1 /*
2 Unix SMB/CIFS implementation.
3
4 SMB2 setinfo individual test suite
5
6 Copyright (C) Andrew Tridgell 2005
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22 #include "includes.h"
23 #include "system/time.h"
24 #include "libcli/smb2/smb2.h"
25 #include "libcli/smb2/smb2_calls.h"
26
27 #include "torture/torture.h"
28 #include "torture/smb2/proto.h"
29
30 #include "libcli/security/security.h"
31 #include "librpc/gen_ndr/ndr_security.h"
32
find_returned_ea(union smb_fileinfo * finfo2,const char * eaname,const char * eavalue)33 static bool find_returned_ea(union smb_fileinfo *finfo2,
34 const char *eaname,
35 const char *eavalue)
36 {
37 unsigned int i;
38 unsigned int num_eas = finfo2->all_eas.out.num_eas;
39 struct ea_struct *eas = finfo2->all_eas.out.eas;
40
41 for (i = 0; i < num_eas; i++) {
42 if (eas[i].name.s == NULL) {
43 continue;
44 }
45 /* Windows capitalizes returned EA names. */
46 if (strcasecmp_m(eas[i].name.s, eaname)) {
47 continue;
48 }
49 if (eavalue == NULL && eas[i].value.length == 0) {
50 /* Null value, found it ! */
51 return true;
52 }
53 if (eas[i].value.length == strlen(eavalue) &&
54 memcmp(eas[i].value.data,
55 eavalue,
56 strlen(eavalue)) == 0) {
57 return true;
58 }
59 }
60 return false;
61 }
62
63 #define BASEDIR ""
64
65 #define FAIL_UNLESS(__cond) \
66 do { \
67 if (__cond) {} else { \
68 torture_result(tctx, TORTURE_FAIL, "%s) condition violated: %s\n", \
69 __location__, #__cond); \
70 ret = false; goto done; \
71 } \
72 } while(0)
73
74 /* basic testing of all SMB2 setinfo calls
75 for each call we test that it succeeds, and where possible test
76 for consistency between the calls.
77 */
torture_smb2_setinfo(struct torture_context * tctx)78 bool torture_smb2_setinfo(struct torture_context *tctx)
79 {
80 struct smb2_tree *tree;
81 bool ret = true;
82 struct smb2_handle handle;
83 char *fname;
84 union smb_fileinfo finfo2;
85 union smb_setfileinfo sfinfo;
86 struct security_ace ace;
87 struct security_descriptor *sd;
88 struct dom_sid *test_sid;
89 NTSTATUS status, status2=NT_STATUS_OK;
90 const char *call_name;
91 time_t basetime = (time(NULL) - 86400) & ~1;
92 int n = time(NULL) % 100;
93 struct ea_struct ea;
94
95 ZERO_STRUCT(handle);
96
97 fname = talloc_asprintf(tctx, BASEDIR "fnum_test_%d.txt", n);
98
99 if (!torture_smb2_connection(tctx, &tree)) {
100 return false;
101 }
102
103 #define RECREATE_FILE(fname) do { \
104 smb2_util_close(tree, handle); \
105 status = smb2_create_complex_file(tctx, tree, fname, &handle); \
106 if (!NT_STATUS_IS_OK(status)) { \
107 torture_result(tctx, TORTURE_FAIL, "(%s) ERROR: open of %s failed (%s)\n", \
108 __location__, fname, nt_errstr(status)); \
109 ret = false; \
110 goto done; \
111 }} while (0)
112
113 #define RECREATE_BOTH do { \
114 RECREATE_FILE(fname); \
115 } while (0)
116
117 RECREATE_BOTH;
118
119 #define CHECK_CALL(call, rightstatus) do { \
120 call_name = #call; \
121 sfinfo.generic.level = RAW_SFILEINFO_ ## call; \
122 sfinfo.generic.in.file.handle = handle; \
123 status = smb2_setinfo_file(tree, &sfinfo); \
124 if (!NT_STATUS_EQUAL(status, rightstatus)) { \
125 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s (should be %s)\n", __location__, #call, \
126 nt_errstr(status), nt_errstr(rightstatus)); \
127 ret = false; \
128 goto done; \
129 } \
130 } while (0)
131
132 #define CHECK1(call) \
133 do { if (NT_STATUS_IS_OK(status)) { \
134 finfo2.generic.level = RAW_FILEINFO_ ## call; \
135 finfo2.generic.in.file.handle = handle; \
136 status2 = smb2_getinfo_file(tree, tctx, &finfo2); \
137 if (!NT_STATUS_IS_OK(status2)) { \
138 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s\n", __location__, #call, nt_errstr(status2)); \
139 ret = false; \
140 goto done; \
141 } \
142 }} while (0)
143
144 #define CHECK_VALUE(call, stype, field, value) do { \
145 CHECK1(call); \
146 if (NT_STATUS_IS_OK(status) && NT_STATUS_IS_OK(status2) && finfo2.stype.out.field != value) { \
147 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s/%s should be 0x%x - 0x%x\n", __location__, \
148 call_name, #stype, #field, \
149 (unsigned int)value, (unsigned int)finfo2.stype.out.field); \
150 torture_smb2_all_info(tctx, tree, handle); \
151 ret = false; \
152 goto done; \
153 }} while (0)
154
155 #define CHECK_TIME(call, stype, field, value) do { \
156 CHECK1(call); \
157 if (NT_STATUS_IS_OK(status) && NT_STATUS_IS_OK(status2) && nt_time_to_unix(finfo2.stype.out.field) != value) { \
158 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s/%s should be 0x%x - 0x%x\n", __location__, \
159 call_name, #stype, #field, \
160 (unsigned int)value, \
161 (unsigned int)nt_time_to_unix(finfo2.stype.out.field)); \
162 torture_warning(tctx, "\t%s", timestring(tctx, value)); \
163 torture_warning(tctx, "\t%s\n", nt_time_string(tctx, finfo2.stype.out.field)); \
164 torture_smb2_all_info(tctx, tree, handle); \
165 ret = false; \
166 goto done; \
167 }} while (0)
168
169 #define CHECK_STATUS(status, correct) do { \
170 if (!NT_STATUS_EQUAL(status, correct)) { \
171 torture_result(tctx, TORTURE_FAIL, "(%s) Incorrect status %s - should be %s\n", \
172 __location__, nt_errstr(status), nt_errstr(correct)); \
173 ret = false; \
174 goto done; \
175 }} while (0)
176
177 torture_smb2_all_info(tctx, tree, handle);
178
179 torture_comment(tctx, "Test basic_information level\n");
180 basetime += 86400;
181 unix_to_nt_time(&sfinfo.basic_info.in.create_time, basetime + 100);
182 unix_to_nt_time(&sfinfo.basic_info.in.access_time, basetime + 200);
183 unix_to_nt_time(&sfinfo.basic_info.in.write_time, basetime + 300);
184 unix_to_nt_time(&sfinfo.basic_info.in.change_time, basetime + 400);
185 sfinfo.basic_info.in.attrib = FILE_ATTRIBUTE_READONLY;
186 CHECK_CALL(BASIC_INFORMATION, NT_STATUS_OK);
187 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, create_time, basetime + 100);
188 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, access_time, basetime + 200);
189 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, write_time, basetime + 300);
190 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, change_time, basetime + 400);
191 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, attrib, FILE_ATTRIBUTE_READONLY);
192
193 torture_comment(tctx, "a zero time means don't change\n");
194 unix_to_nt_time(&sfinfo.basic_info.in.create_time, 0);
195 unix_to_nt_time(&sfinfo.basic_info.in.access_time, 0);
196 unix_to_nt_time(&sfinfo.basic_info.in.write_time, 0);
197 unix_to_nt_time(&sfinfo.basic_info.in.change_time, 0);
198 sfinfo.basic_info.in.attrib = FILE_ATTRIBUTE_NORMAL;
199 CHECK_CALL(BASIC_INFORMATION, NT_STATUS_OK);
200 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, create_time, basetime + 100);
201 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, access_time, basetime + 200);
202 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, write_time, basetime + 300);
203 CHECK_TIME(SMB2_ALL_INFORMATION, all_info2, change_time, basetime + 400);
204 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, attrib, FILE_ATTRIBUTE_NORMAL);
205
206 torture_comment(tctx, "change the attribute\n");
207 sfinfo.basic_info.in.attrib = FILE_ATTRIBUTE_HIDDEN;
208 CHECK_CALL(BASIC_INFORMATION, NT_STATUS_OK);
209 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, attrib, FILE_ATTRIBUTE_HIDDEN);
210
211 torture_comment(tctx, "zero attrib means don't change\n");
212 sfinfo.basic_info.in.attrib = 0;
213 CHECK_CALL(BASIC_INFORMATION, NT_STATUS_OK);
214 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, attrib, FILE_ATTRIBUTE_HIDDEN);
215
216 torture_comment(tctx, "can't change a file to a directory\n");
217 sfinfo.basic_info.in.attrib = FILE_ATTRIBUTE_DIRECTORY;
218 CHECK_CALL(BASIC_INFORMATION, NT_STATUS_INVALID_PARAMETER);
219
220 torture_comment(tctx, "restore attribute\n");
221 sfinfo.basic_info.in.attrib = FILE_ATTRIBUTE_NORMAL;
222 CHECK_CALL(BASIC_INFORMATION, NT_STATUS_OK);
223 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, attrib, FILE_ATTRIBUTE_NORMAL);
224
225 torture_comment(tctx, "Test disposition_information level\n");
226 sfinfo.disposition_info.in.delete_on_close = 1;
227 CHECK_CALL(DISPOSITION_INFORMATION, NT_STATUS_OK);
228 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, delete_pending, 1);
229 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, nlink, 0);
230
231 sfinfo.disposition_info.in.delete_on_close = 0;
232 CHECK_CALL(DISPOSITION_INFORMATION, NT_STATUS_OK);
233 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, delete_pending, 0);
234 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, nlink, 1);
235
236 torture_comment(tctx, "Test allocation_information level\n");
237 sfinfo.allocation_info.in.alloc_size = 0;
238 CHECK_CALL(ALLOCATION_INFORMATION, NT_STATUS_OK);
239 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, size, 0);
240 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, alloc_size, 0);
241
242 sfinfo.allocation_info.in.alloc_size = 4096;
243 CHECK_CALL(ALLOCATION_INFORMATION, NT_STATUS_OK);
244 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, alloc_size, 4096);
245 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, size, 0);
246
247 torture_comment(tctx, "Test end_of_file_info level\n");
248 sfinfo.end_of_file_info.in.size = 37;
249 CHECK_CALL(END_OF_FILE_INFORMATION, NT_STATUS_OK);
250 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, size, 37);
251
252 sfinfo.end_of_file_info.in.size = 7;
253 CHECK_CALL(END_OF_FILE_INFORMATION, NT_STATUS_OK);
254 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, size, 7);
255
256 torture_comment(tctx, "Test position_information level\n");
257 sfinfo.position_information.in.position = 123456;
258 CHECK_CALL(POSITION_INFORMATION, NT_STATUS_OK);
259 CHECK_VALUE(POSITION_INFORMATION, position_information, position, 123456);
260 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, position, 123456);
261
262 torture_comment(tctx, "Test mode_information level\n");
263 sfinfo.mode_information.in.mode = 2;
264 CHECK_CALL(MODE_INFORMATION, NT_STATUS_OK);
265 CHECK_VALUE(MODE_INFORMATION, mode_information, mode, 2);
266 CHECK_VALUE(SMB2_ALL_INFORMATION, all_info2, mode, 2);
267
268 sfinfo.mode_information.in.mode = 1;
269 CHECK_CALL(MODE_INFORMATION, NT_STATUS_INVALID_PARAMETER);
270
271 sfinfo.mode_information.in.mode = 0;
272 CHECK_CALL(MODE_INFORMATION, NT_STATUS_OK);
273 CHECK_VALUE(MODE_INFORMATION, mode_information, mode, 0);
274
275 torture_comment(tctx, "Test sec_desc level\n");
276 ZERO_STRUCT(finfo2);
277 finfo2.query_secdesc.in.secinfo_flags =
278 SECINFO_OWNER |
279 SECINFO_GROUP |
280 SECINFO_DACL;
281 CHECK1(SEC_DESC);
282 sd = finfo2.query_secdesc.out.sd;
283
284 test_sid = dom_sid_parse_talloc(tctx, SID_NT_AUTHENTICATED_USERS);
285 ZERO_STRUCT(ace);
286 ace.type = SEC_ACE_TYPE_ACCESS_ALLOWED;
287 ace.flags = 0;
288 ace.access_mask = SEC_STD_ALL;
289 ace.trustee = *test_sid;
290 status = security_descriptor_dacl_add(sd, &ace);
291 CHECK_STATUS(status, NT_STATUS_OK);
292
293 torture_comment(tctx, "add a new ACE to the DACL\n");
294
295 sfinfo.set_secdesc.in.secinfo_flags = finfo2.query_secdesc.in.secinfo_flags;
296 sfinfo.set_secdesc.in.sd = sd;
297 CHECK_CALL(SEC_DESC, NT_STATUS_OK);
298 FAIL_UNLESS(smb2_util_verify_sd(tctx, tree, handle, sd));
299
300 torture_comment(tctx, "remove it again\n");
301
302 status = security_descriptor_dacl_del(sd, test_sid);
303 CHECK_STATUS(status, NT_STATUS_OK);
304
305 sfinfo.set_secdesc.in.secinfo_flags = finfo2.query_secdesc.in.secinfo_flags;
306 sfinfo.set_secdesc.in.sd = sd;
307 CHECK_CALL(SEC_DESC, NT_STATUS_OK);
308 FAIL_UNLESS(smb2_util_verify_sd(tctx, tree, handle, sd));
309
310 torture_comment(tctx, "Check zero length EA's behavior\n");
311
312 /* Set a new EA. */
313 sfinfo.full_ea_information.in.eas.num_eas = 1;
314 ea.flags = 0;
315 ea.name.private_length = 6;
316 ea.name.s = "NewEA";
317 ea.value = data_blob_string_const("testme");
318 sfinfo.full_ea_information.in.eas.eas = &ea;
319 CHECK_CALL(FULL_EA_INFORMATION, NT_STATUS_OK);
320
321 /* Does it still exist ? */
322 finfo2.generic.level = RAW_FILEINFO_SMB2_ALL_EAS;
323 finfo2.generic.in.file.handle = handle;
324 finfo2.all_eas.in.continue_flags = 1;
325 status2 = smb2_getinfo_file(tree, tctx, &finfo2);
326 if (!NT_STATUS_IS_OK(status2)) {
327 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s\n", __location__,
328 "SMB2_ALL_EAS", nt_errstr(status2));
329 ret = false;
330 goto done;
331 }
332
333 /* Note on Windows EA name is returned capitalized. */
334 if (!find_returned_ea(&finfo2, "NewEA", "testme")) {
335 torture_result(tctx, TORTURE_FAIL, "(%s) Missing EA 'NewEA'\n", __location__);
336 ret = false;
337 }
338
339 /* Now zero it out (should delete it) */
340 sfinfo.full_ea_information.in.eas.num_eas = 1;
341 ea.flags = 0;
342 ea.name.private_length = 6;
343 ea.name.s = "NewEA";
344 ea.value = data_blob_null;
345 sfinfo.full_ea_information.in.eas.eas = &ea;
346 CHECK_CALL(FULL_EA_INFORMATION, NT_STATUS_OK);
347
348 /* Does it still exist ? */
349 finfo2.generic.level = RAW_FILEINFO_SMB2_ALL_EAS;
350 finfo2.generic.in.file.handle = handle;
351 finfo2.all_eas.in.continue_flags = 1;
352 status2 = smb2_getinfo_file(tree, tctx, &finfo2);
353 if (!NT_STATUS_IS_OK(status2)) {
354 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s\n", __location__,
355 "SMB2_ALL_EAS", nt_errstr(status2));
356 ret = false;
357 goto done;
358 }
359
360 if (find_returned_ea(&finfo2, "NewEA", NULL)) {
361 torture_result(tctx, TORTURE_FAIL, "(%s) EA 'NewEA' should be deleted\n", __location__);
362 ret = false;
363 }
364
365 /* Set a zero length EA. */
366 sfinfo.full_ea_information.in.eas.num_eas = 1;
367 ea.flags = 0;
368 ea.name.private_length = 6;
369 ea.name.s = "ZeroEA";
370 ea.value = data_blob_null;
371 sfinfo.full_ea_information.in.eas.eas = &ea;
372 CHECK_CALL(FULL_EA_INFORMATION, NT_STATUS_OK);
373
374 /* Does it still exist ? */
375 finfo2.generic.level = RAW_FILEINFO_SMB2_ALL_EAS;
376 finfo2.generic.in.file.handle = handle;
377 finfo2.all_eas.in.continue_flags = 1;
378 status2 = smb2_getinfo_file(tree, tctx, &finfo2);
379 if (!NT_STATUS_IS_OK(status2)) {
380 torture_result(tctx, TORTURE_FAIL, "(%s) %s - %s\n", __location__,
381 "SMB2_ALL_EAS", nt_errstr(status2));
382 ret = false;
383 goto done;
384 }
385
386 /* Over SMB2 ZeroEA should not exist. */
387 if (!find_returned_ea(&finfo2, "EAONE", "VALUE1")) {
388 torture_result(tctx, TORTURE_FAIL, "(%s) Missing EA 'EAONE'\n", __location__);
389 ret = false;
390 }
391 if (!find_returned_ea(&finfo2, "SECONDEA", "ValueTwo")) {
392 torture_result(tctx, TORTURE_FAIL, "(%s) Missing EA 'SECONDEA'\n", __location__);
393 ret = false;
394 }
395 if (find_returned_ea(&finfo2, "ZeroEA", NULL)) {
396 torture_result(tctx, TORTURE_FAIL, "(%s) Found null EA 'ZeroEA'\n", __location__);
397 ret = false;
398 }
399
400 done:
401 status = smb2_util_close(tree, handle);
402 if (NT_STATUS_IS_ERR(status)) {
403 torture_warning(tctx, "Failed to delete %s - %s\n", fname, nt_errstr(status));
404 }
405 smb2_util_unlink(tree, fname);
406
407 return ret;
408 }
409
410
411