Sākums Izpētīt Palīdzība
Reģistrēties Pierakstīties
packages
/
crypto
0
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: 1582bf0781
Atzari Tagi
crypto
/
ssh
/
test
/
test_unix_test.go

test_unix_test.go 9.3 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304 
  1. // Copyright 2012 The Go Authors. All rights reserved.
    2. 

  2. // Use of this source code is governed by a BSD-style
    3. 

  3. // license that can be found in the LICENSE file.
    4. 

  4. 

  5. // +build darwin freebsd linux netbsd openbsd
    6. 

  6. 

  7. package test
    8. 

  8. 

  9. // functional test harness for unix.
    10. 

  10. 

  11. import (
    12. 

  12. 	"bytes"
    13. 

  13. 	"crypto"
    14. 

  14. 	"crypto/dsa"
    15. 

  15. 	"crypto/rsa"
    16. 

  16. 	"crypto/x509"
    17. 

  17. 	"encoding/pem"
    18. 

  18. 	"errors"
    19. 

  19. 	"io"
    20. 

  20. 	"io/ioutil"
    21. 

  21. 	"net"
    22. 

  22. 	"os"
    23. 

  23. 	"os/exec"
    24. 

  24. 	"os/user"
    25. 

  25. 	"path/filepath"
    26. 

  26. 	"testing"
    27. 

  27. 	"text/template"
    28. 

  28. 	"time"
    29. 

  29. 

  30. 	"code.google.com/p/go.crypto/ssh"
    31. 

  31. )
    32. 

  32. 

  33. const (
    34. 

  34. 	sshd_config = `
    35. 

  35. Protocol 2
    36. 

  36. HostKey {{.Dir}}/ssh_host_rsa_key
    37. 

  37. HostKey {{.Dir}}/ssh_host_dsa_key
    38. 

  38. HostKey {{.Dir}}/ssh_host_ecdsa_key
    39. 

  39. Pidfile {{.Dir}}/sshd.pid
    40. 

  40. #UsePrivilegeSeparation no
    41. 

  41. KeyRegenerationInterval 3600
    42. 

  42. ServerKeyBits 768
    43. 

  43. SyslogFacility AUTH
    44. 

  44. LogLevel DEBUG2
    45. 

  45. LoginGraceTime 120
    46. 

  46. PermitRootLogin no
    47. 

  47. StrictModes no
    48. 

  48. RSAAuthentication yes
    49. 

  49. PubkeyAuthentication yes
    50. 

  50. AuthorizedKeysFile	{{.Dir}}/authorized_keys
    51. 

  51. IgnoreRhosts yes
    52. 

  52. RhostsRSAAuthentication no
    53. 

  53. HostbasedAuthentication no
    54. 

  54. `
    55. 

  55. 	testClientPrivateKey = `-----BEGIN RSA PRIVATE KEY-----
    56. 

  56. MIIEowIBAAKCAQEAxF/3T7uD5rb4Cty2vc4qAhA6yclK+sRCCuz6/qy4MnXKlk1P
    57. 

  57. 5Le8O4CozsOL784B34ypdPQlsr4G/suXQok5PTMSPnqxjYbN6cGqEvhGrwG2sAe4
    58. 

  58. hKmMk3qd2GiSvuESeDl+2ZVzACDK0y/lFayvPbeeoQpBWGgIKN1WPs+q2/292wwW
    59. 

  59. LRNWNrUuwt2ru92g4Hm/abCK0lfOrnCgU5eV+thZ2IshnfvsQpyweri8YpjOTil3
    60. 

  60. y8yUDUv0MmcpNdoNw/MuvV8NRswkil9btfjEG6Mn9ByXBtq8lAix3XA1aaQKch8d
    61. 

  61. ji6ud4ZZEP8sXX5Q6gqgBOI/naGoErCHwtU9kwIDAQABAoIBAFJRKAp0QEZmTHPB
    62. 

  62. MZk+4r0asIoFpziXLFgIHu7C2DPOzK1Umzj1DCKlPB3wOqi7Ym2jOSWdcnAK2EPW
    63. 

  63. dAGgJC5TSkKGjAcXixmB5RkumfKidUI0+lQh/puTurcMnvcEwglDkLkEvMBA/sSo
    64. 

  64. Pw9m486rOgOnmNzGPyViItURmD2+0yDdLl/vOsO/L1p76GCd0q0J3LqnmsQmawi7
    65. 

  65. Zwj2Stm6BIrggG5GsF204Iet5219TYLo4g1Qb2AlJ9C8P1FtAWhMwJalDxH9Os2/
    66. 

  66. KCDjnaq5n3bXbIU+3QjskjeVXL/Fnbhjnh4zs1EA7eHzl9dCGbcZ2LOimo2PRo8q
    67. 

  67. wVQmz4ECgYEA9dhiu74TxRVoaO5N2X+FsMzRO8gZdP3Z9IrV4jVN8WT4Vdp0snoF
    68. 

  68. gkVkqqbQUNKUb5K6B3Js/qNKfcjLbCNq9fewTcT6WsHQdtPbX/QA6Pa2Z29wrlA2
    69. 

  69. wrIYaAkmVaHny7wsOmgX01aOnuf2MlUnksK43sjZHdIo/m+sDKwwY1cCgYEAzHx4
    70. 

  70. mwUDMdRF4qpDKJhthraBNejRextNQQYsHVnNaMwZ4aeQcH5l85Cgjm7VpGlbVyBQ
    71. 

  71. h4zwFvllImp3D2U3mjVkV8Tm9ID98eWvw2YDzBnS3P3SysajD23Z+BXSG9GNv/8k
    72. 

  72. oAm+bVlvnJy4haK2AcIMk1YFuDuAOmy73abk7iUCgYEAj4qVM1sq/eKfAM1LJRfg
    73. 

  73. /jbIX+hYfMePD8pUUWygIra6jJ4tjtvSBZrwyPb3IImjY3W/KoP0AcVjxAeORohz
    74. 

  74. dkP1a6L8LiuFxSuzpdW5BkyuebxGhXCOWKVVvMDC4jLTPVCUXlHSv3GFemCjjgXM
    75. 

  75. QlNxT5rjsha4Gr8nLIsJAacCgYA4VA1Q/pd7sXKy1p37X8nD8yAyvnh+Be5I/C9I
    76. 

  76. woUP2jFC9MqYAmmJJ4ziz2swiAkuPeuQ+2Tjnz2ZtmQnrIUdiJmkh8vrDGFnshKx
    77. 

  77. q7deELsCPzVCwGcIiAUkDra7DQWUHu9y2lxHePyC0rUNst2aLF8UcvzOXC2danhx
    78. 

  78. vViQtQKBgCmZ7YavE/GNWww8N3xHBJ6UPmUuhQlnAbgNCcdyz30MevBg/JbyUTs2
    79. 

  79. slftTH15QusJ1UoITnnZuFJ40LqDvh8UhiK09ffM/IbUx839/m2vUOdFZB/WNn9g
    80. 

  80. Cy0LzddU4KE8JZ/tlk68+hM5fjLLA0aqSunaql5CKfplwLu8x1hL
    81. 

  81. -----END RSA PRIVATE KEY-----
    82. 

  82. `
    83. 

  83. )
    84. 

  84. 

  85. var keys = map[string]string{
    86. 

  86. 	"ssh_host_dsa_key": `-----BEGIN DSA PRIVATE KEY-----
    87. 

  87. MIIBugIBAAKBgQDe2SIKvZdBp+InawtSXH0NotiMPhm3udyu4hh/E+icMz264kDX
    88. 

  88. v+sV7ddnSQGQWZ/eVU7Jtx29dCMD1VlFpEd7yGKzmdwJIeA+YquNWoqBRQEJsWWS
    89. 

  89. 7Fsfvv83dA/DTNIQfOY3+TIs6Mb9vagbgQMU3JUWEhbLE9LCEU6UwwRlpQIVAL4p
    90. 

  90. JF83SwpE8Jx6KnDpR89npkl/AoGAAy00TdDnAXvStwrZiAFbjZi8xDmPa9WwpfhJ
    91. 

  91. Rkno45TthDLrS+WmqY8/LTwlqZdOBtoBAynMJfKkUiZM21lWWpL1hRKYdwBlIBy5
    92. 

  92. XdR2/6wcPSuZ0tCQhDBTstX0Q3P1j198KGKvzy7q9vILKQwtSRqLS1y4JJERafdO
    93. 

  93. E+9CnGwCgYBz0WwBe2EZtGhGhBdnelTIBeo7PIsr0PzqxQj+dc8PBl8K9FfhRyOp
    94. 

  94. U39stUvoUxE9vaIFrY1P5xENjLFnPf+hlcuf40GUWEssW9YWPOaBp8afa9hY5Sxs
    95. 

  95. pvNR6eZFEFOJnx/ZgcA4g+vbrgGi5cM0W470mbGw2CkfJQUafdoIgAIUF+2I9kZe
    96. 

  96. 2FTBuC9uacqczDlc+0k=
    97. 

  97. -----END DSA PRIVATE KEY-----`,
    98. 

  98. 	"ssh_host_rsa_key": `-----BEGIN RSA PRIVATE KEY-----
    99. 

  99. MIIEowIBAAKCAQEAuf76Ue2Wtae9oDtaS6rIJgO7iCFTsZUTW9LBsvx/2nli6jKU
    100. 

  100. d9tUbBRzgdbnRLJ32UljXhERuB/axlrX8/lBzUZ+oYiM0KkEEOXY1z/bcMxdRxGF
    101. 

  101. XHuf4uXvyC2XyA4+ZvBeS4j1QFyIHZ62o7gAlKMTjiek3B4AQEJAlCLmhH3jB8wc
    102. 

  102. K/IYXAOlNGM5G44/ZLQpTi8diOV6DLs7tJ7rtEQedOEJfZng5rwp0USFkqcbfDbe
    103. 

  103. 9/hk0J32jZvOtZNBokYtBb4YEdIiWBzzNtHzU3Dzw61+TKVXaH5HaIvzL9iMrw9f
    104. 

  104. kJbJyogfZk9BJfemEN+xqP72jlhE8LXNhpTxFQIDAQABAoIBAHbdf+Y5+5XuNF6h
    105. 

  105. b8xpwW2h9whBnDYiOnP1VfroKWFbMB7R4lZS4joMO+FfkP8zOyqvHwTvza4pFWys
    106. 

  106. g9SUmDvy8FyVYsC7MzEFYzX0xm3o/Te898ip7P1Zy4rXsGeWysSImwqU5X+TYx3i
    107. 

  107. 33/zyNM1APtZVJ+jwK9QZ+sD/uPuZK2yS03HGSMZq6ebdoOSaYhluKrxXllSLO1J
    108. 

  108. KJxDiDdy2lEFw0W8HcI3ly1lg6OI+TRqqaCcLVNF4fNJmYIFM+2VEI9BdgynIh0Q
    109. 

  109. pMZlJKgaEBcSqCymnTK81ohYD1cV4st2B0km3Sw35Rl04Ij5ITeiya3hp8VfE6UY
    110. 

  110. PljkA6UCgYEA4811FTFj+kzNZ86C4OW1T5sM4NZt8gcz6CSvVnl+bDzbEOMMyzP7
    111. 

  111. 2I9zKsR5ApdodH2m8d+RUw1Oe0bNGW5xig/DH/hn9lLQaO52JAi0we8A94dUUMSq
    112. 

  112. fUk9jKZEXpP/MlfTdJaPos9mxT7z8jREQxIiqH9AV0rLVDOCfDbSWj8CgYEA0QTE
    113. 

  113. IAUuki3UUqYKzLQrh/QmhY5KTx5amNW9XZ2VGtJvDPJrtBSBZlPEuXZAc4eBWEc7
    114. 

  114. U3Y9QwsalzupU6Yi6+gmofaXs8xJnj+jKth1DnJvrbLLGlSmf2Ijnwt22TyFUOtt
    115. 

  115. UAknpjHutDjQPf7pUGWaCPgwwKFsdB8EBjpJF6sCgYAfXesBQAvEK08dPBJJZVfR
    116. 

  116. 3kenrd71tIgxLtv1zETcIoUHjjv0vvOunhH9kZAYC0EWyTZzl5UrGmn0D4uuNMbt
    117. 

  117. e74iaNHn2P9Zc3xQ+eHp0j8P1lKFzI6tMaiH9Vz0qOw6wl0bcJ/WizhbcI+migvc
    118. 

  118. MGMVUHBLlMDqly0gbWwJgQKBgQCgtb9ut01FjANSwORQ3L8Tu3/a9Lrh9n7GQKFn
    119. 

  119. V4CLrP1BwStavOF5ojMCPo/zxF6JV8ufsqwL3n/FhFP/QyBarpb1tTqTPiHkkR2O
    120. 

  120. Ffx67TY9IdnUFv4lt3mYEiKBiW0f+MSF42Qe/wmAfKZw5IzUCirTdrFVi0huSGK5
    121. 

  121. vxrwHQKBgHZ7RoC3I2f6F5fflA2ZAe9oJYC7XT624rY7VeOBwK0W0F47iV3euPi/
    122. 

  122. pKvLIBLcWL1Lboo+girnmSZtIYg2iLS3b4T9VFcKWg0y4AVwmhMWe9jWIltfWAAX
    123. 

  123. 9l0lNikMRGAx3eXudKXEtbGt3/cUzPVaQUHy5LiBxkxnFxgaJPXs
    124. 

  124. -----END RSA PRIVATE KEY-----`,
    125. 

  125. 	"ssh_host_ecdsa_key": `-----BEGIN EC PRIVATE KEY-----
    126. 

  126. MHcCAQEEINGWx0zo6fhJ/0EAfrPzVFyFC9s18lBt3cRoEDhS3ARooAoGCCqGSM49
    127. 

  127. AwEHoUQDQgAEi9Hdw6KvZcWxfg2IDhA7UkpDtzzt6ZqJXSsFdLd+Kx4S3Sx4cVO+
    128. 

  128. 6/ZOXRnPmNAlLUqjShUsUBBngG0u2fqEqA==
    129. 

  129. -----END EC PRIVATE KEY-----`,
    130. 

  130. 	"authorized_keys": `ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDEX/dPu4PmtvgK3La9zioCEDrJyUr6xEIK7Pr+rLgydcqWTU/kt7w7gKjOw4vvzgHfjKl09CWyvgb+y5dCiTk9MxI+erGNhs3pwaoS+EavAbawB7iEqYyTep3YaJK+4RJ4OX7ZlXMAIMrTL+UVrK89t56hCkFYaAgo3VY+z6rb/b3bDBYtE1Y2tS7C3au73aDgeb9psIrSV86ucKBTl5X62FnYiyGd++xCnLB6uLximM5OKXfLzJQNS/QyZyk12g3D8y69Xw1GzCSKX1u1+MQboyf0HJcG2ryUCLHdcDVppApyHx2OLq53hlkQ/yxdflDqCqAE4j+doagSsIfC1T2T user@host`,
    131. 

  131. }
    132. 

  132. 

  133. var (
    134. 

  134. 	configTmpl template.Template
    135. 

  135. 	sshd       string // path to sshd
    136. 

  136. 	rsakey     *rsa.PrivateKey
    137. 

  137. )
    138. 

  138. 

  139. func init() {
    140. 

  140. 	template.Must(configTmpl.Parse(sshd_config))
    141. 

  141. 	block, _ := pem.Decode([]byte(testClientPrivateKey))
    142. 

  142. 	rsakey, _ = x509.ParsePKCS1PrivateKey(block.Bytes)
    143. 

  143. }
    144. 

  144. 

  145. type server struct {
    146. 

  146. 	t          *testing.T
    147. 

  147. 	cleanup    func() // executed during Shutdown
    148. 

  148. 	configfile string
    149. 

  149. 	cmd        *exec.Cmd
    150. 

  150. 	output     bytes.Buffer // holds stderr from sshd process
    151. 

  151. }
    152. 

  152. 

  153. func clientConfig() *ssh.ClientConfig {
    154. 

  154. 	user, err := user.Current()
    155. 

  155. 	if err != nil {
    156. 

  156. 		panic(err)
    157. 

  157. 	}
    158. 

  158. 	kc := new(keychain)
    159. 

  159. 	kc.keys = append(kc.keys, rsakey)
    160. 

  160. 	config := &ssh.ClientConfig{
    161. 

  161. 		User: user.Username,
    162. 

  162. 		Auth: []ssh.ClientAuth{
    163. 

  163. 			ssh.ClientAuthKeyring(kc),
    164. 

  164. 		},
    165. 

  165. 	}
    166. 

  166. 	return config
    167. 

  167. }
    168. 

  168. 

  169. func (s *server) Dial(config *ssh.ClientConfig) *ssh.ClientConn {
    170. 

  170. 	s.cmd = exec.Command("sshd", "-f", s.configfile, "-i")
    171. 

  171. 	stdin, err := s.cmd.StdinPipe()
    172. 

  172. 	if err != nil {
    173. 

  173. 		s.t.Fatal(err)
    174. 

  174. 	}
    175. 

  175. 	stdout, err := s.cmd.StdoutPipe()
    176. 

  176. 	if err != nil {
    177. 

  177. 		s.t.Fatal(err)
    178. 

  178. 	}
    179. 

  179. 	s.cmd.Stderr = os.Stderr // &s.output
    180. 

  180. 	err = s.cmd.Start()
    181. 

  181. 	if err != nil {
    182. 

  182. 		s.t.FailNow()
    183. 

  183. 		s.Shutdown()
    184. 

  184. 		s.t.Fatal(err)
    185. 

  185. 	}
    186. 

  186. 	conn, err := ssh.Client(&client{stdin, stdout}, config)
    187. 

  187. 	if err != nil {
    188. 

  188. 		s.t.FailNow()
    189. 

  189. 		s.Shutdown()
    190. 

  190. 		s.t.Fatal(err)
    191. 

  191. 	}
    192. 

  192. 	return conn
    193. 

  193. }
    194. 

  194. 

  195. func (s *server) Shutdown() {
    196. 

  196. 	if err := s.cmd.Process.Kill(); err != nil {
    197. 

  197. 		s.t.Error(err)
    198. 

  198. 	}
    199. 

  199. 	if s.t.Failed() {
    200. 

  200. 		// log any output from sshd process
    201. 

  201. 		s.t.Log(s.output.String())
    202. 

  202. 	}
    203. 

  203. 	s.cleanup()
    204. 

  204. }
    205. 

  205. 

  206. // client wraps a pair of Reader/WriteClosers to implement the
    207. 

  207. // net.Conn interface.
    208. 

  208. type client struct {
    209. 

  209. 	io.WriteCloser
    210. 

  210. 	io.Reader
    211. 

  211. }
    212. 

  212. 

  213. func (c *client) LocalAddr() net.Addr              { return nil }
    214. 

  214. func (c *client) RemoteAddr() net.Addr             { return nil }
    215. 

  215. func (c *client) SetDeadline(time.Time) error      { return nil }
    216. 

  216. func (c *client) SetReadDeadline(time.Time) error  { return nil }
    217. 

  217. func (c *client) SetWriteDeadline(time.Time) error { return nil }
    218. 

  218. 

  219. // newServer returns a new mock ssh server.
    220. 

  220. func newServer(t *testing.T) *server {
    221. 

  221. 	dir, err := ioutil.TempDir("", "sshtest")
    222. 

  222. 	if err != nil {
    223. 

