check_ssh: Handle non-alpha software versions

This patch fixes a bug where we would reject version control strings that do not contain letters, because the assumption is made that they always do. This is not required by the RFC however, and there exist implementations that do not contain letters. I've also added a few references to the RFC to make the process of parsing the control string more apparent. This fixes op5#8716 (https://bugs.op5.com/view.php?id=8716) Signed-off-by: Anton Lofgren <alofgren@op5.com>
author: Anton Lofgren <alofgren@op5.com> 2014-05-15 12:48:26 (GMT)
committer: Lorenz Kästle <lorenz.kaestle@netways.de> 2022-01-14 14:34:12 (GMT)
commit: ecf3f468905dc2b8e8470eb5288ce8b9f845c26f (patch)
tree: 292016afc6114a6aed2a6334059b07f8961a4ebb /plugins/t
parent: 4433c7554337b6bc54a3dc548b75746f9dbc2d86 (diff)
download: monitoring-plugins-ecf3f468905dc2b8e8470eb5288ce8b9f845c26f.tar.gz
1 files changed, 45 insertions, 31 deletions
diff --git a/plugins/t/check_ssh.t b/plugins/t/check_ssh.t
index 3e1824d..7df6265 100644
--- a/plugins/t/check_ssh.t
+++ b/plugins/t/check_ssh.t
@@ -8,10 +8,13 @@ use strict;
 use Test::More;
 use NPTest;
+my $res;
 # Required parameters
 my $ssh_host           = getTestParameter("NP_SSH_HOST",
                                          "A host providing SSH service",
                                          "localhost");
 my $host_nonresponsive = getTestParameter("NP_HOST_NONRESPONSIVE",
                                          "The hostname of system not responsive to network requests",
                                          "10.0.0.1" );
@@ -20,13 +23,37 @@ my $hostname_invalid   = getTestParameter("NP_HOSTNAME_INVALID",
                                          "An invalid (not known to DNS) hostname",
                                          "nosuchhost" );
-my $res;
+plan tests => 14 + 6;
-plan tests => 18;
 SKIP: {
+        skip "SSH_HOST must be defined", 6 unless $ssh_host;
+        my $result = NPTest->testCmd(
+                "./check_ssh -H $ssh_host"
+                );
+        cmp_ok($result->return_code, '==', 0, "Exit with return code 0 (OK)");
+        like($result->output, '/^SSH OK - /', "Status text if command returned none (OK)");
-        skip "No netcat available", 12 unless (system("which nc > /dev/null") == 0);
+        $result = NPTest->testCmd(
+                "./check_ssh -H $host_nonresponsive -t 2"
+                );
+        cmp_ok($result->return_code, '==', 2, "Exit with return code 0 (OK)");
+        like($result->output, '/^CRITICAL - Socket timeout after 2 seconds/', "Status text if command returned none (OK)");
+        $result = NPTest->testCmd(
+                "./check_ssh -H $hostname_invalid -t 2"
+                );
+        cmp_ok($result->return_code, '==', 3, "Exit with return code 0 (OK)");
+        like($result->output, '/^check_ssh: Invalid hostname/', "Status text if command returned none (OK)");
+}
+SKIP: {
+        skip "No netcat available", 14 unless (system("which nc > /dev/null") == 0);
        my $nc_flags = "-l 5003 -i 1";
        #A valid protocol version control string has the form
@@ -41,6 +68,13 @@ SKIP: {
        like( $res->output, '/^SSH OK - nagiosplug.ssh.0.1 \(protocol 2.0\)/', "Output OK");
        close NC;
+        open(NC, "echo 'SSH-2.0-3.2.9.1' | nc ${nc_flags}|");
+        sleep 1;
+        $res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );
+        cmp_ok( $res->return_code, "==", 0, "Got SSH protocol version control string with non-alpha softwareversion string");
+        like( $res->output, '/^SSH OK - 3.2.9.1 \(protocol 2.0\)/', "Output OK for non-alpha softwareversion string");
+        close NC;
        open(NC, "echo 'SSH-2.0-nagiosplug.ssh.0.1 this is a comment' | nc ${nc_flags} |");
        sleep 1;
        $res = NPTest->testCmd( "./check_ssh -H localhost -p 5003 -r nagiosplug.ssh.0.1" );
@@ -48,7 +82,6 @@ SKIP: {
        like( $res->output, '/^SSH OK - nagiosplug.ssh.0.1 \(protocol 2.0\)/', "Output OK");
        close NC;
        open(NC, "echo 'SSH-' | nc ${nc_flags}|");
        sleep 1;
        $res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );
@@ -72,36 +105,17 @@ SKIP: {
        #RFC 4253 permits servers to send any number of data lines prior to sending the protocol version control string
-        open(NC, "echo 'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\n
+        open(NC, "{ echo 'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA'; sleep 1;
