diff options
| author | Damien Miller <djm@cvs.openbsd.org> | 2017-09-14 04:32:22 +0000 |
|---|---|---|
| committer | Damien Miller <djm@cvs.openbsd.org> | 2017-09-14 04:32:22 +0000 |
| commit | f3cb3f7f84721dc12c6b73ccf62c867b82dac356 (patch) | |
| tree | 3c9af8f024b97ef473ed44b060fcfd734de738a7 /usr.bin/ssh/dns.h | |
| parent | a24cee5bf50e665a64b08d60b80e2a941cc9f7eb (diff) | |
Revert commitid: gJtIN6rRTS3CHy9b.
-------------
identify the case where SSHFP records are missing but other DNS RR
types are present and display a more useful error message for this
case; patch by Thordur Bjornsson; bz#2501; ok dtucker@
-------------
This caused unexpected failures when VerifyHostKeyDNS=yes, SSHFP results
are missing but the user already has the key in known_hosts
Spotted by dtucker@
Diffstat (limited to 'usr.bin/ssh/dns.h')
| -rw-r--r-- | usr.bin/ssh/dns.h | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/usr.bin/ssh/dns.h b/usr.bin/ssh/dns.h index 6bb8c7933df..68443f7cbbb 100644 --- a/usr.bin/ssh/dns.h +++ b/usr.bin/ssh/dns.h @@ -1,4 +1,4 @@ -/* $OpenBSD: dns.h,v 1.16 2017/09/01 05:53:56 djm Exp $ */ +/* $OpenBSD: dns.h,v 1.17 2017/09/14 04:32:21 djm Exp $ */ /* * Copyright (c) 2003 Wesley Griffin. All rights reserved. @@ -49,7 +49,6 @@ enum sshfp_hashes { #define DNS_VERIFY_FOUND 0x00000001 #define DNS_VERIFY_MATCH 0x00000002 #define DNS_VERIFY_SECURE 0x00000004 -#define DNS_VERIFY_MISSING 0x00000008 int verify_host_key_dns(const char *, struct sockaddr *, struct sshkey *, int *); |