diff options
Diffstat (limited to 'lib/ssh')
| -rw-r--r-- | lib/ssh/doc/src/Makefile | 3 | ||||
| -rw-r--r-- | lib/ssh/doc/src/notes.xml | 17 | ||||
| -rw-r--r-- | lib/ssh/doc/src/ref_man.xml | 1 | ||||
| -rw-r--r-- | lib/ssh/doc/src/specs.xml | 1 | ||||
| -rw-r--r-- | lib/ssh/doc/src/ssh.xml | 113 | ||||
| -rw-r--r-- | lib/ssh/doc/src/ssh_app.xml | 7 | ||||
| -rw-r--r-- | lib/ssh/doc/src/ssh_file.xml | 275 | ||||
| -rw-r--r-- | lib/ssh/doc/src/ssh_sftp.xml | 1 | ||||
| -rw-r--r-- | lib/ssh/doc/src/terminology.xml | 185 | ||||
| -rw-r--r-- | lib/ssh/doc/src/usersguide.xml | 1 | ||||
| -rw-r--r-- | lib/ssh/doc/src/using_ssh.xml | 11 | ||||
| -rw-r--r-- | lib/ssh/src/ssh.hrl | 24 | ||||
| -rw-r--r-- | lib/ssh/src/ssh_connection_handler.erl | 4 | ||||
| -rw-r--r-- | lib/ssh/src/ssh_file.erl | 17 | ||||
| -rw-r--r-- | lib/ssh/src/ssh_options.erl | 12 | ||||
| -rw-r--r-- | lib/ssh/src/ssh_transport.erl | 3 | ||||
| -rw-r--r-- | lib/ssh/test/.gitignore | 5 | ||||
| -rw-r--r-- | lib/ssh/test/property_test/ssh_eqc_client_info_timing.erl | 20 | ||||
| -rw-r--r-- | lib/ssh/test/property_test/ssh_eqc_client_server.erl | 230 | ||||
| -rw-r--r-- | lib/ssh/test/ssh_compat_SUITE.erl | 13 | ||||
| -rwxr-xr-x | lib/ssh/test/ssh_compat_SUITE_data/build_scripts/create_all | 6 | ||||
| -rw-r--r-- | lib/ssh/test/ssh_property_test_SUITE.erl | 7 | 
22 files changed, 767 insertions, 189 deletions
| diff --git a/lib/ssh/doc/src/Makefile b/lib/ssh/doc/src/Makefile index 77fa356092..4e32dd9976 100644 --- a/lib/ssh/doc/src/Makefile +++ b/lib/ssh/doc/src/Makefile @@ -45,6 +45,7 @@ XML_REF3_FILES = \  	ssh_connection.xml \  	ssh_server_channel.xml \  	ssh_server_key_api.xml \ +	ssh_file.xml \  	ssh_sftp.xml \  	ssh_sftpd.xml \ @@ -56,8 +57,8 @@ XML_CHAPTER_FILES = \  	notes.xml \  	introduction.xml \  	using_ssh.xml \ +	terminology.xml \  	configure_algos.xml -#	ssh_protocol.xml \  BOOK_FILES = book.xml diff --git a/lib/ssh/doc/src/notes.xml b/lib/ssh/doc/src/notes.xml index 7e77c6a457..42bdf667f8 100644 --- a/lib/ssh/doc/src/notes.xml +++ b/lib/ssh/doc/src/notes.xml @@ -230,6 +230,22 @@      </section>  </section> +<section><title>Ssh 4.6.9.2</title> + +    <section><title>Fixed Bugs and Malfunctions</title> +      <list> +        <item> +          <p> +	    Incompatibility with newer OpenSSH fixed. Previously +	    versions 7.8 and later could cause Erlang SSH to exit.</p> +          <p> +	    Own Id: OTP-15413</p> +        </item> +      </list> +    </section> + +</section> +  <section><title>Ssh 4.6.9.1</title>      <section><title>Fixed Bugs and Malfunctions</title>        <list> @@ -3869,4 +3885,3 @@    </section>  </chapter> - diff --git a/lib/ssh/doc/src/ref_man.xml b/lib/ssh/doc/src/ref_man.xml index df37b0244f..60572b985b 100644 --- a/lib/ssh/doc/src/ref_man.xml +++ b/lib/ssh/doc/src/ref_man.xml @@ -40,6 +40,7 @@    <xi:include href="ssh_connection.xml"/>    <xi:include href="ssh_client_key_api.xml"/>    <xi:include href="ssh_server_key_api.xml"/> +  <xi:include href="ssh_file.xml"/>    <xi:include href="ssh_sftp.xml"/>    <xi:include href="ssh_sftpd.xml"/>  </application> diff --git a/lib/ssh/doc/src/specs.xml b/lib/ssh/doc/src/specs.xml index acdbe2ddfd..a6517f3660 100644 --- a/lib/ssh/doc/src/specs.xml +++ b/lib/ssh/doc/src/specs.xml @@ -6,6 +6,7 @@    <xi:include href="../specs/specs_ssh_connection.xml"/>    <xi:include href="../specs/specs_ssh_server_channel.xml"/>    <xi:include href="../specs/specs_ssh_server_key_api.xml"/> +  <xi:include href="../specs/specs_ssh_file.xml"/>    <xi:include href="../specs/specs_ssh_sftp.xml"/>    <xi:include href="../specs/specs_ssh_sftpd.xml"/>  </specs> diff --git a/lib/ssh/doc/src/ssh.xml b/lib/ssh/doc/src/ssh.xml index f238bf2ca8..8435fced11 100644 --- a/lib/ssh/doc/src/ssh.xml +++ b/lib/ssh/doc/src/ssh.xml @@ -99,8 +99,8 @@      </p>      <p>The paths could easily be changed by options: -    <seealso marker="#type-user_dir_common_option"><c>user_dir</c></seealso> and -    <seealso marker="#type-system_dir_daemon_option"><c>system_dir</c></seealso>. +    <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso> and +    <seealso marker="ssh_file#type-system_dir_daemon_option"><c>system_dir</c></seealso>.      </p>      <p>A completly different storage could be interfaced by writing call-back modules      using the behaviours @@ -123,12 +123,12 @@  	  <item><c>ssh_host_ecdsa_key</c> and <c>ssh_host_ecdsa_key.pub</c></item>  	</list>  	<p>The host keys directory could be changed with the option  -	<seealso marker="#type-system_dir_daemon_option"><c>system_dir</c></seealso>.</p> +	<seealso marker="ssh_file#type-system_dir_daemon_option"><c>system_dir</c></seealso>.</p>  	</item>  	<item>Optional: one or more <i>User's public key</i> in case of <c>publickey</c> authorization.  	Default is to store them concatenated in the file <c>.ssh/authorized_keys</c> in the user's home directory.  	<p>The user keys directory could be changed with the option  -	<seealso marker="#type-user_dir_common_option"><c>user_dir</c></seealso>.</p> +	<seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso>.</p>  	</item>        </list>      </section> @@ -138,7 +138,7 @@        <p>The keys and some other data are by default stored in files in the directory <c>.ssh</c>        in the user's home directory.</p>        <p>The directory could be changed with the option  -      <seealso marker="#type-user_dir_common_option"><c>user_dir</c></seealso>. +      <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso>.        </p>        <list>  	<item>Optional: a list of <i>Host public key(s)</i> for previously connected hosts. This list @@ -183,31 +183,6 @@      </datatype>      <datatype> -      <name name="pref_public_key_algs_client_option"/> -      <desc> -        <p>List of user (client) public key algorithms to try to use.</p> -	<p>The default value is the <c>public_key</c> entry in the list returned by -	<seealso marker="#default_algorithms/0">ssh:default_algorithms/0</seealso>. -	</p> -	<p>If there is no public key of a specified type available, the corresponding entry is ignored. -	Note that the available set is dependent on the underlying cryptolib and current user's public keys. -	</p> -        <p>See also the option <seealso marker="#type-user_dir_common_option"><c>user_dir</c></seealso> -        for specifying the path to the user's keys. -	</p> -      </desc> -    </datatype> - -    <datatype> -      <name name="pubkey_passphrase_client_options"/> -      <desc> -	<p>If the user's DSA, RSA or ECDSA key is protected by a passphrase, it can be -	supplied with thoose options. -	</p> -      </desc> -    </datatype> - -    <datatype>        <name name="host_accepting_client_options"/>        <name name="accept_hosts"/>        <name name="fp_digest_alg"/> @@ -220,7 +195,7 @@              <p>This option guides the <c>connect</c> function on how to act when the connected server presents a Host               Key that the client has not seen before. The default is to ask the user with a question on stdio of whether to              accept or reject the new Host Key. -            See the option <seealso marker="#type-user_dir_common_option"><c>user_dir</c></seealso> +            See the option <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso>              for specifying the path to the file <c>known_hosts</c> where previously accepted Host Keys are recorded.  	    See also the option   	    <seealso marker="#type-key_cb_common_option">key_cb</seealso> @@ -276,7 +251,7 @@  	    accept question the next time the same host is connected. If the option  	    <seealso marker="#type-key_cb_common_option"><c>key_cb</c></seealso>  	    is not present, the key is saved in the file "known_hosts". See option -	    <seealso marker="#type-user_dir_common_option"><c>user_dir</c></seealso> for +	    <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso> for  	    the location of that file.  	    </p>  	    <p>If <c>false</c>, the key is not saved and the key will still be unknown @@ -406,9 +381,20 @@      <datatype>        <name name="exec_daemon_option"/> +      <name name="exec_spec"/> +      <desc/> +    </datatype> +    <datatype> +      <name name="exec_fun"/> +      <desc/> +    </datatype> +    <datatype>        <name name="'exec_fun/1'"/>        <name name="'exec_fun/2'"/>        <name name="'exec_fun/3'"/> +      <desc/> +    </datatype> +    <datatype>        <name name="exec_result"/>        <desc>  	<p>This option changes how the daemon execute exec-requests from clients. The term in the return value @@ -478,18 +464,6 @@        <name name="pwdfun_4"/>        <desc>  	<taglist> -          <tag><marker id="type-system_dir_daemon_option"/><c>system_dir</c></tag> -          <item> -            <p>Sets the system directory, containing the host key files -            that identify the host keys for <c>ssh</c>. Defaults to -            <c>/etc/ssh</c>.</p> -	    <p>For security reasons, this directory is normally accessible only to the root user.</p> -	    <p>See also the option  -	    <seealso marker="#type-key_cb_common_option">key_cb</seealso> -	    for the general way to handle keys. -	    </p> -	  </item> -  	  <tag><c>auth_method_kb_interactive_data</c></tag>  	  <item>  	    <p>Sets the text strings that the daemon sends to the client for presentation to the user when @@ -502,7 +476,7 @@  	    </p>            </item> -	  <tag><c>user_passwords</c></tag> +	  <tag><marker id="option-user_passwords"/><c>user_passwords</c></tag>  	  <item>              <p>Provides passwords for password authentication. The passwords are used when someone tries  	    to connect to the server and public key user-authentication fails. The option provides @@ -510,7 +484,7 @@  	    </p>            </item> -          <tag><c>password</c></tag> +          <tag><marker id="option-password"/><c>password</c></tag>            <item>              <p>Provides a global password that authenticates any user.</p>  	    <warning> @@ -519,7 +493,9 @@  	    </warning>  	  </item> -	  <tag><c>pwdfun</c> with <c>pwdfun_4()</c></tag> +	  <tag><marker id="option-pwdfun"/><c>pwdfun</c> with  +	  <seealso marker="#type-pwdfun_4"><c>pwdfun_4()</c></seealso> +	  </tag>  	  <item>  	    <p>Provides a function for password validation. This could used for calling an external system or handeling  	    passwords stored as hash values. @@ -546,7 +522,9 @@  	    can be used for this. The return value <c>disconnect</c> is useful for this.</p>  	  </item> -	  <tag><c>pwdfun</c> with <c>pwdfun_2()</c></tag> +	  <tag><c>pwdfun</c> with +	  <seealso marker="#type-pwdfun_2"><c>pwdfun_2()</c></seealso> +	  </tag>  	  <item>  	    <p>Provides a function for password validation. This function is called with user and password  	    as strings, and returns:</p> @@ -725,21 +703,6 @@      </datatype>      <datatype> -      <name name="user_dir_common_option"/> -      <desc> -	<p>Sets the user directory. That is, the directory containing <c>ssh</c> configuration -	files for the user, such as  -	<c>known_hosts</c>, <c>id_rsa</c>, <c>id_dsa</c>>, <c>id_ecdsa</c> and <c>authorized_key</c>. -	Defaults to the directory normally referred to as <c>~/.ssh</c>. -	</p> -	<p>See also the option  -	<seealso marker="#type-key_cb_common_option">key_cb</seealso> -	for the general way to handle keys. -	</p> -      </desc> -    </datatype> - -    <datatype>        <name name="profile_common_option"/>        <desc>  	<p>Used together with <c>ip-address</c> and <c>port</c> to @@ -795,7 +758,8 @@  	</p>  	<p>The <c>Opts</c> defaults to <c>[]</c> when only the <c>Module</c> is specified.  	</p> -	<p>The default value of this option is <c>{ssh_file, []}</c>. +	<p>The default value of this option is <c>{ssh_file, []}</c>. See also the manpage of +	<seealso marker="ssh:ssh_file">ssh_file</seealso>.  	</p>  	<p>A call to the call-back function <c>F</c> will be</p>  	<code> @@ -804,13 +768,32 @@  	<p>where <c>...</c> are arguments to <c>F</c> as in   	<seealso marker="ssh_client_key_api">ssh_client_key_api</seealso> and/or  	<seealso marker="ssh_server_key_api">ssh_server_key_api</seealso>. -	The <c>UserOptions</c> are the options given to <c>ssh:connect</c>, <c>ssh:shell</c> or <c>ssh:daemon</c>. +	The <c>UserOptions</c> are the options given to  +	<seealso marker="ssh:ssh#connect-3">ssh:connect</seealso>, +	<seealso marker="ssh:ssh#shell-1">ssh:shell</seealso> or +	<seealso marker="ssh:ssh#daemon-2">ssh:daemon</seealso>.  	</p>        </desc>      </datatype>      <datatype> +      <name name="pref_public_key_algs_common_option"/> +      <desc> +        <p>List of user (client) public key algorithms to try to use.</p> +	<p>The default value is the <c>public_key</c> entry in the list returned by +	<seealso marker="#default_algorithms/0">ssh:default_algorithms/0</seealso>. +	</p> +	<p>If there is no public key of a specified type available, the corresponding entry is ignored. +	Note that the available set is dependent on the underlying cryptolib and current user's public keys. +	</p> +        <p>See also the option <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso> +        for specifying the path to the user's keys. +	</p> +      </desc> +    </datatype> + +    <datatype>        <name name="disconnectfun_common_option"/>        <desc>  	<p>Provides a fun to implement your own logging when the peer disconnects.</p> diff --git a/lib/ssh/doc/src/ssh_app.xml b/lib/ssh/doc/src/ssh_app.xml index e80bb1853d..eb804e67dc 100644 --- a/lib/ssh/doc/src/ssh_app.xml +++ b/lib/ssh/doc/src/ssh_app.xml @@ -74,13 +74,18 @@        <c>id_ecdsa_key</c>,        <c>known_hosts</c>, and <c>authorized_keys</c> in ~/.ssh,        and for the host key files in <c>/etc/ssh</c>. These locations can be changed -      by the options <c>user_dir</c> and <c>system_dir</c>. +      by the options +      <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso> and +      <seealso marker="ssh_file#type-system_dir_daemon_option"><c>system_dir</c></seealso>.        </p>        <p>Public key handling can also be customized through a callback module that        implements the behaviors        <seealso marker="ssh_client_key_api">ssh_client_key_api</seealso> and        <seealso marker="ssh_server_key_api">ssh_server_key_api</seealso>.        </p> +      <p>See also the default callback module documentation in +      <seealso marker="ssh_file">ssh_file</seealso>. +      </p>    </section>    <section> diff --git a/lib/ssh/doc/src/ssh_file.xml b/lib/ssh/doc/src/ssh_file.xml new file mode 100644 index 0000000000..ae6ba2e1d9 --- /dev/null +++ b/lib/ssh/doc/src/ssh_file.xml @@ -0,0 +1,275 @@ +<?xml version="1.0" encoding="utf-8" ?> +<!DOCTYPE erlref SYSTEM "erlref.dtd"> + +<erlref> +  <header> +    <copyright> +      <year>2018</year><year>2018</year> +      <holder>Ericsson AB. All Rights Reserved.