2 # Bootstrap Samba and run a number of tests against it.
3 # Copyright (C) 2005-2007 Jelmer Vernooij <jelmer@samba.org>
4 # Published under the GNU GPL, v3 or later.
10 use FindBin qw($RealBin);
17 my $smbd_build_options = Samba::bindir_path($self, "smbd") . " -b|";
18 open(IN, $smbd_build_options) or die("Unable to run $smbd_build_options: $!");
27 # If we were not built with ADS support, pretend we were never even available
28 print "smbd does not have ADS support\n" unless $found_ads;
32 # return smb.conf parameters applicable to @path, based on the underlying
34 sub get_fs_specific_conf($$)
36 my ($self, $path) = @_;
38 my $stat_out = `stat --file-system $path` or return "";
40 if ($stat_out =~ m/Type:\s+btrfs/) {
45 return "vfs objects = $mods";
52 my ($classname, $bindir, $binary_mapping, $srcdir, $server_maxtime) = @_;
53 my $self = { vars => {},
55 binary_mapping => $binary_mapping,
57 server_maxtime => $server_maxtime
65 my ($self, $envvars) = @_;
68 # This should cause smbd to terminate gracefully
69 close($envvars->{STDIN_PIPE});
71 my $smbdpid = $envvars->{SMBD_TL_PID};
72 my $nmbdpid = $envvars->{NMBD_TL_PID};
73 my $winbinddpid = $envvars->{WINBINDD_TL_PID};
75 # This should give it time to write out the gcov data
77 my $smbdchild = Samba::cleanup_child($smbdpid, "smbd");
78 my $nmbdchild = Samba::cleanup_child($nmbdpid, "nmbd");
79 my $winbinddchild = Samba::cleanup_child($winbinddpid, "winbindd");
82 && $winbinddchild == -1) {
89 if ($count <= 20 && kill(0, $smbdpid, $nmbdpid, $winbinddpid) == 0) {
93 $self->stop_sig_term($smbdpid);
94 $self->stop_sig_term($nmbdpid);
95 $self->stop_sig_term($winbinddpid);
99 my $smbdchild = Samba::cleanup_child($smbdpid, "smbd");
100 my $nmbdchild = Samba::cleanup_child($nmbdpid, "nmbd");
101 my $winbinddchild = Samba::cleanup_child($winbinddpid, "winbindd");
104 && $winbinddchild == -1) {
111 if ($count <= 10 && kill(0, $smbdpid, $nmbdpid, $winbinddpid) == 0) {
115 warn("timelimit process did not quit on SIGTERM, sending SIGKILL");
116 $self->stop_sig_kill($smbdpid);
117 $self->stop_sig_kill($nmbdpid);
118 $self->stop_sig_kill($winbinddpid);
123 sub getlog_env_app($$$)
125 my ($self, $envvars, $name) = @_;
127 my $title = "$name LOG of: $envvars->{NETBIOSNAME}\n";
130 open(LOG, "<".$envvars->{$name."_TEST_LOG"});
132 seek(LOG, $envvars->{$name."_TEST_LOG_POS"}, SEEK_SET);
136 $envvars->{$name."_TEST_LOG_POS"} = tell(LOG);
139 return "" if $out eq $title;
146 my ($self, $envvars) = @_;
149 $ret .= $self->getlog_env_app($envvars, "SMBD");
150 $ret .= $self->getlog_env_app($envvars, "NMBD");
151 $ret .= $self->getlog_env_app($envvars, "WINBINDD");
158 my ($self, $envvars) = @_;
160 my $childpid = waitpid(-1, WNOHANG);
168 my ($self, $envname, $path) = @_;
170 if (defined($self->{vars}->{$envname})) {
171 return $self->{vars}->{$envname};
174 if ($envname eq "s3dc") {
175 return $self->setup_s3dc("$path/s3dc");
176 } elsif ($envname eq "simpleserver") {
177 return $self->setup_simpleserver("$path/simpleserver");
178 } elsif ($envname eq "maptoguest") {
179 return $self->setup_maptoguest("$path/maptoguest");
180 } elsif ($envname eq "ktest") {
181 return $self->setup_ktest("$path/ktest");
182 } elsif ($envname eq "member") {
183 if (not defined($self->{vars}->{s3dc})) {
184 if (not defined($self->setup_s3dc("$path/s3dc"))) {
188 return $self->setup_member("$path/member", $self->{vars}->{s3dc});
196 my ($self, $path) = @_;
198 print "PROVISIONING S3DC...";
205 rpc_server:epmapper = external
206 rpc_server:spoolss = external
207 rpc_server:lsarpc = external
208 rpc_server:samr = external
209 rpc_server:netlogon = external
210 rpc_server:register_embedded_np = yes
212 rpc_daemon:epmd = fork
213 rpc_daemon:spoolssd = fork
214 rpc_daemon:lsasd = fork
217 my $vars = $self->provision($path,
222 $vars or return undef;
224 if (not $self->check_or_start($vars, "yes", "yes", "yes")) {
228 $vars->{DC_SERVER} = $vars->{SERVER};
229 $vars->{DC_SERVER_IP} = $vars->{SERVER_IP};
230 $vars->{DC_NETBIOSNAME} = $vars->{NETBIOSNAME};
231 $vars->{DC_USERNAME} = $vars->{USERNAME};
232 $vars->{DC_PASSWORD} = $vars->{PASSWORD};
234 $self->{vars}->{s3dc} = $vars;
239 sub setup_member($$$)
241 my ($self, $prefix, $s3dcvars) = @_;
243 print "PROVISIONING MEMBER...";
245 my $member_options = "
249 my $ret = $self->provision($prefix,
254 $ret or return undef;
256 my $net = Samba::bindir_path($self, "net");
258 $cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
259 $cmd .= "$net join $ret->{CONFIGURATION} $s3dcvars->{DOMAIN} member";
260 $cmd .= " -U$s3dcvars->{USERNAME}\%$s3dcvars->{PASSWORD}";
262 if (system($cmd) != 0) {
263 warn("Join failed\n$cmd");
267 if (not $self->check_or_start($ret, "yes", "yes", "yes")) {
271 $ret->{DC_SERVER} = $s3dcvars->{SERVER};
272 $ret->{DC_SERVER_IP} = $s3dcvars->{SERVER_IP};
273 $ret->{DC_NETBIOSNAME} = $s3dcvars->{NETBIOSNAME};
274 $ret->{DC_USERNAME} = $s3dcvars->{USERNAME};
275 $ret->{DC_PASSWORD} = $s3dcvars->{PASSWORD};
280 sub setup_admember($$$$)
282 my ($self, $prefix, $dcvars) = @_;
284 # If we didn't build with ADS, pretend this env was never available
285 if (not $self->have_ads()) {
289 print "PROVISIONING S3 AD MEMBER...";
291 my $member_options = "
294 workgroup = $dcvars->{DOMAIN}
295 realm = $dcvars->{REALM}
298 my $ret = $self->provision($prefix,
303 $ret or return undef;
306 $ret->{DOMAIN} = $dcvars->{DOMAIN};
307 $ret->{REALM} = $dcvars->{REALM};
310 my $prefix_abs = abs_path($prefix);
312 $ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
313 $ctx->{domain} = $dcvars->{DOMAIN};
314 $ctx->{realm} = $dcvars->{REALM};
315 $ctx->{dnsname} = lc($dcvars->{REALM});
316 $ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
317 Samba::mk_krb5_conf($ctx, "");
319 $ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
321 my $net = Samba::bindir_path($self, "net");
323 $cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
324 $cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
325 $cmd .= "$net join $ret->{CONFIGURATION}";
326 $cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
328 if (system($cmd) != 0) {
329 warn("Join failed\n$cmd");
333 # We need world access to this share, as otherwise the domain
334 # administrator from the AD domain provided by Samba4 can't
335 # access the share for tests.
336 chmod 0777, "$prefix/share";
338 if (not $self->check_or_start($ret, "yes", "yes", "yes")) {
342 $ret->{DC_SERVER} = $dcvars->{SERVER};
343 $ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
344 $ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
345 $ret->{DC_USERNAME} = $dcvars->{USERNAME};
346 $ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
348 # Special case, this is called from Samba4.pm but needs to use the Samba3 check_env and get_log_env
349 $ret->{target} = $self;
354 sub setup_admember_rfc2307($$$$)
356 my ($self, $prefix, $dcvars) = @_;
358 # If we didn't build with ADS, pretend this env was never available
359 if (not $self->have_ads()) {
363 print "PROVISIONING S3 AD MEMBER WITH idmap_rfc2307 config...";
365 my $member_options = "
368 workgroup = $dcvars->{DOMAIN}
369 realm = $dcvars->{REALM}
370 idmap config $dcvars->{DOMAIN} : backend = rfc2307
371 idmap config $dcvars->{DOMAIN} : range = 2000000-2999999
372 idmap config $dcvars->{DOMAIN} : ldap_server = ad
373 idmap config $dcvars->{DOMAIN} : bind_path_user = ou=idmap,dc=samba,dc=example,dc=com
374 idmap config $dcvars->{DOMAIN} : bind_path_group = ou=idmap,dc=samba,dc=example,dc=com
377 my $ret = $self->provision($prefix,
382 $ret or return undef;
385 $ret->{DOMAIN} = $dcvars->{DOMAIN};
386 $ret->{REALM} = $dcvars->{REALM};
389 my $prefix_abs = abs_path($prefix);
391 $ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
392 $ctx->{domain} = $dcvars->{DOMAIN};
393 $ctx->{realm} = $dcvars->{REALM};
394 $ctx->{dnsname} = lc($dcvars->{REALM});
395 $ctx->{kdc_ipv4} = $dcvars->{SERVER_IP};
396 Samba::mk_krb5_conf($ctx, "");
398 $ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
400 my $net = Samba::bindir_path($self, "net");
402 $cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" ";
403 $cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" ";
404 $cmd .= "$net join $ret->{CONFIGURATION}";
405 $cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}";
407 if (system($cmd) != 0) {
408 warn("Join failed\n$cmd");
412 # We need world access to this share, as otherwise the domain
413 # administrator from the AD domain provided by Samba4 can't
414 # access the share for tests.
415 chmod 0777, "$prefix/share";
417 if (not $self->check_or_start($ret, "yes", "yes", "yes")) {
421 $ret->{DC_SERVER} = $dcvars->{SERVER};
422 $ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP};
423 $ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME};
424 $ret->{DC_USERNAME} = $dcvars->{USERNAME};
425 $ret->{DC_PASSWORD} = $dcvars->{PASSWORD};
427 # Special case, this is called from Samba4.pm but needs to use the Samba3 check_env and get_log_env
428 $ret->{target} = $self;
433 sub setup_simpleserver($$)
435 my ($self, $path) = @_;
437 print "PROVISIONING server with security=share...";
439 my $prefix_abs = abs_path($path);
441 my $simpleserver_options = "
443 vfs objects = xattr_tdb streams_depot
446 path = $prefix_abs/share
447 vfs objects = aio_fork
449 vfs_aio_fork:erratic_testing_mode=yes
452 my $vars = $self->provision($path,
455 $simpleserver_options);
457 $vars or return undef;
459 if (not $self->check_or_start($vars, "yes", "no", "yes")) {
463 $self->{vars}->{simpleserver} = $vars;
470 my ($self, $prefix) = @_;
472 # If we didn't build with ADS, pretend this env was never available
473 if (not $self->have_ads()) {
477 print "PROVISIONING server with security=ads...";
479 my $ktest_options = "
481 realm = ktest.samba.example.com
483 username map = $prefix/lib/username.map
484 server signing = required
487 my $ret = $self->provision($prefix,
492 $ret or return undef;
495 my $prefix_abs = abs_path($prefix);
497 $ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf";
498 $ctx->{domain} = "KTEST";
499 $ctx->{realm} = "KTEST.SAMBA.EXAMPLE.COM";
500 $ctx->{dnsname} = lc($ctx->{realm});
501 $ctx->{kdc_ipv4} = "0.0.0.0";
502 Samba::mk_krb5_conf($ctx, "");
504 $ret->{KRB5_CONFIG} = $ctx->{krb5_conf};
506 open(USERMAP, ">$prefix/lib/username.map") or die("Unable to open $prefix/lib/username.map");
508 $ret->{USERNAME} = KTEST\\Administrator
512 #This is the secrets.tdb created by 'net ads join' from Samba3 to a
513 #Samba4 DC with the same parameters as are being used here. The
514 #domain SID is S-1-5-21-1071277805-689288055-3486227160
516 system("cp $self->{srcdir}/source3/selftest/ktest-secrets.tdb $prefix/private/secrets.tdb");
517 chmod 0600, "$prefix/private/secrets.tdb";
519 #Make sure there's no old ntdb file.
520 system("rm -f $prefix/private/secrets.ntdb");
522 #This uses a pre-calculated krb5 credentials cache, obtained by running Samba4 with:
523 # "--option=kdc:service ticket lifetime=239232" "--option=kdc:user ticket lifetime=239232" "--option=kdc:renewal lifetime=239232"
525 #and having in krb5.conf:
526 # ticket_lifetime = 799718400
527 # renew_lifetime = 799718400
529 # The commands for the -2 keytab where were:
530 # kinit administrator@KTEST.SAMBA.EXAMPLE.COM
531 # kvno host/localktest6@KTEST.SAMBA.EXAMPLE.COM
532 # kvno cifs/localktest6@KTEST.SAMBA.EXAMPLE.COM
533 # kvno host/LOCALKTEST6@KTEST.SAMBA.EXAMPLE.COM
534 # kvno cifs/LOCALKTEST6@KTEST.SAMBA.EXAMPLE.COM
536 # and then for the -3 keytab, I did
538 # net changetrustpw; kdestroy and the same again.
540 # This creates a credential cache with a very long lifetime (2036 at
541 # at 2011-04), and shows that running 'net changetrustpw' does not
542 # break existing logins (for the secrets.tdb method at least).
545 $ret->{KRB5_CCACHE}="FILE:$prefix/krb5_ccache";
547 system("cp $self->{srcdir}/source3/selftest/ktest-krb5_ccache-2 $prefix/krb5_ccache-2");
548 chmod 0600, "$prefix/krb5_ccache-2";
550 system("cp $self->{srcdir}/source3/selftest/ktest-krb5_ccache-3 $prefix/krb5_ccache-3");
551 chmod 0600, "$prefix/krb5_ccache-3";
553 # We need world access to this share, as otherwise the domain
554 # administrator from the AD domain provided by ktest can't
555 # access the share for tests.
556 chmod 0777, "$prefix/share";
558 if (not $self->check_or_start($ret, "yes", "no", "yes")) {
564 sub setup_maptoguest($$)
566 my ($self, $path) = @_;
568 print "PROVISIONING maptoguest...";
571 map to guest = bad user
574 my $vars = $self->provision($path,
579 $vars or return undef;
581 if (not $self->check_or_start($vars, "yes", "no", "yes")) {
585 $self->{vars}->{s3maptoguest} = $vars;
590 sub stop_sig_term($$) {
591 my ($self, $pid) = @_;
592 kill("USR1", $pid) or kill("ALRM", $pid) or warn("Unable to kill $pid: $!");
595 sub stop_sig_kill($$) {
596 my ($self, $pid) = @_;
597 kill("ALRM", $pid) or warn("Unable to kill $pid: $!");
602 my ($env_vars, $app, $pid) = @_;
604 open(PID, ">$env_vars->{PIDDIR}/timelimit.$app.pid");
611 my ($env_vars, $app) = @_;
613 open(PID, "<$env_vars->{PIDDIR}/timelimit.$app.pid");
619 sub check_or_start($$$$$) {
620 my ($self, $env_vars, $nmbd, $winbindd, $smbd) = @_;
622 # use a pipe for stdin in the child processes. This allows
623 # those processes to monitor the pipe for EOF to ensure they
624 # exit when the test script exits
625 pipe(STDIN_READER, $env_vars->{STDIN_PIPE});
627 unlink($env_vars->{NMBD_TEST_LOG});
628 print "STARTING NMBD...";
631 open STDOUT, ">$env_vars->{NMBD_TEST_LOG}";
632 open STDERR, '>&STDOUT';
634 SocketWrapper::set_default_iface($env_vars->{SOCKET_WRAPPER_DEFAULT_IFACE});
636 $ENV{KRB5_CONFIG} = $env_vars->{KRB5_CONFIG};
637 $ENV{WINBINDD_SOCKET_DIR} = $env_vars->{WINBINDD_SOCKET_DIR};
638 $ENV{NMBD_SOCKET_DIR} = $env_vars->{NMBD_SOCKET_DIR};
640 $ENV{NSS_WRAPPER_PASSWD} = $env_vars->{NSS_WRAPPER_PASSWD};
641 $ENV{NSS_WRAPPER_GROUP} = $env_vars->{NSS_WRAPPER_GROUP};
642 $ENV{NSS_WRAPPER_WINBIND_SO_PATH} = $env_vars->{NSS_WRAPPER_WINBIND_SO_PATH};
644 $ENV{UID_WRAPPER} = "1";
646 if ($nmbd ne "yes") {
647 $SIG{USR1} = $SIG{ALRM} = $SIG{INT} = $SIG{QUIT} = $SIG{TERM} = sub {
649 print("Skip nmbd received signal $signame");
652 sleep($self->{server_maxtime});
656 my @optargs = ("-d0");
657 if (defined($ENV{NMBD_OPTIONS})) {
658 @optargs = split(/ /, $ENV{NMBD_OPTIONS});
661 $ENV{MAKE_TEST_BINARY} = Samba::bindir_path($self, "nmbd");
663 my @preargs = (Samba::bindir_path($self, "timelimit"), $self->{server_maxtime});
664 if(defined($ENV{NMBD_VALGRIND})) {
665 @preargs = split(/ /, $ENV{NMBD_VALGRIND});
668 close($env_vars->{STDIN_PIPE});
669 open STDIN, ">&", \*STDIN_READER or die "can't dup STDIN_READER to STDIN: $!";
671 exec(@preargs, Samba::bindir_path($self, "nmbd"), "-F", "--no-process-group", "--log-stdout", "-s", $env_vars->{SERVERCONFFILE}, @optargs) or die("Unable to start nmbd: $!");
673 $env_vars->{NMBD_TL_PID} = $pid;
674 write_pid($env_vars, "nmbd", $pid);
677 unlink($env_vars->{WINBINDD_TEST_LOG});
678 print "STARTING WINBINDD...";
681 open STDOUT, ">$env_vars->{WINBINDD_TEST_LOG}";
682 open STDERR, '>&STDOUT';
684 SocketWrapper::set_default_iface($env_vars->{SOCKET_WRAPPER_DEFAULT_IFACE});
686 $ENV{KRB5_CONFIG} = $env_vars->{KRB5_CONFIG};
687 $ENV{WINBINDD_SOCKET_DIR} = $env_vars->{WINBINDD_SOCKET_DIR};
688 $ENV{NMBD_SOCKET_DIR} = $env_vars->{NMBD_SOCKET_DIR};
690 $ENV{NSS_WRAPPER_PASSWD} = $env_vars->{NSS_WRAPPER_PASSWD};
691 $ENV{NSS_WRAPPER_GROUP} = $env_vars->{NSS_WRAPPER_GROUP};
692 $ENV{NSS_WRAPPER_WINBIND_SO_PATH} = $env_vars->{NSS_WRAPPER_WINBIND_SO_PATH};
694 $ENV{UID_WRAPPER} = "1";
696 if ($winbindd ne "yes") {
697 $SIG{USR1} = $SIG{ALRM} = $SIG{INT} = $SIG{QUIT} = $SIG{TERM} = sub {
699 print("Skip winbindd received signal $signame");
702 sleep($self->{server_maxtime});
706 my @optargs = ("-d0");
707 if (defined($ENV{WINBINDD_OPTIONS})) {
708 @optargs = split(/ /, $ENV{WINBINDD_OPTIONS});
711 $ENV{MAKE_TEST_BINARY} = Samba::bindir_path($self, "winbindd");
713 my @preargs = (Samba::bindir_path($self, "timelimit"), $self->{server_maxtime});
714 if(defined($ENV{WINBINDD_VALGRIND})) {
715 @preargs = split(/ /, $ENV{WINBINDD_VALGRIND});
718 print "Starting winbindd with config $env_vars->{SERVERCONFFILE}\n";
720 close($env_vars->{STDIN_PIPE});
721 open STDIN, ">&", \*STDIN_READER or die "can't dup STDIN_READER to STDIN: $!";
723 exec(@preargs, Samba::bindir_path($self, "winbindd"), "-F", "--no-process-group", "--stdout", "-s", $env_vars->{SERVERCONFFILE}, @optargs) or die("Unable to start winbindd: $!");
725 $env_vars->{WINBINDD_TL_PID} = $pid;
726 write_pid($env_vars, "winbindd", $pid);
729 unlink($env_vars->{SMBD_TEST_LOG});
730 print "STARTING SMBD...";
733 open STDOUT, ">$env_vars->{SMBD_TEST_LOG}";
734 open STDERR, '>&STDOUT';
736 SocketWrapper::set_default_iface($env_vars->{SOCKET_WRAPPER_DEFAULT_IFACE});
738 $ENV{KRB5_CONFIG} = $env_vars->{KRB5_CONFIG};
739 $ENV{WINBINDD_SOCKET_DIR} = $env_vars->{WINBINDD_SOCKET_DIR};
740 $ENV{NMBD_SOCKET_DIR} = $env_vars->{NMBD_SOCKET_DIR};
742 $ENV{NSS_WRAPPER_PASSWD} = $env_vars->{NSS_WRAPPER_PASSWD};
743 $ENV{NSS_WRAPPER_GROUP} = $env_vars->{NSS_WRAPPER_GROUP};
744 $ENV{NSS_WRAPPER_WINBIND_SO_PATH} = $env_vars->{NSS_WRAPPER_WINBIND_SO_PATH};
746 $ENV{UID_WRAPPER} = "1";
748 if ($smbd ne "yes") {
749 $SIG{USR1} = $SIG{ALRM} = $SIG{INT} = $SIG{QUIT} = $SIG{TERM} = sub {
751 print("Skip smbd received signal $signame");
754 sleep($self->{server_maxtime});
758 $ENV{MAKE_TEST_BINARY} = Samba::bindir_path($self, "smbd");
759 my @optargs = ("-d0");
760 if (defined($ENV{SMBD_OPTIONS})) {
761 @optargs = split(/ /, $ENV{SMBD_OPTIONS});
763 my @preargs = (Samba::bindir_path($self, "timelimit"), $self->{server_maxtime});
764 if(defined($ENV{SMBD_VALGRIND})) {
765 @preargs = split(/ /,$ENV{SMBD_VALGRIND});
768 close($env_vars->{STDIN_PIPE});
769 open STDIN, ">&", \*STDIN_READER or die "can't dup STDIN_READER to STDIN: $!";
771 exec(@preargs, Samba::bindir_path($self, "smbd"), "-F", "--no-process-group", "--log-stdout", "-s", $env_vars->{SERVERCONFFILE}, @optargs) or die("Unable to start smbd: $!");
773 $env_vars->{SMBD_TL_PID} = $pid;
774 write_pid($env_vars, "smbd", $pid);
779 return $self->wait_for_start($env_vars, $nmbd, $winbindd, $smbd);
782 sub provision($$$$$$)
784 my ($self, $prefix, $server, $password, $extra_options, $no_delete_prefix) = @_;
787 ## setup the various environment variables we need
790 my $swiface = Samba::get_interface($server);
792 my $server_ip = "127.0.0.$swiface";
793 my $domain = "SAMBA-TEST";
795 my $unix_name = ($ENV{USER} or $ENV{LOGNAME} or `PATH=/usr/ucb:$ENV{PATH} whoami`);
798 my $unix_gids_str = $);
799 my @unix_gids = split(" ", $unix_gids_str);
801 my $prefix_abs = abs_path($prefix);
802 my $bindir_abs = abs_path($self->{bindir});
804 my $dns_host_file = "$ENV{SELFTEST_PREFIX}/dns_host_file";
808 my $shrdir="$prefix_abs/share";
811 my $libdir="$prefix_abs/lib";
814 my $piddir="$prefix_abs/pid";
817 my $privatedir="$prefix_abs/private";
818 push(@dirs,$privatedir);
820 my $lockdir="$prefix_abs/lockdir";
821 push(@dirs,$lockdir);
823 my $eventlogdir="$prefix_abs/lockdir/eventlog";
824 push(@dirs,$eventlogdir);
826 my $logdir="$prefix_abs/logs";
829 my $driver32dir="$shrdir/W32X86";
830 push(@dirs,$driver32dir);
832 my $driver64dir="$shrdir/x64";
833 push(@dirs,$driver64dir);
835 my $driver40dir="$shrdir/WIN40";
836 push(@dirs,$driver40dir);
838 my $ro_shrdir="$shrdir/root-tmp";
839 push(@dirs,$ro_shrdir);
841 my $msdfs_shrdir="$shrdir/msdfsshare";
842 push(@dirs,$msdfs_shrdir);
844 my $msdfs_deeppath="$msdfs_shrdir/deeppath";
845 push(@dirs,$msdfs_deeppath);
847 # this gets autocreated by winbindd
848 my $wbsockdir="$prefix_abs/winbindd";
849 my $wbsockprivdir="$lockdir/winbindd_privileged";
851 my $nmbdsockdir="$prefix_abs/nmbd";
852 unlink($nmbdsockdir);
854 my $fs_specific_conf = $self->get_fs_specific_conf($shrdir);
857 ## create the test directory layout
859 die ("prefix_abs = ''") if $prefix_abs eq "";
860 die ("prefix_abs = '/'") if $prefix_abs eq "/";
862 mkdir($prefix_abs, 0777);
863 print "CREATE TEST ENVIRONMENT IN '$prefix'...";
864 if (not defined($no_delete_prefix) or not $no_delete_prefix) {
865 system("rm -rf $prefix_abs/*");
867 mkdir($_, 0777) foreach(@dirs);
870 ## lockdir and piddir must be 0755
872 chmod 0755, $lockdir;
877 ## create ro and msdfs share layout
880 chmod 0755, $ro_shrdir;
881 my $unreadable_file = "$ro_shrdir/unreadable_file";
882 unless (open(UNREADABLE_FILE, ">$unreadable_file")) {
883 warn("Unable to open $unreadable_file");
886 close(UNREADABLE_FILE);
887 chmod 0600, $unreadable_file;
889 my $msdfs_target = "$ro_shrdir/msdfs-target";
890 unless (open(MSDFS_TARGET, ">$msdfs_target")) {
891 warn("Unable to open $msdfs_target");
895 chmod 0666, $msdfs_target;
896 symlink "msdfs:$server_ip\\ro-tmp", "$msdfs_shrdir/msdfs-src1";
897 symlink "msdfs:$server_ip\\ro-tmp", "$msdfs_shrdir/deeppath/msdfs-src2";
899 my $conffile="$libdir/server.conf";
901 my $nss_wrapper_pl = "$ENV{PERL} $self->{srcdir}/lib/nss_wrapper/nss_wrapper.pl";
902 my $nss_wrapper_passwd = "$privatedir/passwd";
903 my $nss_wrapper_group = "$privatedir/group";
905 my $mod_printer_pl = "$ENV{PERL} $self->{srcdir}/source3/script/tests/printing/modprinter.pl";
907 my @eventlog_list = ("dns server", "application");
910 ## calculate uids and gids
913 my ($max_uid, $max_gid);
914 my ($uid_nobody, $uid_root, $uid_pdbtest);
915 my ($gid_nobody, $gid_nogroup, $gid_root, $gid_domusers, $gid_domadmins);
917 if ($unix_uid < 0xffff - 2) {
920 $max_uid = $unix_uid;
923 $uid_root = $max_uid - 1;
924 $uid_nobody = $max_uid - 2;
925 $uid_pdbtest = $max_uid - 3;
927 if ($unix_gids[0] < 0xffff - 3) {
930 $max_gid = $unix_gids[0];
933 $gid_nobody = $max_gid - 1;
934 $gid_nogroup = $max_gid - 2;
935 $gid_root = $max_gid - 3;
936 $gid_domusers = $max_gid - 4;
937 $gid_domadmins = $max_gid - 5;
943 unless (open(CONF, ">$conffile")) {
944 warn("Unable to open $conffile");
949 netbios name = $server
950 interfaces = $server_ip/8
951 bind interfaces only = yes
952 panic action = cd $self->{srcdir} && $self->{srcdir}/selftest/gdb_backtrace %d %\$(MAKE_TEST_BINARY)
953 smbd:suicide mode = yes
957 private dir = $privatedir
958 pid directory = $piddir
959 lock directory = $lockdir
960 log file = $logdir/log.\%m
965 state directory = $lockdir
966 cache directory = $lockdir
968 passdb backend = tdbsam
972 add user script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type passwd --action add --name %u --gid $gid_nogroup
973 add group script = $nss_wrapper_pl --group_path $nss_wrapper_group --type group --action add --name %g
974 add machine script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type passwd --action add --name %u --gid $gid_nogroup
975 add user to group script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type member --action add --member %u --name %g --group_path $nss_wrapper_group
976 delete user script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type passwd --action delete --name %u
977 delete group script = $nss_wrapper_pl --group_path $nss_wrapper_group --type group --action delete --name %g
978 delete user from group script = $nss_wrapper_pl --passwd_path $nss_wrapper_passwd --type member --action delete --member %u --name %g --group_path $nss_wrapper_group
980 addprinter command = $mod_printer_pl -a -s $conffile --
981 deleteprinter command = $mod_printer_pl -d -s $conffile --
983 eventlog list = application \"dns server\"
986 kernel change notify = no
990 printcap name = /dev/null
992 winbindd socket directory = $wbsockdir
993 nmbd:socket dir = $nmbdsockdir
994 idmap config * : range = 100000-200000
995 winbind enum users = yes
996 winbind enum groups = yes
998 # min receivefile size = 4000
1001 server signing = auto
1003 smbd:sharedelay = 100000
1004 smbd:writetimeupdatedelay = 500000
1008 store dos attributes = yes
1011 vfs objects = acl_xattr fake_acls xattr_tdb streams_depot
1014 print command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb print %p %s
1015 lpq command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lpq %p
1016 lp rm command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lprm %p %j
1017 lp pause command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lppause %p %j
1018 lp resume command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb lpresume %p %j
1019 queue pause command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb queuepause %p
1020 queue resume command = $bindir_abs/vlp tdbfile=$lockdir/vlp.tdb queueresume %p
1022 print notify backchannel = yes
1024 ncalrpc dir = $prefix_abs/ncalrpc
1025 resolv:host file = $dns_host_file
1027 # The samba3.blackbox.smbclient_s3 test uses this to test that
1028 # sending messages works, and that the %m sub works.
1029 message command = mv %s $shrdir/message.%m
1031 # Begin extra options
1035 #Include user defined custom parameters if set
1038 if (defined($ENV{INCLUDE_CUSTOM_CONF})) {
1039 print CONF "\t$ENV{INCLUDE_CUSTOM_CONF}\n";
1045 comment = smb username is [%U]
1048 comment = encrypt smb username is [%U]
1049 smb encrypt = required
1050 vfs objects = dirsort
1060 force user = $unix_name
1064 force group = nogroup
1072 write list = $unix_name
1075 valid users = $unix_name
1077 path = $msdfs_shrdir
1082 hide unreadable = yes
1085 case sensitive = yes
1088 hide unwriteable files = yes
1091 kernel share modes = no
1105 default devmode = no
1111 comment = smb username is [%U]
1113 vfs objects = nfs4acl_xattr xattr_tdb
1117 comment = smb username is [%U]
1119 vfs objects = nfs4acl_xattr xattr_tdb
1123 comment = smb username is [%U]
1125 force create mode = 777
1128 comment = smb username is [%U]
1130 force create mode = 0
1131 directory mask = 0777
1132 force directory mode = 0
1133 vfs objects = xattr_tdb
1145 ## create a test account
1148 unless (open(PASSWD, ">$nss_wrapper_passwd")) {
1149 warn("Unable to open $nss_wrapper_passwd");
1152 print PASSWD "nobody:x:$uid_nobody:$gid_nobody:nobody gecos:$prefix_abs:/bin/false
1153 $unix_name:x:$unix_uid:$unix_gids[0]:$unix_name gecos:$prefix_abs:/bin/false
1154 pdbtest:x:$uid_pdbtest:$gid_nogroup:pdbtest gecos:$prefix_abs:/bin/false
1156 if ($unix_uid != 0) {
1157 print PASSWD "root:x:$uid_root:$gid_root:root gecos:$prefix_abs:/bin/false
1162 unless (open(GROUP, ">$nss_wrapper_group")) {
1163 warn("Unable to open $nss_wrapper_group");
1166 print GROUP "nobody:x:$gid_nobody:
1167 nogroup:x:$gid_nogroup:nobody
1168 $unix_name-group:x:$unix_gids[0]:
1169 domusers:X:$gid_domusers:
1170 domadmins:X:$gid_domadmins:
1172 if ($unix_gids[0] != 0) {
1173 print GROUP "root:x:$gid_root:
1179 foreach my $evlog (@eventlog_list) {
1180 my $evlogtdb = "$eventlogdir/$evlog.tdb";
1181 open(EVENTLOG, ">$evlogtdb") or die("Unable to open $evlogtdb");
1185 $ENV{NSS_WRAPPER_PASSWD} = $nss_wrapper_passwd;
1186 $ENV{NSS_WRAPPER_GROUP} = $nss_wrapper_group;
1188 my $cmd = Samba::bindir_path($self, "smbpasswd")." -c $conffile -L -s -a $unix_name > /dev/null";
1189 unless (open(PWD, "|$cmd")) {
1190 warn("Unable to set password for test account\n$cmd");
1193 print PWD "$password\n$password\n";
1194 unless (close(PWD)) {
1195 warn("Unable to set password for test account\n$cmd");
1200 open(DNS_UPDATE_LIST, ">$prefix/dns_update_list") or die("Unable to open $$prefix/dns_update_list");
1201 print DNS_UPDATE_LIST "A $server. $server_ip";
1202 close(DNS_UPDATE_LIST);
1204 if (system("$ENV{SRCDIR_ABS}/source4/scripting/bin/samba_dnsupdate --all-interfaces --use-file=$dns_host_file -s $conffile --update-list=$prefix/dns_update_list --no-substiutions --no-credentials") != 0) {
1205 die "Unable to update hostname into $dns_host_file";
1208 $ret{SERVER_IP} = $server_ip;
1209 $ret{NMBD_TEST_LOG} = "$prefix/nmbd_test.log";
1210 $ret{NMBD_TEST_LOG_POS} = 0;
1211 $ret{WINBINDD_TEST_LOG} = "$prefix/winbindd_test.log";
1212 $ret{WINBINDD_TEST_LOG_POS} = 0;
1213 $ret{SMBD_TEST_LOG} = "$prefix/smbd_test.log";
1214 $ret{SMBD_TEST_LOG_POS} = 0;
1215 $ret{SERVERCONFFILE} = $conffile;
1216 $ret{CONFIGURATION} ="-s $conffile";
1217 $ret{SERVER} = $server;
1218 $ret{USERNAME} = $unix_name;
1219 $ret{USERID} = $unix_uid;
1220 $ret{DOMAIN} = $domain;
1221 $ret{NETBIOSNAME} = $server;
1222 $ret{PASSWORD} = $password;
1223 $ret{PIDDIR} = $piddir;
1224 $ret{WINBINDD_SOCKET_DIR} = $wbsockdir;
1225 $ret{WINBINDD_PRIV_PIPE_DIR} = $wbsockprivdir;
1226 $ret{NMBD_SOCKET_DIR} = $nmbdsockdir;
1227 $ret{SOCKET_WRAPPER_DEFAULT_IFACE} = $swiface;
1228 $ret{NSS_WRAPPER_PASSWD} = $nss_wrapper_passwd;
1229 $ret{NSS_WRAPPER_GROUP} = $nss_wrapper_group;
1230 $ret{NSS_WRAPPER_WINBIND_SO_PATH} = Samba::nss_wrapper_winbind_so_path($self);
1231 $ret{LOCAL_PATH} = "$shrdir";
1236 sub wait_for_start($$$$$)
1238 my ($self, $envvars, $nmbd, $winbindd, $smbd) = @_;
1241 if ($nmbd eq "yes") {
1242 # give time for nbt server to register its names
1243 print "delaying for nbt name registration\n";
1245 # This will return quickly when things are up, but be slow if we need to wait for (eg) SSL init
1246 my $nmblookup = Samba::bindir_path($self, "nmblookup3");
1247 system("$nmblookup $envvars->{CONFIGURATION} -U $envvars->{SERVER_IP} __SAMBA__");
1248 system("$nmblookup $envvars->{CONFIGURATION} __SAMBA__");
1249 system("$nmblookup $envvars->{CONFIGURATION} -U 127.255.255.255 __SAMBA__");
1250 system("$nmblookup $envvars->{CONFIGURATION} -U $envvars->{SERVER_IP} $envvars->{SERVER}");
1251 system("$nmblookup $envvars->{CONFIGURATION} $envvars->{SERVER}");
1254 if ($winbindd eq "yes") {
1255 print "checking for winbindd\n";
1258 $ret = system("WINBINDD_SOCKET_DIR=" . $envvars->{WINBINDD_SOCKET_DIR} . " " . Samba::bindir_path($self, "wbinfo") . " -p");
1263 } while ($ret != 0 && $count < 10);
1265 print "WINBINDD not reachable after 20 seconds\n";
1266 teardown_env($self, $envvars);
1271 if ($smbd eq "yes") {
1272 # make sure smbd is also up set
1273 print "wait for smbd\n";
1277 $ret = system(Samba::bindir_path($self, "smbclient3") ." $envvars->{CONFIGURATION} -L $envvars->{SERVER} -U% -p 139");
1282 } while ($ret != 0 && $count < 10);
1284 print "SMBD failed to start up in a reasonable time (20sec)\n";
1285 teardown_env($self, $envvars);
1290 # Ensure we have domain users mapped.
1291 $ret = system(Samba::bindir_path($self, "net") ." $envvars->{CONFIGURATION} groupmap add rid=513 unixgroup=domusers type=domain");
1295 $ret = system(Samba::bindir_path($self, "net") ." $envvars->{CONFIGURATION} groupmap add rid=512 unixgroup=domadmins type=domain");
1300 if ($winbindd eq "yes") {
1301 # note: creating builtin groups requires winbindd for the
1303 $ret = system("WINBINDD_SOCKET_DIR=" . $envvars->{WINBINDD_SOCKET_DIR} . " " . Samba::bindir_path($self, "net") ." $envvars->{CONFIGURATION} sam createbuiltingroup Users");
1305 print "Failed to create BUILTIN\\Users group\n";
1310 system(Samba::bindir_path($self, "net") . " $envvars->{CONFIGURATION} cache flush");
1311 $ret = system("WINBINDD_SOCKET_DIR=" . $envvars->{WINBINDD_SOCKET_DIR} . " " . Samba::bindir_path($self, "wbinfo") . " --sid-to-gid=S-1-5-32-545");
1316 } while ($ret != 0 && $count < 10);
1318 print "WINBINDD not reachable after 20 seconds\n";
1319 teardown_env($self, $envvars);
1324 print $self->getlog_env($envvars);