CVE-2020-1472(ZeroLogon): Add zerologon test suite

author Gary Lockyer <gary@catalyst.net.nz>

Sun, 27 Sep 2020 20:29:25 +0000 (09:29 +1300)

committer Andrew Bartlett <abartlet@samba.org>

Fri, 16 Oct 2020 04:45:40 +0000 (04:45 +0000)
author Gary Lockyer <gary@catalyst.net.nz>
Sun, 27 Sep 2020 20:29:25 +0000 (09:29 +1300)
committer Andrew Bartlett <abartlet@samba.org>
Fri, 16 Oct 2020 04:45:40 +0000 (04:45 +0000)
diff --git a/source3/selftest/tests.py b/source3/selftest/tests.py

index be0efd3217e2afbd321fa5b843f5686ffefc0c21..002f6d4a4b0b00c722df73055ffbfb1f5ab31dd6 100755 (executable)
--- a/source3/selftest/tests.py
+++ b/source3/selftest/tests.py
@@ -626,6 +626,7 @@ rpc = ["rpc.authcontext", "rpc.samba3.bind", "rpc.samba3.srvsvc", "rpc.samba3.sh
         "rpc.samr.passwords.pwdlastset", "rpc.samr.passwords.lockout", "rpc.samr.passwords.badpwdcount", "rpc.samr.large-dc", "rpc.samr.machine.auth",
         "rpc.samr.priv", "rpc.samr.passwords.validate", "rpc.samr.handletype",
         "rpc.netlogon.admin",
+       "rpc.netlogon.zerologon",
         "rpc.schannel", "rpc.schannel2", "rpc.bench-schannel1", "rpc.schannel_anon_setpw", "rpc.join", "rpc.bind",
         "rpc.initshutdown", "rpc.wkssvc", "rpc.srvsvc"]
  
diff --git a/source4/selftest/tests.py b/source4/selftest/tests.py

index ccd895fcd546479152b73cc6a3dee6389c7c6ca1..71c872298521f1826a36860b6716e70fcc137ee5 100755 (executable)
--- a/source4/selftest/tests.py
+++ b/source4/selftest/tests.py
@@ -186,9 +186,9 @@ plantestsuite_loadlist("samba4.tests.attr_from_server.python(ad_dc_ntvfs)",
  # add tests to this list as they start passing, so we test
  # that they stay passing
  ncacn_np_tests = ["rpc.schannel", "rpc.join", "rpc.lsa", "rpc.dssetup", "rpc.altercontext", "rpc.netlogon", "rpc.netlogon.admin", "rpc.handles", "rpc.samsync", "rpc.samba3-sessionkey", "rpc.samba3-getusername", "rpc.samba3-lsa", "rpc.samba3-bind", "rpc.samba3-netlogon", "rpc.asyncbind", "rpc.lsalookup", "rpc.lsa-getuser", "rpc.schannel2", "rpc.authcontext"]
-ncalrpc_tests = ["rpc.schannel", "rpc.join", "rpc.lsa", "rpc.dssetup", "rpc.altercontext", "rpc.netlogon", "rpc.netlogon.admin", "rpc.asyncbind", "rpc.lsalookup", "rpc.lsa-getuser", "rpc.schannel2", "rpc.authcontext"]
+ncalrpc_tests = ["rpc.schannel", "rpc.join", "rpc.lsa", "rpc.dssetup", "rpc.altercontext", "rpc.netlogon", "rpc.netlogon.admin", "rpc.netlogon.zerologon", "rpc.asyncbind", "rpc.lsalookup", "rpc.lsa-getuser", "rpc.schannel2", "rpc.authcontext"]
  drs_rpc_tests = smbtorture4_testsuites("drs.rpc")
-ncacn_ip_tcp_tests = ["rpc.schannel", "rpc.join", "rpc.lsa", "rpc.dssetup", "rpc.drsuapi", "rpc.drsuapi_w2k8", "rpc.netlogon", "rpc.netlogon.admin", "rpc.asyncbind", "rpc.lsalookup", "rpc.lsa-getuser", "rpc.schannel2", "rpc.authcontext", "rpc.samr.passwords.validate"] + drs_rpc_tests
+ncacn_ip_tcp_tests = ["rpc.schannel", "rpc.join", "rpc.lsa", "rpc.dssetup", "rpc.drsuapi", "rpc.drsuapi_w2k8", "rpc.netlogon", "rpc.netlogon.admin", "rpc.netlogon.zerologon", "rpc.asyncbind", "rpc.lsalookup", "rpc.lsa-getuser", "rpc.schannel2", "rpc.authcontext", "rpc.samr.passwords.validate"] + drs_rpc_tests
  slow_ncacn_np_tests = ["rpc.samlogon", "rpc.samr", "rpc.samr.users", "rpc.samr.large-dc", "rpc.samr.users.privileges", "rpc.samr.passwords", "rpc.samr.passwords.pwdlastset", "rpc.samr.passwords.lockout", "rpc.samr.passwords.badpwdcount"]
  slow_ncacn_ip_tcp_tests = ["rpc.cracknames"]
  
diff --git a/source4/torture/rpc/netlogon.c b/source4/torture/rpc/netlogon.c

index 3fdcfcf9c2234a4e1d913b213434104e648a9831..50f1f0158b8f6a8138fc2e98ccb18edba7d3a831 100644 (file)
--- a/source4/torture/rpc/netlogon.c
+++ b/source4/torture/rpc/netlogon.c
@@ -5312,6 +5312,15 @@ struct torture_suite *torture_rpc_netlogon_s3(TALLOC_CTX *mem_ctx)
         return suite;
  }
  
+struct torture_suite *torture_rpc_netlogon_zerologon(TALLOC_CTX *mem_ctx)
+{
+       struct torture_suite *suite = torture_suite_create(
+               mem_ctx,
+               "netlogon.zerologon");
+
+       return suite;
+}
+
  struct torture_suite *torture_rpc_netlogon_admin(TALLOC_CTX *mem_ctx)
  {
         struct torture_suite *suite = torture_suite_create(mem_ctx, "netlogon.admin");
diff --git a/source4/torture/rpc/rpc.c b/source4/torture/rpc/rpc.c

index 243e5d3f207d585d944c9c3b09524a69a383b867..0adc3a0d5974a40b3c4c5600ed3f55fd1b019ec0 100644 (file)
--- a/source4/torture/rpc/rpc.c
+++ b/source4/torture/rpc/rpc.c
@@ -605,6 +605,7 @@ NTSTATUS torture_rpc_init(TALLOC_CTX *ctx)
         torture_suite_add_suite(suite, torture_rpc_netlogon(suite));
         torture_suite_add_suite(suite, torture_rpc_netlogon_s3(suite));
         torture_suite_add_suite(suite, torture_rpc_netlogon_admin(suite));
+       torture_suite_add_suite(suite, torture_rpc_netlogon_zerologon(suite));
         torture_suite_add_suite(suite, torture_rpc_remote_pac(suite));
         torture_suite_add_simple_test(suite, "samlogon", torture_rpc_samlogon);
         torture_suite_add_simple_test(suite, "samsync", torture_rpc_samsync);
author	Gary Lockyer <gary@catalyst.net.nz>
	Sun, 27 Sep 2020 20:29:25 +0000 (09:29 +1300)
committer	Andrew Bartlett <abartlet@samba.org>
	Fri, 16 Oct 2020 04:45:40 +0000 (04:45 +0000)
source3/selftest/tests.py		patch \| blob \| blame \| history
source4/selftest/tests.py		patch \| blob \| blame \| history
source4/torture/rpc/netlogon.c		patch \| blob \| blame \| history
source4/torture/rpc/rpc.c		patch \| blob \| blame \| history