search for: auth_rsa_key_allow

https://bugzilla.mindrot.org/show_bug.cgi?id=1829 Summary: auth-rsa.c: move auth_key_is_revoked() call from auth_rsa_verify_response() to auth_rsa_key_allowed() Product: Portable OpenSSH Version: 5.6p1 Platform: All OS/Version: All Status: NEW Severity: normal Priority: P2 Component: sshd AssignedTo: unassigned-bugs at mindrot.org ReportedBy: ldv at altlinu...

..._HEX); verbose("Found matching %s key: %s", key_type(found), fp); + verbose("Comment on key: %s", cp); xfree(fp); break; } *** auth-rsa.c.orig Sun Feb 9 13:18:56 2003 --- auth-rsa.c Sun Feb 9 13:21:39 2003 *************** *** 153,159 **** int auth_rsa_key_allowed(struct passwd *pw, BIGNUM *client_n, Key **rkey) { ! char line[8192], *file; int allowed = 0; u_int bits; FILE *f; --- 153,159 ---- int auth_rsa_key_allowed(struct passwd *pw, BIGNUM *client_n, Key **rkey) { ! char line[8192], *file, *extpubkey; int allowed = 0; u_int bit...

The latest snapshot (20020324) fails to compile here. Linux 2.4.18-rc1 Alpha The first messages are: monitor_wrap.c: In function `mm_request_receive': monitor_wrap.c:91: warning: int format, different type arg (arg 3) monitor_wrap.c:100: warning: int format, different type arg (arg 3) which have to do with fatal() calls and int not being the same as ssize_t... But the next one is the

...h-add -D'. 4) Connect to localhost. When prompted for the public key passphrase, press Enter; then enter your normal password when prompted to do so. Observe that "hello" is printed and no shell is given. I believe that the problem here is that, if authentication fails after calling auth_rsa_key_allowed or user_key_allowed in the privileged process, authentication options are only cleared in the monitor rather than in the privileged process. The obvious fix seems to be to clear them in both processes. This is implemented by the attached patch. This is only reproducible if the last key offered b...