2007-03-02 05:58:22 +00:00
/*
Test the SMB_WHOAMI Unix extension .
Copyright ( C ) 2007 James Peach
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-10 02:07:03 +00:00
the Free Software Foundation ; either version 3 of the License , or
2007-03-02 05:58:22 +00:00
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
2007-07-10 02:07:03 +00:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2007-03-02 05:58:22 +00:00
*/
# include "includes.h"
# include "libcli/libcli.h"
2008-04-02 04:53:27 +02:00
# include "libcli/raw/raw_proto.h"
2008-09-09 13:01:34 +02:00
# include "torture/torture.h"
2014-02-27 09:08:17 +01:00
# include "torture/unix/proto.h"
2007-03-02 05:58:22 +00:00
# include "lib/cmdline/popt_common.h"
# include "auth/credentials/credentials.h"
2007-09-08 12:42:09 +00:00
# include "param/param.h"
2008-01-02 18:39:01 -06:00
# include "libcli/resolve/resolve.h"
2012-06-20 18:23:18 +10:00
# include <ldb.h>
# include "lib/util/util_ldb.h"
# include "ldb_wrap.h"
# include "dsdb/samdb/samdb.h"
# include "../libcli/security/security.h"
2007-03-02 05:58:22 +00:00
/* Size (in bytes) of the required fields in the SMBwhoami response. */
# define WHOAMI_REQUIRED_SIZE 40
/*
SMBWhoami - Query the user mapping performed by the server for the
connected tree . This is a subcommand of the TRANS2_QFSINFO .
Returns :
4 bytes unsigned - mapping flags ( smb_whoami_flags )
4 bytes unsigned - flags mask
8 bytes unsigned - primary UID
8 bytes unsigned - primary GID
4 bytes unsigned - number of supplementary GIDs
4 bytes unsigned - number of SIDs
4 bytes unsigned - SID list byte count
4 bytes - pad / reserved ( must be zero )
8 bytes unsigned [ ] - list of GIDs ( may be empty )
2010-05-21 11:25:01 +10:00
struct dom_sid [ ] - list of SIDs ( may be empty )
2007-03-02 05:58:22 +00:00
*/
struct smb_whoami
{
uint32_t mapping_flags ;
uint32_t mapping_mask ;
uint64_t server_uid ;
uint64_t server_gid ;
uint32_t num_gids ;
uint32_t num_sids ;
uint32_t num_sid_bytes ;
uint32_t reserved ; /* Must be zero */
uint64_t * gid_list ;
struct dom_sid * * sid_list ;
} ;
2007-12-03 00:28:22 +01:00
static struct smbcli_state * connect_to_server ( struct torture_context * tctx ,
2007-03-02 23:24:27 +00:00
struct cli_credentials * creds )
2007-03-02 05:58:22 +00:00
{
NTSTATUS status ;
struct smbcli_state * cli ;
2007-12-03 00:28:22 +01:00
const char * host = torture_setting_string ( tctx , " host " , NULL ) ;
const char * share = torture_setting_string ( tctx , " share " , NULL ) ;
2008-01-03 17:22:12 -06:00
struct smbcli_options options ;
2008-09-30 03:07:08 +02:00
struct smbcli_session_options session_options ;
2008-01-03 17:22:12 -06:00
2010-07-16 14:32:42 +10:00
lpcfg_smbcli_options ( tctx - > lp_ctx , & options ) ;
lpcfg_smbcli_session_options ( tctx - > lp_ctx , & session_options ) ;
2007-03-02 05:58:22 +00:00
2007-12-12 02:15:29 +01:00
status = smbcli_full_connection ( tctx , & cli , host ,
2010-07-16 14:32:42 +10:00
lpcfg_smb_ports ( tctx - > lp_ctx ) ,
share , NULL , lpcfg_socket_options ( tctx - > lp_ctx ) ,
creds , lpcfg_resolve_context ( tctx - > lp_ctx ) ,
2008-10-24 13:13:27 +02:00
tctx - > ev , & options , & session_options ,
2010-07-16 14:32:42 +10:00
lpcfg_gensec_settings ( tctx , tctx - > lp_ctx ) ) ;
2007-03-02 05:58:22 +00:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2018-01-12 13:45:33 +01:00
torture_comment ( tctx ,
" FATAL: Failed to connect to //%s/%s "
" with %s - %s \n " ,
host ,
share ,
cli_credentials_get_username ( creds ) ,
nt_errstr ( status ) ) ;
2007-03-02 05:58:22 +00:00
return NULL ;
}
return cli ;
}
2012-06-20 18:23:18 +10:00
static bool whoami_sid_parse ( void * mem_ctx ,
2007-03-02 05:58:22 +00:00
struct torture_context * torture ,
DATA_BLOB * data , size_t * offset ,
struct dom_sid * * psid )
{
size_t remain = data - > length - * offset ;
int i ;
* psid = talloc_zero ( mem_ctx , struct dom_sid ) ;
torture_assert ( torture , * psid ! = NULL , " out of memory " ) ;
torture_assert ( torture , remain > = 8 ,
" invalid SID format " ) ;
( * psid ) - > sid_rev_num = CVAL ( data - > data , * offset ) ;
( * psid ) - > num_auths = CVAL ( data - > data , * offset + 1 ) ;
memcpy ( ( * psid ) - > id_auth , data - > data + * offset + 2 , 6 ) ;
( * offset ) + = 8 ;
remain = data - > length - * offset ;
torture_assert ( torture , remain > = ( ( * psid ) - > num_auths * 4 ) ,
" invalid sub_auth byte count " ) ;
torture_assert ( torture , ( * psid ) - > num_auths > = 0 ,
" invalid sub_auth value " ) ;
torture_assert ( torture , ( * psid ) - > num_auths < = 15 ,
" invalid sub_auth value " ) ;
for ( i = 0 ; i < ( * psid ) - > num_auths ; i + + ) {
( * psid ) - > sub_auths [ i ] = IVAL ( data - > data , * offset ) ;
( * offset ) + = 4 ;
}
2007-10-06 22:28:14 +00:00
return true ;
2007-03-02 05:58:22 +00:00
}
2007-10-06 22:28:14 +00:00
static bool smb_raw_query_posix_whoami ( void * mem_ctx ,
2007-03-02 05:58:22 +00:00
struct torture_context * torture ,
struct smbcli_state * cli ,
struct smb_whoami * whoami ,
unsigned max_data )
{
struct smb_trans2 tp ;
NTSTATUS status ;
size_t offset ;
int i ;
uint16_t setup = TRANSACT2_QFSINFO ;
uint16_t info_level ;
ZERO_STRUCTP ( whoami ) ;
tp . in . max_setup = 0 ;
tp . in . flags = 0 ;
tp . in . timeout = 0 ;
tp . in . setup_count = 1 ;
tp . in . max_param = 10 ;
tp . in . max_data = ( uint16_t ) max_data ;
tp . in . setup = & setup ;
tp . in . trans_name = NULL ;
2007-03-02 23:24:27 +00:00
SSVAL ( & info_level , 0 , SMB_QFS_POSIX_WHOAMI ) ;
2007-03-02 05:58:22 +00:00
tp . in . params = data_blob_talloc ( mem_ctx , & info_level , 2 ) ;
tp . in . data = data_blob_talloc ( mem_ctx , NULL , 0 ) ;
status = smb_raw_trans2 ( cli - > tree , mem_ctx , & tp ) ;
torture_assert_ntstatus_equal ( torture , status , NT_STATUS_OK ,
2007-03-02 23:24:27 +00:00
" doing SMB_QFS_POSIX_WHOAMI " ) ;
2007-03-02 05:58:22 +00:00
/* Make sure we got back all the required fields. */
torture_assert ( torture , tp . out . params . length = = 0 ,
" trans2 params should be empty " ) ;
torture_assert ( torture , tp . out . data . length > = WHOAMI_REQUIRED_SIZE ,
" checking for required response fields " ) ;
whoami - > mapping_flags = IVAL ( tp . out . data . data , 0 ) ;
whoami - > mapping_mask = IVAL ( tp . out . data . data , 4 ) ;
whoami - > server_uid = BVAL ( tp . out . data . data , 8 ) ;
whoami - > server_gid = BVAL ( tp . out . data . data , 16 ) ;
whoami - > num_gids = IVAL ( tp . out . data . data , 24 ) ;
whoami - > num_sids = IVAL ( tp . out . data . data , 28 ) ;
whoami - > num_sid_bytes = IVAL ( tp . out . data . data , 32 ) ;
whoami - > reserved = IVAL ( tp . out . data . data , 36 ) ;
/* The GID list and SID list are optional, depending on the count
* and length fields .
*/
if ( whoami - > num_sids ! = 0 ) {
torture_assert ( torture , whoami - > num_sid_bytes ! = 0 ,
" SID count does not match byte count " ) ;
}
printf ( " \t mapping_flags=0x%08x mapping_mask=0x%08x \n " ,
whoami - > mapping_flags , whoami - > mapping_mask ) ;
2007-08-23 02:10:17 +00:00
printf ( " \t server UID=%llu GID=%llu \n " ,
( unsigned long long ) whoami - > server_uid , ( unsigned long long ) whoami - > server_gid ) ;
2007-03-02 05:58:22 +00:00
printf ( " \t %u GIDs, %u SIDs, %u SID bytes \n " ,
whoami - > num_gids , whoami - > num_sids ,
whoami - > num_sid_bytes ) ;
offset = WHOAMI_REQUIRED_SIZE ;
torture_assert_int_equal ( torture , whoami - > reserved , 0 ,
" invalid reserved field " ) ;
if ( tp . out . data . length = = offset ) {
/* No SIDs or GIDs returned */
torture_assert_int_equal ( torture , whoami - > num_gids , 0 ,
" invalid GID count " ) ;
torture_assert_int_equal ( torture , whoami - > num_sids , 0 ,
" invalid SID count " ) ;
torture_assert_int_equal ( torture , whoami - > num_sid_bytes , 0 ,
" invalid SID byte count " ) ;
2007-10-06 22:28:14 +00:00
return true ;
2007-03-02 05:58:22 +00:00
}
if ( whoami - > num_gids ! = 0 ) {
int remain = tp . out . data . length - offset ;
int gid_bytes = whoami - > num_gids * 8 ;
if ( whoami - > num_sids = = 0 ) {
torture_assert_int_equal ( torture , remain , gid_bytes ,
" GID count does not match data length " ) ;
} else {
torture_assert ( torture , remain > gid_bytes ,
" invalid GID count " ) ;
}
whoami - > gid_list = talloc_array ( mem_ctx , uint64_t , whoami - > num_gids ) ;
torture_assert ( torture , whoami - > gid_list ! = NULL , " out of memory " ) ;
2012-07-12 11:31:31 +10:00
torture_comment ( torture , " \t GIDs: \n " ) ;
2007-03-02 05:58:22 +00:00
for ( i = 0 ; i < whoami - > num_gids ; + + i ) {
whoami - > gid_list [ i ] = BVAL ( tp . out . data . data , offset ) ;
offset + = 8 ;
2012-07-12 11:31:31 +10:00
torture_comment ( torture , " \t \t %u \n " , ( unsigned int ) whoami - > gid_list [ i ] ) ;
2007-03-02 05:58:22 +00:00
}
}
/* Check if there should be data left for the SID list. */
if ( tp . out . data . length = = offset ) {
torture_assert_int_equal ( torture , whoami - > num_sids , 0 ,
" invalid SID count " ) ;
2007-10-06 22:28:14 +00:00
return true ;
2007-03-02 05:58:22 +00:00
}
/* All the remaining bytes must be the SID list. */
torture_assert_int_equal ( torture ,
whoami - > num_sid_bytes , ( tp . out . data . length - offset ) ,
" invalid SID byte count " ) ;
if ( whoami - > num_sids ! = 0 ) {
whoami - > sid_list = talloc_array ( mem_ctx , struct dom_sid * ,
whoami - > num_sids ) ;
torture_assert ( torture , whoami - > sid_list ! = NULL ,
" out of memory " ) ;
2012-07-11 13:48:55 -07:00
torture_comment ( torture , " \t SIDs: \n " ) ;
2007-03-02 05:58:22 +00:00
for ( i = 0 ; i < whoami - > num_sids ; + + i ) {
2012-06-20 18:23:18 +10:00
if ( ! whoami_sid_parse ( mem_ctx , torture ,
2007-03-02 05:58:22 +00:00
& tp . out . data , & offset ,
& whoami - > sid_list [ i ] ) ) {
2007-10-06 22:28:14 +00:00
return false ;
2007-03-02 05:58:22 +00:00
}
2012-07-11 13:48:55 -07:00
torture_comment ( torture , " \t \t %s \n " ,
dom_sid_string ( torture , whoami - > sid_list [ i ] ) ) ;
2007-03-02 05:58:22 +00:00
}
}
/* We should be at the end of the response now. */
torture_assert_int_equal ( torture , tp . out . data . length , offset ,
" trailing garbage bytes " ) ;
2007-10-06 22:28:14 +00:00
return true ;
2007-03-02 05:58:22 +00:00
}
2012-07-12 12:59:29 +10:00
static bool test_against_ldap ( struct torture_context * torture , struct ldb_context * ldb , bool is_dc ,
struct smb_whoami * whoami )
2012-06-20 18:23:18 +10:00
{
struct ldb_message * msg ;
struct ldb_message_element * el ;
const char * attrs [ ] = { " tokenGroups " , NULL } ;
int i ;
torture_assert_int_equal ( torture , dsdb_search_one ( ldb , torture , & msg , NULL , LDB_SCOPE_BASE , attrs , 0 , NULL ) , LDB_SUCCESS , " searching for tokenGroups " ) ;
el = ldb_msg_find_element ( msg , " tokenGroups " ) ;
torture_assert ( torture , el , " obtaining tokenGroups " ) ;
2012-07-12 12:59:29 +10:00
torture_assert ( torture , el - > num_values > 0 , " Number of SIDs from LDAP needs to be more than 0 " ) ;
torture_assert ( torture , whoami - > num_sids > 0 , " Number of SIDs from LDAP needs to be more than 0 " ) ;
if ( is_dc ) {
torture_assert_int_equal ( torture , el - > num_values , whoami - > num_sids , " Number of SIDs from LDAP and number of SIDs from CIFS does not match! " ) ;
for ( i = 0 ; i < el - > num_values ; i + + ) {
struct dom_sid * sid = talloc ( torture , struct dom_sid ) ;
2019-03-11 17:11:06 +01:00
ssize_t ret ;
2012-07-12 12:59:29 +10:00
torture_assert ( torture , sid ! = NULL , " talloc failed " ) ;
2019-03-11 16:55:57 +01:00
ret = sid_parse ( el - > values [ i ] . data ,
el - > values [ i ] . length , sid ) ;
2015-08-24 16:46:12 +02:00
torture_assert ( torture ,
2019-03-11 17:11:06 +01:00
ret ! = - 1 ,
2015-08-24 16:46:12 +02:00
" sid parse failed " ) ;
2012-07-12 12:59:29 +10:00
torture_assert_str_equal ( torture , dom_sid_string ( sid , sid ) , dom_sid_string ( sid , whoami - > sid_list [ i ] ) , " SID from LDAP and SID from CIFS does not match! " ) ;
talloc_free ( sid ) ;
}
} else {
unsigned int num_domain_sids_dc = 0 , num_domain_sids_member = 0 ;
struct dom_sid * user_sid = talloc ( torture , struct dom_sid ) ;
struct dom_sid * dom_sid = talloc ( torture , struct dom_sid ) ;
struct dom_sid * dc_sids = talloc_array ( torture , struct dom_sid , el - > num_values ) ;
struct dom_sid * member_sids = talloc_array ( torture , struct dom_sid , whoami - > num_sids ) ;
2019-03-11 17:11:06 +01:00
ssize_t ret ;
2012-07-12 12:59:29 +10:00
torture_assert ( torture , user_sid ! = NULL , " talloc failed " ) ;
2019-03-11 16:55:57 +01:00
ret = sid_parse ( el - > values [ 0 ] . data ,
el - > values [ 0 ] . length ,
user_sid ) ;
torture_assert ( torture ,
2019-03-11 17:11:06 +01:00
ret ! = - 1 ,
2015-08-24 16:46:12 +02:00
" sid parse failed " ) ;
2012-07-12 12:59:29 +10:00
torture_assert_ntstatus_equal ( torture , dom_sid_split_rid ( torture , user_sid , & dom_sid , NULL ) , NT_STATUS_OK , " failed to split domain SID from user SID " ) ;
for ( i = 0 ; i < el - > num_values ; i + + ) {
struct dom_sid * sid = talloc ( dc_sids , struct dom_sid ) ;
torture_assert ( torture , sid ! = NULL , " talloc failed " ) ;
2019-03-11 16:55:57 +01:00
ret = sid_parse ( el - > values [ i ] . data ,
el - > values [ i ] . length ,
sid ) ;
2015-08-24 16:46:12 +02:00
torture_assert ( torture ,
2019-03-11 17:11:06 +01:00
ret ! = - 1 ,
2015-08-24 16:46:12 +02:00
" sid parse failed " ) ;
2012-07-12 12:59:29 +10:00
if ( dom_sid_in_domain ( dom_sid , sid ) ) {
dc_sids [ num_domain_sids_dc ] = * sid ;
num_domain_sids_dc + + ;
}
talloc_free ( sid ) ;
}
2012-06-20 18:23:18 +10:00
2012-07-12 12:59:29 +10:00
for ( i = 0 ; i < whoami - > num_sids ; i + + ) {
if ( dom_sid_in_domain ( dom_sid , whoami - > sid_list [ i ] ) ) {
member_sids [ num_domain_sids_member ] = * whoami - > sid_list [ i ] ;
num_domain_sids_member + + ;
}
}
2012-06-20 18:23:18 +10:00
2012-07-12 12:59:29 +10:00
torture_assert_int_equal ( torture , num_domain_sids_dc , num_domain_sids_member , " Number of Domain SIDs from LDAP DC and number of SIDs from CIFS member does not match! " ) ;
for ( i = 0 ; i < num_domain_sids_dc ; i + + ) {
torture_assert_str_equal ( torture , dom_sid_string ( dc_sids , & dc_sids [ i ] ) , dom_sid_string ( member_sids , & member_sids [ i ] ) , " Domain SID from LDAP DC and SID from CIFS member server does not match! " ) ;
}
talloc_free ( dc_sids ) ;
talloc_free ( member_sids ) ;
2012-06-20 18:23:18 +10:00
}
return true ;
}
2007-10-06 22:28:14 +00:00
bool torture_unix_whoami ( struct torture_context * torture )
2007-03-02 05:58:22 +00:00
{
struct smbcli_state * cli ;
struct smb_whoami whoami ;
2015-03-23 01:55:02 +01:00
bool ret = false ;
2012-06-20 18:23:18 +10:00
struct ldb_context * ldb ;
2012-07-12 12:59:29 +10:00
const char * addc , * host ;
2007-03-02 05:58:22 +00:00
2017-05-09 16:10:03 -07:00
cli = connect_to_server ( torture , popt_get_cmdline_credentials ( ) ) ;
2012-06-20 17:26:48 +10:00
torture_assert ( torture , cli , " connecting to server with authenticated credentials " ) ;
2007-03-02 05:58:22 +00:00
/* Test basic authenticated mapping. */
2012-06-20 17:26:48 +10:00
torture_assert_goto ( torture , smb_raw_query_posix_whoami ( torture , torture ,
cli , & whoami , 0xFFFF ) , ret , fail ,
" calling SMB_QFS_POSIX_WHOAMI on an authenticated connection " ) ;
2007-03-02 05:58:22 +00:00
2012-07-12 13:32:37 +10:00
/* Check that our anonymous login mapped us to guest on the server, but
* only if the server supports this .
*/
if ( whoami . mapping_mask & SMB_WHOAMI_GUEST ) {
bool guest = whoami . mapping_flags & SMB_WHOAMI_GUEST ;
torture_comment ( torture , " checking whether we were logged in as guest... %s \n " ,
guest ? " YES " : " NO " ) ;
2017-05-09 16:10:03 -07:00
torture_assert ( torture ,
cli_credentials_is_anonymous (
popt_get_cmdline_credentials ( ) ) = = guest ,
2012-07-12 13:32:37 +10:00
" login did not credentials map to guest " ) ;
} else {
torture_comment ( torture , " server does not support SMB_WHOAMI_GUEST flag \n " ) ;
}
2012-07-12 12:59:29 +10:00
addc = torture_setting_string ( torture , " addc " , NULL ) ;
host = torture_setting_string ( torture , " host " , NULL ) ;
if ( addc ) {
ldb = ldb_wrap_connect ( torture , torture - > ev , torture - > lp_ctx , talloc_asprintf ( torture , " ldap://%s " , addc ) ,
2017-05-09 16:10:03 -07:00
NULL , popt_get_cmdline_credentials ( ) , 0 ) ;
2012-06-20 18:23:18 +10:00
torture_assert ( torture , ldb , " ldb connect failed " ) ;
/* We skip this testing if we could not contact the LDAP server */
2012-07-12 12:59:29 +10:00
if ( ! test_against_ldap ( torture , ldb , strcasecmp ( addc , host ) = = 0 , & whoami ) ) {
2012-06-20 18:23:18 +10:00
goto fail ;
}
}
2007-03-02 05:58:22 +00:00
/* Test that the server drops the UID and GID list. */
2012-06-20 17:26:48 +10:00
torture_assert_goto ( torture , smb_raw_query_posix_whoami ( torture , torture ,
cli , & whoami , 0x40 ) , ret , fail ,
" calling SMB_QFS_POSIX_WHOAMI with a small buffer \n " ) ;
2007-03-02 05:58:22 +00:00
torture_assert_int_equal ( torture , whoami . num_gids , 0 ,
" invalid GID count " ) ;
torture_assert_int_equal ( torture , whoami . num_sids , 0 ,
" invalid SID count " ) ;
torture_assert_int_equal ( torture , whoami . num_sid_bytes , 0 ,
" invalid SID bytes count " ) ;
smbcli_tdis ( cli ) ;
2007-10-06 22:28:14 +00:00
return true ;
2012-06-20 17:26:48 +10:00
fail :
smbcli_tdis ( cli ) ;
return ret ;
2007-03-02 05:58:22 +00:00
}
/* vim: set sts=8 sw=8 : */
