/*
Unix SMB/CIFS implementation.
test alternate data streams
Copyright (C) Andrew Tridgell 2004
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see .
*/
#include "includes.h"
#include "system/locale.h"
#include "torture/torture.h"
#include "libcli/raw/libcliraw.h"
#include "libcli/security/dom_sid.h"
#include "libcli/security/security_descriptor.h"
#include "system/filesys.h"
#include "libcli/libcli.h"
#include "torture/util.h"
#include "lib/util/tsort.h"
#include "torture/raw/proto.h"
#define BASEDIR "\\teststreams"
#define CHECK_STATUS(status, correct) \
torture_assert_ntstatus_equal_goto(tctx,status,correct,ret,done,"CHECK_STATUS")
#define CHECK_VALUE(v, correct) \
torture_assert_int_equal(tctx,v,correct,"CHECK_VALUE")
#define CHECK_NTTIME(v, correct) \
torture_assert_u64_equal(tctx,v,correct,"CHECK_NTTIME")
#define CHECK_STR(v, correct) do { \
bool ok; \
if ((v) && !(correct)) { \
ok = false; \
} else if (!(v) && (correct)) { \
ok = false; \
} else if (!(v) && !(correct)) { \
ok = true; \
} else if (strcmp((v), (correct)) == 0) { \
ok = true; \
} else { \
ok = false; \
} \
torture_assert(tctx,ok,\
talloc_asprintf(tctx, "got '%s', expected '%s'",\
(v)?(v):"NULL", (correct)?(correct):"NULL")); \
} while (0)
/*
check that a stream has the right contents
*/
static bool check_stream(struct smbcli_state *cli, const char *location,
TALLOC_CTX *mem_ctx,
const char *fname, const char *sname,
const char *value)
{
int fnum;
const char *full_name;
uint8_t *buf;
ssize_t ret;
full_name = talloc_asprintf(mem_ctx, "%s:%s", fname, sname);
fnum = smbcli_open(cli->tree, full_name, O_RDONLY, DENY_NONE);
if (value == NULL) {
if (fnum != -1) {
printf("(%s) should have failed stream open of %s\n",
location, full_name);
return false;
}
return true;
}
if (fnum == -1) {
printf("(%s) Failed to open stream '%s' - %s\n",
location, full_name, smbcli_errstr(cli->tree));
return false;
}
buf = talloc_array(mem_ctx, uint8_t, strlen(value)+11);
ret = smbcli_read(cli->tree, fnum, buf, 0, strlen(value)+11);
if (ret != strlen(value)) {
printf("(%s) Failed to read %lu bytes from stream '%s' - got %d\n",
location, (long)strlen(value), full_name, (int)ret);
return false;
}
if (memcmp(buf, value, strlen(value)) != 0) {
printf("(%s) Bad data in stream\n", location);
return false;
}
smbcli_close(cli->tree, fnum);
return true;
}
static int qsort_string(char * const *s1, char * const *s2)
{
return strcmp(*s1, *s2);
}
static int qsort_stream(const struct stream_struct *s1, const struct stream_struct *s2)
{
return strcmp(s1->stream_name.s, s2->stream_name.s);
}
static bool check_stream_list(struct torture_context *tctx,
struct smbcli_state *cli, const char *fname,
int num_exp, const char **exp)
{
union smb_fileinfo finfo;
NTSTATUS status;
int i;
TALLOC_CTX *tmp_ctx = talloc_new(cli);
char **exp_sort;
struct stream_struct *stream_sort;
bool ret = false;
int fail = -1;
finfo.generic.level = RAW_FILEINFO_STREAM_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tmp_ctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
CHECK_VALUE(finfo.stream_info.out.num_streams, num_exp);
if (num_exp == 0) {
ret = true;
goto done;
}
exp_sort = (char **)talloc_memdup(tmp_ctx, exp, num_exp * sizeof(*exp));
if (exp_sort == NULL) {
goto done;
}
TYPESAFE_QSORT(exp_sort, num_exp, qsort_string);
stream_sort = (struct stream_struct *)talloc_memdup(tmp_ctx,
finfo.stream_info.out.streams,
finfo.stream_info.out.num_streams *
sizeof(*stream_sort));
if (stream_sort == NULL) {
goto done;
}
TYPESAFE_QSORT(stream_sort, finfo.stream_info.out.num_streams, qsort_stream);
for (i=0; itree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_NOT_A_DIRECTORY);
printf("(%s) opening basedir stream\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = NTCREATEX_OPTIONS_DIRECTORY;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_DIRECTORY;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = basedir_data;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_NOT_A_DIRECTORY);
printf("(%s) opening basedir ::$DATA stream\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0x10;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = 0;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = basedir_data;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_FILE_IS_A_DIRECTORY);
printf("(%s) list the streams on the basedir\n", __location__);
ret &= check_stream_list(tctx, cli, BASEDIR, 0, NULL);
done:
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
test basic behavior of streams on directories
*/
static bool test_stream_io(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream.txt";
const char *sname1, *sname2;
bool ret = true;
int fnum = -1;
ssize_t retsize;
const char *one[] = { "::$DATA" };
const char *two[] = { "::$DATA", ":Second Stream:$DATA" };
const char *three[] = { "::$DATA", ":Stream One:$DATA",
":Second Stream:$DATA" };
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname, "Stream One");
sname2 = talloc_asprintf(tctx, "%s:%s:$DaTa", fname, "Second Stream");
printf("(%s) creating a stream on a non-existent file\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
ret &= check_stream(cli, __location__, tctx, fname, "Stream One", NULL);
printf("(%s) check that open of base file is allowed\n", __location__);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.fname = fname;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
printf("(%s) writing to stream\n", __location__);
retsize = smbcli_write(cli->tree, fnum, 0, "test data", 0, 9);
CHECK_VALUE(retsize, 9);
smbcli_close(cli->tree, fnum);
ret &= check_stream(cli, __location__, tctx, fname, "Stream One", "test data");
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.fname = sname1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
printf("(%s) modifying stream\n", __location__);
retsize = smbcli_write(cli->tree, fnum, 0, "MORE DATA ", 5, 10);
CHECK_VALUE(retsize, 10);
smbcli_close(cli->tree, fnum);
ret &= check_stream(cli, __location__, tctx, fname, "Stream One:$FOO", NULL);
printf("(%s) creating a stream2 on a existing file\n", __location__);
io.ntcreatex.in.fname = sname2;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN_IF;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
printf("(%s) modifying stream\n", __location__);
retsize = smbcli_write(cli->tree, fnum, 0, "SECOND STREAM", 0, 13);
CHECK_VALUE(retsize, 13);
smbcli_close(cli->tree, fnum);
