HomePhabricator

agent: Use SHA2 signatures also for RSA certificates

Authored by Jakuje on May 29 2019, 3:59 PM.

Description

agent: Use SHA2 signatures also for RSA certificates

There is actually a bug in OpenSSH's ssh-agent of handling these
requests [1], but this change follows the way how OpenSSH clients
behave in regards to the communication with agent.

Without this change, the agent is asked to provide SHA1 signature
with certificates, which is not right if we negotiated SHA2 extensions.

[1] https://bugzilla.mindrot.org/show_bug.cgi?id=3016

Signed-off-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>

Details

Committed
asnJun 13 2019, 11:00 AM
Parents
rLIBSSHf91a5fce6eab: tests: Use ed25519 keys explicitly
Branches
Unknown
Tags
Unknown