net-ssh 0.5.0

data/test/transport/tc_algorithm_negotiator.rb

@@ -0,0 +1,169 @@
+#--
+# =============================================================================
+# Copyright (c) 2004, Jamis Buck (jgb3@email.byu.edu)
+# All rights reserved.
+#
+# This source file is distributed as part of the Net::SSH Secure Shell Client
+# library for Ruby. This file (and the library as a whole) may be used only as
+# allowed by either the BSD license, or the Ruby license (or, by association
+# with the Ruby license, the GPL). See the "doc" subdirectory of the Net::SSH
+# distribution for the texts of these licenses.
+# -----------------------------------------------------------------------------
+# net-ssh website : http://net-ssh.rubyforge.org
+# project website: http://rubyforge.org/projects/net-ssh
+# =============================================================================
+#++
+
+$:.unshift "../../lib"
+
+require 'net/ssh/transport/algorithm-negotiator'
+require 'net/ssh/transport/constants'
+require 'net/ssh/util/buffer'
+require 'test/unit'
+
+class TC_AlgorithmNegotiator < Test::Unit::TestCase
+  include Net::SSH::Transport::Constants
+
+  class MockLogger; def debug?; false; end; end
+
+  class Buffers
+    def writer
+      Net::SSH::Util::WriterBuffer.new
+    end
+  end
+
+  class ScriptedSession
+    attr_reader :messages
+
+    def initialize( *script )
+      @script = script
+      @messages = []
+    end
+
+    def wait_for_message
+      @script.shift
+    end
+
+    def send_message( msg )
+      @messages << msg.to_s
+    end
+  end
+
+  ALGORITHMS = {
+    :host_key => [ "A", "B" ],
+    :kex => [ "C", "D" ],
+    :encryption => [ "E", "F" ],
+    :hmac => [ "G", "H" ],
+    :compression => [ "I", "J" ],
+    :languages => [ "K", "L" ],
+  }
+
+  def reader( text )
+    Net::SSH::Util::ReaderBuffer.new( text )
+  end
+
+  def setup
+    logger = MockLogger.new
+    buffers = Buffers.new
+    @negotiator = Net::SSH::Transport::AlgorithmNegotiator.new( logger, ALGORITHMS, buffers )
+  end
+
+  def test_no_kexinit
+    session = ScriptedSession.new( [ -1, reader("") ] )
+    assert_raise( Net::SSH::Exception ) do
+      @negotiator.negotiate( session, {} )
+    end
+  end
+
+  def test_simple_exchange
+    session = ScriptedSession.new(
+      [ KEXINIT,
+        reader("1234567890123456" +
+               "\0\0\0\3C,D" +
+               "\0\0\0\3A,B" +
+               "\0\0\0\3E,F\0\0\0\3E,F" +
+               "\0\0\0\3G,H\0\0\0\3G,H" +
+               "\0\0\0\3I,J\0\0\0\3I,J" +
+               "\0\0\0\0\0\0\0\0\0\0\0\0\0") ]
+    )
+
+    result = @negotiator.negotiate( session, {} )
+
+    assert_equal "C", result.kex
+    assert_equal "A", result.host_key
+    assert_equal "E", result.encryption_c2s
+    assert_equal "E", result.encryption_s2c
+    assert_equal "G", result.mac_c2s
+    assert_equal "G", result.mac_s2c
+    assert_equal "I", result.compression_c2s
+    assert_equal "I", result.compression_s2c
+    assert_equal "", result.language_c2s
+    assert_equal "", result.language_s2c
+
+    assert_equal "1234567890123456\0\0\0\3C,D\0\0\0\3A,B\0\0\0\3E,F\0\0\0\3E,F\0\0\0\3G,H\0\0\0\3G,H\0\0\0\3I,J\0\0\0\3I,J\0\0\0\0\0\0\0\0\0\0\0\0\0", result.server_packet
+    assert_equal "\0\0\0\3C,D\0\0\0\3A,B\0\0\0\3E,F\0\0\0\3E,F\0\0\0\3G,H\0\0\0\3G,H\0\0\0\3I,J\0\0\0\3I,J\0\0\0\3K,L\0\0\0\3K,L\0\0\0\0\0", result.client_packet[17..-1]
+  end
+
+  def test_custom_exchange
+    session = ScriptedSession.new(
+      [ KEXINIT,
+        reader("1234567890123456" +
+               "\0\0\0\3C,D" +
+               "\0\0\0\3A,B" +
+               "\0\0\0\3E,F\0\0\0\3E,F" +
+               "\0\0\0\3G,H\0\0\0\3G,H" +
+               "\0\0\0\3I,J\0\0\0\3I,J" +
+               "\0\0\0\0\0\0\0\0\0\0\0\0\0") ]
+    )
+
+    result = @negotiator.negotiate( session,
+      :kex => "D",
+      :host_key => [ "B", "A" ] )
+
+    assert_equal "D", result.kex
+    assert_equal "B", result.host_key
+    assert_equal "E", result.encryption_c2s
+    assert_equal "E", result.encryption_s2c
+    assert_equal "G", result.mac_c2s
+    assert_equal "G", result.mac_s2c
+    assert_equal "I", result.compression_c2s
+    assert_equal "I", result.compression_s2c
+    assert_equal "", result.language_c2s
+    assert_equal "", result.language_s2c
+  end
+
+  def test_bad_algorithm
+    session = ScriptedSession.new(
+      [ KEXINIT,
+        reader("1234567890123456" +
+               "\0\0\0\3C,D" +
+               "\0\0\0\3A,B" +
+               "\0\0\0\3E,F\0\0\0\3E,F" +
+               "\0\0\0\3G,H\0\0\0\3G,H" +
+               "\0\0\0\3I,J\0\0\0\3I,J" +
+               "\0\0\0\0\0\0\0\0\0\0\0\0\0") ]
+    )
+
+    assert_raise( NotImplementedError ) do
+      @negotiator.negotiate( session, :kex => "K" )
+    end
+  end
+
+  def test_no_agree
+    session = ScriptedSession.new(
+      [ KEXINIT,
+        reader("1234567890123456" +
+               "\0\0\0\3C,D" +
+               "\0\0\0\3M,N" +
+               "\0\0\0\3E,F\0\0\0\3E,F" +
+               "\0\0\0\3G,H\0\0\0\3G,H" +
+               "\0\0\0\3I,J\0\0\0\3I,J" +
+               "\0\0\0\0\0\0\0\0\0\0\0\0\0") ]
+    )
+
+    assert_raise( Net::SSH::Exception ) do
+      @negotiator.negotiate( session, {} )
+    end
+  end
+
+end

data/test/transport/tc_identity_cipher.rb

@@ -0,0 +1,52 @@
+#--
+# =============================================================================
+# Copyright (c) 2004, Jamis Buck (jgb3@email.byu.edu)
+# All rights reserved.
+#
+# This source file is distributed as part of the Net::SSH Secure Shell Client
+# library for Ruby. This file (and the library as a whole) may be used only as
+# allowed by either the BSD license, or the Ruby license (or, by association
+# with the Ruby license, the GPL). See the "doc" subdirectory of the Net::SSH
+# distribution for the texts of these licenses.
+# -----------------------------------------------------------------------------
+# net-ssh website : http://net-ssh.rubyforge.org
+# project website: http://rubyforge.org/projects/net-ssh
+# =============================================================================
+#++
+
+$:.unshift "../../lib"
+
+require 'net/ssh/transport/identity-cipher'
+require 'test/unit'
+
+class TC_IdentityCipher < Test::Unit::TestCase
+
+  def setup
+    @cipher = Net::SSH::Transport::IdentityCipher.new
+  end
+
+  def test_block_size
+    assert_equal 8, @cipher.block_size
+  end
+
+  def test_encrypt
+    @cipher.encrypt
+    text = @cipher.update( "value1" )
+    text << @cipher.update( "value2" )
+    text << @cipher.final
+    assert_equal text, "value1value2"
+  end
+
+  def test_decrypt
+    @cipher.decrypt
+    text = @cipher.update( "value1" )
+    text << @cipher.update( "value2" )
+    text << @cipher.final
+    assert_equal text, "value1value2"
+  end
+
+  def test_name
+    assert_equal "identity", @cipher.name
+  end
+
+end

data/test/transport/tc_integration.rb

@@ -0,0 +1,110 @@
+#--
+# =============================================================================
+# Copyright (c) 2004, Jamis Buck (jgb3@email.byu.edu)
+# All rights reserved.
+#
+# This source file is distributed as part of the Net::SSH Secure Shell Client
+# library for Ruby. This file (and the library as a whole) may be used only as
+# allowed by either the BSD license, or the Ruby license (or, by association
+# with the Ruby license, the GPL). See the "doc" subdirectory of the Net::SSH
+# distribution for the texts of these licenses.
+# -----------------------------------------------------------------------------
+# net-ssh website : http://net-ssh.rubyforge.org
+# project website: http://rubyforge.org/projects/net-ssh
+# =============================================================================
+#++
+
+$:.unshift "../../lib"
+
+if $run_integration_tests || __FILE__ == $0
+
+  require 'needle'
+  require 'net/ssh/transport/services'
+  require 'test/unit'
+
+  class TC_Transport_Integration < Test::Unit::TestCase
+
+    def setup
+      @registry = Needle::Registry.new :logs => { :device=>STDOUT, :default_level => :WARN }
+      Net::SSH::Transport.register_services( @registry )
+    end
+
+    def teardown
+      @registry.logs.close
+    end
+
+    backends = [ :ossl ]
+    keys = [ "ssh-dss", "ssh-rsa" ]
+    kexs = [ "diffie-hellman-group-exchange-sha1", "diffie-hellman-group1-sha1" ]
+    # we don't test "idea-cbc" because it is not supported by OpenSSH. OpenSSH
+    # will use 3des-cbc instead, which we are already testing.
+    encryptions = [ "3des-cbc", "aes128-cbc", "blowfish-cbc", "aes256-cbc",
+                    "aes192-cbc" ]
+    hmacs = [ "hmac-md5", "hmac-sha1", "hmac-md5-96", "hmac-sha1-96" ]
+    compressions = [ "none", "zlib" ]
+
+#    keys = [ 'ssh-dss' ]
+#    kexs = [ 'diffie-hellman-group-exchange-sha1' ]
+#    encryptions = [ '3des-cbc' ]
+#    hmacs = [ 'hmac-md5' ]
+#    compressions = [ 'none' ]
+
+    backends.each do |backend|
+      keys.each do |key|
+        kexs.each do |kex|
+          encryptions.each do |encryption|
+            hmacs.each do |hmac|
+              compressions.each do |compression|
+                method_name = "test_#{backend}__#{key}__#{kex}__" +
+                              "#{encryption}__#{hmac}__#{compression}"
+                method_name.gsub!( /-/, "_" )
+
+                define_method( method_name ) do
+                  @registry.define do |b|
+                    b.crypto_backend { backend }
+                    b.transport_host { "test.host" }
+                    b.transport_options do
+                      Hash[ :host_key => key,
+                            :kex => kex,
+                            :encryption => encryption,
+                            :hmac => hmac,
+                            :compression => compression ]
+                    end
+                  end
+
+                  session = nil
+                  assert_nothing_raised do
+                    session = @registry.transport.session
+                  end
+
+                  assert_equal key, session.algorithms.host_key
+                  assert_equal kex, session.algorithms.kex
+                  assert_equal encryption, session.algorithms.encryption_c2s
+                  assert_equal encryption, session.algorithms.encryption_s2c
+                  assert_equal hmac, session.algorithms.mac_c2s
+                  assert_equal hmac, session.algorithms.mac_s2c
+                  assert_equal compression, session.algorithms.compression_c2s
+                  assert_equal compression, session.algorithms.compression_s2c
+
+                  type = nil
+                  assert_nothing_raised do
+                    session.send_message(
+                      session.class::SERVICE_REQUEST.chr +
+                      "\0\0\0\14ssh-userauth" )
+                    type, buffer = session.wait_for_message
+                  end
+
+                  assert_equal session.class::SERVICE_ACCEPT, type 
+                  session.close
+                end
+
+              end
+            end
+          end
+        end
+      end
+    end
+
+  end
+
+end

data/test/transport/tc_packet_stream.rb

@@ -0,0 +1,183 @@
+#--
+# =============================================================================
+# Copyright (c) 2004, Jamis Buck (jgb3@email.byu.edu)
+# All rights reserved.
+#
+# This source file is distributed as part of the Net::SSH Secure Shell Client
+# library for Ruby. This file (and the library as a whole) may be used only as
+# allowed by either the BSD license, or the Ruby license (or, by association
+# with the Ruby license, the GPL). See the "doc" subdirectory of the Net::SSH
+# distribution for the texts of these licenses.
+# -----------------------------------------------------------------------------
+# net-ssh website : http://net-ssh.rubyforge.org
+# project website: http://rubyforge.org/projects/net-ssh
+# =============================================================================
+#++
+
+$:.unshift "../../lib"
+
+require 'net/ssh/transport/packet-stream'
+require 'net/ssh/util/buffer'
+require 'test/unit'
+
+module PacketStream_Mock
+  class Cipher
+    def block_size
+      8
+    end
+
+    def update( text )
+      "!" + text
+    end
+
+    def final
+      "!"
+    end
+  end
+
+  class NullCipher
+    def block_size; 8; end
+    def update( text ); text; end
+    def final; ""; end
+  end
+
+  class HMAC
+    def mac_length
+      8
+    end
+
+    def digest( text )
+      text[0,mac_length]
+    end
+  end
+
+  class Compressor
+    def initialize( b="<", e=">" )
+      @b, @e = b, e
+    end
+
+    def compress( text )
+      "#{@b}#{text}#{@e}"
+    end
+  end
+
+  class Decompressor
+    def decompress( text )
+      text
+    end
+  end
+
+  class CipherFactory
+    def initialize( klass )
+      @klass = klass
+    end
+
+    def get( name )
+      raise ArgumentError, "expected \"none\", got #{name.inspect}" unless name=="none"
+      @klass.new
+    end
+  end
+
+  class HMACFactory
+    def get( name )
+      raise ArgumentError, "expected \"none\", got #{name.inspect}" unless name=="none"
+      HMAC.new
+    end
+  end
+
+  class BufferFactory
+    def reader( text )
+      Net::SSH::Util::ReaderBuffer.new( text )
+    end
+  end
+
+  class Socket
+    attr_reader :send_buffer
+
+    def initialize( source="" )
+      @send_buffer = ""
+      @source = source
+    end
+
+    def recv( bytes )
+      result, @source = @source[0,bytes], @source[bytes..-1]
+      result
+    end
+
+    def send( text, arg )
+      @send_buffer << text
+    end
+  end
+
+  Compressors = { "none" => Compressor.new }
+  Decompressors = { "none" => Decompressor.new }
+end
+
+class TC_OutgoingPacketStream < Test::Unit::TestCase
+
+  def setup
+    @stream = Net::SSH::Transport::OutgoingPacketStream.new( 
+      PacketStream_Mock::CipherFactory.new( PacketStream_Mock::Cipher ),
+      PacketStream_Mock::HMACFactory.new,
+      PacketStream_Mock::Compressors )
+    @socket = PacketStream_Mock::Socket.new
+    @stream.socket = @socket
+  end
+
+  def test_send_empty
+    assert_equal 0, @stream.sequence_number
+    @stream.send( "" )
+    assert_equal 1, @stream.sequence_number
+    assert_match( %r{^!\0\0\0\24\21<>.................!\0\0\0\0\0\0\0\24$}m, @socket.send_buffer )
+  end
+
+  def test_send_nonstring
+    assert_equal 0, @stream.sequence_number
+    @stream.send( 15 )
+    assert_equal 1, @stream.sequence_number
+    assert_match( %r{^!\0\0\0\24\17<15>...............!\0\0\0\0\0\0\0\24$}m, @socket.send_buffer )
+  end
+
+  def test_send_long_string
+    assert_equal 0, @stream.sequence_number
+    @stream.send( "12345678901234567" )
+    assert_equal 1, @stream.sequence_number
+    assert_match( %r{^!\0\0\0\34\10<12345678901234567>........!\0\0\0\0\0\0\0\034$}m, @socket.send_buffer )
+  end
+
+end
+
+class TC_IncomingPacketStream < Test::Unit::TestCase
+
+  class MockLog
+    def debug?
+      false
+    end
+  end
+
+  def setup
+    @stream = Net::SSH::Transport::IncomingPacketStream.new( 
+      PacketStream_Mock::CipherFactory.new( PacketStream_Mock::NullCipher ),
+      PacketStream_Mock::HMACFactory.new,
+      PacketStream_Mock::Decompressors )
+    @stream.buffers = PacketStream_Mock::BufferFactory.new
+    @stream.log = MockLog.new
+  end
+
+  def test_get_empty
+    @stream.socket = PacketStream_Mock::Socket.new( "\0\0\0\21\0201234567890123456\0\0\0\0\0\0\0\21" )
+    assert_equal 0, @stream.sequence_number
+    buffer = @stream.get
+    assert_equal 1, @stream.sequence_number
+    assert_equal 0, buffer.length
+  end
+
+  def test_get_long
+    @stream.socket = PacketStream_Mock::Socket.new( "\0\0\0\32\020ABCDEFGHI1234567890123456\0\0\0\0\0\0\0\32" )
+    assert_equal 0, @stream.sequence_number
+    buffer = @stream.get
+    assert_equal 1, @stream.sequence_number
+    assert_equal 9, buffer.length
+    assert_equal "ABCDEFGHI", buffer.to_s
+  end
+end