1 # $OpenBSD: test-exec.sh,v 1.25 2004/12/06 10:49:56 dtucker Exp $
2 # Placed in the Public Domain.
6 if [ ! -z "$TEST_SSH_PORT" ]; then
12 if [ -x /usr/ucb/whoami ]; then
13 USER=`/usr/ucb/whoami`
14 elif whoami >/dev/null 2>&1; then
21 if [ "x$OBJ" = "x" ]; then
22 echo '$OBJ not defined'
25 if [ ! -d $OBJ ]; then
26 echo "not a directory: $OBJ"
30 if [ "x$SCRIPT" = "x" ]; then
31 echo '$SCRIPT not defined'
34 if [ ! -f $SCRIPT ]; then
35 echo "not a file: $SCRIPT"
38 if $TEST_SHELL -n $SCRIPT; then
41 echo "syntax error in $SCRIPT"
52 SSHKEYSCAN=ssh-keyscan
54 SFTPSERVER=/usr/libexec/openssh/sftp-server
57 if [ "x$TEST_SSH_SSH" != "x" ]; then
60 if [ "x$TEST_SSH_SSHD" != "x" ]; then
61 SSHD="${TEST_SSH_SSHD}"
63 if [ "x$TEST_SSH_SSHAGENT" != "x" ]; then
64 SSHAGENT="${TEST_SSH_SSHAGENT}"
66 if [ "x$TEST_SSH_SSHADD" != "x" ]; then
67 SSHADD="${TEST_SSH_SSHADD}"
69 if [ "x$TEST_SSH_SSHKEYGEN" != "x" ]; then
70 SSHKEYGEN="${TEST_SSH_SSHKEYGEN}"
72 if [ "x$TEST_SSH_SSHKEYSCAN" != "x" ]; then
73 SSHKEYSCAN="${TEST_SSH_SSHKEYSCAN}"
75 if [ "x$TEST_SSH_SFTP" != "x" ]; then
76 SFTP="${TEST_SSH_SFTP}"
78 if [ "x$TEST_SSH_SFTPSERVER" != "x" ]; then
79 SFTPSERVER="${TEST_SSH_SFTPSERVER}"
81 if [ "x$TEST_SSH_SCP" != "x" ]; then
85 # Path to sshd must be absolute for rexec
86 if [ ! -x /$SSHD ]; then
90 # these should be used in tests
91 export SSH SSHD SSHAGENT SSHADD SSHKEYGEN SSHKEYSCAN SFTP SFTPSERVER SCP
92 #echo $SSH $SSHD $SSHAGENT $SSHADD $SSHKEYGEN $SSHKEYSCAN $SFTP $SFTPSERVER $SCP
97 if [ "x`echo -n`" = "x" ]; then
99 elif [ "x`echo '\c'`" = "x" ]; then
102 fatal "Don't know how to echo without newline."
112 if [ -x $i/$1 ]; then
123 if [ -f $PIDFILE ]; then
125 if [ "X$pid" = "X" ]; then
128 if [ $pid -lt 2 ]; then
129 echo bad pid for ssd: $pid
139 if [ "X$TEST_SSH_TRACE" = "Xyes" ]; then
146 if [ "X$TEST_SSH_QUIET" != "Xyes" ]; then
171 # create server config
172 cat << EOF > $OBJ/sshd_config
175 ListenAddress 127.0.0.1
178 AuthorizedKeysFile $OBJ/authorized_keys_%u
180 AcceptEnv _XXX_TEST_*
182 Subsystem sftp $SFTPSERVER
185 if [ ! -z "$TEST_SSH_SSHD_CONFOPTS" ]; then
186 trace "adding sshd_config option $TEST_SSH_SSHD_CONFOPTS"
187 echo "$TEST_SSH_SSHD_CONFOPTS" >> $OBJ/sshd_config
190 # server config for proxy connects
191 cp $OBJ/sshd_config $OBJ/sshd_proxy
193 # allow group-writable directories in proxy-mode
194 echo 'StrictModes no' >> $OBJ/sshd_proxy
196 # create client config
197 cat << EOF > $OBJ/ssh_config
200 HostKeyAlias localhost-with-alias
203 GlobalKnownHostsFile $OBJ/known_hosts
204 UserKnownHostsFile $OBJ/known_hosts
205 RSAAuthentication yes
206 PubkeyAuthentication yes
207 ChallengeResponseAuthentication no
208 HostbasedAuthentication no
209 PasswordAuthentication no
211 StrictHostKeyChecking yes
214 if [ ! -z "$TEST_SSH_SSH_CONFOPTS" ]; then
215 trace "adding ssh_config option $TEST_SSH_SSHD_CONFOPTS"
216 echo "$TEST_SSH_SSH_CONFOPTS" >> $OBJ/ssh_config
219 rm -f $OBJ/known_hosts $OBJ/authorized_keys_$USER
221 trace "generate keys"
222 for t in rsa rsa1; do
225 ${SSHKEYGEN} -q -N '' -t $t -f $OBJ/$t ||\
226 fail "ssh-keygen for $t failed"
228 # known hosts file for client
230 echon 'localhost-with-alias,127.0.0.1,::1 '
232 ) >> $OBJ/known_hosts
234 # setup authorized keys
235 cat $OBJ/$t.pub >> $OBJ/authorized_keys_$USER
236 echo IdentityFile $OBJ/$t >> $OBJ/ssh_config
238 # use key as host key, too
239 $SUDO cp $OBJ/$t $OBJ/host.$t
240 echo HostKey $OBJ/host.$t >> $OBJ/sshd_config
242 # don't use SUDO for proxy connect
243 echo HostKey $OBJ/$t >> $OBJ/sshd_proxy
245 chmod 644 $OBJ/authorized_keys_$USER
247 # create a proxy version of the client config
250 echo proxycommand ${SUDO} ${SSHD} -i -f $OBJ/sshd_proxy
254 ${SSHD} -t -f $OBJ/sshd_proxy || fatal "sshd_proxy broken"
259 $SUDO ${SSHD} -f $OBJ/sshd_config -t || fatal "sshd_config broken"
260 $SUDO ${SSHD} -f $OBJ/sshd_config
262 trace "wait for sshd"
264 while [ ! -f $PIDFILE -a $i -lt 10 ]; do
269 test -f $PIDFILE || fatal "no sshd running on port $PORT"
277 if [ $RESULT -eq 0 ]; then