return bind, identifier, attributes
- def get_keys(self, samdb, dn):
+ def get_keys(self, samdb, dn, expected_etypes=None):
admin_creds = self.get_admin_creds()
bind, identifier, attributes = self.get_secrets(
pwd = attr.value_ctr.values[0].blob
keys[kcrypto.Enctype.RC4] = pwd.hex()
- default_enctypes = self.get_default_enctypes()
+ if expected_etypes is None:
+ expected_etypes = self.get_default_enctypes()
- self.assertCountEqual(default_enctypes, keys)
+ self.assertCountEqual(expected_etypes, keys)
return keys
client_creds.set_password(new_password)
- keys = self.get_keys(samdb, client_dn)
- self.assertEqual({kcrypto.Enctype.AES256,
- kcrypto.Enctype.AES128,
- kcrypto.Enctype.RC4},
- keys.keys())
+ self.get_keys(samdb, client_dn,
+ expected_etypes={kcrypto.Enctype.AES256,
+ kcrypto.Enctype.AES128,
+ kcrypto.Enctype.RC4})
# Test that DES-CBC-CRC cannot be used whether or not the user is
# protected.
projects / thirdparty / samba.git / commitdiff
