1 # Unix SMB/CIFS implementation.
2 # Copyright (C) Jelmer Vernooij <jelmer@samba.org> 2007-2008
4 # This program is free software; you can redistribute it and/or modify
5 # it under the terms of the GNU General Public License as published by
6 # the Free Software Foundation; either version 3 of the License, or
7 # (at your option) any later version.
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
14 # You should have received a copy of the GNU General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
18 """Tests for samba.upgradeprovision that need a DC."""
24 from samba import param
25 from samba.credentials import Credentials
26 from samba.auth import system_session
27 from samba.provision import getpolicypath, find_provision_key_parameters
28 from samba.upgradehelpers import (get_paths, get_ldbs,
30 updateOEMInfo, getOEMInfo, update_gpo,
31 delta_update_basesamdb,
32 update_dns_account_password,
33 search_constructed_attrs_stored,
34 increment_calculated_keyversion_number)
35 from samba.tests import env_loadparm, TestCaseInTempDir
36 from samba.tests.provision import create_dummy_secretsdb
40 def dummymessage(a=None, b=None):
43 smb_conf_path = "%s/%s/%s" % (os.environ["SELFTEST_PREFIX"], "ad_dc_ntvfs", "etc/smb.conf")
46 class UpgradeProvisionBasicLdbHelpersTestCase(TestCaseInTempDir):
47 """Some simple tests for individual functions in the provisioning code.
50 def test_get_ldbs(self):
51 paths = get_paths(param, None, smb_conf_path)
55 get_ldbs(paths, creds, system_session(), lp)
57 def test_find_key_param(self):
58 paths = get_paths(param, None, smb_conf_path)
62 rootdn = "dc=samba,dc=example,dc=com"
63 ldbs = get_ldbs(paths, creds, system_session(), lp)
64 names = find_provision_key_parameters(ldbs.sam, ldbs.secrets, ldbs.idmap,
65 paths, smb_conf_path, lp)
66 self.assertEquals(names.realm, "SAMBA.EXAMPLE.COM")
67 self.assertEquals(str(names.rootdn).lower(), rootdn.lower())
68 self.assertNotEquals(names.policyid_dc, None)
69 self.assertNotEquals(names.ntdsguid, "")
72 class UpgradeProvisionWithLdbTestCase(TestCaseInTempDir):
74 def _getEmptyDbName(self):
75 return os.path.join(self.tempdir, "sam.ldb")
78 super(UpgradeProvisionWithLdbTestCase, self).setUp()
79 paths = get_paths(param, None, smb_conf_path)
80 self.creds = Credentials()
81 self.lp = env_loadparm()
82 self.creds.guess(self.lp)
84 self.ldbs = get_ldbs(paths, self.creds, system_session(), self.lp)
85 self.names = find_provision_key_parameters(self.ldbs.sam,
86 self.ldbs.secrets, self.ldbs.idmap, paths, smb_conf_path,
88 self.referencedb = create_dummy_secretsdb(
89 os.path.join(self.tempdir, "ref.ldb"))
91 def test_search_constructed_attrs_stored(self):
92 hashAtt = search_constructed_attrs_stored(self.ldbs.sam,
94 ["msds-KeyVersionNumber"])
95 self.assertFalse("msds-KeyVersionNumber" in hashAtt)
97 def test_increment_calculated_keyversion_number(self):
98 dn = "CN=Administrator,CN=Users,%s" % self.names.rootdn
99 # We conctruct a simple hash for the user administrator
101 # And we want the version to be 140
102 hash[dn.lower()] = 140
104 increment_calculated_keyversion_number(self.ldbs.sam,
107 self.assertEqual(self.ldbs.sam.get_attribute_replmetadata_version(dn,
110 # This function should not decrement the version
111 hash[dn.lower()] = 130
113 increment_calculated_keyversion_number(self.ldbs.sam,
116 self.assertEqual(self.ldbs.sam.get_attribute_replmetadata_version(dn,
120 def test_identic_rename(self):
121 rootdn = "DC=samba,DC=example,DC=com"
123 guestDN = ldb.Dn(self.ldbs.sam, "CN=Guest,CN=Users,%s" % rootdn)
124 identic_rename(self.ldbs.sam, guestDN)
125 res = self.ldbs.sam.search(expression="(name=Guest)", base=rootdn,
126 scope=ldb.SCOPE_SUBTREE, attrs=["dn"])
127 self.assertEquals(len(res), 1)
128 self.assertEquals(str(res[0]["dn"]), "CN=Guest,CN=Users,%s" % rootdn)
130 def test_delta_update_basesamdb(self):
131 dummysampath = self._getEmptyDbName()
132 delta_update_basesamdb(self.paths.samdb, dummysampath,
133 self.creds, system_session(), self.lp,
136 def test_update_gpo_simple(self):
137 dir = getpolicypath(self.paths.sysvol, self.names.dnsdomain,
140 self.assertFalse(os.path.isdir(dir))
141 update_gpo(self.paths, self.ldbs.sam, self.names, self.lp, dummymessage)
142 self.assertTrue(os.path.isdir(dir))
144 def test_update_gpo_acl(self):
145 path = os.path.join(self.tempdir, "testupdategpo")
146 save = self.paths.sysvol
147 self.paths.sysvol = path
149 os.mkdir(os.path.join(path, self.names.dnsdomain))
150 os.mkdir(os.path.join(os.path.join(path, self.names.dnsdomain),
152 update_gpo(self.paths, self.ldbs.sam, self.names, self.lp, dummymessage)
154 self.paths.sysvol = save
156 def test_getOEMInfo(self):
157 realm = self.lp.get("realm")
158 basedn = "DC=%s" % realm.replace(".", ", DC=")
159 oem = getOEMInfo(self.ldbs.sam, basedn)
160 self.assertNotEquals(oem, "")
162 def test_update_dns_account(self):
163 update_dns_account_password(self.ldbs.sam, self.ldbs.secrets,
166 def test_updateOEMInfo(self):
167 realm = self.lp.get("realm")
168 basedn = "DC=%s" % realm.replace(".", ", DC=")
169 oem = getOEMInfo(self.ldbs.sam, basedn)
170 updateOEMInfo(self.ldbs.sam, basedn)
171 oem2 = getOEMInfo(self.ldbs.sam, basedn)
172 self.assertNotEquals(str(oem), str(oem2))
173 self.assertTrue(re.match(".*upgrade to.*", str(oem2)))
176 for name in ["ref.ldb", "secrets.ldb", "secrets.tdb", "secrets.tdb.bak", "secrets.ntdb", "sam.ldb"]:
177 path = os.path.join(self.tempdir, name)
178 if os.path.exists(path):
180 super(UpgradeProvisionWithLdbTestCase, self).tearDown()