|
|
@@ -6,7 +6,6 @@ package ssh
|
|
|
|
|
|
import (
|
|
|
"context"
|
|
|
- "fmt"
|
|
|
"io"
|
|
|
"net"
|
|
|
"os"
|
|
|
@@ -55,26 +54,8 @@ func handleServerConn(keyID string, chans <-chan ssh.NewChannel) {
|
|
|
payload := cleanCommand(string(req.Payload))
|
|
|
switch req.Type {
|
|
|
case "env":
|
|
|
- var env struct {
|
|
|
- Name string
|
|
|
- Value string
|
|
|
- }
|
|
|
- if err := ssh.Unmarshal(req.Payload, &env); err != nil {
|
|
|
- log.Warn("SSH: Invalid env payload %q: %v", req.Payload, err)
|
|
|
- continue
|
|
|
- }
|
|
|
- // Sometimes the client could send malformed command (i.e. missing "="),
|
|
|
- // see https://discuss.gogs.io/t/ssh/3106.
|
|
|
- if env.Name == "" || env.Value == "" {
|
|
|
- log.Warn("SSH: Invalid env arguments: %+v", env)
|
|
|
- continue
|
|
|
- }
|
|
|
-
|
|
|
- _, stderr, err := com.ExecCmd("env", fmt.Sprintf("%s=%s", env.Name, env.Value))
|
|
|
- if err != nil {
|
|
|
- log.Error("env: %v - %s", err, stderr)
|
|
|
- return
|
|
|
- }
|
|
|
+ // We only need to accept the request and do nothing since whatever environment
|
|
|
+ // variables being set here won't be used in subsequent commands anyway.
|
|
|
|
|
|
case "exec":
|
|
|
cmdName := strings.TrimLeft(payload, "'()")
|
|
|
@@ -175,7 +156,9 @@ func Listen(opts conf.SSHOpts, appDataPath string) {
|
|
|
PublicKeyCallback: func(conn ssh.ConnMetadata, key ssh.PublicKey) (*ssh.Permissions, error) {
|
|
|
pkey, err := database.SearchPublicKeyByContent(strings.TrimSpace(string(ssh.MarshalAuthorizedKey(key))))
|
|
|
if err != nil {
|
|
|
- log.Error("SearchPublicKeyByContent: %v", err)
|
|
|
+ if !database.IsErrKeyNotExist(err) {
|
|
|
+ log.Error("SearchPublicKeyByContent: %v", err)
|
|
|
+ }
|
|
|
return nil, err
|
|
|
}
|
|
|
return &ssh.Permissions{Extensions: map[string]string{"key-id": com.ToStr(pkey.ID)}}, nil
|
Joe Chen