Try handling the case when the first side knows the ecdsa key of

author Sven-Haegar Koch <haegar@sdinet.de>

Fri, 5 Dec 2014 02:06:44 +0000 (03:06 +0100)

committer Guus Sliepen <guus@tinc-vpn.org>

Sun, 7 Dec 2014 17:05:14 +0000 (18:05 +0100)
author Sven-Haegar Koch <haegar@sdinet.de>
Fri, 5 Dec 2014 02:06:44 +0000 (03:06 +0100)
committer Guus Sliepen <guus@tinc-vpn.org>
Sun, 7 Dec 2014 17:05:14 +0000 (18:05 +0100)
diff --git a/src/protocol_auth.c b/src/protocol_auth.c

index be90d92bfe5a619ddcb01a915bfc72101cf0d55f..5782a97c7d48f3e2ae864a103b177799c8c3f761 100644 (file)
--- a/src/protocol_auth.c
+++ b/src/protocol_auth.c
@@ -381,11 +381,11 @@ bool id_h(connection_t *c, const char *request) {
                 if(experimental)
                         read_ecdsa_public_key(c);
                         /* Ignore failures if no key known yet */
-       } else {
-               if(c->protocol_minor && !ecdsa_active(c->ecdsa))
-                       c->protocol_minor = 1;
         }
  
+       if(c->protocol_minor && !ecdsa_active(c->ecdsa))
+               c->protocol_minor = 1;
+
         /* Forbid version rollback for nodes whose Ed25519 key we know */
  
         if(ecdsa_active(c->ecdsa) && c->protocol_minor < 2) {
author	Sven-Haegar Koch <haegar@sdinet.de>
	Fri, 5 Dec 2014 02:06:44 +0000 (03:06 +0100)
committer	Guus Sliepen <guus@tinc-vpn.org>
	Sun, 7 Dec 2014 17:05:14 +0000 (18:05 +0100)