1 # $OpenBSD: test-exec.sh,v 1.35 2008/06/28 13:57:25 djm Exp $
2 # Placed in the Public Domain.
10 case `uname -s 2>/dev/null` in
17 if [ ! -z "$TEST_SSH_PORT" ]; then
23 if [ -x /usr/ucb/whoami ]; then
24 USER=`/usr/ucb/whoami`
25 elif whoami >/dev/null 2>&1; then
27 elif logname >/dev/null 2>&1; then
34 if [ "x$OBJ" = "x" ]; then
35 echo '$OBJ not defined'
38 if [ ! -d $OBJ ]; then
39 echo "not a directory: $OBJ"
43 if [ "x$SCRIPT" = "x" ]; then
44 echo '$SCRIPT not defined'
47 if [ ! -f $SCRIPT ]; then
48 echo "not a file: $SCRIPT"
51 if $TEST_SHELL -n $SCRIPT; then
54 echo "syntax error in $SCRIPT"
59 SRC=`dirname ${SCRIPT}`
67 SSHKEYSCAN=ssh-keyscan
69 SFTPSERVER=/usr/libexec/openssh/sftp-server
77 if [ "x$TEST_SSH_SSH" != "x" ]; then
80 if [ "x$TEST_SSH_SSHD" != "x" ]; then
81 SSHD="${TEST_SSH_SSHD}"
83 if [ "x$TEST_SSH_SSHAGENT" != "x" ]; then
84 SSHAGENT="${TEST_SSH_SSHAGENT}"
86 if [ "x$TEST_SSH_SSHADD" != "x" ]; then
87 SSHADD="${TEST_SSH_SSHADD}"
89 if [ "x$TEST_SSH_SSHKEYGEN" != "x" ]; then
90 SSHKEYGEN="${TEST_SSH_SSHKEYGEN}"
92 if [ "x$TEST_SSH_SSHKEYSCAN" != "x" ]; then
93 SSHKEYSCAN="${TEST_SSH_SSHKEYSCAN}"
95 if [ "x$TEST_SSH_SFTP" != "x" ]; then
96 SFTP="${TEST_SSH_SFTP}"
98 if [ "x$TEST_SSH_SFTPSERVER" != "x" ]; then
99 SFTPSERVER="${TEST_SSH_SFTPSERVER}"
101 if [ "x$TEST_SSH_SCP" != "x" ]; then
102 SCP="${TEST_SSH_SCP}"
104 if [ "x$TEST_SSH_PLINK" != "x" ]; then
105 # Find real binary, if it exists
106 case "${TEST_SSH_PLINK}" in
107 /*) PLINK="${TEST_SSH_PLINK}" ;;
108 *) PLINK=`which ${TEST_SSH_PLINK} 2>/dev/null` ;;
111 if [ "x$TEST_SSH_PUTTYGEN" != "x" ]; then
112 # Find real binary, if it exists
113 case "${TEST_SSH_PUTTYGEN}" in
114 /*) PUTTYGEN="${TEST_SSH_PUTTYGEN}" ;;
115 *) PUTTYGEN=`which ${TEST_SSH_PUTTYGEN} 2>/dev/null` ;;
118 if [ "x$TEST_SSH_CONCH" != "x" ]; then
119 # Find real binary, if it exists
120 case "${TEST_SSH_CONCH}" in
121 /*) CONCH="${TEST_SSH_CONCH}" ;;
122 *) CONCH=`which ${TEST_SSH_CONCH} 2>/dev/null` ;;
126 # Path to sshd must be absolute for rexec
129 *) SSHD=`which sshd` ;;
132 if [ "x$TEST_SSH_LOGFILE" = "x" ]; then
133 TEST_SSH_LOGFILE=/dev/null
136 # these should be used in tests
137 export SSH SSHD SSHAGENT SSHADD SSHKEYGEN SSHKEYSCAN SFTP SFTPSERVER SCP
138 #echo $SSH $SSHD $SSHAGENT $SSHADD $SSHKEYGEN $SSHKEYSCAN $SFTP $SFTPSERVER $SCP
143 if [ "x`echo -n`" = "x" ]; then
145 elif [ "x`echo '\c'`" = "x" ]; then
148 fatal "Don't know how to echo without newline."
