add default shell get and set

tgauth · tgauth · commit 456b89fb1ccd · 2025-06-18T15:36:00.000-04:00
diff --git a/sshdconfig/src/args.rs b/sshdconfig/src/args.rs
@@ -2,8 +2,7 @@
 // Licensed under the MIT License.
 
 use clap::{Parser, Subcommand};
-
-use crate::metadata::RepeatableKeyword;
+use serde::{Deserialize, Serialize};
 
 #[derive(Parser)]
 pub struct Args {
@@ -15,36 +14,19 @@ pub struct Args {
 pub enum Command {
     /// Export sshd_config
     Export,
-    /// Set a value in sshd_config (not yet implemented)
+    /// Get default shell, eventually to be used for sshd_config and repeatable keywords
+    Get,
+    /// Set default shell, eventually to be used for sshd_config and repeatable keywords
     Set {
-        /// The input to set
         #[clap(short = 'i', long, help = "input to set in sshd_config")]
-        input: Option<String>,
-        #[clap(subcommand, help = "set commands")]
-        subcommand: Option<SetCommand>,
+        input: String
     },
 }
 
-#[derive(Clone, Debug, Eq, PartialEq, Subcommand)]
-pub enum SetCommand {
-    /// Set the default shell
-    DefaultShell {
-        /// The path to the shell executable
-        #[clap(short = 's', long, help = "path to the shell executable")]
-        shell: String,
-        /// Additional command options
-        ///
-        #[clap(short = 'c', long, help = "additional command options", default_value = "-c")]
-        cmd_option: Option<String>,
-        #[clap(short = 'e', long, help = "skip escaping arguments", default_value = "false")]
-        escape_arguments: bool,
-        #[clap(short = 'a', long, help = "additional shell arguments")]
-        shell_arguments: Option<Vec<String>>,
-    },
-    /// Set repeatable keywords
-    RepeatableKeyworld {
-        keyword: RepeatableKeyword,
-        name: String,
-        value: Option<String>,
-    }
-}
+#[derive(Clone, Debug, Deserialize, Eq, PartialEq, Serialize)]
+pub struct DefaultShell {
+    pub shell: Option<String>,
+    pub cmd_option: Option<String>,
+    pub escape_arguments: Option<bool>,
+    pub shell_arguments: Option<Vec<String>>,
+}
diff --git a/sshdconfig/src/error.rs b/sshdconfig/src/error.rs
@@ -7,8 +7,6 @@ use thiserror::Error;
 pub enum SshdConfigError {
     #[error("Command: {0}")]
     CommandError(String),
-    #[error("Invalid Input: {0}")]
-    IoError(String),
     #[error("IO: {0}")]
     InvalidInput(String),
     #[error("JSON: {0}")]
diff --git a/sshdconfig/src/export.rs b/sshdconfig/src/export.rs
@@ -10,9 +10,10 @@ use crate::util::invoke_sshd_config_validation;
 /// # Errors
 ///
 /// This function will return an error if the command cannot invoke sshd -T, parse the return, or convert it to json.
-pub fn invoke_export() -> Result<String, SshdConfigError> {
+pub fn invoke_export() -> Result<(), SshdConfigError> {
     let sshd_config_text = invoke_sshd_config_validation()?;
     let sshd_config: serde_json::Map<String, serde_json::Value> = parse_text_to_map(&sshd_config_text)?;
     let json = serde_json::to_string_pretty(&sshd_config)?;
-    Ok(json)
+    println!("{json}");
+    Ok(())
 }
diff --git a/sshdconfig/src/get.rs b/sshdconfig/src/get.rs
@@ -0,0 +1,110 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
+
+use registry_lib::{config::{Registry, RegistryValueData}, RegistryHelper};
+
+use crate::args::DefaultShell;
+use crate::error::SshdConfigError;
+
+/// Invoke the get command.
+///
+/// # Errors
+///
+/// This function will return an error if the desired settings cannot be retrieved.
+pub fn invoke_get() -> Result<(), SshdConfigError> {
+    // TODO: distinguish between get commands for default shell, repeatable keywords, and sshd_config
+    get_default_shell()?;
+    Ok(())
+}
+
+fn get_default_shell() -> Result<(), SshdConfigError> {
