mirror of
https://github.com/curl/curl.git
synced 2026-07-10 13:27:16 +03:00
- make the libssh backend do the same fallback for private and public key filename as libssh2 already did and is documented behavior. This now uses a common function. - set the file names already in setup_connection if public key auth is requested, so that the connection reuse functions can use the information when checking for existing connections to reuse - rename the oddly named struct fields 'rsa' to 'priv_key' and 'rsa_pub' to 'pub_key' to better reflect their purposes Fixes #22243 Closes #22244
448 lines
13 KiB
C
448 lines
13 KiB
C
/***************************************************************************
|
|
* _ _ ____ _
|
|
* Project ___| | | | _ \| |
|
|
* / __| | | | |_) | |
|
|
* | (__| |_| | _ <| |___
|
|
* \___|\___/|_| \_\_____|
|
|
*
|
|
* Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
*
|
|
* This software is licensed as described in the file COPYING, which
|
|
* you should have received as part of this distribution. The terms
|
|
* are also available at https://curl.se/docs/copyright.html.
|
|
*
|
|
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
|
|
* copies of the Software, and permit persons to whom the Software is
|
|
* furnished to do so, under the terms of the COPYING file.
|
|
*
|
|
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
|
|
* KIND, either express or implied.
|
|
*
|
|
* SPDX-License-Identifier: curl AND ISC
|
|
*
|
|
***************************************************************************/
|
|
#include "curl_setup.h"
|
|
#include "vssh/ssh.h"
|
|
|
|
#ifdef USE_SSH
|
|
|
|
#include "vssh/vssh.h"
|
|
#include "curlx/strparse.h"
|
|
#include "curl_trc.h"
|
|
#include "escape.h"
|
|
#include "select.h" /* for Curl_pollset_change() */
|
|
#include "url.h" /* for Curl_conn_meta_get() */
|
|
#include "curlx/fopen.h"
|
|
|
|
#ifdef CURLVERBOSE
|
|
const char *Curl_ssh_statename(sshstate state)
|
|
{
|
|
static const char * const names[] = {
|
|
"SSH_STOP",
|
|
"SSH_INIT",
|
|
"SSH_S_STARTUP",
|
|
"SSH_HOSTKEY",
|
|
"SSH_AUTHLIST",
|
|
"SSH_AUTH_PKEY_INIT",
|
|
"SSH_AUTH_PKEY",
|
|
"SSH_AUTH_PASS_INIT",
|
|
"SSH_AUTH_PASS",
|
|
"SSH_AUTH_AGENT_INIT",
|
|
"SSH_AUTH_AGENT_LIST",
|
|
"SSH_AUTH_AGENT",
|
|
"SSH_AUTH_HOST_INIT",
|
|
"SSH_AUTH_HOST",
|
|
"SSH_AUTH_KEY_INIT",
|
|
"SSH_AUTH_KEY",
|
|
"SSH_AUTH_GSSAPI",
|
|
"SSH_AUTH_DONE",
|
|
"SSH_SFTP_INIT",
|
|
"SSH_SFTP_REALPATH",
|
|
"SSH_SFTP_QUOTE_INIT",
|
|
"SSH_SFTP_POSTQUOTE_INIT",
|
|
"SSH_SFTP_QUOTE",
|
|
"SSH_SFTP_NEXT_QUOTE",
|
|
"SSH_SFTP_QUOTE_STAT",
|
|
"SSH_SFTP_QUOTE_SETSTAT",
|
|
"SSH_SFTP_QUOTE_SYMLINK",
|
|
"SSH_SFTP_QUOTE_MKDIR",
|
|
"SSH_SFTP_QUOTE_RENAME",
|
|
"SSH_SFTP_QUOTE_RMDIR",