</holder> +    </copyright> +    <legalnotice> +      Licensed under the Apache License, Version 2.0 (the "License"); +      you may not use this file except in compliance with the License. +      You may obtain a copy of the License at +       +      http://www.apache.org/licenses/LICENSE-2.0 + +      Unless required by applicable law or agreed to in writing, software +      distributed under the License is distributed on an "AS IS" BASIS, +      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +      See the License for the specific language governing permissions and +      limitations under the License. + +    </legalnotice> +     +    <title>ssh_file</title> +    <prepared></prepared> +    <docno></docno> +    <date></date> +    <rev></rev> +  </header> +  <module>ssh_file</module> +  <modulesummary>Default callback module for the client's and server's database operations in the ssh application</modulesummary> +  <description> +    <p>This module is the default callback handler for the client's and the server's user and host "database" operations. +    All data, for instance key pairs, are stored in files in the normal file system. This page documents the files, where they +    are stored and configuration options for this callback module. +    </p> +    <p>The intention is to be compatible with the +    <url href="http://www.openssh.com">OpenSSH</url> +    storage in files. Therefore it mimics directories and filenames of +    <url href="http://www.openssh.com">OpenSSH</url>. +    </p> + +    <p>Ssh_file implements the <seealso marker="ssh:ssh_server_key_api">ssh_server_key_api</seealso> and +    the <seealso marker="ssh:ssh_client_key_api">ssh_client_key_api</seealso>. +    This enables the user to make an own interface using for example a database handler. +    </p> +    <p>Such another callback module could be used by setting the option +    <seealso marker="ssh:ssh#type-key_cb_common_option"><c>key_cb</c></seealso> +    when starting a client or a server (with for example +    <seealso marker="ssh:ssh#connect-3">ssh:connect</seealso>, +    <seealso marker="ssh:ssh#daemon-2">ssh:daemon</seealso> of +    <seealso marker="ssh:ssh#shell-1">ssh:shell</seealso> +    ). +    </p> + +    <note> +      <p>The functions are <i>Callbacks</i> for the SSH app. They are not intended to be called from the user's code! +      </p> +    </note> +  </description> + +  <section> +    <title>Files, directories and who uses them</title> +    <section> +      <title>Daemons</title> +      <p>Daemons uses all files stored in the <seealso marker="#SYSDIR">SYSDIR</seealso> directory. +      </p> +      <p>Optionaly, in case of <c>publickey</c> authorization, one or more of the remote user's public keys +      in the <seealso marker="#USERDIR">USERDIR</seealso> directory are used. +      See the files  +      <seealso marker="#USERDIR-authorized_keys"><c>USERDIR/authorized_keys</c></seealso> and +      <seealso marker="#USERDIR-authorized_keys2"><c>USERDIR/authorized_keys2</c></seealso>. +      </p> +    </section> + +    <section> +      <title>Clients</title> +      <p>Clients uses all files stored in the <seealso marker="#USERDIR">USERDIR</seealso> directory. +      </p> +    </section> + +    <section> +      <title>Directory contents</title> +      <taglist> +	<tag><marker id="LOCALUSER"/>LOCALUSER</tag> +	<item><p>The user name of the OS process running the Erlang virtual machine (emulator).</p> +	</item> + +	<tag><marker id="SYSDIR"/>SYSDIR</tag> +	<item><p>This is the directory holding the server's files:</p> +	<list> +	  <item><marker id="SYSDIR-ssh_host_dsa_key"/><c>ssh_host_dsa_key</c> - private dss host key (optional)</item> +	  <item><marker id="SYSDIR-ssh_host_rsa_key"/><c>ssh_host_rsa_key</c> - private rsa host key (optional)</item> +	  <item><marker id="SYSDIR-ssh_host_ecdsa_key"/><c>ssh_host_ecdsa_key</c> - private ecdsa host key (optional)</item> +	</list> +	<p>At least one host key must be defined. The default value of SYSDIR is <marker id="#/etc/ssh"/><c>/etc/ssh</c>. +	</p> +	<p>For security reasons, this directory is normally accessible only to the root user. +	</p> +	<p>To change the SYSDIR, see the <seealso marker="#type-system_dir_daemon_option">system_dir</seealso> option. +	</p> +	</item> + +	<tag><marker id="USERDIR"/>USERDIR</tag> +	<item><p>This is the directory holding the files:</p> +	<list> +	  <item><marker id="USERDIR-authorized_keys"/><c>authorized_keys</c> +	  and, as second alternative +	  <marker id="USERDIR-authorized_keys2"/><c>authorized_keys2</c> -  +	  the user's public keys are stored concatenated in one of those files. +	  </item> +	  <item><marker id="USERDIR-known_hosts"/><c>known_hosts</c> - host keys from hosts visited +	  concatenated. The file is created and used by the client.</item> +	  <item><marker id="USERDIR-id_dsa"/><c>id_dsa</c> - private dss user key (optional)</item> +	  <item><marker id="USERDIR-id_rsa"/><c>id_rsa</c> - private rsa user key (optional)</item> +	  <item><marker id="USERDIR-id_ecdsa"/><c>id_ecdsa</c> - private ecdsa user key (optional)</item> +	</list> +	<p>The default value of USERDIR is <c>/home/</c><seealso marker="#LOCALUSER"><c>LOCALUSER</c></seealso><c>/.ssh</c>. +	</p> +	<p>To change the USERDIR, see the <seealso marker="#type-user_dir_common_option">user_dir</seealso> option +	</p> +	</item> +      </taglist> +    </section> +  </section> + +  <datatypes> +    <datatype_title>Options for the default ssh_file callback module</datatype_title> +    <datatype> +      <name name="user_dir_common_option"/> +      <desc> +	<p>Sets the <seealso marker="#USERDIR">user directory</seealso>.</p> +      </desc> +    </datatype> + +    <datatype> +      <name name="user_dir_fun_common_option"/> +      <name name="user2dir"/> +      <desc> +	<p>Sets the <seealso marker="#USERDIR">user directory</seealso> dynamically +	by evaluating the <c>user2dir</c> function. +	</p> +      </desc> +    </datatype> + +    <datatype> +      <name name="system_dir_daemon_option"/> +      <desc> +        <p>Sets the <seealso marker="#SYSDIR">system directory</seealso>.</p> +      </desc> +    </datatype> + +    <datatype> +      <name name="pubkey_passphrase_client_options"/> +      <desc> +	<p>If the user's DSA, RSA or ECDSA key is protected by a passphrase, it can be +	supplied with thoose options. +	</p> +      </desc> +    </datatype> + +  </datatypes> + +  <funcs> +    <func> +      <name>host_key(Algorithm, DaemonOptions) -> {ok, Key} | {error, Reason}</name> +      <fsummary></fsummary> +      <desc> +	<p><strong>Types and description</strong></p> +	<p>See the api description in +	<seealso marker="ssh:ssh_server_key_api#Module:host_key-2">ssh_server_key_api, Module:host_key/2</seealso>. +	</p> +	<p><strong>Options</strong></p> +	<list> +	  <item><seealso marker="#type-system_dir_daemon_option">system_dir</seealso></item> +	  <!-- item>dsa_pass_phrase</item --> +	  <!-- item>rsa_pass_phrase</item --> +	  <!-- item>ecdsa_pass_phrase</item --> +	</list> +	<p><strong>Files</strong></p> +	<list> +	  <item><seealso marker="#SYSDIR-ssh_host_rsa_key"><c>SYSDIR/ssh_host_rsa_key</c></seealso></item> +	  <item><seealso marker="#SYSDIR-ssh_host_dsa_key"><c>SYSDIR/ssh_host_dsa_key</c></seealso></item> +	  <item><seealso marker="#SYSDIR-ssh_host_ecdsa_key"><c>SYSDIR/ssh_host_ecdsa_key</c></seealso></item> +	</list> +      </desc> +    </func> + +    <func> +      <name>is_auth_key(PublicUserKey, User, DaemonOptions) -> Result</name> +      <fsummary></fsummary> +      <desc> +	<p><strong>Types and description</strong></p> +	<p>See the api description in +	<seealso marker="ssh:ssh_server_key_api#Module:is_auth_key-3">ssh_server_key_api: Module:is_auth_key/3</seealso>. +	</p> +	<p><strong>Options</strong></p> +	<list> +	  <item><seealso marker="#type-user_dir_fun_common_option">user_dir_fun</seealso></item> +	  <item><seealso marker="#type-user_dir_common_option">user_dir</seealso></item> +	</list> +	<p><strong>Files</strong></p> +	<list> +	  <item><seealso marker="#USERDIR-authorized_keys"><c>USERDIR/authorized_keys</c></seealso></item> +	  <item><seealso marker="#USERDIR-authorized_keys2"><c>USERDIR/authorized_keys2</c></seealso></item> +	</list> +      </desc> +    </func> + +    <func> +      <name>add_host_key(HostNames, PublicHostKey, ConnectOptions) -> ok | {error, Reason}</name> +      <fsummary></fsummary> +      <desc> +	<p><strong>Types and description</strong></p> +	<p>See the api description in +	<seealso marker="ssh:ssh_client_key_api#Module:add_host_key-3">ssh_client_key_api, Module:add_host_key/3</seealso>. +	</p> +	<p><strong>Option</strong></p> +	<list> +	  <item><seealso marker="#type-user_dir_common_option">user_dir</seealso></item> +	</list> +	<p><strong>File</strong></p> +	<list> +	  <item><seealso marker="#USERDIR-known_hosts"><c>USERDIR/known_hosts</c></seealso></item> +	</list> +      </desc> +    </func> + +    <func> +      <name>is_host_key(Key, Host, Algorithm, ConnectOptions) -> Result</name> +      <fsummary></fsummary> +      <desc> +	<p><strong>Types and description</strong></p> +	<p>See the api description in +	<seealso marker="ssh:ssh_client_key_api#Module:is_host_key-4">ssh_client_key_api, Module:is_host_key/4</seealso>. +	</p> +	<p><strong>Option</strong></p> +	<list> +	  <item><seealso marker="#type-user_dir_common_option">user_dir</seealso></item> +	</list> +	<p><strong>File</strong></p> +	<list> +	  <item><seealso marker="#USERDIR-known_hosts"><c>USERDIR/known_hosts</c></seealso></item> +	</list> +      </desc> +    </func> + +    <func> +      <name>user_key(Algorithm, ConnectOptions) -> {ok, PrivateKey} | {error, Reason}</name> +      <fsummary></fsummary> +      <desc> +	<p><strong>Types and description</strong></p> +	<p>See the api description in +	<seealso marker="ssh:ssh_client_key_api#Module:user_key-2">ssh_client_key_api, Module:user_key/2</seealso>. +	</p> +	<p><strong>Options</strong></p> +	<list> +	  <item><seealso marker="#type-user_dir_common_option">user_dir</seealso></item> +	  <item><seealso marker="#type-pubkey_passphrase_client_options">dsa_pass_phrase</seealso></item> +	  <item><seealso marker="#type-pubkey_passphrase_client_options">rsa_pass_phrase</seealso></item> +	  <item><seealso marker="#type-pubkey_passphrase_client_options">ecdsa_pass_phrase</seealso></item> +	</list> +	<p><strong>Files</strong></p> +	<list> +	  <item><seealso marker="#USERDIR-id_dsa"><c>USERDIR/id_dsa</c></seealso></item> +	  <item><seealso marker="#USERDIR-id_rsa"><c>USERDIR/id_rsa</c></seealso></item> +	  <item><seealso marker="#USERDIR-id_ecdsa"><c>USERDIR/id_ecdsa</c></seealso></item> +	</list> +      </desc> +    </func> + +  </funcs> + +</erlref> diff --git a/lib/ssh/doc/src/ssh_sftp.xml b/lib/ssh/doc/src/ssh_sftp.xml index ea55126cb3..8c105147d6 100644 --- a/lib/ssh/doc/src/ssh_sftp.xml +++ b/lib/ssh/doc/src/ssh_sftp.xml @@ -425,7 +425,6 @@        <type>          <v>ChannelPid = pid()</v>          <v>Handle = term()</v> -        <v>Position = integer()</v>          <v>Len = integer()</v>  	<v>Timeout = timeout()</v>          <v>Data = string() | binary()</v> diff --git a/lib/ssh/doc/src/terminology.xml b/lib/ssh/doc/src/terminology.xml new file mode 100644 index 0000000000..db1e08970d --- /dev/null +++ b/lib/ssh/doc/src/terminology.xml @@ -0,0 +1,185 @@ +<?xml version="1.0" encoding="utf-8" ?> +<!DOCTYPE chapter SYSTEM "chapter.dtd"> + +<chapter> +  <header> +    <copyright> +      <year>2018</year> +      <year>2018</year> +      <holder>Ericsson AB. All Rights Reserved.</holder> +    </copyright> +    <legalnotice> +      Licensed under the Apache License, Version 2.0 (the "License"); +      you may not use this file except in compliance with the License. +      You may obtain a copy of the License at + +          http://www.apache.org/licenses/LICENSE-2.0 + +      Unless required by applicable law or agreed to in writing, software +      distributed under the License is distributed on an "AS IS" BASIS, +      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +      See the License for the specific language governing permissions and +      limitations under the License. + +    </legalnotice> + +    <title>Terminology</title> +    <prepared></prepared> +    <docno></docno> +    <approved></approved> +    <date></date> +    <rev></rev> +    <file>terminology.xml</file> +  </header> + +  <section> +    <title>General Information</title> +    <p>In the following terms that may cause confusion are explained. +    </p> +  </section> + +  <section> +    <title>The term "user"</title> +    <p>A "user" is a term that everyone understands intuitively. However, the understandings may differ which can +       cause confusion. +    </p> +    <p>The term is used differently in <url href="http://www.openssh.com">OpenSSH</url> and SSH in Erlang/OTP. +       The reason is the different environments and use cases that are not immediatly obvious. +    </p> +    <p>This chapter aims at explaining the differences and giving a rationale for why Erlang/OTP handles "user" as +       it does. +    </p> + +    <section> +      <title>In OpenSSH</title> +      <p>Many have been in contact with the command 'ssh' on a Linux machine (or similar) to remotly log in on +      another machine. One types  +      </p> +      <code>ssh host</code> +      <p>to log in on the machine named <c>host</c>. The command prompts for your password on the remote <c>host</c> and +      then you can read, write and execute as your <i>user name</i> has rights on the remote <c>host</c>. There are +      stronger variants with pre-distributed keys or certificates, but that are for now just details in the +      authentication process. +      </p> +      <p>You could log in as the user <c>anotheruser</c> with +      </p> +      <code>ssh anotheruser@host</code> +      <p>and you will then be enabled to act as <c>anotheruser</c> on the <c>host</c> if authorized correctly. +      </p> +      <p>So what does <i>"your user name has rights"</i> mean? In a UNIX/Linux/etc context it is exactly as that context: +      The <i>user</i> could read, write and execute programs according to the OS rules. +      In addition, the user has a home directory (<c>$HOME</c>) and there is a <c>$HOME/.ssh/</c> directory +      with ssh-specific files. +      </p> +      <section> +	<title>SSH password authentication</title> +	<p>When SSH tries to log in to a host, the ssh protocol communicates the user name (as a string) and a password. +	The remote ssh server checks that there is such a user defined and that the provided password is acceptable. +	</p> +	<p>If so, the user is authorized. +	</p> +      </section> +      <section> +	<title>SSH public key authentication</title> +	<p>This is a stronger method where the ssh protocol brings the user name, the user's public key and some +	cryptographic information which we could ignore here. +	</p> +	<p>The ssh server on the remote host checks: +	</p> +	<list> +	  <item>That the <i>user</i> has a home directory,</item> +	  <item>that home directory contains a .ssh/ directory and</item> +	  <item>the .ssh/ directory contains the public key just received in the <c>authorized_keys</c> file</item> +	</list> +	<p>if so, the user is authorized. +	</p> +      </section> +      <section> +	<title>The SSH server on UNIX/Linux/etc after a succesful authentication</title> +	<p>After a succesful incoming authentication, a new process runs as the just authenticated user.</p> +	<p>Next step is to start a service according to the ssh request. In case of a request of a shell,  +	a new one is started which handles the OS-commands that arrives from the client (that's "you"). +	</p> +	<p>In case of a sftp request, an sftp server is started in with the user's rights. So it could read, write or delete +	files if allowed for that user. +	</p> +      </section> +    </section> + +    <section> +      <title>In Erlang/OTP SSH</title> +      <p>For the Erlang/OTP SSH server the situation is different. The server executes in an Erlang process +      in the Erlang emulator which in turn executes in an OS process. The emulator does not try to change its +      user when authenticated over the SSH protocol. +      So the remote user name is only for authentication purposes in the Erlang/OTP SSH application. +      </p> +      <section> +	<title>Password authentication in Erlang SSH</title> +	<p>The Erlang/OTP SSH server checks the user name and password in the following order: +	</p> +	<list type="ordered"> +	  <item>If a  +	  <seealso marker="ssh:ssh#option-pwdfun"><c>pwdfun</c></seealso> +	  is defined, that one is called and the returned boolean is the authentication