Mercurial > dropbear
annotate test/test_aslr.py @ 1933:e093ddc5b585
Fix extra default -i arguments for multihop
When multihop executes dbclient it should only add -i arguments
from the original commandline, not the default id_dropbear key.
Otherwise multiple -i arguments keep getting added which
results in servers disconnecting with too many auth attempts
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Fri, 01 Apr 2022 11:56:10 +0800 |
parents | 1c9215154d4a |
children |
rev | line source |
---|---|
1861 | 1 from pathlib import Path |
2 import sys | |
3 | |
4 from test_dropbear import * | |
5 | |
6 def test_reexec(request, dropbear): | |
7 """ | |
8 Tests that two consecutive connections have different address layouts. | |
9 This indicates that re-exec makes ASLR work | |
10 """ | |
1863 | 11 map_script = (Path(request.node.fspath).parent / "parent_dropbear_map.py").resolve() |
12 # run within the same venv, for python deps | |
13 activate = own_venv_command() | |
14 cmd = f"{activate}; {map_script}" | |
15 print(cmd) | |
1861 | 16 r = dbclient(request, cmd, capture_output=True, text=True) |
17 map1 = r.stdout.rstrip() | |
18 print(r.stderr, file=sys.stderr) | |
19 r.check_returncode() | |
20 | |
21 r = dbclient(request, cmd, capture_output=True, text=True) | |
22 map2 = r.stdout.rstrip() | |
23 print(r.stderr, file=sys.stderr) | |
24 r.check_returncode() | |
25 | |
26 print(map1) | |
27 print(map2) | |
28 # expect something like | |
29 # "563174d59000-563174d5d000 r--p 00000000 00:29 4242372 /home/matt/src/dropbear/build/dropbear" | |
1865
d940f8007a45
Fix testing with dropbearmulti
Matt Johnston <matt@ucc.asn.au>
parents:
1863
diff
changeset
|
30 assert map1.endswith('/dropbear') or map1.endswith('/dropbearmulti') |
1861 | 31 a1 = map1.split()[0] |
32 a2 = map2.split()[0] | |
33 print(a1) | |
34 print(a2) | |
35 # relocation addresses should differ | |
36 assert a1 != a2 | |
37 |