Apply less restrictive signature key algorithm check

Addresses same issue as golang/go#56342
tobischo · Jun 15, 2023 · a878079 · a878079
1 parent 8e447d8
commit a878079
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/ssh/client_auth.go b/ssh/client_auth.go
@@ -371,7 +371,12 @@ func confirmKeyAck(key PublicKey, algo string, c packetConn) (bool, error) {
 			if err := Unmarshal(packet, &msg); err != nil {
 				return false, err
 			}
-			if msg.Algo != algo || !bytes.Equal(msg.PubKey, pubKey) {
+			// if msg.Algo != algo || !bytes.Equal(msg.PubKey, pubKey) {
+			// Some SSH servers do not respond with the approviate given algorithm that
+			// was selected based on the server-sig-algs.
+			// We therefore want to accept any algorithm that is acceptable to us.
+			keyAlgos := algorithmsForKeyFormat(key.Type())
+			if !contains(keyAlgos, msg.Algo) || !bytes.Equal(msg.PubKey, pubKey) {
 				return false, nil
 			}
 			return true, nil