result. +	  </item> +	  <item>Else, if the  +	  <seealso marker="ssh:ssh#option-user_passwords"><c>user_passwords</c></seealso> +	  option is defined and the username and the password matches, the authentication is a success. +	  </item> +	  <item>Else, if the option  +	  <seealso marker="ssh:ssh#option-password"><c>password</c></seealso> +	  is defined and matches the password the authentication is a success. +	  Note that the use of this option is not recommended in non-test code. +	  </item> +	</list> +      </section> +      <section> +	<title>Public key authentication in Erlang SSH</title> +	<p>The user name, public key and cryptographic data (a signature) that is sent by the client, are used as follows +	(some steps left out for clearity): +	</p> +	<list type="ordered"> +	  <item>A callback module is selected using the options  +	  <seealso marker="ssh:ssh#type-key_cb_common_option"><c>key_cb</c></seealso>. +	  </item> +	  <item>The callback module is used to check that the provided public key is one of the user's pre-stored. +	        In case of the default callback module, the files <c>authorized_keys</c> and <c>authorized_keys2</c> +		are searched in a directory found in the following order: +		<list> +		  <item>If the option +		  <seealso marker="ssh:ssh_file#type-user_dir_fun_common_option"><c>user_dir_fun</c></seealso> +		  is defined, that fun is called and the returned directory is used, +		  </item> +		  <item>Else, If the option  +		  <seealso marker="ssh:ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso> +			is defined, that directory is used, +		  </item> +		  <item>Else the subdirectory <c>.ssh</c> in the home directory of the user executing +		  the OS process of the Erlang emulator is used. +		  </item> +		</list> +		If the provided public key is not found, the authentication fails. +	  </item> +	  <item>Finally, if the provided public key is found, the signature provided by the client is checked with +	  the public key. +	  </item> +	</list> +      </section> +      <section> +	<title>The Erlang/OTP SSH server after a succesful authentication</title> +	<p>After a successful authentication an <i>Erlang process</i> is handling the service request from the remote +	ssh client. The rights of that process are those of the user of the OS process running the Erlang emulator. +	</p> +	<p>If a shell service request arrives to the server, an <i>Erlang shell</i> is opened in the server's emulator. +	The rights in that shell is independent of the just authenticated user. +	</p> +	<p>In case of an sftp request, an sftp server is started with the rights of the user of the Erlang emulator's OS +	process. So with sftp the authenticated user does not influence the rights. +	</p> +	<p>So after an authentication, the user name is not used anymore and has no influence. +	</p> +      </section> +    </section> +  </section> +</chapter> +	 diff --git a/lib/ssh/doc/src/usersguide.xml b/lib/ssh/doc/src/usersguide.xml index 38ffa48cde..8a4df208d8 100644 --- a/lib/ssh/doc/src/usersguide.xml +++ b/lib/ssh/doc/src/usersguide.xml @@ -36,5 +36,6 @@    </description>    <xi:include href="introduction.xml"/>    <xi:include href="using_ssh.xml"/> +  <xi:include href="terminology.xml"/>    <xi:include href="configure_algos.xml"/>  </part> diff --git a/lib/ssh/doc/src/using_ssh.xml b/lib/ssh/doc/src/using_ssh.xml index 80662e9a70..4455d5ecc5 100644 --- a/lib/ssh/doc/src/using_ssh.xml +++ b/lib/ssh/doc/src/using_ssh.xml @@ -74,16 +74,17 @@      <marker id="Running an Erlang ssh Daemon"></marker>      <title>Running an Erlang ssh Daemon</title> -    <p>The <c>system_dir</c> option must be a directory containing a host -    key file and it defaults to <c>/etc/ssh</c>. For details, see Section -    Configuration Files in <seealso -    marker="SSH_app">ssh(6)</seealso>. +    <p>The +    <seealso marker="ssh_file#type-system_dir_daemon_option"><c>system_dir</c></seealso> +    option must be a directory containing a host key file and it defaults to <c>/etc/ssh</c>. +    For details, see Section Configuration Files in <seealso marker="SSH_app">ssh(6)</seealso>.      </p>      <note><p>Normally, the <c>/etc/ssh</c> directory is only readable by root.</p>      </note> -    <p>The option <c>user_dir</c> defaults to directory <c>users ~/.ssh</c>.</p> +    <p>The option <seealso marker="ssh_file#type-user_dir_common_option"><c>user_dir</c></seealso> +    defaults to directory <c>users ~/.ssh</c>.</p>      <p><em>Step 1.</em> To run the example without root privileges,      generate new keys and host keys:</p> diff --git a/lib/ssh/src/ssh.hrl b/lib/ssh/src/ssh.hrl index 94b9f3a196..f645201c4f 100644 --- a/lib/ssh/src/ssh.hrl +++ b/lib/ssh/src/ssh.hrl @@ -173,7 +173,7 @@  -type common_options() :: [ common_option() ].  -type common_option() ::  -        user_dir_common_option() +        ssh_file:user_dir_common_option()        | profile_common_option()        | max_idle_time_common_option()        | key_cb_common_option() @@ -182,6 +182,7 @@        | ssh_msg_debug_fun_common_option()        | rekey_limit_common_option()        | id_string_common_option() +      | pref_public_key_algs_common_option()        | preferred_algorithms_common_option()        | modify_algorithms_common_option()        | auth_methods_common_option() @@ -191,8 +192,6 @@  -define(COMMON_OPTION, common_option()). - --type user_dir_common_option()      :: {user_dir,  false | string()}.  -type profile_common_option()       :: {profile,   atom() }.  -type max_idle_time_common_option() :: {idle_time, timeout()}.  -type rekey_limit_common_option()   :: {rekey_limit, Bytes::limit_bytes() | @@ -211,6 +210,7 @@          {ssh_msg_debug_fun, fun((ssh:connection_ref(),AlwaysDisplay::boolean(),Msg::binary(),LanguageTag::binary()) -> any()) } .  -type id_string_common_option()           :: {id_string,  string() | random | {random,Nmin::pos_integer(),Nmax::pos_integer()} }. +-type pref_public_key_algs_common_option() :: {pref_public_key_algs, [pubkey_alg()] } .  -type preferred_algorithms_common_option():: {preferred_algorithms, algs_list()}.  -type modify_algorithms_common_option()   :: {modify_algorithms,    modify_algs_list()}.  -type auth_methods_common_option()        :: {auth_methods,         string() }. @@ -223,14 +223,13 @@          {transport, {atom(),atom(),atom()} }        | {vsn, {non_neg_integer(),non_neg_integer()} }        | {tstflg, list(term())} -      | {user_dir_fun, fun()} +      | ssh_file:user_dir_fun_common_option()        | {max_random_length_padding, non_neg_integer()} .  -type client_option()         :: -        pref_public_key_algs_client_option() -      | pubkey_passphrase_client_options() +        ssh_file:pubkey_passphrase_client_options()        | host_accepting_client_options()        | authentication_client_options()        | diffie_hellman_group_exchange_client_option() @@ -244,12 +243,6 @@          {keyboard_interact_fun, fun((term(),term(),term()) -> term())}          | opaque_common_options(). --type pref_public_key_algs_client_option() :: {pref_public_key_algs, [pubkey_alg()] } . - --type pubkey_passphrase_client_options() ::   {dsa_pass_phrase,      string()} -                                            | {rsa_pass_phrase,      string()} -                                            | {ecdsa_pass_phrase,    string()} . -  -type host_accepting_client_options() ::          {silently_accept_hosts, accept_hosts()}        | {user_interaction,     boolean()} @@ -299,8 +292,9 @@  -type 'shell_fun/1'() :: fun((User::string()) -> pid()) .  -type 'shell_fun/2'() :: fun((User::string(),  PeerAddr::inet:ip_address()) -> pid()). --type exec_daemon_option()      :: {exec, 'exec_fun/1'() | 'exec_fun/2'() | 'exec_fun/3'() }. - +-type exec_daemon_option()      :: {exec, exec_spec()} . +-type exec_spec()               :: {direct, exec_fun()} . +-type exec_fun()                :: 'exec_fun/1'() | 'exec_fun/2'() | 'exec_fun/3'().  -type 'exec_fun/1'() :: fun((Cmd::string()) -> exec_result()) .  -type 'exec_fun/2'() :: fun((Cmd::string(), User::string()) -> exec_result()) .  -type 'exec_fun/3'() :: fun((Cmd::string(), User::string(), ClientAddr::ip_port()) -> exec_result()) . @@ -311,7 +305,7 @@  -type send_ext_info_daemon_option() :: {send_ext_info, boolean()} .  -type authentication_daemon_options() :: -        {system_dir, string()} +        ssh_file:system_dir_daemon_option()        | {auth_method_kb_interactive_data, prompt_texts() }        | {user_passwords, [{UserName::string(),Pwd::string()}]}        | {password, string()} diff --git a/lib/ssh/src/ssh_connection_handler.erl b/lib/ssh/src/ssh_connection_handler.erl index 4b41c10cbb..30eafc2f2a 100644 --- a/lib/ssh/src/ssh_connection_handler.erl +++ b/lib/ssh/src/ssh_connection_handler.erl @@ -983,6 +983,10 @@ handle_event(_, #ssh_msg_userauth_info_request{}, {userauth_keyboard_interactive  %%% ######## {connected, client|server} #### +%% Skip ext_info messages in connected state (for example from OpenSSH >= 7.7) +handle_event(_, #ssh_msg_ext_info{}, {connected,_Role}, D) -> +    {keep_state, D}; +  handle_event(_, {#ssh_msg_kexinit{},_}, {connected,Role}, D0) ->      {KeyInitMsg, SshPacket, Ssh} = ssh_transport:key_exchange_init_msg(D0#data.ssh_params),      D = D0#data{ssh_params = Ssh, diff --git a/lib/ssh/src/ssh_file.erl b/lib/ssh/src/ssh_file.erl index 832952ed52..669b0f9be2 100644 --- a/lib/ssh/src/ssh_file.erl +++ b/lib/ssh/src/ssh_file.erl @@ -39,6 +39,23 @@  	 is_auth_key/3]). +-export_type([system_dir_daemon_option/0, +              user_dir_common_option/0, +              user_dir_fun_common_option/0, +              pubkey_passphrase_client_options/0 +             ]). + +-type system_dir_daemon_option()   :: {system_dir, string()}. +-type user_dir_common_option()     :: {user_dir,  string()}. +-type user_dir_fun_common_option() :: {user_dir_fun, user2dir()}. +-type user2dir() :: fun((RemoteUserName::string()) -> UserDir :: string()) . + +-type pubkey_passphrase_client_options() ::   {dsa_pass_phrase,      string()} +                                            | {rsa_pass_phrase,      string()} +                                            | {ecdsa_pass_phrase,    string()} . + + +  -define(PERM_700, 8#700).  -define(PERM_644, 8#644). diff --git a/lib/ssh/src/ssh_options.erl b/lib/ssh/src/ssh_options.erl index bc9f2156bc..bc9b0b6eda 100644 --- a/lib/ssh/src/ssh_options.erl +++ b/lib/ssh/src/ssh_options.erl @@ -452,12 +452,6 @@ default(client) ->              class => user_options             }, -      {pref_public_key_algs, def} => -          #{default => ssh_transport:default_algorithms(public_key), -            chk => fun check_pref_public_key_algs/1, -            class => user_options -           }, -        {dh_gex_limits, def} =>            #{default => {1024, 6144, 8192},      % FIXME: Is this true nowadays?              chk => fun({Min,I,Max}) -> @@ -523,6 +517,12 @@ default(common) ->               class => user_options              }, +      {pref_public_key_algs, def} => +          #{default => ssh_transport:default_algorithms(public_key), +            chk => fun check_pref_public_key_algs/1, +            class => user_options +           }, +         {preferred_algorithms, def} =>             #{default => ssh:default_algorithms(),               chk => fun check_preferred_algorithms/1, diff --git a/lib/ssh/src/ssh_transport.erl b/lib/ssh/src/ssh_transport.erl index c5b0704925..7424c9bcaf 100644 --- a/lib/ssh/src/ssh_transport.erl +++ b/lib/ssh/src/ssh_transport.erl @@ -759,8 +759,7 @@ ext_info_message(#ssh{role=server,                        send_ext_info=true,                        opts = Opts} = Ssh0) ->      AlgsList = lists:map(fun erlang:atom_to_list/1, -                         proplists:get_value(public_key, -                                             ?GET_OPT(preferred_algorithms, Opts))), +                         ?GET_OPT(pref_public_key_algs, Opts)),      Msg = #ssh_msg_ext_info{nr_extensions = 1,                              data = [{"server-sig-algs", string:join(AlgsList,",")}]                             }, diff --git a/lib/ssh/test/.gitignore b/lib/ssh/test/.gitignore new file mode 100644 index 0000000000..c9d5f086b3 --- /dev/null +++ b/lib/ssh/test/.gitignore @@ -0,0 +1,5 @@ + + +property_test/ssh_eqc_client_server_dirs/system +property_test/ssh_eqc_client_server_dirs/user + diff --git a/lib/ssh/test/property_test/ssh_eqc_client_info_timing.erl b/lib/ssh/test/property_test/ssh_eqc_client_info_timing.erl index 6d0d8f5d99..f4b521356f 100644 --- a/lib/ssh/test/property_test/ssh_eqc_client_info_timing.erl +++ b/lib/ssh/test/property_test/ssh_eqc_client_info_timing.erl @@ -58,6 +58,7 @@  %%% Properties:  prop_seq(Config) -> +    error_logger:tty(false),      {ok,Pid} = ssh_eqc_event_handler:add_report_handler(),      {_, _, Port} = init_daemon(Config),      numtests(1000, @@ -66,16 +67,25 @@ prop_seq(Config) ->  			 send_bad_sequence(Port, Delay, Pid),  			 not any_relevant_error_report(Pid)  		     catch -			 C:E -> io:format('~p:~p~n',[C,E]), +			 C:E:S -> ct:log("~p:~p~n~p",[C,E,S]),  				false  		     end  		    )).  send_bad_sequence(Port, Delay, Pid) -> -    {ok,S} = gen_tcp:connect("localhost",Port,[]), -    gen_tcp:send(S,"Illegal info-string\r\n"), -    ssh_test_lib:sleep_microsec(Delay), -    gen_tcp:close(S). +    send_bad_sequence(Port, Delay, Pid, 10). + +send_bad_sequence(Port, Delay, Pid, N) -> +    case gen_tcp:connect("localhost",Port,[]) of +        {ok,S} -> +            gen_tcp:send(S,"Illegal info-string\r\n"), +            ssh_test_lib:sleep_microsec(Delay), +            gen_tcp:close(S); + +        {error,econnreset} when N>0 -> +            timer:sleep(1), +            send_bad_sequence(Port, Delay, Pid, N-1) +    end.  any_relevant_error_report(Pid) ->      {ok, Reports} = ssh_eqc_event_handler:get_reports(Pid), diff --git a/lib/ssh/test/property_test/ssh_eqc_client_server.erl b/lib/ssh/test/property_test/ssh_eqc_client_server.erl index 39d0b4e410..acb0faa0c7 100644 --- a/lib/ssh/test/property_test/ssh_eqc_client_server.erl +++ b/lib/ssh/test/property_test/ssh_eqc_client_server.erl @@ -22,25 +22,27 @@  -module(ssh_eqc_client_server).  -compile(export_all). +  +-proptest([proper]). --include_lib("common_test/include/ct.hrl"). - --ifdef(PROPER). -%% Proper is not supported. --else. --ifdef(TRIQ). -%% Proper is not supported. +-ifndef(PROPER).  -else. +%% Only use proper +%%  +%% Previously only EQC was supported, but the changes to support PROPER is not +%% just a wrapper. Since we do not have access to eqc we can't test the changes +%% so therefore eqc is disabeled. +%% However, with access to eqc it ought to be quite easy to re-enable eqc by +%% studying the diff. +-include_lib("proper/include/proper.hrl"). +-define(MOD_eqc,proper). + +-include_lib("common_test/include/ct.hrl").  %% Limit the testing time on CI server... this needs to be improved in % from total budget.  -define(TESTINGTIME(Prop), eqc:testing_time(30,Prop)). - --include_lib("eqc/include/eqc.hrl"). --include_lib("eqc/include/eqc_statem.hrl"). --eqc_group_commands(true). -  -define(SSH_DIR,"ssh_eqc_client_server_dirs").  -define(sec, *1000). @@ -51,10 +53,6 @@  	      port  	     }). --record(conn,{ref, -	      srvr_ref -	     }). -  -record(chan, {ref,  	       conn_ref,  	       subsystem, @@ -65,7 +63,7 @@  	  initialized = false,  	  servers = [],       % [#srvr{}]  	  clients = [], -	  connections = [],   % [#conn{}] +	  connections = [],  	  channels = [],      % [#chan{}]  	  data_dir  	 }). @@ -80,9 +78,8 @@  -define(SUBSYSTEMS, ["echo1", "echo2", "echo3", "echo4"]). --define(SERVER_ADDRESS,   { {127,1,0,choose(1,254)},  % IP -			    choose(1024,65535)        % Port -			  }). +-define(SERVER_ADDRESS,   {127,0,0,1}). % Server listening IP. Darwin, Solaris & FreeBSD +                                        % dislikes all other in 127.0.0.0/24  -define(SERVER_EXTRA_OPTIONS,  [{parallel_login,bool()}] ). @@ -104,10 +101,12 @@  %% To be called as eqc:quickcheck( ssh_eqc_client_server:prop_seq() ).  