1#       $NetBSD: t_tcpip.sh,v 1.24 2024/04/28 07:27:41 rillig Exp $
2#
3# Copyright (c) 2011 The NetBSD Foundation, Inc.
4# All rights reserved.
5#
6# Redistribution and use in source and binary forms, with or without
7# modification, are permitted provided that the following conditions
8# are met:
9# 1. Redistributions of source code must retain the above copyright
10#    notice, this list of conditions and the following disclaimer.
11# 2. Redistributions in binary form must reproduce the above copyright
12#    notice, this list of conditions and the following disclaimer in the
13#    documentation and/or other materials provided with the distribution.
14#
15# THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
16# ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
17# TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
18# PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
19# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
20# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
21# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
22# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
23# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
24# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
25# POSSIBILITY OF SUCH DAMAGE.
26#
27
28rumpnetsrv="rump_server -lrumpnet -lrumpnet_net -lrumpnet_netinet"
29export RUMP_SERVER=unix://csock
30
31atf_test_case http cleanup
32http_head()
33{
34        atf_set "descr" "Start hijacked httpd and get webpage from it"
35}
36
37http_body()
38{
39
40	atf_check -s exit:0 ${rumpnetsrv} -lrumpnet_netinet6 ${RUMP_SERVER}
41
42	# start bozo in daemon mode
43	atf_check -s exit:0 env LD_PRELOAD=/usr/lib/librumphijack.so \
44	    /usr/libexec/httpd -P ./httpd.pid -b -s $(atf_get_srcdir)
45
46	atf_check -s exit:0 -o file:"$(atf_get_srcdir)/netstat.expout" \
47	    rump.netstat -a
48
49	# get the webpage
50	atf_check -s exit:0 env LD_PRELOAD=/usr/lib/librumphijack.so 	\
51	    $(atf_get_srcdir)/h_netget 127.0.0.1 80 webfile
52
53	# check that we got what we wanted
54	atf_check -o match:'HTTP/1.0 200 OK' cat webfile
55	atf_check -o match:'Content-Length: 95' cat webfile
56	blank_line_re="$(printf '^\r$')" # matches a line with only <CR><LF>
57	atf_check -o file:"$(atf_get_srcdir)/index.html" \
58	    sed -n "1,/${blank_line_re}/!p" webfile
59}
60
61http_cleanup()
62{
63	if [ -f httpd.pid ]; then
64		kill -9 "$(cat httpd.pid)"
65		rm -f httpd.pid
66	fi
67
68	rump.halt
69}
70
71#
72# Starts a SSH server and sets up the client to access it.
73# Authentication is allowed and done using an RSA key exclusively, which
74# is generated on the fly as part of the test case.
75# XXX: Ideally, all the tests in this test program should be able to share
76# the generated key, because creating it can be a very slow process on some
77# machines.
78#
79# XXX2: copypasted from jmmv's sshd thingamob in the psshfs test.
80# ideally code (and keys, like jmmv notes above) could be shared
81#
82start_sshd() {
83	echo "Setting up SSH server configuration"
84	sed -e "s,@SRCDIR@,$(atf_get_srcdir),g" -e "s,@WORKDIR@,$(pwd),g" \
85	    $(atf_get_srcdir)/sshd_config.in >sshd_config || \
86	    atf_fail "Failed to create sshd_config"
87	atf_check -s ignore -o empty -e ignore \
88	    cp $(atf_get_srcdir)/ssh_host_key .
89	atf_check -s ignore -o empty -e ignore \
90	    cp $(atf_get_srcdir)/ssh_host_key.pub .
