samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-01-12 09:18:10 +03:00

72 lines

2.0 KiB

Bash

Raw Normal View History

s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			`#!/bin/sh`
			`# Blackbox tests for kinit and kerberos integration with smbclient etc`
			`# Copyright (C) 2006-2007 Jelmer Vernooij <jelmer@samba.org>`
			`# Copyright (C) 2006-2008 Andrew Bartlett <abartlet@samba.org>`

			`if [ $# -lt 5 ]; then`
			`cat <<EOF`
s4:selftest: change the blackbox.pkinit test to use a binary mapping for smbclient 2012-05-30 14:16:49 +04:00			`Usage: test_kinit.sh SERVER USERNAME PASSWORD REALM DOMAIN PREFIX ENCTYPE SMBCLINET`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			`EOF`
			`exit 1;`
			`fi`

			`SERVER=$1`
			`USERNAME=$2`
			`PASSWORD=$3`
			`REALM=$4`
			`DOMAIN=$5`
			`PREFIX=$6`
			`ENCTYPE=$7`
s4:selftest: change the blackbox.pkinit test to use a binary mapping for smbclient 2012-05-30 14:16:49 +04:00			`smbclient=$8`
			`shift 8`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			`failed=0`

selftest: Remove duplication between BUILDIR and BINDIR Just have BINDIR, and have it default to ./bin Andrew Bartlett 2011-04-15 06:41:22 +04:00			`samba4bindir="$BINDIR"`
blackbox: removed assumption of build directory this fixes the blackbox tests for a top level build Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> 2011-02-03 09:30:53 +03:00			`samba4srcdir="$SRCDIR/source4"`
testprogs: Use the system binaries for KRB5 if we don't build in-tree heimdal. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org> Reviewed-by: Andrew Bartlet <abartlet@samba.org> 2014-05-12 18:56:29 +04:00			`samba4kinit=kinit`
			`if test -x $BINDIR/samba4kinit; then`
			`samba4kinit=$BINDIR/samba4kinit`
			`fi`

selftest: Remove unused support for --exeext 2012-01-26 02:42:27 +04:00			`samba_tool="$samba4bindir/samba-tool"`
testprogs: Use the system binaries for KRB5 if we don't build in-tree heimdal. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org> Reviewed-by: Andrew Bartlet <abartlet@samba.org> 2014-05-12 18:56:29 +04:00			`samba4kpasswd=kpasswd`
			`if test -x $BINDIR/samba4kpasswd; then`
			`samba4passwd=$BINDIR/samba4kpasswd`
			`fi`

samba-tool: update tests for new 'user enable' syntax Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Jun 1 10:37:50 CEST 2011 on sn-devel-104 2011-06-01 11:22:15 +04:00			`enableaccount="$samba_tool user enable"`
blackbox: removed assumption of build directory this fixes the blackbox tests for a top level build Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> 2011-02-03 09:30:53 +03:00			`machineaccountccache="$samba4srcdir/scripting/bin/machineaccountccache"`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00
testprogs: Fix pkinit test with system ldb. Reviewed-by: Alexander Bokovoy <ab@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Fri Feb 21 17:58:24 CET 2014 on sn-devel-104 2014-02-21 18:55:22 +04:00			`ldbmodify="ldbmodify"`
			`if [ -x "$samba4bindir/ldbmodify" ]; then`
			`ldbmodify="$samba4bindir/ldbmodify"`
			`fi`

			`ldbsearch="ldbsearch"`
			`if [ -x "$samba4bindir/ldbsearch" ]; then`
			`ldbsearch="$samba4bindir/ldbsearch"`
			`fi`

s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			. `dirname $0`/subunit.sh
selfttest: add common_test_fns.inc Create an include file of common functions used by several of the blackbox tests in testprogs and then make all the users of test_smbclient include that file so we can eliminate duplicate code. We pass the UNC to the test_smbclient function. Signed-off-by: Richard Sharpe <rsharpe@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Thu Apr 28 16:50:35 CEST 2016 on sn-devel-144 2016-04-24 21:09:05 +03:00			. `dirname $0`/common_test_fns.inc
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00
			`enctype="-e $ENCTYPE"`
selfttest: add common_test_fns.inc Create an include file of common functions used by several of the blackbox tests in testprogs and then make all the users of test_smbclient include that file so we can eliminate duplicate code. We pass the UNC to the test_smbclient function. Signed-off-by: Richard Sharpe <rsharpe@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Thu Apr 28 16:50:35 CEST 2016 on sn-devel-144 2016-04-24 21:09:05 +03:00			`unc="//$SERVER/tmp"`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00
test_pkinit_heimdal.sh: add a FILE: prefix to the KRB5CCNAME variable This makes the tests more robust. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11441 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> 2016-06-03 19:19:40 +03:00			`KRB5CCNAME_PATH="$PREFIX/tmpccache"`
			`KRB5CCNAME="FILE:$KRB5CCNAME_PATH"`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			`export KRB5CCNAME`
test_pkinit_heimdal.sh: add a FILE: prefix to the KRB5CCNAME variable This makes the tests more robust. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11441 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> 2016-06-03 19:19:40 +03:00			`rm -f $KRB5CCNAME_PATH`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00
test_pkinit_heimdal.sh: add a helper VARIABLE to store the certificate paths We also don't need the separation of admincert.pem and admincertupn.pem anymore. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11441 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> 2016-06-02 20:23:27 +03:00			`PKUSER="--pk-user=FILE:$PREFIX/private/tls/admincert.pem,$PREFIX/private/tls/adminkey.pem"`

			testit "kinit with pkinit (name specified)" $samba4kinit $enctype --request-pac --renewable $PKUSER $USERNAME@$REALM \|\| failed=`expr $failed + 1`
			testit "kinit with pkinit (enterprise name specified)" $samba4kinit $enctype --request-pac --renewable $PKUSER --enterprise $USERNAME@$REALM \|\| failed=`expr $failed + 1`
			testit "kinit with pkinit (enterprise name in cert)" $samba4kinit $enctype --request-pac --renewable $PKUSER --pk-enterprise \|\| failed=`expr $failed + 1`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			`testit "kinit renew ticket" $samba4kinit --request-pac -R`

selfttest: add common_test_fns.inc Create an include file of common functions used by several of the blackbox tests in testprogs and then make all the users of test_smbclient include that file so we can eliminate duplicate code. We pass the UNC to the test_smbclient function. Signed-off-by: Richard Sharpe <rsharpe@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> Autobuild-User(master): Ralph Böhme <slow@samba.org> Autobuild-Date(master): Thu Apr 28 16:50:35 CEST 2016 on sn-devel-144 2016-04-24 21:09:05 +03:00			test_smbclient "Test login with kerberos ccache" 'ls' "$unc" -k yes \|\| failed=`expr $failed + 1`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00
test_pkinit_heimdal.sh: add a FILE: prefix to the KRB5CCNAME variable This makes the tests more robust. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11441 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> 2016-06-03 19:19:40 +03:00			`rm -f $KRB5CCNAME_PATH`
s4:selftest Split out PKINIT tests from test_kinit.sh and test enc types This allows us to run the PKINIT tests only against the main DC (for which the certificates were generated), while testing the available encryption types in each functional level. In particular, we need to assert that AES encryption is available in the 2008 functional level. Andrew Bartlett 2010-06-24 03:42:40 +04:00			`exit $failed`

72 lines 2.0 KiB Bash Raw Normal View History Unescape Escape

72 lines

2.0 KiB

Bash

Raw Normal View History