- djm@cvs.openbsd.org 2010/08/04 05:42:47

[auth.c auth2-hostbased.c authfile.c authfile.h ssh-keysign.8] [ssh-keysign.c ssh.c] enable certificates for hostbased authentication, from Iain Morgan; "looks ok" markus@
author: Damien Miller <djm@mindrot.org> 2010-08-05 13:04:50 +1000
committer: Damien Miller <djm@mindrot.org> 2010-08-05 13:04:50 +1000
commit: c158331f8c7e059c6c1d099bffc7f5fc6087ddbd (patch)
tree: f1998f0fb52e5fb666ee67064a424af45e941f6b /auth.c
parent: 1da638895916bc061ff6aca9f373d48a9776810b (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/auth.c b/auth.c
index d1727a4a..a27667f4 100644
--- a/auth.c
+++ b/auth.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.c,v 1.88 2010/06/22 04:49:47 djm Exp $ */
+/* $OpenBSD: auth.c,v 1.89 2010/08/04 05:42:47 djm Exp $ */
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
  *
@@ -385,7 +385,7 @@ check_key_in_hostfiles(struct passwd *pw, Key *key, const char *host,
 	HostStatus host_status;
 
 	/* Check if we know the host and its host key. */
-	found = key_new(key->type);
+	found = key_new(key_is_cert(key) ? KEY_UNSPEC : key->type);
 	host_status = check_host_in_hostfile(sysfile, host, key, found, NULL);
 
 	if (host_status != HOST_OK && userfile != NULL) {
author	Damien Miller <djm@mindrot.org>	2010-08-05 13:04:50 +1000
committer	Damien Miller <djm@mindrot.org>	2010-08-05 13:04:50 +1000
commit	c158331f8c7e059c6c1d099bffc7f5fc6087ddbd (patch)
tree	f1998f0fb52e5fb666ee67064a424af45e941f6b /auth.c
parent	1da638895916bc061ff6aca9f373d48a9776810b (diff)