Net::OpenSSH + CGI problem

fwalters has asked for the wisdom of the Perl Monks concerning the following question:

I have a small 'test.cgi' file where I'm just trying to ssh to a router to get some commands (the entire project is a BGP Lookingglass but this is where the problem lies).

It runs fine from command line, as the www-data user that is executing from apache (at least based on the ENV vars), but when I run it from the browser it's just a blank page.

I checked to make sure that 755 was everywhere as appropriate, for now (at least until I figure this out) www-data is able to login and like I said runs the script fine...

I checked the socket directory to make sure it was permed right as well and did some searching before posting (don't want to be shame flamed!).

Here's the code:

#!/usr/bin/perl
use strict;
use warnings;

use Net::OpenSSH;
use File::Temp qw/ tempdir /;

# necessary minimum for CGI
print "Content-type: text/plain\n\n";

# prepare temp dir
my $temp = "/home/www-data";                                          
+  

my $login_user= "xxxxx";
my $login_pass = "xxxxx";  


# open SSH session
my %opts = (
    user        => $login_user,
    password    => $login_pass,
    ctl_dir     => $temp, 
    strict_mode => 0            ## NOT recommended - see my comments
);

my $ssh = Net::OpenSSH->new("n.n.n.n", %opts);
$ssh->error
    and die "Couldn't establish SSH connection: ". $ssh->error;

# perform command and print output

my @lines = $ssh->capture("sh int desc")
    or die "remote command failed: " . $ssh->error;
print "OUTPUT<br>\n";
print @lines;
[download]

and... Here is the console output (mostly :-)

Content-type: text/plain




This system is for authorized users only. Unauthorized access is prohi
+bited.

--snip--

Logging In<br>
OUTPUT<br>
Last switch-over Thu Dec 29 12:08:33 2016: 6 weeks, 6 days, 1 hour, 52
+ minutes ago

Wed Feb 15 14:00:58.710 cst

Interface          Status      Protocol    Description
----------------------------------------------------------------------
+----------
--snip--
[download]

and... Here is the browser output:

Logging In<br>
[download]

Also, in apache/errors.log I get:




This system is for authorized users only. Unauthorized access is prohi
+bited.

--snip--

Connection to n.n.n.n closed by remote host.
remote command failed: 0 at /usr/lib/cgi-bin/test2.cgi line 34.
[download]

34 is the 'my @lines' line... Any thoughts?

Comment on Net::OpenSSH + CGI problem Select or Download Code

Replies are listed 'Best First'.
Re: Net::OpenSSH + CGI problem by salva (Canon) on Feb 16, 2017 at 07:47 UTC
Both `ssh` and Net::OpenSSH are able to provide quite detailed debugging information. Redirect `STDERR` to some file or ensure it ends in your apache logs. Add `$Net::OpenSSH::debug=-1` at the beginning of your script and also, call the constructor with the option `master_opts=>'-vvv'`. Then, after removing any confidential information from the output, post it here!	[reply] [d/l] [select]
Re^2: Net::OpenSSH + CGI problem by fwalters (Novice) on Feb 16, 2017 at 13:32 UTC
Thanks! error.log contents after debug Read more... (19 kB)	[reply] [d/l]
Re^3: Net::OpenSSH + CGI problem by fwalters (Novice) on Feb 16, 2017 at 14:51 UTC
Quick followup... we run some Cisco ASR and IOS based routers, apparently the IOS based routers work fine, while the ASR (IOXR) based routers. The main difference, at least visually, is the prompt: For the working router the prompt I get is: `1-CHI-RR1-Curly#` While for the one that doesn't work I get: `RP/0/RSP0/CPU0:1-CHI-PE14-SOB-QuiGon#`	[reply] [d/l] [select]
Re^4: Net::OpenSSH + CGI problem by salva (Canon) on Feb 16, 2017 at 21:07 UTC
Re^5: Net::OpenSSH + CGI problem by fwalters (Novice) on Feb 17, 2017 at 13:29 UTC
Some notes below your chosen depth have not been shown here


Keep It Simple, Stupid
	PerlMonks