mirror of
https://git.tartarus.org/simon/putty.git
synced 2025-02-03 21:52:24 +00:00
787c358d37
When the user provides a password on the PuTTY command line, via -pw or -pwfile, the flag 'tried_once' inside cmdline_get_passwd_input() is intended to arrange that we only try sending that password once, and after we've sent it, we don't try again. But this plays badly with the 'Restart Session' operation. If the connection is lost and then restarted at user request, we _do_ want to send that password again! So this commit moves that static variable out into a small state structure held by the client of cmdline_get_passwd_input. Each client can decide how to manage that state itself. Clients that support 'Restart Session' - i.e. just GUI PuTTY itself - will initialise the state at the same time as instantiating the backend, so that every time the session is restarted, we return to (correctly) believing that we _haven't_ yet tried the password provided on the command line. But clients that don't support 'Restart Session' - i.e. Plink and file transfer tools - can do the same thing that cmdline.c was doing before: just keep the state in a static variable. This also means that the GUI login tools will now retain the command-line password in memory, whereas previously they'd have wiped it out once it was used. But the other tools will still wipe and free the password, because I've also added a 'bool restartable' flag to cmdline_get_passwd_input to let it know when it _is_ allowed to do that. In the GUI tools, I don't see any way to get round that, because if the session is restarted you _have_ to still have the password to use again. (And you can't infer that that will never happen from the CONF_close_on_exit setting, because that too could be changed in mid-session.) On the other hand, I think it's not all that worrying, because the use of either -pw or -pwfile means that a persistent copy of your password is *already* stored somewhere, so another one isn't too big a stretch. (Due to the change of -pw policy in 0.77, the effect of this bug was that an attempt to reconnect in a session set up this way would lead to "Configured password was not accepted". In 0.76, the failure mode was different: PuTTY would interactively prompt for the password, having wiped it out of memory after it was used the first time round.) |
||
|---|---|---|
| .. | ||
| antispoof.c | ||
| backend_socket_log.c | ||
| base64_decode_atom.c | ||
| base64_encode_atom.c | ||
| bufchain.c | ||
| buildinfo.c | ||
| burnstr.c | ||
| chomp.c | ||
| CMakeLists.txt | ||
| cmdline_get_passwd_input_state_new.c | ||
| conf_dest.c | ||
| conf_launchable.c | ||
| conf.c | ||
| ctrlparse.c | ||
| debug.c | ||
| decode_utf8_to_wchar.c | ||
| decode_utf8.c | ||
| default_description.c | ||
| dup_mb_to_wc.c | ||
| dup_wc_to_mb.c | ||
| dupcat.c | ||
| dupprintf.c | ||
| dupstr.c | ||
| encode_utf8.c | ||
| encode_wide_string_as_utf8.c | ||
| fgetline.c | ||
| host_strchr_internal.c | ||
| host_strchr.c | ||
| host_strcspn.c | ||
| host_strduptrim.c | ||
| host_strrchr.c | ||
| log_proxy_stderr.c | ||
| ltime.c | ||
| make_spr_sw_abort_static.c | ||
| marshal.c | ||
| memory.c | ||
| memxor.c | ||
| null_lp.c | ||
| nullseat.c | ||
| nullstrcmp.c | ||
| out_of_memory.c | ||
| parse_blocksize.c | ||
| prompts.c | ||
| ptrlen.c | ||
| read_file_into.c | ||
| seat_connection_fatal.c | ||
| sessprep.c | ||
| sk_free_peer_info.c | ||
| smemclr.c | ||
| smemeq.c | ||
| spr_get_error_message.c | ||
| ssh2_pick_fingerprint.c | ||
| sshutils.c | ||
| strbuf.c | ||
| string_length_for_printf.c | ||
| stripctrl.c | ||
| tempseat.c | ||
| tree234.c | ||
| utils.h | ||
| validate_manual_hostkey.c | ||
| version.c | ||
| wcwidth.c | ||
| wildcard.c | ||
| write_c_string_literal.c | ||
| x11_dehexify.c | ||
| x11_identify_auth_proto.c | ||
| x11_make_greeting.c | ||
| x11_parse_ip.c | ||
| x11authfile.c | ||
| x11authnames.c | ||