diff options
| author | Ben Toews <mastahyeti@gmail.com> | 2019-02-13 13:00:53 -0700 |
|---|---|---|
| committer | Andreas Schneider <asn@cryptomilk.org> | 2019-04-17 10:21:42 +0200 |
| commit | 2f26b5d63cde0da954e237aff176701d51760ea1 (patch) | |
| tree | cdacbc257622d275a6958bbdb8776df893d5a01f /include/libssh | |
| parent | 7c0719e53dceb688009e12ba80a3e335205ecc51 (diff) | |
| download | libssh-2f26b5d63cde0da954e237aff176701d51760ea1.tar.gz libssh-2f26b5d63cde0da954e237aff176701d51760ea1.tar.xz libssh-2f26b5d63cde0da954e237aff176701d51760ea1.zip | |
pki: allow certificates to be used in signature verification
A number of places checked that the signature type matched the key type. We
losen these checks to, for example, allow an RSA signature with an RSA-cert
key.
Signed-off-by: Ben Toews <mastahyeti@gmail.com>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>
Diffstat (limited to 'include/libssh')
| -rw-r--r-- | include/libssh/pki.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/include/libssh/pki.h b/include/libssh/pki.h index c0102382..4c844a32 100644 --- a/include/libssh/pki.h +++ b/include/libssh/pki.h @@ -100,6 +100,7 @@ const char * ssh_key_get_signature_algorithm(ssh_session session, enum ssh_keytypes_e type); enum ssh_keytypes_e ssh_key_type_from_signature_name(const char *name); +enum ssh_keytypes_e ssh_key_type_plain(enum ssh_keytypes_e type); #define is_ecdsa_key_type(t) \ ((t) >= SSH_KEYTYPE_ECDSA_P256 && (t) <= SSH_KEYTYPE_ECDSA_P521) |