termify-agent 1.0.51 → 1.0.54

package/dist/network/wireguard-manager.test.js

@@ -0,0 +1,24 @@
+import assert from 'node:assert/strict';
+import { existsSync, mkdtempSync, rmSync } from 'node:fs';
+import { tmpdir } from 'node:os';
+import { join } from 'node:path';
+import test from 'node:test';
+import { WireGuardManager } from './wireguard-manager.js';
+test('preloads a local WireGuard identity before the interface is created', async (t) => {
+    const tempDir = mkdtempSync(join(tmpdir(), 'termify-agent-wg-'));
+    t.after(() => {
+        rmSync(tempDir, { recursive: true, force: true });
+    });
+    const manager = new WireGuardManager(tempDir);
+    assert.equal(manager.getStatus().publicKey, undefined);
+    assert.equal(manager.getStatus().listenPort, undefined);
+    const identity = await manager.ensureIdentityLoaded();
+    const status = manager.getStatus();
+    assert.equal(status.interfaceName, identity.interfaceName);
+    assert.equal(status.listenPort, identity.listenPort);
+    assert.equal(status.publicKey, identity.publicKey);
+    assert.ok(status.publicKey);
+    assert.equal(existsSync(join(tempDir, 'wireguard.key')), true);
+    assert.equal(existsSync(join(tempDir, 'wireguard.json')), true);
+});
+//# sourceMappingURL=wireguard-manager.test.js.map

package/dist/network/wireguard-manager.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"wireguard-manager.test.js","sourceRoot":"","sources":["../../src/network/wireguard-manager.test.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,oBAAoB,CAAC;AACxC,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAC1D,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAE1D,IAAI,CAAC,qEAAqE,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;IACtF,MAAM,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,mBAAmB,CAAC,CAAC,CAAC;IAEjE,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE;QACX,MAAM,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IAEH,MAAM,OAAO,GAAG,IAAI,gBAAgB,CAAC,OAAO,CAAC,CAAC;IAE9C,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IACvD,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,UAAU,EAAE,SAAS,CAAC,CAAC;IAExD,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,oBAAoB,EAAE,CAAC;IACtD,MAAM,MAAM,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC;IAEnC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,aAAa,EAAE,QAAQ,CAAC,aAAa,CAAC,CAAC;IAC3D,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,EAAE,QAAQ,CAAC,UAAU,CAAC,CAAC;IACrD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,EAAE,QAAQ,CAAC,SAAS,CAAC,CAAC;IACnD,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAC5B,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE,eAAe,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IAC/D,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;AAClE,CAAC,CAAC,CAAC"}

package/dist/ssh/platform-openssh.d.ts

@@ -0,0 +1,16 @@
+export interface OpenSSHRenderPaths {
+    userPrivateKeyPath: string;
+    userCertificatePath: string;
+    knownHostsPath: string;
+    hostPrivateKeyPath: string;
+    hostCertificatePath: string;
+    userCaPublicKeyPath: string;
+    principalsCommand?: string;
+    principalsCommandUser?: string;
+    authorizedPrincipalsFilePath?: string;
+}
+export declare function renderClientConfig(paths: OpenSSHRenderPaths): string;
+export declare function renderKnownHostsCertAuthority(pattern: string, hostCaPublicKey: string): string;
+export declare function renderSshdConfigFragment(paths: OpenSSHRenderPaths): string;
+export declare function upsertManagedBlock(existing: string, name: string, block: string): string;
+//# sourceMappingURL=platform-openssh.d.ts.map

package/dist/ssh/platform-openssh.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"platform-openssh.d.ts","sourceRoot":"","sources":["../../src/ssh/platform-openssh.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,kBAAkB;IACjC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,cAAc,EAAE,MAAM,CAAC;IACvB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,4BAA4B,CAAC,EAAE,MAAM,CAAC;CACvC;AAED,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,kBAAkB,GAAG,MAAM,CAUpE;AAED,wBAAgB,6BAA6B,CAAC,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,GAAG,MAAM,CAE9F;AAED,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,kBAAkB,GAAG,MAAM,CAmB1E;AAED,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,CAgBxF"}

package/dist/ssh/platform-openssh.js

@@ -0,0 +1,51 @@
+export function renderClientConfig(paths) {
+    return [
+        'Host 10.100.*',
+        `  IdentityFile ${paths.userPrivateKeyPath}`,
+        `  CertificateFile ${paths.userCertificatePath}`,
+        `  UserKnownHostsFile ${paths.knownHostsPath}`,
+        '  StrictHostKeyChecking yes',
+        '  IdentitiesOnly yes',
+        '',
+    ].join('\n');
+}
+export function renderKnownHostsCertAuthority(pattern, hostCaPublicKey) {
+    return `@cert-authority ${pattern} ${hostCaPublicKey.trimEnd()}\n`;
+}
+export function renderSshdConfigFragment(paths) {
+    const principalLines = paths.authorizedPrincipalsFilePath
+        ? [
+            `AuthorizedPrincipalsFile ${paths.authorizedPrincipalsFilePath}`,
+        ]
+        : [
+            `AuthorizedPrincipalsCommand ${paths.principalsCommand}`,
+            `AuthorizedPrincipalsCommandUser ${paths.principalsCommandUser ?? 'root'}`,
+        ];
+    return [
+        '# Managed by Termify',
+        `HostKey ${paths.hostPrivateKeyPath}`,
+        `HostCertificate ${paths.hostCertificatePath}`,
+        `TrustedUserCAKeys ${paths.userCaPublicKeyPath}`,
+        ...principalLines,
+        'PubkeyAuthentication yes',
+        '',
+    ].join('\n');
+}
+export function upsertManagedBlock(existing, name, block) {
+    const start = `# >>> termify:${name} >>>`;
+    const end = `# <<< termify:${name} <<<`;
+    const managed = `${start}\n${block.trimEnd()}\n${end}\n`;
+    const pattern = new RegExp(`${escapeRegExp(start)}[\\s\\S]*?${escapeRegExp(end)}\\n?`, 'g');
+    if (pattern.test(existing)) {
+        return existing.replace(pattern, managed);
+    }
+    const trimmed = existing.trimEnd();
+    if (trimmed.length === 0) {
+        return managed;
+    }
+    return `${trimmed}\n\n${managed}`;
+}
+function escapeRegExp(value) {
+    return value.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}
+//# sourceMappingURL=platform-openssh.js.map

package/dist/ssh/platform-openssh.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"platform-openssh.js","sourceRoot":"","sources":["../../src/ssh/platform-openssh.ts"],"names":[],"mappings":"AAYA,MAAM,UAAU,kBAAkB,CAAC,KAAyB;IAC1D,OAAO;QACL,eAAe;QACf,kBAAkB,KAAK,CAAC,kBAAkB,EAAE;QAC5C,qBAAqB,KAAK,CAAC,mBAAmB,EAAE;QAChD,wBAAwB,KAAK,CAAC,cAAc,EAAE;QAC9C,6BAA6B;QAC7B,sBAAsB;QACtB,EAAE;KACH,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED,MAAM,UAAU,6BAA6B,CAAC,OAAe,EAAE,eAAuB;IACpF,OAAO,mBAAmB,OAAO,IAAI,eAAe,CAAC,OAAO,EAAE,IAAI,CAAC;AACrE,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,KAAyB;IAChE,MAAM,cAAc,GAAG,KAAK,CAAC,4BAA4B;QACvD,CAAC,CAAC;YACE,4BAA4B,KAAK,CAAC,4BAA4B,EAAE;SACjE;QACH,CAAC,CAAC;YACE,+BAA+B,KAAK,CAAC,iBAAiB,EAAE;YACxD,mCAAmC,KAAK,CAAC,qBAAqB,IAAI,MAAM,EAAE;SAC3E,CAAC;IAEN,OAAO;QACL,sBAAsB;QACtB,WAAW,KAAK,CAAC,kBAAkB,EAAE;QACrC,mBAAmB,KAAK,CAAC,mBAAmB,EAAE;QAC9C,qBAAqB,KAAK,CAAC,mBAAmB,EAAE;QAChD,GAAG,cAAc;QACjB,0BAA0B;QAC1B,EAAE;KACH,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,QAAgB,EAAE,IAAY,EAAE,KAAa;IAC9E,MAAM,KAAK,GAAG,iBAAiB,IAAI,MAAM,CAAC;IAC1C,MAAM,GAAG,GAAG,iBAAiB,IAAI,MAAM,CAAC;IACxC,MAAM,OAAO,GAAG,GAAG,KAAK,KAAK,KAAK,CAAC,OAAO,EAAE,KAAK,GAAG,IAAI,CAAC;IACzD,MAAM,OAAO,GAAG,IAAI,MAAM,CAAC,GAAG,YAAY,CAAC,KAAK,CAAC,aAAa,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAE5F,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC3B,OAAO,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAED,MAAM,OAAO,GAAG,QAAQ,CAAC,OAAO,EAAE,CAAC;IACnC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,OAAO,GAAG,OAAO,OAAO,OAAO,EAAE,CAAC;AACpC,CAAC;AAED,SAAS,YAAY,CAAC,KAAa;IACjC,OAAO,KAAK,CAAC,OAAO,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC;AACtD,CAAC"}

package/dist/ssh/platform-openssh.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=platform-openssh.test.d.ts.map

package/dist/ssh/platform-openssh.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"platform-openssh.test.d.ts","sourceRoot":"","sources":["../../src/ssh/platform-openssh.test.ts"],"names":[],"mappings":""}

package/dist/ssh/platform-openssh.test.js

@@ -0,0 +1,42 @@
+import assert from 'node:assert/strict';
+import test from 'node:test';
+import { renderClientConfig, renderKnownHostsCertAuthority, renderSshdConfigFragment, } from './platform-openssh.js';
+const paths = {
+    userPrivateKeyPath: '/Users/diego/.termify/ssh/user_ed25519',
+    userCertificatePath: '/Users/diego/.termify/ssh/user_ed25519-cert.pub',
+    knownHostsPath: '/Users/diego/.termify/ssh/known_hosts',
+    hostPrivateKeyPath: '/Users/diego/.termify/ssh/host_ed25519',
+    hostCertificatePath: '/etc/termify/ssh/host_ed25519-cert.pub',
+    userCaPublicKeyPath: '/etc/termify/ssh/user_ca.pub',
+    authorizedPrincipalsFilePath: '/etc/termify/ssh/authorized_principals',
+};
+test('renders client config for the Termify virtual network', () => {
+    const config = renderClientConfig(paths);
+    assert.match(config, /Host 10\.100\.\*/);
+    assert.match(config, /IdentityFile \/Users\/diego\/\.termify\/ssh\/user_ed25519/);
+    assert.match(config, /CertificateFile \/Users\/diego\/\.termify\/ssh\/user_ed25519-cert\.pub/);
+    assert.match(config, /UserKnownHostsFile \/Users\/diego\/\.termify\/ssh\/known_hosts/);
+    assert.match(config, /StrictHostKeyChecking yes/);
+    assert.match(config, /IdentitiesOnly yes/);
+});
+test('renders known_hosts trust for the Termify host CA', () => {
+    const entry = renderKnownHostsCertAuthority('10.100.*', 'ssh-ed25519 AAAATESTCA termify-host-ca');
+    assert.equal(entry, '@cert-authority 10.100.* ssh-ed25519 AAAATESTCA termify-host-ca\n');
+});
+test('renders sshd fragment that trusts the Termify account CA', () => {
+    const fragment = renderSshdConfigFragment(paths);
+    assert.match(fragment, /HostKey \/Users\/diego\/\.termify\/ssh\/host_ed25519/);
+    assert.match(fragment, /TrustedUserCAKeys \/etc\/termify\/ssh\/user_ca\.pub/);
+    assert.match(fragment, /HostCertificate \/etc\/termify\/ssh\/host_ed25519-cert\.pub/);
+    assert.match(fragment, /AuthorizedPrincipalsFile \/etc\/termify\/ssh\/authorized_principals/);
+    assert.doesNotMatch(fragment, /AuthorizedPrincipalsCommand/);
+});
+test('renders a static authorized principals file for Windows OpenSSH', () => {
+    const fragment = renderSshdConfigFragment({
+        ...paths,
+        authorizedPrincipalsFilePath: 'C:\\ProgramData\\Termify\\ssh\\authorized_principals',
+    });
+    assert.match(fragment, /AuthorizedPrincipalsFile C:\\ProgramData\\Termify\\ssh\\authorized_principals/);
+    assert.doesNotMatch(fragment, /AuthorizedPrincipalsCommand/);
+});
+//# sourceMappingURL=platform-openssh.test.js.map

package/dist/ssh/platform-openssh.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"platform-openssh.test.js","sourceRoot":"","sources":["../../src/ssh/platform-openssh.test.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,oBAAoB,CAAC;AACxC,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EACL,kBAAkB,EAClB,6BAA6B,EAC7B,wBAAwB,GACzB,MAAM,uBAAuB,CAAC;AAE/B,MAAM,KAAK,GAAG;IACZ,kBAAkB,EAAE,wCAAwC;IAC5D,mBAAmB,EAAE,iDAAiD;IACtE,cAAc,EAAE,uCAAuC;IACvD,kBAAkB,EAAE,wCAAwC;IAC5D,mBAAmB,EAAE,wCAAwC;IAC7D,mBAAmB,EAAE,8BAA8B;IACnD,4BAA4B,EAAE,wCAAwC;CACvE,CAAC;AAEF,IAAI,CAAC,uDAAuD,EAAE,GAAG,EAAE;IACjE,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,CAAC,CAAC;IAEzC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,kBAAkB,CAAC,CAAC;IACzC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,2DAA2D,CAAC,CAAC;IAClF,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,wEAAwE,CAAC,CAAC;IAC/F,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,gEAAgE,CAAC,CAAC;IACvF,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,2BAA2B,CAAC,CAAC;IAClD,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,oBAAoB,CAAC,CAAC;AAC7C,CAAC,CAAC,CAAC;AAEH,IAAI,CAAC,mDAAmD,EAAE,GAAG,EAAE;IAC7D,MAAM,KAAK,GAAG,6BAA6B,CAAC,UAAU,EAAE,wCAAwC,CAAC,CAAC;IAClG,MAAM,CAAC,KAAK,CAAC,KAAK,EAAE,mEAAmE,CAAC,CAAC;AAC3F,CAAC,CAAC,CAAC;AAEH,IAAI,CAAC,0DAA0D,EAAE,GAAG,EAAE;IACpE,MAAM,QAAQ,GAAG,wBAAwB,CAAC,KAAK,CAAC,CAAC;IAEjD,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,sDAAsD,CAAC,CAAC;IAC/E,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,qDAAqD,CAAC,CAAC;IAC9E,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,6DAA6D,CAAC,CAAC;IACtF,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,qEAAqE,CAAC,CAAC;IAC9F,MAAM,CAAC,YAAY,CAAC,QAAQ,EAAE,6BAA6B,CAAC,CAAC;AAC/D,CAAC,CAAC,CAAC;AAEH,IAAI,CAAC,iEAAiE,EAAE,GAAG,EAAE;IAC3E,MAAM,QAAQ,GAAG,wBAAwB,CAAC;QACxC,GAAG,KAAK;QACR,4BAA4B,EAAE,sDAAsD;KAC9E,CAAC,CAAC;IAEV,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,+EAA+E,CAAC,CAAC;IACxG,MAAM,CAAC,YAAY,CAAC,QAAQ,EAAE,6BAA6B,CAAC,CAAC;AAC/D,CAAC,CAAC,CAAC"}

package/dist/ssh/system-ssh.d.ts

@@ -0,0 +1,58 @@
+import type { AgentSshBootstrapResponse } from '@termify/shared';
+export interface SystemSSHPaths {
+    userRootDir: string;
+    systemRootDir: string;
+    userPrivateKeyPath: string;
+    userPublicKeyPath: string;
+    userCertificatePath: string;
+    hostPrivateKeyPath: string;
+    hostPublicKeyPath: string;
+    hostCertificatePath: string;
+    userCaPublicKeyPath: string;
+    hostCaPublicKeyPath: string;
+    metadataPath: string;
+    authorizedPrincipalsPath: string;
+    knownHostsPath: string;
+    clientConfigPath: string;
+    principalsCommandPath: string;
+}
+export interface SystemSSHOptions {
+    userRootDir?: string;
+    systemRootDir?: string;
+    homeDir?: string;
+    sshdConfigPath?: string;
+    helperNodePath?: string;
+    helperCliPath?: string;
+    applyUserOwnership?: (filePath: string) => Promise<void>;
+    platformOverride?: NodeJS.Platform;
+    reloadSshd?: boolean;
+}
+export declare class SystemSSHManager {
+    private userRootDir;
+    private systemRootDir;
+    private homeDir;
+    private options;
+    constructor(userRootDirOrOptions?: string | SystemSSHOptions, homeDirArg?: string, legacyOptions?: SystemSSHOptions);
+    getPaths(): SystemSSHPaths;
+    ensureLocalKeyPairs(): Promise<{
+        userPublicKey: string;
+        hostPublicKey: string;
+    }>;
+    applyBootstrap(material: AgentSshBootstrapResponse): Promise<void>;
+    installOpenSshIntegration(): Promise<void>;
+    fetchBootstrap(params: {
+        serverUrl: string;
+        accessToken: string;
+        virtualIp: string;
+        hostname: string;
+    }): Promise<AgentSshBootstrapResponse>;
+    readAccountPrincipal(): string | null;
+    private getSshdConfigPath;
+    private readMetadata;
+    private ensureEd25519KeyPair;
+    private installPrincipalsCommandHelper;
+    private applyUserOwnership;
+    private getPlatform;
+    private reloadSshd;
+}
+//# sourceMappingURL=system-ssh.d.ts.map

package/dist/ssh/system-ssh.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"system-ssh.d.ts","sourceRoot":"","sources":["../../src/ssh/system-ssh.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAEV,yBAAyB,EAC1B,MAAM,iBAAiB,CAAC;AAiBzB,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;IACtB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,YAAY,EAAE,MAAM,CAAC;IACrB,wBAAwB,EAAE,MAAM,CAAC;IACjC,cAAc,EAAE,MAAM,CAAC;IACvB,gBAAgB,EAAE,MAAM,CAAC;IACzB,qBAAqB,EAAE,MAAM,CAAC;CAC/B;AAED,MAAM,WAAW,gBAAgB;IAC/B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,kBAAkB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACzD,gBAAgB,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC;IACnC,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AA2ID,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,aAAa,CAAS;IAC9B,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,OAAO,CAA6B;gBAEhC,oBAAoB,CAAC,EAAE,MAAM,GAAG,gBAAgB,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,aAAa,GAAE,gBAAqB;IAOvH,QAAQ,IAAI,cAAc;IAuBpB,mBAAmB,IAAI,OAAO,CAAC;QAAE,aAAa,EAAE,MAAM,CAAC;QAAC,aAAa,EAAE,MAAM,CAAA;KAAE,CAAC;IAqBhF,cAAc,CAAC,QAAQ,EAAE,yBAAyB,GAAG,OAAO,CAAC,IAAI,CAAC;IAsBlE,yBAAyB,IAAI,OAAO,CAAC,IAAI,CAAC;IAiE1C,cAAc,CAAC,MAAM,EAAE;QAC3B,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;KAClB,GAAG,OAAO,CAAC,yBAAyB,CAAC;IA+BtC,oBAAoB,IAAI,MAAM,GAAG,IAAI;IAKrC,OAAO,CAAC,iBAAiB;IAWzB,OAAO,CAAC,YAAY;YASN,oBAAoB;YAepB,8BAA8B;YAe9B,kBAAkB;IAIhC,OAAO,CAAC,WAAW;YAIL,UAAU;CAiBzB"}

package/dist/ssh/system-ssh.js

@@ -0,0 +1,328 @@
+import { execFile } from 'node:child_process';
+import { existsSync, readFileSync } from 'node:fs';
+import { chmod, chown, mkdir, readFile, writeFile } from 'node:fs/promises';
+import { homedir } from 'node:os';
+import { dirname, join } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { promisify } from 'node:util';
+import { renderClientConfig, renderKnownHostsCertAuthority, renderSshdConfigFragment, upsertManagedBlock, } from './platform-openssh.js';
+const execFileAsync = promisify(execFile);
+const DEFAULT_HELPER_CLI_PATH = fileURLToPath(new URL('../index.js', import.meta.url));
+async function writeFileWithNewline(filePath, contents) {
+    await writeFile(filePath, contents.trimEnd() + '\n', 'utf8');
+}
+function resolveDefaultUserRootDir(homeDir) {
+    return join(homeDir, '.termify', 'ssh');
+}
+function getPlatform(platformOverride) {
+    return platformOverride ?? process.platform;
+}
+function isRunningAsRoot() {
+    return typeof process.getuid === 'function' && process.getuid() === 0;
+}
+function resolveEffectiveHomeDir(platformOverride) {
+    if (process.env.TERMIFY_SSH_HOME_DIR) {
+        return process.env.TERMIFY_SSH_HOME_DIR;
+    }
+    if (isRunningAsRoot() && process.env.SUDO_USER) {
+        if (getPlatform(platformOverride) === 'win32') {
+            return join('C:\\Users', process.env.SUDO_USER);
+        }
+        if (getPlatform(platformOverride) === 'darwin') {
+            return join('/Users', process.env.SUDO_USER);
+        }
+        return join('/home', process.env.SUDO_USER);
+    }
+    return homedir();
+}
+function resolveDefaultSystemRootDir(platformOverride) {
+    if (process.env.TERMIFY_SSH_SYSTEM_DIR) {
+        return process.env.TERMIFY_SSH_SYSTEM_DIR;
+    }
+    if (getPlatform(platformOverride) === 'win32') {
+        return 'C:\\ProgramData\\Termify\\ssh';
+    }
+    if (getPlatform(platformOverride) === 'darwin') {
+        return '/Library/Termify/ssh';
+    }
+    return '/var/lib/termify-agent/ssh';
+}
+function resolveDefaultPrincipalsCommandPath(systemRootDir, platformOverride) {
+    return join(systemRootDir, getPlatform(platformOverride) === 'win32' ? 'termify-ssh-principals.cmd' : 'termify-ssh-principals');
+}
+function quoteForShell(value) {
+    return `'${value.replace(/'/g, `'\\''`)}'`;
+}
+function renderPrincipalsCommandScript(params) {
+    if (getPlatform(params.platformOverride) === 'win32') {
+        return [
+            '@echo off',
+            `set "TERMIFY_SSH_SYSTEM_DIR=${params.systemRootDir}"`,
+            `"${params.nodePath}" "${params.cliPath}" ssh principals %*`,
+            '',
+        ].join('\r\n');
+    }
+    return [
+        '#!/bin/sh',
+        `export TERMIFY_SSH_SYSTEM_DIR=${quoteForShell(params.systemRootDir)}`,
+        `exec ${quoteForShell(params.nodePath)} ${quoteForShell(params.cliPath)} ssh principals "$@"`,
+        '',
+    ].join('\n');
+}
+function normalizeConstructorArgs(userRootDirOrOptions, homeDirArg, legacyOptions = {}) {
+    if (typeof userRootDirOrOptions === 'string') {
+        const homeDir = homeDirArg ?? resolveEffectiveHomeDir(legacyOptions.platformOverride);
+        return {
+            userRootDir: userRootDirOrOptions,
+            systemRootDir: legacyOptions.systemRootDir ?? userRootDirOrOptions,
+            homeDir,
+            sshdConfigPath: legacyOptions.sshdConfigPath ?? '',
+            helperNodePath: legacyOptions.helperNodePath ?? process.execPath,
+            helperCliPath: legacyOptions.helperCliPath ?? DEFAULT_HELPER_CLI_PATH,
+            applyUserOwnership: legacyOptions.applyUserOwnership ?? resolveUserOwnershipApplier(),
+            platformOverride: legacyOptions.platformOverride ?? process.platform,
+            reloadSshd: legacyOptions.reloadSshd ?? true,
+        };
+    }
+    const options = userRootDirOrOptions ?? {};
+    const homeDir = options.homeDir ?? resolveEffectiveHomeDir(options.platformOverride);
+    return {
+        userRootDir: options.userRootDir ?? resolveDefaultUserRootDir(homeDir),
+        systemRootDir: options.systemRootDir ?? resolveDefaultSystemRootDir(options.platformOverride),
+        homeDir,
+        sshdConfigPath: options.sshdConfigPath ?? '',
+        helperNodePath: options.helperNodePath ?? process.execPath,
+        helperCliPath: options.helperCliPath ?? DEFAULT_HELPER_CLI_PATH,
+        applyUserOwnership: options.applyUserOwnership ?? resolveUserOwnershipApplier(),
+        platformOverride: options.platformOverride ?? process.platform,
+        reloadSshd: options.reloadSshd ?? true,
+    };
+}
+function resolveUserOwnershipApplier() {
+    if (!isRunningAsRoot()) {
+        return async () => { };
+    }
+    const uid = process.env.SUDO_UID ? Number(process.env.SUDO_UID) : Number.NaN;
+    const gid = process.env.SUDO_GID ? Number(process.env.SUDO_GID) : Number.NaN;
+    if (!Number.isInteger(uid) || !Number.isInteger(gid)) {
+        return async () => { };
+    }
+    return async (filePath) => {
+        try {
+            await chown(filePath, uid, gid);
+        }
+        catch { }
+    };
+}
+export class SystemSSHManager {
+    userRootDir;
+    systemRootDir;
+    homeDir;
+    options;
+    constructor(userRootDirOrOptions, homeDirArg, legacyOptions = {}) {
+        this.options = normalizeConstructorArgs(userRootDirOrOptions, homeDirArg, legacyOptions);
+        this.userRootDir = this.options.userRootDir;
+        this.systemRootDir = this.options.systemRootDir;
+        this.homeDir = this.options.homeDir;
+    }
+    getPaths() {
+        const userPrivateKeyPath = join(this.userRootDir, 'user_ed25519');
+        const hostPrivateKeyPath = join(this.systemRootDir, 'host_ed25519');
+        return {
+            userRootDir: this.userRootDir,
+            systemRootDir: this.systemRootDir,
+            userPrivateKeyPath,
+            userPublicKeyPath: `${userPrivateKeyPath}.pub`,
+            userCertificatePath: join(this.userRootDir, 'user_ed25519-cert.pub'),
+            hostPrivateKeyPath,
+            hostPublicKeyPath: `${hostPrivateKeyPath}.pub`,
+            hostCertificatePath: join(this.systemRootDir, 'host_ed25519-cert.pub'),
+            userCaPublicKeyPath: join(this.systemRootDir, 'user_ca.pub'),
+            hostCaPublicKeyPath: join(this.systemRootDir, 'host_ca.pub'),
+            metadataPath: join(this.systemRootDir, 'bootstrap.json'),
+            authorizedPrincipalsPath: join(this.systemRootDir, 'authorized_principals'),
+            knownHostsPath: join(this.userRootDir, 'known_hosts'),
+            clientConfigPath: join(this.homeDir, '.ssh', 'config'),
+            principalsCommandPath: resolveDefaultPrincipalsCommandPath(this.systemRootDir, this.getPlatform()),
+        };
+    }
+    async ensureLocalKeyPairs() {
+        const paths = this.getPaths();
+        await Promise.all([
+            mkdir(paths.userRootDir, { recursive: true }),
+            mkdir(paths.systemRootDir, { recursive: true }),
+        ]);
+        await this.applyUserOwnership(paths.userRootDir);
+        const userPublicKey = await this.ensureEd25519KeyPair(paths.userPrivateKeyPath, 'termify-user');
+        const hostPublicKey = await this.ensureEd25519KeyPair(paths.hostPrivateKeyPath, 'termify-host');
+        await Promise.all([
+            this.applyUserOwnership(paths.userPrivateKeyPath),
+            this.applyUserOwnership(paths.userPublicKeyPath),
+        ]);
+        return {
+            userPublicKey,
+            hostPublicKey,
+        };
+    }
+    async applyBootstrap(material) {
+        const paths = this.getPaths();
+        await Promise.all([
+            mkdir(paths.userRootDir, { recursive: true }),
+            mkdir(paths.systemRootDir, { recursive: true }),
+        ]);
+        await Promise.all([
+            writeFile(paths.userCertificatePath, material.userCertificate, 'utf8'),
+            writeFile(paths.hostCertificatePath, material.hostCertificate, 'utf8'),
+            writeFileWithNewline(paths.userCaPublicKeyPath, material.userCaPublicKey),
+            writeFileWithNewline(paths.hostCaPublicKeyPath, material.hostCaPublicKey),
+            writeFileWithNewline(paths.authorizedPrincipalsPath, material.accountPrincipal),
+            writeFile(paths.metadataPath, JSON.stringify({
+                accountPrincipal: material.accountPrincipal,
+                userValidForSeconds: material.userValidForSeconds,
+                hostValidForSeconds: material.hostValidForSeconds,
+            }, null, 2), 'utf8'),
+        ]);
+        await this.applyUserOwnership(paths.userCertificatePath);
+    }
+    async installOpenSshIntegration() {
+        const paths = this.getPaths();
+        const principal = this.readAccountPrincipal();
+        if (!principal) {
+            throw new Error('Cannot install OpenSSH integration without bootstrap metadata');
+        }
+        await Promise.all([
+            mkdir(paths.userRootDir, { recursive: true }),
+            mkdir(paths.systemRootDir, { recursive: true }),
+            mkdir(join(this.homeDir, '.ssh'), { recursive: true }),
+        ]);
+        await Promise.all([
+            this.applyUserOwnership(paths.userRootDir),
+            this.applyUserOwnership(join(this.homeDir, '.ssh')),
+        ]);
+        await writeFile(paths.knownHostsPath, renderKnownHostsCertAuthority('10.100.*', readFileSync(paths.hostCaPublicKeyPath, 'utf8')), 'utf8');
+        await this.applyUserOwnership(paths.knownHostsPath);
+        const existingClientConfig = existsSync(paths.clientConfigPath)
+            ? readFileSync(paths.clientConfigPath, 'utf8')
+            : '';
+        const mergedClientConfig = upsertManagedBlock(existingClientConfig, 'ssh-client', renderClientConfig({
+            userPrivateKeyPath: paths.userPrivateKeyPath,
+            userCertificatePath: paths.userCertificatePath,
+            knownHostsPath: paths.knownHostsPath,
+            hostPrivateKeyPath: paths.hostPrivateKeyPath,
+            hostCertificatePath: paths.hostCertificatePath,
+            userCaPublicKeyPath: paths.userCaPublicKeyPath,
+            principalsCommand: `${paths.principalsCommandPath} %u`,
+        }));
+        await writeFile(paths.clientConfigPath, mergedClientConfig, 'utf8');
+        await this.applyUserOwnership(paths.clientConfigPath);
+        const sshdConfigPath = this.getSshdConfigPath();
+        const existingSshdConfig = existsSync(sshdConfigPath)
+            ? readFileSync(sshdConfigPath, 'utf8')
+            : '';
+        const mergedSshdConfig = upsertManagedBlock(existingSshdConfig, 'sshd', renderSshdConfigFragment({
+            userPrivateKeyPath: paths.userPrivateKeyPath,
+            userCertificatePath: paths.userCertificatePath,
+            knownHostsPath: paths.knownHostsPath,
+            hostPrivateKeyPath: paths.hostPrivateKeyPath,
+            hostCertificatePath: paths.hostCertificatePath,
+            userCaPublicKeyPath: paths.userCaPublicKeyPath,
+            authorizedPrincipalsFilePath: paths.authorizedPrincipalsPath,
+        }));
+        await mkdir(dirname(sshdConfigPath), { recursive: true }).catch(() => { });
+        await writeFile(sshdConfigPath, mergedSshdConfig, 'utf8');
+        await this.reloadSshd();
+    }
+    async fetchBootstrap(params) {
+        const keyPairs = await this.ensureLocalKeyPairs();
+        const payload = {
+            virtualIp: params.virtualIp,
+            hostname: params.hostname,
+            hostPublicKey: keyPairs.hostPublicKey,
+            userPublicKey: keyPairs.userPublicKey,
+        };
+        const response = await fetch(`${params.serverUrl}/api/agent/ssh/bootstrap`, {
+            method: 'POST',
+            headers: {
+                Authorization: `Bearer ${params.accessToken}`,
+                'Content-Type': 'application/json',
+            },
+            body: JSON.stringify(payload),
+        });
+        if (!response.ok) {
+            throw new Error(`SSH bootstrap failed with status ${response.status}`);
+        }
+        const json = await response.json();
+        if (!json.success || !json.data) {
+            throw new Error(json.error || 'SSH bootstrap returned no data');
+        }
+        await this.applyBootstrap(json.data);
+        return json.data;
+    }
+    readAccountPrincipal() {
+        const metadata = this.readMetadata();
+        return metadata?.accountPrincipal ?? null;
+    }
+    getSshdConfigPath() {
+        if (this.options.sshdConfigPath) {
+            return this.options.sshdConfigPath;
+        }
+        if (this.getPlatform() === 'win32') {
+            return 'C:\\ProgramData\\ssh\\sshd_config';
+        }
+        return '/etc/ssh/sshd_config';
+    }
+    readMetadata() {
+        const { metadataPath } = this.getPaths();
+        if (!existsSync(metadataPath)) {
+            return null;
+        }
+        return JSON.parse(readFileSync(metadataPath, 'utf8'));
+    }
+    async ensureEd25519KeyPair(privateKeyPath, comment) {
+        const publicKeyPath = `${privateKeyPath}.pub`;
+        if (!existsSync(privateKeyPath) || !existsSync(publicKeyPath)) {
+            await execFileAsync('ssh-keygen', [
+                '-q',
+                '-t', 'ed25519',
+                '-N', '',
+                '-C', comment,
+                '-f', privateKeyPath,
+            ]);
+        }
+        return readFile(publicKeyPath, 'utf8');
+    }
+    async installPrincipalsCommandHelper() {
+        const paths = this.getPaths();
+        const contents = renderPrincipalsCommandScript({
+            systemRootDir: this.systemRootDir,
+            nodePath: this.options.helperNodePath,
+            cliPath: this.options.helperCliPath,
+            platformOverride: this.getPlatform(),
+        });
+        await writeFile(paths.principalsCommandPath, contents, 'utf8');
+        if (this.getPlatform() !== 'win32') {
+            await chmod(paths.principalsCommandPath, 0o755);
+        }
+    }
+    async applyUserOwnership(filePath) {
+        await this.options.applyUserOwnership(filePath);
+    }
+    getPlatform() {
+        return getPlatform(this.options.platformOverride);
+    }
+    async reloadSshd() {
+        if (!this.options.reloadSshd) {
+            return;
+        }
+        if (this.getPlatform() === 'win32') {
+            await execFileAsync('powershell.exe', ['-Command', 'Restart-Service sshd']);
+            return;
+        }
+        if (this.getPlatform() === 'darwin') {
+            await execFileAsync('launchctl', ['kickstart', '-k', 'system/com.openssh.sshd']);
+            return;
+        }
+        await execFileAsync('sh', ['-lc', 'systemctl reload sshd || systemctl reload ssh']);
+    }
+}
+//# sourceMappingURL=system-ssh.js.map

