ssh client roaming bug fix applied.

Disable experimental client-side roaming support. Server side was disabled/gutted for years already, but this aspect was surprisingly forgotten. openssh lists this bug as CVE-2016-0777 It is described in: http://undeadly.org/cgi?action=article&sid=20160114142733
2016-01-14 15:15:24 -06:00 · 2016-01-14 15:15:24 -06:00 · 8f42a2f376
parent 5bc1a58689
commit 8f42a2f376
2 changed files with 2 additions and 5 deletions
--- a/readconf.c
+++ b/readconf.c
@ -1723,7 +1723,7 @@ initialize_options(Options * options)
 	options->tun_remote = -1;
 	options->local_command = NULL;
 	options->permit_local_command = -1;
-	options->use_roaming = -1;
+	options->use_roaming = 0;
 	options->visual_host_key = -1;
 	options->ip_qos_interactive = -1;
 	options->ip_qos_bulk = -1;
@ -1941,8 +1941,7 @@ void fill_default_options(Options * options, struct passwd *pw)
 		options->tun_remote = SSH_TUNID_ANY;
 	if (options->permit_local_command == -1)
 		options->permit_local_command = 0;
-	if (options->use_roaming == -1)
-		options->use_roaming = 1;
+	options->use_roaming = 0;
 	if (options->visual_host_key == -1)
 		options->visual_host_key = 0;
 	if (options->ip_qos_interactive == -1)
--- a/ssh.c
+++ b/ssh.c
@ -2163,8 +2163,6 @@ ssh_session2(void)
 			fork_postauth();
 	}

-	if (options.use_roaming)
-		request_roaming();

 	return client_loop(tty_flag, tty_flag ?
 	    options.escape_char : SSH_ESCAPECHAR_NONE, id);