juju-core

Merge lp:~axwalk/juju-core/ssh-client-keys into lp:~go-bot/juju-core/trunk

ssh-client-keys
Merge into trunk

Proposed by Andrew Wilkins on 2014-01-10

Status:	Merged
Approved by:	Andrew Wilkins on 2014-01-15
Approved revision:	no longer in the source branch.
Merged at revision:	2204
Proposed branch:	lp:~axwalk/juju-core/ssh-client-keys
Merge into:	lp:~go-bot/juju-core/trunk
Diff against target:	577 lines (+418/-27) 8 files modified environs/config/authkeys.go (+16/-15) environs/config/authkeys_test.go (+88/-0) environs/config/config.go (+5/-1) juju/conn.go (+7/-4) juju/conn_test.go (+9/-6) utils/ssh/authorisedkeys.go (+1/-1) utils/ssh/clientkeys.go (+184/-0) utils/ssh/clientkeys_test.go (+108/-0)
To merge this branch:	bzr merge lp:~axwalk/juju-core/ssh-client-keys
Related bugs:	Link a bug report

Reviewer	Review Type	Date Requested	Status
Juju Engineering		2014-01-10	Pending
Review via email: mp+201153@code.launchpad.net

Commit message

Introduce $JUJU_HOME/ssh for client keys

We introduce a new ssh directory under $JUJU_HOME,
in which we create an passphrase-less RSA key pair
for use by an SSH client. The user may add additional
key pairs to the directory. All public keys in the
directory (*.pub with a corresponding file without
the suffix) are added to the authorized-keys
environment config.

The private keys in the directory will be used in a
later CL that introduces a go.crypto/ssh-based client,
which will be used when openssh is not available.

https://codereview.appspot.com/49470046/

Description of the change

Introduce $JUJU_HOME/ssh for client keys

The private keys in the directory will be used in a
later CL that introduces a go.crypto/ssh-based client,
which will be used when openssh is not available.

https://codereview.appspot.com/49470046/

Revision history for this message

Andrew Wilkins (axwalk) wrote on 2014-01-10:

Reviewers: mp+201153_code.launchpad.net,

Message:
Please take a look.

Description:
Introduce $JUJU_HOME/ssh for client keys

The private keys in the directory will be used in a
later CL that introduces a go.crypto/ssh-based client,
which will be used when openssh is not available.

https://code.launchpad.net/~axwalk/juju-core/ssh-client-keys/+merge/201153

(do not edit description out of merge proposal)

Please review this at https://codereview.appspot.com/49470046/

Affected files (+405, -27 lines):
   A [revision details]
   M environs/config/authkeys.go
   A environs/config/authkeys_test.go
   M environs/config/config.go
   M juju/conn.go
   M juju/conn_test.go
   M utils/ssh/authorisedkeys.go
   A utils/ssh/clientkeys.go
   A utils/ssh/clientkeys_test.go

Revision history for this message

Tim Penhey (thumper) wrote on 2014-01-14:

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go
File environs/config/authkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode27
environs/config/authkeys_test.go:27: func (s *AuthKeysSuite) SetUpTest(c
*gc.C) {
You need to make sure you call
s.LoggingSuite.SetUpTest(c)

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode44
environs/config/authkeys_test.go:44: func writeFile(c *gc.C, filename
string, contents string) {
I've seen this so often I feel like we should add it to the a base test
suite... not expecting you to do this, just commenting.

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode62
environs/config/authkeys_test.go:62: defer ssh.LoadClientKeys("")
Why do this?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go
File utils/ssh/clientkeys.go (right):

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode57
utils/ssh/clientkeys.go:57: // If the directory exists without keys,
While I understand the desire here, could we not just change the return
to only return if err != nil and len(clientKeys) > 0, otherwise create?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode82
utils/ssh/clientkeys.go:82: clientPrivateKey, err :=
ssh.ParsePrivateKey([]byte(private))
is this really a key? or a signer?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode104
utils/ssh/clientkeys.go:104: filename =
filename[:len(filename)-len(".pub")]
Can we put ".pub" as a file constant?
PUB_SUFFIX
or something?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode121
utils/ssh/clientkeys.go:121: signers = append(signers, key)
can this panic?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go
File utils/ssh/clientkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode29
utils/ssh/clientkeys_test.go:29: fakeHome :=
testing.MakeFakeHomeNoEnvironments(c)
MakeFakeHomeNoEnvironments just makes a home and overrides env vars,
with no .ssh dir.

MakeEmptyFakeHome also makes sure that ~/.juju exists.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode31
utils/ssh/clientkeys_test.go:31: s.AddCleanup(func(*gc.C) {
ssh.LoadClientKeys("") })
I do wonder if since LoadClientKeys("") is only used for tests, we
should instead have a method called ClearClientKeys()

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode65
utils/ssh/clientkeys_test.go:65: err =
ioutil.WriteFile(testing.HomePath(".juju", "ssh", "whatever.pub"),
[]byte(pub), 0600)
why not use config.JujuHomePath?

https://codereview.appspot.com/49470046/

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go
File environs/config/authkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode62
environs/config/authkeys_test.go:62: defer ssh.LoadClientKeys("")
Why do this?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go
File utils/ssh/clientkeys.go (right):

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode121
utils/ssh/clientkeys.go:121: signers = append(signers, key)
can this panic?

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go
File utils/ssh/clientkeys_test.go (right):

MakeEmptyFakeHome also makes sure that ~/.juju exists.

https://codereview.appspot.com/49470046/

Revision history for this message

Andrew Wilkins (axwalk) wrote on 2014-01-14:

Download full text (3.5 KiB)

Please take a look.

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go
File environs/config/authkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode27
environs/config/authkeys_test.go:27: func (s *AuthKeysSuite) SetUpTest(c
*gc.C) {
On 2014/01/14 02:01:37, thumper wrote:
> You need to make sure you call
> s.LoggingSuite.SetUpTest(c)

Done.

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode62
environs/config/authkeys_test.go:62: defer ssh.LoadClientKeys("")
On 2014/01/14 02:01:37, thumper wrote:
> Why do this?

To clear the keys cached in memory, so other tests get a clean slate.
I've moved it to TearDownTest.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go
File utils/ssh/clientkeys.go (right):

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode57
utils/ssh/clientkeys.go:57: // If the directory exists without keys,
On 2014/01/14 02:01:37, thumper wrote:
> While I understand the desire here, could we not just change the
return to only
> return if err != nil and len(clientKeys) > 0, otherwise create?

Done, but I made it return if (err != nil || len(clientKeys) > 0). I
guess that's what you really meant.

Both. It's a key type that implements (and is exposed as) the Signer
interface. I find using Signer in the method names to be a bit awkward,
because it's talking about the go.crypto/ssh API rather than the SSH
concept.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode104
utils/ssh/clientkeys.go:104: filename =
filename[:len(filename)-len(".pub")]
On 2014/01/14 02:01:37, thumper wrote:
> Can we put ".pub" as a file constant?
> PUB_SUFFIX
> or something?

Done.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode121
utils/ssh/clientkeys.go:121: signers = append(signers, key)
On 2014/01/14 02:01:37, thumper wrote:
> can this panic?

Deferred Unlock.

Yes it can, but TBH in this case if it did the whole program would
probably be buggered (Go does not deal well with OOM).

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go
File utils/ssh/clientkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode29
utils/ssh/clientkeys_test.go:29: fakeHome :=
testing.MakeFakeHomeNoEnvironments(c)
On 2014/01/14 02:01:37, thumper wrote:
> MakeFakeHomeNoEnvironments just makes a home and overrides env vars,
with no
> .ssh dir.

> MakeEmptyFakeHome also makes sure that ~/.juju exists.

Done.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode31
utils/ssh/clientkeys_test.go:31: s.AddCleanup(func(*gc.C) {
ssh.LoadClientKeys("") })
On 2014/01/14 02:01:37, thumper wrote:
> I do wonder if since LoadClientKeys("") is only used for tests, we
should
> instead have a method called ClearC...

Please take a look.

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go
File environs/config/authkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/environs/config/authkeys_test.go#newcode27
environs/config/authkeys_test.go:27: func (s *AuthKeysSuite) SetUpTest(c
*gc.C) {
On 2014/01/14 02:01:37, thumper wrote:
> You need to make sure you call
>   s.LoggingSuite.SetUpTest(c)

Done.

To clear the keys cached in memory, so other tests get a clean slate.
I've moved it to TearDownTest.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go
File utils/ssh/clientkeys.go (right):

Done, but I made it return if (err != nil || len(clientKeys) > 0). I
guess that's what you really meant.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode104
utils/ssh/clientkeys.go:104: filename =
filename[:len(filename)-len(".pub")]
On 2014/01/14 02:01:37, thumper wrote:
> Can we put ".pub" as a file constant?
>   PUB_SUFFIX
> or something?

Done.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys.go#newcode121
utils/ssh/clientkeys.go:121: signers = append(signers, key)
On 2014/01/14 02:01:37, thumper wrote:
> can this panic?

Deferred Unlock.

Yes it can, but TBH in this case if it did the whole program would
probably be buggered (Go does not deal well with OOM).

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go
File utils/ssh/clientkeys_test.go (right):

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode29
utils/ssh/clientkeys_test.go:29: fakeHome :=
testing.MakeFakeHomeNoEnvironments(c)
On 2014/01/14 02:01:37, thumper wrote:
> MakeFakeHomeNoEnvironments just makes a home and overrides env vars,
with no
> .ssh dir.

> MakeEmptyFakeHome also makes sure that ~/.juju exists.

Done.

https://codereview.appspot.com/49470046/diff/1/utils/ssh/clientkeys_test.go#newcode31
utils/ssh/clientkeys_test.go:31: s.AddCleanup(func(*gc.C) {
ssh.LoadClientKeys("") })
On 2014/01/14 02:01:37, thumper wrote:
> I do wonder if since LoadClientKeys("") is only used for tests, we
should
> instead have a method called ClearClientKeys()

Good call. Done.

