HomePhabricator

pki: Fail to sign when using wrong hash algorithm

Authored by Anderson Toshiyuki Sasaki <ansasaki@redhat.com> on Thu, May 9, 5:38 PM.

Description

pki: Fail to sign when using wrong hash algorithm

Do not allow using SSH_DIGEST_AUTO for any algorithm other than
ed25519.

Do not allow using incompatible hash algorithms when signing or
verifying signatures.

Added negative tests for all combinations of signature and hash
algorithms.

Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>

Details

Committed
asnMon, May 13, 4:37 PM
Parents
rLIBSSH550a1a766789: pki: Remove unused code
Branches
Unknown
Tags
Unknown