From 893d73549d7cfa277434bf0113688a5a14055408 Mon Sep 17 00:00:00 2001
From: Darren Tucker <dtucker@zip.com.au>
Date: Wed, 7 Oct 2009 08:47:02 +1100
Subject:    - djm@cvs.openbsd.org 2009/08/27 17:44:52      [authfd.c ssh-add.c
 authfd.h]      Do not fall back to adding keys without contraints (ssh-add -c
 / -t ...)      when the agent refuses the constrained add request. This was a
 useful      migration measure back in 2002 when constraints were new, but
 just      adds risk now.      bz #1612, report and patch from dkg AT
 fifthhorseman.net; ok markus@

---
 authfd.c | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

(limited to 'authfd.c')

diff --git a/authfd.c b/authfd.c
index 61faad12..78a53c7a 100644
--- a/authfd.c
+++ b/authfd.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: authfd.c,v 1.80 2006/08/03 03:34:41 deraadt Exp $ */
+/* $OpenBSD: authfd.c,v 1.81 2009/08/27 17:44:52 djm Exp $ */
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -545,12 +545,6 @@ ssh_add_identity_constrained(AuthenticationConnection *auth, Key *key,
 	return decode_reply(type);
 }
 
-int
-ssh_add_identity(AuthenticationConnection *auth, Key *key, const char *comment)
-{
-	return ssh_add_identity_constrained(auth, key, comment, 0, 0);
-}
-
 /*
  * Removes an identity from the authentication server.  This call is not
  * meant to be used by normal applications.
-- 
cgit v1.2.3