Fix incorrect path for OPENSSH_EXPECTED_COMMAND

cc941d8d · Douglas Barbosa Alexandre · 92eadbb6 · cc941d8d · cc941d8d · cc941d8d
Commit cc941d8d authored Jan 19, 2018 by Douglas Barbosa Alexandre
5 changed files
--- a/ee/lib/system_check/geo/authorized_keys_check.rb
+++ b/ee/lib/system_check/geo/authorized_keys_check.rb
@@ -22,7 +22,7 @@ module SystemCheck
        \s*                        # optional any amount of space character
        (?:\#.*)?$                 # optional start-comment symbol followed by optionally any character until end of line
      }x
-      OPENSSH_EXPECTED_COMMAND = '/opt/gitlab-shell/authorized_keys %u %k'.freeze
+      OPENSSH_EXPECTED_COMMAND = '/opt/gitlab/embedded/service/gitlab-shell/bin/gitlab-shell-authorized-keys-check %u %k'.freeze

      def multi_check
        unless openssh_config_exists?

--- a/spec/ee/fixtures/system_check/sshd_config
+++ b/spec/ee/fixtures/system_check/sshd_config
@@ -32,7 +32,7 @@ RSAAuthentication yes
 PubkeyAuthentication yes
 #AuthorizedKeysFile	%h/.ssh/authorized_keys
 #AuthorizedKeysCommand /opt/gitlab-shell/invalid_authorized_keys %u %k
-AuthorizedKeysCommand /opt/gitlab-shell/authorized_keys %u %k
+AuthorizedKeysCommand /opt/gitlab/embedded/service/gitlab-shell/bin/gitlab-shell-authorized-keys-check %u %k
 AuthorizedKeysCommandUser git

 # Don't read the user's ~/.rhosts and ~/.shosts files

--- a/spec/ee/fixtures/system_check/sshd_config_invalid_user
+++ b/spec/ee/fixtures/system_check/sshd_config_invalid_user
@@ -4,5 +4,5 @@
 RSAAuthentication yes
 PubkeyAuthentication yes
 #AuthorizedKeysFile	%h/.ssh/authorized_keys
-AuthorizedKeysCommand /opt/gitlab-shell/authorized_keys %u %k          # comment
+AuthorizedKeysCommand /opt/gitlab/embedded/service/gitlab-shell/bin/gitlab-shell-authorized-keys-check %u %k          # comment
 AuthorizedKeysCommandUser anotheruser  #comment with more stuff#
--- a/spec/ee/fixtures/system_check/sshd_config_no_user
+++ b/spec/ee/fixtures/system_check/sshd_config_no_user
@@ -5,5 +5,5 @@ RSAAuthentication yes
 PubkeyAuthentication yes
 #AuthorizedKeysFile	%h/.ssh/authorized_keys
 #AuthorizedKeysCommand /opt/gitlab-shell/invalid_authorized_keys %u %k
-AuthorizedKeysCommand /opt/gitlab-shell/authorized_keys %u %k
+AuthorizedKeysCommand /opt/gitlab/embedded/service/gitlab-shell/bin/gitlab-shell-authorized-keys-check %u %k
 #AuthorizedKeysCommandUser git
--- a/spec/ee/spec/lib/system_check/geo/authorized_keys_check_spec.rb
+++ b/spec/ee/spec/lib/system_check/geo/authorized_keys_check_spec.rb
@@ -7,7 +7,7 @@ describe SystemCheck::Geo::AuthorizedKeysCheck do

    before do
      allow(File).to receive(:file?).and_call_original # provides a default behavior when mocking
-      allow(File).to receive(:file?).with('/opt/gitlab-shell/authorized_keys') { true }
+      allow(File).to receive(:file?).with('/opt/gitlab/embedded/service/gitlab-shell/bin/gitlab-shell-authorized-keys-check') { true }
    end

    context 'OpenSSH config file' do
@@ -106,7 +106,7 @@ describe SystemCheck::Geo::AuthorizedKeysCheck do
    it 'returns correct (uncommented) command' do
      override_sshd_config('system_check/sshd_config')

-      expect(subject.extract_authorized_keys_command).to eq('/opt/gitlab-shell/authorized_keys %u %k')
+      expect(subject.extract_authorized_keys_command).to eq('/opt/gitlab/embedded/service/gitlab-shell/bin/gitlab-shell-authorized-keys-check %u %k')
    end

    it 'returns command without comments and without quotes' do