-                BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB\n
+                echo 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB'; sleep 1;
-                CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC\n
+                echo 'CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC'; sleep 1;
-                DDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD\n
+                echo 'DDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD'; sleep 1;
-                Some\nPrepended\nData\nLines\nSSH-2.0-nagiosplug.ssh.0.2' | nc ${nc_flags}|");
+                printf 'EEEEEEEEEEEEEEEEEE'; sleep 1;
+                printf 'EEEEEEEEEEEEEEEEEE\n'; sleep 1;
+                echo 'Some\nPrepended\nData\nLines\n'; sleep 1;
+                echo 'SSH-2.0-nagiosplug.ssh.0.2';} | nc ${nc_flags}|");
        sleep 1;
        $res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );
        cmp_ok( $res->return_code, '==', 0, "Got delayed SSH protocol version control string");
        like( $res->output, '/^SSH OK - nagiosplug.ssh.0.2 \(protocol 2.0\)/', "Output OK");
        close NC;
 }
-SKIP {
-        skip "SSH_HOST must be defined", 6 unless $ssh_host;
-        $res = NPTest->testCmd(
-            "./check_ssh -H $ssh_host"
-            );
-        cmp_ok($result->return_code, '==', 0, "Exit with return code 0 (OK)");
-        like($result->output, '/^SSH OK - /', "Status text if command returned none (OK)");
-        $res = NPTest->testCmd(
-            "./check_ssh -H $host_nonresponsive -t 2"
-            );
-        cmp_ok($result->return_code, '==', 2, "Exit with return code 2 (CRITICAL)");
-        like($result->output, '/^CRITICAL - Socket timeout after 2 seconds/', "Status text if command returned none (OK)");
-        $res = NPTest->testCmd(
-            "./check_ssh -H $hostname_invalid -t 2"
-            );
-        cmp_ok($result->return_code, '==', 3, "Exit with return code 3 (UNKNOWN)");
-        like($result->output, '/^check_ssh: Invalid hostname/', "Status text if command returned none (OK)");
-}
author	Anton Lofgren <alofgren@op5.com>	2014-05-15 12:48:26 (GMT)
committer	Lorenz Kästle <lorenz.kaestle@netways.de>	2022-01-14 14:34:12 (GMT)
commit	ecf3f468905dc2b8e8470eb5288ce8b9f845c26f (patch)
tree	292016afc6114a6aed2a6334059b07f8961a4ebb /plugins/t
parent	4433c7554337b6bc54a3dc548b75746f9dbc2d86 (diff)
download	monitoring-plugins-ecf3f468905dc2b8e8470eb5288ce8b9f845c26f.tar.gz

diff --git a/plugins/t/check_ssh.t b/plugins/t/check_ssh.t index 3e1824d..7df6265 100644 --- a/plugins/t/check_ssh.t +++ b/plugins/t/check_ssh.t
@@ -8,10 +8,13 @@ use strict;
8	use Test::More;	8	use Test::More;
9	use NPTest;	9	use NPTest;
10		10
		11	my $res;
		12
11	# Required parameters	13	# Required parameters
12	my $ssh_host = getTestParameter("NP_SSH_HOST",	14	my $ssh_host = getTestParameter("NP_SSH_HOST",
13	"A host providing SSH service",	15	"A host providing SSH service",
14	"localhost");	16	"localhost");
		17
15	my $host_nonresponsive = getTestParameter("NP_HOST_NONRESPONSIVE",	18	my $host_nonresponsive = getTestParameter("NP_HOST_NONRESPONSIVE",
16	"The hostname of system not responsive to network requests",	19	"The hostname of system not responsive to network requests",
17	"10.0.0.1" );	20	"10.0.0.1" );
@@ -20,13 +23,37 @@ my $hostname_invalid = getTestParameter("NP_HOSTNAME_INVALID",
20	"An invalid (not known to DNS) hostname",	23	"An invalid (not known to DNS) hostname",
21	"nosuchhost" );	24	"nosuchhost" );
22		25
23	my $res;
24		26
		27	plan tests => 14 + 6;
25		28
26	plan tests => 18;
27	SKIP: {	29	SKIP: {
		30	skip "SSH_HOST must be defined", 6 unless $ssh_host;
		31	my $result = NPTest->testCmd(
		32	"./check_ssh -H $ssh_host"
		33	);
		34	cmp_ok($result->return_code, '==', 0, "Exit with return code 0 (OK)");
		35	like($result->output, '/^SSH OK - /', "Status text if command returned none (OK)");
28		36
29	skip "No netcat available", 12 unless (system("which nc > /dev/null") == 0);	37
		38	$result = NPTest->testCmd(
		39	"./check_ssh -H $host_nonresponsive -t 2"
		40	);
		41	cmp_ok($result->return_code, '==', 2, "Exit with return code 0 (OK)");
		42	like($result->output, '/^CRITICAL - Socket timeout after 2 seconds/', "Status text if command returned none (OK)");
		43
		44
		45
		46	$result = NPTest->testCmd(
		47	"./check_ssh -H $hostname_invalid -t 2"
		48	);
		49	cmp_ok($result->return_code, '==', 3, "Exit with return code 0 (OK)");
		50	like($result->output, '/^check_ssh: Invalid hostname/', "Status text if command returned none (OK)");
		51
		52
		53	}
		54	SKIP: {
		55
		56	skip "No netcat available", 14 unless (system("which nc > /dev/null") == 0);
30		57
31	my $nc_flags = "-l 5003 -i 1";	58	my $nc_flags = "-l 5003 -i 1";
32	#A valid protocol version control string has the form	59	#A valid protocol version control string has the form
@@ -41,6 +68,13 @@ SKIP: {
41	like( $res->output, '/^SSH OK - nagiosplug.ssh.0.1 \(protocol 2.0\)/', "Output OK");	68	like( $res->output, '/^SSH OK - nagiosplug.ssh.0.1 \(protocol 2.0\)/', "Output OK");
42	close NC;	69	close NC;
43		70
		71	open(NC, "echo 'SSH-2.0-3.2.9.1' \| nc ${nc_flags}\|");
		72	sleep 1;
		73	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );
		74	cmp_ok( $res->return_code, "==", 0, "Got SSH protocol version control string with non-alpha softwareversion string");
		75	like( $res->output, '/^SSH OK - 3.2.9.1 \(protocol 2.0\)/', "Output OK for non-alpha softwareversion string");
		76	close NC;
		77
44	open(NC, "echo 'SSH-2.0-nagiosplug.ssh.0.1 this is a comment' \| nc ${nc_flags} \|");	78	open(NC, "echo 'SSH-2.0-nagiosplug.ssh.0.1 this is a comment' \| nc ${nc_flags} \|");
45	sleep 1;	79	sleep 1;
46	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003 -r nagiosplug.ssh.0.1" );	80	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003 -r nagiosplug.ssh.0.1" );
@@ -48,7 +82,6 @@ SKIP: {
48	like( $res->output, '/^SSH OK - nagiosplug.ssh.0.1 \(protocol 2.0\)/', "Output OK");	82	like( $res->output, '/^SSH OK - nagiosplug.ssh.0.1 \(protocol 2.0\)/', "Output OK");
49	close NC;	83	close NC;
50		84
51
52	open(NC, "echo 'SSH-' \| nc ${nc_flags}\|");	85	open(NC, "echo 'SSH-' \| nc ${nc_flags}\|");
53	sleep 1;	86	sleep 1;
54	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );	87	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );
@@ -72,36 +105,17 @@ SKIP: {
72		105
73		106
74	#RFC 4253 permits servers to send any number of data lines prior to sending the protocol version control string	107	#RFC 4253 permits servers to send any number of data lines prior to sending the protocol version control string
75	open(NC, "echo 'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\n	108	open(NC, "{ echo 'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA'; sleep 1;
76	BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB\n	109	echo 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB'; sleep 1;
77	CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC\n	110	echo 'CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC'; sleep 1;
78	DDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD\n	111	echo 'DDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD'; sleep 1;
79	Some\nPrepended\nData\nLines\nSSH-2.0-nagiosplug.ssh.0.2' \| nc ${nc_flags}\|");	112	printf 'EEEEEEEEEEEEEEEEEE'; sleep 1;
		113	printf 'EEEEEEEEEEEEEEEEEE\n'; sleep 1;
		114	echo 'Some\nPrepended\nData\nLines\n'; sleep 1;
		115	echo 'SSH-2.0-nagiosplug.ssh.0.2';} \| nc ${nc_flags}\|");
80	sleep 1;	116	sleep 1;
81	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );	117	$res = NPTest->testCmd( "./check_ssh -H localhost -p 5003" );
82	cmp_ok( $res->return_code, '==', 0, "Got delayed SSH protocol version control string");	118	cmp_ok( $res->return_code, '==', 0, "Got delayed SSH protocol version control string");
83	like( $res->output, '/^SSH OK - nagiosplug.ssh.0.2 \(protocol 2.0\)/', "Output OK");	119	like( $res->output, '/^SSH OK - nagiosplug.ssh.0.2 \(protocol 2.0\)/', "Output OK");
84	close NC;	120	close NC;
85	}	121	}
86
87	SKIP {
88	skip "SSH_HOST must be defined", 6 unless $ssh_host;
89	$res = NPTest->testCmd(
90	"./check_ssh -H $ssh_host"
91	);
92	cmp_ok($result->return_code, '==', 0, "Exit with return code 0 (OK)");
93	like($result->output, '/^SSH OK - /', "Status text if command returned none (OK)");
94
95	$res = NPTest->testCmd(
96	"./check_ssh -H $host_nonresponsive -t 2"
97	);
98	cmp_ok($result->return_code, '==', 2, "Exit with return code 2 (CRITICAL)");
99	like($result->output, '/^CRITICAL - Socket timeout after 2 seconds/', "Status text if command returned none (OK)");
100
101	$res = NPTest->testCmd(
102	"./check_ssh -H $hostname_invalid -t 2"
103	);
104	cmp_ok($result->return_code, '==', 3, "Exit with return code 3 (UNKNOWN)");
105	like($result->output, '/^check_ssh: Invalid hostname/', "Status text if command returned none (OK)");
106
107	}