|
|
"SSH_SFTP_QUOTE_UNLINK",
|
|
"SSH_SFTP_QUOTE_STATVFS",
|
|
"SSH_SFTP_GETINFO",
|
|
"SSH_SFTP_FILETIME",
|
|
"SSH_SFTP_TRANS_INIT",
|
|
"SSH_SFTP_UPLOAD_INIT",
|
|
"SSH_SFTP_CREATE_DIRS_INIT",
|
|
"SSH_SFTP_CREATE_DIRS",
|
|
"SSH_SFTP_CREATE_DIRS_MKDIR",
|
|
"SSH_SFTP_READDIR_INIT",
|
|
"SSH_SFTP_READDIR",
|
|
"SSH_SFTP_READDIR_LINK",
|
|
"SSH_SFTP_READDIR_BOTTOM",
|
|
"SSH_SFTP_READDIR_DONE",
|
|
"SSH_SFTP_DOWNLOAD_INIT",
|
|
"SSH_SFTP_DOWNLOAD_STAT",
|
|
"SSH_SFTP_CLOSE",
|
|
"SSH_SFTP_SHUTDOWN",
|
|
"SSH_SCP_TRANS_INIT",
|
|
"SSH_SCP_UPLOAD_INIT",
|
|
"SSH_SCP_DOWNLOAD_INIT",
|
|
"SSH_SCP_DOWNLOAD",
|
|
"SSH_SCP_DONE",
|
|
"SSH_SCP_SEND_EOF",
|
|
"SSH_SCP_WAIT_EOF",
|
|
"SSH_SCP_WAIT_CLOSE",
|
|
"SSH_SCP_CHANNEL_FREE",
|
|
"SSH_SESSION_DISCONNECT",
|
|
"SSH_SESSION_FREE",
|
|
"QUIT"
|
|
};
|
|
/* a precaution to make sure the lists are in sync */
|
|
DEBUGASSERT(CURL_ARRAYSIZE(names) == SSH_LAST);
|
|
return ((size_t)state < CURL_ARRAYSIZE(names)) ? names[state] : "";
|
|
}
|
|
#endif /* CURLVERBOSE */
|
|
|
|
/*
|
|
* SSH State machine related code
|
|
*/
|
|
/* This is the ONLY way to change SSH state! */
|
|
void Curl_ssh_set_state(struct Curl_easy *data,
|
|
struct ssh_conn *sshc,
|
|
sshstate nowstate)
|
|
{
|
|
#ifdef CURLVERBOSE
|
|
if(sshc->state != nowstate) {
|
|
CURL_TRC_SSH(data, "[%s] -> [%s]",
|
|
Curl_ssh_statename(sshc->state),
|
|
Curl_ssh_statename(nowstate));
|
|
}
|
|
#else
|
|
(void)data;
|
|
#endif
|
|
sshc->state = nowstate;
|
|
}
|
|
|
|
#define MAX_SSHPATH_LEN 100000 /* arbitrary */
|
|
|
|
/* figure out the path to work with in this particular request */
|
|
CURLcode Curl_getworkingpath(struct Curl_easy *data,
|
|
const char *homedir, /* when SFTP is used */
|
|
char **path) /* returns the allocated
|
|
real path to work with */
|
|
{
|
|
char *working_path;
|
|
size_t working_path_len;
|
|
struct dynbuf npath;
|
|
CURLcode result =
|
|
Curl_urldecode(data->state.up.path, 0, &working_path,
|
|
&working_path_len, REJECT_ZERO);
|
|
if(result)
|
|
return result;
|
|
|
|
/* new path to switch to in case we need to */
|
|
curlx_dyn_init(&npath, MAX_SSHPATH_LEN);
|
|
|
|
/* Check for /~/, indicating relative to the user's home directory */
|
|
if((data->conn->scheme->protocol & CURLPROTO_SCP) &&
|
|
(working_path_len > 3) && (!memcmp(working_path, "/~/", 3))) {
|
|
/* It is referenced to the home directory, so strip the leading '/~/' */
|
|
if(curlx_dyn_addn(&npath, &working_path[3], working_path_len - 3)) {
|
|
curlx_free(working_path);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
}
|
|
else if((data->conn->scheme->protocol & CURLPROTO_SFTP) &&
|
|
(!strcmp("/~", working_path) ||
|
|
((working_path_len > 2) && !memcmp(working_path, "/~/", 3)))) {
