1 # $OpenBSD: test-exec.sh,v 1.28 2005/05/20 23:14:15 djm Exp $
2 # Placed in the Public Domain.
10 case `uname -s 2>/dev/null` in
17 if [ ! -z "$TEST_SSH_PORT" ]; then
23 if [ -x /usr/ucb/whoami ]; then
24 USER=`/usr/ucb/whoami`
25 elif whoami >/dev/null 2>&1; then
27 elif logname >/dev/null 2>&1; then
33 # XXX platforms that don't support -E may need a replacement
37 if [ "x$OBJ" = "x" ]; then
38 echo '$OBJ not defined'
41 if [ ! -d $OBJ ]; then
42 echo "not a directory: $OBJ"
46 if [ "x$SCRIPT" = "x" ]; then
47 echo '$SCRIPT not defined'
50 if [ ! -f $SCRIPT ]; then
51 echo "not a file: $SCRIPT"
54 if $TEST_SHELL -n $SCRIPT; then
57 echo "syntax error in $SCRIPT"
62 SRC=`dirname ${SCRIPT}`
70 SSHKEYSCAN=ssh-keyscan
72 SFTPSERVER=/usr/libexec/openssh/sftp-server
75 if [ "x$TEST_SSH_SSH" != "x" ]; then
78 if [ "x$TEST_SSH_SSHD" != "x" ]; then
79 SSHD="${TEST_SSH_SSHD}"
81 if [ "x$TEST_SSH_SSHAGENT" != "x" ]; then
82 SSHAGENT="${TEST_SSH_SSHAGENT}"
84 if [ "x$TEST_SSH_SSHADD" != "x" ]; then
85 SSHADD="${TEST_SSH_SSHADD}"
87 if [ "x$TEST_SSH_SSHKEYGEN" != "x" ]; then
88 SSHKEYGEN="${TEST_SSH_SSHKEYGEN}"
90 if [ "x$TEST_SSH_SSHKEYSCAN" != "x" ]; then
91 SSHKEYSCAN="${TEST_SSH_SSHKEYSCAN}"
93 if [ "x$TEST_SSH_SFTP" != "x" ]; then
94 SFTP="${TEST_SSH_SFTP}"
96 if [ "x$TEST_SSH_SFTPSERVER" != "x" ]; then
97 SFTPSERVER="${TEST_SSH_SFTPSERVER}"
99 if [ "x$TEST_SSH_SCP" != "x" ]; then
100 SCP="${TEST_SSH_SCP}"
103 # Path to sshd must be absolute for rexec
106 *) SSHD=`which sshd` ;;
109 if [ "x$TEST_SSH_LOGFILE" = "x" ]; then
110 TEST_SSH_LOGFILE=/dev/null
113 # these should be used in tests
114 export SSH SSHD SSHAGENT SSHADD SSHKEYGEN SSHKEYSCAN SFTP SFTPSERVER SCP
115 #echo $SSH $SSHD $SSHAGENT $SSHADD $SSHKEYGEN $SSHKEYSCAN $SFTP $SFTPSERVER $SCP
120 if [ "x`echo -n`" = "x" ]; then
122 elif [ "x`echo '\c'`" = "x" ]; then
125 fatal "Don't know how to echo without newline."
135 if [ -x $i/$1 ]; then
146 if [ -f $PIDFILE ]; then
148 if [ "X$pid" = "X" ]; then
151 if [ $pid -lt 2 ]; then
152 echo bad pid for ssd: $pid
162 $ECHOE "trace: $@" >>$TEST_SSH_LOGFILE
163 if [ "X$TEST_SSH_TRACE" = "Xyes" ]; then
170 $ECHOE "verbose: $@" >>$TEST_SSH_LOGFILE
171 if [ "X$TEST_SSH_QUIET" != "Xyes" ]; then
179 $ECHOE "FAIL: $@" >>$TEST_SSH_LOGFILE
186 $ECHOE "FATAL: $@" >>$TEST_SSH_LOGFILE
198 # create server config
199 cat << EOF > $OBJ/sshd_config
203 ListenAddress 127.0.0.1
206 AuthorizedKeysFile $OBJ/authorized_keys_%u
208 AcceptEnv _XXX_TEST_*
210 Subsystem sftp $SFTPSERVER
213 if [ ! -z "$TEST_SSH_SSHD_CONFOPTS" ]; then
214 trace "adding sshd_config option $TEST_SSH_SSHD_CONFOPTS"
215 echo "$TEST_SSH_SSHD_CONFOPTS" >> $OBJ/sshd_config
218 # server config for proxy connects
219 cp $OBJ/sshd_config $OBJ/sshd_proxy
221 # allow group-writable directories in proxy-mode
222 echo 'StrictModes no' >> $OBJ/sshd_proxy
224 # create client config
225 cat << EOF > $OBJ/ssh_config
228 HostKeyAlias localhost-with-alias
231 GlobalKnownHostsFile $OBJ/known_hosts
232 UserKnownHostsFile $OBJ/known_hosts
233 RSAAuthentication yes
234 PubkeyAuthentication yes
235 ChallengeResponseAuthentication no
236 HostbasedAuthentication no
237 PasswordAuthentication no
239 StrictHostKeyChecking yes
242 if [ ! -z "$TEST_SSH_SSH_CONFOPTS" ]; then
243 trace "adding ssh_config option $TEST_SSH_SSHD_CONFOPTS"
244 echo "$TEST_SSH_SSH_CONFOPTS" >> $OBJ/ssh_config
247 rm -f $OBJ/known_hosts $OBJ/authorized_keys_$USER
249 trace "generate keys"
250 for t in rsa rsa1; do
253 ${SSHKEYGEN} -b 1024 -q -N '' -t $t -f $OBJ/$t ||\
254 fail "ssh-keygen for $t failed"
256 # known hosts file for client
258 echon 'localhost-with-alias,127.0.0.1,::1 '
260 ) >> $OBJ/known_hosts
262 # setup authorized keys
263 cat $OBJ/$t.pub >> $OBJ/authorized_keys_$USER
264 echo IdentityFile $OBJ/$t >> $OBJ/ssh_config
266 # use key as host key, too
267 $SUDO cp $OBJ/$t $OBJ/host.$t
268 echo HostKey $OBJ/host.$t >> $OBJ/sshd_config
270 # don't use SUDO for proxy connect
271 echo HostKey $OBJ/$t >> $OBJ/sshd_proxy
273 chmod 644 $OBJ/authorized_keys_$USER
275 # create a proxy version of the client config
278 echo proxycommand ${SUDO} sh ${SRC}/sshd-log-wrapper.sh ${SSHD} ${TEST_SSH_LOGFILE} -i -f $OBJ/sshd_proxy
282 ${SSHD} -t -f $OBJ/sshd_proxy || fatal "sshd_proxy broken"
287 $SUDO ${SSHD} -f $OBJ/sshd_config -t || fatal "sshd_config broken"
288 $SUDO ${SSHD} -f $OBJ/sshd_config -e >>$TEST_SSH_LOGFILE 2>&1
290 trace "wait for sshd"
292 while [ ! -f $PIDFILE -a $i -lt 10 ]; do
297 test -f $PIDFILE || fatal "no sshd running on port $PORT"
305 if [ $RESULT -eq 0 ]; then