From 379b1bc5e9c6a2cf5497515c91f8c1081896f9d8 Mon Sep 17 00:00:00 2001
From: Eugene <inbox@null.page>
Date: Wed, 27 Nov 2024 21:54:00 +0100
Subject: [PATCH] fixed #983 - enable ssh-rsa when insecure algorithms are
 allowed

---
 warpgate-protocol-ssh/src/client/mod.rs | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/warpgate-protocol-ssh/src/client/mod.rs b/warpgate-protocol-ssh/src/client/mod.rs
index 32e206131..6404cb2d0 100644
--- a/warpgate-protocol-ssh/src/client/mod.rs
+++ b/warpgate-protocol-ssh/src/client/mod.rs
@@ -419,6 +419,15 @@ impl RemoteClient {
                     kex::EXTENSION_OPENSSH_STRICT_KEX_AS_CLIENT,
                     kex::EXTENSION_OPENSSH_STRICT_KEX_AS_SERVER,
                 ]),
+                key: Cow::Borrowed(&[
+                    russh::keys::key::ED25519,
+                    russh::keys::key::ECDSA_SHA2_NISTP256,
+                    russh::keys::key::ECDSA_SHA2_NISTP384,
+                    russh::keys::key::ECDSA_SHA2_NISTP521,
+                    russh::keys::key::RSA_SHA2_256,
+                    russh::keys::key::RSA_SHA2_512,
+                    russh::keys::key::SSH_RSA,
+                ]),
                 ..<_>::default()
             }
         } else {