Merge pull request #3 from greenbone/abomination_PR-263

rgrewe · web-flow · commit bb4e79146538 · 2022-02-22T16:29:51.000+01:00
Add patch for PR 633. (PR-263)
diff --git a/debian/changelog b/debian/changelog
@@ -1,3 +1,11 @@
+python-gvm (21.11.0-gos2110~2) abomination; urgency=medium
+
+  * Add patch for PR 633.
+    Update the series file.
+    Closes: PR-263
+
+ -- Lukas Hannigbrinck <lukas.hannigbrinck@greenbone.net>  Tue, 22 Feb 2022 15:49:29 +0100
+
 python-gvm (21.11.0-gos2110~1) abomination; urgency=medium
 
   * Prepare everything for Debian Bullseye.
diff --git a/debian/patches/pr633.patch b/debian/patches/pr633.patch
@@ -0,0 +1,127 @@
+From 4d57b7b3a3977cac020728027590daf42326ed09 Mon Sep 17 00:00:00 2001
+From: Johannes Helmold <johannes.helmold@greenbone.net>
+Date: Wed, 22 Dec 2021 16:22:09 +0100
+Subject: [PATCH 1/3] Don't fail if the known_hosts file does not exists.
+
+Now the SSH authentication process does not fail / abort
+if the known_hosts file does not exists. It still aborts
+in other cases, e.g. when the permission for that file is
+denied.
+---
+ gvm/connections.py | 10 ++++++----
+ 1 file changed, 6 insertions(+), 4 deletions(-)
+
+diff --git a/gvm/connections.py b/gvm/connections.py
+index 149f6047..ae964ecf 100644
+--- a/gvm/connections.py
++++ b/gvm/connections.py
+@@ -25,6 +25,7 @@
+ import ssl
+ import sys
+ import time
++import errno
+
+
+ from pathlib import Path
+@@ -328,10 +329,11 @@ def _ssh_authentication(self) -> None:
+             # load the keys into paramiko and check if remote is in the list
+             self._socket.load_host_keys(filename=self.known_hosts_file)
+         except OSError as e:
+-            raise GvmError(
+-                'Something went wrong with reading '
+-                f'the known_hosts file: {e}'
+-            ) from None
++            if e.errno != errno.ENOENT:
++                raise GvmError(
++                    'Something went wrong with reading '
++                    f'the known_hosts file: {e}'
++                ) from None
+         hostkeys = self._socket.get_host_keys()
+         if not hostkeys.lookup(self.hostname):
+             # Key not found, so connect to remote and fetch the key
+
+From cd54af9c87724916477cf61e066d3ac9375ea06f Mon Sep 17 00:00:00 2001
+From: Johannes Helmold <johannes.helmold@greenbone.net>
+Date: Thu, 23 Dec 2021 14:43:48 +0100
+Subject: [PATCH 2/3] Added a function for unit tests.
+
+Added a function to test the enhancement of the known_hosts file
+issue via unit tests.
+---
+ tests/connections/test_ssh_connection.py | 17 +++++++++++++++++
+ 1 file changed, 17 insertions(+)
+
+diff --git a/tests/connections/test_ssh_connection.py b/tests/connections/test_ssh_connection.py
+index 7159cbca..534e1740 100644
+--- a/tests/connections/test_ssh_connection.py
++++ b/tests/connections/test_ssh_connection.py
+@@ -17,6 +17,7 @@
+ # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+ from io import StringIO
++import os
+ import unittest
+ from unittest.mock import patch, Mock
+ from pathlib import Path
+@@ -103,6 +104,22 @@ def test_connect_unknown_host(self):
+         ):
+             ssh_connection.connect()
+
++    def test_connect_no_known_hosts_file(self):
++        if os.path.exists(self.known_hosts_file):
++            os.remove(self.known_hosts_file)
++
++        ssh_connection = SSHConnection(
++            hostname='0.0.0.1', known_hosts_file=self.known_hosts_file
++        )
++        with self.assertRaises(
++            GvmError,
++            msg=(
++                "Could'nt establish a connection to fetch the remote "
++                "server key: [Errno 65] No route to host"
++            ),
++        ):
++            ssh_connection.connect()
++
+     @patch('builtins.input')
+     def test_connect_adding_and_save_hostkey(self, input_mock):
+
+
+From b5709af942c0c3acac8ef2a66ab47390462f7fcc Mon Sep 17 00:00:00 2001
+From: Johannes Helmold <johannes.helmold@greenbone.net>
+Date: Thu, 23 Dec 2021 15:22:15 +0100
+Subject: [PATCH 3/3] Added an additional function for unit tests.
+
+Added an additional function to test the enhancement of the
+known_hosts file issue via unit tests.
+---
+ tests/connections/test_ssh_connection.py | 16 ++++++++++++++++
+ 1 file changed, 16 insertions(+)
+
+diff --git a/tests/connections/test_ssh_connection.py b/tests/connections/test_ssh_connection.py
+index 534e1740..bf2db5da 100644
+--- a/tests/connections/test_ssh_connection.py
++++ b/tests/connections/test_ssh_connection.py
+@@ -104,6 +104,22 @@ def test_connect_unknown_host(self):
+         ):
+             ssh_connection.connect()
+
++    def test_connect_denied_known_hosts_file(self):
++        if os.path.exists(self.known_hosts_file):
++            os.chmod(self.known_hosts_file, 0000)
++
++        ssh_connection = SSHConnection(
++            hostname='0.0.0.1', known_hosts_file=self.known_hosts_file
++        )
++        with self.assertRaises(
++            GvmError,
++            msg=(
++                "Could'nt establish a connection to fetch the remote "
++                "server key: [Errno 65] No route to host"
++            ),
++        ):
++            ssh_connection.connect()
++
+     def test_connect_no_known_hosts_file(self):
+         if os.path.exists(self.known_hosts_file):
+             os.remove(self.known_hosts_file)
diff --git a/debian/patches/series b/debian/patches/series
@@ -1 +1,2 @@
 add_setup_py.patch
+pr633.patch
