Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
packages
/
crypto
0
0
Fork 0
Tiedostot Ongelmat 0 Pull-pyynnöt 0 Wiki
Puu: 0b9766a68d
Branchit Tagit
crypto
/
ssh
/
test
/
test_unix_test.go

test_unix_test.go 9.1 KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294 
  1. // Copyright 2012 The Go Authors. All rights reserved.
    2. 

  2. // Use of this source code is governed by a BSD-style
    3. 

  3. // license that can be found in the LICENSE file.
    4. 

  4. 

  5. // +build darwin freebsd linux netbsd openbsd
    6. 

  6. 

  7. package test
    8. 

  8. 

  9. // functional test harness for unix.
    10. 

  10. 

  11. import (
    12. 

  12. 	"crypto"
    13. 

  13. 	"crypto/dsa"
    14. 

  14. 	"crypto/rsa"
    15. 

  15. 	"crypto/x509"
    16. 

  16. 	"encoding/pem"
    17. 

  17. 	"errors"
    18. 

  18. 	"io"
    19. 

  19. 	"io/ioutil"
    20. 

  20. 	"net"
    21. 

  21. 	"os"
    22. 

  22. 	"os/exec"
    23. 

  23. 	"os/user"
    24. 

  24. 	"path/filepath"
    25. 

  25. 	"testing"
    26. 

  26. 	"text/template"
    27. 

  27. 	"time"
    28. 

  28. 

  29. 	"code.google.com/p/go.crypto/ssh"
    30. 

  30. )
    31. 

  31. 

  32. const (
    33. 

  33. 	sshd_config = `
    34. 

  34. Protocol 2
    35. 

  35. HostKey {{.Dir}}/ssh_host_rsa_key
    36. 

  36. HostKey {{.Dir}}/ssh_host_dsa_key
    37. 

  37. HostKey {{.Dir}}/ssh_host_ecdsa_key
    38. 

  38. Pidfile {{.Dir}}/sshd.pid
    39. 

  39. #UsePrivilegeSeparation no
    40. 

  40. KeyRegenerationInterval 3600
    41. 

  41. ServerKeyBits 768
    42. 

  42. SyslogFacility AUTH
    43. 

  43. LogLevel INFO
    44. 

  44. LoginGraceTime 120
    45. 

  45. PermitRootLogin no
    46. 

  46. StrictModes no
    47. 

  47. RSAAuthentication yes
    48. 

  48. PubkeyAuthentication yes
    49. 

  49. AuthorizedKeysFile	{{.Dir}}/authorized_keys
    50. 

  50. IgnoreRhosts yes
    51. 

  51. RhostsRSAAuthentication no
    52. 

  52. HostbasedAuthentication no
    53. 

  53. `
    54. 

  54. 	testClientPrivateKey = `-----BEGIN RSA PRIVATE KEY-----
    55. 

  55. MIIEowIBAAKCAQEAxF/3T7uD5rb4Cty2vc4qAhA6yclK+sRCCuz6/qy4MnXKlk1P
    56. 

  56. 5Le8O4CozsOL784B34ypdPQlsr4G/suXQok5PTMSPnqxjYbN6cGqEvhGrwG2sAe4
    57. 

  57. hKmMk3qd2GiSvuESeDl+2ZVzACDK0y/lFayvPbeeoQpBWGgIKN1WPs+q2/292wwW
    58. 

  58. LRNWNrUuwt2ru92g4Hm/abCK0lfOrnCgU5eV+thZ2IshnfvsQpyweri8YpjOTil3
    59. 

  59. y8yUDUv0MmcpNdoNw/MuvV8NRswkil9btfjEG6Mn9ByXBtq8lAix3XA1aaQKch8d
    60. 

  60. ji6ud4ZZEP8sXX5Q6gqgBOI/naGoErCHwtU9kwIDAQABAoIBAFJRKAp0QEZmTHPB
    61. 

