Vh8UdZddlmZddlmZddlmZddlmZm Z ddl m Z ddl m Z mZmZddlmZdd lmZmZdd lmZmZdd lmZdd lmZdd lmZddlmZdZ eee!d<edrddl"m#Z#ddl$m Z m%Z%m&Z&ddl'm(Z(ddl)m*Z*nGddZ%GddZ&Gdde&jVZ,Gdde&jVZ-Gdde&jVZ.Gd d!e%j^Z0eeGd"d#Z1ee Gd$d%Z2ee Gd&d'Z3ee Gd(d)Z4Gd*d+ejjZ6Gd,d-ejjZ7Gd.d/ejjZ8Gd0d1ejjZ9y)2zT Tests for the implementation of the ssh-userauth service. Maintainer: Paul Swartz ) ModuleType)Optional) implementer) ConchErrorValidPublicKey)ICredentialsChecker) IAnonymousISSHPrivateKeyIUsernamePassword)UnauthorizedLogin)IRealmPortal)defertask)Deferred)loopback) requireModule)unittestNkeys cryptography)SSHProtocolChecker)r transportuserauth)NS)keydatac eZdZGddZy)rceZdZdZy)transport.SSHTransportBaseQ A stub class so that later class definitions won't die. N__name__ __module__ __qualname____doc__P/home/dcms/DCMS/lib/python3.12/site-packages/twisted/conch/test/test_userauth.pySSHTransportBaser# r&r(N)r!r"r#r(r%r&r'rr"   r&rc eZdZGddZy)rceZdZdZy)userauth.SSHUserAuthClientrNr r%r&r'SSHUserAuthClientr-)r)r&r.N)r!r"r#r.r%r&r'rr(r*r&rc*eZdZdZdZdZddZdZy)ClientUserAuthz" A mock user auth client. c|jr-tjjtj St jtjjtjS)z If this is the first time we've been called, return a blob for the DSA key. Otherwise, return a blob for the RSA key. ) lastPublicKeyrKey fromStringrpublicRSA_opensshrsucceedpublicDSA_opensshselfs r' getPublicKeyzClientUserAuth.getPublicKey4sL   88&&w'@'@A A==!4!4W5N5N!OP Pr&ctjtjj t j S)z@ Return the private key object for the RSA key. )rr6rr3r4rprivateRSA_opensshr8s r' getPrivateKeyzClientUserAuth.getPrivateKey?s(}}TXX001K1KLMMr&Nc,tjdS)z/ Return 'foo' as the password. foorr6)r9prompts r' getPasswordzClientUserAuth.getPasswordEs}}V$$r&c,tjdS)z> Return 'foo' as the answer to two questions. )foorDr@)r9name informationanswerss r'getGenericAnswersz ClientUserAuth.getGenericAnswersKs}}^,,r&N)r!r"r#r$r:r=rBrHr%r&r'r0r0/s QN % -r&r0ceZdZdZdZdZy) OldClientAuthz~ The old SSHUserAuthClient returned a cryptography key object from getPrivateKey() and a string from getPublicKey ctjtjj t j jSrI)rr6rr3r4rr< keyObjectr8s r'r=zOldClientAuth.getPrivateKeyXs,}}TXX001K1KLVVWWr&cxtjjtjj SrI)rr3r4rr5blobr8s r'r:zOldClientAuth.getPublicKey[s&xx""7#<#<=BBDDr&Nr!r"r#r$r=r:r%r&r'rKrKRs XEr&rKceZdZdZdZdZy)ClientAuthWithoutPrivateKeyzP This client doesn't have a private key, but it does have a public key. cyrIr%r8s r'r=z)ClientAuthWithoutPrivateKey.getPrivateKeydsr&c\tjjtjSrI)rr3r4rr5r8s r'r:z(ClientAuthWithoutPrivateKey.getPublicKeygsxx""7#<#<==r&NrPr%r&r'rRrR_s>r&rRcPeZdZdZGddZGddZdZdZdZd Z y ) FakeTransporta_ L{userauth.SSHUserAuthServer} expects an SSH transport which has a factory attribute which has a portal attribute. Because the portal is important for testing authentication, we need to be able to provide an interesting portal object