1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
|
require 'common'
require 'net/ssh/config'
require 'pathname'
class TestConfig < Test::Unit::TestCase
def test_home_should_be_absolute_path
assert Pathname.new(ENV['HOME']).absolute?
end
def test_load_for_non_existant_file_should_return_empty_hash
bogus_file = File.expand_path("/bogus/file")
File.expects(:readable?).with(bogus_file).returns(false)
assert_equal({}, Net::SSH::Config.load(bogus_file, "host.name"))
end
def test_load_should_expand_path
expected = File.expand_path("~/.ssh/config")
File.expects(:readable?).with(expected).returns(false)
Net::SSH::Config.load("~/.ssh/config", "host.name")
end
def test_load_with_exact_host_match_should_load_that_section
config = Net::SSH::Config.load(config(:exact_match), "test.host")
assert config['compression']
assert config['forwardagent']
assert_equal 1234, config['port']
end
def test_load_with_wild_card_matches_should_load_all_matches_with_first_match_taking_precedence
config = Net::SSH::Config.load(config(:wild_cards), "test.host")
assert_equal 1234, config['port']
assert !config['compression']
assert config['forwardagent']
assert_equal %w(~/.ssh/id_dsa), config['identityfile']
assert !config.key?('rekeylimit')
end
def test_for_should_load_all_files_and_translate_to_net_ssh_options
config = Net::SSH::Config.for("test.host", [config(:exact_match), config(:wild_cards)])
assert_equal 1234, config[:port]
assert config[:compression]
assert config[:forward_agent]
assert_equal %w(~/.ssh/id_dsa), config[:keys]
assert !config.key?(:rekey_limit)
end
def test_load_with_no_host
config = Net::SSH::Config.load(config(:nohost), "test.host")
assert_equal %w(~/.ssh/id_dsa ~/.ssh/id_rsa), config['identityfile']
assert_equal 1985, config['port']
end
def test_load_with_multiple_hosts
config = Net::SSH::Config.load(config(:multihost), "test.host")
assert config['compression']
assert_equal '2G', config['rekeylimit']
assert_equal 1980, config['port']
end
def test_load_with_multiple_hosts_and_config_should_match_for_both
aconfig = Net::SSH::Config.load(config(:multihost), "test.host")
bconfig = Net::SSH::Config.load(config(:multihost), "other.host")
assert_equal aconfig['port'], bconfig['port']
assert_equal aconfig['compression'], bconfig['compression']
assert_equal aconfig['rekeylimit'], bconfig['rekeylimit']
end
def test_load_should_parse_equal_sign_delimiters
config = Net::SSH::Config.load(config(:eqsign), "test.test")
assert config['compression']
assert_equal 1234, config['port']
end
def test_translate_should_correctly_translate_from_openssh_to_net_ssh_names
open_ssh = {
'bindaddress' => "127.0.0.1",
'ciphers' => "a,b,c",
'compression' => true,
'compressionlevel' => 6,
'connecttimeout' => 100,
'forwardagent' => true,
'hostbasedauthentication' => true,
'hostkeyalgorithms' => "d,e,f",
'identityfile' => %w(g h i),
'macs' => "j,k,l",
'passwordauthentication' => true,
'port' => 1234,
'pubkeyauthentication' => true,
'rekeylimit' => 1024,
'sendenv' => "LC_*"
}
net_ssh = Net::SSH::Config.translate(open_ssh)
assert_equal %w(a b c), net_ssh[:encryption]
assert_equal true, net_ssh[:compression]
assert_equal 6, net_ssh[:compression_level]
assert_equal 100, net_ssh[:timeout]
assert_equal true, net_ssh[:forward_agent]
assert_equal %w(hostbased keyboard-interactive none password publickey), net_ssh[:auth_methods].sort
assert_equal %w(d e f), net_ssh[:host_key]
assert_equal %w(g h i), net_ssh[:keys]
