[jira] [Updated] (SSHD-1105) Try public key authentication in the order of the defined signatures instead of the keys

Mon, 23 Nov 2020 08:53:08 -0800 


     [ 
https://issues.apache.org/jira/browse/SSHD-1105?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Lyor Goldstein updated SSHD-1105:
---------------------------------
    Description: The current code iterates over the keys the user provided and 
then attempts to find a matching signature factory. However, the user's 
preferred order is actually expressed via the signatures order - so the code 
should go over the preferred signatures in the order the user defined them and 
for each one of them try all the keys it can find that can satisfy the 
signature. *Note:* this will also fix the fact that if an RSA key is provided 
then only the +first+ signature that requires RSA is attempted.  (was: The 
current code iterates over the keys the user provided and then attempts to find 
a matching signature factory. However, the user's preferred order is actually 
expressed via the signatures order - so the code should go over the preferred 
signatures in the order the user defined them and for each one of them try all 
the keys it can find that can satisfy the signature.)

> Try public key authentication in the order of the defined signatures instead 
> of the keys
> ----------------------------------------------------------------------------------------
>
>                 Key: SSHD-1105
>                 URL: https://issues.apache.org/jira/browse/SSHD-1105
>             Project: MINA SSHD
>          Issue Type: Improvement
>    Affects Versions: 2.5.1
>            Reporter: Lyor Goldstein
>            Priority: Minor
>
> The current code iterates over the keys the user provided and then attempts 
> to find a matching signature factory. However, the user's preferred order is 
> actually expressed via the signatures order - so the code should go over the 
> preferred signatures in the order the user defined them and for each one of 
> them try all the keys it can find that can satisfy the signature. *Note:* 
> this will also fix the fact that if an RSA key is provided then only the 
> +first+ signature that requires RSA is attempted.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to