source: trunk/server/source4/torture/rpc/lsa.c

Last change on this file was 745, checked in by Silvan Scherrer, 13 years ago

Samba Server: updated trunk to 3.6.0
File size: 91.2 KB
Line 
1/*
2 Unix SMB/CIFS implementation.
3 test suite for lsa rpc operations
4
5 Copyright (C) Andrew Tridgell 2003
6 Copyright (C) Andrew Bartlett <abartlet@samba.org> 2004-2005
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20*/
21
22#include "includes.h"
23#include "torture/torture.h"
24#include "librpc/gen_ndr/ndr_lsa_c.h"
25#include "librpc/gen_ndr/netlogon.h"
26#include "librpc/gen_ndr/ndr_drsblobs.h"
27#include "lib/events/events.h"
28#include "libcli/security/security.h"
29#include "libcli/auth/libcli_auth.h"
30#include "torture/rpc/torture_rpc.h"
31#include "param/param.h"
32#include "../lib/crypto/crypto.h"
33#define TEST_MACHINENAME "lsatestmach"
34
35static void init_lsa_String(struct lsa_String *name, const char *s)
36{
37 name->string = s;
38}
39
40static bool test_OpenPolicy(struct dcerpc_binding_handle *b,
41 struct torture_context *tctx)
42{
43 struct lsa_ObjectAttribute attr;
44 struct policy_handle handle;
45 struct lsa_QosInfo qos;
46 struct lsa_OpenPolicy r;
47 uint16_t system_name = '\\';
48
49 torture_comment(tctx, "\nTesting OpenPolicy\n");
50
51 qos.len = 0;
52 qos.impersonation_level = 2;
53 qos.context_mode = 1;
54 qos.effective_only = 0;
55
56 attr.len = 0;
57 attr.root_dir = NULL;
58 attr.object_name = NULL;
59 attr.attributes = 0;
60 attr.sec_desc = NULL;
61 attr.sec_qos = &qos;
62
63 r.in.system_name = &system_name;
64 r.in.attr = &attr;
65 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
66 r.out.handle = &handle;
67
68 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenPolicy_r(b, tctx, &r),
69 "OpenPolicy failed");
70 if (!NT_STATUS_IS_OK(r.out.result)) {
71 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_ACCESS_DENIED) ||
72 NT_STATUS_EQUAL(r.out.result, NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED)) {
73 torture_comment(tctx, "not considering %s to be an error\n",
74 nt_errstr(r.out.result));
75 return true;
76 }
77 torture_comment(tctx, "OpenPolicy failed - %s\n",
78 nt_errstr(r.out.result));
79 return false;
80 }
81
82 return true;
83}
84
85
86bool test_lsa_OpenPolicy2_ex(struct dcerpc_binding_handle *b,
87 struct torture_context *tctx,
88 struct policy_handle **handle,
89 NTSTATUS expected_status)
90{
91 struct lsa_ObjectAttribute attr;
92 struct lsa_QosInfo qos;
93 struct lsa_OpenPolicy2 r;
94 NTSTATUS status;
95
96 torture_comment(tctx, "\nTesting OpenPolicy2\n");
97
98 *handle = talloc(tctx, struct policy_handle);
99 if (!*handle) {
100 return false;
101 }
102
103 qos.len = 0;
104 qos.impersonation_level = 2;
105 qos.context_mode = 1;
106 qos.effective_only = 0;
107
108 attr.len = 0;
109 attr.root_dir = NULL;
110 attr.object_name = NULL;
111 attr.attributes = 0;
112 attr.sec_desc = NULL;
113 attr.sec_qos = &qos;
114
115 r.in.system_name = "\\";
116 r.in.attr = &attr;
117 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
118 r.out.handle = *handle;
119
120 status = dcerpc_lsa_OpenPolicy2_r(b, tctx, &r);
121 torture_assert_ntstatus_equal(tctx, status, expected_status,
122 "OpenPolicy2 failed");
123 if (!NT_STATUS_IS_OK(expected_status)) {
124 return true;
125 }
126 if (!NT_STATUS_IS_OK(r.out.result)) {
127 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_ACCESS_DENIED) ||
128 NT_STATUS_EQUAL(r.out.result, NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED)) {
129 torture_comment(tctx, "not considering %s to be an error\n",
130 nt_errstr(r.out.result));
131 talloc_free(*handle);
132 *handle = NULL;
133 return true;
134 }
135 torture_comment(tctx, "OpenPolicy2 failed - %s\n",
136 nt_errstr(r.out.result));
137 return false;
138 }
139
140 return true;
141}
142
143
144bool test_lsa_OpenPolicy2(struct dcerpc_binding_handle *b,
145 struct torture_context *tctx,
146 struct policy_handle **handle)
147{
148 return test_lsa_OpenPolicy2_ex(b, tctx, handle, NT_STATUS_OK);
149}
150
151static bool test_LookupNames(struct dcerpc_binding_handle *b,
152 struct torture_context *tctx,
153 struct policy_handle *handle,
154 struct lsa_TransNameArray *tnames)
155{
156 struct lsa_LookupNames r;
157 struct lsa_TransSidArray sids;
158 struct lsa_RefDomainList *domains = NULL;
159 struct lsa_String *names;
160 uint32_t count = 0;
161 int i;
162 uint32_t *input_idx;
163
164 torture_comment(tctx, "\nTesting LookupNames with %d names\n", tnames->count);
165
166 sids.count = 0;
167 sids.sids = NULL;
168
169
170 r.in.num_names = 0;
171
172 input_idx = talloc_array(tctx, uint32_t, tnames->count);
173 names = talloc_array(tctx, struct lsa_String, tnames->count);
174
175 for (i=0;i<tnames->count;i++) {
176 if (tnames->names[i].sid_type != SID_NAME_UNKNOWN) {
177 init_lsa_String(&names[r.in.num_names], tnames->names[i].name.string);
178 input_idx[r.in.num_names] = i;
179 r.in.num_names++;
180 }
181 }
182
183 r.in.handle = handle;
184 r.in.names = names;
185 r.in.sids = &sids;
186 r.in.level = 1;
187 r.in.count = &count;
188 r.out.count = &count;
189 r.out.sids = &sids;
190 r.out.domains = &domains;
191
192 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupNames_r(b, tctx, &r),
193 "LookupNames failed");
194 if (NT_STATUS_EQUAL(r.out.result, STATUS_SOME_UNMAPPED) ||
195 NT_STATUS_EQUAL(r.out.result, NT_STATUS_NONE_MAPPED)) {
196 for (i=0;i< r.in.num_names;i++) {
197 if (i < count && sids.sids[i].sid_type == SID_NAME_UNKNOWN) {
198 torture_comment(tctx, "LookupName of %s was unmapped\n",
199 tnames->names[i].name.string);
200 } else if (i >=count) {
201 torture_comment(tctx, "LookupName of %s failed to return a result\n",
202 tnames->names[i].name.string);
203 }
204 }
205 torture_comment(tctx, "LookupNames failed - %s\n",
206 nt_errstr(r.out.result));
207 return false;
208 } else if (!NT_STATUS_IS_OK(r.out.result)) {
209 torture_comment(tctx, "LookupNames failed - %s\n",
210 nt_errstr(r.out.result));
211 return false;
212 }
213
214 for (i=0;i< r.in.num_names;i++) {
215 if (i < count) {
216 if (sids.sids[i].sid_type != tnames->names[input_idx[i]].sid_type) {
217 torture_comment(tctx, "LookupName of %s got unexpected name type: %s\n",
218 tnames->names[input_idx[i]].name.string,
219 sid_type_lookup(sids.sids[i].sid_type));
220 return false;
221 }
222 if ((sids.sids[i].sid_type == SID_NAME_DOMAIN) &&
223 (sids.sids[i].rid != (uint32_t)-1)) {
224 torture_comment(tctx, "LookupName of %s got unexpected rid: %d\n",
225 tnames->names[input_idx[i]].name.string, sids.sids[i].rid);
226 return false;
227 }
228 } else if (i >=count) {
229 torture_comment(tctx, "LookupName of %s failed to return a result\n",
230 tnames->names[input_idx[i]].name.string);
231 return false;
232 }
233 }
234 torture_comment(tctx, "\n");
235
236 return true;
237}
238
239static bool test_LookupNames_bogus(struct dcerpc_binding_handle *b,
240 struct torture_context *tctx,
241 struct policy_handle *handle)
242{
243 struct lsa_LookupNames r;
244 struct lsa_TransSidArray sids;
245 struct lsa_RefDomainList *domains = NULL;
246 struct lsa_String names[1];
247 uint32_t count = 0;
248
249 torture_comment(tctx, "\nTesting LookupNames with bogus name\n");
250
251 sids.count = 0;
252 sids.sids = NULL;
253
254 init_lsa_String(&names[0], "NT AUTHORITY\\BOGUS");
255
256 r.in.handle = handle;
257 r.in.num_names = 1;
258 r.in.names = names;
259 r.in.sids = &sids;
260 r.in.level = 1;
261 r.in.count = &count;
262 r.out.count = &count;
263 r.out.sids = &sids;
264 r.out.domains = &domains;
265
266 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupNames_r(b, tctx, &r),
267 "LookupNames bogus failed");
268 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_NONE_MAPPED)) {
269 torture_comment(tctx, "LookupNames failed - %s\n",
270 nt_errstr(r.out.result));
271 return false;
272 }
273
274 torture_comment(tctx, "\n");
275
276 return true;
277}
278
279static bool test_LookupNames_NULL(struct dcerpc_binding_handle *b,
280 struct torture_context *tctx,
281 struct policy_handle *handle)
282{
283 struct lsa_LookupNames r;
284 struct lsa_TransSidArray sids;
285 struct lsa_RefDomainList *domains = NULL;
286 struct lsa_String names[1];
287 uint32_t count = 0;
288
289 torture_comment(tctx, "\nTesting LookupNames with NULL name\n");
290
291 sids.count = 0;
292 sids.sids = NULL;
293
294 names[0].string = NULL;
295
296 r.in.handle = handle;
297 r.in.num_names = 1;
298 r.in.names = names;
299 r.in.sids = &sids;
300 r.in.level = 1;
301 r.in.count = &count;
302 r.out.count = &count;
303 r.out.sids = &sids;
304 r.out.domains = &domains;
305
306 /* nt4 returns NT_STATUS_NONE_MAPPED with sid_type
307 * SID_NAME_UNKNOWN, rid 0, and sid_index -1;
308 *
309 * w2k3/w2k8 return NT_STATUS_OK with sid_type
310 * SID_NAME_DOMAIN, rid -1 and sid_index 0 and BUILTIN domain
311 */
312
313 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupNames_r(b, tctx, &r),
314 "LookupNames with NULL name failed");
315 torture_assert_ntstatus_ok(tctx, r.out.result,
316 "LookupNames with NULL name failed");
317
318 torture_comment(tctx, "\n");
319
320 return true;
321}
322
323static bool test_LookupNames_wellknown(struct dcerpc_binding_handle *b,
324 struct torture_context *tctx,
325 struct policy_handle *handle)
326{
327 struct lsa_TranslatedName name;
328 struct lsa_TransNameArray tnames;
329 bool ret = true;
330
331 torture_comment(tctx, "Testing LookupNames with well known names\n");
332
333 tnames.names = &name;
334 tnames.count = 1;
335 name.name.string = "NT AUTHORITY\\SYSTEM";
336 name.sid_type = SID_NAME_WKN_GRP;
337 ret &= test_LookupNames(b, tctx, handle, &tnames);
338
339 name.name.string = "NT AUTHORITY\\ANONYMOUS LOGON";
340 name.sid_type = SID_NAME_WKN_GRP;
341 ret &= test_LookupNames(b, tctx, handle, &tnames);
342
343 name.name.string = "NT AUTHORITY\\Authenticated Users";
344 name.sid_type = SID_NAME_WKN_GRP;
345 ret &= test_LookupNames(b, tctx, handle, &tnames);
346
347#if 0
348 name.name.string = "NT AUTHORITY";
349 ret &= test_LookupNames(b, tctx, handle, &tnames);
350
351 name.name.string = "NT AUTHORITY\\";
352 ret &= test_LookupNames(b, tctx, handle, &tnames);
353#endif
354
355 name.name.string = "BUILTIN\\";
356 name.sid_type = SID_NAME_DOMAIN;
357 ret &= test_LookupNames(b, tctx, handle, &tnames);
358
359 name.name.string = "BUILTIN\\Administrators";
360 name.sid_type = SID_NAME_ALIAS;
361 ret &= test_LookupNames(b, tctx, handle, &tnames);
362
363 name.name.string = "SYSTEM";
364 name.sid_type = SID_NAME_WKN_GRP;
365 ret &= test_LookupNames(b, tctx, handle, &tnames);
366
367 name.name.string = "Everyone";
368 name.sid_type = SID_NAME_WKN_GRP;
369 ret &= test_LookupNames(b, tctx, handle, &tnames);
370 return ret;
371}
372
373static bool test_LookupNames2(struct dcerpc_binding_handle *b,
374 struct torture_context *tctx,
375 struct policy_handle *handle,
376 struct lsa_TransNameArray2 *tnames,
377 bool check_result)
378{
379 struct lsa_LookupNames2 r;
380 struct lsa_TransSidArray2 sids;
381 struct lsa_RefDomainList *domains = NULL;
382 struct lsa_String *names;
383 uint32_t count = 0;
384 int i;
385
386 torture_comment(tctx, "\nTesting LookupNames2 with %d names\n", tnames->count);
387
388 sids.count = 0;
389 sids.sids = NULL;
390 uint32_t *input_idx;
391
392 r.in.num_names = 0;
393
394 input_idx = talloc_array(tctx, uint32_t, tnames->count);
395 names = talloc_array(tctx, struct lsa_String, tnames->count);
396
397 for (i=0;i<tnames->count;i++) {
398 if (tnames->names[i].sid_type != SID_NAME_UNKNOWN) {
399 init_lsa_String(&names[r.in.num_names], tnames->names[i].name.string);
400 input_idx[r.in.num_names] = i;
401 r.in.num_names++;
402 }
403 }
404
405 r.in.handle = handle;
406 r.in.names = names;
407 r.in.sids = &sids;
408 r.in.level = 1;
409 r.in.count = &count;
410 r.in.lookup_options = 0;
411 r.in.client_revision = 0;
412 r.out.count = &count;
413 r.out.sids = &sids;
414 r.out.domains = &domains;
415
416 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupNames2_r(b, tctx, &r),
417 "LookupNames2 failed");
418 if (!NT_STATUS_IS_OK(r.out.result)) {
419 torture_comment(tctx, "LookupNames2 failed - %s\n",
420 nt_errstr(r.out.result));
421 return false;
422 }
423
424 if (check_result) {
425 torture_assert_int_equal(tctx, count, sids.count,
426 "unexpected number of results returned");
427 if (sids.count > 0) {
428 torture_assert(tctx, sids.sids, "invalid sid buffer");
429 }
430 }
431
432 torture_comment(tctx, "\n");
433
434 return true;
435}
436
437
438static bool test_LookupNames3(struct dcerpc_binding_handle *b,
439 struct torture_context *tctx,
440 struct policy_handle *handle,
441 struct lsa_TransNameArray2 *tnames,
442 bool check_result)
443{
444 struct lsa_LookupNames3 r;
445 struct lsa_TransSidArray3 sids;
446 struct lsa_RefDomainList *domains = NULL;
447 struct lsa_String *names;
448 uint32_t count = 0;
449 int i;
450 uint32_t *input_idx;
451
452 torture_comment(tctx, "\nTesting LookupNames3 with %d names\n", tnames->count);
453
454 sids.count = 0;
455 sids.sids = NULL;
456
457 r.in.num_names = 0;
458
459 input_idx = talloc_array(tctx, uint32_t, tnames->count);
460 names = talloc_array(tctx, struct lsa_String, tnames->count);
461 for (i=0;i<tnames->count;i++) {
462 if (tnames->names[i].sid_type != SID_NAME_UNKNOWN) {
463 init_lsa_String(&names[r.in.num_names], tnames->names[i].name.string);
464 input_idx[r.in.num_names] = i;
465 r.in.num_names++;
466 }
467 }
468
469 r.in.handle = handle;
470 r.in.names = names;
471 r.in.sids = &sids;
472 r.in.level = 1;
473 r.in.count = &count;
474 r.in.lookup_options = 0;
475 r.in.client_revision = 0;
476 r.out.count = &count;
477 r.out.sids = &sids;
478 r.out.domains = &domains;
479
480 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupNames3_r(b, tctx, &r),
481 "LookupNames3 failed");
482 if (!NT_STATUS_IS_OK(r.out.result)) {
483 torture_comment(tctx, "LookupNames3 failed - %s\n",
484 nt_errstr(r.out.result));
485 return false;
486 }
487
488 if (check_result) {
489 torture_assert_int_equal(tctx, count, sids.count,
490 "unexpected number of results returned");
491 if (sids.count > 0) {
492 torture_assert(tctx, sids.sids, "invalid sid buffer");
493 }
494 }
495
496 torture_comment(tctx, "\n");
497
498 return true;
499}
500
501static bool test_LookupNames4(struct dcerpc_binding_handle *b,
502 struct torture_context *tctx,
503 struct lsa_TransNameArray2 *tnames,
504 bool check_result)
505{
506 struct lsa_LookupNames4 r;
507 struct lsa_TransSidArray3 sids;
508 struct lsa_RefDomainList *domains = NULL;
509 struct lsa_String *names;
510 uint32_t count = 0;
511 int i;
512 uint32_t *input_idx;
513
514 torture_comment(tctx, "\nTesting LookupNames4 with %d names\n", tnames->count);
515
516 sids.count = 0;
517 sids.sids = NULL;
518
519 r.in.num_names = 0;
520
521 input_idx = talloc_array(tctx, uint32_t, tnames->count);
522 names = talloc_array(tctx, struct lsa_String, tnames->count);
523 for (i=0;i<tnames->count;i++) {
524 if (tnames->names[i].sid_type != SID_NAME_UNKNOWN) {
525 init_lsa_String(&names[r.in.num_names], tnames->names[i].name.string);
526 input_idx[r.in.num_names] = i;
527 r.in.num_names++;
528 }
529 }
530
531 r.in.num_names = tnames->count;
532 r.in.names = names;
533 r.in.sids = &sids;
534 r.in.level = 1;
535 r.in.count = &count;
536 r.in.lookup_options = 0;
537 r.in.client_revision = 0;
538 r.out.count = &count;
539 r.out.sids = &sids;
540 r.out.domains = &domains;
541
542 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupNames4_r(b, tctx, &r),
543 "LookupNames4 failed");
544 if (!NT_STATUS_IS_OK(r.out.result)) {
545 torture_comment(tctx, "LookupNames4 failed - %s\n",
546 nt_errstr(r.out.result));
547 return false;
548 }
549
550 if (check_result) {
551 torture_assert_int_equal(tctx, count, sids.count,
552 "unexpected number of results returned");
553 if (sids.count > 0) {
554 torture_assert(tctx, sids.sids, "invalid sid buffer");
555 }
556 }
557
558 torture_comment(tctx, "\n");
559
560 return true;
561}
562
563
564static bool test_LookupSids(struct dcerpc_binding_handle *b,
565 struct torture_context *tctx,
566 struct policy_handle *handle,
567 struct lsa_SidArray *sids)
568{
569 struct lsa_LookupSids r;
570 struct lsa_TransNameArray names;
571 struct lsa_RefDomainList *domains = NULL;
572 uint32_t count = sids->num_sids;
573
574 torture_comment(tctx, "\nTesting LookupSids\n");
575
576 names.count = 0;
577 names.names = NULL;
578
579 r.in.handle = handle;
580 r.in.sids = sids;
581 r.in.names = &names;
582 r.in.level = 1;
583 r.in.count = &count;
584 r.out.count = &count;
585 r.out.names = &names;
586 r.out.domains = &domains;
587
588 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupSids_r(b, tctx, &r),
589 "LookupSids failed");
590 if (!NT_STATUS_IS_OK(r.out.result) &&
591 !NT_STATUS_EQUAL(r.out.result, STATUS_SOME_UNMAPPED)) {
592 torture_comment(tctx, "LookupSids failed - %s\n",
593 nt_errstr(r.out.result));
594 return false;
595 }
596
597 torture_comment(tctx, "\n");
598
599 if (!test_LookupNames(b, tctx, handle, &names)) {
600 return false;
601 }
602
603 return true;
604}
605
606
607static bool test_LookupSids2(struct dcerpc_binding_handle *b,
608 struct torture_context *tctx,
609 struct policy_handle *handle,
610 struct lsa_SidArray *sids)
611{
612 struct lsa_LookupSids2 r;
613 struct lsa_TransNameArray2 names;
614 struct lsa_RefDomainList *domains = NULL;
615 uint32_t count = sids->num_sids;
616
617 torture_comment(tctx, "\nTesting LookupSids2\n");
618
619 names.count = 0;
620 names.names = NULL;
621
622 r.in.handle = handle;
623 r.in.sids = sids;
624 r.in.names = &names;
625 r.in.level = 1;
626 r.in.count = &count;
627 r.in.lookup_options = 0;
628 r.in.client_revision = 0;
629 r.out.count = &count;
630 r.out.names = &names;
631 r.out.domains = &domains;
632
633 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupSids2_r(b, tctx, &r),
634 "LookupSids2 failed");
635 if (!NT_STATUS_IS_OK(r.out.result) &&
636 !NT_STATUS_EQUAL(r.out.result, STATUS_SOME_UNMAPPED)) {
637 torture_comment(tctx, "LookupSids2 failed - %s\n",
638 nt_errstr(r.out.result));
639 return false;
640 }
641
642 torture_comment(tctx, "\n");
643
644 if (!test_LookupNames2(b, tctx, handle, &names, false)) {
645 return false;
646 }
647
648 if (!test_LookupNames3(b, tctx, handle, &names, false)) {
649 return false;
650 }
651
652 return true;
653}
654
655static bool test_LookupSids3(struct dcerpc_binding_handle *b,
656 struct torture_context *tctx,
657 struct lsa_SidArray *sids)
658{
659 struct lsa_LookupSids3 r;
660 struct lsa_TransNameArray2 names;
661 struct lsa_RefDomainList *domains = NULL;
662 uint32_t count = sids->num_sids;
663
664 torture_comment(tctx, "\nTesting LookupSids3\n");
665
666 names.count = 0;
667 names.names = NULL;
668
669 r.in.sids = sids;
670 r.in.names = &names;
671 r.in.level = 1;
672 r.in.count = &count;
673 r.in.lookup_options = 0;
674 r.in.client_revision = 0;
675 r.out.domains = &domains;
676 r.out.count = &count;
677 r.out.names = &names;
678
679 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupSids3_r(b, tctx, &r),
680 "LookupSids3 failed");
681 if (!NT_STATUS_IS_OK(r.out.result)) {
682 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_ACCESS_DENIED) ||
683 NT_STATUS_EQUAL(r.out.result, NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED)) {
684 torture_comment(tctx, "not considering %s to be an error\n",
685 nt_errstr(r.out.result));
686 return true;
687 }
688 torture_comment(tctx, "LookupSids3 failed - %s - not considered an error\n",
689 nt_errstr(r.out.result));
690 return false;
691 }
692
693 torture_comment(tctx, "\n");
694
695 if (!test_LookupNames4(b, tctx, &names, false)) {
696 return false;
697 }
698
699 return true;
700}
701
702bool test_many_LookupSids(struct dcerpc_pipe *p,
703 struct torture_context *tctx,
704 struct policy_handle *handle)
705{
706 uint32_t count;
707 struct lsa_SidArray sids;
708 int i;
709 struct dcerpc_binding_handle *b = p->binding_handle;
710
711 torture_comment(tctx, "\nTesting LookupSids with lots of SIDs\n");
712
713 sids.num_sids = 100;
714
715 sids.sids = talloc_array(tctx, struct lsa_SidPtr, sids.num_sids);
716
717 for (i=0; i<sids.num_sids; i++) {
718 const char *sidstr = "S-1-5-32-545";
719 sids.sids[i].sid = dom_sid_parse_talloc(tctx, sidstr);
720 }
721
722 count = sids.num_sids;
723
724 if (handle) {
725 struct lsa_LookupSids r;
726 struct lsa_TransNameArray names;
727 struct lsa_RefDomainList *domains = NULL;
728 names.count = 0;
729 names.names = NULL;
730
731 r.in.handle = handle;
732 r.in.sids = &sids;
733 r.in.names = &names;
734 r.in.level = 1;
735 r.in.count = &names.count;
736 r.out.count = &count;
737 r.out.names = &names;
738 r.out.domains = &domains;
739
740 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupSids_r(b, tctx, &r),
741 "LookupSids failed");
742 if (!NT_STATUS_IS_OK(r.out.result)) {
743 torture_comment(tctx, "LookupSids failed - %s\n",
744 nt_errstr(r.out.result));
745 return false;
746 }
747
748 torture_comment(tctx, "\n");
749
750 if (!test_LookupNames(b, tctx, handle, &names)) {
751 return false;
752 }
753 } else if (p->conn->security_state.auth_info->auth_type == DCERPC_AUTH_TYPE_SCHANNEL &&
754 p->conn->security_state.auth_info->auth_level >= DCERPC_AUTH_LEVEL_INTEGRITY) {
755 struct lsa_LookupSids3 r;
756 struct lsa_RefDomainList *domains = NULL;
757 struct lsa_TransNameArray2 names;
758
759 names.count = 0;
760 names.names = NULL;
761
762 torture_comment(tctx, "\nTesting LookupSids3\n");
763
764 r.in.sids = &sids;
765 r.in.names = &names;
766 r.in.level = 1;
767 r.in.count = &count;
768 r.in.lookup_options = 0;
769 r.in.client_revision = 0;
770 r.out.count = &count;
771 r.out.names = &names;
772 r.out.domains = &domains;
773
774 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupSids3_r(b, tctx, &r),
775 "LookupSids3 failed");
776 if (!NT_STATUS_IS_OK(r.out.result)) {
777 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_ACCESS_DENIED) ||
778 NT_STATUS_EQUAL(r.out.result, NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED)) {
779 torture_comment(tctx, "not considering %s to be an error\n",
780 nt_errstr(r.out.result));
781 return true;
782 }
783 torture_comment(tctx, "LookupSids3 failed - %s\n",
784 nt_errstr(r.out.result));
785 return false;
786 }
787 if (!test_LookupNames4(b, tctx, &names, false)) {
788 return false;
789 }
790 }
791
792 torture_comment(tctx, "\n");
793
794
795
796 return true;
797}
798
799static void lookupsids_cb(struct tevent_req *subreq)
800{
801 int *replies = (int *)tevent_req_callback_data_void(subreq);
802 NTSTATUS status;
803
804 status = dcerpc_lsa_LookupSids_r_recv(subreq, subreq);
805 TALLOC_FREE(subreq);
806 if (!NT_STATUS_IS_OK(status)) {
807 printf("lookupsids returned %s\n", nt_errstr(status));
808 *replies = -1;
809 }
810
811 if (*replies >= 0) {
812 *replies += 1;
813 }
814}
815
816static bool test_LookupSids_async(struct dcerpc_binding_handle *b,
817 struct torture_context *tctx,
818 struct policy_handle *handle)
819{
820 struct lsa_SidArray sids;
821 struct lsa_SidPtr sidptr;
822 uint32_t *count;
823 struct lsa_TransNameArray *names;
824 struct lsa_LookupSids *r;
825 struct lsa_RefDomainList *domains = NULL;
826 struct tevent_req **req;
827 int i, replies;
828 bool ret = true;
829 const int num_async_requests = 50;
830
831 count = talloc_array(tctx, uint32_t, num_async_requests);
832 names = talloc_array(tctx, struct lsa_TransNameArray, num_async_requests);
833 r = talloc_array(tctx, struct lsa_LookupSids, num_async_requests);
834
835 torture_comment(tctx, "\nTesting %d async lookupsids request\n", num_async_requests);
836
837 req = talloc_array(tctx, struct tevent_req *, num_async_requests);
838
839 sids.num_sids = 1;
840 sids.sids = &sidptr;
841 sidptr.sid = dom_sid_parse_talloc(tctx, "S-1-5-32-545");
842
843 replies = 0;
844
845 for (i=0; i<num_async_requests; i++) {
846 count[i] = 0;
847 names[i].count = 0;
848 names[i].names = NULL;
849
850 r[i].in.handle = handle;
851 r[i].in.sids = &sids;
852 r[i].in.names = &names[i];
853 r[i].in.level = 1;
854 r[i].in.count = &names[i].count;
855 r[i].out.count = &count[i];
856 r[i].out.names = &names[i];
857 r[i].out.domains = &domains;
858
859 req[i] = dcerpc_lsa_LookupSids_r_send(tctx, tctx->ev, b, &r[i]);
860 if (req[i] == NULL) {
861 ret = false;
862 break;
863 }
864
865 tevent_req_set_callback(req[i], lookupsids_cb, &replies);
866 }
867
868 while (replies >= 0 && replies < num_async_requests) {
869 event_loop_once(tctx->ev);
870 }
871
872 talloc_free(req);
873
874 if (replies < 0) {
875 ret = false;
876 }
877
878 return ret;
879}
880
881static bool test_LookupPrivValue(struct dcerpc_binding_handle *b,
882 struct torture_context *tctx,
883 struct policy_handle *handle,
884 struct lsa_String *name)
885{
886 struct lsa_LookupPrivValue r;
887 struct lsa_LUID luid;
888
889 r.in.handle = handle;
890 r.in.name = name;
891 r.out.luid = &luid;
892
893 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupPrivValue_r(b, tctx, &r),
894 "LookupPrivValue failed");
895 if (!NT_STATUS_IS_OK(r.out.result)) {
896 torture_comment(tctx, "\nLookupPrivValue failed - %s\n",
897 nt_errstr(r.out.result));
898 return false;
899 }
900
901 return true;
902}
903
904static bool test_LookupPrivName(struct dcerpc_binding_handle *b,
905 struct torture_context *tctx,
906 struct policy_handle *handle,
907 struct lsa_LUID *luid)
908{
909 struct lsa_LookupPrivName r;
910 struct lsa_StringLarge *name = NULL;
911
912 r.in.handle = handle;
913 r.in.luid = luid;
914 r.out.name = &name;
915
916 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupPrivName_r(b, tctx, &r),
917 "LookupPrivName failed");
918 if (!NT_STATUS_IS_OK(r.out.result)) {
919 torture_comment(tctx, "\nLookupPrivName failed - %s\n",
920 nt_errstr(r.out.result));
921 return false;
922 }
923
924 return true;
925}
926
927static bool test_RemovePrivilegesFromAccount(struct dcerpc_binding_handle *b,
928 struct torture_context *tctx,
929 struct policy_handle *handle,
930 struct policy_handle *acct_handle,
931 struct lsa_LUID *luid)
932{
933 struct lsa_RemovePrivilegesFromAccount r;
934 struct lsa_PrivilegeSet privs;
935 bool ret = true;
936
937 torture_comment(tctx, "\nTesting RemovePrivilegesFromAccount\n");
938
939 r.in.handle = acct_handle;
940 r.in.remove_all = 0;
941 r.in.privs = &privs;
942
943 privs.count = 1;
944 privs.unknown = 0;
945 privs.set = talloc_array(tctx, struct lsa_LUIDAttribute, 1);
946 privs.set[0].luid = *luid;
947 privs.set[0].attribute = 0;
948
949 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_RemovePrivilegesFromAccount_r(b, tctx, &r),
950 "RemovePrivilegesFromAccount failed");
951 if (!NT_STATUS_IS_OK(r.out.result)) {
952
953 struct lsa_LookupPrivName r_name;
954 struct lsa_StringLarge *name = NULL;
955
956 r_name.in.handle = handle;
957 r_name.in.luid = luid;
958 r_name.out.name = &name;
959
960 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupPrivName_r(b, tctx, &r_name),
961 "LookupPrivName failed");
962 if (!NT_STATUS_IS_OK(r_name.out.result)) {
963 torture_comment(tctx, "\nLookupPrivName failed - %s\n",
964 nt_errstr(r_name.out.result));
965 return false;
966 }
967 /* Windows 2008 does not allow this to be removed */
968 if (strcmp("SeAuditPrivilege", name->string) == 0) {
969 return ret;
970 }
971
972 torture_comment(tctx, "RemovePrivilegesFromAccount failed to remove %s - %s\n",
973 name->string,
974 nt_errstr(r.out.result));
975 return false;
976 }
977
978 return ret;
979}
980
981static bool test_AddPrivilegesToAccount(struct dcerpc_binding_handle *b,
982 struct torture_context *tctx,
983 struct policy_handle *acct_handle,
984 struct lsa_LUID *luid)
985{
986 struct lsa_AddPrivilegesToAccount r;
987 struct lsa_PrivilegeSet privs;
988 bool ret = true;
989
990 torture_comment(tctx, "\nTesting AddPrivilegesToAccount\n");
991
992 r.in.handle = acct_handle;
993 r.in.privs = &privs;
994
995 privs.count = 1;
996 privs.unknown = 0;
997 privs.set = talloc_array(tctx, struct lsa_LUIDAttribute, 1);
998 privs.set[0].luid = *luid;
999 privs.set[0].attribute = 0;
1000
1001 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_AddPrivilegesToAccount_r(b, tctx, &r),
1002 "AddPrivilegesToAccount failed");
1003 if (!NT_STATUS_IS_OK(r.out.result)) {
1004 torture_comment(tctx, "AddPrivilegesToAccount failed - %s\n",
1005 nt_errstr(r.out.result));
1006 return false;
1007 }
1008
1009 return ret;
1010}
1011
1012static bool test_EnumPrivsAccount(struct dcerpc_binding_handle *b,
1013 struct torture_context *tctx,
1014 struct policy_handle *handle,
1015 struct policy_handle *acct_handle)
1016{
1017 struct lsa_EnumPrivsAccount r;
1018 struct lsa_PrivilegeSet *privs = NULL;
1019 bool ret = true;
1020
1021 torture_comment(tctx, "\nTesting EnumPrivsAccount\n");
1022
1023 r.in.handle = acct_handle;
1024 r.out.privs = &privs;
1025
1026 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumPrivsAccount_r(b, tctx, &r),
1027 "EnumPrivsAccount failed");
1028 if (!NT_STATUS_IS_OK(r.out.result)) {
1029 torture_comment(tctx, "EnumPrivsAccount failed - %s\n",
1030 nt_errstr(r.out.result));
1031 return false;
1032 }
1033
1034 if (privs && privs->count > 0) {
1035 int i;
1036 for (i=0;i<privs->count;i++) {
1037 test_LookupPrivName(b, tctx, handle,
1038 &privs->set[i].luid);
1039 }
1040
1041 ret &= test_RemovePrivilegesFromAccount(b, tctx, handle, acct_handle,
1042 &privs->set[0].luid);
1043 ret &= test_AddPrivilegesToAccount(b, tctx, acct_handle,
1044 &privs->set[0].luid);
1045 }
1046
1047 return ret;
1048}
1049
1050static bool test_GetSystemAccessAccount(struct dcerpc_binding_handle *b,
1051 struct torture_context *tctx,
1052 struct policy_handle *handle,
1053 struct policy_handle *acct_handle)
1054{
1055 uint32_t access_mask;
1056 struct lsa_GetSystemAccessAccount r;
1057
1058 torture_comment(tctx, "\nTesting GetSystemAccessAccount\n");
1059
1060 r.in.handle = acct_handle;
1061 r.out.access_mask = &access_mask;
1062
1063 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_GetSystemAccessAccount_r(b, tctx, &r),
1064 "GetSystemAccessAccount failed");
1065 if (!NT_STATUS_IS_OK(r.out.result)) {
1066 torture_comment(tctx, "GetSystemAccessAccount failed - %s\n",
1067 nt_errstr(r.out.result));
1068 return false;
1069 }
1070
1071 if (r.out.access_mask != NULL) {
1072 torture_comment(tctx, "Rights:");
1073 if (*(r.out.access_mask) & LSA_POLICY_MODE_INTERACTIVE)
1074 torture_comment(tctx, " LSA_POLICY_MODE_INTERACTIVE");
1075 if (*(r.out.access_mask) & LSA_POLICY_MODE_NETWORK)
1076 torture_comment(tctx, " LSA_POLICY_MODE_NETWORK");
1077 if (*(r.out.access_mask) & LSA_POLICY_MODE_BATCH)
1078 torture_comment(tctx, " LSA_POLICY_MODE_BATCH");
1079 if (*(r.out.access_mask) & LSA_POLICY_MODE_SERVICE)
1080 torture_comment(tctx, " LSA_POLICY_MODE_SERVICE");
1081 if (*(r.out.access_mask) & LSA_POLICY_MODE_PROXY)
1082 torture_comment(tctx, " LSA_POLICY_MODE_PROXY");
1083 if (*(r.out.access_mask) & LSA_POLICY_MODE_DENY_INTERACTIVE)
1084 torture_comment(tctx, " LSA_POLICY_MODE_DENY_INTERACTIVE");
1085 if (*(r.out.access_mask) & LSA_POLICY_MODE_DENY_NETWORK)
1086 torture_comment(tctx, " LSA_POLICY_MODE_DENY_NETWORK");
1087 if (*(r.out.access_mask) & LSA_POLICY_MODE_DENY_BATCH)
1088 torture_comment(tctx, " LSA_POLICY_MODE_DENY_BATCH");
1089 if (*(r.out.access_mask) & LSA_POLICY_MODE_DENY_SERVICE)
1090 torture_comment(tctx, " LSA_POLICY_MODE_DENY_SERVICE");
1091 if (*(r.out.access_mask) & LSA_POLICY_MODE_REMOTE_INTERACTIVE)
1092 torture_comment(tctx, " LSA_POLICY_MODE_REMOTE_INTERACTIVE");
1093 if (*(r.out.access_mask) & LSA_POLICY_MODE_DENY_REMOTE_INTERACTIVE)
1094 torture_comment(tctx, " LSA_POLICY_MODE_DENY_REMOTE_INTERACTIVE");
1095 if (*(r.out.access_mask) & LSA_POLICY_MODE_ALL)
1096 torture_comment(tctx, " LSA_POLICY_MODE_ALL");
1097 if (*(r.out.access_mask) & LSA_POLICY_MODE_ALL_NT4)
1098 torture_comment(tctx, " LSA_POLICY_MODE_ALL_NT4");
1099 torture_comment(tctx, "\n");
1100 }
1101
1102 return true;
1103}
1104
1105static bool test_Delete(struct dcerpc_binding_handle *b,
1106 struct torture_context *tctx,
1107 struct policy_handle *handle)
1108{
1109 struct lsa_Delete r;
1110
1111 torture_comment(tctx, "\nTesting Delete\n");
1112
1113 r.in.handle = handle;
1114 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_Delete_r(b, tctx, &r),
1115 "Delete failed");
1116 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_NOT_SUPPORTED)) {
1117 torture_comment(tctx, "Delete should have failed NT_STATUS_NOT_SUPPORTED - %s\n", nt_errstr(r.out.result));
1118 return false;
1119 }
1120
1121 return true;
1122}
1123
1124static bool test_DeleteObject(struct dcerpc_binding_handle *b,
1125 struct torture_context *tctx,
1126 struct policy_handle *handle)
1127{
1128 struct lsa_DeleteObject r;
1129
1130 torture_comment(tctx, "\nTesting DeleteObject\n");
1131
1132 r.in.handle = handle;
1133 r.out.handle = handle;
1134 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_DeleteObject_r(b, tctx, &r),
1135 "DeleteObject failed");
1136 if (!NT_STATUS_IS_OK(r.out.result)) {
1137 torture_comment(tctx, "DeleteObject failed - %s\n",
1138 nt_errstr(r.out.result));
1139 return false;
1140 }
1141
1142 return true;
1143}
1144
1145
1146static bool test_CreateAccount(struct dcerpc_binding_handle *b,
1147 struct torture_context *tctx,
1148 struct policy_handle *handle)
1149{
1150 struct lsa_CreateAccount r;
1151 struct dom_sid2 *newsid;
1152 struct policy_handle acct_handle;
1153
1154 newsid = dom_sid_parse_talloc(tctx, "S-1-5-12349876-4321-2854");
1155
1156 torture_comment(tctx, "\nTesting CreateAccount\n");
1157
1158 r.in.handle = handle;
1159 r.in.sid = newsid;
1160 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1161 r.out.acct_handle = &acct_handle;
1162
1163 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateAccount_r(b, tctx, &r),
1164 "CreateAccount failed");
1165 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_OBJECT_NAME_COLLISION)) {
1166 struct lsa_OpenAccount r_o;
1167 r_o.in.handle = handle;
1168 r_o.in.sid = newsid;
1169 r_o.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1170 r_o.out.acct_handle = &acct_handle;
1171
1172 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenAccount_r(b, tctx, &r_o),
1173 "OpenAccount failed");
1174 if (!NT_STATUS_IS_OK(r_o.out.result)) {
1175 torture_comment(tctx, "OpenAccount failed - %s\n",
1176 nt_errstr(r_o.out.result));
1177 return false;
1178 }
1179 } else if (!NT_STATUS_IS_OK(r.out.result)) {
1180 torture_comment(tctx, "CreateAccount failed - %s\n",
1181 nt_errstr(r.out.result));
1182 return false;
1183 }
1184
1185 if (!test_Delete(b, tctx, &acct_handle)) {
1186 return false;
1187 }
1188
1189 if (!test_DeleteObject(b, tctx, &acct_handle)) {
1190 return false;
1191 }
1192
1193 return true;
1194}
1195
1196static bool test_DeleteTrustedDomain(struct dcerpc_binding_handle *b,
1197 struct torture_context *tctx,
1198 struct policy_handle *handle,
1199 struct lsa_StringLarge name)
1200{
1201 struct lsa_OpenTrustedDomainByName r;
1202 struct policy_handle trustdom_handle;
1203
1204 r.in.handle = handle;
1205 r.in.name.string = name.string;
1206 r.in.access_mask = SEC_STD_DELETE;
1207 r.out.trustdom_handle = &trustdom_handle;
1208
1209 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenTrustedDomainByName_r(b, tctx, &r),
1210 "OpenTrustedDomainByName failed");
1211 if (!NT_STATUS_IS_OK(r.out.result)) {
1212 torture_comment(tctx, "OpenTrustedDomainByName failed - %s\n", nt_errstr(r.out.result));
1213 return false;
1214 }
1215
1216 if (!test_Delete(b, tctx, &trustdom_handle)) {
1217 return false;
1218 }
1219
1220 if (!test_DeleteObject(b, tctx, &trustdom_handle)) {
1221 return false;
1222 }
1223
1224 return true;
1225}
1226
1227static bool test_DeleteTrustedDomainBySid(struct dcerpc_binding_handle *b,
1228 struct torture_context *tctx,
1229 struct policy_handle *handle,
1230 struct dom_sid *sid)
1231{
1232 struct lsa_DeleteTrustedDomain r;
1233
1234 r.in.handle = handle;
1235 r.in.dom_sid = sid;
1236
1237 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_DeleteTrustedDomain_r(b, tctx, &r),
1238 "DeleteTrustedDomain failed");
1239 if (!NT_STATUS_IS_OK(r.out.result)) {
1240 torture_comment(tctx, "DeleteTrustedDomain failed - %s\n", nt_errstr(r.out.result));
1241 return false;
1242 }
1243
1244 return true;
1245}
1246
1247
1248static bool test_CreateSecret(struct dcerpc_pipe *p,
1249 struct torture_context *tctx,
1250 struct policy_handle *handle)
1251{
1252 NTSTATUS status;
1253 struct lsa_CreateSecret r;
1254 struct lsa_OpenSecret r2;
1255 struct lsa_SetSecret r3;
1256 struct lsa_QuerySecret r4;
1257 struct lsa_SetSecret r5;
1258 struct lsa_QuerySecret r6;
1259 struct lsa_SetSecret r7;
1260 struct lsa_QuerySecret r8;
1261 struct policy_handle sec_handle, sec_handle2, sec_handle3;
1262 struct lsa_DeleteObject d_o;
1263 struct lsa_DATA_BUF buf1;
1264 struct lsa_DATA_BUF_PTR bufp1;
1265 struct lsa_DATA_BUF_PTR bufp2;
1266 DATA_BLOB enc_key;
1267 bool ret = true;
1268 DATA_BLOB session_key;
1269 NTTIME old_mtime, new_mtime;
1270 DATA_BLOB blob1, blob2;
1271 const char *secret1 = "abcdef12345699qwerty";
1272 char *secret2;
1273 const char *secret3 = "ABCDEF12345699QWERTY";
1274 char *secret4;
1275 const char *secret5 = "NEW-SAMBA4-SECRET";
1276 char *secret6;
1277 char *secname[2];
1278 int i;
1279 const int LOCAL = 0;
1280 const int GLOBAL = 1;
1281 struct dcerpc_binding_handle *b = p->binding_handle;
1282
1283 secname[LOCAL] = talloc_asprintf(tctx, "torturesecret-%u", (unsigned int)random());
1284 secname[GLOBAL] = talloc_asprintf(tctx, "G$torturesecret-%u", (unsigned int)random());
1285
1286 for (i=0; i< 2; i++) {
1287 torture_comment(tctx, "\nTesting CreateSecret of %s\n", secname[i]);
1288
1289 init_lsa_String(&r.in.name, secname[i]);
1290
1291 r.in.handle = handle;
1292 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1293 r.out.sec_handle = &sec_handle;
1294
1295 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateSecret_r(b, tctx, &r),
1296 "CreateSecret failed");
1297 if (!NT_STATUS_IS_OK(r.out.result)) {
1298 torture_comment(tctx, "CreateSecret failed - %s\n", nt_errstr(r.out.result));
1299 return false;
1300 }
1301
1302 r.in.handle = handle;
1303 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1304 r.out.sec_handle = &sec_handle3;
1305
1306 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateSecret_r(b, tctx, &r),
1307 "CreateSecret failed");
1308 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_OBJECT_NAME_COLLISION)) {
1309 torture_comment(tctx, "CreateSecret should have failed OBJECT_NAME_COLLISION - %s\n", nt_errstr(r.out.result));
1310 return false;
1311 }
1312
1313 r2.in.handle = handle;
1314 r2.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1315 r2.in.name = r.in.name;
1316 r2.out.sec_handle = &sec_handle2;
1317
1318 torture_comment(tctx, "Testing OpenSecret\n");
1319
1320 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenSecret_r(b, tctx, &r2),
1321 "OpenSecret failed");
1322 if (!NT_STATUS_IS_OK(r2.out.result)) {
1323 torture_comment(tctx, "OpenSecret failed - %s\n", nt_errstr(r2.out.result));
1324 return false;
1325 }
1326
1327 status = dcerpc_fetch_session_key(p, &session_key);
1328 if (!NT_STATUS_IS_OK(status)) {
1329 torture_comment(tctx, "dcerpc_fetch_session_key failed - %s\n", nt_errstr(status));
1330 return false;
1331 }
1332
1333 enc_key = sess_encrypt_string(secret1, &session_key);
1334
1335 r3.in.sec_handle = &sec_handle;
1336 r3.in.new_val = &buf1;
1337 r3.in.old_val = NULL;
1338 r3.in.new_val->data = enc_key.data;
1339 r3.in.new_val->length = enc_key.length;
1340 r3.in.new_val->size = enc_key.length;
1341
1342 torture_comment(tctx, "Testing SetSecret\n");
1343
1344 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_SetSecret_r(b, tctx, &r3),
1345 "SetSecret failed");
1346 if (!NT_STATUS_IS_OK(r3.out.result)) {
1347 torture_comment(tctx, "SetSecret failed - %s\n", nt_errstr(r3.out.result));
1348 return false;
1349 }
1350
1351 r3.in.sec_handle = &sec_handle;
1352 r3.in.new_val = &buf1;
1353 r3.in.old_val = NULL;
1354 r3.in.new_val->data = enc_key.data;
1355 r3.in.new_val->length = enc_key.length;
1356 r3.in.new_val->size = enc_key.length;
1357
1358 /* break the encrypted data */
1359 enc_key.data[0]++;
1360
1361 torture_comment(tctx, "Testing SetSecret with broken key\n");
1362
1363 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_SetSecret_r(b, tctx, &r3),
1364 "SetSecret failed");
1365 if (!NT_STATUS_EQUAL(r3.out.result, NT_STATUS_UNKNOWN_REVISION)) {
1366 torture_comment(tctx, "SetSecret should have failed UNKNOWN_REVISION - %s\n", nt_errstr(r3.out.result));
1367 ret = false;
1368 }
1369
1370 data_blob_free(&enc_key);
1371
1372 ZERO_STRUCT(new_mtime);
1373 ZERO_STRUCT(old_mtime);
1374
1375 /* fetch the secret back again */
1376 r4.in.sec_handle = &sec_handle;
1377 r4.in.new_val = &bufp1;
1378 r4.in.new_mtime = &new_mtime;
1379 r4.in.old_val = NULL;
1380 r4.in.old_mtime = NULL;
1381
1382 bufp1.buf = NULL;
1383
1384 torture_comment(tctx, "Testing QuerySecret\n");
1385 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QuerySecret_r(b, tctx, &r4),
1386 "QuerySecret failed");
1387 if (!NT_STATUS_IS_OK(r4.out.result)) {
1388 torture_comment(tctx, "QuerySecret failed - %s\n", nt_errstr(r4.out.result));
1389 ret = false;
1390 } else {
1391 if (r4.out.new_val == NULL || r4.out.new_val->buf == NULL) {
1392 torture_comment(tctx, "No secret buffer returned\n");
1393 ret = false;
1394 } else {
1395 blob1.data = r4.out.new_val->buf->data;
1396 blob1.length = r4.out.new_val->buf->size;
1397
1398 blob2 = data_blob_talloc(tctx, NULL, blob1.length);
1399
1400 secret2 = sess_decrypt_string(tctx,
1401 &blob1, &session_key);
1402
1403 if (strcmp(secret1, secret2) != 0) {
1404 torture_comment(tctx, "Returned secret (r4) '%s' doesn't match '%s'\n",
1405 secret2, secret1);
1406 ret = false;
1407 }
1408 }
1409 }
1410
1411 enc_key = sess_encrypt_string(secret3, &session_key);
1412
1413 r5.in.sec_handle = &sec_handle;
1414 r5.in.new_val = &buf1;
1415 r5.in.old_val = NULL;
1416 r5.in.new_val->data = enc_key.data;
1417 r5.in.new_val->length = enc_key.length;
1418 r5.in.new_val->size = enc_key.length;
1419
1420
1421 smb_msleep(200);
1422 torture_comment(tctx, "Testing SetSecret (existing value should move to old)\n");
1423
1424 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_SetSecret_r(b, tctx, &r5),
1425 "SetSecret failed");
1426 if (!NT_STATUS_IS_OK(r5.out.result)) {
1427 torture_comment(tctx, "SetSecret failed - %s\n", nt_errstr(r5.out.result));
1428 ret = false;
1429 }
1430
1431 data_blob_free(&enc_key);
1432
1433 ZERO_STRUCT(new_mtime);
1434 ZERO_STRUCT(old_mtime);
1435
1436 /* fetch the secret back again */
1437 r6.in.sec_handle = &sec_handle;
1438 r6.in.new_val = &bufp1;
1439 r6.in.new_mtime = &new_mtime;
1440 r6.in.old_val = &bufp2;
1441 r6.in.old_mtime = &old_mtime;
1442
1443 bufp1.buf = NULL;
1444 bufp2.buf = NULL;
1445
1446 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QuerySecret_r(b, tctx, &r6),
1447 "QuerySecret failed");
1448 if (!NT_STATUS_IS_OK(r6.out.result)) {
1449 torture_comment(tctx, "QuerySecret failed - %s\n", nt_errstr(r6.out.result));
1450 ret = false;
1451 secret4 = NULL;
1452 } else {
1453
1454 if (r6.out.new_val->buf == NULL || r6.out.old_val->buf == NULL
1455 || r6.out.new_mtime == NULL || r6.out.old_mtime == NULL) {
1456 torture_comment(tctx, "Both secret buffers and both times not returned\n");
1457 ret = false;
1458 secret4 = NULL;
1459 } else {
1460 blob1.data = r6.out.new_val->buf->data;
1461 blob1.length = r6.out.new_val->buf->size;
1462
1463 blob2 = data_blob_talloc(tctx, NULL, blob1.length);
1464
1465 secret4 = sess_decrypt_string(tctx,
1466 &blob1, &session_key);
1467
1468 if (strcmp(secret3, secret4) != 0) {
1469 torture_comment(tctx, "Returned NEW secret %s doesn't match %s\n", secret4, secret3);
1470 ret = false;
1471 }
1472
1473 blob1.data = r6.out.old_val->buf->data;
1474 blob1.length = r6.out.old_val->buf->length;
1475
1476 blob2 = data_blob_talloc(tctx, NULL, blob1.length);
1477
1478 secret2 = sess_decrypt_string(tctx,
1479 &blob1, &session_key);
1480
1481 if (strcmp(secret1, secret2) != 0) {
1482 torture_comment(tctx, "Returned OLD secret %s doesn't match %s\n", secret2, secret1);
1483 ret = false;
1484 }
1485
1486 if (*r6.out.new_mtime == *r6.out.old_mtime) {
1487 torture_comment(tctx, "Returned secret (r6-%d) %s must not have same mtime for both secrets: %s != %s\n",
1488 i,
1489 secname[i],
1490 nt_time_string(tctx, *r6.out.old_mtime),
1491 nt_time_string(tctx, *r6.out.new_mtime));
1492 ret = false;
1493 }
1494 }
1495 }
1496
1497 enc_key = sess_encrypt_string(secret5, &session_key);
1498
1499 r7.in.sec_handle = &sec_handle;
1500 r7.in.old_val = &buf1;
1501 r7.in.old_val->data = enc_key.data;
1502 r7.in.old_val->length = enc_key.length;
1503 r7.in.old_val->size = enc_key.length;
1504 r7.in.new_val = NULL;
1505
1506 torture_comment(tctx, "Testing SetSecret of old Secret only\n");
1507
1508 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_SetSecret_r(b, tctx, &r7),
1509 "SetSecret failed");
1510 if (!NT_STATUS_IS_OK(r7.out.result)) {
1511 torture_comment(tctx, "SetSecret failed - %s\n", nt_errstr(r7.out.result));
1512 ret = false;
1513 }
1514
1515 data_blob_free(&enc_key);
1516
1517 /* fetch the secret back again */
1518 r8.in.sec_handle = &sec_handle;
1519 r8.in.new_val = &bufp1;
1520 r8.in.new_mtime = &new_mtime;
1521 r8.in.old_val = &bufp2;
1522 r8.in.old_mtime = &old_mtime;
1523
1524 bufp1.buf = NULL;
1525 bufp2.buf = NULL;
1526
1527 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QuerySecret_r(b, tctx, &r8),
1528 "QuerySecret failed");
1529 if (!NT_STATUS_IS_OK(r8.out.result)) {
1530 torture_comment(tctx, "QuerySecret failed - %s\n", nt_errstr(r8.out.result));
1531 ret = false;
1532 } else {
1533 if (!r8.out.new_val || !r8.out.old_val) {
1534 torture_comment(tctx, "in/out pointers not returned, despite being set on in for QuerySecret\n");
1535 ret = false;
1536 } else if (r8.out.new_val->buf != NULL) {
1537 torture_comment(tctx, "NEW secret buffer must not be returned after OLD set\n");
1538 ret = false;
1539 } else if (r8.out.old_val->buf == NULL) {
1540 torture_comment(tctx, "OLD secret buffer was not returned after OLD set\n");
1541 ret = false;
1542 } else if (r8.out.new_mtime == NULL || r8.out.old_mtime == NULL) {
1543 torture_comment(tctx, "Both times not returned after OLD set\n");
1544 ret = false;
1545 } else {
1546 blob1.data = r8.out.old_val->buf->data;
1547 blob1.length = r8.out.old_val->buf->size;
1548
1549 blob2 = data_blob_talloc(tctx, NULL, blob1.length);
1550
1551 secret6 = sess_decrypt_string(tctx,
1552 &blob1, &session_key);
1553
1554 if (strcmp(secret5, secret6) != 0) {
1555 torture_comment(tctx, "Returned OLD secret %s doesn't match %s\n", secret5, secret6);
1556 ret = false;
1557 }
1558
1559 if (*r8.out.new_mtime != *r8.out.old_mtime) {
1560 torture_comment(tctx, "Returned secret (r8) %s did not had same mtime for both secrets: %s != %s\n",
1561 secname[i],
1562 nt_time_string(tctx, *r8.out.old_mtime),
1563 nt_time_string(tctx, *r8.out.new_mtime));
1564 ret = false;
1565 }
1566 }
1567 }
1568
1569 if (!test_Delete(b, tctx, &sec_handle)) {
1570 ret = false;
1571 }
1572
1573 if (!test_DeleteObject(b, tctx, &sec_handle)) {
1574 return false;
1575 }
1576
1577 d_o.in.handle = &sec_handle2;
1578 d_o.out.handle = &sec_handle2;
1579 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_DeleteObject_r(b, tctx, &d_o),
1580 "DeleteObject failed");
1581 if (!NT_STATUS_EQUAL(d_o.out.result, NT_STATUS_INVALID_HANDLE)) {
1582 torture_comment(tctx, "Second delete expected INVALID_HANDLE - %s\n", nt_errstr(d_o.out.result));
1583 ret = false;
1584 } else {
1585
1586 torture_comment(tctx, "Testing OpenSecret of just-deleted secret\n");
1587
1588 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenSecret_r(b, tctx, &r2),
1589 "OpenSecret failed");
1590 if (!NT_STATUS_EQUAL(r2.out.result, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
1591 torture_comment(tctx, "OpenSecret expected OBJECT_NAME_NOT_FOUND - %s\n", nt_errstr(r2.out.result));
1592 ret = false;
1593 }
1594 }
1595
1596 }
1597
1598 return ret;
1599}
1600
1601
1602static bool test_EnumAccountRights(struct dcerpc_binding_handle *b,
1603 struct torture_context *tctx,
1604 struct policy_handle *acct_handle,
1605 struct dom_sid *sid)
1606{
1607 struct lsa_EnumAccountRights r;
1608 struct lsa_RightSet rights;
1609
1610 torture_comment(tctx, "\nTesting EnumAccountRights\n");
1611
1612 r.in.handle = acct_handle;
1613 r.in.sid = sid;
1614 r.out.rights = &rights;
1615
1616 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumAccountRights_r(b, tctx, &r),
1617 "EnumAccountRights failed");
1618 if (!NT_STATUS_IS_OK(r.out.result)) {
1619 torture_comment(tctx, "EnumAccountRights of %s failed - %s\n",
1620 dom_sid_string(tctx, sid), nt_errstr(r.out.result));
1621 return false;
1622 }
1623
1624 return true;
1625}
1626
1627
1628static bool test_QuerySecurity(struct dcerpc_binding_handle *b,
1629 struct torture_context *tctx,
1630 struct policy_handle *handle,
1631 struct policy_handle *acct_handle)
1632{
1633 struct lsa_QuerySecurity r;
1634 struct sec_desc_buf *sdbuf = NULL;
1635
1636 if (torture_setting_bool(tctx, "samba4", false)) {
1637 torture_comment(tctx, "\nskipping QuerySecurity test against Samba4\n");
1638 return true;
1639 }
1640
1641 torture_comment(tctx, "\nTesting QuerySecurity\n");
1642
1643 r.in.handle = acct_handle;
1644 r.in.sec_info = SECINFO_OWNER |
1645 SECINFO_GROUP |
1646 SECINFO_DACL;
1647 r.out.sdbuf = &sdbuf;
1648
1649 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QuerySecurity_r(b, tctx, &r),
1650 "QuerySecurity failed");
1651 if (!NT_STATUS_IS_OK(r.out.result)) {
1652 torture_comment(tctx, "QuerySecurity failed - %s\n", nt_errstr(r.out.result));
1653 return false;
1654 }
1655
1656 return true;
1657}
1658
1659static bool test_OpenAccount(struct dcerpc_binding_handle *b,
1660 struct torture_context *tctx,
1661 struct policy_handle *handle,
1662 struct dom_sid *sid)
1663{
1664 struct lsa_OpenAccount r;
1665 struct policy_handle acct_handle;
1666
1667 torture_comment(tctx, "\nTesting OpenAccount\n");
1668
1669 r.in.handle = handle;
1670 r.in.sid = sid;
1671 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1672 r.out.acct_handle = &acct_handle;
1673
1674 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenAccount_r(b, tctx, &r),
1675 "OpenAccount failed");
1676 if (!NT_STATUS_IS_OK(r.out.result)) {
1677 torture_comment(tctx, "OpenAccount failed - %s\n", nt_errstr(r.out.result));
1678 return false;
1679 }
1680
1681 if (!test_EnumPrivsAccount(b, tctx, handle, &acct_handle)) {
1682 return false;
1683 }
1684
1685 if (!test_GetSystemAccessAccount(b, tctx, handle, &acct_handle)) {
1686 return false;
1687 }
1688
1689 if (!test_QuerySecurity(b, tctx, handle, &acct_handle)) {
1690 return false;
1691 }
1692
1693 return true;
1694}
1695
1696static bool test_EnumAccounts(struct dcerpc_binding_handle *b,
1697 struct torture_context *tctx,
1698 struct policy_handle *handle)
1699{
1700 struct lsa_EnumAccounts r;
1701 struct lsa_SidArray sids1, sids2;
1702 uint32_t resume_handle = 0;
1703 int i;
1704 bool ret = true;
1705
1706 torture_comment(tctx, "\nTesting EnumAccounts\n");
1707
1708 r.in.handle = handle;
1709 r.in.resume_handle = &resume_handle;
1710 r.in.num_entries = 100;
1711 r.out.resume_handle = &resume_handle;
1712 r.out.sids = &sids1;
1713
1714 resume_handle = 0;
1715 while (true) {
1716 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumAccounts_r(b, tctx, &r),
1717 "EnumAccounts failed");
1718 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_NO_MORE_ENTRIES)) {
1719 break;
1720 }
1721 if (!NT_STATUS_IS_OK(r.out.result)) {
1722 torture_comment(tctx, "EnumAccounts failed - %s\n", nt_errstr(r.out.result));
1723 return false;
1724 }
1725
1726 if (!test_LookupSids(b, tctx, handle, &sids1)) {
1727 return false;
1728 }
1729
1730 if (!test_LookupSids2(b, tctx, handle, &sids1)) {
1731 return false;
1732 }
1733
1734 /* Can't test lookupSids3 here, as clearly we must not
1735 * be on schannel, or we would not be able to do the
1736 * rest */
1737
1738 torture_comment(tctx, "Testing all accounts\n");
1739 for (i=0;i<sids1.num_sids;i++) {
1740 ret &= test_OpenAccount(b, tctx, handle, sids1.sids[i].sid);
1741 ret &= test_EnumAccountRights(b, tctx, handle, sids1.sids[i].sid);
1742 }
1743 torture_comment(tctx, "\n");
1744 }
1745
1746 if (sids1.num_sids < 3) {
1747 return ret;
1748 }
1749
1750 torture_comment(tctx, "Trying EnumAccounts partial listing (asking for 1 at 2)\n");
1751 resume_handle = 2;
1752 r.in.num_entries = 1;
1753 r.out.sids = &sids2;
1754
1755 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumAccounts_r(b, tctx, &r),
1756 "EnumAccounts failed");
1757 if (!NT_STATUS_IS_OK(r.out.result)) {
1758 torture_comment(tctx, "EnumAccounts failed - %s\n", nt_errstr(r.out.result));
1759 return false;
1760 }
1761
1762 if (sids2.num_sids != 1) {
1763 torture_comment(tctx, "Returned wrong number of entries (%d)\n", sids2.num_sids);
1764 return false;
1765 }
1766
1767 return true;
1768}
1769
1770static bool test_LookupPrivDisplayName(struct dcerpc_binding_handle *b,
1771 struct torture_context *tctx,
1772 struct policy_handle *handle,
1773 struct lsa_String *priv_name)
1774{
1775 struct lsa_LookupPrivDisplayName r;
1776 /* produce a reasonable range of language output without screwing up
1777 terminals */
1778 uint16_t language_id = (random() % 4) + 0x409;
1779 uint16_t returned_language_id = 0;
1780 struct lsa_StringLarge *disp_name = NULL;
1781
1782 torture_comment(tctx, "\nTesting LookupPrivDisplayName(%s)\n", priv_name->string);
1783
1784 r.in.handle = handle;
1785 r.in.name = priv_name;
1786 r.in.language_id = language_id;
1787 r.in.language_id_sys = 0;
1788 r.out.returned_language_id = &returned_language_id;
1789 r.out.disp_name = &disp_name;
1790
1791 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_LookupPrivDisplayName_r(b, tctx, &r),
1792 "LookupPrivDisplayName failed");
1793 if (!NT_STATUS_IS_OK(r.out.result)) {
1794 torture_comment(tctx, "LookupPrivDisplayName failed - %s\n", nt_errstr(r.out.result));
1795 return false;
1796 }
1797 torture_comment(tctx, "%s -> \"%s\" (language 0x%x/0x%x)\n",
1798 priv_name->string, disp_name->string,
1799 r.in.language_id, *r.out.returned_language_id);
1800
1801 return true;
1802}
1803
1804static bool test_EnumAccountsWithUserRight(struct dcerpc_binding_handle *b,
1805 struct torture_context *tctx,
1806 struct policy_handle *handle,
1807 struct lsa_String *priv_name)
1808{
1809 struct lsa_EnumAccountsWithUserRight r;
1810 struct lsa_SidArray sids;
1811
1812 ZERO_STRUCT(sids);
1813
1814 torture_comment(tctx, "\nTesting EnumAccountsWithUserRight(%s)\n", priv_name->string);
1815
1816 r.in.handle = handle;
1817 r.in.name = priv_name;
1818 r.out.sids = &sids;
1819
1820 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumAccountsWithUserRight_r(b, tctx, &r),
1821 "EnumAccountsWithUserRight failed");
1822
1823 /* NT_STATUS_NO_MORE_ENTRIES means noone has this privilege */
1824 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_NO_MORE_ENTRIES)) {
1825 return true;
1826 }
1827
1828 if (!NT_STATUS_IS_OK(r.out.result)) {
1829 torture_comment(tctx, "EnumAccountsWithUserRight failed - %s\n", nt_errstr(r.out.result));
1830 return false;
1831 }
1832
1833 return true;
1834}
1835
1836
1837static bool test_EnumPrivs(struct dcerpc_binding_handle *b,
1838 struct torture_context *tctx,
1839 struct policy_handle *handle)
1840{
1841 struct lsa_EnumPrivs r;
1842 struct lsa_PrivArray privs1;
1843 uint32_t resume_handle = 0;
1844 int i;
1845 bool ret = true;
1846
1847 torture_comment(tctx, "\nTesting EnumPrivs\n");
1848
1849 r.in.handle = handle;
1850 r.in.resume_handle = &resume_handle;
1851 r.in.max_count = 100;
1852 r.out.resume_handle = &resume_handle;
1853 r.out.privs = &privs1;
1854
1855 resume_handle = 0;
1856 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumPrivs_r(b, tctx, &r),
1857 "EnumPrivs failed");
1858 if (!NT_STATUS_IS_OK(r.out.result)) {
1859 torture_comment(tctx, "EnumPrivs failed - %s\n", nt_errstr(r.out.result));
1860 return false;
1861 }
1862
1863 for (i = 0; i< privs1.count; i++) {
1864 test_LookupPrivDisplayName(b, tctx, handle, (struct lsa_String *)&privs1.privs[i].name);
1865 test_LookupPrivValue(b, tctx, handle, (struct lsa_String *)&privs1.privs[i].name);
1866 if (!test_EnumAccountsWithUserRight(b, tctx, handle, (struct lsa_String *)&privs1.privs[i].name)) {
1867 ret = false;
1868 }
1869 }
1870
1871 return ret;
1872}
1873
1874static bool test_QueryForestTrustInformation(struct dcerpc_binding_handle *b,
1875 struct torture_context *tctx,
1876 struct policy_handle *handle,
1877 const char *trusted_domain_name)
1878{
1879 bool ret = true;
1880 struct lsa_lsaRQueryForestTrustInformation r;
1881 struct lsa_String string;
1882 struct lsa_ForestTrustInformation info, *info_ptr;
1883
1884 torture_comment(tctx, "\nTesting lsaRQueryForestTrustInformation\n");
1885
1886 if (torture_setting_bool(tctx, "samba4", false)) {
1887 torture_comment(tctx, "skipping QueryForestTrustInformation against Samba4\n");
1888 return true;
1889 }
1890
1891 ZERO_STRUCT(string);
1892
1893 if (trusted_domain_name) {
1894 init_lsa_String(&string, trusted_domain_name);
1895 }
1896
1897 info_ptr = &info;
1898
1899 r.in.handle = handle;
1900 r.in.trusted_domain_name = &string;
1901 r.in.unknown = 0;
1902 r.out.forest_trust_info = &info_ptr;
1903
1904 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_lsaRQueryForestTrustInformation_r(b, tctx, &r),
1905 "lsaRQueryForestTrustInformation failed");
1906
1907 if (!NT_STATUS_IS_OK(r.out.result)) {
1908 torture_comment(tctx, "lsaRQueryForestTrustInformation of %s failed - %s\n", trusted_domain_name, nt_errstr(r.out.result));
1909 ret = false;
1910 }
1911
1912 return ret;
1913}
1914
1915static bool test_query_each_TrustDomEx(struct dcerpc_binding_handle *b,
1916 struct torture_context *tctx,
1917 struct policy_handle *handle,
1918 struct lsa_DomainListEx *domains)
1919{
1920 int i;
1921 bool ret = true;
1922
1923 for (i=0; i< domains->count; i++) {
1924
1925 if (domains->domains[i].trust_attributes & NETR_TRUST_ATTRIBUTE_FOREST_TRANSITIVE) {
1926 ret &= test_QueryForestTrustInformation(b, tctx, handle,
1927 domains->domains[i].domain_name.string);
1928 }
1929 }
1930
1931 return ret;
1932}
1933
1934static bool test_query_each_TrustDom(struct dcerpc_binding_handle *b,
1935 struct torture_context *tctx,
1936 struct policy_handle *handle,
1937 struct lsa_DomainList *domains)
1938{
1939 int i,j;
1940 bool ret = true;
1941
1942 torture_comment(tctx, "\nTesting OpenTrustedDomain, OpenTrustedDomainByName and QueryInfoTrustedDomain\n");
1943 for (i=0; i< domains->count; i++) {
1944 struct lsa_OpenTrustedDomain trust;
1945 struct lsa_OpenTrustedDomainByName trust_by_name;
1946 struct policy_handle trustdom_handle;
1947 struct policy_handle handle2;
1948 struct lsa_Close c;
1949 struct lsa_CloseTrustedDomainEx c_trust;
1950 int levels [] = {1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13};
1951 int ok[] = {1, 0, 1, 0, 0, 1, 0, 1, 0, 0, 0, 1, 1};
1952
1953 if (domains->domains[i].sid) {
1954 trust.in.handle = handle;
1955 trust.in.sid = domains->domains[i].sid;
1956 trust.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1957 trust.out.trustdom_handle = &trustdom_handle;
1958
1959 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenTrustedDomain_r(b, tctx, &trust),
1960 "OpenTrustedDomain failed");
1961
1962 if (!NT_STATUS_IS_OK(trust.out.result)) {
1963 torture_comment(tctx, "OpenTrustedDomain failed - %s\n", nt_errstr(trust.out.result));
1964 return false;
1965 }
1966
1967 c.in.handle = &trustdom_handle;
1968 c.out.handle = &handle2;
1969
1970 c_trust.in.handle = &trustdom_handle;
1971 c_trust.out.handle = &handle2;
1972
1973 for (j=0; j < ARRAY_SIZE(levels); j++) {
1974 struct lsa_QueryTrustedDomainInfo q;
1975 union lsa_TrustedDomainInfo *info = NULL;
1976 q.in.trustdom_handle = &trustdom_handle;
1977 q.in.level = levels[j];
1978 q.out.info = &info;
1979 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryTrustedDomainInfo_r(b, tctx, &q),
1980 "QueryTrustedDomainInfo failed");
1981 if (!NT_STATUS_IS_OK(q.out.result) && ok[j]) {
1982 torture_comment(tctx, "QueryTrustedDomainInfo level %d failed - %s\n",
1983 levels[j], nt_errstr(q.out.result));
1984 ret = false;
1985 } else if (NT_STATUS_IS_OK(q.out.result) && !ok[j]) {
1986 torture_comment(tctx, "QueryTrustedDomainInfo level %d unexpectedly succeeded - %s\n",
1987 levels[j], nt_errstr(q.out.result));
1988 ret = false;
1989 }
1990 }
1991
1992 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CloseTrustedDomainEx_r(b, tctx, &c_trust),
1993 "CloseTrustedDomainEx failed");
1994 if (!NT_STATUS_EQUAL(c_trust.out.result, NT_STATUS_NOT_IMPLEMENTED)) {
1995 torture_comment(tctx, "Expected CloseTrustedDomainEx to return NT_STATUS_NOT_IMPLEMENTED, instead - %s\n", nt_errstr(c_trust.out.result));
1996 return false;
1997 }
1998
1999 c.in.handle = &trustdom_handle;
2000 c.out.handle = &handle2;
2001
2002 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_Close_r(b, tctx, &c),
2003 "Close failed");
2004 if (!NT_STATUS_IS_OK(c.out.result)) {
2005 torture_comment(tctx, "Close of trusted domain failed - %s\n", nt_errstr(c.out.result));
2006 return false;
2007 }
2008
2009 for (j=0; j < ARRAY_SIZE(levels); j++) {
2010 struct lsa_QueryTrustedDomainInfoBySid q;
2011 union lsa_TrustedDomainInfo *info = NULL;
2012
2013 if (!domains->domains[i].sid) {
2014 continue;
2015 }
2016
2017 q.in.handle = handle;
2018 q.in.dom_sid = domains->domains[i].sid;
2019 q.in.level = levels[j];
2020 q.out.info = &info;
2021
2022 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryTrustedDomainInfoBySid_r(b, tctx, &q),
2023 "lsa_QueryTrustedDomainInfoBySid failed");
2024 if (!NT_STATUS_IS_OK(q.out.result) && ok[j]) {
2025 torture_comment(tctx, "QueryTrustedDomainInfoBySid level %d failed - %s\n",
2026 levels[j], nt_errstr(q.out.result));
2027 ret = false;
2028 } else if (NT_STATUS_IS_OK(q.out.result) && !ok[j]) {
2029 torture_comment(tctx, "QueryTrustedDomainInfoBySid level %d unexpectedly succeeded - %s\n",
2030 levels[j], nt_errstr(q.out.result));
2031 ret = false;
2032 }
2033 }
2034 }
2035
2036 trust_by_name.in.handle = handle;
2037 trust_by_name.in.name.string = domains->domains[i].name.string;
2038 trust_by_name.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
2039 trust_by_name.out.trustdom_handle = &trustdom_handle;
2040
2041 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenTrustedDomainByName_r(b, tctx, &trust_by_name),
2042 "OpenTrustedDomainByName failed");
2043
2044 if (!NT_STATUS_IS_OK(trust_by_name.out.result)) {
2045 torture_comment(tctx, "OpenTrustedDomainByName failed - %s\n", nt_errstr(trust_by_name.out.result));
2046 return false;
2047 }
2048
2049 for (j=0; j < ARRAY_SIZE(levels); j++) {
2050 struct lsa_QueryTrustedDomainInfo q;
2051 union lsa_TrustedDomainInfo *info = NULL;
2052 q.in.trustdom_handle = &trustdom_handle;
2053 q.in.level = levels[j];
2054 q.out.info = &info;
2055 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryTrustedDomainInfo_r(b, tctx, &q),
2056 "QueryTrustedDomainInfo failed");
2057 if (!NT_STATUS_IS_OK(q.out.result) && ok[j]) {
2058 torture_comment(tctx, "QueryTrustedDomainInfo level %d failed - %s\n",
2059 levels[j], nt_errstr(q.out.result));
2060 ret = false;
2061 } else if (NT_STATUS_IS_OK(q.out.result) && !ok[j]) {
2062 torture_comment(tctx, "QueryTrustedDomainInfo level %d unexpectedly succeeded - %s\n",
2063 levels[j], nt_errstr(q.out.result));
2064 ret = false;
2065 }
2066 }
2067
2068 c.in.handle = &trustdom_handle;
2069 c.out.handle = &handle2;
2070
2071 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_Close_r(b, tctx, &c),
2072 "Close failed");
2073 if (!NT_STATUS_IS_OK(c.out.result)) {
2074 torture_comment(tctx, "Close of trusted domain failed - %s\n", nt_errstr(c.out.result));
2075 return false;
2076 }
2077
2078 for (j=0; j < ARRAY_SIZE(levels); j++) {
2079 struct lsa_QueryTrustedDomainInfoByName q;
2080 union lsa_TrustedDomainInfo *info = NULL;
2081 struct lsa_String name;
2082
2083 name.string = domains->domains[i].name.string;
2084
2085 q.in.handle = handle;
2086 q.in.trusted_domain = &name;
2087 q.in.level = levels[j];
2088 q.out.info = &info;
2089 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryTrustedDomainInfoByName_r(b, tctx, &q),
2090 "QueryTrustedDomainInfoByName failed");
2091 if (!NT_STATUS_IS_OK(q.out.result) && ok[j]) {
2092 torture_comment(tctx, "QueryTrustedDomainInfoByName level %d failed - %s\n",
2093 levels[j], nt_errstr(q.out.result));
2094 ret = false;
2095 } else if (NT_STATUS_IS_OK(q.out.result) && !ok[j]) {
2096 torture_comment(tctx, "QueryTrustedDomainInfoByName level %d unexpectedly succeeded - %s\n",
2097 levels[j], nt_errstr(q.out.result));
2098 ret = false;
2099 }
2100 }
2101 }
2102 return ret;
2103}
2104
2105static bool test_EnumTrustDom(struct dcerpc_binding_handle *b,
2106 struct torture_context *tctx,
2107 struct policy_handle *handle)
2108{
2109 struct lsa_EnumTrustDom r;
2110 uint32_t in_resume_handle = 0;
2111 uint32_t out_resume_handle;
2112 struct lsa_DomainList domains;
2113 bool ret = true;
2114
2115 torture_comment(tctx, "\nTesting EnumTrustDom\n");
2116
2117 r.in.handle = handle;
2118 r.in.resume_handle = &in_resume_handle;
2119 r.in.max_size = 0;
2120 r.out.domains = &domains;
2121 r.out.resume_handle = &out_resume_handle;
2122
2123 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumTrustDom_r(b, tctx, &r),
2124 "lsa_EnumTrustDom failed");
2125
2126 /* according to MS-LSAD 3.1.4.7.8 output resume handle MUST
2127 * always be larger than the previous input resume handle, in
2128 * particular when hitting the last query it is vital to set the
2129 * resume handle correctly to avoid infinite client loops, as
2130 * seen e.g. with Windows XP SP3 when resume handle is 0 and
2131 * status is NT_STATUS_OK - gd */
2132
2133 if (NT_STATUS_IS_OK(r.out.result) ||
2134 NT_STATUS_EQUAL(r.out.result, NT_STATUS_NO_MORE_ENTRIES) ||
2135 NT_STATUS_EQUAL(r.out.result, STATUS_MORE_ENTRIES))
2136 {
2137 if (out_resume_handle <= in_resume_handle) {
2138 torture_comment(tctx, "EnumTrustDom failed - should have returned output resume_handle (0x%08x) larger than input resume handle (0x%08x)\n",
2139 out_resume_handle, in_resume_handle);
2140 return false;
2141 }
2142 }
2143
2144 if (NT_STATUS_IS_OK(r.out.result)) {
2145 if (domains.count == 0) {
2146 torture_comment(tctx, "EnumTrustDom failed - should have returned 'NT_STATUS_NO_MORE_ENTRIES' for 0 trusted domains\n");
2147 return false;
2148 }
2149 } else if (!(NT_STATUS_EQUAL(r.out.result, STATUS_MORE_ENTRIES) || NT_STATUS_EQUAL(r.out.result, NT_STATUS_NO_MORE_ENTRIES))) {
2150 torture_comment(tctx, "EnumTrustDom of zero size failed - %s\n", nt_errstr(r.out.result));
2151 return false;
2152 }
2153
2154 /* Start from the bottom again */
2155 in_resume_handle = 0;
2156
2157 do {
2158 r.in.handle = handle;
2159 r.in.resume_handle = &in_resume_handle;
2160 r.in.max_size = LSA_ENUM_TRUST_DOMAIN_MULTIPLIER * 3;
2161 r.out.domains = &domains;
2162 r.out.resume_handle = &out_resume_handle;
2163
2164 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumTrustDom_r(b, tctx, &r),
2165 "EnumTrustDom failed");
2166
2167 /* according to MS-LSAD 3.1.4.7.8 output resume handle MUST
2168 * always be larger than the previous input resume handle, in
2169 * particular when hitting the last query it is vital to set the
2170 * resume handle correctly to avoid infinite client loops, as
2171 * seen e.g. with Windows XP SP3 when resume handle is 0 and
2172 * status is NT_STATUS_OK - gd */
2173
2174 if (NT_STATUS_IS_OK(r.out.result) ||
2175 NT_STATUS_EQUAL(r.out.result, NT_STATUS_NO_MORE_ENTRIES) ||
2176 NT_STATUS_EQUAL(r.out.result, STATUS_MORE_ENTRIES))
2177 {
2178 if (out_resume_handle <= in_resume_handle) {
2179 torture_comment(tctx, "EnumTrustDom failed - should have returned output resume_handle (0x%08x) larger than input resume handle (0x%08x)\n",
2180 out_resume_handle, in_resume_handle);
2181 return false;
2182 }
2183 }
2184
2185 /* NO_MORE_ENTRIES is allowed */
2186 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_NO_MORE_ENTRIES)) {
2187 if (domains.count == 0) {
2188 return true;
2189 }
2190 torture_comment(tctx, "EnumTrustDom failed - should have returned 0 trusted domains with 'NT_STATUS_NO_MORE_ENTRIES'\n");
2191 return false;
2192 } else if (NT_STATUS_EQUAL(r.out.result, STATUS_MORE_ENTRIES)) {
2193 /* Windows 2003 gets this off by one on the first run */
2194 if (r.out.domains->count < 3 || r.out.domains->count > 4) {
2195 torture_comment(tctx, "EnumTrustDom didn't fill the buffer we "
2196 "asked it to (got %d, expected %d / %d == %d entries)\n",
2197 r.out.domains->count, LSA_ENUM_TRUST_DOMAIN_MULTIPLIER * 3,
2198 LSA_ENUM_TRUST_DOMAIN_MULTIPLIER, r.in.max_size);
2199 ret = false;
2200 }
2201 } else if (!NT_STATUS_IS_OK(r.out.result)) {
2202 torture_comment(tctx, "EnumTrustDom failed - %s\n", nt_errstr(r.out.result));
2203 return false;
2204 }
2205
2206 if (domains.count == 0) {
2207 torture_comment(tctx, "EnumTrustDom failed - should have returned 'NT_STATUS_NO_MORE_ENTRIES' for 0 trusted domains\n");
2208 return false;
2209 }
2210
2211 ret &= test_query_each_TrustDom(b, tctx, handle, &domains);
2212
2213 in_resume_handle = out_resume_handle;
2214
2215 } while ((NT_STATUS_EQUAL(r.out.result, STATUS_MORE_ENTRIES)));
2216
2217 return ret;
2218}
2219
2220static bool test_EnumTrustDomEx(struct dcerpc_binding_handle *b,
2221 struct torture_context *tctx,
2222 struct policy_handle *handle)
2223{
2224 struct lsa_EnumTrustedDomainsEx r_ex;
2225 uint32_t resume_handle = 0;
2226 struct lsa_DomainListEx domains_ex;
2227 bool ret = true;
2228
2229 torture_comment(tctx, "\nTesting EnumTrustedDomainsEx\n");
2230
2231 r_ex.in.handle = handle;
2232 r_ex.in.resume_handle = &resume_handle;
2233 r_ex.in.max_size = LSA_ENUM_TRUST_DOMAIN_EX_MULTIPLIER * 3;
2234 r_ex.out.domains = &domains_ex;
2235 r_ex.out.resume_handle = &resume_handle;
2236
2237 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumTrustedDomainsEx_r(b, tctx, &r_ex),
2238 "EnumTrustedDomainsEx failed");
2239
2240 if (!(NT_STATUS_EQUAL(r_ex.out.result, STATUS_MORE_ENTRIES) || NT_STATUS_EQUAL(r_ex.out.result, NT_STATUS_NO_MORE_ENTRIES))) {
2241 torture_comment(tctx, "EnumTrustedDomainEx of zero size failed - %s\n", nt_errstr(r_ex.out.result));
2242 return false;
2243 }
2244
2245 resume_handle = 0;
2246 do {
2247 r_ex.in.handle = handle;
2248 r_ex.in.resume_handle = &resume_handle;
2249 r_ex.in.max_size = LSA_ENUM_TRUST_DOMAIN_EX_MULTIPLIER * 3;
2250 r_ex.out.domains = &domains_ex;
2251 r_ex.out.resume_handle = &resume_handle;
2252
2253 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_EnumTrustedDomainsEx_r(b, tctx, &r_ex),
2254 "EnumTrustedDomainsEx failed");
2255
2256 /* NO_MORE_ENTRIES is allowed */
2257 if (NT_STATUS_EQUAL(r_ex.out.result, NT_STATUS_NO_MORE_ENTRIES)) {
2258 if (domains_ex.count == 0) {
2259 return true;
2260 }
2261 torture_comment(tctx, "EnumTrustDomainsEx failed - should have returned 0 trusted domains with 'NT_STATUS_NO_MORE_ENTRIES'\n");
2262 return false;
2263 } else if (NT_STATUS_EQUAL(r_ex.out.result, STATUS_MORE_ENTRIES)) {
2264 /* Windows 2003 gets this off by one on the first run */
2265 if (r_ex.out.domains->count < 3 || r_ex.out.domains->count > 4) {
2266 torture_comment(tctx, "EnumTrustDom didn't fill the buffer we "
2267 "asked it to (got %d, expected %d / %d == %d entries)\n",
2268 r_ex.out.domains->count,
2269 r_ex.in.max_size,
2270 LSA_ENUM_TRUST_DOMAIN_EX_MULTIPLIER,
2271 r_ex.in.max_size / LSA_ENUM_TRUST_DOMAIN_EX_MULTIPLIER);
2272 }
2273 } else if (!NT_STATUS_IS_OK(r_ex.out.result)) {
2274 torture_comment(tctx, "EnumTrustedDomainEx failed - %s\n", nt_errstr(r_ex.out.result));
2275 return false;
2276 }
2277
2278 if (domains_ex.count == 0) {
2279 torture_comment(tctx, "EnumTrustDomainEx failed - should have returned 'NT_STATUS_NO_MORE_ENTRIES' for 0 trusted domains\n");
2280 return false;
2281 }
2282
2283 ret &= test_query_each_TrustDomEx(b, tctx, handle, &domains_ex);
2284
2285 } while ((NT_STATUS_EQUAL(r_ex.out.result, STATUS_MORE_ENTRIES)));
2286
2287 return ret;
2288}
2289
2290
2291static bool test_CreateTrustedDomain(struct dcerpc_binding_handle *b,
2292 struct torture_context *tctx,
2293 struct policy_handle *handle,
2294 uint32_t num_trusts)
2295{
2296 bool ret = true;
2297 struct lsa_CreateTrustedDomain r;
2298 struct lsa_DomainInfo trustinfo;
2299 struct dom_sid **domsid;
2300 struct policy_handle *trustdom_handle;
2301 struct lsa_QueryTrustedDomainInfo q;
2302 union lsa_TrustedDomainInfo *info = NULL;
2303 int i;
2304
2305 torture_comment(tctx, "\nTesting CreateTrustedDomain for %d domains\n", num_trusts);
2306
2307 if (!test_EnumTrustDom(b, tctx, handle)) {
2308 ret = false;
2309 }
2310
2311 if (!test_EnumTrustDomEx(b, tctx, handle)) {
2312 ret = false;
2313 }
2314
2315 domsid = talloc_array(tctx, struct dom_sid *, num_trusts);
2316 trustdom_handle = talloc_array(tctx, struct policy_handle, num_trusts);
2317
2318 for (i=0; i< num_trusts; i++) {
2319 char *trust_name = talloc_asprintf(tctx, "torturedom%02d", i);
2320 char *trust_sid = talloc_asprintf(tctx, "S-1-5-21-97398-379795-100%02d", i);
2321
2322 domsid[i] = dom_sid_parse_talloc(tctx, trust_sid);
2323
2324 trustinfo.sid = domsid[i];
2325 init_lsa_String((struct lsa_String *)&trustinfo.name, trust_name);
2326
2327 r.in.policy_handle = handle;
2328 r.in.info = &trustinfo;
2329 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
2330 r.out.trustdom_handle = &trustdom_handle[i];
2331
2332 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateTrustedDomain_r(b, tctx, &r),
2333 "CreateTrustedDomain failed");
2334 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_OBJECT_NAME_COLLISION)) {
2335 test_DeleteTrustedDomain(b, tctx, handle, trustinfo.name);
2336 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateTrustedDomain_r(b, tctx, &r),
2337 "CreateTrustedDomain failed");
2338 }
2339 if (!NT_STATUS_IS_OK(r.out.result)) {
2340 torture_comment(tctx, "CreateTrustedDomain failed - %s\n", nt_errstr(r.out.result));
2341 ret = false;
2342 } else {
2343
2344 q.in.trustdom_handle = &trustdom_handle[i];
2345 q.in.level = LSA_TRUSTED_DOMAIN_INFO_INFO_EX;
2346 q.out.info = &info;
2347 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryTrustedDomainInfo_r(b, tctx, &q),
2348 "QueryTrustedDomainInfo failed");
2349 if (!NT_STATUS_IS_OK(q.out.result)) {
2350 torture_comment(tctx, "QueryTrustedDomainInfo level %d failed - %s\n", q.in.level, nt_errstr(q.out.result));
2351 ret = false;
2352 } else if (!q.out.info) {
2353 ret = false;
2354 } else {
2355 if (strcmp(info->info_ex.netbios_name.string, trustinfo.name.string) != 0) {
2356 torture_comment(tctx, "QueryTrustedDomainInfo returned inconsistent short name: %s != %s\n",
2357 info->info_ex.netbios_name.string, trustinfo.name.string);
2358 ret = false;
2359 }
2360 if (info->info_ex.trust_type != LSA_TRUST_TYPE_DOWNLEVEL) {
2361 torture_comment(tctx, "QueryTrustedDomainInfo of %s returned incorrect trust type %d != %d\n",
2362 trust_name, info->info_ex.trust_type, LSA_TRUST_TYPE_DOWNLEVEL);
2363 ret = false;
2364 }
2365 if (info->info_ex.trust_attributes != 0) {
2366 torture_comment(tctx, "QueryTrustedDomainInfo of %s returned incorrect trust attributes %d != %d\n",
2367 trust_name, info->info_ex.trust_attributes, 0);
2368 ret = false;
2369 }
2370 if (info->info_ex.trust_direction != LSA_TRUST_DIRECTION_OUTBOUND) {
2371 torture_comment(tctx, "QueryTrustedDomainInfo of %s returned incorrect trust direction %d != %d\n",
2372 trust_name, info->info_ex.trust_direction, LSA_TRUST_DIRECTION_OUTBOUND);
2373 ret = false;
2374 }
2375 }
2376 }
2377 }
2378
2379 /* now that we have some domains to look over, we can test the enum calls */
2380 if (!test_EnumTrustDom(b, tctx, handle)) {
2381 ret = false;
2382 }
2383
2384 if (!test_EnumTrustDomEx(b, tctx, handle)) {
2385 ret = false;
2386 }
2387
2388 for (i=0; i<num_trusts; i++) {
2389 if (!test_DeleteTrustedDomainBySid(b, tctx, handle, domsid[i])) {
2390 ret = false;
2391 }
2392 }
2393
2394 return ret;
2395}
2396
2397static bool test_CreateTrustedDomainEx2(struct dcerpc_pipe *p,
2398 struct torture_context *tctx,
2399 struct policy_handle *handle,
2400 uint32_t num_trusts)
2401{
2402 NTSTATUS status;
2403 bool ret = true;
2404 struct lsa_CreateTrustedDomainEx2 r;
2405 struct lsa_TrustDomainInfoInfoEx trustinfo;
2406 struct lsa_TrustDomainInfoAuthInfoInternal authinfo;
2407 struct trustDomainPasswords auth_struct;
2408 DATA_BLOB auth_blob;
2409 struct dom_sid **domsid;
2410 struct policy_handle *trustdom_handle;
2411 struct lsa_QueryTrustedDomainInfo q;
2412 union lsa_TrustedDomainInfo *info = NULL;
2413 DATA_BLOB session_key;
2414 enum ndr_err_code ndr_err;
2415 int i;
2416 struct dcerpc_binding_handle *b = p->binding_handle;
2417
2418 torture_comment(tctx, "\nTesting CreateTrustedDomainEx2 for %d domains\n", num_trusts);
2419
2420 domsid = talloc_array(tctx, struct dom_sid *, num_trusts);
2421 trustdom_handle = talloc_array(tctx, struct policy_handle, num_trusts);
2422
2423 status = dcerpc_fetch_session_key(p, &session_key);
2424 if (!NT_STATUS_IS_OK(status)) {
2425 torture_comment(tctx, "dcerpc_fetch_session_key failed - %s\n", nt_errstr(status));
2426 return false;
2427 }
2428
2429 for (i=0; i< num_trusts; i++) {
2430 char *trust_name = talloc_asprintf(tctx, "torturedom%02d", i);
2431 char *trust_name_dns = talloc_asprintf(tctx, "torturedom%02d.samba.example.com", i);
2432 char *trust_sid = talloc_asprintf(tctx, "S-1-5-21-97398-379795-100%02d", i);
2433
2434 domsid[i] = dom_sid_parse_talloc(tctx, trust_sid);
2435
2436 trustinfo.sid = domsid[i];
2437 trustinfo.netbios_name.string = trust_name;
2438 trustinfo.domain_name.string = trust_name_dns;
2439
2440 /* Create inbound, some outbound, and some
2441 * bi-directional trusts in a repeating pattern based
2442 * on i */
2443
2444 /* 1 == inbound, 2 == outbound, 3 == both */
2445 trustinfo.trust_direction = (i % 3) + 1;
2446
2447 /* Try different trust types too */
2448
2449 /* 1 == downlevel (NT4), 2 == uplevel (ADS), 3 == MIT (kerberos but not AD) */
2450 trustinfo.trust_type = (((i / 3) + 1) % 3) + 1;
2451
2452 trustinfo.trust_attributes = LSA_TRUST_ATTRIBUTE_USES_RC4_ENCRYPTION;
2453
2454 generate_random_buffer(auth_struct.confounder, sizeof(auth_struct.confounder));
2455
2456 auth_struct.outgoing.count = 0;
2457 auth_struct.outgoing.current.count = 0;
2458 auth_struct.outgoing.current.array = NULL;
2459 auth_struct.outgoing.previous.count = 0;
2460 auth_struct.outgoing.previous.array = NULL;
2461
2462 auth_struct.incoming.count = 0;
2463 auth_struct.incoming.current.count = 0;
2464 auth_struct.incoming.current.array = NULL;
2465 auth_struct.incoming.previous.count = 0;
2466 auth_struct.incoming.previous.array = NULL;
2467
2468
2469 ndr_err = ndr_push_struct_blob(&auth_blob, tctx, &auth_struct,
2470 (ndr_push_flags_fn_t)ndr_push_trustDomainPasswords);
2471 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
2472 torture_comment(tctx, "ndr_push_struct_blob of trustDomainPasswords structure failed");
2473 ret = false;
2474 }
2475
2476 arcfour_crypt_blob(auth_blob.data, auth_blob.length, &session_key);
2477
2478 authinfo.auth_blob.size = auth_blob.length;
2479 authinfo.auth_blob.data = auth_blob.data;
2480
2481 r.in.policy_handle = handle;
2482 r.in.info = &trustinfo;
2483 r.in.auth_info = &authinfo;
2484 r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
2485 r.out.trustdom_handle = &trustdom_handle[i];
2486
2487 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateTrustedDomainEx2_r(b, tctx, &r),
2488 "CreateTrustedDomainEx2 failed");
2489 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_OBJECT_NAME_COLLISION)) {
2490 test_DeleteTrustedDomain(b, tctx, handle, trustinfo.netbios_name);
2491 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_CreateTrustedDomainEx2_r(b, tctx, &r),
2492 "CreateTrustedDomainEx2 failed");
2493 }
2494 if (!NT_STATUS_IS_OK(r.out.result)) {
2495 torture_comment(tctx, "CreateTrustedDomainEx failed2 - %s\n", nt_errstr(r.out.result));
2496 ret = false;
2497 } else {
2498
2499 q.in.trustdom_handle = &trustdom_handle[i];
2500 q.in.level = LSA_TRUSTED_DOMAIN_INFO_INFO_EX;
2501 q.out.info = &info;
2502 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryTrustedDomainInfo_r(b, tctx, &q),
2503 "QueryTrustedDomainInfo failed");
2504 if (!NT_STATUS_IS_OK(q.out.result)) {
2505 torture_comment(tctx, "QueryTrustedDomainInfo level 1 failed - %s\n", nt_errstr(q.out.result));
2506 ret = false;
2507 } else if (!q.out.info) {
2508 torture_comment(tctx, "QueryTrustedDomainInfo level 1 failed to return an info pointer\n");
2509 ret = false;
2510 } else {
2511 if (strcmp(info->info_ex.netbios_name.string, trustinfo.netbios_name.string) != 0) {
2512 torture_comment(tctx, "QueryTrustedDomainInfo returned inconsistent short name: %s != %s\n",
2513 info->info_ex.netbios_name.string, trustinfo.netbios_name.string);
2514 ret = false;
2515 }
2516 if (info->info_ex.trust_type != trustinfo.trust_type) {
2517 torture_comment(tctx, "QueryTrustedDomainInfo of %s returned incorrect trust type %d != %d\n",
2518 trust_name, info->info_ex.trust_type, trustinfo.trust_type);
2519 ret = false;
2520 }
2521 if (info->info_ex.trust_attributes != LSA_TRUST_ATTRIBUTE_USES_RC4_ENCRYPTION) {
2522 torture_comment(tctx, "QueryTrustedDomainInfo of %s returned incorrect trust attributes %d != %d\n",
2523 trust_name, info->info_ex.trust_attributes, LSA_TRUST_ATTRIBUTE_USES_RC4_ENCRYPTION);
2524 ret = false;
2525 }
2526 if (info->info_ex.trust_direction != trustinfo.trust_direction) {
2527 torture_comment(tctx, "QueryTrustedDomainInfo of %s returned incorrect trust direction %d != %d\n",
2528 trust_name, info->info_ex.trust_direction, trustinfo.trust_direction);
2529 ret = false;
2530 }
2531 }
2532 }
2533 }
2534
2535 /* now that we have some domains to look over, we can test the enum calls */
2536 if (!test_EnumTrustDom(b, tctx, handle)) {
2537 torture_comment(tctx, "test_EnumTrustDom failed\n");
2538 ret = false;
2539 }
2540
2541 if (!test_EnumTrustDomEx(b, tctx, handle)) {
2542 torture_comment(tctx, "test_EnumTrustDomEx failed\n");
2543 ret = false;
2544 }
2545
2546 for (i=0; i<num_trusts; i++) {
2547 if (!test_DeleteTrustedDomainBySid(b, tctx, handle, domsid[i])) {
2548 torture_comment(tctx, "test_DeleteTrustedDomainBySid failed\n");
2549 ret = false;
2550 }
2551 }
2552
2553 return ret;
2554}
2555
2556static bool test_QueryDomainInfoPolicy(struct dcerpc_binding_handle *b,
2557 struct torture_context *tctx,
2558 struct policy_handle *handle)
2559{
2560 struct lsa_QueryDomainInformationPolicy r;
2561 union lsa_DomainInformationPolicy *info = NULL;
2562 int i;
2563 bool ret = true;
2564
2565 if (torture_setting_bool(tctx, "samba3", false)) {
2566 torture_skip(tctx, "skipping QueryDomainInformationPolicy test\n");
2567 }
2568
2569 torture_comment(tctx, "\nTesting QueryDomainInformationPolicy\n");
2570
2571 for (i=2;i<4;i++) {
2572 r.in.handle = handle;
2573 r.in.level = i;
2574 r.out.info = &info;
2575
2576 torture_comment(tctx, "\nTrying QueryDomainInformationPolicy level %d\n", i);
2577
2578 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryDomainInformationPolicy_r(b, tctx, &r),
2579 "QueryDomainInformationPolicy failed");
2580
2581 /* If the server does not support EFS, then this is the correct return */
2582 if (i == LSA_DOMAIN_INFO_POLICY_EFS && NT_STATUS_EQUAL(r.out.result, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
2583 continue;
2584 } else if (!NT_STATUS_IS_OK(r.out.result)) {
2585 torture_comment(tctx, "QueryDomainInformationPolicy failed - %s\n", nt_errstr(r.out.result));
2586 ret = false;
2587 continue;
2588 }
2589 }
2590
2591 return ret;
2592}
2593
2594
2595static bool test_QueryInfoPolicyCalls( bool version2,
2596 struct dcerpc_binding_handle *b,
2597 struct torture_context *tctx,
2598 struct policy_handle *handle)
2599{
2600 struct lsa_QueryInfoPolicy r;
2601 union lsa_PolicyInformation *info = NULL;
2602 int i;
2603 bool ret = true;
2604 const char *call = talloc_asprintf(tctx, "QueryInfoPolicy%s", version2 ? "2":"");
2605
2606 torture_comment(tctx, "\nTesting %s\n", call);
2607
2608 if (version2 && torture_setting_bool(tctx, "samba3", false)) {
2609 torture_skip(tctx, "skipping QueryInfoPolicy2 tests\n");
2610 }
2611
2612 for (i=1;i<=14;i++) {
2613 r.in.handle = handle;
2614 r.in.level = i;
2615 r.out.info = &info;
2616
2617 torture_comment(tctx, "\nTrying %s level %d\n", call, i);
2618
2619 if (version2)
2620 /* We can perform the cast, because both types are
2621 structurally equal */
2622 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryInfoPolicy2_r(b, tctx,
2623 (struct lsa_QueryInfoPolicy2*) &r),
2624 "QueryInfoPolicy2 failed");
2625 else
2626 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QueryInfoPolicy_r(b, tctx, &r),
2627 "QueryInfoPolicy2 failed");
2628
2629 switch (i) {
2630 case LSA_POLICY_INFO_MOD:
2631 case LSA_POLICY_INFO_AUDIT_FULL_SET:
2632 case LSA_POLICY_INFO_AUDIT_FULL_QUERY:
2633 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_INVALID_PARAMETER)) {
2634 torture_comment(tctx, "Server should have failed level %u: %s\n", i, nt_errstr(r.out.result));
2635 ret = false;
2636 }
2637 break;
2638 case LSA_POLICY_INFO_DOMAIN:
2639 case LSA_POLICY_INFO_ACCOUNT_DOMAIN:
2640 case LSA_POLICY_INFO_REPLICA:
2641 case LSA_POLICY_INFO_QUOTA:
2642 case LSA_POLICY_INFO_ROLE:
2643 case LSA_POLICY_INFO_AUDIT_LOG:
2644 case LSA_POLICY_INFO_AUDIT_EVENTS:
2645 case LSA_POLICY_INFO_PD:
2646 if (!NT_STATUS_IS_OK(r.out.result)) {
2647 torture_comment(tctx, "%s failed - %s\n", call, nt_errstr(r.out.result));
2648 ret = false;
2649 }
2650 break;
2651 case LSA_POLICY_INFO_L_ACCOUNT_DOMAIN:
2652 case LSA_POLICY_INFO_DNS_INT:
2653 case LSA_POLICY_INFO_DNS:
2654 if (torture_setting_bool(tctx, "samba3", false)) {
2655 /* Other levels not implemented yet */
2656 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_INVALID_INFO_CLASS)) {
2657 torture_comment(tctx, "%s failed - %s\n", call, nt_errstr(r.out.result));
2658 ret = false;
2659 }
2660 } else if (!NT_STATUS_IS_OK(r.out.result)) {
2661 torture_comment(tctx, "%s failed - %s\n", call, nt_errstr(r.out.result));
2662 ret = false;
2663 }
2664 break;
2665 default:
2666 if (torture_setting_bool(tctx, "samba4", false)) {
2667 /* Other levels not implemented yet */
2668 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_INVALID_INFO_CLASS)) {
2669 torture_comment(tctx, "%s failed - %s\n", call, nt_errstr(r.out.result));
2670 ret = false;
2671 }
2672 } else if (!NT_STATUS_IS_OK(r.out.result)) {
2673 torture_comment(tctx, "%s failed - %s\n", call, nt_errstr(r.out.result));
2674 ret = false;
2675 }
2676 break;
2677 }
2678
2679 if (NT_STATUS_IS_OK(r.out.result) && (i == LSA_POLICY_INFO_DNS
2680 || i == LSA_POLICY_INFO_DNS_INT)) {
2681 /* Let's look up some of these names */
2682
2683 struct lsa_TransNameArray tnames;
2684 tnames.count = 14;
2685 tnames.names = talloc_zero_array(tctx, struct lsa_TranslatedName, tnames.count);
2686 tnames.names[0].name.string = info->dns.name.string;
2687 tnames.names[0].sid_type = SID_NAME_DOMAIN;
2688 tnames.names[1].name.string = info->dns.dns_domain.string;
2689 tnames.names[1].sid_type = SID_NAME_DOMAIN;
2690 tnames.names[2].name.string = talloc_asprintf(tctx, "%s\\", info->dns.name.string);
2691 tnames.names[2].sid_type = SID_NAME_DOMAIN;
2692 tnames.names[3].name.string = talloc_asprintf(tctx, "%s\\", info->dns.dns_domain.string);
2693 tnames.names[3].sid_type = SID_NAME_DOMAIN;
2694 tnames.names[4].name.string = talloc_asprintf(tctx, "%s\\guest", info->dns.name.string);
2695 tnames.names[4].sid_type = SID_NAME_USER;
2696 tnames.names[5].name.string = talloc_asprintf(tctx, "%s\\krbtgt", info->dns.name.string);
2697 tnames.names[5].sid_type = SID_NAME_USER;
2698 tnames.names[6].name.string = talloc_asprintf(tctx, "%s\\guest", info->dns.dns_domain.string);
2699 tnames.names[6].sid_type = SID_NAME_USER;
2700 tnames.names[7].name.string = talloc_asprintf(tctx, "%s\\krbtgt", info->dns.dns_domain.string);
2701 tnames.names[7].sid_type = SID_NAME_USER;
2702 tnames.names[8].name.string = talloc_asprintf(tctx, "krbtgt@%s", info->dns.name.string);
2703 tnames.names[8].sid_type = SID_NAME_USER;
2704 tnames.names[9].name.string = talloc_asprintf(tctx, "krbtgt@%s", info->dns.dns_domain.string);
2705 tnames.names[9].sid_type = SID_NAME_USER;
2706 tnames.names[10].name.string = talloc_asprintf(tctx, "%s\\"TEST_MACHINENAME "$", info->dns.name.string);
2707 tnames.names[10].sid_type = SID_NAME_USER;
2708 tnames.names[11].name.string = talloc_asprintf(tctx, "%s\\"TEST_MACHINENAME "$", info->dns.dns_domain.string);
2709 tnames.names[11].sid_type = SID_NAME_USER;
2710 tnames.names[12].name.string = talloc_asprintf(tctx, TEST_MACHINENAME "$@%s", info->dns.name.string);
2711 tnames.names[12].sid_type = SID_NAME_USER;
2712 tnames.names[13].name.string = talloc_asprintf(tctx, TEST_MACHINENAME "$@%s", info->dns.dns_domain.string);
2713 tnames.names[13].sid_type = SID_NAME_USER;
2714 ret &= test_LookupNames(b, tctx, handle, &tnames);
2715
2716 }
2717 }
2718
2719 return ret;
2720}
2721
2722static bool test_QueryInfoPolicy(struct dcerpc_binding_handle *b,
2723 struct torture_context *tctx,
2724 struct policy_handle *handle)
2725{
2726 return test_QueryInfoPolicyCalls(false, b, tctx, handle);
2727}
2728
2729static bool test_QueryInfoPolicy2(struct dcerpc_binding_handle *b,
2730 struct torture_context *tctx,
2731 struct policy_handle *handle)
2732{
2733 return test_QueryInfoPolicyCalls(true, b, tctx, handle);
2734}
2735
2736static bool test_GetUserName(struct dcerpc_binding_handle *b,
2737 struct torture_context *tctx)
2738{
2739 struct lsa_GetUserName r;
2740 bool ret = true;
2741 struct lsa_String *authority_name_p = NULL;
2742 struct lsa_String *account_name_p = NULL;
2743
2744 torture_comment(tctx, "\nTesting GetUserName\n");
2745
2746 r.in.system_name = "\\";
2747 r.in.account_name = &account_name_p;
2748 r.in.authority_name = NULL;
2749 r.out.account_name = &account_name_p;
2750
2751 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_GetUserName_r(b, tctx, &r),
2752 "GetUserName failed");
2753
2754 if (!NT_STATUS_IS_OK(r.out.result)) {
2755 torture_comment(tctx, "GetUserName failed - %s\n", nt_errstr(r.out.result));
2756 ret = false;
2757 }
2758
2759 account_name_p = NULL;
2760 r.in.account_name = &account_name_p;
2761 r.in.authority_name = &authority_name_p;
2762 r.out.account_name = &account_name_p;
2763
2764 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_GetUserName_r(b, tctx, &r),
2765 "GetUserName failed");
2766
2767 if (!NT_STATUS_IS_OK(r.out.result)) {
2768 torture_comment(tctx, "GetUserName failed - %s\n", nt_errstr(r.out.result));
2769 ret = false;
2770 }
2771
2772 return ret;
2773}
2774
2775bool test_lsa_Close(struct dcerpc_binding_handle *b,
2776 struct torture_context *tctx,
2777 struct policy_handle *handle)
2778{
2779 struct lsa_Close r;
2780 struct policy_handle handle2;
2781
2782 torture_comment(tctx, "\nTesting Close\n");
2783
2784 r.in.handle = handle;
2785 r.out.handle = &handle2;
2786
2787 torture_assert_ntstatus_ok(tctx, dcerpc_lsa_Close_r(b, tctx, &r),
2788 "Close failed");
2789 if (!NT_STATUS_IS_OK(r.out.result)) {
2790 torture_comment(tctx, "Close failed - %s\n",
2791 nt_errstr(r.out.result));
2792 return false;
2793 }
2794
2795 torture_assert_ntstatus_equal(tctx, dcerpc_lsa_Close_r(b, tctx, &r),
2796 NT_STATUS_RPC_SS_CONTEXT_MISMATCH, "Close should failed");
2797
2798 torture_comment(tctx, "\n");
2799
2800 return true;
2801}
2802
2803bool torture_rpc_lsa(struct torture_context *tctx)
2804{
2805 NTSTATUS status;
2806 struct dcerpc_pipe *p;
2807 bool ret = true;
2808 struct policy_handle *handle;
2809 struct test_join *join = NULL;
2810 struct cli_credentials *machine_creds;
2811 struct dcerpc_binding_handle *b;
2812
2813 status = torture_rpc_connection(tctx, &p, &ndr_table_lsarpc);
2814 if (!NT_STATUS_IS_OK(status)) {
2815 return false;
2816 }
2817 b = p->binding_handle;
2818
2819 if (!test_OpenPolicy(b, tctx)) {
2820 ret = false;
2821 }
2822
2823 if (!test_lsa_OpenPolicy2(b, tctx, &handle)) {
2824 ret = false;
2825 }
2826
2827 if (handle) {
2828 join = torture_join_domain(tctx, TEST_MACHINENAME, ACB_WSTRUST, &machine_creds);
2829 if (!join) {
2830 ret = false;
2831 }
2832
2833 if (!test_LookupSids_async(b, tctx, handle)) {
2834 ret = false;
2835 }
2836
2837 if (!test_QueryDomainInfoPolicy(b, tctx, handle)) {
2838 ret = false;
2839 }
2840
2841 if (!test_CreateSecret(p, tctx, handle)) {
2842 ret = false;
2843 }
2844
2845 if (!test_QueryInfoPolicy(b, tctx, handle)) {
2846 ret = false;
2847 }
2848
2849 if (!test_QueryInfoPolicy2(b, tctx, handle)) {
2850 ret = false;
2851 }
2852
2853 if (!test_Delete(b, tctx, handle)) {
2854 ret = false;
2855 }
2856
2857 if (!test_many_LookupSids(p, tctx, handle)) {
2858 ret = false;
2859 }
2860
2861 if (!test_lsa_Close(b, tctx, handle)) {
2862 ret = false;
2863 }
2864
2865 torture_leave_domain(tctx, join);
2866
2867 } else {
2868 if (!test_many_LookupSids(p, tctx, handle)) {
2869 ret = false;
2870 }
2871 }
2872
2873 if (!test_GetUserName(b, tctx)) {
2874 ret = false;
2875 }
2876
2877 return ret;
2878}
2879
2880bool torture_rpc_lsa_get_user(struct torture_context *tctx)
2881{
2882 NTSTATUS status;
2883 struct dcerpc_pipe *p;
2884 bool ret = true;
2885 struct dcerpc_binding_handle *b;
2886
2887 status = torture_rpc_connection(tctx, &p, &ndr_table_lsarpc);
2888 if (!NT_STATUS_IS_OK(status)) {
2889 return false;
2890 }
2891 b = p->binding_handle;
2892
2893 if (!test_GetUserName(b, tctx)) {
2894 ret = false;
2895 }
2896
2897 return ret;
2898}
2899
2900static bool testcase_LookupNames(struct torture_context *tctx,
2901 struct dcerpc_pipe *p)
2902{
2903 bool ret = true;
2904 struct policy_handle *handle;
2905 struct lsa_TransNameArray tnames;
2906 struct lsa_TransNameArray2 tnames2;
2907 struct dcerpc_binding_handle *b = p->binding_handle;
2908
2909 if (!test_OpenPolicy(b, tctx)) {
2910 ret = false;
2911 }
2912
2913 if (!test_lsa_OpenPolicy2(b, tctx, &handle)) {
2914 ret = false;
2915 }
2916
2917 if (!handle) {
2918 ret = false;
2919 }
2920
2921 tnames.count = 1;
2922 tnames.names = talloc_array(tctx, struct lsa_TranslatedName, tnames.count);
2923 ZERO_STRUCT(tnames.names[0]);
2924 tnames.names[0].name.string = "BUILTIN";
2925 tnames.names[0].sid_type = SID_NAME_DOMAIN;
2926
2927 if (!test_LookupNames(b, tctx, handle, &tnames)) {
2928 ret = false;
2929 }
2930
2931 tnames2.count = 1;
2932 tnames2.names = talloc_array(tctx, struct lsa_TranslatedName2, tnames2.count);
2933 ZERO_STRUCT(tnames2.names[0]);
2934 tnames2.names[0].name.string = "BUILTIN";
2935 tnames2.names[0].sid_type = SID_NAME_DOMAIN;
2936
2937 if (!test_LookupNames2(b, tctx, handle, &tnames2, true)) {
2938 ret = false;
2939 }
2940
2941 if (!test_LookupNames3(b, tctx, handle, &tnames2, true)) {
2942 ret = false;
2943 }
2944
2945 if (!test_LookupNames_wellknown(b, tctx, handle)) {
2946 ret = false;
2947 }
2948
2949 if (!test_LookupNames_NULL(b, tctx, handle)) {
2950 ret = false;
2951 }
2952
2953 if (!test_LookupNames_bogus(b, tctx, handle)) {
2954 ret = false;
2955 }
2956
2957 if (!test_lsa_Close(b, tctx, handle)) {
2958 ret = false;
2959 }
2960
2961 return ret;
2962}
2963
2964struct torture_suite *torture_rpc_lsa_lookup_names(TALLOC_CTX *mem_ctx)
2965{
2966 struct torture_suite *suite;
2967 struct torture_rpc_tcase *tcase;
2968
2969 suite = torture_suite_create(mem_ctx, "lsa.lookupnames");
2970
2971 tcase = torture_suite_add_rpc_iface_tcase(suite, "lsa",
2972 &ndr_table_lsarpc);
2973 torture_rpc_tcase_add_test(tcase, "LookupNames",
2974 testcase_LookupNames);
2975
2976 return suite;
2977}
2978
2979struct lsa_trustdom_state {
2980 uint32_t num_trusts;
2981};
2982
2983static bool testcase_TrustedDomains(struct torture_context *tctx,
2984 struct dcerpc_pipe *p,
2985 void *data)
2986{
2987 bool ret = true;
2988 struct policy_handle *handle;
2989 struct lsa_trustdom_state *state =
2990 talloc_get_type_abort(data, struct lsa_trustdom_state);
2991 struct dcerpc_binding_handle *b = p->binding_handle;
2992
2993 torture_comment(tctx, "Testing %d domains\n", state->num_trusts);
2994
2995 if (!test_OpenPolicy(b, tctx)) {
2996 ret = false;
2997 }
2998
2999 if (!test_lsa_OpenPolicy2(b, tctx, &handle)) {
3000 ret = false;
3001 }
3002
3003 if (!handle) {
3004 ret = false;
3005 }
3006
3007 if (!test_CreateTrustedDomain(b, tctx, handle, state->num_trusts)) {
3008 ret = false;
3009 }
3010
3011 if (!test_CreateTrustedDomainEx2(p, tctx, handle, state->num_trusts)) {
3012 ret = false;
3013 }
3014
3015 if (!test_lsa_Close(b, tctx, handle)) {
3016 ret = false;
3017 }
3018
3019 return ret;
3020}
3021
3022struct torture_suite *torture_rpc_lsa_trusted_domains(TALLOC_CTX *mem_ctx)
3023{
3024 struct torture_suite *suite;
3025 struct torture_rpc_tcase *tcase;
3026 struct lsa_trustdom_state *state;
3027
3028 state = talloc(mem_ctx, struct lsa_trustdom_state);
3029
3030 state->num_trusts = 12;
3031
3032 suite = torture_suite_create(mem_ctx, "lsa.trusted.domains");
3033
3034 tcase = torture_suite_add_rpc_iface_tcase(suite, "lsa",
3035 &ndr_table_lsarpc);
3036 torture_rpc_tcase_add_test_ex(tcase, "TrustedDomains",
3037 testcase_TrustedDomains,
3038 state);
3039
3040 return suite;
3041}
3042
3043static bool testcase_Privileges(struct torture_context *tctx,
3044 struct dcerpc_pipe *p)
3045{
3046 bool ret = true;
3047 struct policy_handle *handle;
3048 struct dcerpc_binding_handle *b = p->binding_handle;
3049
3050 if (!test_OpenPolicy(b, tctx)) {
3051 ret = false;
3052 }
3053
3054 if (!test_lsa_OpenPolicy2(b, tctx, &handle)) {
3055 ret = false;
3056 }
3057
3058 if (!handle) {
3059 ret = false;
3060 }
3061
3062 if (!test_CreateAccount(b, tctx, handle)) {
3063 ret = false;
3064 }
3065
3066 if (!test_EnumAccounts(b, tctx, handle)) {
3067 ret = false;
3068 }
3069
3070 if (!test_EnumPrivs(b, tctx, handle)) {
3071 ret = false;
3072 }
3073
3074 if (!test_lsa_Close(b, tctx, handle)) {
3075 ret = false;
3076 }
3077
3078 return ret;
3079}
3080
3081
3082struct torture_suite *torture_rpc_lsa_privileges(TALLOC_CTX *mem_ctx)
3083{
3084 struct torture_suite *suite;
3085 struct torture_rpc_tcase *tcase;
3086
3087 suite = torture_suite_create(mem_ctx, "lsa.privileges");
3088
3089 tcase = torture_suite_add_rpc_iface_tcase(suite, "lsa",
3090 &ndr_table_lsarpc);
3091 torture_rpc_tcase_add_test(tcase, "Privileges",
3092 testcase_Privileges);
3093
3094 return suite;
3095}
Note: See TracBrowser for help on using the repository browser.