OpenSSH Client Certificate Auth Regression
Bug #1575961 reported by
Paul Querna
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openssh (Ubuntu) |
Fix Released
|
High
|
Colin Watson | ||
Xenial |
Fix Released
|
High
|
Colin Watson |
Bug Description
OpenSSH Client Certificates worked in Ubuntu 15.10 and 14.04 LTS -- but not 16.04.
OpenSSH 7.2.p2 includes a bug in how it loads keys & certificates, and basically will never find the correct private key for an OpenSSH Client Certificate.
This is the upstream bug:
https:/
Fix was committed on March 14:
https:/
I've tested with the attached patch, and it allows Client Certificate auth to work at all.
Changed in openssh (Ubuntu): | |
status: | New → Triaged |
importance: | Undecided → High |
assignee: | nobody → Colin Watson (cjwatson) |
no longer affects: | openssh (Ubuntu Trusty) |
Changed in openssh (Ubuntu Xenial): | |
status: | New → Triaged |
importance: | Undecided → High |
Changed in openssh (Ubuntu): | |
status: | Triaged → Fix Committed |
Changed in openssh (Ubuntu Xenial): | |
status: | Triaged → In Progress |
assignee: | nobody → Colin Watson (cjwatson) |
tags: |
added: verification-done removed: verification-needed |
To post a comment you must log in.
The attachment "unbreak- certificate- auth.dpatch" seems to be a debdiff. The ubuntu-sponsors team has been subscribed to the bug report so that they can review and hopefully sponsor the debdiff. If the attachment isn't a patch, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are member of the ~ubuntu-sponsors, unsubscribe the team.
[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issue please contact him.]