ba$ddlmZmZddlZddlZddlZddlmZddlm Z m Z m Z m Z ddl mZmZmZmZmZddlmZmZmZddlmZddlmZmZmZdd lmZmZdd l m!Z!dd lm"Z"m#Z#dd l$m%Z%dd l&m'Z'ddl(Z( dZ)dZ*GddeZ+e fdZ,dZ-dS))TestCase delete_forceN)system_session) CredentialsCLI_CRED_NTLMv2_AUTHCLI_CRED_NTLM_AUTHDONT_USE_KERBEROS)lsanetlogonntlmsspsecuritysrvsvc)netr_Authenticatornetr_WorkstationInformationMSV1_0_ALLOW_MSVCHAPV2)SEC_CHAN_WKSTA)UF_WORKSTATION_TRUST_ACCOUNTUF_PASSWD_NOTREQDUF_NORMAL_ACCOUNT)ndr_pack ndr_unpack)SamDB) NTSTATUSErrorntstatus) get_string)SDUtilsPCTMPCTUceZdZfdZfdZdZdZdZdZdZ dZ d Z d Z d Z d Zd ZdZdZdZdZdZdZdZdZdZdZdZxZS)PyCredentialsTestsctt|tjd|_tjd|_tjd|_||_ | |_ t|_ td|jz|j |j |j |_||dS)NSERVERDOMAIN SERVER_IPz ldap://%s)url session_info credentialslp)superr setUposenvironserverdomainhost get_loadparmr(get_credentialsr'rsessionrldbcreate_machine_accountcreate_user_accountself __class__s SCOPE_BASE assertEquallenget r7rJrQrRdomain_hostnamenew_dns_hostnamer_resgot_dns_hostnames r9test_set_dns_hostname_validz.PyCredentialsTests.test_set_dns_hostname_validpsL  ( ( * *$($:$:1$=$=! z(2244"/CC/CC+227;;+-- 9-- - !! /99;;$!+ "   hoodo$'N%2O55 CHH%%%q6::m:;; )+;<<<<rprqrrrr dom_sidrsrGUID_DRS_DNS_HOST_NAME dacl_add_acerfrgrhrr rirjrkrlr-rmrn) r7rJrQrRrw machine_sidsd_utilsmodrurvr_rxs r9"test_set_dns_hostname_valid_deniedz5PyCredentialsTests.test_set_dns_hostname_valid_denieds  ( ( * *$($:$:1$=$=! zhoodo$'N%0M33 CHH%%% !1!$QKQ!?!?AA 48$$!H;!!!!!dos333(2244"/CC/CC+227;;+-- 9-- - !! /99;;$!+ "   hoodo$'N%2O55 CHH%%%q6::m:;; )+;<<<<rprqrrrr r~rsrrrrr rirjrkrlr-rmrn assertIsNone r7rJrQrRrwrrrrvr_rxs r9-test_set_dns_hostname_invalid_validated_writez@PyCredentialsTests.test_set_dns_hostname_invalid_validated_write  ( ( * *$($:$:1$=$=! zhoodo$'N%0M33 CHH%%% !1!$QKQ!?!?AA 48$$!(9!!!!!dos333%+-- 9-- - !! /99;;$!+ "   hoodo$'N%2O55 CHH%%%q6::m:;; *+++++r:c|}||\}}|j|jtjdg}|dt|ttj |d dd}t|j}dtj d|d}||j|d }t} t!jd | _|| _||j|j||d| |j|jtjd g}|dt||d d d} || dS) Nr{rarXrrdz(OA;;WP;r|r}rrWrYr`rrs r9,test_set_dns_hostname_invalid_write_propertyz?PyCredentialsTests.test_set_dns_hostname_invalid_write_propertyrr:c`|}||\}}|jd}t }t jd|_||_| |j |j ||d||j |jtjdg}|dt%||ddd}||dS) NrVrWrXrYr`rarrd)rHrNrgrhrr rirjrkrlr-rmrnr3ror>rprqrrrsr)r7rJrQrRrvr_rwrxs r9%test_set_dns_hostname_to_machine_namez8PyCredentialsTests.test_set_dns_hostname_to_machine_names"  ( ( * *$($:$:1$=$=! z,33G<<+-- 9-- - !! /99;;$!+ "   hoodo$'N%2O55 CHH%%%q6::m:;; *+++++r:c|}||\}}|j}|jd|}|d}t }tjd|_ ||_ | |j |j ||d||j|jtjdg}|dt'||ddd }||dS) Nz.foo.rVrWrXrYr`rarrd)rHrNr3rfrgrhrr rirjrkrlr-rmrnror>rprqrrrsrrts r9$test_set_dns_hostname_invalid_suffixz7PyCredentialsTests.test_set_dns_hostname_invalid_suffix9sI  ( ( * *$($:$:1$=$=! z(2244"/GGoGG+227;;+-- 9-- - !! /99;;$!+ "   hoodo$'N%2O55 CHH%%%q6::m:;; *+++++r:cT|}||\}}|j}|jd|}|d}d}t }tj||_ ||_ tj |_ ||j|j||d||j|jtjddg}|dt-||d dd } || |d dd } ||d| dS) NrUrVrWrXrYr`operatingSystemrarrd)rHrNr3rfrgrhrr rirjrkr NETR_WS_FLAG_HANDLES_SPN_UPDATEworkstation_flagsrlr-rmrnror>rprqrrrsr) r7rJrQrRrurvoperating_systemr_rwrxgot_oss r9test_set_dns_hostname_with_flagz2PyCredentialsTests.test_set_dns_hostname_with_flagZs  ( ( * *$($:$:1$=$=! z(2244"/CC/CC+227;;$+-- #344 -"*"J !! /99;;$!+ "   hoodo$'N%2%6%899 CHH%%%q6::m:;; *+++Q-155 )00996BBBBBr:c|}t|j|j|j}t j}t j}d} ||j |j ||||dS#t$rV}tj |jdj}|t jkr|dnYd}~dSd}~wwxYw)Nrgot wrong password error)rHsamlogon_logon_infor.rgrmr $NetlogonNetworkTransitiveInformationNetlogonValidationSamInfo4netr_LogonSamLogonExr-rnrctypesc_uint32argsvaluerNT_STATUS_WRONG_PASSWORDfailr7rJlogon logon_levelvalidation_level netr_flagseenums r9test_SamLogonExz"PyCredentialsTests.test_SamLogonExs  ( ( * *#DK$($5$(O55C #>   " "4;#'?#B#B#D#D#.#(#3#-  / / / / /    ?16!9--3Dx888 45555655555 s6B C(A C##C(c^|}|jdt|j|j|j}t j}t j}d} | |j |j ||||dS#t$r}tj|jdj}|t"jkr|dn+|dt)|zYd}~dSYd}~dSd}~wwxYw)Nrrzgot unexpected error)rHrm set_domainrr.rgr rrrr-rnrrrrrrrrstrrs r9test_SamLogonEx_no_domainz,PyCredentialsTests.test_SamLogonEx_no_domainsH  ( ( * * ""2&&&#DK$($5$(O55C #>  ; " "4;#'?#B#B#D#D#.#(#3#-  / / / / /  ; ; ;?16!9--3Dx888 45555 03q669:::::::::655555 ;s*6B"" D,,A/D''D,c|}t|j|j|jt }t j}t j}d} | |j |j ||||dS#t$rV}tj|jdj}|t"jkr|dnYd}~dSd}~wwxYwN)flagsrr)rHrr.rgrmrr rrrr-rnrrrrrrrrrs r9test_SamLogonExNTLMz&PyCredentialsTests.test_SamLogonExNTLMs   ( ( * *#DK$($5$(O*<>>> C #>   " "4;#'?#B#B#D#D#.#(#3#-  / / / / /    ?16!9--3Dx888 45555655555 s6B C/A C**C/c|}t|j|j|jt }t |j_tj }tj }d} | |j |j||||dS#t$rV}t!j|jdj}|t(jkr|dnYd}~dSd}~wwxYwr)rHrr.rgrmrr identity_infoparameter_controlr rrrr-rnrrrrrrrrrs r9test_SamLogonExMSCHAPv2z*PyCredentialsTests.test_SamLogonExMSCHAPv2s  ( ( * *#DK$($5$(O*<>>> 1G-C #>   " "4;#'?#B#B#D#D#.#(#3#-  / / / / /    ?16!9--3Dx888 45555655555 s(6B D*A C;;Dc~|tjd|jz|j|jdS)Nz ncacn_np:%s)do_Netr_ServerPasswordSet2rr-r(rCrEs r9test_encrypt_netr_passwordz-PyCredentialsTests.test_encrypt_netr_passwordsF ''))) mt{3g( * * * * *r:cl|}||\}}d}d}tj||}|d}t |}dt j||z D} tj } || _ | d|Dz| _ |j | ||j|j t"|j|| ||_|j |dS)N i utf-16-lecZg|](}t|tr|nt|)S isinstanceintord.0xs r9 zAPyCredentialsTests.do_Netr_ServerPasswordSet2..s1___1 1c**611A___r:cZg|](}t|tr|nt|)Srrrs r9rzAPyCredentialsTests.do_Netr_ServerPasswordSet2..s1RRRQ*Q"4"4@QQ#a&&RRRr:)rHrNsambagenerate_random_passwordrhrrr+urandomr netr_CryptPasswordlengthdatarCencrypt_netr_crypt_passwordnetr_ServerPasswordSet2r-rnrrg machine_pass set_password) r7rJrQrRPWD_LENDATA_LENnewpassencodedpwd_lenfillerpwds r9rz-PyCredentialsTests.do_Netr_ServerPasswordSet2s1  ( ( * *&*&<&rrrhaddrrrrrCguessr0set_secure_channel_typerset_kerberos_stater r set_usernameset_workstationr7utf16pws r9r4z)PyCredentialsTests.create_machine_accounts!:2rBB((,(9(9(948;M;M;O;O;OP TXt///Jt'8999AA+NN  /%#d&7703DDEE! ## $ $ $)]]   !2!2!4!4555 22>BBB --.?@@@ ''(9::: ''(9C(?@@@ **4+<=====r:ctjdd|_t|_d|jd|j|_t|j|jdt|jz d}|j |jdd|jztt|dt|_|j||j|j|j|j|j|jdS) Nrrrrruserz%sr)rr user_pass USER_NAME user_namer3rr?rrrhrrrrrmrr0rrrrgrs r9r5z&PyCredentialsTests.create_user_account6s:7B??"%)^^^TX5G5G5I5I5IJ  TXt|,,,Jt~666>>{KK  ,!"T^3"%&7"8"8! ## $ $ $&-- d//11222 $$T^444 $$T^444 ''(9::: r:c|j}t}d|dD|j_|d|_t}||fS)NcZg|](}t|tr|nt|)Srrrs r9rz8PyCredentialsTests.get_authenticator..Ss1]]]Q*Q"4"4@QQ#a&&]]]r:r\ timestamp)rCrDrcredrr)r7rJauthcurrentrRs r9rNz$PyCredentialsTests.get_authenticatorPsa!::<<$&&]]$|J\]]]  -')) $$r:c t|j|j|j}tj}tj}d}||j|j ||||||dS)Nr) rr.rgrmr rrnetr_LogonSamLogonWithFlagsr-rn)r7rJrrRrrrrs r9rOz0PyCredentialsTests.do_NetrLogonSamLogonWithFlagsYs#DK$($5$(O55C #>  %%dk&*o&E&E&G&G&-&0&1&+&6&0 2 2 2 2 2r:ct}||j|j||d|dS)N)rrlr-rmrn)r7rJrrRr_s r9rPz,PyCredentialsTests.do_NetrLogonGetDomainInfojsP+-- !!$+"&/"A"A"C"C")","#"'  ) ) ) ) )r:)__name__ __module__ __qualname__r*r=rFrLrSryrrrrrrrrrrrrrHr4r5rNrOrP __classcell__)r8s@r9r r 9s#####&-----GGG    E E E===B,=,=,=`),),),Z),),),Z,,,<,,,B%C%C%CN2;;;64@***1112555>>>8   4%%%222")))))))r:r c0t||}d}||||}tj}d|D|_tj|_t|d|j_d|dD|j_ tj |_ | \}} | |j j _||j j_||j j_|S)Nsabcdefgh)r challenge target_infocZg|](}t|tr|nt|)Srrrs r9rz'samlogon_logon_info..s1RRR1 1c 2 2>11ARRRr: nt_responsecZg|](}t|tr|nt|)Srrrs r9rz'samlogon_logon_info..s1```1 1c 2 2>11A```r:)samlogon_targetget_ntlm_responser netr_NetworkInfornetr_ChallengeResponsentrrrrnetr_IdentityInforget_ntlm_username_domain domain_namestring account_namern workstation) rr[credsrtarget_info_blobrresponserusernamer.s r9rrxs'{MBBI&&U1:3C'EEH  % ' 'ERR RRREO"9;;EHh}566EHO``Q^H_```EHM"466E88::Xv.4E#*.6E$+.3.C.C.E.EE#* Lr:c\tj}d|_tj}tj|_||_tj}tj|_||_tj}tj|_|||g|_ t|S)N) r AV_PAIR_LISTcountAV_PAIRMsvAvNbComputerNameAvIdValueMsvAvNbDomainNameMsvAvEOLpairr)rr[r computername domainnameeols r9r r s&((KK?$$L3L&L""J/JO"J /  CCH"L#6K K  r:). samba.testsrrr+r3r samba.authrsamba.credentialsrrrr samba.dcerpcr r r r rsamba.dcerpc.netlogonrrrsamba.dcerpc.miscr samba.dsdbrrr samba.ndrrr samba.samdbrrr samba.commonrsamba.sd_utilsrrrrr rr rr:r9r4s$/....... %%%%%% BAAAAAAAAAAAAA -,,,,,+*******))))))))######""""""   y)y)y)y)y)y)y)y)@3<!!!!!r: