summaryrefslogtreecommitdiff
path: root/source4/torture/rpc/samr.c
AgeCommit message (Collapse)AuthorFilesLines
2008-03-14Rework our SAMR test and SAMR server.Andrew Bartlett1-25/+62
Now that we don't create users/domain groups/aliases in the builtin domain, we hit some bugs in the server-side implementation of the enumeration functions. In essence, it turns out to be: don't treat 0 as a special case. Also, fix up the PDC name to always be returned. I'm sure nothing actually uses it, particularly for BUILTIN... Andrew Bartlett (This used to be commit 353bb79f568f20c8469cb9458f7b14c24612ad23)
2008-02-28Generate ACB_PW_EXPIRED correctlyAndrew Bartlett1-8/+37
More correctly handle expired passwords, and do not expire machine accounts. Test that the behaviour is consistant with windows, using the RPC-SAMR test. Change NETLOGON to directly query the userAccountControl, just because we don't want to do the extra expiry processing here. Andrew Bartlett (This used to be commit acda1f69bc9b9c43e157e254d0bae54d11363661)
2007-12-21r26453: Janitorial: Don't use a static char[] in smb_readline_replacement.Kai Blin1-0/+1
Fix up callers to free the memory returned, as that is needed if we use the original readline function as well. (This used to be commit c81ead1c38f417d442157b21d0d389f6a540c6f9)
2007-12-21r26252: Specify loadparm_context explicitly when creating sessions.Jelmer Vernooij1-59/+58
(This used to be commit 7280c1e9415daabb2712db1372e23f9846272ede)
2007-12-21r26250: Avoid global_loadparm in a couple more places.Jelmer Vernooij1-78/+78
(This used to be commit 2c6b755309fdf685cd0b0564272bf83038574a43)
2007-10-10r25554: Convert last instances of BOOL, True and False to the standard types.Jelmer Vernooij1-431/+431
(This used to be commit 566aa14139510788548a874e9213d91317f83ca9)
2007-10-10r25430: Add the loadparm context to all parametric options.Jelmer Vernooij1-8/+8
(This used to be commit fd697d77c9fe67a00939a1f04b35c451316fff58)
2007-10-10r25035: Fix some more warnings, use service pointer rather than service ↵Jelmer Vernooij1-8/+8
number in more places. (This used to be commit df9cebcb97e20564359097148665bd519f31bc6f)
2007-10-10r25026: Move param/param.h out of includes.hJelmer Vernooij1-0/+1
(This used to be commit abe8349f9b4387961ff3665d8c589d61cd2edf31)
2007-10-10r24972: Try to rat out this SAMR failure with some more cross-tests, andAndrew Bartlett1-4/+17
format checks. Andrew Bartlett (This used to be commit 33deecbfc339c571cc043085f8aa87053dbd4c72)
2007-10-10r24971: Test more combinations for resetting the account expiry.Andrew Bartlett1-0/+4
Andrew Bartlett (This used to be commit 8844f4796c76c103ce4eaff477c615e74c655e68)
2007-10-10r24942: Patch from Matthias Wallnöfer <mwallnoefer@yahoo.de> and a testsuiteAndrew Bartlett1-0/+5
to prove it is correct. This should fix bug #4824: User Manager for Domains - Account Expires. Thanks! Andrew Bartlett (This used to be commit e5f0744d627ccfcc2e301fc38d139742f0ea5934)
2007-10-10r24611: Following up on the re-opening of bug 4817 is it pretty clear thatAndrew Bartlett1-57/+180
machine accounts are not subject to password policy in Win2k3 R2 (at least in terms of password quality). In testing this, I found that Win2k3 R2 has changed the way the old ChangePassword RPC call is handled - the 'cross-checks' between new LM and NT passwords are not required. Andrew Bartlett (This used to be commit 417ea885b41cc097a0bb3a10ffbffb31f234f25d)
2007-10-10r24557: rename 'dcerpc_table_' -> 'ndr_table_'Stefan Metzmacher1-3/+3
metze (This used to be commit 84651aee81aaabbebf52ffc3fbcbabb2eec6eed5)
2007-10-10r24083: Don't fail the test (looking for the user in the enum) if we didn'tAndrew Bartlett1-3/+7
create the user in the first place. Andrew Bartlett (This used to be commit db0f81734d39b228dbfcf53b911edf83a2a2fd8c)
2007-10-10r24081: Domain Controllers are also shown in this enumeration.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit 3e332ff77120003da2a23df8e0d30a330847f0f1)
2007-10-10r24080: Set the primary group (matching windows) when creating new users inAndrew Bartlett1-4/+27
SAMR. This can't be done in the ldb templates code, as it doesn't happen over direct LDAP. As noted in bug #4829. Andrew Bartlett (This used to be commit 3bfa6dbf7ded06df78310f7bd39d8a8d4edbb4ef)
2007-10-10r24059: Fix bug 4822 reported by Matthias Wallnöfer <mwallnoefer@yahoo.de>.Andrew Bartlett1-0/+10
Any SAMR client (usrmgr.exe in this case) that attempted to set a property to a zero length string found instead the the old value was kept. In fixing this, rework the macros to be cleaner (add the always-present .string) to every macro, and remove the use of the samdb_modify() and samdb_replace() wrappers where possible. Andrew Bartlett (This used to be commit b05fe693047c09b85c7fc0e1ea8d931c99910375)
2007-10-10r24053: Ensure we filter EnumDomainUsers with the supplied mask.Andrew Bartlett1-22/+80
Should fix another part (list of domains in usrmgr incorrectly including accounts) of bug #4815 by mwallnoefer@yahoo.de. Andrew Bartlett (This used to be commit 7f7e4fe2989ef4cb7ec0f855b25e558f3bbd18c5)
2007-10-10r24052: Fix some of the NT4 usrmgr.exe portions of bug 4815.Andrew Bartlett1-11/+195
- The icons in usermgr were incorrect, because the acct_flags were not filled in (due to missing attribute in ldb query) - The Full name was missing, and the description used as the full name (due to missing attributes in ldb query and incorrect IDL) To prove the correctness of these fixes, I added a substantial new test to RPC-SAMR-USERS, to ensure cross-consistancy between QueryDisplayInfo and QueryUserInfo on each user. This showed that for some reason, we must add ACB_NORMAL to the acct_flags on level 2 queries (for machine trust accounts)... Getting this right is important, because Samba3's RPC winbind methods uses these queries. Andrew Bartlett (This used to be commit 9475d94a61e36b3507e5fd2e6bb6f0667db4a607)
2007-10-10r23792: convert Samba4 to GPLv3Andrew Tridgell1-3/+2
There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
2007-10-10r23365: Try to make Windows Vista join again. On my new test environment, itAndrew Bartlett1-2/+28
wants to check for an existing domain join account, and fails. This test shows that we need to return NT_STATUS_NONE_MAPPED when nothing matches. (not yet tested if this helps vista). Andrew Bartlett (This used to be commit 7f3671bf11cab36a5c795d7db86f85081b73bc71)
2007-10-10r21727: Walk some more of the error branches in the ChangePasswordUser server.Andrew Bartlett1-0/+100
Andrew (This used to be commit c1ee06703ac09708a8ff10a641b593362f1bd309)
2007-10-10r21719: Try to cover more of the server-side password processing.Andrew Bartlett1-16/+149
Don't just exit the test with 'return True', actually process the result. Turn off password complexity checking for the password length test. Andrew Bartlett (This used to be commit 1a7635baa701c6268eebd84dd0dc187379c44e6e)
2007-10-10r21697: Try to cover the 'bad session key' codepaths too.Andrew Bartlett1-0/+54
Andrew Bartlett (This used to be commit 33cfe1ca221de9ef9dec264772fb299125c39447)
2007-10-10r20149: Remove the smb.conf distinction between PDC and BDC. Now the correctAndrew Bartlett1-0/+17
way to setup a Samba4 DC is to set 'server role = domain controller'. We use the fSMORoleOwner attribute in the base DN to determine the PDC. This patch is quite large, as I have corrected a number of places that assumed taht we are always the PDC, or that used the smb.conf lp_server_role() to determine that. Also included is a warning fix in the SAMR code, where the IDL has seperated a couple of types for group display enumeration. We also now use the ldb database to determine if we should run the global catalog service. In the near future, I will complete the DRSUAPI DsGetDomainControllerInfo server-side on the same basis. Andrew Bartlett (This used to be commit 67d8365e831adf3eaecd8b34dcc481fc82565893)
2007-10-10r19843: Fix warning.Jelmer Vernooij1-1/+0
(This used to be commit 38067c1adf0f9c3974302a8481e23b6a63eb6d42)
2007-10-10r19392: Use torture_setting_* rather than lp_parm_* where possible.Jelmer Vernooij1-5/+5
(This used to be commit b28860978fe29c5b10abfb8c59d7182864e21dd6)
2007-10-10r19380: forgot to add home drive testing as well as home directory...Rafal Szczesniak1-0/+8
rafal (This used to be commit 732c22071e78f16fd0731635ca4b3e093d49078a)
2007-10-10r19379: add testing home directory field to the samr tests.Rafal Szczesniak1-0/+8
rafal (This used to be commit 4dfd1d50274bc1ff539782e9bfdb2b7b20275d06)
2007-10-10r18800: fix a write behind the buffer bug...Stefan Metzmacher1-4/+2
Thanks Herb for finding this:-) This was my bug, I typed it in on gd's laptop and he just run 'svn ci' metze (This used to be commit 3c08e29f4fdde586084bdcf1b36eaf92ae944750)
2007-10-10r18782: Do not send random data to the password change (although that revealsGünther Deschner1-2/+2
interesting new password set tests), make sure to send valid characters. Guenther (This used to be commit f193c5347cf5ef019becbc98965b83c6b249483c)
2007-10-10r18759: Do not use "simple" as test password as pointed out by Andrew Bartlett.Günther Deschner1-3/+14
Thanks metze. Guenther (This used to be commit ea313d55655626cd4c8058cf5e89c0baa1cdcd6d)
2007-10-10r18751: Check for samr reject codes and their particular order.Günther Deschner1-18/+201
Guenther (This used to be commit 8f9ab07e78a3c89085754c9f6447c2b56292980c)
2007-10-10r17930: Merge noinclude branch:Jelmer Vernooij1-1/+0
* Move dlinklist.h, smb.h to subsystem-specific directories * Clean up ads.h and move what is left of it to dsdb/ (only place where it's used) (This used to be commit f7afa1cb77f3cfa7020b57de12e6003db7cfcc42)
2007-10-10r16860: Fix (and reactivate) the RPC-SAMR test. We need to allow these sidsAndrew Bartlett1-14/+60
to be created as foreign, even if they are in a local domain. Also we do need the user to exist for the life of the test, as we add it to a group. Andrew Bartlett (This used to be commit ae470ff7014e52b55d88e9fe12e2322e069daf9d)
2007-10-10r16851: Put a clue in as to which domain might have failed, due to the lengthAndrew Bartlett1-0/+4
of this test. Andrew Bartlett (This used to be commit b4d75f01d9cb2d1c9d5facfd5eb39c8a062886d4)
2007-10-10r16847: Add the parts of the SAMR test that pass back into 'make test'.Andrew Bartlett1-162/+238
I still need to figure out what causes the rest to fail... Andrew Bartlett (This used to be commit aa34bd46cb1446b9fb6fd8f1b8ffca5f81b3c052)
2007-10-10r16826: Ensure we don't segfault if the remote server fails to set a passwordAndrew Bartlett1-5/+34
in RPC-SAMR test. Andrew Bartlett (This used to be commit 08ec74d620ffe613655f28d002e60ca8201fadd9)
2007-10-10r16794: Make Samba4 pass it's own RPC-SAMR test, at least in part. There areAndrew Bartlett1-12/+67
still a couple of unimplemented functions, but this is far better than not testing this at all. In particular, this exercises the password_hash module. Specific changes: - Add support for SetDomainInfo - Add many more info levels to QueryDomainInfo - Set a domain comment in RPC-SAMR, and verify it is kept - Refactor QueryUserInfo not to always serach for all attributes - Add QueryDiplayInfo3 and QueryDomainInfo2 as aliased calls - Make OemChangePassword2 search under the samdb_base_dn(), so it finds the user when partitions are active. - Skip SetSecurity, DisplayIndex, MemberAttributesOfGroup and 'Multiple' alias operations in RPC-SAMR for Samba4 - Add RPC-SAMR as a 'slow' RPC test (it is quite slow) Andrew Bartlett (This used to be commit 01d25c9d6ca8d036d40040e5ee87a330e5b84d55)
2007-10-10r16770: Get closer to having Samba4 pass some of the RPC-SAMR test, byAndrew Bartlett1-1/+18
skipping some checks. These should be removed, and the code fixed, but currently we are loosing quality because the test isn't run by default. Andrew Bartlett (This used to be commit 1306f60c97562a71ae15f0ab257ddcd5e0af36d4)
2007-10-10r16304: Improve testing UI API. This now allows registering the fullJelmer Vernooij1-27/+9
test suite tree, looks a bit more like other unit testing API's, fixes some memory responsibility issues, introduces testcases, and removes the need for tests to call torture_ok(). (This used to be commit 0445b1a56a02552f895f400960b9ced39244a144)
2007-10-10r15328: Move some functions around, remove dependencies.Jelmer Vernooij1-1/+0
Remove some autogenerated headers (which had prototypes now autogenerated by pidl) Remove ndr_security.h from a few places - it's no longer necessary (This used to be commit c19c2b51d3e1ad347120b06a22bda5ec586c22e8)
2007-10-10r14860: create libcli/security/security.hStefan Metzmacher1-1/+1
metze (This used to be commit 9ec706238c173992dc938d537bdf1103bf519dbf)
2007-10-10r14720: Add torture_context argument to all torture testsJelmer Vernooij1-1/+1
(This used to be commit 3c7a5ce29108dd82210dc3e1f00414f545949e1d)
2007-10-10r14665: More testing in RPC-SAMR. It looks like we will probably need anotherAndrew Bartlett1-20/+41
ldb module to handle which flags can be set under what circumstances. Andrew Bartlett (This used to be commit 1d1ff501f2d2b952a4dd80c374c857be0456173c)
2007-10-10r14470: Remove some unnecessary headers.Jelmer Vernooij1-1/+0
(This used to be commit f7312dab3b9aba2b2b82e8a6e0c483a32a03a63a)
2007-10-10r14464: Don't include ndr_BASENAME.h files unless strictly required, insteadJelmer Vernooij1-1/+2
try to include just the BASENAME.h files (containing only structs) (This used to be commit 3dd477ca5147f28a962b8437e2611a8222d706bd)
2007-10-10r14402: Generate seperate headers for RPC client functions.Jelmer Vernooij1-0/+1
(This used to be commit 7054ebf0249930843a2baf4d023ae8f62cedb109)
2007-10-10r14379: Build torture/rpc/ as a seperate smbtorture module. Move helperJelmer Vernooij1-2/+2
functions for rpc out of torture/torture.c (This used to be commit 1d2d970f3b8aef3f36c2befb94b5dd72c0086639)