diff options
author | Jakub Jelen <jjelen@redhat.com> | 2019-09-19 15:03:21 +0200 |
---|---|---|
committer | Jakub Jelen <jjelen@redhat.com> | 2019-09-19 15:10:08 +0200 |
commit | 223cc9623992db8f30918abf310aaa7528f83f82 (patch) | |
tree | e3384b8fdd9691d3d737f77654c930345b44dfb8 | |
parent | 61b1e0e7e99ee7a0dc8b909368e2d618e58b8548 (diff) | |
download | libssh-223cc9623992db8f30918abf310aaa7528f83f82.tar.gz libssh-223cc9623992db8f30918abf310aaa7528f83f82.tar.xz libssh-223cc9623992db8f30918abf310aaa7528f83f82.zip |
options: Do not attempt to expand percents in PKCS#11 URIs
With the old token parser, the data was simply broken on the = sign even
if the uri was in quotes and ignored.
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
-rw-r--r-- | src/options.c | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/src/options.c b/src/options.c index 672735a4..d9799e86 100644 --- a/src/options.c +++ b/src/options.c @@ -1472,6 +1472,13 @@ int ssh_options_apply(ssh_session session) { it != NULL; it = it->next) { char *id = (char *) it->data; + if (strncmp(id, "pkcs11:", 6) == 0) { + /* PKCS#11 URIs are using percent-encoding so we can not mix + * it with ssh expansion of ssh escape characters. + * Skip these identities now, before we will have PKCS#11 support + */ + continue; + } tmp = ssh_path_expand_escape(session, id); if (tmp == NULL) { return -1; |