to the L{SSHUserAuthServer}. In addition, we want to be able to capture any packets sent over the transport. @ivar packets: a list of 2-tuples: (messageType, data). Each 2-tuple is a sent packet. @type packets: C{list} @param lostConnecion: True if loseConnection has been called on us. @type lostConnection: L{bool} ceZdZdZdZdZy)FakeTransport.ServicezW A mock service, representing the other service offered by the server. nancycyrIr%r8s r'serviceStartedz$FakeTransport.Service.serviceStarteds r&N)r!r"r#r$rEr[r%r&r'ServicerX|s  r&r\ceZdZdZdZy)FakeTransport.Factoryzg A mock factory, representing the factory that spawned this user auth service. c.|dk(rtjSy)z2 Return our fake service. noneN)rVr\)r9rservices r' getServicez FakeTransport.Factory.getServices'!$,,,"r&N)r!r"r#r$rbr%r&r'Factoryr^s   -r&rccz|j|_||j_d|_||_g|_yNF)rcfactoryportallostConnectionrpackets)r9rgs r'__init__zFakeTransport.__init__s1||~ $ # r&c>|jj||fy)z8 Record the packet sent by the service. N)riappend)r9 messageTypemessages r' sendPacketzFakeTransport.sendPackets ['23r&cy)z Pretend that this transport encrypts traffic in both directions. The SSHUserAuthServer disables password authentication if the transport isn't encrypted. Tr%)r9 directions r' isEncryptedzFakeTransport.isEncrypteds r&cd|_yNT)rhr8s r'loseConnectionzFakeTransport.loseConnections "r&N) r!r"r#r$r\rcrjrorrrur%r&r'rVrVks/  - -4 #r&rVceZdZdZdZy)Realmz A mock realm for testing L{userauth.SSHUserAuthServer}. This realm is not actually used in the course of testing, so it returns the simplest thing that could possibly work. c:tj|dddfS)NrcyrIr%r%r&r'z%Realm.requestAvatar..r&r@)r9avatarIdmind interfacess r' requestAvatarzRealm.requestAvatars}}jmT<@AAr&N)r!r"r#r$rr%r&r'rwrws Br&rwceZdZdZefZdZy)PasswordCheckerz A very simple username/password checker which authenticates anyone whose password matches their username and rejects all others. c|j|jk(rtj|jStjt dS)NzInvalid username/password pair)usernamepasswordrr6failr )r9credss r'requestAvatarIdzPasswordChecker.requestAvatarIds; >>U^^ +==0 0zz+,LMNNr&N)r!r"r#r$r credentialInterfacesrr%r&r'rrs ./Or&rceZdZdZefZdZy)PrivateKeyCheckerz A very simple public key checker which authenticates anyone whose public/private keypair is the same keydata.public/privateRSA_openssh. c|jtjjtj jk(r{|j etjj|j}|j|j |jr |jStttrI) rOrr3r4rr5 signatureverifysigDatarrr )r9robjs r'rz!PrivateKeyChecker.requestAvatarIds ::,,W-F-FGLLN N*hh))%**5::eoou}}= >>) !!%&&!!r&N)r!r"r#r$r rrr%r&r'rrs +,"r&rceZdZdZefZdZy)AnonymousCheckerzI A simple checker which isn't supported by L{SSHUserAuthServer}. cyrIr%)r9 credentialss r'rz AnonymousChecker.requestAvatarIds r&N)r!r"r#r$r rrr%r&r'rrs'= r&rceZdZdZedZddZdZdeddfdZ d Z d Z d Z d Z d ZdZdZdZdZdZdZdZdZdZdZdedfdZdZy)SSHUserAuthServerTestsz& Tests for SSHUserAuthServer. Ncannot run without cryptographyreturnct|_t|j|_|jj t |jj t tj|_ t|j|j_ |jj|jjjyrI)rwrealmrrgregisterCheckerrrrSSHUserAuthServer authServerrVrr[supportedAuthenticationssortr8s r'setUpzSSHUserAuthServerTests.setUpsW TZZ(  ##O$56 ##$5$78"446$1$++$>! &&( 00557r&cF|jjd|_yrI)rserviceStoppedr8s r'tearDownzSSHUserAuthServerTests.tearDown &&(r&ignoredct|jjtsJ|jjjd}|j |t jtddzfy)z; Check that the authentication has failed. spassword,publickeyN) isinstancerrrVri assertEqualrMSG_USERAUTH_FAILUREr)r9r lastPackets r' _checkFailedz#SSHUserAuthServerTests._checkFailedsb$//33]CCC__..66r:     * *B/D,E,O P r&c|jjtdtdztdz}|j|jS)z A client may request a list of authentication 'method name' values that may continue by using the "none" authentication 'method name'. See RFC 4252 Section 5.2. r?sservicer`)rssh_USERAUTH_REQUESTr addCallbackr)r9ds r'test_noneAuthenticationz.SSHUserAuthServerTests.test_noneAuthentication sH OO 0 0 vJJ '"W+ 5 }}T..//r&c djtdtdtddtdg}jj|}fd}|j |S)z When provided with correct password authentication information, the server should respond by sending a MSG_USERAUTH_SUCCESS message with no other data. See RFC 4252, Section 5.1. r&r?r`passwordrcjjjjtj dfgyNr&rrrrirMSG_USERAUTH_SUCCESSrr9s r'checkzKSSHUserAuthServerTests.test_successfulPasswordAuthentication..check"5   ))11//56 r&)joinrrrr)r9packetrrs` r'%test_successfulPasswordAuthenticationz.checkPrr&)rr3r4rr5rOr<rsshTyperr sessionIDsignbytesrMSG_USERAUTH_REQUESTrr)r9rOrrrrrs` r''test_successfulPrivateKeyAuthenticationz>SSHUserAuthServerTests.test_successfulPrivateKeyAuthentication;sxx""7#<#<=BBDhh!!'"<"<= vJk     h   /6!!+HH wK%!>!> @A AF J  "Y- OO 0 0 8  }}U##r&ctjd}d}fd}|j|jd||j|jd||j|jd|t dt dzt d zt d z}|jj ||j tS) z ssh_USERAUTH_REQUEST should raise a ConchError if tryAuth returns None. Added to catch a bug noticed by pyflakes. c&|jdy)Nz&request should have raised ConochError)r)r9rs r'mockCbFinishedAuthzOSSHUserAuthServerTests.test_requestRaisesConchError..mockCbFinishedAuth_s II> ?r&cyrIr%)kinduserdatas r' mockTryAuthzHSSHUserAuthServerTests.test_requestRaisesConchError..mockTryAuthbr&c<j|jyrI)errbackvalue)reasonrs r' mockEbBadAuthzJSSHUserAuthServerTests.test_requestRaisesConchError..mockEbBadAuthes IIfll #r&tryAuth_cbFinishedAuth _ebBadAuthsuserr`s public-keysdata)rrpatchrrr assertFailurer)r9rrrrrs @r'test_requestRaisesConchErrorz3SSHUserAuthServerTests.test_requestRaisesConchErrorXs NN  @  $ 4??I{; 4??$57IJ 4??L-@Gr'{*R ->>GL ,,V4!!!Z00r&c\tjjtjj t dt dzt dzdzt dzt z}jj|}fd}|j|S)z@ Test that verifying a valid private key works. r?r`rrssh-rsacjjjjtj t dt zfgy)Nr)rrrrirMSG_USERAUTH_PK_OKr)rrOr9s r'rz@SSHUserAuthServerTests.test_verifyValidPrivateKey..checksB   ))11--r*~4/HIJ r&) rr3r4rr5rOrrrr)r9rrrrOs` @r'test_verifyValidPrivateKeyz1SSHUserAuthServerTests.test_verifyValidPrivateKeyrsxx""7#<#<=BBD vJk   n   h    OO 0 0 8  }}U##r&c`tjjtjj }t dt dzt dzdzt dzt |z}|jj|}|j|jS)d Test that private key authentication fails when the public key is invalid. r?r`rrsssh-dsa rr3r4rr7rOrrrrrr9rOrrs r'3test_failedPrivateKeyAuthenticationWithoutSignaturezJSSHUserAuthServerTests.test_failedPrivateKeyAuthenticationWithoutSignatures xx""7#<#<=BBD vJk   n   h    OO 0 0 8}}T..//r&c&tjjtjj }tjjtj }tdtdztdzdztdzt|zt|j|z}d|jj_ |jj|}|j|jS)rr?r`rrrr)rr3r4rr5rOr<rrrrrrrr)r9rOrrrs r'0test_failedPrivateKeyAuthenticationWithSignaturezGSSHUserAuthServerTests.test_failedPrivateKeyAuthenticationWithSignatures xx""7#<#<=BBDhh!!'"<"<= vJk   n   h   $  ! /6!!+ OO 0 0 8}}T..//r&ctjjtjj }t d|ddz}t dt dzt dzdzt dzt |z}|jj|}|j|jS) z Private key authentication fails when the public key type is unsupported or the public key is corrupt. s ssh-bad-type Nr?r`rrrrrs r'test_unsupported_publickeyz1SSHUserAuthServerTests.test_unsupported_publickeys xx""7#<#<=BBD/"T"#Y. vJk   n   h    OO 0 0 8}}T..//r&cVtj}t|j|_|jj t |j|j|jj|j|jddgy)ah L{SSHUserAuthServer} sets up C{SSHUserAuthServer.supportedAuthentications} by checking the portal's credentials interfaces and mapping them to SSH authentication method strings. If the Portal advertises an interface that L{SSHUserAuthServer} can't map, it should be ignored. This is a white box test. rrN) rrrVrgrrrr[rrrr)r9servers r' test_ignoreUnknownCredInterfacesz7SSHUserAuthServerTests.test_ignoreUnknownCredInterfacess~++-(5 ##$4$67'',,. 88; :UVr&c@|jd|jjtj}t |j |_d|j_|j|j|jd|jtj}t |j |_d|j_|j|j|jd|jy)z Test that the userauth service does not advertise password authentication if the password would be send in cleartext. rcyrer%xs r'rzzISSHUserAuthServerTests.test_removePasswordIfUnencrypted..r{r&c |dk(SNinr%rs r'rzzISSHUserAuthServerTests.test_removePasswordIfUnencrypted.. dr&N) assertInrrrrrVrgrrrr[r assertNotIn)r9clearAuthServerhalfAuthServers r' test_removePasswordIfUnencryptedz7SSHUserAuthServerTests.test_removePasswordIfUnencrypteds k4??#K#KL"446$1$++$>!0?!!-&&(&&( o&N&NO!335#0#= /B  ,%%'%%' k>#J#JKr&c,t|j}|jtt j }t ||_d|j_|j|j|j|jdgt j }t ||_d|j_|j|j|j|jdgy)z If the L{SSHUserAuthServer} is not advertising passwords, then an unencrypted connection should not cause any warnings or exceptions. This is a white box test. cyrer%rs r'rzzSSSHUserAuthServerTests.test_unencryptedConnectionWithoutPasswords..r{r&rc |dk(Srr%rs r'rzzSSSHUserAuthServerTests.test_unencryptedConnectionWithoutPasswords..rr&N) rrrrrrrVrrrr[rrr)r9rgrrs r'*test_unencryptedConnectionWithoutPasswordszASSHUserAuthServerTests.test_unencryptedConnectionWithoutPasswordss #023#446$1&$9!0?!!