patch
Client-side workaround for a bug in OpenSSH 7.4: this release allows
authordjm <djm@openbsd.org>
Sun, 6 Jun 2021 03:40:39 +0000 (03:40 +0000)
committerdjm <djm@openbsd.org>
Sun, 6 Jun 2021 03:40:39 +0000 (03:40 +0000)
commit41f334052ff924b5bc0348489c6f061984e84024
treee91e790377234daa0b82413adcfdca3818e8d433tree | snapshot
parentf682646719b3d44d5f9d8fe1b7bac45f60cb92efcommit | diff
Client-side workaround for a bug in OpenSSH 7.4: this release allows
RSA/SHA2 signatures for public key authentication but fails to advertise
this correctly via SSH2_MSG_EXT_INFO. This causes clients of these
server to incorrectly match PubkeyAcceptedAlgorithms and potentially
refuse to offer valid keys.

Reported by and based on patch from Gordon Messmer via bz3213, thanks
also for additional analysis by Jakub Jelen. ok dtucker
usr.bin/ssh/compat.c diff | blob | history
usr.bin/ssh/compat.h diff | blob | history
usr.bin/ssh/sshconnect2.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim