From c10d042a23de5112ea63dbd8a67d1d9564026bb7 Mon Sep 17 00:00:00 2001
From: mouring <mouring>
Date: Mon, 25 Jun 2001 04:42:20 +0000
Subject: [PATCH]    - markus@cvs.openbsd.org 2001/06/23 05:26:02      [key.c] 
     handle sigature of size 0 (some broken clients send this).

---
 ChangeLog | 3 +++
 key.c     | 5 ++++-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/ChangeLog b/ChangeLog
index 2ae6b1ba..1282b879 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -57,6 +57,9 @@
    - markus@cvs.openbsd.org 2001/06/23 03:04:42
      [auth2.c auth-rh-rsa.c]
      restore correct ignore_user_known_hosts logic.
+   - markus@cvs.openbsd.org 2001/06/23 05:26:02
+     [key.c]
+     handle sigature of size 0 (some broken clients send this).
 
 20010622
  - (stevesk) handle systems without pw_expire and pw_change.
diff --git a/key.c b/key.c
index 3b9f9f78..84306a9b 100644
--- a/key.c
+++ b/key.c
@@ -32,7 +32,7 @@
  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */
 #include "includes.h"
-RCSID("$OpenBSD: key.c,v 1.25 2001/04/17 10:53:24 markus Exp $");
+RCSID("$OpenBSD: key.c,v 1.26 2001/06/23 05:26:02 markus Exp $");
 
 #include <openssl/evp.h>
 
@@ -768,6 +768,9 @@ key_verify(
     u_char *signature, int signaturelen,
     u_char *data, int datalen)
 {
+	if (signaturelen == 0)
+		return -1;
+
 	switch(key->type){
 	case KEY_DSA:
 		return ssh_dss_verify(key, signature, signaturelen, data, datalen);
-- 
2.45.2