RubyGems - net-ssh - Versions diffs - 2.9.2 → 4.0.0 - Mend

net-ssh 2.9.2 → 4.0.0

Files changed (138) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data/.gitignore +6 -0
data/.rubocop.yml +5 -0
data/.rubocop_todo.yml +1129 -0
data/.travis.yml +41 -5
data/CHANGES.txt +133 -1
data/Gemfile +13 -0
data/Gemfile.norbnacl +10 -0
data/Gemfile.norbnacl.lock +41 -0
data/ISSUE_TEMPLATE.md +30 -0
data/README.rdoc +26 -81
data/Rakefile +63 -45
data/appveyor.yml +51 -0
data/lib/net/ssh/authentication/agent.rb +174 -14
data/lib/net/ssh/authentication/ed25519.rb +137 -0
data/lib/net/ssh/authentication/ed25519_loader.rb +21 -0
data/lib/net/ssh/authentication/key_manager.rb +36 -30
data/lib/net/ssh/authentication/methods/abstract.rb +4 -0
data/lib/net/ssh/authentication/methods/keyboard_interactive.rb +16 -9
data/lib/net/ssh/authentication/methods/password.rb +17 -4
data/lib/net/ssh/authentication/pageant.rb +166 -45
data/lib/net/ssh/authentication/session.rb +3 -2
data/lib/net/ssh/buffer.rb +49 -10
data/lib/net/ssh/buffered_io.rb +17 -12
data/lib/net/ssh/config.rb +39 -8
data/lib/net/ssh/connection/channel.rb +42 -20
data/lib/net/ssh/connection/event_loop.rb +114 -0
data/lib/net/ssh/connection/keepalive.rb +2 -2
data/lib/net/ssh/connection/session.rb +120 -34
data/lib/net/ssh/errors.rb +6 -6
data/lib/net/ssh/key_factory.rb +49 -43
data/lib/net/ssh/known_hosts.rb +49 -3
data/lib/net/ssh/prompt.rb +47 -78
data/lib/net/ssh/proxy/command.rb +31 -5
data/lib/net/ssh/proxy/http.rb +15 -11
data/lib/net/ssh/proxy/https.rb +49 -0
data/lib/net/ssh/proxy/socks4.rb +2 -1
data/lib/net/ssh/proxy/socks5.rb +3 -2
data/lib/net/ssh/ruby_compat.rb +2 -29
data/lib/net/ssh/service/forward.rb +2 -2
data/lib/net/ssh/test/channel.rb +7 -0
data/lib/net/ssh/test/extensions.rb +17 -0
data/lib/net/ssh/test/kex.rb +4 -4
data/lib/net/ssh/test/packet.rb +18 -2
data/lib/net/ssh/test/script.rb +16 -2
data/lib/net/ssh/test/socket.rb +1 -1
data/lib/net/ssh/test.rb +5 -5
data/lib/net/ssh/transport/algorithms.rb +92 -75
data/lib/net/ssh/transport/cipher_factory.rb +19 -26
data/lib/net/ssh/transport/ctr.rb +7 -9
data/lib/net/ssh/transport/kex/diffie_hellman_group1_sha1.rb +20 -9
data/lib/net/ssh/transport/kex/diffie_hellman_group_exchange_sha1.rb +5 -3
data/lib/net/ssh/transport/kex/ecdh_sha2_nistp256.rb +1 -1
data/lib/net/ssh/transport/key_expander.rb +1 -0
data/lib/net/ssh/transport/openssl.rb +1 -1
data/lib/net/ssh/transport/packet_stream.rb +11 -3
data/lib/net/ssh/transport/server_version.rb +13 -6
data/lib/net/ssh/transport/session.rb +20 -10
data/lib/net/ssh/transport/state.rb +1 -1
data/lib/net/ssh/verifiers/secure.rb +8 -10
data/lib/net/ssh/version.rb +4 -4
data/lib/net/ssh.rb +62 -14
data/net-ssh-public_cert.pem +19 -18
data/net-ssh.gemspec +34 -194
data/support/arcfour_check.rb +1 -1
data/support/ssh_tunnel_bug.rb +1 -1
data.tar.gz.sig +0 -0
metadata +125 -109
metadata.gz.sig +0 -0
data/Rudyfile +0 -96
data/lib/net/ssh/authentication/agent/java_pageant.rb +0 -85
data/lib/net/ssh/authentication/agent/socket.rb +0 -178
data/setup.rb +0 -1585
data/test/README.txt +0 -47
data/test/authentication/methods/common.rb +0 -28
data/test/authentication/methods/test_abstract.rb +0 -51
data/test/authentication/methods/test_hostbased.rb +0 -114
data/test/authentication/methods/test_keyboard_interactive.rb +0 -100
data/test/authentication/methods/test_none.rb +0 -41
data/test/authentication/methods/test_password.rb +0 -95
data/test/authentication/methods/test_publickey.rb +0 -148
data/test/authentication/test_agent.rb +0 -224
data/test/authentication/test_key_manager.rb +0 -227
data/test/authentication/test_session.rb +0 -107
data/test/common.rb +0 -108
data/test/configs/auth_off +0 -5
data/test/configs/auth_on +0 -4
data/test/configs/empty +0 -0
data/test/configs/eqsign +0 -3
data/test/configs/exact_match +0 -8
data/test/configs/host_plus +0 -10
data/test/configs/multihost +0 -4
data/test/configs/negative_match +0 -6
data/test/configs/nohost +0 -19
data/test/configs/numeric_host +0 -4
data/test/configs/send_env +0 -2
data/test/configs/substitutes +0 -8
data/test/configs/wild_cards +0 -14
data/test/connection/test_channel.rb +0 -467
data/test/connection/test_session.rb +0 -543
data/test/known_hosts/github +0 -1
data/test/manual/test_forward.rb +0 -285
data/test/manual/test_pageant.rb +0 -37
data/test/start/test_connection.rb +0 -53
data/test/start/test_options.rb +0 -43
data/test/start/test_transport.rb +0 -28
data/test/test_all.rb +0 -11
data/test/test_buffer.rb +0 -433
data/test/test_buffered_io.rb +0 -63
data/test/test_config.rb +0 -221
data/test/test_key_factory.rb +0 -191
data/test/test_known_hosts.rb +0 -13
data/test/transport/hmac/test_md5.rb +0 -41
data/test/transport/hmac/test_md5_96.rb +0 -27
data/test/transport/hmac/test_none.rb +0 -34
data/test/transport/hmac/test_ripemd160.rb +0 -36
data/test/transport/hmac/test_sha1.rb +0 -36
data/test/transport/hmac/test_sha1_96.rb +0 -27
data/test/transport/hmac/test_sha2_256.rb +0 -37
data/test/transport/hmac/test_sha2_256_96.rb +0 -27
data/test/transport/hmac/test_sha2_512.rb +0 -37
data/test/transport/hmac/test_sha2_512_96.rb +0 -27
data/test/transport/kex/test_diffie_hellman_group14_sha1.rb +0 -13
data/test/transport/kex/test_diffie_hellman_group1_sha1.rb +0 -146
data/test/transport/kex/test_diffie_hellman_group_exchange_sha1.rb +0 -92
data/test/transport/kex/test_diffie_hellman_group_exchange_sha256.rb +0 -34
data/test/transport/kex/test_ecdh_sha2_nistp256.rb +0 -161
data/test/transport/kex/test_ecdh_sha2_nistp384.rb +0 -38
data/test/transport/kex/test_ecdh_sha2_nistp521.rb +0 -38
data/test/transport/test_algorithms.rb +0 -324
data/test/transport/test_cipher_factory.rb +0 -443
data/test/transport/test_hmac.rb +0 -34
data/test/transport/test_identity_cipher.rb +0 -40
data/test/transport/test_packet_stream.rb +0 -1761
data/test/transport/test_server_version.rb +0 -78
data/test/transport/test_session.rb +0 -331
data/test/transport/test_state.rb +0 -181

data/test/README.txt DELETED Viewed

@@ -1,47 +0,0 @@
-2011-01-19
-RUNNING TESTS
-Run the test suite from the net-ssh directory with the following command:
-     ruby -Ilib -Itest -rrubygems test/test_all.rb
-Run a single test file like this:
-     ruby -Ilib -Itest -rrubygems test/transport/test_server_version.rb
-EXPECTED RESULTS
-* Ruby 1.9: all tests pass
-* Ruby 1.8: all tests pass (up until version 2.5)
-* JRuby 1.7: 98% test pass (510 tests, 1914 assertions, 2 failures, 9 errors)
-* JRuby 1.6: 98% test pass (510 tests, 1914 assertions, 4 failures, 5 errors)
-* JRuby 1.5: 98% tests pass (510 tests, 1914 assertions, 5 failures, 5 errors)
-PORT FORWARDING TESTS
-     ruby -Ilib -Itest -rrubygems test/manual/test_forward.rb
-test_forward.rb must be run separately from the test suite because
-it requires authorizing your public SSH keys on you localhost.
-If you already have keys you can do this:
-     cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
-If you don't have keys see:
-     http://kimmo.suominen.com/docs/ssh/#ssh-keygen
-You should now be able to login to your localhost with out
-bring prompted for a password:
-     ssh localhost
--Delano

data/test/authentication/methods/common.rb DELETED Viewed

@@ -1,28 +0,0 @@
-module Authentication; module Methods
-  module Common
-    include Net::SSH::Authentication::Constants
-    private
-      def socket(options={})
-        @socket ||= stub("socket", :client_name => "me.ssh.test")
-      end
-      def transport(options={})
-        @transport ||= MockTransport.new(options.merge(:socket => socket))
-      end
-      def session(options={})
-        @session ||= begin
-          sess = stub("auth-session", :logger => nil, :transport => transport(options))
-          def sess.next_message
-            transport.next_message
-          end
-          sess
-        end
-      end
-  end
-end; end

data/test/authentication/methods/test_abstract.rb DELETED Viewed

@@ -1,51 +0,0 @@
-require 'common'
-require 'authentication/methods/common'
-require 'net/ssh/authentication/methods/abstract'
-module Authentication; module Methods
-  class TestAbstract < Test::Unit::TestCase
-    include Common
-    def test_constructor_should_set_defaults
-      assert_nil subject.key_manager
-    end
-    def test_constructor_should_honor_options
-      assert_equal :manager, subject(:key_manager => :manager).key_manager
-    end
-    def test_session_id_should_query_session_id_from_key_exchange
-      transport.stubs(:algorithms).returns(stub("algorithms", :session_id => "abcxyz123"))
-      assert_equal "abcxyz123", subject.session_id
-    end
-    def test_send_message_should_delegate_to_transport
-      transport.expects(:send_message).with("abcxyz123")
-      subject.send_message("abcxyz123")
-    end
-    def test_userauth_request_should_build_well_formed_userauth_packet
-      packet = subject.userauth_request("jamis", "ssh-connection", "password")
-      assert_equal "\062\0\0\0\005jamis\0\0\0\016ssh-connection\0\0\0\010password", packet.to_s
-    end
-    def test_userauth_request_should_translate_extra_booleans_onto_end
-      packet = subject.userauth_request("jamis", "ssh-connection", "password", true, false)
-      assert_equal "\062\0\0\0\005jamis\0\0\0\016ssh-connection\0\0\0\010password\1\0", packet.to_s
-    end
-    def test_userauth_request_should_translate_extra_strings_onto_end
-      packet = subject.userauth_request("jamis", "ssh-connection", "password", "foo", "bar")
-      assert_equal "\062\0\0\0\005jamis\0\0\0\016ssh-connection\0\0\0\010password\0\0\0\3foo\0\0\0\3bar", packet.to_s
-    end
-    private
-      def subject(options={})
-        @subject ||= Net::SSH::Authentication::Methods::Abstract.new(session(options), options)
-      end
-  end
-end; end

data/test/authentication/methods/test_hostbased.rb DELETED Viewed

@@ -1,114 +0,0 @@
-require 'common'
-require 'net/ssh/authentication/methods/hostbased'
-require 'authentication/methods/common'
-module Authentication; module Methods
-  class TestHostbased < Test::Unit::TestCase
-    include Common
-    def test_authenticate_should_return_false_when_no_key_manager_has_been_set
-      assert_equal false, subject(:key_manager => nil).authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_return_false_when_key_manager_has_no_keys
-      assert_equal false, subject(:keys => []).authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_return_false_if_no_keys_can_authenticate
-      ENV.stubs(:[]).with('USER').returns(nil)
-      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
-      key_manager.expects(:sign).with(&signature_parameters(keys.last)).returns("sig-two")
-      transport.expect do |t, packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert verify_userauth_request_packet(packet, keys.first)
-        assert_equal "sig-one", packet.read_string
-        t.return(USERAUTH_FAILURE, :string, "hostbased,password")
-        t.expect do |t2, packet2|
-          assert_equal USERAUTH_REQUEST, packet2.type
-          assert verify_userauth_request_packet(packet2, keys.last)
-          assert_equal "sig-two", packet2.read_string
-          t2.return(USERAUTH_FAILURE, :string, "hostbased,password")
-        end
-      end
-      assert_equal false, subject.authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_return_true_if_any_key_can_authenticate
-      ENV.stubs(:[]).with('USER').returns(nil)
-      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
-      transport.expect do |t, packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert verify_userauth_request_packet(packet, keys.first)
-        assert_equal "sig-one", packet.read_string
-        t.return(USERAUTH_SUCCESS)
-      end
-      assert subject.authenticate("ssh-connection", "jamis")
-    end
-    private
-      def signature_parameters(key)
-        Proc.new do |given_key, data|
-          next false unless given_key.to_blob == key.to_blob
-          buffer = Net::SSH::Buffer.new(data)
-          buffer.read_string == "abcxyz123"      && # session-id
-          buffer.read_byte   == USERAUTH_REQUEST && # type
-          verify_userauth_request_packet(buffer, key)
-        end
-      end
-      def verify_userauth_request_packet(packet, key)
-        packet.read_string == "jamis"          && # user-name
-        packet.read_string == "ssh-connection" && # next service
-        packet.read_string == "hostbased"      && # auth-method
-        packet.read_string == key.ssh_type     && # key type
-        packet.read_buffer.read_key.to_blob == key.to_blob && # key
-        packet.read_string == "me.ssh.test."   && # client hostname
-        packet.read_string == "jamis"             # client username
-      end
-      @@keys = nil
-      def keys
-        @@keys ||= [OpenSSL::PKey::RSA.new(512), OpenSSL::PKey::DSA.new(512)]
-      end
-      def key_manager(options={})
-        @key_manager ||= begin
-          manager = stub("key_manager")
-          manager.stubs(:each_identity).multiple_yields(*(options[:keys] || keys))
-          manager
-        end
-      end
-      def subject(options={})
-        options[:key_manager] = key_manager(options) unless options.key?(:key_manager)
-        @subject ||= Net::SSH::Authentication::Methods::Hostbased.new(session(options), options)
-      end
-      def socket(options={})
-        @socket ||= stub("socket", :client_name => "me.ssh.test")
-      end
-      def transport(options={})
-        @transport ||= MockTransport.new(options.merge(:socket => socket))
-      end
-      def session(options={})
-        @session ||= begin
-          sess = stub("auth-session", :logger => nil, :transport => transport(options))
-          def sess.next_message
-            transport.next_message
-          end
-          sess
-        end
-      end
-  end
-end; end

data/test/authentication/methods/test_keyboard_interactive.rb DELETED Viewed

@@ -1,100 +0,0 @@
-require 'common'
-require 'net/ssh/authentication/methods/keyboard_interactive'
-require 'authentication/methods/common'
-module Authentication; module Methods
-  class TestKeyboardInteractive < Test::Unit::TestCase
-    include Common
-    USERAUTH_INFO_REQUEST  = 60
-    USERAUTH_INFO_RESPONSE = 61
-    def test_authenticate_should_raise_if_keyboard_interactive_disallowed
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert_equal "jamis", packet.read_string
-        assert_equal "ssh-connection", packet.read_string
-        assert_equal "keyboard-interactive", packet.read_string
-        assert_equal "", packet.read_string # language tags
-        assert_equal "", packet.read_string # submethods
-        t.return(USERAUTH_FAILURE, :string, "password")
-      end
-      assert_raises Net::SSH::Authentication::DisallowedMethod do
-        subject.authenticate("ssh-connection", "jamis")
-      end
-    end
-    def test_authenticate_should_be_false_if_given_password_is_not_accepted
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 1, :string, "Password:", :bool, false)
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_INFO_RESPONSE, packet2.type
-          assert_equal 1, packet2.read_long
-          assert_equal "the-password", packet2.read_string
-          t2.return(USERAUTH_FAILURE, :string, "keyboard-interactive")
-        end
-      end
-      assert_equal false, subject.authenticate("ssh-connection", "jamis", "the-password")
-    end
-    def test_authenticate_should_be_true_if_given_password_is_accepted
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 1, :string, "Password:", :bool, false)
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_INFO_RESPONSE, packet2.type
-          t2.return(USERAUTH_SUCCESS)
-        end
-      end
-      assert subject.authenticate("ssh-connection", "jamis", "the-password")
-    end
-    def test_authenticate_should_duplicate_password_as_needed_to_fill_request
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 2, :string, "Password:", :bool, false, :string, "Again:", :bool, false)
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_INFO_RESPONSE, packet2.type
-          assert_equal 2, packet2.read_long
-          assert_equal "the-password", packet2.read_string
-          assert_equal "the-password", packet2.read_string
-          t2.return(USERAUTH_SUCCESS)
-        end
-      end
-      assert subject.authenticate("ssh-connection", "jamis", "the-password")
-    end
-    def test_authenticate_should_prompt_for_input_when_password_is_not_given
-      subject.expects(:prompt).with("Name:", true).returns("name")
-      subject.expects(:prompt).with("Password:", false).returns("password")
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_INFO_REQUEST, :string, "", :string, "", :string, "", :long, 2, :string, "Name:", :bool, true, :string, "Password:", :bool, false)
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_INFO_RESPONSE, packet2.type
-          assert_equal 2, packet2.read_long
-          assert_equal "name", packet2.read_string
-          assert_equal "password", packet2.read_string
-          t2.return(USERAUTH_SUCCESS)
-        end
-      end
-      assert subject.authenticate("ssh-connection", "jamis", nil)
-    end
-    private
-      def subject(options={})
-        @subject ||= Net::SSH::Authentication::Methods::KeyboardInteractive.new(session(options), options)
-      end
-  end
-end; end

data/test/authentication/methods/test_none.rb DELETED Viewed

@@ -1,41 +0,0 @@
-require 'common'
-require 'net/ssh/authentication/methods/none'
-require 'authentication/methods/common'
-module Authentication; module Methods
-  class TestNone < Test::Unit::TestCase
-    include Common
-    def test_authenticate_should_raise_if_none_disallowed
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert_equal "jamis", packet.read_string
-        assert_equal "ssh-connection", packet.read_string
-        assert_equal "none", packet.read_string
-        t.return(USERAUTH_FAILURE, :string, "publickey")
-      end
-      assert_raises Net::SSH::Authentication::DisallowedMethod do
-        subject.authenticate("ssh-connection", "jamis", "pass")
-      end
-    end
-    def test_authenticate_should_return_true
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_SUCCESS)
-      end
-      assert subject.authenticate("ssh-connection", "", "")
-    end
-    private
-      def subject(options={})
-        @subject ||= Net::SSH::Authentication::Methods::None.new(session(options), options)
-      end
-  end
-end; end

data/test/authentication/methods/test_password.rb DELETED Viewed

@@ -1,95 +0,0 @@
-require 'common'
-require 'net/ssh/authentication/methods/password'
-require 'net/ssh/authentication/session'
-require 'authentication/methods/common'
-module Authentication; module Methods
-  class TestPassword < Test::Unit::TestCase
-    include Common
-    def test_authenticate_should_raise_if_password_disallowed
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert_equal "jamis", packet.read_string
-        assert_equal "ssh-connection", packet.read_string
-        assert_equal "password", packet.read_string
-        assert_equal false, packet.read_bool
-        assert_equal "the-password", packet.read_string
-        t.return(USERAUTH_FAILURE, :string, "publickey")
-      end
-      assert_raises Net::SSH::Authentication::DisallowedMethod do
-        subject.authenticate("ssh-connection", "jamis", "the-password")
-      end
-    end
-    def test_authenticate_ask_for_password_for_second_time_when_password_is_incorrect
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert_equal "jamis", packet.read_string
-        assert_equal "ssh-connection", packet.read_string
-        assert_equal "password", packet.read_string
-        assert_equal false, packet.read_bool
-        assert_equal "the-password", packet.read_string
-        t.return(USERAUTH_FAILURE, :string, "publickey,password")
-        t.expect do |t2, packet2|
-          assert_equal USERAUTH_REQUEST, packet2.type
-          assert_equal "jamis", packet2.read_string
-          assert_equal "ssh-connection", packet2.read_string
-          assert_equal "password", packet2.read_string
-          assert_equal false, packet2.read_bool
-          assert_equal "the-password-2", packet2.read_string
-          t.return(USERAUTH_SUCCESS)
-        end
-      end
-      subject.expects(:prompt).with("jamis@'s password:", false).returns("the-password-2")
-      subject.authenticate("ssh-connection", "jamis", "the-password")
-    end
-    def test_authenticate_ask_for_password_if_not_given
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert_equal "bill", packet.read_string
-        assert_equal "ssh-connection", packet.read_string
-        assert_equal "password", packet.read_string
-        assert_equal false, packet.read_bool
-        assert_equal "good-password", packet.read_string
-        t.return(USERAUTH_SUCCESS)
-      end
-      transport.instance_eval { @host='testhost' }
-      subject.expects(:prompt).with("bill@testhost's password:", false).returns("good-password")
-      subject.authenticate("ssh-connection", "bill", nil)
-    end
-    def test_authenticate_when_password_is_acceptible_should_return_true
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_SUCCESS)
-      end
-      assert subject.authenticate("ssh-connection", "jamis", "the-password")
-    end
-    def test_authenticate_should_return_false_if_password_change_request_is_received
-      transport.expect do |t,packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        t.return(USERAUTH_PASSWD_CHANGEREQ, :string, "Change your password:", :string, "")
-      end
-      assert !subject.authenticate("ssh-connection", "jamis", "the-password")
-    end
-    private
-      def subject(options={})
-        @subject ||= Net::SSH::Authentication::Methods::Password.new(session(options), options)
-      end
-  end
-end; end

data/test/authentication/methods/test_publickey.rb DELETED Viewed

@@ -1,148 +0,0 @@
-require 'common'
-require 'net/ssh/authentication/methods/publickey'
-require 'authentication/methods/common'
-module Authentication; module Methods
-  class TestPublickey < Test::Unit::TestCase
-    include Common
-    def test_authenticate_should_return_false_when_no_key_manager_has_been_set
-      assert_equal false, subject(:key_manager => nil).authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_return_false_when_key_manager_has_no_keys
-      assert_equal false, subject(:keys => []).authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_return_false_if_no_keys_can_authenticate
-      transport.expect do |t, packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert verify_userauth_request_packet(packet, keys.first, false)
-        t.return(USERAUTH_FAILURE, :string, "hostbased,password")
-        t.expect do |t2, packet2|
-          assert_equal USERAUTH_REQUEST, packet2.type
-          assert verify_userauth_request_packet(packet2, keys.last, false)
-          t2.return(USERAUTH_FAILURE, :string, "hostbased,password")
-        end
-      end
-      assert_equal false, subject.authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_raise_if_publickey_disallowed
-      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
-      transport.expect do |t, packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert verify_userauth_request_packet(packet, keys.first, false)
-        t.return(USERAUTH_PK_OK, :string, keys.first.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.first))
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_REQUEST, packet2.type
-          assert verify_userauth_request_packet(packet2, keys.first, true)
-          assert_equal "sig-one", packet2.read_string
-          t2.return(USERAUTH_FAILURE, :string, "hostbased,password")
-        end
-      end
-      assert_raises Net::SSH::Authentication::DisallowedMethod do
-        subject.authenticate("ssh-connection", "jamis")
-      end
-    end
-    def test_authenticate_should_return_false_if_signature_exchange_fails
-      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
-      key_manager.expects(:sign).with(&signature_parameters(keys.last)).returns("sig-two")
-      transport.expect do |t, packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert verify_userauth_request_packet(packet, keys.first, false)
-        t.return(USERAUTH_PK_OK, :string, keys.first.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.first))
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_REQUEST, packet2.type
-          assert verify_userauth_request_packet(packet2, keys.first, true)
-          assert_equal "sig-one", packet2.read_string
-          t2.return(USERAUTH_FAILURE, :string, "publickey")
-          t2.expect do |t3, packet3|
-            assert_equal USERAUTH_REQUEST, packet3.type
-            assert verify_userauth_request_packet(packet3, keys.last, false)
-            t3.return(USERAUTH_PK_OK, :string, keys.last.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.last))
-            t3.expect do |t4,packet4|
-              assert_equal USERAUTH_REQUEST, packet4.type
-              assert verify_userauth_request_packet(packet4, keys.last, true)
-              assert_equal "sig-two", packet4.read_string
-              t4.return(USERAUTH_FAILURE, :string, "publickey")
-            end
-          end
-        end
-      end
-      assert !subject.authenticate("ssh-connection", "jamis")
-    end
-    def test_authenticate_should_return_true_if_any_key_can_authenticate
-      key_manager.expects(:sign).with(&signature_parameters(keys.first)).returns("sig-one")
-      transport.expect do |t, packet|
-        assert_equal USERAUTH_REQUEST, packet.type
-        assert verify_userauth_request_packet(packet, keys.first, false)
-        t.return(USERAUTH_PK_OK, :string, keys.first.ssh_type, :string, Net::SSH::Buffer.from(:key, keys.first))
-        t.expect do |t2,packet2|
-          assert_equal USERAUTH_REQUEST, packet2.type
-          assert verify_userauth_request_packet(packet2, keys.first, true)
-          assert_equal "sig-one", packet2.read_string
-          t2.return(USERAUTH_SUCCESS)
-        end
-      end
-      assert subject.authenticate("ssh-connection", "jamis")
-    end
-    private
-      def signature_parameters(key)
-        Proc.new do |given_key, data|
-          next false unless given_key.to_blob == key.to_blob
-          buffer = Net::SSH::Buffer.new(data)
-          buffer.read_string == "abcxyz123"      && # session-id
-          buffer.read_byte   == USERAUTH_REQUEST && # type
-          verify_userauth_request_packet(buffer, key, true)
-        end
-      end
-      def verify_userauth_request_packet(packet, key, has_sig)
-        packet.read_string == "jamis"          && # user-name
-        packet.read_string == "ssh-connection" && # next service
-        packet.read_string == "publickey"      && # auth-method
-        packet.read_bool   == has_sig          && # whether a signature is appended
-        packet.read_string == key.ssh_type     && # ssh key type
-        packet.read_buffer.read_key.to_blob == key.to_blob # key
-      end
-      @@keys = nil
-      def keys
-        @@keys ||= [OpenSSL::PKey::RSA.new(512), OpenSSL::PKey::DSA.new(512)]
-      end
-      def key_manager(options={})
-        @key_manager ||= begin
-          manager = stub("key_manager")
-          manager.stubs(:each_identity).multiple_yields(*(options[:keys] || keys))
-          manager
-        end
-      end
-      def subject(options={})
-        options[:key_manager] = key_manager(options) unless options.key?(:key_manager)
-        @subject ||= Net::SSH::Authentication::Methods::Publickey.new(session(options), options)
-      end
-  end
-end; end