From 893d73549d7cfa277434bf0113688a5a14055408 Mon Sep 17 00:00:00 2001
From: Darren Tucker <dtucker@zip.com.au>
Date: Wed, 7 Oct 2009 08:47:02 +1100
Subject:    - djm@cvs.openbsd.org 2009/08/27 17:44:52      [authfd.c ssh-add.c
 authfd.h]      Do not fall back to adding keys without contraints (ssh-add -c
 / -t ...)      when the agent refuses the constrained add request. This was a
 useful      migration measure back in 2002 when constraints were new, but
 just      adds risk now.      bz #1612, report and patch from dkg AT
 fifthhorseman.net; ok markus@

---
 ssh-add.c | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

(limited to 'ssh-add.c')

diff --git a/ssh-add.c b/ssh-add.c
index 7a43282f..084478d7 100644
--- a/ssh-add.c
+++ b/ssh-add.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-add.c,v 1.90 2007/09/09 11:38:01 sobrado Exp $ */
+/* $OpenBSD: ssh-add.c,v 1.91 2009/08/27 17:44:52 djm Exp $ */
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -195,9 +195,6 @@ add_file(AuthenticationConnection *ac, const char *filename)
 		if (confirm != 0)
 			fprintf(stderr,
 			    "The user has to confirm each use of the key\n");
-	} else if (ssh_add_identity(ac, private, comment)) {
-		fprintf(stderr, "Identity added: %s (%s)\n", filename, comment);
-		ret = 0;
 	} else {
 		fprintf(stderr, "Could not add identity: %s\n", filename);
 	}
-- 
cgit v1.2.1