|
|
|
|
@ -632,9 +632,9 @@ sub get_supported_ssh_algorithms_list {
|
|
|
|
|
foreach (@{$fnret->value->{'stdout'} || []}, @{$fnret->value->{'stderr'} || []}) {
|
|
|
|
|
if (/OpenSSH_(\d+\.\d+)/) {
|
|
|
|
|
my $version = $1;
|
|
|
|
|
push @supportedList, 'ecdsa' if ($version gt "5.7");
|
|
|
|
|
push @supportedList, 'ed25519' if ($version gt "6.5");
|
|
|
|
|
push @supportedList, 'ecdsa-sk' if ($version gt "8.2");
|
|
|
|
|
push @supportedList, 'ecdsa' if ($version gt "5.7");
|
|
|
|
|
push @supportedList, 'ed25519' if ($version gt "6.5");
|
|
|
|
|
push @supportedList, 'ecdsa-sk' if ($version gt "8.2");
|
|
|
|
|
push @supportedList, 'ed25519-sk' if ($version gt "8.2");
|
|
|
|
|
@cached_runtime_list = @supportedList;
|
|
|
|
|
last;
|
|
|
|
|
@ -1050,12 +1050,12 @@ sub is_effective_piv_account_policy_enabled {
|
|
|
|
|
|
|
|
|
|
# Deduces from the bastion config what algorithms are accepted.
|
|
|
|
|
sub print_accepted_key_algorithms {
|
|
|
|
|
my %params = @_;
|
|
|
|
|
my $way = $params{'way'};
|
|
|
|
|
my %params = @_;
|
|
|
|
|
my $way = $params{'way'};
|
|
|
|
|
my $fnret;
|
|
|
|
|
|
|
|
|
|
$fnret = OVH::Bastion::get_supported_ssh_algorithms_list(way => $way);
|
|
|
|
|
$fnret or osh_exit $fnret;
|
|
|
|
|
$fnret or return $fnret;
|
|
|
|
|
my @algoList = @{$fnret->value};
|
|
|
|
|
|
|
|
|
|
if (grep { 'ed25519-sk' eq $_ } @algoList) {
|
|
|
|
|
|
Stéphane Lesimple
2 years ago
committed by
Stéphane Lesimple