From 148a4c9161735a76b0a4ce73ffaaec21d76ca702 Mon Sep 17 00:00:00 2001 From: Sven-Haegar Koch Date: Fri, 5 Dec 2014 03:06:44 +0100 Subject: [PATCH] Try handling the case when the first side knows the ecdsa key of the second, but the second not the key of the first. (And both have the experimental protocol enabled) --- src/protocol_auth.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/protocol_auth.c b/src/protocol_auth.c index be90d92..5782a97 100644 --- a/src/protocol_auth.c +++ b/src/protocol_auth.c @@ -381,11 +381,11 @@ bool id_h(connection_t *c, const char *request) { if(experimental) read_ecdsa_public_key(c); /* Ignore failures if no key known yet */ - } else { - if(c->protocol_minor && !ecdsa_active(c->ecdsa)) - c->protocol_minor = 1; } + if(c->protocol_minor && !ecdsa_active(c->ecdsa)) + c->protocol_minor = 1; + /* Forbid version rollback for nodes whose Ed25519 key we know */ if(ecdsa_active(c->ecdsa) && c->protocol_minor < 2) { -- 2.25.1