• We should define a feature set for the php5 branch (e.g. PSR4 autoloading and removing all the old PHP4 stuff or whatnot) and then just release it.
• Releasing it involves assigning a version number. I think semantic versioning should be followed. I am fine with starting at 1.0.0, then what currently is master can stay as 0.x.y. The alternative is to make master 1.0.0 and release php5 as 2.0.0.
• We should define how long the released version will be supported with bugfixes etc. pp.
• New developments should happen in different branches, etc. pp. The php5 branch has to go.

While I appreciate the great range of algorithms implemented in phpseclib, I would like to find a short function that does an sftp file upload only, given account name, password, and the private key and certificate file pathnames. So far, web searching has not produced anything. Any ideas?

Ok this is a brand new PR that is a rollup of all the changes requested from #247. This PR includes the following:

• Proper PHP 5.3 namespaces using phpseclib as the root namespace
• PSR-4 auto-loading support
• Converted all global constants to class based constants
• Updated all inline documentation to reflect namespaces

(I removed all of the visibility declarations from the original PR)

Feedback is welcomed and appreciated. Unit tests still need to be updated, and I have only tested the SFTP and SSH2 functions in very limited use cases, so there may be new bugs introduced that I have not seen. Please let me know if you find any and I can make any necessary tweaks.

Using: PHP 7.3.21 phpseclib 2.0.29

I'm trying to run a very long running command (like 1 hour or more) with this function, as this function runs more than ClientAliveInterval * ClientAliveCountMax ~ 10 mins (default) I get error Connection closed prematurely.

I switched to this library from php ssh2 extension, back there I had no problem with this.

https://www.php.net/manual/en/function.ssh2-exec.php

Is there any command or setting to send server that we are still alive as client?

Thanks in advance.

function runSSHCommandWithCallback($ip, $port, $username, $password, $cmd, callable $callback, $timeout = 10800){
    $connection = new SSH2($ip, $port);
    if (!$connection->login($username, $password)) {
        throw new SSHException("SSH Authentication failed");
    }
    $connection->enableQuietMode();
    $connection->setTimeout($timeout);
    $output = $connection->exec($cmd, function($output) use ($callback) {
        $error = $connection->getStdError();
        if(!empty($error)){
            throw new SSHErrorException($error);
        }
        if (is_callable($callback)) {
            $callback($output);
        }
    });
    $error = $connection->getStdError();
    if(!empty($error)){
        throw new SSHErrorException($error);
    }
}

I just ask some basic question because i dont know about RSA too much.

1. are public key and private key always random every i'm refresh the code ? if so how length the public key and private key is ?

sorry may this sounds ridiculous for you. Your answer will help me in the future. thank you

I have issues uploading a rather large file (426.4MB) via using the put() method. I'm running the script from the command line. Close to the end (about 10MB short), the script hangs and the file stops uploading. I can look on the destination server and see that the file isn't growing any longer. The PHP script never finishes. This is the command I'm using:

$sftp->put( $file_host, $local_file, NET_SFTP_LOCAL_FILE );

If I set this constant after loading the class

define('NET_SFTP_LOGGING', NET_SFTP_LOG_COMPLEX);

then it returns the following error.

PHP Fatal error:  Allowed memory size of 268435456 bytes exhausted (tried to allocate 4125 bytes) in /path/to/phpseclib/Net/SSH2.php on line 3148

Originally, I had the memory limit at 128MB (in my php.ini) and then changed it to 256MB, and the file still quits at almost exactly the same place. So it seems that increasing the memory limit doesn't solve the problem.

Increasing to the 512MB removes the error, but the script still hangs and the file upload stalls out at the same place.

It's worth noting that the file uploads don't stall at exactly the same place every time. Trying it a handful of times, left me with these various sizes in bytes:

• 418347888
• 418331620
• 416204579
• 417815111
• 418469898
• 417575158
• 415867018

The actual size of the file is: 426429440 bytes.

Surely, something's not right here... it shouldn't need that much memory to transfer the file, should it?

How do I get better log messages? I haven't been able to figure out how to turn that on in phpseclib?

I'm trying my hand at using the File_ASN1 code (and hopefully also the Crypt_RSA etc code) to build a pure PHP Kerberos implementation, because the existing PECL library is a bit finicky and doesn't currently build on newer PHP than 5.3.

Kerberos uses ASN1 encoding of the data in it's packets, so I'm trying to model a Krb5_Message class off of File_X509 using File_ASN1 for ASN handling. Most of the ASN definitions I was able to figure out (at least I think so!) converting to code phpseclib style:

PrincipalName ::= SEQUENCE {         name-type [0] Int32,         name-string [1] SEQUENCE OF KerberosString }

        $this->PrincipalName = array(
            'type' => FILE_ASN1_TYPE_SEQUENCE,
            'children' => array(
                'name-type' => $this->Int32,
                'name-string' => array(
                    'type' => FILE_ASN1_TYPE_SEQUENCE,
                    'children' => $this->KerberosString,
                ),
            ),
        );

However there's a few I don't know how or if they can be done currently:

For starters, PA-DATA oddly starts at sequence 0, not 1. How can I indicate this in the array definition?

PA-DATA ::= SEQUENCE {         -- NOTE: first tag is [1], not [0]         padata-type [1] Int32,         padata-value [2] OCTET STRING -- might be encoded AP-REQ }

Secondly, I'm not sure how to map APPLICATION ...

AS-REQ ::= [APPLICATION 10] KDC-REQ

Third, there's some things marked OPTIONAL

KDC-REQ ::= SEQUENCE {         -- NOTE: first tag is [1], not [0]         pvno [1] INTEGER (5) ,         msg-type [2] INTEGER (10 -- AS -- | 12 -- TGS --),         padata [3] SEQUENCE OF PA-DATA OPTIONAL             -- NOTE: not empty --,         req-body [4] KDC-REQ-BODY }

Assuming these things can be handled by File_ASN1, can you tell me how to do so ? If it can't be and implementing them is non-trivial, then I'll look for another ASN "compiler" package for PHP.

There seems to be some type of bug maintaining connections (I'm using the SFTP portion, but the errors are coming from the SSH2 class) downloading multiple files via SFTP class. After grabbing a fresh copy of phpseclib I'm seeing these errors after a couple files download successfully:

PHP Notice: fputs(): send of 36 bytes failed with errno=32 Broken pipe in /redacted/vendor/phpseclib/phpseclib/phpseclib/Net/SSH2.php on line 2847

Notice: fputs(): send of 36 bytes failed with errno=32 Broken pipe in /redacted/vendor/phpseclib/phpseclib/phpseclib/Net/SSH2.php on line 2847 updating file log... Error downloading file! PHP Notice: Connection closed prematurely in /redacted/vendor/phpseclib/phpseclib/phpseclib/Net/SSH2.php on line 2815

Notice: Connection closed prematurely in /redacted/vendor/phpseclib/phpseclib/phpseclib/Net/SSH2.php on line 2815

Here's the version info on what I'm using: commit bf6da217c19514506060d98797a53dc1a78c807e Merge: 8c9e7a8 78f9fad Author: terrafrost [email protected] Date: Mon Jul 22 23:53:45 2013 -0500

Merge branch 'master' of https://github.com/phpseclib/phpseclib

I replaced this version of phpseclib with a previous one, and everything is back to functioning as expected. Here's the info on that version in case it helps: commit b2262f731dbd2aee68bcbe95593d374b8aee76a5 Merge: 33e415c af3f275 Author: terrafrost [email protected] Date: Tue May 14 11:02:45 2013 -0500

Merge branch 'master' of https://github.com/phpseclib/phpseclib

I've a reproducible issue, when retrieving a large file from a Go Anywhere sftp server, I suddenly stop receiving file data and start receiving these packets, any idea what they are?