  223. 		t.Fatal(err)
    224. 

  224. 	}
    225. 

  225. 	f, err := os.Create(filepath.Join(dir, "sshd_config"))
    226. 

  226. 	if err != nil {
    227. 

  227. 		t.Fatal(err)
    228. 

  228. 	}
    229. 

  229. 	err = configTmpl.Execute(f, map[string]string{
    230. 

  230. 		"Dir": dir,
    231. 

  231. 	})
    232. 

  232. 	if err != nil {
    233. 

  233. 		t.Fatal(err)
    234. 

  234. 	}
    235. 

  235. 	f.Close()
    236. 

  236. 

  237. 	for k, v := range keys {
    238. 

  238. 		f, err := os.OpenFile(filepath.Join(dir, k), os.O_WRONLY|os.O_TRUNC|os.O_CREATE, 0600)
    239. 

  239. 		if err != nil {
    240. 

  240. 			t.Fatal(err)
    241. 

  241. 		}
    242. 

  242. 		if _, err := f.Write([]byte(v)); err != nil {
    243. 

  243. 			t.Fatal(err)
    244. 

  244. 		}
    245. 

  245. 		f.Close()
    246. 

  246. 	}
    247. 

  247. 

  248. 	return &server{
    249. 

  249. 		t:          t,
    250. 

  250. 		configfile: f.Name(),
    251. 

  251. 		cleanup: func() {
    252. 

  252. 			if err := os.RemoveAll(dir); err != nil {
    253. 

  253. 				t.Error(err)
    254. 

  254. 			}
    255. 

  255. 		},
    256. 

  256. 	}
    257. 

  257. }
    258. 

  258. 

  259. // keychain implements the ClientKeyring interface
    260. 

  260. type keychain struct {
    261. 

  261. 	keys []interface{}
    262. 

  262. }
    263. 

  263. 

  264. func (k *keychain) Key(i int) (interface{}, error) {
    265. 

  265. 	if i < 0 || i >= len(k.keys) {
    266. 

  266. 		return nil, nil
    267. 

  267. 	}
    268. 

  268. 	switch key := k.keys[i].(type) {
    269. 

  269. 	case *rsa.PrivateKey:
    270. 

  270. 		return &key.PublicKey, nil
    271. 

  271. 	case *dsa.PrivateKey:
    272. 

  272. 		return &key.PublicKey, nil
    273. 

  273. 	}
    274. 

  274. 	panic("unknown key type")
    275. 

  275. }
    276. 

  276. 

  277. func (k *keychain) Sign(i int, rand io.Reader, data []byte) (sig []byte, err error) {
    278. 

  278. 	hashFunc := crypto.SHA1
    279. 

  279. 	h := hashFunc.New()
    280. 

  280. 	h.Write(data)
    281. 

  281. 	digest := h.Sum(nil)
    282. 

  282. 	switch key := k.keys[i].(type) {
    283. 

  283. 	case *rsa.PrivateKey:
    284. 

  284. 		return rsa.SignPKCS1v15(rand, key, hashFunc, digest)
    285. 

  285. 	}
    286. 

  286. 	return nil, errors.New("ssh: unknown key type")
    287. 

  287. }
    288. 

  288. 

  289. func (k *keychain) loadPEM(file string) error {
    290. 

  290. 	buf, err := ioutil.ReadFile(file)
    291. 

  291. 	if err != nil {
    292. 

  292. 		return err
    293. 

  293. 	}
    294. 

  294. 	block, _ := pem.Decode(buf)
    295. 

  295. 	if block == nil {
    296. 

  296. 		return errors.New("ssh: no key found")
    297. 

  297. 	}
    298. 

  298. 	r, err := x509.ParsePKCS1PrivateKey(block.Bytes)
    299. 

  299. 	if err != nil {
    300. 

  300. 		return err
    301. 

  301. 	}
    302. 

  302. 	k.keys = append(k.keys, r)
    303. 

  303. 	return nil
    304. 

  304. }
    305.