|
|
if(curlx_dyn_add(&npath, homedir)) {
|
|
curlx_free(working_path);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
if(working_path_len > 2) {
|
|
size_t len;
|
|
const char *p;
|
|
int copyfrom = 3;
|
|
/* Copy a separating '/' if homedir does not end with one */
|
|
len = curlx_dyn_len(&npath);
|
|
p = curlx_dyn_ptr(&npath);
|
|
if(len && (p[len - 1] != '/'))
|
|
copyfrom = 2;
|
|
|
|
if(curlx_dyn_addn(&npath, &working_path[copyfrom],
|
|
working_path_len - copyfrom)) {
|
|
curlx_free(working_path);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
}
|
|
else {
|
|
if(curlx_dyn_add(&npath, "/")) {
|
|
curlx_free(working_path);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
}
|
|
}
|
|
|
|
if(curlx_dyn_len(&npath)) {
|
|
curlx_free(working_path);
|
|
|
|
/* store the pointer for the caller to receive */
|
|
*path = curlx_dyn_ptr(&npath);
|
|
}
|
|
else
|
|
*path = working_path;
|
|
DEBUGASSERT(*path && (*path)[0]);
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
#define MAX_PATHLENGTH 65535 /* arbitrary long */
|
|
|
|
CURLcode Curl_get_pathname(const char **cpp, char **path, const char *homedir)
|
|
{
|
|
const char *cp = *cpp;
|
|
struct dynbuf out;
|
|
CURLcode result;
|
|
|
|
DEBUGASSERT(homedir);
|
|
*path = NULL;
|
|
*cpp = NULL;
|
|
if(!*cp || !homedir)
|
|
return CURLE_QUOTE_ERROR;
|
|
|
|
curlx_dyn_init(&out, MAX_PATHLENGTH);
|
|
|
|
/* Ignore leading whitespace */
|
|
curlx_str_passblanks(&cp);
|
|
|
|
/* Check for quoted filenames */
|
|
if(*cp == '\"' || *cp == '\'') {
|
|
char quot = *cp++;
|
|
|
|
/* Search for terminating quote, unescape some chars */
|
|
while(*cp != quot) {
|
|
if(!*cp) /* End of string */
|
|
goto fail;
|
|
|
|
if(*cp == '\\') { /* Escaped characters */
|
|
cp++;
|
|
if(*cp != '\'' && *cp != '\"' && *cp != '\\')
|
|
goto fail;
|
|
}
|
|
result = curlx_dyn_addn(&out, cp, 1);
|
|
if(result)
|
|
return result;
|
|
cp++;
|
|
}
|
|
cp++; /* pass the end quote */
|
|
|
|
if(!curlx_dyn_len(&out))
|
|
goto fail;
|
|
}
|
|
else {
|
|
struct Curl_str word;
|
|
bool content = FALSE;
|
|
int rc;
|
|
/* Handling for relative path - prepend home directory */
|
|
if(cp[0] == '/' && cp[1] == '~' && cp[2] == '/') {
|
|
result = curlx_dyn_add(&out, homedir);
|
|
if(!result)
|
|
result = curlx_dyn_addn(&out, "/", 1);
|
|
if(result)
|
|
return result;
|
|
cp += 3;
|
|
content = TRUE;
|
|
}
|
|
/* Read to end of filename - either to whitespace or terminator */
|
|
rc = curlx_str_word(&cp, &word, MAX_PATHLENGTH);
|
|
if(rc) {
|
|
if(rc == STRE_BIG) {
|
|
curlx_dyn_free(&out);
|
|
return CURLE_TOO_LARGE;
|
|
}
|
|
else if(!content)
|
|
/* no path, no word, this is incorrect */
|
|
goto fail;
|
|
}
|
|
else {
|
|
/* append the word */
