1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
|
#!/usr/bin/perl -w
#
# Password prompting tests for the wallet client.
#
# Written by Russ Allbery <rra@stanford.edu>
# Copyright 2008, 2010 Board of Trustees, Leland Stanford Jr. University
#
# See LICENSE for licensing terms.
BEGIN { our $total = 5 }
use Test::More tests => $total;
use lib "$ENV{SOURCE}/..//perl";
use Wallet::Admin;
use lib "$ENV{SOURCE}/../perl/t/lib";
use Util;
# cd to the correct directory.
chdir "$ENV{SOURCE}" or die "Cannot chdir to $ENV{SOURCE}: $!\n";
SKIP: {
skip 'no password configuration', $total
unless -f "$ENV{BUILD}/data/test.password";
my $remctld = '@REMCTLD@';
skip 'remctld not found', $total unless $remctld;
eval { require Expect };
skip 'Exepct module not found', $total if $@;
# Disable sending of wallet's output to our standard output. Do this
# twice to avoid Perl warnings.
$Expect::Log_Stdout = 0;
$Expect::Log_Stdout = 0;
# Spawn remctld and set up with a different ticket cache.
unlink ('krb5cc_test', 'test-pid');
my $principal = contents ("$ENV{BUILD}/data/test.principal");
remctld_spawn ($remctld, $principal, "$ENV{BUILD}/data/test.keytab",
"$ENV{SOURCE}/data/basic.conf");
$ENV{KRB5CCNAME} = 'krb5cc_test';
# Read in the principal and password.
open (PASS, '<', "$ENV{BUILD}/data/test.password")
or die "Cannot open $ENV{BUILD}/data/test.password: $!\n";
my $user = <PASS>;
my $password = <PASS>;
close PASS;
chomp ($user, $password);
# Spawn wallet and check an invalid password.
my $wallet = Expect->spawn ("$ENV{BUILD}/../client/wallet", '-k',
$principal, '-p', 14373, '-s', 'localhost',
'-c', 'fake-wallet', '-u', $user, 'get',
'keytab', 'service/fake-output');
is ($wallet->expect (2, '-re', 'Password.*: '), 1, 'Saw password prompt');
$wallet->send ("invalid-$password\n");
is ($wallet->expect (2, 'wallet: authentication failed: '), 1,
' and saw error message from an invalid password');
$wallet->soft_close;
# Now check a valid password.
$wallet = Expect->spawn ("$ENV{BUILD}/../client/wallet", '-k',
$principal, '-p', 14373, '-s', 'localhost',
'-c', 'fake-wallet', '-u', $user, 'get',
'keytab', 'service/fake-output');
is ($wallet->expect (2, '-re', 'Password.*: '), 1, 'Saw password prompt');
$wallet->send ("$password\n");
is ($wallet->expect (2, 'This is a fake keytab'), 1,
' and saw the right output');
$wallet->soft_close;
ok (!-f 'krb5cc_test', ' and no ticket cache is left behind');
# All done.
remctld_stop;
unlink 'test-pid';
}
|
