rpms/openssh
7
0
Fork 1
Code Issues Pull Requests Releases Activity

Do not try to use SHA1 for host key ownership proof when we don't support it server-side

Browse Source 
Related: rhbz#2088750
This commit is contained in:
Dmitry Belyavskiy 2023-01-13 15:24:38 +01:00
parent ebbbfce0aa
commit 42aa6f597e
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
openssh-8.7p1-nohostsha1proof.patch
View File

@ -72,7 +72,7 @@ diff -up openssh-8.7p1/sshd.c.sshrsacheck openssh-8.7p1/sshd.c
key = NULL; key = NULL;
continue; continue;
} }
+ if (sshkey_type_plain(key->type) == KEY_RSA || sshkey_type_plain(key->type) == KEY_RSA_CERT) { + if (key && (sshkey_type_plain(key->type) == KEY_RSA || sshkey_type_plain(key->type) == KEY_RSA_CERT)) {
+ size_t sign_size = 0; + size_t sign_size = 0;
+ u_char *tmp = NULL; + u_char *tmp = NULL;
+ u_char data[] = "Test SHA1 vector"; + u_char data[] = "Test SHA1 vector";