ajdZddlZddlZddlZddlZddlZddlZddlmZddl m Z d\Z Z ddl Z ddlmZmZdZGd d eZd ZGd d eZGddeZy#e $r ZeZ YdZ[;dZ[wwxYw)z2 Configuration file (aka ``ssh_config``) support. N)partial)StringIO)NN)CouldNotCanonicalizeConfigParseErrorceZdZdZej dZgddggdgdgddZd Ze d Z e d Z e d Z d Z dZddZdZdZdZdZdZdZdZdZdZdZdZy) SSHConfiga Representation of config information as stored in the format used by OpenSSH. Queries can be made via `lookup`. The format is described in OpenSSH's ``ssh_config`` man page. This class is provided primarily as a convenience to posix users (since the OpenSSH format is a de-facto standard on posix) but should work fine on Windows too. .. versionadded:: 1.6 z(\w+)(?:\s*=\s*|\s+)(.+))%h%l%L%n%p%r%ur )~%dr r rr)rr rr)rr r r rrrr) controlpathhostname identityfile proxycommand match-execcg|_y)a Create a new OpenSSH config object. Note: the newer alternate constructors `from_path`, `from_file` and `from_text` are simpler to use, as they parse on instantiation. For example, instead of:: config = SSHConfig() config.parse(open("some-path.config") you could:: config = SSHConfig.from_file(open("some-path.config")) # Or more directly: config = SSHConfig.from_path("some-path.config") # Or if you have arbitrary ssh_config text from some other source: config = SSHConfig.from_text("Host foo\n\tUser bar") N)_config)selfs /lib/python3.12/site-packages/paramiko/config.py__init__zSSHConfig.__init__Gs & c6|jt|S)zg Create a new, parsed `SSHConfig` from ``text`` string. .. versionadded:: 2.7 ) from_filer)clstexts r from_textzSSHConfig.from_text\s}}Xd^,,rcft|5}|j|cdddS#1swYyxYw)zr Create a new, parsed `SSHConfig` from the file found at ``path``. .. versionadded:: 2.7 N)openr )r!pathflos r from_pathzSSHConfig.from_pathes.$Z &3==% & & &s'0c6|}|j||S)zp Create a new, parsed `SSHConfig` from file-like object ``flo``. .. versionadded:: 2.7 )parse)r!r'objs rr zSSHConfig.from_fileose # rc.dgid}|D]n}|j}|r|jdr(tj|j|}|st dj ||jdj}|jd}|dvrN|jj|dii}|d k(r|j||d <|j||d <|d k(r|jd k(r d |d|<|jdr|jdr|dd}|dvr+||dvr|d|j|S|g|d|<^||dvsg||d|<q|jj|y )z Read an OpenSSH config from the given file object. :param file_obj: a file-like object to read the config file from *)hostconfig#zUnparsable line {}r)r.matchr/r.matchesrnoneN")r localforward remoteforward)strip startswithrer2SETTINGS_REGEXrformatgrouplowerrappend _get_hosts _get_matchesendswith)rfile_objcontextliner2keyvalues rr*zSSHConfig.parsezs 5B/0 3D::z$SSHConfig._lookup..s!(AWS\,A(s r) SSHConfigDictr_pattern_matchesrR _does_matchitemsextend_expand_variables)rrrWrPrErHrGs ` @rrQzSSHConfig._lookups ?#oG|| G%%gkk&"&=xH##KK 2.)W%h/557  Ug% 05/@58eGCLN*CL''(#((  *(((; W $)@)H'rcd}|D]D}dj||}t||}||d}n tj|}|sB|cS|j dddk(r|St |#tj$rY?wxYw)ag Return canonicalized version of ``hostname``. :param str hostname: Target hostname. :param options: An `SSHConfigDict` from a previous lookup pass. :param domains: List of domains (e.g. ``["paramiko.org"]``). :returns: A canonicalized hostname if one was found, else ``None``. .. versionadded:: 2.7 Fz{}.{}rcanonicalizefallbacklocalrK)r=_addressfamily_host_lookupsocket gethostbynamegaierrorrRr)rrrWrZfounddomain candidatefamily_specifics rrVzSSHConfig.canonicalizes !Fx8I8GLO*(*"00;E! % !, ;;2E :e CO#8,,sA..BBcdt}|jD]}|j|d|S)z Return the set of literal hostnames defined in the SSH config (both explicit hostnames and wildcard entries). r.)setrupdate)rhostsentrys r get_hostnameszSSHConfig.get_hostnames;s3 \\ (E LLv ' ( rct|dr|jd}d}|D]G}|jdrtj||ddrytj||sFd}I|S)NrU,F!rT)hasattrrUr:fnmatch)rpatternstargetr2patterns rrdzSSHConfig._pattern_matchesEss 8W %~~c*H G!!#&7?? ,1  rc&|j||Sr^)rd)rrvrs r_allowedzSSHConfig._allowedWs$$UH55rcg}|dd}tj}|r<|jd}d} |jdd} |jdd} |d|d} } | dk(r|j ||ry| dk(ry | d k(r| xs|}|j | |} n| d k(r|j | |} n}| dk(r| xs|}|j | |} n_| d k(r|j | |} nG| d k(rB|j ||d| }tttj|dd j} | |j | |ry|j||r<|S)NrrusertypeparamrPFallTr. originalhost localuserexecrstdout)hidewarn) getpassgetuserpoprR _should_failrd _tokenizeinvokeinvoke_import_errorrunokr@)r match_listtarget_hostnamerPrWmatched candidateslocal_usernamerqpassedconfigured_hostconfigured_usertype_rhostvalrexec_cmds rrezSSHConfig._does_matchZs]  *"q)IF&kk*d;O%kk&$7O$V,i.