No good reason. Done.

https://codereview.appspot.com/49470046/

Revision history for this message

Tim Penhey (thumper) wrote on 2014-01-15:

LGTM - thanks for the updates

https://codereview.appspot.com/49470046/

Revision history for this message

Go Bot (go-bot) wrote on 2014-01-15:

Download full text (14.1 KiB)

The attempt to merge lp:~axwalk/juju-core/ssh-client-keys into lp:juju-core failed. Below is the output from the failed tests.

ok  	launchpad.net/juju-core/agent	1.272s
ok  	launchpad.net/juju-core/agent/tools	0.222s
ok  	launchpad.net/juju-core/bzr	7.810s
ok  	launchpad.net/juju-core/cert	3.138s
ok  	launchpad.net/juju-core/charm	0.592s
?   	launchpad.net/juju-core/charm/hooks	[no test files]
ok  	launchpad.net/juju-core/cloudinit	0.033s
ok  	launchpad.net/juju-core/cloudinit/sshinit	1.052s
ok  	launchpad.net/juju-core/cmd	0.229s
ok  	launchpad.net/juju-core/cmd/charm-admin	0.837s
?   	launchpad.net/juju-core/cmd/charmd	[no test files]
?   	launchpad.net/juju-core/cmd/charmload	[no test files]
ok  	launchpad.net/juju-core/cmd/juju	218.655s
ok  	launchpad.net/juju-core/cmd/jujud	56.763s
ok  	launchpad.net/juju-core/cmd/plugins/juju-metadata	9.658s
?   	launchpad.net/juju-core/cmd/plugins/juju-restore	[no test files]
ok  	launchpad.net/juju-core/constraints	0.028s
ok  	launchpad.net/juju-core/container	0.055s
ok  	launchpad.net/juju-core/container/factory	0.049s
ok  	launchpad.net/juju-core/container/kvm	0.374s
ok  	launchpad.net/juju-core/container/kvm/mock	0.073s
?   	launchpad.net/juju-core/container/kvm/testing	[no test files]
ok  	launchpad.net/juju-core/container/lxc	0.294s
?   	launchpad.net/juju-core/container/lxc/mock	[no test files]
?   	launchpad.net/juju-core/container/lxc/testing	[no test files]
?   	launchpad.net/juju-core/container/testing	[no test files]
ok  	launchpad.net/juju-core/downloader	5.287s
ok  	launchpad.net/juju-core/environs	3.166s
ok  	launchpad.net/juju-core/environs/bootstrap	4.549s
ok  	launchpad.net/juju-core/environs/cloudinit	0.517s
ok  	launchpad.net/juju-core/environs/config	2.302s
ok  	launchpad.net/juju-core/environs/configstore	0.055s
ok  	launchpad.net/juju-core/environs/filestorage	0.032s
ok  	launchpad.net/juju-core/environs/httpstorage	0.892s
ok  	launchpad.net/juju-core/environs/imagemetadata	0.549s
?   	launchpad.net/juju-core/environs/imagemetadata/testing	[no test files]
ok  	launchpad.net/juju-core/environs/instances	0.055s
ok  	launchpad.net/juju-core/environs/jujutest	0.308s
ok  	launchpad.net/juju-core/environs/manual	10.288s
ok  	launchpad.net/juju-core/environs/simplestreams	0.343s
?   	launchpad.net/juju-core/environs/simplestreams/testing	[no test files]
ok  	launchpad.net/juju-core/environs/sshstorage	1.167s
ok  	launchpad.net/juju-core/environs/storage	1.210s
ok  	launchpad.net/juju-core/environs/sync	32.572s
ok  	launchpad.net/juju-core/environs/testing	0.211s
ok  	launchpad.net/juju-core/environs/tools	6.973s
?   	launchpad.net/juju-core/environs/tools/testing	[no test files]
ok  	launchpad.net/juju-core/errors	0.025s
ok  	launchpad.net/juju-core/instance	0.023s
?   	launchpad.net/juju-core/instance/testing	[no test files]
ok  	launchpad.net/juju-core/juju	22.830s
ok  	launchpad.net/juju-core/juju/osenv	0.019s
?   	launchpad.net/juju-core/juju/testing	[no test files]
ok  	launchpad.net/juju-core/log	0.016s
ok  	launchpad.net/juju-core/log/syslog	0.025s
ok  	launchpad.net/juju-core/names	0.038s
?   	launchpad.net/juju-core/provider	[no test files]
?   	launchpad.net/juju-core/provider/all	[no test files]
ok  	launchpad.net/juju-core/provider/azure	6.291s
ok  	launchpad.net/juju-core/provider/common	9.941s
ok  	launchpad.net/juju-core/provider/dummy	24.084s
ok  	launchpad.net/juju-core/provider/ec2	20.578s
ok  	launchpad.net/juju-core/provider/joyent	5.237s
ok  	launchpad.net/juju-core/provider/local	2.436s
ok  	launchpad.net/juju-core/provider/maas	20.571s
ok  	launchpad.net/juju-core/provider/null	1.223s
ok  	launchpad.net/juju-core/provider/openstack	33.695s
ok  	launchpad.net/juju-core/replicaset	12.817s
ok  	launchpad.net/juju-core/rpc	0.082s
ok  	launchpad.net/juju-core/rpc/jsoncodec	0.051s
?   	launchpad.net/juju-core/rpc/rpcreflect	[no test files]
ok  	launchpad.net/juju-core/schema	0.020s
ok  	launchpad.net/juju-core/state	87.474s
ok  	launchpad.net/juju-core/state/api	2.004s
ok  	launchpad.net/juju-core/state/api/agent	2.022s
?   	launchpad.net/juju-core/state/api/common	[no test files]
ok  	launchpad.net/juju-core/state/api/deployer	6.061s
ok  	launchpad.net/juju-core/state/api/keymanager	3.586s
ok  	launchpad.net/juju-core/state/api/keyupdater	2.584s
ok  	launchpad.net/juju-core/state/api/logger	2.387s
ok  	launchpad.net/juju-core/state/api/machiner	3.101s
ok  	launchpad.net/juju-core/state/api/params	0.044s
ok  	launchpad.net/juju-core/state/api/provisioner	10.285s
ok  	launchpad.net/juju-core/state/api/uniter	27.047s
ok  	launchpad.net/juju-core/state/api/upgrader	3.729s
ok  	launchpad.net/juju-core/state/api/watcher	3.373s
ok  	launchpad.net/juju-core/state/apiserver	7.130s
ok  	launchpad.net/juju-core/state/apiserver/agent	3.269s
ok  	launchpad.net/juju-core/state/apiserver/client	45.307s
ok  	launchpad.net/juju-core/state/apiserver/common	1.504s
ok  	launchpad.net/juju-core/state/apiserver/deployer	4.680s
ok  	launchpad.net/juju-core/state/apiserver/keymanager	4.119s
?   	launchpad.net/juju-core/state/apiserver/keymanager/testing	[no test files]
ok  	launchpad.net/juju-core/state/apiserver/keyupdater	3.167s
ok  	launchpad.net/juju-core/state/apiserver/logger	3.888s
ok  	launchpad.net/juju-core/state/apiserver/machine	4.128s
ok  	launchpad.net/juju-core/state/apiserver/provisioner	12.456s
?   	launchpad.net/juju-core/state/apiserver/testing	[no test files]

----------------------------------------------------------------------
PANIC: uniter_test.go:0: uniterSuite.TearDownTest

... Panic: Cannot drop MongoDB database juju: local error: bad record MAC (PC=0x414351)

/usr/lib/go/src/pkg/runtime/panic.c:229
  in panic
/home/tarmac/trees/src/launchpad.net/juju-core/testing/mgo.go:320
  in MgoInstance.Reset
/home/tarmac/trees/src/launchpad.net/juju-core/provider/dummy/environs.go:247
  in environState.destroy
/home/tarmac/trees/src/launchpad.net/juju-core/provider/dummy/environs.go:223
  in Reset
/home/tarmac/trees/src/launchpad.net/juju-core/juju/testing/conn.go:248
  in JujuConnSuite.tearDownConn
/home/tarmac/trees/src/launchpad.net/juju-core/juju/testing/conn.go:88
  in JujuConnSuite.TearDownTest

----------------------------------------------------------------------
PANIC: uniter_test.go:1321: uniterSuite.TestWatchRelationUnits

[LOG] 96.61338 DEBUG juju.environs.configstore Making /tmp/gocheck-8674665223082153551/109/home/ubuntu/.juju/environments
[LOG] 96.69940 DEBUG juju.environs.tools reading v1.* tools
[LOG] 96.69945 INFO juju environs/testing: uploading FAKE tools 1.17.1-precise-amd64
[LOG] 96.71237 DEBUG juju.environs.tools no architecture specified when finding tools, looking for any
[LOG] 96.71240 DEBUG juju.environs.tools no series specified when finding tools, looking for any
[LOG] 96.71249 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.sjson": file "tools/streams/v1/index.sjson" not found not found
[LOG] 96.71252 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.sjson": invalid URL "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.sjson" not found
[LOG] 96.71259 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.json": file "tools/streams/v1/index.json" not found not found
[LOG] 96.71261 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.json": invalid URL "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.json" not found
[LOG] 96.71296 INFO juju.environs.tools Writing tools/streams/v1/index.json
[LOG] 96.71316 INFO juju.environs.tools Writing tools/streams/v1/com.ubuntu.juju:released:tools.json
[LOG] 96.71335 INFO juju.environs.bootstrap bootstrapping environment "dummyenv"
[LOG] 96.71340 DEBUG juju.environs.bootstrap looking for bootstrap tools: series="precise", arch=<nil>, version=1.17.1
[LOG] 96.71342 INFO juju.environs.tools reading tools with major.minor version 1.17
[LOG] 96.71343 INFO juju.environs.tools filtering tools by version: 1.17.1
[LOG] 96.71344 INFO juju.environs.tools filtering tools by series: precise
[LOG] 96.71346 DEBUG juju.environs.tools no architecture specified when finding tools, looking for any
[LOG] 96.71352 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.sjson": file "tools/streams/v1/index.sjson" not found not found
[LOG] 96.71354 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.sjson": invalid URL "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.sjson" not found
[LOG] 96.71367 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/mirrors.json": file "tools/streams/v1/mirrors.json" not found not found
[LOG] 96.71369 DEBUG juju.environs.simplestreams no mirror index file found
[LOG] 96.71371 DEBUG juju.environs.simplestreams no mirror information available for { }: mirror data for "com.ubuntu.juju:released:tools" not found
[LOG] 96.71373 DEBUG juju.environs.simplestreams read metadata index at "http://127.0.0.1:51330/dummyenv/private/tools/streams/v1/index.json"
[LOG] 96.71380 DEBUG juju.environs.simplestreams candidate matches for products ["com.ubuntu.juju:12.04:amd64" "com.ubuntu.juju:12.04:i386" "com.ubuntu.juju:12.04:arm"] are [{Wed, 15 Jan 2014 01:45:17 +0000 products:1.0 content-download  [] streams/v1/com.ubuntu.juju:released:tools.json [com.ubuntu.juju:12.04:amd64]}]
[LOG] 96.71382 DEBUG juju.environs.simplestreams finding products at path "streams/v1/com.ubuntu.juju:released:tools.json"
[LOG] 96.71415 DEBUG juju.environs.simplestreams metadata: &{map[com.ubuntu.juju:12.04:amd64:{ 1.17.1 amd64   map[20140115:0xc200c21540]}] map[] Wed, 15 Jan 2014 01:45:17 +0000 products:1.0 com.ubuntu.juju:released:tools}
[LOG] 96.71422 INFO juju.environs.bootstrap picked newest version: 1.17.1
[LOG] 96.71425 INFO juju.provider.dummy would pick tools from 1.17.1-precise-amd64
[LOG] 96.71471 INFO juju.state opening state; mongo addresses: ["localhost:58270"]; entity ""
[LOG] 96.72391 INFO juju.state connection established
[LOG] 96.88474 INFO juju.state initializing environment
[LOG] 96.90848 INFO juju.state.apiserver listening on "127.0.0.1:47647"
[LOG] 96.93730 INFO juju.state opening state; mongo addresses: ["localhost:58270"]; entity ""
[LOG] 96.95604 INFO juju.state connection established
[LOG] 96.95742 INFO juju juju: authorization error while connecting to state server; retrying
[LOG] 96.95752 INFO juju.state opening state; mongo addresses: ["localhost:58270"]; entity ""
[LOG] 96.96436 INFO juju.state connection established
[LOG] 97.00816 INFO juju state/api: dialing "wss://127.0.0.1:47647/"
[LOG] 97.01145 INFO juju state/api: connection established
[LOG] 97.01166 DEBUG juju.state.apiserver <- [25] <unknown> {"RequestId":1,"Type":"Admin","Request":"Login","Params":{"AuthTag":"user-admin","Password":"dummy-secret","Nonce":""}}
[LOG] 97.01214 DEBUG juju.state.apiserver -> [25] user-admin 493.988us {"RequestId":1,"Response":{}} Admin[""].Login
[LOG] 97.03086 INFO juju writing charm to storage [853 bytes]
[LOG] 97.03099 INFO juju adding charm to state
[LOG] 97.10587 INFO juju writing charm to storage [438 bytes]
[LOG] 97.10596 INFO juju adding charm to state
[LOG] 97.25156 INFO juju.provider.dummy reset environment
[LOG] 97.25593 INFO juju Reset successfully reset admin password
... Panic: Fixture has panicked (see related PANIC)
OOPS: 36 passed, 1 FIXTURE-PANICKED, 2 MISSED
--- FAIL: Test (19.49 seconds)
FAIL
FAIL	launchpad.net/juju-core/state/apiserver/uniter	19.779s
ok  	launchpad.net/juju-core/state/apiserver/upgrader	6.832s
ok  	launchpad.net/juju-core/state/multiwatcher	0.801s
ok  	launchpad.net/juju-core/state/presence	7.818s
?   	launchpad.net/juju-core/state/statecmd	[no test files]
?   	launchpad.net/juju-core/state/testing	[no test files]
ok  	launchpad.net/juju-core/state/watcher	7.689s
ok  	launchpad.net/juju-core/store	27.893s
ok  	launchpad.net/juju-core/testing	1.710s
ok  	launchpad.net/juju-core/testing/checkers	0.027s
ok  	launchpad.net/juju-core/testing/testbase	0.021s
ok  	launchpad.net/juju-core/thirdparty/pbkdf2	0.144s
ok  	launchpad.net/juju-core/tools	0.020s
ok  	launchpad.net/juju-core/upstart	1.626s
ok  	launchpad.net/juju-core/utils	2.523s
ok  	launchpad.net/juju-core/utils/exec	0.045s
ok  	launchpad.net/juju-core/utils/fslock	1.389s
ok  	launchpad.net/juju-core/utils/parallel	0.930s
ok  	launchpad.net/juju-core/utils/set	0.026s
ok  	launchpad.net/juju-core/utils/ssh	12.037s
?   	launchpad.net/juju-core/utils/ssh/testing	[no test files]
ok  	launchpad.net/juju-core/utils/tailer	1.049s
ok  	launchpad.net/juju-core/version	0.082s
ok  	launchpad.net/juju-core/worker	6.651s
ok  	launchpad.net/juju-core/worker/addressupdater	1.438s
ok  	launchpad.net/juju-core/worker/authenticationworker	3.372s
ok  	launchpad.net/juju-core/worker/cleaner	1.307s
ok  	launchpad.net/juju-core/worker/deployer	8.572s
ok  	launchpad.net/juju-core/worker/firewaller	11.809s
ok  	launchpad.net/juju-core/worker/localstorage	0.048s
ok  	launchpad.net/juju-core/worker/logger	1.653s
ok  	launchpad.net/juju-core/worker/machiner	7.679s
ok  	launchpad.net/juju-core/worker/minunitsworker	1.578s
ok  	launchpad.net/juju-core/worker/provisioner	35.559s
ok  	launchpad.net/juju-core/worker/resumer	1.594s
ok  	launchpad.net/juju-core/worker/terminationworker	0.060s
ok  	launchpad.net/juju-core/worker/uniter	170.047s
ok  	launchpad.net/juju-core/worker/uniter/charm	4.237s
ok  	launchpad.net/juju-core/worker/uniter/debug	0.136s
ok  	launchpad.net/juju-core/worker/uniter/hook	0.023s
ok  	launchpad.net/juju-core/worker/uniter/jujuc	0.480s
ok  	launchpad.net/juju-core/worker/uniter/relation	1.385s
ok  	launchpad.net/juju-core/worker/upgrader	3.866s

warning: building out-of-date packages:
	launchpad.net/lpad
	launchpad.net/goamz/ec2/ec2test
	launchpad.net/goamz/s3/s3test
	launchpad.net/goose/testservices/hook
	launchpad.net/goose/testservices/identityservice
	launchpad.net/goose/testservices
	launchpad.net/goose/testservices/novaservice
	launchpad.net/goose/testservices/swiftservice
	launchpad.net/goose/testservices/openstackservice
installing these packages with 'go test -i ./...' will speed future tests.

Revision history for this message

Go Bot (go-bot) wrote on 2014-01-15:

Download full text (28.6 KiB)

The attempt to merge lp:~axwalk/juju-core/ssh-client-keys into lp:juju-core failed. Below is the output from the failed tests.

ok  	launchpad.net/juju-core/agent	1.325s
ok  	launchpad.net/juju-core/agent/tools	0.227s
ok  	launchpad.net/juju-core/bzr	7.846s
ok  	launchpad.net/juju-core/cert	3.297s
ok  	launchpad.net/juju-core/charm	0.636s
?   	launchpad.net/juju-core/charm/hooks	[no test files]
ok  	launchpad.net/juju-core/cloudinit	0.035s
ok  	launchpad.net/juju-core/cloudinit/sshinit	1.030s
ok  	launchpad.net/juju-core/cmd	0.284s
ok  	launchpad.net/juju-core/cmd/charm-admin	0.890s
?   	launchpad.net/juju-core/cmd/charmd	[no test files]
?   	launchpad.net/juju-core/cmd/charmload	[no test files]
ok  	launchpad.net/juju-core/cmd/juju	225.380s
ok  	launchpad.net/juju-core/cmd/jujud	56.575s
ok  	launchpad.net/juju-core/cmd/plugins/juju-metadata	12.666s
?   	launchpad.net/juju-core/cmd/plugins/juju-restore	[no test files]
ok  	launchpad.net/juju-core/constraints	0.035s
ok  	launchpad.net/juju-core/container	0.036s
ok  	launchpad.net/juju-core/container/factory	0.049s
ok  	launchpad.net/juju-core/container/kvm	0.327s
ok  	launchpad.net/juju-core/container/kvm/mock	0.035s
?   	launchpad.net/juju-core/container/kvm/testing	[no test files]
ok  	launchpad.net/juju-core/container/lxc	0.325s
?   	launchpad.net/juju-core/container/lxc/mock	[no test files]
?   	launchpad.net/juju-core/container/lxc/testing	[no test files]
?   	launchpad.net/juju-core/container/testing	[no test files]
ok  	launchpad.net/juju-core/downloader	5.296s
ok  	launchpad.net/juju-core/environs	3.226s
ok  	launchpad.net/juju-core/environs/bootstrap	4.501s
ok  	launchpad.net/juju-core/environs/cloudinit	0.527s
ok  	launchpad.net/juju-core/environs/config	2.615s
ok  	launchpad.net/juju-core/environs/configstore	0.042s
ok  	launchpad.net/juju-core/environs/filestorage	0.031s
ok  	launchpad.net/juju-core/environs/httpstorage	0.908s
ok  	launchpad.net/juju-core/environs/imagemetadata	0.512s
?   	launchpad.net/juju-core/environs/imagemetadata/testing	[no test files]
ok  	launchpad.net/juju-core/environs/instances	0.057s
ok  	launchpad.net/juju-core/environs/jujutest	0.243s
ok  	launchpad.net/juju-core/environs/manual	9.618s
ok  	launchpad.net/juju-core/environs/simplestreams	0.368s
?   	launchpad.net/juju-core/environs/simplestreams/testing	[no test files]
ok  	launchpad.net/juju-core/environs/sshstorage	1.234s
ok  	launchpad.net/juju-core/environs/storage	1.169s
ok  	launchpad.net/juju-core/environs/sync	32.487s
ok  	launchpad.net/juju-core/environs/testing	0.260s
ok  	launchpad.net/juju-core/environs/tools	7.036s
?   	launchpad.net/juju-core/environs/tools/testing	[no test files]
ok  	launchpad.net/juju-core/errors	0.016s
ok  	launchpad.net/juju-core/instance	0.022s
?   	launchpad.net/juju-core/instance/testing	[no test files]
ok  	launchpad.net/juju-core/juju	23.814s
ok  	launchpad.net/juju-core/juju/osenv	0.019s
?   	launchpad.net/juju-core/juju/testing	[no test files]
ok  	launchpad.net/juju-core/log	0.016s
ok  	launchpad.net/juju-core/log/syslog	0.040s
ok  	launchpad.net/juju-core/names	0.026s
?   	launchpad.net/juju-core/provider	[no test files]
?   	launchpad.net/juju-core/provider/all	[no test files]
ok  	launchpad.net/juju-core/provider/azure	6.229s
ok  	launchpad.net/juju-core/provider/common	6.276s
ok  	launchpad.net/juju-core/provider/dummy	23.420s
ok  	launchpad.net/juju-core/provider/ec2	18.470s
ok  	launchpad.net/juju-core/provider/joyent	5.355s
ok  	launchpad.net/juju-core/provider/local	2.435s
ok  	launchpad.net/juju-core/provider/maas	21.782s
ok  	launchpad.net/juju-core/provider/null	1.235s
ok  	launchpad.net/juju-core/provider/openstack	36.685s
ok  	launchpad.net/juju-core/replicaset	12.810s
ok  	launchpad.net/juju-core/rpc	0.079s
ok  	launchpad.net/juju-core/rpc/jsoncodec	0.030s
?   	launchpad.net/juju-core/rpc/rpcreflect	[no test files]
ok  	launchpad.net/juju-core/schema	0.019s
ok  	launchpad.net/juju-core/state	86.083s
ok  	launchpad.net/juju-core/state/api	2.056s
ok  	launchpad.net/juju-core/state/api/agent	2.090s
?   	launchpad.net/juju-core/state/api/common	[no test files]
ok  	launchpad.net/juju-core/state/api/deployer	6.127s
ok  	launchpad.net/juju-core/state/api/keymanager	3.463s
ok  	launchpad.net/juju-core/state/api/keyupdater	2.947s
ok  	launchpad.net/juju-core/state/api/logger	2.496s
ok  	launchpad.net/juju-core/state/api/machiner	3.149s
ok  	launchpad.net/juju-core/state/api/params	0.032s
ok  	launchpad.net/juju-core/state/api/provisioner	10.172s
ok  	launchpad.net/juju-core/state/api/uniter	27.541s
ok  	launchpad.net/juju-core/state/api/upgrader	3.987s
ok  	launchpad.net/juju-core/state/api/watcher	3.173s
ok  	launchpad.net/juju-core/state/apiserver	7.062s
ok  	launchpad.net/juju-core/state/apiserver/agent	3.193s
ok  	launchpad.net/juju-core/state/apiserver/client	44.901s
ok  	launchpad.net/juju-core/state/apiserver/common	1.500s
ok  	launchpad.net/juju-core/state/apiserver/deployer	4.650s
ok  	launchpad.net/juju-core/state/apiserver/keymanager	4.247s
?   	launchpad.net/juju-core/state/apiserver/keymanager/testing	[no test files]
ok  	launchpad.net/juju-core/state/apiserver/keyupdater	3.065s
ok  	launchpad.net/juju-core/state/apiserver/logger	3.948s
ok  	launchpad.net/juju-core/state/apiserver/machine	4.168s
ok  	launchpad.net/juju-core/state/apiserver/provisioner	12.141s
?   	launchpad.net/juju-core/state/apiserver/testing	[no test files]
ok  	launchpad.net/juju-core/state/apiserver/uniter	19.225s
ok  	launchpad.net/juju-core/state/apiserver/upgrader	5.771s
ok  	launchpad.net/juju-core/state/multiwatcher	0.776s
ok  	launchpad.net/juju-core/state/presence	6.670s
?   	launchpad.net/juju-core/state/statecmd	[no test files]
?   	launchpad.net/juju-core/state/testing	[no test files]
ok  	launchpad.net/juju-core/state/watcher	6.385s
ok  	launchpad.net/juju-core/store	19.577s
ok  	launchpad.net/juju-core/testing	1.408s
ok  	launchpad.net/juju-core/testing/checkers	0.031s
ok  	launchpad.net/juju-core/testing/testbase	0.019s
ok  	launchpad.net/juju-core/thirdparty/pbkdf2	0.136s
ok  	launchpad.net/juju-core/tools	0.020s
ok  	launchpad.net/juju-core/upstart	1.351s
ok  	launchpad.net/juju-core/utils	2.472s
ok  	launchpad.net/juju-core/utils/exec	0.057s
ok  	launchpad.net/juju-core/utils/fslock	1.006s
ok  	launchpad.net/juju-core/utils/parallel	0.953s
ok  	launchpad.net/juju-core/utils/set	0.016s
ok  	launchpad.net/juju-core/utils/ssh	12.843s
?   	launchpad.net/juju-core/utils/ssh/testing	[no test files]
ok  	launchpad.net/juju-core/utils/tailer	1.011s
ok  	launchpad.net/juju-core/version	0.068s
ok  	launchpad.net/juju-core/worker	6.742s
ok  	launchpad.net/juju-core/worker/addressupdater	1.411s
ok  	launchpad.net/juju-core/worker/authenticationworker	3.342s
ok  	launchpad.net/juju-core/worker/cleaner	1.266s
ok  	launchpad.net/juju-core/worker/deployer	8.696s
ok  	launchpad.net/juju-core/worker/firewaller	11.217s
ok  	launchpad.net/juju-core/worker/localstorage	0.052s
ok  	launchpad.net/juju-core/worker/logger	1.582s
ok  	launchpad.net/juju-core/worker/machiner	2.769s
ok  	launchpad.net/juju-core/worker/minunitsworker	1.278s

----------------------------------------------------------------------
PANIC: container_initialisation_test.go:0: ProvisionerSuite.TearDownTest

... Panic: local error: bad record MAC (PC=0x414311)

/usr/lib/go/src/pkg/runtime/panic.c:229
  in panic
/home/tarmac/trees/src/launchpad.net/juju-core/testing/mgo.go:339
  in resetAdminPasswordAndFetchDBNames
/home/tarmac/trees/src/launchpad.net/juju-core/testing/mgo.go:302
  in MgoInstance.Reset
/home/tarmac/trees/src/launchpad.net/juju-core/testing/mgo.go:385
  in MgoSuite.TearDownTest
/home/tarmac/trees/src/launchpad.net/juju-core/juju/testing/conn.go:90
  in JujuConnSuite.TearDownTest

----------------------------------------------------------------------
PANIC: provisioner_test.go:407: ProvisionerSuite.TestProvisioningDoesNotOccurForContainers

[LOG] 78.94682 DEBUG juju.environs.configstore Making /tmp/gocheck-6263450610539110790/13/home/ubuntu/.juju/environments
[LOG] 79.03601 DEBUG juju.environs.tools reading v1.* tools
[LOG] 79.03606 INFO juju environs/testing: uploading FAKE tools 1.17.1-precise-amd64
[LOG] 79.04502 DEBUG juju.environs.tools no architecture specified when finding tools, looking for any
[LOG] 79.04504 DEBUG juju.environs.tools no series specified when finding tools, looking for any
[LOG] 79.04513 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson": file "tools/streams/v1/index.sjson" not found not found
[LOG] 79.04519 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson": invalid URL "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson" not found
[LOG] 79.04526 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.json": file "tools/streams/v1/index.json" not found not found
[LOG] 79.04528 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.json": invalid URL "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.json" not found
[LOG] 79.04565 INFO juju.environs.tools Writing tools/streams/v1/index.json
[LOG] 79.04579 INFO juju.environs.tools Writing tools/streams/v1/com.ubuntu.juju:released:tools.json
[LOG] 79.04597 INFO juju.environs.bootstrap bootstrapping environment "dummyenv"
[LOG] 79.04600 DEBUG juju.environs.bootstrap looking for bootstrap tools: series="precise", arch=<nil>, version=1.17.1
[LOG] 79.04602 INFO juju.environs.tools reading tools with major.minor version 1.17
[LOG] 79.04603 INFO juju.environs.tools filtering tools by version: 1.17.1
[LOG] 79.04604 INFO juju.environs.tools filtering tools by series: precise
[LOG] 79.04606 DEBUG juju.environs.tools no architecture specified when finding tools, looking for any
[LOG] 79.04610 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson": file "tools/streams/v1/index.sjson" not found not found
[LOG] 79.04612 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson": invalid URL "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson" not found
[LOG] 79.04623 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/mirrors.json": file "tools/streams/v1/mirrors.json" not found not found
[LOG] 79.04625 DEBUG juju.environs.simplestreams no mirror index file found
[LOG] 79.04627 DEBUG juju.environs.simplestreams no mirror information available for { }: mirror data for "com.ubuntu.juju:released:tools" not found
[LOG] 79.04629 DEBUG juju.environs.simplestreams read metadata index at "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.json"
[LOG] 79.04636 DEBUG juju.environs.simplestreams candidate matches for products ["com.ubuntu.juju:12.04:amd64" "com.ubuntu.juju:12.04:i386" "com.ubuntu.juju:12.04:arm"] are [{Wed, 15 Jan 2014 02:18:20 +0000 products:1.0 content-download  [] streams/v1/com.ubuntu.juju:released:tools.json [com.ubuntu.juju:12.04:amd64]}]
[LOG] 79.04637 DEBUG juju.environs.simplestreams finding products at path "streams/v1/com.ubuntu.juju:released:tools.json"
[LOG] 79.04659 DEBUG juju.environs.simplestreams metadata: &{map[com.ubuntu.juju:12.04:amd64:{ 1.17.1 amd64   map[20140115:0xc20089c300]}] map[] Wed, 15 Jan 2014 02:18:20 +0000 products:1.0 com.ubuntu.juju:released:tools}
[LOG] 79.04664 INFO juju.environs.bootstrap picked newest version: 1.17.1
[LOG] 79.04667 INFO juju.provider.dummy would pick tools from 1.17.1-precise-amd64
[LOG] 79.04711 INFO juju.state opening state; mongo addresses: ["localhost:55100"]; entity ""
[LOG] 79.05037 INFO juju.state connection established
[LOG] 79.07778 INFO juju.state initializing environment
[LOG] 79.10114 INFO juju.state.apiserver listening on "127.0.0.1:33983"
[LOG] 79.11997 INFO juju.state opening state; mongo addresses: ["localhost:55100"]; entity ""
[LOG] 79.12365 INFO juju.state connection established
[LOG] 79.12459 INFO juju juju: authorization error while connecting to state server; retrying
[LOG] 79.12469 INFO juju.state opening state; mongo addresses: ["localhost:55100"]; entity ""
[LOG] 79.12814 INFO juju.state connection established
[LOG] 79.16863 INFO juju state/api: dialing "wss://127.0.0.1:33983/"
[LOG] 79.17195 INFO juju state/api: connection established
[LOG] 79.17214 DEBUG juju.state.apiserver <- [19] <unknown> {"RequestId":1,"Type":"Admin","Request":"Login","Params":{"AuthTag":"user-admin","Password":"dummy-secret","Nonce":""}}
[LOG] 79.17255 DEBUG juju.state.apiserver -> [19] user-admin 418.117us {"RequestId":1,"Response":{}} Admin[""].Login
[LOG] 79.23255 INFO juju state/api: dialing "wss://127.0.0.1:33983/"
[LOG] 79.23556 INFO juju state/api: connection established
[LOG] 79.23573 DEBUG juju.state.apiserver <- [1A] <unknown> {"RequestId":1,"Type":"Admin","Request":"Login","Params":{"AuthTag":"machine-0","Password":"BunkJGxNov3Av83zUjVj9q2z","Nonce":"fake_nonce"}}
[LOG] 79.25061 DEBUG juju.state.apiserver -> [1A] machine-0 14.784478ms {"RequestId":1,"Response":{}} Admin[""].Login
API: login as "machine-0" successful
[LOG] 79.25160 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":3,"Type":"Provisioner","Request":"WatchForEnvironConfigChanges","Params":{}}
[LOG] 79.25276 DEBUG juju.state.apiserver -> [1A] machine-0 1.143469ms {"RequestId":3,"Response":{"NotifyWatcherId":"2","Error":null}} Provisioner[""].WatchForEnvironConfigChanges
[LOG] 79.25326 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":4,"Type":"Provisioner","Request":"EnvironConfig","Params":{}}
[LOG] 79.25337 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":5,"Type":"NotifyWatcher","Id":"2","Request":"Next","Params":{}}
[LOG] 79.25546 DEBUG juju.state.apiserver -> [1A] machine-0 2.116373ms {"RequestId":4,"Response":{"Error":null,"Config":{"admin-secret":"","agent-version":"1.17.1","api-port":4321,"authorized-keys":"my-keys","broken":"","ca-cert":"-----BEGIN CERTIFICATE-----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\nRVnxTVaE\n-----END CERTIFICATE-----\n","ca-private-key":"","charm-store-auth":"","default-series":"precise","development":false,"firewall-mode":"instance","image-metadata-url":"","logging-config":"\u003croot\u003e=WARNING;juju=DEBUG","name":"dummyenv","secret":"pork","ssl-hostname-verification":true,"state-id":"13","state-port":1234,"state-server":true,"syslog-port":2345,"tools-metadata-url":"","tools-url":"","type":"dummy"}}} Provisioner[""].EnvironConfig
[LOG] 79.25719 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":6,"Type":"Provisioner","Request":"StateAddresses","Params":{}}
[LOG] 79.25916 DEBUG juju.state.apiserver -> [1A] machine-0 1.992599ms {"RequestId":6,"Response":{"Error":null,"Result":["0.1.2.3:1234"]}} Provisioner[""].StateAddresses
[LOG] 79.25966 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":7,"Type":"Provisioner","Request":"APIAddresses","Params":{}}
[LOG] 79.26151 DEBUG juju.state.apiserver -> [1A] machine-0 1.866676ms {"RequestId":7,"Response":{"Error":null,"Result":["0.1.2.3:4321"]}} Provisioner[""].APIAddresses
[LOG] 79.26205 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":8,"Type":"Provisioner","Request":"CACert","Params":{}}
[LOG] 79.26218 DEBUG juju.state.apiserver -> [1A] machine-0 101.501us {"RequestId":8,"Response":{"Result":"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"}} Provisioner[""].CACert
[LOG] 79.26289 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":9,"Type":"Provisioner","Request":"WatchEnvironMachines","Params":{}}
[LOG] 79.26366 DEBUG juju.state.apiserver -> [1A] machine-0 762.147us {"RequestId":9,"Response":{"StringsWatcherId":"3","Changes":["0"],"Error":null}} Provisioner[""].WatchEnvironMachines
[LOG] 79.26397 INFO juju.provisioner Starting up provisioner task machine-0
[LOG] 79.26422 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":10,"Type":"Provisioner","Request":"Life","Params":{"Entities":[{"Tag":"machine-0"}]}}
[LOG] 79.26428 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":11,"Type":"StringsWatcher","Id":"3","Request":"Next","Params":{}}
[LOG] 79.26525 DEBUG juju.state.apiserver -> [1A] machine-0 1.023292ms {"RequestId":10,"Response":{"Results":[{"Life":"alive","Error":null}]}} Provisioner[""].Life
[LOG] 79.26578 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":12,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-0"}]}}
[LOG] 79.26663 DEBUG juju.state.apiserver -> [1A] machine-0 830.524us {"RequestId":12,"Response":{"Results":[{"Error":null,"Result":"i-fake"}]}} Provisioner[""].InstanceId
[LOG] 79.26709 INFO juju.provisioner machine 0 already started as instance "i-fake"
[LOG] 79.26747 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":13,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-0"}]}}
[LOG] 79.26831 DEBUG juju.state.apiserver -> [1A] machine-0 784.449us {"RequestId":13,"Response":{"Results":[{"Error":null,"Result":"i-fake"}]}} Provisioner[""].InstanceId
[LOG] 79.29101 DEBUG juju.state.apiserver -> [1A] machine-0 26.604564ms {"RequestId":11,"Response":{"StringsWatcherId":"","Changes":["1"],"Error":null}} StringsWatcher["3"].Next
[LOG] 79.29226 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":14,"Type":"StringsWatcher","Id":"3","Request":"Next","Params":{}}
[LOG] 79.29245 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":15,"Type":"Provisioner","Request":"Life","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.29378 DEBUG juju.state.apiserver -> [1A] machine-0 1.222946ms {"RequestId":15,"Response":{"Results":[{"Life":"alive","Error":null}]}} Provisioner[""].Life
[LOG] 79.29499 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":16,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.29725 DEBUG juju.state.apiserver -> [1A] machine-0 2.229843ms {"RequestId":16,"Response":{"Results":[{"Error":{"Message":"machine 1 is not provisioned","Code":"not provisioned"},"Result":""}]}} Provisioner[""].InstanceId
[LOG] 79.29868 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":17,"Type":"Provisioner","Request":"Status","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.30102 DEBUG juju.state.apiserver -> [1A] machine-0 2.341819ms {"RequestId":17,"Response":{"Results":[{"Error":null,"Status":"pending","Info":""}]}} Provisioner[""].Status
[LOG] 79.30175 INFO juju.provisioner found machine "1" pending provisioning
[LOG] 79.30265 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":18,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-0"}]}}
[LOG] 79.30417 DEBUG juju.state.apiserver -> [1A] machine-0 1.844687ms {"RequestId":18,"Response":{"Results":[{"Error":null,"Result":"i-fake"}]}} Provisioner[""].InstanceId
[LOG] 79.30446 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":19,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.30498 DEBUG juju.state.apiserver -> [1A] machine-0 485.586us {"RequestId":19,"Response":{"Results":[{"Error":{"Message":"machine 1 is not provisioned","Code":"not provisioned"},"Result":""}]}} Provisioner[""].InstanceId
[LOG] 79.30529 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":20,"Type":"Provisioner","Request":"Constraints","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.30584 DEBUG juju.state.apiserver -> [1A] machine-0 543.488us {"RequestId":20,"Response":{"Results":[{"Error":null,"Constraints":{"arch":"amd64","cpu-cores":1,"mem":4096,"root-disk":8192}}]}} Provisioner[""].Constraints
[LOG] 79.30612 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":21,"Type":"Provisioner","Request":"Series","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.30657 DEBUG juju.state.apiserver -> [1A] machine-0 426.267us {"RequestId":21,"Response":{"Results":[{"Error":null,"Result":"precise"}]}} Provisioner[""].Series
[LOG] 79.30676 INFO juju.environs.tools reading tools with major.minor version 1.17
[LOG] 79.30678 INFO juju.environs.tools filtering tools by version: 1.17.1
[LOG] 79.30679 INFO juju.environs.tools filtering tools by series: precise
[LOG] 79.30679 INFO juju.environs.tools filtering tools by architecture: amd64
[LOG] 79.30693 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson": file "tools/streams/v1/index.sjson" not found not found
[LOG] 79.30695 DEBUG juju.environs.simplestreams cannot load index "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson": invalid URL "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.sjson" not found
[LOG] 79.30706 DEBUG juju.environs.simplestreams fetchData failed for "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/mirrors.json": file "tools/streams/v1/mirrors.json" not found not found
[LOG] 79.30710 DEBUG juju.environs.simplestreams no mirror index file found
[LOG] 79.30712 DEBUG juju.environs.simplestreams no mirror information available for { }: mirror data for "com.ubuntu.juju:released:tools" not found
[LOG] 79.30713 DEBUG juju.environs.simplestreams read metadata index at "http://127.0.0.1:51586/dummyenv/private/tools/streams/v1/index.json"
[LOG] 79.30720 DEBUG juju.environs.simplestreams candidate matches for products ["com.ubuntu.juju:12.04:amd64"] are [{Wed, 15 Jan 2014 02:18:20 +0000 products:1.0 content-download  [] streams/v1/com.ubuntu.juju:released:tools.json [com.ubuntu.juju:12.04:amd64]}]
[LOG] 79.30723 DEBUG juju.environs.simplestreams finding products at path "streams/v1/com.ubuntu.juju:released:tools.json"
[LOG] 79.30754 DEBUG juju.environs.simplestreams metadata: &{map[com.ubuntu.juju:12.04:amd64:{ 1.17.1 amd64   map[20140115:0xc200237e40]}] map[] Wed, 15 Jan 2014 02:18:20 +0000 products:1.0 com.ubuntu.juju:released:tools}
[LOG] 79.30783 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":22,"Type":"Provisioner","Request":"SetPasswords","Params":{"Changes":[{"Tag":"machine-1","Password":"vq/cUpQww9Z3HlmdpiVi9LUR"}]}}
[LOG] 79.31142 INFO juju setting password for "machine-1"
[LOG] 79.31147 DEBUG juju.state.apiserver -> [1A] machine-0 3.659549ms {"RequestId":22,"Response":{"Results":[{"Error":null}]}} Provisioner[""].SetPasswords
[LOG] 79.31161 INFO juju.provider.dummy dummy startinstance, machine 1
[LOG] 79.31164 INFO juju.provider.dummy would pick tools from 1.17.1-precise-amd64
[LOG] 79.31214 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":23,"Type":"Provisioner","Request":"SetProvisioned","Params":{"Machines":[{"Tag":"machine-1","InstanceId":"dummyenv-0","Nonce":"machine-0:b5109043-e385-4736-8bdc-10d5493df23e","Characteristics":{"Arch":"amd64","Mem":4096,"RootDisk":8192,"CpuCores":1,"CpuPower":null,"Tags":null}}]}}
[LOG] 79.32441 DEBUG juju.state.apiserver -> [1A] machine-0 12.2875ms {"RequestId":23,"Response":{"Results":[{"Error":null}]}} Provisioner[""].SetProvisioned
[LOG] 79.32496 INFO juju.provisioner started machine 1 as instance dummyenv-0 with hardware "arch=amd64 cpu-cores=1 mem=4096M root-disk=8192M"
[LOG] 79.47007 DEBUG juju.state.apiserver -> [1A] machine-0 177.818498ms {"RequestId":14,"Response":{"StringsWatcherId":"","Changes":["1"],"Error":null}} StringsWatcher["3"].Next
[LOG] 79.47042 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":24,"Type":"StringsWatcher","Id":"3","Request":"Next","Params":{}}
[LOG] 79.47049 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":25,"Type":"Provisioner","Request":"Life","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.47090 DEBUG juju.state.apiserver -> [1A] machine-0 399.485us {"RequestId":25,"Response":{"Results":[{"Life":"dead","Error":null}]}} Provisioner[""].Life
[LOG] 79.47110 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":26,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.47142 DEBUG juju.state.apiserver -> [1A] machine-0 320.85us {"RequestId":26,"Response":{"Results":[{"Error":null,"Result":"dummyenv-0"}]}} Provisioner[""].InstanceId
[LOG] 79.47172 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":27,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-0"}]}}
[LOG] 79.47297 DEBUG juju.state.apiserver -> [1A] machine-0 1.328271ms {"RequestId":27,"Response":{"Results":[{"Error":null,"Result":"i-fake"}]}} Provisioner[""].InstanceId
[LOG] 79.47323 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":28,"Type":"Provisioner","Request":"InstanceId","Params":{"Entities":[{"Tag":"machine-1"}]}}
[LOG] 79.47357 DEBUG juju.state.apiserver -> [1A] machine-0 337.288us {"RequestId":28,"Response":{"Results":[{"Error":null,"Result":"dummyenv-0"}]}} Provisioner[""].InstanceId
[LOG] 79.47369 INFO juju.provisioner stopping known instances [0xc200851070]
[LOG] 79.47372 INFO juju.provisioner removing dead machine "1"
[LOG] 79.47400 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":29,"Type":"Provisioner","Request":"Remove","Params":{"Entities":[{"Tag":"machine-1"}]}}
machine 1 is still dead
[LOG] 79.50350 DEBUG juju.state.apiserver -> [1A] machine-0 29.468118ms {"RequestId":29,"Response":{"Results":[{"Error":null}]}} Provisioner[""].Remove
[LOG] 79.53711 INFO juju.provisioner Shutting down provisioner task machine-0
[LOG] 79.53750 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":30,"Type":"StringsWatcher","Id":"3","Request":"Stop","Params":{}}
[LOG] 79.53765 DEBUG juju.state.apiserver -> [1A] machine-0 0 {"RequestId":24,"Error":"watcher has been stopped","ErrorCode":"stopped","Response":{}} StringsWatcher["3"].Next
[LOG] 79.53778 DEBUG juju.state.apiserver -> [1A] machine-0 307.954us {"RequestId":30,"Response":{}} StringsWatcher["3"].Stop
[LOG] 79.53817 DEBUG juju.state.apiserver <- [1A] machine-0 {"RequestId":31,"Type":"NotifyWatcher","Id":"2","Request":"Stop","Params":{}}
[LOG] 79.53827 DEBUG juju.state.apiserver -> [1A] machine-0 0 {"RequestId":5,"Error":"watcher has been stopped","ErrorCode":"stopped","Response":{}} NotifyWatcher["2"].Next
[LOG] 79.53836 DEBUG juju.state.apiserver -> [1A] machine-0 216.153us {"RequestId":31,"Response":{}} NotifyWatcher["2"].Stop
[LOG] 79.54052 INFO juju.provider.dummy reset environment
[LOG] 79.55436 INFO juju Reset successfully reset admin password
[LOG] 79.57202 INFO juju Reset successfully reset admin password
... Panic: Fixture has panicked (see related PANIC)
OOPS: 18 passed, 1 FIXTURE-PANICKED, 11 MISSED
--- FAIL: Test (28.24 seconds)
FAIL
FAIL	launchpad.net/juju-core/worker/provisioner	28.542s
ok  	launchpad.net/juju-core/worker/resumer	1.568s
ok  	launchpad.net/juju-core/worker/terminationworker	0.053s
ok  	launchpad.net/juju-core/worker/uniter	167.045s
ok  	launchpad.net/juju-core/worker/uniter/charm	2.915s
ok  	launchpad.net/juju-core/worker/uniter/debug	0.178s
ok  	launchpad.net/juju-core/worker/uniter/hook	0.016s
ok  	launchpad.net/juju-core/worker/uniter/jujuc	0.478s
ok  	launchpad.net/juju-core/worker/uniter/relation	1.388s
ok  	launchpad.net/juju-core/worker/upgrader	3.563s

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

Subscribers

People subscribed via source and target branches

to all changes:

Aaron Bentley

Andrew Wilkins

Dave Cheney

Dimiter Naydenov

Eric Snow

John A Meinel

Martin Packman

Nate Finch

Raphaël Badin

Tim Penhey

to status/vote changes:

rowez

 === modified file 'environs/config/authkeys.go'
 --- environs/config/authkeys.go	2014-01-03 03:35:25 +0000
 +++ environs/config/authkeys.go	2014-01-14 03:36:18 +0000
@@ -9,23 +9,14 @@
  	"fmt"
  	"io/ioutil"
  	"os"
--	"path"
  	"path/filepath"
--	"strings"
  	"launchpad.net/juju-core/cert"
  	"launchpad.net/juju-core/juju/osenv"
++	"launchpad.net/juju-core/utils"
++	"launchpad.net/juju-core/utils/ssh"
+ )
--func expandTilde(f string) string {
--	// TODO expansion of other user's home directories.
--	// Q what characters are valid in a user name?
--	if strings.HasPrefix(f, "~"+string(filepath.Separator)) {
--		return path.Join(osenv.Home(), f[2:])
--	}
--	return f
--}
--
  // ReadAuthorizedKeys implements the standard juju behaviour for finding
  // authorized_keys. It returns a set of keys in in authorized_keys format
  // (see sshd(8) for a description).  If path is non-empty, it names the
@@ -33,17 +24,27 @@
  // Home directory expansion will be performed on the path if it starts with
  // a ~; if the expanded path is relative, it will be interpreted relative
  // to $HOME/.ssh.
++//
++// The result of utils/ssh.PublicKeyFiles will always be prepended to the
++// result. In practice, this means ReadAuthorizedKeys never returns an
++// error when the call originates in the CLI.
  func ReadAuthorizedKeys(path string) (string, error) {
--	var files []string
++	files := ssh.PublicKeyFiles()
  	if path == "" {
--		files = []string{"id_dsa.pub", "id_rsa.pub", "identity.pub"}
++		files = append(files, "id_dsa.pub", "id_rsa.pub", "identity.pub")
  	} else {
--		files = []string{path}
++		files = append(files, path)
+ 	}
  	var firstError error
  	var keyData []byte
  	for _, f := range files {
--		f = expandTilde(f)
++		f, err := utils.NormalizePath(f)
++		if err != nil {
++			if firstError == nil {
++				firstError = err
++			}
++			continue
++		}
  		if !filepath.IsAbs(f) {
  			f = filepath.Join(osenv.Home(), ".ssh", f)
+ 		}
 === added file 'environs/config/authkeys_test.go'
 --- environs/config/authkeys_test.go	1970-01-01 00:00:00 +0000
 +++ environs/config/authkeys_test.go	2014-01-14 03:36:18 +0000
@@ -0,0 +1,88 @@
++// Copyright 2014 Canonical Ltd.
++// Licensed under the AGPLv3, see LICENCE file for details.
++
++package config_test
++
++import (
++	"io/ioutil"
++	"os"
++	"path/filepath"
++	"strings"
++
++	gc "launchpad.net/gocheck"
++
++	"launchpad.net/juju-core/environs/config"
++	"launchpad.net/juju-core/juju/osenv"
++	"launchpad.net/juju-core/testing/testbase"
++	"launchpad.net/juju-core/utils/ssh"
++)
++
++type AuthKeysSuite struct {
++	testbase.LoggingSuite
++	dotssh string // ~/.ssh
++}
++
++var _ = gc.Suite(&AuthKeysSuite{})
++
++func (s *AuthKeysSuite) SetUpTest(c *gc.C) {
++	s.LoggingSuite.SetUpTest(c)
++	old := osenv.Home()
++	newhome := c.MkDir()
++	osenv.SetHome(newhome)
++	s.AddCleanup(func(*gc.C) { osenv.SetHome(old) })
++	s.dotssh = filepath.Join(newhome, ".ssh")
++	err := os.Mkdir(s.dotssh, 0755)
++	c.Assert(err, gc.IsNil)
++}
++
++func (s *AuthKeysSuite) TearDownTest(c *gc.C) {
++	ssh.ClearClientKeys()
++	s.LoggingSuite.TearDownTest(c)
++}
++
++func (s *AuthKeysSuite) TestReadAuthorizedKeysErrors(c *gc.C) {
++	_, err := config.ReadAuthorizedKeys("")
++	c.Assert(err, gc.ErrorMatches, "no public ssh keys found")
++	_, err = config.ReadAuthorizedKeys(filepath.Join(s.dotssh, "notthere.pub"))
++	c.Assert(err, gc.ErrorMatches, "no public ssh keys found")
++}
++
++func writeFile(c *gc.C, filename string, contents string) {
++	err := ioutil.WriteFile(filename, []byte(contents), 0644)
++	c.Assert(err, gc.IsNil)
++}
++
++func (s *AuthKeysSuite) TestReadAuthorizedKeys(c *gc.C) {
++	writeFile(c, filepath.Join(s.dotssh, "id_rsa.pub"), "id_rsa")
++	writeFile(c, filepath.Join(s.dotssh, "identity.pub"), "identity")
++	writeFile(c, filepath.Join(s.dotssh, "test.pub"), "test")
++	keys, err := config.ReadAuthorizedKeys("")
++	c.Assert(err, gc.IsNil)
++	c.Assert(keys, gc.Equals, "id_rsa\nidentity\n")
++	keys, err = config.ReadAuthorizedKeys("test.pub") // relative to ~/.ssh
++	c.Assert(err, gc.IsNil)
++	c.Assert(keys, gc.Equals, "test\n")
++}
++
++func (s *AuthKeysSuite) TestReadAuthorizedKeysClientKeys(c *gc.C) {
++	keydir := filepath.Join(s.dotssh, "juju")
++	err := ssh.LoadClientKeys(keydir) // auto-generates a key pair
++	c.Assert(err, gc.IsNil)
++	pubkeyFiles := ssh.PublicKeyFiles()
++	c.Assert(pubkeyFiles, gc.HasLen, 1)
++	data, err := ioutil.ReadFile(pubkeyFiles[0])
++	c.Assert(err, gc.IsNil)
++	prefix := strings.Trim(string(data), "\n") + "\n"
++
++	writeFile(c, filepath.Join(s.dotssh, "id_rsa.pub"), "id_rsa")
++	writeFile(c, filepath.Join(s.dotssh, "test.pub"), "test")
++	keys, err := config.ReadAuthorizedKeys("")
++	c.Assert(err, gc.IsNil)
++	c.Assert(keys, gc.Equals, prefix+"id_rsa\n")
++	keys, err = config.ReadAuthorizedKeys("test.pub")
++	c.Assert(err, gc.IsNil)
++	c.Assert(keys, gc.Equals, prefix+"test\n")
++	keys, err = config.ReadAuthorizedKeys("notthere.pub")
++	c.Assert(err, gc.IsNil)
++	c.Assert(keys, gc.Equals, prefix)
++}
 === modified file 'environs/config/config.go'
 --- environs/config/config.go	2014-01-03 03:35:25 +0000
 +++ environs/config/config.go	2014-01-14 03:36:18 +0000
@@ -18,6 +18,7 @@
  	"launchpad.net/juju-core/charm"
  	"launchpad.net/juju-core/juju/osenv"
  	"launchpad.net/juju-core/schema"
++	"launchpad.net/juju-core/utils"
  	"launchpad.net/juju-core/version"
+ )
@@ -318,7 +319,10 @@
+ 		}
  		path = defaultPath
+ 	}
--	path = expandTilde(path)
++	path, err := utils.NormalizePath(path)
++	if err != nil {
++		return err
++	}
  	if !filepath.IsAbs(path) {
  		path = JujuHomePath(path)
+ 	}
 === modified file 'juju/conn.go'
 --- juju/conn.go	2013-12-19 21:17:26 +0000
 +++ juju/conn.go	2014-01-14 03:36:18 +0000
@@ -12,7 +12,6 @@
  	"io/ioutil"
  	"net/url"
  	"os"
--	"path/filepath"
  	"time"
  	"launchpad.net/juju-core/charm"
@@ -24,6 +23,7 @@
  	"launchpad.net/juju-core/log"
  	"launchpad.net/juju-core/state"
  	"launchpad.net/juju-core/utils"
++	"launchpad.net/juju-core/utils/ssh"
+ )
  // Conn holds a connection to a juju environment and its
@@ -253,8 +253,8 @@
  	return sch, nil
+ }
--// InitJujuHome initializes the charm and environs/config packages to use
--// default paths based on the $JUJU_HOME or $HOME environment variables.
++// InitJujuHome initializes the charm, environs/config and utils/ssh packages
++// to use default paths based on the $JUJU_HOME or $HOME environment variables.
  // This function should be called before calling NewConn or Conn.Deploy.
  func InitJujuHome() error {
  	jujuHome := osenv.JujuHomeDir()
@@ -263,6 +263,9 @@
  			"cannot determine juju home, required environment variables are not set")
+ 	}
  	config.SetJujuHome(jujuHome)
--	charm.CacheDir = filepath.Join(jujuHome, "charmcache")
++	charm.CacheDir = config.JujuHomePath("charmcache")
++	if err := ssh.LoadClientKeys(config.JujuHomePath("ssh")); err != nil {
++		return fmt.Errorf("cannot load ssh client keys: %v", err)
++	}
  	return nil
+ }
 === modified file 'juju/conn_test.go'
 --- juju/conn_test.go	2013-12-20 09:25:57 +0000
 +++ juju/conn_test.go	2014-01-14 03:36:18 +0000
@@ -657,18 +657,20 @@
+ }
  func (s *InitJujuHomeSuite) TestJujuHome(c *gc.C) {
--	os.Setenv("JUJU_HOME", "/my/juju/home")
++	jujuHome := c.MkDir()
++	os.Setenv("JUJU_HOME", jujuHome)
  	err := juju.InitJujuHome()
  	c.Assert(err, gc.IsNil)
--	c.Assert(config.JujuHome(), gc.Equals, "/my/juju/home")
++	c.Assert(config.JujuHome(), gc.Equals, jujuHome)
+ }
  func (s *InitJujuHomeSuite) TestHome(c *gc.C) {
++	osHome := c.MkDir()
  	os.Setenv("JUJU_HOME", "")
--	osenv.SetHome("/my/home/")
++	osenv.SetHome(osHome)
  	err := juju.InitJujuHome()
  	c.Assert(err, gc.IsNil)
--	c.Assert(config.JujuHome(), gc.Equals, "/my/home/.juju")
++	c.Assert(config.JujuHome(), gc.Equals, filepath.Join(osHome, ".juju"))
+ }
  func (s *InitJujuHomeSuite) TestError(c *gc.C) {
@@ -679,9 +681,10 @@
+ }
  func (s *InitJujuHomeSuite) TestCacheDir(c *gc.C) {
--	os.Setenv("JUJU_HOME", "/foo/bar")
++	jujuHome := c.MkDir()
++	os.Setenv("JUJU_HOME", jujuHome)
  	c.Assert(charm.CacheDir, gc.Equals, "")
  	err := juju.InitJujuHome()
  	c.Assert(err, gc.IsNil)
--	c.Assert(charm.CacheDir, gc.Equals, "/foo/bar/charmcache")
++	c.Assert(charm.CacheDir, gc.Equals, filepath.Join(jujuHome, "charmcache"))
+ }
 === modified file 'utils/ssh/authorisedkeys.go'
 --- utils/ssh/authorisedkeys.go	2014-01-10 02:42:02 +0000
 +++ utils/ssh/authorisedkeys.go	2014-01-14 03:36:18 +0000
@@ -20,7 +20,7 @@
  	"launchpad.net/juju-core/utils"
+ )
--var logger = loggo.GetLogger("juju.ssh")
++var logger = loggo.GetLogger("juju.utils.ssh")
  type ListMode bool
 === added file 'utils/ssh/clientkeys.go'
 --- utils/ssh/clientkeys.go	1970-01-01 00:00:00 +0000
 +++ utils/ssh/clientkeys.go	2014-01-14 03:36:18 +0000
@@ -0,0 +1,184 @@
++// Copyright 2014 Canonical Ltd.
++// Licensed under the AGPLv3, see LICENCE file for details.
++
++package ssh
++
++import (
++	"fmt"
++	"io/ioutil"
++	"os"
++	"path/filepath"
++	"strings"
++	"sync"
++
++	"code.google.com/p/go.crypto/ssh"
++
++	"launchpad.net/juju-core/utils"
++	"launchpad.net/juju-core/utils/set"
++)
++
++const clientKeyName = "juju_id_rsa"
++
++// PublicKeySuffix is the file extension for public key files.
++const PublicKeySuffix = ".pub"
++
++var (
++	clientKeysMutex sync.Mutex
++
++	// clientKeys is a cached map of private key filenames
++	// to ssh.Signers. The private keys are those loaded
++	// from the client key directory, passed to LoadClientKeys.
++	clientKeys map[string]ssh.Signer
++)
++
++// LoadClientKeys loads the client SSH keys from the
++// specified directory, and caches them as a process-wide
++// global. If the directory does not exist, it is created;
++// if the directory did not exist, or contains no keys, it
++// is populated with a new key pair.
++//
++// If the directory exists, then all pairs of files where one
++// has the same name as the other + ".pub" will be loaded as
++// private/public key pairs.
++//
++// Calls to LoadClientKeys will clear the previously loaded
++// keys, and recompute the keys.
++func LoadClientKeys(dir string) error {
++	clientKeysMutex.Lock()
++	defer clientKeysMutex.Unlock()
++	dir, err := utils.NormalizePath(dir)
++	if err != nil {
++		return err
++	}
++	if _, err := os.Stat(dir); err == nil {
++		keys, err := loadClientKeys(dir)
++		if err != nil {
++			return err
++		} else if len(keys) > 0 {
++			clientKeys = keys
++			return nil
++		}
++		// Directory exists but contains no keys;
++		// fall through and create one.
++	}
++	if err := os.MkdirAll(dir, 0700); err != nil {
++		return err
++	}
++	keyfile, key, err := generateClientKey(dir)
++	if err != nil {
++		os.RemoveAll(dir)
++		return err
++	}
++	clientKeys = map[string]ssh.Signer{keyfile: key}
++	return nil
++}
++
++// ClearClientKeys clears the client keys cached in memory.
++func ClearClientKeys() {
++	clientKeysMutex.Lock()
++	defer clientKeysMutex.Unlock()
++	clientKeys = nil
++}
++
++func generateClientKey(dir string) (keyfile string, key ssh.Signer, err error) {
++	private, public, err := GenerateKey("juju-client-key")
++	if err != nil {
++		return "", nil, err
++	}
++	clientPrivateKey, err := ssh.ParsePrivateKey([]byte(private))
++	if err != nil {
++		return "", nil, err
++	}
++	privkeyFilename := filepath.Join(dir, clientKeyName)
++	if err = ioutil.WriteFile(privkeyFilename, []byte(private), 0600); err != nil {
++		return "", nil, err
++	}
++	if err := ioutil.WriteFile(privkeyFilename+PublicKeySuffix, []byte(public), 0600); err != nil {
++		os.Remove(privkeyFilename)
++		return "", nil, err
++	}
++	return privkeyFilename, clientPrivateKey, nil
++}
++
++func loadClientKeys(dir string) (map[string]ssh.Signer, error) {
++	publicKeyFiles, err := publicKeyFiles(dir)
++	if err != nil {
++		return nil, err
++	}
++	keys := make(map[string]ssh.Signer, len(publicKeyFiles))
++	for _, filename := range publicKeyFiles {
++		filename = filename[:len(filename)-len(PublicKeySuffix)]
++		data, err := ioutil.ReadFile(filename)
++		if err != nil {
++			return nil, err
++		}
++		keys[filename], err = ssh.ParsePrivateKey(data)
++		if err != nil {
++			return nil, fmt.Errorf("parsing key file %q: %v", filename, err)
++		}
++	}
++	return keys, nil
++}
++
++// privateKeys returns the private keys loaded by LoadClientKeys.
++func privateKeys() (signers []ssh.Signer) {
++	clientKeysMutex.Lock()
++	defer clientKeysMutex.Unlock()
++	for _, key := range clientKeys {
++		signers = append(signers, key)
++	}
++	return signers
++}
++
++// PrivateKeyFiles returns the filenames of private SSH keys loaded by
++// LoadClientKeys.
++func PrivateKeyFiles() []string {
++	clientKeysMutex.Lock()
++	defer clientKeysMutex.Unlock()
++	keyfiles := make([]string, 0, len(clientKeys))
++	for f := range clientKeys {
++		keyfiles = append(keyfiles, f)
++	}
++	return keyfiles
++}
++
++// PublicKeyFiles returns the filenames of public SSH keys loaded by
++// LoadClientKeys.
++func PublicKeyFiles() []string {
++	privkeys := PrivateKeyFiles()
++	pubkeys := make([]string, len(privkeys))
++	for i, priv := range privkeys {
++		pubkeys[i] = priv + PublicKeySuffix
++	}
++	return pubkeys
++}
++
++// publicKeyFiles returns the filenames of public SSH keys
++// in the specified directory (all the files ending with .pub).
++func publicKeyFiles(clientKeysDir string) ([]string, error) {
++	if clientKeysDir == "" {
++		return nil, nil
++	}
++	var keys []string
++	dir, err := os.Open(clientKeysDir)
++	if err != nil {
++		return nil, err
++	}
++	names, err := dir.Readdirnames(-1)
++	dir.Close()
++	if err != nil {
++		return nil, err
++	}
++	candidates := set.NewStrings(names...)
++	for _, name := range names {
++		if !strings.HasSuffix(name, PublicKeySuffix) {
++			continue
++		}
++		// If the private key filename also exists, add the file.
++		priv := name[:len(name)-len(PublicKeySuffix)]
++		if candidates.Contains(priv) {
++			keys = append(keys, filepath.Join(dir.Name(), name))
++		}
++	}
++	return keys, nil
++}
 === added file 'utils/ssh/clientkeys_test.go'
 --- utils/ssh/clientkeys_test.go	1970-01-01 00:00:00 +0000
 +++ utils/ssh/clientkeys_test.go	2014-01-14 03:36:18 +0000
@@ -0,0 +1,108 @@
++// Copyright 2013 Canonical Ltd.
++// Licensed under the AGPLv3, see LICENCE file for details.
++
++package ssh_test
++
++import (
++	"io/ioutil"
++	"os"
++
++	gc "launchpad.net/gocheck"
++
++	"launchpad.net/juju-core/environs/config"
++	"launchpad.net/juju-core/testing"
++	jc "launchpad.net/juju-core/testing/checkers"
++	"launchpad.net/juju-core/testing/testbase"
++	"launchpad.net/juju-core/utils"
++	"launchpad.net/juju-core/utils/ssh"
++)
++
++type ClientKeysSuite struct {
++	testbase.LoggingSuite
++}
++
++var _ = gc.Suite(&ClientKeysSuite{})
++
++func (s *ClientKeysSuite) SetUpTest(c *gc.C) {
++	s.LoggingSuite.SetUpTest(c)
++	fakeHome := testing.MakeEmptyFakeHome(c)
++	s.AddCleanup(func(*gc.C) { fakeHome.Restore() })
++	s.AddCleanup(func(*gc.C) { ssh.ClearClientKeys() })
++}
++
++func checkFiles(c *gc.C, obtained, expected []string) {
++	var err error
++	for i, e := range expected {
++		expected[i], err = utils.NormalizePath(e)
++		c.Assert(err, gc.IsNil)
++	}
++	c.Assert(obtained, jc.SameContents, expected)
++}
++
++func checkPublicKeyFiles(c *gc.C, expected ...string) {
++	keys := ssh.PublicKeyFiles()
++	checkFiles(c, keys, expected)
++}
++
++func checkPrivateKeyFiles(c *gc.C, expected ...string) {
++	keys := ssh.PrivateKeyFiles()
++	checkFiles(c, keys, expected)
++}
++
++func (s *ClientKeysSuite) TestPublicKeyFiles(c *gc.C) {
++	// LoadClientKeys will create the specified directory
++	// and populate it with a key pair.
++	err := ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	checkPublicKeyFiles(c, "~/.juju/ssh/juju_id_rsa.pub")
++	// All files ending with .pub in the client key dir get picked up.
++	priv, pub, err := ssh.GenerateKey("whatever")
++	c.Assert(err, gc.IsNil)
++	err = ioutil.WriteFile(config.JujuHomePath("ssh", "whatever.pub"), []byte(pub), 0600)
++	c.Assert(err, gc.IsNil)
++	err = ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	// The new public key won't be observed until the
++	// corresponding private key exists.
++	checkPublicKeyFiles(c, "~/.juju/ssh/juju_id_rsa.pub")
++	err = ioutil.WriteFile(config.JujuHomePath("ssh", "whatever"), []byte(priv), 0600)
++	c.Assert(err, gc.IsNil)
++	err = ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	checkPublicKeyFiles(c, "~/.juju/ssh/juju_id_rsa.pub", "~/.juju/ssh/whatever.pub")
++}
++
++func (s *ClientKeysSuite) TestPrivateKeyFiles(c *gc.C) {
++	// Create/load client keys. They will be cached in memory:
++	// any files added to the directory will not be considered
++	// unless LoadClientKeys is called again.
++	err := ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	checkPrivateKeyFiles(c, "~/.juju/ssh/juju_id_rsa")
++	priv, pub, err := ssh.GenerateKey("whatever")
++	c.Assert(err, gc.IsNil)
++	err = ioutil.WriteFile(config.JujuHomePath("ssh", "whatever"), []byte(priv), 0600)
++	c.Assert(err, gc.IsNil)
++	err = ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	// The new private key won't be observed until the
++	// corresponding public key exists.
++	checkPrivateKeyFiles(c, "~/.juju/ssh/juju_id_rsa")
++	err = ioutil.WriteFile(config.JujuHomePath("ssh", "whatever.pub"), []byte(pub), 0600)
++	c.Assert(err, gc.IsNil)
++	// new keys won't be reported until we call LoadClientKeys again
++	checkPublicKeyFiles(c, "~/.juju/ssh/juju_id_rsa.pub")
++	checkPrivateKeyFiles(c, "~/.juju/ssh/juju_id_rsa")
++	err = ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	checkPublicKeyFiles(c, "~/.juju/ssh/juju_id_rsa.pub", "~/.juju/ssh/whatever.pub")
++	checkPrivateKeyFiles(c, "~/.juju/ssh/juju_id_rsa", "~/.juju/ssh/whatever")
++}
++
++func (s *ClientKeysSuite) TestLoadClientKeysDirExists(c *gc.C) {
++	err := os.MkdirAll(config.JujuHomePath("ssh"), 0755)
++	c.Assert(err, gc.IsNil)
++	err = ssh.LoadClientKeys("~/.juju/ssh")
++	c.Assert(err, gc.IsNil)
++	checkPrivateKeyFiles(c, "~/.juju/ssh/juju_id_rsa")
++}