net-ssh 2.7.0 → 7.3.0

data/Rudyfile

@@ -1,96 +0,0 @@
-# Rudyfile
-#
-# This configuration is used to test installing
-# and running net-ssh on a clean machine. 
-#
-# Usage:
-#
-#     $ rudy -vv startup
-#     $ rudy -vv testsuite
-#     $ rudy -vv shutdown
-#
-# Requires: Rudy 0.9 (http://code.google.com/p/rudy/)
-#
-
-defaults do
-  color true
-  environment :test
-  role :netssh
-end
-
-machines do
-  region :'us-east-1' do
-    ami 'ami-e348af8a'               # Alestic Debian 5.0, 32-bit (US)
-  end
-  env :test do
-    role :netssh do
-      user :root
-    end
-  end
-end
-
-commands do
-  allow :apt_get, "apt-get", :y, :q
-  allow :gem_install, "/usr/bin/gem", "install", :n, '/usr/bin', :y, :V, "--no-rdoc", "--no-ri"
-  allow :gem_sources, "/usr/bin/gem", "sources"
-  allow :gem_uninstall, "/usr/bin/gem", "uninstall", :V
-  allow :update_rubygems
-  allow :rm
-end
-
-routines do
-  
-  testsuite do
-    before :sysupdate, :installdeps, :install_gem
-    
-    remote :root do
-      directory_upload 'test', '/tmp/'
-      cd '/tmp'
-      ruby :I, 'lib/', :I, 'test/', :r, 'rubygems', 'test/test_all.rb'
-    end
-    
-    after :install_rubyforge, :install_github
-  end
-  
-  install_gem do
-    before :package_gem
-    remote :root do
-      disable_safe_mode
-      file_upload "pkg/net-ssh-*.gem", "/tmp/"
-      gem_install "/tmp/net-ssh-*.gem"
-    end
-  end
-  
-  package_gem do
-    local do
-      rm :r, :f, 'pkg'
-      rake 'package'
-    end
-  end
-  
-  remove do
-    remote :root do
-      gem_uninstall 'net-ssh'
-    end
-  end
-  
-  installdeps do
-    remote :root do
-      gem_install "rye", "test-unit", "mocha"
-      rye 'authorize-local'
-    end
-  end
-  
-  sysupdate do
-    remote :root do                  
-      apt_get "update"               
-      apt_get "install", "build-essential", "git-core"
-      apt_get "install", "ruby1.8-dev", "rdoc", "libzlib-ruby", "rubygems"
-      mkdir :p, "/var/lib/gems/1.8/bin" # Doesn't get created, but causes Rubygems to fail
-      gem_install "builder", "session"
-      gem_install 'rubygems-update', "-v=1.3.4"  # circular issue with 1.3.5 and hoe
-      update_rubygems
-    end
-  end
-end
-

data/gem-public_cert.pem

@@ -1,20 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIDNjCCAh6gAwIBAgIBADANBgkqhkiG9w0BAQUFADBBMQ8wDQYDVQQDDAZkZWxh
-bm8xGTAXBgoJkiaJk/IsZAEZFglzb2x1dGlvdXMxEzARBgoJkiaJk/IsZAEZFgNj
-b20wHhcNMTMwMjA2MTE1NzQ1WhcNMTQwMjA2MTE1NzQ1WjBBMQ8wDQYDVQQDDAZk
-ZWxhbm8xGTAXBgoJkiaJk/IsZAEZFglzb2x1dGlvdXMxEzARBgoJkiaJk/IsZAEZ
-FgNjb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg1hMtl0XsMuUK
-AKTgYWv3gjj7vuEsE2EjT+vyBg8/LpqVVwZziiaebJT9IZiQ+sCFqbiakj0b53pI
-hg1yOaBEmH6/W0L7rwzqaRV9sW1eJs9JxFYQCnd67zUnzj8nnRlOjG+hhIG+Vsij
-npsGbt28pefuNZJjO5q2clAlfSniIIHfIsU7/StEYu6FUGOjnwryZ0r5yJlr9RrE
-Gs+q0DW8QnZ9UpAfuDFQZuIqeKQFFLE7nMmCGaA+0BN1nLl3fVHNbLHq7Avk8+Z+
-ZuuvkdscbHlO/l+3xCNQ5nUnHwq0ADAbMLOlmiYYzqXoWLjmeI6me/clktJCfN2R
-oZG3UQvvAgMBAAGjOTA3MAkGA1UdEwQCMAAwHQYDVR0OBBYEFMSJOEtHzE4l0azv
-M0JK0kKNToK1MAsGA1UdDwQEAwIEsDANBgkqhkiG9w0BAQUFAAOCAQEAtOdE73qx
-OH2ydi9oT2hS5f9G0y1Z70Tlwh+VGExyfxzVE9XwC+iPpJxNraiHYgF/9/oky7ZZ
-R9q0/tJneuhAenZdiQkX7oi4O3v9wRS6YHoWBxMPFKVRLNTzvVJsbmfpCAlp5/5g
-ps4wQFy5mibElGVlOobf/ghqZ25HS9J6kd0/C/ry0AUtTogsL7TxGwT4kbCx63ub
-3vywEEhsJUzfd97GCABmtQfRTldX/j7F1z/5wd8p+hfdox1iibds9ZtfaZA3KzKn
-kchWN9B6zg9r1XMQ8BM2Jz0XoPanPe354+lWwjpkRKbFow/ZbQHcCLCq24+N6b6g
-dgKfNDzwiDpqCA==
------END CERTIFICATE-----

