diff options
author | djm@openbsd.org <djm@openbsd.org> | 2019-11-25 00:51:37 +0000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2019-11-25 12:23:33 +1100 |
commit | b7e74ea072919b31391bc0f5ff653f80b9f5e84f (patch) | |
tree | adb2a736c1b9f6346d342600877818631f9dbb3d /clientloop.c | |
parent | d2b0f88178ec9e3f11b606bf1004ac2fe541a2c3 (diff) |
upstream: Add new structure for signature options
This is populated during signature verification with additional fields
that are present in and covered by the signature. At the moment, it is
only used to record security key-specific options, especially the flags
field.
with and ok markus@
OpenBSD-Commit-ID: 338a1f0e04904008836130bedb9ece4faafd4e49
Diffstat (limited to 'clientloop.c')
-rw-r--r-- | clientloop.c | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/clientloop.c b/clientloop.c index 068506210..880abfda2 100644 --- a/clientloop.c +++ b/clientloop.c | |||
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: clientloop.c,v 1.328 2019/11/13 04:47:52 deraadt Exp $ */ | 1 | /* $OpenBSD: clientloop.c,v 1.329 2019/11/25 00:51:37 djm Exp $ */ |
2 | /* | 2 | /* |
3 | * Author: Tatu Ylonen <ylo@cs.hut.fi> | 3 | * Author: Tatu Ylonen <ylo@cs.hut.fi> |
4 | * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland | 4 | * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
@@ -2003,7 +2003,8 @@ client_global_hostkeys_private_confirm(struct ssh *ssh, int type, | |||
2003 | sshkey_type_plain(ctx->keys[i]->type) == KEY_RSA; | 2003 | sshkey_type_plain(ctx->keys[i]->type) == KEY_RSA; |
2004 | if ((r = sshkey_verify(ctx->keys[i], sig, siglen, | 2004 | if ((r = sshkey_verify(ctx->keys[i], sig, siglen, |
2005 | sshbuf_ptr(signdata), sshbuf_len(signdata), | 2005 | sshbuf_ptr(signdata), sshbuf_len(signdata), |
2006 | use_kexsigtype ? ssh->kex->hostkey_alg : NULL, 0)) != 0) { | 2006 | use_kexsigtype ? ssh->kex->hostkey_alg : NULL, 0, |
2007 | NULL)) != 0) { | ||
2007 | error("%s: server gave bad signature for %s key %zu", | 2008 | error("%s: server gave bad signature for %s key %zu", |
2008 | __func__, sshkey_type(ctx->keys[i]), i); | 2009 | __func__, sshkey_type(ctx->keys[i]), i); |
2009 | goto out; | 2010 | goto out; |