oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Add some more as-req canon tests, add disable tgs-req tests.

Browse Source 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21048 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2007-06-11 23:10:55 +00:00
parent 70cc374382
commit 208080c122
1 changed files with 54 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

59
tests/kdc/check-referral.in
View File

@@ -44,7 +44,9 @@ testfailed="echo test failed; cat messages.log; exit 1"
../db/have-db || exit 77 ../db/have-db || exit 77
R=TEST.H5L.SE R=TEST.H5L.SE
R2=TEST2.H5L.SE R2=SUB.TEST.H5L.SE
service=ldap/host.sub.test.h5l.se
port=@port@ port=@port@
@@ -59,7 +61,6 @@ kgetcred="${TESTS_ENVIRONMENT} ../../kuser/kgetcred -c $cache"
kdestroy="${TESTS_ENVIRONMENT} ../../kuser/kdestroy -c $cache --no-unlog" kdestroy="${TESTS_ENVIRONMENT} ../../kuser/kdestroy -c $cache --no-unlog"
KRB5_CONFIG="${objdir}/krb5.conf" KRB5_CONFIG="${objdir}/krb5.conf"
export KRB5_CONFIG export KRB5_CONFIG
@@ -84,6 +85,8 @@ ${kadmin} \
${kadmin} add -p foo --use-defaults foo@${R} || exit 1 ${kadmin} add -p foo --use-defaults foo@${R} || exit 1
${kadmin} modify --alias=alias1 --alias=alias2 foo@${R} || exit 1 ${kadmin} modify --alias=alias1 --alias=alias2 foo@${R} || exit 1
${kadmin} add -p foo --use-defaults ${service}@${R2} || exit 1
${kadmin} add -p cross1 --use-defaults krbtgt/${R2}@${R} || exit 1 ${kadmin} add -p cross1 --use-defaults krbtgt/${R2}@${R} || exit 1
${kadmin} add -p cross2 --use-defaults krbtgt/${R}@${R2} || exit 1 ${kadmin} add -p cross2 --use-defaults krbtgt/${R}@${R2} || exit 1
@@ -107,15 +110,35 @@ trap "kill ${kdcpid}; echo signal killing kdc; exit 1;" EXIT
ec=0 ec=0
echo "Getting client alias1 tickets"; > messages.log echo "Test AS-REQ"
${kinit} --canonicalize \
--password-file=${objdir}/foopassword alias1@${R}@${R} || \ echo "Getting client (no canon)"; > messages.log
${kinit} --password-file=${objdir}/foopassword foo@${R} || \
{ ec=1 ; eval "${testfailed}"; } { ec=1 ; eval "${testfailed}"; }
echo "checking that we go back right principal" echo "checking that we go back right principal"
${klist} | grep "Principal: foo@${R}" > /dev/null || \ ${klist} | grep "Principal: foo@${R}" > /dev/null || \
{ ec=1 ; eval "${testfailed}"; } { ec=1 ; eval "${testfailed}"; }
${kdestroy} ${kdestroy}
echo "Getting client client tickets (default realm, enterprisename)"; > messages.log
${kinit} --canonicalize \
--password-file=${objdir}/foopassword foo@${R} || \
{ ec=1 ; eval "${testfailed}"; }
echo "checking that we go back right principal"
${klist} | grep "Principal: foo@${R}" > /dev/null || \
{ ec=1 ; eval "${testfailed}"; }
${kdestroy}
echo "Getting client alias1 tickets"; > messages.log
${kinit} --canonicalize \
--password-file=${objdir}/foopassword foo@${R} || \
{ ec=1 ; eval "${testfailed}"; }
echo "checking that we go back right principal"
${klist} | grep "Principal: foo@${R}" > /dev/null || \
{ ec=1 ; eval "${testfailed}"; }
${kdestroy}
echo "Getting client alias2 tickets"; > messages.log echo "Getting client alias2 tickets"; > messages.log
${kinit} --canonicalize \ ${kinit} --canonicalize \
--password-file=${objdir}/foopassword alias2@${R}@${R} || \ --password-file=${objdir}/foopassword alias2@${R}@${R} || \
@@ -140,6 +163,32 @@ ${kinit} --canonicalize \
echo "Remove alias" echo "Remove alias"
${kadmin} modify --alias= foo@${R} || { ec=1 ; eval "${testfailed}"; } ${kadmin} modify --alias= foo@${R} || { ec=1 ; eval "${testfailed}"; }
echo "Test TGS-REQ"
#echo "Getting client for ${service}@${R} (kdc referral)"
#> messages.log
#${kinit} --password-file=${objdir}/foopassword foo@${R} || \
# { ec=1 ; eval "${testfailed}"; }
#${kgetcred} --server ${service}@${R} ||
# { ec=1 ; eval "${testfailed}"; }
#${klist}
#echo "checking that we go back right principal"
#${klist} | grep "${service}@${R2}" > /dev/null || \
# { ec=1 ; eval "${testfailed}"; }
#${kdestroy}
#
#echo "Getting client for ${service}@${R2} (client side guessing)"
#> messages.log
#${kinit} --password-file=${objdir}/foopassword foo@${R} || \
# { ec=1 ; eval "${testfailed}"; }
#${kgetcred} --server ${service}@${R2} ||
# { ec=1 ; eval "${testfailed}"; }
#${klist}
#echo "checking that we go back right principal"
#${klist} | grep "${service}@${R2}" > /dev/null || \
# { ec=1 ; eval "${testfailed}"; }
#${kdestroy}
echo "killing kdc (${kdcpid})" echo "killing kdc (${kdcpid})"
kill $kdcpid || exit 1 kill $kdcpid || exit 1