data/lib/net/ssh/authentication/agent/java_pageant.rb

@@ -1,85 +0,0 @@
-require 'jruby_pageant'
-
-module Net; module SSH; module Authentication
-
-  # This class implements an agent for JRuby + Pageant.
-  #
-  # Written by Artūras Šlajus <arturas.slajus@gmail.com>
-  class Agent
-    include Loggable
-    include JRubyPageant
-
-    # A simple module for extending keys, to allow blobs and comments to be
-    # specified for them.
-    module Key
-      # :blob is used by OpenSSL::PKey::RSA#to_blob
-      attr_accessor :java_blob
-      attr_accessor :comment
-    end
-
-    # Instantiates a new agent object, connects to a running SSH agent,
-    # negotiates the agent protocol version, and returns the agent object.
-    def self.connect(logger=nil)
-      agent = new(logger)
-      agent.connect!
-      agent
-    end
-
-    # Creates a new Agent object, using the optional logger instance to
-    # report status.
-    def initialize(logger=nil)
-      self.logger = logger
-    end
-
-    # Connect to the agent process using the socket factory and socket name
-    # given by the attribute writers. If the agent on the other end of the
-    # socket reports that it is an SSH2-compatible agent, this will fail
-    # (it only supports the ssh-agent distributed by OpenSSH).
-    def connect!
-      debug { "connecting to Pageant ssh-agent (via java connector)" }
-      @agent_proxy = JRubyPageant.create
-      unless @agent_proxy.is_running
-        raise AgentNotAvailable, "Pageant is not running!"
-      end
-      debug { "connection to Pageant ssh-agent (via java connector) succeeded" }
-    rescue AgentProxyException => e
-      error { "could not connect to Pageant ssh-agent (via java connector)" }
-      raise AgentNotAvailable, e.message, e.backtrace
-    end
-
-    # Return an array of all identities (public keys) known to the agent.
-    # Each key returned is augmented with a +comment+ property which is set
-    # to the comment returned by the agent for that key.
-    def identities
-      debug { "getting identities from Pageant" }
-      @agent_proxy.get_identities.map do |identity|
-        blob = identity.get_blob
-        key = Buffer.new(String.from_java_bytes(blob)).read_key
-        key.extend(Key)
-        key.java_blob = blob
-        key.comment = String.from_java_bytes(identity.get_comment)
-        key
-      end
-    rescue AgentProxyException => e
-      raise AgentError, "Cannot get identities: #{e.message}", e.backtrace
-    end
-
-    # Simulate agent close. This agent reference is no longer able to
-    # query the agent.
-    def close
-      @agent_proxy = nil
-    end
-
-    # Using the agent and the given public key, sign the given data. The
-    # signature is returned in SSH2 format.
-    def sign(key, data)
-      signed = @agent_proxy.sign(key.java_blob, data.to_java_bytes)
-      String.from_java_bytes(signed)
-    rescue AgentProxyException => e
-      raise AgentError,
-        "agent could not sign data with requested identity: #{e.message}",
-        e.backtrace
-    end
-  end
-
-end; end; end

