bLdZddlZddlZddlZddlmZddlmZddlm Z m Z ddl m Z m Z ddlmZddlmZdd lmZdd lmZdd lmZmZmZdd lmZd ZGddeeZdS)z. auth logging tests that exercise winbind N)system_session) Credentials) get_string get_bytes)AUTH_EVENT_NAME MSG_AUTH_LOG)UF_NORMAL_ACCOUNT) Messaging)LoadParm)SamDB) delete_forceBlackboxProcessErrorBlackboxTestCase)AuthLogTestBaseWBALUcReZdZdZdZfdZfdZdZdZdZ dZ d Z xZ S) AuthLogTestsWinbindctj\}}tj}|dkr|Stjd}t }||d}fd}t d|}|t|df} | | tg_ tj } tj | z dkr/| d tj | z dk/tt|j } | r+| D]'} tj|t#| d z(n"tj|t#d tj||| t|ttjddS) NrDC_SERVERCONFFILEcn|dStj|}|ddko|dddkS)NFtypeAuthenticationserviceDescriptionSamLogon)jsonloads)mmsgs >/usr/lib/python3/dist-packages/samba/tests/auth_log_winbind.py is_sam_logonz4AuthLogTestsWinbind.dc_watcher..is_sam_logon>sFyu*Q--CF //J$%&:;zI KcZt|j|dSN)printdc_msgsappend)contextmsgTypesrcmessageselfs rmessage_handlerz7AuthLogTestsWinbind.dc_watcher..message_handlerHs, 'NNN L   ( ( ( ( (r!))lp_ctx)msg_typer-g? zNone )ospipeforkenvironr loadr irpc_add_namerregisterrr%time loop_oncelistfilterwriterclose deregisterirpc_remove_name_exit) r+r1w1pid config_filer.r r,msg_ctxmsg_handler_and_context start_timemsgsrs ` r dc_watcherzAuthLogTestsWinbind.dc_watcher.s799Rgii !88Ij!45  K    K K K ) ) ) ) )D000o...#2D"90<HHH  Y[[ y{{Z'!++   c " " "y{{Z'!++F<6677  . 0 0Yqv..//// 0 HR8,, - - -  2\JJJ  111  r!cBd}tt||S)Ncj|ddkr&|dddkr|dddkrdSdS) Nr AuthorizationrzDCE/RPCauthTypencacn_npFTrs rkeepz1AuthLogTestsWinbind.filter_messages..keeppsFF ..O$%9:iGGO$Z0J>> 5tr!)r:r;)r+messagesrQs rfilter_messagesz#AuthLogTestsWinbind.filter_messagesos+   F4**+++r!ctt|tjd|_tjd|_tjd|_||_ | |_ t|_ td|j|j |j |j |_|dS)NDOMAINSERVER DC_SERVERz ldap://{0})url session_info credentialslp)superrsetUpr1r4domainhostdc get_loadparmr[get_credentialsrZrsessionr formatldbcreate_user_accountr+ __class__s rr]zAuthLogTestsWinbind.setUpzs !4((..000j* Jx( *[)##%%//11%'' ##DG,,(w    """""r!ctt|t|j|jdSr#)r\rtearDownr reuser_dnrgs rrjzAuthLogTestsWinbind.tearDowns: !4((11333TXt|,,,,,r!c||_t|_d|jd|j|_t|j|jdt|jz d}|j |jdd|jztt|dt|_|j||j|j|j|j|j|jdS)Nzcn=,z"%s"z utf-16-leuserz%s)dn objectclasssAMAccountNameuserAccountControl unicodePwd)random_password user_pass USER_NAME user_namere domain_dnrkr rencodeaddstrr r user_credsguessra set_password set_usernameset_workstationserver)r+utf16pws rrfz'AuthLogTestsWinbind.create_user_accounts9--//"%)^^^TX5G5G5I5I5IJ  TXt|,,,Jt~666>>{KK   !DN2!$%6!7!7 "" # # #&-- d//11222 $$T^444 $$T^444 '' 44444r!c~tj|d}t|}t|dks|dkr|dd}|dD]9}t jt|}||ddkrnd}:||d|d|d|||dd|d |dd |||dd dS) Ni rNonez'No Domain server authentication messager0rlogonIdrrrauthDescription) r1readrlenfailsplitrr assertEqual)r+r2logon_id descriptionrRrr*s r"check_domain_server_authenticationz6AuthLogTestsWinbind.check_domain_server_authenticationsc74&&h'' x==A  V!3!3 II? @ @ @~~d++  G*Z0011C3/0;;;CC ; II? @ @ @ )3v;777 3'7#8#CDDD ./0DE G G G ./0AB D D D D Dr!cd}|}d}|d||j|jd||}||}d}||t|d|d}|d |d | |d d  d |d |d d|d|d d|d|d d|d|d d|d|d d|d|d d||j |d d|d|d d||j|d d||j |d d| |d ddu|d d}|||ddS)Ncd}|ddkoB|dddko0|ddduo |dd|S)NzPAM_AUTH, ntlm_authrrrwinbindr startswithrDESCs risLastExpectedMessagezAAuthLogTestsWinbind.test_ntlm_auth..isLastExpectedMessagess(DF //J$%&:;yHJ$%&78DJ$%&78CCDII  Kr!z bin/ntlm_authz!{0} --username={1} --password={2}ntlm_auth failedrPr-/Did not receive the expected number of messagesrrrrzPAM_AUTH, ntlm_auth,rr Plaintext passwordType logonTypeeventIdunix: remoteAddress localAddress clientDomain NT_STATUS_OKstatus clientAccount workstationr interactive)rI check_runrdrZ get_username get_passwordwaitForMessagesrSrr assertTruerr^ get_domainrr+rr2COMMANDrRexpected_messagesrrs rtest_ntlm_authz"AuthLogTestsWinbind.test_ntlm_auths K K K  ! :AA    ) ) + +   ) ) + +--#  $ $ $ ''(=>>''11 *h--K M M M qk )3v;777   !"3 4 ? ?& ( ( ) ) ) ./0DE G G G c*:&;N&KLLL C 01+>??? s#34Y?@@@ #&6"7"HIII #&6"7"GHHH c*:&;N&KLLL -=)>x)HIII )6688./@ B B B )4466./? A A A ,-m<DEEE'(3 //h NNNNNr!c d}|}d} |d||j|jdn#t $rYnwxYw||}||}d}| |t|d|d}| d |d | |d d  d | d |d d| d|d d| d|d d| d|d d| d|d d| d|d d| d|d d| d|d d| |j|d d| d|d d|d d}|d}| d |d | |d d  d| d |d d| ||d d| d |d d| d|d d| d|d d| d|d d| d|d d| d|d d| |j|d d| d|d d|d}| d |d | |d d  d!| d |d d| d|d d| d"|d d| d#|d d| d|d d| d|d d| d|d d| |j|d d| |j |d d|d d}|||d$dS)%Ncd}|ddkoB|dddko0|ddduo |dd|SNzNTLM_AUTH, wbinforrrrrrrs rrz>AuthLogTestsWinbind.test_wbinfo..isLastExpectedMessages&DF //J$%&:;yHJ$%&78DJ$%&78CCDII  Kr! bin/wbinfoz{0} -a {1}%{2}rrPrrrrrPASSDB, wbinfo,rrrrrrrrNT_STATUS_NO_SUCH_USERrNTLMv2rrrr-PAM_AUTHrNTLM_AUTH, wbinfo,rrnetworkrIrrdrZrrrrrSrrrrrrrs r test_wbinfozAuthLogTestsWinbind.test_wbinfos K K K    NN+22 --// --//11'  ( ( ( ( $    D ''(=>>''11 *h--K M M M qk )3v;777 ,-.?@KK     ./0DE G G G C 01+>??? s#34Y?@@@ #&6"7"HIII #&6"7"GHHH S!12>BCCC 1./9 ; ; ; 3'7#8#HIII )6688./@ B B B S!12>BCCC'(3qk )3v;777 ,-.?@KK     ./0DE G G G 3'7#8#CDDD C 01+>??? s#34Y?@@@ #&6"7"HIII #&6"7"GHHH S!12>BCCC 1./9 ; ; ; )6688./@ B B B S!12>BCCCqk )3v;777 ,-.?@KK "" # # # ./0DE G G G C 01+>??? -=)>x)HIII s#34Y?@@@ 3'7#8#HIII #&6"7"HIII #&6"7"GHHH )6688./@ B B B )4466./? A A A'(3 //h JJJJJAA66 BBc d}|}d} |d||j|jdn#t $rYnwxYw||}||}d}| |t|d|d}| d |d | |d d  d | d |d d| d|d d| d|d d| d|d d| d|d d| d|d d| d|d d| d|d d| |j|d d| d|d d|d d}|d}| d |d | |d d  d| d |d d| ||d d| d |d d| d!|d d| d|d d| d|d d| d|d d| d|d d| d|d d| |j|d d| d|d d|d}| d |d | |d d  d"| d |d d| d#|d d| d|d d| d$|d d| d%|d d| d|d d| d|d d| |j|d d| |j |d d|d d}|||d&dS)'Ncd}|ddkoB|dddko0|ddduo |dd|Srrrs rrzEAuthLogTestsWinbind.test_wbinfo_ntlmv1..isLastExpectedMessagefrr!rz{0} --ntlmv1 -a {1}%{2}rrPrrrrrrrrrrrrrrrrrrrrrrrrr-rrrrNTLMv1rrrrrs rtest_wbinfo_ntlmv1z&AuthLogTestsWinbind.test_wbinfo_ntlmv1es K K K    NN4;; --// --//11'  ( ( ( ( $    D ''(=>>''11 *h--K M M M qk )3v;777 ,-.?@KK     ./0DE G G G C 01+>??? s#34Y?@@@ #&6"7"HIII #&6"7"GHHH S!12>BCCC 1./9 ; ; ; 3'7#8#HIII )6688./@ B B B S!12>BCCC'(3qk )3v;777 ,-.?@KK     ./0DE G G G 3'7#8#CDDD c*:&;N&KLLL C 01+>??? s#34Y?@@@ #&6"7"HIII #&6"7"GHHH S!12>BCCC 1./9 ; ; ; )6688./@ B B B S!12>BCCCqk )3v;777 ,-.?@KK "" # # # ./0DE G G G ./? A A A C 01+>??? -=)>x)HIII s#34Y?@@@ #&6"7"HIII #&6"7"GHHH )6688./@ B B B )4466./? A A A'(3 //h JJJJJr) __name__ __module__ __qualname__rIrSr]rjrfrrrr __classcell__)rhs@rrr(s ;;;B , , ,##### ----- 5556DDD:5O5O5OndKdKdKLeKeKeKeKeKeKeKr!r)__doc__rr1r8 samba.authrsamba.credentialsr samba.commonrrsamba.dcerpc.messagingrr samba.dsdbr samba.messagingr samba.paramr samba.samdbr samba.testsr rrsamba.tests.auth_log_baserrvrrOr!rrsH$ %%%%%%))))))........@@@@@@@@((((((%%%%%% LLLLLLLLLL555555  bKbKbKbKbK/+;bKbKbKbKbKr!