1#*************************************************************************** 2# _ _ ____ _ 3# Project ___| | | | _ \| | 4# / __| | | | |_) | | 5# | (__| |_| | _ <| |___ 6# \___|\___/|_| \_\_____| 7# 8# Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. 9# 10# This software is licensed as described in the file COPYING, which 11# you should have received as part of this distribution. The terms 12# are also available at https://curl.se/docs/copyright.html. 13# 14# You may opt to use, copy, modify, merge, publish, distribute and/or sell 15# copies of the Software, and permit persons to whom the Software is 16# furnished to do so, under the terms of the COPYING file. 17# 18# This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY 19# KIND, either express or implied. 20# 21# SPDX-License-Identifier: curl 22# 23#*************************************************************************** 24 25package sshhelp; 26 27use strict; 28use warnings; 29 30BEGIN { 31 use base qw(Exporter); 32 33 our @EXPORT_OK = qw( 34 $sshdexe 35 $sshexe 36 $sftpsrvexe 37 $sftpexe 38 $sshkeygenexe 39 $sshdconfig 40 $sshconfig 41 $sftpconfig 42 $knownhosts 43 $sshdlog 44 $sshlog 45 $sftplog 46 $sftpcmds 47 $hstprvkeyf 48 $hstpubkeyf 49 $hstpubmd5f 50 $hstpubsha256f 51 $cliprvkeyf 52 $clipubkeyf 53 display_sshdconfig 54 display_sshconfig 55 display_sftpconfig 56 display_sshdlog 57 display_sshlog 58 display_sftplog 59 dump_array 60 find_sshd 61 find_ssh 62 find_sftpsrv 63 find_sftp 64 find_sshkeygen 65 find_httptlssrv 66 sshversioninfo 67 ); 68} 69 70use File::Spec; 71 72use pathhelp qw( 73 exe_ext 74 ); 75 76#*************************************************************************** 77# Global variables initialization 78# 79our $sshdexe = 'sshd' .exe_ext('SSH'); # base name and ext of ssh daemon 80our $sshexe = 'ssh' .exe_ext('SSH'); # base name and ext of ssh client 81our $sftpsrvexe = 'sftp-server' .exe_ext('SSH'); # base name and ext of sftp-server 82our $sftpexe = 'sftp' .exe_ext('SSH'); # base name and ext of sftp client 83our $sshkeygenexe = 'ssh-keygen' .exe_ext('SSH'); # base name and ext of ssh-keygen 84our $httptlssrvexe = 'gnutls-serv' .exe_ext('SSH'); # base name and ext of gnutls-serv 85our $sshdconfig = 'curl_sshd_config'; # ssh daemon config file 86our $sshconfig = 'curl_ssh_config'; # ssh client config file 87our $sftpconfig = 'curl_sftp_config'; # sftp client config file 88our $sshdlog = undef; # ssh daemon log file 89our $sshlog = undef; # ssh client log file 90our $sftplog = undef; # sftp client log file 91our $sftpcmds = 'curl_sftp_cmds'; # sftp client commands batch file 92our $knownhosts = 'curl_client_knownhosts'; # ssh knownhosts file 93our $hstprvkeyf = 'curl_host_rsa_key'; # host private key file 94our $hstpubkeyf = 'curl_host_rsa_key.pub'; # host public key file 95our $hstpubmd5f = 'curl_host_rsa_key.pub_md5'; # md5 hash of host public key 96our $hstpubsha256f = 'curl_host_rsa_key.pub_sha256'; # sha256 hash of host public key 97our $cliprvkeyf = 'curl_client_key'; # client private key file 98our $clipubkeyf = 'curl_client_key.pub'; # client public key file 99 100 101#*************************************************************************** 102# Absolute paths where to look for sftp-server plugin, when not in PATH 103# 104our @sftppath = qw( 105 /usr/lib/openssh 106 /usr/libexec/openssh 107 /usr/libexec 108 /usr/local/libexec 109 /opt/local/libexec 110 /usr/lib/ssh 111 /usr/libexec/ssh 112 /usr/sbin 113 /usr/lib 114 /usr/lib/ssh/openssh 115 /usr/lib64/ssh 116 /usr/lib64/misc 117 /usr/lib/misc 118 /usr/local/sbin 119 /usr/freeware/bin 120 /usr/freeware/sbin 121 /usr/freeware/libexec 122 /opt/ssh/sbin 123 /opt/ssh/libexec 124 ); 125 126 127#*************************************************************************** 128# Absolute paths where to look for