Google Git
Sign in
cos / mirrors / cros / chromiumos / platform2 / 43b6dc1e47fbd539b1983c872c64ef6d2ead79d3 / . / authpolicy / samba_helper_unittest.cc
blob: 55ba7b00270080cf240ac7024c8a634ac65e390d [file] [log] [blame]
// Copyright 2016 The Chromium OS Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <gmock/gmock.h>
#include <gtest/gtest.h>
#include "authpolicy/samba_helper.h"
#include "authpolicy/samba_interface.h"
namespace {
// See e.g.
// http://stackoverflow.com/questions/1545630/searching-for-a-objectguid-in-ad.
const char kGuid[] = "10a9cbf6-3a09-444c-a5f6-95dd0b94e3ae";
const char kOctetStr[] =
"\\F6\\CB\\A9\\10\\09\\3A\\4C\\44\\A5\\F6\\95\\DD\\0B\\94\\E3\\AE";
const char kInvalidGuid[] = "10a9cbf6-3a09-444c-a5f6";
} // namespace
namespace authpolicy {
class SambaInterfaceTest : public ::testing::Test {
public:
SambaInterfaceTest() {}
~SambaInterfaceTest() override {}
protected:
// Helpers for ParseUserPrincipleName.
std::string user_name_;
std::string realm_;
std::string normalized_upn_;
bool ParseUserPrincipalName(const char* user_principal_name_) {
return ::authpolicy::ParseUserPrincipalName(
user_principal_name_, &user_name_, &realm_, &normalized_upn_);
}
// Helpers for FindToken.
std::string find_token_result_;
bool FindToken(const char* in_str, char token_separator, const char* token) {
return ::authpolicy::FindToken(in_str, token_separator, token,
&find_token_result_);
}
// Helpers for ParseGpoVersion
unsigned int gpo_version_ = 0;
// Helpers for ParseGpFLags
int gp_flags_ = kGpFlagInvalid;
private:
DISALLOW_COPY_AND_ASSIGN(SambaInterfaceTest);
};
// a@b.c succeeds.
TEST_F(SambaInterfaceTest, ParseUPNSuccess) {
EXPECT_TRUE(ParseUserPrincipalName("usar@wokgroup.doomain"));
EXPECT_EQ(user_name_, "usar");
EXPECT_EQ(realm_, "WOKGROUP.DOOMAIN");
EXPECT_EQ(normalized_upn_, "usar@WOKGROUP.DOOMAIN");
}
// a@b.c.d.e succeeds.
TEST_F(SambaInterfaceTest, ParseUPNSuccess_Long) {
EXPECT_TRUE(ParseUserPrincipalName("usar@wokgroup.doomain.company.com"));
EXPECT_EQ(user_name_, "usar");
EXPECT_EQ(realm_, "WOKGROUP.DOOMAIN.COMPANY.COM");
EXPECT_EQ(normalized_upn_, "usar@WOKGROUP.DOOMAIN.COMPANY.COM");
}
// Capitalization works as expected.
TEST_F(SambaInterfaceTest, ParseUPNSuccess_MixedCaps) {
EXPECT_TRUE(ParseUserPrincipalName("UsAr@WoKgrOUP.DOOMain.com"));
EXPECT_EQ(user_name_, "UsAr");
EXPECT_EQ(realm_, "WOKGROUP.DOOMAIN.COM");
EXPECT_EQ(normalized_upn_, "UsAr@WOKGROUP.DOOMAIN.COM");
}
// a.b@c.d succeeds, even though it is invalid (rejected by kinit).
TEST_F(SambaInterfaceTest, ParseUPNSuccess_DotAtDot) {
EXPECT_TRUE(ParseUserPrincipalName("usar.team@wokgroup.doomain"));
EXPECT_EQ(user_name_, "usar.team");
EXPECT_EQ(realm_, "WOKGROUP.DOOMAIN");
EXPECT_EQ(normalized_upn_, "usar.team@WOKGROUP.DOOMAIN");
}
// a@ fails (no workgroup.domain).
TEST_F(SambaInterfaceTest, ParseUPNFail_NoRealm) {
EXPECT_FALSE(ParseUserPrincipalName("usar@"));
}
// a fails (no @workgroup.domain).
TEST_F(SambaInterfaceTest, ParseUPNFail_NoAtRealm) {
EXPECT_FALSE(ParseUserPrincipalName("usar"));
}
// a. fails (no @workgroup.domain and trailing . is invalid, anyway).
