Handle simple non password requests in USER AUTH INFO REQUEST

deligatedgeek · deligatedgeek · commit 2479a6ef46d9 · 2024-03-20T16:48:26.000Z
diff --git a/lib/net/ssh/authentication/methods/keyboard_interactive.rb b/lib/net/ssh/authentication/methods/keyboard_interactive.rb
@@ -50,13 +50,21 @@ def authenticate(next_service, username, password = nil)
                 message.read_long.times do
                   text = message.read_string
                   echo = message.read_bool
-                  password_to_send = password || (prompter && prompter.ask(text, echo))
-                  responses << password_to_send
-                end
 
-                # if the password failed the first time around, don't try
-                # and use it on subsequent requests.
-                password = nil
+                  # if request is for password, handle as normal
+                  # otherwise grab yes keyword from the prompt and enter it.
+                  if text.match(/[Pp]assword/)
+                    password_to_send = password || (prompter && prompter.ask(text, echo))
+
+                    # if the password failed the first time around, don't try
+                    # and use it on subsequent requests. Moved into the if/else
+                    password = nil
+                  elsif response = text.match(/(yes|y)\//i)
+                    debug { " response: #{response}"}
+                    password_to_send = response[1]
+                  end
+                    responses << password_to_send
+                end
 
                 msg = Buffer.from(:byte, USERAUTH_INFO_RESPONSE, :long, responses.length, :string, responses)
                 send_message(msg)
