diff options
| author |   markus <markus@openbsd.org> | 2002-09-26 11:38:43 +0000 |
|---|---|---|
| committer | markus <markus@openbsd.org> | 2002-09-26 11:38:43 +0000 |
| commit | 0e51a5e00df636cc286c94973a0416ee99c0a055 (patch) | |
| tree | 2023b3ef8f5d54d1c82d651b30a63531d5d12630 /usr.bin/ssh/auth1.c | |
| parent | activate the two key sequences for undo again; ok art henning (diff) | |
| download | wireguard-openbsd-0e51a5e00df636cc286c94973a0416ee99c0a055.tar.xz wireguard-openbsd-0e51a5e00df636cc286c94973a0416ee99c0a055.zip | |
krb4 + privsep; ok dugsong@, deraadt@
Diffstat (limited to 'usr.bin/ssh/auth1.c')
| -rw-r--r-- | usr.bin/ssh/auth1.c | 16 |
1 files changed, 12 insertions, 4 deletions
diff --git a/usr.bin/ssh/auth1.c b/usr.bin/ssh/auth1.c index 359eeea0d36..7476ad625a0 100644 --- a/usr.bin/ssh/auth1.c +++ b/usr.bin/ssh/auth1.c @@ -10,7 +10,7 @@ */ #include "includes.h" -RCSID("$OpenBSD: auth1.c,v 1.43 2002/09/09 06:48:06 itojun Exp $"); +RCSID("$OpenBSD: auth1.c,v 1.44 2002/09/26 11:38:43 markus Exp $"); #include "xmalloc.h" #include "rsa.h" @@ -116,17 +116,25 @@ do_authloop(Authctxt *authctxt) if (kdata[0] == 4) { /* KRB_PROT_VERSION */ #ifdef KRB4 - KTEXT_ST tkt; - + KTEXT_ST tkt, reply; tkt.length = dlen; if (tkt.length < MAX_KTXT_LEN) memcpy(tkt.dat, kdata, tkt.length); - if (auth_krb4(authctxt, &tkt, &client_user)) { + if (PRIVSEP(auth_krb4(authctxt, &tkt, + &client_user, &reply))) { authenticated = 1; snprintf(info, sizeof(info), " tktuser %.100s", client_user); + + packet_start( + SSH_SMSG_AUTH_KERBEROS_RESPONSE); + packet_put_string((char *) + reply.dat, reply.length); + packet_send(); + packet_write_wait(); + xfree(client_user); } #endif /* KRB4 */ |