CVE-2018-10933: Introduced new auth states

Introduced the states SSH_AUTH_STATE_PUBKEY_OFFER_SENT and SSH_AUTH_STATE_PUBKEY_AUTH_SENT to know when SSH2_MSG_USERAUTH_PK_OK and SSH2_MSG_USERAUTH_SUCCESS should be expected. Fixes T101 Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
author: Anderson Toshiyuki Sasaki <ansasaki@redhat.com> 2018-09-10 17:37:42 +0200
committer: Andreas Schneider <asn@cryptomilk.org> 2018-10-16 09:19:03 +0200
commit: 2bddafeb709eacc80ad31fec40479f9b628a8bd7 (patch)
tree: c59aad77843a6fc97d5e6c455963601d3acf290c /include
parent: 16b876d07f2381638547e848cd32be9ea022aa2f (diff)
download: libssh-2bddafeb709eacc80ad31fec40479f9b628a8bd7.tar.gz
libssh-2bddafeb709eacc80ad31fec40479f9b628a8bd7.tar.xz
libssh-2bddafeb709eacc80ad31fec40479f9b628a8bd7.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/include/libssh/auth.h b/include/libssh/auth.h
index 3913f219..8daab47d 100644
--- a/include/libssh/auth.h
+++ b/include/libssh/auth.h
@@ -76,6 +76,10 @@ enum ssh_auth_state_e {
   SSH_AUTH_STATE_GSSAPI_TOKEN,
   /** We have sent the MIC and expecting to be authenticated */
   SSH_AUTH_STATE_GSSAPI_MIC_SENT,
+  /** We have offered a pubkey to check if it is supported */
+  SSH_AUTH_STATE_PUBKEY_OFFER_SENT,
+  /** We have sent pubkey and signature expecting to be authenticated */
+  SSH_AUTH_STATE_PUBKEY_AUTH_SENT,
 };
 
 /** @internal
author	Anderson Toshiyuki Sasaki <ansasaki@redhat.com>	2018-09-10 17:37:42 +0200
committer	Andreas Schneider <asn@cryptomilk.org>	2018-10-16 09:19:03 +0200
commit	2bddafeb709eacc80ad31fec40479f9b628a8bd7 (patch)
tree	c59aad77843a6fc97d5e6c455963601d3acf290c /include
parent	16b876d07f2381638547e848cd32be9ea022aa2f (diff)
download	libssh-2bddafeb709eacc80ad31fec40479f9b628a8bd7.tar.gz libssh-2bddafeb709eacc80ad31fec40479f9b628a8bd7.tar.xz libssh-2bddafeb709eacc80ad31fec40479f9b628a8bd7.zip