data/lib/net/ssh/authentication/agent/socket.rb

@@ -1,170 +0,0 @@
-require 'net/ssh/transport/server_version'
-
-# Only load pageant on Windows
-if Net::SSH::Authentication::PLATFORM == :win32
-  require 'net/ssh/authentication/pageant'
-end
-
-module Net; module SSH; module Authentication
-
-  # This class implements a simple client for the ssh-agent protocol. It
-  # does not implement any specific protocol, but instead copies the
-  # behavior of the ssh-agent functions in the OpenSSH library (3.8).
-  #
-  # This means that although it behaves like a SSH1 client, it also has
-  # some SSH2 functionality (like signing data).
-  class Agent
-    include Loggable
-
-    # A simple module for extending keys, to allow comments to be specified
-    # for them.
-    module Comment
-      attr_accessor :comment
-    end
-
-    SSH2_AGENT_REQUEST_VERSION    = 1
-    SSH2_AGENT_REQUEST_IDENTITIES = 11
-    SSH2_AGENT_IDENTITIES_ANSWER  = 12
-    SSH2_AGENT_SIGN_REQUEST       = 13
-    SSH2_AGENT_SIGN_RESPONSE      = 14
-    SSH2_AGENT_FAILURE            = 30
-    SSH2_AGENT_VERSION_RESPONSE   = 103
-
-    SSH_COM_AGENT2_FAILURE        = 102
-
-    SSH_AGENT_REQUEST_RSA_IDENTITIES = 1
-    SSH_AGENT_RSA_IDENTITIES_ANSWER1 = 2
-    SSH_AGENT_RSA_IDENTITIES_ANSWER2 = 5
-    SSH_AGENT_FAILURE                = 5
-
-    # The underlying socket being used to communicate with the SSH agent.
-    attr_reader :socket
-
-    # Instantiates a new agent object, connects to a running SSH agent,
-    # negotiates the agent protocol version, and returns the agent object.
-    def self.connect(logger=nil)
-      agent = new(logger)
-      agent.connect!
-      agent.negotiate!
-      agent
-    end
-
-    # Creates a new Agent object, using the optional logger instance to
-    # report status.
-    def initialize(logger=nil)
-      self.logger = logger
-    end
-
-    # Connect to the agent process using the socket factory and socket name
-    # given by the attribute writers. If the agent on the other end of the
-    # socket reports that it is an SSH2-compatible agent, this will fail
-    # (it only supports the ssh-agent distributed by OpenSSH).
-    def connect!
-      begin
-        debug { "connecting to ssh-agent" }
-        @socket = agent_socket_factory.open(ENV['SSH_AUTH_SOCK'])
-      rescue
-        error { "could not connect to ssh-agent" }
-        raise AgentNotAvailable, $!.message
-      end
-    end
-
-    # Attempts to negotiate the SSH agent protocol version. Raises an error
-    # if the version could not be negotiated successfully.
-    def negotiate!
-      # determine what type of agent we're communicating with
-      type, body = send_and_wait(SSH2_AGENT_REQUEST_VERSION, :string, Transport::ServerVersion::PROTO_VERSION)
-
-      if type == SSH2_AGENT_VERSION_RESPONSE
-        raise NotImplementedError, "SSH2 agents are not yet supported"
-      elsif type != SSH_AGENT_RSA_IDENTITIES_ANSWER1 && type != SSH_AGENT_RSA_IDENTITIES_ANSWER2
-        raise AgentError, "unknown response from agent: #{type}, #{body.to_s.inspect}"
-      end
-    end
-
-    # Return an array of all identities (public keys) known to the agent.
-    # Each key returned is augmented with a +comment+ property which is set
-    # to the comment returned by the agent for that key.
-    def identities
-      type, body = send_and_wait(SSH2_AGENT_REQUEST_IDENTITIES)
-      raise AgentError, "could not get identity count" if agent_failed(type)
-      raise AgentError, "bad authentication reply: #{type}" if type != SSH2_AGENT_IDENTITIES_ANSWER
-
-      identities = []
-      body.read_long.times do
-        key = Buffer.new(body.read_string).read_key
-        key.extend(Comment)
-        key.comment = body.read_string
-        identities.push key
-      end
-
-      return identities
-    end
-
-    # Closes this socket. This agent reference is no longer able to
-    # query the agent.
-    def close
-      @socket.close
-    end
-
-    # Using the agent and the given public key, sign the given data. The
-    # signature is returned in SSH2 format.
-    def sign(key, data)
-      type, reply = send_and_wait(SSH2_AGENT_SIGN_REQUEST, :string, Buffer.from(:key, key), :string, data, :long, 0)
-
-      if agent_failed(type)
-        raise AgentError, "agent could not sign data with requested identity"
-      elsif type != SSH2_AGENT_SIGN_RESPONSE
-        raise AgentError, "bad authentication response #{type}"
-      end
-
-      return reply.read_string
-    end
-
-    private
-
-    # Returns the agent socket factory to use.
-    def agent_socket_factory
-      if Net::SSH::Authentication::PLATFORM == :win32
-        Pageant::socket_factory
-      else
-        UNIXSocket
-      end
-    end
-
-    # Send a new packet of the given type, with the associated data.
-    def send_packet(type, *args)
-      buffer = Buffer.from(*args)
-      data = [buffer.length + 1, type.to_i, buffer.to_s].pack("NCA*")
-      debug { "sending agent request #{type} len #{buffer.length}" }
-      @socket.send data, 0
-    end
-
-    # Read the next packet from the agent. This will return a two-part
-    # tuple consisting of the packet type, and the packet's body (which
-    # is returned as a Net::SSH::Buffer).
-    def read_packet
-      buffer = Net::SSH::Buffer.new(@socket.read(4))
-      buffer.append(@socket.read(buffer.read_long))
-      type = buffer.read_byte
-      debug { "received agent packet #{type} len #{buffer.length-4}" }
-      return type, buffer
-    end
-
-    # Send the given packet and return the subsequent reply from the agent.
-    # (See #send_packet and #read_packet).
-    def send_and_wait(type, *args)
-      send_packet(type, *args)
-      read_packet
-    end
-
-    # Returns +true+ if the parameter indicates a "failure" response from
-    # the agent, and +false+ otherwise.
-    def agent_failed(type)
-      type == SSH_AGENT_FAILURE ||
-        type == SSH2_AGENT_FAILURE ||
-        type == SSH_COM_AGENT2_FAILURE
-    end
-  end
-
-end; end; end

data/lib/net/ssh/ruby_compat.rb

@@ -1,51 +0,0 @@
-require 'thread'
-
-class String
-  if RUBY_VERSION < "1.9"
-    def getbyte(index)
-      self[index]
-    end
-    def setbyte(index, c)
-      self[index] = c
-    end
-  end
-  if RUBY_VERSION < "1.8.7"
-    def bytesize
-      self.size
-    end
-  end
-end
-
-module Net; module SSH
-  
-  # This class contains miscellaneous patches and workarounds
-  # for different ruby implementations.
-  class Compat
-    
-    # A workaround for an IO#select threading bug in certain versions of MRI 1.8.
-    # See: http://net-ssh.lighthouseapp.com/projects/36253/tickets/1-ioselect-threading-bug-in-ruby-18
-    # The root issue is documented here: http://redmine.ruby-lang.org/issues/show/1993
-    if RUBY_VERSION >= '1.9' || RUBY_PLATFORM == 'java'
-      def self.io_select(*params)
-        IO.select(*params)
-      end
-    else
-      SELECT_MUTEX = Mutex.new
-      def self.io_select(*params)
-        # It should be safe to wrap calls in a mutex when the timeout is 0
-        # (that is, the call is not supposed to block).
-        # We leave blocking calls unprotected to avoid causing deadlocks.
-        # This should still catch the main case for Capistrano users.
-        if params[3] == 0
-          SELECT_MUTEX.synchronize do
-            IO.select(*params)
-          end
-        else
-          IO.select(*params)
-        end
-      end
-    end
-    
-  end
-  
-end; end

