mirror of
https://github.com/samba-team/samba.git
synced 2025-01-19 10:03:58 +03:00
9f1210a243
and made them private (This used to be commit 386ac565c452ede1d74e06acb401ca9db99d3ff3)
438 lines
13 KiB
C
438 lines
13 KiB
C
/*
|
|
Unix SMB/CIFS implementation.
|
|
test suite for session setup operations
|
|
Copyright (C) Andrew Tridgell 2003
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program; if not, write to the Free Software
|
|
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*/
|
|
|
|
#include "includes.h"
|
|
#include "libcli/raw/libcliraw.h"
|
|
|
|
#define BASEDIR "\\rawcontext"
|
|
|
|
#define CHECK_STATUS(status, correct) do { \
|
|
if (!NT_STATUS_EQUAL(status, correct)) { \
|
|
printf("(%s) Incorrect status %s - should be %s\n", \
|
|
__location__, nt_errstr(status), nt_errstr(correct)); \
|
|
ret = False; \
|
|
goto done; \
|
|
}} while (0)
|
|
|
|
#define CHECK_VALUE(v, correct) do { \
|
|
if ((v) != (correct)) { \
|
|
printf("(%s) Incorrect value %s=%d - should be %d\n", \
|
|
__location__, #v, v, correct); \
|
|
ret = False; \
|
|
goto done; \
|
|
}} while (0)
|
|
|
|
#define CHECK_NOT_VALUE(v, correct) do { \
|
|
if ((v) == (correct)) { \
|
|
printf("(%s) Incorrect value %s=%d - should not be %d\n", \
|
|
__location__, #v, v, correct); \
|
|
ret = False; \
|
|
goto done; \
|
|
}} while (0)
|
|
|
|
|
|
/*
|
|
test session ops
|
|
*/
|
|
static BOOL test_session(struct smbcli_state *cli, TALLOC_CTX *mem_ctx)
|
|
{
|
|
NTSTATUS status;
|
|
BOOL ret = True;
|
|
const char *username, *domain, *password;
|
|
struct smbcli_session *session;
|
|
struct smbcli_session *session2;
|
|
struct smbcli_session *session3;
|
|
struct smbcli_tree *tree;
|
|
union smb_sesssetup setup;
|
|
union smb_open io;
|
|
union smb_write wr;
|
|
union smb_close cl;
|
|
int fnum;
|
|
const char *fname = BASEDIR "\\test.txt";
|
|
char c = 1;
|
|
|
|
printf("TESTING SESSION HANDLING\n");
|
|
|
|
if (smbcli_deltree(cli->tree, BASEDIR) == -1 ||
|
|
NT_STATUS_IS_ERR(smbcli_mkdir(cli->tree, BASEDIR))) {
|
|
printf("Unable to setup %s - %s\n", BASEDIR, smbcli_errstr(cli->tree));
|
|
return False;
|
|
}
|
|
|
|
username = lp_parm_string(-1, "torture", "username");
|
|
password = lp_parm_string(-1, "torture", "password");
|
|
domain = lp_parm_string(-1, "torture", "userdomain");
|
|
|
|
printf("create a second security context on the same transport\n");
|
|
session = smbcli_session_init(cli->transport);
|
|
|
|
setup.generic.level = RAW_SESSSETUP_GENERIC;
|
|
setup.generic.in.sesskey = cli->transport->negotiate.sesskey;
|
|
setup.generic.in.capabilities = cli->transport->negotiate.capabilities; /* ignored in secondary session setup, except by our libs, which care about the extended security bit */
|
|
setup.generic.in.password = password;
|
|
setup.generic.in.user = username;
|
|
setup.generic.in.domain = domain;
|
|
|
|
status = smb_raw_session_setup(session, mem_ctx, &setup);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
|
|
session->vuid = setup.generic.out.vuid;
|
|
|
|
printf("create a third security context on the same transport, with vuid set\n");
|
|
session2 = smbcli_session_init(cli->transport);
|
|
|
|
session2->vuid = session->vuid;
|
|
setup.generic.level = RAW_SESSSETUP_GENERIC;
|
|
setup.generic.in.sesskey = cli->transport->negotiate.sesskey;
|
|
setup.generic.in.capabilities = cli->transport->negotiate.capabilities; /* ignored in secondary session setup, except by our libs, which care about the extended security bit */
|
|
setup.generic.in.password = password;
|
|
setup.generic.in.user = username;
|
|
setup.generic.in.domain = domain;
|
|
|
|
status = smb_raw_session_setup(session2, mem_ctx, &setup);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
|
|
session2->vuid = setup.generic.out.vuid;
|
|
printf("vuid1=%d vuid2=%d vuid3=%d\n", cli->session->vuid, session->vuid, session2->vuid);
|
|
|
|
CHECK_NOT_VALUE(session->vuid, session2->vuid);
|
|
talloc_free(session2);
|
|
|
|
if (cli->transport->negotiate.capabilities & CAP_EXTENDED_SECURITY) {
|
|
printf("create a fourth security context on the same transport, without extended security\n");
|
|
session3 = smbcli_session_init(cli->transport);
|
|
|
|
session3->vuid = session->vuid;
|
|
setup.generic.level = RAW_SESSSETUP_GENERIC;
|
|
setup.generic.in.sesskey = cli->transport->negotiate.sesskey;
|
|
setup.generic.in.capabilities = 0; /* force a non extended security login (should fail) */
|
|
setup.generic.in.password = password;
|
|
setup.generic.in.user = username;
|
|
setup.generic.in.domain = domain;
|
|
|
|
status = smb_raw_session_setup(session3, mem_ctx, &setup);
|
|
CHECK_STATUS(status, NT_STATUS_ACCESS_DENIED);
|
|
|
|
talloc_free(session3);
|
|
}
|
|
|
|
printf("use the same tree as the existing connection\n");
|
|
tree = smbcli_tree_init(session);
|
|
tree->tid = cli->tree->tid;
|
|
|
|
printf("create a file using the new vuid\n");
|
|
io.generic.level = RAW_OPEN_NTCREATEX;
|
|
io.ntcreatex.in.root_fid = 0;
|
|
io.ntcreatex.in.flags = 0;
|
|
io.ntcreatex.in.access_mask = SEC_RIGHT_MAXIMUM_ALLOWED;
|
|
io.ntcreatex.in.create_options = 0;
|
|
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
|
|
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_READ | NTCREATEX_SHARE_ACCESS_WRITE;
|
|
io.ntcreatex.in.alloc_size = 0;
|
|
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
|
|
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
|
|
io.ntcreatex.in.security_flags = 0;
|
|
io.ntcreatex.in.fname = fname;
|
|
status = smb_raw_open(tree, mem_ctx, &io);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
fnum = io.ntcreatex.out.fnum;
|
|
|
|
printf("write using the old vuid\n");
|
|
wr.generic.level = RAW_WRITE_WRITEX;
|
|
wr.writex.in.fnum = fnum;
|
|
wr.writex.in.offset = 0;
|
|
wr.writex.in.wmode = 0;
|
|
wr.writex.in.remaining = 0;
|
|
wr.writex.in.count = 1;
|
|
wr.writex.in.data = &c;
|
|
|
|
status = smb_raw_write(cli->tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
printf("write with the new vuid\n");
|
|
status = smb_raw_write(tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
CHECK_VALUE(wr.writex.out.nwritten, 1);
|
|
|
|
printf("logoff the new vuid\n");
|
|
status = smb_raw_ulogoff(session);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
talloc_free(session);
|
|
|
|
printf("the new vuid should not now be accessible\n");
|
|
status = smb_raw_write(tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
printf("the fnum should have been auto-closed\n");
|
|
cl.close.level = RAW_CLOSE_CLOSE;
|
|
cl.close.in.fnum = fnum;
|
|
cl.close.in.write_time = 0;
|
|
status = smb_raw_close(cli->tree, &cl);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
talloc_free(tree);
|
|
|
|
done:
|
|
return ret;
|
|
}
|
|
|
|
|
|
/*
|
|
test tree ops
|
|
*/
|
|
static BOOL test_tree(struct smbcli_state *cli, TALLOC_CTX *mem_ctx)
|
|
{
|
|
NTSTATUS status;
|
|
BOOL ret = True;
|
|
const char *share;
|
|
struct smbcli_tree *tree;
|
|
union smb_tcon tcon;
|
|
union smb_open io;
|
|
union smb_write wr;
|
|
union smb_close cl;
|
|
int fnum;
|
|
const char *fname = BASEDIR "\\test.txt";
|
|
char c = 1;
|
|
|
|
printf("TESTING TREE HANDLING\n");
|
|
|
|
if (smbcli_deltree(cli->tree, BASEDIR) == -1 ||
|
|
NT_STATUS_IS_ERR(smbcli_mkdir(cli->tree, BASEDIR))) {
|
|
printf("Unable to setup %s - %s\n", BASEDIR, smbcli_errstr(cli->tree));
|
|
return False;
|
|
}
|
|
|
|
share = lp_parm_string(-1, "torture", "share");
|
|
|
|
printf("create a second tree context on the same session\n");
|
|
tree = smbcli_tree_init(cli->session);
|
|
|
|
tcon.generic.level = RAW_TCON_TCONX;
|
|
tcon.tconx.in.flags = 0;
|
|
tcon.tconx.in.password = data_blob(NULL, 0);
|
|
tcon.tconx.in.path = share;
|
|
tcon.tconx.in.device = "A:";
|
|
status = smb_tree_connect(tree, mem_ctx, &tcon);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
|
|
tree->tid = tcon.tconx.out.cnum;
|
|
printf("tid1=%d tid2=%d\n", cli->tree->tid, tree->tid);
|
|
|
|
printf("try a tconx with a bad device type\n");
|
|
tcon.tconx.in.device = "FOO";
|
|
status = smb_tree_connect(tree, mem_ctx, &tcon);
|
|
CHECK_STATUS(status, NT_STATUS_BAD_DEVICE_TYPE);
|
|
|
|
|
|
printf("create a file using the new tid\n");
|
|
io.generic.level = RAW_OPEN_NTCREATEX;
|
|
io.ntcreatex.in.root_fid = 0;
|
|
io.ntcreatex.in.flags = 0;
|
|
io.ntcreatex.in.access_mask = SEC_RIGHT_MAXIMUM_ALLOWED;
|
|
io.ntcreatex.in.create_options = 0;
|
|
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
|
|
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_READ | NTCREATEX_SHARE_ACCESS_WRITE;
|
|
io.ntcreatex.in.alloc_size = 0;
|
|
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
|
|
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
|
|
io.ntcreatex.in.security_flags = 0;
|
|
io.ntcreatex.in.fname = fname;
|
|
status = smb_raw_open(tree, mem_ctx, &io);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
fnum = io.ntcreatex.out.fnum;
|
|
|
|
printf("write using the old tid\n");
|
|
wr.generic.level = RAW_WRITE_WRITEX;
|
|
wr.writex.in.fnum = fnum;
|
|
wr.writex.in.offset = 0;
|
|
wr.writex.in.wmode = 0;
|
|
wr.writex.in.remaining = 0;
|
|
wr.writex.in.count = 1;
|
|
wr.writex.in.data = &c;
|
|
|
|
status = smb_raw_write(cli->tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
printf("write with the new tid\n");
|
|
status = smb_raw_write(tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
CHECK_VALUE(wr.writex.out.nwritten, 1);
|
|
|
|
printf("disconnect the new tid\n");
|
|
status = smb_tree_disconnect(tree);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
|
|
printf("the new tid should not now be accessible\n");
|
|
status = smb_raw_write(tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
printf("the fnum should have been auto-closed\n");
|
|
cl.close.level = RAW_CLOSE_CLOSE;
|
|
cl.close.in.fnum = fnum;
|
|
cl.close.in.write_time = 0;
|
|
status = smb_raw_close(cli->tree, &cl);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
/* close down the new tree */
|
|
talloc_free(tree);
|
|
|
|
done:
|
|
return ret;
|
|
}
|
|
|
|
|
|
/*
|
|
test pid ops
|
|
*/
|
|
static BOOL test_pid(struct smbcli_state *cli, TALLOC_CTX *mem_ctx)
|
|
{
|
|
NTSTATUS status;
|
|
BOOL ret = True;
|
|
union smb_open io;
|
|
union smb_write wr;
|
|
union smb_close cl;
|
|
int fnum;
|
|
const char *fname = BASEDIR "\\test.txt";
|
|
char c = 1;
|
|
uint16_t pid1, pid2;
|
|
|
|
printf("TESTING PID HANDLING\n");
|
|
|
|
if (smbcli_deltree(cli->tree, BASEDIR) == -1 ||
|
|
NT_STATUS_IS_ERR(smbcli_mkdir(cli->tree, BASEDIR))) {
|
|
printf("Unable to setup %s - %s\n", BASEDIR, smbcli_errstr(cli->tree));
|
|
return False;
|
|
}
|
|
|
|
printf("create a second pid\n");
|
|
pid1 = cli->session->pid;
|
|
pid2 = pid1+1;
|
|
|
|
printf("pid1=%d pid2=%d\n", pid1, pid2);
|
|
|
|
printf("create a file using the new pid\n");
|
|
cli->session->pid = pid2;
|
|
io.generic.level = RAW_OPEN_NTCREATEX;
|
|
io.ntcreatex.in.root_fid = 0;
|
|
io.ntcreatex.in.flags = 0;
|
|
io.ntcreatex.in.access_mask = SEC_RIGHT_MAXIMUM_ALLOWED;
|
|
io.ntcreatex.in.create_options = 0;
|
|
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
|
|
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_READ | NTCREATEX_SHARE_ACCESS_WRITE;
|
|
io.ntcreatex.in.alloc_size = 0;
|
|
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
|
|
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
|
|
io.ntcreatex.in.security_flags = 0;
|
|
io.ntcreatex.in.fname = fname;
|
|
status = smb_raw_open(cli->tree, mem_ctx, &io);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
fnum = io.ntcreatex.out.fnum;
|
|
|
|
printf("write using the old pid\n");
|
|
cli->session->pid = pid1;
|
|
wr.generic.level = RAW_WRITE_WRITEX;
|
|
wr.writex.in.fnum = fnum;
|
|
wr.writex.in.offset = 0;
|
|
wr.writex.in.wmode = 0;
|
|
wr.writex.in.remaining = 0;
|
|
wr.writex.in.count = 1;
|
|
wr.writex.in.data = &c;
|
|
|
|
status = smb_raw_write(cli->tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
CHECK_VALUE(wr.writex.out.nwritten, 1);
|
|
|
|
printf("write with the new pid\n");
|
|
cli->session->pid = pid2;
|
|
status = smb_raw_write(cli->tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
CHECK_VALUE(wr.writex.out.nwritten, 1);
|
|
|
|
printf("exit the old pid\n");
|
|
cli->session->pid = pid1;
|
|
status = smb_raw_exit(cli->session);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
|
|
printf("the fnum should still be accessible\n");
|
|
cli->session->pid = pid1;
|
|
status = smb_raw_write(cli->tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
CHECK_VALUE(wr.writex.out.nwritten, 1);
|
|
|
|
printf("exit the new pid\n");
|
|
cli->session->pid = pid2;
|
|
status = smb_raw_exit(cli->session);
|
|
CHECK_STATUS(status, NT_STATUS_OK);
|
|
|
|
printf("the fnum should not now be accessible\n");
|
|
cli->session->pid = pid1;
|
|
status = smb_raw_write(cli->tree, &wr);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
printf("the fnum should have been auto-closed\n");
|
|
cl.close.level = RAW_CLOSE_CLOSE;
|
|
cl.close.in.fnum = fnum;
|
|
cl.close.in.write_time = 0;
|
|
status = smb_raw_close(cli->tree, &cl);
|
|
CHECK_STATUS(status, NT_STATUS_INVALID_HANDLE);
|
|
|
|
done:
|
|
return ret;
|
|
}
|
|
|
|
|
|
/*
|
|
basic testing of session/tree context calls
|
|
*/
|
|
BOOL torture_raw_context(void)
|
|
{
|
|
struct smbcli_state *cli;
|
|
BOOL ret = True;
|
|
TALLOC_CTX *mem_ctx;
|
|
|
|
lp_set_cmdline("use spnego", "False");
|
|
|
|
if (!torture_open_connection(&cli)) {
|
|
return False;
|
|
}
|
|
|
|
mem_ctx = talloc_init("torture_raw_context");
|
|
|
|
if (!test_session(cli, mem_ctx)) {
|
|
ret = False;
|
|
}
|
|
|
|
if (!test_tree(cli, mem_ctx)) {
|
|
ret = False;
|
|
}
|
|
|
|
if (!test_pid(cli, mem_ctx)) {
|
|
ret = False;
|
|
}
|
|
|
|
smb_raw_exit(cli->session);
|
|
smbcli_deltree(cli->tree, BASEDIR);
|
|
|
|
torture_close_connection(cli);
|
|
talloc_destroy(mem_ctx);
|
|
|
|
return ret;
|
|
}
|