package/dist/ssh/system-ssh.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"system-ssh.js","sourceRoot":"","sources":["../../src/ssh/system-ssh.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACnD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAC5E,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAMtC,OAAO,EACL,kBAAkB,EAClB,6BAA6B,EAC7B,wBAAwB,EACxB,kBAAkB,GACnB,MAAM,uBAAuB,CAAC;AAE/B,MAAM,aAAa,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;AAC1C,MAAM,uBAAuB,GAAG,aAAa,CAAC,IAAI,GAAG,CAAC,aAAa,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAsCvF,KAAK,UAAU,oBAAoB,CAAC,QAAgB,EAAE,QAAgB;IACpE,MAAM,SAAS,CAAC,QAAQ,EAAE,QAAQ,CAAC,OAAO,EAAE,GAAG,IAAI,EAAE,MAAM,CAAC,CAAC;AAC/D,CAAC;AAED,SAAS,yBAAyB,CAAC,OAAe;IAChD,OAAO,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE,KAAK,CAAC,CAAC;AAC1C,CAAC;AAED,SAAS,WAAW,CAAC,gBAAkC;IACrD,OAAO,gBAAgB,IAAI,OAAO,CAAC,QAAQ,CAAC;AAC9C,CAAC;AAED,SAAS,eAAe;IACtB,OAAO,OAAO,OAAO,CAAC,MAAM,KAAK,UAAU,IAAI,OAAO,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;AACxE,CAAC;AAED,SAAS,uBAAuB,CAAC,gBAAkC;IACjE,IAAI,OAAO,CAAC,GAAG,CAAC,oBAAoB,EAAE,CAAC;QACrC,OAAO,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC;IAC1C,CAAC;IAED,IAAI,eAAe,EAAE,IAAI,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;QAC/C,IAAI,WAAW,CAAC,gBAAgB,CAAC,KAAK,OAAO,EAAE,CAAC;YAC9C,OAAO,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAClD,CAAC;QAED,IAAI,WAAW,CAAC,gBAAgB,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC/C,OAAO,IAAI,CAAC,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC/C,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAC9C,CAAC;IAED,OAAO,OAAO,EAAE,CAAC;AACnB,CAAC;AAED,SAAS,2BAA2B,CAAC,gBAAkC;IACrE,IAAI,OAAO,CAAC,GAAG,CAAC,sBAAsB,EAAE,CAAC;QACvC,OAAO,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC;IAC5C,CAAC;IAED,IAAI,WAAW,CAAC,gBAAgB,CAAC,KAAK,OAAO,EAAE,CAAC;QAC9C,OAAO,+BAA+B,CAAC;IACzC,CAAC;IAED,IAAI,WAAW,CAAC,gBAAgB,CAAC,KAAK,QAAQ,EAAE,CAAC;QAC/C,OAAO,sBAAsB,CAAC;IAChC,CAAC;IAED,OAAO,4BAA4B,CAAC;AACtC,CAAC;AAED,SAAS,mCAAmC,CAAC,aAAqB,EAAE,gBAAkC;IACpG,OAAO,IAAI,CAAC,aAAa,EAAE,WAAW,CAAC,gBAAgB,CAAC,KAAK,OAAO,CAAC,CAAC,CAAC,4BAA4B,CAAC,CAAC,CAAC,wBAAwB,CAAC,CAAC;AAClI,CAAC;AAED,SAAS,aAAa,CAAC,KAAa;IAClC,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC;AAC7C,CAAC;AAED,SAAS,6BAA6B,CAAC,MAKtC;IACC,IAAI,WAAW,CAAC,MAAM,CAAC,gBAAgB,CAAC,KAAK,OAAO,EAAE,CAAC;QACrD,OAAO;YACL,WAAW;YACX,+BAA+B,MAAM,CAAC,aAAa,GAAG;YACtD,IAAI,MAAM,CAAC,QAAQ,MAAM,MAAM,CAAC,OAAO,qBAAqB;YAC5D,EAAE;SACH,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACjB,CAAC;IAED,OAAO;QACL,WAAW;QACX,iCAAiC,aAAa,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE;QACtE,QAAQ,aAAa,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC,sBAAsB;QAC7F,EAAE;KACH,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED,SAAS,wBAAwB,CAC/B,oBAAgD,EAChD,UAAmB,EACnB,gBAAkC,EAAE;IAEpC,IAAI,OAAO,oBAAoB,KAAK,QAAQ,EAAE,CAAC;QAC7C,MAAM,OAAO,GAAG,UAAU,IAAI,uBAAuB,CAAC,aAAa,CAAC,gBAAgB,CAAC,CAAC;QACtF,OAAO;YACL,WAAW,EAAE,oBAAoB;YACjC,aAAa,EAAE,aAAa,CAAC,aAAa,IAAI,oBAAoB;YAClE,OAAO;YACP,cAAc,EAAE,aAAa,CAAC,cAAc,IAAI,EAAE;YAClD,cAAc,EAAE,aAAa,CAAC,cAAc,IAAI,OAAO,CAAC,QAAQ;YAChE,aAAa,EAAE,aAAa,CAAC,aAAa,IAAI,uBAAuB;YACrE,kBAAkB,EAAE,aAAa,CAAC,kBAAkB,IAAI,2BAA2B,EAAE;YACrF,gBAAgB,EAAE,aAAa,CAAC,gBAAgB,IAAI,OAAO,CAAC,QAAQ;YACpE,UAAU,EAAE,aAAa,CAAC,UAAU,IAAI,IAAI;SAC7C,CAAC;IACJ,CAAC;IAED,MAAM,OAAO,GAAG,oBAAoB,IAAI,EAAE,CAAC;IAC3C,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,uBAAuB,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;IAErF,OAAO;QACL,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,yBAAyB,CAAC,OAAO,CAAC;QACtE,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,2BAA2B,CAAC,OAAO,CAAC,gBAAgB,CAAC;QAC7F,OAAO;QACP,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,EAAE;QAC5C,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,OAAO,CAAC,QAAQ;QAC1D,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,uBAAuB;QAC/D,kBAAkB,EAAE,OAAO,CAAC,kBAAkB,IAAI,2BAA2B,EAAE;QAC/E,gBAAgB,EAAE,OAAO,CAAC,gBAAgB,IAAI,OAAO,CAAC,QAAQ;QAC9D,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,IAAI;KACvC,CAAC;AACJ,CAAC;AAED,SAAS,2BAA2B;IAClC,IAAI,CAAC,eAAe,EAAE,EAAE,CAAC;QACvB,OAAO,KAAK,IAAI,EAAE,GAAE,CAAC,CAAC;IACxB,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;IAC7E,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;IAC7E,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC;QACrD,OAAO,KAAK,IAAI,EAAE,GAAE,CAAC,CAAC;IACxB,CAAC;IAED,OAAO,KAAK,EAAE,QAAgB,EAAE,EAAE;QAChC,IAAI,CAAC;YACH,MAAM,KAAK,CAAC,QAAQ,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