  61. MZk+4r0asIoFpziXLFgIHu7C2DPOzK1Umzj1DCKlPB3wOqi7Ym2jOSWdcnAK2EPW
    62. 

  62. dAGgJC5TSkKGjAcXixmB5RkumfKidUI0+lQh/puTurcMnvcEwglDkLkEvMBA/sSo
    63. 

  63. Pw9m486rOgOnmNzGPyViItURmD2+0yDdLl/vOsO/L1p76GCd0q0J3LqnmsQmawi7
    64. 

  64. Zwj2Stm6BIrggG5GsF204Iet5219TYLo4g1Qb2AlJ9C8P1FtAWhMwJalDxH9Os2/
    65. 

  65. KCDjnaq5n3bXbIU+3QjskjeVXL/Fnbhjnh4zs1EA7eHzl9dCGbcZ2LOimo2PRo8q
    66. 

  66. wVQmz4ECgYEA9dhiu74TxRVoaO5N2X+FsMzRO8gZdP3Z9IrV4jVN8WT4Vdp0snoF
    67. 

  67. gkVkqqbQUNKUb5K6B3Js/qNKfcjLbCNq9fewTcT6WsHQdtPbX/QA6Pa2Z29wrlA2
    68. 

  68. wrIYaAkmVaHny7wsOmgX01aOnuf2MlUnksK43sjZHdIo/m+sDKwwY1cCgYEAzHx4
    69. 

  69. mwUDMdRF4qpDKJhthraBNejRextNQQYsHVnNaMwZ4aeQcH5l85Cgjm7VpGlbVyBQ
    70. 

  70. h4zwFvllImp3D2U3mjVkV8Tm9ID98eWvw2YDzBnS3P3SysajD23Z+BXSG9GNv/8k
    71. 

  71. oAm+bVlvnJy4haK2AcIMk1YFuDuAOmy73abk7iUCgYEAj4qVM1sq/eKfAM1LJRfg
    72. 

  72. /jbIX+hYfMePD8pUUWygIra6jJ4tjtvSBZrwyPb3IImjY3W/KoP0AcVjxAeORohz
    73. 

  73. dkP1a6L8LiuFxSuzpdW5BkyuebxGhXCOWKVVvMDC4jLTPVCUXlHSv3GFemCjjgXM
    74. 

  74. QlNxT5rjsha4Gr8nLIsJAacCgYA4VA1Q/pd7sXKy1p37X8nD8yAyvnh+Be5I/C9I
    75. 

  75. woUP2jFC9MqYAmmJJ4ziz2swiAkuPeuQ+2Tjnz2ZtmQnrIUdiJmkh8vrDGFnshKx
    76. 

  76. q7deELsCPzVCwGcIiAUkDra7DQWUHu9y2lxHePyC0rUNst2aLF8UcvzOXC2danhx
    77. 

  77. vViQtQKBgCmZ7YavE/GNWww8N3xHBJ6UPmUuhQlnAbgNCcdyz30MevBg/JbyUTs2
    78. 

  78. slftTH15QusJ1UoITnnZuFJ40LqDvh8UhiK09ffM/IbUx839/m2vUOdFZB/WNn9g
    79. 

  79. Cy0LzddU4KE8JZ/tlk68+hM5fjLLA0aqSunaql5CKfplwLu8x1hL
    80. 

  80. -----END RSA PRIVATE KEY-----
    81. 

  81. `
    82. 

  82. )
    83. 

  83. 

  84. var keys = map[string]string{
    85. 

  85. 	"ssh_host_dsa_key": `-----BEGIN DSA PRIVATE KEY-----
    86. 

  86. MIIBugIBAAKBgQDe2SIKvZdBp+InawtSXH0NotiMPhm3udyu4hh/E+icMz264kDX
    87. 

  87. v+sV7ddnSQGQWZ/eVU7Jtx29dCMD1VlFpEd7yGKzmdwJIeA+YquNWoqBRQEJsWWS
    88. 

  88. 7Fsfvv83dA/DTNIQfOY3+TIs6Mb9vagbgQMU3JUWEhbLE9LCEU6UwwRlpQIVAL4p
    89. 

  89. JF83SwpE8Jx6KnDpR89npkl/AoGAAy00TdDnAXvStwrZiAFbjZi8xDmPa9WwpfhJ
    90. 

  90. Rkno45TthDLrS+WmqY8/LTwlqZdOBtoBAynMJfKkUiZM21lWWpL1hRKYdwBlIBy5
    91. 

  91. XdR2/6wcPSuZ0tCQhDBTstX0Q3P1j198KGKvzy7q9vILKQwtSRqLS1y4JJERafdO
    92. 

  92. E+9CnGwCgYBz0WwBe2EZtGhGhBdnelTIBeo7PIsr0PzqxQj+dc8PBl8K9FfhRyOp
    93. 

  93. U39stUvoUxE9vaIFrY1P5xENjLFnPf+hlcuf40GUWEssW9YWPOaBp8afa9hY5Sxs
    94. 

  94. pvNR6eZFEFOJnx/ZgcA4g+vbrgGi5cM0W470mbGw2CkfJQUafdoIgAIUF+2I9kZe
    95. 

  95. 2FTBuC9uacqczDlc+0k=
    96. 

  96. -----END DSA PRIVATE KEY-----`,
    97. 

  97. 	"ssh_host_rsa_key": `-----BEGIN RSA PRIVATE KEY-----
    98. 

  98. MIIEowIBAAKCAQEAuf76Ue2Wtae9oDtaS6rIJgO7iCFTsZUTW9LBsvx/2nli6jKU
    99. 

  99. d9tUbBRzgdbnRLJ32UljXhERuB/axlrX8/lBzUZ+oYiM0KkEEOXY1z/bcMxdRxGF
    100. 

  100. XHuf4uXvyC2XyA4+ZvBeS4j1QFyIHZ62o7gAlKMTjiek3B4AQEJAlCLmhH3jB8wc
    101. 

  101. K/IYXAOlNGM5G44/ZLQpTi8diOV6DLs7tJ7rtEQedOEJfZng5rwp0USFkqcbfDbe
    102. 

  102. 9/hk0J32jZvOtZNBokYtBb4YEdIiWBzzNtHzU3Dzw61+TKVXaH5HaIvzL9iMrw9f
    103. 

  103. kJbJyogfZk9BJfemEN+xqP72jlhE8LXNhpTxFQIDAQABAoIBAHbdf+Y5+5XuNF6h
    104. 

  104. b8xpwW2h9whBnDYiOnP1VfroKWFbMB7R4lZS4joMO+FfkP8zOyqvHwTvza4pFWys
    105. 

  105. g9SUmDvy8FyVYsC7MzEFYzX0xm3o/Te898ip7P1Zy4rXsGeWysSImwqU5X+TYx3i
    106. 

  106. 33/zyNM1APtZVJ+jwK9QZ+sD/uPuZK2yS03HGSMZq6ebdoOSaYhluKrxXllSLO1J
    107. 

  107. KJxDiDdy2lEFw0W8HcI3ly1lg6OI+TRqqaCcLVNF4fNJmYIFM+2VEI9BdgynIh0Q
    108. 

  108. pMZlJKgaEBcSqCymnTK81ohYD1cV4st2B0km3Sw35Rl04Ij5ITeiya3hp8VfE6UY
    109. 

  109. PljkA6UCgYEA4811FTFj+kzNZ86C4OW1T5sM4NZt8gcz6CSvVnl+bDzbEOMMyzP7
    110. 

  110. 2I9zKsR5ApdodH2m8d+RUw1Oe0bNGW5xig/DH/hn9lLQaO52JAi0we8A94dUUMSq
    111. 

