- dtucker@cvs.openbsd.org 2004/02/05 05:37:17

[monitor.c sshd.c] Pass SIGALRM through to privsep child if LoginGraceTime expires. ok markus@
author: Darren Tucker <dtucker@zip.com.au> 2004-02-06 16:40:27 +1100
committer: Darren Tucker <dtucker@zip.com.au> 2004-02-06 16:40:27 +1100
commit: a8be9e23d236f0e9c27214418280b752b68dbd54 (patch)
tree: ed6e1074342c6a405a36349e1170779a735d5523 /sshd.c
parent: c52a29913d3850b4333000b3309cede03f8bf824 (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/sshd.c b/sshd.c
index ebb44db75..42484c064 100644
--- a/sshd.c
+++ b/sshd.c
@@ -42,7 +42,7 @@
 */
 #include "includes.h"
-RCSID("$OpenBSD: sshd.c,v 1.284 2003/12/09 21:53:37 markus Exp $");
+RCSID("$OpenBSD: sshd.c,v 1.285 2004/02/05 05:37:17 dtucker Exp $");
 #include <openssl/dh.h>
 #include <openssl/bn.h>
@@ -200,7 +200,7 @@ int startup_pipe;		/* in child */
 /* variables used for privilege separation */
 int use_privsep;
-struct monitor *pmonitor;
+struct monitor *pmonitor = NULL;
 /* message to be displayed after login */
 Buffer loginmsg;
@@ -306,6 +306,9 @@ grace_alarm_handler(int sig)
 {
        /* XXX no idea how fix this signal handler */
+        if (use_privsep && pmonitor != NULL && pmonitor->m_pid > 0)
+                kill(pmonitor->m_pid, SIGALRM);
        /* Log error and exit. */
        fatal("Timeout before authentication for %s", get_remote_ipaddr());
 }
@@ -593,6 +596,7 @@ privsep_preauth(Authctxt *authctxt)
                debug2("Network child is on pid %ld", (long)pid);
                close(pmonitor->m_recvfd);
+                pmonitor->m_pid = pid;
                monitor_child_preauth(authctxt, pmonitor);
                close(pmonitor->m_sendfd);
author	Darren Tucker <dtucker@zip.com.au>	2004-02-06 16:40:27 +1100
committer	Darren Tucker <dtucker@zip.com.au>	2004-02-06 16:40:27 +1100
commit	a8be9e23d236f0e9c27214418280b752b68dbd54 (patch)
tree	ed6e1074342c6a405a36349e1170779a735d5523 /sshd.c
parent	c52a29913d3850b4333000b3309cede03f8bf824 (diff)