[Bug 1829] auth-rsa.c: move auth_key_is_revoked() call from auth_rsa_verify_response() to auth_rsa_key_allowed()

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Wed Oct 5 08:44:08 EST 2011


--- Comment #8 from Damien Miller <djm at mindrot.org> 2011-10-05 08:44:08 EST ---
Remember what is happening here: a key has been suggested by the client
and is being compared against the lines in authorized_keys. *After* the
modulus has been matched, we check whether the key is revoked. If it is
revoked, then there is no point in checking further in the file to see
if an non-revoked entry of the same key exists.

Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

More information about the openssh-bugs mailing list