Fix pubkey auth if the first key presented fails (infinite loop of

auth requests). Regresssion in ff597bf2cfb0
author: Matt Johnston <matt@ucc.asn.au> 2014-04-23 16:22:50 +0800
committer: Matt Johnston <matt@ucc.asn.au> 2014-04-23 16:22:50 +0800
commit: 188ec1e2588af00f4511e03861e962edafa68f41 (patch)
tree: 5a31162ed348dfa0aa8b905f9e524333a284b597 /cli-auth.c
parent: d01fb265d62664297ca8a433a78ce3995ba96e06 (diff)
1 files changed, 5 insertions, 5 deletions
diff --git a/cli-auth.c b/cli-auth.c
index c21f694..70ace65 100644
--- a/cli-auth.c
+++ b/cli-auth.c
@@ -174,11 +174,11 @@ void recv_msg_userauth_failure() {
 	the "none" auth request, and then a response to the immediate auth request. 
 	We need to be careful handling them. */
 	if (cli_ses.ignore_next_auth_response) {
-		TRACE(("ignore next response, state set to USERAUTH_REQ_SENT"))
 		cli_ses.state = USERAUTH_REQ_SENT;
+		cli_ses.ignore_next_auth_response = 0;
+		TRACE(("leave recv_msg_userauth_failure, ignored response, state set to USERAUTH_REQ_SENT"));
+		return;
 	} else  {
-		cli_ses.state = USERAUTH_FAIL_RCVD;
-		cli_ses.lastauthtype = AUTH_TYPE_NONE;
 #ifdef ENABLE_CLI_PUBKEY_AUTH
 		/* If it was a pubkey auth request, we should cross that key 
 		 * off the list. */
@@ -197,10 +197,10 @@ void recv_msg_userauth_failure() {
 			cli_ses.auth_interact_failed = 1;
 		}
 #endif
+		cli_ses.state = USERAUTH_FAIL_RCVD;
+		cli_ses.lastauthtype = AUTH_TYPE_NONE;
 	}
 
-	cli_ses.ignore_next_auth_response = 0;
-
 	methods = buf_getstring(ses.payload, &methlen);
 
 	partial = buf_getbool(ses.payload);
author	Matt Johnston <matt@ucc.asn.au>	2014-04-23 16:22:50 +0800
committer	Matt Johnston <matt@ucc.asn.au>	2014-04-23 16:22:50 +0800
commit	188ec1e2588af00f4511e03861e962edafa68f41 (patch)
tree	5a31162ed348dfa0aa8b905f9e524333a284b597 /cli-auth.c
parent	d01fb265d62664297ca8a433a78ce3995ba96e06 (diff)