U W[?@sdZddlZddlZddlZddlZddlZddlZddlZddlZddl Z ddl m Z ddl m Z ddlmZddlmZddlmZddlmZmZmZdd lmZmZmZmZmZmZdd lm Z m!Z!m"Z"dd l#m$Z$dd l%m&Z&dd l'm(Z(m)Z)ddl*m+Z,m-Z-z ddl.Z.Wne/k r.dZ.YnXe e$j0GdddZ1GdddeZ2e e GdddZ3e e!GdddZ4e e"GdddZ5GdddZ6e(7e4e2ej!e(7e3e2ej dS)z A UNIX SSH server. N) implementer)ttymodes) ConchUser) ConchError)lsLine)session forwarding filetransfer)FXF_READ FXF_WRITE FXF_APPEND FXF_CREAT FXF_TRUNCFXF_EXCL)ISession ISFTPServer ISFTPFile)portal)ProcessExitedAlready) componentslog) _bytesChr nativeStringc@seZdZddZdS) UnixSSHRealmcGst|}|d||jfSNr) UnixConchUserlogout)selfusernameZmindZ interfacesuserr 4/usr/lib/python3/dist-packages/twisted/conch/unix.py requestAvatar+szUnixSSHRealm.requestAvatarN)__name__ __module__ __qualname__r"r r r r!r)src@sTeZdZddZddZddZddZd d Zd d Zd dZ ddZ ddZ dS)rcCst|||_t|j|_|jdg}tD]\}}}}||kr2||q2||_ i|_ |j t jtjd|j dtjidS)N)ssessions direct-tcpipssftp)r__init__rpwdgetpwnampwdDatagrpZgetgrallappend otherGroups listenersZ channelLookupupdaterZ SSHSessionrZopenConnectForwardingClientZsubsystemLookupr ZFileTransferServer)rrlZ groupnameZpasswordgidZuserlistr r r!r'3s"   zUnixConchUser.__init__cCs|jddS)Nr*rr r r!getUserGroupIdEszUnixConchUser.getUserGroupIdcCs|jSN)r-r5r r r!getOtherGroupsIszUnixConchUser.getOtherGroupscCs |jdS)Nr4r5r r r! getHomeDirMszUnixConchUser.getHomeDircCs |jdS)Nr4r5r r r!getShellQszUnixConchUser.getShellcCst|\}}ddlm}z*|j|j|t|j||ftj|d}WnYdSX||j ||f<|dkr| d}dt d|fSdSdS)Nrreactor)Z interfacer2z>L) runpackGlobal_tcpip_forwardtwisted.internetr> _runAsUserZ listenTCPZSSHListenForwardingFactoryconnZ SSHListenServerForwardingChannelr.getHoststructpack)rdata hostToBind portToBindr>listenerr r r!global_tcpip_forwardUs(   z"UnixConchUser.global_tcpip_forwardcCsDt|\}}|j||fd}|s(dS|j||f=||jdS)Nrr?)rr@r.getrB stopListening)rrGrHrIrJr r r!global_cancel_tcpip_forwardks  z)UnixConchUser.global_cancel_tcpip_forwardcCs:|jD]}||jq td|jt|jfdS)Nzavatar %s logging out (%i))r.valuesrBrMrmsgrlen)rrJr r r!ruszUnixConchUser.logoutc Ost}t}t}|\}}tdtdt|t|t|z t |}Wn t k r|||fg}YnXzP|D]F} | d} t | dkr| dpd}t | dkr| dpi}| ||} qW5tdtdt|t|t|X| S)Nrr?r r2) osgeteuidgetegid getgroupsr6setegidseteuid setgroupsr8iter TypeErrorrQ) rfargskweuidegidgroupsuidr1ifuncrr r r!rB~s2           zUnixConchUser._runAsUserN) r#r$r%r'r6r8r:r<rKrNrrBr r r r!r1s  rc@sheZdZdddZdddZddZd d Zd d Zd dZddZ ddZ ddZ ddZ ddZ dS)SSHSessionForUnixConchUserNcCs:|dkrddlm}||_||_ddi|_d|_d|_dS)a Construct an C{SSHSessionForUnixConchUser}. @param avatar: The L{UnixConchUser} for whom this is an SSH session. @param reactor: An L{IReactorProcess} used to handle shell and exec requests. Uses the default reactor if None. Nrr=PATHz/bin:/usr/bin:/usr/local/bin)rAr>_reactoravatarenvironptyptyTuple)rrhr>r r r!r's  z#SSHSessionForUnixConchUser.