?DelLdZddlZddlZddlZddlZddlZddlZddlZddlm Z ddl Z ddl m Z ddl mZdejd<ddlZejejeZdZd Zeejd d d Zd evrdZn eedZdZddZdZ dZ!dZ"dZ#dZ$ej%ddfdZ&GddZ'Gdde j(Z)dS)zz slapdtest - module for spawning test instances of OpenLDAP's slapd server See https://www.python-ldap.org/ for details. N) SysLogHandler)which) quote_plus1 LDAPNOINITadn: cn=config objectClass: olcGlobal cn: config olcServerID: %(serverid)s olcLogLevel: %(loglevel)s olcAllows: bind_v2 olcAuthzRegexp: {0}"gidnumber=%(root_gid)s\+uidnumber=%(root_uid)s,cn=peercred,cn=external,cn=auth" "%(rootdn)s" olcAuthzRegexp: {1}"C=DE, O=python-ldap, OU=slapd-test, CN=([A-Za-z]+)" "ldap://ou=people,dc=local???($1)" olcTLSCACertificateFile: %(cafile)s olcTLSCertificateFile: %(servercert)s olcTLSCertificateKeyFile: %(serverkey)s olcTLSVerifyClient: try dn: cn=module,cn=config objectClass: olcModuleList cn: module olcModuleLoad: back_%(database)s dn: olcDatabase=%(database)s,cn=config objectClass: olcDatabaseConfig objectClass: olcMdbConfig olcDatabase: %(database)s olcSuffix: %(suffix)s olcRootDN: %(rootdn)s olcRootPW: %(rootpw)s olcDbDirectory: %(directory)s z 127.0.0.1 CI_DISABLED:LDAPIFAF_UNIXc|S)zIdentity decorator ) test_items /./slapdtest/_slapdtest.pyidentityr?s  ctjddstj|S|t vrtj|St S)z@Skip test unless test case is executed on CI like Travis CI CIF)osenvirongetunittestskiprr)reasonfeatures rskip_unless_cirFsN :>>$ & &}V$$$ K  }V$$$rcJtjstddStS)zNDecorator for TLS tests Tests are not skipped on CI (e.g. Travis CI) ztest needs ldap.TLS_AVAILTLSr)ldap TLS_AVAILrrrrr requires_tlsr"Rs' >95IIIIrcJtjstddStS)Nztest needs ldap.SASL_AVAILSASLr)r SASL_AVAILrrrrr requires_saslr&]s/ ? (&::: :rc@tstddStS)Nz"test needs ldapi support (AF_UNIX)r r) HAVE_LDAPIrrrrrrequires_ldapir)es1  0'CCC CrcJtjstddStS)Nztest needs ldap.INIT_FDINIT_FDr)r INIT_FD_AVAILrrrrrrequires_init_fdr-ls0   %y::: :rc|tj}tjdkrdD]}||vr||tj|S)z:Add /sbin and related directories to a command search pathwin32)z/usr/local/sbinz/sbinz /usr/sbin)splitrpathsepsysplatformappendjoin)path directoriessbins r _add_sbinr9tse**RZ((K |w; ) )D;&&""4((( :??; ' ''rz%(levelname)s %(message)sz%%(asctime)s %(levelname)s %(message)scdtjvr3tjd} t|}n#t$rYnwxYwt j|}|rtjdrt jd ||f}tj dtj }| ||||rRt j|}t j}| ||||||S)z] Returns a combined SysLogHandler/StreamHandler logging instance with formatters LOGLEVELz/dev/log )fmt)addressfacility)rrint ValueErrorlogging getLoggerr6exists Formatterr5handlersr LOG_DAEMON setFormatter addHandler StreamHandlersetLevel) log_name log_levelsys_log_formatconsole_log_format new_loggermy_syslog_formattermy_syslog_handlermy_stream_formattermy_stream_handlers rcombined_loggerrU}smRZJz*  III    D "8,,J1"'..441%/(N344666#,::"-;   &&':;;;/0001%/4FGGG#133&&':;;;/000 """ s 2 ??ceZdZdZeZdZdZdZdZ dZ e Z dZ dZejd ejZd ejvrejd Zn !KLL Lgll488 ',,t-?@@d,>??',,t-?@@d,>??rc.d|S)Nzcn={self.root_cn},{self.suffix}rx)formatr|s rroot_dnzSlapdObject.root_dns077T7BBBrc|jSN)rkr|s rhostnamezSlapdObject.hostnames rc|jSr)rer|s rportzSlapdObject.ports zrc|d|_|d|_|d|_|d|_|d|_t jdd|_ |j s|dd |_ dSdS) Nldapadd ldapdelete ldapmodify ldapwhoamislapaddSLAPDslapdT)in_sbin) _find_command PATH_LDAPADDPATH_LDAPDELETEPATH_LDAPMODIFYPATH_LDAPWHOAMI PATH_SLAPADDrrr PATH_SLAPDr|s rrpzSlapdObject._find_commandss ..y99#11,??#11,??#11,?? ..y99*..$77 H"00$0GGDOOO H HrFc|r |j}d}n |j}d}t||}|#td|||S)Nr`r^)r6z\Command '{}' not found. Set the {} environment variable to override slapdtest's search path.) SBIN_PATHBIN_PATHrrAr})rxcmdrr6var_namecommands rrzSlapdObject._find_command sh  >DHH=DH$''' ?44:F34I4I rctj|jtj|j||jdS)z creates rundir structure for setting up a custom directory structure you have to override this method N)rmkdirrhrj_create_sub_dirstestrunsubdirsr|s r setup_rundirzSlapdObject.setup_rundirsF !!! #$$$ d122222rc ddl}ddl}|j|jsdS|jd|j|j|jdD]\}}}|D]_}|jd|j|||j |j||`|D]_}|jd|j|||j |j||`|j |j|j d|jdS) zH Recursively delete whole directory specified by `path' rNz clean-up %sF)topdownz remove %szrmdir %sz cleaned-up %s) ros.pathr6rDrh_logdebugwalkr5removermdirinfo)rxrdirpathdirnames filenamesfilenamedirnames r_cleanup_rundirzSlapdObject._cleanup_rundir&sq w~~do..  F  t777,3BG--- 9 9 (GXy& ; ;  RW\\'8-L-LMMM "',,w99::::# 9 9  BGLL',J,JKKKgw778888 9 !!! 88888rc,tj} ||jdf|d}|n#|wxYw|jd||S)z; find an available port for TCP connection rzFound available port %d)socketbindrk getsocknamecloserr)rxsockrs rrdzSlapdObject._avail_tcp_port=s}  IIt* + + +##%%a(D JJLLLLDJJLLLL 0$777 s 6A A6c t|j|j|j|j|j|j|jtj tj |j |j |j d }|j|zS)z generates a slapd.conf and returns it as one string for generating specific static configuration files you have to override this method ) serveridlogleveldatabase directorysuffixrootdnrootpwroot_uidroot_gidrsrtru)hexrfslapd_loglevelrrjrr~root_pwrgetuidgetgidrsrtruslapd_conf_template)rx config_dicts r gen_configzSlapdObject.gen_configJsnDN+++ +kll  k/   '+55rc|D]V}tj|j|}|jd|tj|WdS)z@ create sub-directories beneath self.testrundir zCreate directory %sN)rr6r5rhrrr)rx dir_namesdnamedir_names rrzSlapdObject._create_sub_dirsas^  Ew||DOU;;H IOO18 < < < HX      rc<jdjdgfdjD}|D]}ddd|gjdjdS)z Loads the slapd.d configuration.zimporting configuration: %sz-n0cg|]H}tj|r|n$tjj|ISr)rr6rDr5rq).0schemarxs r z-SlapdObject._write_config..osW   w~~f%% 6FFdnf55   rNz-lz import ok: %s)rrrirropenldap_schema_files)rx ldif_paths ldif_paths` r _write_configzSlapdObject._write_configjs 5t7GHHH T__&&000    4    $ 9 9I LLtY7 8 8 8 8 )9:::::rc|jd|j|jdd|jddddg}t j|tjtj}|jd krA|j |j d td |j d |jdS) Nztesting config %sz-Ttest-Fz-uz-v-dconfig)stdoutstderrrutf-8zconfiguration test failedz config ok: %s)rrrir subprocessrunPIPESTDOUT returncodeerrorrdecode RuntimeErrorr)rx popen_listps r _test_configzSlapdObject._test_configzs +T-=>>> O  $"   (   N ?$    <1   IOOAHOOG44 5 5 5:;; ; (899999rc~|jg}|jr||j|jd|jdd|g}|jtj r| ddgn| ddg|j dd|tj ||_tjdz} |j#|t'd  |jd |j|d S#t&$r0tj|krYntjd YnwxYwt'd)z0 Spawns/forks the slapd process rz-hr<rz-10zstarting slapd: %r TNz slapd exited before opening portzslapd connection check to %sg?zslapd did not start properly)rlrmr4rrir5r isEnabledForrBDEBUGextendrrPopenrctime monotonicpoll_stoppedrrrnrsleep)rxurls slapd_argsdeadlines r _start_slapdzSlapdObject._start_slapds  > ( KK ' ' ' O $" #((4.. 9 ! !'- 0 0 +   tTl + + + +   tSk * * * +SXXj-A-ABBB%j11 >##b( z  , "#EFFF  2D4I!!!      >##x//E 3  9:::s<4E22!F,F,+F,ct|jtj|j||||||j d|jj |j |j dSdS)zW Starts the slapd server process running, and waits for it to come up. Nz(slapd with pid=%d listening on %s and %s)rcatexitregisterstoprrrrrrrpidrlrmr|s rstartzSlapdObject.starts :  ODI & & &  " " "                      IOO:  t~       rc|jR|jd|jj|j||tj|j dS)zU Stops the slapd server, and waits for it to terminate and cleans up Nzstopping slapd with pid %d) rcrrr terminatewaitrr unregisterrr|s rrzSlapdObject.stopss : ! IOO8$*. I I I J " " " IIKKK $)$$$$$rc|j||dS)z: Restarts the slapd server with same data N)rcrrrr|s rrestartzSlapdObject.restarts=   rcr|jr/|j|dSdS)z3Waits for the slapd process to terminate by itself.N)rcrrr|s rrzSlapdObject.waits9 :  JOO    MMOOOOO  rcp|j.|jd|jjd|_dSdS)z8Called when the slapd server is known to have terminatedNzslapd[%d] terminated)rcrrrr|s rrzSlapdObject._stoppeds8 : ! INN14:> B B BDJJJ " !rc|jr>ddg}|jtjs|dndd|jd|jg}|S)Nz-YEXTERNALz-Qz-xz-Dz-w)rorrrBrr4r~r)rx authc_argss r_cli_auth_argszSlapdObject._cli_auth_argssl  ! jJ9))'-88 (!!$'''dldlJ rc||j}|dddr|d|g|z}n |d|jg}||pgz }|jdd|tj |tj tj tj }|jd || |\}}||jd |||jd || d kr$td |||||fS)N/r z-HrzRun command: %rr<)stdinrrz stdin_data=%rzstdout_data=%rzstderr_data=%rrz{!r} process failed: {!r} {!r})rnr0 startswithrrirrr5rrr communicaterrr}) rx ldapcommand extra_argsrl stdin_dataargsproc stdout_data stderr_datas r _cli_popenzSlapdObject._cli_popenst  ,H   S ! !" % 0 0 8 8 9x043F3F3H3HHDDt'78D !r" )388D>>:::   ?    444#'#3#3J#?#? [  " IOO,k : : :  " IOO,k : : : 99;;!  299+{  K''rc>||j|dS)z8 Runs ldapwhoami on this slapd instance rN)rr)rxrs rrzSlapdObject.ldapwhoamis# ,DDDDDrcf||j||ddSzR Runs ldapadd on this slapd instance, passing it the ldif content r)rrN)rrencoderxldifrs rrzSlapdObject.ldapadds? )j#';;w#7#7  9 9 9 9 9rcf||j||ddSr)rrrrs rrzSlapdObject.ldapmodify"s? ,#';;w#7#7  9 9 9 9 9rc|g}|r|d||||j|dS)zG Runs ldapdelete on this slapd instance, deleting 'dn' Nz-rr)r4rr)rxdn recursivers rrzSlapdObject.ldapdelete)s^  J  $   d # # #" ,DDDDDrcn||j|r|dnd|dS)zR Runs slapadd on this slapd instance, passing it the ldif content rN)rr)rrrrs rrzSlapdObject.slapadd4sK   /3=t{{7+++!      rc.||Sr)rr|s r __enter__zSlapdObject.__enter__>s  rc.|dSr)r)rxexc_type exc_value tracebacks r__exit__zSlapdObject.__exit__Bs r)F)NNNr)FN):__name__ __module__ __qualname____doc__SLAPD_CONF_TEMPLATErrrroot_cnrr LOCALHOSTrkrrrrrgetcwdrgrqr6isdirdefpathrr9rrUrrzpropertyr~rrrprrrrdrrrrrrrrrrrrrrrrrr#r(rrrrWrWs.*.H 2FGG#NJNZ^^E929;; / /F2:Jx( - . .* ) * *&  z~~eRZ^^FBJ%G%GHHH vyy':':;;I ?- . .D@@@@CCXCXX H H H     3 3 3999.   666.;;; :::(%;%;%;N$ % % %     AE"((((>EEEE 99999999 E E E E    rrWcReZdZdZeZdZdZddZe dZ e dZ dS) SlapdTestCasezE test class which also clones or initializes a running slapd Nc |j|jjfi|}d|_||p |jj|p |jj|S)z@ return a LDAPObject instance after simple bind )ldap_object_classserverrlprotocol_version simple_bind_sr~r)rxwhocredkwargs ldap_conns r_open_ldap_connzSlapdTestCase._open_ldap_connOs[+D*4;+?JJ6JJ %& " :t{':DrRs!   ******###### <  wrwx00118  c"*..3399#>>??  kJJ++J    (((,2B !!!!HbbbbbbbbJ H%r