Fix segfault with SSH agent and null username

omus · omus · commit be167aa08157 · 2017-09-09T15:23:09.000-05:00
diff --git a/base/libgit2/callbacks.jl b/base/libgit2/callbacks.jl
@@ -57,7 +57,7 @@ function authenticate_ssh(libgit2credptr::Ptr{Ptr{Void}}, p::CredentialPayload,
     end
 
     # first try ssh-agent if credentials support its usage
-    if p.use_ssh_agent == 'Y'
+    if p.use_ssh_agent == 'Y' && username_ptr != Cstring(C_NULL)
         err = ccall((:git_cred_ssh_key_from_agent, :libgit2), Cint,
                     (Ptr{Ptr{Void}}, Cstring), libgit2credptr, username_ptr)
         if err == 0
diff --git a/test/libgit2.jl b/test/libgit2.jl
@@ -1902,6 +1902,39 @@ mktempdir() do dir
             @test auth_attempts == 2
         end
 
+        @testset "SSH agent username" begin
+            url = "github.com:test/package.jl"
+
+            valid_key = joinpath(KEY_DIR, "valid")
+            username = "git"
+
+            ssh_empty_ex = quote
+                include($LIBGIT2_HELPER_PATH)
+                valid_cred = LibGit2.SSHCredentials($username, "", $valid_key, $(valid_key * ".pub"))
+                credential_loop(valid_cred, $url, Nullable(""), use_ssh_agent=true)
+            end
+
+            ssh_null_ex = quote
+                include($LIBGIT2_HELPER_PATH)
+                valid_cred = LibGit2.SSHCredentials($username, "", $valid_key, $(valid_key * ".pub"))
+                credential_loop(valid_cred, $url, Nullable(), use_ssh_agent=true)
+            end
+
+            challenges = [
+                "Username for 'github.com':" => "\x04",
+            ]
+
+            err, auth_attempts = challenge_prompt(ssh_empty_ex, challenges)
+            @test err == abort_prompt  # TODO: `eauth_error` when we can disable prompting
+            @test auth_attempts == 2
+
+            # A null username_ptr passed into `git_cred_ssh_key_from_agent` can cause a
+            # segfault.
+            err, auth_attempts = challenge_prompt(ssh_null_ex, challenges)
+            @test err == abort_prompt  # TODO: `eauth_error` when we can disable prompting
+            @test auth_attempts == 1
+        end
+
         @testset "SSH explicit credentials" begin
             url = "git@github.com:test/package.jl"
 