|
|
result = curlx_dyn_addn(&out, curlx_str(&word), curlx_strlen(&word));
|
|
if(result)
|
|
return result;
|
|
}
|
|
}
|
|
/* skip whitespace */
|
|
curlx_str_passblanks(&cp);
|
|
|
|
/* return pointer to second parameter if it exists */
|
|
*cpp = cp;
|
|
|
|
*path = curlx_dyn_ptr(&out);
|
|
return CURLE_OK;
|
|
|
|
fail:
|
|
curlx_dyn_free(&out);
|
|
return CURLE_QUOTE_ERROR;
|
|
}
|
|
|
|
CURLcode Curl_ssh_range(struct Curl_easy *data,
|
|
const char *range, curl_off_t filesize,
|
|
curl_off_t *startp, curl_off_t *sizep)
|
|
{
|
|
curl_off_t from, to;
|
|
int to_t;
|
|
int from_t = curlx_str_number(&range, &from, CURL_OFF_T_MAX);
|
|
if(from_t == STRE_OVERFLOW)
|
|
return CURLE_RANGE_ERROR;
|
|
curlx_str_passblanks(&range);
|
|
(void)curlx_str_single(&range, '-');
|
|
|
|
to_t = curlx_str_numblanks(&range, &to);
|
|
if((to_t == STRE_OVERFLOW) || (to_t && from_t) || *range)
|
|
return CURLE_RANGE_ERROR;
|
|
|
|
if(from_t) {
|
|
/* no start point given, set from relative to end of file */
|
|
if(!to)
|
|
/* "-0" is not a fine range */
|
|
return CURLE_RANGE_ERROR;
|
|
else if(to > filesize)
|
|
to = filesize;
|
|
from = filesize - to;
|
|
to = filesize - 1;
|
|
}
|
|
else if(from > filesize) {
|
|
failf(data, "Offset (%" FMT_OFF_T ") was beyond file size (%"
|
|
FMT_OFF_T ")", from, filesize);
|
|
return CURLE_RANGE_ERROR;
|
|
}
|
|
else if((to_t == STRE_NO_NUM) || (to >= filesize))
|
|
to = filesize - 1;
|
|
|
|
if(from > to) {
|
|
failf(data, "Bad range: start offset larger than end offset");
|
|
return CURLE_RANGE_ERROR;
|
|
}
|
|
if((to - from) == CURL_OFF_T_MAX)
|
|
return CURLE_RANGE_ERROR;
|
|
|
|
*startp = from;
|
|
*sizep = to - from + 1;
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/* called by the multi interface to figure out what socket(s) to wait for and
|
|
for what actions in the DO_DONE, PERFORM and WAITPERFORM states */
|
|
CURLcode Curl_ssh_pollset(struct Curl_easy *data, struct easy_pollset *ps)
|
|
{
|
|
struct connectdata *conn = data->conn;
|
|
struct ssh_conn *sshc = Curl_conn_meta_get(conn, CURL_META_SSH_CONN);
|
|
curl_socket_t sock = conn->sock[FIRSTSOCKET];
|
|
int waitfor;
|
|
|
|
if(!sshc || (sock == CURL_SOCKET_BAD))
|
|
return CURLE_FAILED_INIT;
|
|
|
|
waitfor = sshc->waitfor ? sshc->waitfor : data->req.io_flags;
|
|
if(waitfor) {
|
|
int flags = 0;
|
|
if(waitfor & REQ_IO_RECV)
|
|
flags |= CURL_POLL_IN;
|
|
if(waitfor & REQ_IO_SEND)
|
|
flags |= CURL_POLL_OUT;
|
|
DEBUGASSERT(flags);
|
|
CURL_TRC_SSH(data, "pollset, flags=%x", (unsigned int)flags);
|
|
return Curl_pollset_change(data, ps, sock, flags, 0);
|
|
}
|
|
/* While we still have a session, we listen incoming data. */
|
|
if(sshc->ssh_session)
|
|
