a ¡Öaàþã@sÄddlmZddlZddlZddlmZddlmZddlm Z m Z ddl m Z m Z mZddlmZmZddlmZmZmZmZmZmZmZmZdd lmZmZdd lmZmZGd d „d eƒZ dS) é)Úprint_functionN)Úsystem_session)ÚSamDB)Ú ndr_unpackÚndr_pack)ÚdnspÚ dnsserverÚsecurity)ÚRpcInterfaceTestCaseÚenv_get_var_value)ÚARecordÚ AAAARecordÚ PTRRecordÚ CNameRecordÚNSRecordÚMXRecordÚ SRVRecordÚ TXTRecord)Úsd_utilsÚ descriptor)Ú WERRORErrorÚwerrorcsdeZdZedd„ƒZ‡fdd„Z‡fdd„Zdd„Zd d „Zd d „Z d d„Z dd„Z dd„Z dd„Z dd„Zdd„ZdNdd„Zdd„Zd d!„Zd"d#„Zd$d%„Zd&d'„Zd(d)„Zd*ejfd+d,„Zd-ejfd.d/„Zejfd0d1„Zd2d3„Zd4d5„Zd*ejfd6d7„Zd*ejfd8d9„Zd:d;„Z dd?„Z"d@dA„Z#dBdC„Z$dDdE„Z%dFdG„Z&dHdI„Z'dJdK„Z(dLdM„Z)‡Z*S)OÚDnsserverTestsc Csêddddddddd d g }gd ¢}d g}g}d g}g}|D] }| d|¡| d|¡q:|D] }| d|¡| d|¡q`ddggd¢|||||gd¢dœ|_ddggd¢|||||dœ|_ddddg} gd¢} | | dœ|_dS)NúSAMDOM.EXAMPLE.COMz 1.EXAMPLE.COMz %sEXAMPLE.COMzÈ1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.1.ÚEXAMPLEz .COMz !@#$%^&*()_u HIGHÿBYTEz @.EXAMPLE.COMÚ.)z...z .EXAMPLE.COMz .EXAMPLE.ÚzSAMDOM..EXAMPLE.COMzSAMDOM.EXAMPLE.COM 65535z$SAMDOM.EXAMPLE.COM 65535 65535 65535z%s 1z%s 0 0 0z 192.168.0.1z255.255.255.255) z'1234:5678:9ABC:DEF0:0000:0000:0000:0000ú'0000:0000:0000:0000:0000:0000:0000:0000z'1234:5678:9ABC:DEF0:1234:5678:9ABC:DEF0z1234:1234:1234::z1234:1234:1234:1234:1234::z1234:5678:9ABC:DEF0::z0000:0000::0000z#1234::5678:9ABC:0000:0000:0000:0000ú::1ú::z1:1:1:1:1:1:1:1)Útextrz@#!Ú )ÚAÚAAAAÚPTRÚCNAMEÚNSÚMXÚSRVÚTXTz 192.168.0.500z255.255.255.255/32)z'GGGG:1234:5678:9ABC:0000:0000:0000:0000z)0000:0000:0000:0000:0000:0000:0000:0000/1z'AAAA:AAAA:AAAA:AAAA:G000:0000:0000:1234z,1234:5678:9ABC:DEF0:1234:5678:9ABC:DEF0:1234z"1234:5678:9ABC:DEF0:1234:5678:9ABCz1111::1111::1111)r"r#r$r%r&r'r(zSAMDOM.EXAMPLE.COM -1zSAMDOM.EXAMPLE.COM 65536AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA)zSAMDOM.EXAMPLE.COM 0 65536 0zSAMDOM.EXAMPLE.COM 0 0 65536zSAMDOM.EXAMPLE.COM 65536 0 0)r'r()ÚappendÚ good_recordsÚ bad_recordsZinvalid_records) ÚclsZgood_dnsZbad_dnsZgood_mxZbad_mxZgood_srvZbad_srvZbad_dnZgood_dnZ invalid_mxZ invalid_srv©r.