91	atf_check -s exit:0 -o empty -e empty chmod 400 ssh_host_key
92	atf_check -s exit:0 -o empty -e empty chmod 444 ssh_host_key.pub
93
94# Start in debugging mode so we don't have parent<->child privsep stuff
95        env LD_PRELOAD=/usr/lib/librumphijack.so \
96	    /usr/sbin/sshd -d -e -E out -f ./sshd_config &
97#	while [ ! -f sshd.pid ]; do
98#		sleep 0.01
99#	done
100#	echo "SSH server started (pid $(cat sshd.pid))"
101	sleep 1
102
103	echo "Setting up SSH client configuration"
104	atf_check -s exit:0 -o empty -e empty \
105	    ssh-keygen -f ssh_user_key -t rsa -b 1024 -N "" -q
106	atf_check -s exit:0 -o empty -e empty \
107	    cp ssh_user_key.pub authorized_keys
108	echo "127.0.0.1,localhost,::1 " \
109	    "$(cat $(atf_get_srcdir)/ssh_host_key.pub)" >known_hosts || \
110	    atf_fail "Failed to create known_hosts"
111	atf_check -s exit:0 -o empty -e empty chmod 600 authorized_keys
112	sed -e "s,@SRCDIR@,$(atf_get_srcdir),g" -e "s,@WORKDIR@,$(pwd),g" \
113	    $(atf_get_srcdir)/ssh_config.in >ssh_config || \
114	    atf_fail "Failed to create ssh_config"
115	
116	echo "sshd running"
117}
118
119atf_test_case ssh cleanup
120ssh_head()
121{
122        atf_set "descr" "Test that hijacked ssh/sshd works"
123}
124
125ssh_body()
126{
127	atf_check -s exit:0 ${rumpnetsrv} ${RUMP_SERVER}
128	# make sure clients die after we nuke the server
129	export RUMPHIJACK_RETRYCONNECT='die'
130
131	start_sshd
132
133	# create some sort of directory for us to "ls"
134	mkdir testdir
135	cd testdir
136	jot 11 | xargs touch
137	jot 11 12 | xargs mkdir
138	cd ..
139
140	# ignore stderr for now, prints environment in debug mode
141	atf_check -s exit:0 -o save:ssh.out -e ignore			\
142	    env LD_PRELOAD=/usr/lib/librumphijack.so			\
143	    ssh -T -F ssh_config 127.0.0.1 env BLOCKSIZE=512		\
144	    ls -li $(pwd)/testdir
145	atf_check -s exit:0 -o file:ssh.out env BLOCKSIZE=512 		\
146	    ls -li $(pwd)/testdir
147}
148
149ssh_cleanup()
150{
151	rump.halt
152	# sshd dies due to RUMPHIJACK_RETRYCONNECT=1d6
153}
154
155test_nfs()
156{
157
158	magicstr='wind in my hair'
159	# create ffs file system we'll be serving from
160	atf_check -s exit:0 -o ignore newfs -F -s 10000 ffs.img
161
162	# start nfs kernel server.  this is a mouthful
163	export RUMP_SERVER=unix://serversock
164	atf_check -s exit:0 rump_server $* ${RUMP_SERVER}
165
166	atf_check -s exit:0 rump.ifconfig shmif0 create
167	atf_check -s exit:0 rump.ifconfig shmif0 linkstr shmbus
168	atf_check -s exit:0 rump.ifconfig shmif0 inet 10.1.1.1
169
170	export RUMPHIJACK_RETRYCONNECT=die
171	export LD_PRELOAD=/usr/lib/librumphijack.so
172
173	atf_check -s exit:0 mkdir -p /rump/var/run
174	atf_check -s exit:0 mkdir -p /rump/var/db
175	atf_check -s exit:0 touch /rump/var/db/mountdtab
176	atf_check -s exit:0 mkdir /rump/etc
177	atf_check -s exit:0 mkdir /rump/export
178
179	atf_check -s exit:0 -x \
180	    'echo "/export -noresvport -noresvmnt 10.1.1.100" | \
181		dd of=/rump/etc/exports 2> /dev/null'
182
183	atf_check -s exit:0 rump.sysctl -q -w kern.module.autoload=1
184
185	atf_check -s exit:0 -e ignore env RUMPHIJACK='path=/rump,blanket=/dk' \
186		mount_ffs /dk /rump/export
187	atf_check -s exit:0 -x "echo ${magicstr} > /rump/export/im_alive"
188
189	# start rpcbind.  we want /var/run/rpcbind.sock
190	export RUMPHIJACK='blanket=/var/run,socket=all' 
191	atf_check -s exit:0 rpcbind
192
193	# ok, then we want mountd in the similar fashion
194	export RUMPHIJACK='blanket=/var/run:/var/db:/export,socket=all,path=/rump,vfs=all'
195	atf_check -s exit:0 mountd /rump/etc/exports
196
197	# finally, le nfschuck
198	export RUMPHIJACK='blanket=/var/run,socket=all,vfs=all'
199	atf_check -s exit:0 nfsd
200
201	#
202	# now, time for the client server and associated madness.
