From 9d88dcab3ebb76873ddc9bcbfe84abe38fef5f7e Mon Sep 17 00:00:00 2001
From: Aris Adamantiadis <aris@0xbadc0de.be>
Date: Sat, 13 Jul 2013 22:56:32 +0200
Subject: Server: disallow channel opening till authenticated

---
 src/messages.c | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'src/messages.c')

diff --git a/src/messages.c b/src/messages.c
index 59b795e..d4dd438 100644
--- a/src/messages.c
+++ b/src/messages.c
@@ -1054,6 +1054,11 @@ SSH_PACKET_CALLBACK(ssh_packet_channel_open){
   msg->channel_request_open.window = ntohl(window);
   msg->channel_request_open.packet_size = ntohl(packet_size);
 
+  if (session->session_state != SSH_SESSION_STATE_AUTHENTICATED){
+    ssh_set_error(session,SSH_FATAL, "Invalid state when receiving channel open request (must be authenticated)");
+    goto error;
+  }
+  
   if (strcmp(type_c,"session") == 0) {
     msg->channel_request_open.type = SSH_CHANNEL_SESSION;
     SAFE_FREE(type_c);
-- 
cgit