sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-26 10:04:02 +03:00
Code
samba-mirror/source4/torture/ndr
History
Gary Lockyer ee4617ec5f librpc dnsp test: Ensure length matches union selector 
Ensure that a dnsp_DnsProperty is rejected if the length data does not not
correspond to the length indicated by the union id.  It was possible for
the union to be referencing memory past the end of the structure.

Found by Douglas Bagnall using Hongfuzz and the new fuzz_ndr_X fuzzer.

Bug: https://bugzilla.samba.org/show_bug.cgi?id=14206
Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2019-12-12 00:35:30 +00:00
..
atsvc.c
source4/torture/ndr: Fix prototypes for all functions.
2011-03-19 03:20:05 +01:00
backupkey.c
s4-torture: cleanup torture_suite_add_ndr_pull_validate_test API.
2016-09-07 09:28:13 +02:00
cabinet.c
ndr: Free memory in torture test to satisfy sanitizer
2019-08-08 10:08:32 +00:00
charset.c
s4-torture: add some NDR tests for validating ndr_push_charset behavior.
2017-01-24 10:53:17 +01:00
clusapi.c
ndr: Free memory in torture test to satisfy sanitizer
2019-08-08 10:08:32 +00:00
dfs.c
source4/torture/ndr: Fix prototypes for all functions.
2011-03-19 03:20:05 +01:00
dfsblob.c
torture-ndr: fixed NDR tests for DFS blobs
2011-09-08 03:35:27 +02:00
dnsp.c
librpc dnsp test: Ensure length matches union selector
2019-12-12 00:35:30 +00:00
drsblobs.c
s4-torture: cleanup torture_suite_add_ndr_pull_validate_test API.
2016-09-07 09:28:13 +02:00
drsuapi.c
s4-torture: fix gcc6 build warning.
2016-02-06 21:48:18 +01:00
epmap.c
s4:torture/ndr: #if 0 unused code
2015-03-20 20:43:12 +01:00
krb5pac.c
s4-torture: cleanup torture_suite_add_ndr_pull_validate_test API.
2016-09-07 09:28:13 +02:00
lsa.c
s4:torture/ndr: #if 0 unused code
2015-03-20 20:43:12 +01:00
nbt.c
s4-torture: cleanup torture_suite_add_ndr_pull_validate_test API.
2016-09-07 09:28:13 +02:00
ndr.c
librpc dnsp test: Ensure length matches union selector
2019-12-12 00:35:30 +00:00
ndr.h
librpc dnsp test: Ensure length matches union selector
2019-12-12 00:35:30 +00:00
negoex.c
s4-torture: cleanup torture_suite_add_ndr_pull_validate_test API.
2016-09-07 09:28:13 +02:00
netlogon.c
s4-torture: add netr_LogonGetDomainInfo NDR(64) tests
2019-09-20 02:32:44 +00:00
ntlmssp.c
s4-torture: cleanup torture_suite_add_ndr_pull_validate_test API.
2016-09-07 09:28:13 +02:00
ntprinting.c
s4-torture: rename torture_suite_add_ndr_pullpush_test to torture_suite_add_ndr_pull_validate_test.
2016-07-20 21:27:17 +02:00
README
torture: Update ndr README.
2013-03-15 13:51:51 +01:00
samr.c
s4-torture: fix gcc6 build warning.
2016-02-06 21:48:18 +01:00
spoolss.c
s4-torture: add more NDR tests for GetCorePrinterDrivers
2017-01-24 14:42:34 +01:00
string.c
ndr tests: silence a harmless warning
2017-03-02 04:35:14 +01:00
winreg.c
werror: replace WERR_INVALID_PARAM with WERR_INVALID_PARAMETER in source4/torture/
2016-09-28 00:04:23 +02:00
winspool.c
s4-torture: add IRemoteWinspool ndr testsuite.
2016-09-22 12:29:28 +02:00
witness.c
s4-torture: add test to verify WITNESS_NOTIFY_CLIENT_MOVE message marshalling.
2015-09-24 19:32:22 +02:00

README 

use
	hexdump -v -e '12/1 "0x%02x, " "\n"' infile|outfile

to import ndr dumps


Or use gdb:

(gdb) b dump_printer
Breakpoint 1 at 0x49c92f: file ../source3/utils/net_printing.c, line 158.
(gdb) cond 1 strcmp(key_name, "s0bc") == 0
(gdb) run
Breakpoint 1, dump_printer (mem_ctx=0x700a20, key_name=0x11fb8f9 "s0bc", data=0x18f93d0 "H\032", length=1284, do_string_conversion=true) at ../source3/utils/net_printing.c:158
158             printf("found printer: %s\n", key_name);

-> Now use x/<length in byte>bx

(gdb) x/1284bx data

This prints data as hex values. 1284 is the length in byte (see the length
argument of the function). The b indicates byte.