summaryrefslogtreecommitdiff
path: root/source4/torture
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r6288: the nbt dgram server now responds to GETDC requests. It works with ourAndrew Tridgell1-1/+2
test suite, but doesn't yet seem to satisfy a nt4 client. I'm investigating. (This used to be commit 406217262dff5adb5d0cb0028198e08f66cc85f4)
2007-10-10r6286: Add back metze's test of setting a trust password to ''. I removedAndrew Bartlett1-5/+33
this because I don't want our torture suite to leave behind accounts with known passwords if it is stopped in the wrong place. It is now run behind the -X (dangerous) wrapper. Andrew Bartlett (This used to be commit 057a81d81ed8dfaf323be118e32df2cf1c92cc09)
2007-10-10r6247: added the server side code for receiving mailslot requests, andAndrew Tridgell1-1/+1
parsing incoming netlogon requests. No replies are sent yet. (This used to be commit 3b34df6a674cd2aeddc354cdadae3f0e1c000d45)
2007-10-10r6246: stop waiting when we get a replyAndrew Tridgell1-3/+6
(This used to be commit 8b9a5d8336da43619fc1ea8f081d5ade98f0599b)
2007-10-10r6245: receive and parse the GETDC response in the NBT-DGRAM test. The testAndrew Tridgell1-1/+21
now tries to bind to port 138 if possible, so if you run it as root and smbd/nmbd is not running then it works against windows servers (This used to be commit 52ccdb79bc922be52c24dd393323dbbee83a2aea)
2007-10-10r6223: added a bit more datagram infrastructure and the beginnings of a testAndrew Tridgell3-1/+127
suite. The NBT-DGRAM test does a UDP/138 netlogon request, to which a windows server sends a reply, but the windows server sends the reply to the wrong port (it always sends to 138), so the test suite doesn't see it. (This used to be commit a7634625dbc944dd8256a822be290010f341a571)
2007-10-10r6206: go baack 10 revisions to get DatabaseDeltas, this shows that the bdc onlyStefan Metzmacher1-1/+5
need one call to get in sync again (except something like NT_STATUS_MORE_ENTRIES is returned) also the pdc only need to know the current state values metze (This used to be commit f4e12b38937bd8c16fd1a8b13401a65565d4bd00)
2007-10-10r6197: fix for my last commit, I removed SPOOLSS_ARCHITECTURE, which was ↵Stefan Metzmacher1-2/+2
"Architecture" (sorry richard:-) disable lookup for DefaultSpoolDirectory until, I have fixed the parsing when WERR_MORE_DATA is returned metze (This used to be commit d5993337b814560cd59d8d08b30fe31e2fb9fd28)
2007-10-10r6195: I think Metze meant SPOOLSS_ARCHITECTURE_NT_X86, but I could be wrong.Richard Sharpe1-1/+1
(This used to be commit 85c2b8b9447efdcefe16517a5509357262c6229c)
2007-10-10r6194: - fix some spoolss_*Form names and typesStefan Metzmacher1-25/+69
- fix GetPrinterData(), look inside the datablob - add idl for RemoteFindFirstChangeNotify(), without meaning yet, just to not return a DCERPC_FAULT when receiving this request metze (This used to be commit 92f3d5bd9c700032612ac20dc7635730c555c4da)
2007-10-10r6179: - add new spoolss tests for all spoolss_Enum*() calls which didn't needStefan Metzmacher1-7/+626
a handle as parameter, EnumPorts EnumPrinterDrivers EnumMonitors EnumPrintProcessors EnumPrinters we now do cross checks between the different info levels and sore the results in a global context, so that we later can add cross checks between the different object types - add idl for EnumMonitors and EnumPrintProcessors metze (This used to be commit 92a3721bc7a28d521090b10eb3b1eed089036432)
2007-10-10r6165: fixed up the userinfo composite code. Fixes include:Andrew Tridgell1-5/+4
- talloc should always be done in the right context. For example, when creating the userinfo_state structure, place it inside the composite structure, not directly on the pipe. If this isn't done then correct cleanup can't happen on errors (as cleanup destroys the top level composite context only) - define private structures like userinfo_state in the userinfo.c code, not in the public header - only keep the parameters we need in the state structure. For example, the domain_handle is only needed in the first call, so we don't need to keep it around in the state structure, but the level is needed in later calls, so we need to keep it - always initialise [out,ref] parameters in RPC calls. The [ref] part means that the call assumes the pointer it has been given is valid. If you don't initialise it then you will get a segv on recv. This is why the code was dying. - don't use internal strucrure elements like the pipe pipe->conn->pending outside of the internal rpc implementation. That is an internal list, trying to use it from external code will cause crashes. - rpc calls assume that rpc call strucrures remain valid for the duration of the call. This means you need to keep the structures (such as "struct samr_Close") in the userinfo_state strucrure, otherwise it will go out of scope during the async processing - need to remember to change c->state to SMBCLI_REQUEST_DONE when the request has finished in the close handler, otherwise it will loop forever trying to close Mimir, please look at the diff carefully for more detailed info on the fixes (This used to be commit 01ea1e7762e214e87e74d6f28d6efeb6cdea9736)
2007-10-10r6109: nicer way to handle compression in the torture testStefan Metzmacher1-5/+4
metze (This used to be commit a3cec189e1f5d137ba2f2829def03b060b59f0e2)
2007-10-10r6032: Fix up SetServerPassword2 on NETLOGON for [bigendian]. Clearly nobodyAndrew Bartlett1-41/+17
has the patience to run test_w2k3.sh to completion :-) It looks to me that the Windows server runs the RC4 over the C struct, not the NDR data. Andrew Bartlett (This used to be commit c324d974134c35b4c50c91d5a932a63c78b67046)
2007-10-10r6028: A MAJOR update to intergrate the new credentails system fully withAndrew Bartlett12-56/+52
GENSEC, and to pull SCHANNEL into GENSEC, by making it less 'special'. GENSEC now no longer has it's own handling of 'set username' etc, instead it uses cli_credentials calls. In order to link the credentails code right though Samba, a lot of interfaces have changed to remove 'username, domain, password' arguments, and these have been replaced with a single 'struct cli_credentials'. In the session setup code, a new parameter 'workgroup' contains the client/server current workgroup, which seems unrelated to the authentication exchange (it was being filled in from the auth info). This allows in particular kerberos to only call back for passwords when it actually needs to perform the kinit. The kerberos code has been modified not to use the SPNEGO provided 'principal name' (in the mechListMIC), but to instead use the name the host was connected to as. This better matches Microsoft behaviour, is more secure and allows better use of standard kerberos functions. To achieve this, I made changes to our socket code so that the hostname (before name resolution) is now recorded on the socket. In schannel, most of the code from librpc/rpc/dcerpc_schannel.c is now in libcli/auth/schannel.c, and it looks much more like a standard GENSEC module. The actual sign/seal code moved to libcli/auth/schannel_sign.c in a previous commit. The schannel credentails structure is now merged with the rest of the credentails, as many of the values (username, workstation, domain) where already present there. This makes handling this in a generic manner much easier, as there is no longer a custom entry-point. The auth_domain module continues to be developed, but is now just as functional as auth_winbind. The changes here are consequential to the schannel changes. The only removed function at this point is the RPC-LOGIN test (simulating the load of a WinXP login), which needs much more work to clean it up (it contains copies of too much code from all over the torture suite, and I havn't been able to penetrate its 'structure'). Andrew Bartlett (This used to be commit 2301a4b38a21aa60917973451687063d83d18d66)
2007-10-10r6000: add some notes about the cases where compression (or what ever this is)Stefan Metzmacher1-1/+5
is used, in the reply. metze (This used to be commit 618dadb7ef092af0f2c13c2e67874041f54f4e98)
2007-10-10r5999: ups, remove the testvalue that I used against my w2k3 serverStefan Metzmacher1-1/+1
metze (This used to be commit 3d3e09af16c4f9a6bc8f6ae615f744a04f352ed0)
2007-10-10r5998: I was wrong with the highwater mark...Stefan Metzmacher1-13/+20
I think I now understand how it works:-) metze (This used to be commit f8add2e66a56896d9bb18991091e1b17c29910b1)
2007-10-10r5977: Fix uninitialised memory bug in ndr_pull_ref_ptr(). This fixes theJelmer Vernooij1-19/+6
Test_DoublePointer test failure. (This used to be commit 4089d5f67d6e4121056a63ececb13187fd773636)
2007-10-10r5976: SIDs can't have more then 5 subauths (caught by [validate] andJelmer Vernooij1-1/+1
range()) (This used to be commit ec1eaa274b997197ca6996457229c802f1b76d56)
2007-10-10r5963: Fix parameter passing for gentest and locktestJelmer Vernooij2-17/+21
(This used to be commit 28914c89dc1400d8364c13258ec0e8558acc7dfd)
2007-10-10r5949: give things more meaning, and reuse structs where it is possibleStefan Metzmacher1-36/+36
to make things more clear metze (This used to be commit adefeeb4f362dba06cddacf6f58194ef1f967ec9)
2007-10-10r5947: print out the password hashes when -d 100 is in use,Stefan Metzmacher1-0/+9
very usefull for creating a keytab file with metze (This used to be commit 15b80a28dbf2004f63648fede61e514e55030018)
2007-10-10r5942: A couple of small changes to fix things up with the new credentialsAndrew Bartlett1-3/+3
infrustructure. Andrew Bartlett (This used to be commit d51718ab8a3771ada4e342a384b744edb803db40)
2007-10-10r5941: Commit this patch much earlier than I would normally prefer, but ↵Andrew Bartlett34-252/+325
metze needs a working tree... The main volume of this patch was what I started working on today: - Cleans up memory handling around DCE/RPC pipes, to have a parent talloc context. - Uses sepereate inner loops for some of the DCE/RPC tests The other and more important part of this patch fixes issues surrounding the new credentials framwork: This makes the struct cli_credentials always a talloc() structure, rather than on the stack. Parts of the cli_credentials code already assumed this. There were other issues, particularly in the DCERPC over SMB handling, as well as little things that had to be tidied up before test_w2k3.sh would start to pass. Andrew Bartlett (This used to be commit 0453f9d05d2e336fba1f85dbf2718d01fa2bf778)
2007-10-10r5929: Use cli_credentials for the SMB functions as well.Jelmer Vernooij4-54/+22
Fix a couple of bugs in the new cli_credentials code (This used to be commit 4ad481cfe5cde514d2ef9646147239f3faaa6173)
2007-10-10r5928: Use cli_credentials in:Jelmer Vernooij9-84/+72
- gtk+ (returned by GtkHostBindingDialog as well now) - torture/ - librpc/ - lib/com/dcom/ (This used to be commit ccefd782335e01e8e6ecb2bcd28a4f999c53b1a6)
2007-10-10r5917: First step in using the new cli_credentials structure. This patchJelmer Vernooij1-5/+5
puts support for it into popt_common, adds a few utility functions (in lib/credentials.c) and the callback functions for the command-line (lib/cmdline/credentials.c). Comments are welcome :-) (This used to be commit 1d49b57c50fe8c2683ea23e9df41ce8ad774db98)
2007-10-10r5902: A rather large change...Andrew Bartlett14-277/+357
I wanted to add a simple 'workstation' argument to the DCERPC authenticated binding calls, but this patch kind of grew from there. With SCHANNEL, the 'workstation' name (the netbios name of the client) matters, as this is what ties the session between the NETLOGON ops and the SCHANNEL bind. This changes a lot of files, and these will again be changed when jelmer does the credentials work. I also correct some schannel IDL to distinguish between workstation names and account names. The distinction matters for domain trust accounts. Issues in handling this (issues with lifetime of talloc pointers) caused me to change the 'creds_CredentialsState' and 'struct dcerpc_binding' pointers to always be talloc()ed pointers. In the schannel DB, we now store both the domain and computername, and query on both. This should ensure we fault correctly when the domain is specified incorrectly in the SCHANNEL bind. In the RPC-SCHANNEL test, I finally fixed a bug that vl pointed out, where the comment claimed we re-used a connection, but in fact we made a new connection. This was achived by breaking apart some of the dcerpc_secondary_connection() logic. The addition of workstation handling was also propogated to NTLMSSP and GENSEC, for completeness. The RPC-SAMSYNC test has been cleaned up a little, using a loop over usernames/passwords rather than manually expanded tests. This will be expanded further (the code in #if 0 in this patch) to use a newly created user account for testing. In making this test pass test_rpc.sh, I found a bug in the RPC-ECHO server, caused by the removal of [ref] and the assoicated pointer from the IDL. This has been re-added, until the underlying pidl issues are solved. (This used to be commit 824289dcc20908ddec957a4a892a103eec2da9b9)
2007-10-10r5879: Rename SAMR_FIELD_WORKSTATION to SAMR_FIELD_WORKSTATIONS - it is a list.Andrew Bartlett1-1/+2
Andrew Bartlett (This used to be commit 7822101cb5213f192f3195648970784a9de4fac4)
2007-10-10r5878: Be clear which machine name (We have one worksation, and one BDC) weAndrew Bartlett1-7/+7
are doing logins with. Andrew Bartlett (This used to be commit b7297c44faea0ae8b38fb9a90c22c5be3c8f689f)
2007-10-10r5876: Add a test account for the duration of the samsync - to ensure we haveAndrew Bartlett2-19/+62
a good variety of things to test against. Add code to testjoin to handle this just like test machine accounts Soon I'll remove the 'must change password' flag, so we can do logins with it. Andrew Bartlett (This used to be commit 08b47e2dc067f7e4a52b982d358ff1b0209cc1df)
2007-10-10r5866: Add InitShutdown IDL and torture test.Jelmer Vernooij4-8/+164
Implement push side of NDR_LEN4|NDR_NOTERM strings (pull side was already present) (This used to be commit ea61ec1122841716ed5d90085ba79e7bf691bd6a)
2007-10-10r5830: start to analyse the attribute values, depending on the attribute typeStefan Metzmacher1-3/+26
metze (This used to be commit 63229b9503950847fbecd6ec22171d8c18d7ac91)
2007-10-10r5799: more DsGetNCChanges updates, I'm starting to understand it...Stefan Metzmacher1-16/+94
also add a really simple torture test for DsGetNCChanges metze (This used to be commit bcde67a7eff9ad82919e90fd64c02a17610c6f0e)
2007-10-10r5783: Test renaming of accounts in the RPC-SAMR test, and add support intoAndrew Bartlett1-14/+34
the SAMR server. Andrew Bartlett (This used to be commit fd748f9d2f8f354f76587d92b94de83bffe1c6dc)
2007-10-10r5775: Remove some unused functions (unions are no longer as special as they ↵Jelmer Vernooij2-6/+10
used to be) Add oxid mapping table support in DCOM (This used to be commit e193555f0eec2dda8c8760e9668181200fef0a1e)
2007-10-10r5742: - add torture test and idl for DsReplicaUpdateRefs()Stefan Metzmacher1-5/+65
(the torture test currently only tests if the idl is correct) - add start for idl for DsGetNCChanges() (if someone didn't noticed the current ethereal trunk code can successful decrypt DCERPC and LDAP gsskrb5 encrypted blobs, when you provide a keytab and have compiled against heimdal :-) - add a view bitmaps and enum's for better debugging metze (This used to be commit cf7c1352ab2857b80256e02f70ab3fbd5177d596)
2007-10-10r5730: More fun with delayed write semantics with multiple file handlesJeremy Allison1-2/+168
open on the same file on the same connection. Jeremy. (This used to be commit 23733abfa201347265f54232989b608b11ad7a85)
2007-10-10r5681: fix the build and compiler waningsStefan Metzmacher1-4/+3
metze (This used to be commit bb2622a0c94127a31855adc41d90289219a1ddd7)
2007-10-10r5679: Complete basic test of rpc_composite_userinfo function (whichRafal Szczesniak1-3/+151
btw proves the function is completely broken but that's what tests are for) rafal (This used to be commit 7278c7d8370d52fed1e6a7dfc848a3efa06ccd61)
2007-10-10r5678: Torture tests require also libnet in order to run NET-* tests.Rafal Szczesniak1-1/+1
rafal (This used to be commit e492a2a604a930690a7cbec8aee17b8229bcf928)
2007-10-10r5676: Fix some alignment issues and IRemoteActivationJelmer Vernooij1-0/+1
(This used to be commit a9b13f67012d235d98920e639f59411d57a79bd7)
2007-10-10r5675: - More DCOM bug fixesJelmer Vernooij3-9/+2
- Keep COM and DCOM more seperated (This used to be commit f694f484c422d0c86beb58e8f62f134f8676d5e1)
2007-10-10r5674: - Re-enable DCOM support.Jelmer Vernooij2-9/+12
- Always put IID in vtables (useful for asserts) - Add table to keep track of DCOM proxy classes - Bunch of smaller bug fixes (This used to be commit 26d5a0b92c66bc86d0c26f687f83fa712342ac32)
2007-10-10r5671: Bunch of fixes related to arrays and pointers to arrays.Jelmer Vernooij1-8/+8
(This used to be commit 00ef0feaddc096d8f5e2755feecaec37d589a99c)
2007-10-10r5668: Add tests to RPC-SAMLOGON to test for user@REALM style logins. TheseAndrew Bartlett1-10/+77
need a NULL domain (or a "" domain, except this breaks NTLMv2, and I need to look into it a bit more). Add support to the Samba4 server for these logins. This will need extension when we handle trusted domains as a DC, as it is a principal name, not just another format for the username. Andrew Bartlett (This used to be commit de02c7c222a32d2b3fb8ee8b715749b96cb647f9)
2007-10-10r5661: Be a little stricter on syntax regarding arrays. A pointer to anJelmer Vernooij1-0/+2
array can now only be : type *name[]; rather then : type *name; which was supported in the past. Warnings will be given when the first syntax is used. Reasons for this change in behaviour include improved readability and the fact that the second format makes dealing with multiple levels of pointers harder. (This used to be commit a416de5825c540fd3741731c4be05e9a659a6fdb)
2007-10-10r5652: Add libnet tests section to torture test.Rafal Szczesniak1-0/+11
rafal (This used to be commit f061652b75b1c5a203232c1a440fa9ba3e0bd2c3)
2007-10-10r5651: A bit more code in userinfo test and hook up test function toRafal Szczesniak2-3/+22
main torture binary. rafal (This used to be commit 94955e5325ceddd35673da74afb19d1676b5b23c)