RubyGems - net-ssh - Versions diffs - 1.1.4 → 2.0.0 - Mend

net-ssh 1.1.4 → 2.0.0

Files changed (297) hide show

data/CHANGELOG.rdoc +37 -0
data/Manifest +101 -0
data/README.rdoc +110 -0
data/Rakefile +26 -0
data/{THANKS → THANKS.rdoc} +2 -5
data/lib/net/ssh.rb +189 -57
data/lib/net/ssh/authentication/agent.rb +175 -0
data/lib/net/ssh/authentication/constants.rb +18 -0
data/lib/net/ssh/authentication/key_manager.rb +166 -0
data/lib/net/ssh/authentication/methods/abstract.rb +60 -0
data/lib/net/ssh/authentication/methods/hostbased.rb +71 -0
data/lib/net/ssh/authentication/methods/keyboard_interactive.rb +66 -0
data/lib/net/ssh/authentication/methods/password.rb +39 -0
data/lib/net/ssh/authentication/methods/publickey.rb +92 -0
data/lib/net/ssh/authentication/pageant.rb +176 -0
data/lib/net/ssh/authentication/session.rb +116 -0
data/lib/net/ssh/buffer.rb +339 -0
data/lib/net/ssh/buffered_io.rb +149 -0
data/lib/net/ssh/config.rb +173 -0
data/lib/net/ssh/connection/channel.rb +575 -454
data/lib/net/ssh/connection/constants.rb +31 -45
data/lib/net/ssh/connection/session.rb +569 -0
data/lib/net/ssh/connection/term.rb +176 -88
data/lib/net/ssh/errors.rb +83 -61
data/lib/net/ssh/key_factory.rb +85 -0
data/lib/net/ssh/known_hosts.rb +129 -0
data/lib/net/ssh/loggable.rb +61 -0
data/lib/net/ssh/packet.rb +102 -0
data/lib/net/ssh/prompt.rb +93 -0
data/lib/net/ssh/proxy/errors.rb +8 -28
data/lib/net/ssh/proxy/http.rb +75 -107
data/lib/net/ssh/proxy/socks4.rb +35 -48
data/lib/net/ssh/proxy/socks5.rb +76 -108
data/lib/net/ssh/service/forward.rb +267 -0
data/lib/net/ssh/test.rb +89 -0
data/lib/net/ssh/test/channel.rb +129 -0
data/lib/net/ssh/test/extensions.rb +152 -0
data/lib/net/ssh/test/kex.rb +44 -0
data/lib/net/ssh/test/local_packet.rb +51 -0
data/lib/net/ssh/test/packet.rb +81 -0
data/lib/net/ssh/test/remote_packet.rb +38 -0
data/lib/net/ssh/test/script.rb +157 -0
data/lib/net/ssh/test/socket.rb +59 -0
data/lib/net/ssh/transport/algorithms.rb +384 -0
data/lib/net/ssh/transport/cipher_factory.rb +72 -0
data/lib/net/ssh/transport/constants.rb +22 -58
data/lib/net/ssh/transport/hmac.rb +31 -0
data/lib/net/ssh/transport/hmac/abstract.rb +48 -0
data/lib/net/ssh/transport/hmac/md5.rb +12 -0
data/lib/net/ssh/transport/hmac/md5_96.rb +11 -0
data/lib/net/ssh/transport/hmac/none.rb +15 -0
data/lib/net/ssh/transport/hmac/sha1.rb +13 -0
data/lib/net/ssh/transport/hmac/sha1_96.rb +11 -0
data/lib/net/ssh/transport/identity_cipher.rb +40 -0
data/lib/net/ssh/transport/kex.rb +13 -0
data/lib/net/ssh/transport/kex/diffie_hellman_group1_sha1.rb +208 -0
data/lib/net/ssh/transport/kex/diffie_hellman_group_exchange_sha1.rb +77 -0
data/lib/net/ssh/{util → transport}/openssl.rb +22 -40
data/lib/net/ssh/transport/packet_stream.rb +230 -0
data/lib/net/ssh/transport/server_version.rb +61 -0
data/lib/net/ssh/transport/session.rb +225 -303
data/lib/net/ssh/transport/state.rb +170 -0
data/lib/net/ssh/verifiers/lenient.rb +30 -0
data/lib/net/ssh/verifiers/null.rb +12 -0
data/lib/net/ssh/verifiers/strict.rb +53 -0
data/lib/net/ssh/version.rb +57 -26
data/net-ssh.gemspec +54 -0
data/setup.rb +1585 -0
data/test/authentication/methods/common.rb +28 -0
data/test/authentication/methods/test_abstract.rb +51 -0
data/test/authentication/methods/test_hostbased.rb +108 -0
data/test/authentication/methods/test_keyboard_interactive.rb +98 -0
data/test/authentication/methods/test_password.rb +50 -0
