[PATCH] Add test for 'net ads (join|leave)

Andrew Bartlett abartlet at samba.org
Thu Nov 5 08:02:53 UTC 2015 

On Wed, 2015-11-04 at 16:47 +0200, Uri Simchoni wrote:
> 
> On 11/01/2015 08:13 PM, Andrew Bartlett wrote:
> > On Sun, 2015-11-01 at 14:26 +0200, Uri Simchoni wrote:
> > > "source" is bash-specific. We should use "." instead.
> > > 
> > > But before fixing and pushing, Andrew's comment seems correct to
> > > me -
> > > wouldn't "net join" change the shared secret between the running
> > > server
> > > and the domain and thus affect the server? It seems like it would
> > > be
> > > better to run it with an smb.conf which has "netbios name" set to
> > > some
> > > bogus name, and this way the test would run on an a different
> > > account.
> > > 
> > > (I tried just passing a command line option to net, but it didn't
> > > manage
> > > to pass unharmed through the subunit functions, because of the
> > > space).
> > I think you should pass in a whole smb.conf, pointing at a
> > different
> > location (to get an effect like samba-tool domain join's -
> > -targetdir).
> > 
> > I any case, to specify options with spaces, remember that our
> > smb.conf
> > parser is whitespace insensitive except for inside the option
> > value, so
> > you can omit the spaces, eg --option=ntlmauth=true
> > 
> > Andrew Bartlett
> > 
> I pushed it as-is with the fix to "source", because I've delayed it
> long 
> enough, and am proposing the attached patch set to run the test in 
> client env, so as not to impact the running server and avoid
> potential 
> future "flakiness" introduced by that.

Thanks.

> I'm not sure how the running server is supposed to handle change of 
> shared secret, perhaps it recovers gracefully from that, but the 
> recovery will occur in a different test and is not the subject of
> this 
> test, so we should not be doing it.

That should (and I think is) be tested in an explict test for that, we
should try and isolate this test.  

To that end, please generate and use a different smb.conf and
private/lock/state dir, so that the client environment doesn't need to
change, and does not get a join password added to it (even if now
invalid). 

Thanks,

Andrew Bartlett

-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba-technical mailing list