1 # Unix SMB/CIFS implementation.
2 # Copyright (C) Jelmer Vernooij <jelmer@samba.org> 2007-2010
3 # Copyright (C) Stefan Metzmacher 2014,2015
5 # This program is free software; you can redistribute it and/or modify
6 # it under the terms of the GNU General Public License as published by
7 # the Free Software Foundation; either version 3 of the License, or
8 # (at your option) any later version.
10 # This program is distributed in the hope that it will be useful,
11 # but WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License
16 # along with this program. If not, see <http://www.gnu.org/licenses/>.
22 import samba.dcerpc.dcerpc
23 import samba.dcerpc.base
24 import samba.dcerpc.epmapper
26 from samba import gensec
27 from samba.credentials import Credentials
28 from samba.tests import TestCase
31 class RawDCERPCTest(TestCase):
32 """A raw DCE/RPC Test case."""
34 def _disconnect(self, reason):
40 sys.stderr.write("disconnect[%s]\n" % reason)
44 self.a = socket.getaddrinfo(self.host, self.tcp_port, socket.AF_UNSPEC,
45 socket.SOCK_STREAM, socket.SOL_TCP,
47 self.s = socket.socket(self.a[0][0], self.a[0][1], self.a[0][2])
49 self.s.connect(self.a[0][4])
50 except socket.error as e:
56 except Exception as e:
62 super(RawDCERPCTest, self).setUp()
63 self.do_ndr_print = False
64 self.do_hexdump = False
66 self.host = samba.tests.env_get_var_value('SERVER')
67 self.target_hostname = samba.tests.env_get_var_value('TARGET_HOSTNAME', allow_missing=True)
68 if self.target_hostname is None:
69 self.target_hostname = self.host
73 self.settings["lp_ctx"] = self.lp_ctx = samba.tests.env_loadparm()
74 self.settings["target_hostname"] = self.target_hostname
81 def second_connection(self, tcp_port=None):
82 c = RawDCERPCTest(methodName='noop')
83 c.do_ndr_print = self.do_ndr_print
84 c.do_hexdump = self.do_hexdump
87 c.target_hostname = self.target_hostname
88 if tcp_port is not None:
91 c.tcp_port = self.tcp_port
93 c.settings = self.settings
98 def get_user_creds(self):
101 username = samba.tests.env_get_var_value('USERNAME')
102 password = samba.tests.env_get_var_value('PASSWORD')
103 c.set_username(username)
104 c.set_password(password)
107 def get_anon_creds(self):
112 def get_auth_context_creds(self, creds, auth_type, auth_level,
116 if g_auth_level is None:
117 g_auth_level = auth_level
119 g = gensec.Security.start_client(self.settings)
120 g.set_credentials(creds)
121 g.want_feature(gensec.FEATURE_DCE_STYLE)
122 g.start_mech_by_authtype(auth_type, g_auth_level)
125 auth_context["auth_type"] = auth_type
126 auth_context["auth_level"] = auth_level
127 auth_context["auth_context_id"] = auth_context_id
128 auth_context["g_auth_level"] = g_auth_level
129 auth_context["gensec"] = g
133 def do_generic_bind(self, ctx, auth_context=None,
134 pfc_flags=samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
135 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
136 assoc_group_id=0, call_id=0,
137 nak_reason=None, alter_fault=None):
140 if auth_context is not None:
142 (finished, to_server) = auth_context["gensec"].update(from_server)
143 self.assertFalse(finished)
145 auth_info = self.generate_auth(auth_type=auth_context["auth_type"],
146 auth_level=auth_context["auth_level"],
147 auth_context_id=auth_context["auth_context_id"],
152 req = self.generate_bind(call_id=call_id,
155 assoc_group_id=assoc_group_id,
158 rep = self.recv_pdu()
159 if nak_reason is not None:
160 self.verify_pdu(rep, samba.dcerpc.dcerpc.DCERPC_PKT_BIND_NAK, req.call_id,
162 self.assertEquals(rep.u.reject_reason, nak_reason)
163 self.assertEquals(rep.u.num_versions, 1)
164 self.assertEquals(rep.u.versions[0].rpc_vers, req.rpc_vers)
165 self.assertEquals(rep.u.versions[0].rpc_vers_minor, req.rpc_vers_minor)
166 self.assertEquals(len(rep.u._pad), 3)
167 self.assertEquals(rep.u._pad, '\0' * 3)
169 self.verify_pdu(rep, samba.dcerpc.dcerpc.DCERPC_PKT_BIND_ACK, req.call_id,
171 self.assertEquals(rep.u.max_xmit_frag, req.u.max_xmit_frag)
172 self.assertEquals(rep.u.max_recv_frag, req.u.max_recv_frag)
173 if assoc_group_id != 0:
174 self.assertEquals(rep.u.assoc_group_id, assoc_group_id)
176 self.assertNotEquals(rep.u.assoc_group_id, 0)
177 assoc_group_id = rep.u.assoc_group_id
178 port_str = "%d" % self.tcp_port
179 port_len = len(port_str) + 1
180 mod_len = (2 + port_len) % 4
182 port_pad = 4 - mod_len
185 self.assertEquals(rep.u.secondary_address_size, port_len)
186 self.assertEquals(rep.u.secondary_address, port_str)
187 self.assertEquals(len(rep.u._pad1), port_pad)
188 # sometimes windows sends random bytes
189 # self.assertEquals(rep.u._pad1, '\0' * port_pad)
190 self.assertEquals(rep.u.num_results, 1)
191 self.assertEquals(rep.u.ctx_list[0].result,
192 samba.dcerpc.dcerpc.DCERPC_BIND_ACK_RESULT_ACCEPTANCE)
193 self.assertEquals(rep.u.ctx_list[0].reason,
194 samba.dcerpc.dcerpc.DCERPC_BIND_ACK_REASON_NOT_SPECIFIED)
195 self.assertNDRSyntaxEquals(rep.u.ctx_list[0].syntax, ctx.transfer_syntaxes[0])
197 if auth_context is None:
198 self.assertEquals(rep.auth_length, 0)
199 self.assertEquals(len(rep.u.auth_info), 0)
201 self.assertNotEquals(rep.auth_length, 0)
202 self.assertGreater(len(rep.u.auth_info), samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH)
203 self.assertEquals(rep.auth_length, len(rep.u.auth_info) - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH)
205 a = self.parse_auth(rep.u.auth_info)
207 from_server = a.credentials
208 (finished, to_server) = auth_context["gensec"].update(from_server)
209 self.assertFalse(finished)
211 auth_info = self.generate_auth(auth_type=auth_context["auth_type"],
212 auth_level=auth_context["auth_level"],
213 auth_context_id=auth_context["auth_context_id"],
215 req = self.generate_alter(call_id=call_id,
217 assoc_group_id=0xffffffff-assoc_group_id,
220 rep = self.recv_pdu()
221 if alter_fault is not None:
222 self.verify_pdu(rep, samba.dcerpc.dcerpc.DCERPC_PKT_FAULT, req.call_id,
223 pfc_flags=req.pfc_flags |
224 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_DID_NOT_EXECUTE,
226 self.assertNotEquals(rep.u.alloc_hint, 0)
227 self.assertEquals(rep.u.context_id, 0)
228 self.assertEquals(rep.u.cancel_count, 0)
229 self.assertEquals(rep.u.flags, 0)
230 self.assertEquals(rep.u.status, alter_fault)
231 self.assertEquals(rep.u.reserved, 0)
232 self.assertEquals(len(rep.u.error_and_verifier), 0)
234 self.verify_pdu(rep, samba.dcerpc.dcerpc.DCERPC_PKT_ALTER_RESP, req.call_id)
235 self.assertEquals(rep.u.max_xmit_frag, req.u.max_xmit_frag)
236 self.assertEquals(rep.u.max_recv_frag, req.u.max_recv_frag)
237 self.assertEquals(rep.u.assoc_group_id, assoc_group_id)
238 self.assertEquals(rep.u.secondary_address_size, 0)
239 self.assertEquals(rep.u.secondary_address, '')
240 self.assertEquals(len(rep.u._pad1), 2)
241 # sometimes windows sends random bytes
242 # self.assertEquals(rep.u._pad1, '\0' * 2)
243 self.assertEquals(rep.u.num_results, 1)
244 self.assertEquals(rep.u.ctx_list[0].result,
245 samba.dcerpc.dcerpc.DCERPC_BIND_ACK_RESULT_ACCEPTANCE)
246 self.assertEquals(rep.u.ctx_list[0].reason,
247 samba.dcerpc.dcerpc.DCERPC_BIND_ACK_REASON_NOT_SPECIFIED)
248 self.assertNDRSyntaxEquals(rep.u.ctx_list[0].syntax, ctx.transfer_syntaxes[0])
249 self.assertNotEquals(rep.auth_length, 0)
250 self.assertGreater(len(rep.u.auth_info), samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH)
251 self.assertEquals(rep.auth_length, len(rep.u.auth_info) - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH)
253 a = self.parse_auth(rep.u.auth_info)
255 from_server = a.credentials
256 (finished, to_server) = auth_context["gensec"].update(from_server)
257 self.assertTrue(finished)
261 def prepare_presentation(self, abstract, transfer, object=None,
262 context_id=0xffff, epmap=False, auth_context=None,
263 pfc_flags=samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
264 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
268 self.epmap_reconnect(abstract, transfer=transfer, object=object)
270 tsf1_list = [transfer]
271 ctx = samba.dcerpc.dcerpc.ctx_list()
272 ctx.context_id = context_id
273 ctx.num_transfer_syntaxes = len(tsf1_list)
274 ctx.abstract_syntax = abstract
275 ctx.transfer_syntaxes = tsf1_list
277 ack = self.do_generic_bind(ctx=ctx,
278 auth_context=auth_context,
280 assoc_group_id=assoc_group_id)
288 def do_single_request(self, call_id, ctx, io,
291 bigendian=False, ndr64=False,
292 allow_remaining=False,
295 fault_pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
296 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
298 fault_context_id=None,
303 if fault_context_id is None:
304 fault_context_id = ctx.context_id
306 if ndr_print is None:
307 ndr_print = self.do_ndr_print
309 hexdump = self.do_hexdump
313 sys.stderr.write("in: %s" % samba.ndr.ndr_print_in(io))
314 stub_in = samba.ndr.ndr_pack_in(io, bigendian=bigendian, ndr64=ndr64)
316 sys.stderr.write("stub_in: %d\n%s" % (len(stub_in), self.hexdump(stub_in)))
318 # only used for sig_size calculation
319 stub_in = '\xff' * samba.dcerpc.dcerpc.DCERPC_AUTH_PAD_ALIGNMENT
322 if auth_context is not None:
323 mod_len = len(stub_in) % samba.dcerpc.dcerpc.DCERPC_AUTH_PAD_ALIGNMENT
326 auth_pad_length = samba.dcerpc.dcerpc.DCERPC_AUTH_PAD_ALIGNMENT - mod_len
327 stub_in += '\x00' * auth_pad_length
329 if auth_context["g_auth_level"] >= samba.dcerpc.dcerpc.DCERPC_AUTH_LEVEL_PACKET:
330 sig_size = auth_context["gensec"].sig_size(len(stub_in))
334 zero_sig = "\x00"*sig_size
335 auth_info = self.generate_auth(auth_type=auth_context["auth_type"],
336 auth_level=auth_context["auth_level"],
337 auth_pad_length=auth_pad_length,
338 auth_context_id=auth_context["auth_context_id"],
343 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST
344 pfc_flags |= samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST
345 if object is not None:
346 pfc_flags |= samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_OBJECT_UUID
348 req = self.generate_request(call_id=call_id,
349 context_id=ctx.context_id,
357 if sig_size != 0 and auth_context["auth_level"] >= samba.dcerpc.dcerpc.DCERPC_AUTH_LEVEL_PACKET:
358 req_blob = samba.ndr.ndr_pack(req)
359 ofs_stub = samba.dcerpc.dcerpc.DCERPC_REQUEST_LENGTH
360 ofs_sig = len(req_blob) - req.auth_length
361 ofs_trailer = ofs_sig - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH
362 req_data = req_blob[ofs_stub:ofs_trailer]
363 req_whole = req_blob[0:ofs_sig]
364 sig = auth_context["gensec"].sign_packet(req_data, req_whole)
365 auth_info = self.generate_auth(auth_type=auth_context["auth_type"],
366 auth_level=auth_context["auth_level"],
367 auth_pad_length=auth_pad_length,
368 auth_context_id=auth_context["auth_context_id"],
370 req = self.generate_request(call_id=call_id,
371 context_id=ctx.context_id,
377 self.send_pdu(req, ndr_print=ndr_print, hexdump=hexdump)
379 (rep, rep_blob) = self.recv_pdu_raw(timeout=timeout,
383 self.verify_pdu(rep, samba.dcerpc.dcerpc.DCERPC_PKT_FAULT, req.call_id,
384 pfc_flags=fault_pfc_flags, auth_length=0)
385 self.assertNotEquals(rep.u.alloc_hint, 0)
386 self.assertEquals(rep.u.context_id, fault_context_id)
387 self.assertEquals(rep.u.cancel_count, 0)
388 self.assertEquals(rep.u.flags, 0)
389 self.assertEquals(rep.u.status, fault_status)
390 self.assertEquals(rep.u.reserved, 0)
391 self.assertEquals(len(rep.u.error_and_verifier), 0)
394 self.verify_pdu(rep, samba.dcerpc.dcerpc.DCERPC_PKT_RESPONSE, req.call_id,
395 auth_length=sig_size)
396 self.assertNotEquals(rep.u.alloc_hint, 0)
397 self.assertEquals(rep.u.context_id, req.u.context_id & 0xff)
398 self.assertEquals(rep.u.cancel_count, 0)
399 self.assertGreaterEqual(len(rep.u.stub_and_verifier), rep.u.alloc_hint)
402 ofs_stub = samba.dcerpc.dcerpc.DCERPC_REQUEST_LENGTH
403 ofs_sig = rep.frag_length - rep.auth_length
404 ofs_trailer = ofs_sig - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH
405 rep_data = rep_blob[ofs_stub:ofs_trailer]
406 rep_whole = rep_blob[0:ofs_sig]
407 rep_sig = rep_blob[ofs_sig:]
408 rep_auth_info_blob = rep_blob[ofs_trailer:]
410 rep_auth_info = self.parse_auth(rep_auth_info_blob)
411 self.assertEquals(rep_auth_info.auth_type, auth_context["auth_type"])
412 self.assertEquals(rep_auth_info.auth_level, auth_context["auth_level"])
413 self.assertLessEqual(rep_auth_info.auth_pad_length, len(rep_data))
414 self.assertEquals(rep_auth_info.auth_reserved, 0)
415 self.assertEquals(rep_auth_info.auth_context_id, auth_context["auth_context_id"])
416 self.assertEquals(rep_auth_info.credentials, rep_sig)
418 if auth_context["auth_level"] >= samba.dcerpc.dcerpc.DCERPC_AUTH_LEVEL_PACKET:
419 auth_context["gensec"].check_packet(rep_data, rep_whole, rep_sig)
421 stub_out = rep_data[0:-rep_auth_info.auth_pad_length]
423 stub_out = rep.u.stub_and_verifier
426 sys.stderr.write("stub_out: %d\n%s" % (len(stub_out), self.hexdump(stub_out)))
427 samba.ndr.ndr_unpack_out(io, stub_out, bigendian=bigendian, ndr64=ndr64,
428 allow_remaining=allow_remaining)
430 sys.stderr.write("out: %s" % samba.ndr.ndr_print_out(io))
432 def epmap_reconnect(self, abstract, transfer=None, object=None):
433 ndr32 = samba.dcerpc.base.transfer_syntax_ndr()
439 object = samba.dcerpc.misc.GUID()
441 ctx = self.prepare_presentation(samba.dcerpc.epmapper.abstract_syntax(),
442 transfer, context_id=0)
444 data1 = samba.ndr.ndr_pack(abstract)
445 lhs1 = samba.dcerpc.epmapper.epm_lhs()
446 lhs1.protocol = samba.dcerpc.epmapper.EPM_PROTOCOL_UUID
447 lhs1.lhs_data = data1[:18]
448 rhs1 = samba.dcerpc.epmapper.epm_rhs_uuid()
449 rhs1.unknown = data1[18:]
450 floor1 = samba.dcerpc.epmapper.epm_floor()
453 data2 = samba.ndr.ndr_pack(transfer)
454 lhs2 = samba.dcerpc.epmapper.epm_lhs()
455 lhs2.protocol = samba.dcerpc.epmapper.EPM_PROTOCOL_UUID
456 lhs2.lhs_data = data2[:18]
457 rhs2 = samba.dcerpc.epmapper.epm_rhs_uuid()
458 rhs2.unknown = data1[18:]
459 floor2 = samba.dcerpc.epmapper.epm_floor()
462 lhs3 = samba.dcerpc.epmapper.epm_lhs()
463 lhs3.protocol = samba.dcerpc.epmapper.EPM_PROTOCOL_NCACN
465 floor3 = samba.dcerpc.epmapper.epm_floor()
467 floor3.rhs.minor_version = 0
468 lhs4 = samba.dcerpc.epmapper.epm_lhs()
469 lhs4.protocol = samba.dcerpc.epmapper.EPM_PROTOCOL_TCP
471 floor4 = samba.dcerpc.epmapper.epm_floor()
473 floor4.rhs.port = self.tcp_port
474 lhs5 = samba.dcerpc.epmapper.epm_lhs()
475 lhs5.protocol = samba.dcerpc.epmapper.EPM_PROTOCOL_IP
477 floor5 = samba.dcerpc.epmapper.epm_floor()
479 floor5.rhs.ipaddr = "0.0.0.0"
481 floors = [floor1,floor2,floor3,floor4,floor5]
482 req_tower = samba.dcerpc.epmapper.epm_tower()
483 req_tower.num_floors = len(floors)
484 req_tower.floors = floors
485 req_twr = samba.dcerpc.epmapper.epm_twr_t()
486 req_twr.tower = req_tower
488 epm_map = samba.dcerpc.epmapper.epm_Map()
489 epm_map.in_object = object
490 epm_map.in_map_tower = req_twr
491 epm_map.in_entry_handle = samba.dcerpc.misc.policy_handle()
492 epm_map.in_max_towers = 4
494 self.do_single_request(call_id=2, ctx=ctx, io=epm_map)
496 self.assertGreaterEqual(epm_map.out_num_towers, 1)
497 rep_twr = epm_map.out_towers[0].twr
498 self.assertIsNotNone(rep_twr)
499 self.assertEqual(rep_twr.tower_length, 75)
500 self.assertEqual(rep_twr.tower.num_floors, 5)
501 self.assertEqual(len(rep_twr.tower.floors), 5)
502 self.assertEqual(rep_twr.tower.floors[3].lhs.protocol,
503 samba.dcerpc.epmapper.EPM_PROTOCOL_TCP)
504 self.assertEqual(rep_twr.tower.floors[3].lhs.protocol,
505 samba.dcerpc.epmapper.EPM_PROTOCOL_TCP)
507 # reconnect to the given port
508 self._disconnect("epmap_reconnect")
509 self.tcp_port = rep_twr.tower.floors[3].rhs.port
512 def send_pdu(self, req, ndr_print=None, hexdump=None):
513 if ndr_print is None:
514 ndr_print = self.do_ndr_print
516 hexdump = self.do_hexdump
518 req_pdu = samba.ndr.ndr_pack(req)
520 sys.stderr.write("send_pdu: %s" % samba.ndr.ndr_print(req))
522 sys.stderr.write("send_pdu: %d\n%s" % (len(req_pdu), self.hexdump(req_pdu)))
524 sent = self.s.send(req_pdu, 0)
525 if sent == len(req_pdu):
527 req_pdu = req_pdu[sent:]
528 except socket.error as e:
529 self._disconnect("send_pdu: %s" % e)
532 self._disconnect("send_pdu: %s" % e)
537 def recv_raw(self, hexdump=None, timeout=None):
540 hexdump = self.do_hexdump
542 if timeout is not None:
543 self.s.settimeout(timeout)
544 rep_pdu = self.s.recv(0xffff, 0)
545 self.s.settimeout(10)
546 if len(rep_pdu) == 0:
547 self._disconnect("recv_raw: EOF")
550 sys.stderr.write("recv_raw: %d\n%s" % (len(rep_pdu), self.hexdump(rep_pdu)))
551 except socket.timeout as e:
552 self.s.settimeout(10)
553 sys.stderr.write("recv_raw: TIMEOUT\n")
555 except socket.error as e:
556 self._disconnect("recv_raw: %s" % e)
559 self._disconnect("recv_raw: %s" % e)
565 def recv_pdu_raw(self, ndr_print=None, hexdump=None, timeout=None):
568 if ndr_print is None:
569 ndr_print = self.do_ndr_print
571 hexdump = self.do_hexdump
573 rep_pdu = self.recv_raw(hexdump=hexdump, timeout=timeout)
576 rep = samba.ndr.ndr_unpack(samba.dcerpc.dcerpc.ncacn_packet, rep_pdu, allow_remaining=True)
578 sys.stderr.write("recv_pdu: %s" % samba.ndr.ndr_print(rep))
579 self.assertEqual(rep.frag_length, len(rep_pdu))
582 return (rep, rep_pdu)
584 def recv_pdu(self, ndr_print=None, hexdump=None, timeout=None):
585 (rep, rep_pdu) = self.recv_pdu_raw(ndr_print=ndr_print,
590 def generate_auth(self,
594 auth_context_id=None,
596 ndr_print=None, hexdump=None):
597 if ndr_print is None:
598 ndr_print = self.do_ndr_print
600 hexdump = self.do_hexdump
602 if auth_type is not None:
603 a = samba.dcerpc.dcerpc.auth()
604 a.auth_type = auth_type
605 a.auth_level = auth_level
606 a.auth_pad_length = auth_pad_length
607 a.auth_context_id= auth_context_id
608 a.credentials = auth_blob
610 ai = samba.ndr.ndr_pack(a)
612 sys.stderr.write("generate_auth: %s" % samba.ndr.ndr_print(a))
614 sys.stderr.write("generate_auth: %d\n%s" % (len(ai), self.hexdump(ai)))
620 def parse_auth(self, auth_info, ndr_print=None, hexdump=None):
621 if ndr_print is None:
622 ndr_print = self.do_ndr_print
624 hexdump = self.do_hexdump
626 if (len(auth_info) <= samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH):
630 sys.stderr.write("parse_auth: %d\n%s" % (len(auth_info), self.hexdump(auth_info)))
631 a = samba.ndr.ndr_unpack(samba.dcerpc.dcerpc.auth, auth_info, allow_remaining=True)
633 sys.stderr.write("parse_auth: %s" % samba.ndr.ndr_print(a))
637 def generate_pdu(self, ptype, call_id, payload,
640 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
641 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
642 drep = [samba.dcerpc.dcerpc.DCERPC_DREP_LE, 0, 0, 0],
643 ndr_print=None, hexdump=None):
645 if getattr(payload, 'auth_info', None):
646 ai = payload.auth_info
650 p = samba.dcerpc.dcerpc.ncacn_packet()
651 p.rpc_vers = rpc_vers
652 p.rpc_vers_minor = rpc_vers_minor
654 p.pfc_flags = pfc_flags
657 if len(ai) > samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH:
658 p.auth_length = len(ai) - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH
664 pdu = samba.ndr.ndr_pack(p)
665 p.frag_length = len(pdu)
669 def verify_pdu(self, p, ptype, call_id,
672 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
673 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
674 drep = [samba.dcerpc.dcerpc.DCERPC_DREP_LE, 0, 0, 0],
677 self.assertIsNotNone(p, "No valid pdu")
679 if getattr(p.u, 'auth_info', None):
684 self.assertEqual(p.rpc_vers, rpc_vers)
685 self.assertEqual(p.rpc_vers_minor, rpc_vers_minor)
686 self.assertEqual(p.ptype, ptype)
687 self.assertEqual(p.pfc_flags, pfc_flags)
688 self.assertEqual(p.drep, drep)
689 self.assertGreaterEqual(p.frag_length,
690 samba.dcerpc.dcerpc.DCERPC_NCACN_PAYLOAD_OFFSET)
691 if len(ai) > samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH:
692 self.assertEqual(p.auth_length,
693 len(ai) - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH)
694 elif auth_length is not None:
695 self.assertEqual(p.auth_length, auth_length)
697 self.assertEqual(p.auth_length, 0)
698 self.assertEqual(p.call_id, call_id)
702 def generate_bind(self, call_id,
703 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
704 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
710 ndr_print=None, hexdump=None):
712 b = samba.dcerpc.dcerpc.bind()
713 b.max_xmit_frag = max_xmit_frag
714 b.max_recv_frag = max_recv_frag
715 b.assoc_group_id = assoc_group_id
716 b.num_contexts = len(ctx_list)
717 b.ctx_list = ctx_list
718 b.auth_info = auth_info
720 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_BIND,
724 ndr_print=ndr_print, hexdump=hexdump)
728 def generate_alter(self, call_id,
729 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
730 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
736 ndr_print=None, hexdump=None):
738 a = samba.dcerpc.dcerpc.bind()
739 a.max_xmit_frag = max_xmit_frag
740 a.max_recv_frag = max_recv_frag
741 a.assoc_group_id = assoc_group_id
742 a.num_contexts = len(ctx_list)
743 a.ctx_list = ctx_list
744 a.auth_info = auth_info
746 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_ALTER,
750 ndr_print=ndr_print, hexdump=hexdump)
754 def generate_auth3(self, call_id,
755 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
756 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
758 ndr_print=None, hexdump=None):
760 a = samba.dcerpc.dcerpc.auth3()
761 a.auth_info = auth_info
763 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_AUTH3,
767 ndr_print=ndr_print, hexdump=hexdump)
771 def generate_request(self, call_id,
772 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
773 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
780 ndr_print=None, hexdump=None):
782 if alloc_hint is None:
783 alloc_hint = len(stub)
785 r = samba.dcerpc.dcerpc.request()
786 r.alloc_hint = alloc_hint
787 r.context_id = context_id
789 if object is not None:
791 r.stub_and_verifier = stub + auth_info
793 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_REQUEST,
797 ndr_print=ndr_print, hexdump=hexdump)
799 if len(auth_info) > samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH:
800 p.auth_length = len(auth_info) - samba.dcerpc.dcerpc.DCERPC_AUTH_TRAILER_LENGTH
804 def generate_co_cancel(self, call_id,
805 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
806 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
808 ndr_print=None, hexdump=None):
810 c = samba.dcerpc.dcerpc.co_cancel()
811 c.auth_info = auth_info
813 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_CO_CANCEL,
817 ndr_print=ndr_print, hexdump=hexdump)
821 def generate_orphaned(self, call_id,
822 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
823 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
825 ndr_print=None, hexdump=None):
827 o = samba.dcerpc.dcerpc.orphaned()
828 o.auth_info = auth_info
830 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_ORPHANED,
834 ndr_print=ndr_print, hexdump=hexdump)
838 def generate_shutdown(self, call_id,
839 pfc_flags = samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_FIRST |
840 samba.dcerpc.dcerpc.DCERPC_PFC_FLAG_LAST,
841 ndr_print=None, hexdump=None):
843 s = samba.dcerpc.dcerpc.shutdown()
845 p = self.generate_pdu(ptype=samba.dcerpc.dcerpc.DCERPC_PKT_SHUTDOWN,
849 ndr_print=ndr_print, hexdump=hexdump)
853 def assertIsConnected(self):
854 self.assertIsNotNone(self.s, msg="Not connected")
857 def assertNotConnected(self):
858 self.assertIsNone(self.s, msg="Is connected")
861 def assertNDRSyntaxEquals(self, s1, s2):
862 self.assertEqual(s1.uuid, s2.uuid)
863 self.assertEqual(s1.if_version, s2.if_version)
git.samba.org / samba.git / blob