CVE-2018-10933: Set correct state after sending MIC

After sending the client token, the auth state is set as SSH_AUTH_STATE_GSSAPI_MIC_SENT. Then this can be expected to be the state when a USERAUTH_FAILURE or USERAUTH_SUCCESS arrives. Fixes T101 Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
author: Anderson Toshiyuki Sasaki <ansasaki@redhat.com> 2018-09-19 14:23:35 +0200
committer: Andreas Schneider <asn@cryptomilk.org> 2018-10-09 11:45:58 +0200
commit: 7985acb76842ebf27e32e4afddfef55555209e8e (patch)
tree: 83a1699bd64cd31cc07f9e29b7734c53837a4ac5
parent: acd6a1ca8a332a204b616ab6bef413bee5d3409d (diff)
download: libssh-7985acb76842ebf27e32e4afddfef55555209e8e.tar.gz
libssh-7985acb76842ebf27e32e4afddfef55555209e8e.tar.xz
libssh-7985acb76842ebf27e32e4afddfef55555209e8e.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/gssapi.c b/src/gssapi.c
index c2b30f6d..9306672a 100644
--- a/src/gssapi.c
+++ b/src/gssapi.c
@@ -943,8 +943,8 @@ SSH_PACKET_CALLBACK(ssh_packet_userauth_gssapi_token_client){
         packet_send(session);
     }
     if(maj_stat == GSS_S_COMPLETE){
-        session->auth_state = SSH_AUTH_STATE_NONE;
         ssh_gssapi_send_mic(session);
+        session->auth_state = SSH_AUTH_STATE_GSSAPI_MIC_SENT;
     }
     return SSH_PACKET_USED;
 }
author	Anderson Toshiyuki Sasaki <ansasaki@redhat.com>	2018-09-19 14:23:35 +0200
committer	Andreas Schneider <asn@cryptomilk.org>	2018-10-09 11:45:58 +0200
commit	7985acb76842ebf27e32e4afddfef55555209e8e (patch)
tree	83a1699bd64cd31cc07f9e29b7734c53837a4ac5
parent	acd6a1ca8a332a204b616ab6bef413bee5d3409d (diff)
download	libssh-7985acb76842ebf27e32e4afddfef55555209e8e.tar.gz libssh-7985acb76842ebf27e32e4afddfef55555209e8e.tar.xz libssh-7985acb76842ebf27e32e4afddfef55555209e8e.zip