+    let registry_helper = RegistryHelper::new("HKLM\\SOFTWARE\\OpenSSH", Some("DefaultShell".to_string()), None)?;
+    let default_shell: Registry = registry_helper.get()?;
+    let mut shell = None;
+    let mut shell_arguments = None;
+    if let Some(value) = default_shell.value_data {
+        match value {
+            RegistryValueData::String(s) => {
+                let parts: Vec<&str> = s.split_whitespace().collect();
+                if parts.is_empty() {
+                    return Err(SshdConfigError::InvalidInput("DefaultShell cannot be empty".to_string()));
+                }
+                shell = Some(parts[0].to_string());
+                if parts.len() > 1 {
+                    shell_arguments = Some(parts[1..].iter().map(|&s| s.to_string()).collect());
+                }
+            }
+            _ => return Err(SshdConfigError::InvalidInput("DefaultShell must be a string".to_string())),
+        }
+    }
+
+    let registry_helper = RegistryHelper::new("HKLM\\SOFTWARE\\OpenSSH", Some("DefaultShellCommandOption".to_string()), None)?;
+    let option: Registry = registry_helper.get()?;
+    let mut cmd_option = None;
+    if let Some(value) = option.value_data {
+        match value {
+            RegistryValueData::String(s) => cmd_option = Some(s),
+            _ => return Err(SshdConfigError::InvalidInput("DefaultShellCommandOption must be a string".to_string())),
+        }
+    }
+
+    let registry_helper = RegistryHelper::new("HKLM\\SOFTWARE\\OpenSSH", Some("DefaultShellEscapeArguments".to_string()), None)?;
+    let escape_args: Registry = registry_helper.get()?;
+    let mut escape_arguments = None;
+    if let Some(value) = escape_args.value_data {
+        if let RegistryValueData::DWord(b) = value {
+            if b == 0 || b == 1 {
+                escape_arguments = if b == 1 { Some(true) } else { Some(false) };
+            } else {
+                return Err(SshdConfigError::InvalidInput("DefaultShellEscapeArguments must be a boolean".to_string()));
+            }
+        } else {
+            return Err(SshdConfigError::InvalidInput("DefaultShellEscapeArguments must be a boolean".to_string()));
+        }
+    }
+
+    let result = DefaultShell {
+        shell,
+        cmd_option,
+        escape_arguments,
+        shell_arguments
+    };
+
+    let output = serde_json::to_string_pretty(&result)?;
+    println!("{output}");
+    Ok(())
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use registry_lib::config::RegistryValueData;
+
+    #[test]
+    fn test_parse_shell_command() {
+        let (shell, args) = parse_shell_command(r#"C:\Program Files\PowerShell\pwsh.exe -NoProfile"#);
+        assert_eq!(shell, r#"C:\Program Files\PowerShell\pwsh.exe"#);
+        assert_eq!(args, vec!["-NoProfile"]);
+    }
+
+    #[test]
+    fn test_parse_shell_command_with_quotes() {
+        let (shell, args) = parse_shell_command(r#""C:\Program Files\PowerShell\pwsh.exe" -NoProfile -Command"#);
+        assert_eq!(shell, r#"C:\Program Files\PowerShell\pwsh.exe"#);
+        assert_eq!(args, vec!["-NoProfile", "-Command"]);
+    }
+
+    #[test]
+    fn test_extract_string_value_string() {
+        let value = RegistryValueData::String("test".to_string());
+        let result = extract_string_value(value, "test_field").unwrap();
+        assert_eq!(result, Some("test".to_string()));
+    }
+
+    #[test]
+    fn test_extract_string_value_multistring() {
+        let value = RegistryValueData::MultiString(vec!["first".to_string(), "second".to_string()]);
+        let result = extract_string_value(value, "test_field").unwrap();
+        assert_eq!(result, Some("first".to_string()));
+    }
+}
diff --git a/sshdconfig/src/main.rs b/sshdconfig/src/main.rs
@@ -4,38 +4,29 @@
 use args::{Args, Command};
 use clap::{Parser};
 use export::invoke_export;
+use get::invoke_get;
 use set::invoke_set;
 