ret &= check_stream(cli, __location__, tctx, fname, "Stream One", "test MORE DATA ");
ret &= check_stream(cli, __location__, tctx, fname, "Stream One:$DATA", "test MORE DATA ");
ret &= check_stream(cli, __location__, tctx, fname, "Stream One:", NULL);
ret &= check_stream(cli, __location__, tctx, fname, "Second Stream", "SECOND STREAM");
ret &= check_stream(cli, __location__, tctx, fname,
"SECOND STREAM:$DATA", "SECOND STREAM");
ret &= check_stream(cli, __location__, tctx, fname, "Second Stream:$DATA", "SECOND STREAM");
ret &= check_stream(cli, __location__, tctx, fname, "Second Stream:", NULL);
ret &= check_stream(cli, __location__, tctx, fname, "Second Stream:$FOO", NULL);
check_stream_list(tctx, cli, fname, 3, three);
printf("(%s) deleting stream\n", __location__);
status = smbcli_unlink(cli->tree, sname1);
CHECK_STATUS(status, NT_STATUS_OK);
check_stream_list(tctx, cli, fname, 2, two);
printf("(%s) delete a stream via delete-on-close\n", __location__);
io.ntcreatex.in.fname = sname2;
io.ntcreatex.in.create_options = NTCREATEX_OPTIONS_DELETE_ON_CLOSE;
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_DELETE;
io.ntcreatex.in.access_mask = SEC_STD_DELETE;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
smbcli_close(cli->tree, fnum);
status = smbcli_unlink(cli->tree, sname2);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_NOT_FOUND);
check_stream_list(tctx, cli, fname, 1, one);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.fname = sname1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
printf("(%s) deleting file\n", __location__);
status = smbcli_unlink(cli->tree, fname);
CHECK_STATUS(status, NT_STATUS_OK);
done:
smbcli_close(cli->tree, fnum);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
test stream sharemodes
*/
static bool test_stream_sharemodes(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream.txt";
const char *sname1, *sname2;
bool ret = true;
int fnum1 = -1;
int fnum2 = -1;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname, "Stream One");
sname2 = talloc_asprintf(tctx, "%s:%s:$DaTa", fname, "Second Stream");
printf("(%s) testing stream share mode conflicts\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum1 = io.ntcreatex.out.file.fnum;
/*
* A different stream does not give a sharing violation
*/
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum2 = io.ntcreatex.out.file.fnum;
/*
* ... whereas the same stream does with unchanged access/share_access
* flags
*/
io.ntcreatex.in.fname = sname1;
io.ntcreatex.in.open_disposition = 0;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_SHARING_VIOLATION);
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_SHARING_VIOLATION);
done:
if (fnum1 != -1) smbcli_close(cli->tree, fnum1);
if (fnum2 != -1) smbcli_close(cli->tree, fnum2);
status = smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
* Test FILE_SHARE_DELETE on streams
*
* A stream opened with !FILE_SHARE_DELETE prevents the main file to be opened
* with SEC_STD_DELETE.
*
* The main file opened with !FILE_SHARE_DELETE does *not* prevent a stream to
* be opened with SEC_STD_DELETE.
*
* A stream held open with FILE_SHARE_DELETE allows the file to be
* deleted. After the main file is deleted, access to the open file descriptor
* still works, but all name-based access to both the main file as well as the
* stream is denied with DELETE ending.
*
* This means, an open of the main file with SEC_STD_DELETE should walk all
* streams and also open them with SEC_STD_DELETE. If any of these opens gives
* SHARING_VIOLATION, the main open fails.
*
* Closing the main file after delete_on_close has been set does not really
* unlink it but leaves the corresponding share mode entry with
* delete_on_close being set around until all streams are closed.
*
* Opening a stream must also look at the main file's share mode entry, look
* at the delete_on_close bit and potentially return DELETE_PENDING.
*/
static bool test_stream_delete(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream.txt";
const char *sname1;
bool ret = true;
int fnum = -1;
uint8_t buf[9];
ssize_t retsize;
union smb_fileinfo finfo;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname, "Stream One");
printf("(%s) opening non-existent file stream\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
retsize = smbcli_write(cli->tree, fnum, 0, "test data", 0, 9);
CHECK_VALUE(retsize, 9);
/*
* One stream opened without FILE_SHARE_DELETE prevents the main file
* to be deleted or even opened with DELETE access
*/
status = smbcli_unlink(cli->tree, fname);
CHECK_STATUS(status, NT_STATUS_SHARING_VIOLATION);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.fname = fname;
io.ntcreatex.in.access_mask = SEC_STD_DELETE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_SHARING_VIOLATION);
smbcli_close(cli->tree, fnum);
/*
* ... but unlink works if a stream is opened with FILE_SHARE_DELETE
*/
io.ntcreatex.in.fname = sname1;
io.ntcreatex.in.access_mask = SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA;
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_DELETE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
status = smbcli_unlink(cli->tree, fname);
CHECK_STATUS(status, NT_STATUS_OK);
/*
* file access still works on the stream while the main file is closed
*/
retsize = smbcli_read(cli->tree, fnum, buf, 0, 9);
CHECK_VALUE(retsize, 9);
finfo.generic.level = RAW_FILEINFO_STANDARD;
finfo.generic.in.file.path = fname;
/*
* name-based access to both the main file and the stream does not
* work anymore but gives DELETE_PENDING
*/
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_DELETE_PENDING);
/*
* older S3 doesn't do this
*/
finfo.generic.in.file.path = sname1;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_DELETE_PENDING);
/*
* fd-based qfileinfo on the stream still works, the stream does not
* have the delete-on-close bit set. This could mean that open on the
* stream first opens the main file
*/
finfo.all_info.level = RAW_FILEINFO_ALL_INFO;
finfo.all_info.in.file.fnum = fnum;
status = smb_raw_fileinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
/* w2k and w2k3 return 0 and w2k8 returns 1 */
if (TARGET_IS_WINXP(tctx) || TARGET_IS_W2K3(tctx) ||
TARGET_IS_SAMBA3(tctx)) {
CHECK_VALUE(finfo.all_info.out.delete_pending, 0);
} else {
CHECK_VALUE(finfo.all_info.out.delete_pending, 1);
}
smbcli_close(cli->tree, fnum);
/*
* After closing the stream the file is really gone.
