7gjdZddlZddlZddlZddlZddlZddlZddlmZddl m Z ddl m Z d\Z Z ddl Z n#e$r ZeZYdZ[ndZ[wwxYwddlmZmZd ZGd d Zd ZGd dZGddeZdS)z2 Configuration file (aka ``ssh_config``) support. N)sha1)StringIO)partial)NN)CouldNotCanonicalizeConfigParseErrorceZdZdZejdZgddggdgdgdgdd Zd Ze d Z e d Z e d Z dZ dZddZdZdZdZdZdZdZdZdZdZdZdS) SSHConfiga Representation of config information as stored in the format used by OpenSSH. Queries can be made via `lookup`. The format is described in OpenSSH's ``ssh_config`` man page. This class is provided primarily as a convenience to posix users (since the OpenSSH format is a de-facto standard on posix) but should work fine on Windows too. .. versionadded:: 1.6 z(\w+)(?:\s*=\s*|\s+)(.+))%C%h%l%L%n%p%r%ur )r ~%dr rrr)rr rr)r rr) r rr rrrrrr) controlpathhostname identityfile proxycommand proxyjump match-execcg|_dS)a Create a new OpenSSH config object. Note: the newer alternate constructors `from_path`, `from_file` and `from_text` are simpler to use, as they parse on instantiation. For example, instead of:: config = SSHConfig() config.parse(open("some-path.config") you could:: config = SSHConfig.from_file(open("some-path.config")) # Or more directly: config = SSHConfig.from_path("some-path.config") # Or if you have arbitrary ssh_config text from some other source: config = SSHConfig.from_text("Host foo\n\tUser bar") N)_config)selfs I/var/www/html/syslog/venv/lib/python3.11/site-packages/paramiko/config.py__init__zSSHConfig.__init__Hs& cF|t|S)zg Create a new, parsed `SSHConfig` from ``text`` string. .. versionadded:: 2.7 ) from_filer)clstexts r from_textzSSHConfig.from_text]s}}Xd^^,,,r!c~t|5}||cdddS#1swxYwYdS)zr Create a new, parsed `SSHConfig` from the file found at ``path``. .. versionadded:: 2.7 N)openr#)r$pathflos r from_pathzSSHConfig.from_pathfs$ZZ &3==%% & & & & & & & & & & & & & & & & & &s 266cD|}|||S)zp Create a new, parsed `SSHConfig` from file-like object ``flo``. .. versionadded:: 2.7 )parse)r$r*objs rr#zSSHConfig.from_fileps#cee # r!cdgid}|D]}|}|r|dr/tj|j|}|s"t d||d}|d}|dvrW|j |dii}|d kr| ||d <| ||d <|d kr%|d kr d |d|</|dr| dr |dd}|dvr;||dvr#|d| ||g|d|<||dvr ||d|<|j |d S)z Read an OpenSSH config from the given file object. :param file_obj: a file-like object to read the config file from *)hostconfig#zUnparsable line {}r)r1matchr2r1matchesrnoneN")r localforward remoteforward)strip startswithrer5SETTINGS_REGEXrformatgrouplowerrappend _get_hosts _get_matchesendswith)rfile_objcontextliner5keyvalues rr-zSSHConfig.parse{s 5B/// 3/ 3D::<z$SSHConfig._lookup..s:((AWS\,A,A,A,A,A,A((r!) SSHConfigDictr_pattern_matchesrV _does_matchitemsextend_expand_variables)rrr[rSrTrHrKrJs ` @rrUzSSHConfig._lookupsQ ?#ooG|  G%%gkk&"&=&=xHH ##KK 2..  %h/5577   Ug%% 05/@588eGCLLN**CL''(((((#((((   @,,Wh??Gr!c*d}|D]d}d||}t||}| |d}n+ tj|}n#tj$rYnwxYw|r|cSe|dddkr|St |)ag Return canonicalized version of ``hostname``. :param str hostname: Target hostname. :param options: An `SSHConfigDict` from a previous lookup pass. :param domains: List of domains (e.g. ``["paramiko.org"]``). :returns: A canonicalized hostname if one was found, else ``None``. .. versionadded:: 2.7 Fz{}.{}NrcanonicalizefallbacklocalrN)r@_addressfamily_host_lookupsocket gethostbynamegaierrorrVr)rrr[r^founddomain candidatefamily_specifics rrZzSSHConfig.canonicalizes ! !Fx88I8GLLO*(*"0;;EED !!    ! ;;2E : :e C CO#8,,,sAA A clt}|jD]}||d|S)z Return the set of literal hostnames defined in the SSH config (both explicit hostnames and wildcard entries). r1)setrupdate)rhostsentrys r get_hostnameszSSHConfig.get_hostnamesEs< \ ( (E LLv ' ' ' ' r!ct|dr|d}d}|D]N}|dr tj||ddrdStj||rd}O|S)NrY,F!rT)hasattrrYr=fnmatch)rpatternstargetr5patterns rrhzSSHConfig._pattern_matchesOs 8W % % +~~c**H  G!!#&& 7? ,, uu11  r!c:g}|dd}tj}|rx|d} d} |dd} |dd} | d| d}} | dkr||| rdS| dkr|} n| d krd S| d kr| p|}|||} n| d kr|||} n| dkr| p|}|||} ne| d kr|||} nH| dkrB|||d|}tttj |dd j } | || | rdS| | |x|S)NrrusertypeparamrSFrTallTr1 originalhost localuserexecrstdout)hidewarn) getpassgetuserpoprV _should_failrh _tokenizeinvokeinvoke_import_errorrunokrC)r match_listtarget_hostnamerSrTr[matched candidateslocal_usernamerupassedconfigured_hostconfigured_usertype_rhostvalrexec_cmds rrizSSHConfig._does_match`s]  **. &"q))IF&kk*d;;O%kk&$77O$V,i.@5E ##$$Y ::! 5%t&)<_..ug>>.((..uoFF&&8...ud;;+%%..unEE&>>_lE >--H8$GGGJ!d&7&7 &J&J!u NN9 % % %]. &`r!c|dr|n| S)Nnegaterc)r would_passrus rrzSSHConfig._should_fails&x0Dzz*nDr!c ||}|s|S|}|dkr|d|}d|vr |d}nt}tj}d|vr |d} n|} t jdd} t|| } tj d} | |zt|z| z} t| | || | ||| || d }|}|D]-\}}||vr ||t%|}.|S)a Tokenize a string based on current config/hostname data. :param config: Current config data. :param target_hostname: Original target connection hostname. :param key: Config key being tokenized (used to filter token list). :param value: Config value being tokenized. :returns: The tokenized version of the input ``value`` string. rportrrQrr) r rr rrrrrrr)_allowed_tokensrVSSH_PORTrrrp gethostnamerYLazyFqdnosr) expanduserreprrencode hexdigestrjreplacestr)rr2rrJrKallowed_tokensconfigured_hostnamerr remoteuserlocal_hostname local_fqdnhomedirtohash replacements tokenizedfindrs rrzSSHConfig._tokenizes--c22 L. *  "(**Z9L"M"M  V  &>DDD   V  JJJ+--33C88;fn55 '$$S))/1DJJ>Kv}}''1133% "  $ )//11 > >MD'>))!))$G ==IIr!c8|j|gS)aJ Given config ``key``, return list of token strings to tokenize. .. note:: This feels like it wants to eventually go away, but is used to preserve as-strict-as-possible compatibility with OpenSSH, which for whatever reason only applies some tokens to some config keys. )TOKENS_BY_CONFIG_KEYrVrrJs rrzSSHConfig._allowed_tokenss(,,S"555r!c|D]}|| t|j|||}t||tr0t ||D]\}}|||||<m|||||<|S)aA Return a dict of config options with expanded substitutions for a given original & current target hostname. Please refer to :doc:`/api/config` for details. :param dict config: the currently parsed config :param str hostname: the hostname whose config is being looked up )rr isinstancelist enumerate)rr2rk tokenizerirKs rrlzSSHConfig._expand_variabless 1 1Aay KKI&)T** 1 )&) 4 444HAu#,9U#3#3F1IaLL4&IfQi00q  r!c tj|S#t$r#td|wxYw)z> Return a list of host_names from host value. zUnparsable host {})shlexrY ValueErrorrr@)rr1s rrDzSSHConfig._get_hostssT F;t$$ $ F F F"#7#>#>t#D#DEE E Fs -Ac g}tj|}|rdddd}|d}|drd|d<|dd}||d <|d vr||`|s"t d ||d|d <|||d |D}d|vrd tt fd|tt fd|}}d}t|rd}n2d|vr.| d| dkrd}|t ||S)z Parse a specific Match config line into a list-of-dicts for its values. Performs some parse-time validation as well. NF)rrrrrTrrr)rrSrTz'Missing parameter to Match '{}' keywordrcg|] }|d S)rrc)rdres r z*SSHConfig._get_matches..s///!AfI///r!r)rrSc |vSrbrcre allowables rz(SSHConfig._get_matches.."s a9nr!c |vSrbrcrs rrz(SSHConfig._get_matches..#s ay&8r!z>Match does not allow 'all' mixed with anything but 'canonical'rSz-Match does not allow 'all' before 'canonical') rrYrr=rCrr@rfilteranyindex) rr5r6tokensrkeywordsrbaderrrs @rrEzSSHConfig._get_matchess U## "!DEBBEJJqMME$$ ""&habb !E&M555u%%% &=DDUKK$ZZ]]E'N NN5 ! ! !# "(0/w/// H  ,IV4444h??@@V8888(CCDDBC3xx FV""rxx '<'compiler?rr classmethodr&r+r#r-r_rUrZr|rhrirrrrlrDrErcr!rr r .s RZ ;<>@@N   V # #^F!              ?     sABBBc eZdZdZddZdZdS)rz7 Returns the host's fqdn on request as string. Nc0d|_||_||_dSrb)fqdnr2r1)rr2r1s rr zLazyFqdn.__init__Ys   r!c|jQd}t|j|j}||D]}|\}}}}}|rd|vr|}n|t j}||_|jS)NrQ)rror1r2rpgetfqdn) rrresultsresafsocktypeproto canonnamesas r__str__zLazyFqdn.__str__^s 9 D0DKHHG""C9<6B%B SI%5%5(|~''DIyr!rb)rrrrr rrcr!rrrTsA r!rceZdZdZdZdZdS)rga A dictionary wrapper/subclass for per-host configuration structures. This class introduces some usage niceties for consumers of `SSHConfig`, specifically around the issue of variable type conversions: normal value access yields strings, but there are now methods such as `as_bool` and `as_int` that yield casted values instead. For example, given the following ``ssh_config`` file snippet:: Host foo.example.com PasswordAuthentication no Compression yes ServerAliveInterval 60 the following code highlights how you can access the raw strings as well as usefully Python type-casted versions (recalling that keys are all normalized to lowercase first):: my_config = SSHConfig() my_config.parse(open('~/.ssh/config')) conf = my_config.lookup('foo.example.com') assert conf['passwordauthentication'] == 'no' assert conf.as_bool('passwordauthentication') is False assert conf['compression'] == 'yes' assert conf.as_bool('compression') is True assert conf['serveraliveinterval'] == '60' assert conf.as_int('serveraliveinterval') == 60 .. versionadded:: 2.5 cp||}t|tr|S|dkS)a Express given key's value as a boolean type. Typically, this is used for ``ssh_config``'s pseudo-boolean values which are either ``"yes"`` or ``"no"``. In such cases, ``"yes"`` yields ``True`` and any other value becomes ``False``. .. note:: If (for whatever reason) the stored value is already boolean in nature, it's simply returned. .. versionadded:: 2.5 rN)rboolrB)rrJvals ras_boolzSSHConfigDict.as_bools73i c4  Jyy{{e##r!c,t||S)z Express given key's value as an integer, if possible. This method will raise ``ValueError`` or similar if the value is not int-appropriate, same as the builtin `int` type. .. versionadded:: 2.5 )rWrs ras_intzSSHConfigDict.as_ints49~~r!N)rrrrrrrcr!rrgrgzs=B$$$&     r!rg)rrrrr>rrphashlibrior functoolsrrr ImportErrore ssh_exceptionrrrr rordictrgrcr!rrs( (MMMMBAAAAAAA ~~~~~~~~B" " " J########L>>>>>D>>>>>s8A AA