  111. fUk9jKZEXpP/MlfTdJaPos9mxT7z8jREQxIiqH9AV0rLVDOCfDbSWj8CgYEA0QTE
    112. 

  112. IAUuki3UUqYKzLQrh/QmhY5KTx5amNW9XZ2VGtJvDPJrtBSBZlPEuXZAc4eBWEc7
    113. 

  113. U3Y9QwsalzupU6Yi6+gmofaXs8xJnj+jKth1DnJvrbLLGlSmf2Ijnwt22TyFUOtt
    114. 

  114. UAknpjHutDjQPf7pUGWaCPgwwKFsdB8EBjpJF6sCgYAfXesBQAvEK08dPBJJZVfR
    115. 

  115. 3kenrd71tIgxLtv1zETcIoUHjjv0vvOunhH9kZAYC0EWyTZzl5UrGmn0D4uuNMbt
    116. 

  116. e74iaNHn2P9Zc3xQ+eHp0j8P1lKFzI6tMaiH9Vz0qOw6wl0bcJ/WizhbcI+migvc
    117. 

  117. MGMVUHBLlMDqly0gbWwJgQKBgQCgtb9ut01FjANSwORQ3L8Tu3/a9Lrh9n7GQKFn
    118. 

  118. V4CLrP1BwStavOF5ojMCPo/zxF6JV8ufsqwL3n/FhFP/QyBarpb1tTqTPiHkkR2O
    119. 

  119. Ffx67TY9IdnUFv4lt3mYEiKBiW0f+MSF42Qe/wmAfKZw5IzUCirTdrFVi0huSGK5
    120. 

  120. vxrwHQKBgHZ7RoC3I2f6F5fflA2ZAe9oJYC7XT624rY7VeOBwK0W0F47iV3euPi/
    121. 

  121. pKvLIBLcWL1Lboo+girnmSZtIYg2iLS3b4T9VFcKWg0y4AVwmhMWe9jWIltfWAAX
    122. 

  122. 9l0lNikMRGAx3eXudKXEtbGt3/cUzPVaQUHy5LiBxkxnFxgaJPXs
    123. 

  123. -----END RSA PRIVATE KEY-----`,
    124. 

  124. 	"ssh_host_ecdsa_key": `-----BEGIN EC PRIVATE KEY-----
    125. 

  125. MHcCAQEEINGWx0zo6fhJ/0EAfrPzVFyFC9s18lBt3cRoEDhS3ARooAoGCCqGSM49
    126. 

  126. AwEHoUQDQgAEi9Hdw6KvZcWxfg2IDhA7UkpDtzzt6ZqJXSsFdLd+Kx4S3Sx4cVO+
    127. 

  127. 6/ZOXRnPmNAlLUqjShUsUBBngG0u2fqEqA==
    128. 

  128. -----END EC PRIVATE KEY-----`,
    129. 

  129. 	"authorized_keys": `ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDEX/dPu4PmtvgK3La9zioCEDrJyUr6xEIK7Pr+rLgydcqWTU/kt7w7gKjOw4vvzgHfjKl09CWyvgb+y5dCiTk9MxI+erGNhs3pwaoS+EavAbawB7iEqYyTep3YaJK+4RJ4OX7ZlXMAIMrTL+UVrK89t56hCkFYaAgo3VY+z6rb/b3bDBYtE1Y2tS7C3au73aDgeb9psIrSV86ucKBTl5X62FnYiyGd++xCnLB6uLximM5OKXfLzJQNS/QyZyk12g3D8y69Xw1GzCSKX1u1+MQboyf0HJcG2ryUCLHdcDVppApyHx2OLq53hlkQ/yxdflDqCqAE4j+doagSsIfC1T2T user@host`,
    130. 

  130. }
    131. 

  131. 

  132. var (
    133. 

  133. 	configTmpl template.Template
    134. 

  134. 	sshd       string // path to sshd
    135. 

  135. 	rsakey     *rsa.PrivateKey
    136. 

  136. )
    137. 

  137. 

  138. func init() {
    139. 

  139. 	template.Must(configTmpl.Parse(sshd_config))
    140. 

  140. 	block, _ := pem.Decode([]byte(testClientPrivateKey))
    141. 

  141. 	rsakey, _ = x509.ParsePKCS1PrivateKey(block.Bytes)
    142. 

  142. }
    143. 

  143. 

  144. type server struct {
    145. 

  145. 	t          *testing.T
    146. 

  146. 	cleanup    func() // executed during Shutdown
    147. 

  147. 	configfile string
    148. 

  148. 	cmd        *exec.Cmd
    149. 

  149. }
    150. 

  150. 

  151. func (s *server) Dial() *ssh.ClientConn {
    152. 

  152. 	s.cmd = exec.Command("sshd", "-f", s.configfile, "-i")
    153. 

  153. 	stdin, err := s.cmd.StdinPipe()
    154. 

  154. 	if err != nil {
    155. 

  155. 		s.t.Fatal(err)
    156. 

  156. 	}
    157. 

  157. 	stdout, err := s.cmd.StdoutPipe()
    158. 

  158. 	if err != nil {
    159. 

  159. 		s.t.Fatal(err)
    160. 

  160. 	}
    161. 

  161. 	s.cmd.Stderr = os.Stderr
    162. 

  162. 	err = s.cmd.Start()
    163. 

  163. 	if err != nil {
    164. 

  164. 		s.Shutdown()
    165. 

  165. 		s.t.Fatal(err)
    166. 

  166. 	}
    167. 

  167. 

  168. 	user, err := user.Current()
    169. 

  169. 	if err != nil {
    170. 

  170. 		s.Shutdown()
    171. 

  171. 		s.t.Fatal(err)
    172. 

  172. 	}
    173. 

  173. 	kc := new(keychain)
    174. 

  174. 	kc.keys = append(kc.keys, rsakey)
    175. 

  175. 	config := &ssh.ClientConfig{
    176. 

  176. 		User: user.Username,
    177. 

  177. 		Auth: []ssh.ClientAuth{
    178. 

  178. 			ssh.ClientAuthKeyring(kc),
    179. 

  179. 		},
    180. 

  180. 	}
    181. 

  181. 	conn, err := ssh.Client(&client{stdin, stdout}, config)
    182. 

  182. 	if err != nil {
    183. 

  183. 		s.Shutdown()
    184. 

  184. 		s.t.Fatal(err)
    185. 

  185. 	}
    186. 

  186. 	return conn
    187. 

  187. }
    188. 

  188. 

  189. func (s *server) Shutdown() {
    190. 

  190. 	if err := s.cmd.Process.Kill(); err != nil {
    191. 

  191. 		s.t.Error(err)
    192. 

  192. 	}
    193. 

  193. 	s.cleanup()
    194. 

  194. }
    195. 

  195. 

  196. // client wraps a pair of Reader/WriteClosers to implement the
    197. 

  197. // net.Conn interface.
    198. 

  198. type client struct {
    199. 

  199. 	io.WriteCloser
    200. 

  200. 	io.Reader
    201. 

  201. }
    202. 

  202. 

  203. func (c *client) LocalAddr() net.Addr              { return nil }
    204. 

  204. func (c *client) RemoteAddr() net.Addr             { return nil }
    205. 

  205. func (c *client) SetDeadline(time.Time) error      { return nil }
    206. 

  206. func (c *client) SetReadDeadline(time.Time) error  { return nil }
    207. 

  207. func (c *client) SetWriteDeadline(time.Time) error { return nil }
    208. 

  208. 

  209. // newServer returns a new mock ssh server.
    210. 

  210. func newServer(t *testing.T) *server {
    211. 

  211. 	dir, err := ioutil.TempDir("", "sshtest")
    212. 

  212. 	if err != nil {
    213. 

  213. 		t.Fatal(err)
    214. 

