Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
P
packer
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Kristopher Ruzic
packer
Commits
7ca59841
Commit
7ca59841
authored
Jul 02, 2015
by
Chris Bednarski
Browse files
Options
Browse Files
Download
Plain Diff
Merge pull request #2379 from mitchellh/b-ssh-handhake-timeout
Wrap SSH handshake in a timeout
parents
67a17037
0ca03f09
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
115 additions
and
11 deletions
+115
-11
communicator/ssh/communicator.go
communicator/ssh/communicator.go
+50
-4
communicator/ssh/communicator_test.go
communicator/ssh/communicator_test.go
+65
-7
No files found.
communicator/ssh/communicator.go
View file @
7ca59841
...
@@ -5,9 +5,6 @@ import (
...
@@ -5,9 +5,6 @@ import (
"bytes"
"bytes"
"errors"
"errors"
"fmt"
"fmt"
"github.com/mitchellh/packer/packer"
"golang.org/x/crypto/ssh"
"golang.org/x/crypto/ssh/agent"
"io"
"io"
"io/ioutil"
"io/ioutil"
"log"
"log"
...
@@ -16,8 +13,18 @@ import (
...
@@ -16,8 +13,18 @@ import (
"path/filepath"
"path/filepath"
"strconv"
"strconv"
"sync"
"sync"
"time"
"github.com/mitchellh/packer/packer"
"golang.org/x/crypto/ssh"
"golang.org/x/crypto/ssh/agent"
)
)
// ErrHandshakeTimeout is returned from New() whenever we're unable to establish
// an ssh connection within a certain timeframe. By default the handshake time-
// out period is 1 minute. You can change it with Config.HandshakeTimeout.
var
ErrHandshakeTimeout
=
fmt
.
Errorf
(
"Timeout during SSH handshake"
)
type
comm
struct
{
type
comm
struct
{
client
*
ssh
.
Client
client
*
ssh
.
Client
config
*
Config
config
*
Config
...
@@ -40,6 +47,10 @@ type Config struct {
...
@@ -40,6 +47,10 @@ type Config struct {
// DisableAgent, if true, will not forward the SSH agent.
// DisableAgent, if true, will not forward the SSH agent.
DisableAgent
bool
DisableAgent
bool
// HandshakeTimeout limits the amount of time we'll wait to handshake before
// saying the connection failed.
HandshakeTimeout
time
.
Duration
}
}
// Creates a new packer.Communicator implementation over SSH. This takes
// Creates a new packer.Communicator implementation over SSH. This takes
...
@@ -273,9 +284,44 @@ func (c *comm) reconnect() (err error) {
...
@@ -273,9 +284,44 @@ func (c *comm) reconnect() (err error) {
}
}
log
.
Printf
(
"handshaking with SSH"
)
log
.
Printf
(
"handshaking with SSH"
)
sshConn
,
sshChan
,
req
,
err
:=
ssh
.
NewClientConn
(
c
.
conn
,
c
.
address
,
c
.
config
.
SSHConfig
)
// Default timeout to 1 minute if it wasn't specified (zero value). For
// when you need to handshake from low orbit.
var
duration
time
.
Duration
if
c
.
config
.
HandshakeTimeout
==
0
{
duration
=
1
*
time
.
Minute
}
else
{
duration
=
c
.
config
.
HandshakeTimeout
}
connectionEstablished
:=
make
(
chan
struct
{},
1
)
var
sshConn
ssh
.
Conn
var
sshChan
<-
chan
ssh
.
NewChannel
var
req
<-
chan
*
ssh
.
Request
go
func
()
{
sshConn
,
sshChan
,
req
,
err
=
ssh
.
NewClientConn
(
c
.
conn
,
c
.
address
,
c
.
config
.
SSHConfig
)
close
(
connectionEstablished
)
}()
select
{
case
<-
connectionEstablished
:
// We don't need to do anything here. We just want select to block until
// we connect or timeout.
case
<-
time
.
After
(
duration
)
:
if
c
.
conn
!=
nil
{
c
.
conn
.
Close
()
}
if
sshConn
!=
nil
{
sshConn
.
Close
()
}
return
ErrHandshakeTimeout
}
if
err
!=
nil
{
if
err
!=
nil
{
log
.
Printf
(
"handshake error: %s"
,
err
)
log
.
Printf
(
"handshake error: %s"
,
err
)
return
}
}
log
.
Printf
(
"handshake complete!"
)
log
.
Printf
(
"handshake complete!"
)
if
sshConn
!=
nil
{
if
sshConn
!=
nil
{
...
...
communicator/ssh/communicator_test.go
View file @
7ca59841
...
@@ -5,10 +5,12 @@ package ssh
...
@@ -5,10 +5,12 @@ package ssh
import
(
import
(
"bytes"
"bytes"
"fmt"
"fmt"
"github.com/mitchellh/packer/packer"
"golang.org/x/crypto/ssh"
"net"
"net"
"testing"
"testing"
"time"
"github.com/mitchellh/packer/packer"
"golang.org/x/crypto/ssh"
)
)
// private key for mock server
// private key for mock server
...
@@ -94,6 +96,28 @@ func newMockLineServer(t *testing.T) string {
...
@@ -94,6 +96,28 @@ func newMockLineServer(t *testing.T) string {
return
l
.
Addr
()
.
String
()
return
l
.
Addr
()
.
String
()
}
}
func
newMockBrokenServer
(
t
*
testing
.
T
)
string
{
l
,
err
:=
net
.
Listen
(
"tcp"
,
"127.0.0.1:0"
)
if
err
!=
nil
{
t
.
Fatalf
(
"Unable tp listen for connection: %s"
,
err
)
}
go
func
()
{
defer
l
.
Close
()
c
,
err
:=
l
.
Accept
()
if
err
!=
nil
{
t
.
Errorf
(
"Unable to accept incoming connection: %s"
,
err
)
}
defer
c
.
Close
()
// This should block for a period of time longer than our timeout in
// the test case. That way we invoke a failure scenario.
t
.
Log
(
"Block on handshaking for SSH connection"
)
time
.
Sleep
(
5
*
time
.
Second
)
}()
return
l
.
Addr
()
.
String
()
}
func
TestCommIsCommunicator
(
t
*
testing
.
T
)
{
func
TestCommIsCommunicator
(
t
*
testing
.
T
)
{
var
raw
interface
{}
var
raw
interface
{}
raw
=
&
comm
{}
raw
=
&
comm
{}
...
@@ -157,10 +181,44 @@ func TestStart(t *testing.T) {
...
@@ -157,10 +181,44 @@ func TestStart(t *testing.T) {
t
.
Fatalf
(
"error connecting to SSH: %s"
,
err
)
t
.
Fatalf
(
"error connecting to SSH: %s"
,
err
)
}
}
var
cmd
packer
.
RemoteCmd
cmd
:=
&
packer
.
RemoteCmd
{
stdout
:=
new
(
bytes
.
Buffer
)
Command
:
"echo foo"
,
cmd
.
Command
=
"echo foo"
Stdout
:
new
(
bytes
.
Buffer
),
cmd
.
Stdout
=
stdout
}
client
.
Start
(
cmd
)
}
func
TestHandshakeTimeout
(
t
*
testing
.
T
)
{
clientConfig
:=
&
ssh
.
ClientConfig
{
User
:
"user"
,
Auth
:
[]
ssh
.
AuthMethod
{
ssh
.
Password
(
"pass"
),
},
}
client
.
Start
(
&
cmd
)
address
:=
newMockBrokenServer
(
t
)
conn
:=
func
()
(
net
.
Conn
,
error
)
{
conn
,
err
:=
net
.
Dial
(
"tcp"
,
address
)
if
err
!=
nil
{
t
.
Fatalf
(
"unable to dial to remote side: %s"
,
err
)
}
return
conn
,
err
}
config
:=
&
Config
{
Connection
:
conn
,
SSHConfig
:
clientConfig
,
HandshakeTimeout
:
50
*
time
.
Millisecond
,
}
_
,
err
:=
New
(
address
,
config
)
if
err
!=
ErrHandshakeTimeout
{
// Note: there's another error that can come back from this call:
// ssh: handshake failed: EOF
// This should appear in cases where the handshake fails because of
// malformed (or no) data sent back by the server, but should not happen
// in a timeout scenario.
t
.
Fatalf
(
"Expected handshake timeout, got: %s"
,
err
)
}
}
}
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment