sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-05 09:18:06 +03:00
Code
3de528753a
samba-mirror/selftest/target/Samba3.pm

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

4322 lines
114 KiB
Perl
Raw Normal View History

r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
#!/usr/bin/perl
# Bootstrap Samba and run a number of tests against it.
# Copyright (C) 2005-2007 Jelmer Vernooij <jelmer@samba.org>
# Published under the GNU GPL, v3 or later.
selftest: Add README note: always use --configfile in testenv creation We always need to specify "env->{CONFIGURATION}" when running a samba-tool command to setup a testenv. Add a note to the README as this wasn't at all clear. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2018-11-09 01:44:18 +03:00
# NOTE: Refer to the README for more details about the various testenvs,
# and tips about adding new testenvs.
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
package Samba3;
use strict;
selftest: enable perl warnings After this we will see more noise with each test run, and these warnings will be addressed in following commits. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-12-07 12:37:00 +03:00
use warnings;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
use Cwd qw(abs_path);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
use FindBin qw($RealBin);
r24873: Print smbd/nmbd log files for Samba 3. (This used to be commit 8dad4c5503b2987bdf44324301a067063d48495f)
2007-09-02 03:11:48 +04:00
use POSIX;
selftest: Make bindir_path much less complex There is no need to pass it as a function pointer, just put it in 'Samba.pm'. Andrew Bartlett
2011-04-27 05:19:20 +04:00
use target::Samba;
s3:tests: Add blackbox test for 'net usershare' Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2017-06-22 15:17:07 +03:00
use File::Path 'remove_tree';
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest/target: create return_alias_env function for Samba3.pm This will allow us easily create lightweight alias environments like ad_dc_smb1_done etc. Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-17 18:18:06 +03:00
sub return_alias_env
{
my ($self, $path, $env) = @_;
# just an alias
return $env;
}
selftest: skip targets that are not compiled in if we do not have ADS
2012-02-14 02:04:16 +04:00
sub have_ads($) {
selftest: Fix selftest to check ADS functionalty again This was found by looking over the lcov output on build.samba.org The new have_ads() check also now dies if it cannot run smbd, to avoid this in future. Andrew Bartlett
2012-02-18 03:35:24 +04:00
my ($self) = @_;
selftest: skip targets that are not compiled in if we do not have ADS
2012-02-14 02:04:16 +04:00
my $found_ads = 0;
selftest: Specify /dev/null as the smbd config file smbd will require a smb.conf later. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-01-12 12:07:56 +03:00
my $smbd_build_options = Samba::bindir_path($self, "smbd") . " --configfile=/dev/null -b|";
selftest: Fix selftest to check ADS functionalty again This was found by looking over the lcov output on build.samba.org The new have_ads() check also now dies if it cannot run smbd, to avoid this in future. Andrew Bartlett
2012-02-18 03:35:24 +04:00
open(IN, $smbd_build_options) or die("Unable to run $smbd_build_options: $!");
while (<IN>) {
if (/WITH_ADS/) {
$found_ads = 1;
}
}
close IN;
selftest: skip targets that are not compiled in if we do not have ADS
2012-02-14 02:04:16 +04:00
# If we were not built with ADS support, pretend we were never even available
selftest: Print error message when smbd does not have ADS support When smbd cannot be compiled with ADS support, setting up the s3member environment fails with: samba: using 'standard' process model Samba can't provide environment 's3member' at /test/samba/selftest/target/Samba.pm line 44. Can't use string ("UNKNOWN") as a HASH ref while "strict refs" in use at /test/samba/selftest/selftest.pl line 852. samba: EOF on stdin - terminating Add an explicit error message for the missing ADS support to make this easier to debug and also avoid the warning about the hash reference: samba: using 'standard' process model Samba can't provide environment 's3member' at /test/samba/selftest/target/Samba.pm line 44. Unable to setup environment s3member at /test/samba/selftest/selftest.pl line 851. smbd does not have ADS support samba: EOF on stdin - terminating Signed-off-by: Christof Schmitt <christof.schmitt@us.ibm.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Jul 27 08:31:14 CEST 2013 on sn-devel-104
2013-07-03 23:49:43 +04:00
print "smbd does not have ADS support\n" unless $found_ads;
selftest: skip targets that are not compiled in if we do not have ADS
2012-02-14 02:04:16 +04:00
return $found_ads;
}
selftest/s3: expose share with FS applicable config Attempt to determine the underlying test share filesystem using statfs. If the filesystem is detected and an applicable configuration is available, then apply it to a new filesystem specific share. Btrfs is currently the only VFS module to utilize this logic. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-11-18 17:54:26 +04:00
# return smb.conf parameters applicable to @path, based on the underlying
# filesystem type
sub get_fs_specific_conf($$)
{
my ($self, $path) = @_;
my $mods = "";
my $stat_out = `stat --file-system $path` or return "";
if ($stat_out =~ m/Type:\s+btrfs/) {
selftest: enable alternate streams for fs_specific share This ensures that the new "smb2.ioctl.copy-chunk streams" test passes when run under selftest atop Btrfs. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-17 13:54:15 +03:00
$mods .= "streams_xattr btrfs";
selftest/s3: expose share with FS applicable config Attempt to determine the underlying test share filesystem using statfs. If the filesystem is detected and an applicable configuration is available, then apply it to a new filesystem specific share. Btrfs is currently the only VFS module to utilize this logic. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-11-18 17:54:26 +04:00
}
if ($mods) {
return "vfs objects = $mods";
}
selftest/s3: prefer empty string over undef to add nothing to config To fix a warning. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-12-07 13:08:48 +03:00
return '';
selftest/s3: expose share with FS applicable config Attempt to determine the underlying test share filesystem using statfs. If the filesystem is detected and an applicable configuration is available, then apply it to a new filesystem specific share. Btrfs is currently the only VFS module to utilize this logic. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-11-18 17:54:26 +04:00
}
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
sub new($$) {
selftest: create pcap files for invidual env services Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 23:53:39 +03:00
my ($classname, $SambaCtx, $bindir, $srcdir, $server_maxtime) = @_;
selftest: Provide a single bindir_path function across all targets This will allow a mapping to be made between things like smbtorture4 -> smbtorture that is correct for the different build environments. Andrew Bartlett
2011-04-15 06:27:30 +04:00
my $self = { vars => {},
selftest: create pcap files for invidual env services Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 23:53:39 +03:00
SambaCtx => $SambaCtx,
selftest: Provide a single bindir_path function across all targets This will allow a mapping to be made between things like smbtorture4 -> smbtorture that is correct for the different build environments. Andrew Bartlett
2011-04-15 06:27:30 +04:00
bindir => $bindir,
srcdir => $srcdir,
selftest Consolidate server wall clock time limits This helps ensure that we don't have the Samba3 servers stop before the full make test is finished. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 19 09:03:07 CEST 2011 on sn-devel-104
2011-04-19 07:50:40 +04:00
server_maxtime => $server_maxtime
selftest pass in srcdir into Samba3 target module
2011-02-22 03:56:18 +03:00
};
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
bless $self;
return $self;
}
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
sub teardown_env($$)
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
{
my ($self, $envvars) = @_;
if (defined($envvars->{CTDB_PREFIX})) {
$self->teardown_env_ctdb($envvars);
} else {
$self->teardown_env_samba($envvars);
}
return;
}
sub teardown_env_samba($$)
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
{
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my ($self, $envvars) = @_;
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
my $count = 0;
selftest/s3: expose share with FS applicable config Attempt to determine the underlying test share filesystem using statfs. If the filesystem is detected and an applicable configuration is available, then apply it to a new filesystem specific share. Btrfs is currently the only VFS module to utilize this logic. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-11-18 17:54:26 +04:00
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
# This should cause smbd to terminate gracefully
close($envvars->{STDIN_PIPE});
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
my $smbdpid = $envvars->{SMBD_TL_PID};
my $nmbdpid = $envvars->{NMBD_TL_PID};
my $winbinddpid = $envvars->{WINBINDD_TL_PID};
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
my $samba_dcerpcdpid = $envvars->{SAMBA_DCERPCD_TL_PID};
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
# This should give it time to write out the gcov data
until ($count > 20) {
selftest: Reduce time in cleanup loop, try waitpid on all 3 children
2012-03-05 04:12:00 +04:00
my $smbdchild = Samba::cleanup_child($smbdpid, "smbd");
my $nmbdchild = Samba::cleanup_child($nmbdpid, "nmbd");
my $winbinddchild = Samba::cleanup_child($winbinddpid, "winbindd");
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
my $samba_dcerpcdchild = Samba::cleanup_child(
$samba_dcerpcdpid, "samba-dcerpcd");
selftest: Reduce time in cleanup loop, try waitpid on all 3 children
2012-03-05 04:12:00 +04:00
if ($smbdchild == -1
&& $nmbdchild == -1
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
&& $winbinddchild == -1
&& $samba_dcerpcdpid == -1) {
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
last;
}
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
sleep(1);
$count++;
}
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
if ($count <= 20 &&
kill(0, $smbdpid, $nmbdpid, $winbinddpid, $samba_dcerpcdpid) == 0) {
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
return;
}
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
$self->stop_sig_term($smbdpid);
$self->stop_sig_term($nmbdpid);
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$self->stop_sig_term($winbinddpid);
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
$self->stop_sig_term($samba_dcerpcdpid);
selftest/Samba3: use the same sequence of signals to shutdown samba3 as with the shell scripts When we kill the timelimit process with SIGKILL, it can't kill its children... metze
2009-03-20 16:25:15 +03:00
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
$count = 0;
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
until ($count > 10) {
selftest: Reduce time in cleanup loop, try waitpid on all 3 children
2012-03-05 04:12:00 +04:00
my $smbdchild = Samba::cleanup_child($smbdpid, "smbd");
my $nmbdchild = Samba::cleanup_child($nmbdpid, "nmbd");
my $winbinddchild = Samba::cleanup_child($winbinddpid, "winbindd");
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
my $samba_dcerpcdpid = Samba::cleanup_child(
$samba_dcerpcdpid, "samba-dcerpcd");
selftest: Reduce time in cleanup loop, try waitpid on all 3 children
2012-03-05 04:12:00 +04:00
if ($smbdchild == -1
&& $nmbdchild == -1
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
&& $winbinddchild == -1
&& $samba_dcerpcdpid == -1) {
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
last;
}
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
sleep(1);
$count++;
}
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
if ($count <= 10 &&
kill(0, $smbdpid, $nmbdpid, $winbinddpid, $samba_dcerpcdpid) == 0) {
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
return;
}
selftest/Samba3: use the same sequence of signals to shutdown samba3 as with the shell scripts When we kill the timelimit process with SIGKILL, it can't kill its children... metze
2009-03-20 16:25:15 +03:00
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
warn("timelimit process did not quit on SIGTERM, sending SIGKILL");
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
$self->stop_sig_kill($smbdpid);
$self->stop_sig_kill($nmbdpid);
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$self->stop_sig_kill($winbinddpid);
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
$self->stop_sig_kill($samba_dcerpcdpid);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
return 0;
}
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
sub teardown_env_ctdb($$)
{
my ($self, $data) = @_;
if (defined($data->{SAMBA_NODES})) {
my $num_nodes = $data->{NUM_NODES};
my $nodes = $data->{SAMBA_NODES};
for (my $i = 0; $i < $num_nodes; $i++) {
if (defined($nodes->[$i])) {
$self->teardown_env_samba($nodes->[$i]);
}
}
}
close($data->{CTDB_STDIN_PIPE});
if (not defined($data->{SAMBA_NODES})) {
# Give waiting children time to exit
sleep(5);
}
return 0;
}
r24873: Print smbd/nmbd log files for Samba 3. (This used to be commit 8dad4c5503b2987bdf44324301a067063d48495f)
2007-09-02 03:11:48 +04:00
sub getlog_env_app($$$)
{
my ($self, $envvars, $name) = @_;
my $title = "$name LOG of: $envvars->{NETBIOSNAME}\n";
my $out = $title;
open(LOG, "<".$envvars->{$name."_TEST_LOG"});
seek(LOG, $envvars->{$name."_TEST_LOG_POS"}, SEEK_SET);
while (<LOG>) {
$out .= $_;
}
$envvars->{$name."_TEST_LOG_POS"} = tell(LOG);
close(LOG);
return "" if $out eq $title;
selftest: Fix trailing whitespace in Samba3.pm Bug: https://bugzilla.samba.org/show_bug.cgi?id=14971 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-02-08 17:34:56 +03:00
r24873: Print smbd/nmbd log files for Samba 3. (This used to be commit 8dad4c5503b2987bdf44324301a067063d48495f)
2007-09-02 03:11:48 +04:00
return $out;
}
r22337: print out the smbd log output after each test metze (This used to be commit b6b95180d3fb851264fd64eb5a0de4803ee0892a)
2007-04-18 18:02:26 +04:00
sub getlog_env($$)
{
my ($self, $envvars) = @_;
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
my $ret = "";
r22337: print out the smbd log output after each test metze (This used to be commit b6b95180d3fb851264fd64eb5a0de4803ee0892a)
2007-04-18 18:02:26 +04:00
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
$ret .= $self->getlog_env_app($envvars, "SMBD");
$ret .= $self->getlog_env_app($envvars, "NMBD");
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$ret .= $self->getlog_env_app($envvars, "WINBINDD");
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
return $ret;
r22337: print out the smbd log output after each test metze (This used to be commit b6b95180d3fb851264fd64eb5a0de4803ee0892a)
2007-04-18 18:02:26 +04:00
}
r22375: implement check_env() logic in the frontend metze (This used to be commit 0b48ca5d3ebe8fe29774d85ee15e473af8c0714d)
2007-04-19 18:54:09 +04:00
sub check_env($$)
{
my ($self, $envvars) = @_;
selftest: close stdin and wait with waitpid() for a safer exit This avoids timelimit sending kill -9 after 1 second, which may disrupt the writing of gcov data. Andrew Bartlett
2012-03-02 11:20:45 +04:00
my $childpid = waitpid(-1, WNOHANG);
r22375: implement check_env() logic in the frontend metze (This used to be commit 0b48ca5d3ebe8fe29774d85ee15e473af8c0714d)
2007-04-19 18:54:09 +04:00
# TODO ...
return 1;
}
selftest: move to declaratively specifying environments and their dependencies This removes the tangle of code for starting up dependencies, and allows selftest.pl to query dependencies (hence it can know when things can be shut down early and how to order environments for optimal memory usage - that patch not yet submitted). It also removes the slightly hacky special-casing of the ad_members, and sets $target->{vars} centrally (so each setup_ function does not need to). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-21 03:33:49 +03:00
# Declare the environments Samba3 makes available.
# To be set up, they will be called as
# samba3->setup_$envname($self, $path, $dep_1_vars, $dep_2_vars, ...)
%Samba3::ENV_DEPS = (
# name => [dep_1, dep_2, ...],
nt4_dc => [],
selftest/target: Create new nt4_dc_smb1 environment Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-13 13:22:36 +03:00
nt4_dc_smb1 => [],
selftest/target: Create nt4_dc_smb1_done env (alias for nt4_dc_smb1) Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-17 18:22:42 +03:00
nt4_dc_smb1_done => ["nt4_dc_smb1"],
selftest: move to declaratively specifying environments and their dependencies This removes the tangle of code for starting up dependencies, and allows selftest.pl to query dependencies (hence it can know when things can be shut down early and how to order environments for optimal memory usage - that patch not yet submitted). It also removes the slightly hacky special-casing of the ad_members, and sets $target->{vars} centrally (so each setup_ function does not need to). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-21 03:33:49 +03:00
nt4_dc_schannel => [],
simpleserver => [],
fileserver => [],
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
fileserver_smb1 => [],
selftest/target: Add new alias environment fileserver_smb1_done setup_fileserver_smb1_done is an alias for setup_fileserver_smb1 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-17 18:26:08 +03:00
fileserver_smb1_done => ["fileserver_smb1"],
selftest: move to declaratively specifying environments and their dependencies This removes the tangle of code for starting up dependencies, and allows selftest.pl to query dependencies (hence it can know when things can be shut down early and how to order environments for optimal memory usage - that patch not yet submitted). It also removes the slightly hacky special-casing of the ad_members, and sets $target->{vars} centrally (so each setup_ function does not need to). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-21 03:33:49 +03:00
maptoguest => [],
ktest => [],
nt4_member => ["nt4_dc"],
selftest: Export TRUST information in the ad_member target environment BUG: https://bugzilla.samba.org/show_bug.cgi?id=14124 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2017-03-20 13:39:41 +03:00
ad_member => ["ad_dc", "fl2008r2dc", "fl2003dc"],
selftest: move to declaratively specifying environments and their dependencies This removes the tangle of code for starting up dependencies, and allows selftest.pl to query dependencies (hence it can know when things can be shut down early and how to order environments for optimal memory usage - that patch not yet submitted). It also removes the slightly hacky special-casing of the ad_members, and sets $target->{vars} centrally (so each setup_ function does not need to). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-21 03:33:49 +03:00
ad_member_rfc2307 => ["ad_dc_ntvfs"],
ad_member_idmap_rid => ["ad_dc"],
selftest: Add ad member with idmap_autorid backend Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2022-02-15 11:44:34 +03:00
admem_idmap_autorid => ["ad_dc"],
selftest: Use fl2008r2dc for ad_member_idmap_ad fl2008r2dc already has a trusted domain. That will be used to use idmap_ad for querying idmap attributes from the trusted domain. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13903 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2019-04-18 02:12:27 +03:00
ad_member_idmap_ad => ["fl2008r2dc"],
selftest: Add ad_member_fips target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:35 +03:00
ad_member_fips => ["ad_dc_fips"],
selftest: Rename offline logon env to ad_member_offlogon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed May 19 20:01:00 UTC 2021 on sn-devel-184
2021-05-19 09:18:22 +03:00
ad_member_offlogon => ["ad_dc"],
selftest: Add test for one-way trust wbinfo auth Signed-off-by: Isaac Boukris <iboukris@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Wed Jul 7 15:01:22 UTC 2021 on sn-devel-184
2020-10-08 15:00:44 +03:00
ad_member_oneway => ["fl2000dc"],
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
ad_member_idmap_nss => ["ad_dc"],
CI: join ad_member_s3_join to vampire_dc Currently ad_member_s3_join is only used for testing samba-tool join and that'll work just fine being joined to vampire_dc instead of ad_dc. vampire_dc is an additional DC in the SAMBADOMAIN "started" by ad_dc_ntvfs, so by joining ad_member_s3_join to the SAMBADOMAIN, it is member of a domain with more then one DC. Subsequently I'll add a test that needs such an environment. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-11-23 16:10:36 +03:00
ad_member_s3_join => ["vampire_dc"],
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
test: Get the clusteredmember environment out of its smb1 corner Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Fri Oct 16 18:30:18 UTC 2020 on sn-devel-184
2020-10-16 17:09:33 +03:00
clusteredmember => ["nt4_dc"],
selftest: move to declaratively specifying environments and their dependencies This removes the tangle of code for starting up dependencies, and allows selftest.pl to query dependencies (hence it can know when things can be shut down early and how to order environments for optimal memory usage - that patch not yet submitted). It also removes the slightly hacky special-casing of the ad_members, and sets $target->{vars} centrally (so each setup_ function does not need to). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-21 03:33:49 +03:00
);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
selftest: Add new 2-DC testenv for live schema upgrade This adds a new 2-DC testenv that: 1. Provisions an AD DC with 2008R2 schema 2. Joins another AD DC with 2008R2 schema 3. Starts Samba 4. Performs a live schema upgrade on the PDC Testenv targetting in tests.py files for this testenv required that we extend the environment dependencies system to include optional post-startup dependencies specified in ENV_DEPS_POST maps. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Signed-off-by: Aaron Haslett <aaronhaslett@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2019-01-17 07:18:48 +03:00
%Samba3::ENV_DEPS_POST = ();
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_nt4_dc
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
{
selftest: fix domain name of nt4_dc_smb1 environment It had the same workgroup as the nt4_dc environment: $ grep workgroup st/nt4_dc/lib/server.conf st/nt4_dc_smb1/lib/server.conf st/nt4_dc/lib/server.conf: workgroup = SAMBA-TEST st/nt4_dc_smb1/lib/server.conf: workgroup = SAMBA-TEST BUG: https://bugzilla.samba.org/show_bug.cgi?id=15533 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2024-01-10 20:13:46 +03:00
my ($self, $path, $more_conf, $domain, $server) = @_;
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest: rename env s3dc to nt4_dc Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-03-06 11:34:11 +03:00
print "PROVISIONING NT4 DC...";
selftest: abstract Samba3 provision a bit metze
2009-01-28 22:30:16 +03:00
selftest: rename env s3dc to nt4_dc Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-03-06 11:34:11 +03:00
my $nt4_dc_options = "
selftest: abstract Samba3 provision a bit metze
2009-01-28 22:30:16 +03:00
domain master = yes
domain logons = yes
s3-selftest: need to enable lanman auth in order make RPC-SAMR-PASSWORDS pass. Guenther
2009-05-08 02:18:28 +04:00
lanman auth = yes
selftest: set "ntlm auth = yes" for now as a lot of tests rely on it In future we should use a mix of environments some which support ntlmv1 and some without. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-07-21 10:26:27 +03:00
ntlm auth = yes
CVE-2016-2111: selftest:Samba3: use "raw NTLMv2 auth = yes" for nt4_dc BUG: https://bugzilla.samba.org/show_bug.cgi?id=11749 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2016-03-27 00:08:38 +03:00
raw NTLMv2 auth = yes
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
rpc start on demand helpers = false
selftest: Only run s3dc with a forked lsasd This ensures that we run ktest, member and s3member in the default configuration, to try and cover both code paths. (This does not change the tests being run, but at least the initialisation code will be checked, plus whatever the rpcclient test can cover). Andrew Bartlett
2012-03-06 15:04:55 +04:00
CVE-2022-38023 selftest:Samba3: avoid global 'server schannel = auto' Instead of using the generic deprecated option use the specific server require schannel:COMPUTERACCOUNT = no in order to allow legacy tests for pass. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15240 Signed-off-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-12-22 18:46:15 +03:00
CVE_2020_1472:warn_about_unused_debug_level = 3
server require schannel:schannel0\$ = no
server require schannel:schannel1\$ = no
server require schannel:schannel2\$ = no
server require schannel:schannel3\$ = no
server require schannel:schannel4\$ = no
server require schannel:schannel5\$ = no
server require schannel:schannel6\$ = no
server require schannel:schannel7\$ = no
server require schannel:schannel8\$ = no
server require schannel:schannel9\$ = no
server require schannel:schannel10\$ = no
server require schannel:schannel11\$ = no
server require schannel:torturetest\$ = no
CVE-2022-38023 s3:rpc_server/netlogon: Use dcesrv_netr_creds_server_step_check() After s3 and s4 rpc servers merge we can avoid duplicated code. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15240 Signed-off-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-12-22 18:30:26 +03:00
server schannel require seal:schannel0\$ = no
server schannel require seal:schannel1\$ = no
server schannel require seal:schannel2\$ = no
server schannel require seal:schannel3\$ = no
server schannel require seal:schannel4\$ = no
server schannel require seal:schannel5\$ = no
server schannel require seal:schannel6\$ = no
server schannel require seal:schannel7\$ = no
server schannel require seal:schannel8\$ = no
server schannel require seal:schannel9\$ = no
server schannel require seal:schannel10\$ = no
server schannel require seal:schannel11\$ = no
server schannel require seal:torturetest\$ = no
selftest/Samba3: let nt4_dc* use vfs_default:VFS_OPEN_HOW_RESOLVE_NO_SYMLINKS=no We should always test the code path without openat2 being available, even if the kernel supports it. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Mon Aug 15 16:00:26 UTC 2022 on sn-devel-184
2022-08-12 11:55:42 +03:00
vfs_default:VFS_OPEN_HOW_RESOLVE_NO_SYMLINKS = no
selftest: add snapshot share configuration Define a share that uses both vfs_shell_snap and fake_snap.pl to create, delete and expose fake snapshots in response to FSRVP requests. Additionally test snapshot enumeration and access via the shadow_copy2 module. Allow for simple testing of FSRVP message sequence timeouts, by specifying an artificially small interval. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-15 02:42:35 +04:00
fss: sequence timeout = 1
s3/smbd: fix handling of delete-on-close on directories This implements a check to test the delete-on-close flag of a directory for requests to create files in this directory. Windows server implement this check, Samba doesn't as it has performance implications. This commit implements the check and a new option to control it. By default the check is skipped, setting "check parent directory delete on close = yes" enables it. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Sat Feb 3 23:42:16 CET 2018 on sn-devel-144
2018-01-11 19:52:06 +03:00
check parent directory delete on close = yes
selftest: abstract Samba3 provision a bit metze
2009-01-28 22:30:16 +03:00
";
selftest/target: Create new nt4_dc_smb1 environment Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-13 13:22:36 +03:00
if (defined($more_conf)) {
$nt4_dc_options = $nt4_dc_options . $more_conf;
}
selftest: fix domain name of nt4_dc_smb1 environment It had the same workgroup as the nt4_dc environment: $ grep workgroup st/nt4_dc/lib/server.conf st/nt4_dc_smb1/lib/server.conf st/nt4_dc/lib/server.conf: workgroup = SAMBA-TEST st/nt4_dc_smb1/lib/server.conf: workgroup = SAMBA-TEST BUG: https://bugzilla.samba.org/show_bug.cgi?id=15533 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2024-01-10 20:13:46 +03:00
if (!defined($domain)) {
$domain = "SAMBA-TEST";
}
selftest/target: Create new nt4_dc_smb1 environment Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-13 13:22:36 +03:00
if (!defined($server)) {
$server = "LOCALNT4DC2";
}
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $vars = $self->provision(
prefix => $path,
selftest: fix domain name of nt4_dc_smb1 environment It had the same workgroup as the nt4_dc environment: $ grep workgroup st/nt4_dc/lib/server.conf st/nt4_dc_smb1/lib/server.conf st/nt4_dc/lib/server.conf: workgroup = SAMBA-TEST st/nt4_dc_smb1/lib/server.conf: workgroup = SAMBA-TEST BUG: https://bugzilla.samba.org/show_bug.cgi?id=15533 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2024-01-10 20:13:46 +03:00
domain => $domain,
selftest/target: Create new nt4_dc_smb1 environment Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-13 13:22:36 +03:00
server => $server,
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
password => "localntdc2pass",
extra_options => $nt4_dc_options);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
$vars or return undef;
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $vars,
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
samba_dcerpcd => "yes",
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
return undef;
}
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$vars->{DOMSID} = $vars->{SAMSID};
s3-selftest convert tests.sh to python This should allow us a much better chance of invoking the subunit wrappers in the right way, at the right level. Andrew Bartlett
2011-02-21 08:01:44 +03:00
$vars->{DC_SERVER} = $vars->{SERVER};
$vars->{DC_SERVER_IP} = $vars->{SERVER_IP};
selftest/Samba3: also bind to ipv6 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-06-19 19:21:16 +04:00
$vars->{DC_SERVER_IPV6} = $vars->{SERVER_IPV6};
s3-selftest convert tests.sh to python This should allow us a much better chance of invoking the subunit wrappers in the right way, at the right level. Andrew Bartlett
2011-02-21 08:01:44 +03:00
$vars->{DC_NETBIOSNAME} = $vars->{NETBIOSNAME};
$vars->{DC_USERNAME} = $vars->{USERNAME};
$vars->{DC_PASSWORD} = $vars->{PASSWORD};
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
return $vars;
}
selftest/target: Create new nt4_dc_smb1 environment Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-13 13:22:36 +03:00
sub setup_nt4_dc_smb1
{
my ($self, $path) = @_;
my $conf = "
[global]
client min protocol = CORE
server min protocol = LANMAN1
";
selftest: fix domain name of nt4_dc_smb1 environment It had the same workgroup as the nt4_dc environment: $ grep workgroup st/nt4_dc/lib/server.conf st/nt4_dc_smb1/lib/server.conf st/nt4_dc/lib/server.conf: workgroup = SAMBA-TEST st/nt4_dc_smb1/lib/server.conf: workgroup = SAMBA-TEST BUG: https://bugzilla.samba.org/show_bug.cgi?id=15533 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2024-01-10 20:13:46 +03:00
return $self->setup_nt4_dc($path, $conf, "NT4SMB1", "LCLNT4DC2SMB1");
selftest/target: Create new nt4_dc_smb1 environment Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-13 13:22:36 +03:00
}
selftest/target: Create nt4_dc_smb1_done env (alias for nt4_dc_smb1) Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-17 18:22:42 +03:00
sub setup_nt4_dc_smb1_done
{
my ($self, $path, $dep_env) = @_;
return $self->return_alias_env($path, $dep_env);
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_nt4_dc_schannel
torture: Add netr_setPassword(2) schannel test. Thanks to Florian Weimer <fweimer@redhat.com> for the help to write this torture test. Pair-Programmed-With: Guenther Deschner <gd@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Karolin Seeger <kseeger@samba.org> Autobuild-Date(master): Mon Feb 23 20:01:01 CET 2015 on sn-devel-104
2015-02-16 10:56:28 +03:00
{
my ($self, $path) = @_;
selftest: rename env s3dc_schannel to nt4_dc_schannel Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-03-06 11:39:54 +03:00
print "PROVISIONING NT4 DC WITH SERVER SCHANNEL ...";
torture: Add netr_setPassword(2) schannel test. Thanks to Florian Weimer <fweimer@redhat.com> for the help to write this torture test. Pair-Programmed-With: Guenther Deschner <gd@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Karolin Seeger <kseeger@samba.org> Autobuild-Date(master): Mon Feb 23 20:01:01 CET 2015 on sn-devel-104
2015-02-16 10:56:28 +03:00
my $pdc_options = "
domain master = yes
domain logons = yes
lanman auth = yes
server schannel = yes
selftest: run nt4_dc_schannel with 'server max protocol = SMB2_02' This reproduces the problem with trying to implement FSCTL_VALIDATE_NEGOTIATE_INFO as SMB2_02 server. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12772 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-26 13:10:40 +03:00
# used to reproduce bug #12772
server max protocol = SMB2_02
torture: Add netr_setPassword(2) schannel test. Thanks to Florian Weimer <fweimer@redhat.com> for the help to write this torture test. Pair-Programmed-With: Guenther Deschner <gd@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Karolin Seeger <kseeger@samba.org> Autobuild-Date(master): Mon Feb 23 20:01:01 CET 2015 on sn-devel-104
2015-02-16 10:56:28 +03:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $vars = $self->provision(
prefix => $path,
domain => "NT4SCHANNEL",
server => "LOCALNT4DC9",
password => "localntdc9pass",
extra_options => $pdc_options);
torture: Add netr_setPassword(2) schannel test. Thanks to Florian Weimer <fweimer@redhat.com> for the help to write this torture test. Pair-Programmed-With: Guenther Deschner <gd@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Karolin Seeger <kseeger@samba.org> Autobuild-Date(master): Mon Feb 23 20:01:01 CET 2015 on sn-devel-104
2015-02-16 10:56:28 +03:00
$vars or return undef;
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $vars,
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
torture: Add netr_setPassword(2) schannel test. Thanks to Florian Weimer <fweimer@redhat.com> for the help to write this torture test. Pair-Programmed-With: Guenther Deschner <gd@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Karolin Seeger <kseeger@samba.org> Autobuild-Date(master): Mon Feb 23 20:01:01 CET 2015 on sn-devel-104
2015-02-16 10:56:28 +03:00
return undef;
}
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$vars->{DOMSID} = $vars->{SAMSID};
torture: Add netr_setPassword(2) schannel test. Thanks to Florian Weimer <fweimer@redhat.com> for the help to write this torture test. Pair-Programmed-With: Guenther Deschner <gd@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Karolin Seeger <kseeger@samba.org> Autobuild-Date(master): Mon Feb 23 20:01:01 CET 2015 on sn-devel-104
2015-02-16 10:56:28 +03:00
$vars->{DC_SERVER} = $vars->{SERVER};
$vars->{DC_SERVER_IP} = $vars->{SERVER_IP};
$vars->{DC_SERVER_IPV6} = $vars->{SERVER_IPV6};
$vars->{DC_NETBIOSNAME} = $vars->{NETBIOSNAME};
$vars->{DC_USERNAME} = $vars->{USERNAME};
$vars->{DC_PASSWORD} = $vars->{PASSWORD};
return $vars;
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_nt4_member
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
{
selftest: rename env s3dc to nt4_dc Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-03-06 11:34:11 +03:00
my ($self, $prefix, $nt4_dc_vars) = @_;
selftest: Wait for the logon server to register to join the member. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-09 11:47:05 +04:00
my $count = 0;
my $rc;
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
print "PROVISIONING MEMBER...";
selftest: add dbwrap_tdb_require_mutexes:* = yes, when using dbwrap_tdb_mutexes:* = yes by default export SELFTEST_DONT_REQUIRE_TDB_MUTEX_SUPPORT=1 can overwrite this. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue Feb 9 01:42:14 CET 2016 on sn-devel-144
2016-01-16 12:20:32 +03:00
my $require_mutexes = "dbwrap_tdb_require_mutexes:* = yes";
selftest: avoid comparison against undefined value Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2020-02-02 10:57:17 +03:00
if ($ENV{SELFTEST_DONT_REQUIRE_TDB_MUTEX_SUPPORT} // '' eq "1") {
$require_mutexes = "";
}
selftest: add dbwrap_tdb_require_mutexes:* = yes, when using dbwrap_tdb_mutexes:* = yes by default export SELFTEST_DONT_REQUIRE_TDB_MUTEX_SUPPORT=1 can overwrite this. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue Feb 9 01:42:14 CET 2016 on sn-devel-144
2016-01-16 12:20:32 +03:00
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
my $member_options = "
security = domain
selftest: use dbwrap_tdb_mutexes:* = yes for "plugin_s4_dc" and "member" Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu May 22 23:33:41 CEST 2014 on sn-devel-104
2013-05-13 13:14:26 +04:00
dbwrap_tdb_mutexes:* = yes
selftest: add dbwrap_tdb_require_mutexes:* = yes, when using dbwrap_tdb_mutexes:* = yes by default export SELFTEST_DONT_REQUIRE_TDB_MUTEX_SUPPORT=1 can overwrite this. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue Feb 9 01:42:14 CET 2016 on sn-devel-144
2016-01-16 12:20:32 +03:00
${require_mutexes}
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $ret = $self->provision(
prefix => $prefix,
domain => $nt4_dc_vars->{DOMAIN},
server => "LOCALNT4MEMBER3",
password => "localnt4member3pass",
extra_options => $member_options);
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
$ret or return undef;
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
selftest: Wait for the logon server to register to join the member. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-09 11:47:05 +04:00
my $nmblookup = Samba::bindir_path($self, "nmblookup");
do {
print "Waiting for the LOGON SERVER registration ...\n";
$rc = system("$nmblookup $ret->{CONFIGURATION} $ret->{DOMAIN}\#1c");
if ($rc != 0) {
sleep(1);
}
$count++;
} while ($rc != 0 && $count < 10);
if ($count == 10) {
print "NMBD not reachable after 10 retries\n";
teardown_env($self, $ret);
return 0;
}
selftest: Make bindir_path much less complex There is no need to pass it as a function pointer, just put it in 'Samba.pm'. Andrew Bartlett
2011-04-27 05:19:20 +04:00
my $net = Samba::bindir_path($self, "net");
selftest: Set NSS_WRAPPER_HOSTS when creating the trusts Otherwise this relies on the order that tests run to cause the environment variable to be left behind. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
2018-08-31 11:22:54 +03:00
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
selftest/Samba3: use the correct "SELFTEST_WINBINDD_SOCKET_DIR" for "net join" This avoids picking up a gid from the DC's winbind when creating BUILTIN\Administrators Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Thu Mar 24 22:15:44 CET 2016 on sn-devel-144
2016-03-22 16:09:08 +03:00
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
selftest: use net rpc join when joining NT4-style domains Otherwise net join when failing at the CLDAP ping stage will put a negative entry for the DC in the conncache which can trigger *hard* to debug problems later in winbindd. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Mon Jan 8 15:22:10 CET 2018 on sn-devel-144
2018-01-06 14:27:27 +03:00
$cmd .= "$net rpc join $ret->{CONFIGURATION} $nt4_dc_vars->{DOMAIN} member";
selftest: rename env s3dc to nt4_dc Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-03-06 11:34:11 +03:00
$cmd .= " -U$nt4_dc_vars->{USERNAME}\%$nt4_dc_vars->{PASSWORD}";
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
selftest: Don't die() when the join fails This kills off everything without a proper shutdown, and is difficult to debug. Andrew Bartlett
2011-04-27 16:18:18 +04:00
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
selftest: Set NSS_WRAPPER_HOSTS when creating the trusts Otherwise this relies on the order that tests run to cause the environment variable to be left behind. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
2018-08-31 11:22:54 +03:00
# Add hosts file for name lookups
selftest: avoid redeclaring perl variables None of these ones are doing any harm, we just want to silence these warnings. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-12-07 12:38:30 +03:00
$cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
selftest:Samba3: call "net primarytrust dumpinfo" setup_nt4_member() after the join Here we check that we get 'REDACTED SECRET VALUES' printed, in order to avoid regression on the non '-f' behavior. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12782 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-22 16:30:56 +03:00
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$net $ret->{CONFIGURATION} primarytrust dumpinfo | grep -q 'REDACTED SECRET VALUES'";
if (system($cmd) != 0) {
warn("check failed\n$cmd");
return undef;
}
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $ret,
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
return undef;
}
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret->{DOMSID} = $nt4_dc_vars->{DOMSID};
selftest: rename env s3dc to nt4_dc Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-03-06 11:34:11 +03:00
$ret->{DC_SERVER} = $nt4_dc_vars->{SERVER};
$ret->{DC_SERVER_IP} = $nt4_dc_vars->{SERVER_IP};
$ret->{DC_SERVER_IPV6} = $nt4_dc_vars->{SERVER_IPV6};
$ret->{DC_NETBIOSNAME} = $nt4_dc_vars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $nt4_dc_vars->{USERNAME};
$ret->{DC_PASSWORD} = $nt4_dc_vars->{PASSWORD};
selftest: add "member" environment for Samba3 metze
2009-01-28 23:01:04 +03:00
return $ret;
}
test: Get the clusteredmember environment out of its smb1 corner Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Fri Oct 16 18:30:18 UTC 2020 on sn-devel-184
2020-10-16 17:09:33 +03:00
sub setup_clusteredmember
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
{
my ($self, $prefix, $nt4_dc_vars) = @_;
my $count = 0;
my $rc;
my @retvals = ();
my $ret;
print "PROVISIONING CLUSTEREDMEMBER...\n";
my $prefix_abs = abs_path($prefix);
mkdir($prefix_abs, 0777);
my $ctdb_data = $self->setup_ctdb($prefix);
if (not $ctdb_data) {
print "No ctdb data\n";
return undef;
}
print "PROVISIONING CLUSTERED SAMBA...\n";
my $num_nodes = $ctdb_data->{NUM_NODES};
my $nodes = $ctdb_data->{CTDB_NODES};
# Enable cleanup of earlier nodes if a later node fails
$ctdb_data->{SAMBA_NODES} = \@retvals;
for (my $i = 0; $i < $num_nodes; $i++) {
my $node = $nodes->[$i];
my $socket = $node->{SOCKET_FILE};
my $server_name = $node->{SERVER_NAME};
my $pub_iface = $node->{SOCKET_WRAPPER_DEFAULT_IFACE};
my $node_prefix = $node->{NODE_PREFIX};
selftest: export/use CTDB related envvars in order to run the ctdb command This makes it easier to test things... BUG: https://bugzilla.samba.org/show_bug.cgi?id=15523 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2023-11-17 13:45:30 +03:00
print "CTDB_BASE=${node_prefix}\n";
print "CTDB_SOCKET=${socket}\n";
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
my $require_mutexes = "dbwrap_tdb_require_mutexes:* = yes";
if ($ENV{SELFTEST_DONT_REQUIRE_TDB_MUTEX_SUPPORT} // '' eq "1") {
$require_mutexes = "" ;
}
my $member_options = "
security = domain
server signing = on
clustering = yes
selftest/Samba3: start samba_dcerpcd in clusteredmember This enables the rpcd_witness to be available. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2024-01-12 19:08:06 +03:00
rpc start on demand helpers = false
python/blackbox: add rpcd_witness_samba_only.py test This tests the witness service and its interaction with ctdb. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2024-01-10 17:11:24 +03:00
rpcd witness:include node ips = yes
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
ctdbd socket = ${socket}
samba-bgqd: Fix samba-bgqd with "clustering=yes"/"include=registry" With the above combination, some flavor of lp_load() already initializes global_event_ctx, for which the closeall_except() later on will happily close the epoll fd for. If we want to close all file descriptors at startup, this must be the very first thing overall. Can't really write a proper test for this with knownfail that is removed with the fix, because if we have clustering+include=registry, the whole clusteredmember environment does not even start up. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Sat Jul 31 16:58:41 UTC 2021 on sn-devel-184
2021-07-30 12:43:08 +03:00
include = registry
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
dbwrap_tdb_mutexes:* = yes
${require_mutexes}
";
my $node_ret = $self->provision(
prefix => "$node_prefix",
domain => $nt4_dc_vars->{DOMAIN},
server => "$server_name",
password => "clustermember8pass",
netbios_name => "CLUSTEREDMEMBER",
share_dir => "${prefix_abs}/shared",
extra_options => $member_options,
no_delete_prefix => 1);
if (not $node_ret) {
print "Provision node $i failed\n";
teardown_env($self, $ctdb_data);
return undef;
}
selftest: add samba3.blackbox.registry_share This demonstrates the regression introduced by f03665bb7e8ea97699062630f2aa1bac4c5dfc7f, where registry shares are no longer listed. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15243 BUG: https://bugzilla.samba.org/show_bug.cgi?id=15266 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Walker <awalker@ixsystems.com>
2022-12-28 18:18:40 +03:00
my $registry_share_template = "$node_ret->{SERVERCONFFILE}.registry_share_template";
unless (open(REGISTRYCONF, ">$registry_share_template")) {
warn("Unable to open $registry_share_template");
teardown_env($self, $node_ret);
teardown_env($self, $ctdb_data);
return undef;
}
print REGISTRYCONF "
[registry_share]
copy = tmp
comment = smb username is [%U]
";
close(REGISTRYCONF);
my $net = Samba::bindir_path($self, "net");
my $cmd = "";
$cmd .= "UID_WRAPPER_ROOT=1 ";
$cmd .= "$net conf import $node_ret->{CONFIGURATION} ${registry_share_template}";
my $net_ret = system($cmd);
if ($net_ret != 0) {
warn("net conf import failed: $net_ret\n$cmd");
teardown_env($self, $node_ret);
teardown_env($self, $ctdb_data);
return undef;
}
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
my $nmblookup = Samba::bindir_path($self, "nmblookup");
do {
print "Waiting for the LOGON SERVER registration ...\n";
$rc = system("$nmblookup $node_ret->{CONFIGURATION} " .
"$node_ret->{DOMAIN}\#1c");
if ($rc != 0) {
sleep(1);
}
$count++;
} while ($rc != 0 && $count < 10);
if ($count == 10) {
print "NMBD not reachable after 10 retries\n";
teardown_env($self, $node_ret);
teardown_env($self, $ctdb_data);
return undef;
}
push(@retvals, $node_ret);
}
$ret = {%$ctdb_data, %{$retvals[0]}};
my $net = Samba::bindir_path($self, "net");
my $cmd = "";
$cmd .= "UID_WRAPPER_ROOT=1 ";
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$net join $ret->{CONFIGURATION} $nt4_dc_vars->{DOMAIN} member";
$cmd .= " -U$nt4_dc_vars->{USERNAME}\%$nt4_dc_vars->{PASSWORD}";
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
teardown_env($self, $ret);
return undef;
}
for (my $i=0; $i<@retvals; $i++) {
my $node_provision = $retvals[$i];
my $ok;
$ok = $self->check_or_start(
env_vars => $node_provision,
selftest/Samba3: start samba_dcerpcd in clusteredmember This enables the rpcd_witness to be available. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2024-01-12 19:08:06 +03:00
samba_dcerpcd => "yes",
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
winbindd => "yes",
smbd => "yes",
child_cleanup => sub {
map {
my $fh = $_->{STDIN_PIPE};
close($fh) if defined($fh);
} @retvals });
if (not $ok) {
teardown_env($self, $ret);
return undef;
}
}
selftest:clusteredmember: Build a unclist for every share This is fairly cheap and it is simple to do. This allows the Python code to be able to specify a unclist quite simply. The level of coupling doesn't seem worse than anything else in the selftest/autobuild code. There may be cleverer ways of doing this (e.g. a wrapper in testprogs/blackbox/clusteredmember_smbtorture or similar) but cleverer code isn't necessarily better code... and they'll probably involve code duplication. Signed-off-by: Martin Schwenke <martin@meltin.net> Reviewed-by: Volker Lendecke <vl@samba.org>
2020-02-04 11:44:11 +03:00
#
# Build a unclist for every share
#
unless (open(NODES, "<$ret->{CTDB_NODES_FILE}")) {
warn("Unable to open CTDB nodes file");
teardown_env($self, $ret);
return undef;
}
my @nodes = <NODES>;
close(NODES);
chomp @nodes;
my $conffile = $ret->{SERVERCONFFILE};
$cmd = "";
$cmd .= 'sed -n -e \'s|^\[\(.*\)\]$|\1|p\'';
$cmd .= " \"$conffile\"";
$cmd .= " | grep -vx 'global'";
my @shares = `$cmd`;
$rc = $?;
if ($rc != 0) {
warn("Listing shares failed\n$cmd");
teardown_env($self, $ret);
return undef;
}
chomp @shares;
my $unclistdir = "${prefix_abs}/unclists";
mkdir($unclistdir, 0777);
foreach my $share (@shares) {
my $l = "${unclistdir}/${share}.txt";
unless (open(UNCLIST, ">${l}")) {
warn("Unable to open UNC list ${l}");
teardown_env($self, $ret);
return undef;
}
foreach my $node (@nodes) {
print UNCLIST "//${node}/${share}\n";
}
close(UNCLIST);
}
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
$ret->{DOMSID} = $nt4_dc_vars->{DOMSID};
$ret->{DC_SERVER} = $nt4_dc_vars->{SERVER};
$ret->{DC_SERVER_IP} = $nt4_dc_vars->{SERVER_IP};
$ret->{DC_SERVER_IPV6} = $nt4_dc_vars->{SERVER_IPV6};
$ret->{DC_NETBIOSNAME} = $nt4_dc_vars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $nt4_dc_vars->{USERNAME};
$ret->{DC_PASSWORD} = $nt4_dc_vars->{PASSWORD};
return $ret;
}
selftest: Split out a provision_ad_member() function Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-13 17:54:39 +03:00
sub provision_ad_member
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
{
selftest: Split out a provision_ad_member() function Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-13 17:54:39 +03:00
my ($self,
$prefix,
selftest: Pass down the machine account name to provision_ad_member Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-11 18:59:51 +03:00
$machine_account,
selftest: Split out a provision_ad_member() function Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-13 17:54:39 +03:00
$dcvars,
$trustvars_f,
selftest: Add force_fips_mode support to provision_ad_member() Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:02 +03:00
$trustvars_e,
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
$extra_member_options,
selftest: Turn on offline logon for ad_member_offline_logon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:27 +03:00
$force_fips_mode,
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
$offline_logon,
$no_nss_winbind) = @_;
if (defined($offline_logon) && defined($no_nss_winbind)) {
warn ("Offline logon incompatible with no nss winbind\n");
return undef;
}
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
my $prefix_abs = abs_path($prefix);
my @dirs = ();
mkdir($prefix_abs, 0777);
my $share_dir="$prefix_abs/share";
push(@dirs, $share_dir);
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
my $substitution_path = "$share_dir/D_$dcvars->{DOMAIN}";
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
push(@dirs, $substitution_path);
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
$substitution_path = "$share_dir/D_$dcvars->{DOMAIN}/U_alice";
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
push(@dirs, $substitution_path);
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
$substitution_path = "$share_dir/D_$dcvars->{DOMAIN}/U_alice/G_domain users";
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
push(@dirs, $substitution_path);
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
# Using '/' as the winbind separator is a bad idea ...
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
$substitution_path = "$share_dir/D_$dcvars->{DOMAIN}/u_$dcvars->{DOMAIN}";
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
push(@dirs, $substitution_path);
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
$substitution_path = "$share_dir/D_$dcvars->{DOMAIN}/u_$dcvars->{DOMAIN}/alice";
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
push(@dirs, $substitution_path);
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
$substitution_path = "$share_dir/D_$dcvars->{DOMAIN}/u_$dcvars->{DOMAIN}/alice/g_$dcvars->{DOMAIN}";
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
push(@dirs, $substitution_path);
selftest: don't use hardcoded domain names in Samba3::setup_admember() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-09 15:53:40 +03:00
$substitution_path = "$share_dir/D_$dcvars->{DOMAIN}/u_$dcvars->{DOMAIN}/alice/g_$dcvars->{DOMAIN}/domain users";
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
push(@dirs, $substitution_path);
python/samba/tests: Add smbcacl tests for save/restore Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2022-09-02 14:48:08 +03:00
my $smbcacls_sharedir="$share_dir/smbcacls";
push(@dirs,$smbcacls_sharedir);
selftest: Turn on offline logon for ad_member_offline_logon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:27 +03:00
my $option_offline_logon = "no";
if (defined($offline_logon)) {
$option_offline_logon = "yes";
}
selftest: Only set netbios aliases for the ad_member env The provision_ad_member() function is reused by different setup_ad_member*() functions. Each environment needs to have unique netbios aliases as they are all in the same network. The aliases should only be set for the 'ad_member' environment. Signed-Off-By: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Fri Jun 11 01:26:36 UTC 2021 on sn-devel-184
2021-06-10 17:20:28 +03:00
my $netbios_aliases = "";
if ($machine_account eq "LOCALADMEMBER") {
$netbios_aliases = "netbios aliases = foo bar";
}
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
unless (defined($extra_member_options)) {
$extra_member_options = "";
}
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
my $member_options = "
security = ads
workgroup = $dcvars->{DOMAIN}
realm = $dcvars->{REALM}
selftest: Only set netbios aliases for the ad_member env The provision_ad_member() function is reused by different setup_ad_member*() functions. Each environment needs to have unique netbios aliases as they are all in the same network. The aliases should only be set for the 'ad_member' environment. Signed-Off-By: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Fri Jun 11 01:26:36 UTC 2021 on sn-devel-184
2021-06-10 17:20:28 +03:00
$netbios_aliases
selftest: Define template homedir for 'ad_member' env BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 With this set, the samba3.local.nss test for ad_member will ensure that we correctly substitute those smb.conf options. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Mar 30 04:26:18 CEST 2017 on sn-devel-144
2017-03-17 12:04:19 +03:00
template homedir = /home/%D/%G/%U
s3 winbind auth_log: Tests for logon id logging. Tests to validate that winbind generates a random logon_id and passes it in the netlogon call. This will allow the linking of the windbind authentication requests and the SamLogon request on the DC. Signed-off-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-01-21 23:16:05 +03:00
auth event notification = true
password server = $dcvars->{SERVER}
selftest/Samba3.pm: use "winbind scan trusted domains = no" for ad_member This demonstrates that we rely on knowning about trusted domains before we can do krb5_auth in winbindd. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14124 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2019-09-18 09:02:38 +03:00
winbind scan trusted domains = no
selftest: Turn on offline logon for ad_member_offline_logon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:27 +03:00
winbind offline logon = $option_offline_logon
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
selftest: Run python.samba.tests.dcerpc.raw_protocol against S3 ad_member The goal is to pass the raw protocol testsuite against s3 RPC server. To do so we need to enable epmd and lsasd daemons, as the testsuite connects to the endpoint mapper and lsa endpoints using NCACN_IP_TCP and NCACN_NP transports. Signed-off-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-10-03 15:18:17 +03:00
allow dcerpc auth level connect:lsarpc = yes
dcesrv:max auth states = 8
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
rpc start on demand helpers = false
selftest: Run python.samba.tests.dcerpc.raw_protocol against S3 ad_member The goal is to pass the raw protocol testsuite against s3 RPC server. To do so we need to enable epmd and lsasd daemons, as the testsuite connects to the endpoint mapper and lsa endpoints using NCACN_IP_TCP and NCACN_NP transports. Signed-off-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-10-03 15:18:17 +03:00
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
# Begin extra member options
$extra_member_options
# End extra member options
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
[sub_dug]
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
path = $share_dir/D_%D/U_%U/G_%G
writeable = yes
s3:tests: Add a subsitution test for %D %u %g BUG: https://bugzilla.samba.org/show_bug.cgi?id=12699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-15 14:37:08 +03:00
[sub_dug2]
path = $share_dir/D_%D/u_%u/g_%g
writeable = yes
s3:tests: Add test for 'valid users = DOMAIN\%U' BUG: https://bugzilla.samba.org/show_bug.cgi?id=14467 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2020-08-17 14:39:58 +03:00
[sub_valid_users]
path = $share_dir
valid users = ADDOMAIN/%U
s3:tests: Add tests for 'valid users'. Extending testsuite for option 'valid/invalid users' from smb.conf. Signed-off-by: Denis Karpelevich <dkarpele@redhat.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Oct 21 01:17:05 UTC 2020 on sn-devel-184
2020-10-19 16:20:04 +03:00
[sub_valid_users_domain]
path = $share_dir
valid users = %D/%U
[sub_valid_users_group]
path = $share_dir
valid users = \@$dcvars->{DOMAIN}/%G
[valid_users]
path = $share_dir
valid users = $dcvars->{DOMAIN}/$dcvars->{DC_USERNAME}
[valid_users_group]
path = $share_dir
valid users = \"\@$dcvars->{DOMAIN}/domain users\"
[valid_users_unix_group]
path = $share_dir
valid users = \"+$dcvars->{DOMAIN}/domain users\"
Revert "s3:smbd: Remove NIS support" This partly reverts commit edda7a329e5bed442418de9782cec9f567092aae. Revert the chunks related to netgroups and skip NIS support related ones. Use getdomainname() from glibc instead of yp_get_default_domain() from libnsl to get the NIS domain name. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15087 Signed-off-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-06-03 16:07:18 +03:00
[valid_users_nis_group]
path = $share_dir
valid users = \"&$dcvars->{DOMAIN}/domain users\"
s3:tests: Add tests for 'valid users'. Extending testsuite for option 'valid/invalid users' from smb.conf. Signed-off-by: Denis Karpelevich <dkarpele@redhat.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Oct 21 01:17:05 UTC 2020 on sn-devel-184
2020-10-19 16:20:04 +03:00
[valid_users_unix_nis_group]
path = $share_dir
valid users = \"+&$dcvars->{DOMAIN}/domain users\"
[valid_users_nis_unix_group]
path = $share_dir
valid users = \"&+$dcvars->{DOMAIN}/domain users\"
[invalid_users]
path = $share_dir
invalid users = $dcvars->{DOMAIN}/$dcvars->{DC_USERNAME}
[valid_and_invalid_users]
path = $share_dir
valid users = $dcvars->{DOMAIN}/$dcvars->{DC_USERNAME} $dcvars->{DOMAIN}/alice
invalid users = $dcvars->{DOMAIN}/$dcvars->{DC_USERNAME}
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $ret = $self->provision(
prefix => $prefix,
domain => $dcvars->{DOMAIN},
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
realm => $dcvars->{REALM},
selftest: Pass down the machine account name to provision_ad_member Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-11 18:59:51 +03:00
server => $machine_account,
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
password => "loCalMemberPass",
extra_options => $member_options,
selftest: correctly use RESOLV_CONF from the DC environment or "no_resolv.conf" It's important to have the correct $resolv_conf variable within provision(), because it also sets "RESOLV_WRAPPER_CONF" if needed, instead of just setting "RESOLV_CONF". There's also no point in creating an resolv.conf with the ip addresses for other roles than "active directory domain controller". Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-02-27 14:33:48 +03:00
resolv_conf => $dcvars->{RESOLV_CONF});
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$ret or return undef;
selftest: Create a share with %D %U and %G substituion Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2016-09-25 19:42:17 +03:00
mkdir($_, 0777) foreach(@dirs);
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$ret->{DOMAIN} = $dcvars->{DOMAIN};
$ret->{REALM} = $dcvars->{REALM};
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret->{DOMSID} = $dcvars->{DOMSID};
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
my $ctx;
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = $dcvars->{DOMAIN};
$ctx->{realm} = $dcvars->{REALM};
$ctx->{dnsname} = lc($dcvars->{REALM});
$ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
$ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6};
selftest: Do not use a central credential cache We should use seperate caches and set the default_ccache_name accordingly. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-09-22 19:46:28 +03:00
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
selftest: Allow a krb5.conf to be generated that covers multiple realms
2011-08-26 10:02:01 +04:00
Samba::mk_krb5_conf($ctx, "");
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
selftest: Add force_fips_mode support to provision_ad_member() Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:02 +03:00
if (defined($force_fips_mode)) {
$ret->{GNUTLS_FORCE_FIPS_MODE} = "1";
$ret->{OPENSSL_FORCE_FIPS_MODE} = "1";
}
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
my $net = Samba::bindir_path($self, "net");
selftest: Set NSS_WRAPPER_HOSTS when creating the trusts Otherwise this relies on the order that tests run to cause the environment variable to be left behind. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
2018-08-31 11:22:54 +03:00
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
if (defined($ret->{RESOLV_WRAPPER_CONF})) {
$cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" ";
} else {
$cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" ";
}
selftest: Add force_fips_mode support to provision_ad_member() Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:02 +03:00
if (defined($force_fips_mode)) {
$cmd .= "GNUTLS_FORCE_FIPS_MODE=1 ";
$cmd .= "OPENSSL_FORCE_FIPS_MODE=1 ";
}
selftest: always explicitly use RESOLV_CONF By default point RESOLV_CONF to a non-existing file and use the per environment RESOLV_CONF explicitly where needed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 20:17:36 +03:00
$cmd .= "RESOLV_CONF=\"$ret->{RESOLV_CONF}\" ";
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
selftest/Samba3: use the correct "SELFTEST_WINBINDD_SOCKET_DIR" for "net join" This avoids picking up a gid from the DC's winbind when creating BUILTIN\Administrators Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Thu Mar 24 22:15:44 CET 2016 on sn-devel-144
2016-03-22 16:09:08 +03:00
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
$cmd .= "$net join $ret->{CONFIGURATION}";
s3:utils: Use connection and credentials parser in net util Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-01-19 09:49:26 +03:00
$cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD} --use-kerberos=required";
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
# We need world access to this share, as otherwise the domain
# administrator from the AD domain provided by Samba4 can't
# access the share for tests.
chmod 0777, "$prefix/share";
selftest: Set winbind offline in ad_member_offline_logon target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:31 +03:00
if (defined($offline_logon)) {
my $wbinfo = Samba::bindir_path($self, "wbinfo");
if (not $self->check_or_start(
env_vars => $ret,
winbindd => "yes")) {
return undef;
}
# Fill samlogoncache for alice
$cmd = "NSS_WRAPPER_PASSWD='$ret->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$ret->{NSS_WRAPPER_GROUP}' ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$wbinfo --pam-logon=ADDOMAIN/alice%Secret007";
if (system($cmd) != 0) {
warn("Filling the cache failed\n$cmd");
return undef;
}
$cmd = "NSS_WRAPPER_PASSWD='$ret->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$ret->{NSS_WRAPPER_GROUP}' ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$wbinfo --ccache-save=ADDOMAIN/alice%Secret007";
if (system($cmd) != 0) {
warn("Filling the cache failed\n$cmd");
return undef;
}
# Fill samlogoncache for bob
$cmd = "NSS_WRAPPER_PASSWD='$ret->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$ret->{NSS_WRAPPER_GROUP}' ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$wbinfo --pam-logon=ADDOMAIN/bob%Secret007";
if (system($cmd) != 0) {
warn("Filling the cache failed\n$cmd");
return undef;
}
$cmd = "NSS_WRAPPER_PASSWD='$ret->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$ret->{NSS_WRAPPER_GROUP}' ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$wbinfo --ccache-save=ADDOMAIN/bob%Secret007";
if (system($cmd) != 0) {
warn("Filling the cache failed\n$cmd");
return undef;
}
# Set windindd offline
my $smbcontrol = Samba::bindir_path($self, "smbcontrol");
$cmd = "NSS_WRAPPER_PASSWD='$ret->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$ret->{NSS_WRAPPER_GROUP}' ";
$cmd .= "UID_WRAPPER_ROOT='1' ";
$cmd .= "$smbcontrol $ret->{CONFIGURATION} winbindd offline";
if (system($cmd) != 0) {
warn("Setting winbindd offline failed\n$cmd");
return undef;
}
# Validate the offline cache
$cmd = "NSS_WRAPPER_PASSWD='$ret->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$ret->{NSS_WRAPPER_GROUP}' ";
$cmd .= "UID_WRAPPER_ROOT='1' ";
$cmd .= "$smbcontrol $ret->{CONFIGURATION} winbindd validate-cache";
if (system($cmd) != 0) {
warn("Validation of winbind credential cache failed\n$cmd");
teardown_env($self, $ret);
return undef;
}
# Shut down winbindd
teardown_env($self, $ret);
### Change SOCKET_WRAPPER_DIR so it can't connect to AD
my $swrap_env = $ENV{SOCKET_WRAPPER_DIR};
$ENV{SOCKET_WRAPPER_DIR} = "$prefix_abs";
# Start winbindd in offline mode
if (not $self->check_or_start(
env_vars => $ret,
selftest/Samba3: replace (winbindd => "yes", skip_wait => 1) with (winbindd => "offline") This is much more flexible and concentrates the logic in a single place. We'll use winbindd => "offline" in other places soon. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14870 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 17:42:00 +03:00
winbindd => "offline")) {
selftest: Set winbind offline in ad_member_offline_logon target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:31 +03:00
return undef;
}
# Set socket dir again
$ENV{SOCKET_WRAPPER_DIR} = $swrap_env;
} else {
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
if (defined($no_nss_winbind)) {
$ret->{NSS_WRAPPER_MODULE_SO_PATH} = "";
$ret->{NSS_WRAPPER_MODULE_FN_PREFIX} = "";
}
selftest: Set winbind offline in ad_member_offline_logon target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:31 +03:00
if (not $self->check_or_start(
env_vars => $ret,
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
samba_dcerpcd => "yes",
selftest: Set winbind offline in ad_member_offline_logon target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:31 +03:00
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
return undef;
}
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
}
$ret->{DC_SERVER} = $dcvars->{SERVER};
$ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
selftest/Samba3: also bind to ipv6 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-06-19 19:21:16 +04:00
$ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6};
s3 winbind auth_log: Tests for logon id logging. Tests to validate that winbind generates a random logon_id and passes it in the netlogon call. This will allow the linking of the windbind authentication requests and the SamLogon request on the DC. Signed-off-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-01-21 23:16:05 +03:00
$ret->{DC_SERVERCONFFILE} = $dcvars->{SERVERCONFFILE};
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
$ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $dcvars->{USERNAME};
$ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
selftest: Add DOMAIN_ADMIN and DOMAIN_USER variables We should start using those in future. So we can distinguish which privileges we want. Currently DC_USERNAME is the Administrator. Whatever possible should use DOMIAN_USER instead. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-08 15:07:19 +03:00
$ret->{DOMAIN_ADMIN} = $dcvars->{DOMAIN_ADMIN};
$ret->{DOMAIN_ADMIN_PASSWORD} = $dcvars->{DOMAIN_ADMIN_PASSWORD};
$ret->{DOMAIN_USER} = $dcvars->{DOMAIN_USER};
$ret->{DOMAIN_USER_PASSWORD} = $dcvars->{DOMAIN_USER_PASSWORD};
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
selftest: Export TRUST information in the ad_member target environment BUG: https://bugzilla.samba.org/show_bug.cgi?id=14124 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2017-03-20 13:39:41 +03:00
# forest trust
$ret->{TRUST_F_BOTH_SERVER} = $trustvars_f->{SERVER};
$ret->{TRUST_F_BOTH_SERVER_IP} = $trustvars_f->{SERVER_IP};
$ret->{TRUST_F_BOTH_SERVER_IPV6} = $trustvars_f->{SERVER_IPV6};
$ret->{TRUST_F_BOTH_NETBIOSNAME} = $trustvars_f->{NETBIOSNAME};
$ret->{TRUST_F_BOTH_USERNAME} = $trustvars_f->{USERNAME};
$ret->{TRUST_F_BOTH_PASSWORD} = $trustvars_f->{PASSWORD};
$ret->{TRUST_F_BOTH_DOMAIN} = $trustvars_f->{DOMAIN};
$ret->{TRUST_F_BOTH_REALM} = $trustvars_f->{REALM};
# external trust
$ret->{TRUST_E_BOTH_SERVER} = $trustvars_e->{SERVER};
$ret->{TRUST_E_BOTH_SERVER_IP} = $trustvars_e->{SERVER_IP};
$ret->{TRUST_E_BOTH_SERVER_IPV6} = $trustvars_e->{SERVER_IPV6};
$ret->{TRUST_E_BOTH_NETBIOSNAME} = $trustvars_e->{NETBIOSNAME};
$ret->{TRUST_E_BOTH_USERNAME} = $trustvars_e->{USERNAME};
$ret->{TRUST_E_BOTH_PASSWORD} = $trustvars_e->{PASSWORD};
$ret->{TRUST_E_BOTH_DOMAIN} = $trustvars_e->{DOMAIN};
$ret->{TRUST_E_BOTH_REALM} = $trustvars_e->{REALM};
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
return $ret;
}
selftest: Split out a provision_ad_member() function Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-13 17:54:39 +03:00
sub setup_ad_member
{
my ($self,
$prefix,
$dcvars,
$trustvars_f,
$trustvars_e) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING AD MEMBER...";
selftest: Pass down the machine account name to provision_ad_member Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-11 18:59:51 +03:00
return $self->provision_ad_member($prefix,
"LOCALADMEMBER",
$dcvars,
$trustvars_f,
$trustvars_e);
selftest: Split out a provision_ad_member() function Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-13 17:54:39 +03:00
}
samba-tool: Test DNS record creation on member join Signed-off-by: David Mulder <dmulder@suse.com> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-11-23 18:59:01 +03:00
sub setup_ad_member_s3_join
{
my ($self,
$prefix,
$dcvars,
$trustvars_f,
$trustvars_e) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING AD MEMBER...";
return $self->provision_ad_member($prefix,
"LOCALADMEMBER2",
$dcvars,
$trustvars_f,
$trustvars_e);
}
selftest: move to declaratively specifying environments and their dependencies This removes the tangle of code for starting up dependencies, and allows selftest.pl to query dependencies (hence it can know when things can be shut down early and how to order environments for optimal memory usage - that patch not yet submitted). It also removes the slightly hacky special-casing of the ad_members, and sets $target->{vars} centrally (so each setup_ function does not need to). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-21 03:33:49 +03:00
sub setup_ad_member_rfc2307
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
{
my ($self, $prefix, $dcvars) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING S3 AD MEMBER WITH idmap_rfc2307 config...";
my $member_options = "
security = ads
workgroup = $dcvars->{DOMAIN}
realm = $dcvars->{REALM}
selftest: Avoid idmap caching when testing idmap_rfc2307 BUG: https://bugzilla.samba.org/show_bug.cgi?id=12757 Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Christof Schmitt <cs@samba.org>
2017-04-04 18:15:10 +03:00
idmap cache time = 0
idmap negative cache time = 0
selftest: make autorid the default idmap backend in admember_rfc2307 This is needed for a new test in the next commit. Exisiting tests aren't affected by this, at least a private autobuild passed with this change. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2016-06-24 19:33:01 +03:00
idmap config * : backend = autorid
idmap config * : range = 1000000-1999999
idmap config * : rangesize = 100000
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
idmap config $dcvars->{DOMAIN} : backend = rfc2307
idmap config $dcvars->{DOMAIN} : range = 2000000-2999999
idmap config $dcvars->{DOMAIN} : ldap_server = ad
idmap config $dcvars->{DOMAIN} : bind_path_user = ou=idmap,dc=samba,dc=example,dc=com
idmap config $dcvars->{DOMAIN} : bind_path_group = ou=idmap,dc=samba,dc=example,dc=com
selftest: Bind rfc2307 tests to exactly one server The tests make changes to the DC, do not wait for replication, then expect those to be reflected in the client. If they bind to another server this will not hold true. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-07-01 12:44:38 +03:00
password server = $dcvars->{SERVER}
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $ret = $self->provision(
prefix => $prefix,
domain => $dcvars->{DOMAIN},
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
realm => $dcvars->{REALM},
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
server => "RFC2307MEMBER",
password => "loCalMemberPass",
extra_options => $member_options,
selftest: correctly use RESOLV_CONF from the DC environment or "no_resolv.conf" It's important to have the correct $resolv_conf variable within provision(), because it also sets "RESOLV_WRAPPER_CONF" if needed, instead of just setting "RESOLV_CONF". There's also no point in creating an resolv.conf with the ip addresses for other roles than "active directory domain controller". Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-02-27 14:33:48 +03:00
resolv_conf => $dcvars->{RESOLV_CONF});
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
$ret or return undef;
$ret->{DOMAIN} = $dcvars->{DOMAIN};
$ret->{REALM} = $dcvars->{REALM};
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret->{DOMSID} = $dcvars->{DOMSID};
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
my $ctx;
my $prefix_abs = abs_path($prefix);
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = $dcvars->{DOMAIN};
$ctx->{realm} = $dcvars->{REALM};
$ctx->{dnsname} = lc($dcvars->{REALM});
$ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
$ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6};
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
Samba::mk_krb5_conf($ctx, "");
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
my $net = Samba::bindir_path($self, "net");
selftest: Set NSS_WRAPPER_HOSTS when creating the trusts Otherwise this relies on the order that tests run to cause the environment variable to be left behind. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
2018-08-31 11:22:54 +03:00
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
if (defined($ret->{RESOLV_WRAPPER_CONF})) {
$cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" ";
} else {
$cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" ";
}
selftest: always explicitly use RESOLV_CONF By default point RESOLV_CONF to a non-existing file and use the per environment RESOLV_CONF explicitly where needed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 20:17:36 +03:00
$cmd .= "RESOLV_CONF=\"$ret->{RESOLV_CONF}\" ";
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
$cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$net join $ret->{CONFIGURATION}";
$cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
# We need world access to this share, as otherwise the domain
# administrator from the AD domain provided by Samba4 can't
# access the share for tests.
chmod 0777, "$prefix/share";
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $ret,
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
return undef;
}
$ret->{DC_SERVER} = $dcvars->{SERVER};
$ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
$ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6};
$ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $dcvars->{USERNAME};
$ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
selftest: Add DOMAIN_ADMIN and DOMAIN_USER variables We should start using those in future. So we can distinguish which privileges we want. Currently DC_USERNAME is the Administrator. Whatever possible should use DOMIAN_USER instead. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-08 15:07:19 +03:00
$ret->{DOMAIN_ADMIN} = $dcvars->{DOMAIN_ADMIN};
$ret->{DOMAIN_ADMIN_PASSWORD} = $dcvars->{DOMAIN_ADMIN_PASSWORD};
$ret->{DOMAIN_USER} = $dcvars->{DOMAIN_USER};
$ret->{DOMAIN_USER_PASSWORD} = $dcvars->{DOMAIN_USER_PASSWORD};
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
return $ret;
}
selftest: Add ad member with idmap_autorid backend Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2022-02-15 11:44:34 +03:00
sub setup_admem_idmap_autorid
{
my ($self, $prefix, $dcvars) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING S3 AD MEMBER WITH idmap_autorid config...";
my $member_options = "
security = ads
workgroup = $dcvars->{DOMAIN}
realm = $dcvars->{REALM}
idmap config * : backend = autorid
idmap config * : range = 1000000-19999999
idmap config * : rangesize = 1000000
selftest: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
2023-06-30 13:04:33 +03:00
# Prevent overriding the provisioned lib/krb5.conf which sets certain
selftest: Add ad member with idmap_autorid backend Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2022-02-15 11:44:34 +03:00
# values required for tests to succeed
create krb5 conf = no
";
my $ret = $self->provision(
prefix => $prefix,
domain => $dcvars->{DOMAIN},
realm => $dcvars->{REALM},
server => "ADMEMAUTORID",
password => "loCalMemberPass",
extra_options => $member_options,
resolv_conf => $dcvars->{RESOLV_CONF});
$ret or return undef;
$ret->{DOMAIN} = $dcvars->{DOMAIN};
$ret->{REALM} = $dcvars->{REALM};
$ret->{DOMSID} = $dcvars->{DOMSID};
my $ctx;
my $prefix_abs = abs_path($prefix);
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = $dcvars->{DOMAIN};
$ctx->{realm} = $dcvars->{REALM};
$ctx->{dnsname} = lc($dcvars->{REALM});
$ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
$ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6};
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
Samba::mk_krb5_conf($ctx, "");
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
my $net = Samba::bindir_path($self, "net");
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
if (defined($ret->{RESOLV_WRAPPER_CONF})) {
$cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" ";
} else {
$cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" ";
}
$cmd .= "RESOLV_CONF=\"$ret->{RESOLV_CONF}\" ";
$cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$net join $ret->{CONFIGURATION}";
$cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
# We need world access to this share, as otherwise the domain
# administrator from the AD domain provided by Samba4 can't
# access the share for tests.
chmod 0777, "$prefix/share";
if (not $self->check_or_start(
env_vars => $ret,
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
return undef;
}
$ret->{DC_SERVER} = $dcvars->{SERVER};
$ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
$ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6};
$ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $dcvars->{USERNAME};
$ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
selftest: Add DOMAIN_ADMIN and DOMAIN_USER variables We should start using those in future. So we can distinguish which privileges we want. Currently DC_USERNAME is the Administrator. Whatever possible should use DOMIAN_USER instead. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-08 15:07:19 +03:00
$ret->{DOMAIN_ADMIN} = $dcvars->{DOMAIN_ADMIN};
$ret->{DOMAIN_ADMIN_PASSWORD} = $dcvars->{DOMAIN_ADMIN_PASSWORD};
$ret->{DOMAIN_USER} = $dcvars->{DOMAIN_USER};
$ret->{DOMAIN_USER_PASSWORD} = $dcvars->{DOMAIN_USER_PASSWORD};
selftest: Add ad member with idmap_autorid backend Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2022-02-15 11:44:34 +03:00
return $ret;
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_ad_member_idmap_rid
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
{
my ($self, $prefix, $dcvars) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING S3 AD MEMBER WITH idmap_rid config...";
my $member_options = "
security = ads
workgroup = $dcvars->{DOMAIN}
realm = $dcvars->{REALM}
idmap config * : backend = tdb
idmap config * : range = 1000000-1999999
idmap config $dcvars->{DOMAIN} : backend = rid
idmap config $dcvars->{DOMAIN} : range = 2000000-2999999
selftest: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
2023-06-30 13:04:33 +03:00
# Prevent overriding the provisioned lib/krb5.conf which sets certain
s4:torture/smb2/session: Fix expire tests When run with MIT kerberos, the smb2 session expire tests fail when run against the ad_member test environment. The krb5 library initializes values from the private krb5.conf profile st/ad_member/lockdir/smb_krb5/krb5.conf.ADDOMAIN, this file does not contain a defined clockskew setting. The expire tests require a low clockskew value that is set in st/ad_member/lib/krb5.conf. This patch disables the creation of the private krb5.conf for the ad_member_idmap_rid testenv, and runs the smb2.session tests against ad_member_idmap_rid instead of ad_member. Signed-off-by: Justin Stephenson <jstephen@redhat.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Wed Dec 12 12:51:24 CET 2018 on sn-devel-144
2018-12-11 18:43:13 +03:00
# values required for tests to succeed
create krb5 conf = no
selftest: allow guest login in the ad_member_idmap_rid env BUG: https://bugzilla.samba.org/show_bug.cgi?id=13944 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-16 13:43:40 +03:00
map to guest = bad user
selftest: set 'winbind expand groups = 10' for ad_member_idmap_rid This is for alias members tests. Signed-off-by: Pavel Filipenský <pfilipensky@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2023-02-27 19:03:31 +03:00
winbind expand groups = 10
CVE-2023-3347: CI: add a test for server-side mandatory signing BUG: https://bugzilla.samba.org/show_bug.cgi?id=15397 Signed-off-by: Ralph Boehme <slow@samba.org>
2023-06-20 13:46:31 +03:00
server signing = required
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $ret = $self->provision(
prefix => $prefix,
domain => $dcvars->{DOMAIN},
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
realm => $dcvars->{REALM},
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
server => "IDMAPRIDMEMBER",
password => "loCalMemberPass",
extra_options => $member_options,
selftest: correctly use RESOLV_CONF from the DC environment or "no_resolv.conf" It's important to have the correct $resolv_conf variable within provision(), because it also sets "RESOLV_WRAPPER_CONF" if needed, instead of just setting "RESOLV_CONF". There's also no point in creating an resolv.conf with the ip addresses for other roles than "active directory domain controller". Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-02-27 14:33:48 +03:00
resolv_conf => $dcvars->{RESOLV_CONF});
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
$ret or return undef;
$ret->{DOMAIN} = $dcvars->{DOMAIN};
$ret->{REALM} = $dcvars->{REALM};
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret->{DOMSID} = $dcvars->{DOMSID};
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
my $ctx;
my $prefix_abs = abs_path($prefix);
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = $dcvars->{DOMAIN};
$ctx->{realm} = $dcvars->{REALM};
$ctx->{dnsname} = lc($dcvars->{REALM});
$ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
$ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6};
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
Samba::mk_krb5_conf($ctx, "");
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
my $net = Samba::bindir_path($self, "net");
selftest: Set NSS_WRAPPER_HOSTS when creating the trusts Otherwise this relies on the order that tests run to cause the environment variable to be left behind. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
2018-08-31 11:22:54 +03:00
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
if (defined($ret->{RESOLV_WRAPPER_CONF})) {
$cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" ";
} else {
$cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" ";
}
selftest: always explicitly use RESOLV_CONF By default point RESOLV_CONF to a non-existing file and use the per environment RESOLV_CONF explicitly where needed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 20:17:36 +03:00
$cmd .= "RESOLV_CONF=\"$ret->{RESOLV_CONF}\" ";
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
$cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$net join $ret->{CONFIGURATION}";
$cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
# We need world access to this share, as otherwise the domain
# administrator from the AD domain provided by Samba4 can't
# access the share for tests.
chmod 0777, "$prefix/share";
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $ret,
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
return undef;
}
$ret->{DC_SERVER} = $dcvars->{SERVER};
$ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
$ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6};
$ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $dcvars->{USERNAME};
$ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
selftest: Add DOMAIN_ADMIN and DOMAIN_USER variables We should start using those in future. So we can distinguish which privileges we want. Currently DC_USERNAME is the Administrator. Whatever possible should use DOMIAN_USER instead. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-08 15:07:19 +03:00
$ret->{DOMAIN_ADMIN} = $dcvars->{DOMAIN_ADMIN};
$ret->{DOMAIN_ADMIN_PASSWORD} = $dcvars->{DOMAIN_ADMIN_PASSWORD};
$ret->{DOMAIN_USER} = $dcvars->{DOMAIN_USER};
$ret->{DOMAIN_USER_PASSWORD} = $dcvars->{DOMAIN_USER_PASSWORD};
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
return $ret;
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_ad_member_idmap_ad
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
{
my ($self, $prefix, $dcvars) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING S3 AD MEMBER WITH idmap_ad config...";
my $member_options = "
security = ads
workgroup = $dcvars->{DOMAIN}
realm = $dcvars->{REALM}
password server = $dcvars->{SERVER}
idmap config * : backend = tdb
idmap config * : range = 1000000-1999999
idmap config $dcvars->{DOMAIN} : backend = ad
idmap config $dcvars->{DOMAIN} : range = 2000000-2999999
tests: Make sure that idmap_ad retrieves unix nss attributes Make sure that unix_primary_group and unix_nss_info idmap_ad options work. We have two domains here and test wbinfo -i for both domains, so we also run the test without those options for the trusted domain. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Sep 2 10:35:53 UTC 2020 on sn-devel-184
2020-08-30 12:45:56 +03:00
idmap config $dcvars->{DOMAIN} : unix_primary_group = yes
idmap config $dcvars->{DOMAIN} : unix_nss_info = yes
test: Add a test for "deny ous" Not a comprehensive test for all possible combinations, but it shows the basic functionality, and it found a bug in the initial implementation :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2023-03-07 19:21:56 +03:00
idmap config $dcvars->{DOMAIN} : deny ous = \"ou=sub,DC=samba2008r2,DC=example,DC=com\"
selftest: Add idmap configuration for trusted domain for idmap_ad BUG: https://bugzilla.samba.org/show_bug.cgi?id=13903 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2019-04-23 02:07:02 +03:00
idmap config $dcvars->{TRUST_DOMAIN} : backend = ad
idmap config $dcvars->{TRUST_DOMAIN} : range = 2000000-2999999
test: Test winbind idmap_ad ticket expiry behaviour We need to make sure that winbind's idmap_ad deals fine with an expired krb ticket used to connect to AD via LDAP. In a customer situation we have seen the RFC4511 section 4.4.1 unsolicited ldap exop response coming through, but the TCP disconnect that Windows seems to do after that did not make it. Winbind deals fine with a TCP disconnect, but right now it does not handle just the section 4.4.1 response properly: It completely hangs. This test requests a ticket valid for 5 seconds and makes the LDAP server postpone the TCP disconnect after the ticket expiry for 10 seconds. The tests that winbind reacts to the ticket expiry exop response by making sure in this situation the wbinfo call running into the issue takes less than 8 seconds. If it did not look at the expiry exop response, it would take more than 10 seconds. Bug: https://bugzilla.samba.org/show_bug.cgi?id=14465 Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2020-08-13 15:59:58 +03:00
gensec_gssapi:requested_life_time = 5
selftest: test listing trusted domains that includes an NT4 domain BUG: https://bugzilla.samba.org/show_bug.cgi?id=15533 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2024-01-18 19:42:33 +03:00
winbind scan trusted domains = yes
selftest: Add "winbind expand groups = 1" to setup_ad_member_idmap_ad BUG: https://bugzilla.samba.org/show_bug.cgi?id=15605 Signed-off-by: Pavel Filipenský <pfilipensky@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> (cherry picked from commit 2dab3a331b5511b4f2253f2b3b4513db7e52ea9a)
2024-03-26 00:38:18 +03:00
winbind expand groups = 1
selftest: add ad_member_idmap_ad server Add a member server that uses idmap_ad. Gets used in the next commit. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2017-07-10 17:19:18 +03:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $ret = $self->provision(
prefix => $prefix,
domain => $dcvars->{DOMAIN},
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
realm => $dcvars->{REALM},
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
server => "IDMAPADMEMBER",
password => "loCalMemberPass",
extra_options => $member_options,
selftest: correctly use RESOLV_CONF from the DC environment or "no_resolv.conf" It's important to have the correct $resolv_conf variable within provision(), because it also sets "RESOLV_WRAPPER_CONF" if needed, instead of just setting "RESOLV_CONF". There's also no point in creating an resolv.conf with the ip addresses for other roles than "active directory domain controller". Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-02-27 14:33:48 +03:00
resolv_conf => $dcvars->{RESOLV_CONF});
selftest: new environment "ad_member_idmap_rid" This uses idmap_rid for the primary domain. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-04-05 14:27:14 +03:00
$ret or return undef;
$ret->{DOMAIN} = $dcvars->{DOMAIN};
$ret->{REALM} = $dcvars->{REALM};
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret->{DOMSID} = $dcvars->{DOMSID};
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
my $ctx;
my $prefix_abs = abs_path($prefix);
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = $dcvars->{DOMAIN};
$ctx->{realm} = $dcvars->{REALM};
$ctx->{dnsname} = lc($dcvars->{REALM});
$ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
$ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6};
selftest: Do not use a central credential cache We should use seperate caches and set the default_ccache_name accordingly. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-09-22 19:46:28 +03:00
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
Samba::mk_krb5_conf($ctx, "");
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
my $net = Samba::bindir_path($self, "net");
selftest: Set NSS_WRAPPER_HOSTS when creating the trusts Otherwise this relies on the order that tests run to cause the environment variable to be left behind. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
2018-08-31 11:22:54 +03:00
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
if (defined($ret->{RESOLV_WRAPPER_CONF})) {
$cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" ";
} else {
$cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" ";
}
selftest: always explicitly use RESOLV_CONF By default point RESOLV_CONF to a non-existing file and use the per environment RESOLV_CONF explicitly where needed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 20:17:36 +03:00
$cmd .= "RESOLV_CONF=\"$ret->{RESOLV_CONF}\" ";
Add testcase for idmap_rfc2307 module Create a new test environment with 'idmap config DOMAIN : backend = rfc2307'. A new test script adds LDAP records and queries them again for the mapped uid and gid. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Mar 9 08:18:43 CET 2013 on sn-devel-104
2013-02-21 23:33:23 +04:00
$cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
selftest/Samba3: use the correct "SELFTEST_WINBINDD_SOCKET_DIR" for "net join" This avoids picking up a gid from the DC's winbind when creating BUILTIN\Administrators Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Thu Mar 24 22:15:44 CET 2016 on sn-devel-144
2016-03-22 16:09:08 +03:00
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$cmd .= "$net join $ret->{CONFIGURATION}";
$cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
selftest: Don't die() when the join fails This kills off everything without a proper shutdown, and is difficult to debug. Andrew Bartlett
2011-04-27 16:18:18 +04:00
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
selftest: Restore the s3member environment by avoiding smbcacls This removes the need for acls on the filesystem for simple domain member tests. ACL tests should be written at some point... Andrew Bartlett Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
2011-04-29 09:54:20 +04:00
# We need world access to this share, as otherwise the domain
# administrator from the AD domain provided by Samba4 can't
# access the share for tests.
chmod 0777, "$prefix/share";
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $ret,
nmbd => "yes",
winbindd => "yes",
smbd => "yes")) {
selftest:Samba3: call wait_for_start() from check_or_start() ...instead of calling the two one after another each time. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:02:33 +04:00
return undef;
}
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$ret->{DC_SERVER} = $dcvars->{SERVER};
$ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
selftest/Samba3: also bind to ipv6 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-06-19 19:21:16 +04:00
$ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6};
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $dcvars->{USERNAME};
$ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
selftest: Add DOMAIN_ADMIN and DOMAIN_USER variables We should start using those in future. So we can distinguish which privileges we want. Currently DC_USERNAME is the Administrator. Whatever possible should use DOMIAN_USER instead. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-08 15:07:19 +03:00
$ret->{DOMAIN_ADMIN} = $dcvars->{DOMAIN_ADMIN};
$ret->{DOMAIN_ADMIN_PASSWORD} = $dcvars->{DOMAIN_ADMIN_PASSWORD};
$ret->{DOMAIN_USER} = $dcvars->{DOMAIN_USER};
$ret->{DOMAIN_USER_PASSWORD} = $dcvars->{DOMAIN_USER_PASSWORD};
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
selftest: Make trusted domain information available for idmap_ad environment BUG: https://bugzilla.samba.org/show_bug.cgi?id=13903 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2019-04-18 23:04:09 +03:00
$ret->{TRUST_SERVER} = $dcvars->{TRUST_SERVER};
$ret->{TRUST_USERNAME} = $dcvars->{TRUST_USERNAME};
$ret->{TRUST_PASSWORD} = $dcvars->{TRUST_PASSWORD};
$ret->{TRUST_DOMAIN} = $dcvars->{TRUST_DOMAIN};
$ret->{TRUST_REALM} = $dcvars->{TRUST_REALM};
$ret->{TRUST_DOMSID} = $dcvars->{TRUST_DOMSID};
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
return $ret;
}
selftest: Add test for one-way trust wbinfo auth Signed-off-by: Isaac Boukris <iboukris@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Wed Jul 7 15:01:22 UTC 2021 on sn-devel-184
2020-10-08 15:00:44 +03:00
sub setup_ad_member_oneway
{
my ($self, $prefix, $dcvars) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING S3 AD MEMBER WITH one-way trust...";
my $member_options = "
security = ads
workgroup = $dcvars->{DOMAIN}
realm = $dcvars->{REALM}
password server = $dcvars->{SERVER}
idmap config * : backend = tdb
idmap config * : range = 1000000-1999999
gensec_gssapi:requested_life_time = 5
";
my $ret = $self->provision(
prefix => $prefix,
domain => $dcvars->{DOMAIN},
server => "S2KMEMBER",
password => "loCalS2KMemberPass",
extra_options => $member_options,
resolv_conf => $dcvars->{RESOLV_CONF});
$ret or return undef;
$ret->{DOMAIN} = $dcvars->{DOMAIN};
$ret->{REALM} = $dcvars->{REALM};
$ret->{DOMSID} = $dcvars->{DOMSID};
my $ctx;
my $prefix_abs = abs_path($prefix);
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = $dcvars->{DOMAIN};
$ctx->{realm} = $dcvars->{REALM};
$ctx->{dnsname} = lc($dcvars->{REALM});
$ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
$ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6};
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
Samba::mk_krb5_conf($ctx, "");
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
my $net = Samba::bindir_path($self, "net");
# Add hosts file for name lookups
my $cmd = "NSS_WRAPPER_HOSTS='$ret->{NSS_WRAPPER_HOSTS}' ";
$cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
if (defined($ret->{RESOLV_WRAPPER_CONF})) {
$cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" ";
} else {
$cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" ";
}
$cmd .= "RESOLV_CONF=\"$ret->{RESOLV_CONF}\" ";
$cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
$cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" ";
$cmd .= "$net join $ret->{CONFIGURATION}";
$cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
if (system($cmd) != 0) {
warn("Join failed\n$cmd");
return undef;
}
if (not $self->check_or_start(
env_vars => $ret,
winbindd => "yes")) {
return undef;
}
$ret->{DC_SERVER} = $dcvars->{SERVER};
$ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
$ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6};
$ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
$ret->{DC_USERNAME} = $dcvars->{USERNAME};
$ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
selftest: Add DOMAIN_ADMIN and DOMAIN_USER variables We should start using those in future. So we can distinguish which privileges we want. Currently DC_USERNAME is the Administrator. Whatever possible should use DOMIAN_USER instead. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-08 15:07:19 +03:00
$ret->{DOMAIN_ADMIN} = $dcvars->{DOMAIN_ADMIN};
$ret->{DOMAIN_ADMIN_PASSWORD} = $dcvars->{DOMAIN_ADMIN_PASSWORD};
$ret->{DOMAIN_USER} = $dcvars->{DOMAIN_USER};
$ret->{DOMAIN_USER_PASSWORD} = $dcvars->{DOMAIN_USER_PASSWORD};
selftest: Add test for one-way trust wbinfo auth Signed-off-by: Isaac Boukris <iboukris@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Wed Jul 7 15:01:22 UTC 2021 on sn-devel-184
2020-10-08 15:00:44 +03:00
$ret->{TRUST_SERVER} = $dcvars->{TRUST_SERVER};
$ret->{TRUST_USERNAME} = $dcvars->{TRUST_USERNAME};
$ret->{TRUST_PASSWORD} = $dcvars->{TRUST_PASSWORD};
$ret->{TRUST_DOMAIN} = $dcvars->{TRUST_DOMAIN};
$ret->{TRUST_REALM} = $dcvars->{TRUST_REALM};
$ret->{TRUST_DOMSID} = $dcvars->{TRUST_DOMSID};
return $ret;
}
selftest: Add ad_member_fips target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:35 +03:00
sub setup_ad_member_fips
{
my ($self,
$prefix,
$dcvars,
$trustvars_f,
$trustvars_e) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING AD FIPS MEMBER...";
return $self->provision_ad_member($prefix,
selftest: Pass down the machine account name to provision_ad_member Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-11 18:59:51 +03:00
"FIPSADMEMBER",
selftest: Add ad_member_fips target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:35 +03:00
$dcvars,
$trustvars_f,
$trustvars_e,
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
undef,
selftest: Add ad_member_fips target Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:35 +03:00
1);
}
selftest: Rename offline logon env to ad_member_offlogon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed May 19 20:01:00 UTC 2021 on sn-devel-184
2021-05-19 09:18:22 +03:00
sub setup_ad_member_offlogon
selftest: Add ad_member_offline_logon env Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:37:11 +03:00
{
my ($self,
$prefix,
$dcvars,
$trustvars_f,
$trustvars_e) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
print "PROVISIONING AD MEMBER OFFLINE LOGON...";
return $self->provision_ad_member($prefix,
"OFFLINEADMEM",
$dcvars,
$trustvars_f,
$trustvars_e,
selftest: Turn on offline logon for ad_member_offline_logon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:27 +03:00
undef,
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
undef,
selftest: Turn on offline logon for ad_member_offline_logon Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:40:27 +03:00
1);
selftest: Add ad_member_offline_logon env Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 11:37:11 +03:00
}
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
sub setup_ad_member_idmap_nss
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
{
my ($self,
$prefix,
$dcvars,
$trustvars_f,
$trustvars_e) = @_;
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
print "PROVISIONING AD MEMBER WITHOUT NSS WINBIND WITH idmap_nss config...";
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
my $extra_member_options = "
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
# bob:x:65521:65531:localbob gecos:/:/bin/false
# jane:x:65520:65531:localjane gecos:/:/bin/false
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
# jackthemapper:x:65519:65531:localjackthemaper gecos:/:/bin/false
# jacknomapper:x:65518:65531:localjacknomaper gecos:/:/bin/false
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
idmap config $dcvars->{DOMAIN} : backend = nss
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
idmap config $dcvars->{DOMAIN} : range = 65518-65521
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
# Support SMB1 so that we can use posix_whoami().
client min protocol = CORE
server min protocol = LANMAN1
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
username map = $prefix/lib/username.map
";
my $ret = $self->provision_ad_member($prefix,
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
"ADMEMIDMAPNSS",
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
$dcvars,
$trustvars_f,
$trustvars_e,
$extra_member_options,
undef,
undef,
1);
open(USERMAP, ">$prefix/lib/username.map") or die("Unable to open $prefix/lib/username.map");
print USERMAP "
selftest: Add to "username.map" mapping for jackthemappergroup BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Only for environment ad_member_idmap_nss. * !jacknompapper = \@jackthemappergroup jackthemaper from group jackthemappergroup is mapped to jacknompapper * !root = jacknomappergroup since there is no '@' or '+' prefix, it is not an UNIX group mapping Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-04-05 09:31:41 +03:00
!jacknomapper = \@jackthemappergroup
!root = jacknomappergroup
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
root = $dcvars->{DOMAIN}/root
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
bob = $dcvars->{DOMAIN}/bob
CVE-2020-25717: selftest: Add ad_member_no_nss_wb environment This environment creates an AD member that doesn't have 'nss_winbind' configured, while winbindd is still started. For testing we map a DOMAIN\root user to the local root account and unix token of the local root user. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Samuel Cabrero <scabrero@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 13:31:29 +03:00
";
close(USERMAP);
return $ret;
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_simpleserver
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
{
my ($self, $path) = @_;
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
print "PROVISIONING simple server...";
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
selftest: Add tests for vfs_aio_fork Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 21 13:12:33 CEST 2012 on sn-devel-104
2012-08-21 13:22:54 +04:00
my $prefix_abs = abs_path($path);
s3: selftest: Add a test for vfs_streams_depot with the target path outside of the share. Mark as knownfail.d/simpleserver_streams BUG: https://bugzilla.samba.org/show_bug.cgi?id=14760 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <noel.power@suse.com>
2021-07-21 03:50:49 +03:00
mkdir($prefix_abs, 0777);
my $external_streams_depot="$prefix_abs/external_streams_depot";
remove_tree($external_streams_depot);
mkdir($external_streams_depot, 0777);
selftest: Add tests for vfs_aio_fork Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 21 13:12:33 CEST 2012 on sn-devel-104
2012-08-21 13:22:54 +04:00
selftest: Remove invalid security=share and rename secshare to simpleserver This avoids the loadparm code failing due to the invalid smb.conf entry, and removes the very last hint of security=share! Andrew Bartlett
2012-09-26 04:40:17 +04:00
my $simpleserver_options = "
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
lanman auth = yes
selftest: set "ntlm auth = yes" for now as a lot of tests rely on it In future we should use a mix of environments some which support ntlmv1 and some without. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-07-21 10:26:27 +03:00
ntlm auth = yes
selftest: Load time_audit and full_audit modules for all tests Previously the only test was to load these modules to trigger the smb_vfs_assert_all_fns check. As these modules just pass through the calls, they can be loaded for all tests to ensure that the codepaths are exercised. This would have found the problem in smb_time_audit_offload_read_recv. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13568 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Aug 13 22:35:20 CEST 2018 on sn-devel-144
2018-08-10 20:38:28 +03:00
vfs objects = xattr_tdb streams_depot
selftest: add change notify = no to simpleserver env A subsequent patch will use this env in a torture test. The aren't any existing tests that make use of change notify, so disabling change notify in this test environment doesn't impact existing tests. Bug: https://bugzilla.samba.org/show_bug.cgi?id=11444 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2015-08-12 12:35:27 +03:00
change notify = no
selftest: Rename 'smb encrypt' to 'server smb encrypt' This makes it more clear what we want. 'smb encrypt' is a synonym for 'server smb encrypt'. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-09-08 11:15:22 +03:00
server smb encrypt = off
selftest: Show that 'allow trusted domains = no' firewalls Unix User|Group UNEXPECTED(failure): samba3.blackbox.smbclient_auth.plain.local_creds.smbclient //LOCALSHARE4/forceuser_unixonly as user(simpleserver) REASON: Exception: Exception: tree connect failed: NT_STATUS_AUTHENTICATION_FIREWALL_FAILED BUG: https://bugzilla.samba.org/show_bug.cgi?id=15469 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2023-09-04 17:29:46 +03:00
allow trusted domains = no
selftest: Add tests for vfs_aio_fork Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 21 13:12:33 CEST 2012 on sn-devel-104
2012-08-21 13:22:54 +04:00
selftest: add some basic testing for aio_pthread Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2018-04-20 12:27:30 +03:00
[vfs_aio_pthread]
path = $prefix_abs/share
read only = no
vfs objects = aio_pthread
aio_pthread:aio open = yes
s3: tests: Our tests for "smbd async dosmode = yes" haven't been working correctly as the parameter has been set incorrectly. If must be "smbd async dosmode", not "smbd:async dosmode" BUG: https://bugzilla.samba.org/show_bug.cgi?id=14758 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-07-15 01:26:42 +03:00
smbd async dosmode = no
selftest: add some basic testing for aio_pthread Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2018-04-20 12:27:30 +03:00
selftest: run smbtorture3 SMB2-BASIC tests against additional shares This runs the smbtorture3 SMB2-BASIC and smb2.compound_find tests against shares with "smbd:async dosmode" enabled. On the vfs_aio_pthread_async_dosmode_force_sync* shares we force a sync threadpool which ensures we test behaviour on systems that don't support unshare(CLONE_FS) and also don't support per-thread-credentials. This simulates the code path of non linux systems. And makes sure that we don't regress there. We also test with xattr_tdb and without. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Ralph Boehme <slow@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Fri Jul 27 16:04:02 CEST 2018 on sn-devel-144
2018-07-26 19:13:44 +03:00
[vfs_aio_pthread_async_dosmode_default1]
path = $prefix_abs/share
read only = no
vfs objects = aio_pthread
store dos attributes = yes
aio_pthread:aio open = yes
s3: tests: Our tests for "smbd async dosmode = yes" haven't been working correctly as the parameter has been set incorrectly. If must be "smbd async dosmode", not "smbd:async dosmode" BUG: https://bugzilla.samba.org/show_bug.cgi?id=14758 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-07-15 01:26:42 +03:00
smbd async dosmode = yes
selftest: run smbtorture3 SMB2-BASIC tests against additional shares This runs the smbtorture3 SMB2-BASIC and smb2.compound_find tests against shares with "smbd:async dosmode" enabled. On the vfs_aio_pthread_async_dosmode_force_sync* shares we force a sync threadpool which ensures we test behaviour on systems that don't support unshare(CLONE_FS) and also don't support per-thread-credentials. This simulates the code path of non linux systems. And makes sure that we don't regress there. We also test with xattr_tdb and without. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Ralph Boehme <slow@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Fri Jul 27 16:04:02 CEST 2018 on sn-devel-144
2018-07-26 19:13:44 +03:00
[vfs_aio_pthread_async_dosmode_default2]
path = $prefix_abs/share
read only = no
vfs objects = aio_pthread xattr_tdb
store dos attributes = yes
aio_pthread:aio open = yes
s3: tests: Our tests for "smbd async dosmode = yes" haven't been working correctly as the parameter has been set incorrectly. If must be "smbd async dosmode", not "smbd:async dosmode" BUG: https://bugzilla.samba.org/show_bug.cgi?id=14758 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-07-15 01:26:42 +03:00
smbd async dosmode = yes
selftest: run smbtorture3 SMB2-BASIC tests against additional shares This runs the smbtorture3 SMB2-BASIC and smb2.compound_find tests against shares with "smbd:async dosmode" enabled. On the vfs_aio_pthread_async_dosmode_force_sync* shares we force a sync threadpool which ensures we test behaviour on systems that don't support unshare(CLONE_FS) and also don't support per-thread-credentials. This simulates the code path of non linux systems. And makes sure that we don't regress there. We also test with xattr_tdb and without. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Ralph Boehme <slow@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Fri Jul 27 16:04:02 CEST 2018 on sn-devel-144
2018-07-26 19:13:44 +03:00
CI: add test "smb2.async_dosmode" Verifies async-dosmode sync fallback works with shadow_copy2 which returns ENOSYS for SMB_VFS_GET_DOS_ATTRIBUTES_SEND(). BUG: https://bugzilla.samba.org/show_bug.cgi?id=14957 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-01-25 19:59:37 +03:00
[async_dosmode_shadow_copy2]
path = $prefix_abs/share
read only = no
vfs objects = shadow_copy2 xattr_tdb
smbd async dosmode = yes
selftest: Add tests for vfs_aio_fork Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 21 13:12:33 CEST 2012 on sn-devel-104
2012-08-21 13:22:54 +04:00
[vfs_aio_fork]
path = $prefix_abs/share
selftest: VFSLIBDIR is not needed, the waf build knows where to find modules automatically This is why was relinks on install, because it is fixing these internal variables up. Andrew Bartlett Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-22 10:13:21 +04:00
vfs objects = aio_fork
selftest: Add tests for vfs_aio_fork Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 21 13:12:33 CEST 2012 on sn-devel-104
2012-08-21 13:22:54 +04:00
read only = no
vfs_aio_fork:erratic_testing_mode=yes
s4/torture: add a test for dosmode and hidden files Bug: https://bugzilla.samba.org/show_bug.cgi?id=11992 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-06-23 20:13:05 +03:00
[dosmode]
path = $prefix_abs/share
vfs objects =
store dos attributes = yes
hide files = /hidefile/
hide dot files = yes
selftest: disable SMB encryption in simpleserver environment Encryption is currently not tested in this env so we can safely turn it off. The next commit will add a blackbox tests that test combinations of having encryption globally turned off and enabled (desired/required) on a share. This also adds a new share "enc_desired" with "smb encrypt = desired" which will be used by the test in the next commit. Bug: https://bugzilla.samba.org/show_bug.cgi?id=12520 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-01-17 19:23:51 +03:00
selftest: Test hide new files timeout Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Fri Nov 9 03:49:55 CET 2018 on sn-devel-144
2018-11-08 15:27:58 +03:00
[hidenewfiles]
path = $prefix_abs/share
hide new files timeout = 5
s3: selftest: Add a test for vfs_streams_depot with the target path outside of the share. Mark as knownfail.d/simpleserver_streams BUG: https://bugzilla.samba.org/show_bug.cgi?id=14760 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <noel.power@suse.com>
2021-07-21 03:50:49 +03:00
[external_streams_depot]
path = $prefix_abs/share
read only = no
streams_depot:directory = $external_streams_depot
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $vars = $self->provision(
prefix => $path,
domain => "WORKGROUP",
server => "LOCALSHARE4",
password => "local4pass",
extra_options => $simpleserver_options);
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
$vars or return undef;
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $vars,
nmbd => "yes",
smbd => "yes")) {
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
return undef;
}
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
return $vars;
}
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
sub create_file_chmod($$)
{
my ($name, $mode) = @_;
my $fh;
unless (open($fh, '>', $name)) {
warn("Unable to open $name");
return undef;
}
chmod($mode, $fh);
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_fileserver
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
{
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
my ($self, $path, $more_conf, $server) = @_;
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
my $prefix_abs = abs_path($path);
selftest: Add test for the dfree command Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Fri Jul 17 22:09:34 CEST 2015 on sn-devel-104
2015-07-14 17:30:35 +03:00
my $srcdir_abs = abs_path($self->{srcdir});
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
print "PROVISIONING file server ...\n";
my @dirs = ();
mkdir($prefix_abs, 0777);
s3:tests: Add blackbox test for 'net usershare' Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2017-06-22 15:17:07 +03:00
my $usershare_dir="$prefix_abs/lib/usershare";
mkdir("$prefix_abs/lib", 0755);
remove_tree($usershare_dir);
mkdir($usershare_dir, 01770);
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
my $share_dir="$prefix_abs/share";
# Create share directory structure
my $lower_case_share_dir="$share_dir/lower-case";
push(@dirs, $lower_case_share_dir);
my $lower_case_share_dir_30000="$share_dir/lower-case-30000";
push(@dirs, $lower_case_share_dir_30000);
selftest: Add test for the dfree command Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Fri Jul 17 22:09:34 CEST 2015 on sn-devel-104
2015-07-14 17:30:35 +03:00
my $dfree_share_dir="$share_dir/dfree";
push(@dirs, $dfree_share_dir);
selftest: more dfree command and smbclient disk usage tests Add tests that cover disk usage printing by smbclient, as well as passing directory info to the "dfree command" script. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11662 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Jan 6 03:58:59 CET 2016 on sn-devel-144
2016-01-06 01:12:36 +03:00
push(@dirs, "$dfree_share_dir/subdir1");
push(@dirs, "$dfree_share_dir/subdir2");
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
push(@dirs, "$dfree_share_dir/subdir3");
selftest: Add test for the dfree command Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Fri Jul 17 22:09:34 CEST 2015 on sn-devel-104
2015-07-14 17:30:35 +03:00
s3/script/tests: Add simple (smb1 & smb2) get/set/list tests for smbcquotas BUG: https://bugzilla.samba.org/show_bug.cgi?id=13553 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-21 11:29:59 +03:00
my $quotadir_dir="$share_dir/quota";
push(@dirs, $quotadir_dir);
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
my $valid_users_sharedir="$share_dir/valid_users";
push(@dirs,$valid_users_sharedir);
vfs_offline: add a blackbox test Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-11-04 13:06:03 +03:00
my $offline_sharedir="$share_dir/offline";
push(@dirs,$offline_sharedir);
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
my $force_user_valid_users_dir = "$share_dir/force_user_valid_users";
push(@dirs, $force_user_valid_users_dir);
s3:tests: Do not delete the contets of LOCAL_PATH with tarmode test The test_smbclient_tarmode.pl test operates on $LOCAL_PATH by default and removes everything. So it deletes all precreated files and directories which the setup_fileserver() function initially set up. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12867 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-06-27 00:18:30 +03:00
my $tarmode_sharedir="$share_dir/tarmode";
push(@dirs,$tarmode_sharedir);
selftest: Add a new tarmode shares samba3.blackbox.smbclient_tar & samba3.blackbox.smbclient_tar need separate shares with own xattr tdb(s) BUG: https://bugzilla.samba.org/show_bug.cgi?id=14581 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-11-26 20:31:50 +03:00
my $tarmode2_sharedir="$share_dir/tarmode2";
push(@dirs,$tarmode2_sharedir);
selftest: Add basic smbcacls test(s) Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-06-30 20:03:42 +03:00
my $smbcacls_sharedir="$share_dir/smbcacls";
push(@dirs,$smbcacls_sharedir);
s3:tests: Add blackbox test for 'net usershare' Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2017-06-22 15:17:07 +03:00
my $usershare_sharedir="$share_dir/usershares";
push(@dirs,$usershare_sharedir);
s3:tests: Add test for a dropbox with dir mode 0733 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Feb 18 21:07:44 UTC 2020 on sn-devel-184
2020-02-13 15:48:17 +03:00
my $dropbox_sharedir="$share_dir/dropbox";
push(@dirs,$dropbox_sharedir);
s3: selftest: Add share definition [bad_iconv] in fileserver. Creates a utf8 valid filename within that is invalid in CP850. Useful to test smbclient list directory character set conversions. https://bugzilla.samba.org/show_bug.cgi?id=14374 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-05-12 00:10:54 +03:00
my $bad_iconv_sharedir="$share_dir/bad_iconv";
push(@dirs, $bad_iconv_sharedir);
s3: smbd: Add two tests showing recursive directory delete of a directory containing veto file and msdfs links over SMB2. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14878 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-10-22 01:06:20 +03:00
my $veto_sharedir="$share_dir/veto";
push(@dirs,$veto_sharedir);
s3:selftest: Add test for virus scanner Bug: https://bugzilla.samba.org/show_bug.cgi?id=14971 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Pair-Programmed-With: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-02-08 17:35:48 +03:00
my $virusfilter_sharedir="$share_dir/virusfilter";
push(@dirs,$virusfilter_sharedir);
s3: torture: Add 2 new tests SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-NO, SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-YES. We currently allow setting the delete on close bit for a directory containing only explicitly hidden/vetoed files in the case where "delete veto files = yes" *and* "delete veto files = no". For the "delete veto files = no" case we should be denying setting the delete on close bit when the client tries to set it (that's the only time Windows looks at the bit and returns an error to the user). We already do the in the dangling symlink case, we just missed it in the !is_visible_fsp() case. Mark SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-NO as knownfail for now. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15023 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-03-21 23:45:25 +03:00
my $delete_unwrite_sharedir="$share_dir/delete_unwrite";
push(@dirs,$delete_unwrite_sharedir);
push(@dirs, "$delete_unwrite_sharedir/delete_veto_yes");
push(@dirs, "$delete_unwrite_sharedir/delete_veto_no");
s3:smbd implement volume serial number parameter BUG: https://bugzilla.samba.org/show_bug.cgi?id=14765 RN: add new smb.conf parameter "volume serial number" to allow overriding the generated default value Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed=by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Jun 6 17:42:37 UTC 2022 on sn-devel-184
2022-05-31 22:13:25 +03:00
my $volume_serial_number_sharedir="$share_dir/volume_serial_number";
push(@dirs, $volume_serial_number_sharedir);
selftest: use 10.53.57.0/8 instead of 127.0.0.1/8 This makes our testing much more realistic and allows the removal of some knowfail entries. It also means the testing with network namespaces on Linux can use the same addresses as our socket wrapper testing. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-01-24 00:29:19 +03:00
my $ip4 = Samba::get_ipv4_addr("FILESERVER");
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
my $fileserver_options = "
smbd: bring back "smb3 unix extensions" option This basically reverts commit b3cae8dcf192f65031f143e5bb9135c895611d98 with a few important differences: * SMB3 UNIX extensions are always built, but disabled by default at runtime. * They are globally enabled in the fileserver test environment. * It's now a per-share option, so admins can selectively disable them on a per-share basis. This allows clients to detect early that a share doesn't support user mount requested POSIX and fail appropiately, passing the failure to the requesting application (mount command). Signed-off-by: Ralph Boehme <slow@samba.org>
2023-11-08 19:49:19 +03:00
smb3 unix extensions = yes
selftest: enable kernel change notifications in the fileserver environment This environment is currently not used for any test in the smb2 testsuite, so this change doesn't affect any existing test. A subsequent commit will add a test for change notifications with kernel change notify enabled. It verifies a bug (this one) that only crops up in such a setup and causes rename events to get lost. Bug: https://bugzilla.samba.org/show_bug.cgi?id=12903 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-07-13 17:01:53 +03:00
kernel change notify = yes
selftest: add end-to-end tests for mdssvc with a fake HTTP server Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Noel Power <noel.power@suse.com>
2019-07-28 16:25:54 +03:00
spotlight backend = elasticsearch
selftest: use 10.53.57.0/8 instead of 127.0.0.1/8 This makes our testing much more realistic and allows the removal of some knowfail entries. It also means the testing with network namespaces on Linux can use the same addresses as our socket wrapper testing. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-01-24 00:29:19 +03:00
elasticsearch:address = $ip4
selftest: add end-to-end tests for mdssvc with a fake HTTP server Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Noel Power <noel.power@suse.com>
2019-07-28 16:25:54 +03:00
elasticsearch:port = 8080
s3:mdssvc: make use of lp_parm_const_string() We don't need any substitution for elasticsearch options. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-10-15 14:38:16 +03:00
elasticsearch:mappings = $srcdir_abs/source3/rpc_server/mdssvc/elasticsearch_mappings.json
selftest: enable kernel change notifications in the fileserver environment This environment is currently not used for any test in the smb2 testsuite, so this change doesn't affect any existing test. A subsequent commit will add a test for change notifications with kernel change notify enabled. It verifies a bug (this one) that only crops up in such a setup and causes rename events to get lost. Bug: https://bugzilla.samba.org/show_bug.cgi?id=12903 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-07-13 17:01:53 +03:00
s3:tests: Add blackbox test for 'net usershare' Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2017-06-22 15:17:07 +03:00
usershare path = $usershare_dir
usershare max shares = 10
usershare allow guests = yes
usershare prefix allow list = $usershare_sharedir
s3/script/tests: Add simple (smb1 & smb2) get/set/list tests for smbcquotas BUG: https://bugzilla.samba.org/show_bug.cgi?id=13553 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-21 11:29:59 +03:00
get quota command = $prefix_abs/getset_quota.py
set quota command = $prefix_abs/getset_quota.py
selftest: Add a new tarmode shares samba3.blackbox.smbclient_tar & samba3.blackbox.smbclient_tar need separate shares with own xattr tdb(s) BUG: https://bugzilla.samba.org/show_bug.cgi?id=14581 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-11-26 20:31:50 +03:00
[tarmode]
path = $tarmode_sharedir
comment = tar test share
xattr_tdb:file = $prefix_abs/tarmode-xattr.tdb
[tarmode2]
path = $tarmode2_sharedir
comment = tar test share
xattr_tdb:file = $prefix_abs/tarmode2-xattr.tdb
torture: beginning of a mdssvc RPC service test-suite Yikes! Most tests fail atm. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2019-04-16 17:54:21 +03:00
[spotlight]
path = $share_dir
spotlight = yes
read only = no
[no_spotlight]
path = $share_dir
spotlight = no
read only = no
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
[lowercase]
path = $lower_case_share_dir
comment = smb username is [%U]
case sensitive = True
default case = lower
preserve case = no
short preserve case = no
[lowercase-30000]
path = $lower_case_share_dir_30000
comment = smb username is [%U]
case sensitive = True
default case = lower
preserve case = no
short preserve case = no
selftest: Add test for the dfree command Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Fri Jul 17 22:09:34 CEST 2015 on sn-devel-104
2015-07-14 17:30:35 +03:00
[dfree]
path = $dfree_share_dir
comment = smb username is [%U]
dfree command = $srcdir_abs/testprogs/blackbox/dfree.sh
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
[valid-users-access]
path = $valid_users_sharedir
s3: test: Fix standalone valid users fileserver test. Test was originally added for bug #11320. At the time I remarked the only way I could get this to reproduce the issue was to use "+WORKGROUP\userdup" instead of just "+userdup" (which was the actual problem reported), but I didn't investigage enough to discover the underlying problem which is actually bug: BUG: https://bugzilla.samba.org/show_bug.cgi?id=11555 (lookup_names() logic for unqualified (no DOMAIN\ component) names is incorrect). On a standalone fileserver "WORKGROUP\name" should not resolve, but "NETBIOS-NAME\name" and just "name" should. This corrects the test now that lookups for unqualified names are now being done correctly. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Oct 15 22:58:54 CEST 2015 on sn-devel-104
2015-10-14 21:20:08 +03:00
valid users = +userdup
vfs_offline: add a blackbox test Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-11-04 13:06:03 +03:00
[offline]
path = $offline_sharedir
vfs objects = offline
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
# BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878
# RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651
[force_user_valid_users]
path = $force_user_valid_users_dir
comment = force user with valid users combination test share
valid users = +force_user
force user = force_user
force group = everyone
write list = force_user
selftest: Add a blackbox test for smbget Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Christian Ambach <ambi@samba.org> Autobuild-Date(master): Fri Feb 26 14:40:55 CET 2016 on sn-devel-144
2016-02-06 12:30:29 +03:00
seltest: add test for "ignore system acls" in vfs_acl_xattr. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11806 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-03-22 00:13:25 +03:00
[ign_sysacls]
path = $share_dir
comment = ignore system acls
acl_xattr:ignore system acls = yes
selftest: add a test for "inherit owner" parameter Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-10 04:58:45 +03:00
[inherit_owner]
path = $share_dir
comment = inherit owner
inherit owner = yes
selftest: add a test for new "inherit owner" option Add a test for the "unix only" option of "inherit owner" smb.conf parameter. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Wed Aug 10 11:25:52 CEST 2016 on sn-devel-144
2016-08-10 05:00:23 +03:00
[inherit_owner_u]
path = $share_dir
comment = inherit only unix owner
inherit owner = unix only
acl_xattr:ignore system acls = yes
s3: tests: Add regression test for smbd crash on share force group change with existing connection. Mark as known fail for now. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13690 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-01-24 21:15:56 +03:00
# BUG: https://bugzilla.samba.org/show_bug.cgi?id=13690
[force_group_test]
path = $share_dir
comment = force group test
# force group = everyone
s3:tests: Add smbclient test for 'force create mode = 0664' Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Fri Feb 14 20:16:04 UTC 2020 on sn-devel-184
2020-02-12 18:30:01 +03:00
[create_mode_664]
path = $share_dir
comment = smb username is [%U]
create mask = 0644
force create mode = 0664
vfs objects = dirsort
s3:tests: Add test for a dropbox with dir mode 0733 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Feb 18 21:07:44 UTC 2020 on sn-devel-184
2020-02-13 15:48:17 +03:00
[dropbox]
path = $dropbox_sharedir
comment = smb username is [%U]
writeable = yes
vfs objects =
s3: selftest: Add share definition [bad_iconv] in fileserver. Creates a utf8 valid filename within that is invalid in CP850. Useful to test smbclient list directory character set conversions. https://bugzilla.samba.org/show_bug.cgi?id=14374 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-05-12 00:10:54 +03:00
[bad_iconv]
path = $bad_iconv_sharedir
comment = smb username is [%U]
vfs objects =
s3: smbd: Add two tests showing recursive directory delete of a directory containing veto file and msdfs links over SMB2. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14878 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-10-22 01:06:20 +03:00
[veto_files_nodelete]
path = $veto_sharedir
read only = no
msdfs root = yes
veto files = /veto_name*/
delete veto files = no
[veto_files_delete]
path = $veto_sharedir
msdfs root = yes
veto files = /veto_name*/
delete veto files = yes
s3: smbd: Add two tests showing the ability to delete a directory containing a dangling symlink over SMB2 depends on "delete veto files" setting. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14879 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-10-22 02:37:27 +03:00
[delete_veto_files_only]
path = $veto_sharedir
delete veto files = yes
s3:tests: Add test that veto files works for hidden files BUG: https://bugzilla.samba.org/show_bug.cgi?id=15360 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2023-04-19 16:35:47 +03:00
[veto_files_nohidden]
path = $veto_sharedir
veto files = /.*/
s3: tests: Add samba3.blackbox.test_veto_files. Shows we currently don't look at smb.conf veto files parameter when opening a file or directory. Checks multi-component paths. Also checks veto files that might be hidden behind a mangled name. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15143 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2022-08-11 19:51:11 +03:00
[veto_files]
path = $veto_sharedir
veto files = /veto_name*/
s3: torture: Add 2 new tests SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-NO, SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-YES. We currently allow setting the delete on close bit for a directory containing only explicitly hidden/vetoed files in the case where "delete veto files = yes" *and* "delete veto files = no". For the "delete veto files = no" case we should be denying setting the delete on close bit when the client tries to set it (that's the only time Windows looks at the bit and returns an error to the user). We already do the in the dangling symlink case, we just missed it in the !is_visible_fsp() case. Mark SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-NO as knownfail for now. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15023 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-03-21 23:45:25 +03:00
[delete_yes_unwrite]
read only = no
path = $delete_unwrite_sharedir
hide unwriteable files = yes
delete veto files = yes
[delete_no_unwrite]
read only = no
path = $delete_unwrite_sharedir
hide unwriteable files = yes
delete veto files = no
s3:selftest: Add test for virus scanner Bug: https://bugzilla.samba.org/show_bug.cgi?id=14971 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Pair-Programmed-With: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-02-08 17:35:48 +03:00
[virusfilter]
path = $virusfilter_sharedir
vfs objects = acl_xattr virusfilter
virusfilter:scanner = dummy
virusfilter:min file size = 0
virusfilter:infected files = *infected*
virusfilter:infected file action = rename
virusfilter:scan on close = yes
selftest: Show vfs_virusscanner crashes when traversing a 2-level directory tree. Modify check_infected_read() test to use a 2-level deep directory. We must have vfs_default:VFS_OPEN_HOW_RESOLVE_NO_SYMLINKS = no set on the virusscanner share as otherwise the openat flag shortcut defeats the test. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15283 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2023-01-12 21:22:09 +03:00
vfs_default:VFS_OPEN_HOW_RESOLVE_NO_SYMLINKS = no
s3:selftest: Add test for virus scanner Bug: https://bugzilla.samba.org/show_bug.cgi?id=14971 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Pair-Programmed-With: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-02-08 17:35:48 +03:00
s3:smbd implement volume serial number parameter BUG: https://bugzilla.samba.org/show_bug.cgi?id=14765 RN: add new smb.conf parameter "volume serial number" to allow overriding the generated default value Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed=by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Jun 6 17:42:37 UTC 2022 on sn-devel-184
2022-05-31 22:13:25 +03:00
[volumeserialnumber]
path = $volume_serial_number_sharedir
volume serial number = 0xdeadbeef
vfs_acl_xattr: add acl_xattr:security_acl_name option Pair-Programmed-With: Jeremy Allison <jra@samba.org> Signed-off-by: Ralph Boehme <slow@samba.org>
2022-06-03 06:37:01 +03:00
[ea_acl_xattr]
path = $share_dir
vfs objects = acl_xattr
acl_xattr:security_acl_name = user.hackme
read only = no
selftest: add some basic testing for the io_uring vfs module We're now able to build it on all linux systems and the ci runners have at least a 5.4 kernel. That's all the current vfs_io_uring requires. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Sun Sep 17 18:04:18 UTC 2023 on atb-devel-224
2023-09-16 21:00:33 +03:00
[io_uring]
path = $share_dir
vfs objects = acl_xattr fake_acls xattr_tdb streams_depot time_audit full_audit io_uring
read only = no
s3:tests: Test for users connecting to their 'homes' share This adds a test for CVE-2009-2813. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org>
2018-11-16 17:40:59 +03:00
[homes]
comment = Home directories
browseable = No
read only = No
smbtorture: test creating stream doesn't crash when using "inherit permissions = yes" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15695 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> (cherry picked from commit 09835608307ff2580f1aada84d44feddae17c80f)
2024-07-06 18:10:21 +03:00
[inherit_perms]
path = $share_dir
vfs objects = streams_depot
inherit permissions = yes
selftest: Add a blackbox test for smbget Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Christian Ambach <ambi@samba.org> Autobuild-Date(master): Fri Feb 26 14:40:55 CET 2016 on sn-devel-144
2016-02-06 12:30:29 +03:00
";
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
if (defined($more_conf)) {
$fileserver_options = $fileserver_options . $more_conf;
}
if (!defined($server)) {
$server = "FILESERVER";
}
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $vars = $self->provision(
prefix => $path,
domain => "WORKGROUP",
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
server => $server,
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
password => "fileserver",
extra_options => $fileserver_options,
no_delete_prefix => 1);
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
$vars or return undef;
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $vars,
nmbd => "yes",
smbd => "yes")) {
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
return undef;
}
mkdir($_, 0777) foreach(@dirs);
## Create case sensitive lower case share dir
foreach my $file ('a'..'z') {
my $full_path = $lower_case_share_dir . '/' . $file;
open my $fh, '>', $full_path;
# Add some content to file
print $fh $full_path;
close $fh;
}
for (my $file = 1; $file < 51; ++$file) {
my $full_path = $lower_case_share_dir . '/' . $file;
open my $fh, '>', $full_path;
# Add some content to file
print $fh $full_path;
close $fh;
}
# Create content for 30000 share
foreach my $file ('a'..'z') {
my $full_path = $lower_case_share_dir_30000 . '/' . $file;
open my $fh, '>', $full_path;
# Add some content to file
print $fh $full_path;
close $fh;
}
for (my $file = 1; $file < 30001; ++$file) {
my $full_path = $lower_case_share_dir_30000 . '/' . $file;
open my $fh, '>', $full_path;
# Add some content to file
print $fh $full_path;
close $fh;
}
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
##
## create a listable file in valid_users_share
##
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
create_file_chmod("$valid_users_sharedir/foo", 0644) or return undef;
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
s3: selftest: Add share definition [bad_iconv] in fileserver. Creates a utf8 valid filename within that is invalid in CP850. Useful to test smbclient list directory character set conversions. https://bugzilla.samba.org/show_bug.cgi?id=14374 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-05-12 00:10:54 +03:00
##
## create a valid utf8 filename which is invalid as a CP850 conversion
##
create_file_chmod("$bad_iconv_sharedir/\xED\x9F\xBF", 0644) or return undef;
s3: torture: Add 2 new tests SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-NO, SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-YES. We currently allow setting the delete on close bit for a directory containing only explicitly hidden/vetoed files in the case where "delete veto files = yes" *and* "delete veto files = no". For the "delete veto files = no" case we should be denying setting the delete on close bit when the client tries to set it (that's the only time Windows looks at the bit and returns an error to the user). We already do the in the dangling symlink case, we just missed it in the !is_visible_fsp() case. Mark SMB2-DEL-ON-CLOSE-NONWRITE-DELETE-NO as knownfail for now. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15023 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-03-21 23:45:25 +03:00
##
## create unwritable files inside inside the delete unwrite veto share dirs.
##
unlink("$delete_unwrite_sharedir/delete_veto_yes/file_444");
create_file_chmod("$delete_unwrite_sharedir/delete_veto_yes/file_444", 0444) or return undef;
unlink("$delete_unwrite_sharedir/delete_veto_no/file_444");
create_file_chmod("$delete_unwrite_sharedir/delete_veto_no/file_444", 0444) or return undef;
selftest: Add setup_fileserver() Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Robin Hack <rhack@redhat.com> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2015-05-15 10:43:29 +03:00
return $vars;
}
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
sub setup_fileserver_smb1
{
my ($self, $path) = @_;
selftest: Add 'hide new files timeout' related data to fileserver_smb1 In order to support samba3.smbtorture_s3.hidenewfiles (and moving the test to fileserver_smb1) we need to ensure we have some supporting config Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-16 19:20:07 +03:00
my $prefix_abs = abs_path($path);
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
my $conf = "
[global]
client min protocol = CORE
server min protocol = LANMAN1
tests: Move libsmb-basic to fileserver_smb1 environment This has the lower-case share, used in the next commit Bug: https://bugzilla.samba.org/show_bug.cgi?id=15313 Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2023-02-17 17:40:30 +03:00
check parent directory delete on close = yes
selftest: Add 'hide new files timeout' related data to fileserver_smb1 In order to support samba3.smbtorture_s3.hidenewfiles (and moving the test to fileserver_smb1) we need to ensure we have some supporting config Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-16 19:20:07 +03:00
[hidenewfiles]
path = $prefix_abs/share
hide new files timeout = 5
selftest: Modify fileserver_smb1 with vfs_aio params To support running tests samba3.smbtorture_s3.vfs_aio* in test env fileserver_smb1 we need to add some params to fileserver_smb1 config files. Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2020-01-07 13:55:19 +03:00
[vfs_aio_pthread]
path = $prefix_abs/share
read only = no
vfs objects = aio_pthread
aio_pthread:aio open = yes
s3: tests: Our tests for "smbd async dosmode = yes" haven't been working correctly as the parameter has been set incorrectly. If must be "smbd async dosmode", not "smbd:async dosmode" BUG: https://bugzilla.samba.org/show_bug.cgi?id=14758 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-07-15 01:26:42 +03:00
smbd async dosmode = no
selftest: Modify fileserver_smb1 with vfs_aio params To support running tests samba3.smbtorture_s3.vfs_aio* in test env fileserver_smb1 we need to add some params to fileserver_smb1 config files. Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2020-01-07 13:55:19 +03:00
[vfs_aio_pthread_async_dosmode_default1]
path = $prefix_abs/share
read only = no
vfs objects = aio_pthread
store dos attributes = yes
aio_pthread:aio open = yes
s3: tests: Our tests for "smbd async dosmode = yes" haven't been working correctly as the parameter has been set incorrectly. If must be "smbd async dosmode", not "smbd:async dosmode" BUG: https://bugzilla.samba.org/show_bug.cgi?id=14758 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-07-15 01:26:42 +03:00
smbd async dosmode = yes
selftest: Modify fileserver_smb1 with vfs_aio params To support running tests samba3.smbtorture_s3.vfs_aio* in test env fileserver_smb1 we need to add some params to fileserver_smb1 config files. Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2020-01-07 13:55:19 +03:00
[vfs_aio_pthread_async_dosmode_default2]
path = $prefix_abs/share
read only = no
vfs objects = aio_pthread xattr_tdb
store dos attributes = yes
aio_pthread:aio open = yes
s3: tests: Our tests for "smbd async dosmode = yes" haven't been working correctly as the parameter has been set incorrectly. If must be "smbd async dosmode", not "smbd:async dosmode" BUG: https://bugzilla.samba.org/show_bug.cgi?id=14758 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2021-07-15 01:26:42 +03:00
smbd async dosmode = yes
selftest: Modify fileserver_smb1 with vfs_aio params To support running tests samba3.smbtorture_s3.vfs_aio* in test env fileserver_smb1 we need to add some params to fileserver_smb1 config files. Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2020-01-07 13:55:19 +03:00
[vfs_aio_fork]
path = $prefix_abs/share
vfs objects = aio_fork
read only = no
vfs_aio_fork:erratic_testing_mode=yes
selftest: Add new test environment fileserver_smb1 fileserver_smb1 is a copy of the fileserver test environment but with the difference that it still supports SMB1, this will allow use to still run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-04 14:50:48 +03:00
";
return $self->setup_fileserver($path, $conf, "FILESERVERSMB1");
}
selftest/target: Add new alias environment fileserver_smb1_done setup_fileserver_smb1_done is an alias for setup_fileserver_smb1 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-12-17 18:26:08 +03:00
sub setup_fileserver_smb1_done
{
my ($self, $path, $dep_env) = @_;
return $self->return_alias_env($path, $dep_env);
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_ktest
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
{
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
my ($self, $prefix) = @_;
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
selftest: skip targets that are not compiled in if we do not have ADS
2012-02-14 02:04:16 +04:00
# If we didn't build with ADS, pretend this env was never available
if (not $self->have_ads()) {
return "UNKNOWN";
}
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
print "PROVISIONING server with security=ads...";
my $ktest_options = "
workgroup = KTEST
realm = ktest.samba.example.com
security = ads
s3-selftest: Require SMB signing for ktest environment This will help weed out session key errors in the krb5 code. Andrew Bartlett
2012-02-14 12:22:14 +04:00
server signing = required
selftest/Samba3: use "server min protocol = SMB3_00" for "ktest" This verifies that clients can still connect with that setting. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12540 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Fri Jan 27 12:03:39 CET 2017 on sn-devel-144
2017-01-25 23:15:44 +03:00
server min protocol = SMB3_00
client max protocol = SMB3
selftest: Disable NTLM authentication in ktest environment This allows us to prove that "ntlm auth = disabled" works Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> BUG: https://bugzilla.samba.org/show_bug.cgi?id=11923
2017-07-04 04:40:31 +03:00
# This disables NTLM auth against the local SAM, which
# we use can then test this setting by.
ntlm auth = disabled
CVE-2020-25717: selftest: configure 'ktest' env with winbindd and idmap_autorid The 'ktest' environment was/is designed to test kerberos in an active directory member setup. It was created at a time we wanted to test smbd/winbindd with kerberos without having the source4 ad dc available. This still applies to testing the build with system krb5 libraries but without relying on a running ad dc. As a domain member setup requires a running winbindd, we should test it that way, in order to reflect a valid setup. As a side effect it provides a way to demonstrate that we can accept smb connections authenticated via kerberos, but no connection to a domain controller! In order get this working offline, we need an idmap backend with ID_TYPE_BOTH support, so we use 'autorid', which should be the default choice. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14646 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 18:14:01 +03:00
idmap config * : backend = autorid
idmap config * : range = 1000000-1999999
idmap config * : rangesize = 100000
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $ret = $self->provision(
prefix => $prefix,
domain => "KTEST",
server => "LOCALKTEST6",
password => "localktest6pass",
extra_options => $ktest_options);
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
$ret or return undef;
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
my $ctx;
my $prefix_abs = abs_path($prefix);
$ctx = {};
$ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
$ctx->{domain} = "KTEST";
$ctx->{realm} = "KTEST.SAMBA.EXAMPLE.COM";
$ctx->{dnsname} = lc($ctx->{realm});
$ctx->{kdc_ipv4} = "0.0.0.0";
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
$ctx->{kdc_ipv6} = "::";
selftest: Do not use a central credential cache We should use seperate caches and set the default_ccache_name accordingly. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-09-22 19:46:28 +03:00
$ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}";
selftest: Allow a krb5.conf to be generated that covers multiple realms
2011-08-26 10:02:01 +04:00
Samba::mk_krb5_conf($ctx, "");
selftest: s3member admember test to confirm s3/s4 interopability This checks that Samba3 joins Samba4 correctly, and allows NTLM and Kerberos logons from a live Samba4 DC. This needs the common krb5.conf generation logic, and because we now override KRB5_CONFIG we must update ktest to have a valid krb5.conf. Based on an original patch by metze Andrew Bartlett
2011-04-19 10:38:46 +04:00
$ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
#This is the secrets.tdb created by 'net ads join' from Samba3 to a
#Samba4 DC with the same parameters as are being used here. The
#domain SID is S-1-5-21-1071277805-689288055-3486227160
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret->{SAMSID} = "S-1-5-21-1911091480-1468226576-2729736297";
$ret->{DOMSID} = "S-1-5-21-1071277805-689288055-3486227160";
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
tdb2: don't use TDB2 versions of test tdb files. Now tdb2 handles tdb1 files, we don't need most of commit 5eecc854236f0b943aaa89e0c3a46f9fbd208ca9 which added TDB2 versions of all the testing tdbs. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Autobuild-User: Rusty Russell <rusty@rustcorp.com.au> Autobuild-Date: Mon Dec 12 06:33:44 CET 2011 on sn-devel-104
2011-12-10 18:31:46 +04:00
system("cp $self->{srcdir}/source3/selftest/ktest-secrets.tdb $prefix/private/secrets.tdb");
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
chmod 0600, "$prefix/private/secrets.tdb";
autobuild: Remove ntdb target Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2015-03-12 16:25:38 +03:00
#Make sure there's no old ntdb file.
system("rm -f $prefix/private/secrets.ntdb");
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
#This uses a pre-calculated krb5 credentials cache, obtained by running Samba4 with:
# "--option=kdc:service ticket lifetime=239232" "--option=kdc:user ticket lifetime=239232" "--option=kdc:renewal lifetime=239232"
#
#and having in krb5.conf:
# ticket_lifetime = 799718400
# renew_lifetime = 799718400
#
s3-selftest Add tests to show kerberos works across a password change It is important that a machine account password change does not invalidate existing tickets. This is only for the default kerberos method with a password in secrets.tdb. The keytab based methods are still not tested. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Apr 6 05:24:48 CEST 2011 on sn-devel-104
2011-04-06 03:12:15 +04:00
# The commands for the -2 keytab where were:
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
# kinit administrator@KTEST.SAMBA.EXAMPLE.COM
# kvno host/localktest6@KTEST.SAMBA.EXAMPLE.COM
# kvno cifs/localktest6@KTEST.SAMBA.EXAMPLE.COM
# kvno host/LOCALKTEST6@KTEST.SAMBA.EXAMPLE.COM
# kvno cifs/LOCALKTEST6@KTEST.SAMBA.EXAMPLE.COM
#
s3-selftest Add tests to show kerberos works across a password change It is important that a machine account password change does not invalidate existing tickets. This is only for the default kerberos method with a password in secrets.tdb. The keytab based methods are still not tested. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Apr 6 05:24:48 CEST 2011 on sn-devel-104
2011-04-06 03:12:15 +04:00
# and then for the -3 keytab, I did
#
# net changetrustpw; kdestroy and the same again.
#
# This creates a credential cache with a very long lifetime (2036 at
# at 2011-04), and shows that running 'net changetrustpw' does not
# break existing logins (for the secrets.tdb method at least).
#
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
$ret->{KRB5_CCACHE}="FILE:$prefix/krb5_ccache";
s3-selftest Add tests to show kerberos works across a password change It is important that a machine account password change does not invalidate existing tickets. This is only for the default kerberos method with a password in secrets.tdb. The keytab based methods are still not tested. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Apr 6 05:24:48 CEST 2011 on sn-devel-104
2011-04-06 03:12:15 +04:00
system("cp $self->{srcdir}/source3/selftest/ktest-krb5_ccache-2 $prefix/krb5_ccache-2");
chmod 0600, "$prefix/krb5_ccache-2";
system("cp $self->{srcdir}/source3/selftest/ktest-krb5_ccache-3 $prefix/krb5_ccache-3");
chmod 0600, "$prefix/krb5_ccache-3";
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
s3-selftest: Add test for posix large reads and writes This includes encrypted reads and writes, both NTLM and kerberos. Andrew Bartlett Signed-off-by: Jeremy Allison <jra@samba.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Jan 28 00:13:57 CET 2012 on sn-devel-104
2012-01-27 08:20:17 +04:00
# We need world access to this share, as otherwise the domain
# administrator from the AD domain provided by ktest can't
# access the share for tests.
chmod 0777, "$prefix/share";
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $ret,
nmbd => "yes",
CVE-2020-25717: selftest: configure 'ktest' env with winbindd and idmap_autorid The 'ktest' environment was/is designed to test kerberos in an active directory member setup. It was created at a time we wanted to test smbd/winbindd with kerberos without having the source4 ad dc available. This still applies to testing the build with system krb5 libraries but without relying on a running ad dc. As a domain member setup requires a running winbindd, we should test it that way, in order to reflect a valid setup. As a side effect it provides a way to demonstrate that we can accept smb connections authenticated via kerberos, but no connection to a domain controller! In order get this working offline, we need an idmap backend with ID_TYPE_BOTH support, so we use 'autorid', which should be the default choice. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14646 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 18:14:01 +03:00
winbindd => "offline",
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
smbd => "yes")) {
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
return undef;
}
s3-selftest Add testing of kerberos login This uses a pre-calculated credentials cache, that should be valid until 2036. Andrew Bartlett
2011-04-04 13:13:17 +04:00
return $ret;
}
selftest: remove prototypes from some subroutine templates Rationale, as sent to samba-technical: > Why do you remove the explicit argument declarations for so many functions? > These declarations help catch usage errors, i.e. wrong number of calling > arguments, especially when you add arguments to functions. My understanding is that because these are object methods, the prototypes actually were not providing the checking benefits [see PERLSUB(1) (section "Prototypes")] -- this is evidenced by the fact that some of the prototypes I removed actually had the wrong number of arguments! Now that the subroutines are being dynamically called by function references, the checking also appears not to apply [see the same source]. There was also a more concrete reason: the setup code will automatically set up multiple environment dependencies and pass each of their vars as an individual parameter. Accomplishing this was [seemingly] impossible with the prototypes in place. Additionally, there seems to be a consensus among perl devs that prototypes are generally harmful: see this post (by my colleague) for example: http://www.perlmonks.org/?node_id=406231 Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-02-08 06:51:23 +03:00
sub setup_maptoguest
s3-selftest Add tests for 'map to guest = bad user' Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-22 07:00:21 +04:00
{
my ($self, $path) = @_;
selftest: add force_user_error_inject share in maptoguest env BUG: https://bugzilla.samba.org/show_bug.cgi?id=14617 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-25 13:47:45 +03:00
my $prefix_abs = abs_path($path);
my $libdir="$prefix_abs/lib";
my $share_dir="$prefix_abs/share";
my $errorinjectconf="$libdir/error_inject.conf";
s3-selftest Add tests for 'map to guest = bad user' Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-22 07:00:21 +04:00
print "PROVISIONING maptoguest...";
my $options = "
s3:selftest: Enable winbindd for maptoguest environment This is required for the samba3.blackbox.guest test to work. Without it, the test fails to find a group map. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andreas Schneider <asn@samba.org>
2023-04-11 06:39:04 +03:00
domain logons = yes
s3-selftest Add tests for 'map to guest = bad user' Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-22 07:00:21 +04:00
map to guest = bad user
selftest: set "ntlm auth = yes" for now as a lot of tests rely on it In future we should use a mix of environments some which support ntlmv1 and some without. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-07-21 10:26:27 +03:00
ntlm auth = yes
selftest/Samba3: enable SMB1 for maptoguest guest authentication is an old school concept, so we should make sure it also works with SMB1. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14935 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2021-12-21 16:39:25 +03:00
server min protocol = LANMAN1
selftest: add force_user_error_inject share in maptoguest env BUG: https://bugzilla.samba.org/show_bug.cgi?id=14617 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-25 13:47:45 +03:00
[force_user_error_inject]
path = $share_dir
vfs objects = acl_xattr fake_acls xattr_tdb error_inject
force user = user1
include = $errorinjectconf
s3-selftest Add tests for 'map to guest = bad user' Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-22 07:00:21 +04:00
";
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $vars = $self->provision(
prefix => $path,
domain => "WORKGROUP",
server => "maptoguest",
password => "maptoguestpass",
extra_options => $options);
s3-selftest Add tests for 'map to guest = bad user' Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-22 07:00:21 +04:00
$vars or return undef;
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
if (not $self->check_or_start(
env_vars => $vars,
nmbd => "yes",
s3:selftest: Enable winbindd for maptoguest environment This is required for the samba3.blackbox.guest test to work. Without it, the test fails to find a group map. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andreas Schneider <asn@samba.org>
2023-04-11 06:39:04 +03:00
winbindd => "yes",
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
smbd => "yes")) {
s3-selftest Add tests for 'map to guest = bad user' Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-22 07:00:21 +04:00
return undef;
}
return $vars;
}
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
sub stop_sig_term($$) {
my ($self, $pid) = @_;
kill("USR1", $pid) or kill("ALRM", $pid) or warn("Unable to kill $pid: $!");
}
sub stop_sig_kill($$) {
my ($self, $pid) = @_;
selftest/Samba3: use the same sequence of signals to shutdown samba3 as with the shell scripts When we kill the timelimit process with SIGKILL, it can't kill its children... metze
2009-03-20 16:25:15 +03:00
kill("ALRM", $pid) or warn("Unable to kill $pid: $!");
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
}
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
sub write_pid($$$)
{
my ($env_vars, $app, $pid) = @_;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
open(PID, ">$env_vars->{PIDDIR}/timelimit.$app.pid");
print PID $pid;
close(PID);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
}
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
sub read_pid($$)
{
my ($env_vars, $app) = @_;
open(PID, "<$env_vars->{PIDDIR}/timelimit.$app.pid");
my $pid = <PID>;
close(PID);
return $pid;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
}
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
# builds up the cmd args to run an s3 binary (i.e. smbd, nmbd, etc)
sub make_bin_cmd
{
my ($self, $binary, $env_vars, $options, $valgrind, $dont_log_stdout) = @_;
selftest: added a pipe on stdin in s3 child processes this adds a pipe for STDIN in smbd, nmbd and winbindd when run in selftest. This allows those processes to detect when they should exit by looking for EOF on stdin.
2012-01-03 09:48:29 +04:00
selftest: Do not force -d0 for smbd/nmbd/winbindd We have the env variable SERVER_LOG_LEVEL which allows you to change the log level on the command line. If we force -d0 this will not work. make test TESTS="samba" SERVER_LOG_LEVEL=10 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-02-09 18:33:10 +03:00
my @optargs = ();
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
if (defined($options)) {
@optargs = split(/ /, $options);
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
}
my @preargs = (Samba::bindir_path($self, "timelimit"), $self->{server_maxtime});
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
if (defined($valgrind)) {
@preargs = split(/ /, $valgrind);
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
}
my @args = ("-F", "--no-process-group",
tests: Use --configfile instead of -s We should use long options in tests to make clear what we are trying to do. Also the -s short option will be removed for --configfile later. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-04-14 12:44:51 +03:00
"--configfile=$env_vars->{SERVERCONFFILE}",
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
"-l", $env_vars->{LOGDIR});
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
if (not defined($dont_log_stdout)) {
s3: Remove --log-stdout from daemons The common cmdline parser provides --debug-stdout. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-01-11 11:52:36 +03:00
push(@args, "--debug-stdout");
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
}
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
return (@preargs, $binary, @args, @optargs);
}
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
sub check_or_start($$) {
my ($self, %args) = @_;
my $env_vars = $args{env_vars};
my $nmbd = $args{nmbd} // "no";
my $winbindd = $args{winbindd} // "no";
my $smbd = $args{smbd} // "no";
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
my $samba_dcerpcd = $args{samba_dcerpcd} // "no";
selftest: Allow passing fork_and_exec()'s child_cleanup Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:06:48 +03:00
my $child_cleanup = $args{child_cleanup};
selftest: Convert Samba3::check_or_start() to named parameters Another parameter will be added soon. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:01:09 +03:00
selftest: Add common fork_and_exec() function Now the code has been refactored, we can move it into a common function. This reduces code duplication and means we have a common place where we start samba daemons from. Note that some daemons behave slightly different, but the $daemon_ctx allows us to customize their behaviour a bit. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:35:07 +03:00
my $STDIN_READER;
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
# use a pipe for stdin in the child processes. This allows
# those processes to monitor the pipe for EOF to ensure they
# exit when the test script exits
selftest: Add common fork_and_exec() function Now the code has been refactored, we can move it into a common function. This reduces code duplication and means we have a common place where we start samba daemons from. Note that some daemons behave slightly different, but the $daemon_ctx allows us to customize their behaviour a bit. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:35:07 +03:00
pipe($STDIN_READER, $env_vars->{STDIN_PIPE});
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
my $binary = Samba::bindir_path($self, "samba-dcerpcd");
my @full_cmd = $self->make_bin_cmd(
$binary,
$env_vars,
$ENV{SAMBA_DCERPCD_OPTIONS},
$ENV{SAMBA_DCERPCD_VALGRIND},
$ENV{SAMBA_DCERPCD_DONT_LOG_STDOUT});
push(@full_cmd, '--libexec-rpcds');
my $samba_dcerpcd_envs = Samba::get_env_for_process(
"samba_dcerpcd", $env_vars);
# fork and exec() samba_dcerpcd in the child process
my $daemon_ctx = {
NAME => "samba_dcerpcd",
BINARY_PATH => $binary,
FULL_CMD => [ @full_cmd ],
LOG_FILE => $env_vars->{SAMBA_DCERPCD_TEST_LOG},
PCAP_FILE => "env-$ENV{ENVNAME}-samba_dcerpcd",
ENV_VARS => $samba_dcerpcd_envs,
};
if ($samba_dcerpcd ne "yes") {
$daemon_ctx->{SKIP_DAEMON} = 1;
}
my $pid = Samba::fork_and_exec(
$self, $env_vars, $daemon_ctx, $STDIN_READER, $child_cleanup);
$env_vars->{SAMBA_DCERPCD_TL_PID} = $pid;
write_pid($env_vars, "samba_dcerpcd", $pid);
$binary = Samba::bindir_path($self, "nmbd");
@full_cmd = $self->make_bin_cmd($binary, $env_vars,
$ENV{NMBD_OPTIONS}, $ENV{NMBD_VALGRIND},
$ENV{NMBD_DONT_LOG_STDOUT});
selftest: Rework setting env variables for nmbd Instead of having a special $skip_resolv_conf parameter just for nmbd, use the get_env_for_process() API and customize the hashmap returned. Pass the customized hashmap in as an optional part of the daemon_ctx. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 06:47:46 +03:00
my $nmbd_envs = Samba::get_env_for_process("nmbd", $env_vars);
delete $nmbd_envs->{RESOLV_WRAPPER_CONF};
delete $nmbd_envs->{RESOLV_WRAPPER_HOSTS};
selftest: Add common fork_and_exec() function Now the code has been refactored, we can move it into a common function. This reduces code duplication and means we have a common place where we start samba daemons from. Note that some daemons behave slightly different, but the $daemon_ctx allows us to customize their behaviour a bit. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:35:07 +03:00
# fork and exec() nmbd in the child process
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
$daemon_ctx = {
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
NAME => "nmbd",
BINARY_PATH => $binary,
FULL_CMD => [ @full_cmd ],
LOG_FILE => $env_vars->{NMBD_TEST_LOG},
selftest: create pcap files for invidual env services Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 23:53:39 +03:00
PCAP_FILE => "env-$ENV{ENVNAME}-nmbd",
selftest: Rework setting env variables for nmbd Instead of having a special $skip_resolv_conf parameter just for nmbd, use the get_env_for_process() API and customize the hashmap returned. Pass the customized hashmap in as an optional part of the daemon_ctx. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 06:47:46 +03:00
ENV_VARS => $nmbd_envs,
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
};
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
if ($nmbd ne "yes") {
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
$daemon_ctx->{SKIP_DAEMON} = 1;
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
}
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
$pid = Samba::fork_and_exec(
selftest: Allow passing fork_and_exec()'s child_cleanup Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:06:48 +03:00
$self, $env_vars, $daemon_ctx, $STDIN_READER, $child_cleanup);
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
$env_vars->{NMBD_TL_PID} = $pid;
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
write_pid($env_vars, "nmbd", $pid);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
$binary = Samba::bindir_path($self, "winbindd");
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
@full_cmd = $self->make_bin_cmd($binary, $env_vars,
s3: Remove --log-stdout from daemons The common cmdline parser provides --debug-stdout. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-01-11 11:52:36 +03:00
$ENV{WINBINDD_OPTIONS},
$ENV{WINBINDD_VALGRIND},
$ENV{WINBINDD_DONT_LOG_STDOUT});
selftest: Add common fork_and_exec() function Now the code has been refactored, we can move it into a common function. This reduces code duplication and means we have a common place where we start samba daemons from. Note that some daemons behave slightly different, but the $daemon_ctx allows us to customize their behaviour a bit. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:35:07 +03:00
# fork and exec() winbindd in the child process
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
$daemon_ctx = {
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
NAME => "winbindd",
BINARY_PATH => $binary,
FULL_CMD => [ @full_cmd ],
LOG_FILE => $env_vars->{WINBINDD_TEST_LOG},
selftest: create pcap files for invidual env services Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 23:53:39 +03:00
PCAP_FILE => "env-$ENV{ENVNAME}-winbindd",
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
};
selftest/Samba3: replace (winbindd => "yes", skip_wait => 1) with (winbindd => "offline") This is much more flexible and concentrates the logic in a single place. We'll use winbindd => "offline" in other places soon. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14870 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 17:42:00 +03:00
if ($winbindd ne "yes" and $winbindd ne "offline") {
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
$daemon_ctx->{SKIP_DAEMON} = 1;
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
}
selftest: Allow passing fork_and_exec()'s child_cleanup Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:06:48 +03:00
$pid = Samba::fork_and_exec(
$self, $env_vars, $daemon_ctx, $STDIN_READER, $child_cleanup);
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
$env_vars->{WINBINDD_TL_PID} = $pid;
s3: try to make 'make selftest' work again metze
2009-01-28 11:35:44 +03:00
write_pid($env_vars, "winbindd", $pid);
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
$binary = Samba::bindir_path($self, "smbd");
selftest: Add helper function to build up s3 daemon cmd The s3 daemons all basically use the same command logic, it's just they use slightly different environment variables. This adds a common helper function, which we can pass the specific environment variables into. (Note the slight parameter difference for winbind with --stdout vs --log-stdout). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:37:04 +03:00
@full_cmd = $self->make_bin_cmd($binary, $env_vars,
$ENV{SMBD_OPTIONS}, $ENV{SMBD_VALGRIND},
$ENV{SMBD_DONT_LOG_STDOUT});
selftest: Add common fork_and_exec() function Now the code has been refactored, we can move it into a common function. This reduces code duplication and means we have a common place where we start samba daemons from. Note that some daemons behave slightly different, but the $daemon_ctx allows us to customize their behaviour a bit. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:35:07 +03:00
# fork and exec() smbd in the child process
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
$daemon_ctx = {
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
NAME => "smbd",
BINARY_PATH => $binary,
FULL_CMD => [ @full_cmd ],
LOG_FILE => $env_vars->{SMBD_TEST_LOG},
selftest: create pcap files for invidual env services Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 23:53:39 +03:00
PCAP_FILE => "env-$ENV{ENVNAME}-smbd",
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
};
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
if ($smbd ne "yes") {
selftest: Use scalar variable for new daemon_ctx hashmap The selftest code typically stores hashmaps as scalar variables (i.e. it only ever uses references to hashmaps). So much so that using a regular hashmap (and passing it by reference via \%daemon_ctx) looks out of place. Using the hashmap directly made more sense when it was only being used locally, but now the hashmap is being passed by reference into a function anyway, so storing it as a scalar doesn't make much difference. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:58:20 +03:00
$daemon_ctx->{SKIP_DAEMON} = 1;
selftest: Store fork-and-exec daemon info in a hashmap This intermediary refactor adds a hashmap that stores the values needed to run each samba daemon. This adds a bit more code in the short term, but it basically means the code in 5 different places now becomes identical, and we can extract it out to a common function. The converting FULL_CMD from an array reference back to an array is a bit ugly, but we can clean this up a bit once the code is all in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 04:45:49 +03:00
}
selftest: Move fork cmd args up a level This is a fairly simple move of code and is the first step in a larger refactor. It doesn't matter if we build up the command args prior to the fork (we only use them in the forked child). But moving the code means the code to handle the fork-and-exec becomes common code that is repeated in several places throughout Samba3.pm and Samba4.pm. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 03:12:44 +03:00
selftest: Allow passing fork_and_exec()'s child_cleanup Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-30 18:06:48 +03:00
$pid = Samba::fork_and_exec(
$self, $env_vars, $daemon_ctx, $STDIN_READER, $child_cleanup);
selftest: added a pipe on stdin in s3 child processes this adds a pipe for STDIN in smbd, nmbd and winbindd when run in selftest. This allows those processes to detect when they should exit by looking for EOF on stdin.
2012-01-03 09:48:29 +04:00
selftest: Rework Samba3.pm process termination We now store the timelimit child PID in memory, and confirm that the child has exited with both waitpid() and kill(0, $pid). By calling Samba::cleanup_child() we get exit status information. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Mar 4 11:51:12 CET 2012 on sn-devel-104
2012-03-04 11:34:34 +04:00
$env_vars->{SMBD_TL_PID} = $pid;
r24901: Somewhat easier and more reliable access to the pid files. (This used to be commit 91a0a00e6df4527948a2259ef2f7275f81c42cf1)
2007-09-02 21:47:35 +04:00
write_pid($env_vars, "smbd", $pid);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest: Add common fork_and_exec() function Now the code has been refactored, we can move it into a common function. This reduces code duplication and means we have a common place where we start samba daemons from. Note that some daemons behave slightly different, but the $daemon_ctx allows us to customize their behaviour a bit. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-05-23 07:35:07 +03:00
# close the parent's read-end of the pipe
selftest/s3: actually close parent copy of smbd's STDIN Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-12-07 13:05:03 +03:00
close($STDIN_READER);
selftest: added a pipe on stdin in s3 child processes this adds a pipe for STDIN in smbd, nmbd and winbindd when run in selftest. This allows those processes to detect when they should exit by looking for EOF on stdin.
2012-01-03 09:48:29 +04:00
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
return $self->wait_for_start($env_vars,
$nmbd,
$winbindd,
$smbd,
$samba_dcerpcd);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
}
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
sub createuser($$$$$)
selftest: Reduce code duplication Factor out a createuser sub. Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2016-02-18 02:48:04 +03:00
{
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
my ($self, $username, $password, $conffile, $env) = @_;
selftest: Reduce code duplication Factor out a createuser sub. Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2016-02-18 02:48:04 +03:00
my $cmd = "UID_WRAPPER_ROOT=1 " . Samba::bindir_path($self, "smbpasswd")." -c $conffile -L -s -a $username > /dev/null";
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
keys %$env;
while(my($var, $val) = each %$env) {
$cmd = "$var=\"$val\" $cmd";
}
selftest: Reduce code duplication Factor out a createuser sub. Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2016-02-18 02:48:04 +03:00
unless (open(PWD, "|$cmd")) {
warn("Unable to set password for $username account\n$cmd");
return undef;
}
print PWD "$password\n$password\n";
unless (close(PWD)) {
warn("Unable to set password for $username account\n$cmd");
return undef;
}
}
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
sub provision($$)
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
{
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my ($self, %args) = @_;
my $prefix = $args{prefix};
my $domain = $args{domain};
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
my $realm = $args{realm};
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $server = $args{server};
my $password = $args{password};
my $extra_options = $args{extra_options};
selftest: correctly use RESOLV_CONF from the DC environment or "no_resolv.conf" It's important to have the correct $resolv_conf variable within provision(), because it also sets "RESOLV_WRAPPER_CONF" if needed, instead of just setting "RESOLV_CONF". There's also no point in creating an resolv.conf with the ip addresses for other roles than "active directory domain controller". Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-02-27 14:33:48 +03:00
my $resolv_conf = $args{resolv_conf};
selftest: Convert Samba3::provision() to named parameters 9 positional parameters is a bit too much for easy overview Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-24 12:45:52 +03:00
my $no_delete_prefix= $args{no_delete_prefix};
selftest: Allow "netbios name" to be overriden in Samba3::provision() Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-24 13:55:36 +03:00
my $netbios_name = $args{netbios_name} // $server;
selftest: Also add SERVER_LOG_LEVEL support for s3 targets Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 13:32:51 +03:00
my $server_log_level = $ENV{SERVER_LOG_LEVEL} || 1;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
##
## setup the various environment variables we need
##
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
my $samsid = Samba::random_domain_sid();
selftest: Establish a registry of socket wrapper IPs This fixes a bug where chgdcpass was on the same IP as localsubdc, and will avoid similar mistakes in future. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Mar 2 03:48:05 CET 2012 on sn-devel-104
2012-03-02 04:44:56 +04:00
my $swiface = Samba::get_interface($server);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
my %ret = ();
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
my %createuser_env = ();
selftest: Add helper functions to get IP addresses Let's centralize these assumptions in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-02-19 06:18:11 +03:00
my $server_ip = Samba::get_ipv4_addr($server);
my $server_ipv6 = Samba::get_ipv6_addr($server);
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
my $dns_domain;
if (defined($realm)) {
$dns_domain = lc($realm);
} else {
$dns_domain = "samba.example.com";
}
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
my $unix_name = ($ENV{USER} or $ENV{LOGNAME} or `PATH=/usr/ucb:$ENV{PATH} whoami`);
chomp $unix_name;
my $unix_uid = $>;
my $unix_gids_str = $);
my @unix_gids = split(" ", $unix_gids_str);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my $prefix_abs = abs_path($prefix);
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
my $bindir_abs = abs_path($self->{bindir});
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
my @dirs = ();
selftest: Add "share_dir" as an argument to Samba3::provision() Default to the previous value Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-27 16:16:30 +03:00
my $shrdir=$args{share_dir} // "$prefix_abs/share";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
push(@dirs,$shrdir);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my $libdir="$prefix_abs/lib";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
push(@dirs,$libdir);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my $piddir="$prefix_abs/pid";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
push(@dirs,$piddir);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my $privatedir="$prefix_abs/private";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
push(@dirs,$privatedir);
dcerpc: developer option to save ndr_fuzz_X seeds Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Pair-programmed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-11-06 07:27:08 +03:00
my $cachedir = "$prefix_abs/cachedir";
push(@dirs, $cachedir);
s4:bind_dlz: Use the 'binddns dir' if possible The code makes sure we are backwards compatible. It will first check if we still have files in the private directory, if yes it will use those. If the the file is not in the private directory it will try the binddns dir. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlet <abartlet@samba.org>
2017-08-22 18:10:01 +03:00
my $binddnsdir = "$prefix_abs/bind-dns";
push(@dirs, $binddnsdir);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my $lockdir="$prefix_abs/lockdir";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
push(@dirs,$lockdir);
s3-selftest: setup initial eventlog infrastructure. Guenther
2010-03-18 00:55:00 +03:00
my $eventlogdir="$prefix_abs/lockdir/eventlog";
push(@dirs,$eventlogdir);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
my $logdir="$prefix_abs/logs";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
push(@dirs,$logdir);
s3-selftest: add print$ share with two arch dirs. Guenther
2010-04-23 15:51:02 +04:00
my $driver32dir="$shrdir/W32X86";
push(@dirs,$driver32dir);
my $driver64dir="$shrdir/x64";
push(@dirs,$driver64dir);
s3-selftest: add WIN40 directory to print$ share. Guenther
2010-11-29 17:17:41 +03:00
my $driver40dir="$shrdir/WIN40";
push(@dirs,$driver40dir);
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
my $ro_shrdir="$shrdir/root-tmp";
push(@dirs,$ro_shrdir);
CVE-2019-10197: test_smbclient_s3.sh: add regression test for the no permission on share root problem BUG: https://bugzilla.samba.org/show_bug.cgi?id=14035 Signed-off-by: Stefan Metzmacher <metze@samba.org>
2019-07-16 16:40:38 +03:00
my $noperm_shrdir="$shrdir/noperm-tmp";
push(@dirs,$noperm_shrdir);
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
my $msdfs_shrdir="$shrdir/msdfsshare";
push(@dirs,$msdfs_shrdir);
Add new dfs node msdfs-share pointing to new msdfs-share2 Also add another node within msdfs-share2 pointing to normal share This patch is in preperation for creating a test for 'del' & 'deltree' on DFS shares. The extra redirection is necessary to reproduce the bug BUG: https://bugzilla.samba.org/show_bug.cgi?id=15100 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-06-17 12:15:42 +03:00
my $msdfs_shrdir2="$shrdir/msdfsshare2";
push(@dirs,$msdfs_shrdir2);
s3: torture: Add a comprehensive SMB2 DFS path torture tester. Passes fully against Windows. This shows that DFS paths on Windows on SMB2 must be of the form: SERVER\SHARE\PATH but the actual contents of the strings SERVER and SHARE don't need to match the given server or share. The algorithm the Windows server uses is the following: Look for a '\\' character, and assign anything before that to the SERVER component. The characters in this component are not checked for validity. Look for a second '\\' character and assign anything between the first and second '\\' characters to the SHARE component. The characters in the share component are checked for validity, but only ':' is flagged as an illegal sharename character despite what: [MS-FSCC] https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-fscc/dc9978d7-6299-4c5a-a22d-a039cdc716ea says. Anything after the second '\\' character is assigned to the PATH component and becomes the share-relative path. If there aren't two '\\' characters it removes everything and ends up with the empty string as the share relative path. To give some examples, the following pathnames all map to the directory at the root of the DFS share: SERVER\SHARE SERVER "" ANY\NAME ANY ::::\NAME the name: SERVER\: is illegal (sharename contains ':') and the name: ANY\NAME\file maps to a share-relative pathname of "file", despite "ANY" not being the server name, and "NAME" not being the DFS share name we are connected to. Adds a knownfail for smbd as our current code in parse_dfs_path() is completely incorrect here and tries to map "incorrect" DFS names into local paths. I will work on fixing this later, but we should be able to remove parse_dfs_path() entirely and move the DFS pathname logic before the call to filename_convert_dirfsp() in the same way Volker suggested and was able to achieve for extract_snapshot_token() and the @GMT pathname processing. Also proves the "target" paths for SMB2_SETINFO rename and hardlink must *not* be DFS-paths. Next I will work on a torture tester for SMB1 DFS paths. Signed-off-by: Jeremy Allison <jra@samba.org> Reivewed-by: Noel Power <npower@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Aug 30 17:10:33 UTC 2022 on sn-devel-184
2022-08-30 00:37:35 +03:00
my $msdfs_pathname_share="$shrdir/msdfs_pathname_share";
push(@dirs,$msdfs_pathname_share);
s3: smbtorture3: Add a new test SMB2-NON-DFS-SHARE. This one is tricky. It sends SMB2 DFS pathnames to a non-DFS share, and sets the SMB2 flag FLAGS2_DFS_PATHNAMES in the SMB2 packet. Windows will have non of it and (correctly) treats the pathnames as local paths (they're going to a non-DFS share). Samba fails. This proves the server looks as the share DFS capability to override the flag in the SMB2 packet. Passes against Windows. Added knownfail for Samba. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-09-09 02:42:26 +03:00
my $non_msdfs_pathname_share="$shrdir/non_msdfs_pathname_share";
push(@dirs,$non_msdfs_pathname_share);
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
my $msdfs_deeppath="$msdfs_shrdir/deeppath";
push(@dirs,$msdfs_deeppath);
selftest: run smbcacls test against a share with a DFS link The commit creates a dfs link in existing 'fileserver' env share msdfs_share. Additionally we create a new dfs target in a new share (with associated directory) Additionally add a known fail as smbcacls doesn't not yet navigate DFS links. A subsequent commit will fix smcacls to handle DFS (and remove the knownfail) Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-07-02 13:44:36 +03:00
my $smbcacls_sharedir_dfs="$shrdir/smbcacls_sharedir_dfs";
push(@dirs,$smbcacls_sharedir_dfs);
python/samba/tests/blackbox: Tests with nested DFS container Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Aug 31 19:09:24 UTC 2020 on sn-devel-184
2020-07-27 18:58:31 +03:00
my $smbcacls_share="$shrdir/smbcacls_share";
push(@dirs,$smbcacls_share);
my $smbcacls_share_testdir="$shrdir/smbcacls_share/smbcacls";
push(@dirs,$smbcacls_share_testdir);
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
my $badnames_shrdir="$shrdir/badnames";
push(@dirs,$badnames_shrdir);
s4:torture/smb2: use %t (timestamp) instead of %R for lease.dynamic_share test This test should be independent of the protocol in order to be independent of multi-channel support of the server. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14534 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-02-09 18:54:18 +03:00
my $lease1_shrdir="$shrdir/dynamic";
s4: smb2 : torture: Add new dynamic_share leases test. Depends on new share "dynamic_share" being set up containing an %R in the path= statement. Shows we will break leases and fail to grant new ones if we get a lease_key+client guid pair match on files with different fileid's, as can happen on dynamic shares. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2014-11-18 01:17:34 +03:00
push(@dirs,$lease1_shrdir);
s3: torture: Add regression test for bug #11249. Bug 11249 - Mangled names do not work with acl_xattr BUG: https://bugzilla.samba.org/show_bug.cgi?id=11249 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue May 5 16:37:18 CEST 2015 on sn-devel-104
2015-05-02 07:08:21 +03:00
my $manglenames_shrdir="$shrdir/manglenames";
push(@dirs,$manglenames_shrdir);
CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share). New tests for fix. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11395 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2015-07-09 23:57:58 +03:00
my $widelinks_shrdir="$shrdir/widelinks";
push(@dirs,$widelinks_shrdir);
my $widelinks_linkdir="$shrdir/widelinks_foo";
push(@dirs,$widelinks_linkdir);
CVE-2019-10197: selftest: make fsrvp_share its own independent subdirectory The next patch will otherwise break the fsrvp related tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14035 Signed-off-by: Stefan Metzmacher <metze@samba.org>
2019-07-30 18:16:59 +03:00
my $fsrvp_shrdir="$shrdir/fsrvp";
push(@dirs,$fsrvp_shrdir);
vfs_shadow_copy2: add a blackbox test suite Add a blackbox test suite for vfs_shadow_copy2, testing parameters mountpoint, basedir, snapdir, snapdirseverywhere, and testing correct wide-link processing. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11580 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Wed Jan 13 17:11:38 CET 2016 on sn-devel-144
2015-10-29 23:24:30 +03:00
my $shadow_tstdir="$shrdir/shadow";
push(@dirs,$shadow_tstdir);
my $shadow_mntdir="$shadow_tstdir/mount";
push(@dirs,$shadow_mntdir);
my $shadow_basedir="$shadow_mntdir/base";
push(@dirs,$shadow_basedir);
my $shadow_shrdir="$shadow_basedir/share";
push(@dirs,$shadow_shrdir);
s3: Test for CVE-2017-2619 regression with "follow symlinks = no". BUG: https://bugzilla.samba.org/show_bug.cgi?id=12721 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Tue Mar 28 07:00:46 CEST 2017 on sn-devel-144
2017-03-27 21:48:25 +03:00
my $nosymlinks_shrdir="$shrdir/nosymlinks";
push(@dirs,$nosymlinks_shrdir);
s3: smbd: Add regression test for non-wide symlinks to directories fail over SMB3. Mark as knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12860 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2017-06-23 21:12:22 +03:00
my $local_symlinks_shrdir="$shrdir/local_symlinks";
push(@dirs,$local_symlinks_shrdir);
tests: add test for vfs_worm Signed-off-by: Bjoern Jacke <bjacke@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2023-12-30 21:46:53 +03:00
my $worm_shrdir="$shrdir/worm";
push(@dirs,$worm_shrdir);
s3: tests: Add test that shows smbd crashes using vfs_fruit with fruit:resource = stream on deleting a file. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15099 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-06-18 03:49:43 +03:00
my $fruit_resource_stream_shrdir="$shrdir/fruit_resource_stream";
push(@dirs,$fruit_resource_stream_shrdir);
s3:selftest: Move the smbget share to the provision function BUG: https://bugzilla.samba.org/show_bug.cgi?id=15345 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-03-30 11:16:35 +03:00
my $smbget_sharedir="$shrdir/smbget";
push(@dirs, $smbget_sharedir);
tests: add a test for vfs_recycle Signed-off-by: Bjoern Jacke <bjacke@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2024-01-06 19:32:57 +03:00
my $recycle_shrdir="$shrdir/recycle";
push(@dirs,$recycle_shrdir);
tests: add a test for "fake directory create times" Signed-off-by: Bjoern Jacke <bjacke@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Tue Jan 16 15:44:10 UTC 2024 on atb-devel-224
2024-01-09 03:14:39 +03:00
my $fakedircreatetimes_shrdir="$shrdir/fakedircreatetimes";
push(@dirs,$fakedircreatetimes_shrdir);
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
# this gets autocreated by winbindd
selftest: standardise and shorten winbind socket name The full path to the winbindd socket must fit within a struct sockaddr_un and this helps us work where this is quite deep on the server. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Autobuild-User(master): Douglas Bagnall <dbagnall@samba.org> Autobuild-Date(master): Wed Jun 2 04:46:39 UTC 2021 on sn-devel-184
2021-05-19 04:57:21 +03:00
my $wbsockdir="$prefix_abs/wbsock";
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
Explicitly set "nmbd: socket dir" in the test environment. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Jan 8 07:17:22 CET 2011 on sn-devel-104
2011-01-08 08:28:45 +03:00
my $nmbdsockdir="$prefix_abs/nmbd";
Fix "make test" - ensure nmbd runs with -S (log to stdout). Also ensure nmbd socket directory isn't created (nmbd will create it). Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Jan 11 00:30:52 CET 2011 on sn-devel-104
2011-01-11 01:24:51 +03:00
unlink($nmbdsockdir);
Explicitly set "nmbd: socket dir" in the test environment. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Jan 8 07:17:22 CET 2011 on sn-devel-104
2011-01-08 08:28:45 +03:00
selftest: Fix trailing whitespace in Samba3.pm Bug: https://bugzilla.samba.org/show_bug.cgi?id=14971 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-02-08 17:34:56 +03:00
##
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
## create the test directory layout
##
selftest: Samba3 protect against removing /* metze
2009-02-04 13:26:46 +03:00
die ("prefix_abs = ''") if $prefix_abs eq "";
die ("prefix_abs = '/'") if $prefix_abs eq "/";
r22409: try to fix selftest.pl on systems with old perl versions metze (This used to be commit 81a2a144df651bb37995c718fc9f7d7bffa9bac9)
2007-04-20 15:40:44 +04:00
mkdir($prefix_abs, 0777);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
print "CREATE TEST ENVIRONMENT IN '$prefix'...";
selftest: Make the ncalrpc dir common between Samba4 and Samba3. This also avoids creating the directory, as the startup routines will create it with the correct permissions. Andrew Bartlett
2011-05-08 12:32:01 +04:00
if (not defined($no_delete_prefix) or not $no_delete_prefix) {
system("rm -rf $prefix_abs/*");
}
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
mkdir($_, 0777) foreach(@dirs);
selftest: check for fs specific options of the share dir only after creating it Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Amitay Isaacs <amitay@gmail.com> Autobuild-User(master): Amitay Isaacs <amitay@samba.org> Autobuild-Date(master): Wed Jul 23 17:37:34 CEST 2014 on sn-devel-104
2014-07-22 02:31:16 +04:00
my $fs_specific_conf = $self->get_fs_specific_conf($shrdir);
Recent coverity changes added directory_create_or_exist() checks to many directories. These may not be needed, but in the meantime - ensure "make test" works again by chmod'ing the created test directories from 0777 to 0755. Reviewed-By: Andrew Bartlett <abartlet@samba.org> Signed-off-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Dec 22 02:08:33 CET 2012 on sn-devel-104
2012-12-22 03:16:10 +04:00
##
## lockdir and piddir must be 0755
##
chmod 0755, $lockdir;
chmod 0755, $piddir;
CVE-2019-10197: test_smbclient_s3.sh: add regression test for the no permission on share root problem BUG: https://bugzilla.samba.org/show_bug.cgi?id=14035 Signed-off-by: Stefan Metzmacher <metze@samba.org>
2019-07-16 16:40:38 +03:00
##
## Create a directory without permissions to enter
##
chmod 0000, $noperm_shrdir;
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
##
## create ro and msdfs share layout
##
s3-selftest: fix chmod commands in provisioning. Guenther
2010-05-29 02:38:21 +04:00
chmod 0755, $ro_shrdir;
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
s3:tests: Add test to access msdfs path with smbget Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Jul 19 00:10:10 UTC 2022 on sn-devel-184
2022-07-12 12:19:13 +03:00
create_file_chmod("$ro_shrdir/readable_file", 0644) or return undef;
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
create_file_chmod("$ro_shrdir/unreadable_file", 0600) or return undef;
create_file_chmod("$ro_shrdir/msdfs-target", 0600) or return undef;
selftest: shuffle msdfs-share DFS referral responses Add a secondary server path to the msdfs-src1 DFS link, and test "msdfs shuffle referrals" behaviour during selftest using the existing samba3.blackbox.smbclient_s3 suite. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Feb 28 01:22:36 CET 2015 on sn-devel-104
2015-02-27 17:52:47 +03:00
symlink "msdfs:$server_ip\\ro-tmp,$server_ipv6\\ro-tmp",
"$msdfs_shrdir/msdfs-src1";
selftest/Samba3: also bind to ipv6 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-06-19 19:21:16 +04:00
symlink "msdfs:$server_ipv6\\ro-tmp", "$msdfs_shrdir/deeppath/msdfs-src2";
selftest: run smbcacls test against a share with a DFS link The commit creates a dfs link in existing 'fileserver' env share msdfs_share. Additionally we create a new dfs target in a new share (with associated directory) Additionally add a known fail as smbcacls doesn't not yet navigate DFS links. A subsequent commit will fix smcacls to handle DFS (and remove the knownfail) Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-07-02 13:44:36 +03:00
symlink "msdfs:$server_ip\\smbcacls_sharedir_dfs,$server_ipv6\\smbcacls_sharedir_dfs",
"$msdfs_shrdir/smbcacls_sharedir_dfs";
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
Add new dfs node msdfs-share pointing to new msdfs-share2 Also add another node within msdfs-share2 pointing to normal share This patch is in preperation for creating a test for 'del' & 'deltree' on DFS shares. The extra redirection is necessary to reproduce the bug BUG: https://bugzilla.samba.org/show_bug.cgi?id=15100 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-06-17 12:15:42 +03:00
symlink "msdfs:$server_ip\\msdfs-share2,$server_ipv6\\msdfs-share2", "$msdfs_shrdir/dfshop1";
symlink "msdfs:$server_ip\\tmp,$server_ipv6\\tmp", "$msdfs_shrdir2/dfshop2";
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
##
## create bad names in $badnames_shrdir
##
## (An invalid name, would be mangled to 8.3).
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
create_file_chmod("$badnames_shrdir/\340|\231\216\377\177",
0600) or return undef;
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
## (A bad name, would not be mangled to 8.3).
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
create_file_chmod("$badnames_shrdir/\240\276\346\327\377\177",
0666) or return undef;
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
## (A bad good name).
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
create_file_chmod("$badnames_shrdir/blank.txt",
0666) or return undef;
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
s3: torture: Add regression test for bug #11249. Bug 11249 - Mangled names do not work with acl_xattr BUG: https://bugzilla.samba.org/show_bug.cgi?id=11249 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue May 5 16:37:18 CEST 2015 on sn-devel-104
2015-05-02 07:08:21 +03:00
##
## create mangleable directory names in $manglenames_shrdir
##
my $manglename_target = "$manglenames_shrdir/foo:bar";
mkdir($manglename_target, 0777);
CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share). New tests for fix. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11395 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2015-07-09 23:57:58 +03:00
##
## create symlinks for widelinks tests.
##
my $widelinks_target = "$widelinks_linkdir/target";
selftest: Factor out create_file_chmod() 24 lines less perl :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>
2020-01-23 18:07:59 +03:00
create_file_chmod("$widelinks_target", 0666) or return undef;
CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share). New tests for fix. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11395 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2015-07-09 23:57:58 +03:00
##
CVE-2021-44141: s3: torture: In test_smbclient_s3, change the error codes expected for test_widelinks() and test_nosymlinks() from ACCESS_DENIED to NT_STATUS_OBJECT_NAME_NOT_FOUND. For SMB1/2/3 (minus posix) we need to treat bad symlinks as though they don't exist. Add to knwownfail.d/symlink_traversal BUG: https://bugzilla.samba.org/show_bug.cgi?id=14911 Signed-off-by: Jeremy Allison <jra@samba.org>
2021-12-07 23:56:51 +03:00
## This link should get an error
CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share). New tests for fix. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11395 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2015-07-09 23:57:58 +03:00
##
symlink "$widelinks_target", "$widelinks_shrdir/source";
##
## This link should be allowed
##
symlink "$widelinks_shrdir", "$widelinks_shrdir/dot";
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
my $conffile="$libdir/server.conf";
selftest: add disk-free and quota tests based on fake_dfq VFS module These tests use the vfs_fake_dfq module to simulate some relations between the quota status and disk-free status. The tests will become meaningful when we take the code that does those calculations out of the VFS layer - the tests will then exercise the server code. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-01-06 13:59:06 +03:00
my $dfqconffile="$libdir/dfq.conf";
selftest: Create included files during provision Files included from smb.conf have to exists, otherwise python fails to load the configuration. Found while trying to run a python test before samba3.blackbox.smbd_error creates the included file. Signed-off-by: Samuel Cabrero <scabrero@suse.de> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-08-31 13:44:09 +03:00
my $errorinjectconf="$libdir/error_inject.conf";
my $delayinjectconf="$libdir/delay_inject.conf";
selftest: s3: add a test for spnego downgrade from krb5 to ntlm BUG: https://bugzilla.samba.org/show_bug.cgi?id=14106 Signed-off-by: Isaac Boukris <iboukris@redhat.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2019-10-07 23:51:19 +03:00
my $globalinjectconf="$libdir/global_inject.conf";
s3:tests: Add substitution test for include directive BUG: https://bugzilla.samba.org/show_bug.cgi?id=15243 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2022-11-15 18:35:15 +03:00
my $aliceconfdir="$libdir";
my $aliceconffile="$libdir/alice.conf";
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
build: Move nss_wrapper to third_party Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2017-11-07 13:40:11 +03:00
my $nss_wrapper_pl = "$ENV{PERL} $self->{srcdir}/third_party/nss_wrapper/nss_wrapper.pl";
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
my $nss_wrapper_passwd = "$privatedir/passwd";
my $nss_wrapper_group = "$privatedir/group";
selftest: Write the nss_wrapper hosts file. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-27 18:12:47 +04:00
my $nss_wrapper_hosts = "$ENV{SELFTEST_PREFIX}/hosts";
selftest: fix dns_host_file in samba3 target When setting up s3member twice in a row, the join ending up attempting kerberos and using an old ticket in the st folder, failing with bad credentials. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Jan 7 03:58:10 CET 2015 on sn-devel-104
2015-01-07 02:18:55 +03:00
my $dns_host_file = "$ENV{SELFTEST_PREFIX}/dns_host_file";
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
selftest pass in srcdir into Samba3 target module
2011-02-22 03:56:18 +03:00
my $mod_printer_pl = "$ENV{PERL} $self->{srcdir}/source3/script/tests/printing/modprinter.pl";
s3-selftest: include addprinter/deleteprinter command. Guenther
2010-02-18 02:48:58 +03:00
selftest: add snapshot share configuration Define a share that uses both vfs_shell_snap and fake_snap.pl to create, delete and expose fake snapshots in response to FSRVP requests. Additionally test snapshot enumeration and access via the shadow_copy2 module. Allow for simple testing of FSRVP message sequence timeouts, by specifying an artificially small interval. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-15 02:42:35 +04:00
my $fake_snap_pl = "$ENV{PERL} $self->{srcdir}/source3/script/tests/fake_snap.pl";
s3-selftest: setup initial eventlog infrastructure. Guenther
2010-03-18 00:55:00 +03:00
my @eventlog_list = ("dns server", "application");
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
##
## calculate uids and gids
##
my ($max_uid, $max_gid);
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
my ($uid_nobody, $uid_root, $uid_pdbtest, $uid_pdbtest2, $uid_userdup);
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
my ($uid_pdbtest_wkn);
selftest: Add a blackbox test for smbget Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Christian Ambach <ambi@samba.org> Autobuild-Date(master): Fri Feb 26 14:40:55 CET 2016 on sn-devel-144
2016-02-06 12:30:29 +03:00
my ($uid_smbget);
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
my ($uid_force_user);
selftest:Samba3: provision the domain adminstrators group in the s3 environments I discovered that this sid / mapping is missing by working with the Sids2Uids code and test. I do even wonder why this test could succeed prior to my pending changes to the winbindd sids-to-xids code, for example against the s3:local environment, since the test tries to map the sid <domsid>-512. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-20 19:48:23 +04:00
my ($gid_nobody, $gid_nogroup, $gid_root, $gid_domusers, $gid_domadmins);
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
my ($gid_userdup, $gid_everyone);
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
my ($gid_force_user);
selftest: Create groups "jackthemappergroup" and "jacknomappergroup" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-04-05 09:30:23 +03:00
my ($gid_jackthemapper);
my ($gid_jacknomapper);
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
my ($uid_user1);
my ($uid_user2);
selftest: Add gooduser and eviluser to Samba3 BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-15 18:06:49 +03:00
my ($uid_gooduser);
my ($uid_eviluser);
s3:tests: Add test for checking that root is not allowed as home dir BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Dec 5 05:22:43 CET 2018 on sn-devel-144
2018-12-03 13:05:46 +03:00
my ($uid_slashuser);
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
my ($uid_localbob);
my ($uid_localjane);
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
my ($uid_localjackthemapper);
my ($uid_localjacknomapper);
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
s3:tests: Add test for checking that root is not allowed as home dir BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Dec 5 05:22:43 CET 2018 on sn-devel-144
2018-12-03 13:05:46 +03:00
if ($unix_uid < 0xffff - 13) {
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
$max_uid = 0xffff;
} else {
$max_uid = $unix_uid;
}
$uid_root = $max_uid - 1;
$uid_nobody = $max_uid - 2;
selftest: Add extra users to nss_wrapper These will be used for a test using pdbtest and to run the client test environment under nss_wrapper. Andrew Bartlett
2012-06-27 11:51:55 +04:00
$uid_pdbtest = $max_uid - 3;
selftest: Test auth_wbc, the auth4 winbind and winbind_wbclient modules using pdbtest This ensures these authentication modules continue to operate correctly, and that the results are consistent. Andrew Bartlett Change-Id: I7f63cd93e55c6f73ceeafb14f1dc265291791803 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Fri May 16 12:50:44 CEST 2014 on sn-devel-104
2014-05-16 06:30:43 +04:00
$uid_pdbtest2 = $max_uid - 4;
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
$uid_userdup = $max_uid - 5;
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
$uid_pdbtest_wkn = $max_uid - 6;
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
$uid_force_user = $max_uid - 7;
selftest: Add a blackbox test for smbget Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Christian Ambach <ambi@samba.org> Autobuild-Date(master): Fri Feb 26 14:40:55 CET 2016 on sn-devel-144
2016-02-06 12:30:29 +03:00
$uid_smbget = $max_uid - 8;
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
$uid_user1 = $max_uid - 9;
$uid_user2 = $max_uid - 10;
selftest: Add gooduser and eviluser to Samba3 BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-15 18:06:49 +03:00
$uid_gooduser = $max_uid - 11;
$uid_eviluser = $max_uid - 12;
s3:tests: Add test for checking that root is not allowed as home dir BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Dec 5 05:22:43 CET 2018 on sn-devel-144
2018-12-03 13:05:46 +03:00
$uid_slashuser = $max_uid - 13;
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
$uid_localbob = $max_uid - 14;
$uid_localjane = $max_uid - 15;
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
$uid_localjackthemapper = $max_uid - 16;
$uid_localjacknomapper = $max_uid - 17;
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
if ($unix_gids[0] < 0xffff - 8) {
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
$max_gid = 0xffff;
} else {
$max_gid = $unix_gids[0];
}
$gid_nobody = $max_gid - 1;
$gid_nogroup = $max_gid - 2;
$gid_root = $max_gid - 3;
Ensure we always have a mapped group for "Domain Users". Needed for DC tests to pass with bugfix for bug #7777. Jeremy.
2010-11-09 00:39:51 +03:00
$gid_domusers = $max_gid - 4;
selftest:Samba3: provision the domain adminstrators group in the s3 environments I discovered that this sid / mapping is missing by working with the Sids2Uids code and test. I do even wonder why this test could succeed prior to my pending changes to the winbindd sids-to-xids code, for example against the s3:local environment, since the test tries to map the sid <domsid>-512. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-20 19:48:23 +04:00
$gid_domadmins = $max_gid - 5;
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
$gid_userdup = $max_gid - 6;
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
$gid_everyone = $max_gid - 7;
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
$gid_force_user = $max_gid - 8;
selftest: Create groups "jackthemappergroup" and "jacknomappergroup" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-04-05 09:30:23 +03:00
$gid_jackthemapper = $max_gid - 9;
$gid_jacknomapper = $max_gid - 10;
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
##
## create conffile
##
selftest Use die() less often, as it fails to allow cleanup
2011-05-08 08:54:50 +04:00
unless (open(CONF, ">$conffile")) {
warn("Unable to open $conffile");
return undef;
}
selftest: Add helper function to get interfaces config Add a helper function to return the IPv4/IPv6 addresses for the smb.conf. This keeps the netmask assumptions in the same places as the IP subnet assumptions. This refactor means we no longer need to store $ctx->{interfaces}, as it was only used in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-03-12 04:00:55 +03:00
my $interfaces = Samba::get_interfaces_config($server);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
print CONF "
[global]
dcerpc: developer option to save ndr_fuzz_X seeds Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Pair-programmed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-11-06 07:27:08 +03:00
dcesrv:fuzz directory = $cachedir/fuzz
selftest: Allow "netbios name" to be overriden in Samba3::provision() Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-24 13:55:36 +03:00
netbios name = $netbios_name
selftest: Add helper function to get interfaces config Add a helper function to return the IPv4/IPv6 addresses for the smb.conf. This keeps the netmask assumptions in the same places as the IP subnet assumptions. This refactor means we no longer need to store $ctx->{interfaces}, as it was only used in one place. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-03-12 04:00:55 +03:00
interfaces = $interfaces
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
bind interfaces only = yes
selftest: change to src dir for panic backtrace When running selftest against a Samba3 target, the working directory is set to st/s3dc/share. The existing "panic action" script attempts obtain a backtrace for a paniced smbd process using GDB, which does not locate debug info relative to the working directory. This commit changes the S3 selftest panic action to first enter the base source directory before attempting to obtain the backtrace, ensuring that GDB can locate the debug info. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Sep 12 00:19:39 CEST 2013 on sn-devel-104
2013-09-11 19:56:02 +04:00
panic action = cd $self->{srcdir} && $self->{srcdir}/selftest/gdb_backtrace %d %\$(MAKE_TEST_BINARY)
selftest/Samba3: add 'smbd:suicide mode = yes' metze
2012-05-17 03:06:29 +04:00
smbd:suicide mode = yes
selftest/Samba3: make use of 'smbd:FSCTL_SMBTORTURE = yes' This makes sure the lease/oplock break retry logic based on missing TCP acks is tested. We're still not able to run multichannel tests automatically, as socket wrapper doesn't support fd-passing yet. But this testing this with single channels is a good start. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11897 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2020-06-23 16:56:34 +03:00
smbd:FSCTL_SMBTORTURE = yes
s3:smbd: only run validate_oplock_types() with smbd:validate_oplock_types = yes This is really expensive as share_mode_forall_entries() is currently doing a talloc_memdup() of the whole record... This is mainly used to avoid regressions, so only use smbd:validate_oplock_types = yes in make test, but skip it for production. This improves the following test: time smbtorture //127.0.0.1/m -Uroot%test \ smb2.create.bench-path-contention-shared \ --option='torture:bench_path=file.dat' \ --option="torture:timelimit=60" \ --option="torture:nprocs=256" \ --option="torture:qdepth=1" From: open[num/s=8852,avslat=0.014999,minlat=0.000042,maxlat=0.054600] close[num/s=8850,avslat=0.014136,minlat=0.000025,maxlat=0.054537] to: open[num/s=11377,avslat=0.012075,minlat=0.000041,maxlat=0.054107] close[num/s=11375,avslat=0.010594,minlat=0.000023,maxlat=0.053620] BUG: https://bugzilla.samba.org/show_bug.cgi?id=15125 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-08-19 18:17:41 +03:00
smbd:validate_oplock_types = yes
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
selftest: disable SMB1 from testenv(s) make >=SMB2 the default Change the values of 'min protocol' set for the various test environments to be SMB2_02. Servers will only offer protocols starting with the min specified in the conf files. We don't change the client value here yet (until SMB1 is truely gone) as we still want to be able to run SMB1 tests. Signed-off-by: Noel Power <npower@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-09-27 17:24:25 +03:00
client min protocol = SMB2_02
server min protocol = SMB2_02
selftest: explicitly set "server min protocol = LANMAN1" This is the current default and what 'make test' assumes currently. The next commit will change the default to disable SMB1. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2019-07-08 12:55:13 +03:00
selftest: enable 'server multi channel support = yes' BUG: https://bugzilla.samba.org/show_bug.cgi?id=14534 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-06-19 13:32:59 +03:00
server multi channel support = yes
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
workgroup = $domain
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
private dir = $privatedir
s4:bind_dlz: Use the 'binddns dir' if possible The code makes sure we are backwards compatible. It will first check if we still have files in the private directory, if yes it will use those. If the the file is not in the private directory it will try the binddns dir. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlet <abartlet@samba.org>
2017-08-22 18:10:01 +03:00
binddns dir = $binddnsdir
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
pid directory = $piddir
lock directory = $lockdir
log file = $logdir/log.\%m
selftest: Also add SERVER_LOG_LEVEL support for s3 targets Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-10 13:32:51 +03:00
log level = $server_log_level
s3:test: Test winbind call depth trace BUG: https://bugzilla.samba.org/show_bug.cgi?id=15287 Signed-off-by: Pavel Filipenský <pfilipensky@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Thu Jan 26 15:07:57 UTC 2023 on atb-devel-224
2023-01-25 04:01:22 +03:00
winbind debug traceid = yes
selftest/Samba3: use 'debug pid=yes' metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sat Mar 19 10:55:34 CET 2011 on sn-devel-104
2011-03-18 12:03:05 +03:00
debug pid = yes
s3-selftest Disable log rotation in 'make test'
2011-04-04 03:22:03 +04:00
max log size = 0
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest: Use "debug syslog format = always" in selftest Some of the most difficult to debug issues in Samba development are around timing, so this changes our default logging format in the selftest system to include a high-resolution timestamp to help correlate bad events with what else is going on at the same time. This fits in well with the timestamps already logged into st/subunit and may assist with correlation. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Thu Apr 6 13:44:47 UTC 2023 on atb-devel-224
2023-04-06 03:28:12 +03:00
debug syslog format = always
debug hires timestamp = yes
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
state directory = $lockdir
cache directory = $lockdir
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
passdb backend = tdbsam
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
time server = yes
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
add user script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type passwd --action add --name %u --gid $gid_nogroup
s3-selftest: use nss_wrapper.pl as "add user to group" and "delete user from group" script. Guenther
2009-05-28 12:40:22 +04:00
add group script = $nss_wrapper_pl --group_path $nss_wrapper_group --type group --action add --name %g
s3-selftest: rearrange uid/gid calculation to achieve correct membership. Guenther
2010-03-19 12:23:39 +03:00
add machine script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type passwd --action add --name %u --gid $gid_nogroup
s3-selftest: use nss_wrapper.pl as "add user to group" and "delete user from group" script. Guenther
2009-05-28 12:40:22 +04:00
add user to group script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type member --action add --member %u --name %g --group_path $nss_wrapper_group
delete user script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type passwd --action delete --name %u
delete group script = $nss_wrapper_pl --group_path $nss_wrapper_group --type group --action delete --name %g
delete user from group script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type member --action delete --member %u --name %g --group_path $nss_wrapper_group
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
s3-selftest: include addprinter/deleteprinter command. Guenther
2010-02-18 02:48:58 +03:00
addprinter command = $mod_printer_pl -a -s $conffile --
deleteprinter command = $mod_printer_pl -d -s $conffile --
s3-selftest: setup initial eventlog infrastructure. Guenther
2010-03-18 00:55:00 +03:00
eventlog list = application \"dns server\"
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
kernel oplocks = no
kernel change notify = no
selftest: Use 'logging' parameter instead of 'syslog' 'syslog' has been deprecated, so use the new 'logging' parameter instead. Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Fri Mar 27 06:38:32 CET 2015 on sn-devel-104
2015-03-24 02:16:36 +03:00
logging = file
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
printing = bsd
printcap name = /dev/null
r25359: Set up Samba3 as dc. (This used to be commit acaa484a5c8b4a99c756d1831898712d66a28a3d)
2007-09-26 23:23:54 +04:00
s3-winbindd: Remove undocumented winbindd:socket dir parameter This uses the documeted "winbindd socket directory" parameter instead. This came about due to the merge of the two smb.conf tables in s3 and s4 for the Samba 4.0 release. The s4 code used a real parameter, which caused this to be documented, whereas no automatic procedure existed to notice the parametric option and the need to document that. The fact that this was not used consistently in both codebases is one of the many areas of technical debt we still need to pay off here. Andrew Bartlett Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2013-10-11 04:34:13 +04:00
winbindd socket directory = $wbsockdir
Explicitly set "nmbd: socket dir" in the test environment. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Jan 8 07:17:22 CET 2011 on sn-devel-104
2011-01-08 08:28:45 +03:00
nmbd:socket dir = $nmbdsockdir
s3:selftest: fix Samba3.pm deprecated idmap config Replace deprecated idmap uid and gid option with new idmap config * : range
2011-03-10 17:58:05 +03:00
idmap config * : range = 100000-200000
s3 selftest: Allow the enumeration of users and groups This fixes the WINBINDD_GETPWENT test.
2010-01-13 17:21:14 +03:00
winbind enum users = yes
winbind enum groups = yes
selftest: Set winbind separator = / This avoids a pile of shell-script escape pain, and fixes some tests. Andrew Bartlett Change-Id: Ie1d0e32ab484a5b0ddbc4073831fe6de27e38e92 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2014-03-31 11:47:18 +04:00
winbind separator = /
selftest: Do not include system krb5.conf in selftest BUG: https://bugzilla.samba.org/show_bug.cgi?id=12441 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2016-12-01 10:18:58 +03:00
include system krb5 conf = no
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
# min receivefile size = 4000
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
read only = no
Add test that detects problems in the SMB signing code when run through cli_write() (which doesn't use the new async methods). Unfortunately, and I think due to the socket wrapper code, this doesn't detect the failure on the build farm, but running the RW-SIGNING test separately against a Samba or Windows server using signing does. Jeremy.
2010-11-11 04:54:57 +03:00
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
smbd:sharedelay = 100000
s3:selftest: reactivate the writetimeupdatedelay speed-up Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
2012-03-15 20:28:38 +04:00
smbd:writetimeupdatedelay = 500000
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
map hidden = no
map system = no
map readonly = no
store dos attributes = yes
Revert "Ensure the masks don't conflict with the ACL checks." This reverts commit 78594909b8b22bd07978922b1c85dfd6f6456963 which was needed by 7622aa16adeb00bf161a6dd07664c37125391272. This change masked bug #9462 which was fixed by 2013bb9b4dbed747921df2591068e2765428f57d. The issue was that the defaults for the substituted parameters did not match the old parameter. Changing the values in our test suite hid the issue, but did not fix the issue. (Additional change in the revert is to correct the expected ACL value in posixacl.py due to changed implied inherited permissions). Andrew Bartlett Reviewed-by: Michael Adam <obnox@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Mon Mar 11 19:46:24 CET 2013 on sn-devel-104
2013-03-10 13:25:53 +04:00
create mask = 755
The xcopy test requires "dos filemode=yes" as it opens with WRITE_OWNER.
2011-10-28 03:41:18 +04:00
dos filemode = yes
selftest:Samba3: use "strict rename = yes" Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2014-10-25 00:57:04 +04:00
strict rename = yes
selftest: Use strict sync = yes This enables the codepaths calling fsync for FLUSH requests during selftest. Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Christof Schmitt <cs@samba.org> Autobuild-Date(master): Fri Nov 13 04:47:00 CET 2015 on sn-devel-104
2015-11-11 23:28:09 +03:00
strict sync = yes
selftest: explicitly set "mangled names = yes" This is the current default and what 'make test' assumes currently. The next commit will change the default to "illegal". Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2019-07-08 16:26:25 +03:00
mangled names = yes
selftest: Load time_audit and full_audit modules for all tests Previously the only test was to load these modules to trigger the smb_vfs_assert_all_fns check. As these modules just pass through the calls, they can be loaded for all tests to ensure that the codepaths are exercised. This would have found the problem in smb_time_audit_offload_read_recv. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13568 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Aug 13 22:35:20 CEST 2018 on sn-devel-144
2018-08-10 20:38:28 +03:00
vfs objects = acl_xattr fake_acls xattr_tdb streams_depot time_audit full_audit
full_audit:syslog = no
full_audit:success = none
full_audit:failure = none
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
s3-selftest: move printing config to global section. Guenther
2010-03-25 02:55:13 +03:00
printing = vlp
print command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb print %p %s
lpq command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lpq %p
lp rm command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lprm %p %j
lp pause command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lppause %p %j
lp resume command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lpresume %p %j
queue pause command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb queuepause %p
queue resume command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb queueresume %p
s3-selftest: set "lpq cache time = 0" in server configuration. This fixes currently broken spoolss tests. Guenther
2010-03-27 00:58:42 +03:00
lpq cache time = 0
param: disable print notify backchannel by default In handling RemoteFindFirstPrinterChangeNotifyEx requests, the spoolss server can establish a "backchannel" connection to the print client, as a mechanism for sending print notifications. This behaviour is governed by the "print notify backchannel" smb.conf parameter. This change sets "print notify backchannel" to "no" by default, which sees Samba respond to RemoteFindFirstPrinterChangeNotifyEx requests with WERR_SERVER_UNAVAILABLE. In recieving such a response, print clients can fall back to polling for print queue changes. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Günther Deschner <gd@samba.org> Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Mon Oct 14 18:49:41 CEST 2013 on sn-devel-104
2013-10-14 15:53:22 +04:00
print notify backchannel = yes
s3-selftest: move printing config to global section. Guenther
2010-03-25 02:55:13 +03:00
selftest: Make the ncalrpc dir common between Samba4 and Samba3. This also avoids creating the directory, as the startup routines will create it with the correct permissions. Andrew Bartlett
2011-05-08 12:32:01 +04:00
ncalrpc dir = $prefix_abs/ncalrpc
libcli/dns Improve dns_hosts_file, using Samba3's struct dns_rr_srv By reworking the 'fake DNS' file to use struct dns_rr_srv it should be possible to emulate that resolver layer as well as the Samba4 sockaddr_storage* based layer. This will then give us a common DNS emulation for 'make test'. Andrew Bartlett
2011-04-26 03:49:08 +04:00
selftest: explain how the message command test works
2011-07-27 09:42:45 +04:00
# The samba3.blackbox.smbclient_s3 test uses this to test that
# sending messages works, and that the %m sub works.
s3-selftest Add a test for 'message command' This also provides us a way to test that the -n option to smbclient works, as that becomes part of the filename. Andrew Bartlett
2011-06-09 09:22:19 +04:00
message command = mv %s $shrdir/message.%m
selftest: add snapshot share configuration Define a share that uses both vfs_shell_snap and fake_snap.pl to create, delete and expose fake snapshots in response to FSRVP requests. Additionally test snapshot enumeration and access via the shadow_copy2 module. Allow for simple testing of FSRVP message sequence timeouts, by specifying an artificially small interval. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-15 02:42:35 +04:00
# fsrvp server requires registry shares
registry shares = yes
selftest: Add callout scripts for RPC SRVSVC share modifications Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2015-06-12 18:37:30 +03:00
# Used by RPC SRVSVC tests
add share command = $bindir_abs/smbaddshare
change share command = $bindir_abs/smbchangeshare
delete share command = $bindir_abs/smbdeleteshare
s4:torture:vfs_fruit: copyfile Bug: https://bugzilla.samba.org/show_bug.cgi?id=11317 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue Jun 23 14:37:05 CEST 2015 on sn-devel-104
2015-06-10 16:30:04 +03:00
# fruit:copyfile is a global option
fruit:copyfile = yes
vfs_shadow_copy2: add a blackbox test suite Add a blackbox test suite for vfs_shadow_copy2, testing parameters mountpoint, basedir, snapdir, snapdirseverywhere, and testing correct wide-link processing. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11580 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Wed Jan 13 17:11:38 CET 2016 on sn-devel-144
2015-10-29 23:24:30 +03:00
#this does not mean that we use non-secure test env,
#it just means we ALLOW one to be configured.
allow insecure wide links = yes
selftest: s3: add a test for spnego downgrade from krb5 to ntlm BUG: https://bugzilla.samba.org/show_bug.cgi?id=14106 Signed-off-by: Isaac Boukris <iboukris@redhat.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2019-10-07 23:51:19 +03:00
include = $globalinjectconf
selftest: abstract Samba3 provision a bit metze
2009-01-28 22:30:16 +03:00
# Begin extra options
$extra_options
# End extra options
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
#Include user defined custom parameters if set
selftest: fix Samba3 bugs metze
2009-01-29 00:15:44 +03:00
";
if (defined($ENV{INCLUDE_CUSTOM_CONF})) {
print CONF "\t$ENV{INCLUDE_CUSTOM_CONF}\n";
}
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
selftest: fix Samba3 bugs metze
2009-01-29 00:15:44 +03:00
print CONF "
python/samba/tests/blackbox: Tests with nested DFS container Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Aug 31 19:09:24 UTC 2020 on sn-devel-184
2020-07-27 18:58:31 +03:00
[smbcacls_share]
path = $smbcacls_share
comment = smb username is [%U]
msdfs root = yes
selftest: run smbcacls test against a share with a DFS link The commit creates a dfs link in existing 'fileserver' env share msdfs_share. Additionally we create a new dfs target in a new share (with associated directory) Additionally add a known fail as smbcacls doesn't not yet navigate DFS links. A subsequent commit will fix smcacls to handle DFS (and remove the knownfail) Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-07-02 13:44:36 +03:00
[smbcacls_sharedir_dfs]
path = $smbcacls_sharedir_dfs
comment = smb username is [%U]
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
[tmp]
path = $shrdir
selftest: print %U in smbclient -L output to allow testing
2011-07-29 06:12:36 +04:00
comment = smb username is [%U]
s3: vfs_dirsort module. Add raw.search torture test on a share definition with: vfs objects = dirsort https://bugzilla.samba.org/show_bug.cgi?id=10406 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-02-11 22:39:04 +04:00
[tmpsort]
path = $shrdir
comment = Load dirsort module
vfs objects = dirsort acl_xattr fake_acls xattr_tdb streams_depot
s3:selftest: add some tests against a share the requires encryption metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Fri Aug 17 16:34:26 CEST 2012 on sn-devel-104
2012-08-17 10:50:21 +04:00
[tmpenc]
path = $shrdir
comment = encrypt smb username is [%U]
selftest: Rename 'smb encrypt' to 'server smb encrypt' This makes it more clear what we want. 'smb encrypt' is a synonym for 'server smb encrypt'. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-09-08 11:15:22 +03:00
server smb encrypt = required
selftest: VFSLIBDIR is not needed, the waf build knows where to find modules automatically This is why was relinks on install, because it is fixing these internal variables up. Andrew Bartlett Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-22 10:13:21 +04:00
vfs objects = dirsort
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
[tmpguest]
path = $shrdir
guest ok = yes
[guestonly]
path = $shrdir
guest only = yes
guest ok = yes
[forceuser]
path = $shrdir
force user = $unix_name
guest ok = yes
s3: auth - tests: Add test for "force user" being a unix-only user, not in passdb. https://bugzilla.samba.org/show_bug.cgi?id=11044 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Wed Jan 14 08:46:08 CET 2015 on sn-devel-104
2015-01-14 00:49:58 +03:00
[forceuser_unixonly]
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
comment = force a user with unix user SID and group SID
s3: auth - tests: Add test for "force user" being a unix-only user, not in passdb. https://bugzilla.samba.org/show_bug.cgi?id=11044 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Wed Jan 14 08:46:08 CET 2015 on sn-devel-104
2015-01-14 00:49:58 +03:00
path = $shrdir
force user = pdbtest
guest ok = yes
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
[forceuser_wkngroup]
comment = force a user with well-known group SID
path = $shrdir
force user = pdbtest_wkn
guest ok = yes
Add tests for various s3 auth modes
2011-02-18 10:52:00 +03:00
[forcegroup]
path = $shrdir
force group = nogroup
guest ok = yes
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
[ro-tmp]
path = $ro_shrdir
guest ok = yes
CVE-2019-10197: test_smbclient_s3.sh: add regression test for the no permission on share root problem BUG: https://bugzilla.samba.org/show_bug.cgi?id=14035 Signed-off-by: Stefan Metzmacher <metze@samba.org>
2019-07-16 16:40:38 +03:00
[noperm]
path = $noperm_shrdir
wide links = yes
guest ok = yes
selftest: show that Samba honours "write list" and valid users Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-12-20 16:05:55 +04:00
[write-list-tmp]
path = $shrdir
read only = yes
write list = $unix_name
[valid-users-tmp]
path = $shrdir
valid users = $unix_name
selftest: test access based share enum parameter BUG: https://bugzilla.samba.org/show_bug.cgi?id=8093 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Wed Mar 2 23:51:56 CET 2016 on sn-devel-144
2016-02-29 23:09:57 +03:00
access based share enum = yes
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
[msdfs-share]
path = $msdfs_shrdir
msdfs root = yes
selftest: shuffle msdfs-share DFS referral responses Add a secondary server path to the msdfs-src1 DFS link, and test "msdfs shuffle referrals" behaviour during selftest using the existing samba3.blackbox.smbclient_s3 suite. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Feb 28 01:22:36 CET 2015 on sn-devel-104
2015-02-27 17:52:47 +03:00
msdfs shuffle referrals = yes
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
guest ok = yes
selftest: Add new dfs share (with widelinks enabled) Adds share (to be used in later test) that has dfs node but additionally has widelinks set to yes BUG: https://bugzilla.samba.org/show_bug.cgi?id=15435 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2023-07-28 11:40:57 +03:00
[msdfs-share-wl]
path = $msdfs_shrdir
msdfs root = yes
wide links = yes
guest ok = yes
Add new dfs node msdfs-share pointing to new msdfs-share2 Also add another node within msdfs-share2 pointing to normal share This patch is in preperation for creating a test for 'del' & 'deltree' on DFS shares. The extra redirection is necessary to reproduce the bug BUG: https://bugzilla.samba.org/show_bug.cgi?id=15100 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-06-17 12:15:42 +03:00
[msdfs-share2]
path = $msdfs_shrdir2
msdfs root = yes
guest ok = yes
s3: torture: Add a comprehensive SMB2 DFS path torture tester. Passes fully against Windows. This shows that DFS paths on Windows on SMB2 must be of the form: SERVER\SHARE\PATH but the actual contents of the strings SERVER and SHARE don't need to match the given server or share. The algorithm the Windows server uses is the following: Look for a '\\' character, and assign anything before that to the SERVER component. The characters in this component are not checked for validity. Look for a second '\\' character and assign anything between the first and second '\\' characters to the SHARE component. The characters in the share component are checked for validity, but only ':' is flagged as an illegal sharename character despite what: [MS-FSCC] https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-fscc/dc9978d7-6299-4c5a-a22d-a039cdc716ea says. Anything after the second '\\' character is assigned to the PATH component and becomes the share-relative path. If there aren't two '\\' characters it removes everything and ends up with the empty string as the share relative path. To give some examples, the following pathnames all map to the directory at the root of the DFS share: SERVER\SHARE SERVER "" ANY\NAME ANY ::::\NAME the name: SERVER\: is illegal (sharename contains ':') and the name: ANY\NAME\file maps to a share-relative pathname of "file", despite "ANY" not being the server name, and "NAME" not being the DFS share name we are connected to. Adds a knownfail for smbd as our current code in parse_dfs_path() is completely incorrect here and tries to map "incorrect" DFS names into local paths. I will work on fixing this later, but we should be able to remove parse_dfs_path() entirely and move the DFS pathname logic before the call to filename_convert_dirfsp() in the same way Volker suggested and was able to achieve for extract_snapshot_token() and the @GMT pathname processing. Also proves the "target" paths for SMB2_SETINFO rename and hardlink must *not* be DFS-paths. Next I will work on a torture tester for SMB1 DFS paths. Signed-off-by: Jeremy Allison <jra@samba.org> Reivewed-by: Noel Power <npower@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Aug 30 17:10:33 UTC 2022 on sn-devel-184
2022-08-30 00:37:35 +03:00
[msdfs-pathname-share]
path = $msdfs_pathname_share
msdfs root = yes
guest ok = yes
s3: smbtorture3: Add a new test SMB2-NON-DFS-SHARE. This one is tricky. It sends SMB2 DFS pathnames to a non-DFS share, and sets the SMB2 flag FLAGS2_DFS_PATHNAMES in the SMB2 packet. Windows will have non of it and (correctly) treats the pathnames as local paths (they're going to a non-DFS share). Samba fails. This proves the server looks as the share DFS capability to override the flag in the SMB2 packet. Passes against Windows. Added knownfail for Samba. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-09-09 02:42:26 +03:00
[non-msdfs-pathname-share]
path = $non_msdfs_pathname_share
msdfs root = no
guest ok = yes
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
[hideunread]
copy = tmp
hide unreadable = yes
s3-selftest: make sure provisioned s3 looks the same in make selftest as in make test. This fixes some tests that were previously failing. Guenther
2010-05-29 02:09:14 +04:00
[tmpcase]
copy = tmp
case sensitive = yes
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
[hideunwrite]
copy = tmp
hide unwriteable files = yes
selftest/knownfail: we pass some samba3.smb2.durable-* tests now metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Sat Sep 8 23:18:39 CEST 2012 on sn-devel-104
2012-08-09 17:27:50 +04:00
[durable]
copy = tmp
kernel share modes = no
kernel oplocks = no
posix locking = no
selftest/s3: expose share with FS applicable config Attempt to determine the underlying test share filesystem using statfs. If the filesystem is detected and an applicable configuration is available, then apply it to a new filesystem specific share. Btrfs is currently the only VFS module to utilize this logic. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-11-18 17:54:26 +04:00
[fs_specific]
copy = tmp
$fs_specific_conf
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
[print1]
copy = tmp
printable = yes
Specify explicit path to vlp, for those not having vlp in $PATH.
2009-04-23 01:54:10 +04:00
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
[print2]
copy = print1
[print3]
copy = print1
selftest: configure printer with default devmode = no This allows us to reproduce the segfault described in bug 9433. Reviewed-by: Andreas Schneider <asn@samba.org>
2012-11-29 15:10:45 +04:00
default devmode = no
selftest: add a test for %U variable expansion in spoolssd This targets the nt4_dc testenv which luckily already runs with spoolssd enabled. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14668 MR: https://gitlab.com/samba-team/samba/-/merge_requests/1834 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Björn Baumbach <bb@sernet.de> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-03-11 16:46:28 +03:00
[print_var_exp]
copy = print1
print command = $self->{srcdir}/source3/script/tests/printing/printing_var_exp_lpr_cmd.sh \"Windows user: %U\" \"UNIX user: %u\" \"Domain: %D\"
s3-selftest: rename printer "print4" to "lp". This should trigger a false error condition in our code. Guenther
2010-09-02 15:39:12 +04:00
[lp]
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
copy = print1
selftest: Run raw.acls test against the nfs4acl_xattr module This is the first time we have tested the NFSv4 ACL mapping code. Sadly most tests fail but these can be fixed from here. This at least shows that the code does not segfault. Andrew Bartlett Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-14 14:04:45 +04:00
selftest: add explicit default NFS4 acl version This is the current default, just make it explicit. A subsequent commit will bump the default to 4.1. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-10-23 14:35:49 +03:00
[nfs4acl_simple_40]
selftest: Run raw.acls test against the nfs4acl_xattr module This is the first time we have tested the NFSv4 ACL mapping code. Sadly most tests fail but these can be fixed from here. This at least shows that the code does not segfault. Andrew Bartlett Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-14 14:04:45 +04:00
path = $shrdir
comment = smb username is [%U]
s4-smbtorture: Run tests for nfs4:modes simple and special. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-28 21:06:59 +04:00
nfs4:mode = simple
selftest: add explicit default NFS4 acl version This is the current default, just make it explicit. A subsequent commit will bump the default to 4.1. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-10-23 14:35:49 +03:00
nfs4acl_xattr:version = 40
selftest: VFSLIBDIR is not needed, the waf build knows where to find modules automatically This is why was relinks on install, because it is fixing these internal variables up. Andrew Bartlett Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-22 10:13:21 +04:00
vfs objects = nfs4acl_xattr xattr_tdb
s4-smbtorture: Run tests for nfs4:modes simple and special. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-28 21:06:59 +04:00
selftest: add explicit default NFS4 acl version This is the current default, just make it explicit. A subsequent commit will bump the default to 4.1. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-10-23 14:35:49 +03:00
[nfs4acl_special_40]
s4-smbtorture: Run tests for nfs4:modes simple and special. Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-28 21:06:59 +04:00
path = $shrdir
comment = smb username is [%U]
nfs4:mode = special
selftest: add explicit default NFS4 acl version This is the current default, just make it explicit. A subsequent commit will bump the default to 4.1. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-10-23 14:35:49 +03:00
nfs4acl_xattr:version = 40
selftest: VFSLIBDIR is not needed, the waf build knows where to find modules automatically This is why was relinks on install, because it is fixing these internal variables up. Andrew Bartlett Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-22 10:13:21 +04:00
vfs objects = nfs4acl_xattr xattr_tdb
selftest: Run raw.acls test against the nfs4acl_xattr module This is the first time we have tested the NFSv4 ACL mapping code. Sadly most tests fail but these can be fixed from here. This at least shows that the code does not segfault. Andrew Bartlett Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-14 14:04:45 +04:00
selftest: test vfs_nfs4acl_xattr with NFS 4.1 ACLs Only tests with "nfs4:mode = simple" as mode special is supposed to be broken anyway and simple is recommended. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-10-23 15:05:19 +03:00
[nfs4acl_simple_41]
path = $shrdir
comment = smb username is [%U]
nfs4:mode = simple
vfs objects = nfs4acl_xattr xattr_tdb
selftest: run raw.acls tests against a share with XDR NFS4 ACLs Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-09-07 18:29:03 +03:00
[nfs4acl_xdr_40]
path = $shrdir
comment = smb username is [%U]
vfs objects = nfs4acl_xattr xattr_tdb
nfs4:mode = simple
nfs4acl_xattr:encoding = xdr
nfs4acl_xattr:version = 40
selftest: run raw.acls test with XDR NFS41 ACLs Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-10-19 15:24:03 +03:00
[nfs4acl_xdr_41]
path = $shrdir
comment = smb username is [%U]
vfs objects = nfs4acl_xattr xattr_tdb
nfs4:mode = simple
nfs4acl_xattr:encoding = xdr
nfs4acl_xattr:version = 41
selftest: test vfs_nfs4acl_xattr in nfs mode The same tests as for the other modes xdr and ndr are marked as knownfail. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-26 22:51:14 +03:00
[nfs4acl_nfs_40]
path = $shrdir
comment = smb username is [%U]
vfs objects = nfs4acl_xattr xattr_tdb
nfs4:mode = simple
nfs4acl_xattr:encoding = nfs
nfs4acl_xattr:version = 40
nfs4acl_xattr:xattr_name = security.nfs4acl_xdr
[nfs4acl_nfs_41]
path = $shrdir
comment = smb username is [%U]
vfs objects = nfs4acl_xattr xattr_tdb
nfs4:mode = simple
nfs4acl_xattr:encoding = nfs
nfs4acl_xattr:version = 41
nfs4acl_xattr:xattr_name = security.nfs4acl_xdr
The xcopy test is used in unusual ways (via a different uid). Ensure we can cope with this.
2011-10-28 23:15:51 +04:00
[xcopy_share]
path = $shrdir
comment = smb username is [%U]
create mask = 777
force create mode = 777
Tests for bug #8972 - Add a posix_share definition to s3 so we can do raw posix permissions checks.
2012-06-05 07:43:09 +04:00
[posix_share]
path = $shrdir
comment = smb username is [%U]
create mask = 0777
force create mode = 0
directory mask = 0777
force directory mode = 0
s3: torture: Regression test case to specify exactly how UNIX extensions should act on files with streams. If a stream is open, refuse the unlink. Ensure UNIX unlink request can remove a file containing streams. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12021 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Wed Jul 20 05:20:29 CEST 2016 on sn-devel-144
2016-07-19 19:24:38 +03:00
vfs objects = xattr_tdb streams_depot
tests/s3: Test SMB2_FIND_POSIX_INFORMATION dir query Signed-off-by: David Mulder <dmulder@suse.com> Reviewed-by: Volker Lendecke <vl@samba.org>
2022-06-16 00:39:00 +03:00
[smb3_posix_share]
vfs objects = fake_acls xattr_tdb streams_depot time_audit full_audit
create mask = 07777
directory mask = 07777
mangled names = no
path = $shrdir
read only = no
guest ok = yes
selftest: Introduce share for testing AIO Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-12-06 02:20:06 +04:00
[aio]
selftest/Samba3: support durable handles on the 'aio' share This means we can test the lock sequence checking via the 'samba3.smb2.lock aio(nt4_dc)' test. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2012-10-24 17:55:20 +04:00
copy = durable
selftest: Introduce share for testing AIO Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-12-06 02:20:06 +04:00
aio read size = 1
aio write size = 1
Tests for bug #8972 - Add a posix_share definition to s3 so we can do raw posix permissions checks.
2012-06-05 07:43:09 +04:00
s3-selftest: add print$ share with two arch dirs. Guenther
2010-04-23 15:51:02 +04:00
[print\$]
copy = tmp
s4:torture: add boilerplate code for vfs_fruit Signed-off-by: Ralph Boehme <rb@sernet.de> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2014-07-08 07:47:02 +04:00
[vfs_fruit]
path = $shrdir
selftest: vfs.fruit: add xattr_tdb where possible This makes the tests indepent from fs xattr support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:57:31 +03:00
vfs objects = catia fruit streams_xattr acl_xattr xattr_tdb
vfs_fruit: fix fruit:resource option spelling Fix all occurences of bad spelling of "resource" as "res*s*ource" (two s). One of the places where this was wrong was when parsing parametric options in the VFS connect() function in the module. As a result any setting of fruit:resource=something in smb.conf was silently ignored and the default ("file") was active. In Samba 4.6 we accept both the wrong and the correct spelling, in Samba 4.7 the bad spelling will be removed. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12412 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-11-08 14:35:12 +03:00
fruit:resource = file
s4:torture: add boilerplate code for vfs_fruit Signed-off-by: Ralph Boehme <rb@sernet.de> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2014-07-08 07:47:02 +04:00
fruit:metadata = netatalk
fruit:locking = netatalk
fruit:encoding = native
selftest: add "fruit:veto_appledouble = no" to fruit shares This is needed for a subsequent commit that modifies an existing test to write a ._ file over SMB instead of using the ugly local creation hack. SMB acces of ._ files requires "fruit:veto_appledouble = no", so let's set it. Bug: https://bugzilla.samba.org/show_bug.cgi?id=13155 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-11-17 15:52:25 +03:00
fruit:veto_appledouble = no
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
selftest: run vfs.fruit_netatalk test against seperate share These tests require a fs with xattr support. This allows adding xattr_tdb to all other shares in the next commit. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:55:26 +03:00
[vfs_fruit_xattr]
path = $shrdir
# This is used by vfs.fruit tests that require real fs xattr
vfs objects = catia fruit streams_xattr acl_xattr
fruit:resource = file
fruit:metadata = netatalk
fruit:locking = netatalk
fruit:encoding = native
fruit:veto_appledouble = no
selftest: run vfs_fruit tests against share with fruit:metadata=stream BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-11-15 17:25:14 +03:00
[vfs_fruit_metadata_stream]
path = $shrdir
selftest: vfs.fruit: add xattr_tdb where possible This makes the tests indepent from fs xattr support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:57:31 +03:00
vfs objects = fruit streams_xattr acl_xattr xattr_tdb
selftest: run vfs_fruit tests against share with fruit:metadata=stream BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-11-15 17:25:14 +03:00
fruit:resource = file
fruit:metadata = stream
selftest: add "fruit:veto_appledouble = no" to fruit shares This is needed for a subsequent commit that modifies an existing test to write a ._ file over SMB instead of using the ugly local creation hack. SMB acces of ._ files requires "fruit:veto_appledouble = no", so let's set it. Bug: https://bugzilla.samba.org/show_bug.cgi?id=13155 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-11-17 15:52:25 +03:00
fruit:veto_appledouble = no
selftest: run vfs_fruit tests against share with fruit:metadata=stream BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-11-15 17:25:14 +03:00
selftest: also run vfs_fruit tests with streams_depot BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-12-02 09:42:07 +03:00
[vfs_fruit_stream_depot]
path = $shrdir
selftest: vfs.fruit: add xattr_tdb where possible This makes the tests indepent from fs xattr support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:57:31 +03:00
vfs objects = fruit streams_depot acl_xattr xattr_tdb
selftest: also run vfs_fruit tests with streams_depot BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-12-02 09:42:07 +03:00
fruit:resource = stream
fruit:metadata = stream
selftest: add "fruit:veto_appledouble = no" to fruit shares This is needed for a subsequent commit that modifies an existing test to write a ._ file over SMB instead of using the ugly local creation hack. SMB acces of ._ files requires "fruit:veto_appledouble = no", so let's set it. Bug: https://bugzilla.samba.org/show_bug.cgi?id=13155 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-11-17 15:52:25 +03:00
fruit:veto_appledouble = no
selftest: also run vfs_fruit tests with streams_depot BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-12-02 09:42:07 +03:00
selftest: add shares without vfs_fruit for the vfs_fruit tests Not used for now, but the next commit will add a test that makes use of this. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-12-11 21:06:46 +03:00
[vfs_wo_fruit]
path = $shrdir
selftest: vfs.fruit: add xattr_tdb where possible This makes the tests indepent from fs xattr support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:57:31 +03:00
vfs objects = streams_xattr acl_xattr xattr_tdb
selftest: add shares without vfs_fruit for the vfs_fruit tests Not used for now, but the next commit will add a test that makes use of this. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-12-11 21:06:46 +03:00
[vfs_wo_fruit_stream_depot]
path = $shrdir
selftest: vfs.fruit: add xattr_tdb where possible This makes the tests indepent from fs xattr support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:57:31 +03:00
vfs objects = streams_depot acl_xattr xattr_tdb
selftest: add shares without vfs_fruit for the vfs_fruit tests Not used for now, but the next commit will add a test that makes use of this. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12427 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org>
2016-12-11 21:06:46 +03:00
s4/torture: test vfs_fruit "fruit:time machine max size" option Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-01-02 21:09:04 +03:00
[vfs_fruit_timemachine]
path = $shrdir
selftest: vfs.fruit: add xattr_tdb where possible This makes the tests indepent from fs xattr support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13319 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-03-16 23:57:31 +03:00
vfs objects = fruit streams_xattr acl_xattr xattr_tdb
s4/torture: test vfs_fruit "fruit:time machine max size" option Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-01-02 21:09:04 +03:00
fruit:resource = file
fruit:metadata = stream
fruit:time machine = yes
fruit:time machine max size = 32K
s4:torture: add test for AppleDouble ResourceFork conversion Bug: https://bugzilla.samba.org/show_bug.cgi?id=13642 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-10-04 15:28:15 +03:00
[vfs_fruit_wipe_intentionally_left_blank_rfork]
path = $shrdir
vfs objects = fruit streams_xattr acl_xattr xattr_tdb
fruit:resource = file
fruit:metadata = stream
fruit:wipe_intentionally_left_blank_rfork = true
fruit:delete_empty_adfiles = false
fruit:veto_appledouble = no
[vfs_fruit_delete_empty_adfiles]
path = $shrdir
vfs objects = fruit streams_xattr acl_xattr xattr_tdb
fruit:resource = file
fruit:metadata = stream
fruit:wipe_intentionally_left_blank_rfork = true
fruit:delete_empty_adfiles = true
fruit:veto_appledouble = no
vfs_fruit: make "fruit:zero_file_id" a per share option Now that File-ID calculation goes through the VFS, we can nicely make a per-share option out of it. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2019-06-30 15:24:59 +03:00
[vfs_fruit_zero_fileid]
path = $shrdir
vfs objects = fruit streams_xattr acl_xattr xattr_tdb
fruit:resource = file
fruit:metadata = stream
fruit:zero_file_id=yes
smbtorture: add test for fruit:validate_afpinfo option Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Oct 24 22:30:06 UTC 2023 on atb-devel-224
2023-10-20 16:45:31 +03:00
fruit:validate_afpinfo = no
vfs_fruit: make "fruit:zero_file_id" a per share option Now that File-ID calculation goes through the VFS, we can nicely make a per-share option out of it. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2019-06-30 15:24:59 +03:00
s3: tests: Add test that shows smbd crashes using vfs_fruit with fruit:resource = stream on deleting a file. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15099 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-06-18 03:49:43 +03:00
[fruit_resource_stream]
path = $fruit_resource_stream_shrdir
vfs objects = fruit streams_xattr acl_xattr xattr_tdb
fruit:resource = stream
fruit:metadata = stream
Add test suite for iconv conversion fail of bad names over SMB1/SMB3. Bug 10775 - smbd crashes when accessing garbage filenames https://bugzilla.samba.org/show_bug.cgi?id=10775 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Tue Sep 16 04:21:49 CEST 2014 on sn-devel-104
2014-08-28 00:15:29 +04:00
[badname-tmp]
path = $badnames_shrdir
guest ok = yes
s4: smb2 : torture: Add new dynamic_share leases test. Depends on new share "dynamic_share" being set up containing an %R in the path= statement. Shows we will break leases and fail to grant new ones if we get a lease_key+client guid pair match on files with different fileid's, as can happen on dynamic shares. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2014-11-18 01:17:34 +03:00
s3: torture: Add regression test for bug #11249. Bug 11249 - Mangled names do not work with acl_xattr BUG: https://bugzilla.samba.org/show_bug.cgi?id=11249 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Tue May 5 16:37:18 CEST 2015 on sn-devel-104
2015-05-02 07:08:21 +03:00
[manglenames_share]
path = $manglenames_shrdir
guest ok = yes
s4: smb2 : torture: Add new dynamic_share leases test. Depends on new share "dynamic_share" being set up containing an %R in the path= statement. Shows we will break leases and fail to grant new ones if we get a lease_key+client guid pair match on files with different fileid's, as can happen on dynamic shares. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2014-11-18 01:17:34 +03:00
[dynamic_share]
s4:torture/smb2: use %t (timestamp) instead of %R for lease.dynamic_share test This test should be independent of the protocol in order to be independent of multi-channel support of the server. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14534 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-02-09 18:54:18 +03:00
path = $shrdir/dynamic/%t
s4: smb2 : torture: Add new dynamic_share leases test. Depends on new share "dynamic_share" being set up containing an %R in the path= statement. Shows we will break leases and fail to grant new ones if we get a lease_key+client guid pair match on files with different fileid's, as can happen on dynamic shares. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2014-11-18 01:17:34 +03:00
guest ok = yes
s4:torture/smb2: use %t (timestamp) instead of %R for lease.dynamic_share test This test should be independent of the protocol in order to be independent of multi-channel support of the server. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14534 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-02-09 18:54:18 +03:00
root preexec = mkdir %P
selftest: add snapshot share configuration Define a share that uses both vfs_shell_snap and fake_snap.pl to create, delete and expose fake snapshots in response to FSRVP requests. Additionally test snapshot enumeration and access via the shadow_copy2 module. Allow for simple testing of FSRVP message sequence timeouts, by specifying an artificially small interval. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-15 02:42:35 +04:00
CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share). New tests for fix. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11395 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2015-07-09 23:57:58 +03:00
[widelinks_share]
path = $widelinks_shrdir
wide links = no
guest ok = yes
selftest: add snapshot share configuration Define a share that uses both vfs_shell_snap and fake_snap.pl to create, delete and expose fake snapshots in response to FSRVP requests. Additionally test snapshot enumeration and access via the shadow_copy2 module. Allow for simple testing of FSRVP message sequence timeouts, by specifying an artificially small interval. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-15 02:42:35 +04:00
[fsrvp_share]
CVE-2019-10197: selftest: make fsrvp_share its own independent subdirectory The next patch will otherwise break the fsrvp related tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14035 Signed-off-by: Stefan Metzmacher <metze@samba.org>
2019-07-30 18:16:59 +03:00
path = $fsrvp_shrdir
selftest: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
2023-06-30 13:04:33 +03:00
comment = fake snapshots using rsync
selftest: add snapshot share configuration Define a share that uses both vfs_shell_snap and fake_snap.pl to create, delete and expose fake snapshots in response to FSRVP requests. Additionally test snapshot enumeration and access via the shadow_copy2 module. Allow for simple testing of FSRVP message sequence timeouts, by specifying an artificially small interval. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-15 02:42:35 +04:00
vfs objects = shell_snap shadow_copy2
shell_snap:check path command = $fake_snap_pl --check
shell_snap:create command = $fake_snap_pl --create
shell_snap:delete command = $fake_snap_pl --delete
# a relative path here fails, the snapshot dir is no longer found
CVE-2019-10197: selftest: make fsrvp_share its own independent subdirectory The next patch will otherwise break the fsrvp related tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14035 Signed-off-by: Stefan Metzmacher <metze@samba.org>
2019-07-30 18:16:59 +03:00
shadow:snapdir = $fsrvp_shrdir/.snapshots
vfs_shadow_copy2: add a blackbox test suite Add a blackbox test suite for vfs_shadow_copy2, testing parameters mountpoint, basedir, snapdir, snapdirseverywhere, and testing correct wide-link processing. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11580 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Wed Jan 13 17:11:38 CET 2016 on sn-devel-144
2015-10-29 23:24:30 +03:00
[shadow1]
path = $shadow_shrdir
comment = previous versions snapshots under mount point
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
[shadow2]
path = $shadow_shrdir
comment = previous versions snapshots outside mount point
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
shadow:snapdir = $shadow_tstdir/.snapshots
[shadow3]
path = $shadow_shrdir
comment = previous versions with subvolume snapshots, snapshots under base dir
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
[shadow4]
path = $shadow_shrdir
comment = previous versions with subvolume snapshots, snapshots outside mount point
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_tstdir/.snapshots
[shadow5]
path = $shadow_shrdir
comment = previous versions at volume root snapshots under mount point
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_shrdir
[shadow6]
path = $shadow_shrdir
comment = previous versions at volume root snapshots outside mount point
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_shrdir
shadow:snapdir = $shadow_tstdir/.snapshots
[shadow7]
path = $shadow_shrdir
comment = previous versions snapshots everywhere
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
shadow:snapdirseverywhere = yes
vfs_shadow_copy2: add tests for snapsharepath Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2015-11-03 12:15:52 +03:00
[shadow8]
path = $shadow_shrdir
comment = previous versions using snapsharepath
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
shadow:snapdir = $shadow_tstdir/.snapshots
shadow:snapsharepath = share
shadow_copy2: Add test cases to cover shadow:format Added test cases which will filter snapshot names based on shadow:format option in smb.conf Signed-off-by: Rajesh Joseph <rjoseph@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2016-07-12 12:33:29 +03:00
[shadow_fmt0]
comment = Testing shadow:format with default option
vfs object = shadow_copy2
path = $shadow_shrdir
read only = no
guest ok = yes
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
shadow:format = \@GMT-%Y.%m.%d-%H.%M.%S
[shadow_fmt1]
comment = Testing shadow:format with only date component
vfs object = shadow_copy2
path = $shadow_shrdir
read only = no
guest ok = yes
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
shadow:format = \@GMT-%Y-%m-%d
[shadow_fmt2]
comment = Testing shadow:format with some hardcoded prefix
vfs object = shadow_copy2
path = $shadow_shrdir
read only = no
guest ok = yes
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
shadow:format = snap\@GMT-%Y.%m.%d-%H.%M.%S
[shadow_fmt3]
comment = Testing shadow:format with modified format
vfs object = shadow_copy2
path = $shadow_shrdir
read only = no
guest ok = yes
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
shadow:format = \@GMT-%Y.%m.%d-%H_%M_%S-snap
shadow_copy2: Add test case for snapprefix and delimiter Add test case for the newly addded option shadow:snapprefix and shadow:delimiter Signed-off-by: Rajesh Joseph <rjoseph@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2016-07-13 19:15:27 +03:00
[shadow_fmt4]
comment = Testing shadow:snapprefix regex
vfs object = shadow_copy2
path = $shadow_shrdir
read only = no
guest ok = yes
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
shadow:snapprefix = \^s[a-z]*p\$
shadow:format = _GMT-%Y.%m.%d-%H.%M.%S
[shadow_fmt5]
comment = Testing shadow:snapprefix with delim regex
vfs object = shadow_copy2
path = $shadow_shrdir
read only = no
guest ok = yes
shadow:mountpoint = $shadow_mntdir
shadow:basedir = $shadow_basedir
shadow:snapdir = $shadow_basedir/.snapshots
shadow:delimiter = \@GMT
shadow:snapprefix = [a-z]*
shadow:format = \@GMT-%Y.%m.%d-%H.%M.%S
vfs_shadow_copy2: add a blackbox test suite Add a blackbox test suite for vfs_shadow_copy2, testing parameters mountpoint, basedir, snapdir, snapdirseverywhere, and testing correct wide-link processing. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11580 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Wed Jan 13 17:11:38 CET 2016 on sn-devel-144
2015-10-29 23:24:30 +03:00
[shadow_wl]
path = $shadow_shrdir
comment = previous versions with wide links allowed
vfs objects = shadow_copy2
shadow:mountpoint = $shadow_mntdir
wide links = yes
s3:script/tests: add a test for VSS write behaviour Bug: https://bugzilla.samba.org/show_bug.cgi?id=13688 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-23 12:18:44 +03:00
[shadow_write]
path = $shadow_tstdir
comment = previous versions snapshots under mount point
selftest: remove error_inject from shadow_write share Frankly, I can't remember why I added this as part of bug 13688. The goal of the corresponding test is to verify a write on a read-only file handle fails. As the file is opened O_RDONLY, the write will fail anyway and there's no need to inject the error. To make things worse, having the error injected meant we didn't notice when the underlying logic of forcing the open to be done with O_RDONLY was done as O_RDWR, resulting in the write on the handle to succeed. This happened when we introduced reopen_from_fsp(): the initial pathref open of a path with a twrp value was correctly detected and handled by shadow_copy2_openat(). However, when converting the pathref open to a real one via reopen_from_fsp(), shadow_copy2_openat() only sees the magic /proc/fd path and has no way of inferring that this was originating from a prevous version open with a twrp value. Tl;dr: we can just remove this error injection, it is not needed, the correct fix is to implement this in the SMB layer which is done in the subsequent commits. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13688 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2023-12-21 21:40:21 +03:00
vfs objects = shadow_copy2 streams_xattr
s3:script/tests: add a test for VSS write behaviour Bug: https://bugzilla.samba.org/show_bug.cgi?id=13688 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-23 12:18:44 +03:00
shadow:mountpoint = $shadow_tstdir
selftest: enable "shadow:fixinodes" in "shadow_write" share The existing tests don't care and this will be used in a subsequent commit to demonstrate that this option is currently broken. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14756 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-07-06 08:20:15 +03:00
shadow:fixinodes = yes
CI: enable "smbd async dosmode" on shadow_write share Existing tests don't care, upcoming new test needs it. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-02-23 20:14:38 +03:00
smbd async dosmode = yes
s3:script/tests: add a test for VSS write behaviour Bug: https://bugzilla.samba.org/show_bug.cgi?id=13688 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-23 12:18:44 +03:00
tests: Show that streams_depot and shadow_copy2 don't play together See the next patch, we assert in shadow_copy2_openat() over paths passed in from shadow_copy2 BUG: https://bugzilla.samba.org/show_bug.cgi?id=15358 Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2023-04-14 18:34:17 +03:00
[shadow_depot]
path = $shadow_shrdir
comment = previous versions with streams_depot
vfs objects = streams_depot shadow_copy2
selftest: add disk-free and quota tests based on fake_dfq VFS module These tests use the vfs_fake_dfq module to simulate some relations between the quota status and disk-free status. The tests will become meaningful when we take the code that does those calculations out of the VFS layer - the tests will then exercise the server code. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-01-06 13:59:06 +03:00
[dfq]
path = $shrdir/dfree
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
vfs objects = acl_xattr fake_acls xattr_tdb fake_dfq
selftest: add disk-free and quota tests based on fake_dfq VFS module These tests use the vfs_fake_dfq module to simulate some relations between the quota status and disk-free status. The tests will become meaningful when we take the code that does those calculations out of the VFS layer - the tests will then exercise the server code. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-01-06 13:59:06 +03:00
admin users = $unix_name
include = $dfqconffile
selftest: Add dfq_cache share with 'dfree cache time' set BUG: https://bugzilla.samba.org/show_bug.cgi?id=13446 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-05-23 21:07:54 +03:00
[dfq_cache]
path = $shrdir/dfree
vfs objects = acl_xattr fake_acls xattr_tdb fake_dfq
admin users = $unix_name
include = $dfqconffile
dfree cache time = 60
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
[dfq_owner]
path = $shrdir/dfree
vfs objects = acl_xattr fake_acls xattr_tdb fake_dfq
inherit owner = yes
include = $dfqconffile
s3/script/tests: Add simple (smb1 & smb2) get/set/list tests for smbcquotas BUG: https://bugzilla.samba.org/show_bug.cgi?id=13553 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-21 11:29:59 +03:00
[quotadir]
path = $shrdir/quota
admin users = $unix_name
s4/torture: tests for vfs_acl_xattr default ACL styles Bug: https://bugzilla.samba.org/show_bug.cgi?id=12177 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-25 17:30:24 +03:00
[acl_xattr_ign_sysacl_posix]
copy = tmp
acl_xattr:ignore system acls = yes
acl_xattr:default acl style = posix
[acl_xattr_ign_sysacl_windows]
copy = tmp
acl_xattr:ignore system acls = yes
acl_xattr:default acl style = windows
s3/torture: add a test for "mangled names = invalid" This checks both that illegal NTFS names are still mangled and that long names have no shortname. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-12-15 15:05:50 +03:00
[mangle_illegal]
copy = tmp
mangled names = illegal
s4/torture: some tests for kernel oplocks Bug: https://bugzilla.samba.org/show_bug.cgi?id=7537 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-01 20:13:35 +03:00
s3: Test for CVE-2017-2619 regression with "follow symlinks = no". BUG: https://bugzilla.samba.org/show_bug.cgi?id=12721 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Tue Mar 28 07:00:46 CEST 2017 on sn-devel-144
2017-03-27 21:48:25 +03:00
[nosymlinks]
copy = tmp
path = $nosymlinks_shrdir
follow symlinks = no
tests: Add nosymlinks_smb1allow share The next commits will create symlinks via posix extensions to test the smb2 symlink error return. Creating posix symlinks is not allowed with follow symlinks = no, but it's currently our only way to create symlinks over SMB. This could go away once we can create symlinks via reparse points. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-10-27 13:48:59 +03:00
[nosymlinks_smb1allow]
copy=nosymlinks
follow symlinks = yes
s3: Test for CVE-2017-2619 regression with "follow symlinks = no". BUG: https://bugzilla.samba.org/show_bug.cgi?id=12721 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Uri Simchoni <uri@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Tue Mar 28 07:00:46 CEST 2017 on sn-devel-144
2017-03-27 21:48:25 +03:00
s3: smbd: Add regression test for non-wide symlinks to directories fail over SMB3. Mark as knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12860 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2017-06-23 21:12:22 +03:00
[local_symlinks]
copy = tmp
path = $local_symlinks_shrdir
follow symlinks = yes
tests: add test for vfs_worm Signed-off-by: Bjoern Jacke <bjacke@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2023-12-30 21:46:53 +03:00
[worm]
copy = tmp
path = $worm_shrdir
vfs objects = worm
worm:grace_period = 1
comment = vfs_worm with 1s grace_period
s4/torture: some tests for kernel oplocks Bug: https://bugzilla.samba.org/show_bug.cgi?id=7537 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-03-01 20:13:35 +03:00
[kernel_oplocks]
copy = tmp
kernel oplocks = yes
vfs objects = streams_xattr xattr_tdb
selftest: also run smb2.compound_find against share with async delay set Add a share with "smbd:find async delay usec" set to 10000 and run the test smb2.compound_find added in the previous commit against this new share as well. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-02-24 00:20:39 +03:00
s3: tests: Regression test to ensure we can never return a DIRECTORY attribute on a stream. Tests streams_xattr and also streams_depot. Inspired from a real-world test case by Andrew Walker <awalker@ixsystems.com>. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13380 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Apr 12 02:04:28 CEST 2018 on sn-devel-144
2018-04-11 20:33:22 +03:00
[streams_xattr]
copy = tmp
vfs objects = streams_xattr xattr_tdb
s3: provision: Add new streams_xattr_nostrict share - needs "strict rename = no". The bug we're testing for needs "strict rename = no" (the default), but the existing streams_xattr share uses "strict rename = yes" from the [global] section. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15314 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
2023-02-28 22:14:34 +03:00
[streams_xattr_nostrict]
copy = tmp
strict rename = no
vfs objects = streams_xattr xattr_tdb
CI: add a test trying to delete a stream on a pathref ("stat open") handle When using vfs_streams_xattr, for a pathref handle of a stream the system fd will be a fake fd created by pipe() in vfs_fake_fd(). For the following callchain we wrongly pass a stream fsp to SMB_VFS_FGET_NT_ACL(): SMB_VFS_CREATE_FILE(..., "file:stream", ...) => open_file(): if (open_fd): -> taking the else branch: -> smbd_check_access_rights_fsp(stream_fsp) -> SMB_VFS_FGET_NT_ACL(stream_fsp) This is obviously wrong and can lead to strange permission errors when using vfs_acl_xattr: in vfs_acl_xattr we will try to read the stored ACL by calling fgetxattr(fake-fd) which of course faild with EBADF. Now unfortunately the vfs_acl_xattr code ignores the specific error and handles this as if there was no ACL stored and subsequently runs the code to synthesize a default ACL according to the setting of "acl:default acl style". As the correct access check for streams has already been carried out by calling check_base_file_access() from create_file_unixpath(), the above problem is not a security issue: it can only lead to "decreased" permissions resulting in unexpected ACCESS_DENIED errors. The fix is obviously going to be calling smbd_check_access_rights_fsp(stream_fsp->base_fsp). This test verifies that deleting a file works when the stored NT ACL grants DELETE_FILE while the basic POSIX permissions (used in the acl_xattr fallback code) do not. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15126 MR: https://gitlab.com/samba-team/samba/-/merge_requests/2643 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2022-07-27 14:37:32 +03:00
[acl_streams_xattr]
copy = tmp
vfs objects = acl_xattr streams_xattr fake_acls xattr_tdb
acl_xattr:ignore system acls = yes
acl_xattr:security_acl_name = user.acl
xattr_tdb:ignore_user_xattr = yes
selftest: also run smb2.compound_find against share with async delay set Add a share with "smbd:find async delay usec" set to 10000 and run the test smb2.compound_find added in the previous commit against this new share as well. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-02-24 00:20:39 +03:00
[compound_find]
copy = tmp
smbd:find async delay usec = 10000
selftest: Add share for error injection testing BUG: https://bugzilla.samba.org/show_bug.cgi?id=13189 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-12-13 21:34:05 +03:00
[error_inject]
copy = tmp
vfs objects = error_inject
selftest: Create included files during provision Files included from smb.conf have to exists, otherwise python fails to load the configuration. Found while trying to run a python test before samba3.blackbox.smbd_error creates the included file. Signed-off-by: Samuel Cabrero <scabrero@suse.de> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-08-31 13:44:09 +03:00
include = $errorinjectconf
selftest: add a durable handle test with delayed disconnect Bug: https://bugzilla.samba.org/show_bug.cgi?id=13549 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-08-30 20:15:19 +03:00
[delay_inject]
copy = tmp
vfs objects = delay_inject
kernel share modes = no
kernel oplocks = no
posix locking = no
selftest: Create included files during provision Files included from smb.conf have to exists, otherwise python fails to load the configuration. Found while trying to run a python test before samba3.blackbox.smbd_error creates the included file. Signed-off-by: Samuel Cabrero <scabrero@suse.de> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-08-31 13:44:09 +03:00
include = $delayinjectconf
s4:torture/smb2/read: add test for cancelling SMB aio Bug: https://bugzilla.samba.org/show_bug.cgi?id=13667 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-10-28 21:29:26 +03:00
[aio_delay_inject]
copy = tmp
vfs objects = delay_inject
delay_inject:pread_send = 2000
delay_inject:pwrite_send = 2000
selftest: Add share to test "delete readonly" option BUG: https://bugzilla.samba.org/show_bug.cgi?id=13673 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-02 22:03:51 +03:00
s3:selftest: add delay_inject:brl_lock_windows testing BUG: https://bugzilla.samba.org/show_bug.cgi?id=14113 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Mon Sep 9 15:42:45 UTC 2019 on sn-devel-184
2019-08-20 16:53:59 +03:00
[brl_delay_inject1]
copy = tmp
vfs objects = delay_inject
delay_inject:brl_lock_windows = 90
delay_inject:brl_lock_windows_use_timer = yes
[brl_delay_inject2]
copy = tmp
vfs objects = delay_inject
delay_inject:brl_lock_windows = 90
delay_inject:brl_lock_windows_use_timer = no
selftest: Add share to test "delete readonly" option BUG: https://bugzilla.samba.org/show_bug.cgi?id=13673 Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-02 22:03:51 +03:00
[delete_readonly]
path = $prefix_abs/share
delete readonly = yes
selftest: Move enc_desired to provision to have it in 'fileserver' too Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-09-08 13:30:08 +03:00
[enc_desired]
path = $prefix_abs/share
vfs objects =
server smb encrypt = desired
s3:tests: Add smbclient tests for 'client smb encrypt' Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-09-08 11:15:20 +03:00
[enc_off]
path = $prefix_abs/share
vfs objects =
server smb encrypt = off
selftest: add tests for smb notify, using the a special share That share will get the "honor change notify privilege = yes" option once it's implemented. For now it's marked as knownfail. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Björn Baumbach <bb@sernet.de> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-07-20 17:49:39 +03:00
[notify_priv]
copy = tmp
smbd/notify: add option "honor change notify privilege" This option can be used to make use of the change notify privilege. By default notify results are not checked against the file system permissions. If "honor change notify privilege" is enabled, a user will only receive notify results, if he has change notify privilege or sufficient file system permissions. If a user has the change notify privilege, he will receive all requested notify results, even if the user does not have the permissions on the file system. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Björn Baumbach <bb@sernet.de> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Thu Dec 17 15:01:53 UTC 2020 on sn-devel-184
2018-11-06 17:21:37 +03:00
honor change notify privilege = yes
torture/smb2: ACL inheritance flags test with non-canonical behaviour Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-05-26 13:31:32 +03:00
[acls_non_canonical]
copy = tmp
loadparam: add option "acl flag inherited canonicalization" Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu May 27 19:51:57 UTC 2021 on sn-devel-184
2021-05-25 20:04:10 +03:00
acl flag inherited canonicalization = no
s3: test: Add tests to show we still connect to a full_audit share with a bad success or fail VFS names. Add knownfail. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15098 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2022-06-16 21:57:58 +03:00
[full_audit_success_bad_name]
copy = tmp
full_audit:success = badname
[full_audit_fail_bad_name]
copy = tmp
full_audit:failure = badname
torture: Test the "server addresses" parameter Thanks to Metze for the hint that all file servers already listen on 2 addressess -- V4 and V6 :-) Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Thu Nov 10 08:23:14 UTC 2022 on sn-devel-184
2022-11-07 22:34:57 +03:00
[only_ipv6]
copy = tmpguest
server addresses = $server_ipv6
s3:tests: Add substitution test for include directive BUG: https://bugzilla.samba.org/show_bug.cgi?id=15243 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2022-11-15 18:35:15 +03:00
s3:selftest: Move the smbget share to the provision function BUG: https://bugzilla.samba.org/show_bug.cgi?id=15345 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-03-30 11:16:35 +03:00
[smbget]
path = $smbget_sharedir
comment = smb username is [%U]
s3:tests: Fix smbget test Time to fix the smget share to not have `guest ok = yes` set. A new [smbget_guest] will be used for guest only tests. This way we can correctly test different authentication mechanisms. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-07 11:47:14 +03:00
tests: add a test for vfs_recycle Signed-off-by: Bjoern Jacke <bjacke@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2024-01-06 19:32:57 +03:00
[recycle]
copy = tmp
path = $recycle_shrdir
vfs objects = recycle
recycle : repository = .trash
recycle : exclude = *.tmp
recycle : directory_mode = 755
tests: add a test for "fake directory create times" Signed-off-by: Bjoern Jacke <bjacke@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Tue Jan 16 15:44:10 UTC 2024 on atb-devel-224
2024-01-09 03:14:39 +03:00
[fakedircreatetimes]
copy = tmp
path = $fakedircreatetimes_shrdir
fake directory create times = yes
s3:tests: Fix smbget test Time to fix the smget share to not have `guest ok = yes` set. A new [smbget_guest] will be used for guest only tests. This way we can correctly test different authentication mechanisms. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15532 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-12-07 11:47:14 +03:00
[smbget_guest]
path = $smbget_sharedir
comment = smb username is [%U]
s3:selftest: Move the smbget share to the provision function BUG: https://bugzilla.samba.org/show_bug.cgi?id=15345 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-03-30 11:16:35 +03:00
guest ok = yes
s3:tests: Add substitution test for include directive BUG: https://bugzilla.samba.org/show_bug.cgi?id=15243 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2022-11-15 18:35:15 +03:00
include = $aliceconfdir/%U.conf
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
";
selftest: Move enc_desired to provision to have it in 'fileserver' too Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2020-09-08 13:30:08 +03:00
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
close(CONF);
selftest: add disk-free and quota tests based on fake_dfq VFS module These tests use the vfs_fake_dfq module to simulate some relations between the quota status and disk-free status. The tests will become meaningful when we take the code that does those calculations out of the VFS layer - the tests will then exercise the server code. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-01-06 13:59:06 +03:00
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
my $net = Samba::bindir_path($self, "net");
my $cmd = "";
selftest: net command needs to think it is root in clustered case So just run it "as root" all the time. Something similar is already done for other things in Samba3::provision(), such as running smbpasswd in Samba3::createuser(). Signed-off-by: Martin Schwenke <martin@meltin.net> Reviewed-by: Volker Lendecke <vl@samba.org>
2020-01-17 01:42:19 +03:00
$cmd .= "UID_WRAPPER_ROOT=1 ";
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$cmd .= "SMB_CONF_PATH=\"$conffile\" ";
$cmd .= "$net setlocalsid $samsid";
selftest: Fix a warning message Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2020-01-16 15:23:40 +03:00
my $net_ret = system($cmd);
if ($net_ret != 0) {
warn("net setlocalsid failed: $net_ret\n$cmd");
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
return undef;
}
selftest: Create included files during provision Files included from smb.conf have to exists, otherwise python fails to load the configuration. Found while trying to run a python test before samba3.blackbox.smbd_error creates the included file. Signed-off-by: Samuel Cabrero <scabrero@suse.de> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-08-31 13:44:09 +03:00
unless (open(ERRORCONF, ">$errorinjectconf")) {
warn("Unable to open $errorinjectconf");
return undef;
}
close(ERRORCONF);
unless (open(DELAYCONF, ">$delayinjectconf")) {
warn("Unable to open $delayinjectconf");
return undef;
}
close(DELAYCONF);
selftest: add disk-free and quota tests based on fake_dfq VFS module These tests use the vfs_fake_dfq module to simulate some relations between the quota status and disk-free status. The tests will become meaningful when we take the code that does those calculations out of the VFS layer - the tests will then exercise the server code. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-01-06 13:59:06 +03:00
unless (open(DFQCONF, ">$dfqconffile")) {
warn("Unable to open $dfqconffile");
return undef;
}
close(DFQCONF);
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
selftest: s3: add a test for spnego downgrade from krb5 to ntlm BUG: https://bugzilla.samba.org/show_bug.cgi?id=14106 Signed-off-by: Isaac Boukris <iboukris@redhat.com> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2019-10-07 23:51:19 +03:00
unless (open(DELAYCONF, ">$globalinjectconf")) {
warn("Unable to open $globalinjectconf");
return undef;
}
close(DELAYCONF);
s3:tests: Add substitution test for include directive BUG: https://bugzilla.samba.org/show_bug.cgi?id=15243 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2022-11-15 18:35:15 +03:00
unless (open(ALICECONF, ">$aliceconffile")) {
warn("Unable to open $aliceconffile");
return undef;
}
print ALICECONF "
[alice_share]
path = $shrdir
comment = smb username is [%U]
";
close(ALICECONF);
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
##
## create a test account
##
selftest Use die() less often, as it fails to allow cleanup
2011-05-08 08:54:50 +04:00
unless (open(PASSWD, ">$nss_wrapper_passwd")) {
warn("Unable to open $nss_wrapper_passwd");
return undef;
selftest: Fix trailing whitespace in Samba3.pm Bug: https://bugzilla.samba.org/show_bug.cgi?id=14971 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2022-02-08 17:34:56 +03:00
}
s3-selftest: make sure we do not have duplicate uids/gids in nsswrapper. Also make sure we only add root user when needed, Jeremy please check. Guenther
2010-03-18 14:12:58 +03:00
print PASSWD "nobody:x:$uid_nobody:$gid_nobody:nobody gecos:$prefix_abs:/bin/false
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$unix_name:x:$unix_uid:$unix_gids[0]:$unix_name gecos:$prefix_abs:/bin/false
selftest: Add extra users to nss_wrapper These will be used for a test using pdbtest and to run the client test environment under nss_wrapper. Andrew Bartlett
2012-06-27 11:51:55 +04:00
pdbtest:x:$uid_pdbtest:$gid_nogroup:pdbtest gecos:$prefix_abs:/bin/false
selftest: Test auth_wbc, the auth4 winbind and winbind_wbclient modules using pdbtest This ensures these authentication modules continue to operate correctly, and that the results are consistent. Andrew Bartlett Change-Id: I7f63cd93e55c6f73ceeafb14f1dc265291791803 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Fri May 16 12:50:44 CEST 2014 on sn-devel-104
2014-05-16 06:30:43 +04:00
pdbtest2:x:$uid_pdbtest2:$gid_nogroup:pdbtest gecos:$prefix_abs:/bin/false
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
userdup:x:$uid_userdup:$gid_userdup:userdup gecos:$prefix_abs:/bin/false
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
pdbtest_wkn:x:$uid_pdbtest_wkn:$gid_everyone:pdbtest_wkn gecos:$prefix_abs:/bin/false
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
force_user:x:$uid_force_user:$gid_force_user:force user gecos:$prefix_abs:/bin/false
selftest: Add a blackbox test for smbget Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Christian Ambach <ambi@samba.org> Autobuild-Date(master): Fri Feb 26 14:40:55 CET 2016 on sn-devel-144
2016-02-06 12:30:29 +03:00
smbget_user:x:$uid_smbget:$gid_domusers:smbget_user gecos:$prefix_abs:/bin/false
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
user1:x:$uid_user1:$gid_nogroup:user1 gecos:$prefix_abs:/bin/false
user2:x:$uid_user2:$gid_nogroup:user2 gecos:$prefix_abs:/bin/false
selftest: Add gooduser and eviluser to Samba3 BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-15 18:06:49 +03:00
gooduser:x:$uid_gooduser:$gid_domusers:gooduser gecos:$prefix_abs:/bin/false
eviluser:x:$uid_eviluser:$gid_domusers:eviluser gecos::/bin/false
s3:tests: Add test for checking that root is not allowed as home dir BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Dec 5 05:22:43 CET 2018 on sn-devel-144
2018-12-03 13:05:46 +03:00
slashuser:x:$uid_slashuser:$gid_domusers:slashuser gecos:/:/bin/false
CVE-2020-25717: selftest: turn ad_member_no_nss_wb into ad_member_idmap_nss In reality environments without 'nss_winbind' make use of 'idmap_nss'. For testing, DOMAIN/bob is mapped to the local 'bob', while DOMAIN/jane gets the uid based on the local 'jane' vis idmap_nss. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14901 Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Signed-off-by: Stefan Metzmacher <metze@samba.org> [metze@samba.org avoid to create a new ad_member_idmap_nss environment and merge it with ad_member_no_nss_wb instead] Reviewed-by: Ralph Boehme <slow@samba.org>
2021-11-12 04:20:45 +03:00
bob:x:$uid_localbob:$gid_domusers:localbob gecos:/:/bin/false
jane:x:$uid_localjane:$gid_domusers:localjane gecos:/:/bin/false
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
jackthemapper:x:$uid_localjackthemapper:$gid_domusers:localjackthemaper gecos:/:/bin/false
jacknomapper:x:$uid_localjacknomapper:$gid_domusers:localjacknomaper gecos:/:/bin/false
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
";
s3-selftest: make sure we do not have duplicate uids/gids in nsswrapper. Also make sure we only add root user when needed, Jeremy please check. Guenther
2010-03-18 14:12:58 +03:00
if ($unix_uid != 0) {
selftest: Add a newline to root entries in the nss files. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-07-01 15:02:46 +04:00
print PASSWD "root:x:$uid_root:$gid_root:root gecos:$prefix_abs:/bin/false
";
s3-selftest: make sure we do not have duplicate uids/gids in nsswrapper. Also make sure we only add root user when needed, Jeremy please check. Guenther
2010-03-18 14:12:58 +03:00
}
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
close(PASSWD);
selftest Use die() less often, as it fails to allow cleanup
2011-05-08 08:54:50 +04:00
unless (open(GROUP, ">$nss_wrapper_group")) {
warn("Unable to open $nss_wrapper_group");
return undef;
}
s3-selftest: make sure we do not have duplicate uids/gids in nsswrapper. Also make sure we only add root user when needed, Jeremy please check. Guenther
2010-03-18 14:12:58 +03:00
print GROUP "nobody:x:$gid_nobody:
nogroup:x:$gid_nogroup:nobody
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$unix_name-group:x:$unix_gids[0]:
Ensure we always have a mapped group for "Domain Users". Needed for DC tests to pass with bugfix for bug #7777. Jeremy.
2010-11-09 00:39:51 +03:00
domusers:X:$gid_domusers:
selftest:Samba3: provision the domain adminstrators group in the s3 environments I discovered that this sid / mapping is missing by working with the Sids2Uids code and test. I do even wonder why this test could succeed prior to my pending changes to the winbindd sids-to-xids code, for example against the s3:local environment, since the test tries to map the sid <domsid>-512. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-20 19:48:23 +04:00
domadmins:X:$gid_domadmins:
tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11320 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jul 30 00:36:14 CEST 2015 on sn-devel-104
2015-07-28 21:28:20 +03:00
userdup:x:$gid_userdup:$unix_name
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
everyone:x:$gid_everyone:
samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option. Test covers commit cf0934caf282f4ade8c8a701b0e40b68a2f17ace BUG: https://bugzilla.samba.org/show_bug.cgi?id=9878 RH BUG: https://bugzilla.redhat.com/show_bug.cgi?id=1077651 How to test: $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULD: Should PASS $ git revert cf0934caf282f4ade8c8a701b0e40b68a2f17ace $ make -j test TESTS="samba3.blackbox.smbclient.forceuser_validusers" RESULT: Should FAIL Signed-off-by: Robin Hack <rhack@redhat.com> Reviewed-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Uri Simchoni <uri@samba.org> Autobuild-Date(master): Thu Feb 4 03:44:42 CET 2016 on sn-devel-144
2015-12-04 16:50:56 +03:00
force_user:x:$gid_force_user:
selftest: Create groups "jackthemappergroup" and "jacknomappergroup" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Noel Power <npower@samba.org>
2022-04-05 09:30:23 +03:00
jackthemappergroup:x:$gid_jackthemapper:jackthemapper
jacknomappergroup:x:$gid_jacknomapper:jacknomapper
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
";
s3-selftest: make sure we do not have duplicate uids/gids in nsswrapper. Also make sure we only add root user when needed, Jeremy please check. Guenther
2010-03-18 14:12:58 +03:00
if ($unix_gids[0] != 0) {
selftest: Add a newline to root entries in the nss files. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-07-01 15:02:46 +04:00
print GROUP "root:x:$gid_root:
";
s3-selftest: make sure we do not have duplicate uids/gids in nsswrapper. Also make sure we only add root user when needed, Jeremy please check. Guenther
2010-03-18 14:12:58 +03:00
}
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
close(GROUP);
selftest: Write the nss_wrapper hosts file. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-27 18:12:47 +04:00
## hosts
my $hostname = lc($server);
unless (open(HOSTS, ">>$nss_wrapper_hosts")) {
warn("Unable to open $nss_wrapper_hosts");
return undef;
}
selftest: use correct DNS domain name for wrapper hosts file For some reason the join fails to register the DNS records when provisioning the member env: Using short domain name -- SAMBA2008R2 Joined 'IDMAPADMEMBER' to dns domain 'samba2008r2.example.com' DNS Update for idmapadmember.samba.example.com failed: ERROR_DNS_UPDATE_FAILED At the same time the hosts file used by the wrappers contains the wrong fqdn. As a result the test that the next commit is going do add fails due do the broken DNS resolution: ... UNEXPECTED(failure): samba3.blackbox.winbind_ignore_domain.test_winbind_ignore_domains_ok_krb5(ad_member_idmap_ad:local) REASON: Exception: Exception: do_connect: Connection to idmapadmember.samba2008r2.example.com failed (Error NT_STATUS_UNSUCCESSFUL) ... Checking DNS in the testenv, first the working record for the main DC: testenv$ dig @10.53.57.64 dc7.samba2008r2.example.com +short 10.53.57.27 testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com dc7 A -U Administrator%locDCpass7 Name=, Records=1, Children=0 A: 10.53.57.27 (flags=f0, serial=1, ttl=900) Now the failing idmapadmember: testenv$ dig @10.53.57.64 idmapadmember.samba2008r2.example.com +short testenv$ bin/samba-tool dns query dc7 samba2008r2.example.com idmapadmember A -U Administrator%locDCpass7 ERROR: Record or zone does not exist. Fixing the hosts file lets the tests work, fixing the broken DNS record registration is a task for another day. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14602 Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2021-01-14 10:14:46 +03:00
print HOSTS "${server_ip} ${hostname}.${dns_domain} ${hostname}\n";
print HOSTS "${server_ipv6} ${hostname}.${dns_domain} ${hostname}\n";
selftest: Write the nss_wrapper hosts file. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-27 18:12:47 +04:00
close(HOSTS);
selftest: correctly use RESOLV_CONF from the DC environment or "no_resolv.conf" It's important to have the correct $resolv_conf variable within provision(), because it also sets "RESOLV_WRAPPER_CONF" if needed, instead of just setting "RESOLV_CONF". There's also no point in creating an resolv.conf with the ip addresses for other roles than "active directory domain controller". Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2020-02-27 14:33:48 +03:00
$resolv_conf = "$privatedir/no_resolv.conf" unless defined($resolv_conf);
selftest: Write the nss_wrapper hosts file. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-27 18:12:47 +04:00
s3-selftest: setup initial eventlog infrastructure. Guenther
2010-03-18 00:55:00 +03:00
foreach my $evlog (@eventlog_list) {
my $evlogtdb = "$eventlogdir/$evlog.tdb";
open(EVENTLOG, ">$evlogtdb") or die("Unable to open $evlogtdb");
close(EVENTLOG);
}
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
$createuser_env{NSS_WRAPPER_PASSWD} = $nss_wrapper_passwd;
$createuser_env{NSS_WRAPPER_GROUP} = $nss_wrapper_group;
$createuser_env{NSS_WRAPPER_HOSTS} = $nss_wrapper_hosts;
selftest:Samba3: use the correct NSS_WRAPPER_HOSTNAME The value of NSS_WRAPPER_HOSTNAME needs to match value we put into the NSS_WRAPPER_HOSTS file. We had a mismatch of idmapridmember.samba.example.com vs. idmapridmember.addom.samba.example.com This causes getaddrinfo() in nss_wrapper to fallback to the libc version, which talks to a dns server. It's not clear if recent glibc code will reach resolve/socket wrapper. So it's not unlikely that idmapridmember.samba.example.com will be passed via the internet, which causes delays up to 20 seconds. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15355 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Wed Apr 12 20:29:05 UTC 2023 on atb-devel-224
2023-04-12 18:22:02 +03:00
$createuser_env{NSS_WRAPPER_HOSTNAME} = "${hostname}.${dns_domain}";
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
if ($ENV{SAMBA_DNS_FAKING}) {
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
$createuser_env{RESOLV_WRAPPER_HOSTS} = $dns_host_file;
selftest: Fix resolv_wrapper config variables It can't really matter in this case, but it removes confusion Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed May 30 21:46:53 CEST 2018 on sn-devel-144
2018-05-30 18:03:55 +03:00
} else {
$createuser_env{RESOLV_WRAPPER_CONF} = $resolv_conf;
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
}
selftest: always explicitly use RESOLV_CONF By default point RESOLV_CONF to a non-existing file and use the per environment RESOLV_CONF explicitly where needed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 20:17:36 +03:00
$createuser_env{RESOLV_CONF} = $resolv_conf;
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
createuser($self, $unix_name, $password, $conffile, \%createuser_env) || die("Unable to create user");
createuser($self, "force_user", $password, $conffile, \%createuser_env) || die("Unable to create force_user");
createuser($self, "smbget_user", $password, $conffile, \%createuser_env) || die("Unable to create smbget_user");
createuser($self, "user1", $password, $conffile, \%createuser_env) || die("Unable to create user1");
createuser($self, "user2", $password, $conffile, \%createuser_env) || die("Unable to create user2");
selftest: Add gooduser and eviluser to Samba3 BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2018-11-15 18:06:49 +03:00
createuser($self, "gooduser", $password, $conffile, \%createuser_env) || die("Unable to create gooduser");
createuser($self, "eviluser", $password, $conffile, \%createuser_env) || die("Unable to create eviluser");
s3:tests: Add test for checking that root is not allowed as home dir BUG: https://bugzilla.samba.org/show_bug.cgi?id=13699 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Dec 5 05:22:43 CET 2018 on sn-devel-144
2018-12-03 13:05:46 +03:00
createuser($self, "slashuser", $password, $conffile, \%createuser_env) || die("Unable to create slashuser");
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
createuser($self, "jackthemapper", "mApsEcrEt", $conffile, \%createuser_env) || die("Unable to create jackthemapper");
createuser($self, "jacknomapper", "nOmApsEcrEt", $conffile, \%createuser_env) || die("Unable to create jacknomapper");
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
samba_dnsupdate: Safely update/create names for Samba3 targets as well This avoids unlocked writes to the dns_hosts_file, and may fix some of our issues on the build farm where large numbers of tests fail due to failed name resolution. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Sep 26 05:48:25 CEST 2012 on sn-devel-104
2012-09-26 04:02:43 +04:00
open(DNS_UPDATE_LIST, ">$prefix/dns_update_list") or die("Unable to open $$prefix/dns_update_list");
selftest/Samba3: also bind to ipv6 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-06-19 19:21:16 +04:00
print DNS_UPDATE_LIST "A $server. $server_ip\n";
print DNS_UPDATE_LIST "AAAA $server. $server_ipv6\n";
samba_dnsupdate: Safely update/create names for Samba3 targets as well This avoids unlocked writes to the dns_hosts_file, and may fix some of our issues on the build farm where large numbers of tests fail due to failed name resolution. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Sep 26 05:48:25 CEST 2012 on sn-devel-104
2012-09-26 04:02:43 +04:00
close(DNS_UPDATE_LIST);
selftest: add tests for dfree with inherit owner enabled BUG: https://bugzilla.samba.org/show_bug.cgi?id=12145 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2016-08-11 23:54:22 +03:00
print "DONE\n";
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{SERVER_IP} = $server_ip;
selftest/Samba3: also bind to ipv6 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-06-19 19:21:16 +04:00
$ret{SERVER_IPV6} = $server_ipv6;
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
$ret{SAMBA_DCERPCD_TEST_LOG} = "$prefix/samba_dcerpcd_test.log";
$ret{SAMBA_DCERPCD_LOG_POS} = 0;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{NMBD_TEST_LOG} = "$prefix/nmbd_test.log";
selftest: fix Samba3 bugs metze
2009-01-29 00:15:44 +03:00
$ret{NMBD_TEST_LOG_POS} = 0;
r25438: start samba3's winbindd in the selftest "dc" env metze (This used to be commit 161c55be37bf15b873eae103463ac732e318a74a)
2007-09-30 13:08:10 +04:00
$ret{WINBINDD_TEST_LOG} = "$prefix/winbindd_test.log";
selftest: fix Samba3 bugs metze
2009-01-29 00:15:44 +03:00
$ret{WINBINDD_TEST_LOG_POS} = 0;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{SMBD_TEST_LOG} = "$prefix/smbd_test.log";
selftest: fix Samba3 bugs metze
2009-01-29 00:15:44 +03:00
$ret{SMBD_TEST_LOG_POS} = 0;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{SERVERCONFFILE} = $conffile;
selftest: Add TESTENV_DIR "env" variable We store the testenv directory path for the 'ctx' hashmap, but not for the testenv-vars hashmap (and that can be really annoying sometimes). Add it into the second hashmap that selftest actually keeps track of. Currently it's only stored in the hashmap, not actually exported as an environment variable (but we could easily do that if a test-case need this info). Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-03-14 07:38:22 +03:00
$ret{TESTENV_DIR} = $prefix_abs;
tests: Use --configfile instead of -s We should use long options in tests to make clear what we are trying to do. Also the -s short option will be removed for --configfile later. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-04-14 12:44:51 +03:00
$ret{CONFIGURATION} ="--configfile=$conffile";
selftest: Make lockdir available in test environment Signed-off-by: Christof Schmitt <cs@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2017-02-17 02:23:43 +03:00
$ret{LOCK_DIR} = $lockdir;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{SERVER} = $server;
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$ret{USERNAME} = $unix_name;
s3-selftest: Fix blackbox smbclient s3 tests during make selftest. Guenther
2010-06-02 17:35:33 +04:00
$ret{USERID} = $unix_uid;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{DOMAIN} = $domain;
selftest: generate a ramdon domain sid during provision and export as SAMSID/[TRUST_]DOMSID This will be useful for future tests. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13300 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-02-26 16:56:27 +03:00
$ret{SAMSID} = $samsid;
selftest/Samba3: get NETBIOSNAME correct for clusteredmember It was missed in commit 7598b9069d3b983f8eb3b89b8459ec993ee43c80 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2024-01-12 19:03:38 +03:00
$ret{NETBIOSNAME} = $netbios_name;
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
$ret{PASSWORD} = $password;
$ret{PIDDIR} = $piddir;
selftest: Rename WINBINDD_SOCKET_DIR environment variable. It is very confusing if the env var uses the same name as the define in the source code. So prefix it with SELFTEST. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2014-02-20 13:34:49 +04:00
$ret{SELFTEST_WINBINDD_SOCKET_DIR} = $wbsockdir;
Explicitly set "nmbd: socket dir" in the test environment. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Jan 8 07:17:22 CET 2011 on sn-devel-104
2011-01-08 08:28:45 +03:00
$ret{NMBD_SOCKET_DIR} = $nmbdsockdir;
selftest: fix Samba3 bugs metze
2009-01-29 00:15:44 +03:00
$ret{SOCKET_WRAPPER_DEFAULT_IFACE} = $swiface;
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
$ret{NSS_WRAPPER_PASSWD} = $nss_wrapper_passwd;
$ret{NSS_WRAPPER_GROUP} = $nss_wrapper_group;
selftest: Write the nss_wrapper hosts file. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-27 18:12:47 +04:00
$ret{NSS_WRAPPER_HOSTS} = $nss_wrapper_hosts;
selftest:Samba3: use the correct NSS_WRAPPER_HOSTNAME The value of NSS_WRAPPER_HOSTNAME needs to match value we put into the NSS_WRAPPER_HOSTS file. We had a mismatch of idmapridmember.samba.example.com vs. idmapridmember.addom.samba.example.com This causes getaddrinfo() in nss_wrapper to fallback to the libc version, which talks to a dns server. It's not clear if recent glibc code will reach resolve/socket wrapper. So it's not unlikely that idmapridmember.samba.example.com will be passed via the internet, which causes delays up to 20 seconds. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15355 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Wed Apr 12 20:29:05 UTC 2023 on atb-devel-224
2023-04-12 18:22:02 +03:00
$ret{NSS_WRAPPER_HOSTNAME} = "${hostname}.${dns_domain}";
selftest: Set NSS_WRAPPER_MODULE variables for NSS module. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-12 17:42:01 +04:00
$ret{NSS_WRAPPER_MODULE_SO_PATH} = Samba::nss_wrapper_winbind_so_path($self);
$ret{NSS_WRAPPER_MODULE_FN_PREFIX} = "winbind";
selftest: Use resolv_wrapper in the samba3 targets to join AD. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2014-09-04 16:33:05 +04:00
if ($ENV{SAMBA_DNS_FAKING}) {
$ret{RESOLV_WRAPPER_HOSTS} = $dns_host_file;
} else {
$ret{RESOLV_WRAPPER_CONF} = $resolv_conf;
}
selftest: always explicitly use RESOLV_CONF By default point RESOLV_CONF to a non-existing file and use the per environment RESOLV_CONF explicitly where needed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-30 20:17:36 +03:00
$ret{RESOLV_CONF} = $resolv_conf;
s3-selftest: Fix blackbox smbclient s3 tests during make selftest. Guenther
2010-06-02 17:35:33 +04:00
$ret{LOCAL_PATH} = "$shrdir";
selftest: pass -l logdir to daemon processes. The daemons try to set up the corefile path within logdir before the config file was read. Signed-off-by: Gregor Beck <gbeck@sernet.de> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2013-04-22 14:35:01 +04:00
$ret{LOGDIR} = $logdir;
s3:selftest: fix 'make selftest' metze
2009-01-28 19:28:51 +03:00
selftest: Avoid system krb5.conf in some test envs that don't use kerberos Some test envs don't use kerberos (e.g. nt4_dc). However, the client tools are built with Kerberos support and may get upset if hitting a krb5.conf file they don't understand. Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2015-10-25 16:02:17 +03:00
#
# Avoid hitting system krb5.conf -
# An env that needs Kerberos will reset this to the real
# value.
#
$ret{KRB5_CONFIG} = abs_path($prefix) . "/no_krb5.conf";
selftest: Do not use a central credential cache We should use seperate caches and set the default_ccache_name accordingly. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2016-09-22 19:46:28 +03:00
# Define KRB5CCNAME for each environment we set up
$ret{KRB5_CCACHE} = abs_path($prefix) . "/krb5ccache";
$ENV{KRB5CCNAME} = $ret{KRB5_CCACHE};
r22326: Merge some more test improvements. (This used to be commit 3f85eab5908b8aa6761f23702f987d89f2977179)
2007-04-18 04:12:39 +04:00
return \%ret;
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
}
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
sub wait_for_start($$$$$)
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
{
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
my ($self, $envvars, $nmbd, $winbindd, $smbd, $samba_dcerpcd) = @_;
selftest: fix creation of builtin users in wait_for_start If "BUILTIN\Users" already exists, attempting to create it would fail, so we should check for the existence prior to the creation. It is unclear *why* the mapping sometimes already exist and sometime not. There are two places where they would have been created: 1. libnet_join_add_dom_rids_to_builtins tries to add the mapping when joining a domain, but at that point winbindd isn't running 2. when a user is authenticated in smbd, which clearly can't have happended when in the function wait_for_start Go figure... Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 20:38:08 +03:00
my $cmd;
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
my $netcmd;
selftest:Samba3: add "wbinfo -p" test to wait_for_start() Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:18:44 +04:00
my $ret;
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
if ($samba_dcerpcd eq "yes") {
my $count = 0;
my $rpcclient = Samba::bindir_path($self, "rpcclient");
print "checking for samba_dcerpcd\n";
do {
selftest/Samba3: start samba_dcerpcd in clusteredmember This enables the rpcd_witness to be available. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2024-01-12 19:08:06 +03:00
$ret = system("UID_WRAPPER_ROOT=1 $rpcclient $envvars->{CONFIGURATION} ncalrpc: -c epmmap");
s3:rpc_server: Activate samba-dcerpcd This is the big switch to use samba-dcerpcd for the RPC services in source3/. It is a pretty big and unordered patch, but I don't see a good way to split this up into more manageable pieces without sacrificing bisectability even more. Probably I could cut out a few small ones, but a major architechtural switch like this will always be messy. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Samuel Cabrero <scabrero@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2021-06-18 20:11:19 +03:00
if ($ret != 0) {
sleep(1);
}
$count++
} while ($ret != 0 && $count < 10);
if ($count == 10) {
print "samba_dcerpcd not reachable after 10 retries\n";
teardown_env($self, $envvars);
return 0;
}
}
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
if ($nmbd eq "yes") {
selftest: Improve check to detect if nmbd is working. With this change you mostly have to wait only for one second till the tests get executed instead of ten seconds. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Mon Aug 4 17:58:58 CEST 2014 on sn-devel-104
2014-07-25 18:45:29 +04:00
my $count = 0;
# give time for nbt server to register its names
print "checking for nmbd\n";
# This will return quickly when things are up, but be slow if we need to wait for (eg) SSL init
my $nmblookup = Samba::bindir_path($self, "nmblookup");
do {
$ret = system("$nmblookup $envvars->{CONFIGURATION} $envvars->{SERVER}");
if ($ret != 0) {
sleep(1);
} else {
system("$nmblookup $envvars->{CONFIGURATION} -U $envvars->{SERVER_IP} __SAMBA__");
system("$nmblookup $envvars->{CONFIGURATION} __SAMBA__");
selftest: use 10.53.57.0/8 instead of 127.0.0.1/8 This makes our testing much more realistic and allows the removal of some knowfail entries. It also means the testing with network namespaces on Linux can use the same addresses as our socket wrapper testing. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-01-24 00:29:19 +03:00
system("$nmblookup $envvars->{CONFIGURATION} -U 10.255.255.255 __SAMBA__");
selftest: Improve check to detect if nmbd is working. With this change you mostly have to wait only for one second till the tests get executed instead of ten seconds. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Mon Aug 4 17:58:58 CEST 2014 on sn-devel-104
2014-07-25 18:45:29 +04:00
system("$nmblookup $envvars->{CONFIGURATION} -U $envvars->{SERVER_IP} $envvars->{SERVER}");
}
$count++;
} while ($ret != 0 && $count < 10);
if ($count == 10) {
print "NMBD not reachable after 10 retries\n";
teardown_env($self, $envvars);
return 0;
}
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
}
s3-selftest actually wait for smbclient to connect This means that we actually have a working smbd. The previous code didn't know if it worked or not, and so created flaky tests. Andrew Bartlett
2011-04-07 07:07:23 +04:00
selftest/Samba3: replace (winbindd => "yes", skip_wait => 1) with (winbindd => "offline") This is much more flexible and concentrates the logic in a single place. We'll use winbindd => "offline" in other places soon. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14870 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 17:42:00 +03:00
if ($winbindd eq "yes" or $winbindd eq "offline") {
selftest:Samba3: add "wbinfo -p" test to wait_for_start() Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:18:44 +04:00
print "checking for winbindd\n";
my $count = 0;
selftest: fix creation of builtin users in wait_for_start If "BUILTIN\Users" already exists, attempting to create it would fail, so we should check for the existence prior to the creation. It is unclear *why* the mapping sometimes already exist and sometime not. There are two places where they would have been created: 1. libnet_join_add_dom_rids_to_builtins tries to add the mapping when joining a domain, but at that point winbindd isn't running 2. when a user is authenticated in smbd, which clearly can't have happended when in the function wait_for_start Go figure... Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 20:38:08 +03:00
$cmd = "SELFTEST_WINBINDD_SOCKET_DIR='$envvars->{SELFTEST_WINBINDD_SOCKET_DIR}' ";
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
$cmd .= "NSS_WRAPPER_PASSWD='$envvars->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$envvars->{NSS_WRAPPER_GROUP}' ";
selftest/Samba3: replace (winbindd => "yes", skip_wait => 1) with (winbindd => "offline") This is much more flexible and concentrates the logic in a single place. We'll use winbindd => "offline" in other places soon. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14870 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2021-10-05 17:42:00 +03:00
if ($winbindd eq "yes") {
$cmd .= Samba::bindir_path($self, "wbinfo") . " --ping-dc";
} elsif ($winbindd eq "offline") {
$cmd .= Samba::bindir_path($self, "wbinfo") . " --ping";
}
selftest: replace global with explicit environment variables This patch removes setting of NSS_WRAPPER and RESOLV_WRAPPER variables globally in Samba3.pm (because setting them persistently/globally can create hidden ordering dependencies). Instead, they are set on subprocesses as required, which appears to be the following two places (aside from those places where they are already set explicitly): * calls to createuser in provision * calls to wbinfo --ping-dc in wait_for_start Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Dec 20 08:50:26 CET 2017 on sn-devel-144
2017-12-08 05:20:36 +03:00
selftest:Samba3: add "wbinfo -p" test to wait_for_start() Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:18:44 +04:00
do {
selftest: Fix an uninitialised variable warning. If $nmbd is not "yes" then this can result in a warning. Introduced in commit 676261fa08273114b888bb46f65de3de091b615b. Signed-off-by: Martin Schwenke <martin@meltin.net> Reviewed-by: Volker Lendecke <vl@samba.org>
2020-02-06 09:57:32 +03:00
$ret = system($cmd);
selftest:Samba3: add "wbinfo -p" test to wait_for_start() Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:18:44 +04:00
if ($ret != 0) {
selftest: check for winbind on 1-second basis There is a chance to reduce the overall time spent checking. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-06-16 02:00:13 +03:00
sleep(1);
selftest:Samba3: add "wbinfo -p" test to wait_for_start() Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:18:44 +04:00
}
$count++;
selftest: check for winbind on 1-second basis There is a chance to reduce the overall time spent checking. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-06-16 02:00:13 +03:00
} while ($ret != 0 && $count < 20);
if ($count == 20) {
selftest:Samba3: add "wbinfo -p" test to wait_for_start() Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:18:44 +04:00
print "WINBINDD not reachable after 20 seconds\n";
teardown_env($self, $envvars);
return 0;
}
}
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
if ($smbd eq "yes") {
# make sure smbd is also up set
print "wait for smbd\n";
r22337: print out the smbd log output after each test metze (This used to be commit b6b95180d3fb851264fd64eb5a0de4803ee0892a)
2007-04-18 18:02:26 +04:00
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
my $count = 0;
do {
selftest: Add force_fips_mode support to provision_ad_member() Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
2020-05-15 12:30:02 +03:00
if (defined($envvars->{GNUTLS_FORCE_FIPS_MODE})) {
# We don't have NTLM in FIPS mode, so lets use
# smbcontrol instead of smbclient.
$cmd = Samba::bindir_path($self, "smbcontrol");
$cmd .= " $envvars->{CONFIGURATION}";
$cmd .= " smbd ping";
} else {
# This uses NTLM which is not available in FIPS
$cmd = Samba::bindir_path($self, "smbclient");
$cmd .= " $envvars->{CONFIGURATION}";
$cmd .= " -L $envvars->{SERVER}";
$cmd .= " -U%";
$cmd .= " -I $envvars->{SERVER_IP}";
$cmd .= " -p 139";
}
selftest: Split up a long line We'll add another argument soon Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2018-08-22 18:24:38 +03:00
$ret = system($cmd);
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
if ($ret != 0) {
selftest: check for smbd on a 1-second basis. Chance to reduce the overall time spent in checking for smbd Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-07-12 14:16:27 +03:00
sleep(1);
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
}
$count++
selftest: check for smbd on a 1-second basis. Chance to reduce the overall time spent in checking for smbd Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
2016-07-12 14:16:27 +03:00
} while ($ret != 0 && $count < 20);
if ($count == 20) {
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
print "SMBD failed to start up in a reasonable time (20sec)\n";
teardown_env($self, $envvars);
return 0;
s3-selftest actually wait for smbclient to connect This means that we actually have a working smbd. The previous code didn't know if it worked or not, and so created flaky tests. Andrew Bartlett
2011-04-07 07:07:23 +04:00
}
}
selftest:Samba3: add nmbd, winbindd smbd arguments to wait_for_start() to make checks conditional Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 03:09:43 +04:00
Ensure we always have a mapped group for "Domain Users". Needed for DC tests to pass with bugfix for bug #7777. Jeremy.
2010-11-09 00:39:51 +03:00
# Ensure we have domain users mapped.
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
$netcmd = "NSS_WRAPPER_PASSWD='$envvars->{NSS_WRAPPER_PASSWD}' ";
$netcmd .= "NSS_WRAPPER_GROUP='$envvars->{NSS_WRAPPER_GROUP}' ";
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
$netcmd .= "UID_WRAPPER_ROOT='1' ";
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
$netcmd .= Samba::bindir_path($self, "net") ." $envvars->{CONFIGURATION} ";
selftest: Make sure we have correct group mappings BUG: https://bugzilla.samba.org/show_bug.cgi?id=13369 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2018-05-07 17:20:30 +03:00
$cmd = $netcmd . "groupmap delete ntgroup=domusers";
$ret = system($cmd);
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
$cmd = $netcmd . "groupmap add rid=513 unixgroup=domusers type=domain";
$ret = system($cmd);
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
if ($ret != 0) {
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
print("\"$cmd\" failed\n");
return 1;
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
}
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
selftest: Make sure we have correct group mappings BUG: https://bugzilla.samba.org/show_bug.cgi?id=13369 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2018-05-07 17:20:30 +03:00
$cmd = $netcmd . "groupmap delete ntgroup=domadmins";
$ret = system($cmd);
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
$cmd = $netcmd . "groupmap add rid=512 unixgroup=domadmins type=domain";
$ret = system($cmd);
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
if ($ret != 0) {
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
print("\"$cmd\" failed\n");
return 1;
selftest: add test for force user and well-known primary group Add a test for connecting to a share with a "force user" whos primary unix gid maps to a well-known alias. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11608 Signed-off-by: Uri Simchoni <uri@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Nov 19 23:20:36 CET 2015 on sn-devel-104
2015-11-18 00:14:36 +03:00
}
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
selftest: Make sure we have correct group mappings BUG: https://bugzilla.samba.org/show_bug.cgi?id=13369 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2018-05-07 17:20:30 +03:00
$cmd = $netcmd . "groupmap delete ntgroup=everyone";
$ret = system($cmd);
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
$cmd = $netcmd . "groupmap add sid=S-1-1-0 unixgroup=everyone type=builtin";
$ret = system($cmd);
selftest:Samba3: provision the domain adminstrators group in the s3 environments I discovered that this sid / mapping is missing by working with the Sids2Uids code and test. I do even wonder why this test could succeed prior to my pending changes to the winbindd sids-to-xids code, for example against the s3:local environment, since the test tries to map the sid <domsid>-512. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-20 19:48:23 +04:00
if ($ret != 0) {
selftest: set wrapper env variables when running net groupmap Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 16:28:40 +03:00
print("\"$cmd\" failed\n");
return 1;
selftest:Samba3: provision the domain adminstrators group in the s3 environments I discovered that this sid / mapping is missing by working with the Sids2Uids code and test. I do even wonder why this test could succeed prior to my pending changes to the winbindd sids-to-xids code, for example against the s3:local environment, since the test tries to map the sid <domsid>-512. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-20 19:48:23 +04:00
}
Ensure we always have a mapped group for "Domain Users". Needed for DC tests to pass with bugfix for bug #7777. Jeremy.
2010-11-09 00:39:51 +03:00
selftest: fix creation of builtin users in wait_for_start If "BUILTIN\Users" already exists, attempting to create it would fail, so we should check for the existence prior to the creation. It is unclear *why* the mapping sometimes already exist and sometime not. There are two places where they would have been created: 1. libnet_join_add_dom_rids_to_builtins tries to add the mapping when joining a domain, but at that point winbindd isn't running 2. when a user is authenticated in smbd, which clearly can't have happended when in the function wait_for_start Go figure... Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 20:38:08 +03:00
# note: creating builtin groups requires winbindd for the
# unix id allocator
my $create_builtin_users = "no";
selftest:Samba3: provision the BUILTIN\Users group if the environment runs winbindd Note that in order to create a local group (alias), the id-allocator of id-mapping is needed, so this can only work if winbindd is running. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 04:35:30 +04:00
if ($winbindd eq "yes") {
selftest: fix creation of builtin users in wait_for_start If "BUILTIN\Users" already exists, attempting to create it would fail, so we should check for the existence prior to the creation. It is unclear *why* the mapping sometimes already exist and sometime not. There are two places where they would have been created: 1. libnet_join_add_dom_rids_to_builtins tries to add the mapping when joining a domain, but at that point winbindd isn't running 2. when a user is authenticated in smbd, which clearly can't have happended when in the function wait_for_start Go figure... Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 20:38:08 +03:00
$cmd = "SELFTEST_WINBINDD_SOCKET_DIR='$envvars->{SELFTEST_WINBINDD_SOCKET_DIR}' ";
$cmd .= "NSS_WRAPPER_PASSWD='$envvars->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$envvars->{NSS_WRAPPER_GROUP}' ";
$cmd .= Samba::bindir_path($self, "wbinfo") . " --sid-to-gid=S-1-5-32-545";
my $wbinfo_out = qx($cmd 2>&1);
if ($? != 0) {
# wbinfo doesn't give us a better error code then
# WBC_ERR_DOMAIN_NOT_FOUND, but at least that's
# different then WBC_ERR_WINBIND_NOT_AVAILABLE
if ($wbinfo_out !~ /WBC_ERR_DOMAIN_NOT_FOUND/) {
print("Failed to run \"wbinfo --sid-to-gid=S-1-5-32-545\": $wbinfo_out");
teardown_env($self, $envvars);
return 0;
}
$create_builtin_users = "yes";
}
}
if ($create_builtin_users eq "yes") {
selftest: split a large system invocation line Small cleanup for better code readability, no change in behaviour. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-09 12:40:41 +03:00
$cmd = "SELFTEST_WINBINDD_SOCKET_DIR='$envvars->{SELFTEST_WINBINDD_SOCKET_DIR}' ";
selftest: fix envvars for creation of default user in wait_for_start Resolves failure of ad_member to start up under ad_dc (if the user is determined to be needed). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andreas Schneider <asn@samba.org> BUG: https://bugzilla.samba.org/show_bug.cgi?id=13225 Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Tue Jan 16 07:12:01 CET 2018 on sn-devel-144
2018-01-15 05:25:10 +03:00
$cmd .= "NSS_WRAPPER_PASSWD='$envvars->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$envvars->{NSS_WRAPPER_GROUP}' ";
selftest: split a large system invocation line Small cleanup for better code readability, no change in behaviour. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-09 12:40:41 +03:00
$cmd .= Samba::bindir_path($self, "net") . " $envvars->{CONFIGURATION} ";
$cmd .= "sam createbuiltingroup Users";
$ret = system($cmd);
selftest:Samba3: provision the BUILTIN\Users group if the environment runs winbindd Note that in order to create a local group (alias), the id-allocator of id-mapping is needed, so this can only work if winbindd is running. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 04:35:30 +04:00
if ($ret != 0) {
print "Failed to create BUILTIN\\Users group\n";
selftest: remove second loop waiting for winbindd from wait_for_start() A few lines above we already checked that winbindd is running. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 20:45:01 +03:00
teardown_env($self, $envvars);
selftest:Samba3: provision the BUILTIN\Users group if the environment runs winbindd Note that in order to create a local group (alias), the id-allocator of id-mapping is needed, so this can only work if winbindd is running. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 04:35:30 +04:00
return 0;
}
selftest: split a large system invocation line Small cleanup for better code readability, no change in behaviour. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-09 12:45:59 +03:00
$cmd = Samba::bindir_path($self, "net") . " $envvars->{CONFIGURATION} ";
$cmd .= "cache del IDMAP/SID2XID/S-1-5-32-545";
system($cmd);
selftest: split a large system invocation line Small cleanup for better code readability, no change in behaviour. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Wed Jan 10 05:19:26 CET 2018 on sn-devel-144
2018-01-09 12:46:40 +03:00
$cmd = "SELFTEST_WINBINDD_SOCKET_DIR='$envvars->{SELFTEST_WINBINDD_SOCKET_DIR}' ";
selftest: fix envvars for creation of default user in wait_for_start Resolves failure of ad_member to start up under ad_dc (if the user is determined to be needed). Signed-off-by: Jamie McClymont <jamiemcclymont@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andreas Schneider <asn@samba.org> BUG: https://bugzilla.samba.org/show_bug.cgi?id=13225 Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Tue Jan 16 07:12:01 CET 2018 on sn-devel-144
2018-01-15 05:25:10 +03:00
$cmd .= "NSS_WRAPPER_PASSWD='$envvars->{NSS_WRAPPER_PASSWD}' ";
$cmd .= "NSS_WRAPPER_GROUP='$envvars->{NSS_WRAPPER_GROUP}' ";
selftest: split a large system invocation line Small cleanup for better code readability, no change in behaviour. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Wed Jan 10 05:19:26 CET 2018 on sn-devel-144
2018-01-09 12:46:40 +03:00
$cmd .= Samba::bindir_path($self, "wbinfo") . " --sid-to-gid=S-1-5-32-545";
$ret = system($cmd);
selftest: remove second loop waiting for winbindd from wait_for_start() A few lines above we already checked that winbindd is running. Signed-off-by: Ralph Boehme <slow@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2018-01-08 20:45:01 +03:00
if ($ret != 0) {
print "Missing \"BUILTIN\\Users\", did net sam createbuiltingroup Users fail?\n";
selftest:Samba3: provision the BUILTIN\Users group if the environment runs winbindd Note that in order to create a local group (alias), the id-allocator of id-mapping is needed, so this can only work if winbindd is running. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2012-11-23 04:35:30 +04:00
teardown_env($self, $envvars);
return 0;
}
}
r22337: print out the smbd log output after each test metze (This used to be commit b6b95180d3fb851264fd64eb5a0de4803ee0892a)
2007-04-18 18:02:26 +04:00
print $self->getlog_env($envvars);
s3/selftest Tear down the environment if we fail to connect This removes the exit(1) that previously didn't tear down the environment correctly, and instead just fails to set it up, allowing the rest of the script handle that with more grace. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Apr 12 01:53:37 CEST 2011 on sn-devel-104
2011-04-12 03:05:34 +04:00
return 1;
r21909: Merge some of my recent improvements to the test infrastructure: - Allow tests to specify what environment they need to run in (dc and none are thecurrent supported ones). - Move more Samba4-specific code out of the common code (This used to be commit dbe9de10287c902f4a5ea5d431dea4a79f9b170b)
2007-03-21 18:57:07 +03:00
}
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
##
## provision and start of ctdb
##
sub setup_ctdb($$)
{
my ($self, $prefix) = @_;
my $num_nodes = 3;
my $data = $self->provision_ctdb($prefix, $num_nodes);
$data or return undef;
my $rc = $self->check_or_start_ctdb($data);
if (not $rc) {
print("check_or_start_ctdb() failed\n");
return undef;
}
$rc = $self->wait_for_start_ctdb($data);
if (not $rc) {
print "Cluster startup failed\n";
return undef;
}
return $data;
}
sub provision_ctdb($$$$)
{
my ($self, $prefix, $num_nodes, $no_delete_prefix) = @_;
my $rc;
print "PROVISIONING CTDB...\n";
my $prefix_abs = abs_path($prefix);
#
# check / create directories:
#
die ("prefix_abs = ''") if $prefix_abs eq "";
die ("prefix_abs = '/'") if $prefix_abs eq "/";
mkdir ($prefix_abs, 0777);
print "CREATE CTDB TEST ENVIRONMENT in '$prefix_abs'...\n";
if (not defined($no_delete_prefix) or not $no_delete_prefix) {
system("rm -rf $prefix_abs/*");
}
#
# Per-node data
#
my @nodes = ();
for (my $i = 0; $i < $num_nodes; $i++) {
my %node = ();
my $server_name = "ctdb${i}";
my $pub_iface = Samba::get_interface($server_name);
selftest: use 10.53.57.0/8 instead of 127.0.0.1/8 This makes our testing much more realistic and allows the removal of some knowfail entries. It also means the testing with network namespaces on Linux can use the same addresses as our socket wrapper testing. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2019-01-24 00:29:19 +03:00
my $ip = Samba::get_ipv4_addr($server_name);
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
$node{NODE_NUMBER} = "$i";
$node{SERVER_NAME} = "$server_name";
$node{SOCKET_WRAPPER_DEFAULT_IFACE} = "$pub_iface";
$node{IP} = "$ip";
push(@nodes, \%node);
}
#
# nodes
#
my $nodes_file = "$prefix/nodes.in";
unless (open(NODES, ">$nodes_file")) {
warn("Unable to open nodesfile '$nodes_file'");
return undef;
}
for (my $i = 0; $i < $num_nodes; $i++) {
my $ip = $nodes[$i]->{IP};
print NODES "${ip}\n";
}
close(NODES);
#
# local_daemons.sh setup
#
# Socket wrapper setup is done by selftest.pl, so don't use
# the CTDB-specific setup
#
my $cmd;
$cmd .= "ctdb/tests/local_daemons.sh " . $prefix_abs . " setup";
$cmd .= " -n " . $num_nodes;
$cmd .= " -N " . $nodes_file;
# CTDB should not attempt to manage public addresses -
# clients should just connect to CTDB private addresses
$cmd .= " -P " . "/dev/null";
my $ret = system($cmd);
if ($ret != 0) {
print("\"$cmd\" failed\n");
return undef;
}
#
# Unix domain socket and node directory for each daemon
#
for (my $i = 0; $i < $num_nodes; $i++) {
my ($cmd, $ret, $out);
my $cmd_prefix = "ctdb/tests/local_daemons.sh ${prefix_abs}";
#
# socket
#
$cmd = "${cmd_prefix} print-socket ${i}";
$out = `$cmd`;
$ret = $?;
if ($ret != 0) {
print("\"$cmd\" failed\n");
return undef;
}
chomp $out;
$nodes[$i]->{SOCKET_FILE} = "$out";
#
# node directory
#
$cmd = "${cmd_prefix} onnode ${i} 'echo \$CTDB_BASE'";
$out = `$cmd`;
$ret = $?;
if ($ret != 0) {
print("\"$cmd\" failed\n");
return undef;
}
chomp $out;
$nodes[$i]->{NODE_PREFIX} = "$out";
}
my %ret = ();
$ret{CTDB_PREFIX} = "$prefix";
$ret{NUM_NODES} = $num_nodes;
$ret{CTDB_NODES} = \@nodes;
selftest:clusteredmember: Build a unclist for every share This is fairly cheap and it is simple to do. This allows the Python code to be able to specify a unclist quite simply. The level of coupling doesn't seem worse than anything else in the selftest/autobuild code. There may be cleverer ways of doing this (e.g. a wrapper in testprogs/blackbox/clusteredmember_smbtorture or similar) but cleverer code isn't necessarily better code... and they'll probably involve code duplication. Signed-off-by: Martin Schwenke <martin@meltin.net> Reviewed-by: Volker Lendecke <vl@samba.org>
2020-02-04 11:44:11 +03:00
$ret{CTDB_NODES_FILE} = $nodes_file;
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
selftest: export/use CTDB related envvars in order to run the ctdb command This makes it easier to test things... BUG: https://bugzilla.samba.org/show_bug.cgi?id=15523 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>
2023-11-17 13:45:30 +03:00
for (my $i = 0; $i < $num_nodes; $i++) {
my $node = $nodes[$i];
my $socket = $node->{SOCKET_FILE};
my $server_name = $node->{SERVER_NAME};
my $node_prefix = $node->{NODE_PREFIX};
my $ip = $node->{IP};
$ret{"CTDB_BASE_NODE${i}"} = $node_prefix;
$ret{"CTDB_SOCKET_NODE${i}"} = $socket;
$ret{"CTDB_SERVER_NAME_NODE${i}"} = $server_name;
$ret{"CTDB_IFACE_IP_NODE${i}"} = $ip;
}
$ret{CTDB_BASE} = $ret{CTDB_BASE_NODE0};
$ret{CTDB_SOCKET} = $ret{CTDB_SOCKET_NODE0};
$ret{CTDB_SERVER_NAME} = $ret{CTDB_SERVER_NAME_NODE0};
$ret{CTDB_IFACE_IP} = $ret{CTDB_IFACE_IP_NODE0};
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
return \%ret;
}
sub check_or_start_ctdb($$) {
my ($self, $data) = @_;
my $prefix = $data->{CTDB_PREFIX};
my $num_nodes = $data->{NUM_NODES};
my $nodes = $data->{CTDB_NODES};
my $STDIN_READER;
# Share a single stdin pipe for all nodes
pipe($STDIN_READER, $data->{CTDB_STDIN_PIPE});
for (my $i = 0; $i < $num_nodes; $i++) {
my $node = $nodes->[$i];
$node->{STDIN_PIPE} = $data->{CTDB_STDIN_PIPE};
my $cmd = "ctdb/tests/local_daemons.sh";
my @full_cmd = ("$cmd", "$prefix", "start", "$i");
my $daemon_ctx = {
NAME => "ctdbd",
BINARY_PATH => $cmd,
FULL_CMD => [ @full_cmd ],
TEE_STDOUT => 1,
LOG_FILE => "/dev/null",
selftest: Drop dummy environment variables for CTDB daemons This existed to avoid UID_WRAPPER_ROOT=1 causing ctdbd to fail to chown the socket. The chown is no longer done in test mode so remove this confusing hack. Signed-off-by: Martin Schwenke <martin@meltin.net> Reviewed-by: Amitay Isaacs <amitay@gmail.com> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Amitay Isaacs <amitay@samba.org> Autobuild-Date(master): Mon Nov 2 10:20:45 UTC 2020 on sn-devel-184
2020-10-29 01:05:37 +03:00
ENV_VARS => {},
selftest:Samba3: add a clusteredmember environment Allow running tests against a CTDB setup, thereby covering the dbrwap_ctdb->ctdb stack in real SMB tests. Sets up a 3 node cluster. Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Volker Lendecke <vl@samba.org> Signed-off-by: Martin Schwenke <martin@meltin.net>
2016-07-12 14:12:24 +03:00
};
print "STARTING CTDBD (node ${i})\n";
# This does magic with $STDIN_READER, so use it
my $ret = Samba::fork_and_exec($self,
$node,
$daemon_ctx,
$STDIN_READER);
if ($ret == 0) {
print("\"$cmd\" failed\n");
teardown_env_ctdb($self, $data);
return 0;
}
}
close($STDIN_READER);
return 1;
}
sub wait_for_start_ctdb($$)
{
my ($self, $data) = @_;
my $prefix = $data->{CTDB_PREFIX};
print "Wait for ctdbd...\n";
my $ctdb = Samba::bindir_path($self, "ctdb");
my $cmd;
$cmd .= "ctdb/tests/local_daemons.sh ${prefix} onnode all";
$cmd .= " ${ctdb} nodestatus all 2>&1";
my $count = 0;
my $wait_seconds = 60;
my $out;
until ($count > $wait_seconds) {
$out = `$cmd`;
my $ret = $?;
if ($ret == 0) {
print "\ncluster became healthy\n";
last;
}
print "Waiting for CTDB...\n";
sleep(1);
$count++;
}
if ($count > $wait_seconds) {
print "\nGiving up to wait for CTDB...\n";
print "${out}\n\n";
print "CTDB log:\n";
$cmd = "ctdb/tests/local_daemons.sh ${prefix} print-log all >&2";
system($cmd);
teardown_env_ctdb($self, $data);
return 0;
}
print "\nCTDB initialized\n";
return 1;
}
selftest: Create users "jackthemapper" and "jacknomapper" BUG: https://bugzilla.samba.org/show_bug.cgi?id=15041 Signed-off-by: Pavel Filipenský <pfilipen@redhat.com> Reviewed-by: Noel Power <npower@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2022-04-01 16:56:30 +03:00
1;
Copy Permalink