[Bug 1575961] Re: OpenSSH Client Certificate Auth Regression

Colin Watson cjwatson at canonical.com
Thu Apr 28 00:58:44 UTC 2016


** Changed in: openssh (Ubuntu Xenial)
       Status: Triaged => In Progress

** Changed in: openssh (Ubuntu Xenial)
     Assignee: (unassigned) => Colin Watson (cjwatson)

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1575961

Title:
  OpenSSH Client Certificate Auth Regression

Status in openssh package in Ubuntu:
  Fix Committed
Status in openssh source package in Xenial:
  In Progress

Bug description:
  OpenSSH Client Certificates worked in Ubuntu 15.10 and 14.04 LTS --
  but not 16.04.

  OpenSSH 7.2.p2 includes a bug in how it loads keys & certificates, and
  basically will never find the correct private key for an OpenSSH
  Client Certificate.

  This is the upstream bug:

  https://bugzilla.mindrot.org/show_bug.cgi?id=2550

  Fix was committed on March 14:

  https://github.com/openssh/openssh-
  portable/commit/c38905ba391434834da86abfc988a2b8b9b62477

  I've tested with the attached patch, and it allows Client Certificate
  auth to work at all.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1575961/+subscriptions



More information about the Ubuntu-sponsors mailing list