assert_equal %w(j k l), net_ssh[:hmac]
assert_equal 1234, net_ssh[:port]
assert_equal 1024, net_ssh[:rekey_limit]
assert_equal "127.0.0.1", net_ssh[:bind_address]
assert_equal [/^LC_.*$/], net_ssh[:send_env]
end
def test_translate_should_turn_off_authentication_methods
open_ssh = {
'hostbasedauthentication' => false,
'passwordauthentication' => false,
'pubkeyauthentication' => false,
'challengeresponseauthentication' => false,
'kbdinteractiveauthentication' => false
}
net_ssh = Net::SSH::Config.translate(open_ssh)
assert_equal %w(none), net_ssh[:auth_methods].sort
end
def test_translate_should_turn_on_authentication_methods
open_ssh = {
'hostbasedauthentication' => true,
'passwordauthentication' => true,
'pubkeyauthentication' => true,
'challengeresponseauthentication' => true,
'kbdinteractiveauthentication' => true
}
net_ssh = Net::SSH::Config.translate(open_ssh)
assert_equal %w(hostbased keyboard-interactive none password publickey), net_ssh[:auth_methods].sort
end
def test_translate_should_not_disable_keyboard_interactive_when_challange_or_keyboardinterective_is_on
open_ssh = {
'kbdinteractiveauthentication' => false
}
net_ssh = Net::SSH::Config.translate(open_ssh)
assert_equal %w(keyboard-interactive none password publickey), net_ssh[:auth_methods].sort
open_ssh = {
'challengeresponseauthentication' => false
}
net_ssh = Net::SSH::Config.translate(open_ssh)
assert_equal %w(keyboard-interactive none password publickey), net_ssh[:auth_methods].sort
end
def test_should_ddisable_keyboard_interactive_when_challeng_and_keyboardinteractive_is_off
open_ssh = {
'challengeresponseauthentication' => false,
'kbdinteractiveauthentication' => false
}
net_ssh = Net::SSH::Config.translate(open_ssh)
assert_equal %w(none password publickey), net_ssh[:auth_methods].sort
end
def test_for_should_turn_off_authentication_methods
config = Net::SSH::Config.for("test.host", [config(:empty), config(:auth_off), config(:auth_on)])
assert_equal %w(none), config[:auth_methods].sort
end
def test_for_should_turn_on_authentication_methods
config = Net::SSH::Config.for("test.host", [config(:empty), config(:auth_on), config(:auth_off)])
assert_equal %w(hostbased keyboard-interactive none password publickey), config[:auth_methods].sort
end
def test_load_with_plus_sign_hosts
config = Net::SSH::Config.load(config(:host_plus), "test.host")
assert config['compression']
end
def test_load_with_numeric_host
config = Net::SSH::Config.load(config(:numeric_host), "1234")
assert config['compression']
assert_equal '2G', config['rekeylimit']
assert_equal 1980, config['port']
end
def test_load_wildcar_with_substitutes
config = Net::SSH::Config.load(config(:substitutes), "toto")
net_ssh = Net::SSH::Config.translate(config)
assert_equal 'toto', net_ssh[:host_name]
end
def test_load_sufix_with_substitutes
config = Net::SSH::Config.load(config(:substitutes), "test")
net_ssh = Net::SSH::Config.translate(config)
assert_equal 'test.sufix', net_ssh[:host_name]
end
def test_load_prefix_and_sufix_with_substitutes
config = Net::SSH::Config.load(config(:substitutes), "1234")
net_ssh = Net::SSH::Config.translate(config)
assert_equal 'prefix.1234.sufix', net_ssh[:host_name]
end
def test_load_with_send_env
config = Net::SSH::Config.load(config(:send_env), "1234")
net_ssh = Net::SSH::Config.translate(config)
assert_equal [/^GIT_.*$/, /^LANG$/, /^LC_.*$/], net_ssh[:send_env]
end
private
def config(name)
"test/configs/#{name}"
end
end
|
