Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / openssh / 5104db7cbd6cdd9c5971f4358e74414862fc1022^! / . / auth.h
commit5104db7cbd6cdd9c5971f4358e74414862fc1022[log] [tgz]
authordjm@openbsd.org <djm@openbsd.org>Mon Jan 26 06:10:03 2015 +0000
committerDamien Miller <djm@mindrot.org>Tue Jan 27 00:00:57 2015 +1100
tree94692c77a4888f8adade706324fdee3a999bc6b0
parent8d4f87258f31cb6def9b3b55b6a7321d84728ff2 [diff] [blame]
upstream commit

correctly match ECDSA subtype (== curve) for
 offered/recevied host keys. Fixes connection-killing host key mismatches when
 a server offers multiple ECDSA keys with different curve type (an extremely
 unlikely configuration).

ok markus, "looks mechanical" deraadt@

diff --git a/auth.h b/auth.h
index 60d1c33..d282619 100644
--- a/auth.h
+++ b/auth.h

@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.h,v 1.80 2015/01/19 20:16:15 markus Exp $ */
+/* $OpenBSD: auth.h,v 1.81 2015/01/26 06:10:03 djm Exp $ */
 
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
@@ -204,8 +204,8 @@
 /* hostkey handling */
 Key	*get_hostkey_by_index(int);
 Key	*get_hostkey_public_by_index(int, struct ssh *);
-Key	*get_hostkey_public_by_type(int, struct ssh *);
-Key	*get_hostkey_private_by_type(int, struct ssh *);
+Key	*get_hostkey_public_by_type(int, int, struct ssh *);
+Key	*get_hostkey_private_by_type(int, int, struct ssh *);
 int	 get_hostkey_index(Key *, struct ssh *);
 int	 ssh1_session_key(BIGNUM *);
 int	 sshd_hostkey_sign(Key *, Key *, u_char **, size_t *, u_char *, size_t, u_int);