data/lib/net/ssh/verifiers/lenient.rb

@@ -1,30 +0,0 @@
-require 'net/ssh/verifiers/strict'
-
-module Net; module SSH; module Verifiers
-
-  # Basically the same as the Strict verifier, but does not try to actually
-  # verify a connection if the server is the localhost and the port is a
-  # nonstandard port number. Those two conditions will typically mean the
-  # connection is being tunnelled through a forwarded port, so the known-hosts
-  # file will not be helpful (in general).
-  class Lenient < Strict
-    # Tries to determine if the connection is being tunnelled, and if so,
-    # returns true. Otherwise, performs the standard strict verification.
-    def verify(arguments)
-      return true if tunnelled?(arguments)
-      super
-    end
-
-    private
-
-      # A connection is potentially being tunnelled if the port is not 22,
-      # and the ip refers to the localhost.
-      def tunnelled?(args)
-        return false if args[:session].port == Net::SSH::Transport::Session::DEFAULT_PORT
-        
-        ip = args[:session].peer[:ip]
-        return ip == "127.0.0.1" || ip == "::1"
-      end
-  end
-
-end; end; end

data/lib/net/ssh/verifiers/null.rb

@@ -1,12 +0,0 @@
-module Net; module SSH; module Verifiers
-
-  # The Null host key verifier simply allows every key it sees, without
-  # bothering to verify. This is simple, but is not particularly secure.
-  class Null
-    # Returns true.
-    def verify(arguments)
-      true
-    end
-  end
-
-end; end; end

data/lib/net/ssh/verifiers/secure.rb

@@ -1,54 +0,0 @@
-require 'net/ssh/errors'
-require 'net/ssh/known_hosts'
-
-module Net; module SSH; module Verifiers
-
-  # Does a strict host verification, looking the server up in the known
-  # host files to see if a key has already been seen for this server. If this
-  # server does not appear in any host file, an exception will be raised
-  # (HostKeyUnknown). This is in contrast to the "Strict" class, which will
-  # silently add the key to your known_hosts file. If the server does appear at
-  # least once, but the key given does not match any known for the server, an
-  # exception will be raised (HostKeyMismatch).
-  # Otherwise, this returns true.
-  class Secure
-    def verify(arguments)
-      options = arguments[:session].options
-      host = options[:host_key_alias] || arguments[:session].host_as_string
-      matches = Net::SSH::KnownHosts.search_for(host, arguments[:session].options)
-
-      # We've never seen this host before, so raise an exception.
-      if matches.empty?
-        process_cache_miss(host, arguments, HostKeyUnknown, "is unknown")
-      end
-
-      # If we found any matches, check to see that the key type and
-      # blob also match.
-      found = matches.any? do |key|
-        key.ssh_type == arguments[:key].ssh_type &&
-        key.to_blob  == arguments[:key].to_blob
-      end
-
-      # If a match was found, return true. Otherwise, raise an exception
-      # indicating that the key was not recognized.
-      unless found
-        process_cache_miss(host, arguments, HostKeyMismatch, "does not match")
-      end
-
-      found
-    end
-
-    private
-
-    def process_cache_miss(host, args, exc_class, message)
-      exception = exc_class.new("fingerprint #{args[:fingerprint]} " +
-                                "#{message} for #{host.inspect}")
-      exception.data = args
-      exception.callback = Proc.new do
-        Net::SSH::KnownHosts.add(host, args[:key], args[:session].options)
-      end
-      raise exception
-    end
-  end
-
-end; end; end

data/lib/net/ssh/verifiers/strict.rb

@@ -1,24 +0,0 @@
-require 'net/ssh/errors'
-require 'net/ssh/known_hosts'
-require 'net/ssh/verifiers/secure'
-
-module Net; module SSH; module Verifiers
-
-  # Does a strict host verification, looking the server up in the known
-  # host files to see if a key has already been seen for this server. If this
-  # server does not appear in any host file, this will silently add the
-  # server. If the server does appear at least once, but the key given does
-  # not match any known for the server, an exception will be raised (HostKeyMismatch).
-  # Otherwise, this returns true.
-  class Strict < Secure
-    def verify(arguments)
-      begin
-        super
-      rescue HostKeyUnknown => err
-        err.remember_host!
-        return true
-      end
-    end
-  end
-
-end; end; end