@5E #$$Y : %&)<_..ug>.(..uoF&&8...ud;+%..unE&>>_lE >--H8$GJJ!d&7&7 &J NN9 %Y\rc|dr|S| S)Nnegater_)r would_passrqs rrzSSHConfig._should_fails&x0zD*nDrc |j|}|s|S|}|dk7r|jd|}d|vr|d}nt}tj}d|vr|d} n|} t j jdd} t|| } tjjd} | || | ||| || d } |}| jD]%\}}||vr |j|t|}'|S)a Tokenize a string based on current config/hostname data. :param config: Current config data. :param target_hostname: Original target connection hostname. :param key: Config key being tokenized (used to filter token list). :param value: Config value being tokenized. :returns: The tokenized version of the input ``value`` string. rportrrNrr) rr r r rrrrr)_allowed_tokensrRSSH_PORTrrrl gethostnamerULazyFqdnosr& expanduserrfreplacestr)rr/rrGrHallowed_tokensconfigured_hostnamerr remoteuserlocal_hostname local_fqdnhomedir replacements tokenizedfindrs rrzSSHConfig._tokenizes&--c2L. * "(**Z9L"M  V &>DD  V JJ++-33C8;fn5 ''$$S) % " $ )//1 >MD'>)!))$G =I > rc:|jj|gS)aJ Given config ``key``, return list of token strings to tokenize. .. note:: This feels like it wants to eventually go away, but is used to preserve as-strict-as-possible compatibility with OpenSSH, which for whatever reason only applies some tokens to some config keys. )TOKENS_BY_CONFIG_KEYrRrrGs rrzSSHConfig._allowed_tokenss((,,S"55rc|D]f}|| t|j|||}t||tr%t ||D]\}}|||||<Y|||||<h|S)aA Return a dict of config options with expanded substitutions for a given original & current target hostname. Please refer to :doc:`/api/config` for details. :param dict config: the currently parsed config :param str hostname: the hostname whose config is being looked up )rr isinstancelist enumerate)rr/rk tokenizerirHs rrhzSSHConfig._expand_variabless 1Aay KI&)T* )&) 44HAu#,U#3F1IaL4&fQi0q  1 rc| tj|S#t$rtdj |wxYw)z> Return a list of host_names from host value. zUnparsable host {})shlexrU ValueErrorrr=)rr.s rrAzSSHConfig._get_hostss? F;;t$ $ F"#7#>#>t#DE E Fs$;c g}tj|}|rdddd}|jd}|jdr d|d<|dd}||d <|d vr|j |O|st d j ||jd|d <|j ||r|Dcgc]}|d  }}d |vrxd tt fd|tt fd|}}d} t|rd} n)d|vr%|jd|jd kDrd} | t | |Scc}w)z Parse a specific Match config line into a list-of-dicts for its values. Performs some parse-time validation as well. NF)rrrrr{Trrr)rrPz'Missing parameter to Match '{}' keywordrrc |vSr^r_ra allowables rz(SSHConfig._get_matches..s a9nrc |vSr^r_rs rrz(SSHConfig._get_matches..s ay&8rz>Match does not allow 'all' mixed with anything but 'canonical'rPz-Match does not allow 'all' before 'canonical') rrUrr:r@rr=rfilteranyindex) rr2r3tokensrrakeywordsrbaderrrs @rrBzSSHConfig._get_matchessX U#!DEBEJJqME$"&hab !E&M,,u%&=DDUK$ZZ]E'N NN5 !#((//!AfI// H ,IV4h?@V8(CDBC3xV"rxx '>@N   V #^^F!!                ??   sA(BB'&B'ceZdZdZddZdZy)rz7 Returns the host's fqdn on request as string. Nc.d|_||_||_yr^)fqdnr/r.)rr/r.s rrzLazyFqdn.__init__Ns   rc|j[d}t|j|j}||D]}|\}}}}}|sd|vs|}n|t j }||_|jS)NrN)rrkr.r/rlgetfqdn) rrresultsresafsocktypeproto canonnamesas r__str__zLazyFqdn.__str__Ss 99 D0DKKHG""C9<6B%B SI%5(  |~~'DIyyrr^)rrrrrrr_rrrrIs rrc.eZdZdZfdZdZdZxZS)rca A dictionary wrapper/subclass for per-host configuration structures. This class introduces some usage niceties for consumers of `SSHConfig`, specifically around the issue of variable type conversions: normal value access yields strings, but there are now methods such as `as_bool` and `as_int` that yield casted values instead. For example, given the following ``ssh_config`` file snippet:: Host foo.example.com PasswordAuthentication no Compression yes ServerAliveInterval 60 the following code highlights how you can access the raw strings as well as usefully Python type-casted versions (recalling that keys are all normalized to lowercase first):: my_config = SSHConfig() my_config.parse(open('~/.ssh/config')) conf = my_config.lookup('foo.example.com') assert conf['passwordauthentication'] == 'no' assert conf.as_bool('passwordauthentication') is False assert conf['compression'] == 'yes' assert conf.as_bool('compression') is True assert conf['serveraliveinterval'] == '60' assert conf.as_int('serveraliveinterval') == 60 .. versionadded:: 2.5 c,tt| |i|yr^)superrcr)rargskwargs __class__s rrzSSHConfigDict.__init__s mT+Trs( (B ssl" J#v#LBDBUsA A1%A,,A1