From c4700f4bf10e5a00cc42e6e30a6d5a7c0f94323b Mon Sep 17 00:00:00 2001
From: Nick Craig-Wood <nick@craig-wood.com>
Date: Fri, 15 May 2020 09:46:42 +0100
Subject: [PATCH] vendor patch: allow 2048 bit DSA keys DO NOT MERGE

---
 vendor/golang.org/x/crypto/ssh/keys.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/vendor/golang.org/x/crypto/ssh/keys.go b/vendor/golang.org/x/crypto/ssh/keys.go
index 06f537c13..77d7b66fa 100644
--- a/vendor/golang.org/x/crypto/ssh/keys.go
+++ b/vendor/golang.org/x/crypto/ssh/keys.go
@@ -412,7 +412,7 @@ func checkDSAParams(param *dsa.Parameters) error {
 	// SSH specifies FIPS 186-2, which only provided a single size
 	// (1024 bits) DSA key. FIPS 186-3 allows for larger key
 	// sizes, which would confuse SSH.
-	if l := param.P.BitLen(); l != 1024 {
+	if l := param.P.BitLen(); l != 1024 && l != 2048 {
 		return fmt.Errorf("ssh: unsupported DSA key size %d", l)
 	}