File: stub-ssh.py

package info (click to toggle)
python-mitogen 0.3.25~a2-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, trixie
  • size: 6,220 kB
  • sloc: python: 21,989; sh: 183; makefile: 74; perl: 19; ansic: 18
file content (82 lines) | stat: -rwxr-xr-x 2,070 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
 
#!/usr/bin/env python3

import optparse
import os
import shlex
import subprocess
import sys


HOST_KEY_ASK_MSG = """
The authenticity of host '[91.121.165.123]:9122 ([91.121.165.123]:9122)' can't be established.
ECDSA key fingerprint is SHA256:JvfPvazZzQ9/CUdKN7tiYlNZtDRdEgDsYVIzOgPrsR4.
Are you sure you want to continue connecting (yes/no)?
""".strip('\n')

HOST_KEY_STRICT_MSG = """Host key verification failed.\n"""

PERMDENIED_CLASSIC_MSG = 'Permission denied (publickey,password)\n'
PERMDENIED_75_MSG = 'chicken@nandos.com: permission denied (publickey,password)\n'


def tty(msg):
    fp = open('/dev/tty', 'wb', 0)
    fp.write(msg.encode())
    fp.close()


def stderr(msg):
    fp = open('/dev/stderr', 'wb', 0)
    fp.write(msg.encode())
    fp.close()


def confirm(msg):
    tty(msg)
    fp = open('/dev/tty', 'rb', 0)
    try:
        return fp.readline().decode()
    finally:
        fp.close()


mode = os.getenv('STUBSSH_MODE')

if mode == 'ask':
    assert 'yes\n' == confirm(HOST_KEY_ASK_MSG)

elif mode == 'strict':
    stderr(HOST_KEY_STRICT_MSG)
    sys.exit(255)

elif mode == 'permdenied_classic':
    stderr(PERMDENIED_CLASSIC_MSG)
    sys.exit(255)

elif mode == 'permdenied_75':
    stderr(PERMDENIED_75_MSG)
    sys.exit(255)


#
# Set an env var if stderr was a TTY to make ssh_test tests easier to write.
#
if os.isatty(2):
    os.environ['STDERR_WAS_TTY'] = '1'


parser = optparse.OptionParser()
parser.add_option('--user', '-l', action='store')
parser.add_option('-o', dest='options', action='append')
parser.disable_interspersed_args()

opts, args = parser.parse_args(sys.argv[1:])
args.pop(0)  # hostname

# On Linux the TTY layer appears to begin tearing down a PTY after the last FD
# for it is closed, causing SIGHUP to be sent to its foreground group. Since
# the bootstrap overwrites the last such fd (stderr), we can't just exec it
# directly, we must hold it open just like real SSH would. So use
# subprocess.call() rather than os.execve() here.
args = [''.join(shlex.split(s)) for s in args]
sys.exit(subprocess.call(args))