[Bug 2081] extend the parameters to the AuthorizedKeysCommand

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Sep 23 01:41:21 EST 2014


Sami Hartikainen <hasa100 at hotmail.com> changed:

           What    |Removed                     |Added
   Attachment #2477|0                           |1
        is obsolete|                            |

--- Comment #21 from Sami Hartikainen <hasa100 at hotmail.com> ---
Created attachment 2478
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2478&action=edit
Reworked patch enabling optional %-expanded arguments

Reworked the patch to use execv() instead on execl(), and to _not_
impose a hard-coded limit for the number of arguments.

Not sure if the original intent was to allow any arguments beyond the
specified four %-expanded ones; the patch currently allows this.

@Alon: key to fingerprint / base64 computations are done only if needed
because they may fail, causing the AuthorizedKeysCommand to be skipped
even when those parameters were never requested.

@Alon: you requested %h expansion as in... home directory? Or perhaps
you meant host?

You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list