← Back to branch summary

~ubuntu-branches/ubuntu/lucid/openssh/lucid

~ubuntu-branches/ubuntu/lucid/openssh/lucid

« back to all changes in this revision

Viewing changes to auth1.c

Committer: Bazaar Package Importer
Author(s): Colin Watson
Date: 2008-09-30 23:09:58 UTC
mfrom: (1.13.3 upstream) (29 hardy)
mto: This revision was merged to the branch mainline in revision 43.
Revision ID: james.westby@ubuntu.com-20080930230958-o6vsgn8c4mm959s0

Tags: 1:5.1p1-3

http://bugs.debian.org/496495

http://bugs.debian.org/498681

* Remove unnecessary ssh-vulnkey output in non-verbose mode when no
  compromised or unknown keys were found (closes: #496495).
* Configure with --disable-strip; dh_strip will deal with stripping
  binaries and will honour DEB_BUILD_OPTIONS (thanks, Bernhard R. Link;
  closes: #498681).
* Fix handling of zero-length server banners (thanks, Tomas Mraz; closes:
  #497026).

files added:
PROTOCOL

PROTOCOL.agent

addrmatch.c

contrib/cygwin/sshd-inetd

debian/README.compromised-keys

debian/copyright

debian/faq.html

debian/openssh-server.lintian

debian/openssh-server.sshd.pam

debian/po/sk.po

debian/source.lintian-overrides

debian/ssh.dirs

debian/ssh.lintian

debian/tests

debian/tests/Makefile

debian/tests/getpid.c

debian/tests/keygen-test

moduli.0

moduli.5

mux.c

openbsd-compat/bsd-poll.c

openbsd-compat/bsd-poll.h

openbsd-compat/bsd-statvfs.c

openbsd-compat/bsd-statvfs.h

openbsd-compat/fmt_scaled.c

regress/addrmatch.sh

regress/conch-ciphers.sh

regress/key-options.sh

regress/localcommand.sh

regress/putty-ciphers.sh

regress/putty-kex.sh

regress/putty-transfer.sh

regress/ssh2putty.sh

sftp-server-main.c

ssh-vulnkey.1

ssh-vulnkey.c

umac.c

umac.h

files removed:
debian/moduli.5

debian/openssh-client-udeb.isinstallable

debian/openssh-server.ssh.pam

debian/openssh-server.templates.master

files modified:
ChangeLog

ChangeLog.gssapi

INSTALL

LICENCE

Makefile.in

README

README.platform

atomicio.c

audit-bsm.c

auth-bsdauth.c

auth-options.c

auth-options.h

auth-pam.c

auth-passwd.c

auth-rh-rsa.c

auth-rhosts.c

auth-rsa.c

auth-shadow.c

auth-sia.c

auth.c

auth.h

auth1.c

auth2-chall.c

auth2-gss.c

auth2-hostbased.c

auth2-none.c

auth2-pubkey.c

auth2.c

authfile.c

authfile.h

bufaux.c

bufbn.c

buffer.h

buildpkg.sh.in

canohost.c

channels.c

channels.h

cipher-3des1.c

cipher-bf1.c

cipher-ctr.c

clientloop.c

clientloop.h

config.h.in

configure

configure.ac

contrib/caldera/openssh.spec

contrib/cygwin/Makefile

contrib/cygwin/ssh-host-config

contrib/cygwin/ssh-user-config

contrib/redhat/openssh.spec

contrib/ssh-copy-id

contrib/suse/openssh.spec

debian/README.Debian

debian/changelog

debian/control

debian/copyright.head

debian/openssh-client.preinst

debian/openssh-server.config

debian/openssh-server.default

debian/openssh-server.dirs

debian/openssh-server.init

debian/openssh-server.postinst

debian/openssh-server.postrm

debian/openssh-server.preinst

debian/openssh-server.templates

debian/po/POTFILES.in

debian/po/bg.po

debian/po/ca.po

debian/po/cs.po

debian/po/da.po

debian/po/de.po

debian/po/el.po

debian/po/es.po

debian/po/eu.po

debian/po/fi.po

debian/po/fr.po

debian/po/gl.po

debian/po/it.po

debian/po/ja.po

debian/po/ko.po

debian/po/nb.po

debian/po/nl.po

debian/po/pl.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/ro.po

debian/po/ru.po

debian/po/sv.po

debian/po/ta.po

debian/po/templates.pot

debian/po/tr.po

debian/po/uk.po

debian/po/vi.po

debian/po/zh_CN.po

debian/rules

debian/ssh-askpass-gnome.desktop

debian/ssh-askpass-gnome.dirs

defines.h

dh.c

dh.h

dns.c

entropy.c

groupaccess.c

groupaccess.h

gss-genr.c

gss-serv.c

includes.h

kex.c

kex.h

key.c

key.h

log.c

log.h

loginrec.c

mac.c

mac.h

match.c

match.h

mdoc2man.awk

misc.c

misc.h

moduli

moduli.c

monitor.c

monitor_fdpass.c

monitor_fdpass.h

monitor_mm.h

monitor_wrap.c

myproposal.h

nchan.c

nchan2.ms

openbsd-compat/Makefile.in

openbsd-compat/base64.c

openbsd-compat/bindresvport.c

openbsd-compat/bsd-arc4random.c

openbsd-compat/bsd-asprintf.c

openbsd-compat/bsd-cray.c

openbsd-compat/bsd-cygwin_util.c

openbsd-compat/bsd-getpeereid.c

openbsd-compat/bsd-misc.c

openbsd-compat/fake-rfc2553.c

openbsd-compat/fake-rfc2553.h

openbsd-compat/getrrsetbyname.c

openbsd-compat/getrrsetbyname.h

openbsd-compat/glob.c

openbsd-compat/glob.h

openbsd-compat/openbsd-compat.h

openbsd-compat/openssl-compat.c

openbsd-compat/openssl-compat.h

openbsd-compat/port-aix.c

openbsd-compat/port-aix.h

openbsd-compat/port-linux.c

openbsd-compat/port-linux.h

openbsd-compat/port-tun.c

openbsd-compat/port-uw.c

openbsd-compat/port-uw.h

openbsd-compat/regress/closefromtest.c

openbsd-compat/regress/strtonumtest.c

openbsd-compat/rresvport.c

openbsd-compat/setenv.c

openbsd-compat/setproctitle.c

openbsd-compat/sigact.c

openbsd-compat/sys-queue.h

openbsd-compat/sys-tree.h

openbsd-compat/xcrypt.c

openbsd-compat/xmmap.c

openssh.xml.in

packet.c

packet.h

pathnames.h

readconf.c

readconf.h

regress/Makefile

regress/agent-getpeereid.sh

regress/agent.sh

regress/cfgmatch.sh

regress/cipher-speed.sh

regress/sftp-badcmds.sh

regress/sftp-cmds.sh

regress/sftp-glob.sh

regress/test-exec.sh

regress/try-ciphers.sh

scard-opensc.c

scp.0

scp.1

scp.c

servconf.c

servconf.h

serverloop.c

session.c

session.h

sftp-client.c

sftp-client.h

sftp-server.0

sftp-server.8

sftp-server.c

sftp.0

sftp.1

sftp.c

sftp.h

ssh-add.0

ssh-add.1

ssh-add.c

ssh-agent.0

ssh-agent.1

ssh-agent.c

ssh-gss.h

ssh-keygen.0

ssh-keygen.1

ssh-keygen.c

ssh-keyscan.0

ssh-keyscan.1

ssh-keyscan.c

ssh-keysign.0

ssh-keysign.8

ssh-rand-helper.0

ssh-rand-helper.c

ssh.0

ssh.1

ssh.c

ssh_config

ssh_config.0

ssh_config.5

sshconnect.c

sshconnect.h

sshconnect2.c

sshd.0

sshd.8

sshd.c

sshd_config

sshd_config.0

sshd_config.5

sshlogin.c

sshpty.c

sshpty.h

sshtty.c

ttymodes.c

version.h

Show diffs side-by-side

added added

removed removed

1

/* $OpenBSD: auth1.c,v 1.70 2006/08/03 03:34:41 deraadt Exp $ */

1

/* $OpenBSD: auth1.c,v 1.73 2008/07/04 23:30:16 djm Exp $ */

2

2

/*

3

3

* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland

4

4

* All rights reserved

20

20

#include <unistd.h>

21

21

#include <pwd.h>

22

22

23

#include "openbsd-compat/sys-queue.h"

23

24

#include "xmalloc.h"

24

25

#include "rsa.h"

25

26

#include "ssh1.h"

283

284

type != SSH_CMSG_AUTH_TIS_RESPONSE)

284

285

abandon_challenge_response(authctxt);

285

286

287

if (authctxt->failures >= options.max_authtries)

288

goto skip;

286

289

if ((meth = lookup_authmethod1(type)) == NULL) {

287

290

logit("Unknown message during authentication: "

288

291

"type %d", type);

351

354

msg[len] = '\0';

352

355

else

353

356

msg = "Access denied.";

354

packet_disconnect(msg);

357

packet_disconnect("%s", msg);

355

358

}

356

359

#endif

357

360

367

370

if (authenticated)

368

371

return;

369

372

370

if (authctxt->failures++ > options.max_authtries) {

373

if (++authctxt->failures >= options.max_authtries) {

371

374

#ifdef SSH_AUDIT_EVENTS

372

375

PRIVSEP(audit_event(SSH_LOGIN_EXCEED_MAXTRIES));

373

376

#endif

Older »