SSSD / sssd

Clone

60787fb ssh: skip invalid certificates

1 file Authored by sbose 7 years ago, Committed by jhrozek 7 years ago,
raw patch tree parent
1 file changed. 134 lines added. 45 lines removed.
src/responder/ssh/sshsrv_cmd.c
file modified
+134 -45 
    ssh: skip invalid certificates
    
    Current an invalid certificate cause the whole ssh key lookup request to
    abort. Since it is possible that e.g. the LDAP user entry contains
    certificates where the client does not have the needed CA certificates
    for validation we should just ignore invalid certificates.
    
    Resolves https://fedorahosted.org/sssd/ticket/2977
    
    Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
file modified
+134 -45
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.