Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

handling sudo interactive password requests

See original GitHub issue

Any guidance on how to go about executing sudo on the remote server and dealing with interactive password prompts? Ideally I’d like to do the prompting on the client side and allow interactive authentication to work (basically shooting for how Fabric does this in python), but I’m not sure if A) I need to force tty creation during the connection (and if so, how would I do that as I don’t see any connection config option) or B) whether I can specify an “askpass” program on the remote side and somehow wire that up to the ssh2 session or C) something else entirely or D) this is sufficiently nontrivial that I should consider alternatives.

As I would mostly expect, currently running a remote sudo results in:

sudo: no tty present and no askpass program specified
Sorry, try again.
sudo: no tty present and no askpass program specified
Sorry, try again.
sudo: no tty present and no askpass program specified
Sorry, try again.
sudo: 3 incorrect password attempts

Issue Analytics

State:
Created 11 years ago
Comments:9 (3 by maintainers)

Top GitHub Comments

1reaction

mscdexcommented, Mar 17, 2013

I’ve added the ability to allocate a pseudo-tty for exec() in f4b2aaa. Use it like so:

// use default pty settings
conn.exec('sudo uptime', { pty: true }, function(err, stream) {   });

// use specific pty settings
conn.exec('sudo uptime', { pty: { cols: 1000 } }, function(err, stream) {   });

As a result of this change, environments are now set by:

conn.exec('sudo uptime', { env: { foo: 'bar' } }, function(err, stream) {   });

You’ll also have to look for the sudo prompt. Example:

conn.exec('sudo ls /', { pty: true }, function(err, stream) {
  if (err) throw err;
  var b = '', pwsent = false;
  stream.on('data', function(data) {
    if (!pwsent) {
      b += data.toString();
      if (b.substr(-2) === ': ') {
        pwsent = true;
        stream.write('mypassword\n');
        b = '';
      }
    } else
     console.log(data.toString());
  });
  stream.on('exit', function(code, signal) {
    console.log('>> exited with ' + code + ', ' + signal);
    conn.end();
  });
});

0reactions

zhy1commented, Dec 2, 2019

very good.