2 Unix SMB/CIFS implementation.
3 test suite for eventlog rpc operations
5 Copyright (C) Tim Potter 2003,2005
6 Copyright (C) Jelmer Vernooij 2004
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program; if not, write to the Free Software
20 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
24 #include "torture/torture.h"
25 #include "librpc/gen_ndr/ndr_eventlog.h"
26 #include "librpc/gen_ndr/ndr_eventlog_c.h"
27 #include "librpc/gen_ndr/ndr_lsa.h"
28 #include "torture/rpc/rpc.h"
30 static void init_lsa_String(struct lsa_String *name, const char *s)
33 name->length = 2*strlen_m(s);
34 name->size = name->length;
37 static BOOL test_GetNumRecords(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
38 struct policy_handle *handle)
41 struct eventlog_GetNumRecords r;
43 printf("\ntesting GetNumRecords\n");
47 status = dcerpc_eventlog_GetNumRecords(p, mem_ctx, &r);
49 if (!NT_STATUS_IS_OK(status)) {
50 printf("GetNumRecords failed - %s\n", nt_errstr(status));
54 printf("%d records\n", r.out.number);
59 static BOOL test_ReadEventLog(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
60 struct policy_handle *handle)
63 struct eventlog_ReadEventLogW r;
65 printf("\ntesting ReadEventLog\n");
69 r.in.flags = EVENTLOG_BACKWARDS_READ|EVENTLOG_SEQUENTIAL_READ;
73 struct eventlog_Record rec;
76 /* Read first for number of bytes in record */
78 r.in.number_of_bytes = 0;
81 status = dcerpc_eventlog_ReadEventLogW(p, mem_ctx, &r);
83 if (NT_STATUS_EQUAL(r.out.result, NT_STATUS_END_OF_FILE)) {
87 if (!NT_STATUS_EQUAL(r.out.result, NT_STATUS_BUFFER_TOO_SMALL)) {
88 printf("ReadEventLog failed - %s\n", nt_errstr(r.out.result));
92 /* Now read the actual record */
94 r.in.number_of_bytes = r.out.real_size;
95 r.out.data = talloc_size(mem_ctx, r.in.number_of_bytes);
97 status = dcerpc_eventlog_ReadEventLogW(p, mem_ctx, &r);
99 if (!NT_STATUS_IS_OK(status)) {
100 printf("ReadEventLog failed - %s\n", nt_errstr(status));
104 /* Decode a user-marshalled record */
106 blob.length = r.out.sent_size;
107 blob.data = talloc_steal(mem_ctx, r.out.data);
109 ndr = ndr_pull_init_blob(&blob, mem_ctx);
111 status = ndr_pull_eventlog_Record(
112 ndr, NDR_SCALARS|NDR_BUFFERS, &rec);
114 NDR_PRINT_DEBUG(eventlog_Record, &rec);
116 if (!NT_STATUS_IS_OK(status)) {
117 printf("ReadEventLog failed parsing event log record "
118 "- %s\n", nt_errstr(status));
128 static BOOL test_CloseEventLog(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
129 struct policy_handle *handle)
132 struct eventlog_CloseEventLog r;
134 r.in.handle = r.out.handle = handle;
136 printf("Testing CloseEventLog\n");
138 status = dcerpc_eventlog_CloseEventLog(p, mem_ctx, &r);
140 if (!NT_STATUS_IS_OK(status)) {
141 printf("CloseEventLog failed - %s\n", nt_errstr(status));
148 static BOOL test_FlushEventLog(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
149 struct policy_handle *handle)
152 struct eventlog_FlushEventLog r;
154 r.in.handle = handle;
156 printf("Testing FlushEventLog\n");
158 status = dcerpc_eventlog_FlushEventLog(p, mem_ctx, &r);
160 /* Huh? Does this RPC always return access denied? */
162 if (!NT_STATUS_EQUAL(status, NT_STATUS_ACCESS_DENIED)) {
163 printf("FlushEventLog failed - %s\n", nt_errstr(status));
170 static BOOL test_ClearEventLog(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
171 struct policy_handle *handle)
174 struct eventlog_ClearEventLogW r;
176 r.in.handle = handle;
179 printf("Testing ClearEventLog\n");
181 status = dcerpc_eventlog_ClearEventLogW(p, mem_ctx, &r);
183 if (!NT_STATUS_IS_OK(status)) {
184 printf("ClearEventLog failed - %s\n", nt_errstr(status));
191 static BOOL test_OpenEventLog(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
192 struct policy_handle *handle)
195 struct eventlog_OpenEventLogW r;
196 struct eventlog_OpenUnknown0 unknown0;
198 printf("\ntesting OpenEventLog\n");
200 unknown0.unknown0 = 0x005c;
201 unknown0.unknown1 = 0x0001;
203 r.in.unknown0 = &unknown0;
204 init_lsa_String(&r.in.logname, "dns server");
205 init_lsa_String(&r.in.servername, NULL);
206 r.in.unknown2 = 0x00000001;
207 r.in.unknown3 = 0x00000001;
208 r.out.handle = handle;
210 status = dcerpc_eventlog_OpenEventLogW(p, mem_ctx, &r);
212 if (!NT_STATUS_IS_OK(status)) {
213 printf("OpenEventLog failed - %s\n", nt_errstr(status));
217 if (!NT_STATUS_IS_OK(r.out.result)) {
218 printf("OpenEventLog failed - %s\n", nt_errstr(r.out.result));
225 BOOL torture_rpc_eventlog(struct torture_context *torture)
228 struct dcerpc_pipe *p;
229 struct policy_handle handle;
233 mem_ctx = talloc_init("torture_rpc_atsvc");
235 status = torture_rpc_connection(mem_ctx, &p, &dcerpc_table_eventlog);
237 if (!NT_STATUS_IS_OK(status)) {
238 talloc_free(mem_ctx);
242 if (!test_OpenEventLog(p, mem_ctx, &handle)) {
243 talloc_free(mem_ctx);
248 ret &= test_ClearEventLog(p, mem_ctx, &handle); /* Destructive test */
251 ret &= test_GetNumRecords(p, mem_ctx, &handle);
253 ret &= test_ReadEventLog(p, mem_ctx, &handle);
255 ret &= test_FlushEventLog(p, mem_ctx, &handle);
257 ret &= test_CloseEventLog(p, mem_ctx, &handle);
259 talloc_free(mem_ctx);