__init__r?c CstsdS|jjjjj}tdt |\}|j ddd}t }t |}t ||d}t }|rrtjpvtj|_|jj|_||_|dd|_||f|_|r|jj|_t|d|_|dddf|_ttj} | || ttj } | || dS)NLr2r9g.Ar)!utmprhrC transportgetPeerhostrEZunpacksocketZ inet_atonrktimeintZ UtmpEntryZ USER_PROCESSZ DEAD_PROCESSZut_typerjpidZut_pidZut_lineZut_idZut_tvrZut_userZ gethostbyaddrZut_hostZ ut_addr_v6Z UtmpRecordZ UTMP_FILEZ pututlineZendutentZ WTMP_FILE) rZloggedInZ ipAddressZpackedIpZttyNamett1t2entryabr r r! addUTMPEntrys0       z'SSHSessionForUnixConchUser.addUTMPEntrycCsF||jd<||_||_t\}}t|}||jd<|||f|_dS)NZTERMZSSH_TTY)riwinSizemodesrjopenptyrRttynamerk)rZtermZ windowSizer~ZmasterZslaverr r r!getPtys    z!SSHSessionForUnixConchUser.getPtyc Cs8|jstdtd|j\}}|j}|j}|jj|j d<||j d<||j d<t j |}|jj jj}|jj jj}d|j|j|jf|j d<||jj||d|fg|j ||||jd |_|t|jtjtjd |j|j r|!|jj"|_#|j$|j_"|jj jj%d dS) Nz'tried to get shell without pty, failingzno ptyZUSERHOMEZSHELL%s %s %s SSH_CLIENTz-%sZusePTY4Hr?)r)&rkrrPrrhr6r:r<rrirRpathbasenamerCrorprDrqportgetPtyOwnershiprg spawnProcessrjr|fcntlioctlfilenotty TIOCSWINSZrErFr}r~setModeswriteoldWrite _writeHack setTcpNoDelay) rprotorar1homeDirshellZ shellExecpeerrqr r r! openShellsJ          z$SSHSessionForUnixConchUser.openShellc Cs|j\}}|j}|jp$d}||jd<|d|f}|jjjj}|jjjj} d|j |j | j f|jd<|j r| |j j||||j||||j pdd|_|j r||jr||jjjjddS) Nz/bin/shrz-crrrrr?)rhr6r:r<rirCrorprDrqrrkrrgrrjr|r~rr) rrcmdrar1rrZcommandrrqr r r! execCommands:    z&SSHSessionForUnixConchUser.execCommandc Cs|t|jdd}|j\}}tt}}tdtdzt |jd||W5t|t|XdS)Nr2r9r) rRstatrkrhr6rSrTrVrWchown)rZttyGidrar1r^r_r r r!rs   z*SSHSessionForUnixConchUser.getPtyOwnershipc Cs|j}t|}|jD]\}}|tjkr.qtj|}t|dkr|\}}tt|sXqt t|}|rx|||B||<q|||@||<q|dkrt td|f|tj <q|dkrt td|f|tj <qtt|sqt t|}t ||tj |<qt|tj|dS)Nr2OSPEEDzB%sISPEED)rjr tcgetattrrr~rZTTYMODESrQhasattrgetattrrrchrZCCZ tcsetattrZTCSANOW) rrjattrmodeZ modeValueZttyModeflagZttyAttrZttyvalr r r!rs.       z#SSHSessionForUnixConchUser.setModescCs|jr|jdSr7)rjZ closeStdinr5r r r! eofReceived0sz&SSHSessionForUnixConchUser.eofReceivedc Cs|jr@tj|jdr@t|jdd}t|jdd||jrz|jdWntt fk rnYnX|j | dt ddS)Nr2r9rZHUPz shell closed)rkrRrexistsrrrjZ signalProcessOSErrorrZloseConnectionr|rrP)rZttyGIDr r r!closed5s  z!SSHSessionForUnixConchUser.closedcCs,||_t|jtjtjd|jdS)Nr)r) r}rrrjrrrrErF)rr}r r r! windowChangedCs z(SSHSessionForUnixConchUser.windowChangedcCs\|jdk rNt|jd}|tj@sN|tj@rN|jjj ddt || |dS)zF Hack to send ignore messages when we aren't echoing. Nr&) rjrrrZECHOZICANONrhrCroZ sendIgnorerQr)rrGrr r r!rJs  z%SSHSessionForUnixConchUser._writeHack)N)r?)r#r$r%r'r|rrrrrrrrrr r r r!res    rec@seZdZddZddZddZddZd d Zd d Zd dZ ddZ ddZ ddZ ddZ ddZddZddZddZdd Zd!d"Zd#S)$SFTPServerForUnixConchUsercCs ||_dSr7)rh)rrhr r r!r'Xsz#SFTPServerForUnixConchUser.__init__cCsjd|kr&d|kr&t||d|dd|kr>t||dd|krfd|krft||d|dfdS)zl NOTE: this function assumes it runs as the logged-in user: i.e. under _runAsUser() rar1 permissionsatimemtimeN)rRrchmodutimerrattrsr r r! _setAttrs\s z$SFTPServerForUnixConchUser._setAttrscCs&|j|j|j|jt|jt|jdS)N)sizerar1rrr)st_sizest_uidst_gidst_modertst_atimest_mtimersr r r! _getAttrsisz$SFTPServerForUnixConchUser._getAttrscCs"|j}tjt|jt|Sr7)rhr:rRrjoinr)rrhomer r r!_absPathts z#SFTPServerForUnixConchUser._absPathcCsiSr7r )rZ otherVersionextDatar r r! gotVersionysz%SFTPServerForUnixConchUser.gotVersioncCst|||||Sr7) UnixSFTPFiler)rfilenameflagsrr r r!openFile}sz#SFTPServerForUnixConchUser.openFilecCs||}|jtj|Sr7)rrhrBrRremove)rrr r r! removeFiles z%SFTPServerForUnixConchUser.removeFilecCs&||}||}|jtj||Sr7)rrhrBrRrename)rZoldpathnewpathr r r! renameFiles  z%SFTPServerForUnixConchUser.renameFilecCs,||}|jtj|ff|j||ffgSr7)rrhrBrRmkdirrrr r r! makeDirectorys z(SFTPServerForUnixConchUser.makeDirectorycCs||}|jtj|dSr7)rrhrBrRrmdirrrr r r!removeDirectorys z*SFTPServerForUnixConchUser.removeDirectorycCst|||Sr7)UnixSFTPDirectoryrrr r r! openDirectorysz(SFTPServerForUnixConchUser.openDirectorycCs:||}|r |jtj|}n|jtj|}||Sr7)rrhrBrRrlstatr)rrZ followLinksrr r r!getAttrss  z#SFTPServerForUnixConchUser.getAttrscCs ||}|j|j||dSr7)rrhrBrrr r r!setAttrss z#SFTPServerForUnixConchUser.setAttrscCs||}|jtj|Sr7)rrhrBrRreadlinkrr r r!readLinks z#SFTPServerForUnixConchUser.readLinkcCs&||}||}|jtj||Sr7)rrhrBrRsymlink)rZlinkPathZ targetPathr r r!makeLinks  z#SFTPServerForUnixConchUser.makeLinkcCstj||Sr7)rRrrealpathrrr r r!realPathsz#SFTPServerForUnixConchUser.realPathcCstdSr7NotImplementedError)rZextNamerr r r!extendedRequestsz*SFTPServerForUnixConchUser.extendedRequestN)r#r$r%r'rrrrrrrrrrrrrrrrr r r r!rVs"   rc@s<eZdZddZddZddZddZd d Zd d Zd S)rcCs||_d}|t@tkr(|t@dkr(tj}|t@tkrF|t@dkrFtj}|t@tkrd|t@tkrdtj}|t@tkrz|tjO}|t @t kr|tj O}|t @t kr|tj O}|t @t kr|tjO}d|kr|d}|d=nd}|jtj|||}|r|j|j||||_dS)Nrri)serverr r rRO_RDONLYO_WRONLYO_RDWRr O_APPENDr O_CREATrO_TRUNCrO_EXCLrhrBopenrfd)rrrrrZ openFlagsrrr r r!r's0        zUnixSFTPFile.__init__cCs|jjtj|jSr7)rrhrBrRcloserr5r r r!rszUnixSFTPFile.closecCs,|jjtj|j|dfftj|j|ffgSr)rrhrBrRlseekrread)roffsetZlengthr r r! readChunks zUnixSFTPFile.readChunkcCs,|jjtj|j|dfftj|j|ffgSr)rrhrBrRrrr)rrrGr r r! writeChunks zUnixSFTPFile.writeChunkcCs |jjtj|j}|j|Sr7)rrhrBrRfstatrrrr r r!rszUnixSFTPFile.getAttrscCstdSr7r)rrr r r!rszUnixSFTPFile.setAttrsN) r#r$r%r'rrrrrr r r r!rs rc@s0eZdZddZddZddZeZddZd S) rcCs"||_|jtj||_||_dSr7)rrhrBrRlistdirfilesdir)rrZ directoryr r r!r'szUnixSFTPDirectory.__init__cCs|Sr7r r5r r r!__iter__szUnixSFTPDirectory.__iter__cCslz|jd}Wntk r(tYn@X|jjtjtj |j |}t ||}|j |}|||fSdSr)rpop IndexError StopIterationrrhrBrRrrrrrr)rr[rZlongnamerr r r!__next__s   zUnixSFTPDirectory.__next__cCs g|_dSr7)rr5r r r!rszUnixSFTPDirectory.closeN)r#r$r%r'rrnextrr r r r!rs  r)8__doc__rr+rRrjr(rrrErsrZzope.interfacerZ twisted.conchrZtwisted.conch.avatarrZtwisted.conch.errorrZtwisted.conch.lsrZtwisted.conch.sshrrr Ztwisted.conch.ssh.filetransferr r r r rrZtwisted.conch.interfacesrrrZ twisted.credrZtwisted.internet.errorrZtwisted.pythonrrZtwisted.python.compatrrrrn ImportErrorZIRealmrrrerrrZregisterAdapterr r r r!s\          k:f7