s4:torture/smb2/session: session reauth response must be signed

This test checks that a session setup reauth is signed even when neither
client nor server require signing.

Bug: https://bugzilla.samba.org/show_bug.cgi?id=13661

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>

diff --git a/selftest/knownfail.d/samba3.smb2 b/selftest/knownfail.d/samba3.smb2
new file mode 100644 (file)
index 0000000..7e96e67
--- /dev/null
+++ b/selftest/knownfail.d/samba3.smb2
@@ -0,0 +1 @@
+^samba3.smb2.session krb5.expire1n\(ad_member\)

diff --git a/source4/torture/smb2/session.c b/source4/torture/smb2/session.c
index 0a0b54774e2cdda63cfaded9b55d68537bada37a..57a5addcfcc4201be88afcc0c9c2306f41bdcb3c 100644 (file)
--- a/source4/torture/smb2/session.c
+++ b/source4/torture/smb2/session.c
@@ -1191,6 +1191,13 @@ done:
        return ret;
 }
 
+static bool test_session_expire1n(struct torture_context *tctx)
+{
+       return test_session_expire1i(tctx,
+                                    false,   /* force_signing */
+                                    false); /* force_encryption */
+}
+
 static bool test_session_expire1s(struct torture_context *tctx)
 {
        return test_session_expire1i(tctx,
@@ -1742,6 +1749,7 @@ struct torture_suite *torture_smb2_session_init(TALLOC_CTX *ctx)
        torture_suite_add_1smb2_test(suite, "reauth4", test_session_reauth4);
        torture_suite_add_1smb2_test(suite, "reauth5", test_session_reauth5);
        torture_suite_add_1smb2_test(suite, "reauth6", test_session_reauth6);
+       torture_suite_add_simple_test(suite, "expire1n", test_session_expire1n);
        torture_suite_add_simple_test(suite, "expire1s", test_session_expire1s);
        torture_suite_add_simple_test(suite, "expire1e", test_session_expire1e);
        torture_suite_add_simple_test(suite, "expire2s", test_session_expire2s);