data/test/authentication/methods/test_publickey.rb +123 -0
data/test/authentication/test_agent.rb +205 -0
data/test/authentication/test_key_manager.rb +100 -0
data/test/authentication/test_session.rb +93 -0
data/test/common.rb +106 -0
data/test/configs/exact_match +8 -0
data/test/configs/wild_cards +14 -0
data/test/connection/test_channel.rb +452 -0
data/test/connection/test_session.rb +483 -0
data/test/test_all.rb +6 -0
data/test/test_buffer.rb +336 -0
data/test/test_buffered_io.rb +63 -0
data/test/test_config.rb +78 -0
data/test/test_key_factory.rb +67 -0
data/test/transport/hmac/test_md5.rb +34 -0
data/test/transport/hmac/test_md5_96.rb +25 -0
data/test/transport/hmac/test_none.rb +34 -0
data/test/transport/hmac/test_sha1.rb +34 -0
data/test/transport/hmac/test_sha1_96.rb +25 -0
data/test/transport/kex/test_diffie_hellman_group1_sha1.rb +146 -0
data/test/transport/kex/test_diffie_hellman_group_exchange_sha1.rb +92 -0
data/test/transport/test_algorithms.rb +302 -0
data/test/transport/test_cipher_factory.rb +163 -0
data/test/transport/test_hmac.rb +34 -0
data/test/transport/test_identity_cipher.rb +40 -0
data/test/transport/test_packet_stream.rb +433 -0
data/test/transport/test_server_version.rb +55 -0
data/test/transport/test_session.rb +312 -0
data/test/transport/test_state.rb +173 -0
metadata +102 -253
data/ChangeLog +0 -560
data/LICENSE +0 -7
data/NEWS +0 -152
data/README +0 -14
data/bin/rb-keygen +0 -210
data/doc/LICENSE-BSD +0 -27
data/doc/LICENSE-GPL +0 -280
data/doc/LICENSE-RUBY +0 -56
data/doc/manual-html/chapter-1.html +0 -388
data/doc/manual-html/chapter-2.html +0 -552
data/doc/manual-html/chapter-3.html +0 -470
data/doc/manual-html/chapter-4.html +0 -413
data/doc/manual-html/chapter-5.html +0 -525
data/doc/manual-html/chapter-6.html +0 -456
data/doc/manual-html/chapter-7.html +0 -343
data/doc/manual-html/index.html +0 -235
data/doc/manual-html/stylesheets/manual.css +0 -270
data/doc/manual-html/stylesheets/ruby.css +0 -17
data/doc/manual/chapter.erb +0 -38
data/doc/manual/example.erb +0 -18
data/doc/manual/index.erb +0 -29
data/doc/manual/manual.rb +0 -311
data/doc/manual/manual.yml +0 -73
data/doc/manual/page.erb +0 -87
data/doc/manual/parts/0000.txt +0 -5
data/doc/manual/parts/0001.txt +0 -3
data/doc/manual/parts/0002.txt +0 -40
data/doc/manual/parts/0003.txt +0 -6
data/doc/manual/parts/0004.txt +0 -7
data/doc/manual/parts/0005.txt +0 -1
data/doc/manual/parts/0006.txt +0 -49
data/doc/manual/parts/0007.txt +0 -67
data/doc/manual/parts/0008.txt +0 -43
data/doc/manual/parts/0009.txt +0 -14
data/doc/manual/parts/0010.txt +0 -7
data/doc/manual/parts/0011.txt +0 -14
data/doc/manual/parts/0012.txt +0 -3
data/doc/manual/parts/0013.txt +0 -20
data/doc/manual/parts/0014.txt +0 -32
data/doc/manual/parts/0015.txt +0 -14
data/doc/manual/parts/0016.txt +0 -28
data/doc/manual/parts/0017.txt +0 -50
data/doc/manual/parts/0018.txt +0 -35
data/doc/manual/parts/0019.txt +0 -7
data/doc/manual/parts/0020.txt +0 -72
data/doc/manual/parts/0021.txt +0 -50
data/doc/manual/parts/0022.txt +0 -42
data/doc/manual/parts/0023.txt +0 -51
data/doc/manual/parts/0024.txt +0 -18
data/doc/manual/parts/0025.txt +0 -18
data/doc/manual/parts/0026.txt +0 -15
data/doc/manual/parts/0027.txt +0 -37
data/doc/manual/parts/0028.txt +0 -16
data/doc/manual/parts/0029.txt +0 -1
data/doc/manual/parts/0030.txt +0 -52
data/doc/manual/parts/0031.txt +0 -25
data/doc/manual/stylesheets/manual.css +0 -270
data/doc/manual/stylesheets/ruby.css +0 -17
data/doc/manual/tutorial.erb +0 -30
data/examples/auth-forward.rb +0 -41
data/examples/channel-demo.rb +0 -81
data/examples/port-forward.rb +0 -51
data/examples/process-demo.rb +0 -91
data/examples/remote-net-port-forward.rb +0 -45
data/examples/remote-port-forward.rb +0 -80
data/examples/shell-demo.rb +0 -46
data/examples/ssh-client.rb +0 -67
data/examples/sync-shell-demo.rb +0 -69
data/examples/tail-demo.rb +0 -49
data/lib/net/ssh/connection/driver.rb +0 -446
data/lib/net/ssh/connection/services.rb +0 -72
data/lib/net/ssh/host-key-verifier.rb +0 -52
data/lib/net/ssh/known-hosts.rb +0 -96
data/lib/net/ssh/lenient-host-key-verifier.rb +0 -25
data/lib/net/ssh/null-host-key-verifier.rb +0 -14
data/lib/net/ssh/service/agentforward/driver.rb +0 -78
data/lib/net/ssh/service/agentforward/services.rb +0 -41
data/lib/net/ssh/service/forward/driver.rb +0 -319
data/lib/net/ssh/service/forward/local-network-handler.rb +0 -71
data/lib/net/ssh/service/forward/remote-network-handler.rb +0 -83
data/lib/net/ssh/service/forward/services.rb +0 -76
data/lib/net/ssh/service/process/driver.rb +0 -153
data/lib/net/ssh/service/process/open.rb +0 -193
data/lib/net/ssh/service/process/popen3.rb +0 -178
data/lib/net/ssh/service/process/services.rb +0 -66
data/lib/net/ssh/service/services.rb +0 -60
data/lib/net/ssh/service/shell/driver.rb +0 -86
data/lib/net/ssh/service/shell/services.rb +0 -54
data/lib/net/ssh/service/shell/shell.rb +0 -222
data/lib/net/ssh/service/shell/sync.rb +0 -114
data/lib/net/ssh/session.rb +0 -305
data/lib/net/ssh/transport/algorithm-negotiator.rb +0 -275
data/lib/net/ssh/transport/compress/compressor.rb +0 -53
data/lib/net/ssh/transport/compress/decompressor.rb +0 -53
data/lib/net/ssh/transport/compress/none-compressor.rb +0 -39
data/lib/net/ssh/transport/compress/none-decompressor.rb +0 -39
data/lib/net/ssh/transport/compress/services.rb +0 -68
data/lib/net/ssh/transport/compress/zlib-compressor.rb +0 -60
data/lib/net/ssh/transport/compress/zlib-decompressor.rb +0 -52
data/lib/net/ssh/transport/errors.rb +0 -47
data/lib/net/ssh/transport/identity-cipher.rb +0 -61
data/lib/net/ssh/transport/kex/dh-gex.rb +0 -106
data/lib/net/ssh/transport/kex/dh.rb +0 -249
data/lib/net/ssh/transport/kex/services.rb +0 -62
data/lib/net/ssh/transport/ossl/buffer-factory.rb +0 -52
data/lib/net/ssh/transport/ossl/buffer.rb +0 -87
data/lib/net/ssh/transport/ossl/cipher-factory.rb +0 -98
data/lib/net/ssh/transport/ossl/digest-factory.rb +0 -51
data/lib/net/ssh/transport/ossl/hmac-factory.rb +0 -71
data/lib/net/ssh/transport/ossl/hmac/hmac.rb +0 -62
data/lib/net/ssh/transport/ossl/hmac/md5-96.rb +0 -44
data/lib/net/ssh/transport/ossl/hmac/md5.rb +0 -46
data/lib/net/ssh/transport/ossl/hmac/none.rb +0 -46
data/lib/net/ssh/transport/ossl/hmac/services.rb +0 -68
data/lib/net/ssh/transport/ossl/hmac/sha1-96.rb +0 -44
data/lib/net/ssh/transport/ossl/hmac/sha1.rb +0 -45
data/lib/net/ssh/transport/ossl/key-factory.rb +0 -116
data/lib/net/ssh/transport/ossl/services.rb +0 -149
data/lib/net/ssh/transport/packet-stream.rb +0 -236
data/lib/net/ssh/transport/services.rb +0 -146
data/lib/net/ssh/transport/version-negotiator.rb +0 -73
data/lib/net/ssh/userauth/agent.rb +0 -222
data/lib/net/ssh/userauth/constants.rb +0 -35
data/lib/net/ssh/userauth/driver.rb +0 -183
data/lib/net/ssh/userauth/methods/hostbased.rb +0 -119
data/lib/net/ssh/userauth/methods/keyboard-interactive.rb +0 -104
data/lib/net/ssh/userauth/methods/password.rb +0 -70
data/lib/net/ssh/userauth/methods/publickey.rb +0 -137
data/lib/net/ssh/userauth/methods/services.rb +0 -90
data/lib/net/ssh/userauth/pageant.rb +0 -197
data/lib/net/ssh/userauth/services.rb +0 -141
data/lib/net/ssh/userauth/userkeys.rb +0 -258
data/lib/net/ssh/util/buffer.rb +0 -274
data/lib/net/ssh/util/prompter.rb +0 -73
data/test/ALL-TESTS.rb +0 -18
data/test/connection/tc_channel.rb +0 -136
data/test/connection/tc_driver.rb +0 -287
data/test/connection/tc_integration.rb +0 -87
data/test/proxy/tc_http.rb +0 -209
data/test/proxy/tc_socks4.rb +0 -148
data/test/proxy/tc_socks5.rb +0 -214
data/test/service/agentforward/tc_driver.rb +0 -138
data/test/service/forward/tc_driver.rb +0 -289
data/test/service/forward/tc_local_network_handler.rb +0 -123
data/test/service/forward/tc_remote_network_handler.rb +0 -111
data/test/service/process/tc_driver.rb +0 -79
data/test/service/process/tc_integration.rb +0 -119
data/test/service/process/tc_open.rb +0 -179
data/test/service/process/tc_popen3.rb +0 -164
data/test/tc_integration.rb +0 -80
data/test/transport/compress/tc_none_compress.rb +0 -41
data/test/transport/compress/tc_none_decompress.rb +0 -45
data/test/transport/compress/tc_zlib_compress.rb +0 -61
data/test/transport/compress/tc_zlib_decompress.rb +0 -48
data/test/transport/kex/tc_dh.rb +0 -312
data/test/transport/kex/tc_dh_gex.rb +0 -71
data/test/transport/ossl/fixtures/dsa-encrypted +0 -15
data/test/transport/ossl/fixtures/dsa-encrypted-bad +0 -15
data/test/transport/ossl/fixtures/dsa-unencrypted +0 -12
data/test/transport/ossl/fixtures/dsa-unencrypted-bad +0 -12
data/test/transport/ossl/fixtures/dsa-unencrypted.pub +0 -1
data/test/transport/ossl/fixtures/not-a-private-key +0 -4
data/test/transport/ossl/fixtures/not-supported +0 -2
data/test/transport/ossl/fixtures/rsa-encrypted +0 -18
data/test/transport/ossl/fixtures/rsa-encrypted-bad +0 -18
data/test/transport/ossl/fixtures/rsa-unencrypted +0 -15
data/test/transport/ossl/fixtures/rsa-unencrypted-bad +0 -15
data/test/transport/ossl/fixtures/rsa-unencrypted.pub +0 -1
data/test/transport/ossl/hmac/tc_hmac.rb +0 -58
data/test/transport/ossl/hmac/tc_md5.rb +0 -50
data/test/transport/ossl/hmac/tc_md5_96.rb +0 -50
data/test/transport/ossl/hmac/tc_none.rb +0 -50
data/test/transport/ossl/hmac/tc_sha1.rb +0 -50
data/test/transport/ossl/hmac/tc_sha1_96.rb +0 -50
data/test/transport/ossl/tc_buffer.rb +0 -97
data/test/transport/ossl/tc_buffer_factory.rb +0 -67
data/test/transport/ossl/tc_cipher_factory.rb +0 -84
data/test/transport/ossl/tc_digest_factory.rb +0 -39
data/test/transport/ossl/tc_hmac_factory.rb +0 -72
data/test/transport/ossl/tc_key_factory.rb +0 -199
data/test/transport/tc_algorithm_negotiator.rb +0 -170
data/test/transport/tc_identity_cipher.rb +0 -52
data/test/transport/tc_integration.rb +0 -115
data/test/transport/tc_packet_stream.rb +0 -184
data/test/transport/tc_session.rb +0 -296
data/test/transport/tc_version_negotiator.rb +0 -86
data/test/userauth/methods/tc_hostbased.rb +0 -136
data/test/userauth/methods/tc_password.rb +0 -89
data/test/userauth/methods/tc_publickey.rb +0 -167
data/test/userauth/tc_agent.rb +0 -223
data/test/userauth/tc_driver.rb +0 -190
data/test/userauth/tc_integration.rb +0 -97
data/test/userauth/tc_userkeys.rb +0 -265
data/test/util/tc_buffer.rb +0 -217

data/test/authentication/methods/common.rb ADDED

@@ -0,0 +1,28 @@
+module Authentication; module Methods
+  module Common
+    include Net::SSH::Authentication::Constants
+    private
+      def socket(options={})
+        @socket ||= stub("socket", :client_name => "me.ssh.test")
+      end
+      def transport(options={})
+        @transport ||= MockTransport.new(options.merge(:socket => socket))
+      end
+      def session(options={})
+        @session ||= begin
+          sess = stub("auth-session", :logger => nil, :transport => transport(options))
+          def sess.next_message
+            transport.next_message
+          end
+          sess
+        end
+      end
+  end
+end; end

data/test/authentication/methods/test_abstract.rb ADDED

@@ -0,0 +1,51 @@
+require 'common'
+require 'authentication/methods/common'
+require 'net/ssh/authentication/methods/abstract'
+module Authentication; module Methods
+  class TestAbstract < Test::Unit::TestCase
+    include Common
+    def test_constructor_should_set_defaults
+      assert_nil subject.key_manager
+    end
+    def test_constructor_should_honor_options
+      assert_equal :manager, subject(:key_manager => :manager).key_manager
+    end
+    def test_session_id_should_query_session_id_from_key_exchange
+      transport.stubs(:algorithms).returns(stub("algorithms", :session_id => "abcxyz123"))
+      assert_equal "abcxyz123", subject.session_id
+    end
+    def test_send_message_should_delegate_to_transport
+      transport.expects(:send_message).with("abcxyz123")
+      subject.send_message("abcxyz123")
+    end
+    def test_userauth_request_should_build_well_formed_userauth_packet
+      packet = subject.userauth_request("jamis", "ssh-connection", "password")
+      assert_equal "\062\0\0\0\005jamis\0\0\0\016ssh-connection\0\0\0\010password", packet.to_s
+    end
+    def test_userauth_request_should_translate_extra_booleans_onto_end
+      packet = subject.userauth_request("jamis", "ssh-connection", "password", true, false)
+      assert_equal "\062\0\0\0\005jamis\0\0\0\016ssh-connection\0\0\0\010password\1\0", packet.to_s
+    end
+    def test_userauth_request_should_translate_extra_strings_onto_end
+      packet = subject.userauth_request("jamis", "ssh-connection", "password", "foo", "bar")
+      assert_equal "\062\0\0\0\005jamis\0\0\0\016ssh-connection\0\0\0\010password\0\0\0\3foo\0\0\0\3bar", packet.to_s
+    end
+    private
+      def subject(options={})
+        @subject ||= Net::SSH::Authentication::Methods::Abstract.new(session(options), options)
+      end
+  end
+end; end

data/test/authentication/methods/test_hostbased.rb ADDED

@@ -0,0 +1,108 @@
+require 'common'
+require 'net/ssh/authentication/methods/hostbased'
+require 'authentication/methods/common'
+module Authentication; module Methods
+  class TestHostbased < Test::Unit::TestCase
+    include Common
+    def test_authenticate_should_return_false_when_no_key_manager_has_been_set
+      assert_equal false, subject(:key_manager => nil).authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_false_when_key_manager_has_no_keys
+      assert_equal false, subject(:keys => []).authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_false_if_no_keys_can_authenticate
+      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
+      key_manager.expects(:sign).with(&signature_parameters(keys.last)).returns("sig-two")
+      transport.expect do |t, packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert verify_userauth_request_packet(packet, keys.first)
+        assert_equal "sig-one", packet.read_string
+        t.return(USERAUTH_FAILURE, :string, "hostbased,password")
+        t.expect do |t, packet|
+          assert_equal USERAUTH_REQUEST, packet.type
+          assert verify_userauth_request_packet(packet, keys.last)
+          assert_equal "sig-two", packet.read_string
+          t.return(USERAUTH_FAILURE, :string, "hostbased,password")
+        end
+      end
+      assert_equal false, subject.authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_true_if_any_key_can_authenticate
+      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
+      transport.expect do |t, packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert verify_userauth_request_packet(packet, keys.first)
+        assert_equal "sig-one", packet.read_string
+        t.return(USERAUTH_SUCCESS)
+      end
+      assert subject.authenticate("ssh-connection", "jamis")
+    end
+    private
+      def signature_parameters(key)
+        Proc.new do |given_key, data|
+          next false unless given_key.to_blob == key.to_blob
+          buffer = Net::SSH::Buffer.new(data)
+          buffer.read_string == "abcxyz123"      && # session-id
+          buffer.read_byte   == USERAUTH_REQUEST && # type
+          verify_userauth_request_packet(buffer, key)
+        end
+      end
+      def verify_userauth_request_packet(packet, key)
+        packet.read_string == "jamis"          && # user-name
+        packet.read_string == "ssh-connection" && # next service
+        packet.read_string == "hostbased"      && # auth-method
+        packet.read_string == key.ssh_type     && # key type
+        packet.read_buffer.read_key.to_blob == key.to_blob && # key
+        packet.read_string == "me.ssh.test."   && # client hostname
+        packet.read_string == "jamis"             # client username
+      end
+      @@keys = nil
+      def keys
+        @@keys ||= [OpenSSL::PKey::RSA.new(32), OpenSSL::PKey::DSA.new(32)]
+      end
+      def key_manager(options={})
+        @key_manager ||= stub("key_manager", :identities => options[:keys] || keys)
+      end
+      def subject(options={})
+        options[:key_manager] = key_manager(options) unless options.key?(:key_manager)
+        @subject ||= Net::SSH::Authentication::Methods::Hostbased.new(session(options), options)
+      end
+      def socket(options={})
+        @socket ||= stub("socket", :client_name => "me.ssh.test")
+      end
+      def transport(options={})
+        @transport ||= MockTransport.new(options.merge(:socket => socket))
+      end
+      def session(options={})
+        @session ||= begin
+          sess = stub("auth-session", :logger => nil, :transport => transport(options))
+          def sess.next_message
+            transport.next_message
+          end
+          sess
+        end
+      end
+  end
+end; end

data/test/authentication/methods/test_keyboard_interactive.rb ADDED

@@ -0,0 +1,98 @@
+require 'common'
+require 'net/ssh/authentication/methods/keyboard_interactive'
+require 'authentication/methods/common'
+module Authentication; module Methods
+  class TestKeyboardInteractive < Test::Unit::TestCase
+    include Common
+    USERAUTH_INFO_REQUEST  = 60
+    USERAUTH_INFO_RESPONSE = 61
+    def test_authenticate_should_be_false_when_server_does_not_support_this_method
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert_equal "jamis", packet.read_string
+        assert_equal "ssh-connection", packet.read_string
+        assert_equal "keyboard-interactive", packet.read_string
+        assert_equal "", packet.read_string # language tags
+        assert_equal "", packet.read_string # submethods
+        t.return(USERAUTH_FAILURE, :string, "password")
+      end
+      assert_equal false, subject.authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_be_false_if_given_password_is_not_accepted
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 1, :string, "Password:", :bool, false)
+        t.expect do |t,packet|
+          assert_equal USERAUTH_INFO_RESPONSE, packet.type
+          assert_equal 1, packet.read_long
+          assert_equal "the-password", packet.read_string
+          t.return(USERAUTH_FAILURE, :string, "publickey")
+        end
+      end
+      assert_equal false, subject.authenticate("ssh-connection", "jamis", "the-password")
+    end
+    def test_authenticate_should_be_true_if_given_password_is_accepted
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 1, :string, "Password:", :bool, false)
+        t.expect do |t,packet|
+          assert_equal USERAUTH_INFO_RESPONSE, packet.type
+          t.return(USERAUTH_SUCCESS)
+        end
+      end
+      assert subject.authenticate("ssh-connection", "jamis", "the-password")
+    end
+    def test_authenticate_should_duplicate_password_as_needed_to_fill_request
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 2, :string, "Password:", :bool, false, :string, "Again:", :bool, false)
+        t.expect do |t,packet|
+          assert_equal USERAUTH_INFO_RESPONSE, packet.type
+          assert_equal 2, packet.read_long
+          assert_equal "the-password", packet.read_string
+          assert_equal "the-password", packet.read_string
+          t.return(USERAUTH_SUCCESS)
+        end
+      end
+      assert subject.authenticate("ssh-connection", "jamis", "the-password")
+    end
+    def test_authenticate_should_prompt_for_input_when_password_is_not_given
+      subject.expects(:prompt).with("Name:", true).returns("name")
+      subject.expects(:prompt).with("Password:", false).returns("password")
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 2, :string, "Name:", :bool, true, :string, "Password:", :bool, false)
+        t.expect do |t,packet|
+          assert_equal USERAUTH_INFO_RESPONSE, packet.type
+          assert_equal 2, packet.read_long
+          assert_equal "name", packet.read_string
+          assert_equal "password", packet.read_string
+          t.return(USERAUTH_SUCCESS)
+        end
+      end
+      assert subject.authenticate("ssh-connection", "jamis", nil)
+    end
+    private
+      def subject(options={})
+        @subject ||= Net::SSH::Authentication::Methods::KeyboardInteractive.new(session(options), options)
+      end
+  end
+end; end

data/test/authentication/methods/test_password.rb ADDED

@@ -0,0 +1,50 @@
+require 'common'
+require 'net/ssh/authentication/methods/password'
+require 'authentication/methods/common'
+module Authentication; module Methods
+  class TestPassword < Test::Unit::TestCase
+    include Common
+    def test_authenticate_when_password_is_unacceptible_should_return_false
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert_equal "jamis", packet.read_string
+        assert_equal "ssh-connection", packet.read_string
+        assert_equal "password", packet.read_string
+        assert_equal false, packet.read_bool
+        assert_equal "the-password", packet.read_string
+        t.return(USERAUTH_FAILURE, :string, "publickey")
+      end
+      assert !subject.authenticate("ssh-connection", "jamis", "the-password")
+    end
+    def test_authenticate_when_password_is_acceptible_should_return_true
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        t.return(USERAUTH_SUCCESS)
+      end
+      assert subject.authenticate("ssh-connection", "jamis", "the-password")
+    end
+    def test_authenticate_should_return_false_if_password_change_request_is_received
+      transport.expect do |t,packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        t.return(USERAUTH_PASSWD_CHANGEREQ, :string, "Change your password:", :string, "")
+      end
+      assert !subject.authenticate("ssh-connection", "jamis", "the-password")
+    end
+    private
+      def subject(options={})
+        @subject ||= Net::SSH::Authentication::Methods::Password.new(session(options), options)
+      end
+  end
+end; end

data/test/authentication/methods/test_publickey.rb ADDED

@@ -0,0 +1,123 @@
+require 'common'
+require 'net/ssh/authentication/methods/publickey'
+require 'authentication/methods/common'
+module Authentication; module Methods
+  class TestPublickey < Test::Unit::TestCase
+    include Common
+    def test_authenticate_should_return_false_when_no_key_manager_has_been_set
+      assert_equal false, subject(:key_manager => nil).authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_false_when_key_manager_has_no_keys
+      assert_equal false, subject(:keys => []).authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_false_if_no_keys_can_authenticate
+      transport.expect do |t, packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert verify_userauth_request_packet(packet, keys.first, false)
+        t.return(USERAUTH_FAILURE, :string, "hostbased,password")
+        t.expect do |t, packet|
+          assert_equal USERAUTH_REQUEST, packet.type
+          assert verify_userauth_request_packet(packet, keys.last, false)
+          t.return(USERAUTH_FAILURE, :string, "hostbased,password")
+        end
+      end
+      assert_equal false, subject.authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_false_if_signature_exchange_fails
+      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
+      key_manager.expects(:sign).with(&signature_parameters(keys.last)).returns("sig-two")
+      transport.expect do |t, packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert verify_userauth_request_packet(packet, keys.first, false)
+        t.return(USERAUTH_PK_OK, :string, keys.first.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.first))
+        t.expect do |t,packet|
+          assert_equal USERAUTH_REQUEST, packet.type
+          assert verify_userauth_request_packet(packet, keys.first, true)
+          assert_equal "sig-one", packet.read_string
+          t.return(USERAUTH_FAILURE, :string, "hostbased,password")
+          t.expect do |t, packet|
+            assert_equal USERAUTH_REQUEST, packet.type
+            assert verify_userauth_request_packet(packet, keys.last, false)
+            t.return(USERAUTH_PK_OK, :string, keys.last.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.last))
+            t.expect do |t,packet|
+              assert_equal USERAUTH_REQUEST, packet.type
+              assert verify_userauth_request_packet(packet, keys.last, true)
+              assert_equal "sig-two", packet.read_string
+              t.return(USERAUTH_FAILURE, :string, "hostbased,password")
+            end
+          end
+        end
+      end
+      assert !subject.authenticate("ssh-connection", "jamis")
+    end
+    def test_authenticate_should_return_true_if_any_key_can_authenticate
+      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
+      transport.expect do |t, packet|
+        assert_equal USERAUTH_REQUEST, packet.type
+        assert verify_userauth_request_packet(packet, keys.first, false)
+        t.return(USERAUTH_PK_OK, :string, keys.first.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.first))
+        t.expect do |t,packet|
+          assert_equal USERAUTH_REQUEST, packet.type
+          assert verify_userauth_request_packet(packet, keys.first, true)
+          assert_equal "sig-one", packet.read_string
+          t.return(USERAUTH_SUCCESS)
+        end
+      end
+      assert subject.authenticate("ssh-connection", "jamis")
+    end
+    private
+      def signature_parameters(key)
+        Proc.new do |given_key, data|
+          next false unless given_key.to_blob == key.to_blob
+          buffer = Net::SSH::Buffer.new(data)
+          buffer.read_string == "abcxyz123"      && # session-id
+          buffer.read_byte   == USERAUTH_REQUEST && # type
+          verify_userauth_request_packet(buffer, key, true)
+        end
+      end
+      def verify_userauth_request_packet(packet, key, has_sig)
+        packet.read_string == "jamis"          && # user-name
+        packet.read_string == "ssh-connection" && # next service
+        packet.read_string == "publickey"      && # auth-method
+        packet.read_bool   == has_sig          && # whether a signature is appended
+        packet.read_string == key.ssh_type     && # ssh key type
+        packet.read_buffer.read_key.to_blob == key.to_blob # key
+      end
+      @@keys = nil
+      def keys
+        @@keys ||= [OpenSSL::PKey::RSA.new(32), OpenSSL::PKey::DSA.new(32)]
+      end
+      def key_manager(options={})
+        @key_manager ||= stub("key_manager", :identities => options[:keys] || keys)
+      end
+      def subject(options={})
+        options[:key_manager] = key_manager(options) unless options.key?(:key_manager)
+        @subject ||= Net::SSH::Authentication::Methods::Publickey.new(session(options), options)
+      end
+  end
+end; end