;QAClC,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;IACZ,CAAC,CAAC;AACJ,CAAC;AAED,MAAM,OAAO,gBAAgB;IACnB,WAAW,CAAS;IACpB,aAAa,CAAS;IACtB,OAAO,CAAS;IAChB,OAAO,CAA6B;IAE5C,YAAY,oBAAgD,EAAE,UAAmB,EAAE,gBAAkC,EAAE;QACrH,IAAI,CAAC,OAAO,GAAG,wBAAwB,CAAC,oBAAoB,EAAE,UAAU,EAAE,aAAa,CAAC,CAAC;QACzF,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC;QAC5C,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC;QAChD,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC;IACtC,CAAC;IAED,QAAQ;QACN,MAAM,kBAAkB,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;QAClE,MAAM,kBAAkB,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,cAAc,CAAC,CAAC;QAEpE,OAAO;YACL,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,kBAAkB;YAClB,iBAAiB,EAAE,GAAG,kBAAkB,MAAM;YAC9C,mBAAmB,EAAE,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,uBAAuB,CAAC;YACpE,kBAAkB;YAClB,iBAAiB,EAAE,GAAG,kBAAkB,MAAM;YAC9C,mBAAmB,EAAE,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,uBAAuB,CAAC;YACtE,mBAAmB,EAAE,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,aAAa,CAAC;YAC5D,mBAAmB,EAAE,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,aAAa,CAAC;YAC5D,YAAY,EAAE,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,gBAAgB,CAAC;YACxD,wBAAwB,EAAE,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,uBAAuB,CAAC;YAC3E,cAAc,EAAE,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,aAAa,CAAC;YACrD,gBAAgB,EAAE,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,CAAC;YACtD,qBAAqB,EAAE,mCAAmC,CAAC,IAAI,CAAC,aAAa,EAAE,IAAI,CAAC,WAAW,EAAE,CAAC;SACnG,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,mBAAmB;QACvB,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC9B,MAAM,OAAO,CAAC,GAAG,CAAC;YAChB,KAAK,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YAC7C,KAAK,CAAC,KAAK,CAAC,aAAa,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;SAChD,CAAC,CAAC;QACH,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;QAEjD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,kBAAkB,EAAE,cAAc,CAAC,CAAC;QAChG,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,kBAAkB,EAAE,cAAc,CAAC,CAAC;QAChG,MAAM,OAAO,CAAC,GAAG,CAAC;YAChB,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,kBAAkB,CAAC;YACjD,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,iBAAiB,CAAC;SACjD,CAAC,CAAC;QAEH,OAAO;YACL,aAAa;YACb,aAAa;SACd,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,QAAmC;QACtD,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC9B,MAAM,OAAO,CAAC,GAAG,CAAC;YAChB,KAAK,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YAC7C,KAAK,CAAC,KAAK,CAAC,aAAa,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;SAChD,CAAC,CAAC;QAEH,MAAM,OAAO,CAAC,GAAG,CAAC;YAChB,SAAS,CAAC,KAAK,CAAC,mBAAmB,EAAE,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAC;YACtE,SAAS,CAAC,KAAK,CAAC,mBAAmB,EAAE,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAC;YACtE,oBAAoB,CAAC,KAAK,CAAC,mBAAmB,EAAE,QAAQ,CAAC,eAAe,CAAC;YACzE,oBAAoB,CAAC,KAAK,CAAC,mBAAmB,EAAE,QAAQ,CAAC,eAAe,CAAC;YACzE,oBAAoB,CAAC,KAAK,CAAC,wBAAwB,EAAE,QAAQ,CAAC,gBAAgB,CAAC;YAC/E,SAAS,CAAC,KAAK,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC;gBAC3C,gBAAgB,EAAE,QAAQ,CAAC,gBAAgB;gBAC3C,mBAAmB,EAAE,QAAQ,CAAC,mBAAmB;gBACjD,mBAAmB,EAAE,QAAQ,CAAC,mBAAmB;aACtB,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,MAAM,CAAC;SACjD,CAAC,CAAC;QACH,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;IAC3D,CAAC;IAED,KAAK,CAAC,yBAAyB;QAC7B,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC9C,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,+DAA+D,CAAC,CAAC;QACnF,CAAC;QAED,MAAM,OAAO,CAAC,GAAG,CAAC;YAChB,KAAK,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YAC7C,KAAK,CAAC,KAAK,CAAC,aAAa,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YAC/C,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;SACvD,CAAC,CAAC;QACH,MAAM,OAAO,CAAC,GAAG,CAAC;YAChB,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,WAAW,CAAC;YAC1C,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;SACpD,CAAC,CAAC;QAEH,MAAM,SAAS,CACb,KAAK,CAAC,cAAc,EACpB,6BAA6B,CAAC,UAAU,EAAE,YAAY,CAAC,KAAK,CAAC,mBAAmB,EAAE,MAAM,CAAC,CAAC,EAC1F,MAAM,CACP,CAAC;QACF,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;QAEpD,MAAM,oBAAoB,GAAG,UAAU,CAAC,KAAK,CAAC,gBAAgB,CAAC;YAC7D,CAAC,CAAC,YAAY,CAAC,KAAK,CAAC,gBAAgB,EAAE,MAAM,CAAC;YAC9C,CAAC,CAAC,EAAE,CAAC;QACP,MAAM,kBAAkB,GAAG,kBAAkB,CAC3C,oBAAoB,EACpB,YAAY,EACZ,kBAAkB,CAAC;YACjB,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;YAC5C,mBAAmB,EAAE,KAAK,CAAC,mBAAmB;YAC9C,cAAc,EAAE,KAAK,CAAC,cAAc;YACpC,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