158 if [ -x $i/$1 ]; then
169 if [ -f $PIDFILE ]; then
171 if [ "X$pid" = "X" ]; then
174 if [ $pid -lt 2 ]; then
175 echo bad pid for ssd: $pid
185 echo "trace: $@" >>$TEST_SSH_LOGFILE
186 if [ "X$TEST_SSH_TRACE" = "Xyes" ]; then
193 echo "verbose: $@" >>$TEST_SSH_LOGFILE
194 if [ "X$TEST_SSH_QUIET" != "Xyes" ]; then
202 echo "FAIL: $@" >>$TEST_SSH_LOGFILE
209 echo "FATAL: $@" >>$TEST_SSH_LOGFILE
221 # create server config
222 cat << EOF > $OBJ/sshd_config
226 ListenAddress 127.0.0.1
229 AuthorizedKeysFile $OBJ/authorized_keys_%u
231 AcceptEnv _XXX_TEST_*
233 Subsystem sftp $SFTPSERVER
236 if [ ! -z "$TEST_SSH_SSHD_CONFOPTS" ]; then
237 trace "adding sshd_config option $TEST_SSH_SSHD_CONFOPTS"
238 echo "$TEST_SSH_SSHD_CONFOPTS" >> $OBJ/sshd_config
241 # server config for proxy connects
242 cp $OBJ/sshd_config $OBJ/sshd_proxy
244 # allow group-writable directories in proxy-mode
245 echo 'StrictModes no' >> $OBJ/sshd_proxy
247 # create client config
248 cat << EOF > $OBJ/ssh_config
251 HostKeyAlias localhost-with-alias
254 GlobalKnownHostsFile $OBJ/known_hosts
255 UserKnownHostsFile $OBJ/known_hosts
256 RSAAuthentication yes
257 PubkeyAuthentication yes
258 ChallengeResponseAuthentication no
259 HostbasedAuthentication no
260 PasswordAuthentication no
262 StrictHostKeyChecking yes
265 if [ ! -z "$TEST_SSH_SSH_CONFOPTS" ]; then
266 trace "adding ssh_config option $TEST_SSH_SSHD_CONFOPTS"
267 echo "$TEST_SSH_SSH_CONFOPTS" >> $OBJ/ssh_config
270 rm -f $OBJ/known_hosts $OBJ/authorized_keys_$USER
272 trace "generate keys"
273 for t in rsa rsa1; do
276 ${SSHKEYGEN} -b 1024 -q -N '' -t $t -f $OBJ/$t ||\
277 fail "ssh-keygen for $t failed"
279 # known hosts file for client
281 echon 'localhost-with-alias,127.0.0.1,::1 '
283 ) >> $OBJ/known_hosts
285 # setup authorized keys
286 cat $OBJ/$t.pub >> $OBJ/authorized_keys_$USER
287 echo IdentityFile $OBJ/$t >> $OBJ/ssh_config
289 # use key as host key, too
290 $SUDO cp $OBJ/$t $OBJ/host.$t
291 echo HostKey $OBJ/host.$t >> $OBJ/sshd_config
293 # don't use SUDO for proxy connect
294 echo HostKey $OBJ/$t >> $OBJ/sshd_proxy
296 chmod 644 $OBJ/authorized_keys_$USER
298 # Activate Twisted Conch tests if the binary is present
299 REGRESS_INTEROP_CONCH=no
300 if test -x "$CONCH" ; then
301 REGRESS_INTEROP_CONCH=yes
304 # If PuTTY is present and we are running a PuTTY test, prepare keys and
306 REGRESS_INTEROP_PUTTY=no
307 if test -x "$PUTTYGEN" -a -x "$PLINK" ; then
308 REGRESS_INTEROP_PUTTY=yes
312 *) REGRESS_INTEROP_PUTTY=no ;;
315 if test "$REGRESS_INTEROP_PUTTY" = "yes" ; then
316 mkdir -p ${OBJ}/.putty
318 # Add a PuTTY key to authorized_keys
319 rm -f ${OBJ}/putty.rsa2
320 puttygen -t rsa -o ${OBJ}/putty.rsa2 < /dev/null > /dev/null
321 puttygen -O public-openssh ${OBJ}/putty.rsa2 \
322 >> $OBJ/authorized_keys_$USER
324 # Convert rsa2 host key to PuTTY format
325 ${SRC}/ssh2putty.sh 127.0.0.1 $PORT $OBJ/rsa > \
326 ${OBJ}/.putty/sshhostkeys
327 ${SRC}/ssh2putty.sh 127.0.0.1 22 $OBJ/rsa >> \
328 ${OBJ}/.putty/sshhostkeys
330 # Setup proxied session
331 mkdir -p ${OBJ}/.putty/sessions
332 rm -f ${OBJ}/.putty/sessions/localhost_proxy
333 echo "Hostname=127.0.0.1" >> ${OBJ}/.putty/sessions/localhost_proxy
334 echo "PortNumber=$PORT" >> ${OBJ}/.putty/sessions/localhost_proxy
335 echo "ProxyMethod=5" >> ${OBJ}/.putty/sessions/localhost_proxy
336 echo "ProxyTelnetCommand=sh ${SRC}/sshd-log-wrapper.sh ${SSHD} ${TEST_SSH_LOGFILE} -i -f $OBJ/sshd_proxy" >> ${OBJ}/.putty/sessions/localhost_proxy
338 REGRESS_INTEROP_PUTTY=yes
341 # create a proxy version of the client config
344 echo proxycommand ${SUDO} sh ${SRC}/sshd-log-wrapper.sh ${SSHD} ${TEST_SSH_LOGFILE} -i -f $OBJ/sshd_proxy
348 ${SSHD} -t -f $OBJ/sshd_proxy || fatal "sshd_proxy broken"
353 $SUDO ${SSHD} -f $OBJ/sshd_config "$@" -t || fatal "sshd_config broken"
354 $SUDO ${SSHD} -f $OBJ/sshd_config -e "$@" >>$TEST_SSH_LOGFILE 2>&1
356 trace "wait for sshd"
358 while [ ! -f $PIDFILE -a $i -lt 10 ]; do
363 test -f $PIDFILE || fatal "no sshd running on port $PORT"
371 if [ $RESULT -eq 0 ]; then