NuKVM/libvirt
3
0
Fork 0
mirror of https://github.com/libvirt/libvirt.git synced 2025-02-25 18:55:26 -06:00
Code Issues Packages Projects Releases Wiki Activity

rpc: libssh: allow a NULL known_hosts file

Browse Source 
Make sure that virNetLibsshSessionSetHostKeyVerification accepts a NULL
value for the path to the known_hosts file:
- call ssh_options_set(SSH_OPTIONS_KNOWNHOSTS) anyway, using /dev/null,
  otherwise libssh will use its default path
- do not call ssh_write_knownhost when no known hosts file was set

Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1406457
This commit is contained in:
Pino Toscano 2017-01-10 19:43:18 +01:00 committed by Peter Krempa
parent 97dbf2b604
commit 408a1ce5f8
1 changed files with 23 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
src/rpc/virnetlibsshsession.c
View File

@ -382,14 +382,16 @@ virNetLibsshCheckHostKey(virNetLibsshSessionPtr sess)
VIR_FREE(askKey.result); VIR_FREE(askKey.result);
} }
/* write the host key file */ /* write the host key file, if specified */
if (ssh_write_knownhost(sess->session) < 0) { if (sess->knownHostsFile) {
errmsg = ssh_get_error(sess->session); if (ssh_write_knownhost(sess->session) < 0) {
virReportError(VIR_ERR_LIBSSH, errmsg = ssh_get_error(sess->session);
_("failed to write known_host file '%s': %s"), virReportError(VIR_ERR_LIBSSH,
sess->knownHostsFile, _("failed to write known_host file '%s': %s"),
errmsg); sess->knownHostsFile,
return -1; errmsg);
return -1;
}
} }
/* key was accepted and added */ /* key was accepted and added */
return 0; return 0;
@ -1172,13 +1174,20 @@ virNetLibsshSessionSetHostKeyVerification(virNetLibsshSessionPtr sess,
goto error; goto error;
} }
/* set the known hosts file */ /* set the known hosts file, if specified */
if (ssh_options_set(sess->session, SSH_OPTIONS_KNOWNHOSTS, hostsfile) < 0) if (hostsfile) {
goto error; if (ssh_options_set(sess->session, SSH_OPTIONS_KNOWNHOSTS, hostsfile) < 0)
goto error;
VIR_FREE(sess->knownHostsFile); VIR_FREE(sess->knownHostsFile);
if (VIR_STRDUP(sess->knownHostsFile, hostsfile) < 0) if (VIR_STRDUP(sess->knownHostsFile, hostsfile) < 0)
goto error; goto error;
} else {
/* libssh does not support trying no known_host file at all:
* hence use /dev/null here, without storing it as file */
if (ssh_options_set(sess->session, SSH_OPTIONS_KNOWNHOSTS, "/dev/null") < 0)
goto error;
}
virObjectUnlock(sess); virObjectUnlock(sess);
return 0; return 0;