[Bug 2081] extend the parameters to the AuthorizedKeysCommand

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Feb 10 00:11:52 AEDT 2015


https://bugzilla.mindrot.org/show_bug.cgi?id=2081

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Attachment #2412|0                           |1
        is obsolete|                            |
   Attachment #2417|0                           |1
        is obsolete|                            |
   Attachment #2438|0                           |1
        is obsolete|                            |
   Attachment #2522|0                           |1
        is obsolete|                            |
             Status|NEW                         |ASSIGNED
           Assignee|unassigned-bugs at mindrot.org |djm at mindrot.org

--- Comment #30 from Damien Miller <djm at mindrot.org> ---
Created attachment 2544
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2544&action=edit
revised diff

Here's a revised diff.

Use a more exact argument splitting that copes with a couple of escaped
characters and bails if there are nested quotes.

Refactor sshkey.c a bit - if we are going to have a sshkey_to_base64()
function then we might as well use it in sshkey_write()

Set up a minimal environment for the AuthorizedKeysCommand, instead of
inheriting everything from sshd (which may well have been started by a
user with an unclean environment).

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list