2005-04-06 11:17:08 +00:00
/*
Unix SMB / CIFS implementation .
NBT dgram testing
Copyright ( C ) Andrew Tridgell 2005
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-10 02:07:03 +00:00
the Free Software Foundation ; either version 3 of the License , or
2005-04-06 11:17:08 +00:00
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
2007-07-10 02:07:03 +00:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2005-04-06 11:17:08 +00:00
*/
# include "includes.h"
# include "libcli/dgram/libdgram.h"
# include "lib/socket/socket.h"
# include "lib/events/events.h"
2010-04-13 22:06:51 +02:00
# include "torture/rpc/torture_rpc.h"
2014-02-27 09:08:17 +01:00
# include "torture/nbt/proto.h"
2006-03-07 11:07:23 +00:00
# include "libcli/resolve/resolve.h"
# include "system/network.h"
2006-08-17 13:37:04 +00:00
# include "lib/socket/netif.h"
2007-09-08 12:42:09 +00:00
# include "param/param.h"
2005-04-06 11:17:08 +00:00
# define TEST_NAME "TORTURE_TEST"
/*
reply handler for netlogon request
*/
static void netlogon_handler ( struct dgram_mailslot_handler * dgmslot ,
struct nbt_dgram_packet * packet ,
2006-01-09 22:12:53 +00:00
struct socket_address * src )
2005-04-06 11:17:08 +00:00
{
2005-04-08 05:34:13 +00:00
NTSTATUS status ;
2009-02-02 09:55:58 +01:00
struct nbt_netlogon_response * netlogon = dgmslot - > private_data ;
2005-04-08 05:34:13 +00:00
2009-02-02 09:55:58 +01:00
dgmslot - > private_data = netlogon = talloc ( dgmslot , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
2009-02-02 09:55:58 +01:00
if ( ! dgmslot - > private_data ) {
2008-05-21 12:37:36 +10:00
return ;
}
2005-10-14 12:22:15 +00:00
printf ( " netlogon reply from %s:%d \n " , src - > addr , src - > port ) ;
2005-04-08 05:34:13 +00:00
2008-05-21 12:37:36 +10:00
/* Fills in the netlogon pointer */
status = dgram_mailslot_netlogon_parse_response ( dgmslot , netlogon , packet , netlogon ) ;
2005-04-08 05:34:13 +00:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
printf ( " Failed to parse netlogon packet from %s:%d \n " ,
2005-10-14 12:22:15 +00:00
src - > addr , src - > port ) ;
2005-04-08 05:34:13 +00:00
return ;
}
2008-05-21 12:37:36 +10:00
2005-04-06 11:17:08 +00:00
}
2005-04-08 05:34:13 +00:00
2005-04-06 11:17:08 +00:00
/* test UDP/138 netlogon requests */
2006-10-16 13:06:41 +00:00
static bool nbt_test_netlogon ( struct torture_context * tctx )
2005-04-06 11:17:08 +00:00
{
struct dgram_mailslot_handler * dgmslot ;
2010-05-09 17:20:01 +02:00
struct nbt_dgram_socket * dgmsock = nbt_dgram_socket_init ( tctx , tctx - > ev ) ;
2006-01-09 22:12:53 +00:00
struct socket_address * dest ;
2006-10-16 13:06:41 +00:00
const char * myaddress ;
2005-04-06 11:17:08 +00:00
struct nbt_netlogon_packet logon ;
2008-05-21 12:37:36 +10:00
struct nbt_netlogon_response * response ;
2005-04-06 11:17:08 +00:00
struct nbt_name myname ;
NTSTATUS status ;
struct timeval tv = timeval_current ( ) ;
2006-01-09 22:12:53 +00:00
struct socket_address * socket_address ;
2006-10-16 13:06:41 +00:00
const char * address ;
struct nbt_name name ;
2007-12-11 22:23:14 +01:00
struct interface * ifaces ;
2008-05-21 12:37:36 +10:00
2010-07-16 14:32:42 +10:00
name . name = lpcfg_workgroup ( tctx - > lp_ctx ) ;
2006-10-16 13:06:41 +00:00
name . type = NBT_NAME_LOGON ;
name . scope = NULL ;
/* do an initial name resolution to find its IP */
torture_assert_ntstatus_ok ( tctx ,
2011-05-02 16:36:48 +10:00
resolve_name_ex ( lpcfg_resolve_context ( tctx - > lp_ctx ) ,
0 , 0 ,
& name , tctx , & address , tctx - > ev ) ,
2006-11-13 19:08:11 +00:00
talloc_asprintf ( tctx , " Failed to resolve %s " , name . name ) ) ;
2006-10-16 13:06:41 +00:00
2011-06-02 15:40:28 +10:00
load_interface_list ( tctx , tctx - > lp_ctx , & ifaces ) ;
2011-05-02 15:57:19 +10:00
myaddress = talloc_strdup ( dgmsock , iface_list_best_ip ( ifaces , address ) ) ;
2006-10-16 13:06:41 +00:00
2006-01-09 22:12:53 +00:00
socket_address = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
myaddress , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2006-11-13 19:08:11 +00:00
torture_assert ( tctx , socket_address ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
2005-04-08 05:34:13 +00:00
/* try receiving replies on port 138 first, which will only
work if we are root and smbd / nmbd are not running - fall
back to listening on any port , which means replies from
2008-05-16 13:03:01 +10:00
most windows versions won ' t be seen */
2006-01-09 22:12:53 +00:00
status = socket_listen ( dgmsock - > sock , socket_address , 0 , 0 ) ;
2005-04-08 05:34:13 +00:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2006-01-09 22:12:53 +00:00
talloc_free ( socket_address ) ;
socket_address = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
myaddress , 0 ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , socket_address ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
socket_listen ( dgmsock - > sock , socket_address , 0 , 0 ) ;
2005-04-08 05:34:13 +00:00
}
2005-04-06 11:17:08 +00:00
/* setup a temporary mailslot listener for replies */
2005-04-08 08:57:09 +00:00
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
2008-05-21 12:37:36 +10:00
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2005-04-06 11:17:08 +00:00
ZERO_STRUCT ( logon ) ;
2008-05-16 13:03:01 +10:00
logon . command = LOGON_PRIMARY_QUERY ;
2005-04-06 11:17:08 +00:00
logon . req . pdc . computer_name = TEST_NAME ;
logon . req . pdc . mailslot_name = dgmslot - > mailslot_name ;
logon . req . pdc . unicode_name = TEST_NAME ;
logon . req . pdc . nt_version = 1 ;
logon . req . pdc . lmnt_token = 0xFFFF ;
logon . req . pdc . lm20_token = 0xFFFF ;
2005-05-22 10:23:01 +00:00
make_nbt_name_client ( & myname , TEST_NAME ) ;
2005-04-06 11:17:08 +00:00
2006-01-09 22:12:53 +00:00
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
status = dgram_mailslot_netlogon_send ( dgmsock , & name , dest ,
2008-05-16 13:03:01 +10:00
NBT_MAILSLOT_NETLOGON ,
2005-10-14 12:22:15 +00:00
& myname , & logon ) ;
2006-10-16 13:06:41 +00:00
torture_assert_ntstatus_ok ( tctx , status , " Failed to send netlogon request " ) ;
2005-04-06 11:17:08 +00:00
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & ! dgmslot - > private_data ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2005-04-06 11:17:08 +00:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert ( tctx , response - > response_type = = NETLOGON_GET_PDC , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
torture_assert ( tctx , response - > data . get_pdc . command = = NETLOGON_RESPONSE_FROM_PDC , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2006-10-16 13:06:41 +00:00
return true ;
2005-04-06 11:17:08 +00:00
}
2005-04-14 02:36:30 +00:00
/* test UDP/138 netlogon requests */
2006-10-16 13:06:41 +00:00
static bool nbt_test_netlogon2 ( struct torture_context * tctx )
2005-04-14 02:36:30 +00:00
{
struct dgram_mailslot_handler * dgmslot ;
2010-05-09 17:20:01 +02:00
struct nbt_dgram_socket * dgmsock = nbt_dgram_socket_init ( tctx , tctx - > ev ) ;
2006-01-09 22:12:53 +00:00
struct socket_address * dest ;
2006-10-16 13:06:41 +00:00
const char * myaddress ;
2005-04-14 02:36:30 +00:00
struct nbt_netlogon_packet logon ;
2008-05-21 12:37:36 +10:00
struct nbt_netlogon_response * response ;
2005-04-14 02:36:30 +00:00
struct nbt_name myname ;
NTSTATUS status ;
struct timeval tv = timeval_current ( ) ;
2006-01-09 22:12:53 +00:00
struct socket_address * socket_address ;
2006-10-16 13:06:41 +00:00
const char * address ;
struct nbt_name name ;
2007-12-11 22:23:14 +01:00
struct interface * ifaces ;
2008-05-17 12:39:38 +10:00
struct test_join * join_ctx ;
struct cli_credentials * machine_credentials ;
const struct dom_sid * dom_sid ;
2006-10-16 13:06:41 +00:00
2010-07-16 14:32:42 +10:00
name . name = lpcfg_workgroup ( tctx - > lp_ctx ) ;
2006-10-16 13:06:41 +00:00
name . type = NBT_NAME_LOGON ;
name . scope = NULL ;
/* do an initial name resolution to find its IP */
torture_assert_ntstatus_ok ( tctx ,
2011-05-02 16:36:48 +10:00
resolve_name_ex ( lpcfg_resolve_context ( tctx - > lp_ctx ) ,
0 , 0 ,
& name , tctx , & address , tctx - > ev ) ,
2006-11-13 19:08:11 +00:00
talloc_asprintf ( tctx , " Failed to resolve %s " , name . name ) ) ;
2006-10-16 13:06:41 +00:00
2011-06-02 15:40:28 +10:00
load_interface_list ( tctx , tctx - > lp_ctx , & ifaces ) ;
2011-05-02 15:57:19 +10:00
myaddress = talloc_strdup ( dgmsock , iface_list_best_ip ( ifaces , address ) ) ;
2006-10-16 13:06:41 +00:00
2006-01-09 22:12:53 +00:00
socket_address = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
myaddress , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , socket_address ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
2005-04-14 02:36:30 +00:00
/* try receiving replies on port 138 first, which will only
work if we are root and smbd / nmbd are not running - fall
back to listening on any port , which means replies from
some windows versions won ' t be seen */
2006-01-09 22:12:53 +00:00
status = socket_listen ( dgmsock - > sock , socket_address , 0 , 0 ) ;
2005-04-14 02:36:30 +00:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2006-01-09 22:12:53 +00:00
talloc_free ( socket_address ) ;
socket_address = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
myaddress , 0 ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , socket_address ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
socket_listen ( dgmsock - > sock , socket_address , 0 , 0 ) ;
2005-04-14 02:36:30 +00:00
}
/* setup a temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
2008-05-21 12:37:36 +10:00
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2005-04-14 02:36:30 +00:00
ZERO_STRUCT ( logon ) ;
2008-05-16 13:03:01 +10:00
logon . command = LOGON_SAM_LOGON_REQUEST ;
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = " " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
2008-05-21 12:37:36 +10:00
logon . req . logon . nt_version = NETLOGON_NT_VERSION_5EX_WITH_IP | NETLOGON_NT_VERSION_5 | NETLOGON_NT_VERSION_1 ;
2008-05-16 13:03:01 +10:00
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
2005-04-14 02:36:30 +00:00
2005-05-22 10:23:01 +00:00
make_nbt_name_client ( & myname , TEST_NAME ) ;
2005-04-14 02:36:30 +00:00
2006-01-09 22:12:53 +00:00
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
status = dgram_mailslot_netlogon_send ( dgmsock , & name , dest ,
2008-05-16 13:03:01 +10:00
NBT_MAILSLOT_NETLOGON ,
2005-10-14 12:22:15 +00:00
& myname , & logon ) ;
2006-10-16 13:06:41 +00:00
torture_assert_ntstatus_ok ( tctx , status , " Failed to send netlogon request " ) ;
2005-04-14 02:36:30 +00:00
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2005-04-14 02:36:30 +00:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_RESPONSE_EX , " Got incorrect netlogon response command " ) ;
2011-12-22 17:05:29 +01:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . nt_version , NETLOGON_NT_VERSION_5EX_WITH_IP | NETLOGON_NT_VERSION_5EX | NETLOGON_NT_VERSION_1 , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2011-12-22 17:05:29 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) = = NULL ,
" PDC name should not be in UNC form " ) ;
2008-05-21 12:37:36 +10:00
/* setup (another) temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2008-05-21 12:37:36 +10:00
2008-05-17 12:39:38 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_SAM_LOGON_REQUEST ;
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = TEST_NAME " $ " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
logon . req . logon . nt_version = 1 ;
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-17 12:39:38 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock , & name , dest ,
NBT_MAILSLOT_NETLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send netlogon request " ) ;
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-17 12:39:38 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_USER_UNKNOWN , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_str_equal ( tctx , response - > data . samlogon . data . nt5_ex . user_name , TEST_NAME " $ " , " Got incorrect user in netlogon response " ) ;
2008-05-21 12:37:36 +10:00
2012-01-02 15:51:35 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) ! = NULL ,
" PDC name should be in UNC form " ) ;
2008-05-17 12:39:38 +10:00
join_ctx = torture_join_domain ( tctx , TEST_NAME ,
ACB_WSTRUST , & machine_credentials ) ;
2008-08-14 11:54:19 +10:00
torture_assert ( tctx , join_ctx ! = NULL ,
talloc_asprintf ( tctx , " Failed to join domain %s as %s \n " ,
2010-07-16 14:32:42 +10:00
lpcfg_workgroup ( tctx - > lp_ctx ) , TEST_NAME ) ) ;
2008-08-14 11:54:19 +10:00
2008-05-17 12:39:38 +10:00
dom_sid = torture_join_sid ( join_ctx ) ;
2008-05-21 12:37:36 +10:00
/* setup (another) temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2008-05-21 12:37:36 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_SAM_LOGON_REQUEST ;
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = TEST_NAME " $ " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
logon . req . logon . sid = * dom_sid ;
logon . req . logon . nt_version = 1 ;
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock , & name , dest ,
NBT_MAILSLOT_NETLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send netlogon request " ) ;
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-21 12:37:36 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_USER_UNKNOWN , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2012-01-02 15:51:35 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) ! = NULL ,
" PDC name should be in UNC form " ) ;
2008-05-21 12:37:36 +10:00
/* setup (another) temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
netlogon_handler , NULL ) ;
2009-06-04 15:10:36 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error getting a Mailslot for GetDC reply " ) ;
2008-05-21 12:37:36 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_SAM_LOGON_REQUEST ;
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = TEST_NAME " $ " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
logon . req . logon . sid = * dom_sid ;
logon . req . logon . acct_control = ACB_WSTRUST ;
logon . req . logon . nt_version = 1 ;
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock , & name , dest ,
NBT_MAILSLOT_NETLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send netlogon request " ) ;
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-21 12:37:36 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_RESPONSE , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2012-01-02 15:51:35 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) ! = NULL ,
" PDC name should be in UNC form " ) ;
2009-02-02 09:55:58 +01:00
dgmslot - > private_data = NULL ;
2008-05-21 12:37:36 +10:00
2008-05-17 12:39:38 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_SAM_LOGON_REQUEST ;
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = TEST_NAME " $ " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
logon . req . logon . sid = * dom_sid ;
2008-05-21 12:37:36 +10:00
logon . req . logon . acct_control = ACB_NORMAL ;
2008-05-17 12:39:38 +10:00
logon . req . logon . nt_version = 1 ;
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-17 12:39:38 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock , & name , dest ,
NBT_MAILSLOT_NETLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send netlogon request " ) ;
2008-05-21 12:37:36 +10:00
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-17 12:39:38 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_USER_UNKNOWN , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2012-01-02 15:51:35 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) ! = NULL ,
" PDC name should be in UNC form " ) ;
2008-06-14 11:24:17 -04:00
torture_leave_domain ( tctx , join_ctx ) ;
2006-10-16 13:06:41 +00:00
return true ;
2005-04-14 02:36:30 +00:00
}
2005-04-13 05:07:04 +00:00
/* test UDP/138 ntlogon requests */
2006-10-16 13:06:41 +00:00
static bool nbt_test_ntlogon ( struct torture_context * tctx )
2005-04-13 05:07:04 +00:00
{
struct dgram_mailslot_handler * dgmslot ;
2010-05-09 17:20:01 +02:00
struct nbt_dgram_socket * dgmsock = nbt_dgram_socket_init ( tctx , tctx - > ev ) ;
2006-01-09 22:12:53 +00:00
struct socket_address * dest ;
struct test_join * join_ctx ;
2008-05-21 12:37:36 +10:00
const struct dom_sid * dom_sid ;
2006-01-09 22:12:53 +00:00
struct cli_credentials * machine_credentials ;
2006-10-16 13:06:41 +00:00
const char * myaddress ;
2008-05-16 13:03:01 +10:00
struct nbt_netlogon_packet logon ;
2008-05-21 12:37:36 +10:00
struct nbt_netlogon_response * response ;
2005-04-13 05:07:04 +00:00
struct nbt_name myname ;
NTSTATUS status ;
struct timeval tv = timeval_current ( ) ;
2006-01-09 22:12:53 +00:00
struct socket_address * socket_address ;
2006-10-16 13:06:41 +00:00
const char * address ;
struct nbt_name name ;
2007-12-11 22:23:14 +01:00
struct interface * ifaces ;
2006-10-16 13:06:41 +00:00
2010-07-16 14:32:42 +10:00
name . name = lpcfg_workgroup ( tctx - > lp_ctx ) ;
2006-10-16 13:06:41 +00:00
name . type = NBT_NAME_LOGON ;
name . scope = NULL ;
/* do an initial name resolution to find its IP */
torture_assert_ntstatus_ok ( tctx ,
2011-05-02 16:36:48 +10:00
resolve_name_ex ( lpcfg_resolve_context ( tctx - > lp_ctx ) ,
0 , 0 , & name , tctx , & address , tctx - > ev ) ,
2006-11-13 19:08:11 +00:00
talloc_asprintf ( tctx , " Failed to resolve %s " , name . name ) ) ;
2006-10-16 13:06:41 +00:00
2011-06-02 15:40:28 +10:00
load_interface_list ( tctx , tctx - > lp_ctx , & ifaces ) ;
2011-05-02 15:57:19 +10:00
myaddress = talloc_strdup ( dgmsock , iface_list_best_ip ( ifaces , address ) ) ;
2006-01-09 22:12:53 +00:00
socket_address = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
myaddress , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , socket_address ! = NULL , " Error getting address " ) ;
2005-04-13 05:07:04 +00:00
/* try receiving replies on port 138 first, which will only
work if we are root and smbd / nmbd are not running - fall
back to listening on any port , which means replies from
2008-05-16 13:03:01 +10:00
most windows versions won ' t be seen */
2006-01-09 22:12:53 +00:00
status = socket_listen ( dgmsock - > sock , socket_address , 0 , 0 ) ;
2005-04-13 05:07:04 +00:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2006-01-09 22:12:53 +00:00
talloc_free ( socket_address ) ;
socket_address = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
myaddress , 0 ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , socket_address ! = NULL , " Error getting address " ) ;
2006-01-09 22:12:53 +00:00
socket_listen ( dgmsock - > sock , socket_address , 0 , 0 ) ;
}
2007-12-03 15:53:28 +01:00
join_ctx = torture_join_domain ( tctx , TEST_NAME ,
2006-01-09 22:12:53 +00:00
ACB_WSTRUST , & machine_credentials ) ;
2008-05-21 12:37:36 +10:00
2006-11-13 19:08:11 +00:00
torture_assert ( tctx , join_ctx ! = NULL ,
talloc_asprintf ( tctx , " Failed to join domain %s as %s \n " ,
2010-07-16 14:32:42 +10:00
lpcfg_workgroup ( tctx - > lp_ctx ) , TEST_NAME ) ) ;
2011-09-27 17:30:16 -07:00
dom_sid = torture_join_sid ( join_ctx ) ;
2005-04-13 05:07:04 +00:00
/* setup a temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
2008-05-21 12:37:36 +10:00
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2008-05-21 12:37:36 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_SAM_LOGON_REQUEST ;
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = TEST_NAME " $ " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
logon . req . logon . acct_control = ACB_WSTRUST ;
/* Try with a SID this time */
logon . req . logon . sid = * dom_sid ;
logon . req . logon . nt_version = 1 ;
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock ,
& name , dest ,
NBT_MAILSLOT_NTLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send ntlogon request " ) ;
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-21 12:37:36 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_RESPONSE , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_str_equal ( tctx , response - > data . samlogon . data . nt5_ex . user_name , TEST_NAME " $ " , " Got incorrect user in netlogon response " ) ;
2008-05-21 12:37:36 +10:00
2012-01-02 15:51:35 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) ! = NULL ,
" PDC name should be in UNC form " ) ;
2008-05-21 12:37:36 +10:00
/* setup a temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2005-04-13 05:07:04 +00:00
ZERO_STRUCT ( logon ) ;
2008-05-16 13:03:01 +10:00
logon . command = LOGON_SAM_LOGON_REQUEST ;
2005-04-13 05:07:04 +00:00
logon . req . logon . request_count = 0 ;
logon . req . logon . computer_name = TEST_NAME ;
logon . req . logon . user_name = TEST_NAME " $ " ;
logon . req . logon . mailslot_name = dgmslot - > mailslot_name ;
logon . req . logon . acct_control = ACB_WSTRUST ;
2008-05-16 13:03:01 +10:00
/* Leave sid as all zero */
2005-04-13 05:07:04 +00:00
logon . req . logon . nt_version = 1 ;
logon . req . logon . lmnt_token = 0xFFFF ;
logon . req . logon . lm20_token = 0xFFFF ;
2005-05-22 10:23:01 +00:00
make_nbt_name_client ( & myname , TEST_NAME ) ;
2005-04-13 05:07:04 +00:00
2006-01-09 22:12:53 +00:00
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2006-10-16 13:06:41 +00:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
2008-05-16 13:03:01 +10:00
status = dgram_mailslot_netlogon_send ( dgmsock ,
& name , dest ,
NBT_MAILSLOT_NTLOGON ,
& myname , & logon ) ;
2006-10-16 13:06:41 +00:00
torture_assert_ntstatus_ok ( tctx , status , " Failed to send ntlogon request " ) ;
2005-04-13 05:07:04 +00:00
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & dgmslot - > private_data = = NULL ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2005-04-13 05:07:04 +00:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_SAMLOGON , " Got incorrect type of netlogon response " ) ;
2008-10-02 08:09:25 +02:00
map_netlogon_samlogon_response ( & response - > data . samlogon ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . samlogon . data . nt5_ex . command , LOGON_SAM_LOGON_RESPONSE , " Got incorrect netlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2008-10-02 08:09:25 +02:00
torture_assert_str_equal ( tctx , response - > data . samlogon . data . nt5_ex . user_name , TEST_NAME " $ " , " Got incorrect user in netlogon response " ) ;
2008-05-21 12:37:36 +10:00
2012-01-02 15:51:35 +01:00
torture_assert ( tctx ,
strstr ( response - > data . samlogon . data . nt5_ex . pdc_name , " \\ \\ " ) ! = NULL ,
" PDC name should be in UNC form " ) ;
2008-05-21 12:37:36 +10:00
/* setup (another) temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2008-05-21 12:37:36 +10:00
2008-05-17 13:24:29 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_PRIMARY_QUERY ;
logon . req . pdc . computer_name = TEST_NAME ;
logon . req . pdc . mailslot_name = dgmslot - > mailslot_name ;
logon . req . pdc . unicode_name = TEST_NAME ;
logon . req . pdc . nt_version = 1 ;
logon . req . pdc . lmnt_token = 0xFFFF ;
logon . req . pdc . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-17 13:24:29 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock ,
& name , dest ,
NBT_MAILSLOT_NTLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send ntlogon request " ) ;
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & ! dgmslot - > private_data ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-17 13:24:29 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_GET_PDC , " Got incorrect type of ntlogon response " ) ;
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . get_pdc . command , NETLOGON_RESPONSE_FROM_PDC , " Got incorrect ntlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2008-06-14 11:24:17 -04:00
torture_leave_domain ( tctx , join_ctx ) ;
2008-05-21 12:37:36 +10:00
/* setup (another) temporary mailslot listener for replies */
dgmslot = dgram_mailslot_temp ( dgmsock , NBT_MAILSLOT_GETDC ,
netlogon_handler , NULL ) ;
2010-09-16 15:47:42 +10:00
torture_assert ( tctx , dgmslot ! = NULL , " Error temporary mailslot for GetDC " ) ;
2008-05-21 12:37:36 +10:00
ZERO_STRUCT ( logon ) ;
logon . command = LOGON_PRIMARY_QUERY ;
logon . req . pdc . computer_name = TEST_NAME ;
logon . req . pdc . mailslot_name = dgmslot - > mailslot_name ;
logon . req . pdc . unicode_name = TEST_NAME ;
logon . req . pdc . nt_version = 1 ;
logon . req . pdc . lmnt_token = 0xFFFF ;
logon . req . pdc . lm20_token = 0xFFFF ;
make_nbt_name_client ( & myname , TEST_NAME ) ;
dest = socket_address_from_strings ( dgmsock , dgmsock - > sock - > backend_name ,
2010-07-16 14:32:42 +10:00
address , lpcfg_dgram_port ( tctx - > lp_ctx ) ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , dest ! = NULL , " Error getting address " ) ;
status = dgram_mailslot_netlogon_send ( dgmsock ,
& name , dest ,
NBT_MAILSLOT_NTLOGON ,
& myname , & logon ) ;
torture_assert_ntstatus_ok ( tctx , status , " Failed to send ntlogon request " ) ;
2009-02-02 09:55:58 +01:00
while ( timeval_elapsed ( & tv ) < 5 & & ! dgmslot - > private_data ) {
2010-05-25 15:23:55 -04:00
tevent_loop_once ( dgmsock - > event_ctx ) ;
2008-05-21 12:37:36 +10:00
}
2009-02-02 09:55:58 +01:00
response = talloc_get_type ( dgmslot - > private_data , struct nbt_netlogon_response ) ;
2008-05-21 12:37:36 +10:00
torture_assert ( tctx , response ! = NULL , " Failed to receive a netlogon reply packet " ) ;
torture_assert_int_equal ( tctx , response - > response_type , NETLOGON_GET_PDC , " Got incorrect type of ntlogon response " ) ;
2008-10-02 08:09:25 +02:00
torture_assert_int_equal ( tctx , response - > data . get_pdc . command , NETLOGON_RESPONSE_FROM_PDC , " Got incorrect ntlogon response command " ) ;
2008-05-21 12:37:36 +10:00
2006-10-16 13:06:41 +00:00
return true ;
2005-04-13 05:07:04 +00:00
}
2005-04-06 11:17:08 +00:00
/*
test nbt dgram operations
*/
2007-09-07 16:27:57 +00:00
struct torture_suite * torture_nbt_dgram ( TALLOC_CTX * mem_ctx )
2005-04-06 11:17:08 +00:00
{
2010-12-11 03:26:31 +01:00
struct torture_suite * suite = torture_suite_create ( mem_ctx , " dgram " ) ;
2005-04-06 11:17:08 +00:00
2006-10-16 13:06:41 +00:00
torture_suite_add_simple_test ( suite , " netlogon " , nbt_test_netlogon ) ;
torture_suite_add_simple_test ( suite , " netlogon2 " , nbt_test_netlogon2 ) ;
torture_suite_add_simple_test ( suite , " ntlogon " , nbt_test_ntlogon ) ;
2005-04-06 11:17:08 +00:00
2006-10-16 13:06:41 +00:00
return suite ;
2005-04-06 11:17:08 +00:00
}