From 22cc741096c85ff211dfc4c910fd28ec4858ba83 Mon Sep 17 00:00:00 2001
From: Darren Tucker <dtucker@zip.com.au>
Date: Mon, 6 Dec 2004 22:47:41 +1100
Subject:    - dtucker@cvs.openbsd.org 2004/12/06 11:41:03      [auth-rsa.c
 auth2-pubkey.c authfile.c misc.c misc.h ssh.h sshd.8]      Discard
 over-length authorized_keys entries rather than complaining when      they
 don't decode.  bz #884, with & ok djm@

---
 ssh.h | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'ssh.h')

diff --git a/ssh.h b/ssh.h
index a3b2ebbb5..07592415b 100644
--- a/ssh.h
+++ b/ssh.h
@@ -1,4 +1,4 @@
-/*	$OpenBSD: ssh.h,v 1.75 2003/12/02 17:01:15 markus Exp $	*/
+/*	$OpenBSD: ssh.h,v 1.76 2004/12/06 11:41:03 dtucker Exp $	*/
 
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -39,6 +39,13 @@
  */
 #define SSH_MAX_IDENTITY_FILES		100
 
+/*
+ * Maximum length of lines in authorized_keys file.
+ * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
+ * some room for options and comments.
+ */
+#define SSH_MAX_PUBKEY_BYTES		8192
+
 /*
  * Major protocol version.  Different version indicates major incompatibility
  * that prevents communication.
-- 
cgit v1.2.3