203	#
204
205	export RUMP_SERVER=unix://clientsock
206	unset RUMPHIJACK
207	unset LD_PRELOAD
208
209	# at least the kernel server is easier
210	atf_check -s exit:0 rump_server -lrumpvfs -lrumpnet		\
211	    -lrumpnet_net -lrumpnet_netinet -lrumpnet_shmif -lrumpfs_nfs\
212	    ${RUMP_SERVER}
213
214	atf_check -s exit:0 rump.ifconfig shmif0 create
215	atf_check -s exit:0 rump.ifconfig shmif0 linkstr shmbus
216	atf_check -s exit:0 rump.ifconfig shmif0 inet 10.1.1.100
217
218	export LD_PRELOAD=/usr/lib/librumphijack.so
219
220	atf_check -s exit:0 mkdir /rump/mnt
221	atf_check -s exit:0 mount_nfs 10.1.1.1:/export /rump/mnt
222
223	atf_check -s exit:0 -o inline:"${magicstr}\n" cat /rump/mnt/im_alive
224	atf_check -s exit:0 -o match:'.*im_alive$' ls -l /rump/mnt/im_alive
225}
226
227
228atf_test_case nfs cleanup
229nfs_head()
230{
231        atf_set "descr" "Test hijacked nfsd and mount_nfs"
232
233	# XXX Can probably make this work as nonroot, but need to
234	# convince rpcbind running in the rump kernel server that it
235	# has uid 0.
236	atf_set "require.user" "root"
237}
238
239nfs_body()
240{
241	test_nfs -lrumpvfs -lrumpdev -lrumpnet -lrumpnet_net		\
242	    -lrumpnet_netinet -lrumpnet_local -lrumpnet_shmif		\
243	    -lrumpdev_disk -lrumpfs_ffs -lrumpfs_nfs -lrumpfs_nfsserver	\
244	    -d key=/dk,hostpath=ffs.img,size=host
245}
246
247nfs_cleanup()
248{
249	RUMP_SERVER=unix://serversock rump.halt 2> /dev/null
250	RUMP_SERVER=unix://clientsock rump.halt 2> /dev/null
251	:
252}
253
254atf_test_case nfs_autoload cleanup
255nfs_autoload_head()
256{
257        atf_set "descr" "Test hijacked nfsd with autoload from /stand"
258
259	# XXX Can probably make this work as nonroot, but need to
260	# convince rpcbind running in the rump kernel server that it
261	# has uid 0.
262	atf_set "require.user" "root"
263}
264
265nfs_autoload_body()
266{
267	[ `uname -m` = "i386" ] || atf_skip "test currently valid only on i386"
268	atf_expect_fail "PR lib/54184"
269	test_nfs -lrumpvfs -lrumpdev -lrumpnet -lrumpnet_net		\
270	    -lrumpnet_netinet -lrumpnet_local -lrumpnet_shmif		\
271	    -lrumpdev_disk -d key=/dk,hostpath=ffs.img,size=host
272}
273
274nfs_autoload_cleanup()
275{
276	nfs_cleanup
277}
278
279atf_init_test_cases()
280{
281	atf_add_test_case http
282	atf_add_test_case ssh
283	atf_add_test_case nfs
284	atf_add_test_case nfs_autoload
285}
286