Gitiles
Code Review Sign In
gerrit.cesnet.cz / github / CESNET / libnetconf2 / b20999fa82afac2dc075aae3fbd55e06f079507a^! / . / python / session.c
commitb20999fa82afac2dc075aae3fbd55e06f079507a[log] [tgz]
authorRadek Krejci <rkrejci@cesnet.cz>Wed Jun 21 13:47:11 2017 +0200
committerRadek Krejci <rkrejci@cesnet.cz>Wed Jun 21 13:47:11 2017 +0200
tree486a667e5dec4d01ece19cbb9ef28c3283d7bf88
parent6067f6c2f8e47258afd5d962bc5ce67beb7e666f [diff] [blame]
pyapi FEATURE provide callback mechanism for SSH authentication

diff --git a/python/session.c b/python/session.c
index 387f5ed..18769cb 100644
--- a/python/session.c
+++ b/python/session.c

@@ -20,6 +20,7 @@
 #include <string.h>
 #include <libyang/libyang.h>
 
+#include "../src/config.h"
 #include "netconf.h"
 
 typedef struct {
@@ -34,6 +35,34 @@
     /* password is provided as priv when setting up the callback */
     return strdup((char *)priv);
 }
+
+char *
+auth_password_pyclb(const char *username, const char *hostname, void *priv)
+{
+    PyObject *arglist, *result;
+    ncSSHObject *ssh = (ncSSHObject*)priv;
+    char *password = NULL;
+
+    arglist = Py_BuildValue("(ssO)", username, hostname, ssh->clb_password_data ? ssh->clb_password_data : Py_None);
+    if (!arglist) {
+        PyErr_Print();
+        return NULL;
+    }
+    result = PyObject_CallObject(ssh->clb_password, arglist);
+    Py_DECREF(arglist);
+
+    if (result) {
+        if (!PyUnicode_Check(result)) {
+            PyErr_SetString(PyExc_TypeError, "Invalid password authentication callback result.");
+        } else {
+            password = strdup(PyUnicode_AsUTF8(result));
+            Py_DECREF(result);
+        }
+    }
+
+    return password;
+}
+
 char *
 auth_interactive_clb(const char *UNUSED(auth_name), const char *UNUSED(instruction), const char *UNUSED(prompt),
                      int UNUSED(echo), void *priv)
@@ -43,6 +72,34 @@
 }
 
 char *
+auth_interactive_pyclb(const char *auth_name, const char *instruction, const char *prompt, int UNUSED(echo), void *priv)
+{
+    PyObject *arglist, *result;
+    ncSSHObject *ssh = (ncSSHObject*)priv;
+    char *password = NULL;
+
+    arglist = Py_BuildValue("(sssO)", auth_name, instruction, prompt, ssh->clb_password_data ? ssh->clb_password_data : Py_None);
+    if (!arglist) {
+        PyErr_Print();
+        return NULL;
+    }
+    result = PyObject_CallObject(ssh->clb_interactive, arglist);
+    Py_DECREF(arglist);
+
+    if (result) {
+        if (!PyUnicode_Check(result)) {
+            PyErr_SetString(PyExc_TypeError, "Invalid password authentication callback result.");
+        } else {
+            password = strdup(PyUnicode_AsUTF8(result));
+            Py_DECREF(result);
+        }
+    }
+
+    return password;
+
+}
+
+char *
 auth_privkey_passphrase_clb(const char *privkey_path, void *priv)
 {
     /* password is provided as priv when setting up the callback */
@@ -118,6 +175,13 @@
                                                        (void *)PyUnicode_AsUTF8(((ncSSHObject*)transport)->password));
                 nc_client_ssh_set_auth_privkey_passphrase_clb(&auth_privkey_passphrase_clb,
                                                               (void *)PyUnicode_AsUTF8(((ncSSHObject*)transport)->password));
+            } else {
+                if (((ncSSHObject *)transport)->clb_password) {
+                    nc_client_ssh_set_auth_password_clb(&auth_password_pyclb, (void *)transport);
+                }
+                if (((ncSSHObject *)transport)->clb_interactive) {
+                    nc_client_ssh_set_auth_interactive_clb(&auth_interactive_pyclb, (void *)transport);
+                }
             }
         }