I'm using 2.0.23 Last good data packet (seems to stop short as the previous ones have all been 16k in size)

<- NET_SSH2_MSG_CHANNEL_DATA (since last: 0.6684, network: 0s)
00000000  00:00:01:00:00:00:00:1f:32:2e:31:30:2c:20:20:20  ........2.10,
00000010  20:20:20:20:20:20:20:20:20:20:2e:30:30:2c:20:20            .00,
00000020  20:20:20:20:20:20:20

Followed by numerous of the following:-

-> NET_SSH2_MSG_CHANNEL_DATA (since last: 0.0003, network: 0s)
00000000  00:00:00:00:00:00:00:3d:00:00:00:39:05:00:00:00  .......=...9....
00000010  00:00:00:00:24:62:37:37:36:38:61:37:39:2d:61:39  ....$b7768a79-a9
00000020  34:63:2d:34:61:36:32:2d:62:36:39:63:2d:33:65:63  4c-4a62-b69c-3ec
00000030  39:38:35:37:36:64:31:64:36:00:00:00:00:7f:f0:00  98576d1d6.......
00000040  00:00:00:80:00                                   .....

-> NET_SFTP_READ (0.0001s)
00000000  00:00:00:24:66:37:39:37:62:39:34:38:2d:32:31:38  ...$f797b948-218
00000010  33:2d:34:37:31:39:2d:62:61:37:61:2d:30:34:38:65  3-4719-ba7a-048e
00000020  34:65:38:33:31:36:64:35:00:00:00:00:7f:f0:00:00  4e8316d5........
00000030  00:00:80:00                                      ....

-> NET_SSH2_MSG_CHANNEL_DATA (since last: 0.0002, network: 0s)
00000000  00:00:00:00:00:00:00:3d:00:00:00:39:05:00:00:00  .......=...9....
00000010  01:00:00:00:24:62:37:37:36:38:61:37:39:2d:61:39  ....$b7768a79-a9
00000020  34:63:2d:34:61:36:32:2d:62:36:39:63:2d:33:65:63  4c-4a62-b69c-3ec
00000030  39:38:35:37:36:64:31:64:36:00:00:00:00:7f:f0:80  98576d1d6.......
00000040  00:00:00:80:00                                   .....

-> NET_SFTP_READ (0s)
00000000  00:00:00:24:66:37:39:37:62:39:34:38:2d:32:31:38  ...$f797b948-218
00000010  33:2d:34:37:31:39:2d:62:61:37:61:2d:30:34:38:65  3-4719-ba7a-048e
00000020  34:65:38:33:31:36:64:35:00:00:00:00:7f:f0:80:00  4e8316d5........
00000030  00:00:80:00                                      ....

In the above the SSH2 logging is from a different session than the SFTP logging (hence what look like GUIDs being different), but it demonstrates the issue.

As I am rather keen on having this work I've written code to support a SSH2 Agent Forwarding implementation. This PR does enable this functionality but as I am not super familiar with PHP or the design of this library I'm expecting some feedback or comments.

This PR will address this current OPEN issue / feature request.

https://github.com/phpseclib/phpseclib/issues/505

I'm having the same issue as in #725

I.e. can not connect to proftpd SFTP Server if server provides MOTD $sftp = new SFTP($host); $key = new RSA(); $key->load(file_get_contents($_cfg['ssl_key']));

if (!$sftp->login($user, $key)) { write_log('ERR', "Login Error to {$user}@{$host}:22",LINE); echo $sftp->getLog(); exit; }

PHP Fatal error: Uncaught RuntimeException: Unable to fulfill channel request in /opt/openpda/client/phpseclib/Net/SSH2.php:3675 Stack trace: #0 /opt/openpda/client/phpseclib/Net/SFTP.php(452): phpseclib\Net\SSH2->get_channel_packet(256) #1 /opt/openpda/client/pda_test_sftp1.php(47): phpseclib\Net\SFTP->login('Dott', Object(phpseclib\Crypt\RSA)) #2 {main} thrown in /opt/openpda/client/phpseclib/Net/SSH2.php on line 3675

How can I get logs from cli php script?

Trace is equal to: http://webcache.googleusercontent.com/search?q=cache:TKNFGczN7jQJ:techqa.info/programming/tag/pty%3Fafter%3D25167721+&cd=1&hl=de&ct=clnk&gl=de&client=firefox-b

search for NET_SSH2_MSG_CHANNEL_EXTENDED_DATA