[Bug 1829] auth-rsa.c: move auth_key_is_revoked() call from auth_rsa_verify_response() to auth_rsa_key_allowed()

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Tue Sep 13 08:46:42 EST 2011


https://bugzilla.mindrot.org/show_bug.cgi?id=1829

Dmitry V. Levin <ldv at altlinux.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|CLOSED                      |REOPENED
         Resolution|FIXED                       |

--- Comment #5 from Dmitry V. Levin <ldv at altlinux.org> 2011-09-13 08:46:42 EST ---
(In reply to comment #3)
> Patch applied and will be released in OpenSSH-5.7 - thanks!

The patch was changed before applying, with result that the rest of the
file passed to rsa_key_allowed_in_file() is going to be skipped once a
revoked key is detected, while the intended behavior is to skip just
those lines that define revoked keys.

Please compare the original proposal
https://bugzilla.mindrot.org/attachment.cgi?id=1936
with actually applied change
http://hg.mindrot.org/openssh/rev/a82eca01db5b
and consider applying the change in its original form.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list