t_tcpip.sh revision 1.8
1 # $NetBSD: t_tcpip.sh,v 1.8 2011/03/22 17:07:11 pooka Exp $ 2 # 3 # Copyright (c) 2011 The NetBSD Foundation, Inc. 4 # All rights reserved. 5 # 6 # Redistribution and use in source and binary forms, with or without 7 # modification, are permitted provided that the following conditions 8 # are met: 9 # 1. Redistributions of source code must retain the above copyright 10 # notice, this list of conditions and the following disclaimer. 11 # 2. Redistributions in binary form must reproduce the above copyright 12 # notice, this list of conditions and the following disclaimer in the 13 # documentation and/or other materials provided with the distribution. 14 # 15 # THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 16 # ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 17 # TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 18 # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 19 # BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 20 # CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 21 # SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 22 # INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 23 # CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 24 # ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 25 # POSSIBILITY OF SUCH DAMAGE. 26 # 27 28 rumpnetsrv='rump_server -lrumpnet -lrumpnet_net -lrumpnet_netinet' 29 export RUMP_SERVER=unix://csock 30 31 atf_test_case http cleanup 32 http_head() 33 { 34 atf_set "descr" "Start hijacked httpd and get webpage from it" 35 } 36 37 http_body() 38 { 39 40 atf_check -s exit:0 ${rumpnetsrv} ${RUMP_SERVER} 41 # make sure clients die after we nuke the server 42 export RUMPHIJACK_RETRYCONNECT='die' 43 44 # start bozo in daemon mode 45 atf_check -s exit:0 env LD_PRELOAD=/usr/lib/librumphijack.so \ 46 /usr/libexec/httpd -b -s $(atf_get_srcdir) 47 48 atf_check -s exit:0 -o file:"$(atf_get_srcdir)/netstat.expout" \ 49 rump.netstat -a 50 51 # get the webpage 52 atf_check -s exit:0 env LD_PRELOAD=/usr/lib/librumphijack.so \ 53 $(atf_get_srcdir)/h_netget 127.0.0.1 80 webfile 54 55 # check that we got what we wanted 56 atf_check -o match:'HTTP/1.0 200 OK' cat webfile 57 atf_check -o match:'Content-Length: 95' cat webfile 58 atf_check -o file:"$(atf_get_srcdir)/index.html" \ 59 sed -n '1,/^ $/!p' webfile 61 } 62 63 http_cleanup() 64 { 65 rump.halt 66 } 67 68 # 69 # Starts a SSH server and sets up the client to access it. 70 # Authentication is allowed and done using an RSA key exclusively, which 71 # is generated on the fly as part of the test case. 72 # XXX: Ideally, all the tests in this test program should be able to share 73 # the generated key, because creating it can be a very slow process on some 74 # machines. 75 # 76 # XXX2: copypasted from jmmv's sshd thingamob in the psshfs test. 77 # ideally code (and keys, like jmmv notes above) could be shared 78 # 79 start_sshd() { 80 echo "Setting up SSH server configuration" 81 sed -e "s,@SRCDIR@,$(atf_get_srcdir),g" -e "s,@WORKDIR@,$(pwd),g" \ 82 $(atf_get_srcdir)/sshd_config.in >sshd_config || \ 83 atf_fail "Failed to create sshd_config" 84 atf_check -s ignore -o empty -e ignore \ 85 cp $(atf_get_srcdir)/ssh_host_key . 86 atf_check -s ignore -o empty -e ignore \ 87 cp $(atf_get_srcdir)/ssh_host_key.pub . 88 atf_check -s eq:0 -o empty -e empty chmod 400 ssh_host_key 89 atf_check -s eq:0 -o empty -e empty chmod 444 ssh_host_key.pub 90 91 env LD_PRELOAD=/usr/lib/librumphijack.so \ 92 /usr/sbin/sshd -e -f ./sshd_config 93 while [ ! -f sshd.pid ]; do 94 sleep 0.01 95 done 96 echo "SSH server started (pid $(cat sshd.pid))" 97 98 echo "Setting up SSH client configuration" 99 atf_check -s eq:0 -o empty -e empty \ 100 ssh-keygen -f ssh_user_key -t rsa -b 1024 -N "" -q 101 atf_check -s eq:0 -o empty -e empty \ 102 cp ssh_user_key.pub authorized_keys 103 echo "127.0.0.1,localhost,::1 " \ 104 "$(cat $(atf_get_srcdir)/ssh_host_key.pub)" >known_hosts || \ 105 atf_fail "Failed to create known_hosts" 106 atf_check -s eq:0 -o empty -e empty chmod 600 authorized_keys 107 sed -e "s,@SRCDIR@,$(atf_get_srcdir),g" -e "s,@WORKDIR@,$(pwd),g" \ 108 $(atf_get_srcdir)/ssh_config.in >ssh_config || \ 109 atf_fail "Failed to create ssh_config" 110 111 echo "sshd running" 112 } 113 114 atf_test_case ssh cleanup 115 ssh_head() 116 { 117 atf_set "descr" "Test that hijacked ssh/sshd works" 118 } 119 120 ssh_body() 121 { 122 123 atf_check -s exit:0 ${rumpnetsrv} ${RUMP_SERVER} 124 # make sure clients die after we nuke the server 125 export RUMPHIJACK_RETRYCONNECT='die' 126 127 start_sshd 128 129 # create some sort of directory for us to "ls" 130 mkdir testdir 131 cd testdir 132 jot 11 | xargs touch 133 jot 11 12 | xargs mkdir 134 cd .. 135 136 atf_check -s exit:0 -o save:ssh.out \ 137 env LD_PRELOAD=/usr/lib/librumphijack.so \ 138 ssh -T -F ssh_config 127.0.0.1 env BLOCKSIZE=512 \ 139 ls -li $(pwd)/testdir 140 atf_check -s exit:0 -o file:ssh.out env BLOCKSIZE=512 \ 141 ls -li $(pwd)/testdir 142 } 143 144 ssh_cleanup() 145 { 146 rump.halt 147 # sshd dies due to RUMPHIJACK_RETRYCONNECT=1d6 148 } 149 150 test_nfs() 151 { 152 153 magicstr='wind in my hair' 154 # create ffs file system we'll be serving from 155 atf_check -s exit:0 -o ignore newfs -F -s 10000 ffs.img 156 157 # start nfs kernel server. this is a mouthful 158 export RUMP_SERVER=unix://serversock 159 atf_check -s exit:0 rump_server $* ${RUMP_SERVER} 160 161 atf_check -s exit:0 rump.ifconfig shmif0 create 162 atf_check -s exit:0 rump.ifconfig shmif0 linkstr shmbus 163 atf_check -s exit:0 rump.ifconfig shmif0 inet 10.1.1.1 164 165 export RUMPHIJACK_RETRYCONNECT=die 166 export LD_PRELOAD=/usr/lib/librumphijack.so 167 168 atf_check -s exit:0 mkdir -p /rump/var/run 169 atf_check -s exit:0 mkdir -p /rump/var/db 170 atf_check -s exit:0 touch /rump/var/db/mountdtab 171 atf_check -s exit:0 mkdir /rump/etc 172 atf_check -s exit:0 mkdir /rump/export 173 174 atf_check -s exit:0 sh -c \ 175 'echo "/export -noresvport -noresvmnt 10.1.1.100" | \ 176 dd of=/rump/etc/exports 2> /dev/null' 177 178 atf_check -s exit:0 -e ignore mount_ffs /dk /rump/export 179 atf_check -s exit:0 sh -c "echo ${magicstr} > /rump/export/im_alive" 180 181 # start rpcbind. we want /var/run/rpcbind.sock 182 export RUMPHIJACK='blanket=/var/run,socket=all' 183 atf_check -s exit:0 rpcbind 184 185 # ok, then we want mountd in the similar fashion 186 export RUMPHIJACK='blanket=/var/run:/var/db:/export,socket=all,path=/rump,vfs=all' 187 atf_check -s exit:0 mountd /rump/etc/exports 188 189 # finally, le nfschuck 190 export RUMPHIJACK='blanket=/var/run,socket=all,vfs=all' 191 atf_check -s exit:0 nfsd -tu 192 193 # 194 # now, time for the client server and associated madness. 195 # 196 197 export RUMP_SERVER=unix://clientsock 198 unset RUMPHIJACK 199 unset LD_PRELOAD 200 201 # at least the kernel server is easier 202 atf_check -s exit:0 rump_server -lrumpvfs -lrumpnet \ 203 -lrumpnet_net -lrumpnet_netinet -lrumpnet_shmif -lrumpfs_nfs\ 204 ${RUMP_SERVER} 205 206 atf_check -s exit:0 rump.ifconfig shmif0 create 207 atf_check -s exit:0 rump.ifconfig shmif0 linkstr shmbus 208 atf_check -s exit:0 rump.ifconfig shmif0 inet 10.1.1.100 209 210 export LD_PRELOAD=/usr/lib/librumphijack.so 211 212 atf_check -s exit:0 mkdir /rump/mnt 213 atf_check -s exit:0 mount_nfs 10.1.1.1:/export /rump/mnt 214 215 atf_check -s exit:0 -o inline:"${magicstr}\n" cat /rump/mnt/im_alive 216 atf_check -s exit:0 -o match:'.*im_alive$' ls -l /rump/mnt/im_alive 217 } 218 219 220 atf_test_case nfs cleanup 221 nfs_head() 222 { 223 atf_set "descr" "Test hijacked nfsd and mount_nfs" 224 } 225 226 nfs_body() 227 { 228 test_nfs -lrumpvfs -lrumpdev -lrumpnet -lrumpnet_net \ 229 -lrumpnet_netinet -lrumpnet_local -lrumpnet_shmif \ 230 -lrumpdev_disk -lrumpfs_ffs -lrumpfs_nfs -lrumpfs_nfsserver \ 231 -d key=/dk,hostpath=ffs.img,size=host 232 } 233 234 nfs_cleanup() 235 { 236 RUMP_SERVER=unix://serversock rump.halt 2> /dev/null 237 RUMP_SERVER=unix://clientsock rump.halt 2> /dev/null 238 : 239 } 240 241 atf_test_case nfs_autoload cleanup 242 nfs_autoload_head() 243 { 244 atf_set "descr" "Test hijacked nfsd with autoload from /stand" 245 } 246 247 nfs_autoload_body() 248 { 249 [ `uname -m` = "i386" ] || atf_skip "test currently valid only on i386" 250 test_nfs -lrumpvfs -lrumpdev -lrumpnet -lrumpnet_net \ 251 -lrumpnet_netinet -lrumpnet_local -lrumpnet_shmif \ 252 -lrumpdev_disk -d key=/dk,hostpath=ffs.img,size=host 253 } 254 255 nfs_autoload_cleanup() 256 { 257 nfs_cleanup 258 } 259 260 atf_init_test_cases() 261 { 262 atf_add_test_case http 263 atf_add_test_case ssh 264 atf_add_test_case nfs 265 atf_add_test_case nfs_autoload 266 } 267
Indexes created Thu Oct 02 01:09:59 GMT 2025