x2go-commits November 2012

x2go-commits@lists.x2go.org

1 participants
327 discussions

x2goclient2.git - master (branch) updated: 8ba7c540ae8492624a753c3f32b1e49b658d4018
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via 8ba7c540ae8492624a753c3f32b1e49b658d4018 (commit) from c01d49db3afcbc028d704d3048f96fabee5827b4 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 8ba7c540ae8492624a753c3f32b1e49b658d4018 Author: Oleksandr Shneyder <o.shneyder(a)phoca-gmbh.de> Date: Mon Nov 12 16:48:39 2012 +0100 fixed using uninitialized brokerType in X2GoBroker ----------------------------------------------------------------------- Summary of changes: x2gobroker.cpp | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) The diff of changes is: diff --git a/x2gobroker.cpp b/x2gobroker.cpp index ba34837..555f8ff 100644 --- a/x2gobroker.cpp +++ b/x2gobroker.cpp @@ -40,15 +40,16 @@ X2GoBroker::X2GoBroker(QObject* parent): QObject(parent) url = QUrl( urlString); if(url.userName().length()>0) user=url.userName(); + if(urlString.indexOf("ssh://")==0) + brokerType=SSH; + else + brokerType=HTTP; if(!cfg->get_defaultNoBrockerAuth().get_value().toBool() && brokerType==HTTP) { getLoginData(); } - if(urlString.indexOf("ssh://")==0) + if(brokerType==SSH) { - brokerType=SSH; -#warning search for default key hier - sshConnection=new SshConnection(this, url.host(), url.port(), cfg->get_autoAddToKnownHosts().get_value().toBool(), user, pass, cfg->get_brokerSSHKey().get_value().toString(), cfg->get_defaultBrockerAutoLogin().get_value().toBool()); @@ -59,7 +60,6 @@ X2GoBroker::X2GoBroker(QObject* parent): QObject(parent) } else { - brokerType=HTTP; http=new QHttp ( this ); if ( urlString.indexOf ( "https://" ) ==0 ) http->setHost ( url.host(),QHttp::ConnectionModeHttps, @@ -337,7 +337,7 @@ QString X2GoBroker::getHexVal(const QByteArray& ba) } -void X2GoBroker::slotSshConnectionError(int, QString message) +void X2GoBroker::slotSshConnectionError(int, QString) { X2GoApplication::exit(-1); } hooks/post-receive -- x2goclient2.git (X2Go Client 2 (rewrite of x2goclient.git)) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "x2goclient2.git" (X2Go Client 2 (rewrite of x2goclient.git)).

1 0

x2goclient2.git - master (branch) updated: c01d49db3afcbc028d704d3048f96fabee5827b4
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via c01d49db3afcbc028d704d3048f96fabee5827b4 (commit) from ac2eeb5461e7f27cef3aaff705f690bf839bd8ce (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit c01d49db3afcbc028d704d3048f96fabee5827b4 Author: Oleksandr Shneyder <o.shneyder(a)phoca-gmbh.de> Date: Mon Nov 12 16:37:59 2012 +0100 implement class SshProcess. Add support for type SSH in X2GoBroker ----------------------------------------------------------------------- Summary of changes: sshconnection.cpp | 561 ++++++++++++++++++++++++++++++++++++++++++++++++++- sshconnection.h | 80 +++++--- sshprocess.cpp | 242 ++++++++++++++++++++++ sshprocess.h | 84 ++++++++ x2goapplication.cpp | 5 +- x2gobroker.cpp | 50 ++++- x2gobroker.h | 9 +- x2goclient2.pro | 2 + 8 files changed, 991 insertions(+), 42 deletions(-) create mode 100644 sshprocess.cpp create mode 100644 sshprocess.h The diff of changes is: diff --git a/sshconnection.cpp b/sshconnection.cpp index 878c66c..29f22cf 100644 --- a/sshconnection.cpp +++ b/sshconnection.cpp @@ -20,6 +20,7 @@ #include "sshconnection.h" #include "sshconnectionguiinteraction.h" +#include "sshprocess.h" #define PROXYTUNNELPORT 44444 @@ -68,6 +69,7 @@ SshConnection::SshConnection(QObject* parent, QString host, int port, bool accep sshProxyReady=false; nextPid=0; my_ssh_session=0; + connected=false; breakLoop=false; this->host=host; @@ -94,11 +96,71 @@ SshConnection::SshConnection(QObject* parent, QString host, int port, bool accep } } +//private constructor for reverse tunnel connections +SshConnection::SshConnection(QObject* parent, QString host, int port, bool acceptUnknownServers, + QString user, QString pass, QString key, bool autoLogin, bool krbLogin, + int remotePort, QString localHost, int localPort, SshProcess* creator, bool useProxy, + SshConnection::ProxyType proxyType, QString proxyServer, quint16 proxyPort, QString proxyLogin, + QString proxyPassword, QString proxyKey, bool proxyAutoLogin, int localProxyPort): QThread(parent) +{ +#if defined ( Q_OS_DARWIN ) + setStackSize (sizeof (char) * 1024 * 1024 * 2); +#endif + nextPid=0; + my_ssh_session=0; + tcpProxySocket = NULL; + tcpNetworkProxy = NULL; + sshProxy= NULL; + sshProxyReady=false; + breakLoop=false; + this->host=host; + this->port=port; + this->user=user; + this->pass=pass; + this->key=key; + this->autoLogin=autoLogin; + this->acceptUnknownServers=acceptUnknownServers; + this->useProxy=useProxy; + this->proxyServer=proxyServer; + this->proxyPort=proxyPort; + this->proxyLogin=proxyLogin; + this->proxyPassword=proxyPassword; + this->proxyType=proxyType; + this->proxyAutoLogin=proxyAutoLogin; + this->proxyKey=proxyKey; + this->localProxyPort=localProxyPort; + this->kerberos=krbLogin; + reverseTunnelLocalHost=localHost; + reverseTunnelLocalPort=localPort; + reverseTunnelCreator=creator; + reverseTunnel=true; + reverseTunnelRemotePort=remotePort; +#ifdef DEBUG + qDebug()<<"SshMasterConnection, instance "<<this<<" created (reverse tunnel)"; +#endif +} + + SshConnection::~SshConnection() { + disconnectFlagMutex.lock(); + disconnectSessionFlag=true; + disconnectFlagMutex.unlock(); +#ifdef DEBUG + qDebug()<<"SshConnection, instance "<<this<<" waiting for thread to finish"; +#endif + wait(); +#ifdef DEBUG + qDebug()<<"SshConnection, instance "<<this<<" thread finished"; +#endif + for(int i=processes.count()-1; i>=0; --i) + { + delete processes[i]; + } if(my_ssh_session) { ssh_free(my_ssh_session); + my_ssh_session=0; } qDebug()<<"ssh connection destructor"; } @@ -106,6 +168,7 @@ SshConnection::~SshConnection() void SshConnection::run() { disconnectSessionFlag=false; +#warning implement ssh proxy code if ( !isLibSshInited ) { if ( ssh_init() !=0 ) @@ -113,7 +176,7 @@ void SshConnection::run() QString err=tr ( "Can not initialize libssh" ); qDebug()<<err<<endl; guiInteractor->critical(err, MessageBox::OK); - emit signalError ( CONNECTION, err ); + emit signalError ( (int)CONNECTION, err ); return; } isLibSshInited=true; @@ -133,7 +196,7 @@ void SshConnection::run() QString err=tr ( "Can not create ssh session" ); qDebug()<<err<<endl; guiInteractor->critical(err, MessageBox::OK); - emit signalError ( CONNECTION, err); + emit signalError ( (int)CONNECTION, err); if ( reverseTunnel ) emit signalIoError ( reverseTunnelCreator, err, "" ); return; @@ -161,8 +224,9 @@ void SshConnection::run() QString message=tr ( "Can not connect to proxy server" ); qDebug()<<message<<endl; guiInteractor->critical(message, MessageBox::OK); - emit signalError ( CONNECTION, message ); + emit signalError ( (int)CONNECTION, message ); ssh_free ( my_ssh_session ); + my_ssh_session=0; return; } ssh_options_set( my_ssh_session, SSH_OPTIONS_FD, &proxysocket); @@ -176,10 +240,11 @@ void SshConnection::run() message+=" - "+err; qDebug()<<message; guiInteractor->critical(message, MessageBox::OK); - emit signalError (CONNECTION, message); + emit signalError ((int)CONNECTION, message); if ( reverseTunnel ) emit signalIoError ( reverseTunnelCreator, message, err); ssh_free ( my_ssh_session ); + my_ssh_session=0; return; } QString errMsg; @@ -187,9 +252,10 @@ void SshConnection::run() if ( state != SSH_SERVER_KNOWN_OK ) { guiInteractor->critical(errMsg, MessageBox::OK); - emit signalError (SERVERAUTH, errMsg); + emit signalError ((int)SERVERAUTH, errMsg); ssh_disconnect ( my_ssh_session ); ssh_free ( my_ssh_session ); + my_ssh_session=0; return; } @@ -201,6 +267,7 @@ void SshConnection::run() { qDebug()<<"SSH session connected"; emit signalConnectionOk(host); + connected=true; } else { @@ -211,11 +278,12 @@ void SshConnection::run() guiInteractor->critical(message, MessageBox::OK); message+=" - "+err+"\n"+authErrors.join ( "\n" ); qDebug()<<message; - emit signalError (USERAUTH, message ); + emit signalError ((int)USERAUTH, message ); if ( reverseTunnel ) emit signalIoError ( reverseTunnelCreator,message,err ); ssh_disconnect ( my_ssh_session ); ssh_free ( my_ssh_session ); + my_ssh_session=0; return; } @@ -241,6 +309,7 @@ void SshConnection::run() emit signalIoError ( reverseTunnelCreator, message, err ); ssh_disconnect ( my_ssh_session ); ssh_free ( my_ssh_session ); + my_ssh_session=0; return; } emit signalReverseListenOk ( reverseTunnelCreator ); @@ -303,7 +372,7 @@ int SshConnection::serverAuth(QString& errorMsg) return SSH_SERVER_ERROR; #ifdef DEBUG - x2goDebug<<"state: "<<state<<endl; + qDebug()<<"state: "<<state<<endl; #endif switch ( state ) @@ -466,12 +535,488 @@ bool SshConnection::userAuthWithPass() } + +void SshConnection::copy() +{ + for ( int i=copyRequests.size()-1; i>=0; --i ) + { + QStringList lst=copyRequests[i].dst.split ( "/" ); + QString dstFile=lst.last(); + lst.removeLast(); + QString dstPath=lst.join ( "/" ); +#ifdef DEBUG + qDebug()<<"dst path:"<<dstPath<<" file:"<<dstFile<<endl; +#endif + ssh_scp scp=ssh_scp_new ( my_ssh_session, SSH_SCP_WRITE|SSH_SCP_RECURSIVE, dstPath.toAscii() ); + if ( scp == NULL ) + { + qDebug()<<"Error allocating scp session: "<< ssh_get_error ( my_ssh_session ) <<endl; + return; + } + int rc = ssh_scp_init ( scp ); + if ( rc != SSH_OK ) + { + qDebug()<<"Error initializing scp session: "<< ssh_get_error ( my_ssh_session ) <<endl; + ssh_scp_free ( scp ); + return; + } + QFile file ( copyRequests[i].src ); + if ( !file.open ( QIODevice::ReadOnly ) ) + { + QString errMsg=tr ( "Can not open file " ) +copyRequests[i].src; + emit signalCopyError ( copyRequests[i].creator, errMsg, "" ); + copyRequests.removeAt ( i ); + ssh_scp_close ( scp ); + ssh_scp_free ( scp ); + continue; + } + QByteArray arr=file.readAll(); + file.close(); + rc=ssh_scp_push_file ( scp,dstFile.toAscii(),arr.size(), 0600 ); + if ( rc != SSH_OK ) + { + QString errMsg=tr ( "Can not create remote file " ) +copyRequests[i].dst; + QString serr=ssh_get_error ( my_ssh_session ); + qDebug()<<errMsg<<" - "<<serr<<endl; + emit signalCopyError ( copyRequests[i].creator, errMsg, serr ); + copyRequests.removeAt ( i ); + ssh_scp_close ( scp ); + ssh_scp_free ( scp ); + continue; + } + rc=ssh_scp_write ( scp,arr.data(),arr.size() ); + if ( rc != SSH_OK ) + { + QString serr=ssh_get_error ( my_ssh_session ); + QString errMsg=tr ( "Can not write to remote file " ) +copyRequests[i].dst; + qDebug()<<errMsg<<" - "<<serr<<endl; + emit signalCopyError ( copyRequests[i].creator, errMsg, serr ); + copyRequests.removeAt ( i ); + ssh_scp_close ( scp ); + ssh_scp_free ( scp ); + continue; + } + emit signalCopyOk ( copyRequests[i].creator ); +#ifdef DEBUG + qDebug()<<"scp ok: "<<copyRequests[i].src<<" -> "<<user<<"@"<<host<<":"<<copyRequests[i].dst<<endl; +#endif + copyRequests.removeAt ( i ); + ssh_scp_close ( scp ); + ssh_scp_free ( scp ); + } +} + + void SshConnection::channelLoop() { + forever + { + copyRequestMutex.lock(); + if ( copyRequests.size() >0 ) + copy(); + copyRequestMutex.unlock(); + if ( reverseTunnel ) + { + ssh_channel newChan=channel_forward_accept ( my_ssh_session,0 ); + if ( newChan ) + { +#ifdef DEBUG + qDebug()<<"new forward connection"<<endl; +#endif + int sock=socket ( AF_INET, SOCK_STREAM,0 ); +#ifndef Q_OS_WIN + const int y=1; +#else + const char y=1; +#endif + setsockopt(sock, IPPROTO_TCP, TCP_NODELAY,&y, sizeof(int)); + + struct sockaddr_in address; + address.sin_family=AF_INET; + address.sin_port=htons ( reverseTunnelLocalPort ); +#ifdef DEBUG + qDebug()<<"connecting to "<<reverseTunnelLocalHost<<":"<<reverseTunnelLocalPort<<endl; +#endif +#ifndef Q_OS_WIN + inet_aton ( reverseTunnelLocalHost.toAscii(), &address.sin_addr ); +#else + address.sin_addr.s_addr=inet_addr ( + reverseTunnelLocalHost.toAscii() ); +#endif + + if ( ::connect ( sock, ( struct sockaddr * ) &address,sizeof ( address ) ) !=0 ) + { + QString errMsg=tr ( "can not connect to " ) + + reverseTunnelLocalHost+":"+QString::number ( reverseTunnelLocalPort ); + qDebug()<<errMsg<<endl; + emit signalIoError ( reverseTunnelCreator, errMsg, "" ); + continue; + } +#ifdef DEBUG + qDebug()<<"creating new channel connection"<<endl; +#endif + ChannelConnection con; + con.channel=newChan; + con.sock=sock; + con.creator=reverseTunnelCreator; + channelConnectionsMutex.lock(); + channelConnections<<con; + channelConnectionsMutex.unlock(); + } + } + + char buffer[1024*512]; //512K buffer + int nbytes; + fd_set rfds; + + struct timeval tv; + + tv.tv_sec = 0; + tv.tv_usec = 500; + + int retval; + int maxsock=-1; + + disconnectFlagMutex.lock(); + bool disconnect=disconnectSessionFlag; + disconnectFlagMutex.unlock(); + + if ( disconnect ) + { + + if (useProxy && proxyType==PROXYSSH && sshProxy) + { + delete sshProxy; + sshProxy=0; + } + +#ifdef DEBUG + if ( !reverseTunnel ) + qDebug()<<"Disconnecting..."<<endl; +#endif + reverseTunnelConnectionsMutex.lock(); + for ( int i=reverseTunnelConnections.size()-1; i>=0; --i) + { + delete reverseTunnelConnections[i]; + } + reverseTunnelConnectionsMutex.unlock(); + + channelConnectionsMutex.lock(); + for ( int i=0; i<channelConnections.size(); ++i ) + { + finalize ( i ); + } + channelConnectionsMutex.unlock(); + ssh_disconnect ( my_ssh_session ); + ssh_free ( my_ssh_session ); + my_ssh_session=0; + + if (tcpProxySocket != NULL) + delete tcpProxySocket; + if (tcpNetworkProxy != NULL) + delete tcpNetworkProxy; +#ifdef DEBUG + if ( !reverseTunnel ) + qDebug()<<"All channels closed, session disconnected, quiting session loop"<<endl; +#endif + return; + } + + channelConnectionsMutex.lock(); + if ( channelConnections.size() <=0 ) + { + channelConnectionsMutex.unlock(); + usleep ( 500 ); + continue; + } + ssh_channel* read_chan=new ssh_channel[channelConnections.size() +1]; + ssh_channel* out_chan=new ssh_channel[channelConnections.size() +1]; + read_chan[channelConnections.size() ]=NULL; + + FD_ZERO ( &rfds ); + + for ( int i=0; i<channelConnections.size(); ++i ) + { + int tcpSocket=channelConnections.at ( i ).sock; + if ( tcpSocket>0 ) + FD_SET ( tcpSocket, &rfds ); + if ( channelConnections.at ( i ).channel==0l ) + { +#ifdef DEBUG + qDebug()<<"creating new channel"<<endl; +#endif + ssh_channel channel=channel_new ( my_ssh_session ); +#ifdef DEBUG + qDebug()<<"new channel:"<<channel<<endl; +#endif + channelConnections[i].channel=channel; + if ( tcpSocket>0 ) + { +#ifdef DEBUG + qDebug()<<"forwarding new channel, local port: "<<channelConnections.at ( i ).localPort<<endl; +#endif + if ( channel_open_forward ( channel, + channelConnections.at ( i ).forwardHost.toAscii(), + channelConnections.at ( i ).forwardPort, + channelConnections.at ( i ).localHost.toAscii(), + channelConnections.at ( i ).localPort ) != SSH_OK ) + { + QString err=ssh_get_error ( my_ssh_session ); + QString errorMsg=tr ( "channel_open_forward failed" ); + emit signalIoError ( channelConnections[i].creator, errorMsg, err ); + qDebug()<<errorMsg<<": "<<err<<endl; + } +#ifdef DEBUG + else + { + qDebug()<<" new channel forwarded"<<endl; + } +#endif + } + else + { +#ifdef DEBUG + qDebug()<<"executing remote: "<<channelConnections.at ( i ).command<<endl; +#endif + if ( channel_open_session ( channel ) !=SSH_OK ) + { + QString err=ssh_get_error ( my_ssh_session ); + QString errorMsg=tr ( "channel_open_session failed" ); + emit signalIoError ( channelConnections[i].creator, errorMsg, err ); + qDebug()<<errorMsg<<": "<<err<<endl; + } + else if ( channel_request_exec ( channel, channelConnections[i].command.toAscii() ) != SSH_OK ) + { + QString err=ssh_get_error ( my_ssh_session ); + QString errorMsg=tr ( "channel_request_exec failed" ); + emit signalIoError ( channelConnections[i].creator, errorMsg, err ); + qDebug()<<errorMsg<<": "<<err<<endl; + } +#ifdef DEBUG + else + { + qDebug()<<" new exec channel created"<<endl; + } +#endif + } + } + read_chan[i]=channelConnections.at ( i ).channel; + if ( tcpSocket>maxsock ) + maxsock=tcpSocket; + } + channelConnectionsMutex.unlock(); + retval=ssh_select ( read_chan,out_chan,maxsock+1,&rfds,&tv ); + delete [] read_chan; + delete [] out_chan; + + if ( retval == -1 ) + { + qDebug()<<"select error\n"; + continue; + } + + channelConnectionsMutex.lock(); + for ( int i=channelConnections.size()-1; i>=0; --i ) + { + int tcpSocket=channelConnections.at ( i ).sock; + ssh_channel channel=channelConnections.at ( i ).channel; + if ( channel==0l ) + continue; + if ( channel_poll ( channel,1 ) >0 ) + { + nbytes = channel_read ( channel, buffer, sizeof ( buffer )-1, 1 ); + emit signalStdErr ( channelConnections[i].creator, QByteArray ( buffer,nbytes ) ); + } + int rez=channel_poll ( channel,0 ); + if ( rez==SSH_EOF ) + { +#ifdef DEBUG + qDebug()<<"EOF ON CHANNEL "<<channel<<endl; +#endif + //////Finished//////// + finalize ( i ); + continue; + } + if ( rez>0 ) + { + nbytes = channel_read ( channel, buffer, sizeof ( buffer )-1, 0 ); + if ( nbytes > 0 ) + { + if ( tcpSocket>0 ) + { + if ( send ( tcpSocket,buffer, nbytes,0 ) != nbytes ) + { + QString errMsg=tr ( "error writing to socket" ); + qDebug()<<"error writing "<<nbytes<<" to tcp socket"<<tcpSocket<<endl; + emit signalIoError ( channelConnections[i].creator,errMsg,"" ); + finalize ( i ); + continue; + } + } + else + { + emit signalStdOut ( channelConnections[i].creator, QByteArray ( buffer,nbytes ) ); + } + } + + if ( nbytes < 0 ) + { + //////ERROR!!!!!//////// + QString err=ssh_get_error ( my_ssh_session ); + QString errorMsg=tr ( "error reading channel" ); + emit signalIoError ( channelConnections[i].creator, errorMsg, err ); + qDebug()<<errorMsg<<" - "<<err<<endl; + finalize ( i ); + continue; + } + + if ( channel_is_eof ( channel ) ) + { +#ifdef DEBUG + qDebug()<<"EOF ON CHANNEL "<<channel<<endl; +#endif + //////Finished//////// + finalize ( i ); + continue; + } + } + if ( tcpSocket<=0 ) + { + continue; + } + if ( FD_ISSET ( tcpSocket,&rfds ) ) + { + nbytes = recv ( tcpSocket, buffer, sizeof ( buffer )-1,0 ); + if ( nbytes > 0 ) + { + if ( channel_write ( channel, buffer, nbytes ) !=nbytes ) + { + QString err=ssh_get_error ( my_ssh_session ); + QString errorMsg=tr ( "channel_write failed" ); + emit signalIoError ( channelConnections[i].creator, errorMsg, err ); + qDebug()<<errorMsg<<" - "<<err<<endl; + finalize ( i ); + continue; + } + } + if ( nbytes < 0 ) + { + //////ERROR!!!!!//////// + QString err=""; + QString errorMsg=tr ( "error reading tcp socket" ); + emit signalIoError ( channelConnections[i].creator, errorMsg, err ); + qDebug()<<errorMsg<<" - "<<err<<endl; + finalize ( i ); + continue; + } + if ( nbytes==0 ) + { +#ifdef DEBUG + qDebug()<<"socket closed "<<tcpSocket<<endl; +#endif + finalize ( i ); + continue; + } + } + } + channelConnectionsMutex.unlock(); + } +} + +void SshConnection::finalize(int item) +{ + int tcpSocket=channelConnections.at ( item ).sock; + ssh_channel channel=channelConnections.at ( item ).channel; + if ( channel ) + { + channel_send_eof ( channel ); +#ifdef DEBUG + qDebug()<<"eof sent\n"; +#endif + channel_close ( channel ); +#ifdef DEBUG + qDebug()<<"channel closed\n"; +#endif + channel_free ( channel ); + } + if ( tcpSocket>0 ) + { +#ifndef Q_OS_WIN + shutdown(tcpSocket, SHUT_RDWR); +#endif + close ( tcpSocket ); + } + SshProcess* proc=channelConnections[item].creator; + channelConnections.removeAt ( item ); + emit signalChannelClosed ( proc ); +} +void SshConnection::addChannelConnection(SshProcess* creator, QString cmd) +{ + ChannelConnection con; + con.channel=NULL; + con.sock=-1; + con.creator=creator; + con.command=cmd; + + channelConnectionsMutex.lock(); + channelConnections<<con; + channelConnectionsMutex.unlock(); +} + +void SshConnection::addChannelConnection(SshProcess* creator, int sock, QString forwardHost, int forwardPort, QString localHost, int localPort, void* channel) +{ + ChannelConnection con; + con.channel= ( ssh_channel ) channel; + con.sock=sock; + con.creator=creator; + con.forwardHost=forwardHost; + con.forwardPort=forwardPort; + con.localHost=localHost; + con.localPort=localPort; + + + channelConnectionsMutex.lock(); + channelConnections<<con; + channelConnectionsMutex.unlock(); } -void SshConnection::finalize(int arg1) +void SshConnection::addCopyRequest(SshProcess* creator, QString src, QString dst) { + CopyRequest req; + req.src=src; + req.dst=dst; + req.creator=creator; + copyRequestMutex.lock(); + copyRequests<<req; + copyRequestMutex.unlock(); +} +SshConnection* SshConnection::reverseTunnelConnection(SshProcess* creator, int remotePort, QString localHost, int localPort) +{ + SshConnection* con=new SshConnection (this, host, port, acceptUnknownServers, user, pass, + key, autoLogin, kerberos, remotePort,localHost, + localPort, creator, useProxy, proxyType, proxyServer, proxyPort, proxyLogin, + proxyPassword, proxyKey, proxyAutoLogin, localProxyPort ); + + connect(con, SIGNAL(signalIoError(SshProcess*, QString, QString)), this, SIGNAL(signalIoError(SshProcess*, QString, QString))); + connect(con, SIGNAL(signalStdErr(SshProcess*, QByteArray)), this, SIGNAL ( signalStdErr(SshProcess*, QByteArray))); + connect(con, SIGNAL(signalReverseListenOk(SshProcess*)), this, SIGNAL(signalReverseListenOk(SshProcess*))); + con->start(); + reverseTunnelConnectionsMutex.lock(); + reverseTunnelConnections.append ( con ); + reverseTunnelConnectionsMutex.unlock(); + return con; +} + +int SshConnection::executeCommand(const QString& command, QObject* receiver, const char* slotFinished) +{ + SshProcess* proc=new SshProcess(this, nextPid++); + if(receiver && slotFinished) + { + connect(proc, SIGNAL(signalSshFinished(bool,QString,int)), receiver, slotFinished); + } + proc->startCommand(command); + processes<<proc; + return proc->pid; } diff --git a/sshconnection.h b/sshconnection.h index abb08e7..81171ab 100644 --- a/sshconnection.h +++ b/sshconnection.h @@ -35,32 +35,10 @@ class SshProcess; class SshConnectionGuiInteraction; -struct ChannelConnection -{ - ssh_channel channel; - int sock; - SshProcess* creator; - int forwardPort; - int localPort; - QString forwardHost; - QString localHost; - QString command; - bool operator==(ChannelConnection& t) - { - return (channel==t.channel); - } -}; - -struct CopyRequest -{ - SshProcess* creator; - QString src; - QString dst; -}; - class SshConnection: public QThread { Q_OBJECT + X2GO_RO_PROPERTY(bool, connected) public: enum ProxyType {PROXYSSH, PROXYHTTP}; enum Error {CONNECTION, SERVERAUTH, USERAUTH}; @@ -71,7 +49,39 @@ public: bool proxyAutoLogin=false); ~SshConnection(); static void finalizeLibSsh(); + void addChannelConnection(SshProcess* creator, QString cmd); + void addChannelConnection(SshProcess* creator, int sock, QString forwardHost, + int forwardPort, QString localHost, int localPort, void* channel=0l); + + void addCopyRequest(SshProcess* creator, QString src, QString dst); + SshConnection* reverseTunnelConnection(SshProcess* creator, int remotePort, + QString localHost, int localPort); + int executeCommand(const QString& command, QObject* receiver=0, const char* slotFinished=0); + + + private: + struct ChannelConnection + { + ssh_channel channel; + int sock; + SshProcess* creator; + int forwardPort; + int localPort; + QString forwardHost; + QString localHost; + QString command; + bool operator==(ChannelConnection& t) + { + return (channel==t.channel); + } + }; + struct CopyRequest + { + SshProcess* creator; + QString src; + QString dst; + }; ssh_session my_ssh_session; QList<ChannelConnection> channelConnections; QList<CopyRequest> copyRequests; @@ -110,20 +120,40 @@ private: bool breakLoop; static bool isLibSshInited; static SshConnectionGuiInteraction* guiInteractor; + + QMutex channelConnectionsMutex; + QMutex copyRequestMutex; + QMutex disconnectFlagMutex; + QMutex reverseTunnelConnectionsMutex; + private: + SshConnection(QObject* parent, QString host, int port, bool acceptUnknownServers, QString user, + QString pass, QString key, bool autoLogin, bool krbLogin, int remotePort, QString localHost, + int localPort, SshProcess* creator, + bool useProxy=false, ProxyType proxyType=PROXYSSH, QString proxyServer=QString::null, quint16 proxyPort=0, + QString proxyLogin=QString::null, QString proxyPassword=QString::null, QString proxyKey=QString::null, + bool proxyAutoLogin=false, int localProxyPort=0); + bool sshConnect(); bool userAuthWithPass(); bool userAuthAuto(); bool userAuthWithKey(); bool userAuth(); void channelLoop(); - void finalize(int arg1); + void finalize(int item); int serverAuth(QString& errorMsg); + void copy(); protected: void run(); signals: - void signalError(Error, QString); + void signalError(int, QString); void signalIoError(SshProcess* caller, QString error, QString lastSessionError); + void signalCopyError(SshProcess* caller, QString error, QString lastSessionError); + void signalCopyOk(SshProcess* caller); + void signalChannelClosed(SshProcess* caller); + + void signalStdErr(SshProcess* caller, QByteArray data); + void signalStdOut(SshProcess* caller, QByteArray data); void signalConnectionOk( QString host); void signalReverseListenOk(SshProcess* creator); diff --git a/sshprocess.cpp b/sshprocess.cpp new file mode 100644 index 0000000..f382f64 --- /dev/null +++ b/sshprocess.cpp @@ -0,0 +1,242 @@ +/************************************************************************** +* Copyright (C) 2005-2012 by Oleksandr Shneyder * +* o.shneyder(a)phoca-gmbh.de * +* * +* This program is free software; you can redistribute it and/or modify * +* it under the terms of the GNU General Public License as published by * +* the Free Software Foundation; either version 2 of the License, or * +* (at your option) any later version. * +* * +* This program is distributed in the hope that it will be useful, * +* but WITHOUT ANY WARRANTY; without even the implied warranty of * +* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * +* GNU General Public License for more details. * +* * +* You should have received a copy of the GNU General Public License * +* along with this program; if not, write to the * +* Free Software Foundation, Inc., * +* 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * +***************************************************************************/ + + +#include "sshprocess.h" +#include <QTimer> +#include <QDebug> + +#ifndef Q_OS_WIN +#include <arpa/inet.h> +#include <netinet/tcp.h> +#endif + +#undef DEBUG +// #define DEBUG + + +SshProcess::SshProcess(SshConnection* masterConnection, int pid): QObject() +{ + this->masterConnection=masterConnection; + serverSocket=0; + this->pid=pid; + connect(masterConnection, SIGNAL(signalStdErr(SshProcess*,QByteArray)),this,SLOT(slotStdErr(SshProcess*,QByteArray))); + connect(masterConnection, SIGNAL(signalIoError(SshProcess*,QString,QString)), this,SLOT(slotIOerr(SshProcess*,QString,QString))); + tunnel=false; + normalExited=true; + +} + +SshProcess::~SshProcess() +{ +#ifdef DEBUG + qDebug()<<"ssh process destructor"; +#endif + if (serverSocket>0) + { +#ifdef Q_OS_WIN + closesocket(serverSocket); + WSACleanup(); + +#else + close(serverSocket); +#endif + } +} + + +void SshProcess::startCommand(const QString& cmd) +{ + QString shcmd = "sh -c \""+cmd+"\""; + masterConnection->addChannelConnection(this, shcmd); + connect(masterConnection,SIGNAL(signalStdOut(SshProcess*,QByteArray)),this,SLOT(slotStdOut(SshProcess*,QByteArray))); + connect(masterConnection,SIGNAL(signalChannelClosed(SshProcess*)), this,SLOT(slotChannelClosed(SshProcess*))); +} + +void SshProcess::startCopy(QString src, QString dst) +{ + connect(masterConnection, SIGNAL(signalCopyError(SshProcess*,QString,QString)), this, + SLOT(slotCopyErr(SshProcess*,QString,QString))); + connect(masterConnection, SIGNAL(signalCopyOk(SshProcess*)), this,SLOT(slotCopyOk(SshProcess*))); + scpSource=src; + masterConnection->addCopyRequest(this,src,dst); +} + +void SshProcess::startTunnel(const QString& forwardHost, uint forwardPort, const QString& localHost, uint localPort, bool reverse) +{ + this->forwardHost=forwardHost; + this->forwardPort=forwardPort; + this->localHost=localHost; + this->localPort=localPort; + tunnel=true; + if (!reverse) + tunnelLoop(); + else + { + connect(masterConnection, SIGNAL(signalReverseListenOk(SshProcess*)), this, SLOT(slotReverseTunnelOk(SshProcess*))); + tunnelConnection=masterConnection->reverseTunnelConnection(this, forwardPort, localHost, localPort); + } +} + +void SshProcess::slotChannelClosed(SshProcess* creator) +{ + if (creator!=this) + return; + QString output; + if (!normalExited) + { + output=abortString; + } + else + { + if ( stdOutString.length()<=0 && stdErrString.length() >0 ) + { + normalExited=false; + output=stdErrString; +#ifdef DEBUG + qDebug()<<"have only stderr, something must be wrong"<<endl; +#endif + } + else + output=stdOutString; + } +#ifdef DEBUG + qDebug()<<"ssh finished:"<<normalExited<<" - "<<output<<endl; +#endif + emit signalSshFinished(normalExited, output, pid); +} + +void SshProcess::slotCheckNewConnection() +{ + fd_set rfds; + struct timeval tv; + + tv.tv_sec = 0; + tv.tv_usec = 0; + + FD_ZERO(&rfds); + FD_SET(serverSocket, &rfds); + + if (select(serverSocket+1,&rfds,NULL,NULL,&tv)<=0) + return; + +#ifdef DEBUG + qDebug()<<"new tcp connection\n"; +#endif + int tcpSocket=accept(serverSocket, (struct sockaddr*)&address,&addrlen); + +#ifdef DEBUG + qDebug()<<"new socket:"<<tcpSocket<<endl; +#endif + masterConnection->addChannelConnection(this, tcpSocket, forwardHost, forwardPort, localHost, + ntohs(address.sin_port)); +} + +void SshProcess::slotCopyErr(SshProcess* creator, QString message, QString sshSessionErr) +{ + if (creator!=this) + return; + emit signalSshFinished(false, message+" - "+sshSessionErr, pid); + +} + +void SshProcess::slotCopyOk(SshProcess* creator) +{ + if (creator!=this) + return; + emit signalSshFinished(true,"", pid); +} + +void SshProcess::slotIOerr(SshProcess* creator, QString message, QString sshSessionErr) +{ + if (creator!=this) + return; +#ifdef DEBUG + qDebug()<<"io error:"<<message<<" - "<<sshSessionErr<<endl; +#endif + normalExited=false; + abortString=message+" - "+sshSessionErr; +} + +void SshProcess::slotReverseTunnelOk(SshProcess* creator) +{ + if (creator==this) + emit signalSshTunnelOk(pid); + +} + +void SshProcess::slotStdErr(SshProcess* creator, QByteArray data) +{ + if (creator!=this) + return; +#ifdef DEBUG + qDebug()<<"new err data:"<<data<<endl; +#endif + stdErrString+=data; +} + +void SshProcess::slotStdOut(SshProcess* creator, QByteArray data) +{ + if (creator!=this) + return; +#ifdef DEBUG + qDebug()<<"new data"<<data<<endl; +#endif + stdOutString+=data; +} + +void SshProcess::tunnelLoop() +{ + serverSocket=socket(AF_INET, SOCK_STREAM, 0); + if (serverSocket<=0) + { + QString err=tr("Error creating socket"); + qDebug()<<err<<endl; + emit signalSshFinished(false,err,pid); + return; + } +#ifndef Q_OS_WIN + const int y=1; +#else + const char y=1; +#endif + setsockopt(serverSocket, SOL_SOCKET, SO_REUSEADDR,&y, sizeof(int)); + setsockopt(serverSocket, IPPROTO_TCP, TCP_NODELAY,&y, sizeof(int)); + + address.sin_family=AF_INET; + address.sin_addr.s_addr=INADDR_ANY; + address.sin_port=htons(localPort); + if (bind(serverSocket,(struct sockaddr*) &address,sizeof(address))!=0) + { + QString err=tr("Error binding ")+localHost+":"+QString::number(localPort); + qDebug()<<err<<endl; + emit signalSshFinished(false,err,pid); + return; + } + listen(serverSocket,5); + addrlen=sizeof(struct sockaddr_in); + QTimer* timer=new QTimer(); + connect(timer,SIGNAL(timeout()),this,SLOT(slotCheckNewConnection())); + timer->start(100); + emit signalSshTunnelOk(pid); +#ifdef DEBUG + qDebug()<<"Direct tunnel: waiting for connections on "<<localHost<<":"<<localPort<<endl; +#endif +} diff --git a/sshprocess.h b/sshprocess.h new file mode 100644 index 0000000..5603f0c --- /dev/null +++ b/sshprocess.h @@ -0,0 +1,84 @@ +/************************************************************************** +* Copyright (C) 2005-2012 by Oleksandr Shneyder * +* o.shneyder(a)phoca-gmbh.de * +* * +* This program is free software; you can redistribute it and/or modify * +* it under the terms of the GNU General Public License as published by * +* the Free Software Foundation; either version 2 of the License, or * +* (at your option) any later version. * +* * +* This program is distributed in the hope that it will be useful, * +* but WITHOUT ANY WARRANTY; without even the implied warranty of * +* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * +* GNU General Public License for more details. * +* * +* You should have received a copy of the GNU General Public License * +* along with this program; if not, write to the * +* Free Software Foundation, Inc., * +* 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * +***************************************************************************/ + + +#ifndef SSHPROCESS_H +#define SSHPROCESS_H + +#include <QObject> + +#ifndef Q_OS_WIN +#include <netinet/in.h> +#endif + +#include "sshconnection.h" + + +class SshProcess: public QObject +{ + Q_OBJECT + friend class SshConnection; +private: + explicit SshProcess(SshConnection* masterConnection, int pid); + virtual ~SshProcess(); + void startCommand(const QString& cmd); + void startTunnel(const QString& forwardHost, uint forwardPort, const QString& localHost, + uint localPort, bool reverse=false); + void startCopy(QString src, QString dst); + void tunnelLoop(); + +private: + SshConnection* masterConnection; + SshConnection* tunnelConnection; + int pid; + QString forwardHost; + QString localHost; + QString command; + QString scpSource; + quint16 forwardPort; + quint16 localPort; + uint serverSocket; + struct sockaddr_in address; +#ifndef Q_OS_WIN + socklen_t addrlen; +#else + int addrlen; +#endif + QString stdOutString; + QString stdErrString; + QString abortString; + bool tunnel; + bool normalExited; + +private slots: + void slotCheckNewConnection(); + void slotStdErr(SshProcess* creator, QByteArray data); + void slotStdOut(SshProcess* creator, QByteArray data); + void slotIOerr(SshProcess* creator,QString message, QString sshSessionErr); + void slotChannelClosed(SshProcess* creator); + void slotReverseTunnelOk(SshProcess* creator); + void slotCopyOk(SshProcess* creator); + void slotCopyErr(SshProcess* creator,QString message, QString sshSessionErr); +signals: + void signalSshFinished ( bool result, QString output, int processId); + void signalSshTunnelOk(int processId); +}; + +#endif // SSHPROCESS_H diff --git a/x2goapplication.cpp b/x2goapplication.cpp index 817f571..7ff0050 100644 --- a/x2goapplication.cpp +++ b/x2goapplication.cpp @@ -78,18 +78,21 @@ void X2GoApplication::slotInitApplication() { QMessageBox::critical(0,tr("Error"), tr("Error parsing command line arguments")); exit(-1); + return; } if(clientConfig->get_showHelp().get_value().toBool()) { HelpDialog dialog(0); dialog.showHelp(); exit(-1); + return; } if(clientConfig->get_showHelpPack().get_value().toBool()) { HelpDialog dialog(0); dialog.showPacks(); exit(-1); + return; } if(clientConfig->get_brokerUrl().get_value().toString()==QString::null) @@ -106,7 +109,7 @@ void X2GoApplication::slotInitApplication() if(broker->get_brokerAbort()) return; connect(broker, SIGNAL(signalSessionsLoaded()), this, SLOT(slotBrokerSessionsConfig())); - broker->getUserSessions(); + broker->slotGetUserSessions(); } if(clientConfig->get_disallowSessionEdit().get_value().toBool()) { diff --git a/x2gobroker.cpp b/x2gobroker.cpp index cca32a7..ba34837 100644 --- a/x2gobroker.cpp +++ b/x2gobroker.cpp @@ -22,6 +22,7 @@ #include <QFile> #include <QDir> #include <QDebug> +#include <QTimer> #include "x2gobroker.h" #include "x2goapplication.h" #include "x2goclientconfig.h" @@ -39,7 +40,7 @@ X2GoBroker::X2GoBroker(QObject* parent): QObject(parent) url = QUrl( urlString); if(url.userName().length()>0) user=url.userName(); - if(!cfg->get_defaultNoBrockerAuth().get_value().toBool()) + if(!cfg->get_defaultNoBrockerAuth().get_value().toBool() && brokerType==HTTP) { getLoginData(); } @@ -47,10 +48,14 @@ X2GoBroker::X2GoBroker(QObject* parent): QObject(parent) { brokerType=SSH; #warning search for default key hier - SshConnection* con=new SshConnection(this, url.host(), url.port(), cfg->get_autoAddToKnownHosts().get_value().toBool(), - user, pass, QString::null, - cfg->get_defaultAutoLogin().get_value().toBool()); - con->start(); + + sshConnection=new SshConnection(this, url.host(), url.port(), cfg->get_autoAddToKnownHosts().get_value().toBool(), + user, pass, cfg->get_brokerSSHKey().get_value().toString(), + cfg->get_defaultBrockerAutoLogin().get_value().toBool()); + connect(sshConnection, SIGNAL(signalConnectionOk(QString)), this, SLOT(slotSshConnectionOk())); + connect(sshConnection, SIGNAL(signalError(int,QString)), this, + SLOT(slotSshConnectionError(int,QString))); + sshConnection->start(); } else { @@ -89,6 +94,7 @@ X2GoBroker::~X2GoBroker() void X2GoBroker::getLoginData() { + X2GoClientConfig* cfg=X2GoApplication::instance()->get_clientConfig(); if(url.userName().length()<=0) { MessageBox::Buttons res=MessageBox::input(tr("Enter user name for authentication on broker"),tr("User:"),user); @@ -98,6 +104,13 @@ void X2GoBroker::getLoginData() X2GoApplication::exit(-1); } } + if(brokerType==SSH) + { + if(cfg->get_defaultBrockerAutoLogin().get_value().toBool()) + return; + if(cfg->get_brokerSSHKey().get_value().toString().length()>0) + return; + } pass=QString::null; MessageBox::Buttons res=MessageBox::input(tr("Enter password for authentication on broker"),tr("Password:"),pass, QLineEdit::Password); if(res!=MessageBox::OK) @@ -108,7 +121,7 @@ void X2GoBroker::getLoginData() } -void X2GoBroker::getUserSessions() +void X2GoBroker::slotGetUserSessions() { if(brokerType==HTTP) { @@ -122,6 +135,19 @@ void X2GoBroker::getUserSessions() httpSessionAnswer.setData ( 0,0 ); sessionsRequest=http->post ( url.path(),req.toUtf8(),&httpSessionAnswer ); } + if(brokerType==SSH) + { + if(!sshConnection->get_connected()) + { + QTimer::singleShot(100, this, SLOT(slotGetUserSessions())); + return; + } + sshConnection->executeCommand ( url.path() +" --authid "+ + X2GoApplication::instance()->get_clientConfig()->get_authId().get_value().toString()+ + " --task listsessions", + this, SLOT ( slotListSessions ( bool, QString,int ) )); + + } } void X2GoBroker::slotRequestFinished(int id, bool error) @@ -155,7 +181,7 @@ void X2GoBroker::slotListSessions(bool success, QString answer, int) if(!checkAccess(answer)) { getLoginData(); - getUserSessions(); + slotGetUserSessions(); return; } createIniFile(answer); @@ -311,4 +337,14 @@ QString X2GoBroker::getHexVal(const QByteArray& ba) } +void X2GoBroker::slotSshConnectionError(int, QString message) +{ + X2GoApplication::exit(-1); +} + +void X2GoBroker::slotSshConnectionOk() +{ + +} + diff --git a/x2gobroker.h b/x2gobroker.h index 49e3248..a101f40 100644 --- a/x2gobroker.h +++ b/x2gobroker.h @@ -28,6 +28,7 @@ #include <QSslError> #include <QTime> #include "x2goapplication.h" +#include "sshconnection.h" class QHttp; class X2GoBroker : public QObject @@ -38,7 +39,6 @@ class X2GoBroker : public QObject public: explicit X2GoBroker(QObject* parent = 0); virtual ~X2GoBroker(); - void getUserSessions(); private: enum {SSH,HTTP} brokerType; QString user; @@ -51,6 +51,7 @@ private: int sessionsRequest; int selSessRequest; QTime requestTime; + SshConnection* sshConnection; private: void getLoginData(); QString getHexVal ( const QByteArray& ba ); @@ -61,6 +62,12 @@ private slots: void slotRequestFinished ( int id, bool error ); void slotSslErrors ( const QList<QSslError> & errors ) ; void slotListSessions ( bool success, QString answer, int pid); + void slotSshConnectionError ( int error, QString message); + void slotSshConnectionOk (); + +public slots: + void slotGetUserSessions(); + signals: void signalSessionsLoaded(); }; diff --git a/x2goclient2.pro b/x2goclient2.pro index 5f02ec9..6962eac 100755 --- a/x2goclient2.pro +++ b/x2goclient2.pro @@ -58,6 +58,7 @@ SOURCES += main.cpp \ x2gobroker.cpp \ sshconnection.cpp \ sshconnectionguiinteraction.cpp \ + sshprocess.cpp \ profile.cpp HEADERS += mainwindow.h \ @@ -88,6 +89,7 @@ HEADERS += mainwindow.h \ x2gobroker.h \ sshconnection.h \ sshconnectionguiinteraction.h \ + sshprocess.h \ profile.h LIBS += -lssh hooks/post-receive -- x2goclient2.git (X2Go Client 2 (rewrite of x2goclient.git)) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "x2goclient2.git" (X2Go Client 2 (rewrite of x2goclient.git)).

1 0

libev.git - master (branch) updated: e9efc149009ff5974e6a3ef8b423e4a6a0d1339e
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via e9efc149009ff5974e6a3ef8b423e4a6a0d1339e (commit) from 11848baf77ba11bfe3bf531139ed68579e56d7d3 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit e9efc149009ff5974e6a3ef8b423e4a6a0d1339e Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 13:02:39 2012 +0100 depend on dh-autoreconf (>= 2~) instead of (>= 2). Fix dependency problem on Ubuntu 10.04. ----------------------------------------------------------------------- Summary of changes: debian/control | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) The diff of changes is: diff --git a/debian/control b/debian/control index a2c0260..4a3d0fa 100644 --- a/debian/control +++ b/debian/control @@ -3,7 +3,7 @@ Priority: extra Maintainer: Jérémy Lal <kapouer(a)melix.org> Uploaders: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> DM-Upload-Allowed: yes -Build-Depends: dpkg-dev (>= 1.14.9), debhelper (>= 7), dh-autoreconf (>= 2) +Build-Depends: dpkg-dev (>= 1.14.9), debhelper (>= 7), dh-autoreconf (>= 2~) Standards-Version: 3.9.2 Section: libs Homepage: http://libev.schmorp.de/ hooks/post-receive -- libev.git (providing Launchpad import (for Ubuntu 10.04 backport), related to X2go project) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "libev.git" (providing Launchpad import (for Ubuntu 10.04 backport), related to X2go project).

1 0

x2goserver.git - master (branch) updated: 3.1.1.3-90-gd70e0e7
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via d70e0e79e5dbea3d9c6818daaa0f45d83eba1ad2 (commit) from 5131ebd1099512d8a1f43e4d0cbc27a0c117daf3 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit d70e0e79e5dbea3d9c6818daaa0f45d83eba1ad2 Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 12:57:36 2012 +0100 changelog cleanup ----------------------------------------------------------------------- Summary of changes: debian/changelog | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) The diff of changes is: diff --git a/debian/changelog b/debian/changelog index 448ca00..4733ea6 100644 --- a/debian/changelog +++ b/debian/changelog @@ -32,7 +32,7 @@ x2goserver (3.2.0.0-0~x2go1) UNRELEASED; urgency=low x2goserver (3.1.1.7-0~x2go1) UNRELEASED; urgency=low - * New upstream release (3.1.1.7): + * New upstream+bufix release (3.1.1.7): - Use DISTRIB_RELEASE to query Ubuntu release versions and detect Unity launch command. - Detect GNOME and UNITY startup commands via DISTRIB_RELEASE version number hooks/post-receive -- x2goserver.git (X2Go Server) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "x2goserver.git" (X2Go Server).

1 0

x2goserver.git - release/3.1.1.x (branch) updated: 3.1.1.6-5-ga9ddc03
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, release/3.1.1.x has been updated via a9ddc031895260e40e099417c15e32cd9d73a03d (commit) via e8d7700258f72ee991460b709a5f27ec2bdf8bce (commit) via ac44ee30911caecbde4d4b255c3df636400692d3 (commit) via 8ee633875ac5a916f7d060c3e518b69d0ff6073a (commit) via 5213ce605d9abaacf576e2df52891c047f2a8e1d (commit) from 623a4649daca7f1489b3441f44f24f5f58db2cfa (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit a9ddc031895260e40e099417c15e32cd9d73a03d Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 12:56:59 2012 +0100 changelog cleanup commit e8d7700258f72ee991460b709a5f27ec2bdf8bce Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 10:03:35 2012 +0100 Detect GNOME and UNITY startup commands via DISTRIB_RELEASE version number and by using the bc command for comparing versions. commit ac44ee30911caecbde4d4b255c3df636400692d3 Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 09:49:46 2012 +0100 syntax fix commit 8ee633875ac5a916f7d060c3e518b69d0ff6073a Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 09:30:59 2012 +0100 Use DISTRIB_RELEASE to query Ubuntu release versions and detect Unity launch command. commit 5213ce605d9abaacf576e2df52891c047f2a8e1d Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 12:54:50 2012 +0100 Do not fail if source_environment() cannot find the file to be sourced. ----------------------------------------------------------------------- Summary of changes: debian/changelog | 11 +++++++++++ debian/control | 1 + x2goserver/bin/x2gomountdirs | 2 +- x2goserver/bin/x2goruncommand | 19 +++++++++++-------- x2goserver/bin/x2goumount-session | 2 +- 5 files changed, 25 insertions(+), 10 deletions(-) The diff of changes is: diff --git a/debian/changelog b/debian/changelog index 6055676..bf93f75 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,14 @@ +x2goserver (3.1.1.7-0~x2go1) UNRELEASED; urgency=low + + * New upstream+bugfix release (3.1.1.7): + - Use DISTRIB_RELEASE to query Ubuntu release versions and detect Unity launch + command. + - Detect GNOME and UNITY startup commands via DISTRIB_RELEASE version number + and by using the bc command for comparing versions. + - Do not fail if source_environment() cannot find the file to be sourced. + + -- Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Wed, 12 Nov 2012 09:28:32 +0100 + x2goserver (3.1.1.6-0~x2go1) unstable; urgency=low * Bugfix release (3.1.1.6): diff --git a/debian/control b/debian/control index ba29b5a..f242c27 100644 --- a/debian/control +++ b/debian/control @@ -20,6 +20,7 @@ Depends: ${misc:Depends}, x2goagent (>= 2:3.5.0.15-0~), lsof, + bc, openssh-client, openssh-server, libconfig-simple-perl, diff --git a/x2goserver/bin/x2gomountdirs b/x2goserver/bin/x2gomountdirs index 457a1d3..8436219 100755 --- a/x2goserver/bin/x2gomountdirs +++ b/x2goserver/bin/x2gomountdirs @@ -38,7 +38,7 @@ sub source_environment { my $name = shift; open my $fh, "<", $name - or die "could not open $name: $!"; + or return -1; while (<$fh>) { chomp; diff --git a/x2goserver/bin/x2goruncommand b/x2goserver/bin/x2goruncommand index d26fa82..b7e0246 100755 --- a/x2goserver/bin/x2goruncommand +++ b/x2goserver/bin/x2goruncommand @@ -91,14 +91,14 @@ fi if [ "$cmd" == "GNOME" ] || [ "$cmd" == "gnome-session" ]; then cmd="/usr/bin/gnome-session" - if [ "$DISTRIB_ID" == "Ubuntu" ] && echo "$DISTRIB_CODENAME" | egrep "^[a-m].*" >/dev/null; then - export DESKTOP_SESSION="gnome" - elif [ "$DISTRIB_ID" == "Ubuntu" ] && echo "$DISTRIB_CODENAME" | egrep "^n.*" >/dev/null; then - export DESKTOP_SESSION="2d-gnome" - args=" --session=$DESKTOP_SESSION" - elif [ "$DISTRIB_ID" == "Ubuntu" ] && echo "$DISTRIB_CODENAME" | egrep -v "^[a-n].*" >/dev/null; then + if [ "$DISTRIB_ID" == "Ubuntu" ] && $(echo $DISTRIB_RELEASE >= 11.10 | bc); then export DESKTOP_SESSION="gnome-fallback" args=" --session=$DESKTOP_SESSION" + elif [ "$DISTRIB_ID" == "Ubuntu" ] && $(echo $DISTRIB_RELEASE == 11.04 | bc); then + export DESKTOP_SESSION="2d-gnome" + args=" --session=$DESKTOP_SESSION" + elif [ "$DISTRIB_ID" == "Ubuntu" ] && $(echo $DISTRIB_RELEASE <= 10.10 | bc); then + export DESKTOP_SESSION="gnome" elif cat /etc/debian_version | egrep "^(squeeze|6\.).*" >/dev/null; then export DESKTOP_SESSION="gnome" elif cat /etc/debian_version | egrep "^(wheezy|7\.).*" >/dev/null; then @@ -108,10 +108,13 @@ if [ "$cmd" == "GNOME" ] || [ "$cmd" == "gnome-session" ]; then elif ([ "$cmd" == "UNITY" ] || [ "$cmd" == "unity" ]); then cmd="/usr/bin/gnome-session" - if [ "$DISTRIB_ID" == "Ubuntu" ] && echo "$DISTRIB_CODENAME" | egrep -v "^[a-n].*" >/dev/null; then + if [ "$DISTRIB_ID" == "Ubuntu" ] && $(echo $DISTRIB_RELEASE >= 12.10 | bc); then + export DESKTOP_SESSION="ubuntu" + args=" --session=$DESKTOP_SESSION" + elif [ "$DISTRIB_ID" == "Ubuntu" ] && [ $(echo $DISTRIB_RELEASE == 11.10 | bc) || $(echo $DISTRIB_RELEASE == 12.04 | bc) ]; then export DESKTOP_SESSION="ubuntu-2d" args=" --session=$DESKTOP_SESSION" - elif [ "$DISTRIB_ID" == "Ubuntu" ] && echo "$DISTRIB_CODENAME" | egrep -v "^n.*" >/dev/null; then + elif [ "$DISTRIB_ID" == "Ubuntu" ] && $(echo $DISTRIB_RELEASE == 11.04 | bc); then export DESKTOP_SESSION="2d-ubuntu" args=" --session=$DESKTOP_SESSION" fi diff --git a/x2goserver/bin/x2goumount-session b/x2goserver/bin/x2goumount-session index ca52174..33ffc01 100755 --- a/x2goserver/bin/x2goumount-session +++ b/x2goserver/bin/x2goumount-session @@ -41,7 +41,7 @@ sub source_environment { my $name = shift; open my $fh, "<", $name - or die "could not open $name: $!"; + or return -1; while (<$fh>) { chomp; hooks/post-receive -- x2goserver.git (X2Go Server) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "x2goserver.git" (X2Go Server).

1 0

x2goserver.git - master (branch) updated: 3.1.1.3-89-g5131ebd
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via 5131ebd1099512d8a1f43e4d0cbc27a0c117daf3 (commit) via 5a96410dd49dc5a0a46e1b81f2aefb828437e096 (commit) from c264271c18a8ae0ecd4babd9b42c17c518663377 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 5131ebd1099512d8a1f43e4d0cbc27a0c117daf3 Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 12:55:37 2012 +0100 fix changelog entry commit 5a96410dd49dc5a0a46e1b81f2aefb828437e096 Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 12:47:28 2012 +0100 Do not fail if X2Go::Utils::source_environment() cannot find the file to be sourced. ----------------------------------------------------------------------- Summary of changes: X2Go/Utils.pm | 2 +- debian/changelog | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) The diff of changes is: diff --git a/X2Go/Utils.pm b/X2Go/Utils.pm index 23a13b3..c0d15b0 100644 --- a/X2Go/Utils.pm +++ b/X2Go/Utils.pm @@ -41,7 +41,7 @@ sub source_environment { my $name = shift; open my $fh, "<", $name - or die "could not open $name: $!"; + or return -1; while (<$fh>) { chomp; diff --git a/debian/changelog b/debian/changelog index 0f321b9..448ca00 100644 --- a/debian/changelog +++ b/debian/changelog @@ -37,6 +37,7 @@ x2goserver (3.1.1.7-0~x2go1) UNRELEASED; urgency=low command. - Detect GNOME and UNITY startup commands via DISTRIB_RELEASE version number and by using the bc command for comparing versions. + - Do not fail if source_environment() cannot find the file to be sourced. -- Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Wed, 12 Nov 2012 09:28:32 +0100 hooks/post-receive -- x2goserver.git (X2Go Server) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "x2goserver.git" (X2Go Server).

1 0

libev.git - master (branch) created: 11848baf77ba11bfe3bf531139ed68579e56d7d3
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been created at 11848baf77ba11bfe3bf531139ed68579e56d7d3 (commit) - Log ----------------------------------------------------------------- commit 11848baf77ba11bfe3bf531139ed68579e56d7d3 Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 11:58:13 2012 +0100 provide libev for Debian squeeze and Ubuntu lucid ----------------------------------------------------------------------- hooks/post-receive -- libev.git (Debian package libev) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "libev.git" (Debian package libev).

1 0

pyhoca-cli.git - master (branch) updated: 0.2.0.4-21-g2840032
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via 28400324571e4e4dd66974a548a08004ab4a4352 (commit) from ee08a8ebff88830fbe319be357b0ed15707c0865 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 28400324571e4e4dd66974a548a08004ab4a4352 Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 11:34:20 2012 +0100 fix typo in changelog ----------------------------------------------------------------------- Summary of changes: debian/changelog | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) The diff of changes is: diff --git a/debian/changelog b/debian/changelog index 8bb1896..b771383 100644 --- a/debian/changelog +++ b/debian/changelog @@ -11,7 +11,7 @@ pyhoca-cli (0.2.1.0-0~x2go1) UNRELEASED; urgency=low * /debian/control: + Maintainer change in package: X2Go Developers <x2go-dev(a)lists.berlios.de>. + Reduce python version in Build-Depends to allow build on Ubuntu 10.04. - + Depend on python-x2go (>= 0.2.0.1). + + Depend on python-x2go (>= 0.2.1.0). * /debian/rules: + Allow package build on systems with missing dh_python2. * /man/man1/pyhoca-cli.1: hooks/post-receive -- pyhoca-cli.git (Python X2Go Client (command line client)) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "pyhoca-cli.git" (Python X2Go Client (command line client)).

