aboutsummaryrefslogtreecommitdiff
path: root/include
diff options
context:
space:
mode:
authorAnderson Toshiyuki Sasaki <ansasaki@redhat.com>2018-09-19 17:01:15 +0200
committerAndreas Schneider <asn@cryptomilk.org>2018-10-16 09:19:03 +0200
commit20981bf2296202e95d7919394d4610ae3a876cfa (patch)
treebb8c0b03159964d9fd44a293de0946db2ff7f0b0 /include
parent825f4ba96407abe8cebb046a7503fa2bf5de9df6 (diff)
downloadlibssh-20981bf2296202e95d7919394d4610ae3a876cfa.tar.gz
libssh-20981bf2296202e95d7919394d4610ae3a876cfa.tar.xz
libssh-20981bf2296202e95d7919394d4610ae3a876cfa.zip
CVE-2018-10933: Introduce SSH_AUTH_STATE_AUTH_NONE_SENT
The introduced auth state allows to identify when a request without authentication information was sent. Fixes T101 Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
Diffstat (limited to 'include')
-rw-r--r--include/libssh/auth.h2
1 files changed, 2 insertions, 0 deletions
diff --git a/include/libssh/auth.h b/include/libssh/auth.h
index 899282c1..90b377d4 100644
--- a/include/libssh/auth.h
+++ b/include/libssh/auth.h
@@ -82,6 +82,8 @@ enum ssh_auth_state_e {
SSH_AUTH_STATE_PUBKEY_AUTH_SENT,
/** We have sent a password expecting to be authenticated */
SSH_AUTH_STATE_PASSWORD_AUTH_SENT,
+ /** We have sent a request without auth information (method 'none') */
+ SSH_AUTH_STATE_AUTH_NONE_SENT,
};
/** @internal