Merge from HEAD:

Fix timing information leak allowing discovery of invalid usernames in PAM keyboard-interactive authentication (backported from a patch by Darren Tucker; closes: #281595).
author: Colin Watson <cjwatson@debian.org> 2004-11-28 17:59:30 +0000
committer: Colin Watson <cjwatson@debian.org> 2004-11-28 17:59:30 +0000
commit: 1153b38f4612d93ca7f8dfa6756d6ed64338b281 (patch)
tree: da18bcd670178ec2edd1b4b221a0f72f7eb76e76 /auth2-chall.c
parent: c4945711e5b64f37ab1f5bb4538fd74595820edf (diff)
1 files changed, 4 insertions, 7 deletions
diff --git a/auth2-chall.c b/auth2-chall.c
index aacbf0bcc..0f08b05c6 100644
--- a/auth2-chall.c
+++ b/auth2-chall.c
@@ -275,12 +275,9 @@ input_userauth_info_response(int type, u_int32_t seq, void *ctxt)
        }
        packet_check_eom();
-        if (authctxt->valid) {
+        res = kbdintctxt->device->respond(kbdintctxt->ctxt, nresp, response);
-                res = kbdintctxt->device->respond(kbdintctxt->ctxt,
+        if (!authctxt->valid)
-                    nresp, response);
+                res = 1;        /* keep going if login invalid */
-        } else {
-                res = -1;
-        }
        for (i = 0; i < nresp; i++) {
                memset(response[i], 'r', strlen(response[i]));
@@ -292,7 +289,7 @@ input_userauth_info_response(int type, u_int32_t seq, void *ctxt)
        switch (res) {
        case 0:
                /* Success! */
-                authenticated = 1;
+                authenticated = authctxt->valid ? 1 : 0;
                break;
        case 1:
                /* Authentication needs further interaction */
author	Colin Watson <cjwatson@debian.org>	2004-11-28 17:59:30 +0000
committer	Colin Watson <cjwatson@debian.org>	2004-11-28 17:59:30 +0000
commit	1153b38f4612d93ca7f8dfa6756d6ed64338b281 (patch)
tree	da18bcd670178ec2edd1b4b221a0f72f7eb76e76 /auth2-chall.c
parent	c4945711e5b64f37ab1f5bb4538fd74595820edf (diff)