diff options
| author | Ben Lindstrom <mouring@eviladmin.org> | 2001-06-09 01:40:00 +0000 |
|---|---|---|
| committer | Ben Lindstrom <mouring@eviladmin.org> | 2001-06-09 01:40:00 +0000 |
| commit | 9d0c06667eb4ca616ffa690e88b9dd7c438e3103 (patch) | |
| tree | 640548fec4f56158a0cfc6b3d3f58eabdc73eeed | |
| parent | 5acb5d03edecae6ecbd062b9da9f7f4fde382287 (diff) | |
- markus@cvs.openbsd.org 2001/06/07 19:57:53
[auth2.c]
style is used for bsdauth.
disconnect on user/service change (ietf-drafts)
| -rw-r--r-- | ChangeLog | 6 | ||||
| -rw-r--r-- | auth2.c | 16 |
2 files changed, 12 insertions, 10 deletions
| @@ -62,6 +62,10 @@ | |||
| 62 | - markus@cvs.openbsd.org 2001/06/06 23:19:35 | 62 | - markus@cvs.openbsd.org 2001/06/06 23:19:35 |
| 63 | [ssh-add.c] | 63 | [ssh-add.c] |
| 64 | remove debug message; Darren.Moffat@eng.sun.com | 64 | remove debug message; Darren.Moffat@eng.sun.com |
| 65 | - markus@cvs.openbsd.org 2001/06/07 19:57:53 | ||
| 66 | [auth2.c] | ||
| 67 | style is used for bsdauth. | ||
| 68 | disconnect on user/service change (ietf-drafts) | ||
| 65 | 69 | ||
| 66 | 20010606 | 70 | 20010606 |
| 67 | - OpenBSD CVS Sync | 71 | - OpenBSD CVS Sync |
| @@ -5573,4 +5577,4 @@ | |||
| 5573 | - Wrote replacements for strlcpy and mkdtemp | 5577 | - Wrote replacements for strlcpy and mkdtemp |
| 5574 | - Released 1.0pre1 | 5578 | - Released 1.0pre1 |
| 5575 | 5579 | ||
| 5576 | $Id: ChangeLog,v 1.1265 2001/06/09 01:38:24 mouring Exp $ | 5580 | $Id: ChangeLog,v 1.1266 2001/06/09 01:40:00 mouring Exp $ |
| @@ -23,7 +23,7 @@ | |||
| 23 | */ | 23 | */ |
| 24 | 24 | ||
| 25 | #include "includes.h" | 25 | #include "includes.h" |
| 26 | RCSID("$OpenBSD: auth2.c,v 1.61 2001/05/31 10:30:12 markus Exp $"); | 26 | RCSID("$OpenBSD: auth2.c,v 1.62 2001/06/07 19:57:53 markus Exp $"); |
| 27 | 27 | ||
| 28 | #include <openssl/evp.h> | 28 | #include <openssl/evp.h> |
| 29 | 29 | ||
| @@ -219,14 +219,12 @@ input_userauth_request(int type, int plen, void *ctxt) | |||
| 219 | setproctitle("%s", pw ? user : "unknown"); | 219 | setproctitle("%s", pw ? user : "unknown"); |
| 220 | authctxt->user = xstrdup(user); | 220 | authctxt->user = xstrdup(user); |
| 221 | authctxt->service = xstrdup(service); | 221 | authctxt->service = xstrdup(service); |
| 222 | authctxt->style = style ? xstrdup(style) : NULL; /* currently unused */ | 222 | authctxt->style = style ? xstrdup(style) : NULL; |
| 223 | } else if (authctxt->valid) { | 223 | } else if (strcmp(user, authctxt->user) != 0 || |
| 224 | if (strcmp(user, authctxt->user) != 0 || | 224 | strcmp(service, authctxt->service) != 0) { |
| 225 | strcmp(service, authctxt->service) != 0) { | 225 | packet_disconnect("Change of username or service not allowed: " |
| 226 | log("input_userauth_request: mismatch: (%s,%s)!=(%s,%s)", | 226 | "(%s,%s) -> (%s,%s)", |
| 227 | user, service, authctxt->user, authctxt->service); | 227 | authctxt->user, authctxt->service, user, service); |
| 228 | authctxt->valid = 0; | ||
| 229 | } | ||
| 230 | } | 228 | } |
| 231 | /* reset state */ | 229 | /* reset state */ |
| 232 | dispatch_set(SSH2_MSG_USERAUTH_INFO_RESPONSE, &protocol_error); | 230 | dispatch_set(SSH2_MSG_USERAUTH_INFO_RESPONSE, &protocol_error); |