# Copyright (c) 2016-2022 by Ron Frederick and others. # # This program and the accompanying materials are made available under # the terms of the Eclipse Public License v2.0 which accompanies this # distribution and is available at: # # http://www.eclipse.org/legal/epl-2.0/ # # This program may also be made available under the following secondary # licenses when the conditions for such availability set forth in the # Eclipse Public License v2.0 are satisfied: # # GNU General Public License, Version 2.0, or any later versions of # that license # # SPDX-License-Identifier: EPL-2.0 OR GPL-2.0-or-later # # Contributors: # Ron Frederick - initial implementation, API, and documentation """Unit tests for AsyncSSH X11 forwarding""" import asyncio import os import socket from unittest.mock import patch import asyncssh from asyncssh.misc import maybe_wait_closed from asyncssh.packet import Boolean, String, UInt32 from asyncssh.x11 import XAUTH_FAMILY_IPV4, XAUTH_FAMILY_DECNET from asyncssh.x11 import XAUTH_FAMILY_IPV6, XAUTH_FAMILY_HOSTNAME from asyncssh.x11 import XAUTH_FAMILY_WILD, XAUTH_PROTO_COOKIE from asyncssh.x11 import XAUTH_COOKIE_LEN, X11_BASE_PORT, X11_LISTEN_HOST from asyncssh.x11 import SSHXAuthorityEntry, SSHX11ClientListener from asyncssh.x11 import walk_xauth, lookup_xauth, update_xauth from .server import Server, ServerTestCase from .util import asynctest def _failing_bind(self, address): """Raise OSError to simulate a socket bind failure""" # pylint: disable=unused-argument raise OSError async def _create_x11_process(conn, command=None, x11_forwarding=True, x11_display='test:0', **kwargs): """Create a client process with X11 forwarding enabled""" return await conn.create_process(command, x11_forwarding=x11_forwarding, x11_display=x11_display, **kwargs) class _X11Peer: """Peer representing X server to forward connections to""" expected_auth = b'' @classmethod async def connect(cls, session_factory, host, port): """Simulate connecting to an X server""" # pylint: disable=unused-argument if port == X11_BASE_PORT: return None, cls() else: raise OSError('Connection refused') def __init__(self): self._peer = None self._check_auth = True def set_peer(self, peer): """Set the peer forwarder to exchange data with""" self._peer = peer def write(self, data): """Consume data from the peer""" if self._check_auth: match = data[32:48] == self.expected_auth self._peer.write(b'\x01' if match else b'\xff') self._check_auth = False else: self._peer.write(data) def write_eof(self): """Consume EOF from the peer""" def was_eof_received(self): """Report that an incoming EOF has not been reeceived""" # pylint: disable=no-self-use return False # pragma: no cover def pause_reading(self): """Ignore flow control requests""" def resume_reading(self): """Ignore flow control requests""" def close(self): """Consume close request""" class _X11ClientListener(SSHX11ClientListener): """Unit test X server to forward connections to""" async def forward_connection(self): """Forward a connection to this server""" self._connect_coro = _X11Peer.connect return await super().forward_connection() class _X11ClientChannel(asyncssh.SSHClientChannel): """Patched X11 client channel for unit testing""" async def make_x11_forwarding_request(self, proto, data, screen): """Make a request to enable X11 forwarding""" return await self._make_request(b'x11-req', Boolean(False), String(proto), String(data), UInt32(screen)) class _X11ServerConnection(asyncssh.SSHServerConnection): """Unit test X11 forwarding server connection""" async def attach_x11_listener(self, chan, auth_proto, auth_data, screen): """Attach a channel to a remote X11 display""" if screen == 9: return False _X11Server.auth_proto = auth_proto _X11Server.auth_data = auth_data return await super().attach_x11_listener(chan, auth_proto, auth_data, screen) class _X11Server(Server): """Server for testing AsyncSSH X11 forwarding""" auth_proto = b'' auth_data = b'' @staticmethod def _uint16(value, endian): """Encode a 16-bit value using the specified endianness""" if endian == 'B': return bytes((value >> 8, value & 255)) else: return bytes((value & 255, value >> 8)) @staticmethod def _pad(data): """Pad a string to a multiple of 4 bytes""" length = len(data) % 4 return data + ((4 - length) * b'\00' if length else b'') async def _open_x11(self, chan, endian, bad): """Open an X11 connection back to the client""" display = chan.get_x11_display() if display: dpynum = int(display.rsplit(':')[-1].split('.')[0]) else: return 2 reader, writer = await asyncio.open_connection( X11_LISTEN_HOST, X11_BASE_PORT + dpynum) auth_data = bytearray(self.auth_data) if bad: auth_data[-1] ^= 0xff request = b''.join((endian.encode('ascii'), b'\x00', self._uint16(11, endian), self._uint16(0, endian), self._uint16(len(self.auth_proto), endian), self._uint16(len(self.auth_data), endian), b'\x00\x00', self._pad(self.auth_proto), self._pad(auth_data))) writer.write(request[:24]) await asyncio.sleep(0.1) writer.write(request[24:]) result = await reader.read(1) if result == b'': result = b'\x02' if result == b'\x01': writer.write(b'\x00') writer.close() await maybe_wait_closed(writer) return result[0] async def _begin_session(self, stdin, _stdout, _stderr): """Begin processing a new session""" action = stdin.channel.get_command() if action: if action.startswith('connect '): endian = action[8:9] bad = bool(action[9:] == 'X') result = await self._open_x11(stdin.channel, endian, bad) stdin.channel.exit(result) elif action == 'attach': with patch('socket.socket.bind', _failing_bind): result = await self._conn.attach_x11_listener( None, b'', b'', 0) stdin.channel.exit(bool(result)) elif action == 'open': try: result = await self._conn.create_x11_connection(None) except asyncssh.ChannelOpenError: result = None stdin.channel.exit(bool(result)) elif action == 'invalid': try: result = await self._conn.create_x11_connection( None, b'\xff') except asyncssh.ChannelOpenError: pass elif action == 'sleep': await asyncio.sleep(0.1) else: stdin.channel.exit(255) stdin.channel.close() await stdin.channel.wait_closed() def session_requested(self): return self._begin_session @patch('asyncssh.connection.SSHServerConnection', _X11ServerConnection) @patch('asyncssh.x11.SSHX11ClientListener', _X11ClientListener) class _TestX11(ServerTestCase): """Unit tests for AsyncSSH X11 forwarding""" @classmethod def setUpClass(cls): """Create Xauthority file needed for test""" super().setUpClass() auth_data = os.urandom(XAUTH_COOKIE_LEN) with open('.Xauthority', 'wb') as auth_file: auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_HOSTNAME, b'test', b'1', XAUTH_PROTO_COOKIE, auth_data))) auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_HOSTNAME, b'test', b'0', XAUTH_PROTO_COOKIE, auth_data))) auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_IPV4, socket.inet_pton(socket.AF_INET, '127.0.0.2'), b'0', XAUTH_PROTO_COOKIE, auth_data))) auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_IPV4, socket.inet_pton(socket.AF_INET, '127.0.0.1'), b'0', XAUTH_PROTO_COOKIE, auth_data))) auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_IPV6, socket.inet_pton(socket.AF_INET6, '::2'), b'0', XAUTH_PROTO_COOKIE, auth_data))) auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_IPV6, socket.inet_pton(socket.AF_INET6, '::1'), b'0', XAUTH_PROTO_COOKIE, auth_data))) # Added to cover case where we don't match on address family auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_DECNET, b'test', b'0', XAUTH_PROTO_COOKIE, auth_data))) # Wildcard address family match auth_file.write(bytes(SSHXAuthorityEntry( XAUTH_FAMILY_WILD, b'', b'0', XAUTH_PROTO_COOKIE, auth_data))) with open('.Xauthority-empty', 'wb'): pass with open('.Xauthority-corrupted', 'wb') as auth_file: auth_file.write(b'\x00\x00\x00') _X11Peer.expected_auth = auth_data @classmethod async def start_server(cls): """Start an SSH server for the tests to use""" return (await cls.create_server( _X11Server, x11_forwarding=True, authorized_client_keys='authorized_keys')) async def _check_x11(self, command=None, *, exc=None, exit_status=None, **kwargs): """Check requesting X11 forwarding""" async with self.connect() as conn: if exc: with self.assertRaises(exc): await _create_x11_process(conn, command, **kwargs) else: proc = await _create_x11_process(conn, command, **kwargs) await proc.wait() self.assertEqual(proc.exit_status, exit_status) @asynctest async def test_xauth_lookup(self): """Test