httptlssrv (gnutls-serv), when not in PATH 129# 130our @httptlssrvpath = qw( 131 /usr/sbin 132 /usr/libexec 133 /usr/lib 134 /usr/lib/misc 135 /usr/lib64/misc 136 /usr/local/bin 137 /usr/local/sbin 138 /usr/local/libexec 139 /opt/local/bin 140 /opt/local/sbin 141 /opt/local/libexec 142 /usr/freeware/bin 143 /usr/freeware/sbin 144 /usr/freeware/libexec 145 /opt/gnutls/bin 146 /opt/gnutls/sbin 147 /opt/gnutls/libexec 148 ); 149 150 151#*************************************************************************** 152# Create or overwrite the given file with lines from an array of strings 153# 154sub dump_array { 155 my ($filename, @arr) = @_; 156 my $error; 157 158 if(!$filename) { 159 $error = 'Error: Missing argument 1 for dump_array()'; 160 } 161 elsif(open(my $textfh, ">", $filename)) { 162 foreach my $line (@arr) { 163 $line .= "\n" if($line !~ /\n$/); 164 print $textfh $line; 165 } 166 if(!close($textfh)) { 167 $error = "Error: cannot close file $filename"; 168 } 169 } 170 else { 171 $error = "Error: cannot write file $filename"; 172 } 173 return $error; 174} 175 176 177#*************************************************************************** 178# Display contents of the given file 179# 180sub display_file { 181 my $filename = $_[0]; 182 print "=== Start of file $filename\n"; 183 if(open(my $displayfh, "<", "$filename")) { 184 while(my $line = <$displayfh>) { 185 print "$line"; 186 } 187 close $displayfh; 188 } 189 print "=== End of file $filename\n"; 190} 191 192 193#*************************************************************************** 194# Display contents of the ssh daemon config file 195# 196sub display_sshdconfig { 197 display_file($sshdconfig); 198} 199 200 201#*************************************************************************** 202# Display contents of the ssh client config file 203# 204sub display_sshconfig { 205 display_file($sshconfig); 206} 207 208 209#*************************************************************************** 210# Display contents of the sftp client config file 211# 212sub display_sftpconfig { 213 display_file($sftpconfig); 214} 215 216 217#*************************************************************************** 218# Display contents of the ssh daemon log file 219# 220sub display_sshdlog { 221 die "error: \$sshdlog uninitialized" if(not defined $sshdlog); 222 display_file($sshdlog); 223} 224 225 226#*************************************************************************** 227# Display contents of the ssh client log file 228# 229sub display_sshlog { 230 die "error: \$sshlog uninitialized" if(not defined $sshlog); 231 display_file($sshlog); 232} 233 234 235#*************************************************************************** 236# Display contents of the sftp client log file 237# 238sub display_sftplog { 239 die "error: \$sftplog uninitialized" if(not defined $sftplog); 240 display_file($sftplog); 241} 242 243 244#*************************************************************************** 245# Find a file somewhere in the given path 246# 247sub find_file { 248 my $fn = $_[0]; 249 shift; 250 my @path = @_; 251 foreach (@path) { 252 my $file = File::Spec->catfile($_, $fn); 253 if(-e $file && ! -d $file) { 254 return $file; 255 } 256 } 257 return ""; 258} 259 260 261#*************************************************************************** 262# Find an executable file somewhere in the given path 263# 264sub find_exe_file { 265 my $fn = $_[0]; 266 shift; 267 my @path = @_; 268 my $xext = exe_ext('SSH'); 269 foreach (@path) { 270 my $file = File::Spec->catfile($_, $fn); 271 if(-e $file && ! -d $file) { 272 return $file if(-x $file); 273 return $file if(($xext) && (lc($file) =~ /\Q$xext\E$/)); 274 } 275 } 276 return ""; 277} 278 279 280#*************************************************************************** 