 mod args;
 mod error;
 mod export;
+mod get;
 mod metadata;
 mod parser;
 mod set;
 mod util;
 
 fn main() {
     let args = Args::parse();
-    match &args.command {
-        Command::Export => {
-            match invoke_export() {
-                Ok(result) => {
-                    println!("{result}");
-                }
-                Err(e) => {
-                    eprintln!("Error exporting sshd_config: {e:?}");
-                }
-            }
-        }
-        Command::Set { input , subcommand} => {
-            match invoke_set(input, subcommand) {
-                Ok(()) => {
-                    println!("success");
-                }
-                Err(e) => {
-                    eprintln!("Error setting sshd_config: {e:?}");
-                }
-            }
-        }
+
+    let result = match &args.command {
+        Command::Export => invoke_export(),
+        Command::Get => invoke_get(),
+        Command::Set { input } => invoke_set(input),
+    };
+
+    if let Err(e) = result {
+        eprintln!("{e}");
+        std::process::exit(1);
     }
 }
diff --git a/sshdconfig/src/set.rs b/sshdconfig/src/set.rs
@@ -1,92 +1,80 @@
 // Copyright (c) Microsoft Corporation.
 // Licensed under the MIT License.
 
-use registry_lib::{config::{Registry, RegistryValueData}, RegistryHelper};
-use serde_json::{json, Value};
-use std::{path::Path, process::Command};
+use registry_lib::{config::RegistryValueData, RegistryHelper};
+use std::path::Path;
 
-use crate::args::SetCommand;
+use crate::args::DefaultShell;
 use crate::error::SshdConfigError;
-use crate::metadata::RepeatableKeyword;
 
 /// Invoke the set command.
 ///
 /// # Errors
 ///
-/// This function will return an error if the sshd_config is not updated with the desired settings.
-pub fn invoke_set(input: &Option<String>, subcommand: &Option<SetCommand>) -> Result<(), SshdConfigError> {
-    if let Some(subcommand) = subcommand {
-        match subcommand {
-            SetCommand::DefaultShell { shell, cmd_option, escape_arguments, shell_arguments } => {
-                set_default_shell(shell, cmd_option, escape_arguments, shell_arguments)
-            }
-            SetCommand::RepeatableKeyworld { keyword, name, value } => {
-                set_repeatable_keyword(keyword, name, value)
-            }
+/// This function will return an error if the desired settings cannot be applied.
+pub fn invoke_set(input: &String) -> Result<(), SshdConfigError> {
+    match serde_json::from_str::<DefaultShell>(input) {
+        Ok(default_shell) => {
+            set_default_shell(&default_shell.shell, &default_shell.cmd_option, &default_shell.escape_arguments, &default_shell.shell_arguments)
+        },
+        Err(e) => {
+            // TODO: handle other commands like repeatable keywords or sshd_config modifications
+            return Err(SshdConfigError::InvalidInput(format!("Failed to parse input as DefaultShell: {}", e)));
         }
-    } else {
-        set_regular_keywords(input)
     }
 }
 
-fn set_default_shell(shell: &String, cmd_option: &Option<String>, escape_arguments: &bool, shell_arguments: &Option<Vec<String>>) -> Result<(), SshdConfigError> {
-    let shell_path = Path::new(shell);
-    if shell_path.is_relative() {
-        if shell_path.components().any(|c| c == std::path::Component::ParentDir) {
-            return Err(SshdConfigError::InvalidInput("shell path must not be relative".to_string()));
+fn set_default_shell(shell: &Option<String>, cmd_option: &Option<String>, escape_arguments: &Option<bool>, shell_arguments: &Option<Vec<String>>) -> Result<(), SshdConfigError> {
+    if let Some(shell) = shell {
+        let shell_path = Path::new(shell);
+        if shell_path.is_relative() {
+            if shell_path.components().any(|c| c == std::path::Component::ParentDir) {
+                return Err(SshdConfigError::InvalidInput("shell path must not be relative".to_string()));
+            }
+        }
+        if !shell_path.exists() {
+            return Err(SshdConfigError::InvalidInput(format!("shell path does not exist: {}", shell)));
         }
-    }
-    // TODO check if binary exists when it is not an absolute path
-    if !shell_path.exists() {
-        return Err(SshdConfigError::InvalidInput(format!("shell path does not exist: {}", shell)));
-    }
 
