sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-28 07:21:54 +03:00
Code
93c2a95223
samba-mirror/python/samba/tests/dsdb_schema_attributes.py

253 lines
8.9 KiB
Python
Raw Normal View History

selftest: Add a test for @ATTRIBUTES and @INDEXLIST generation Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-06-07 02:47:15 +03:00
# -*- coding: utf-8 -*-
#
# Unix SMB/CIFS implementation.
# Copyright (C) Kamen Mazdrashki <kamenim@samba.org> 2010
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
#
# Usage:
# export SUBUNITRUN=$samba4srcdir/scripting/bin/subunitrun
# PYTHONPATH="$PYTHONPATH:$samba4srcdir/dsdb/tests/python" $SUBUNITRUN dsdb_schema_attributes
#
import time
import random
import samba.tests
import ldb
from ldb import SCOPE_BASE, LdbError
PEP8: fix E302: expected 2 blank lines, found 1 Signed-off-by: Joe Guo <joeg@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
2018-07-30 09:20:39 +03:00
selftest: Add a test for @ATTRIBUTES and @INDEXLIST generation Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-06-07 02:47:15 +03:00
class SchemaAttributesTestCase(samba.tests.TestCase):
def setUp(self):
super(SchemaAttributesTestCase, self).setUp()
self.lp = samba.tests.env_loadparm()
self.samdb = samba.tests.connect_samdb(self.lp.samdb_url())
# fetch rootDSE
res = self.samdb.search(base="", expression="", scope=SCOPE_BASE, attrs=["*"])
self.assertEquals(len(res), 1)
self.schema_dn = res[0]["schemaNamingContext"][0]
self.base_dn = res[0]["defaultNamingContext"][0]
self.forest_level = int(res[0]["forestFunctionality"][0])
def tearDown(self):
super(SchemaAttributesTestCase, self).tearDown()
def _ldap_schemaUpdateNow(self):
ldif = """
dn:
changetype: modify
add: schemaUpdateNow
schemaUpdateNow: 1
"""
self.samdb.modify_ldif(ldif)
def _make_obj_names(self, prefix):
obj_name = prefix + time.strftime("%s", time.gmtime())
obj_ldap_name = obj_name.replace("-", "")
obj_dn = "CN=%s,%s" % (obj_name, self.schema_dn)
return (obj_name, obj_ldap_name, obj_dn)
def _make_attr_ldif(self, attr_name, attr_dn, sub_oid, extra=None):
ldif = """
dn: """ + attr_dn + """
objectClass: top
objectClass: attributeSchema
adminDescription: """ + attr_name + """
adminDisplayName: """ + attr_name + """
cn: """ + attr_name + """
PEP8: fix E231: missing whitespace after ',' Signed-off-by: Joe Guo <joeg@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
2018-07-30 09:19:05 +03:00
attributeId: 1.3.6.1.4.1.7165.4.6.1.8.%d.""" % sub_oid + str(random.randint(1, 100000)) + """
selftest: Add a test for @ATTRIBUTES and @INDEXLIST generation Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-06-07 02:47:15 +03:00
attributeSyntax: 2.5.5.12
omSyntax: 64
instanceType: 4
isSingleValued: TRUE
systemOnly: FALSE
"""
if extra is not None:
ldif += extra + "\n"
return ldif
def test_AddIndexedAttribute(self):
# create names for an attribute to add
(attr_name, attr_ldap_name, attr_dn) = self._make_obj_names("schemaAttributes-Attr-")
ldif = self._make_attr_ldif(attr_name, attr_dn, 1,
"searchFlags: %d" % samba.dsdb.SEARCH_FLAG_ATTINDEX)
# add the new attribute
self.samdb.add_ldif(ldif)
self._ldap_schemaUpdateNow()
# Check @ATTRIBUTES
attr_res = self.samdb.search(base="@ATTRIBUTES", scope=ldb.SCOPE_BASE)
self.assertIn(attr_ldap_name, attr_res[0])
self.assertEquals(len(attr_res[0][attr_ldap_name]), 1)
python/samba/tests: port samba.tests.dsdb_schema_attributes to PY3 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett abartlet@samba.org
2018-09-03 19:34:27 +03:00
self.assertEquals(str(attr_res[0][attr_ldap_name][0]), "CASE_INSENSITIVE")
selftest: Add a test for @ATTRIBUTES and @INDEXLIST generation Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-06-07 02:47:15 +03:00
# Check @INDEXLIST
idx_res = self.samdb.search(base="@INDEXLIST", scope=ldb.SCOPE_BASE)
self.assertIn(attr_ldap_name, [str(x) for x in idx_res[0]["@IDXATTR"]])
def test_AddUnIndexedAttribute(self):
# create names for an attribute to add
(attr_name, attr_ldap_name, attr_dn) = self._make_obj_names("schemaAttributes-Attr-")
ldif = self._make_attr_ldif(attr_name, attr_dn, 2)
# add the new attribute
self.samdb.add_ldif(ldif)
self._ldap_schemaUpdateNow()
# Check @ATTRIBUTES
attr_res = self.samdb.search(base="@ATTRIBUTES", scope=ldb.SCOPE_BASE)
self.assertIn(attr_ldap_name, attr_res[0])
self.assertEquals(len(attr_res[0][attr_ldap_name]), 1)
python/samba/tests: port samba.tests.dsdb_schema_attributes to PY3 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett abartlet@samba.org
2018-09-03 19:34:27 +03:00
self.assertEquals(str(attr_res[0][attr_ldap_name][0]), "CASE_INSENSITIVE")
selftest: Add a test for @ATTRIBUTES and @INDEXLIST generation Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-06-07 02:47:15 +03:00
# Check @INDEXLIST
idx_res = self.samdb.search(base="@INDEXLIST", scope=ldb.SCOPE_BASE)
self.assertNotIn(attr_ldap_name, [str(x) for x in idx_res[0]["@IDXATTR"]])
selftest: confirm that two attributes are also correctly set in the @ records This shows that the current behaviour in dsdb_schema_set_indices_and_attributes(), while not ideal, is not actually buggy. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-06-16 05:13:42 +03:00
def test_AddTwoIndexedAttributes(self):
# create names for an attribute to add
(attr_name, attr_ldap_name, attr_dn) = self._make_obj_names("schemaAttributes-Attr-")
ldif = self._make_attr_ldif(attr_name, attr_dn, 3,
"searchFlags: %d" % samba.dsdb.SEARCH_FLAG_ATTINDEX)
# add the new attribute
self.samdb.add_ldif(ldif)
self._ldap_schemaUpdateNow()
# create names for an attribute to add
(attr_name2, attr_ldap_name2, attr_dn2) = self._make_obj_names("schemaAttributes-Attr-")
ldif = self._make_attr_ldif(attr_name2, attr_dn2, 4,
"searchFlags: %d" % samba.dsdb.SEARCH_FLAG_ATTINDEX)
# add the new attribute
self.samdb.add_ldif(ldif)
self._ldap_schemaUpdateNow()
# Check @ATTRIBUTES
attr_res = self.samdb.search(base="@ATTRIBUTES", scope=ldb.SCOPE_BASE)
self.assertIn(attr_ldap_name, attr_res[0])
self.assertEquals(len(attr_res[0][attr_ldap_name]), 1)
python/samba/tests: port samba.tests.dsdb_schema_attributes to PY3 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett abartlet@samba.org
2018-09-03 19:34:27 +03:00
self.assertEquals(str(attr_res[0][attr_ldap_name][0]), "CASE_INSENSITIVE")
selftest: confirm that two attributes are also correctly set in the @ records This shows that the current behaviour in dsdb_schema_set_indices_and_attributes(), while not ideal, is not actually buggy. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-06-16 05:13:42 +03:00
self.assertIn(attr_ldap_name2, attr_res[0])
self.assertEquals(len(attr_res[0][attr_ldap_name2]), 1)
python/samba/tests: port samba.tests.dsdb_schema_attributes to PY3 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett abartlet@samba.org
2018-09-03 19:34:27 +03:00
self.assertEquals(str(attr_res[0][attr_ldap_name2][0]), "CASE_INSENSITIVE")
selftest: confirm that two attributes are also correctly set in the @ records This shows that the current behaviour in dsdb_schema_set_indices_and_attributes(), while not ideal, is not actually buggy. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2017-06-16 05:13:42 +03:00
# Check @INDEXLIST
idx_res = self.samdb.search(base="@INDEXLIST", scope=ldb.SCOPE_BASE)
self.assertIn(attr_ldap_name, [str(x) for x in idx_res[0]["@IDXATTR"]])
self.assertIn(attr_ldap_name2, [str(x) for x in idx_res[0]["@IDXATTR"]])
selftest: Check re-opening sam.ldb corrects the @ATTRIBUTES and @INDEXLIST Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-09-13 07:13:06 +03:00
def test_modify_at_attributes(self):
m = {"dn": "@ATTRIBUTES",
"@TEST_EXTRA": ["HIDDEN"]
}
msg = ldb.Message.from_dict(self.samdb, m, ldb.FLAG_MOD_ADD)
self.samdb.modify(msg)
res = self.samdb.search(base="@ATTRIBUTES", scope=ldb.SCOPE_BASE,
attrs=["@TEST_EXTRA"])
self.assertEquals(len(res), 1)
self.assertEquals(str(res[0].dn), "@ATTRIBUTES")
self.assertEquals(len(res[0]), 1)
self.assertTrue("@TEST_EXTRA" in res[0])
self.assertEquals(len(res[0]["@TEST_EXTRA"]), 1)
python/samba/tests: port samba.tests.dsdb_schema_attributes to PY3 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett abartlet@samba.org
2018-09-03 19:34:27 +03:00
self.assertEquals(str(res[0]["@TEST_EXTRA"][0]), "HIDDEN")
selftest: Check re-opening sam.ldb corrects the @ATTRIBUTES and @INDEXLIST Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-09-13 07:13:06 +03:00
samdb2 = samba.tests.connect_samdb(self.lp.samdb_url())
selftest: Make a transaction before @INDEXLIST etc is checked in dsdb_schema_attributes.py This helps us remove the write to the database from the (soon to be read locked) init code. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13379 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
2018-04-11 03:51:49 +03:00
# We now only update the @ATTRIBUTES when a transaction happens
# rather than making a read of the DB do writes.
#
# This avoids locking issues and is more expected
samdb2.transaction_start()
samdb2.transaction_commit()
selftest: Check re-opening sam.ldb corrects the @ATTRIBUTES and @INDEXLIST Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-09-13 07:13:06 +03:00
res = self.samdb.search(base="@ATTRIBUTES", scope=ldb.SCOPE_BASE,
attrs=["@TEST_EXTRA"])
self.assertEquals(len(res), 1)
self.assertEquals(str(res[0].dn), "@ATTRIBUTES")
self.assertEquals(len(res[0]), 0)
self.assertFalse("@TEST_EXTRA" in res[0])
def test_modify_at_indexlist(self):
m = {"dn": "@INDEXLIST",
"@TEST_EXTRA": ["1"]
}
msg = ldb.Message.from_dict(self.samdb, m, ldb.FLAG_MOD_ADD)
self.samdb.modify(msg)
res = self.samdb.search(base="@INDEXLIST", scope=ldb.SCOPE_BASE,
attrs=["@TEST_EXTRA"])
self.assertEquals(len(res), 1)
self.assertEquals(str(res[0].dn), "@INDEXLIST")
self.assertEquals(len(res[0]), 1)
self.assertTrue("@TEST_EXTRA" in res[0])
self.assertEquals(len(res[0]["@TEST_EXTRA"]), 1)
python/samba/tests: port samba.tests.dsdb_schema_attributes to PY3 Signed-off-by: Noel Power <noel.power@suse.com> Reviewed-by: Andrew Bartlett abartlet@samba.org
2018-09-03 19:34:27 +03:00
self.assertEquals(str(res[0]["@TEST_EXTRA"][0]), "1")
selftest: Check re-opening sam.ldb corrects the @ATTRIBUTES and @INDEXLIST Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-09-13 07:13:06 +03:00
samdb2 = samba.tests.connect_samdb(self.lp.samdb_url())
selftest: Make a transaction before @INDEXLIST etc is checked in dsdb_schema_attributes.py This helps us remove the write to the database from the (soon to be read locked) init code. BUG: https://bugzilla.samba.org/show_bug.cgi?id=13379 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
2018-04-11 03:51:49 +03:00
# We now only update the @INDEXLIST when a transaction happens
# rather than making a read of the DB do writes.
#
# This avoids locking issues and is more expected
samdb2.transaction_start()
samdb2.transaction_commit()
selftest: Check re-opening sam.ldb corrects the @ATTRIBUTES and @INDEXLIST Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
2017-09-13 07:13:06 +03:00
res = self.samdb.search(base="@INDEXLIST", scope=ldb.SCOPE_BASE,
attrs=["@TEST_EXTRA"])
self.assertEquals(len(res), 1)
self.assertEquals(str(res[0].dn), "@INDEXLIST")
self.assertEquals(len(res[0]), 0)
self.assertFalse("@TEST_EXTRA" in res[0])
dsdb partition.c: Make partition_copy_all aysnc. partition_copy_all uses ldb_wait to wait for the update to the primary partition to complete, when updating a special dn. If a module higher up the chain inserts a callback, the code blocks in ldb_wait and does not complete. This change replaces the ldb_wait logic with a callback. Currently there is no code that triggers this bug, however the up coming audit logging changes do trigger this bug. Signed-off-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2018-05-21 05:31:57 +03:00
def test_modify_fail_of_at_indexlist(self):
m = {"dn": "@INDEXLIST",
"@TEST_NOT_EXTRA": ["1"]
}
msg = ldb.Message.from_dict(self.samdb, m, ldb.FLAG_MOD_DELETE)
try:
self.samdb.modify(msg)
self.fail("modify of @INDEXLIST with a failed constraint should fail")
except LdbError as err:
enum = err.args[0]
self.assertEquals(enum, ldb.ERR_NO_SUCH_ATTRIBUTE)
Copy Permalink