*/
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_NOT_FOUND);
io.ntcreatex.in.access_mask = SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA
|SEC_STD_DELETE;
io.ntcreatex.in.create_options = NTCREATEX_OPTIONS_DELETE_ON_CLOSE;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, fnum);
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
done:
smbcli_close(cli->tree, fnum);
smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
test stream names
*/
static bool test_stream_names(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
union smb_fileinfo info;
union smb_fileinfo finfo;
union smb_fileinfo stinfo;
union smb_setfileinfo sinfo;
const char *fname = BASEDIR "\\stream_names.txt";
const char *sname1, *sname1b, *sname1c, *sname1d;
const char *sname2, *snamew, *snamew2;
const char *snamer1, *snamer2;
bool ret = true;
int fnum1 = -1;
int fnum2 = -1;
int fnum3 = -1;
int i;
const char *four[4] = {
"::$DATA",
":\x05Stream\n One:$DATA",
":MStream Two:$DATA",
":?Stream*:$DATA"
};
const char *five1[5] = {
"::$DATA",
":\x05Stream\n One:$DATA",
":BeforeRename:$DATA",
":MStream Two:$DATA",
":?Stream*:$DATA"
};
const char *five2[5] = {
"::$DATA",
":\x05Stream\n One:$DATA",
":AfterRename:$DATA",
":MStream Two:$DATA",
":?Stream*:$DATA"
};
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname, "\x05Stream\n One");
sname1b = talloc_asprintf(tctx, "%s:", sname1);
sname1c = talloc_asprintf(tctx, "%s:$FOO", sname1);
sname1d = talloc_asprintf(tctx, "%s:?D*a", sname1);
sname2 = talloc_asprintf(tctx, "%s:%s:$DaTa", fname, "MStream Two");
snamew = talloc_asprintf(tctx, "%s:%s:$DATA", fname, "?Stream*");
snamew2 = talloc_asprintf(tctx, "%s\\stream*:%s:$DATA", BASEDIR, "?Stream*");
snamer1 = talloc_asprintf(tctx, "%s:%s:$DATA", fname, "BeforeRename");
snamer2 = talloc_asprintf(tctx, "%s:%s:$DATA", fname, "AfterRename");
printf("(%s) testing stream names\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access =
NTCREATEX_SHARE_ACCESS_READ |
NTCREATEX_SHARE_ACCESS_WRITE;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum1 = io.ntcreatex.out.file.fnum;
torture_comment(tctx, "Adding two EAs to base file\n");
ZERO_STRUCT(sinfo);
sinfo.generic.level = RAW_SFILEINFO_EA_SET;
sinfo.generic.in.file.fnum = fnum1;
sinfo.ea_set.in.num_eas = 2;
sinfo.ea_set.in.eas = talloc_array(tctx, struct ea_struct, 2);
sinfo.ea_set.in.eas[0].flags = 0;
sinfo.ea_set.in.eas[0].name.s = "EAONE";
sinfo.ea_set.in.eas[0].value = data_blob_string_const("VALUE1");
sinfo.ea_set.in.eas[1].flags = 0;
sinfo.ea_set.in.eas[1].name.s = "SECONDEA";
sinfo.ea_set.in.eas[1].value = data_blob_string_const("ValueTwo");
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
/*
* Make sure the create time of the streams are different from the
* base file.
*/
sleep(2);
smbcli_close(cli->tree, fnum1);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access =
NTCREATEX_SHARE_ACCESS_READ |
NTCREATEX_SHARE_ACCESS_WRITE;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum1 = io.ntcreatex.out.file.fnum;
torture_comment(tctx, "Adding one EAs to first stream file\n");
ZERO_STRUCT(sinfo);
sinfo.generic.level = RAW_SFILEINFO_EA_SET;
sinfo.generic.in.file.fnum = fnum1;
sinfo.ea_set.in.num_eas = 1;
sinfo.ea_set.in.eas = talloc_array(tctx, struct ea_struct, 1);
sinfo.ea_set.in.eas[0].flags = 0;
sinfo.ea_set.in.eas[0].name.s = "STREAMEA";
sinfo.ea_set.in.eas[0].value = data_blob_string_const("EA_VALUE1");
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
status = torture_check_ea(cli, sname1, "STREAMEA", "EA_VALUE1");
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
ZERO_STRUCT(info);
info.generic.level = RAW_FILEINFO_ALL_EAS;
info.all_eas.in.file.path = sname1;
status = smb_raw_pathinfo(cli->tree, tctx, &info);
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
/*
* A different stream does not give a sharing violation
*/
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum2 = io.ntcreatex.out.file.fnum;
/*
* ... whereas the same stream does with unchanged access/share_access
* flags
*/
io.ntcreatex.in.fname = sname1;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_SUPERSEDE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_SHARING_VIOLATION);
io.ntcreatex.in.fname = sname1b;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_INVALID);
io.ntcreatex.in.fname = sname1c;
status = smb_raw_open(cli->tree, tctx, &io);
if (NT_STATUS_EQUAL(status, NT_STATUS_INVALID_PARAMETER)) {
/* w2k returns INVALID_PARAMETER */
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
} else {
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_INVALID);
}
io.ntcreatex.in.fname = sname1d;
status = smb_raw_open(cli->tree, tctx, &io);
if (NT_STATUS_EQUAL(status, NT_STATUS_INVALID_PARAMETER)) {
/* w2k returns INVALID_PARAMETER */
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
} else {
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_INVALID);
}
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_SHARING_VIOLATION);
io.ntcreatex.in.fname = snamew;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum3 = io.ntcreatex.out.file.fnum;
io.ntcreatex.in.fname = snamew2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_INVALID);
ret &= check_stream_list(tctx, cli, fname, 4, four);
smbcli_close(cli->tree, fnum1);
smbcli_close(cli->tree, fnum2);
smbcli_close(cli->tree, fnum3);
finfo.generic.level = RAW_FILEINFO_ALL_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
ret &= check_stream_list(tctx, cli, fname, 4, four);
for (i=0; i < 4; i++) {
NTTIME write_time;
uint64_t stream_size;
char *path = talloc_asprintf(tctx, "%s%s",
fname, four[i]);
char *rpath = talloc_strdup(path, path);
char *p = strrchr(rpath, ':');
/* eat :$DATA */
*p = 0;
p--;
if (*p == ':') {
/* eat ::$DATA */
*p = 0;
}
printf("(%s): i[%u][%s]\n", __location__, i, path);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.access_mask = SEC_FILE_READ_ATTRIBUTE |
SEC_FILE_WRITE_ATTRIBUTE |
SEC_RIGHTS_FILE_ALL;
io.ntcreatex.in.fname = path;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum1 = io.ntcreatex.out.file.fnum;
finfo.generic.level = RAW_FILEINFO_ALL_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
stinfo.generic.level = RAW_FILEINFO_ALL_INFO;
stinfo.generic.in.file.fnum = fnum1;
status = smb_raw_fileinfo(cli->tree, tctx, &stinfo);
CHECK_STATUS(status, NT_STATUS_OK);
if (!torture_setting_bool(tctx, "samba3", false)) {
CHECK_NTTIME(stinfo.all_info.out.create_time,
finfo.all_info.out.create_time);
CHECK_NTTIME(stinfo.all_info.out.access_time,
finfo.all_info.out.access_time);
CHECK_NTTIME(stinfo.all_info.out.write_time,
finfo.all_info.out.write_time);
CHECK_NTTIME(stinfo.all_info.out.change_time,
finfo.all_info.out.change_time);
}
CHECK_VALUE(stinfo.all_info.out.attrib,
finfo.all_info.out.attrib);
CHECK_VALUE(stinfo.all_info.out.size,
finfo.all_info.out.size);
CHECK_VALUE(stinfo.all_info.out.delete_pending,
finfo.all_info.out.delete_pending);
CHECK_VALUE(stinfo.all_info.out.directory,
finfo.all_info.out.directory);
CHECK_VALUE(stinfo.all_info.out.ea_size,
finfo.all_info.out.ea_size);
stinfo.generic.level = RAW_FILEINFO_NAME_INFO;
stinfo.generic.in.file.fnum = fnum1;
status = smb_raw_fileinfo(cli->tree, tctx, &stinfo);
CHECK_STATUS(status, NT_STATUS_OK);
if (!torture_setting_bool(tctx, "samba3", false)) {
CHECK_STR(stinfo.name_info.out.fname.s, rpath);
}
write_time = finfo.all_info.out.write_time;
write_time += i*1000000;
write_time /= 1000000;
write_time *= 1000000;
ZERO_STRUCT(sinfo);
sinfo.basic_info.level = RAW_SFILEINFO_BASIC_INFO;
sinfo.basic_info.in.file.fnum = fnum1;
sinfo.basic_info.in.write_time = write_time;
sinfo.basic_info.in.attrib = stinfo.all_info.out.attrib;
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
stream_size = i*8192;
ZERO_STRUCT(sinfo);
sinfo.end_of_file_info.level = RAW_SFILEINFO_END_OF_FILE_INFO;
sinfo.end_of_file_info.in.file.fnum = fnum1;
sinfo.end_of_file_info.in.size = stream_size;
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
stinfo.generic.level = RAW_FILEINFO_ALL_INFO;
stinfo.generic.in.file.fnum = fnum1;
status = smb_raw_fileinfo(cli->tree, tctx, &stinfo);
CHECK_STATUS(status, NT_STATUS_OK);
if (!torture_setting_bool(tctx, "samba3", false)) {
CHECK_NTTIME(stinfo.all_info.out.write_time,
write_time);
CHECK_VALUE(stinfo.all_info.out.attrib,
finfo.all_info.out.attrib);
}
CHECK_VALUE(stinfo.all_info.out.size,
stream_size);
CHECK_VALUE(stinfo.all_info.out.delete_pending,
finfo.all_info.out.delete_pending);
CHECK_VALUE(stinfo.all_info.out.directory,
finfo.all_info.out.directory);
CHECK_VALUE(stinfo.all_info.out.ea_size,
finfo.all_info.out.ea_size);
ret &= check_stream_list(tctx, cli, fname, 4, four);
smbcli_close(cli->tree, fnum1);
talloc_free(path);
}
printf("(%s): testing stream renames\n", __location__);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.access_mask = SEC_FILE_READ_ATTRIBUTE |
SEC_FILE_WRITE_ATTRIBUTE |
SEC_RIGHTS_FILE_ALL;
io.ntcreatex.in.fname = snamer1;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum1 = io.ntcreatex.out.file.fnum;
ret &= check_stream_list(tctx, cli, fname, 5, five1);
ZERO_STRUCT(sinfo);
sinfo.rename_information.level = RAW_SFILEINFO_RENAME_INFORMATION;
sinfo.rename_information.in.file.fnum = fnum1;
sinfo.rename_information.in.overwrite = true;
sinfo.rename_information.in.root_fid = 0;
sinfo.rename_information.in.new_name = ":AfterRename:$DATA";
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
ret &= check_stream_list(tctx, cli, fname, 5, five2);
ZERO_STRUCT(sinfo);
sinfo.rename_information.level = RAW_SFILEINFO_RENAME_INFORMATION;
sinfo.rename_information.in.file.fnum = fnum1;
sinfo.rename_information.in.overwrite = false;
sinfo.rename_information.in.root_fid = 0;
sinfo.rename_information.in.new_name = ":MStream Two:$DATA";
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_COLLISION);
ret &= check_stream_list(tctx, cli, fname, 5, five2);
ZERO_STRUCT(sinfo);
sinfo.rename_information.level = RAW_SFILEINFO_RENAME_INFORMATION;
sinfo.rename_information.in.file.fnum = fnum1;
sinfo.rename_information.in.overwrite = true;
sinfo.rename_information.in.root_fid = 0;
sinfo.rename_information.in.new_name = ":MStream Two:$DATA";
status = smb_raw_setfileinfo(cli->tree, &sinfo);
if (torture_setting_bool(tctx, "samba4", false) ||
torture_setting_bool(tctx, "samba3", false)) {
/* why should this rename be considered invalid?? */
CHECK_STATUS(status, NT_STATUS_OK);
ret &= check_stream_list(tctx, cli, fname, 4, four);
} else {
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
ret &= check_stream_list(tctx, cli, fname, 5, five2);
}
/* TODO: we need to test more rename combinations */
done:
if (fnum1 != -1) smbcli_close(cli->tree, fnum1);
if (fnum2 != -1) smbcli_close(cli->tree, fnum2);
if (fnum3 != -1) smbcli_close(cli->tree, fnum3);
status = smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
test stream names
*/
static bool test_stream_names2(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream_names2.txt";
bool ret = true;
int fnum1 = -1;
uint8_t i;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
printf("(%s) testing stream names\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum1 = io.ntcreatex.out.file.fnum;
for (i=0x01; i < 0x7F; i++) {
char *path = talloc_asprintf(tctx, "%s:Stream%c0x%02X:$DATA",
fname, i, i);
NTSTATUS expected;
switch (i) {
case '/':/*0x2F*/
case ':':/*0x3A*/
case '\\':/*0x5C*/
expected = NT_STATUS_OBJECT_NAME_INVALID;
break;
default:
expected = NT_STATUS_OBJECT_NAME_NOT_FOUND;
break;
}
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.fname = path;
status = smb_raw_open(cli->tree, tctx, &io);
if (!NT_STATUS_EQUAL(status, expected)) {
printf("(%s) %s:Stream%c0x%02X:$DATA%s => expected[%s]\n",
__location__, fname, isprint(i)?(char)i:' ', i,
isprint(i)?"":" (not printable)",
nt_errstr(expected));
}
CHECK_STATUS(status, expected);
talloc_free(path);
}
done:
if (fnum1 != -1) smbcli_close(cli->tree, fnum1);
status = smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
#define CHECK_CALL_FNUM(call, rightstatus) do { \
check_fnum = true; \
call_name = #call; \
sfinfo.generic.level = RAW_SFILEINFO_ ## call; \
sfinfo.generic.in.file.fnum = fnum; \
status = smb_raw_setfileinfo(cli->tree, &sfinfo); \
if (!NT_STATUS_EQUAL(status, rightstatus)) { \
printf("(%s) %s - %s (should be %s)\n", __location__, #call, \
nt_errstr(status), nt_errstr(rightstatus)); \
ret = false; \
} \
finfo1.generic.level = RAW_FILEINFO_ALL_INFO; \
finfo1.generic.in.file.fnum = fnum; \
status2 = smb_raw_fileinfo(cli->tree, tctx, &finfo1); \
if (!NT_STATUS_IS_OK(status2)) { \
printf("(%s) %s pathinfo - %s\n", __location__, #call, nt_errstr(status)); \
ret = false; \
}} while (0)
/*
test stream renames
*/
static bool test_stream_rename(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status, status2;
union smb_open io;
const char *fname = BASEDIR "\\stream_rename.txt";
const char *sname1, *sname2;
union smb_fileinfo finfo1;
union smb_setfileinfo sfinfo;
bool ret = true;
int fnum = -1;
bool check_fnum;
const char *call_name;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname, "Stream One");
sname2 = talloc_asprintf(tctx, "%s:%s:$DaTa", fname, "Second Stream");
printf("(%s) testing stream renames\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_READ_ATTRIBUTE |
SEC_FILE_WRITE_ATTRIBUTE |
SEC_RIGHTS_FILE_ALL;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_READ | NTCREATEX_SHARE_ACCESS_WRITE | NTCREATEX_SHARE_ACCESS_DELETE;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
/* Create two streams. */
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
if (fnum != -1) smbcli_close(cli->tree, fnum);
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
if (fnum != -1) smbcli_close(cli->tree, fnum);
/*
* Open the second stream.
*/
io.ntcreatex.in.access_mask = SEC_STD_DELETE;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN_IF;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
/*
* Now rename the second stream onto the first.
*/
ZERO_STRUCT(sfinfo);
sfinfo.rename_information.in.overwrite = 1;
sfinfo.rename_information.in.root_fid = 0;
sfinfo.rename_information.in.new_name = ":Stream One";
CHECK_CALL_FNUM(RENAME_INFORMATION, NT_STATUS_OK);
done:
if (fnum != -1) smbcli_close(cli->tree, fnum);
status = smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
static bool test_stream_rename2(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
const char *fname1 = BASEDIR "\\stream.txt";
const char *fname2 = BASEDIR "\\stream2.txt";
const char *stream_name1 = ":Stream One:$DATA";
const char *stream_name2 = ":Stream Two:$DATA";
const char *stream_name_default = "::$DATA";
const char *sname1;
const char *sname2;
bool ret = true;
int fnum = -1;
union smb_setfileinfo sinfo;
union smb_rename rio;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname1, "Stream One");
sname2 = talloc_asprintf(tctx, "%s:%s", fname1, "Stream Two");
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = (SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA|
SEC_STD_DELETE|SEC_FILE_APPEND_DATA|SEC_STD_READ_CONTROL);
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = (NTCREATEX_SHARE_ACCESS_READ |
NTCREATEX_SHARE_ACCESS_WRITE |
NTCREATEX_SHARE_ACCESS_DELETE);
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
/* Open/create new stream. */
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
/*
* Check raw rename with :.
*/
printf("(%s) Checking NTRENAME of a stream using :\n",
__location__);
rio.generic.level = RAW_RENAME_NTRENAME;
rio.ntrename.in.old_name = sname1;
rio.ntrename.in.new_name = sname2;
rio.ntrename.in.attrib = 0;
rio.ntrename.in.cluster_size = 0;
rio.ntrename.in.flags = RENAME_FLAG_RENAME;
status = smb_raw_rename(cli->tree, &rio);
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
/*
* Check raw rename to the default stream using :.
*/
printf("(%s) Checking NTRENAME to default stream using :\n",
__location__);
rio.ntrename.in.new_name = stream_name_default;
status = smb_raw_rename(cli->tree, &rio);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_COLLISION);
/*
* Check raw rename using :.
*/
printf("(%s) Checking NTRENAME of a stream using :\n",
__location__);
rio.ntrename.in.new_name = stream_name2;
status = smb_raw_rename(cli->tree, &rio);
CHECK_STATUS(status, NT_STATUS_OK);
/*
* Check raw rename of a stream to a file.
*/
printf("(%s) Checking NTRENAME of a stream to a file\n",
__location__);
rio.ntrename.in.old_name = sname2;
rio.ntrename.in.new_name = fname2;
status = smb_raw_rename(cli->tree, &rio);
CHECK_STATUS(status, NT_STATUS_INVALID_PARAMETER);
/*
* Check raw rename of a file to a stream.
*/
printf("(%s) Checking NTRENAME of a file to a stream\n",
__location__);
/* Create the file. */
io.ntcreatex.in.fname = fname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
/* Try the rename. */
rio.ntrename.in.old_name = fname2;
rio.ntrename.in.new_name = sname1;
status = smb_raw_rename(cli->tree, &rio);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_INVALID);
/*
* Reopen the stream for trans2 renames.
*/
io.ntcreatex.in.fname = sname2;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
/*
* Check trans2 rename of a stream using :.
*/
printf("(%s) Checking trans2 rename of a stream using :\n",
__location__);
ZERO_STRUCT(sinfo);
sinfo.rename_information.level = RAW_SFILEINFO_RENAME_INFORMATION;
sinfo.rename_information.in.file.fnum = fnum;
sinfo.rename_information.in.overwrite = 1;
sinfo.rename_information.in.root_fid = 0;
sinfo.rename_information.in.new_name = stream_name1;
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
/*
* Check trans2 rename of an overwriting stream using :.
*/
printf("(%s) Checking trans2 rename of an overwriting stream using "
":\n", __location__);
/* Create second stream. */
io.ntcreatex.in.fname = sname2;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
/* Rename the first stream onto the second. */
sinfo.rename_information.in.file.fnum = fnum;
sinfo.rename_information.in.new_name = stream_name2;
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, fnum);
/*
* Reopen the stream with the new name.
*/
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
/*
* Check trans2 rename of a stream using :.
*/
printf("(%s) Checking trans2 rename of a stream using "
":\n", __location__);
sinfo.rename_information.in.file.fnum = fnum;
sinfo.rename_information.in.new_name = sname1;
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_NOT_SUPPORTED);
/*
* Samba3 doesn't currently support renaming a stream to the default
* stream. This test does pass on windows.
*/
if (torture_setting_bool(tctx, "samba3", false) ||
torture_setting_bool(tctx, "samba4", false)) {
goto done;
}
/*
* Check trans2 rename to the default stream using :.
*/
printf("(%s) Checking trans2 rename to defaualt stream using "
":\n", __location__);
sinfo.rename_information.in.file.fnum = fnum;
sinfo.rename_information.in.new_name = stream_name_default;
status = smb_raw_setfileinfo(cli->tree, &sinfo);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, fnum);
done:
smbcli_close(cli->tree, fnum);
status = smbcli_unlink(cli->tree, fname1);
status = smbcli_unlink(cli->tree, fname2);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
test stream renames
*/
static bool test_stream_rename3(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status, status2;
union smb_open io;
const char *fname = BASEDIR "\\stream_rename.txt";
const char *sname1, *sname2;
union smb_fileinfo finfo1;
union smb_setfileinfo sfinfo;
bool ret = true;
int fnum = -1;
int fnum2 = -1;
bool check_fnum;
const char *call_name;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
sname1 = talloc_asprintf(tctx, "%s:%s", fname, "MStream Two:$DATA");
sname2 = talloc_asprintf(tctx, "%s:%s:$DaTa", fname, "Second Stream");
printf("(%s) testing stream renames\n", __location__);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_READ_ATTRIBUTE |
SEC_FILE_WRITE_ATTRIBUTE |
SEC_RIGHTS_FILE_ALL;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = NTCREATEX_SHARE_ACCESS_READ |
NTCREATEX_SHARE_ACCESS_WRITE | NTCREATEX_SHARE_ACCESS_DELETE;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = sname1;
/* Create two streams. */
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
if (fnum != -1) smbcli_close(cli->tree, fnum);
io.ntcreatex.in.fname = sname2;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
if (fnum != -1) smbcli_close(cli->tree, fnum);
/* open the second stream. */
io.ntcreatex.in.access_mask = SEC_STD_DELETE;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN_IF;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
/* Keep a handle to the first stream open. */
io.ntcreatex.in.fname = sname1;
io.ntcreatex.in.access_mask = SEC_STD_DELETE;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN_IF;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum2 = io.ntcreatex.out.file.fnum;
ZERO_STRUCT(sfinfo);
sfinfo.rename_information.in.overwrite = 1;
sfinfo.rename_information.in.root_fid = 0;
sfinfo.rename_information.in.new_name = ":MStream Two:$DATA";
if (torture_setting_bool(tctx, "samba4", false) ||
torture_setting_bool(tctx, "samba3", false)) {
CHECK_CALL_FNUM(RENAME_INFORMATION, NT_STATUS_OK);
} else {
CHECK_CALL_FNUM(RENAME_INFORMATION,
NT_STATUS_INVALID_PARAMETER);
}
done:
if (fnum != -1) smbcli_close(cli->tree, fnum);
if (fnum2 != -1) smbcli_close(cli->tree, fnum2);
status = smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
static bool create_file_with_stream(struct torture_context *tctx,
struct smbcli_state *cli,
const char *stream)
{
NTSTATUS status;
bool ret = true;
union smb_open io;
/* Create a file with a stream */
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = (SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA|
SEC_FILE_APPEND_DATA|SEC_STD_READ_CONTROL);
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_CREATE;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = stream;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
done:
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
return ret;
}
/* Test how streams interact with create dispositions */
static bool test_stream_create_disposition(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream.txt";
const char *stream = "Stream One:$DATA";
const char *fname_stream;
const char *default_stream_name = "::$DATA";
const char *stream_list[2];
bool ret = false;
int fnum = -1;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
fname_stream = talloc_asprintf(tctx, "%s:%s", fname, stream);
stream_list[0] = talloc_asprintf(tctx, ":%s", stream);
stream_list[1] = default_stream_name;
if (!create_file_with_stream(tctx, cli, fname_stream)) {
goto done;
}
/* Open the base file with OPEN */
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = (SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA|
SEC_FILE_APPEND_DATA|SEC_STD_READ_CONTROL);
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname;
/*
* check ntcreatex open: sanity check
*/
printf("(%s) Checking ntcreatex disp: open\n", __location__);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
if (!check_stream_list(tctx, cli, fname, 2, stream_list)) {
goto done;
}
/*
* check ntcreatex overwrite
*/
printf("(%s) Checking ntcreatex disp: overwrite\n", __location__);
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OVERWRITE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
if (!check_stream_list(tctx, cli, fname, 1, &default_stream_name)) {
goto done;
}
/*
* check ntcreatex overwrite_if
*/
printf("(%s) Checking ntcreatex disp: overwrite_if\n", __location__);
smbcli_unlink(cli->tree, fname);
if (!create_file_with_stream(tctx, cli, fname_stream)) {
goto done;
}
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OVERWRITE_IF;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
if (!check_stream_list(tctx, cli, fname, 1, &default_stream_name)) {
goto done;
}
/*
* check ntcreatex supersede
*/
printf("(%s) Checking ntcreatex disp: supersede\n", __location__);
smbcli_unlink(cli->tree, fname);
if (!create_file_with_stream(tctx, cli, fname_stream)) {
goto done;
}
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_SUPERSEDE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
if (!check_stream_list(tctx, cli, fname, 1, &default_stream_name)) {
goto done;
}
/*
* check ntcreatex overwrite_if on a stream.
*/
printf("(%s) Checking ntcreatex disp: overwrite_if on stream\n",
__location__);
smbcli_unlink(cli->tree, fname);
if (!create_file_with_stream(tctx, cli, fname_stream)) {
goto done;
}
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OVERWRITE_IF;
io.ntcreatex.in.fname = fname_stream;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.ntcreatex.out.file.fnum);
if (!check_stream_list(tctx, cli, fname, 2, stream_list)) {
goto done;
}
/*
* check openx overwrite_if
*/
printf("(%s) Checking openx disp: overwrite_if\n", __location__);
smbcli_unlink(cli->tree, fname);
if (!create_file_with_stream(tctx, cli, fname_stream)) {
goto done;
}
io.openx.level = RAW_OPEN_OPENX;
io.openx.in.flags = OPENX_FLAGS_ADDITIONAL_INFO;
io.openx.in.open_mode = OPENX_MODE_ACCESS_RDWR | OPEN_FLAGS_DENY_NONE;
io.openx.in.search_attrs = 0;
io.openx.in.file_attrs = 0;
io.openx.in.write_time = 0;
io.openx.in.size = 1024*1024;
io.openx.in.timeout = 0;
io.openx.in.fname = fname;
io.openx.in.open_func = OPENX_OPEN_FUNC_TRUNC | OPENX_OPEN_FUNC_CREATE;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, io.openx.out.file.fnum);
if (!check_stream_list(tctx, cli, fname, 1, &default_stream_name)) {
goto done;
}
ret = true;
done:
smbcli_close(cli->tree, fnum);
smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
#if 0
/* Test streaminfo with enough streams on a file to fill up the buffer. */
static bool test_stream_large_streaminfo(struct torture_context *tctx,
struct smbcli_state *cli)
{
#define LONG_STREAM_SIZE 2
char *lstream_name;
const char *fname = BASEDIR "\\stream.txt";
const char *fname_stream;
NTSTATUS status;
bool ret = true;
int i;
union smb_fileinfo finfo;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
lstream_name = talloc_array(tctx, char, LONG_STREAM_SIZE);
for (i = 0; i < LONG_STREAM_SIZE - 1; i++) {
lstream_name[i] = (char)('a' + i%26);
}
lstream_name[LONG_STREAM_SIZE - 1] = '\0';
torture_comment(tctx, "(%s) Creating a file with a lot of streams\n", __location__);
for (i = 0; i < 10000; i++) {
fname_stream = talloc_asprintf(tctx, "%s:%s%d", fname,
lstream_name, i);
ret = create_file_with_stream(tctx, cli, fname_stream);
if (!ret) {
goto done;
}
}
finfo.generic.level = RAW_FILEINFO_STREAM_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, STATUS_BUFFER_OVERFLOW);
done:
smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
#endif
/* Test the effect of setting attributes on a stream. */
static bool test_stream_attributes(struct torture_context *tctx,
struct smbcli_state *cli)
{
bool ret = true;
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream_attr.txt";
const char *stream = "Stream One:$DATA";
const char *fname_stream;
int fnum = -1;
union smb_fileinfo finfo;
union smb_setfileinfo sfinfo;
time_t basetime = (time(NULL) - 86400) & ~1;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
torture_comment(tctx, "(%s) testing attribute setting on stream\n", __location__);
fname_stream = talloc_asprintf(tctx, "%s:%s", fname, stream);
/* Create a file with a stream with attribute FILE_ATTRIBUTE_ARCHIVE. */
ret = create_file_with_stream(tctx, cli, fname_stream);
if (!ret) {
goto done;
}
ZERO_STRUCT(finfo);
finfo.generic.level = RAW_FILEINFO_BASIC_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
torture_assert_int_equal_goto(tctx, finfo.all_info.out.attrib & ~FILE_ATTRIBUTE_NONINDEXED, FILE_ATTRIBUTE_ARCHIVE, ret, done, "attrib incorrect");
/* Now open the stream name. */
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = (SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA|
SEC_FILE_APPEND_DATA|SEC_STD_READ_CONTROL|SEC_FILE_WRITE_ATTRIBUTE);
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = 0;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN_IF;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname_stream;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
/* Change the attributes + time on the stream fnum. */
ZERO_STRUCT(sfinfo);
sfinfo.basic_info.in.attrib = FILE_ATTRIBUTE_READONLY;
unix_to_nt_time(&sfinfo.basic_info.in.write_time, basetime);
sfinfo.generic.level = RAW_SFILEINFO_BASIC_INFORMATION;
sfinfo.generic.in.file.fnum = fnum;
status = smb_raw_setfileinfo(cli->tree, &sfinfo);
torture_assert_ntstatus_equal_goto(tctx, status, NT_STATUS_OK, ret, done, "smb_raw_setfileinfo failed");
smbcli_close(cli->tree, fnum);
fnum = -1;
ZERO_STRUCT(finfo);
finfo.generic.level = RAW_FILEINFO_ALL_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
torture_assert_ntstatus_equal_goto(tctx, status, NT_STATUS_OK, ret, done, "smb_raw_pathinfo failed");
torture_assert_int_equal_goto(tctx, finfo.all_info.out.attrib & ~FILE_ATTRIBUTE_NONINDEXED, FILE_ATTRIBUTE_READONLY, ret, done, "attrib incorrect");
torture_assert_int_equal_goto(tctx, nt_time_to_unix(finfo.all_info.out.write_time), basetime, ret, done, "time incorrect");
done:
if (fnum != -1) {
smbcli_close(cli->tree, fnum);
}
smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/**
* A rough approximation of how a windows client creates the streams for use
* in the summary tab.
*/
static bool test_stream_summary_tab(struct torture_context *tctx,
struct smbcli_state *cli)
{
bool ret = true;
NTSTATUS status;
union smb_open io;
const char *fname = BASEDIR "\\stream_summary.txt";
const char *stream = ":\005SummaryInformation:$DATA";
const char *fname_stream = NULL;
const char *tmp_stream = ":Updt_\005SummaryInformation:$DATA";
const char *fname_tmp_stream = NULL;
int fnum = -1;
union smb_fileinfo finfo;
union smb_rename rio;
ssize_t retsize;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR), "Failed to setup up test directory: " BASEDIR);
fname_stream = talloc_asprintf(tctx, "%s%s", fname, stream);
fname_tmp_stream = talloc_asprintf(tctx, "%s%s", fname,
tmp_stream);
/* Create summary info stream */
ret = create_file_with_stream(tctx, cli, fname_stream);
if (!ret) {
goto done;
}
/* Create summary info tmp update stream */
ret = create_file_with_stream(tctx, cli, fname_tmp_stream);
if (!ret) {
goto done;
}
/* Open tmp stream and write to it */
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = FILE_ATTRIBUTE_NORMAL;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname_tmp_stream;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
retsize = smbcli_write(cli->tree, fnum, 0, "test data", 0, 9);
CHECK_VALUE(retsize, 9);
/* close the tmp stream. */
smbcli_close(cli->tree, fnum);
fnum = -1;
/* Delete the current stream */
smbcli_unlink(cli->tree, fname_stream);
/* Do the rename. */
rio.generic.level = RAW_RENAME_RENAME;
rio.rename.in.pattern1 = fname_tmp_stream;
rio.rename.in.pattern2 = stream;
rio.rename.in.attrib = FILE_ATTRIBUTE_SYSTEM |
FILE_ATTRIBUTE_HIDDEN | FILE_ATTRIBUTE_DIRECTORY;
status = smb_raw_rename(cli->tree, &rio);
CHECK_STATUS(status, NT_STATUS_OK);
/* Try to open the tmp stream that we just renamed away. */
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OBJECT_NAME_NOT_FOUND);
/* Query the base file to make sure it's still there. */
finfo.generic.level = RAW_FILEINFO_BASIC_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
done:
if (fnum != -1) {
smbcli_close(cli->tree, fnum);
}
smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/* Test how streams interact with base file permissions */
/* Regression test for bug:
https://bugzilla.samba.org/show_bug.cgi?id=10229
bug #10229 - No access check verification on stream files.
*/
static bool test_stream_permissions(struct torture_context *tctx,
struct smbcli_state *cli)
{
NTSTATUS status;
bool ret = true;
union smb_open io;
const char *fname = BASEDIR "\\stream_permissions.txt";
const char *stream = "Stream One:$DATA";
const char *fname_stream;
union smb_fileinfo finfo;
union smb_setfileinfo sfinfo;
int fnum = -1;
union smb_fileinfo q;
union smb_setfileinfo set;
struct security_ace ace;
struct security_descriptor *sd;
torture_assert(tctx, torture_setup_dir(cli, BASEDIR),
"Failed to setup up test directory: " BASEDIR);
torture_comment(tctx, "(%s) testing permissions on streams\n", __location__);
fname_stream = talloc_asprintf(tctx, "%s:%s", fname, stream);
/* Create a file with a stream with attribute FILE_ATTRIBUTE_ARCHIVE. */
ret = create_file_with_stream(tctx, cli, fname_stream);
if (!ret) {
goto done;
}
ZERO_STRUCT(finfo);
finfo.generic.level = RAW_FILEINFO_BASIC_INFO;
finfo.generic.in.file.path = fname;
status = smb_raw_pathinfo(cli->tree, tctx, &finfo);
CHECK_STATUS(status, NT_STATUS_OK);
torture_assert_int_equal_goto(tctx,
finfo.all_info.out.attrib & ~FILE_ATTRIBUTE_NONINDEXED,
FILE_ATTRIBUTE_ARCHIVE, ret, done, "attrib incorrect");
/* Change the attributes on the base file name. */
ZERO_STRUCT(sfinfo);
sfinfo.generic.level = RAW_SFILEINFO_SETATTR;
sfinfo.generic.in.file.path = fname;
sfinfo.setattr.in.attrib = FILE_ATTRIBUTE_READONLY;
status = smb_raw_setpathinfo(cli->tree, &sfinfo);
CHECK_STATUS(status, NT_STATUS_OK);
/* Try and open the stream name for WRITE_DATA. Should
fail with ACCESS_DENIED. */
ZERO_STRUCT(io);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = 0;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname_stream;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_ACCESS_DENIED);
/* Change the attributes on the base file back. */
ZERO_STRUCT(sfinfo);
sfinfo.generic.level = RAW_SFILEINFO_SETATTR;
sfinfo.generic.in.file.path = fname;
sfinfo.setattr.in.attrib = 0;
status = smb_raw_setpathinfo(cli->tree, &sfinfo);
CHECK_STATUS(status, NT_STATUS_OK);
/* Re-open the file name. */
ZERO_STRUCT(io);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = (SEC_FILE_READ_DATA|SEC_FILE_WRITE_DATA|
SEC_STD_READ_CONTROL|SEC_STD_WRITE_DAC|
SEC_FILE_WRITE_ATTRIBUTE);
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = 0;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_OK);
fnum = io.ntcreatex.out.file.fnum;
/* Get the existing security descriptor. */
ZERO_STRUCT(q);
q.query_secdesc.level = RAW_FILEINFO_SEC_DESC;
q.query_secdesc.in.file.fnum = fnum;
q.query_secdesc.in.secinfo_flags =
SECINFO_OWNER |
SECINFO_GROUP |
SECINFO_DACL;
status = smb_raw_fileinfo(cli->tree, tctx, &q);
CHECK_STATUS(status, NT_STATUS_OK);
sd = q.query_secdesc.out.sd;
/* Now add a DENY WRITE security descriptor for Everyone. */
torture_comment(tctx, "add a new ACE to the DACL\n");
ace.type = SEC_ACE_TYPE_ACCESS_DENIED;
ace.flags = 0;
ace.access_mask = SEC_FILE_WRITE_DATA;
ace.trustee = *dom_sid_parse_talloc(tctx, SID_WORLD);
status = security_descriptor_dacl_add(sd, &ace);
CHECK_STATUS(status, NT_STATUS_OK);
/* security_descriptor_dacl_add adds to the *end* of
the ace array, we need it at the start. Swap.. */
ace = sd->dacl->aces[0];
sd->dacl->aces[0] = sd->dacl->aces[sd->dacl->num_aces-1];
sd->dacl->aces[sd->dacl->num_aces-1] = ace;
ZERO_STRUCT(set);
set.set_secdesc.level = RAW_SFILEINFO_SEC_DESC;
set.set_secdesc.in.file.fnum = fnum;
set.set_secdesc.in.secinfo_flags = SECINFO_DACL;
set.set_secdesc.in.sd = sd;
status = smb_raw_setfileinfo(cli->tree, &set);
CHECK_STATUS(status, NT_STATUS_OK);
smbcli_close(cli->tree, fnum);
fnum = -1;
/* Try and open the stream name for WRITE_DATA. Should
fail with ACCESS_DENIED. */
ZERO_STRUCT(io);
io.generic.level = RAW_OPEN_NTCREATEX;
io.ntcreatex.in.root_fid.fnum = 0;
io.ntcreatex.in.flags = 0;
io.ntcreatex.in.access_mask = SEC_FILE_WRITE_DATA;
io.ntcreatex.in.create_options = 0;
io.ntcreatex.in.file_attr = 0;
io.ntcreatex.in.share_access = 0;
io.ntcreatex.in.alloc_size = 0;
io.ntcreatex.in.open_disposition = NTCREATEX_DISP_OPEN;
io.ntcreatex.in.impersonation = NTCREATEX_IMPERSONATION_ANONYMOUS;
io.ntcreatex.in.security_flags = 0;
io.ntcreatex.in.fname = fname_stream;
status = smb_raw_open(cli->tree, tctx, &io);
CHECK_STATUS(status, NT_STATUS_ACCESS_DENIED);
done:
if (fnum != -1) {
smbcli_close(cli->tree, fnum);
}
smbcli_unlink(cli->tree, fname);
smbcli_deltree(cli->tree, BASEDIR);
return ret;
}
/*
basic testing of streams calls
*/
struct torture_suite *torture_raw_streams(TALLOC_CTX *tctx)
{
struct torture_suite *suite = torture_suite_create(tctx, "streams");
torture_suite_add_1smb_test(suite, "dir", test_stream_dir);
torture_suite_add_1smb_test(suite, "io", test_stream_io);
torture_suite_add_1smb_test(suite, "sharemodes", test_stream_sharemodes);
torture_suite_add_1smb_test(suite, "delete", test_stream_delete);
torture_suite_add_1smb_test(suite, "names", test_stream_names);
torture_suite_add_1smb_test(suite, "names2", test_stream_names2);
torture_suite_add_1smb_test(suite, "rename", test_stream_rename);
torture_suite_add_1smb_test(suite, "rename2", test_stream_rename2);
torture_suite_add_1smb_test(suite, "rename3", test_stream_rename3);
torture_suite_add_1smb_test(suite, "createdisp",
test_stream_create_disposition);
torture_suite_add_1smb_test(suite, "attr", test_stream_attributes);
torture_suite_add_1smb_test(suite, "sumtab", test_stream_summary_tab);
torture_suite_add_1smb_test(suite, "perms", test_stream_permissions);
#if 0
torture_suite_add_1smb_test(suite, "LARGESTREAMINFO",
test_stream_large_streaminfo);
#endif
return suite;
}