[Bug 3906] Misusing 'Match Host' in server config causes a crash at deferred connection time
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Dec 19 10:50:59 AEDT 2025
https://bugzilla.mindrot.org/show_bug.cgi?id=3906
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #3928| |ok?(dtucker at dtucker.net)
Flags| |
--- Comment #5 from Damien Miller <djm at mindrot.org> ---
Created attachment 3928
--> https://bugzilla.mindrot.org/attachment.cgi?id=3928&action=edit
fail on invalid Subsystem at parse time
I also noticed another problem with Subsystem parsing. A config like
this:
> Match host *
> Subsystem blah
Will allow sshd to start but will fail with a config parse error (the
subsystem is missing the command argument) at runtime.
To avoid this we need to always parse both the subsystem name and
command.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list