-&&(&&( AAL>R"335#0#8 /B  ,%%'%%' AAL>Rr&c&tj}tj|_t |j |_|j|jjd|j|j|jjtjdttjfzt!dzt!dzfg|j#|jj$y)z0 Test that the login times out. 鰚syou took too longr&N)rrrrrrVrgrr[rrrriMSG_DISCONNECTr)DISCONNECT_NO_MORE_AUTH_METHODS_AVAILABLEr assertTruerhr9timeoutAuthServers r'test_loginTimeoutz(SSHUserAuthServerTests.test_loginTimeouts%668"&**,&3DKK&@#((*'' 5((*   ' ' / /,,YPPRST-./g   )33BBCr&ctj}tj|_t |j |_|j|j|jjd|j|jjg|j|jjy)zN Test that stopping the service also stops the login timeout. r N)rrrrrrVrgrr[rrrri assertFalserhrs r'test_cancelLoginTimeoutz.SSHUserAuthServerTests.test_cancelLoginTimeouts%668"&**,&3DKK&@#((*((*'' 5 *44<.check4sm   ))11"5,,YPPRST./0g r&) rrrrrrrangerrr)r9rirrs` r'test_tooManyAttemptsz+SSHUserAuthServerTests.test_tooManyAttempts)s 2f:r'{B{OUBvJWX $ r -A44VSSHUserAuthServerTests.test_tryAuthEdgeCases..mockAuthYrr&auth_publickey auth_passwordNcjjjddd}j|tS)Nr)rrrr)rd2r9s r' secondTestz@SSHUserAuthServerTests.test_tryAuthEdgeCases..secondTest_s.((dDAB%%b*5 5r&r)rrrrrr)r9rr#d1s` r'test_tryAuthEdgeCasesz,SSHUserAuthServerTests.test_tryAuthEdgeCasesMsp  4??$4h? 4??OT: 6__ $ $\4 >!!"j1==jIIr&)rN)r!r"r#r$rskiprrobjectrrrrrrrrrrrrrrrrrrr%r%r&r'rrs |08  F  t   0$&0"$:14$.0"0(0,W"L*S4D0 E$2 08D> 0Jr&rcreZdZdZedZdZdZdZdZ dZ d Z d Z d Z d Zd ZdZdZdZdZdZy)SSHUserAuthClientTestsz& Tests for SSHUserAuthClient. Nrctdtj|_td|j_d|jj_|jj y)Nr?r)r0rVr\ authClientrrr[r8s r'rzSSHUserAuthClientTests.setUposL(1F1F1HI$1$$7!.5!!+ &&(r&cF|jjd|_yrI)r+rr8s r'rzSSHUserAuthClientTests.tearDownurr&ct|j|jjd|j|jjjd|j|jj j tjtdtdztdzfgy)z; Test that client is initialized properly. r?rYr`N) rr+rinstancerErrirrrr8s r' test_initz SSHUserAuthClientTests.test_initys --v6 1166A  OO % % - -++RZ"X,-FG-T U V r&cdgfd}||jj_|jjd|j d|jj y)z9 Test that the client succeeds properly. Nc|d<y)Nrr%)rar.s r'stubSetServicezDSSHUserAuthClientTests.test_USERAUTH_SUCCESS..stubSetServices !HQKr&r&r)r+r setServicessh_USERAUTH_SUCCESSrr.)r9r2r.s @r'test_USERAUTH_SUCCESSz,SSHUserAuthClientTests.test_USERAUTH_SUCCESSsU6 "0>!!, ,,S1 !doo&>&>?r&c |jjtddz|j|jjj dt jtdtdztdzdztdzttjjtjjzf|jjtddzttjjtjj}|j|jjj dt jtdtdztdzdztdz|zf|jjtdttjjtjjzt|jjj t#t jfztdztdztdzdztdz|z}tjjtj$}|j|jjj dt jtdtdztdzdztdz|zt|j'|zfy ) zJ Test that the client can authenticate with a public key. rrrr?rYsssh-dssrN)r+ssh_USERAUTH_FAILURErrrrirrrr3r4rr7rOr5ssh_USERAUTH_PK_OKrrr<r)r9rOrrs r'test_publickeyz%SSHUserAuthClientTests.test_publickeys ,,R -=-GH  OO % % - -b 1--6 X,\"#Z. ! TXX(()B)BCHHJK L   ,,R -=-GH$((%%g&?&?@EEGH  OO % % - -b 1--vJl#&'n %     ** zNR 3 3G4M4M N S S UV V  t((22 3X2245 6j l       n    hh!!'"<"<=  OO % % - -b 1--6 X,\"#Z. !   