-    let mut shell_data = shell.clone();
-    if let Some(shell_args) = shell_arguments {
-        let args_str = shell_args.join(" ");
-        shell_data = format!("{} {}", shell, args_str);
-    }
+        let mut shell_data = shell.clone();
+        if let Some(shell_args) = shell_arguments {
+            let args_str = shell_args.join(" ");
+            shell_data = format!("{} {}", shell, args_str);
+        }
+
+        set_registry("DefaultShell", RegistryValueData::String(shell_data))?;
+    } else {
+        remove_registry("DefaultShell")?;
+    };
 
-    set_registry_default_shell("DefaultShell", RegistryValueData::String(shell_data))?;
 
     if let Some(cmd_option) = cmd_option {
-        set_registry_default_shell("DefaultShellCommandOption", RegistryValueData::String(cmd_option.clone()))?;
-    }
-    else {
-        return Err(SshdConfigError::InvalidInput("cmd_option is required".to_string()));
+        set_registry("DefaultShellCommandOption", RegistryValueData::String(cmd_option.clone()))?;
+    } else {
+        remove_registry("DefaultShellCommandOption")?;
     }
 
-    let mut escape_data = 0;
-    if *escape_arguments {
-        escape_data = 1;
+    if let Some(escape_args) = escape_arguments {
+        let mut escape_data = 0;
+        if *escape_args {
+            escape_data = 1;
+        }
+        set_registry("DefaultShellEscapeArguments", RegistryValueData::DWord(escape_data))?;
+    } else {
+        remove_registry("DefaultShellEscapeArguments")?;
     }
-    set_registry_default_shell("DefaultShellEscapeArguments ", RegistryValueData::DWord(escape_data))?;
 
     Ok(())
 }
 
-pub fn set_repeatable_keyword(_keyword: &RepeatableKeyword, _name: &String, _value: &Option<String>) -> Result<(), SshdConfigError> {
-    // TODO: handle repeat keywords like subsystem
-    Ok(())
-}
-
-pub fn set_regular_keywords(_input: &Option<String>) -> Result<(), SshdConfigError> {
-    // modify or add all values in the input file
-    // have a banner that we are managing the file and check that before modifying
-    // if the file is managed by this tool, we can modify it
-    // if the file is not managed by the tool, we should back it up
-    // get existing sshd_config settings from sshd -T
-    // get default sshd_config settings from sshd -T
-    // save explicit settings
-    // for each of the input keys, update it with the new value
-    // or insert it if it doesn't exist (above any match statements)
-    // write the updated settings back to the sshd_config file
-    // ensure sshd -T is valid after the update?
+fn set_registry(name: &str, data: RegistryValueData) -> Result<(), SshdConfigError> {
+    let registry_helper = RegistryHelper::new("HKLM\\SOFTWARE\\OpenSSH", Some(name.to_string()), Some(data))?;
+    registry_helper.set()?;
     Ok(())
 }
 
-fn set_registry_default_shell(name: &str, data: RegistryValueData) -> Result<(), SshdConfigError> {
-    let registry_helper = RegistryHelper::new("HKLM\\SOFTWARE\\OpenSSH", Some(name.to_string()), Some(data))?;
-    registry_helper.set()?;
+fn remove_registry(name: &str) -> Result<(), SshdConfigError> {
+    let registry_helper = RegistryHelper::new("HKLM\\SOFTWARE\\OpenSSH", Some(name.to_string()), None)?;
+    registry_helper.remove()?;
     Ok(())
 }
diff --git a/sshdconfig/sshd.dsc.resource.json b/sshdconfig/sshd.dsc.resource.json
@@ -12,7 +12,11 @@
     "set": {
         "executable": "sshdconfig",
         "args": [
-            "set"
+            "set",
+            {
+                "jsonInputArg": "--input",
+                "mandatory": true
+            }
         ]
     },
     "schema": {
diff --git a/sshdconfig/tests/defaultshell.tests.ps1 b/sshdconfig/tests/defaultshell.tests.ps1
