From 2b2a30ca5414c55340fd45b98f14ed7ec28039ca Mon Sep 17 00:00:00 2001
From: John Safranek <john@wolfssl.com>
Date: Wed, 4 Nov 2020 11:19:24 -0800
Subject: [PATCH] SSH-AGENT Update 1. Remove redundant include from agent.h. 2.
 Add global disable flags for SSH-RSA using SHA2-256 and SHA2-512.    These
 are possible signatures indications when using the ssh-agent.

---
 wolfssh/agent.h    | 1 -
 wolfssh/internal.h | 9 +++++++++
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/wolfssh/agent.h b/wolfssh/agent.h
index fc22cf3..a3a4951 100644
--- a/wolfssh/agent.h
+++ b/wolfssh/agent.h
@@ -35,7 +35,6 @@
 #include <wolfssl/wolfcrypt/dh.h>
 #include <wolfssl/wolfcrypt/ecc.h>
 #include <wolfssl/wolfcrypt/rsa.h>
-#include <wolfssl/wolfcrypt/sha256.h>
 
 
 #ifdef __cplusplus
diff --git a/wolfssh/internal.h b/wolfssh/internal.h
index 542eea9..5700463 100644
--- a/wolfssh/internal.h
+++ b/wolfssh/internal.h
@@ -160,6 +160,15 @@ extern "C" {
     #undef WOLFSSH_NO_SSH_RSA_SHA1
     #define WOLFSSH_NO_SSH_RSA_SHA1
 #endif
+#if defined(WOLFSSH_NO_RSA) || defined(NO_SHA256)
+    #undef WOLFSSH_NO_SSH_RSA_SHA2_256
+    #define WOLFSSH_NO_SSH_RSA_SHA2_256
+#endif
+#if defined(WOLFSSH_NO_RSA) || !defined(WOLFSSL_SHA512)
+    #undef WOLFSSH_NO_SSH_RSA_SHA2_512
+    #define WOLFSSH_NO_SSH_RSA_SHA2_512
+#endif
+
 #if defined(WOLFSSH_NO_ECDSA) || \
     defined(NO_SHA256) || defined(NO_ECC256)
     #undef WOLFSSH_NO_ECDSA_SHA2_NISTP256