bUddlZddlZddlZddlZddlZddlmZddlmZddl m Z ddl m Z ddl mZddlmZddlmZddlZd Zd Zd ZGd d eZdS)N)SambaToolCmdTest) Credentials)SamDB)system_session) ndr_unpack)drsblobs)dsdbCryptSHATestUserz"password hash userPassword schemesctjd|zdz}|dD]0}||}|r|dcS1dS)N^z :\s+(\S+) )recompilesplitmatchgroup)outnameplinems M/usr/lib/python3/dist-packages/samba/tests/samba_tool/user_virtualCryptSHA.py_get_attributer)sj 3: +,,A $ GGDMM  771::     2ceZdZdZgZdZfdZddZfdZd dZ d Z d Z d Z d Z d ZdZdZdZdZdZdZdZdZdZdZdZdZdZdZdZdZdZxZ S)!UserCmdCryptShaTestCasezz Tests for samba-tool user subcommands generation of the virtualCryptSHA256 and virtualCryptSHA512 attributes NcVtt|dS)N)superrsetUpself __class__s rr!zUserCmdCryptShaTestCase.setUp:s& %t,,2244444rrctj|_|jt |t |_t|_ t|j |j|j|_ | }| ddt|dS)N) session_info credentialslpusercreate)sambatests env_loadparmr(set HASH_OPTIONrcredsrsessionrldbrandom_password runsubcmd USER_NAME)r#hashespasswords radd_userz UserCmdCryptShaTestCase.add_user=s+**,,  K((( ]] %''  w '')) v  ! ! ! ! !rctt||ddtdS)Nr)delete)r rtearDownr4r5r"s rr;z UserCmdCryptShaTestCase.tearDownPs< %t,,55777 vx33333rFcddtd|g}|r|d|j|\}}}||||d||dd||dd|z|S) Nr) getpasswordz --attributesz--decrypt-samba-gpgzEnsure getpassword runsrzGot password OKzgetpassword out[%s])r5appendr4assertCmdSuccess assertEqual assertMatch)r# attributesdecryptcommandresultrerrs r _get_passwordz%UserCmdCryptShaTestCase._get_passwordTs !   2 NN0 1 1 1+T^W5c f!!7 9 9 9 b-000 *.4 6 6 6 rcF|jdtztj}tj}|dj|_tjdtjd|d<|j|dtj zgdS)Nzcn=%s) expressionscopersABCDEF1234567890 unicodePwdzlocal_oid:%s:0)controls) r2searchr5 SCOPE_SUBTREEMessagednMessageElementFLAG_MOD_REPLACEmodifyr %DSDB_CONTROL_BYPASS_PASSWORD_HASH_OID)r#resmsgs r_change_nt_hashz'UserCmdCryptShaTestCase._change_nt_hashkshoo7Y+>+.+<>>kmmQ./B/2/C/;==L  &@AB  C C C C Crc||d}|d|v|d|v|d|vdS)N%virtualCryptSHA256,virtualCryptSHA512virtualCryptSHA256:virtualCryptSHA512:rounds=r8rG assertTruer#rs r!test_no_gpg_both_hashes_no_roundsz9UserCmdCryptShaTestCase.test_no_gpg_both_hashes_no_rounds|sp   !HII -S8999 -S8999  ,-----rc||d}|d|v|d|v|d|vdS)NvirtualCryptSHA256rZr[r\r]r_s rtest_no_gpg_sha256_no_roundsz4UserCmdCryptShaTestCase.test_no_gpg_sha256_no_roundsp   !566 -S8999 -S8999  ,-----rc||d}|d|v|d|v|d|vdS)NvirtualCryptSHA512rZr[r\r]r_s rtest_no_gpg_sha512_no_roundsz4UserCmdCryptShaTestCase.test_no_gpg_sha512_no_roundsrdrc||d}|d|v|d|v|d|vdS)NvirtualCryptSHA128rZr[r\r]r_s r!test_no_gpg_invalid_alg_no_roundsz9UserCmdCryptShaTestCase.test_no_gpg_invalid_alg_no_roundsrdrc||dd}|d|v|d|v|d|vdSNrYTrZr[r\r]r_s rtest_gpg_both_hashes_no_roundsz6UserCmdCryptShaTestCase.test_gpg_both_hashes_no_roundssr   !H$OO -4555 -4555  ,-----rc||dd}|d|v|d|v|d|vdSNrbTrZr[r\r]r_s rtest_gpg_sha256_no_roundsz1UserCmdCryptShaTestCase.test_gpg_sha256_no_roundssr   !5t<< -4555 -S8999  ,-----rc||dd}|d|v|d|v|d|vdS)NrfTrZr[r\r]r_s rtest_gpg_sha512_no_roundsz1UserCmdCryptShaTestCase.test_gpg_sha512_no_roundssr   !5t<< -S8999 -4555  ,-----rc||dd}|d|v|d|v|d|vdS)NriTrZr[r\r]r_s rtest_gpg_invalid_alg_no_roundsz6UserCmdCryptShaTestCase.test_gpg_invalid_alg_no_roundssr   !5t<< -S8999 -S8999  ,-----rc |||dd}|d|v|d|v|d|vdSrlr8rWrGr^r_s r*test_gpg_both_hashes_no_rounds_pwd_changedzBUserCmdCryptShaTestCase.test_gpg_both_hashes_no_rounds_pwd_changeds    !H$OO -S8999 -S8999  ,-----rc |||dd}|d|v|d|v|d|vdSrorvr_s r%test_gpg_sha256_no_rounds_pwd_changedz=UserCmdCryptShaTestCase.test_gpg_sha256_no_rounds_pwd_changed    !5t<< -S8999 -S8999  ,-----rc |||dd}|d|v|d|v|d|vdSrorvr_s r%test_gpg_sha512_no_rounds_pwd_changedz=UserCmdCryptShaTestCase.test_gpg_sha512_no_rounds_pwd_changedrzrc||dd}|d|v|d|vt|d}||dt|d}||ddS) Nz?virtualCryptSHA256;rounds=10123,virtualCryptSHA512;rounds=10456TrZr[rbz{CRYPT}$5$rounds=10123$rfz{CRYPT}$6$rounds=10456$r8rGr^r startswithr#rsha256sha512s r test_gpg_both_hashes_both_roundsz8UserCmdCryptShaTestCase.test_gpg_both_hashes_both_roundss   M  -4555 -4555%9:: ))*CDDEEE%9:: ))*CDDEEEEErc||dd}|d|v|d|vt|d}||d|d|vt|d}||d dS) Nz@virtualCryptSHA256;rounds=invalid,virtualCryptSHA512;rounds=3125TrZr[rbz {CRYPT}$5$roundsrfz{CRYPT}$6$rounds=3125$r~rs r*test_gpg_both_hashes_sha256_rounds_invalidzBUserCmdCryptShaTestCase.test_gpg_both_hashes_sha256_rounds_invalid)s   N  -4555 -4555%9:: )),77888 .///%9:: ))*BCCDDDDDrc|d|d}|d|v|d|v|d|vt|d}t|d}|d}||t|d||t|ddS)NCryptSHA512 CryptSHA256rYrZr[r\rbrfr8rGr^rr@rs r/test_no_gpg_both_hashes_no_rounds_stored_hasheszGUserCmdCryptShaTestCase.test_no_gpg_both_hashes_no_rounds_stored_hashes=s /000  !HII -4555 -4555  ,--- %9::%9::  !HII 5I!J!JKKK 5I!J!JKKKKKrc|d|d}|d|v|d|v|d|vt|d}t|d}|d}||t|d||t|ddS) Nr=virtualCryptSHA256;rounds=2561,virtualCryptSHA512;rounds=5129rZr[r\rbrfrYrrs r,test_no_gpg_both_hashes_rounds_stored_hasheszDUserCmdCryptShaTestCase.test_no_gpg_both_hashes_rounds_stored_hashesSs /000  "BCC -4555 -4555  ,--- %9::%9::  !HII 5I!J!JKKK 5I!J!JKKKKKrc~|d|d}|d|v|d|v|d|vt|d}t|d}|d}||t|d||t|d||d||d dS) NGCryptSHA512 CryptSHA256 CryptSHA512:rounds=5129 CryptSHA256:rounds=2561rrZr[r\rbrf{CRYPT}$5$rounds=2561{CRYPT}$6$rounds=5129r8rGr^rr@rrs r8test_no_gpg_both_hashes_rounds_stored_hashes_with_roundszPUserCmdCryptShaTestCase.test_no_gpg_both_hashes_rounds_stored_hashes_with_roundsjsP 0 1 1 1   "BCC -4555 -4555  S())) %9::%9::  "BCC 5I!J!JKKK 5I!J!JKKK ))*ABBCCC ))*ABBCCCCCrc|d|d}|d|v|d|v|d|vt|d}t|d}|d}||t|d||t|d|d}||t|d||t|ddS) Nr=virtualCryptSHA256;rounds=4000,virtualCryptSHA512;rounds=5000rZr[r\rbrfrYrrs rAtest_no_gpg_both_hashes_rounds_stored_hashes_with_rounds_no_matchzYUserCmdCryptShaTestCase.test_no_gpg_both_hashes_rounds_stored_hashes_with_rounds_no_matchsj 0 1 1 1   "BCC -4555 -4555  ,--- %9::%9::  "BCC 5I!J!JKKK 5I!J!JKKK  "677 5I!J!JKKK 5I!J!JKKKKKrc|d|dd}|d|v|d|v|d|vt|d}t|d}|dd}||t|d||t|ddS) NrrYTrZr[r\rbrfrrs r,test_gpg_both_hashes_no_rounds_stored_hasheszDUserCmdCryptShaTestCase.test_gpg_both_hashes_no_rounds_stored_hashess /000  !H$OO -4555 -4555  ,--- %9::%9::  !H$OO 5I!J!JKKK 5I!J!JKKKKKrc|d|dd}|d|v|d|v|d|vt|d}t|d}|dd}||t|dk||t|dk||d ||d dS) NrrTrZr[r\rbrfrrr8rGr^r assertFalserrs r)test_gpg_both_hashes_rounds_stored_hasheszAUserCmdCryptShaTestCase.test_gpg_both_hashes_rounds_stored_hashessP /000  "B!%'' -4555 -4555  S())) %9::%9::  "B!%'' >#7K#L#LLMMM >#7K#L#LLMMM ))*ABBCCC ))*ABBCCCCCrc|d|dd}|d|v|d|v|d|vt|d}t|d}|dd}||t|d||t|d||d ||d dS) NrrTrZr[r\rbrfrrrrs r5test_gpg_both_hashes_rounds_stored_hashes_with_roundszMUserCmdCryptShaTestCase.test_gpg_both_hashes_rounds_stored_hashes_with_roundssT 0 1 1 1   "B!%'' -4555 -4555  S())) %9::%9::  "B!%'' 5I!J!JKKK 5I!J!JKKK ))*ABBCCC ))*ABBCCCCCrc|d|dd}|d|v|d|v|d|vt|d}t|d}|dd}||t|dk||t|dk||d ||d dS) NrrTrZr[r\rbrfz{CRYPT}$5$rounds=4000z{CRYPT}$6$rounds=5000rrs r>test_gpg_both_hashes_rounds_stored_hashes_with_rounds_no_matchzVUserCmdCryptShaTestCase.test_gpg_both_hashes_rounds_stored_hashes_with_rounds_no_matchsZ 0 1 1 1   "B!%'' -4555 -4555  S())) %9::%9::  "B!%'' >#7K#L#LLMMM >#7K#L#LLMMM ))*ABBCCC ))*ABBCCCCCr)r)F)!__name__ __module__ __qualname____doc__userssamdbr!r8r;rGrWr`rcrgrjrmrprrrtrwryr|rrrrrrrrrr __classcell__)r$s@rrr2s E E55555!!!!&44444. C C C"................................. F F F(EEE(LLL,LLL.DDD@LLLDLLL,DDD<DDDDDDDDDDDrr)ostimebase64r2r+samba.tests.samba_tool.basersamba.credentialsr samba.samdbr samba.authr samba.ndrr samba.dcerpcrr rr5r/rrrrrs& 888888))))))%%%%%% !!!!!!  2 kDkDkDkDkD.kDkDkDkDkDr