Fix escaping in WildcardHostMatcher (#382)

hierynomus · web-flow · commit a71a7d7d330e · 2017-11-13T15:49:48.000+01:00
* Escape '[' and ']' in WildcardHostMatcher * Anchoring regex to match entire string (Fixes #381)
diff --git a/src/main/java/com/hierynomus/sshj/transport/verification/KnownHostMatchers.java b/src/main/java/com/hierynomus/sshj/transport/verification/KnownHostMatchers.java
@@ -135,7 +135,7 @@ private static class WildcardHostMatcher implements HostMatcher {
         private final Pattern pattern;
 
         public WildcardHostMatcher(String hostEntry) {
-            this.pattern = Pattern.compile(hostEntry.replace(".", "\\.").replace("*", ".*").replace("?", "."));
+            this.pattern = Pattern.compile("^" + hostEntry.replace("[", "\\[").replace("]", "\\]").replace(".", "\\.").replace("*", ".*").replace("?", ".") + "$");
         }
 
         @Override
diff --git a/src/main/java/net/schmizz/sshj/transport/verification/OpenSSHKnownHosts.java b/src/main/java/net/schmizz/sshj/transport/verification/OpenSSHKnownHosts.java
@@ -360,7 +360,7 @@ private String getKeyString() {
         }
 
         protected String getHostPart() {
-            return  hostPart;
+            return hostPart;
         }
     }
 
diff --git a/src/test/groovy/com/hierynomus/sshj/transport/verification/KnownHostMatchersTest.groovy b/src/test/groovy/com/hierynomus/sshj/transport/verification/KnownHostMatchersTest.groovy
@@ -49,6 +49,11 @@ class KnownHostMatchersSpec extends Specification {
         "aaa.b??.com" | "aaa.bccd.com" | false
         "|1|F1E1KeoE/eEWhi10WpGv4OdiO6Y=|3988QV0VE8wmZL7suNrYQLITLCg=" | "192.168.1.61" | true
         "|1|F1E1KeoE/eEWhi10WpGv4OdiO6Y=|3988QV0VE8wmZL7suNrYQLITLCg=" | "192.168.2.61" | false
+        "[aaa.bbb.com]:2222" | "aaa.bbb.com" | false
+        "[aaa.bbb.com]:2222" | "[aaa.bbb.com]:2222" | true
+        "[aaa.?bb.com]:2222" | "[aaa.dbb.com]:2222" | true
+        "[aaa.?xb.com]:2222" | "[aaa.dbb.com]:2222" | false
+        "[*.bbb.com]:2222" | "[aaa.bbb.com]:2222" | true
         yesno = match ? "" : "no"
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -135,7 +135,7 @@ private static class WildcardHostMatcher implements HostMatcher {`
`135`	`135`	`private final Pattern pattern;`
`136`	`136`
`137`	`137`	`public WildcardHostMatcher(String hostEntry) {`
`138`		`- this.pattern = Pattern.compile(hostEntry.replace(".", "\\.").replace("", ".").replace("?", "."));`
	`138`	`+ this.pattern = Pattern.compile("^" + hostEntry.replace("[", "\\[").replace("]", "\\]").replace(".", "\\.").replace("", ".").replace("?", ".") + "$");`
`139`	`139`	`}`
`140`	`140`
`141`	`141`	`@Override`
Original file line number	Diff line number	Diff line change
`@@ -360,7 +360,7 @@ private String getKeyString() {`
`360`	`360`	`}`
`361`	`361`
`362`	`362`	`protected String getHostPart() {`
`363`		`- return hostPart;`
	`363`	`+ return hostPart;`
`364`	`364`	`}`
`365`	`365`	`}`
`366`	`366`
Original file line number	Diff line number	Diff line change
`@@ -49,6 +49,11 @@ class KnownHostMatchersSpec extends Specification {`
`49`	`49`	`"aaa.b??.com" \| "aaa.bccd.com" \| false`
`50`	`50`	`"\|1\|F1E1KeoE/eEWhi10WpGv4OdiO6Y=\|3988QV0VE8wmZL7suNrYQLITLCg=" \| "192.168.1.61" \| true`
`51`	`51`	`"\|1\|F1E1KeoE/eEWhi10WpGv4OdiO6Y=\|3988QV0VE8wmZL7suNrYQLITLCg=" \| "192.168.2.61" \| false`
	`52`	`+ "[aaa.bbb.com]:2222" \| "aaa.bbb.com" \| false`
	`53`	`+ "[aaa.bbb.com]:2222" \| "[aaa.bbb.com]:2222" \| true`
	`54`	`+ "[aaa.?bb.com]:2222" \| "[aaa.dbb.com]:2222" \| true`
	`55`	`+ "[aaa.?xb.com]:2222" \| "[aaa.dbb.com]:2222" \| false`
	`56`	`+ "[*.bbb.com]:2222" \| "[aaa.bbb.com]:2222" \| true`
`52`	`57`	`yesno = match ? "" : "no"`
`53`	`58`	`}`
`54`	`59`	`}`