[Bug 2550] ssh can't use an in-memory-only certificate that doesn't also have another in-memory private key

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Tue Mar 15 03:24:34 AEDT 2016


https://bugzilla.mindrot.org/show_bug.cgi?id=2550

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Blocks|                            |2543
         Resolution|---                         |FIXED
             Status|ASSIGNED                    |RESOLVED

--- Comment #6 from Damien Miller <djm at mindrot.org> ---
Committed, this will be in OpenSSH 7.3 - thanks!

commit c38905ba391434834da86abfc988a2b8b9b62477
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Mar 14 16:20:54 2016 +0000

    upstream commit

    unbreak authentication using lone certificate keys in
     ssh-agent: when attempting pubkey auth with a certificate, if no
separate
     private key is found among the keys then try with the certificate
key itself.

    bz#2550 reported by Peter Moody

    Upstream-ID: f939cd76d68e6a9a3d1711b5a943d6ed1e623966


Referenced Bugs:

https://bugzilla.mindrot.org/show_bug.cgi?id=2543
[Bug 2543] Tracking bug for OpenSSH 7.3 release
-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list