TEST_F(SambaInterfaceTest, ParseUPNFail_NoAtRealmButDot) {
EXPECT_FALSE(ParseUserPrincipalName("usar."));
}
// a@b@c fails (double at).
TEST_F(SambaInterfaceTest, ParseUPNFail_AtAt) {
EXPECT_FALSE(ParseUserPrincipalName("usar@wokgroup@doomain"));
}
// a@b@c fails (double at).
TEST_F(SambaInterfaceTest, ParseUPNFail_AtAtDot) {
EXPECT_FALSE(ParseUserPrincipalName("usar@wokgroup@doomain.com"));
}
// @b.c fails (empty user name).
TEST_F(SambaInterfaceTest, ParseUPNFail_NoUpn) {
EXPECT_FALSE(ParseUserPrincipalName("@wokgroup.doomain"));
}
// b.c fails (no user name@).
TEST_F(SambaInterfaceTest, ParseUPNFail_NoUpnAt) {
EXPECT_FALSE(ParseUserPrincipalName("wokgroup.doomain"));
}
// .b.c fails (no user name@ and initial . is invalid, anyway).
TEST_F(SambaInterfaceTest, ParseUPNFail_NoUpnAtButDot) {
EXPECT_FALSE(ParseUserPrincipalName(".wokgroup.doomain"));
}
// a=b works.
TEST_F(SambaInterfaceTest, FindTokenSuccess) {
EXPECT_TRUE(FindToken("tok=res", '=', "tok"));
EXPECT_EQ(find_token_result_, "res");
}
// Multiple matches return the first match
TEST_F(SambaInterfaceTest, FindTokenSuccess_Multiple) {
EXPECT_TRUE(FindToken("tok=res\ntok=res2", '=', "tok"));
EXPECT_EQ(find_token_result_, "res");
}
// Different separators are ignored matches return the first match
TEST_F(SambaInterfaceTest, FindTokenSuccess_IgnoreInvalidSeparator) {
EXPECT_TRUE(FindToken("tok:res\ntok=res2", '=', "tok"));
EXPECT_EQ(find_token_result_, "res2");
}
// a=b=c returns b=c
TEST_F(SambaInterfaceTest, FindTokenSuccess_TwoSeparators) {
EXPECT_TRUE(FindToken("tok = res = true", '=', "tok"));
EXPECT_EQ(find_token_result_, "res = true");
}
// Trims leading and trailing whitespace
TEST_F(SambaInterfaceTest, FindTokenSuccess_TrimWhitespace) {
EXPECT_TRUE(FindToken("\n \n\n tok = res \n\n", '=', "tok"));
EXPECT_EQ(find_token_result_, "res");
}
// Empty input strings fail.
TEST_F(SambaInterfaceTest, FindTokenFail_Empty) {
EXPECT_FALSE(FindToken("", '=', "tok"));
EXPECT_FALSE(FindToken("\n", '=', "tok"));
EXPECT_FALSE(FindToken("\n\n\n", '=', "tok"));
}
// Whitespace input strings fail.
TEST_F(SambaInterfaceTest, FindTokenFail_Whitespace) {
EXPECT_FALSE(FindToken(" ", '=', "tok"));
EXPECT_FALSE(FindToken(" \n \n ", '=', "tok"));
EXPECT_FALSE(FindToken(" \n\n \n ", '=', "tok"));
}
// a=b works.
TEST_F(SambaInterfaceTest, FindTokenInLineSuccess) {
std::string result;
EXPECT_TRUE(
authpolicy::FindTokenInLine(" tok = res ", '=', "tok", &result));
EXPECT_EQ(result, "res");
}
// Parsing valid GPO version strings.
TEST_F(SambaInterfaceTest, ParseGpoVersionSuccess) {
EXPECT_TRUE(ParseGpoVersion("0 (0x0000)", &gpo_version_));
EXPECT_EQ(gpo_version_, 0);
EXPECT_TRUE(ParseGpoVersion("1 (0x0001)", &gpo_version_));
EXPECT_EQ(gpo_version_, 1);
EXPECT_TRUE(ParseGpoVersion("9 (0x0009)", &gpo_version_));
EXPECT_EQ(gpo_version_, 9);
EXPECT_TRUE(ParseGpoVersion("15 (0x000f)", &gpo_version_));
EXPECT_EQ(gpo_version_, 15);
EXPECT_TRUE(ParseGpoVersion("65535 (0xffff)", &gpo_version_));
EXPECT_EQ(gpo_version_, 0xffff);
}
// Empty string
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_EmptyString) {
EXPECT_FALSE(ParseGpoVersion("", &gpo_version_));
}
// Base-10 and Base-16 (hex) numbers not matching
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_NotMatching) {
EXPECT_FALSE(ParseGpoVersion("15 (0x000e)", &gpo_version_));
}
// Non-numeric characters fail
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_NonNumericCharacters) {
EXPECT_FALSE(ParseGpoVersion("15a (0x00f)", &gpo_version_));
EXPECT_FALSE(ParseGpoVersion("15 (0xg0f)", &gpo_version_));
EXPECT_FALSE(ParseGpoVersion("dead", &gpo_version_));
}
// Missing 0x in hex string fails
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_Missing0x) {
EXPECT_FALSE(ParseGpoVersion("15 (000f)", &gpo_version_));
}
// Missing brackets in hex string fail
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_MissingBrackets) {
EXPECT_FALSE(ParseGpoVersion("15 000f", &gpo_version_));
}
// Missing hex string fails
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_MissingHex) {
EXPECT_FALSE(ParseGpoVersion("10", &gpo_version_));
}
// Only hex string fails
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_HexOnly) {
EXPECT_FALSE(ParseGpoVersion("0x000f", &gpo_version_));
}
// Only hex string in brackets fails
TEST_F(SambaInterfaceTest, ParseGpoVersionFail_BracketsHexOnly) {
EXPECT_FALSE(ParseGpoVersion("(0x000f)", &gpo_version_));
}
// Successfully parsing GP flags
TEST_F(SambaInterfaceTest, ParseGpFlagsSuccess) {
EXPECT_TRUE(ParseGpFlags("0 GPFLAGS_ALL_ENABLED", &gp_flags_));
EXPECT_EQ(0, gp_flags_);
EXPECT_TRUE(ParseGpFlags("1 GPFLAGS_USER_SETTINGS_DISABLED", &gp_flags_));
EXPECT_EQ(1, gp_flags_);
EXPECT_TRUE(ParseGpFlags("2 GPFLAGS_MACHINE_SETTINGS_DISABLED", &gp_flags_));
EXPECT_EQ(2, gp_flags_);
EXPECT_TRUE(ParseGpFlags("3 GPFLAGS_ALL_DISABLED", &gp_flags_));
EXPECT_EQ(3, gp_flags_);
}
// Strings don't match numbers
TEST_F(SambaInterfaceTest, ParseGpFlagsFail_StringNotMatching) {
EXPECT_FALSE(ParseGpFlags("1 GPFLAGS_ALL_ENABLED", &gp_flags_));
EXPECT_FALSE(ParseGpFlags("2 GPFLAGS_ALL_DISABLED", &gp_flags_));
}
// Missing string
TEST_F(SambaInterfaceTest, ParseGpFlagsFail_MissingString) {
EXPECT_FALSE(ParseGpFlags("0", &gp_flags_));
}
// Missing number
TEST_F(SambaInterfaceTest, ParseGpFlagsFail_MissingNumber) {
EXPECT_FALSE(ParseGpFlags("GPFLAGS_ALL_ENABLED", &gp_flags_));
}
// String not trimmed
TEST_F(SambaInterfaceTest, ParseGpFlagsFail_NotTrimmed) {
EXPECT_FALSE(ParseGpFlags(" 0 GPFLAGS_ALL_ENABLED", &gp_flags_));
EXPECT_FALSE(ParseGpFlags("0 GPFLAGS_ALL_ENABLED ", &gp_flags_));
}
// Valid GUID to octet string conversion.
TEST_F(SambaInterfaceTest, GuidToOctetSuccess) {
EXPECT_EQ(kOctetStr, GuidToOctetString(kGuid));
}
// Invalid GUID to octet string conversion should yield empty string.
TEST_F(SambaInterfaceTest, GuidToOctetFailInvalidGuid) {
EXPECT_EQ("", GuidToOctetString(kInvalidGuid));
}
// OctetStringToGuidForTesting() reverses GuidToOctetString().
TEST_F(SambaInterfaceTest, OctetToGuidSuccess) {
const std::string octet_str = GuidToOctetString(kGuid);
EXPECT_EQ(kGuid, OctetStringToGuidForTesting(octet_str));
}
} // namespace authpolicy