1# $OpenBSD: test-exec.sh,v 1.31 2007/12/21 04:13:53 djm Exp $
|
1# $OpenBSD: test-exec.sh,v 1.35 2008/06/28 13:57:25 djm Exp $ |
2# Placed in the Public Domain. 3 4#SUDO=sudo 5 6# Unbreak GNU head(1) 7_POSIX2_VERSION=199209 8export _POSIX2_VERSION 9 10case `uname -s 2>/dev/null` in 11OSF1*) 12 BIN_SH=xpg4 13 export BIN_SH 14 ;; 15esac 16 17if [ ! -z "$TEST_SSH_PORT" ]; then 18 PORT="$TEST_SSH_PORT" 19else 20 PORT=4242 21fi 22 23if [ -x /usr/ucb/whoami ]; then 24 USER=`/usr/ucb/whoami` 25elif whoami >/dev/null 2>&1; then 26 USER=`whoami` 27elif logname >/dev/null 2>&1; then 28 USER=`logname` 29else 30 USER=`id -un` 31fi 32 33OBJ=$1 34if [ "x$OBJ" = "x" ]; then 35 echo '$OBJ not defined' 36 exit 2 37fi 38if [ ! -d $OBJ ]; then 39 echo "not a directory: $OBJ" 40 exit 2 41fi 42SCRIPT=$2 43if [ "x$SCRIPT" = "x" ]; then 44 echo '$SCRIPT not defined' 45 exit 2 46fi 47if [ ! -f $SCRIPT ]; then 48 echo "not a file: $SCRIPT" 49 exit 2 50fi 51if $TEST_SHELL -n $SCRIPT; then 52 true 53else 54 echo "syntax error in $SCRIPT" 55 exit 2 56fi 57unset SSH_AUTH_SOCK 58 59SRC=`dirname ${SCRIPT}` 60 61# defaults 62SSH=ssh 63SSHD=sshd 64SSHAGENT=ssh-agent 65SSHADD=ssh-add 66SSHKEYGEN=ssh-keygen 67SSHKEYSCAN=ssh-keyscan 68SFTP=sftp 69SFTPSERVER=/usr/libexec/openssh/sftp-server 70SCP=scp 71 72# Interop testing
|
73PLINK=/usr/local/bin/plink
74PUTTYGEN=/usr/local/bin/puttygen
|
73PLINK=plink 74PUTTYGEN=puttygen 75CONCH=conch |
76 77if [ "x$TEST_SSH_SSH" != "x" ]; then 78 SSH="${TEST_SSH_SSH}" 79fi 80if [ "x$TEST_SSH_SSHD" != "x" ]; then 81 SSHD="${TEST_SSH_SSHD}" 82fi 83if [ "x$TEST_SSH_SSHAGENT" != "x" ]; then 84 SSHAGENT="${TEST_SSH_SSHAGENT}" 85fi 86if [ "x$TEST_SSH_SSHADD" != "x" ]; then 87 SSHADD="${TEST_SSH_SSHADD}" 88fi 89if [ "x$TEST_SSH_SSHKEYGEN" != "x" ]; then 90 SSHKEYGEN="${TEST_SSH_SSHKEYGEN}" 91fi 92if [ "x$TEST_SSH_SSHKEYSCAN" != "x" ]; then 93 SSHKEYSCAN="${TEST_SSH_SSHKEYSCAN}" 94fi 95if [ "x$TEST_SSH_SFTP" != "x" ]; then 96 SFTP="${TEST_SSH_SFTP}" 97fi 98if [ "x$TEST_SSH_SFTPSERVER" != "x" ]; then 99 SFTPSERVER="${TEST_SSH_SFTPSERVER}" 100fi 101if [ "x$TEST_SSH_SCP" != "x" ]; then 102 SCP="${TEST_SSH_SCP}" 103fi 104if [ "x$TEST_SSH_PLINK" != "x" ]; then 105 # Find real binary, if it exists 106 case "${TEST_SSH_PLINK}" in 107 /*) PLINK="${TEST_SSH_PLINK}" ;; 108 *) PLINK=`which ${TEST_SSH_PLINK} 2>/dev/null` ;; 109 esac 110fi 111if [ "x$TEST_SSH_PUTTYGEN" != "x" ]; then 112 # Find real binary, if it exists 113 case "${TEST_SSH_PUTTYGEN}" in 114 /*) PUTTYGEN="${TEST_SSH_PUTTYGEN}" ;; 115 *) PUTTYGEN=`which ${TEST_SSH_PUTTYGEN} 2>/dev/null` ;; 116 esac 117fi
|
118if [ "x$TEST_SSH_CONCH" != "x" ]; then 119 # Find real binary, if it exists 120 case "${TEST_SSH_CONCH}" in 121 /*) CONCH="${TEST_SSH_CONCH}" ;; 122 *) CONCH=`which ${TEST_SSH_CONCH} 2>/dev/null` ;; 123 esac 124fi |