  214. 	}
    215. 

  215. 	f, err := os.Create(filepath.Join(dir, "sshd_config"))
    216. 

  216. 	if err != nil {
    217. 

  217. 		t.Fatal(err)
    218. 

  218. 	}
    219. 

  219. 	err = configTmpl.Execute(f, map[string]string{
    220. 

  220. 		"Dir": dir,
    221. 

  221. 	})
    222. 

  222. 	if err != nil {
    223. 

  223. 		t.Fatal(err)
    224. 

  224. 	}
    225. 

  225. 	f.Close()
    226. 

  226. 

  227. 	for k, v := range keys {
    228. 

  228. 		f, err := os.OpenFile(filepath.Join(dir, k), os.O_WRONLY|os.O_TRUNC|os.O_CREATE, 0600)
    229. 

  229. 		if err != nil {
    230. 

  230. 			t.Fatal(err)
    231. 

  231. 		}
    232. 

  232. 		if _, err := f.Write([]byte(v)); err != nil {
    233. 

  233. 			t.Fatal(err)
    234. 

  234. 		}
    235. 

  235. 		f.Close()
    236. 

  236. 	}
    237. 

  237. 

  238. 	return &server{
    239. 

  239. 		t:          t,
    240. 

  240. 		configfile: f.Name(),
    241. 

  241. 		cleanup: func() {
    242. 

  242. 			if err := os.RemoveAll(dir); err != nil {
    243. 

  243. 				t.Error(err)
    244. 

  244. 			}
    245. 

  245. 		},
    246. 

  246. 	}
    247. 

  247. }
    248. 

  248. 

  249. // keychain implements the ClientKeyring interface
    250. 

  250. type keychain struct {
    251. 

  251. 	keys []interface{}
    252. 

  252. }
    253. 

  253. 

  254. func (k *keychain) Key(i int) (interface{}, error) {
    255. 

  255. 	if i < 0 || i >= len(k.keys) {
    256. 

  256. 		return nil, nil
    257. 

  257. 	}
    258. 

  258. 	switch key := k.keys[i].(type) {
    259. 

  259. 	case *rsa.PrivateKey:
    260. 

  260. 		return &key.PublicKey, nil
    261. 

  261. 	case *dsa.PrivateKey:
    262. 

  262. 		return &key.PublicKey, nil
    263. 

  263. 	}
    264. 

  264. 	panic("unknown key type")
    265. 

  265. }
    266. 

  266. 

  267. func (k *keychain) Sign(i int, rand io.Reader, data []byte) (sig []byte, err error) {
    268. 

  268. 	hashFunc := crypto.SHA1
    269. 

  269. 	h := hashFunc.New()
    270. 

  270. 	h.Write(data)
    271. 

  271. 	digest := h.Sum(nil)
    272. 

  272. 	switch key := k.keys[i].(type) {
    273. 

  273. 	case *rsa.PrivateKey:
    274. 

  274. 		return rsa.SignPKCS1v15(rand, key, hashFunc, digest)
    275. 

  275. 	}
    276. 

  276. 	return nil, errors.New("ssh: unknown key type")
    277. 

  277. }
    278. 

  278. 

  279. func (k *keychain) loadPEM(file string) error {
    280. 

  280. 	buf, err := ioutil.ReadFile(file)
    281. 

  281. 	if err != nil {
    282. 

  282. 		return err
    283. 

  283. 	}
    284. 

  284. 	block, _ := pem.Decode(buf)
    285. 

  285. 	if block == nil {
    286. 

  286. 		return errors.New("ssh: no key found")
    287. 

  287. 	}
    288. 

  288. 	r, err := x509.ParsePKCS1PrivateKey(block.Bytes)
    289. 

  289. 	if err != nil {
    290. 

  290. 		return err
    291. 

  291. 	}
    292. 

  292. 	k.keys = append(k.keys, r)
    293. 

  293. 	return nil
    294. 

  294. }
    295.