return Curl_pollset_change(data, ps, sock, CURL_POLL_IN, 0);
|
|
return CURLE_OK;
|
|
}
|
|
|
|
CURLcode Curl_ssh_setup_pkey(struct Curl_easy *data, struct ssh_conn *sshc)
|
|
{
|
|
char *home = NULL;
|
|
if(data->set.ssh_auth_types & CURLSSH_AUTH_PUBLICKEY) {
|
|
sshc->pub_key = sshc->priv_key = NULL;
|
|
|
|
if(data->set.str[STRING_SSH_PRIVATE_KEY]) {
|
|
sshc->priv_key = curlx_strdup(data->set.str[STRING_SSH_PRIVATE_KEY]);
|
|
if(!sshc->priv_key)
|
|
goto fail;
|
|
}
|
|
else {
|
|
/* To ponder about: should really the lib be messing about with the HOME
|
|
environment variable etc? */
|
|
curlx_struct_stat sbuf;
|
|
home = curl_getenv("HOME");
|
|
|
|
/* If no private key file is specified, try some common paths. */
|
|
if(home) {
|
|
/* Try ~/.ssh first. */
|
|
sshc->priv_key = curl_maprintf("%s/.ssh/id_rsa", home);
|
|
if(!sshc->priv_key)
|
|
goto fail;
|
|
else if(curlx_stat(sshc->priv_key, &sbuf)) {
|
|
curlx_free(sshc->priv_key);
|
|
sshc->priv_key = curl_maprintf("%s/.ssh/id_dsa", home);
|
|
if(!sshc->priv_key)
|
|
goto fail;
|
|
else if(curlx_stat(sshc->priv_key, &sbuf)) {
|
|
curlx_safefree(sshc->priv_key);
|
|
}
|
|
}
|
|
curlx_safefree(home);
|
|
}
|
|
if(!sshc->priv_key) {
|
|
/* Nothing found; try the current dir. */
|
|
sshc->priv_key = curlx_strdup("id_rsa");
|
|
if(sshc->priv_key && curlx_stat(sshc->priv_key, &sbuf)) {
|
|
curlx_free(sshc->priv_key);
|
|
sshc->priv_key = curlx_strdup("id_dsa");
|
|
if(sshc->priv_key && curlx_stat(sshc->priv_key, &sbuf)) {
|
|
curlx_free(sshc->priv_key);
|
|
/* Out of guesses. Set to the empty string to avoid
|
|
* surprising info messages. */
|
|
sshc->priv_key = curlx_strdup("");
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Unless the user explicitly specifies a public key file, let the SSH
|
|
* library extract the public key from the private key file. This is done
|
|
* by passing sshc->pub_key = NULL.
|
|
*/
|
|
if(data->set.str[STRING_SSH_PUBLIC_KEY] &&
|
|
/* treat empty string the same way as NULL */
|
|
data->set.str[STRING_SSH_PUBLIC_KEY][0]) {
|
|
sshc->pub_key = curlx_strdup(data->set.str[STRING_SSH_PUBLIC_KEY]);
|
|
if(!sshc->pub_key)
|
|
goto fail;
|
|
}
|
|
|
|
sshc->passphrase = data->set.ssl.primary.key_passwd;
|
|
if(!sshc->passphrase)
|
|
sshc->passphrase = "";
|
|
|
|
if(sshc->pub_key)
|
|
infof(data, "SSH: public key file '%s'", sshc->pub_key);
|
|
if(sshc->priv_key)
|
|
infof(data, "SSH: private key file '%s'", sshc->priv_key);
|
|
else
|
|
infof(data, "SSH: public key auth without private key set!");
|
|
}
|
|
return CURLE_OK;
|
|
|
|
fail:
|
|
curlx_safefree(home);
|
|
curlx_safefree(sshc->priv_key);
|
|
curlx_safefree(sshc->pub_key);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
|
|
#endif /* USE_SSH */
|