Fix bug introduced in rev 1.467 which causes "buffer_get_bignum_ret:

incomplete message" errors when built with WITH_SSH1 and run such that no
Protocol 1 ephemeral host key is generated (eg "Protocol 2", no SSH1 host
key supplied).  Reported by rainer.laatsch at t-online.de, ok deraadt@

diff --git a/usr.bin/ssh/sshd.c b/usr.bin/ssh/sshd.c
index 8001ce9..762ba21 100644 (file)
--- a/usr.bin/ssh/sshd.c
+++ b/usr.bin/ssh/sshd.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: sshd.c,v 1.470 2016/05/24 04:43:45 dtucker Exp $ */
+/* $OpenBSD: sshd.c,v 1.471 2016/08/03 04:23:55 dtucker Exp $ */
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -1032,7 +1032,7 @@ send_rexec_state(int fd, struct sshbuf *conf)
                        fatal("%s: buffer error: %s", __func__, ssh_err(r));
        } else
 #endif
-               if ((r = sshbuf_put_u32(m, 1)) != 0)
+               if ((r = sshbuf_put_u32(m, 0)) != 0)
                        fatal("%s: buffer error: %s", __func__, ssh_err(r));
 
        if (ssh_msg_send(fd, 0, m) == -1)