diff options
| author | Wenlin Kang <wenlin.kang@windriver.com> | 2015-04-30 18:17:39 +0800 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-05-03 11:43:50 +0100 |
| commit | 90972c951822922301ca9fd21e1eb7cea5435ee4 (patch) | |
| tree | 5a49beac0d131f8447fb37bf0cd3453fb582b3a9 /meta/recipes-connectivity/openssh/openssh/auth2-none.c-avoid-authenticate-empty-passwords-to-m.patch | |
| parent | aa2b6362ef9c14d3742902e249824aa57ffb4b67 (diff) | |
| download | poky-90972c951822922301ca9fd21e1eb7cea5435ee4.tar.gz | |
openssh: fix login fails for ssh -o Batchmode=yes with empty passwords
The patch fixes the login fails for ssh -o Batchmode=yes when passwords is
empty and without authorized_keys file even if set "PermitEmptyPasswords yes"
in sshd_config file.
Here, to fix this issue, we remove the file auth2-none.c-avoid-authenticate-
empty-passwords-to-m.patch, that fixed broken pipe while sshd with pam,
but it isn't needed any more now, because we make it has gone by change
ChallengeResponseAuthentication value in sshd_config file.
(From OE-Core rev: f879a7406d8fce37e8baf5fe724d7ed0042d57f8)
Signed-off-by: Wenlin Kang <wenlin.kang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-connectivity/openssh/openssh/auth2-none.c-avoid-authenticate-empty-passwords-to-m.patch')
| -rw-r--r-- | meta/recipes-connectivity/openssh/openssh/auth2-none.c-avoid-authenticate-empty-passwords-to-m.patch | 30 |
1 files changed, 0 insertions, 30 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh/auth2-none.c-avoid-authenticate-empty-passwords-to-m.patch b/meta/recipes-connectivity/openssh/openssh/auth2-none.c-avoid-authenticate-empty-passwords-to-m.patch deleted file mode 100644 index ba13cd1919..0000000000 --- a/meta/recipes-connectivity/openssh/openssh/auth2-none.c-avoid-authenticate-empty-passwords-to-m.patch +++ /dev/null | |||
| @@ -1,30 +0,0 @@ | |||
| 1 | Upstream-Status: Pending | ||
| 2 | |||
| 3 | Subject: auth2-none.c: avoid authenticate empty passwords to mess up with PAM | ||
| 4 | |||
| 5 | If UsePAM, PermitEmptyPasswords, PasswordAuthentication are enabled. The ssh daemon | ||
| 6 | will try to authenticate an empty password, resulting in login failures of any user. | ||
| 7 | If PAM is enabled, then we should leave the task of password authentication to PAM. | ||
| 8 | |||
| 9 | Signed-off-by: Chen Qi <Qi.Chen@windriver.com> | ||
| 10 | |||
| 11 | --- | ||
| 12 | auth2-none.c | 2 +- | ||
| 13 | 1 file changed, 1 insertion(+), 1 deletion(-) | ||
| 14 | |||
| 15 | diff --git a/auth2-none.c b/auth2-none.c | ||
| 16 | index c8c6c74..b48b2fd 100644 | ||
| 17 | --- a/auth2-none.c | ||
| 18 | +++ b/auth2-none.c | ||
| 19 | @@ -61,7 +61,7 @@ userauth_none(Authctxt *authctxt) | ||
| 20 | { | ||
| 21 | none_enabled = 0; | ||
| 22 | packet_check_eom(); | ||
| 23 | - if (options.permit_empty_passwd && options.password_authentication) | ||
| 24 | + if (options.permit_empty_passwd && options.password_authentication && !options.use_pam) | ||
| 25 | return (PRIVSEP(auth_password(authctxt, ""))); | ||
| 26 | return (0); | ||
| 27 | } | ||
| 28 | -- | ||
| 29 | 1.7.9.5 | ||
| 30 | |||