writing an xauth entry and looking it back up""" await update_xauth('xauth', 'test', '0', b'', b'\x00') _, auth_data = await lookup_xauth(asyncio.get_event_loop(), 'xauth', 'test', '0') os.unlink('xauth') self.assertEqual(auth_data, b'\x00') @asynctest async def test_xauth_dead_lock(self): """Test removal of dead Xauthority lock""" with open('xauth-c', 'w'): pass await asyncio.sleep(6) await update_xauth('xauth', 'test', '0', b'', b'\x00') _, auth_data = await lookup_xauth(asyncio.get_event_loop(), 'xauth', 'test', '0') os.unlink('xauth') self.assertEqual(auth_data, b'\x00') @asynctest async def test_xauth_update(self): """Test overwriting an xauth entry""" await update_xauth('xauth', 'test', '0', b'', b'\x00') await update_xauth('xauth', 'test', '0', b'', b'\x01') self.assertEqual(len(list(walk_xauth('xauth'))), 1) _, auth_data = await lookup_xauth(asyncio.get_event_loop(), 'xauth', 'test', '0') os.unlink('xauth') self.assertEqual(auth_data, b'\x01') @asynctest async def test_forward_big(self): """Test requesting X11 forwarding with big-endian connect""" await self._check_x11('connect B', exit_status=1, x11_display='test:0.0', x11_single_connection=True) @asynctest async def test_forward_little(self): """Test requesting X11 forwarding with little-endian connect""" await self._check_x11('connect l', exit_status=1) @asynctest async def test_connection_refused_big(self): """Test the X server refusing connection with big-endian connect""" await self._check_x11('connect B', exit_status=2, x11_display='test:1') @asynctest async def test_connection_refused_little(self): """Test the X server refusing connection with little-endian connect""" await self._check_x11('connect l', exit_status=2, x11_display='test:1') @asynctest async def test_bad_auth_big(self): """Test sending bad auth data with big-endian connect""" await self._check_x11('connect BX', exit_status=0) @asynctest async def test_bad_auth_little(self): """Test sending bad auth data with little-endian connect""" await self._check_x11('connect lX', exit_status=0) @asynctest async def test_ipv4_address(self): """Test matching against an IPv4 address""" await self._check_x11(x11_display='127.0.0.1:0') @asynctest async def test_ipv6_address(self): """Test matching against an IPv6 address""" await self._check_x11(x11_display='[::1]:0') @asynctest async def test_wildcard_address(self): """Test matching against a wildcard host entry""" await self._check_x11(x11_display='wild:0') @asynctest async def test_local_server(self): """Test matching against a local X server""" await self._check_x11(x11_display=':0') @asynctest async def test_domain_socket(self): """Test matching against an explicit domain socket""" await self._check_x11(x11_display='/test:0') @asynctest async def test_display_environment(self): """Test getting X11 display from the environment""" os.environ['DISPLAY'] = 'test:0' await self._check_x11(x11_display=None) del os.environ['DISPLAY'] @asynctest async def test_display_not_set(self): """Test requesting X11 forwarding with no display set""" await self._check_x11(exc=asyncssh.ChannelOpenError, x11_display=None) @asynctest async def test_forwarding_denied(self): """Test SSH server denying X11 forwarding""" await self._check_x11(exc=asyncssh.ChannelOpenError, x11_display='test:0.9') @asynctest async def test_xauth_environment(self): """Test getting Xauthority path from the environment""" os.environ['XAUTHORITY'] = '.Xauthority' await self._check_x11() del os.environ['XAUTHORITY'] @asynctest async def test_no_xauth_match(self): """Test no xauth match""" await self._check_x11(x11_display='no_match:1') @asynctest async def test_invalid_display(self): """Test invalid X11 display value""" await self._check_x11(exc=asyncssh.ChannelOpenError, x11_display='test') @asynctest async def test_xauth_missing(self): """Test missing .Xauthority file""" await self._check_x11(x11_auth_path='.Xauthority-missing') @asynctest async def test_xauth_empty(self): """Test empty .Xauthority file""" await self._check_x11(x11_auth_path='.Xauthority-empty') @asynctest async def test_xauth_corrupted(self): """Test .Xauthority file with corrupted entry""" await self._check_x11(exc=asyncssh.ChannelOpenError, x11_auth_path='.Xauthority-corrupted') @asynctest