You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
russh-config parses OpenSSH-style config files but with very limited functionality compared to OpenSSH. This means that trying to parse a even mildly complex ~/.ssh/config file can lead to unexpected behavior and the wrong options being applied, which to some might even be a security concern.
Excluding any OpenSSH exclusive options (i.e., an equivalent feature doesn't exist in russh), many options are missing or don't handle all the edge-cases. A select few examples:
Host can accept the wildcard (Host *). All option definitions in that block are used as defaults.
Host can accept more than one host name, and host names can be patterns: e.g. Host rack-a-* rack-b-*
Various options can have token placeholders (e.g., %h) in their values. e.g., Hostname, IdentityFile. Only ProxyCommand has partial support for this in russh-config.
Various options support environment variable expansion.
I started adding SSH support to my app and decided to go with russh rather than spawning ssh and wrangling sub-processes. I hoped to handle various types of SSH setups, such as proxies, and saw the russh documentation mention russh-config. The parse_home() function, which reads ~/.ssh/config (an OpenSSH config file), lead me to assume that russh has support for OpenSSH config files. However, after testing against my own config I realised that most options aren't implemented.
IMO any app that uses parse_home() is subtly broken. Users of these apps may assume their existing OpenSSH config will work, yet the config will likely be parsed incorrectly, and connections may happen with options that differ from what's set in the config.
Unless russh wants to implement support for the full OpenSSH config format with all the nuances (which would also require russh to implement all the OpenSSH client features and nuances!), it is my opinion that the parse_home() function be marked deprecated, and the crate documentation be updated to mention that it parses an "OpenSSH-like" config format.
Another way to put it: russh isn't OpenSSH. Don't make it easy for developers, and by extension their end-uses, to pretend/assume it is.
The text was updated successfully, but these errors were encountered:
russh-config parses OpenSSH-style config files but with very limited functionality compared to OpenSSH. This means that trying to parse a even mildly complex
~/.ssh/configfile can lead to unexpected behavior and the wrong options being applied, which to some might even be a security concern.Excluding any OpenSSH exclusive options (i.e., an equivalent feature doesn't exist in russh), many options are missing or don't handle all the edge-cases. A select few examples:
Hostcan accept the wildcard (Host *). All option definitions in that block are used as defaults.Hostcan accept more than one host name, and host names can be patterns: e.g.Host rack-a-* rack-b-*%h) in their values. e.g.,Hostname,IdentityFile. OnlyProxyCommandhas partial support for this in russh-config.IdentityFileexists howeverUserKnownHostsFiledoesn't.I started adding SSH support to my app and decided to go with russh rather than spawning
sshand wrangling sub-processes. I hoped to handle various types of SSH setups, such as proxies, and saw the russh documentation mentionrussh-config. Theparse_home()function, which reads~/.ssh/config(an OpenSSH config file), lead me to assume that russh has support for OpenSSH config files. However, after testing against my own config I realised that most options aren't implemented.IMO any app that uses
parse_home()is subtly broken. Users of these apps may assume their existing OpenSSH config will work, yet the config will likely be parsed incorrectly, and connections may happen with options that differ from what's set in the config.Unless russh wants to implement support for the full OpenSSH config format with all the nuances (which would also require russh to implement all the OpenSSH client features and nuances!), it is my opinion that the
parse_home()function be marked deprecated, and the crate documentation be updated to mention that it parses an "OpenSSH-like" config format.Another way to put it: russh isn't OpenSSH. Don't make it easy for developers, and by extension their end-uses, to pretend/assume it is.
The text was updated successfully, but these errors were encountered: