# Copyright 2023 Julio Merino. # All rights reserved. # # Redistribution and use in source and binary forms, with or without modification, are permitted # provided that the following conditions are met: # # * Redistributions of source code must retain the above copyright notice, this list of conditions # and the following disclaimer. # * Redistributions in binary form must reproduce the above copyright notice, this list of # conditions and the following disclaimer in the documentation and/or other materials provided with # the distribution. # * Neither the name of ssh-agent-switcher nor the names of its contributors may be used to endorse # or promote products derived from this software without specific prior written permission. # # THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR # IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND # FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR # CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL # DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, # DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, # WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY # WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. shtk_import unittest export RUST_LOG=trace SSH_AGENT_SWITCHER="../target/${MODE-debug}/ssh-agent-switcher" wait_for_socket() { local socket="${1}"; shift local i=0 while [ ! -S "${socket}" ]; do [ "${i}" -lt 1000 ] || fail "Socket was not created on time: ${socket}" sleep 0.01 i=$((i + 1)) done } shtk_unittest_add_fixture standalone standalone_fixture() { setup() { FAKE_HOME="$(mktemp -d -p /tmp)" HOME="${FAKE_HOME}"; export HOME # Unix domain socket names have tight length limitations so we must place them under # /tmp (instead of the current work directory, which would be preferrable because then # we would get automatic cleanup). SOCKETS_ROOT="$(mktemp -d -p /tmp)" } teardown() { [ ! -e pid ] || kill "$(cat pid)" rm -rf "${SOCKETS_ROOT}" rm -rf "${FAKE_HOME}" } shtk_unittest_add_test default_agents_dirs default_agents_dirs_test() { USER=fake-user "${SSH_AGENT_SWITCHER}" -h >switcher.out 2>switcher.log expect_file match:"default lookup.*${FAKE_HOME}/.ssh/agent:/tmp" switcher.out } shtk_unittest_add_test default_socket_path default_socket_path_test() { local user="fake-user-$$" local socket="/tmp/ssh-agent.${user}" USER="${user}" "${SSH_AGENT_SWITCHER}" 2>switcher.log & echo "${!}" >pid # For teardown. wait_for_socket "${socket}" } shtk_unittest_add_test ignore_sighup ignore_sighup_test() { local socket="${SOCKETS_ROOT}/socket" "${SSH_AGENT_SWITCHER}" --socket-path "${socket}" 2>switcher.log & local pid="$!" echo "${pid}" >pid # For teardown. # Wait for the socket to appear. while [ ! -e "${socket}" ]; do sleep 0.01 done kill -HUP "${pid}" # Wait a little bit to see if the socket is cleared. This is racy and may fail to detect # a legitimate bug, but it should not raise a false failure. local i=0 while [ "${i}" -lt 10 ]; do [ -e "${socket}" ] || fail "Daemon exited and deleted file" sleep 0.01 i=$((i + 1)) done } } shtk_unittest_add_fixture integration_pre_openssh_10_1 integration_pre_openssh_10_1_fixture() { setup() { FAKE_HOME="$(mktemp -d -p /tmp)" HOME="${FAKE_HOME}"; export HOME # Unix domain socket names have tight length limitations so we must place them under # /tmp (instead of the current work directory, which would be preferrable because then # we would get automatic cleanup). SOCKETS_ROOT="$(mktemp -d -p /tmp)" # Place the agent socket under an ssh-* directory that sorts last. We need this for # the unknown files test. AGENT_AUTH_SOCK="${SOCKETS_ROOT}/ssh-zzz/agent.bar" mkdir -p "$(dirname "${AGENT_AUTH_SOCK}")" ssh-agent -a "${AGENT_AUTH_SOCK}" >agent.env SWITCHER_AUTH_SOCK="${SOCKETS_ROOT}/switcher" "${SSH_AGENT_SWITCHER}" \ --socket-path "${SWITCHER_AUTH_SOCK}" \ --agents-dirs "${SOCKETS_ROOT}" \ 2>switcher.log & SWITCHER_AGENT_PID="${!}" wait_for_socket "${SWITCHER_AUTH_SOCK}" export SSH_AUTH_SOCK="${SWITCHER_AUTH_SOCK}" } teardown() { # Check that the expected real agent was used. expect_file match:"opened.*${AGENT_AUTH_SOCK}" switcher.log # Check that we didn't leave an open connection behind due to EOF mishandling. expect_file match:"Closing client connection" switcher.log kill "${SWITCHER_AGENT_PID}" # Make sure the daemon deletes the socket on exit. while [ -e "${SWITCHER_AUTH_SOCK}" ]; do sleep 0.01 done expect_file match:"Shutting down.*${SWITCHER_AUTH_SOCK}" switcher.log . ./agent.env kill "${SSH_AGENT_PID}" rm -rf "${SOCKETS_ROOT}" rm -rf "${FAKE_HOME}" } shtk_unittest_add_test list_identities list_identities_test() { expect_command -s 1 -o match:"no identities" ssh-add -l } shtk_unittest_add_test add_identity add_identity_test() { assert_command -s 0 -o ignore -e ignore ssh-keygen -t rsa -b 1024 -N '' -f ./id_rsa expect_command -s 0 -e match:"Identity added" ssh-add ./id_rsa } shtk_unittest_add_test ignore_unknown_files ignore_unknown_files_test() { # Create garbage in the sockets directory. touch "${SOCKETS_ROOT}/file-unknown" mkdir "${SOCKETS_ROOT}/dir-unknown" touch "${SOCKETS_ROOT}/ssh-not-a-dir" mkdir "${SOCKETS_ROOT}/ssh-empty" mkdir "${SOCKETS_ROOT}/ssh-foo" touch "${SOCKETS_ROOT}/ssh-foo/unknown" mkdir "${SOCKETS_ROOT}/ssh-bar" touch "${SOCKETS_ROOT}/ssh-bar/agent.not-a-socket" expect_command -s 1 -o match:"no identities" ssh-add -l # Ensure that the garbage was ignored for the correct reasons. expect_file match:"Ignoring.*/file-unknown.*not a directory" switcher.log expect_file match:"Ignoring.*/dir-unknown.*not start with.*ssh-" switcher.log expect_file match:"Ignoring.*/ssh-not-a-dir.*not a directory" switcher.log expect_file match:"Ignoring.*/ssh-empty.*No socket" switcher.log expect_file match:"Ignoring.*/ssh-foo/unknown.*start with.*agent" switcher.log expect_file match:"Ignoring.*/ssh-bar/agent.not-a-socket.*Cannot connect" switcher.log } } shtk_unittest_add_fixture integration_openssh_10_1 integration_openssh_10_1_fixture() { setup() { FAKE_HOME="$(mktemp -d -p /tmp)" HOME="${FAKE_HOME}"; export HOME # Unix domain socket names have tight length limitations so we must place them under # /tmp (instead of the current work directory, which would be preferrable because then # we would get automatic cleanup). SOCKETS_ROOT="${FAKE_HOME}/.ssh/agent" # Name the agent socket in HOME so that it sorts last. We need this for the unknown # files test. AGENT_AUTH_SOCK="${SOCKETS_ROOT}/zzz.sshd.aaa" mkdir -p "$(dirname "${AGENT_AUTH_SOCK}")" ssh-agent -a "${AGENT_AUTH_SOCK}" >agent.env SWITCHER_AUTH_SOCK="${SOCKETS_ROOT}/switcher" "${SSH_AGENT_SWITCHER}" \ --socket-path "${SWITCHER_AUTH_SOCK}" \ --agents-dirs "/non-existent-1:${SOCKETS_ROOT}:/non-existent-2" \ 2>switcher.log & SWITCHER_AGENT_PID="${!}" wait_for_socket "${SWITCHER_AUTH_SOCK}" export SSH_AUTH_SOCK="${SWITCHER_AUTH_SOCK}" } teardown() { # Check that the expected real agent was used. expect_file match:"opened.*${AGENT_AUTH_SOCK}" switcher.log # Check that we didn't leave an open connection behind due to EOF mishandling. expect_file match:"Closing client connection" switcher.log kill "${SWITCHER_AGENT_PID}" # Make sure the daemon deletes the socket on exit. while [ -e "${SWITCHER_AUTH_SOCK}" ]; do sleep 0.01 done expect_file match:"Shutting down.*${SWITCHER_AUTH_SOCK}" switcher.log . ./agent.env kill "${SSH_AGENT_PID}" rm -rf "${SOCKETS_ROOT}" rm -rf "${FAKE_HOME}" } shtk_unittest_add_test list_identities list_identities_test() { expect_command -s 1 -o match:"no identities" ssh-add -l } shtk_unittest_add_test add_identity add_identity_test() { assert_command -s 0 -o ignore -e ignore ssh-keygen -t rsa -b 1024 -N '' -f ./id_rsa expect_command -s 0 -e match:"Identity added" ssh-add ./id_rsa } shtk_unittest_add_test ignore_unknown_files ignore_unknown_files_test() { # Create garbage in the sockets directory. touch "${SOCKETS_ROOT}/file-unknown" mkdir "${SOCKETS_ROOT}/dir-unknown" touch "${SOCKETS_ROOT}/agent.not-a-socket" touch "${SOCKETS_ROOT}/not-a-socket.sshd.foobar" expect_command -s 1 -o match:"no identities" ssh-add -l # Ensure that the garbage was ignored for the correct reasons. expect_file match:"Ignoring.