1 0

python-x2go.git - master (branch) updated: 0.2.0.10-67-g6445a86
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via 6445a869c0d6c857450ebbae46186b810e59911a (commit) from 5b5d71d08a7fbeb2a052a9ddf7a1c8a4faa0da7f (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 6445a869c0d6c857450ebbae46186b810e59911a Author: Mike Gabriel <mike.gabriel(a)das-netzwerkteam.de> Date: Mon Nov 12 11:15:13 2012 +0100 fix allow_printing in session registration of X2goClient ----------------------------------------------------------------------- Summary of changes: x2go/client.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) The diff of changes is: diff --git a/x2go/client.py b/x2go/client.py index 91a11a3..62da464 100644 --- a/x2go/client.py +++ b/x2go/client.py @@ -969,7 +969,7 @@ class X2goClient(object): _profile_id = utils._genSessionProfileId() _profile_name = profile_name or sys.argv[0] _params = kwargs - _params['printing'] = printing + _params['printing'] = allow_printing _params['allow_share_local_folders'] = allow_share_local_folders _params['share_local_folders'] = share_local_folders _params['allow_mimebox'] = allow_mimebox hooks/post-receive -- python-x2go.git (Python X2Go Client API) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "python-x2go.git" (Python X2Go Client API).

1 0

python-paramiko.git - master (branch) updated: 06d987c362e75a5d86c411c20932a3818fb4fa40
by git-admin＠x2go.org 12 Nov '12

12 Nov '12

The branch, master has been updated via 06d987c362e75a5d86c411c20932a3818fb4fa40 (commit) via a32addcfb781199b2216d7b87cf3178b97620809 (commit) via 65de2529a9e21f66c72f6335886db5a7f2ea6b75 (commit) via 42f1b451a63767b9489dfae51a042236d31303b5 (commit) via 7f4c26f8601b2335b210896d2cb06348957e7aae (commit) via a3b44c7ed9a26231fcdf0e795305311da8814f92 (commit) via ebd007b21757d3a88b7f769fa6000662fae2eb9a (commit) via e7ab3c068fe39cb7be783127039113213fdb2be4 (commit) via 308c5f57d9a06e925001ca11df323a78d443d4b2 (commit) via 7a3cb790a6561f391be6118b75b9f74513820517 (commit) via fd392d6b2090d227937add287a2ad0f8eb5cba59 (commit) via 191a5fc08cb8ce08917ad4e8739d7d5efbec2be2 (commit) via 0981c25cd8ef651e6274feae8b3b6acd0869b680 (commit) via 0a276ac34bac3c9729992e3fdb3622d8916c5096 (commit) via 394ab2699e254145e4904e1408036bb1683c14ca (commit) via 5d15467ad4f14b13e2d68f8f3b0c8d33dde4afeb (commit) via 27271fa455228f14b1e16b576f0c8c40f532c227 (commit) via 7cd2f2715bb7bca536a1b8d85a2d62f64831bd3a (commit) via 270bb94a46d94298c2fbe3926578650e3f21ae5d (commit) via 928c06274816669a94753b80f493a2e4e1b9357a (commit) via fb5d245b3148250bb3d7d6b46c2ec2b7914982a7 (commit) via 8e8dcea2953dfd888602f37330c9f26e3f151244 (commit) via 31244a2ccbf9e2e8607236e859cbf38ddafd6060 (commit) via f9b7ce902ff4532aaa1ea51911a3f798b9c9d653 (commit) via 31ea4f0734a086f2345aaea57fd6fc1c3ea4a87e (commit) via fd5e29b5a8aff1fe9f11f9f7bee5f0eb85ae569a (commit) from 786920a3208fa335f334689d65b7302e9d52a568 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- ----------------------------------------------------------------------- Summary of changes: .travis.yml | 2 + NEWS | 21 ++++++++--- paramiko/__init__.py | 7 +++- paramiko/client.py | 37 ++++++++++-------- paramiko/config.py | 56 +++++++++++++++++----------- paramiko/packet.py | 4 +- paramiko/proxy.py | 91 +++++++++++++++++++++++++++++++++++++++++++++ paramiko/ssh_exception.py | 17 +++++++++ paramiko/transport.py | 5 ++- setup.py | 2 +- tests/test_util.py | 48 +++++++++++++++++++++++- 11 files changed, 241 insertions(+), 49 deletions(-) create mode 100644 paramiko/proxy.py The diff of changes is: diff --git a/.travis.yml b/.travis.yml index 312a184..90dbb80 100644 --- a/.travis.yml +++ b/.travis.yml @@ -8,6 +8,8 @@ install: - pip install -e . script: python test.py notifications: + email: + on_failure: change irc: channels: "irc.freenode.org#fabric" on_success: change diff --git a/NEWS b/NEWS index ed9fd00..5542046 100644 --- a/NEWS +++ b/NEWS @@ -12,12 +12,21 @@ Issues noted as "Fabric #NN" can be found at https://github.com/fabric/fabric/. Releases ======== -v1.9.0 (DD MM YYYY) -------------------- - +v1.9.0 (6th Nov 2012) +--------------------- -v1.8.1 (DD MM YYYY) -------------------- +* #97 (with a little #93): Improve config parsing of `ProxyCommand` directives + and provide a wrapper class to allow subprocess-driven proxy commands to be + used as `sock=` arguments for `SSHClient.connect`. +* #77: Allow `SSHClient.connect()` to take an explicit `sock` parameter + overriding creation of an internal, implicit socket object. +* Thanks in no particular order to Erwin Bolwidt, Oskari Saarenmaa, Steven + Noonan, Vladimir Lazarenko, Lincoln de Sousa, Valentino Volonghi, Olle + Lundberg, and Github user `@acrish` for the various and sundry patches + leading to the above changes. + +v1.8.1 (6th Nov 2012) +--------------------- * #90: Ensure that callbacks handed to `SFTPClient.get()` always fire at least once, even for zero-length files downloaded. Thanks to Github user `@enB` for @@ -32,6 +41,8 @@ v1.8.1 (DD MM YYYY) v1.8.0 (3rd Oct 2012) --------------------- +* #17 ('ssh' 28): Fix spurious `NoneType has no attribute 'error'` and similar + exceptions that crop up on interpreter exit. * 'ssh' 32: Raise a more useful error explaining which `known_hosts` key line was problematic, when encountering `binascii` issues decoding known host keys. Thanks to `@thomasvs` for catch & patch. diff --git a/paramiko/__init__.py b/paramiko/__init__.py index 8c15853..29e470a 100644 --- a/paramiko/__init__.py +++ b/paramiko/__init__.py @@ -55,7 +55,7 @@ if sys.version_info < (2, 2): __author__ = "Jeff Forcier <jeff(a)bitprophet.org>" -__version__ = "1.8.0" +__version__ = "1.9.0" __license__ = "GNU Lesser General Public License (LGPL)" @@ -65,7 +65,7 @@ from auth_handler import AuthHandler from channel import Channel, ChannelFile from ssh_exception import SSHException, PasswordRequiredException, \ BadAuthenticationType, ChannelException, BadHostKeyException, \ - AuthenticationException + AuthenticationException, ProxyCommandFailure from server import ServerInterface, SubsystemHandler, InteractiveQuery from rsakey import RSAKey from dsskey import DSSKey @@ -83,6 +83,7 @@ from agent import Agent, AgentKey from pkey import PKey from hostkeys import HostKeys from config import SSHConfig +from proxy import ProxyCommand # fix module names for epydoc for c in locals().values(): @@ -119,6 +120,8 @@ __all__ = [ 'Transport', 'BadAuthenticationType', 'ChannelException', 'BadHostKeyException', + 'ProxyCommand', + 'ProxyCommandFailure', 'SFTP', 'SFTPFile', 'SFTPHandle', diff --git a/paramiko/client.py b/paramiko/client.py index 0f40897..07560a3 100644 --- a/paramiko/client.py +++ b/paramiko/client.py @@ -229,7 +229,7 @@ class SSHClient (object): def connect(self, hostname, port=SSH_PORT, username=None, password=None, pkey=None, key_filename=None, timeout=None, allow_agent=True, look_for_keys=True, - compress=False): + compress=False, sock=None): """ Connect to an SSH server and authenticate to it. The server's host key is checked against the system host keys (see L{load_system_host_keys}) @@ -272,6 +272,9 @@ class SSHClient (object): @type look_for_keys: bool @param compress: set to True to turn on compression @type compress: bool + @param sock: an open socket or socket-like object (such as a + L{Channel}) to use for communication to the target host + @type sock: socket @raise BadHostKeyException: if the server's host key could not be verified @@ -280,21 +283,23 @@ class SSHClient (object): establishing an SSH session @raise socket.error: if a socket error occurred while connecting """ - for (family, socktype, proto, canonname, sockaddr) in socket.getaddrinfo(hostname, port, socket.AF_UNSPEC, socket.SOCK_STREAM): - if socktype == socket.SOCK_STREAM: - af = family - addr = sockaddr - break - else: - # some OS like AIX don't indicate SOCK_STREAM support, so just guess. :( - af, _, _, _, addr = socket.getaddrinfo(hostname, port, socket.AF_UNSPEC, socket.SOCK_STREAM) - sock = socket.socket(af, socket.SOCK_STREAM) - if timeout is not None: - try: - sock.settimeout(timeout) - except: - pass - retry_on_signal(lambda: sock.connect(addr)) + if not sock: + for (family, socktype, proto, canonname, sockaddr) in socket.getaddrinfo(hostname, port, socket.AF_UNSPEC, socket.SOCK_STREAM): + if socktype == socket.SOCK_STREAM: + af = family + addr = sockaddr + break + else: + # some OS like AIX don't indicate SOCK_STREAM support, so just guess. :( + af, _, _, _, addr = socket.getaddrinfo(hostname, port, socket.AF_UNSPEC, socket.SOCK_STREAM) + sock = socket.socket(af, socket.SOCK_STREAM) + if timeout is not None: + try: + sock.settimeout(timeout) + except: + pass + retry_on_signal(lambda: sock.connect(addr)) + t = self._transport = Transport(sock) t.use_compression(compress=compress) if self._log_channel is not None: diff --git a/paramiko/config.py b/paramiko/config.py index 458d5dd..2828d90 100644 --- a/paramiko/config.py +++ b/paramiko/config.py @@ -22,9 +22,12 @@ L{SSHConfig}. import fnmatch import os +import re import socket SSH_PORT=22 +proxy_re = re.compile(r"^(proxycommand)\s*=*\s*(.*)", re.I) + class SSHConfig (object): """ @@ -56,8 +59,13 @@ class SSHConfig (object): if (line == '') or (line[0] == '#'): continue if '=' in line: - key, value = line.split('=', 1) - key = key.strip().lower() + # Ensure ProxyCommand gets properly split + if line.lower().strip().startswith('proxycommand'): + match = proxy_re.match(line) + key, value = match.group(1).lower(), match.group(2) + else: + key, value = line.split('=', 1) + key = key.strip().lower() else: # find first whitespace, and split there i = 0 @@ -149,26 +157,30 @@ class SSHConfig (object): host = socket.gethostname().split('.')[0] fqdn = socket.getfqdn() homedir = os.path.expanduser('~') - replacements = {'controlpath' : - [ - ('%h', config['hostname']), - ('%l', fqdn), - ('%L', host), - ('%n', hostname), - ('%p', port), - ('%r', remoteuser), - ('%u', user) - ], - 'identityfile' : - [ - ('~', homedir), - ('%d', homedir), - ('%h', config['hostname']), - ('%l', fqdn), - ('%u', user), - ('%r', remoteuser) - ] - } + replacements = { + 'controlpath': [ + ('%h', config['hostname']), + ('%l', fqdn), + ('%L', host), + ('%n', hostname), + ('%p', port), + ('%r', remoteuser), + ('%u', user) + ], + 'identityfile': [ + ('~', homedir), + ('%d', homedir), + ('%h', config['hostname']), + ('%l', fqdn), + ('%u', user), + ('%r', remoteuser) + ], + 'proxycommand': [ + ('%h', config['hostname']), + ('%p', port), + ('%r', remoteuser), + ], + } for k in config: if k in replacements: for find, replace in replacements[k]: diff --git a/paramiko/packet.py b/paramiko/packet.py index 9782061..5d918e2 100644 --- a/paramiko/packet.py +++ b/paramiko/packet.py @@ -29,7 +29,7 @@ import time from paramiko.common import * from paramiko import util -from paramiko.ssh_exception import SSHException +from paramiko.ssh_exception import SSHException, ProxyCommandFailure from paramiko.message import Message @@ -254,6 +254,8 @@ class Packetizer (object): retry_write = True else: n = -1 + except ProxyCommandFailure: + raise # so it doesn't get swallowed by the below catchall except Exception: # could be: (32, 'Broken pipe') n = -1 diff --git a/paramiko/proxy.py b/paramiko/proxy.py new file mode 100644 index 0000000..218b76e --- /dev/null +++ b/paramiko/proxy.py @@ -0,0 +1,91 @@ +# Copyright (C) 2012 Yipit, Inc <coders(a)yipit.com> +# +# This file is part of paramiko. +# +# Paramiko is free software; you can redistribute it and/or modify it under the +# terms of the GNU Lesser General Public License as published by the Free +# Software Foundation; either version 2.1 of the License, or (at your option) +# any later version. +# +# Paramiko is distrubuted in the hope that it will be useful, but WITHOUT ANY +# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR +# A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more +# details. +# +# You should have received a copy of the GNU Lesser General Public License +# along with Paramiko; if not, write to the Free Software Foundation, Inc., +# 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA. + +""" +L{ProxyCommand}. +""" + +import os +from shlex import split as shlsplit +import signal +from subprocess import Popen, PIPE + +from paramiko.ssh_exception import ProxyCommandFailure + + +class ProxyCommand(object): + """ + Wraps a subprocess running ProxyCommand-driven programs. + + This class implements a the socket-like interface needed by the + L{Transport} and L{Packetizer} classes. Using this class instead of a + regular socket makes it possible to talk with a Popen'd command that will + proxy traffic between the client and a server hosted in another machine. + """ + def __init__(self, command_line): + """ + Create a new CommandProxy instance. The instance created by this + class can be passed as an argument to the L{Transport} class. + + @param command_line: the command that should be executed and + used as the proxy. + @type command_line: str + """ + self.cmd = shlsplit(command_line) + self.process = Popen(self.cmd, stdin=PIPE, stdout=PIPE, stderr=PIPE) + + def send(self, content): + """ + Write the content received from the SSH client to the standard + input of the forked command. + + @param content: string to be sent to the forked command + @type content: str + """ + try: + self.process.stdin.write(content) + except IOError, e: + # There was a problem with the child process. It probably + # died and we can't proceed. The best option here is to + # raise an exception informing the user that the informed + # ProxyCommand is not working. + raise BadProxyCommand(' '.join(self.cmd), e.strerror) + return len(content) + + def recv(self, size): + """ + Read from the standard output of the forked program. + + @param size: how many chars should be read + @type size: int + + @return: the length of the read content + @rtype: int + """ + try: + return os.read(self.process.stdout.fileno(), size) + except IOError, e: + raise BadProxyCommand(' '.join(self.cmd), e.strerror) + + def close(self): + os.kill(self.process.pid, signal.SIGTERM) + + def settimeout(self, timeout): + # Timeouts are meaningless for this implementation, but are part of the + # spec, so must be present. + pass diff --git a/paramiko/ssh_exception.py b/paramiko/ssh_exception.py index 68924d0..f2406dc 100644 --- a/paramiko/ssh_exception.py +++ b/paramiko/ssh_exception.py @@ -113,3 +113,20 @@ class BadHostKeyException (SSHException): self.key = got_key self.expected_key = expected_key + +class ProxyCommandFailure (SSHException): + """ + The "ProxyCommand" found in the .ssh/config file returned an error. + + @ivar command: The command line that is generating this exception. + @type command: str + @ivar error: The error captured from the proxy command output. + @type error: str + """ + def __init__(self, command, error): + SSHException.__init__(self, + '"ProxyCommand (%s)" returned non-zero exit status: %s' % ( + command, error + ) + ) + self.error = error diff --git a/paramiko/transport.py b/paramiko/transport.py index 04680a9..c801031 100644 --- a/paramiko/transport.py +++ b/paramiko/transport.py @@ -44,7 +44,8 @@ from paramiko.primes import ModulusPack from paramiko.rsakey import RSAKey from paramiko.server import ServerInterface from paramiko.sftp_client import SFTPClient -from paramiko.ssh_exception import SSHException, BadAuthenticationType, ChannelException +from paramiko.ssh_exception import (SSHException, BadAuthenticationType, + ChannelException, ProxyCommandFailure) from paramiko.util import retry_on_signal from Crypto import Random @@ -1674,6 +1675,8 @@ class Transport (threading.Thread): timeout = 2 try: buf = self.packetizer.readline(timeout) + except ProxyCommandFailure: + raise except Exception, x: raise SSHException('Error reading SSH protocol banner' + str(x)) if buf[:4] == 'SSH-': diff --git a/setup.py b/setup.py index 73407b0..1bb1a71 100644 --- a/setup.py +++ b/setup.py @@ -52,7 +52,7 @@ if sys.platform == 'darwin': setup(name = "paramiko", - version = "1.8.0", + version = "1.9.0", description = "SSH2 protocol library", author = "Jeff Forcier", author_email = "jeff(a)bitprophet.org", diff --git a/tests/test_util.py b/tests/test_util.py index 458709b..093a215 100644 --- a/tests/test_util.py +++ b/tests/test_util.py @@ -27,6 +27,7 @@ import os import unittest from Crypto.Hash import SHA import paramiko.util +from paramiko.util import lookup_ssh_host_config as host_config from util import ParamikoTest @@ -151,7 +152,7 @@ class UtilTest(ParamikoTest): x = rng.read(32) self.assertEquals(len(x), 32) - def test_7_host_config_expose_issue_33(self): + def test_7_host_config_expose_ssh_issue_33(self): test_config_file = """ Host www13.* Port 22 @@ -194,3 +195,48 @@ Host * raise AssertionError('foo') self.assertRaises(AssertionError, lambda: paramiko.util.retry_on_signal(raises_other_exception)) + + def test_9_proxycommand_config_equals_parsing(self): + """ + ProxyCommand should not split on equals signs within the value. + """ + conf = """ +Host space-delimited + ProxyCommand foo bar=biz baz + +Host equals-delimited + ProxyCommand=foo bar=biz baz +""" + f = cStringIO.StringIO(conf) + config = paramiko.util.parse_ssh_config(f) + for host in ('space-delimited', 'equals-delimited'): + self.assertEquals( + host_config(host, config)['proxycommand'], + 'foo bar=biz baz' + ) + + def test_10_proxycommand_interpolation(self): + """ + ProxyCommand should perform interpolation on the value + """ + config = paramiko.util.parse_ssh_config(cStringIO.StringIO(""" +Host * + Port 25 + ProxyCommand host %h port %p + +Host specific + Port 37 + ProxyCommand host %h port %p lol + +Host portonly + Port 155 +""")) + for host, val in ( + ('foo.com', "host foo.com port 25"), + ('specific', "host specific port 37 lol"), + ('portonly', "host portonly port 155"), + ): + self.assertEquals( + host_config(host, config)['proxycommand'], + val + ) hooks/post-receive -- python-paramiko.git (Debian package python-paramiko) This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "python-paramiko.git" (Debian package python-paramiko).

1 0

← Newer
1
...
11
12
13
14
15
16
17
...
33
Older →

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

x2go-commits November 2012