;YAC5C,mBAAmB,EAAE,KAAK,CAAC,mBAAmB;YAC9C,mBAAmB,EAAE,KAAK,CAAC,mBAAmB;YAC9C,iBAAiB,EAAE,GAAG,KAAK,CAAC,qBAAqB,KAAK;SACvD,CAAC,CACH,CAAC;QACF,MAAM,SAAS,CAAC,KAAK,CAAC,gBAAgB,EAAE,kBAAkB,EAAE,MAAM,CAAC,CAAC;QACpE,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAEtD,MAAM,cAAc,GAAG,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAChD,MAAM,kBAAkB,GAAG,UAAU,CAAC,cAAc,CAAC;YACnD,CAAC,CAAC,YAAY,CAAC,cAAc,EAAE,MAAM,CAAC;YACtC,CAAC,CAAC,EAAE,CAAC;QACP,MAAM,gBAAgB,GAAG,kBAAkB,CACzC,kBAAkB,EAClB,MAAM,EACN,wBAAwB,CAAC;YACvB,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;YAC5C,mBAAmB,EAAE,KAAK,CAAC,mBAAmB;YAC9C,cAAc,EAAE,KAAK,CAAC,cAAc;YACpC,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;YAC5C,mBAAmB,EAAE,KAAK,CAAC,mBAAmB;YAC9C,mBAAmB,EAAE,KAAK,CAAC,mBAAmB;YAC9C,4BAA4B,EAAE,KAAK,CAAC,wBAAwB;SAC7D,CAAC,CACH,CAAC;QACF,MAAM,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;QAC1E,MAAM,SAAS,CAAC,cAAc,EAAE,gBAAgB,EAAE,MAAM,CAAC,CAAC;QAC1D,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;IAC1B,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,MAKpB;QACC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAClD,MAAM,OAAO,GAA6B;YACxC,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,aAAa,EAAE,QAAQ,CAAC,aAAa;YACrC,aAAa,EAAE,QAAQ,CAAC,aAAa;SACtC,CAAC;QAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,CAAC,SAAS,0BAA0B,EAAE;YAC1E,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,aAAa,EAAE,UAAU,MAAM,CAAC,WAAW,EAAE;gBAC7C,cAAc,EAAE,kBAAkB;aACnC;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;SAC9B,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;QACzE,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA6E,CAAC;QAC9G,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAChC,MAAM,IAAI,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,gCAAgC,CAAC,CAAC;QAClE,CAAC;QAED,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACrC,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,oBAAoB;QAClB,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QACrC,OAAO,QAAQ,EAAE,gBAAgB,IAAI,IAAI,CAAC;IAC5C,CAAC;IAEO,iBAAiB;QACvB,IAAI,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAChC,OAAO,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC;QACrC,CAAC;QAED,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,OAAO,EAAE,CAAC;YACnC,OAAO,mCAAmC,CAAC;QAC7C,CAAC;QACD,OAAO,sBAAsB,CAAC;IAChC,CAAC;IAEO,YAAY;QAClB,MAAM,EAAE,YAAY,EAAE,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QACzC,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,MAAM,CAAC,CAAsB,CAAC;IAC7E,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAAC,cAAsB,EAAE,OAAe;QACxE,MAAM,aAAa,GAAG,GAAG,cAAc,MAAM,CAAC;QAC9C,IAAI,CAAC,UAAU,CAAC,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;YAC9D,MAAM,aAAa,CAAC,YAAY,EAAE;gBAChC,IAAI;gBACJ,IAAI,EAAE,SAAS;gBACf,IAAI,EAAE,EAAE;gBACR,IAAI,EAAE,OAAO;gBACb,IAAI,EAAE,cAAc;aACrB,CAAC,CAAC;QACL,CAAC;QAED,OAAO,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;IACzC,CAAC;IAEO,KAAK,CAAC,8BAA8B;QAC1C,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC9B,MAAM,QAAQ,GAAG,6BAA6B,CAAC;YAC7C,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,cAAc;YACrC,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,aAAa;YACnC,gBAAgB,EAAE,IAAI,CAAC,WAAW,EAAE;SACrC,CAAC,CAAC;QAEH,MAAM,SAAS,CAAC,KAAK,CAAC,qBAAqB,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC/D,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,OAAO,EAAE,CAAC;YACnC,MAAM,KAAK,CAAC,KAAK,CAAC,qBAAqB,EAAE,KAAK,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,kBAAkB,CAAC,QAAgB;QAC/C,MAAM,IAAI,CAAC,OAAO,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IAClD,CAAC;IAEO,WAAW;QACjB,OAAO,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;IACpD,CAAC;IAEO,KAAK,CAAC,UAAU;QACtB,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;YAC7B,OAAO;QACT,CAAC;QAED,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,OAAO,EAAE,CAAC;YACnC,MAAM,aAAa,CAAC,gBAAgB,EAAE,CAAC,UAAU,EAAE,sBAAsB,CAAC,CAAC,CAAC;YAC5E,OAAO;QACT,CAAC;QAED,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,QAAQ,EAAE,CAAC;YACpC,MAAM,aAAa,CAAC,WAAW,EAAE,CAAC,WAAW,EAAE,IAAI,EAAE,yBAAyB,CAAC,CAAC,CAAC;YACjF,OAAO;QACT,CAAC;QAED,MAAM,aAAa,CAAC,IAAI,EAAE,CAAC,KAAK,EAAE,+CAA+C,CAAC,CAAC,CAAC;IACtF,CAAC;CACF"}

package/dist/ssh/system-ssh.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=system-ssh.test.d.ts.map

package/dist/ssh/system-ssh.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"system-ssh.test.d.ts","sourceRoot":"","sources":["../../src/ssh/system-ssh.test.ts"],"names":[],"mappings":""}