SXXg&' (  r&ctdtj}td|_d|j_|j |j dg|j_|j|jd|j|jjtjtdtdztdzfgy)z If the SSHUserAuthClient doesn't return anything from signData, the client should start the authentication over again by requesting 'none' authentication. r?Nrrr&rYr`)rRrVr\rrr[rri assertIsNoner9rrrr)r9r+s r'!test_publickey_without_privatekeyz8SSHUserAuthClientTests.test_publickey_without_privatekeys 19N9N9PQ ,T2 )0 &!!#<(') $ *77<=   ( (++RZ"X,-FG-T U V r&cdj_jjd}fd}|j|S)z{ If there's no public key, auth_publickey should return a Deferred called back with a False value. cyrIr%rs r'rzz:SSHUserAuthClientTests.test_no_publickey..r{r&rc(j|yrI)r)resultr9s r'rz7SSHUserAuthClientTests.test_no_publickey..checks   V $r&)r+r:rr)r9rrs` r'test_no_publickeyz(SSHUserAuthClientTests.test_no_publickeys; (6$ OO # #L 1 %}}U##r&c|jjtddz|j|jjj dt jtdtdztdzdztdzf|jjtdtdz|j|jjj dt jtdtdztdzdztddzzfy ) zx Test that the client can authentication with a password. This includes changing the password. rrrr?rYr&rrN) r+r8rrrrirrr9r8s r' test_passwordz$SSHUserAuthClientTests.test_passwords ,,R _w-FG  OO % % - -b 1--6 R\)B{O;gE6 R   **2c7RW+<=  OO % % - -b 1--6 R\)B{O;gE6 UVV  r&c|d|j_|j|jjdy)zK If getPassword returns None, tryAuth should return False. cyrIr%r%r&r'rzz9SSHUserAuthClientTests.test_no_password.. r{r&rN)r+rBrrr8s r'test_no_passwordz'SSHUserAuthClientTests.test_no_passwords-'3# 00=>r&cV|jjtdtdztdzdztdzdz|j|jjj dt jdtdztdzfy) zj Make sure that the client can authenticate with the keyboard interactive method. r&ss Password: rrsr?N)r+'ssh_USERAUTH_PK_OK_keyboard_interactiverrrrirMSG_USERAUTH_INFO_RESPONSEr8s r'test_keyboardInteractivez/SSHUserAuthClientTests.test_keyboardInteractive s ?? sGg g " "       OO % % - -b 133#bj02f:=  r&cVd|j_g|jj_|jj d|j |jjjt jtdtdztdzfgy)z If C{SSHUserAuthClient} gets a MSG_USERAUTH_PK_OK packet when it's not expecting it, it should fail the current authentication and move on to the next type. sunknownr&r?rYr`N) r+lastAuthrrir9rrrrr8s r'"test_USERAUTH_PK_OK_unknown_methodz9SSHUserAuthClientTests.test_USERAUTH_PK_OK_unknown_method!s| $. ,.!!) **3/  OO % % - -++RZ"X,-FG-T U V r&cJfd}fd}|j_|j_jjt ddzj jj jdtjt dt dzt dzdzt dzfjjt d d zj jj jd d d dgy )z ssh_USERAUTH_FAILURE should sort the methods by their position in SSHUserAuthClient.preferredOrder. Methods that are not in preferredOrder should be sorted at the end of that list. cRjjjddy)N here is datar+rror8sr'auth_firstmethodzNSSHUserAuthClientTests.test_USERAUTH_FAILURE_sorting..auth_firstmethod6s OO % % 0 0o Fr&cRjjjddy)N other dataTrSr8sr'auth_anothermethodzPSSHUserAuthClientTests.test_USERAUTH_FAILURE_sorting..auth_anothermethod9s OO % % 0 0m Dr&sanothermethod,passwordrrr?rYrs"firstmethod,anothermethod,passwordrN)rQrR)rVrW) r+rTrXr8rrrrirr)r9rTrXs` r'test_USERAUTH_FAILURE_sortingz4SSHUserAuthClientTests.test_USERAUTH_FAILURE_sorting/s G ,<(-?* ,,R0I-JW-TU  OO % % - -b 1--6 R\)B{O;gE6 R   ,, 4 5 ?   