async def test_selective_forwarding(self): """Test requesting X11 forwarding from one session and not another""" async with self.connect() as conn: await conn.create_process('sleep') await _create_x11_process(conn, 'sleep', x11_display='test:0') @asynctest async def test_from_connect(self): """Test requesting X11 forwarding on connection""" async with self.connect(x11_forwarding=True, x11_display='text:0') as conn: await conn.create_process('sleep') @asynctest async def test_multiple_sessions(self): """Test requesting X11 forwarding from two different sessions""" async with self.connect() as conn: await _create_x11_process(conn) await _create_x11_process(conn) @asynctest async def test_simultaneous_sessions(self): """Test X11 forwarding from multiple sessions simultaneously""" async with self.connect() as conn: await _create_x11_process(conn, 'sleep') await _create_x11_process(conn, 'sleep', x11_display='test:0.1') @asynctest async def test_consecutive_different_servers(self): """Test X11 forwarding to different X servers consecutively""" async with self.connect() as conn: proc = await _create_x11_process(conn) await proc.wait() await _create_x11_process(conn, x11_display='test1:0') @asynctest async def test_simultaneous_different_servers(self): """Test X11 forwarding to different X servers simultaneously""" async with self.connect() as conn: await _create_x11_process(conn, 'sleep') with self.assertRaises(asyncssh.ChannelOpenError): await _create_x11_process(conn, x11_display='test1:0') @asynctest async def test_forwarding_disabled(self): """Test X11 request when forwarding was never enabled""" async with self.connect() as conn: result = await conn.run('connect l') self.assertEqual(result.exit_status, 2) @asynctest async def test_attach_failure(self): """Test X11 listener attach when forwarding was never enabled""" async with self.connect() as conn: result = await conn.run('attach') self.assertEqual(result.exit_status, 0) @asynctest async def test_attach_lock_failure(self): """Test X11 listener attach when Xauthority can't be locked""" with open('.Xauthority-c', 'w'): pass await self._check_x11('connect l', exc=asyncssh.ChannelOpenError) os.unlink('.Xauthority-c') @asynctest async def test_open_failure(self): """Test opening X11 connection when forwarding was never enabled""" async with self.connect() as conn: result = await conn.run('open') self.assertEqual(result.exit_status, 0) @asynctest async def test_open_invalid_unicode(self): """Test opening X11 connection with invalid unicode in original host""" async with self.connect() as conn: result = await conn.run('invalid') self.assertEqual(result.exit_status, None) @asynctest async def test_forwarding_not_allowed(self): """Test an X11 request from a non-authorized user""" ckey = asyncssh.read_private_key('ckey') cert = ckey.generate_user_certificate(ckey, 'name', principals=['ckey'], permit_x11_forwarding=False) async with self.connect(username='ckey', client_keys=[(ckey, cert)], agent_path=None) as conn: with self.assertRaises(asyncssh.ChannelOpenError): await _create_x11_process(conn, 'connect l') @asynctest async def test_forwarding_ignore_failure(self): """Test ignoring failure on an X11 forwarding request""" ckey = asyncssh.read_private_key('ckey') cert = ckey.generate_user_certificate(ckey, 'name', principals=['ckey'], permit_x11_forwarding=False) async with self.connect(username='ckey', client_keys=[(ckey, cert)], agent_path=None) as conn: proc = await _create_x11_process( conn, x11_forwarding='ignore_failure', x11_display='test') await proc.wait() proc = await _create_x11_process( conn, x11_forwarding='ignore_failure') await proc.wait() @asynctest async def test_invalid_x11_forwarding_request(self): """Test an invalid X11 forwarding request""" with patch('asyncssh.connection.SSHClientChannel', _X11ClientChannel): async with self.connect() as conn: stdin, _, _ = await conn.open_session('sleep') result = await stdin.channel.make_x11_forwarding_request( '', 'xx', 0) self.assertFalse(result) @asynctest async def test_unknown_action(self): """Test unknown action""" async with self.connect() as conn: result = await conn.run('unknown') self.assertEqual(result.exit_status, 255)