diff options
author | Petr Štetiar <ynezz@true.cz> | 2020-07-01 12:29:44 +0200 |
---|---|---|
committer | Petr Štetiar <ynezz@true.cz> | 2020-07-07 19:47:24 +0200 |
commit | 4e57fd5adaf0c937da1e947f32dfa9ae513637a5 (patch) | |
tree | e0b99d171a1f372b4c65d0f15d0986d0210859e7 /target/linux/ath79/patches-5.4/0062-MIPS-pci-ar724x-add-QCA9550-reset-sequence.patch | |
parent | 7cb721c03fdc163818f8114692229d0097d2f26b (diff) | |
download | upstream-4e57fd5adaf0c937da1e947f32dfa9ae513637a5.tar.gz upstream-4e57fd5adaf0c937da1e947f32dfa9ae513637a5.tar.bz2 upstream-4e57fd5adaf0c937da1e947f32dfa9ae513637a5.zip |
dropbear: make rsa-sha2-256 pubkeys usable again
Upstream in commit 972d723484d8 ("split signkey_type and signature_type
for RSA sha1 vs sha256") has added strict checking of pubkey algorithms
which made keys with SHA-256 hashing algorithm unusable as they still
reuse the `ssh-rsa` public key format. So fix this by disabling the
check for `rsa-sha2-256` pubkeys.
Ref: https://tools.ietf.org/html/rfc8332#section-3
Fixes: d4c80f5b172e ("dropbear: bump to 2020.80")
Tested-by: Russell Senior <russell@personaltelco.net>
Signed-off-by: Petr Štetiar <ynezz@true.cz>
Diffstat (limited to 'target/linux/ath79/patches-5.4/0062-MIPS-pci-ar724x-add-QCA9550-reset-sequence.patch')
0 files changed, 0 insertions, 0 deletions