Read "y/n" response for fingerprints from /dev/tty directly so that dbclient

will work with scp. --HG-- extra : convert_revision : 1ec067604618a314ad36464920f08c7113d09aa3
2025-02-07 05:17:28 +00:00 · 2005-01-11 16:17:03 +00:00 · 2005-01-11 16:17:03 +00:00 · b7dbb29e68
commit b7dbb29e68
parent 37da919b7d
2 changed files with 14 additions and 1 deletions
--- a/3
+++ b/3
@ -1,3 +1,6 @@
+- Read "y/n" response for fingerprints from /dev/tty directly so that dbclient
+  will work with scp.
+
 0.44 - Mon Jan 3 2005

 - SECURITY: Fix for PAM auth so that usernames are logged and conversation
--- a/cli-kex.c
+++ b/cli-kex.c
@ -115,13 +115,23 @@ void recv_msg_kexdh_reply() {
 static void ask_to_confirm(unsigned char* keyblob, unsigned int keybloblen) {

 	char* fp = NULL;
+	FILE *tty = NULL;
+	char response = 'z';

 	fp = sign_key_fingerprint(keyblob, keybloblen);
 	fprintf(stderr, "\nHost '%s' is not in the trusted hosts file.\n(fingerprint %s)\nDo you want to continue connecting? (y/n)\n", 
 			cli_opts.remotehost, 
 			fp);

-	if (getc(stdin) == 'y') {
+	tty = fopen(_PATH_TTY, "r");
+	if (tty) {
+		response = getc(tty);
+		fclose(tty);
+	} else {
+		response = getc(stdin);
+	}
+
+	if (response == 'y') {
 		m_free(fp);
 		return;
 	}