a W×aH;ã@søddlmZmZddlZddlZddlmZddlmZm Z m Z m Z ddl m Z mZmZddlmZmZmZddlmZddlmZmZmZdd lmZdd lmZdd lmZmZdd l m!Z!ddl"Z"d Z#dZ$Gdd„deƒZ%e fdd„Z&dd„Z'dS)é)ÚTestCaseÚ delete_forceN)Úsystem_session)Ú CredentialsÚCLI_CRED_NTLMv2_AUTHÚCLI_CRED_NTLM_AUTHÚDONT_USE_KERBEROS)ÚnetlogonÚntlmsspÚsrvsvc)Únetr_AuthenticatorÚnetr_WorkstationInformationÚMSV1_0_ALLOW_MSVCHAPV2)ÚSEC_CHAN_WKSTA)ÚUF_WORKSTATION_TRUST_ACCOUNTÚUF_PASSWD_NOTREQDÚUF_NORMAL_ACCOUNT)Úndr_pack)ÚSamDB)Ú NTSTATUSErrorÚntstatus)Ú get_stringZPCTMZPCTUcs eZdZ‡fdd„Z‡fdd„Zdd„Zdd„Zd d „Zd d „Zd d„Z dd„Z dd„Z dd„Z dd„Z dd„Zdd„Zdd„Zdd„Zdd „Zd!d"„Z‡ZS)#ÚPyCredentialsTestscs€tt|ƒ ¡tjd|_tjd|_tjd|_| ¡|_ |  ¡|_ t ƒ|_ td|j|j |j |j d|_| ¡| ¡dS)NZSERVERZDOMAINZ SERVER_IPz ldap://%s)ZurlZ session_infoÚ credentialsÚlp)ÚsuperrÚsetUpÚosÚenvironÚserverÚdomainZhostÚ get_loadparmrZget_credentialsrrZsessionrÚldbÚcreate_machine_accountÚcreate_user_account©Úself©Ú __class__©úr r?r rArBrCrrDrrErFrGrHrrIrJÚstrrKr)r)r*Útest_SamLogonEx_no_domain…s, þû  z,PyCredentialsTests.test_SamLogonEx_no_domainc Cs¢| ¡}t|j|j|jtd}tj}tj}d}z |  |j |j  ¡||||¡WnNt yœ}z6t  |jd¡j}|tjkr†| d¡n‚WYd}~n d}~00dS©N)Úflagsrr=)r3r>r r?r@rr rArBrCrrDrrErFrGrHrrIrJrKr)r)r*Útest_SamLogonExNTLM s,ýû  z&PyCredentialsTests.test_SamLogonExNTLMc Csª| ¡}t|j|j|jtd}t|j_t j }t j }d}z |  |j |j ¡||||¡WnNty¤}z6t |jd¡j}|tjkrŽ| d¡n‚WYd}~n d}~00dSrV)r3r>r r?r@rrÚ identity_infoZparameter_controlr rArBrCrrDrrErFrGrHrrIrJrKr)r)r*Útest_SamLogonExMSCHAPv2ºs.ýû  z*PyCredentialsTests.test_SamLogonExMSCHAPv2cCs$| ¡t d|j|j|j¡dS)Nz ncacn_np:%s)Údo_Netr_ServerPasswordSet2r rrr0r%r)r)r*Útest_encrypt_netr_passwordÚs  þz-PyCredentialsTests.test_encrypt_netr_passwordc Cs¶| ¡}| |¡\}}d}d}t ||¡}| d¡}t|ƒ}dd„t ||¡Dƒ} t  ¡} || _ | dd„|Dƒ| _ |j   | ¡| |j|j  ¡t|j|| ¡||_|j  |¡dS)Né iú utf-16-lecSs"g|]}t|tƒr|nt|ƒ‘qSr)©Ú isinstanceÚintÚord©Ú.0Úxr)r)r*Ú íózAPyCredentialsTests.do_Netr_ServerPasswordSet2..cSs"g|]}t|tƒr|nt|ƒ‘qSr)r_rcr)r)r*rfðrg)r3r7ÚsambaÚgenerate_random_passwordÚencodeÚlenrÚurandomr Znetr_CryptPasswordÚlengthÚdatar0Zencrypt_netr_crypt_passwordZnetr_ServerPasswordSet2rrDrr?