ú>/usr/lib/python3/dist-packages/samba/tests/dcerpc/dnsserver.pyÚ setUpClass$sdø ÿ íÿóþþzDnsserverTests.setUpClassc sÈtt|ƒ ¡tjd|_tdƒ ¡|_t   d|j|  ¡|  ¡¡|_ t dtjd|  ¡tƒ|  ¡d|_d|_t  ¡}|j|_tj|_d|_d |_d |_t j|_|j  t jd|jddd t j|¡dS) NZ DC_SERVERZREALMzncacn_ip_tcp:%s[sign]z ldap://%sZ DC_SERVER_IP)ZurlZlpZ session_infoZ credentialsÚzoneréÚ ZoneCreate)ÚsuperrÚsetUpÚosÚenvironÚserverr Úlowerr1rZ get_loadparmZget_credentialsÚconnrrÚsamdbÚ custom_zoneÚ!DNS_RPC_ZONE_CREATE_INFO_LONGHORNÚ pszZoneNamerÚDNS_ZONE_TYPE_PRIMARYÚ dwZoneTypeÚfAgingÚ fDsIntegratedÚ fLoadExistingÚDNS_DP_DOMAIN_DEFAULTÚ dwDpFlagsÚDnssrvOperation2ÚDNS_CLIENT_VERSION_LONGHORNÚDNSSRV_TYPEID_ZONE_CREATE)ÚselfÚzone_create_info©Ú __class__r.r/r5us:  þý ùzDnsserverTests.setUpc s4|j tjd|j|jddtjd¡tt|ƒ  ¡dS)NrÚDeleteZoneFromDs) r:rFrrGr8r<ÚDNSSRV_TYPEID_NULLr4rÚtearDown©rIrKr.r/rO”s ùzDnsserverTests.tearDownc Cs@d}d}| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |j|j||¡|j tjd|j|jd d | |¡tjd d ¡ \}}|  t |j ƒd ¡|  |j dj j d ¡|  |j d j j d¡|  |j dj j d¡|  |j dj j d¡|  |j dj j d¡|  |j dj j d¡d S)ú, Confirm the zone is sorted ú 192.168.50.50r"ú atestrecord-1ú atestrecord-2ú atestrecord-3ú atestrecord-4ú atestrecord-0rú@Nérr2éééé©Ú add_recordr<r:ÚDnssrvEnumRecords2rrGr8Úrecord_type_intÚDNS_RPC_VIEW_AUTHORITY_DATAÚ assertEqualÚlenÚrecÚ dnsNodeNameÚstr©rIÚ record_strÚrecord_type_strÚ_Úresultr.r.r/Útest_enum_is_sortedŸs4 ÷ z"DnsserverTests.test_enum_is_sortedc Cs¾d}d}| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |j|jd||¡| |j|jd¡\}}t |jt|ƒ¡}| d d |j¡|j ||¡|j   t j d |j |jd d | |¡t jd d ¡ \}}| t|jƒd ¡| |jd jjd¡| |jdjjd¡| |jdjjd¡| |jdjjd¡| |jdjjd¡| |jdjjd¡|jdjj|jdkrº| |jdjj|j¡d S)rQrRr"rSrTrUrVrWÚ1rZdcrXNérr2rZr[r\r]rY)r_r<Úget_record_from_dbÚldbÚDnr;rgZ set_componentÚrenamer:r`rrGr8rarbrcrdrerf)rIrirjÚdnÚrecordZnew_dnrkrlr.r.r/Ú!test_enum_is_sorted_with_zone_dupÂs@ ÷ z0DnsserverTests.test_enum_is_sorted_with_zone_dupc CsÐd}d}| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |jd||¡|j tjd |j|jd d | |¡tjd d ¡ \}}|  t |j ƒd ¡|  |j d j j d ¡d S)z} Confirm the zone returns the selected prefix first but no more as Samba is flappy for the full sort rRr"úatestrecord-1.a.búatestrecord-2.a.búatestrecord-3.a.búatestrecord-4.a.búatestrecord-0.a.búatestrecord-0.b.brúa.bNrYrr^rhr.r.r/Ú)test_enum_is_sorted_children_prefix_firstñs* ÷ z8DnsserverTests.test_enum_is_sorted_children_prefix_firstc Cs>d}d}| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |jd||¡| |jd||¡|j tjd |j|jd d | |¡tjd d ¡ \}}|  t |j ƒd ¡|  |j d j j d ¡|  |j dj j d¡|  |j dj j d¡|  |j dj j d¡|  |j dj j d¡|  |j dj j d¡d S)rQrRr"rwrxryrzr{r|rr}NrYrr2rWrZrSr[rTr\rUr]rVr^rhr.r.r/Útest_enum_is_sorted_childrens4 ÷ z+DnsserverTests.test_enum_is_sorted_childrencCs¢d}d}| |jd||¡| |jd¡\}}d|_|j ||g¡}|durT| d¡| |jd|¡|j|jd||dd| |jd||¡| |jd|d¡dS) zX See what happens when we set a record's rank to DNS_RANK_NONE. rRr"Ú testrecordrNz2Unable to update dns record to have DNS_RANK_NONE.F©Ú assertion) r_r<rpÚrankr;Údns_replace_by_dnÚfailÚassert_num_recordsÚ delete_record©rIrirjrtruÚresr.r.r/Útest_rank_none9s zDnsserverTests.test_rank_nonecCsŽd}d}| |jd||¡| |jd¡\}}tj|_|j ||g¡}|durV| d¡|  |jd|¡|  |jd||¡|  |jd|d¡dS)zI See what happens when we set a record to be tombstoned. rRr"r€Nz-Unable to update dns record to be tombstoned.r) r_r<rprZDNS_TYPE_TOMBSTONEÚwTyper;r„r…r†r‡rˆr.r.r/Útest_dns_tombstonedNs z"DnsserverTests.test_dns_tombstonedc Cs¶|jjd|j ¡tjddgd}d}|D] }d|t|jƒvr*|j}qLq*|dur`td|ƒ‚|jj|tjdd gd}|D]4}|t|jƒvr|tt j |d d ƒ}|j|fSq|dS) z0 Returns (dn of record, record) zDC=DomainDnsZones,%sz(objectClass=dnsZone)Zcn©ÚbaseÚscopeZ expressionÚattrsNzDC=%s,zCouldn't find zone '%s'.z(objectClass=dnsNode)Z dnsRecordr) r;ÚsearchÚget_default_basednrqÚ SCOPE_SUBTREErgrtÚAssertionErrorrrZDnssrvRpcRecord) rIZ zone_nameZ record_nameÚzonesZzone_dnr1ÚrecordsZold_packed_recordrer.r.r/rpas&þ  þz!DnsserverTests.get_record_from_dbc Csbdg}ddg}dgd¢i}dggd¢dgd gd gd œ}d D]}|||<|||<q:|D] }||D]’}| |jd ||d¡|D]*}|j|jd ||dd| |jd |¡q~| |jd ||d¡|D],}| |jd ||d¡| |jd ||¡qÄq`qT|D]`}||D]P}d} |D]r}| d} z*| |jd ||¡|j|jd || dWn8ty„} ztd|| |fƒ‚WYd} ~ n d} ~ 00q|D]&}| |jd ||¡|dkrŽqŽqŽ| |jd ||d¡|D]p}||dkræqÐz|j|jd ||ddWn<ty<} z"td|d|| fƒ‚WYd} ~ n d} ~ 00qÐ| |jd ||d¡qqúdS)zˆ Make sure that records which should be distinct from each other or duplicate to each other behave as expected. )rzSAMDOM.EXAMPLE.COz EXAMPLE.COMzSAMDOM.EXAMPLE)rzsamdom.example.comzSAMDOM.example.COM)zEXAMPLE.rr#))úAAAA::zaaaa::)r—z AAAA:0000::)r—z'AAAA:0000:0000:0000:0000:0000:0000:0000)r—zAAAA:0:0:0:0:0:0:0)z0123::z123::)rz::0r)z 192.168.1.0z 192.168.1.1z 192.168.2.0z 192.169.1.0z 193.168.1.0))zAAAA::1234:5678:9ABCz::AAAA:1234:5678:9ABC)z1000::z::1000)rz::11z::1111)z1234::z0234::)zSAMDOM.EXAMPLE.COM 1 1 1zSAMDOM.EXAMPLE.COM 1 1 0zSAMDOM.EXAMPLE.COM 1 0 1zSAMDOM.EXAMPLE.COM 0 1 1zSAMDOM.EXAMPLE.COM 2 1 0zSAMDOM.EXAMPLE.COM 2 2 2)zSAMDOM.EXAMPLE.COM 1zSAMDOM.EXAMPLE.COM 0)zA RECORDzB RECORDza record)r"r#r(r'r))r$r%r&r€rFrr2©Ú expected_numzkFailed to add %s, which should be distinct from all others in the set. Original error: %s Distinct set: %s.Nr%zCManaged to remove %s by attempting to remove %s. Original error: %s)r_r<r†r‡r”) rIZ distinct_dnsZ duplicate_dnsÚ duplicatesZdistinctrjZduplicate_tupleruZdistinct_tupleÚiÚer.r.r/Útest_duplicate_matching|shÿÿ ÷    ÿ   ÿ z&DnsserverTests.test_duplicate_matchingcCsT|jD]H}|j|D]8}| |jd||¡| |jd|¡| |jd||¡qqdS)zb Make sure that we can add, update and delete a variety of valid records. r€N©r+r_r<r†r‡)rIrjrir.r.r/Útest_accept_valid_commandsÑs  z)DnsserverTests.test_accept_valid_commandsrr1r€c  Cs| | | ¡} | | d|¡| \} } | || jd|| j|f¡| || jd|| j|f¡| || jd|| j|f¡| || jd|| j|f¡| || jd|| j|f¡| | ¡| j  ¡d|| j  ¡| ¡f¡| || j d|| j |f¡| || j d || j |f¡dS) Nz/Expected record %s but was not found over LDAP.z:Unexpected data length for record %s. Got %s, expected %s.z3Unexpected rank for record %s. Got %s, expected %s.z4Unexpected flags for record %s. Got %s, expected %s.z;Unexpected time to live for record %s. Got %s, expected %s.z9Unexpected dwReserved for record %s. Got %s, expected %s.z3Unexpected data for record %s. Got %s, expected %s.z4Unexpected wType for record %s. Got %s, expected %s.z8Unexpected timestamp for record %s. Got %s, expected %s.) rpZassertIsNotNonercÚ wDataLengthrƒÚflagsÚ dwTtlSecondsÚ dwReservedr9Údatar‹Ú dwTimeStamp)rIr rƒr¡r¢r£r¤r‹r¥r1Zrec_namer‰Zrec_dnrer.r.r/Ú check_paramsÜs ,zDnsserverTests.check_paramsc Cs²| |jddd¡| ddddddd¡| |jddd¡| |jdd d ¡| d ddddd d ¡| |jdd d ¡| |jddd¡| ddddddd¡| |jddd¡dS)zx Make sure that, when we add records to the database, they're added with reasonable parameters. r€r"rRr\éðri„r2r#z AAAA:AAAA::éz'AAAA:AAAA:0000:0000:0000:0000:0000:0000ér%Z cnamedesté r]N)r_r<r¦r‡rPr.r.r/Útest_record_paramsêsz!DnsserverTests.test_record_paramsc CsRd}|jD]Ž}|j|D]~}zD|j|jd||dd|j|jd|dd|j|jd||ddWqty”}zt|ƒ|d}WYd}~qd}~00qq |jD]˜}|j|D]ˆ}|j|d}| |jd||¡z|j|jd||ddWn6ty"}zt|ƒ|d}WYd}~n d}~00| |jd||¡q®q | |dkd|¡dS) z‹ Make sure that we can't add a variety of invalid records, and that we can't update valid records to invalid ones. rr€Frr˜r2Nz6Failed to reject invalid commands. Total failures: %d.) r,r_r<r†r‡r”Úprintr+Ú assertTrue)rIÚ num_failuresrjrirœZgood_record_strr.r.r/Útest_reject_invalid_commandsùs* " z+DnsserverTests.test_reject_invalid_commandsc Csd}|jD]ô}|j|d}| |jd||¡|jD]´}||krFq6|j|d}|dkpb|dk}|dkpr|dk}|dkp‚|dk}|dkp’|dk} |dkp¢|dk} |dkp²|dk} |d kpÂ|d k} d } |d krÜ|sÜ|sÜd } |dkrø| sô| sô|sô|rød } |r|s|s| s| rd } z4| |jd||¡| rL|d }td||fƒWnDty’}z*| s~|d }td||fƒWYd}~n d}~00| s®d }d }| r²| r²d}|sÄ| sÄ| rÜ|dksØ|dkrÜd}|d krö|sò|röd}z|j|jd||dWnBtyP}z(|d }td||||fƒWYd}~n d}~00z|j|jd||dWnBty¬}z(|d }td||||fƒWYd}~n d}~00z| |jd||¡Wq6tyê}z WYd}~q6d}~00q6| |jd||¡q | |dkd|¡dS)zv Attempt to add some values which have the same name as existing ones, just a different type. rr€r"r#r%r$r'r(r)Fr&Tr2z1Expected error when adding %s while a %s existed.z6Didn't expect error when adding %s while a %s existed.Nr˜zPExpected %s %s records after adding a %s record and a %s record already existed.z>Failed collision and replacement behavior. Total failures: %d.)r+r_r<r¬r”r†r‡r­)rIr®Zrecord_type_str_1Úrecord1Zrecord_type_str_2Úrecord2Zhas_aZhas_aaaaZ has_cnameZhas_ptrZhas_mxZhas_srvZhas_txtZ add_error_okrœZexpected_num_type_1Zexpected_num_type_2r.r.r/Ú!test_add_duplicate_different_types€  ÿ ÿ & ÿ ÿz0DnsserverTests.test_add_duplicate_different_typecCs®|jdd}| |jdd|¡|jD]<}|j|d}|j|jd||dd|j|jd|ddq&d}d}|j|jd d |dd|j|jd d |dd| |jdd|¡d S)z@ Test some special properties of CNAME records. r%r2r€rFrr˜z testrecord 1Zmxrecr'Znsrecr&Nrž)rIZ cname_recordrjZ other_recordZ mx_recordZ ns_recordr.r.r/Ú _test_cnameqs zDnsserverTests._test_cnamecCsh|jD]\}|j|d}| |jd||¡|j|jd||dd| |jd|¡| |jd||¡qdS)zK Make sure that we can't add duplicate values of any type. rr€FrNrž)rIrjrur.r.r/Útest_add_duplicate_valueˆs  z'DnsserverTests.test_add_duplicate_valuecCsÀ|jD]´}tdt|j|ƒƒD]š}|j||d}|j||}|dkrLq|dkrXdnd}| |jd||¡| |jd||¡|j|jd||d| |jd||¡| |jd||¡qqdS)z» Attempt to add values with the same name and type in the same zone. This should work, and should result in both values existing (except with some types). r2r%rZr€r˜N)r+Úrangerdr_r<r†r‡)rIrjr›r°r±r™r.r.r/Útest_add_similar_value”s z%DnsserverTests.test_add_similar_valueTc Cs¾z| |||¡\}}WnHty^} z0|rtyŠ} z&|rvtd||t | ƒfƒ‚WYd} ~ n d} ~ 00dS)zû Attempts to add a map from the given name to a record of the given type, in the given zone. Also asserts whether or not the add was successful. This can also update existing records if they have the same name. rNzFSuccessfully added record '%s' of type '%s', which should have failed.zTFailed to add record '%s' of type '%s', which should have succeeded. Error was '%s'.© rÁrÚDNS_RPC_RECORD_BUFrer:ÚDnssrvUpdateRecord2r8r”r¸rg) rIr1r¹rjrir‚rºruÚ add_rec_bufrœr.r.r/r_s* úÿ  ÿzDnsserverTests.add_recordc Cs| ||¡}t ¡}||_z2|j |d|j||d|¡|sJtd||fƒ‚Wn>tyŠ} z&|rvtd||t | ƒfƒ‚WYd} ~ n d} ~ 00dS)z· Attempts to delete a record with the given name, record and record type from the given zone. Also asserts whether or not the deletion was successful. rNzHSuccessfully deleted record '%s' of type '%s', which should have failed.zWFailed to delete record '%s' of type '%s', which should have succeeded. Error was '%s'.rÄ) rIr1r¹rjrir‚rºruÚ del_rec_bufrœr.r.r/r‡,s" úzDnsserverTests.delete_recordcCs‚|j tjd|jdd¡\}}| tj|¡|j tjd|jdd¡\}}| tj|¡|j tj d|jdd¡\}}| tj |¡dS)NrZ ServerInfo) r:Z DnssrvQuery2rZDNS_CLIENT_VERSION_W2Kr8rcZDNSSRV_TYPEID_SERVER_INFO_W2KZDNS_CLIENT_VERSION_DOTNETZ DNSSRV_TYPEID_SERVER_INFO_DOTNETrGZDNSSRV_TYPEID_SERVER_INFO)rIÚtypeidrlr.r.r/Ú test_query2Es* ü ü üzDnsserverTests.test_query2c CsŒd}tj}t ¡}d|_tj|_z|j |j |dd||¡}WnBt y~}z*|j dt j krjWYd}~dSWYd}~n d}~00| ¡dS)Núa-zone-that-does-not-existÚ AllowUpdater2ÚResetDwordPropertyr)rÚDNSSRV_TYPEID_NAME_AND_PARAMÚDNS_RPC_NAME_AND_PARAMÚ pszNodeNamerÚDNS_ZONE_UPDATE_SECUREÚdwParamr:ZDnssrvOperationr8rÚargsrÚ"WERR_DNS_ERROR_ZONE_DOES_NOT_EXISTr…)rIÚnon_zonerÉÚname_and_paramr‰rœr.r.r/Útest_operation_invalid_s" û$z%DnsserverTests.test_operation_invalidc Cs–tj}d}tj}t ¡}d|_tj|_z |j  |d|j |dd||¡}WnBt yˆ}z*|j dt jkrtWYd}~dSWYd}~n d}~00| ¡dS)NrËrÌrr2rÍ)rrGrÎrÏrÐrrÑrÒr:rFr8rrÓrrÔr…)rIrºrÕrÉrÖr‰rœr.r.r/Útest_operation2_invalidvs(ù$z&DnsserverTests.test_operation2_invalidc CsÞtj}d}t ¡}||_tj|_tj|_d|_ tj |_ |j   |d|jdddtj|¡tjtjB}|j  |d|jddtj|¡\}}| d|j¡|j   |d|j|ddtjd¡|j  |d|jddtj|¡\}}| d|j¡dS)Nz1.168.192.in-addr.arparr3Ú EnumZonesr2rM)rrGr=r>rr?r@rÑZ fAllowUpdaterArDrEr:rFr8rHÚDNS_ZONE_REQUEST_REVERSEÚDNS_ZONE_REQUEST_PRIMARYÚDnssrvComplexOperation2ÚDNSSRV_TYPEID_DWORDrcÚ dwZoneCountrN)rIrºZrev_zoneZ zone_createÚrequest_filterrkr•rÉr.r.r/Útest_operation2s^ù ÿúù úzDnsserverTests.test_operation2c Csštj}tjtjB}|j |d|jddtj|¡\}}| tj |¡| d|j ¡tj tjB}|j |d|jddtj|¡\}}| tj |¡| d|j ¡dS)NrrÙr[) rrGZDNS_ZONE_REQUEST_FORWARDrÛr:rÜr8rÝrcZDNSSRV_TYPEID_ZONE_LISTrÞrÚ)rIrºrßrÉr•r.r.r/Útest_complexoperation2Às6ÿúÿúz%DnsserverTests.test_complexoperation2c CsNtj}tj}tjtjB}|j |d|jddd||dd¡ \}}|  d|j ¡dS)Nrz ..RootHintsré) rrGrrÃZDNS_RPC_VIEW_ROOT_HINT_DATAZDNS_RPC_VIEW_ADDITIONAL_DATAr:r`r8rcÚcount)rIrºÚ record_typeÚ select_flagsrkZ roothintsr.r.r/Útest_enumrecords2Ûs"ÿ÷ z DnsserverTests.test_enumrecords2c CsÚtj}tj}tj}d}tdƒ}tdƒ}t ¡}||_|j  |d|j |j ||d¡|j  |d|j |j |d||dd¡ \}} |  d| j¡|  d| jdj¡|  tj| jdjdj¡|  d| jdjdj¡t ¡}||_t ¡} || _|j  |d|j |j ||| ¡|j  |d|j |j |d||dd¡ \} } |  d| j¡|  d| jdj¡|  tj| jdjdj¡|  d| jdjdj¡t ¡} || _|j  |d|j |j |d| ¡| t|jj |d|j |j |d||dd¡ dS)NZdummyz1.2.3.4z5.6.7.8rr2)rrGrrÂrbr rÅrer:rÆr8r1r`rcrãZ wRecordCountr–r‹r¤Z assertRaisesr¸) rIrºrärår¹reZrec2rÇrkrlrÈZbuflenr.r.r/Útest_updaterecords2ìs ú÷ ú÷ ú öz"DnsserverTests.test_updaterecords2c Cs|jjd|j ¡tjdddgd}| t|ƒd¡| d|dv¡|ddd}t  |j¡}t t j |ƒ}t   |j ¡¡}|jj|j ¡tjdd gd}tt t j |dd dƒƒ}t  d |d |i¡}t  t t j |ƒ¡} t  | ||¡} | | d d | |  |j¡| |j¡f¡dS)z_ Make sure that security descriptors of the msdcs zone is as expected. zDC=ForestDnsZones,%sz&(&(objectClass=dnsZone)(name=_msdcs*))ÚnTSecurityDescriptorZ objectClassrr2rú(sAMAccountName=DnsAdmins)Ú objectSidz–O:SYG:BAD:AI(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;CC;;;AU)(A;;RPLCLORC;;;WD)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;CI;RPWPCRCCDCLCRCWOWDSDDTSW;;;ED)Ú DnsAdminsrzOSD of msdcs zone different to expected. Difference was: %s Expected: %s Got: %sN)r;r‘r’rqr“rcrdr­rÚSDUtilsrr rÚdom_sidÚget_domain_sidrgÚ sddl2binaryÚ get_clean_sdÚ get_diff_sdsÚas_sddlÚ domain_sid) rIr•ÚtmpÚutilsÚsdrór‰Ú dns_adminÚ packed_sdÚ expected_sdÚdiffr.r.r/Ú#test_security_descriptor_msdcs_zoneKs4ý  þú   ÿþz2DnsserverTests.test_security_descriptor_msdcs_zonecCs d}t ¡}tj|_d|_d|_d|_||_tj |_ |j   tj d|jdddtj|¡|j ¡}| d¡|jj|tjd|dgd }| t|ƒd¡|dj}| d|dv¡|ddd}t |j¡}ttj|ƒ}t |j  ¡¡} |jj|j ¡tjd d gd } t!ttj| dd dƒƒ} t "d | d | i¡} t #ttj| ƒ¡} t $| d | i¡}t #ttj|ƒ¡}t %| ¡}t #ttj|ƒ¡}zôt &|jdt!|ƒ¡}| '¡| f| '¡|f| '¡|fg}|D]’\}}|jj|tj(dgd}| d|dv¡|ddd}t |j¡}ttj|ƒ}t )||| ¡}| |dd||| *|j+¡| *|j+¡f¡qÂW|j   tj d|j|ddtj,d¡n"|j   tj d|j|ddtj,d¡0dS)zb Make sure that security descriptors of forest dns zones are as expected. Ztest_forest_zonerr2Nr3zDC=ForestDnsZonesú (name=%s)rèrrérêú–O:DAG:DAD:AI(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;CC;;;AU)(A;;RPLCLORC;;;WD)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;CI;RPWPCRCCDCLCRCWOWDSDDTSW;;;ED)rëúCN=MicrosoftDNS,%s©rŽrrrzrSecurity descriptor of forest DNS zone with DN '%s' different to expected. Difference was: %s Expected: %s Got: %srM)-rr=rr?r@rArBrCr>ZDNS_DP_FOREST_DEFAULTrEr:rFrGr8rHr;r’Ú add_childr‘rqr“rcrdrtr­rrìrr rrírîrgrïrðZ'get_dns_forest_microsoft_dns_descriptorÚget_dns_partition_descriptorrrÚget_linearizedÚ SCOPE_BASErñròrórN)rIZ forest_zonerJÚ partition_dnr•Ú current_dnrôrõrörór‰r÷rørùÚ packed_msdnsÚexpected_msdns_sdÚpacked_part_sdÚexpected_part_sdÚmsdns_dnÚsecurity_desc_dictÚkeyÚsec_descrúr.r.r/Ú$test_security_descriptor_forest_zoners¦ ù   þ   ýúÿ  ÿ   þ  ÿ   ÿ  ùùz3DnsserverTests.test_security_descriptor_forest_zonec Cs|j ¡}| d¡|jj|tjd|jdgd}| t|ƒd¡|dj }|  d|dv¡|ddd}t   |j¡}t tj|ƒ}| |j¡}t |j ¡¡}|jj|j ¡tjddgd} tt tj| dddƒƒ} t d |d | i¡} t t tj| ƒ¡} t |d | i¡} t t tj| ƒ¡}t |¡}t t tj|ƒ¡}t |jd t|ƒ¡}| ¡| f| ¡|f| ¡|fg}|D]’\}}|jj|tjdgd }|  d|dv¡|ddd}t   |j¡}t tj|ƒ}t |||¡}| |d d||| |j¡| |j¡f¡qzdS)zb Make sure that security descriptors of domain dns zones are as expected. zDC=DomainDnsZonesrürèrr2rrérêrýrërþrÿrzrSecurity descriptor of domain DNS zone with DN '%s' different to expected. Difference was: %s Expected: %s Got: %sN)r;r’rr‘rqr“r<rcrdrtr­rrìrr rròrórírîrgrïrðZ'get_dns_domain_microsoft_dns_descriptorrrrrrrñ)rIrr•rrôrõröZsddlrór‰r÷rørùrrrr r r r r rúr.r.r/Ú$test_security_descriptor_domain_zoneÌs`   þ    þúÿ  ÿ   þ  ÿ   ÿz3DnsserverTests.test_security_descriptor_domain_zone)rr1r€)+Ú__name__Ú __module__Ú __qualname__Ú classmethodr0r5rOrmrvr~rrŠrŒrprrŸr¦r«r¯r²r³r´r¶rrGr¼r†r·rÁrar_r‡rÊr×rØràrárærçrûrrÚ __classcell__r.r.rKr/r"sV P  #/)U ÿ  X ÿ ÿ  ÿ ÿ 3_'Zr)!Z __future__rr6rqZ samba.authrZ samba.samdbrZ samba.ndrrrZ samba.dcerpcrrr Z samba.testsr r Zsamba.netcmd.dnsr r rrrrrrZsambarrrrrr.r.r.r/Ús   (