125 126# Path to sshd must be absolute for rexec 127case "$SSHD" in 128/*) ;; 129*) SSHD=`which sshd` ;; 130esac 131 132if [ "x$TEST_SSH_LOGFILE" = "x" ]; then 133 TEST_SSH_LOGFILE=/dev/null 134fi 135 136# these should be used in tests 137export SSH SSHD SSHAGENT SSHADD SSHKEYGEN SSHKEYSCAN SFTP SFTPSERVER SCP 138#echo $SSH $SSHD $SSHAGENT $SSHADD $SSHKEYGEN $SSHKEYSCAN $SFTP $SFTPSERVER $SCP 139 140# helper 141echon() 142{ 143 if [ "x`echo -n`" = "x" ]; then 144 echo -n "$@" 145 elif [ "x`echo '\c'`" = "x" ]; then 146 echo "$@\c" 147 else 148 fatal "Don't know how to echo without newline." 149 fi 150} 151 152have_prog() 153{ 154 saved_IFS="$IFS" 155 IFS=":" 156 for i in $PATH 157 do 158 if [ -x $i/$1 ]; then 159 IFS="$saved_IFS" 160 return 0 161 fi 162 done 163 IFS="$saved_IFS" 164 return 1 165} 166 167cleanup () 168{ 169 if [ -f $PIDFILE ]; then 170 pid=`cat $PIDFILE` 171 if [ "X$pid" = "X" ]; then 172 echo no sshd running 173 else 174 if [ $pid -lt 2 ]; then 175 echo bad pid for ssd: $pid 176 else 177 $SUDO kill $pid 178 fi 179 fi 180 fi 181} 182 183trace () 184{ 185 echo "trace: $@" >>$TEST_SSH_LOGFILE 186 if [ "X$TEST_SSH_TRACE" = "Xyes" ]; then 187 echo "$@" 188 fi 189} 190 191verbose () 192{ 193 echo "verbose: $@" >>$TEST_SSH_LOGFILE 194 if [ "X$TEST_SSH_QUIET" != "Xyes" ]; then 195 echo "$@" 196 fi 197} 198 199 200fail () 201{ 202 echo "FAIL: $@" >>$TEST_SSH_LOGFILE 203 RESULT=1 204 echo "$@" 205} 206 207fatal () 208{ 209 echo "FATAL: $@" >>$TEST_SSH_LOGFILE 210 echon "FATAL: " 211 fail "$@" 212 cleanup 213 exit $RESULT 214} 215 216RESULT=0 217PIDFILE=$OBJ/pidfile 218 219trap fatal 3 2 220 221# create server config 222cat << EOF > $OBJ/sshd_config 223 StrictModes no 224 Port $PORT 225 AddressFamily inet 226 ListenAddress 127.0.0.1 227 #ListenAddress ::1 228 PidFile $PIDFILE 229 AuthorizedKeysFile $OBJ/authorized_keys_%u 230 LogLevel VERBOSE 231 AcceptEnv _XXX_TEST_* 232 AcceptEnv _XXX_TEST 233 Subsystem sftp $SFTPSERVER 234EOF 235 236if [ ! -z "$TEST_SSH_SSHD_CONFOPTS" ]; then 237 trace "adding sshd_config option $TEST_SSH_SSHD_CONFOPTS" 238 echo "$TEST_SSH_SSHD_CONFOPTS" >> $OBJ/sshd_config 239fi 240 241# server config for proxy connects 242cp $OBJ/sshd_config $OBJ/sshd_proxy 243 244# allow group-writable directories in proxy-mode 245echo 'StrictModes no' >> $OBJ/sshd_proxy 246 247# create client config 248cat << EOF > $OBJ/ssh_config 249Host * 250 Hostname 127.0.0.1 251 HostKeyAlias localhost-with-alias 252 Port $PORT 253 User $USER 254 GlobalKnownHostsFile $OBJ/known_hosts 255 UserKnownHostsFile $OBJ/known_hosts 256 RSAAuthentication yes 257 PubkeyAuthentication yes 258 ChallengeResponseAuthentication no 259 HostbasedAuthentication no 260 PasswordAuthentication no 261 BatchMode yes 262 StrictHostKeyChecking yes 263EOF 264 265if [ ! -z "$TEST_SSH_SSH_CONFOPTS" ]; then 266 trace "adding ssh_config option $TEST_SSH_SSHD_CONFOPTS" 267 echo "$TEST_SSH_SSH_CONFOPTS" >> $OBJ/ssh_config 268fi 269 270rm -f $OBJ/known_hosts $OBJ/authorized_keys_$USER 271 272trace "generate keys" 273for t in rsa rsa1; do 274 # generate user key 275 rm -f $OBJ/$t 276 ${SSHKEYGEN} -b 1024 -q -N '' -t $t -f $OBJ/$t ||\ 277 fail "ssh-keygen for $t failed" 278 279 # known hosts file for client 280 ( 281 echon 'localhost-with-alias,127.0.0.1,::1 ' 282 cat $OBJ/$t.pub 283 ) >> $OBJ/known_hosts 284 285 # setup authorized keys 286 cat $OBJ/$t.pub >> $OBJ/authorized_keys_$USER 287 echo IdentityFile $OBJ/$t >> $OBJ/ssh_config 288 289 # use key as host key, too 290 $SUDO cp $OBJ/$t $OBJ/host.$t 291 echo HostKey $OBJ/host.$t >> $OBJ/sshd_config 292 293 # don't use SUDO for proxy connect 294 echo HostKey $OBJ/$t >> $OBJ/sshd_proxy 295done 296chmod 644 $OBJ/authorized_keys_$USER 297
|
290# If PuTTY is present, prepare keys and configuration
|
298# Activate Twisted Conch tests if the binary is present 299REGRESS_INTEROP_CONCH=no 300if test -x "$CONCH" ; then 301 REGRESS_INTEROP_CONCH=yes 302fi 303 304# If PuTTY is present and we are running a PuTTY test, prepare keys and 305# configuration |
306REGRESS_INTEROP_PUTTY=no 307if test -x "$PUTTYGEN" -a -x "$PLINK" ; then
|
308 REGRESS_INTEROP_PUTTY=yes 309fi 310case "$SCRIPT" in 311*putty*) ;; 312*) REGRESS_INTEROP_PUTTY=no ;; 313esac 314 315if test "$REGRESS_INTEROP_PUTTY" = "yes" ; then |
316 mkdir -p ${OBJ}/.putty 317 318 # Add a PuTTY key to authorized_keys 319 rm -f ${OBJ}/putty.rsa2 320 puttygen -t rsa -o ${OBJ}/putty.rsa2 < /dev/null > /dev/null 321 puttygen -O public-openssh ${OBJ}/putty.rsa2 \ 322 >> $OBJ/authorized_keys_$USER 323 324 # Convert rsa2 host key to PuTTY format 325 ${SRC}/ssh2putty.sh 127.0.0.1 $PORT $OBJ/rsa > \ 326 ${OBJ}/.putty/sshhostkeys 327 ${SRC}/ssh2putty.sh 127.0.0.1 22 $OBJ/rsa >> \ 328 ${OBJ}/.putty/sshhostkeys 329 330 # Setup proxied session 331 mkdir -p ${OBJ}/.putty/sessions 332 rm -f ${OBJ}/.putty/sessions/localhost_proxy 333 echo "Hostname=127.0.0.1" >> ${OBJ}/.putty/sessions/localhost_proxy 334 echo "PortNumber=$PORT" >> ${OBJ}/.putty/sessions/localhost_proxy 335 echo "ProxyMethod=5" >> ${OBJ}/.putty/sessions/localhost_proxy 336 echo "ProxyTelnetCommand=sh ${SRC}/sshd-log-wrapper.sh ${SSHD} ${TEST_SSH_LOGFILE} -i -f $OBJ/sshd_proxy" >> ${OBJ}/.putty/sessions/localhost_proxy 337 338 REGRESS_INTEROP_PUTTY=yes 339fi 340 341# create a proxy version of the client config 342( 343 cat $OBJ/ssh_config 344 echo proxycommand ${SUDO} sh ${SRC}/sshd-log-wrapper.sh ${SSHD} ${TEST_SSH_LOGFILE} -i -f $OBJ/sshd_proxy 345) > $OBJ/ssh_proxy 346 347# check proxy config 348${SSHD} -t -f $OBJ/sshd_proxy || fatal "sshd_proxy broken" 349 350start_sshd () 351{ 352 # start sshd 353 $SUDO ${SSHD} -f $OBJ/sshd_config "$@" -t || fatal "sshd_config broken" 354 $SUDO ${SSHD} -f $OBJ/sshd_config -e "$@" >>$TEST_SSH_LOGFILE 2>&1 355 356 trace "wait for sshd" 357 i=0; 358 while [ ! -f $PIDFILE -a $i -lt 10 ]; do 359 i=`expr $i + 1` 360 sleep $i 361 done 362 363 test -f $PIDFILE || fatal "no sshd running on port $PORT" 364} 365 366# source test body 367. $SCRIPT 368 369# kill sshd 370cleanup 371if [ $RESULT -eq 0 ]; then 372 verbose ok $tid 373else 374 echo failed $tid 375fi 376exit $RESULT
|