saltstack/salt
1
0
Fork 0
mirror of https://github.com/saltstack/salt.git synced 2025-04-17 10:10:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
salt/tests/unit/client/test_ssh.py
ch3ll 0c365c19a4
add --pre-flight ssh option
2020-04-09 15:40:03 -04:00

360 lines
13 KiB
Python
Raw Blame History

# -*- coding: utf-8 -*-
"""
:codeauthor: :email:`Daniel Wallace <dwallace@saltstack.com`
"""
# Import python libs
from __future__ import absolute_import, print_function, unicode_literals
import os
import shutil
import tempfile
# Import Salt libs
import salt.config
import salt.roster
import salt.utils.files
import salt.utils.path
import salt.utils.thin
import salt.utils.yaml
from salt.client import ssh
# Import Salt Testing libs
from tests.support.runtests import RUNTIME_VARS
from tests.support.unit import TestCase, skipIf
from tests.support.case import ShellCase
from tests.support.mock import MagicMock, patch, call
ROSTER = """
localhost:
host: 127.0.0.1
port: 2827
self:
host: 0.0.0.0
port: 42
"""
@skipIf(not salt.utils.path.which("ssh"), "No ssh binary found in path")
class SSHPasswordTests(ShellCase):
def test_password_failure(self):
"""
Check password failures when trying to deploy keys
"""
opts = salt.config.client_config(self.get_config_file_path("master"))
opts["list_hosts"] = False
opts["argv"] = ["test.ping"]
opts["selected_target_option"] = "glob"
opts["tgt"] = "localhost"
opts["arg"] = []
roster = os.path.join(self.config_dir, "roster")
handle_ssh_ret = [
{
"localhost": {
"retcode": 255,
"stderr": "Permission denied (publickey).\r\n",
"stdout": "",
}
},
]
expected = {"localhost": "Permission denied (publickey)"}
display_output = MagicMock()
with patch(
"salt.roster.get_roster_file", MagicMock(return_value=roster)
), patch(
"salt.client.ssh.SSH.handle_ssh", MagicMock(return_value=handle_ssh_ret)
), patch(
"salt.client.ssh.SSH.key_deploy", MagicMock(return_value=expected)
), patch(
"salt.output.display_output", display_output
):
client = ssh.SSH(opts)
ret = next(client.run_iter())
with self.assertRaises(SystemExit):
client.run()
display_output.assert_called_once_with(expected, "nested", opts)
self.assertIs(ret, handle_ssh_ret[0])
class SSHRosterDefaults(TestCase):
def test_roster_defaults_flat(self):
"""
Test Roster Defaults on the flat roster
"""
tempdir = tempfile.mkdtemp(dir=RUNTIME_VARS.TMP)
expected = {
"self": {"host": "0.0.0.0", "user": "daniel", "port": 42},
"localhost": {"host": "127.0.0.1", "user": "daniel", "port": 2827},
}
try:
root_dir = os.path.join(tempdir, "foo", "bar")
os.makedirs(root_dir)
fpath = os.path.join(root_dir, "config")
with salt.utils.files.fopen(fpath, "w") as fp_:
fp_.write(
"""
roster_defaults:
user: daniel
"""
)
opts = salt.config.master_config(fpath)
with patch("salt.roster.get_roster_file", MagicMock(return_value=ROSTER)):
with patch(
"salt.template.compile_template",
MagicMock(return_value=salt.utils.yaml.safe_load(ROSTER)),
):
roster = salt.roster.Roster(opts=opts)
self.assertEqual(roster.targets("*", "glob"), expected)
finally:
if os.path.isdir(tempdir):
shutil.rmtree(tempdir)
class SSHSingleTests(TestCase):
def setUp(self):
self.tmp_cachedir = tempfile.mkdtemp(dir=RUNTIME_VARS.TMP)
self.argv = ['ssh.set_auth_key', 'root', 'hobn+amNAXSBTiOXEqlBjGB...rsa root@master']
self.opts = {
'argv': self.argv,
'__role': 'master',
'cachedir': self.tmp_cachedir,
'extension_modules': os.path.join(self.tmp_cachedir, 'extmods'),
}
self.target = {
'passwd': 'abc123',
'ssh_options': None,
'sudo': False,
'identities_only': False,
'host': 'login1',
'user': 'root',
'timeout': 65,
'remote_port_forwards': None,
'sudo_user': '',
'port': '22',
'priv': '/etc/salt/pki/master/ssh/salt-ssh.rsa'
}
def test_single_opts(self):
''' Sanity check for ssh.Single options
'''
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
**self.target)
self.assertEqual(single.shell._ssh_opts(), '')
self.assertEqual(single.shell._cmd_str('date +%s'), 'ssh login1 '
'-o KbdInteractiveAuthentication=no -o '
'PasswordAuthentication=yes -o ConnectTimeout=65 -o Port=22 '
'-o IdentityFile=/etc/salt/pki/master/ssh/salt-ssh.rsa '
'-o User=root date +%s')
def test_run_with_pre_flight(self):
'''
test Single.run() when ssh_pre_flight is set
and script successfully runs
'''
target = self.target.copy()
target['ssh_pre_flight'] = os.path.join(RUNTIME_VARS.TMP, 'script.sh')
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
**target)
cmd_ret = ('Success', '', 0)
mock_flight = MagicMock(return_value=cmd_ret)
mock_cmd = MagicMock(return_value=cmd_ret)
patch_flight = patch('salt.client.ssh.Single.run_ssh_pre_flight', mock_flight)
patch_cmd = patch('salt.client.ssh.Single.cmd_block', mock_cmd)
patch_os = patch('os.path.exists', side_effect=[True])
with patch_os, patch_flight, patch_cmd:
ret = single.run()
mock_cmd.assert_called()
mock_flight.assert_called()
assert ret == cmd_ret
def test_run_with_pre_flight_stderr(self):
'''
test Single.run() when ssh_pre_flight is set
and script errors when run
'''
target = self.target.copy()
target['ssh_pre_flight'] = os.path.join(RUNTIME_VARS.TMP, 'script.sh')
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
**target)
cmd_ret = ('', 'Error running script', 1)
mock_flight = MagicMock(return_value=cmd_ret)
mock_cmd = MagicMock(return_value=cmd_ret)
patch_flight = patch('salt.client.ssh.Single.run_ssh_pre_flight', mock_flight)
patch_cmd = patch('salt.client.ssh.Single.cmd_block', mock_cmd)
patch_os = patch('os.path.exists', side_effect=[True])
with patch_os, patch_flight, patch_cmd:
ret = single.run()
mock_cmd.assert_not_called()
mock_flight.assert_called()
assert ret == cmd_ret
def test_run_with_pre_flight_script_doesnot_exist(self):
'''
test Single.run() when ssh_pre_flight is set
and the script does not exist
'''
target = self.target.copy()
target['ssh_pre_flight'] = os.path.join(RUNTIME_VARS.TMP, 'script.sh')
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
**target)
cmd_ret = ('Success', '', 0)
mock_flight = MagicMock(return_value=cmd_ret)
mock_cmd = MagicMock(return_value=cmd_ret)
patch_flight = patch('salt.client.ssh.Single.run_ssh_pre_flight', mock_flight)
patch_cmd = patch('salt.client.ssh.Single.cmd_block', mock_cmd)
patch_os = patch('os.path.exists', side_effect=[False])
with patch_os, patch_flight, patch_cmd:
ret = single.run()
mock_cmd.assert_called()
mock_flight.assert_not_called()
assert ret == cmd_ret
def test_run_with_pre_flight_thin_dir_exists(self):
'''
test Single.run() when ssh_pre_flight is set
and thin_dir already exists
'''
target = self.target.copy()
target['ssh_pre_flight'] = os.path.join(RUNTIME_VARS.TMP, 'script.sh')
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
**target)
cmd_ret = ('', '', 0)
mock_flight = MagicMock(return_value=cmd_ret)
mock_cmd = MagicMock(return_value=cmd_ret)
patch_flight = patch('salt.client.ssh.Single.run_ssh_pre_flight', mock_flight)
patch_cmd = patch('salt.client.ssh.shell.Shell.exec_cmd', mock_cmd)
patch_os = patch('os.path.exists', return_value=True)
with patch_os, patch_flight, patch_cmd:
ret = single.run()
mock_cmd.assert_called()
mock_flight.assert_not_called()
assert ret == cmd_ret
def test_execute_script(self):
'''
test Single.execute_script()
'''
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
winrm=False,
**self.target)
exp_ret = ('Success', '', 0)
mock_cmd = MagicMock(return_value=exp_ret)
patch_cmd = patch('salt.client.ssh.shell.Shell.exec_cmd', mock_cmd)
script = os.path.join(RUNTIME_VARS.TMP, 'script.sh')
with patch_cmd:
ret = single.execute_script(script=script)
assert ret == exp_ret
assert mock_cmd.call_count == 2
assert [call("/bin/sh '{0}'".format(script)),
call("rm '{0}'".format(script))] == mock_cmd.call_args_list
def test_shim_cmd(self):
'''
test Single.shim_cmd()
'''
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
winrm=False,
tty=True,
**self.target)
exp_ret = ('Success', '', 0)
mock_cmd = MagicMock(return_value=exp_ret)
patch_cmd = patch('salt.client.ssh.shell.Shell.exec_cmd', mock_cmd)
patch_rand = patch('os.urandom', return_value=b'5\xd9l\xca\xc2\xff')
with patch_cmd, patch_rand:
ret = single.shim_cmd(cmd_str='echo test')
assert ret == exp_ret
assert [call('mkdir -p '),
call("/bin/sh '$HOME/.35d96ccac2ff.py'"),
call("rm '$HOME/.35d96ccac2ff.py'")] == mock_cmd.call_args_list
def test_run_ssh_pre_flight(self):
'''
test Single.run_ssh_pre_flight
'''
target = self.target.copy()
target['ssh_pre_flight'] = os.path.join(RUNTIME_VARS.TMP, 'script.sh')
single = ssh.Single(
self.opts,
self.opts['argv'],
'localhost',
mods={},
fsclient=None,
thin=salt.utils.thin.thin_path(self.opts['cachedir']),
mine=False,
winrm=False,
tty=True,
**target)
exp_ret = ('Success', '', 0)
mock_cmd = MagicMock(return_value=exp_ret)
patch_cmd = patch('salt.client.ssh.shell.Shell.exec_cmd', mock_cmd)
exp_tmp = os.path.join(tempfile.gettempdir(), os.path.basename(target['ssh_pre_flight']))
with patch_cmd:
ret = single.run_ssh_pre_flight()
assert ret == exp_ret
assert [call("/bin/sh '{0}'".format(exp_tmp)),
call("rm '{0}'".format(exp_tmp))] == mock_cmd.call_args_list
Reference in a new issue View git blame Copy permalink