messages: Check that the requested service is 'ssh-connection'

Signed-off-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit 9c200d3ef4)
2026-02-04 12:20:42 +09:00 · 2018-10-19 11:40:44 +02:00
parent e5cee205c1
commit e8f3207a0d
1 changed files with 8 additions and 0 deletions
--- a/src/messages.c
+++ b/src/messages.c
@@ -704,6 +704,7 @@ SSH_PACKET_CALLBACK(ssh_packet_userauth_request){
  ssh_message msg = NULL;
  char *service = NULL;
  char *method = NULL;
+  int cmp;
  int rc;

  (void)user;
@@ -730,6 +731,13 @@ SSH_PACKET_CALLBACK(ssh_packet_userauth_request){
      service, method,
      msg->auth_request.username);

+  cmp = strcmp(service, "ssh-connection");
+  if (cmp != 0) {
+      SSH_LOG(SSH_LOG_WARNING,
+              "Invalid service request: %s",
+              service);
+      goto end;
+  }

  if (strcmp(method, "none") == 0) {
    msg->auth_request.method = SSH_AUTH_METHOD_NONE;