OO % % - -bc 2 #%9 : r&cD|jjtddz|jjtddz|j|jjj dtj dtdzdzfy) z If there are no more available user authentication messages, the SSHUserAuthClient should disconnect with code DISCONNECT_NO_MORE_AUTH_METHODS_AVAILABLE. rrrrss(no more authentication methods availablesN)r+r8rrrrir r8s r'%test_disconnectIfNoMoreAuthenticationz.checkzs< KK+ ,&&(A==+66v> >r&c|jtjddd}|jjj SrI)rbrcrHrrrd)rArr+check3r9s r'rez4SSHUserAuthClientTests.test_defaults..check2sB KK+ ,,,T4>A==+66v> >r&c.|jtyrI)rbrc)rAs r'rgz4SSHUserAuthClientTests.test_defaults..check3s KK+ ,r&) rr.rVr\r<r:r=rrrd)r9rrr+rergs` @@@r' test_defaultsz$SSHUserAuthClientTests.test_defaultsqst // 8M8M8OP  *1134 ?  ?  -  $ $ &}}TYY'22599r&)r!r"r#r$rr&rrr/r5r:r=rBrDrGrKrNrZr\r_rir%r&r'r)r)gsa |0)    @< | & $ ,? *  " H $  :r&r)c.eZdZedZGddZdZy) LoopbackTestsNrc&eZdZGddZdZy)LoopbackTests.FactoryceZdZdZdZdZy)LoopbackTests.Factory.Service TestServicec8|jjyrI)rrur8s r'r[z,LoopbackTests.Factory.Service.serviceStarteds--/r&cyrIr%r8s r'rz,LoopbackTests.Factory.Service.serviceStoppedsr&N)r!r"r#rEr[rr%r&r'r\ros!D 0 r&r\c|jSrI)r\)r9avatarrEs r'rbz LoopbackTests.Factory.getServices << r&N)r!r"r#r\rbr%r&r'rcrms   r&rccZtjtdjj }t j _j _dj _t j |_||j _dxj _ |j _ dxj _ |j _ jj _ d_ t}t|}tj!t#j!t%fd_|j!|j j_t+j,j |j }dj j _d|j j _j1|j1fd }|j3|S) zW Test that the userauth server and client play nicely with each other. r?cyrtr%rs r'rzz-LoopbackTests.test_loopback..r{r&r&cyrIr%r%r&r'rzz-LoopbackTests.test_loopback..r{r&rc:tj|dk(S)Nr)lensuccessfulCredentials)aIdcheckers r'rzz-LoopbackTests.test_loopback..ss7+H+H+M'NRS'Sr&cy)N_ServerLoopbackr%r%r&r'rzz-LoopbackTests.test_loopback..r{r&cy)N_ClientLoopbackr%r%r&r'rzz-LoopbackTests.test_loopback..r{r&cfjjjjdy)Nrp)rrrarE)rr9rs r'rz*LoopbackTests.test_loopback..checks%   V--55::N Kr&)rrr0rcr\rr(rarrr sendKexInitrf passwordDelayrwrrrrrareDonergr loopbackAsync logPrefixr[r)r9clientrrgrrr|rs` @@r' test_loopbackzLoopbackTests.test_loopbacks++- (<(<(>?%557#) '5$$557#) BEE"V%5%5%?FRR$v'7'7'C$(<<>  $& 12 1 34Tw'*0  '  " "6#3#3V5E5E F/H"",/H"", L}}U##r&)r!r"r#rr&rcrr%r&r'rkrks |0   '$r&rkceZdZedZdZy)ModuleInitializationTestsNrc|jtjjdd|jtjjddy)N<r)rrrprotocolMessagesr.r8s r' test_messagesz'ModuleInitializationTests.test_messagessP   & & 7 7 ;=Q    & & 7 7 ;=Q r&)r!r"r#rr&rr%r&r'rrs |0 r&r):r$typesrtypingrzope.interfacertwisted.conch.errorrrtwisted.cred.checkersrtwisted.cred.credentialsr r r twisted.cred.errorr twisted.cred.portalr rtwisted.internetrrtwisted.internet.deferrtwisted.protocolsrtwisted.python.reflectr twisted.trialrr__annotations__twisted.conch.checkersrtwisted.conch.sshrrtwisted.conch.ssh.commonrtwisted.conch.testrr.r0rKrRr(rVrwrrrTestCaserr)rkrr%r&r'rs &:5RR0.(+&0"!hz! 9;;+*  -X// -F EH.. E >("<"< >>#I..>#B V B B B ! O O" O !""""& !   "  {JX..{J| a:X..a:H 8$H%%8$v   1 1  r&