1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
|
require 'spec_helper_acceptance'
RSpec.context 'sshkeys: Destroy' do
let(:keyname) { "pl#{rand(999_999).to_i}" }
# FIXME: This is bletcherous
let(:ssh_known_hosts) { '/etc/ssh/ssh_known_hosts' }
before(:each) do
posix_agents.agents.each do |agent|
# The 'cp' might fail because the source file doesn't exist
on(
agent,
"cp -fv #{ssh_known_hosts} /tmp/ssh_known_hosts",
acceptable_exit_codes: [0, 1],
)
cmd = <<-CMD
echo '' > #{ssh_known_hosts}
echo '#{keyname} ssh-rsa how_about_the_initial_rsa_key_of_c' >> #{ssh_known_hosts}
echo '#{keyname} ssh-dss how_about_the_initial_dss_key_of_c' >> #{ssh_known_hosts}
CMD
on(agent, cmd)
end
end
after(:each) do
posix_agents.each do |agent|
# Is it present?
rc = on(
agent,
'[ -e /tmp/ssh_known_hosts ]',
accept_all_exit_codes: true,
)
if rc.exit_code == 0
# It's present, so restore the original
on(
agent,
"mv -fv /tmp/ssh_known_hosts #{ssh_known_hosts}",
accept_all_exit_codes: true,
)
else
# It's missing, which means there wasn't one to backup; just
# delete the one we laid down
on(
agent,
"rm -fv #{ssh_known_hosts}",
accept_all_exit_codes: true,
)
end
end
end
posix_agents.each do |agent|
it "#{agent} should delete an rsa entry for an SSH known host key" do
args = ['ensure=absent',
"type='rsa'"]
on(agent, puppet_resource('sshkey', keyname.to_s, args))
on(agent, "cat #{ssh_known_hosts}") do |_res|
expect(stdout).not_to include('how_about_the_initial_rsa_key_of_c')
end
end
it "#{agent} should delete an dss entry for an SSH known host key" do
args = ['ensure=absent',
"type='ssh-dss'"]
on(agent, puppet_resource('sshkey', keyname.to_s, args))
on(agent, "cat #{ssh_known_hosts}") do |_res|
expect(stdout).not_to include('how_about_the_initial_dss_key_of_c')
end
end
end
end
|