281# Find a file in environment path or in our sftppath 282# 283sub find_file_spath { 284 my $filename = $_[0]; 285 my @spath; 286 push(@spath, File::Spec->path()); 287 push(@spath, @sftppath); 288 return find_file($filename, @spath); 289} 290 291 292#*************************************************************************** 293# Find an executable file in environment path or in our httptlssrvpath 294# 295sub find_exe_file_hpath { 296 my $filename = $_[0]; 297 my @hpath; 298 push(@hpath, File::Spec->path()); 299 push(@hpath, @httptlssrvpath); 300 return find_exe_file($filename, @hpath); 301} 302 303 304#*************************************************************************** 305# Find ssh daemon and return canonical filename 306# 307sub find_sshd { 308 return find_file_spath($sshdexe); 309} 310 311 312#*************************************************************************** 313# Find ssh client and return canonical filename 314# 315sub find_ssh { 316 return find_file_spath($sshexe); 317} 318 319 320#*************************************************************************** 321# Find sftp-server plugin and return canonical filename 322# 323sub find_sftpsrv { 324 return find_file_spath($sftpsrvexe); 325} 326 327 328#*************************************************************************** 329# Find sftp client and return canonical filename 330# 331sub find_sftp { 332 return find_file_spath($sftpexe); 333} 334 335 336#*************************************************************************** 337# Find ssh-keygen and return canonical filename 338# 339sub find_sshkeygen { 340 return find_file_spath($sshkeygenexe); 341} 342 343 344#*************************************************************************** 345# Find httptlssrv (gnutls-serv) and return canonical filename 346# 347sub find_httptlssrv { 348 my $p = find_exe_file_hpath($httptlssrvexe); 349 if($p) { 350 my @o = `"$p" -l`; 351 my $found; 352 for(@o) { 353 if(/Key exchange: SRP/) { 354 $found = 1; 355 last; 356 } 357 } 358 return $p if($found); 359 } 360 return ""; 361} 362 363 364#*************************************************************************** 365# Return version info for the given ssh client or server binaries 366# 367sub sshversioninfo { 368 my $sshbin = $_[0]; # canonical filename 369 my $major; 370 my $minor; 371 my $patch; 372 my $sshid; 373 my $versnum; 374 my $versstr; 375 my $error; 376 377 if(!$sshbin) { 378 $error = 'Error: Missing argument 1 for sshversioninfo()'; 379 } 380 elsif(! -x $sshbin) { 381 $error = "Error: cannot read or execute $sshbin"; 382 } 383 else { 384 my $cmd = ($sshbin =~ /$sshdexe$/) ? "\"$sshbin\" -?" : "\"$sshbin\" -V"; 385 $error = "$cmd\n"; 386 foreach my $tmpstr (qx($cmd 2>&1)) { 387 if($tmpstr =~ /OpenSSH[_-](\d+)\.(\d+)(\.(\d+))*/i) { 388 $major = $1; 389 $minor = $2; 390 $patch = $4?$4:0; 391 $sshid = 'OpenSSH'; 392 $versnum = (100*$major) + (10*$minor) + $patch; 393 $versstr = "$sshid $major.$minor.$patch"; 394 $error = undef; 395 last; 396 } 397 if($tmpstr =~ /OpenSSH[_-]for[_-]Windows[_-](\d+)\.(\d+)(\.(\d+))*/i) { 398 $major = $1; 399 $minor = $2; 400 $patch = $4?$4:0; 401 $sshid = 'OpenSSH-Windows'; 402 $versnum = (100*$major) + (10*$minor) + $patch; 403 $versstr = "$sshid $major.$minor.$patch"; 404 $error = undef; 405 last; 406 } 407 if($tmpstr =~ /Sun[_-]SSH[_-](\d+)\.(\d+)(\.(\d+))*/i) { 408 $major = $1; 409 $minor = $2; 410 $patch = $4?$4:0; 411 $sshid = 'SunSSH'; 412 $versnum = (100*$major) + (10*$minor) + $patch; 413 $versstr = "$sshid $major.$minor.$patch"; 414 $error = undef; 415 last; 416 } 417 $error .= $tmpstr; 418 } 419 chomp $error if($error); 420 } 421 return ($sshid, $versnum, $versstr, $error); 422} 423 424 425#*************************************************************************** 426# End of library 4271; 428
