Home Explore Help
Register Sign In
trn
/
j-hpn-ssh
mirror of git://github.com/johnsonjh/j-hpn-ssh
Watch 1
Star 1
Fork 0
Files
Branch: master
Branches Tags
j-hpn-ssh
/
regress
/
connect-privsep.sh

connect-privsep.sh 1.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536 
  1. #	$OpenBSD: connect-privsep.sh,v 1.9 2017/04/30 23:34:55 djm Exp $
    2. 

  2. #	Placed in the Public Domain.
    3. 

  3. 

  4. tid="proxy connect with privsep"
    5. 

  5. 

  6. cp $OBJ/sshd_proxy $OBJ/sshd_proxy.orig
    7. 

  7. echo 'UsePrivilegeSeparation yes' >> $OBJ/sshd_proxy
    8. 

  8. 

  9. ${SSH} -F $OBJ/ssh_proxy 999.999.999.999 true
    10. 

  10. if [ $? -ne 0 ]; then
    11. 

  11. 	fail "ssh privsep+proxyconnect failed"
    12. 

  12. fi
    13. 

  13. 

  14. cp $OBJ/sshd_proxy.orig $OBJ/sshd_proxy
    15. 

  15. echo 'UsePrivilegeSeparation sandbox' >> $OBJ/sshd_proxy
    16. 

  16. 

  17. ${SSH} -F $OBJ/ssh_proxy 999.999.999.999 true
    18. 

  18. if [ $? -ne 0 ]; then
    19. 

  19. 	# XXX replace this with fail once sandbox has stabilised
    20. 

  20. 	warn "ssh privsep/sandbox+proxyconnect failed"
    21. 

  21. fi
    22. 

  22. 

  23. # Because sandbox is sensitive to changes in libc, especially malloc, retest
    24. 

  24. # with every malloc.conf option (and none).
    25. 

  25. if [ -z "$TEST_MALLOC_OPTIONS" ]; then
    26. 

  26. 	mopts="C F G J R S U X < >"
    27. 

  27. else
    28. 

  28. 	mopts=$(echo $TEST_MALLOC_OPTIONS | sed 's/./& /g')
    29. 

  29. fi
    30. 

  30. for m in '' $mopts; do
    31. 

  31. 	env MALLOC_OPTIONS="$m" ${SSH} -F $OBJ/ssh_proxy 999.999.999.999 true
    32. 

  32. 	if [ $? -ne 0 ]; then
    33. 

  33. 		fail "ssh privsep/sandbox+proxyconnect mopt '$m' failed"
    34. 

  34. 	fi
    35. 

  35. done
    36. 

  36.