From 7e72fb0466c945b44c8c17922a192df4f9f90f64 Mon Sep 17 00:00:00 2001 From: Matt Johnston Date: Tue, 12 Nov 2013 23:58:51 +0800 Subject: Don't exit fatally if authorized_keys has a line like command="something" ssh-rsa --- svr-authpubkey.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/svr-authpubkey.c b/svr-authpubkey.c index 4eca211..66fe5e5 100644 --- a/svr-authpubkey.c +++ b/svr-authpubkey.c @@ -294,8 +294,8 @@ static int checkpubkey(unsigned char* algo, unsigned int algolen, options_buf = buf_new(options_len); buf_putbytes(options_buf, options_start, options_len); - /* compare the algorithm */ - if (line->pos + algolen > line->len) { + /* compare the algorithm. +3 so we have enough bytes to read a space and some base64 characters too. */ + if (line->pos + algolen+3 > line->len) { continue; } if (strncmp(buf_getptr(line, algolen), algo, algolen) != 0) { -- cgit v1.2.1