diff options
| author | Ralph Boehme <slow@samba.org> | 2017-04-05 13:27:14 +0200 |
|---|---|---|
| committer | Ralph Boehme <slow@samba.org> | 2017-04-06 20:08:19 +0200 |
| commit | ef10b43469f5b31a696259a70b3e116a350bfd3d (patch) | |
| tree | 1221a02defe8696f2a7a7c1f12f3f792e4d067a5 /selftest/target | |
| parent | 9671811da8ad3f91ba7bb0fa868f806bc5afe863 (diff) | |
| download | samba-ef10b43469f5b31a696259a70b3e116a350bfd3d.tar.gz | |
selftest: new environment "ad_member_idmap_rid"
This uses idmap_rid for the primary domain.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=11961
Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
Diffstat (limited to 'selftest/target')
| -rw-r--r-- | selftest/target/Samba.pm | 1 | ||||
| -rwxr-xr-x | selftest/target/Samba3.pm | 88 | ||||
| -rwxr-xr-x | selftest/target/Samba4.pm | 6 |
3 files changed, 95 insertions, 0 deletions
diff --git a/selftest/target/Samba.pm b/selftest/target/Samba.pm index 9fc84b55f2b..e53d8dc4e9e 100644 --- a/selftest/target/Samba.pm +++ b/selftest/target/Samba.pm @@ -290,6 +290,7 @@ sub get_interface($) # 11-16 used by selftest.pl for client interfaces + $interfaces{"idmapridmember"} = 20; $interfaces{"localdc"} = 21; $interfaces{"localvampiredc"} = 22; $interfaces{"s4member"} = 23; diff --git a/selftest/target/Samba3.pm b/selftest/target/Samba3.pm index 92031a1eed4..0aa88ee05ca 100755 --- a/selftest/target/Samba3.pm +++ b/selftest/target/Samba3.pm @@ -584,6 +584,94 @@ sub setup_admember_rfc2307($$$$) return $ret; } +sub setup_ad_member_idmap_rid($$$$) +{ + my ($self, $prefix, $dcvars) = @_; + + # If we didn't build with ADS, pretend this env was never available + if (not $self->have_ads()) { + return "UNKNOWN"; + } + + print "PROVISIONING S3 AD MEMBER WITH idmap_rid config..."; + + my $member_options = " + security = ads + workgroup = $dcvars->{DOMAIN} + realm = $dcvars->{REALM} + idmap config * : backend = tdb + idmap config * : range = 1000000-1999999 + idmap config $dcvars->{DOMAIN} : backend = rid + idmap config $dcvars->{DOMAIN} : range = 2000000-2999999 +"; + + my $ret = $self->provision($prefix, + "IDMAPRIDMEMBER", + "loCalMemberPass", + $member_options, + $dcvars->{SERVER_IP}, + $dcvars->{SERVER_IPV6}); + + $ret or return undef; + + close(USERMAP); + $ret->{DOMAIN} = $dcvars->{DOMAIN}; + $ret->{REALM} = $dcvars->{REALM}; + + my $ctx; + my $prefix_abs = abs_path($prefix); + $ctx = {}; + $ctx->{krb5_conf} = "$prefix_abs/lib/krb5.conf"; + $ctx->{domain} = $dcvars->{DOMAIN}; + $ctx->{realm} = $dcvars->{REALM}; + $ctx->{dnsname} = lc($dcvars->{REALM}); + $ctx->{kdc_ipv4} = $dcvars->{SERVER_IP}; + $ctx->{kdc_ipv6} = $dcvars->{SERVER_IPV6}; + $ctx->{krb5_ccname} = "$prefix_abs/krb5cc_%{uid}"; + Samba::mk_krb5_conf($ctx, ""); + + $ret->{KRB5_CONFIG} = $ctx->{krb5_conf}; + + my $net = Samba::bindir_path($self, "net"); + my $cmd = ""; + $cmd .= "SOCKET_WRAPPER_DEFAULT_IFACE=\"$ret->{SOCKET_WRAPPER_DEFAULT_IFACE}\" "; + if (defined($ret->{RESOLV_WRAPPER_CONF})) { + $cmd .= "RESOLV_WRAPPER_CONF=\"$ret->{RESOLV_WRAPPER_CONF}\" "; + } else { + $cmd .= "RESOLV_WRAPPER_HOSTS=\"$ret->{RESOLV_WRAPPER_HOSTS}\" "; + } + $cmd .= "KRB5_CONFIG=\"$ret->{KRB5_CONFIG}\" "; + $cmd .= "SELFTEST_WINBINDD_SOCKET_DIR=\"$ret->{SELFTEST_WINBINDD_SOCKET_DIR}\" "; + $cmd .= "$net join $ret->{CONFIGURATION}"; + $cmd .= " -U$dcvars->{USERNAME}\%$dcvars->{PASSWORD}"; + + if (system($cmd) != 0) { + warn("Join failed\n$cmd"); + return undef; + } + + # We need world access to this share, as otherwise the domain + # administrator from the AD domain provided by Samba4 can't + # access the share for tests. + chmod 0777, "$prefix/share"; + + if (not $self->check_or_start($ret, "yes", "yes", "yes")) { + return undef; + } + + $ret->{DC_SERVER} = $dcvars->{SERVER}; + $ret->{DC_SERVER_IP} = $dcvars->{SERVER_IP}; + $ret->{DC_SERVER_IPV6} = $dcvars->{SERVER_IPV6}; + $ret->{DC_NETBIOSNAME} = $dcvars->{NETBIOSNAME}; + $ret->{DC_USERNAME} = $dcvars->{USERNAME}; + $ret->{DC_PASSWORD} = $dcvars->{PASSWORD}; + + # Special case, this is called from Samba4.pm but needs to use the Samba3 check_env and get_log_env + $ret->{target} = $self; + + return $ret; +} + sub setup_simpleserver($$) { my ($self, $path) = @_; diff --git a/selftest/target/Samba4.pm b/selftest/target/Samba4.pm index 0d7e6b57551..30bb2552997 100755 --- a/selftest/target/Samba4.pm +++ b/selftest/target/Samba4.pm @@ -2088,6 +2088,12 @@ sub setup_env($$$) } return $target3->setup_admember_rfc2307("$path/ad_member_rfc2307", $self->{vars}->{ad_dc_ntvfs}, 34); + } elsif ($envname eq "ad_member_idmap_rid") { + if (not defined($self->{vars}->{ad_dc})) { + $self->setup_ad_dc("$path/ad_dc"); + } + return $target3->setup_ad_member_idmap_rid("$path/ad_member_idmap_rid", + $self->{vars}->{ad_dc}); } elsif ($envname eq "none") { return $self->setup_none("$path/none"); } else { |