Ú machine_passÚ set_password) r&r4r:r;ZPWD_LENZDATA_LENZnewpassZencodedZpwd_lenZfillerÚpwdr)r)r*r[ås*   ûz-PyCredentialsTests.do_Netr_ServerPasswordSet2cCst d|j|j|j¡S)Nzncacn_ip_tcp:%s[schannel,seal])r rrr0r%r)r)r*r3þs þz*PyCredentialsTests.get_netlogon_connectioncCsÖt dd¡|_t|_d|j|j ¡f|_t|j|jƒdt |jƒ  d¡}|j  |jdd|jt t tBƒ|dœ¡tƒ|_|j | ¡¡|j t¡|j t¡|j |j¡|j |jd¡|j |j¡dS) Nr]úcn=%s,%sú"%s"r^Zcomputerz%s$©ZdnZ objectclassZsAMAccountNameZuserAccountControlZ unicodePwdú$)rhriroÚ MACHINE_NAMEr?r"Ú domain_dnr-rrrjÚaddrTrrrr0Úguessr!Zset_secure_channel_typerZset_kerberos_staterrpÚ set_usernameÚset_workstation©r&Zutf16pwr)r)r*r#s& ú  z)PyCredentialsTests.create_machine_accountcCs¶t dd¡|_t|_d|j|j ¡f|_t|j|jƒdt |jƒ  d¡}|j  |jdd|jt t ƒ|dœ¡tƒ|_|j | ¡¡|j |j¡|j |j¡|j |j¡dS)Nr]rrrsr^Úuserz%srt)rhriZ user_passÚ USER_NAMEZ user_namer"rwr.rrrjrxrTrrr@ryr!rprzr{r?r|r)r)r*r$!s$ûz&PyCredentialsTests.create_user_accountcCs>|j ¡}tƒ}dd„|dDƒ|j_|d|_tƒ}||fS)NcSs"g|]}t|tƒr|nt|ƒ‘qSr)r_rcr)r)r*rf>rgz8PyCredentialsTests.get_authenticator..Z credentialÚ timestamp)r0r1r Zcredrnr)r&r4ZauthÚcurrentr;r)r)r*r7;s   z$PyCredentialsTests.get_authenticatorc CsFt|j|j|jƒ}tj}tj}d}| |j|j  ¡||||||¡dS)Nr) r>r r?r@r rArBZnetr_LogonSamLogonWithFlagsrrD)r&r4r€r;rLrMrNrOr)r)r*r8Ds þùz0PyCredentialsTests.do_NetrLogonSamLogonWithFlagscCs&tƒ}| |j|j ¡||d|¡dS)Né)r Znetr_LogonGetDomainInforr@rD)r&r4r€r;Zqueryr)r)r*r9Usûz,PyCredentialsTests.do_NetrLogonGetDomainInfo)Ú__name__Ú __module__Ú __qualname__rr,r2r6r<rRrUrXrZr\r[r3r#r$r7r8r9Ú __classcell__r)r)r'r*r6s"      rc Cs¢t||ƒ}d}|j|||d}t ¡}dd„|Dƒ|_t ¡|_t|dƒ|j_dd„|dDƒ|j_ t  ¡|_ |  ¡\}} | |j j _||j j_| ¡|j j_|S)Nsabcdefgh)rWÚ challengeÚ target_infocSs"g|]}t|tƒr|nt|ƒ‘qSr)r_rcr)r)r*rfprgz'samlogon_logon_info..Z nt_responsecSs"g|]}t|tƒr|nt|ƒ‘qSr)r_rcr)r)r*rfsrg)Úsamlogon_targetZget_ntlm_responser Znetr_NetworkInfor†Znetr_ChallengeResponseÚntrkrmrnZnetr_IdentityInforYZget_ntlm_username_domainÚ domain_nameÚstringZ account_namerDZ workstation) rŠÚ computer_nameZcredsrWZtarget_info_blobr†ZresponserLZusernamer r)r)r*r>cs" þ     r>cCs^t ¡}d|_t ¡}tj|_||_t ¡}tj|_||_t ¡}tj|_|||g|_ t |ƒS)Né) r Z AV_PAIR_LISTÚcountZAV_PAIRZMsvAvNbComputerNameZAvIdZValueZMsvAvNbDomainNameZMsvAvEOLZpairr)rŠrŒr‡Z computernameZ domainnameZeolr)r)r*rˆs rˆ)(Z samba.testsrrrrhZ samba.authrZsamba.credentialsrrrrZ samba.dcerpcr r r Zsamba.dcerpc.netlogonr r rZsamba.dcerpc.miscrZ samba.dsdbrrrZ samba.ndrrZ samba.samdbrrrZ samba.compatrrErvr~rr>rˆr)r)r)r*Ús*     0ÿ