aniani/gitea
1
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2025-01-03 14:57:55 -05:00
Code
4ab8e56c91
gitea/modules
History
Earl Warren 4ab8e56c91
restrict certificate type for builtin SSH server (#26789) 
- While doing some sanity checks over OpenSSH's code for how they handle
certificates authentication. I stumbled on an condition that checks the
certificate type is really an user certificate on the server-side
authentication. This checks seems to be a formality and just for the
sake of good domain seperation, because an user and host certificate
don't differ in their generation, verification or flags that can be
included.
- Add this check to the builtin SSH server to stay close to the
unwritten SSH specification.
- This is an breaking change for setups where the builtin SSH server is
being used and for some reason host certificates were being used for
authentication.
- 
(cherry picked from commit de35b141b79a3d6efe2127ed2c73fd481515e481)

Refs: https://codeberg.org/forgejo/forgejo/pulls/1172

## ⚠️ BREAKING ⚠️

Like OpenSSH, the built-in SSH server will now only accept SSH user
certificates, not server certificates.

Co-authored-by: Gusted <postmaster@gusted.xyz>
Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-01 13:45:22 +00:00
..
actions chore(actions): support cron schedule task (#26655) 2023-08-24 03:06:51 +00:00
activitypub Expanded minimum RSA Keylength to 3072 (#26604) 2023-08-28 00:53:16 +00:00
analyze
assetfs Use Set[Type] instead of map[Type]bool/struct{}. (#26804) 2023-08-30 06:55:25 +00:00
auth
avatar
base
cache
charset
container
context Avoid double-unescaping of form value (#26853) 2023-09-01 12:01:36 +00:00
contexttest Avoid double-unescaping of form value (#26853) 2023-09-01 12:01:36 +00:00
csv
doctor Add fix incorrect can_create_org_repo for org owner team (#26683) 2023-08-29 01:11:23 +00:00
emoji
eventsource
generate
git Remove redundant nil check in WalkGitLog (#26773) 2023-08-29 11:03:43 +00:00
gitgraph
graceful
hcaptcha
highlight
hostmatcher
html
httpcache
httplib
indexer Fix counting and filtering on the dashboard page for issues (#26657) 2023-08-23 02:29:17 +00:00
issue/template
json
label
lfs
log Reduce some allocations in type conversion (#26772) 2023-08-29 00:43:16 +08:00
markup
mcaptcha
metrics
migration
nosql
notification Move modules/mirror to services (#26737) 2023-08-27 10:24:45 +08:00
options
packages Use docs.gitea.com instead of docs.gitea.io (#26739) 2023-08-27 11:59:12 +00:00
paginator
pprof
private
process
proxy
proxyprotocol
public
queue
recaptcha
references
regexplru
repository Fix bug for ctx usage (#26762) 2023-08-28 04:06:47 +00:00
secret
session
setting Fix some slice append usages (#26778) 2023-08-29 15:47:26 +00:00
sitemap
ssh restrict certificate type for builtin SSH server (#26789) 2023-09-01 13:45:22 +00:00
storage Use correct minio error (#26634) 2023-08-21 16:20:11 +00:00
structs refactor(API): refactor secret creation and update functionality (#26751) 2023-08-28 13:08:19 +08:00
svg
sync
system
templates Render code blocks in repo description (#26830) 2023-08-31 05:01:01 +00:00
test Move web/api context related testing function into a separate package (#26859) 2023-09-01 11:26:07 +00:00
testlogger
timeutil
translation
turnstile
typesniffer
updatechecker
upload
uri
user
util
validation Check blocklist for emails when adding them to account (#26812) 2023-08-30 10:46:49 -05:00
web Update tool dependencies (#26607) 2023-08-20 22:59:19 +00:00
webhook