HomePhabricator

kex: Only advertise allowed signature types

Authored by Anderson Toshiyuki Sasaki <ansasaki@redhat.com> on Jun 12 2019, 6:00 PM.

Description

kex: Only advertise allowed signature types

Previously, if the client supported rsa-sha2-256 or rsa-sha2-512, the
server would advertise the extensions as supported without checking its
own list of allowed algorithms. Now the server will only advertise
allowed signature algorithms.

Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>

Details

Committed
asnJun 13 2019, 4:28 PM
Parents
rLIBSSH1b7146e28f68: server: Send only allowed algorithms in extension
Branches
Unknown
Tags
Unknown