498 lines
12 KiB
Go
498 lines
12 KiB
Go
package ftp
|
|
|
|
import (
|
|
"bytes"
|
|
"crypto/tls"
|
|
"io"
|
|
"net"
|
|
"net/textproto"
|
|
"reflect"
|
|
"strconv"
|
|
"strings"
|
|
"sync"
|
|
"testing"
|
|
"time"
|
|
)
|
|
|
|
const (
|
|
certPem = `-----BEGIN CERTIFICATE-----
|
|
MIIBhTCCASugAwIBAgIQIRi6zePL6mKjOipn+dNuaTAKBggqhkjOPQQDAjASMRAw
|
|
DgYDVQQKEwdBY21lIENvMB4XDTE3MTAyMDE5NDMwNloXDTE4MTAyMDE5NDMwNlow
|
|
EjEQMA4GA1UEChMHQWNtZSBDbzBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABD0d
|
|
7VNhbWvZLWPuj/RtHFjvtJBEwOkhbN/BnnE8rnZR8+sbwnc/KhCk3FhnpHZnQz7B
|
|
5aETbbIgmuvewdjvSBSjYzBhMA4GA1UdDwEB/wQEAwICpDATBgNVHSUEDDAKBggr
|
|
BgEFBQcDATAPBgNVHRMBAf8EBTADAQH/MCkGA1UdEQQiMCCCDmxvY2FsaG9zdDo1
|
|
NDUzgg4xMjcuMC4wLjE6NTQ1MzAKBggqhkjOPQQDAgNIADBFAiEA2zpJEPQyz6/l
|
|
Wf86aX6PepsntZv2GYlA5UpabfT2EZICICpJ5h/iI+i341gBmLiAFQOyTDT+/wQc
|
|
6MF9+Yw1Yy0t
|
|
-----END CERTIFICATE-----`
|
|
keyPem = `-----BEGIN EC PRIVATE KEY-----
|
|
MHcCAQEEIIrYSSNQFaA2Hwf1duRSxKtLYX5CB04fSeQ6tF1aY/PuoAoGCCqGSM49
|
|
AwEHoUQDQgAEPR3tU2Fta9ktY+6P9G0cWO+0kETA6SFs38GecTyudlHz6xvCdz8q
|
|
EKTcWGekdmdDPsHloRNtsiCa697B2O9IFA==
|
|
-----END EC PRIVATE KEY-----`
|
|
)
|
|
|
|
type ftpMock struct {
|
|
t *testing.T
|
|
address string
|
|
modtime string // no-time, std-time, vsftpd
|
|
listener net.Listener
|
|
proto *textproto.Conn
|
|
commands []string // list of received commands
|
|
lastFull string // full last command
|
|
rest int
|
|
fileCont *bytes.Buffer
|
|
dataConn *mockDataConn
|
|
tlsConfig *tls.Config
|
|
sync.WaitGroup
|
|
}
|
|
|
|
// newFtpMock returns a mock implementation of a FTP server
|
|
// For simplication, a mock instance only accepts a signle connection and terminates afer
|
|
func newFtpMock(t *testing.T, address string) (*ftpMock, error) {
|
|
return newFtpMockExt(t, address, false, "no-time")
|
|
}
|
|
|
|
func newFtpMockExt(t *testing.T, address string, ssl bool, modtime string) (*ftpMock, error) {
|
|
mock := &ftpMock{
|
|
t: t,
|
|
address: address,
|
|
modtime: modtime,
|
|
}
|
|
|
|
if ssl {
|
|
cert, err := tls.X509KeyPair([]byte(certPem), []byte(keyPem))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
mock.tlsConfig = &tls.Config{Certificates: []tls.Certificate{cert}}
|
|
l, err := tls.Listen("tcp", address+":0", mock.tlsConfig)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
mock.listener = l
|
|
} else {
|
|
l, err := net.Listen("tcp", address+":0")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
mock.listener = l
|
|
|
|
}
|
|
|
|
go mock.listen()
|
|
|
|
return mock, nil
|
|
}
|
|
|
|
func (mock *ftpMock) listen() {
|
|
// Listen for an incoming connection.
|
|
conn, err := mock.listener.Accept()
|
|
if err != nil {
|
|
mock.t.Errorf("can not accept: %s", err)
|
|
return
|
|
}
|
|
|
|
// Do not accept incoming connections anymore
|
|
mock.listener.Close()
|
|
|
|
mock.Add(1)
|
|
defer mock.Done()
|
|
defer conn.Close()
|
|
|
|
mock.proto = textproto.NewConn(conn)
|
|
mock.printfLine("220 FTP Server ready.")
|
|
|
|
for {
|
|
fullCommand, _ := mock.proto.ReadLine()
|
|
mock.lastFull = fullCommand
|
|
|
|
cmdParts := strings.Split(fullCommand, " ")
|
|
|
|
// Append to list of received commands
|
|
mock.commands = append(mock.commands, cmdParts[0])
|
|
|
|
// At least one command must have a multiline response
|
|
switch cmdParts[0] {
|
|
case "FEAT":
|
|
features := "211-Features:\r\n FEAT\r\n PASV\r\n EPSV\r\n UTF8\r\n SIZE\r\n"
|
|
switch mock.modtime {
|
|
case "std-time":
|
|
features += " MDTM\r\n MFMT\r\n"
|
|
case "vsftpd":
|
|
features += " MDTM\r\n"
|
|
}
|
|
features += "211 End"
|
|
mock.printfLine(features)
|
|
case "USER":
|
|
if cmdParts[1] == "anonymous" {
|
|
mock.printfLine("331 Please send your password")
|
|
} else {
|
|
mock.printfLine("530 This FTP server is anonymous only")
|
|
}
|
|
case "PASS":
|
|
mock.printfLine("230-Hey,\r\nWelcome to my FTP\r\n230 Access granted")
|
|
case "TYPE":
|
|
mock.printfLine("200 Type set ok")
|
|
case "CWD":
|
|
if cmdParts[1] == "missing-dir" {
|
|
mock.printfLine("550 %s: No such file or directory", cmdParts[1])
|
|
} else {
|
|
mock.printfLine("250 Directory successfully changed.")
|
|
}
|
|
case "DELE":
|
|
mock.printfLine("250 File successfully removed.")
|
|
case "MKD":
|
|
mock.printfLine("257 Directory successfully created.")
|
|
case "RMD":
|
|
if cmdParts[1] == "missing-dir" {
|
|
mock.printfLine("550 No such file or directory")
|
|
} else {
|
|
mock.printfLine("250 Directory successfully removed.")
|
|
}
|
|
case "PWD":
|
|
mock.printfLine("257 \"/incoming\"")
|
|
case "CDUP":
|
|
mock.printfLine("250 CDUP command successful")
|
|
case "SIZE":
|
|
if cmdParts[1] == "magic-file" {
|
|
mock.printfLine("213 42")
|
|
} else {
|
|
mock.printfLine("550 Could not get file size.")
|
|
}
|
|
case "PASV":
|
|
p, err := mock.listenDataConn()
|
|
if err != nil {
|
|
mock.printfLine("451 %s.", err)
|
|
break
|
|
}
|
|
|
|
p1 := int(p / 256)
|
|
p2 := p % 256
|
|
|
|
mock.printfLine("227 Entering Passive Mode (127,0,0,1,%d,%d).", p1, p2)
|
|
case "EPSV":
|
|
p, err := mock.listenDataConn()
|
|
if err != nil {
|
|
mock.printfLine("451 %s.", err)
|
|
break
|
|
}
|
|
mock.printfLine("229 Entering Extended Passive Mode (|||%d|)", p)
|
|
case "STOR":
|
|
if mock.dataConn == nil {
|
|
mock.printfLine("425 Unable to build data connection: Connection refused")
|
|
break
|
|
}
|
|
mock.printfLine("150 please send")
|
|
mock.recvDataConn(false)
|
|
case "APPE":
|
|
if mock.dataConn == nil {
|
|
mock.printfLine("425 Unable to build data connection: Connection refused")
|
|
break
|
|
}
|
|
mock.printfLine("150 please send")
|
|
mock.recvDataConn(true)
|
|
case "LIST":
|
|
if mock.dataConn == nil {
|
|
mock.printfLine("425 Unable to build data connection: Connection refused")
|
|
break
|
|
}
|
|
|
|
mock.dataConn.Wait()
|
|
mock.printfLine("150 Opening ASCII mode data connection for file list")
|
|
mock.dataConn.write([]byte("-rw-r--r-- 1 ftp wheel 0 Jan 29 10:29 lo"))
|
|
mock.printfLine("226 Transfer complete")
|
|
mock.closeDataConn()
|
|
case "NLST":
|
|
if mock.dataConn == nil {
|
|
mock.printfLine("425 Unable to build data connection: Connection refused")
|
|
break
|
|
}
|
|
|
|
mock.dataConn.Wait()
|
|
mock.printfLine("150 Opening ASCII mode data connection for file list")
|
|
mock.dataConn.write([]byte("/incoming"))
|
|
mock.printfLine("226 Transfer complete")
|
|
mock.closeDataConn()
|
|
case "RETR":
|
|
if mock.dataConn == nil {
|
|
mock.printfLine("425 Unable to build data connection: Connection refused")
|
|
break
|
|
}
|
|
|
|
mock.dataConn.Wait()
|
|
mock.printfLine("150 Opening ASCII mode data connection for file list")
|
|
mock.dataConn.write(mock.fileCont.Bytes()[mock.rest:])
|
|
mock.rest = 0
|
|
mock.printfLine("226 Transfer complete")
|
|
mock.closeDataConn()
|
|
case "RNFR":
|
|
mock.printfLine("350 File or directory exists, ready for destination name")
|
|
case "RNTO":
|
|
mock.printfLine("250 Rename successful")
|
|
case "REST":
|
|
if len(cmdParts) != 2 {
|
|
mock.printfLine("500 wrong number of arguments")
|
|
break
|
|
}
|
|
rest, err := strconv.Atoi(cmdParts[1])
|
|
if err != nil {
|
|
mock.printfLine("500 REST: %s", err)
|
|
break
|
|
}
|
|
mock.rest = rest
|
|
mock.printfLine("350 Restarting at %s. Send STORE or RETRIEVE to initiate transfer", cmdParts[1])
|
|
case "MDTM":
|
|
var answer string
|
|
switch {
|
|
case mock.modtime == "no-time":
|
|
answer = "500 Unknown command MDTM"
|
|
case len(cmdParts) == 3 && mock.modtime == "vsftpd":
|
|
answer = "213 UTIME OK"
|
|
_, err := time.ParseInLocation(timeFormat, cmdParts[1], time.UTC)
|
|
if err != nil {
|
|
answer = "501 Can't get a time stamp"
|
|
}
|
|
case len(cmdParts) == 2:
|
|
answer = "213 20201213202400"
|
|
default:
|
|
answer = "500 wrong number of arguments"
|
|
}
|
|
mock.printfLine(answer)
|
|
case "MFMT":
|
|
var answer string
|
|
switch {
|
|
case mock.modtime == "std-time" && len(cmdParts) == 3:
|
|
answer = "213 UTIME OK"
|
|
_, err := time.ParseInLocation(timeFormat, cmdParts[1], time.UTC)
|
|
if err != nil {
|
|
answer = "501 Can't get a time stamp"
|
|
}
|
|
default:
|
|
answer = "500 Unknown command MFMT"
|
|
}
|
|
mock.printfLine(answer)
|
|
case "NOOP":
|
|
mock.printfLine("200 NOOP ok.")
|
|
case "OPTS":
|
|
if len(cmdParts) != 3 {
|
|
mock.printfLine("500 wrong number of arguments")
|
|
break
|
|
}
|
|
if (strings.Join(cmdParts[1:], " ")) == "UTF8 ON" {
|
|
mock.printfLine("200 OK, UTF-8 enabled")
|
|
}
|
|
case "REIN":
|
|
mock.printfLine("220 Logged out")
|
|
case "QUIT":
|
|
mock.printfLine("221 Goodbye.")
|
|
return
|
|
case "PBSZ":
|
|
mock.printfLine("200 PBSZ ok.")
|
|
case "PROT":
|
|
mock.printfLine("200 PROT ok.")
|
|
default:
|
|
mock.printfLine("500 Unknown command %s.", cmdParts[0])
|
|
}
|
|
}
|
|
}
|
|
|
|
func (mock *ftpMock) printfLine(format string, args ...interface{}) {
|
|
if err := mock.proto.Writer.PrintfLine(format, args...); err != nil {
|
|
mock.t.Fatal(err)
|
|
}
|
|
}
|
|
|
|
func (mock *ftpMock) closeDataConn() {
|
|
if mock.dataConn != nil {
|
|
if err := mock.dataConn.Close(); err != nil {
|
|
mock.t.Fatal(err)
|
|
}
|
|
mock.dataConn = nil
|
|
}
|
|
}
|
|
|
|
type mockDataConn struct {
|
|
t *testing.T
|
|
listener net.Listener
|
|
conn net.Conn
|
|
// WaitGroup is done when conn is accepted and stored
|
|
sync.WaitGroup
|
|
}
|
|
|
|
func (d *mockDataConn) Close() (err error) {
|
|
if d.listener != nil {
|
|
err = d.listener.Close()
|
|
}
|
|
if d.conn != nil {
|
|
err = d.conn.Close()
|
|
}
|
|
return
|
|
}
|
|
|
|
func (d *mockDataConn) write(b []byte) {
|
|
if d.conn == nil {
|
|
d.t.Fatal("data conn is not opened")
|
|
}
|
|
|
|
if _, err := d.conn.Write(b); err != nil {
|
|
d.t.Fatal(err)
|
|
}
|
|
}
|
|
|
|
func (mock *ftpMock) listenDataConn() (int64, error) {
|
|
mock.closeDataConn()
|
|
|
|
l, err := net.Listen("tcp", mock.address+":0")
|
|
addr := l.Addr().String()
|
|
|
|
_, port, err := net.SplitHostPort(addr)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
p, err := strconv.ParseInt(port, 10, 32)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
dataConn := &mockDataConn{
|
|
t: mock.t,
|
|
listener: l,
|
|
}
|
|
dataConn.Add(1)
|
|
|
|
go func() {
|
|
// Listen for an incoming connection.
|
|
conn, err := dataConn.listener.Accept()
|
|
if err != nil {
|
|
// mock.t.Fatalf("can not accept data conn: %s", err)
|
|
dataConn.Done()
|
|
return
|
|
}
|
|
|
|
if mock.tlsConfig != nil {
|
|
tlsConn := tls.Server(conn, mock.tlsConfig)
|
|
if err := tlsConn.Handshake(); err != nil {
|
|
dataConn.Done()
|
|
return
|
|
}
|
|
|
|
conn = tlsConn
|
|
}
|
|
|
|
dataConn.conn = conn
|
|
dataConn.Done()
|
|
}()
|
|
|
|
mock.dataConn = dataConn
|
|
return p, nil
|
|
}
|
|
|
|
func (mock *ftpMock) recvDataConn(append bool) {
|
|
mock.dataConn.Wait()
|
|
if !append {
|
|
mock.fileCont = new(bytes.Buffer)
|
|
}
|
|
|
|
if _, err := io.Copy(mock.fileCont, mock.dataConn.conn); err != nil {
|
|
mock.t.Fatal(err)
|
|
}
|
|
|
|
mock.printfLine("226 Transfer Complete")
|
|
mock.closeDataConn()
|
|
}
|
|
|
|
func (mock *ftpMock) Addr() string {
|
|
return mock.listener.Addr().String()
|
|
}
|
|
|
|
// Closes the listening socket
|
|
func (mock *ftpMock) Close() {
|
|
mock.listener.Close()
|
|
}
|
|
|
|
// Helper to return a client connected to a mock server
|
|
func openConn(t *testing.T, addr string, options ...DialOption) (*ftpMock, *ServerConn) {
|
|
return openConnExt(t, addr, "no-time", options...)
|
|
}
|
|
|
|
func openConnExt(t *testing.T, addr, modtime string, options ...DialOption) (*ftpMock, *ServerConn) {
|
|
mock, err := newFtpMockExt(t, addr, false, modtime)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
defer mock.Close()
|
|
|
|
c, err := Dial(mock.Addr(), options...)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
err = c.Login("anonymous", "anonymous")
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
return mock, c
|
|
}
|
|
|
|
// Helper to close a client connected to a mock server
|
|
func closeConn(t *testing.T, mock *ftpMock, c *ServerConn, commands []string) {
|
|
expected := []string{"USER", "PASS", "FEAT", "TYPE", "OPTS"}
|
|
expected = append(expected, commands...)
|
|
expected = append(expected, "QUIT")
|
|
|
|
if err := c.Quit(); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
// Wait for the connection to close
|
|
mock.Wait()
|
|
|
|
if !reflect.DeepEqual(mock.commands, expected) {
|
|
t.Fatal("unexpected sequence of commands:", mock.commands, "expected:", expected)
|
|
}
|
|
}
|
|
|
|
func TestConn4(t *testing.T) {
|
|
mock, c := openConn(t, "127.0.0.1")
|
|
closeConn(t, mock, c, nil)
|
|
}
|
|
|
|
func TestConn6(t *testing.T) {
|
|
mock, c := openConn(t, "[::1]")
|
|
closeConn(t, mock, c, nil)
|
|
}
|
|
|
|
func TestConnTLS(t *testing.T) {
|
|
mock, err := newFtpMockExt(t, "127.0.0.1", true, "std-time")
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
tlsConf := &tls.Config{
|
|
InsecureSkipVerify: true,
|
|
}
|
|
|
|
c, err := Dial(mock.Addr(), DialWithTLS(tlsConf), DialWithTimeout(1*time.Second))
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
err = c.Login("anonymous", "anonymous")
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
_, err = c.List(".")
|
|
if err != nil {
|
|
t.Error(err)
|
|
}
|
|
|
|
closeConn(t, mock, c, []string{"PBSZ", "PROT", "EPSV", "LIST"})
|
|
}
|