- OpenBSD CVS Sync

- djm@cvs.openbsd.org 2011/03/10 02:52:57 [auth2-gss.c auth2.c] allow GSSAPI authentication to detect when a server-side failure causes authentication failure and don't count such failures against MaxAuthTries; bz#1244 from simon AT sxw.org.uk; ok markus@ before lock
author: Damien Miller <djm@mindrot.org> 2011-05-05 14:04:11 +1000
committer: Damien Miller <djm@mindrot.org> 2011-05-05 14:04:11 +1000
commit: 3fcdfd55a3a3a16342a4f110f2dc1ba998526e47 (patch)
tree: 196bccd2c94acf3023ec513cf0ebe6cf40d215b0 /auth2-gss.c
parent: f22019bdbfb986daf24428a9d37f9fe9bb3ff7ad (diff)
download: openssh-git-3fcdfd55a3a3a16342a4f110f2dc1ba998526e47.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/auth2-gss.c b/auth2-gss.c
index 0e08d889..0d59b217 100644
--- a/auth2-gss.c
+++ b/auth2-gss.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth2-gss.c,v 1.16 2007/10/29 00:52:45 dtucker Exp $ */
+/* $OpenBSD: auth2-gss.c,v 1.17 2011/03/10 02:52:57 djm Exp $ */
 
 /*
  * Copyright (c) 2001-2003 Simon Wilkinson. All rights reserved.
@@ -102,6 +102,7 @@ userauth_gssapi(Authctxt *authctxt)
 
 	if (!present) {
 		xfree(doid);
+		authctxt->server_caused_failure = 1;
 		return (0);
 	}
 
@@ -109,6 +110,7 @@ userauth_gssapi(Authctxt *authctxt)
 		if (ctxt != NULL)
 			ssh_gssapi_delete_ctx(&ctxt);
 		xfree(doid);
+		authctxt->server_caused_failure = 1;
 		return (0);
 	}
author	Damien Miller <djm@mindrot.org>	2011-05-05 14:04:11 +1000
committer	Damien Miller <djm@mindrot.org>	2011-05-05 14:04:11 +1000
commit	3fcdfd55a3a3a16342a4f110f2dc1ba998526e47 (patch)
tree	196bccd2c94acf3023ec513cf0ebe6cf40d215b0 /auth2-gss.c
parent	f22019bdbfb986daf24428a9d37f9fe9bb3ff7ad (diff)
download	openssh-git-3fcdfd55a3a3a16342a4f110f2dc1ba998526e47.tar.gz