CVE-2018-10933: Introduce SSH_AUTH_STATE_PASSWORD_AUTH_SENT

The introduced auth state allows to identify when authentication using password was tried. Fixes T101 Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2026-02-07 10:40:28 +09:00 · 2018-09-10 17:38:22 +02:00
parent 2bddafeb70
commit 825f4ba964
2 changed files with 5 additions and 1 deletions
--- a/include/libssh/auth.h
+++ b/include/libssh/auth.h
@@ -80,6 +80,8 @@ enum ssh_auth_state_e {
  SSH_AUTH_STATE_PUBKEY_OFFER_SENT,
  /** We have sent pubkey and signature expecting to be authenticated */
  SSH_AUTH_STATE_PUBKEY_AUTH_SENT,
+  /** We have sent a password expecting to be authenticated */
+  SSH_AUTH_STATE_PASSWORD_AUTH_SENT,
 };

 /** @internal