-
-
Notifications
You must be signed in to change notification settings - Fork 390
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Known_hosts file loses content when adding new host #1209
Comments
Instead of relying on paramiko to correctly parse the full hostfile, this fix makes it so that we only append new keys to the hostfile rather than overwriting it completely. The old behaviour results in unwanted alterations to the hostfile, such as hostfile entries not parseable by paramiko disappearing without users consent, and comments being removed. I also split out the logic for appending hostkeys into a new function instead of having the code be unnecessarily repeated in multiple places. This makes the MissingHostKeyPolicy children a bit more readable IMO.
Hi, I created a possible fix for this, making it so that pyinfra will only append to the known_hosts file. Do you have the possibility of testing it with a known_hosts file that is known to break? Alternatively providing an example that demonstrates the behavior. I would like to add a test for this to ensure we don't repeat the behavior, as I agree that this has a very negative impact for certain users. |
Here's a reproduction:
The known_hosts file is overwritten, which silently removes the comments, newlines, and cert-authority lines. |
In the fix under AskPolicy, the host addition should likely be moved inside the "y" confirmation. |
(Sorry for the late response, got more busy than expected) Do you mean this part? if should_continue.lower() != "y":
raise SSHException(
"AskPolicy: No host key for {0} found in known_hosts".format(hostname),
) As it will raise an exception if the answer is not "y" I think it is correct (unless I'm missing something?) (I'm currently finishing writing the test-case so that future commits won't accidentally reintroduce the bug, thanks for your feedback!) |
No apology needed, your hard work as an OSS maintainer is appreciated!
You're right, this appears to be correct. Thanks again! |
…a-dev#1209) This fixes issue pyinfra-dev#1209, making it so that we append new keys to the users known_hosts file instead of overwriting it. Additionally: Added a testcase that should discover this breaking in the future. Broke out the append functionality into a "append_hostkey" function, making it so we don't needlessly reuse code for AskPolicy and AcceptNewPolicy. Linting actually correct this time. Previous behaviour when adding a new key: Create a paramiko.HostKeys object Read the users known_hosts file Add the new key to the object Save the object, overwriting the users host_keys file. New behaviour: Create a paramiko.HostKeyEntry object using the new hostname and corresponding key. Append this key to the existing known_hosts file.
After some (dumb) mistakes with linting and commits, I finally have a working pull request submitted. |
…a-dev#1209) This fixes issue pyinfra-dev#1209, making it so that we append new keys to the users known_hosts file instead of overwriting it. Additionally: Added a testcase that should discover this breaking in the future. Broke out the append functionality into a "append_hostkey" function, making it so we don't needlessly reuse code for AskPolicy and AcceptNewPolicy. Linting actually correct this time. Previous behaviour when adding a new key: Create a paramiko.HostKeys object Read the users known_hosts file Add the new key to the object Save the object, overwriting the users host_keys file. New behaviour: Create a paramiko.HostKeyEntry object using the new hostname and corresponding key. Append this key to the existing known_hosts file.
…a-dev#1209) This fixes issue pyinfra-dev#1209, making it so that we append new keys to the users known_hosts file instead of overwriting it. Additionally: Added a testcase that should discover this breaking in the future. Broke out the append functionality into a "append_hostkey" function, making it so we don't needlessly reuse code for AskPolicy and AcceptNewPolicy. Linting actually correct this time. Previous behaviour when adding a new key: Create a paramiko.HostKeys object Read the users known_hosts file Add the new key to the object Save the object, overwriting the users host_keys file. New behaviour: Create a paramiko.HostKeyEntry object using the new hostname and corresponding key. Append this key to the existing known_hosts file.
…a-dev#1209) This fixes issue pyinfra-dev#1209, making it so that we append new keys to the users known_hosts file instead of overwriting it. Additionally: - Added a testcase that should discover this breaking in the future. - Broke out the append functionality into a "append_hostkey" function, making it so we don't needlessly reuse code for AskPolicy and - AcceptNewPolicy. - Linting actually correct this time. This commit changes the behaviour when adding a new key to known_hosts: Previous behaviour when adding a new key: - Create a paramiko.HostKeys object - Read the users known_hosts file - Add the new key to the object - Save the object, overwriting the users host_keys file. New behaviour: - Create a paramiko.HostKeyEntry object using the new hostname and corresponding key. - Append this key to the existing known_hosts file.
Issues with pull-request was finished yesterday and the fix is now waiting to be merged :) |
This fixes issue #1209, making it so that we append new keys to the users known_hosts file instead of overwriting it. Additionally: - Added a testcase that should discover this breaking in the future. - Broke out the append functionality into a "append_hostkey" function, making it so we don't needlessly reuse code for AskPolicy and - AcceptNewPolicy. - Linting actually correct this time. This commit changes the behaviour when adding a new key to known_hosts: Previous behaviour when adding a new key: - Create a paramiko.HostKeys object - Read the users known_hosts file - Add the new key to the object - Save the object, overwriting the users host_keys file. New behaviour: - Create a paramiko.HostKeyEntry object using the new hostname and corresponding key. - Append this key to the existing known_hosts file.
@pikeas , the request was successfully merged and this issue should now be fixed :) |
Thanks for fixing this! |
Is this fix in the latest release? I just had my known_hosts file eaten alive. Thank goodness for backups |
Describe the bug
Pyinfra deletes lines from
~/.ssh/known_hosts
.To Reproduce
https://github.com/pyinfra-dev/pyinfra/blob/3.x/pyinfra/connectors/sshuserclient/client.py#L43-L49:
This happens because of the way Paramiko parses the file - it throws away comment lines, newlines, and lines it doesn't understand.
https://github.com/paramiko/paramiko/blob/main/paramiko/hostkeys.py#L89-L97:
So, when Pyinfra calls
hosts_keys.save(...)
, this doesn't just add a new entry, it actually overwrites the file with the contents as parsed by Paramiko. This is unexpected - I've been fighting disappearing contents in known_hosts for years and had no idea it was caused by PyInfra.Expected behavior
Pyinfra should either never modify known_hosts, or only add new hosts.
I understand the intent here, to make running PyInfra as convenient as possible. But IMO this behavior is a foot-gun for infrastructure maintainers and should be changed. It's frustrating to lose formatting, painful to lose comments, and breaks general SSH usage when
@cert-authority
(not yet support by Paramiko) silently disappears.The text was updated successfully, but these errors were encountered: