upstream: Do not ban PTY allocation when a sshd session is restricted

because the user password is expired as it breaks password change dialog. regression in openssh-7.7 reported by Daniel Wagner OpenBSD-Commit-ID: 9fc09c584c6f1964b00595e3abe7f83db4d90d73
author: djm@openbsd.org <djm@openbsd.org> 2018-05-25 07:11:01 +0000
committer: Damien Miller <djm@mindrot.org> 2018-05-25 17:14:24 +1000
commit: ae1becf568e8008d1d261cae6b6c0b8d00b53dd2 (patch)
tree: ca72630e1f465f5ba1909b4f692683fc5936c803
parent: 45a573a090eaf31238e98cab50c142a8d6751b90 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/auth.c b/auth.c
index 63366768..0b7a335f 100644
--- a/auth.c
+++ b/auth.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.c,v 1.127 2018/03/12 00:52:01 djm Exp $ */
+/* $OpenBSD: auth.c,v 1.128 2018/05/25 07:11:01 djm Exp $ */
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
  *
@@ -1080,6 +1080,7 @@ auth_restrict_session(struct ssh *ssh)
 
 	/* A blank sshauthopt defaults to permitting nothing */
 	restricted = sshauthopt_new();
+	restricted->permit_pty_flag = 1;
 	restricted->restricted = 1;
 
 	if (auth_activate_options(ssh, restricted) != 0)
author	djm@openbsd.org <djm@openbsd.org>	2018-05-25 07:11:01 +0000
committer	Damien Miller <djm@mindrot.org>	2018-05-25 17:14:24 +1000
commit	ae1becf568e8008d1d261cae6b6c0b8d00b53dd2 (patch)
tree	ca72630e1f465f5ba1909b4f692683fc5936c803
parent	45a573a090eaf31238e98cab50c142a8d6751b90 (diff)