prop_seq() -> -  ?TESTINGTIME(do_prop_seq(?SSH_DIR)). +    error_logger:tty(false), +    ?TESTINGTIME(do_prop_seq(?SSH_DIR)).  %% To be called from a common_test test suite  prop_seq(CT_Config) -> +    error_logger:tty(false),      do_prop_seq(full_path(?SSH_DIR, CT_Config)). @@ -124,10 +123,12 @@ full_path(SSHdir, CT_Config) ->  		  SSHdir).  %%%----  prop_parallel() -> +    error_logger:tty(false),      ?TESTINGTIME(do_prop_parallel(?SSH_DIR)).  %% To be called from a common_test test suite  prop_parallel(CT_Config) -> +    error_logger:tty(false),      do_prop_parallel(full_path(?SSH_DIR, CT_Config)).  do_prop_parallel(DataDir) -> @@ -139,22 +140,22 @@ do_prop_parallel(DataDir) ->  	    end).  %%%---- -prop_parallel_multi() -> -    ?TESTINGTIME(do_prop_parallel_multi(?SSH_DIR)). - -%% To be called from a common_test test suite -prop_parallel_multi(CT_Config) -> -    do_prop_parallel_multi(full_path(?SSH_DIR, CT_Config)). - -do_prop_parallel_multi(DataDir) -> -    setup_rsa(DataDir), -    ?FORALL(Repetitions,?SHRINK(1,[10]), -	    ?FORALL(Cmds,parallel_commands(?MODULE), -		    ?ALWAYS(Repetitions, -			    begin -				{H,Sf,Result} = run_parallel_commands(?MODULE,Cmds,[{data_dir,DataDir}]), -				present_result(?MODULE, Cmds, {H,Sf,Result}, Result==ok) -			    end))). +%% prop_parallel_multi() -> +%%     ?TESTINGTIME(do_prop_parallel_multi(?SSH_DIR)). + +%% %% To be called from a common_test test suite +%% prop_parallel_multi(CT_Config) -> +%%     do_prop_parallel_multi(full_path(?SSH_DIR, CT_Config)). + +%% do_prop_parallel_multi(DataDir) -> +%%     setup_rsa(DataDir), +%%     ?FORALL(Repetitions,?SHRINK(1,[10]), +%% 	    ?FORALL(Cmds,parallel_commands(?MODULE), +%% 		    ?ALWAYS(Repetitions, +%% 			    begin +%% 				{H,Sf,Result} = run_parallel_commands(?MODULE,Cmds,[{data_dir,DataDir}]), +%% 				present_result(?MODULE, Cmds, {H,Sf,Result}, Result==ok) +%% 			    end))).  %%%================================================================  %%% State machine spec @@ -169,13 +170,50 @@ initial_state(DataDir) ->      ssh:start().  %%%---------------- -weight(S, ssh_send) -> 5*length([C || C<-S#state.channels, has_subsyst(C)]); -weight(S, ssh_start_subsyst) -> 3*length([C || C<-S#state.channels, no_subsyst(C)]); +weight(S, ssh_send) -> 20*length([C || C<-S#state.channels, has_subsyst(C)]); +weight(S, ssh_start_subsyst) -> 10*length([C || C<-S#state.channels, no_subsyst(C)]);  weight(S, ssh_close_channel) -> 2*length([C || C<-S#state.channels, has_subsyst(C)]); -weight(S, ssh_open_channel) ->  length(S#state.connections); +weight(S, ssh_open_channel) ->  2*length(S#state.connections);  weight(_S, _) -> 1.  %%%---------------- +fns() -> [initial_state, +          ssh_server, +          ssh_client, +          ssh_open_connection, +          ssh_close_connection, +          ssh_open_channel, +          ssh_close_channel, +          ssh_start_subsyst, +          ssh_send +         ]. + +call_f(Name, Sfx) ->  +    case get({Name,Sfx}) of +        undefined -> F = list_to_atom(lists:concat([Name,"_",Sfx])), +                     put({Name,Sfx}, F), +                     F; +        F when is_atom(F) -> F +    end. + +-define(call(Name, What, Args), apply(?MODULE, call_f(Name,What), Args)). + +symbolic_call(S,Name) -> {call, ?MODULE, Name, ?call(Name,args,[S])}. + +may_generate(S, F) ->  ?call(F,pre,[S]). + +command(S) -> +    frequency([{weight(S,F), symbolic_call(S,F)} || F <- fns(), +                                                    may_generate(S, F)] +             ). + +precondition(S,    {call,_M,F,As})      -> try ?call(F, pre, [S,As]) +                                           catch _:undef -> try ?call(F,pre,[S]) catch _:undef -> true end +                                           end. +next_state(S, Res, {call,_M,F,As})      -> try ?call(F, next, [S,Res,As]) catch _:undef -> S end. +postcondition(S,   {call,_M,F,As}, Res) -> try ?call(F, post, [S,As,Res]) catch _:undef -> true end. + +%%%----------------  %%% Initialize  initial_state_pre(S) -> not S#state.initialized. @@ -200,24 +238,34 @@ ssh_server_pre(S) -> S#state.initialized andalso  ssh_server_args(_) -> [?SERVER_ADDRESS, {var,data_dir}, ?SERVER_EXTRA_OPTIONS].  -ssh_server({IP,Port}, DataDir, ExtraOptions) -> -    ok(ssh:daemon(IP, Port,  -		  [ -		   {system_dir, system_dir(DataDir)}, -		   {user_dir, user_dir(DataDir)}, -		   {subsystems, [{SS, {ssh_eqc_subsys, [SS]}} || SS <- ?SUBSYSTEMS]} -		   | ExtraOptions -		  ])). - -ssh_server_post(_S, _Args, {error,eaddrinuse}) -> true; -ssh_server_post(_S, _Args, Result) -> is_ok(Result). - -ssh_server_next(S, {error,eaddrinuse}, _) -> S; -ssh_server_next(S, Result, [{IP,Port},_,_]) -> -    S#state{servers=[#srvr{ref = Result, -			   address = IP, -			   port = Port} -		     | S#state.servers]}. +ssh_server(IP0, DataDir, ExtraOptions) -> +    case ssh:daemon(IP0, 0,  +                    [ +                     {system_dir, system_dir(DataDir)}, +                     {user_dir, user_dir(DataDir)}, +                     {subsystems, [{SS, {ssh_eqc_subsys, [SS]}} || SS <- ?SUBSYSTEMS]} +                     | ExtraOptions +                    ]) of +        {ok,DaemonRef} -> +            case ssh:daemon_info(DaemonRef) of +                {ok, Props} -> +                    Port = proplists:get_value(port,Props), +                    IP = proplists:get_value(ip,Props), +                    #srvr{ref = DaemonRef, +                          address = IP, +                          port = Port}; +                Other -> +                    Other +            end; +        Other -> +            Other +    end. + +ssh_server_post(_S, _Args, #srvr{port=Port}) -> (0 < Port) andalso (Port < 65536); +ssh_server_post(_S, _Args, _) -> false. + +ssh_server_next(S, Srvr, _) -> +    S#state{servers=[Srvr | S#state.servers]}.  %%%----------------  %%% Start a new client @@ -271,8 +319,7 @@ ssh_open_connection(#srvr{address=Ip, port=Port}, DataDir) ->  ssh_open_connection_post(_S, _Args, Result) -> is_ok(Result). -ssh_open_connection_next(S, ConnRef, [#srvr{ref=SrvrRef},_]) ->  -    S#state{connections=[#conn{ref=ConnRef, srvr_ref=SrvrRef}|S#state.connections]}. +ssh_open_connection_next(S, ConnRef, [_,_]) -> S#state{connections=[ConnRef|S#state.connections]}.  %%%----------------  %%% Stop a new connection @@ -282,12 +329,12 @@ ssh_close_connection_pre(S) -> S#state.connections /= [].  ssh_close_connection_args(S) -> [oneof(S#state.connections)]. -ssh_close_connection(#conn{ref=ConnectionRef}) -> ssh:close(ConnectionRef). +ssh_close_connection(ConnectionRef) -> ssh:close(ConnectionRef). -ssh_close_connection_next(S, _, [Conn=#conn{ref=ConnRef}]) -> -	S#state{connections = S#state.connections--[Conn], -		channels = [C || C <- S#state.channels, -				 C#chan.conn_ref /= ConnRef] +ssh_close_connection_next(S, _, [ConnRef]) -> +    S#state{connections = S#state.connections--[ConnRef], +            channels = [C || C <- S#state.channels, +                             C#chan.conn_ref /= ConnRef]  	       }.  %%%---------------- @@ -299,14 +346,14 @@ ssh_open_channel_pre(S) -> S#state.connections /= [].  ssh_open_channel_args(S) -> [oneof(S#state.connections)].  %%% For re-arrangement in parallel tests.  -ssh_open_channel_pre(S,[C]) -> lists:member(C,S#state.connections). +ssh_open_channel_pre(S,[C]) when is_record(S,state) -> lists:member(C,S#state.connections). -ssh_open_channel(#conn{ref=ConnectionRef}) ->  +ssh_open_channel(ConnectionRef) ->       ok(ssh_connection:session_channel(ConnectionRef, 20?sec)).  ssh_open_channel_post(_S, _Args, Result) -> is_ok(Result). -ssh_open_channel_next(S, ChannelRef, [#conn{ref=ConnRef}]) ->   +ssh_open_channel_next(S, ChannelRef, [ConnRef]) ->        S#state{channels=[#chan{ref=ChannelRef,  			    conn_ref=ConnRef}  		      | S#state.channels]}. @@ -326,9 +373,7 @@ ssh_close_channel_next(S, _, [C]) ->      S#state{channels = [Ci || Ci <- S#state.channels,  			      sig(C) /= sig(Ci)]}. -			        sig(C) -> {C#chan.ref, C#chan.conn_ref}. -      %%%----------------  %%% Start a sub system on a channel @@ -361,9 +406,10 @@ ssh_start_subsyst_next(S, _Result, [C,SS,Pid|_]) ->  ssh_send_pre(S) -> lists:any(fun has_subsyst/1, S#state.channels). -ssh_send_args(S) -> [oneof(lists:filter(fun has_subsyst/1, S#state.channels)), -		     choose(0,1), -		     message()]. +ssh_send_args(S) ->  +    [oneof(lists:filter(fun has_subsyst/1, S#state.channels)), +     choose(0,1), +     message()].  %% For re-arrangement in parallel tests.   ssh_send_pre(S, [C|_]) -> lists:member(C, S#state.channels). @@ -388,17 +434,17 @@ ssh_send(C=#chan{conn_ref=ConnectionRef, ref=ChannelRef, client_pid=Pid}, Type,         end).  ssh_send_blocking(_S, _Args) -> -    true. +   true.  ssh_send_post(_S, [C,_,Msg], Response) when is_binary(Response) -> -    Expected = ssh_eqc_subsys:response(modify_msg(C,Msg), C#chan.subsystem), +   Expected = ssh_eqc_subsys:response(modify_msg(C,Msg), C#chan.subsystem),      case Response of  	Expected -> true;  	_ -> {send_failed, size(Response), size(Expected)}      end;  ssh_send_post(_S, _Args, Response) -> -    {error,Response}. +   {error,Response}.  modify_msg(_, <<>>) -> <<>>; @@ -440,7 +486,11 @@ present_result(_Module, Cmds, _Triple, true) ->  	      true)))));  present_result(Module, Cmds, Triple, false) ->  -    pretty_commands(Module, Cmds, Triple, [{show_states,true}], false). +    pretty_comands(Module, Cmds, Triple, [{show_states,true}], false), +    false. % Proper dislikes non-boolean results while eqc treats non-true as false. + +pretty_comands(Module, Cmds, Triple, Opts, Bool) -> +    ct:log("Module = ~p,~n Cmds = ~p,~n Triple = ~p,~n Opts = ~p,~n Bool = ~p",[Module, Cmds, Triple, Opts, Bool]). @@ -476,23 +526,35 @@ traverse_commands(Fseq, Fpar, {Seq, ParLs}) -> lists:append([Fseq(Seq)|Fpar(ParL  print_frequencies() -> print_frequencies(10).  print_frequencies(Ngroups) -> fun([]) -> io:format('Empty list!~n',[]); -                                 (L ) -> print_frequencies(L,Ngroups,0,element(1,lists:last(L))) +                                 (L ) -> +                                      try +                                          M = lists:last(L), +                                          Max = if is_integer(M) -> M; +                                                   is_tuple(M) -> element(1,L) +                                                end, +                                          print_frequencies(L,Ngroups,0,Max) +                                      catch +                                          C:E:S -> +                                              ct:pal("~p:~p ~p:~p~n~p~n~p",[?MODULE,?LINE,C,E,S,L]) +                                      end                                end. +  print_frequencies(Ngroups, MaxValue) -> fun(L) -> print_frequencies(L,Ngroups,0,MaxValue) end.  print_frequencies(L, N, Min, Max) when N>Max -> print_frequencies(L++[{N,0}], N, Min, N); -print_frequencies(L, N, Min, Max) -> -%%io:format('L=~p~n',[L]), +print_frequencies(L, N, Min, Max0) ->      try +        Interval = round((Max0-Min)/N), +        Max = Max0 + (Max0 rem Interval),  	IntervalUpperLimits =   	    lists:reverse( -	      [Max | tl(lists:reverse(lists:seq(Min,Max,round((Max-Min)/N))))] +	      [Max | tl(lists:reverse(lists:seq(Min,Max,Interval)))]  	     ),  	{Acc0,_} = lists:mapfoldl(fun(Upper,Lower) ->   					  {{{Lower,Upper},0}, Upper+1}  				  end, hd(IntervalUpperLimits), tl(IntervalUpperLimits)), -	Fs0 = get_frequencies(L, Acc0), +        Fs0 = get_frequencies(L, Acc0),  	SumVal = lists:sum([V||{_,V}<-Fs0]),  	Fs = with_percentage(Fs0, SumVal),  	Mean = mean(L), @@ -517,7 +579,6 @@ print_frequencies(L, N, Min, Max) ->  	 || {Interval={Rlow,Rhigh},Val,Percent} <- Fs],  	io:format('~*c    ~*c~n',[2*Npos_range,32,Npos_value+2,$-]),  	io:format('~*c      ~*w~n',[2*Npos_range,32,Npos_value,SumVal]) -        %%,io:format('L=~p~n',[L])      catch  	C:E ->  	    io:format('*** Faild printing (~p:~p) for~n~p~n',[C,E,L]) @@ -527,6 +588,8 @@ get_frequencies([{I,Num}|T], [{{Lower,Upper},Cnt}|Acc]) when Lower=<I,I=<Upper -      get_frequencies(T,  [{{Lower,Upper},Cnt+Num}|Acc]);  get_frequencies(L=[{I,_Num}|_], [Ah={{_Lower,Upper},_Cnt}|Acc]) when I>Upper ->      [Ah | get_frequencies(L,Acc)]; +get_frequencies([I|T], Acc) when is_integer(I) -> +    get_frequencies([{I,1}|T], Acc);  get_frequencies([], Acc) ->       Acc. @@ -616,4 +679,3 @@ erase_dir(Dir) ->      file:del_dir(Dir).  -endif. --endif. diff --git a/lib/ssh/test/ssh_compat_SUITE.erl b/lib/ssh/test/ssh_compat_SUITE.erl index 1c607bebe8..af85ef7aee 100644 --- a/lib/ssh/test/ssh_compat_SUITE.erl +++ b/lib/ssh/test/ssh_compat_SUITE.erl @@ -648,6 +648,7 @@ setup_remote_priv_and_local_auth_keys(KeyAlg, IP, Port, UserDir, Config) ->                                                     {silently_accept_hosts,true},                                                     {user_interaction,false}                                                    ]), +    rm_id_in_remote_dir(Ch, ".ssh"),      _ = ssh_sftp:make_dir(Ch, ".ssh"),      DstFile = filename:join(".ssh", dst_filename(user,KeyAlg)),      ok = ssh_sftp:write_file(Ch, DstFile, Priv), @@ -658,6 +659,18 @@ setup_remote_priv_and_local_auth_keys(KeyAlg, IP, Port, UserDir, Config) ->      ok = ssh:close(Cc),      UserDir. +rm_id_in_remote_dir(Ch, Dir) -> +    case ssh_sftp:list_dir(Ch, Dir) of +        {error,_Error} -> +            ok; +        {ok,FileNames} -> +            lists:foreach(fun("id_"++_ = F) -> +                                  ok = ssh_sftp:delete(Ch, filename:join(Dir,F)); +                             (_) -> +                                  leave +                          end, FileNames) +    end. +  user_priv_pub_keys(Config, KeyAlg) -> priv_pub_keys("users_keys", user, Config, KeyAlg).  host_priv_pub_keys(Config, KeyAlg) -> priv_pub_keys("host_keys",  host, Config, KeyAlg). diff --git a/lib/ssh/test/ssh_compat_SUITE_data/build_scripts/create_all b/lib/ssh/test/ssh_compat_SUITE_data/build_scripts/create_all index 0dcf8cb570..c2e77fcc79 100755 --- a/lib/ssh/test/ssh_compat_SUITE_data/build_scripts/create_all +++ b/lib/ssh/test/ssh_compat_SUITE_data/build_scripts/create_all @@ -18,6 +18,12 @@ SSH_SSL_VERSIONS=(\          openssh 7.6p1  openssl  1.0.2n  \                                          \          openssh 7.6p1  libressl 2.6.4   \ +                                        \ +        openssh 7.7p1  openssl  1.0.2p  \ +        openssh 7.8p1  openssl  1.0.2p  \ +        openssh 7.9p1  openssl  1.0.2p  \ +                                        \ +        openssh 7.9p1  libressl 2.6.4   \  	)  if [ "x$1" == "x-b" ] diff --git a/lib/ssh/test/ssh_property_test_SUITE.erl b/lib/ssh/test/ssh_property_test_SUITE.erl index 3318b86d39..9aaac898a0 100644 --- a/lib/ssh/test/ssh_property_test_SUITE.erl +++ b/lib/ssh/test/ssh_property_test_SUITE.erl @@ -46,8 +46,9 @@ groups() ->      [{messages, [], [decode,  		     decode_encode]},       {client_server, [], [client_server_sequential, -			  client_server_parallel, -			  client_server_parallel_multi]} +                          client_server_parallel +			  %% client_server_parallel_multi +                         ]}      ]. @@ -62,7 +63,7 @@ end_per_suite(Config) ->  %%% if we run proper.  init_per_group(client_server, Config) ->      case proplists:get_value(property_test_tool,Config) of -	eqc -> Config; +	proper -> Config;  	X -> {skip, lists:concat([X," is not supported"])}      end;  init_per_group(_, Config) -> | 
