diff options
| author | dtucker@openbsd.org <dtucker@openbsd.org> | 2023-02-17 05:22:50 +0100 |
|---|---|---|
| committer | Darren Tucker <dtucker@dtucker.net> | 2023-02-17 05:43:57 +0100 |
| commit | 2a7e3449908571af601a4c2d12ab140096442e47 (patch) | |
| tree | 7f6c196e6f3a5c3c9f82c7596ea1a4871195c402 /auth2-hostbased.c | |
| parent | upstream: Remove now-unused compat bit SSH_BUG_BIGENDIANAES. This (diff) | |
| download | openssh-2a7e3449908571af601a4c2d12ab140096442e47.tar.xz openssh-2a7e3449908571af601a4c2d12ab140096442e47.zip | |
upstream: Remove now-unused compat bit SSH_BUG_RSASIGMD5. The code
to set this was removed in OpenSSH 7.7 when support for SSH implementations
dating back to before RFC standardization were removed. "burn it all" djm@
OpenBSD-Commit-ID: 6330935fbe23dd00be79891505e06d1ffdac7cda
Diffstat (limited to 'auth2-hostbased.c')
| -rw-r--r-- | auth2-hostbased.c | 8 |
1 files changed, 1 insertions, 7 deletions
diff --git a/auth2-hostbased.c b/auth2-hostbased.c index 6b517db41..cdfe7fd85 100644 --- a/auth2-hostbased.c +++ b/auth2-hostbased.c @@ -1,4 +1,4 @@ -/* $OpenBSD: auth2-hostbased.c,v 1.50 2022/09/17 10:34:29 djm Exp $ */ +/* $OpenBSD: auth2-hostbased.c,v 1.51 2023/02/17 04:22:50 dtucker Exp $ */ /* * Copyright (c) 2000 Markus Friedl. All rights reserved. * @@ -101,12 +101,6 @@ userauth_hostbased(struct ssh *ssh, const char *method) "(received %d, expected %d)", key->type, pktype); goto done; } - if (sshkey_type_plain(key->type) == KEY_RSA && - (ssh->compat & SSH_BUG_RSASIGMD5) != 0) { - error("Refusing RSA key because peer uses unsafe " - "signature format"); - goto done; - } if (match_pattern_list(pkalg, options.hostbased_accepted_algos, 0) != 1) { logit_f("signature algorithm %s not in " "HostbasedAcceptedAlgorithms", pkalg); |