server: Do not send SSH_MSG_EXT_INFO after rekey

This should not be a problem for well-behaving clients that do not append the ext-info-c to the rekey, but if they do, we should not send it either. Resolves: T121 Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2025-12-12 15:41:16 +03:00 · 2018-11-15 10:44:37 +01:00
parent 83f2ac4abb
commit bf2c7128ab
1 changed files with 10 additions and 8 deletions
--- a/src/server.c
+++ b/src/server.c
@@ -518,20 +518,22 @@ static void ssh_server_connection_callback(ssh_session session){
                    goto error;
                }

+                /*
+                 * If the client supports extension negotiation, we will send
+                 * our supported extensions now. This is the first message after
+                 * sending NEWKEYS message and after turning on crypto.
+                 */
+                if (session->extensions &&
+                    session->session_state != SSH_SESSION_STATE_AUTHENTICATED) {
+                    ssh_server_send_extensions(session);
+                }
+
                set_status(session,1.0f);
                session->connected = 1;
                session->session_state=SSH_SESSION_STATE_AUTHENTICATING;
                if (session->flags & SSH_SESSION_FLAG_AUTHENTICATED)
                    session->session_state = SSH_SESSION_STATE_AUTHENTICATED;

-               /*
-                * If the client supports extension negotiation, we will send
-                * our supported extensions now. This is the first message after
-                * sending NEWKEYS message and after turning on crypto.
-                */
-               if (session->extensions) {
-                   ssh_server_send_extensions(session);
-               }
            }
            break;
        case SSH_SESSION_STATE_AUTHENTICATING: