diff options
| author | Volker Lendecke <vl@samba.org> | 2017-04-04 15:28:36 +0200 |
|---|---|---|
| committer | Christof Schmitt <cs@samba.org> | 2017-05-08 21:08:23 +0200 |
| commit | e663357b4d7d5cb0c4d8a0ebc97cfcb58429b894 (patch) | |
| tree | e2e90882889ab606cd7ecd2586a1963fde87a0c7 | |
| parent | 1f5097e3fbf9931c830880637622bb0b05863466 (diff) | |
| download | samba-e663357b4d7d5cb0c4d8a0ebc97cfcb58429b894.tar.gz | |
test_idmap_rfc2307: Test wbinfo -r for 35 supplementary group memberships
BUG: https://bugzilla.samba.org/show_bug.cgi?id=12757
Signed-off-by: Volker Lendecke <vl@samba.org>
Reviewed-by: Christof Schmitt <cs@samba.org>
| -rwxr-xr-x | nsswitch/tests/test_idmap_rfc2307.sh | 66 | ||||
| -rwxr-xr-x | source3/selftest/tests.py | 12 |
2 files changed, 71 insertions, 7 deletions
diff --git a/nsswitch/tests/test_idmap_rfc2307.sh b/nsswitch/tests/test_idmap_rfc2307.sh index e0f550d739b..5fabdc650d2 100755 --- a/nsswitch/tests/test_idmap_rfc2307.sh +++ b/nsswitch/tests/test_idmap_rfc2307.sh @@ -1,7 +1,9 @@ #!/bin/sh # Test id mapping through idmap_rfc2307 module -if [ $# -lt 13 ]; then - echo Usage: $0 DOMAIN USERNAME UID USERNAME2 UID2 GROUPNAME GID GROUPNAME2 GID2 LDAPPREFIX DC_SERVER DC_USERNAME DC_PASSWORD +if [ $# -lt 15 ]; then + echo Usage: $0 DOMAIN USERNAME UID USERNAME2 UID2 \ + GROUPNAME GID GROUPNAME2 GID2 GID_START NUMGROUPS \ + LDAPPREFIX DC_SERVER DC_USERNAME DC_PASSWORD exit 1 fi @@ -15,12 +17,15 @@ GROUPGID="$7" GROUPNAME2="$8" GROUPGID2="$9" shift 9 -LDAPPREFIX="$1" -DC_SERVER="$2" -DC_USERNAME="$3" -DC_PASSWORD="$4" +GID_START="$1" +NUMGROUPS="$2" +LDAPPREFIX="$3" +DC_SERVER="$4" +DC_USERNAME="$5" +DC_PASSWORD="$6" wbinfo="$VALGRIND $BINDIR/wbinfo" +net="$VALGRIND $BINDIR/net" ldbsearch="ldbsearch" if [ -x "$BINDIR/ldbsearch" ]; then @@ -146,6 +151,55 @@ echo "SID $group_sid2 resolved to $group_name2" testit "test $group_name2 = $DOMAIN/$GROUPNAME2" test "$(echo $group_name2 | tr A-Z a-z)" = "$(echo $DOMAIN/$GROUPNAME2 | tr A-Z a-z)" || failed=$(expr $failed + 1) +i=0 +while [ ${i} -lt ${NUMGROUPS} ] ; do + GRP=$(printf "test_rfc2307_group_%3.3d" "$i") + GRP_GID=$(expr "$GID_START" + "$i") + testit "Add group $GRP" $net rpc group add "$GRP" -S "$DC_SERVER" \ + -U"${DOMAIN}\\${DC_USERNAME}"%"${DC_PASSWORD}" || + failed=$(expr $failed + 1) + testit "Add groupmem $GRP $USERNAME" \ + $net rpc group addmem "$GRP" "$USERNAME" \ + -S "$DC_SERVER" \ + -U"${DOMAIN}\\${DC_USERNAME}"%"${DC_PASSWORD}" || + failed=$(expr $failed + 1) + testit "Add group object for $GRP $GRP_GID" \ + $VALGRIND $ldbadd \ + -H ldap://$DC_SERVER -U$DOMAIN/$DC_USERNAME%$DC_PASSWORD <<EOF +dn: cn=$GRP,$LDAPPREFIX +objectClass: posixGroup +objectClass: groupOfNames +cn: $GRP +gidNumber: $GRP_GID +member: cn=$USERNAME,$LDAPPREFIX +EOF + i=$(expr "$i" + 1) +done + +# Test whether wbinfo -r shows all groups + +EXPECTED_USERGROUPS="1000000/1000001/2000002/" +i=0 +while [ ${i} -lt ${NUMGROUPS} ] ; do + EXPECTED_USERGROUPS="$EXPECTED_USERGROUPS$(expr ${i} + ${GID_START})/" + i=$(expr "$i" + 1) +done + +USERGROUPS=$($wbinfo -r $DOMAIN/$USERNAME | sort -n | tr '\n' '/') + +testit "Testing for expected group memberships" \ + test "$USERGROUPS" = "$EXPECTED_USERGROUPS" || + failed=$(expr $failed + 1) + +i=0 +while [ ${i} -lt ${NUMGROUPS} ] ; do + GRP=$(printf "test_rfc2307_group_%3.3d" ${i}) + testit "Del group $GRP" $net rpc group delete "$GRP" -S "$DC_SERVER" \ + -U"${DOMAIN}\\${DC_USERNAME}"%"${DC_PASSWORD}" || + failed=$(expr $failed + 1) + i=$(expr "$i" + 1) +done + # Delete LDAP records $VALGRIND $ldbsearch -H ldap://$DC_SERVER -U$DOMAIN/$DC_USERNAME%$DC_PASSWORD \ -s one -b "$LDAPPREFIX" | grep '^dn:' | cut -d ' ' -f 2- | diff --git a/source3/selftest/tests.py b/source3/selftest/tests.py index b4dc417c2ca..26c6927ff76 100755 --- a/source3/selftest/tests.py +++ b/source3/selftest/tests.py @@ -400,7 +400,17 @@ for t in tests: plansmbtorture4testsuite(t, "nt4_dc", '//$SERVER_IP/write-list-tmp -U$USERNAME%$PASSWORD') plansmbtorture4testsuite(t, "ad_dc", '//$SERVER/tmp -U$USERNAME%$PASSWORD') elif t == "idmap.rfc2307": - plantestsuite(t, "ad_member_rfc2307", [os.path.join(samba3srcdir, "../nsswitch/tests/test_idmap_rfc2307.sh"), '$DOMAIN', 'Administrator', '2000000', 'Guest', '2000001', '"Domain Users"', '2000002', 'DnsAdmins', '2000003', 'ou=idmap,dc=samba,dc=example,dc=com', '$DC_SERVER', '$DC_USERNAME', '$DC_PASSWORD']) + plantestsuite(t, "ad_member_rfc2307", + [os.path.join(samba3srcdir, + "../nsswitch/tests/test_idmap_rfc2307.sh"), + '$DOMAIN', + 'Administrator', '2000000', + 'Guest', '2000001', + '"Domain Users"', '2000002', + 'DnsAdmins', '2000003', + '2000005', '35', + 'ou=idmap,dc=samba,dc=example,dc=com', + '$DC_SERVER', '$DC_USERNAME', '$DC_PASSWORD']) elif t == "idmap.alloc": plantestsuite(t, "ad_member_rfc2307", [os.path.join(samba3srcdir, "../nsswitch/tests/test_idmap_nss.sh"), '$DOMAIN']) elif t == "idmap.rid": |