Fix duplicate audit log entry when destroying ed25519 private keys

Resolves: RHEL-46782

Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>
This commit is contained in:
Zoltan Fridrich 2026-03-20 15:04:10 +01:00
parent 3f5a4dc4f9
commit ef90c25403
2 changed files with 3 additions and 1 deletions

View File

@ -2093,7 +2093,7 @@ diff -up openssh-8.6p1/sshd-session.c.audit openssh-8.6p1/sshd-session.c
+#endif /* WITH_OPENSSL */
+ case KEY_ED25519_CERT:
+ case KEY_ED25519:
+ return (k->ed25519_pk != NULL);
+ return (k->ed25519_sk != NULL);
+ default:
+ /* fatal("key_is_private: bad key type %d", k->type); */
+ return 0;

View File

@ -722,6 +722,8 @@ test -f %{sysconfig_anaconda} && \
* Wed Mar 18 2026 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-23
- Don't negotiate non-FIPS algorithms in ssh-keyscan key exchange in FIPS mode
Resolves: RHEL-88565
- Fix duplicate audit log entry when destroying ed25519 private keys
Resolves: RHEL-46782
* Thu Mar 12 2026 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-22
- Remove recommendation of p11-kit