upstream: Improve strictness and control over RSA-SHA2 signature

diff options

author	djm@openbsd.org <djm@openbsd.org>	2018-07-03 11:39:54 +0000
committer	Damien Miller <djm@mindrot.org>	2018-07-03 23:26:36 +1000
commit	4ba0d54794814ec0de1ec87987d0c3b89379b436 (patch)
tree	b8d904880f8927374b377b2e4d5661213c1138b6 /version.h
parent	95344c257412b51199ead18d54eaed5bafb75617 (diff)

In ssh, when an agent fails to return a RSA-SHA2 signature when requested and falls back to RSA-SHA1 instead, retry the signature to ensure that the public key algorithm sent in the SSH_MSG_USERAUTH matches the one in the signature itself. In sshd, strictly enforce that the public key algorithm sent in the SSH_MSG_USERAUTH message matches what appears in the signature. Make the sshd_config PubkeyAcceptedKeyTypes and HostbasedAcceptedKeyTypes options control accepted signature algorithms (previously they selected supported key types). This allows these options to ban RSA-SHA1 in favour of RSA-SHA2. Add new signature algorithms "rsa-sha2-256-cert-v01@openssh.com" and "rsa-sha2-512-cert-v01@openssh.com" to force use of RSA-SHA2 signatures with certificate keys. feedback and ok markus@ OpenBSD-Commit-ID: c6e9f6d45eed8962ad502d315d7eaef32c419dde

Diffstat (limited to 'version.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: