upstream commit

don't record hostbased authentication hostkeys as user keys in test for multiple authentication with the same key Upstream-ID: 26b368fa2cff481f47f37e01b8da1ae5b57b1adc
author: djm@openbsd.org <djm@openbsd.org> 2015-09-04 04:44:08 +0000
committer: Damien Miller <djm@mindrot.org> 2015-09-04 16:57:01 +1000
commit: f54d8ac2474b6fc3afa081cf759b48a6c89d3319 (patch)
tree: f6ba5ffc25f382551a8b472beb5537c93cb2e7c3 /monitor.c
parent: ac3451dd65f27ecf85dc045c46d49e2bbcb8dddd (diff)
download: openssh-git-f54d8ac2474b6fc3afa081cf759b48a6c89d3319.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/monitor.c b/monitor.c
index e912a89c..0af23d65 100644
--- a/monitor.c
+++ b/monitor.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: monitor.c,v 1.152 2015/09/02 07:51:12 jsg Exp $ */
+/* $OpenBSD: monitor.c,v 1.153 2015/09/04 04:44:08 djm Exp $ */
 /*
  * Copyright 2002 Niels Provos <provos@citi.umich.edu>
  * Copyright 2002 Markus Friedl <markus@openbsd.org>
@@ -1444,7 +1444,7 @@ mm_answer_keyverify(int sock, Buffer *m)
 	    __func__, key, (verified == 1) ? "verified" : "unverified");
 
 	/* If auth was successful then record key to ensure it isn't reused */
-	if (verified == 1)
+	if (verified == 1 && key_blobtype == MM_USERKEY)
 		auth2_record_userkey(authctxt, key);
 	else
 		key_free(key);
author	djm@openbsd.org <djm@openbsd.org>	2015-09-04 04:44:08 +0000
committer	Damien Miller <djm@mindrot.org>	2015-09-04 16:57:01 +1000
commit	f54d8ac2474b6fc3afa081cf759b48a6c89d3319 (patch)
tree	f6ba5ffc25f382551a8b472beb5537c93cb2e7c3 /monitor.c
parent	ac3451dd65f27ecf85dc045c46d49e2bbcb8dddd (diff)
download	openssh-git-f54d8ac2474b6fc3afa081cf759b48a6c89d3319.tar.gz