if pubkey is the same and no signature in payload and signature checking is not enabled, we must also return the aes key

2024-11-07 08:58:59 +00:00 · 2014-07-03 21:23:12 +02:00 · 2014-07-03 21:23:12 +02:00 · 8612c34341
commit 8612c34341
parent bd35eb77b9
1 changed files with 3 additions and 0 deletions
--- a/salt/crypt.py
+++ b/salt/crypt.py
@ -464,6 +464,9 @@ class Auth(object):
                              'reply does not contain any signature. Either enable signing the public '
                              'key on the master or disable signature verification on the minion.')
                    return ''
+                else:
+                    aes, token = self.decrypt_aes(payload, False)
+                    return aes

        else:
            # verify the masters pubkey signature if the minion