*/file-unknown.*not start with.*agent." switcher.log expect_file match:"Ignoring.*/dir-unknown.*not start with.*agent." switcher.log expect_file match:"Ignoring.*/agent.not-a-socket.*Cannot connect" switcher.log expect_file match:"Ignoring.*/not-a-socket.sshd.foobar.*Cannot connect" switcher.log } } shtk_unittest_add_fixture daemonize daemonize_fixture() { setup() { FAKE_HOME="$(mktemp -d -p /tmp)" HOME="${FAKE_HOME}"; export HOME # Unix domain socket names have tight length limitations so we must place them under # /tmp (instead of the current work directory, which would be preferrable because then # we would get automatic cleanup). SOCKETS_ROOT="$(mktemp -d -p /tmp)" } teardown() { [ ! -e pid ] || kill "$(cat pid)" rm -rf "${SOCKETS_ROOT}" rm -rf "${FAKE_HOME}" } do_simple_test() { local log_file="${1}"; shift local pid_file="${1}"; shift # We don't wait for the PID file nor the socket to be created because the parent process # in the daemonization startup guarantees they exist. cp "${pid_file}" pid # For teardown. kill "$(cat "${pid_file}")" # Wait for the PID file to disappear. while [ -e "${pid_file}" ]; do sleep 0.01 done cp "${log_file}" switcher.log # For teardown. } start_daemon_with_retries() { local i=0 local max_attempts=3 local output while [ "${i}" -lt "${max_attempts}" ]; do if output="$(SSH_AGENT_SWITCHER_MAX_CHILD_WAIT_SECS=1 "$@" 2>&1)"; then return 0 fi i=$((i + 1)) case "${output}" in *"Daemon failed to start on time"*) [ "${i}" -lt "${max_attempts}" ] || break sleep 0.1 ;; *) printf '%s\n' "${output}" >&2 return 1 ;; esac done printf '%s\n' "${output}" >&2 return 1 } shtk_unittest_add_test xdg_dirs xdg_dirs_test() { local log_dir="$(pwd)/test-state" local log_file="${log_dir}/ssh-agent-switcher.log" local pid_dir="$(pwd)/test-runtime" local pid_file="${pid_dir}/ssh-agent-switcher.pid" mkdir -p "${pid_dir}" # XDG expects the directory to exist. chmod 0700 "${pid_dir}" # XDG expects tight permissions. local socket="${SOCKETS_ROOT}/socket" start_daemon_with_retries \ env XDG_STATE_HOME="${log_dir}" XDG_RUNTIME_DIR="${pid_dir}" \ "${SSH_AGENT_SWITCHER}" --daemon --socket-path "${socket}" do_simple_test "${log_file}" "${pid_file}" } shtk_unittest_add_test xdg_runtime_dir_not_set xdg_runtime_dir_not_set_test() { local log_dir="$(pwd)/test-state" local log_file="${log_dir}/ssh-agent-switcher.log" local pid_dir="${log_dir}" # Default fallback if XDG_RUNTIME_DIR is not set. local pid_file="${pid_dir}/ssh-agent-switcher.pid" mkdir -p "${pid_dir}" # XDG expects the directory to exist. chmod 0700 "${pid_dir}" # XDG expects tight permissions. local socket="${SOCKETS_ROOT}/socket" ( unset XDG_RUNTIME_DIR start_daemon_with_retries \ env XDG_STATE_HOME="${log_dir}" \ "${SSH_AGENT_SWITCHER}" --daemon --socket-path "${socket}" ) do_simple_test "${log_file}" "${pid_file}" } shtk_unittest_add_test explicit_files explicit_files_test() { local log_file="$(pwd)/test.log" local pid_file="$(pwd)/test.pid" local socket="${SOCKETS_ROOT}/socket" start_daemon_with_retries \ "${SSH_AGENT_SWITCHER}" --daemon --log-file="${log_file}" --pid-file="${pid_file}" \ --socket-path "${socket}" do_simple_test "${log_file}" "${pid_file}" } shtk_unittest_add_test double_start double_start_test() { local log_file="$(pwd)/test.log" local pid_file="$(pwd)/test.pid" local socket="${SOCKETS_ROOT}/socket" start_daemon_with_retries \ "${SSH_AGENT_SWITCHER}" --daemon --log-file="${log_file}" --pid-file="${pid_file}" \ --socket-path "${socket}" # This second invocation should not actually start. SSH_AGENT_SWITCHER_MAX_CHILD_WAIT_SECS=1 \ "${SSH_AGENT_SWITCHER}" --daemon --log-file="${log_file}" --pid-file="${pid_file}" \ --socket-path "${socket}.2" # Wait a little bit to see if the second socket is created. This is racy and may fail # to detect a legitimate bug, but it should not raise a false failure. local i=0 while [ "${i}" -lt 10 ]; do if [ -e "${socket}.2" ]; then fail "Second daemon should not have started" fi sleep 0.01 i=$((i + 1)) done do_simple_test "${log_file}" "${pid_file}" } }