47692530d7
Earlier, host key verification could potentially fail if there were multiple entries in the known_hosts file and if the intended encryption algorithm wasn't the first entry. This happened because we used the same hasher object to compute the sum of all the public keys present in the known_hosts file, which led to invalid hashes, resulting in a mismatch when compared with the hash of the advertised public key. This is fixed, by not creating the hasher ourselves and instead delegating that to the function actually doing the matching, ensuring that a new hasher is used for each comparison. Regression introduced in v0.25.0 and reported in https://github.com/fluxcd/image-automation-controller/issues/378 Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com> |
||
|---|---|---|
| .. | ||
| gogit | ||
| libgit2 | ||
| strategy | ||
| testdata/git/repo | ||
| git.go | ||
| git_test.go | ||
| options.go | ||
| options_test.go | ||