ruby_smb 1.0.3 → 2.0.1

data/spec/lib/ruby_smb/dcerpc/winreg/enum_value_request_spec.rb

@@ -0,0 +1,94 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::RpcHkey do
+  it 'is NdrContextHandle subclass' do
+    expect(described_class).to be < RubySMB::Dcerpc::Ndr::NdrContextHandle
+  end
+end
+
+RSpec.describe RubySMB::Dcerpc::Winreg::EnumValueRequest do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :hkey }
+  it { is_expected.to respond_to :dw_index }
+  it { is_expected.to respond_to :lp_value_name }
+  it { is_expected.to respond_to :pad }
+  it { is_expected.to respond_to :lp_type }
+  it { is_expected.to respond_to :lp_data }
+  it { is_expected.to respond_to :lpcb_data }
+  it { is_expected.to respond_to :lpcb_len }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#hkey' do
+    it 'is a RpcHkey structure' do
+      expect(packet.hkey).to be_a RubySMB::Dcerpc::Winreg::RpcHkey
+    end
+  end
+
+  describe '#dw_index' do
+    it 'is a 32-bit unsigned integer' do
+      expect(packet.dw_index).to be_a BinData::Uint32le
+    end
+  end
+
+  describe '#lp_value_name' do
+    it 'is a RrpUnicodeString structure' do
+      expect(packet.lp_value_name).to be_a RubySMB::Dcerpc::RrpUnicodeString
+    end
+  end
+
+  describe '#pad' do
+    it 'is a string' do
+      expect(packet.pad).to be_a BinData::String
+    end
+
+    it 'should keep #lp_type 4-byte aligned' do
+      packet.lp_value_name = "test"
+      expect(packet.lp_type.abs_offset % 4).to eq 0
+    end
+  end
+
+  describe '#lp_type' do
+    it 'is a NdrLpDword structure' do
+      expect(packet.lp_type).to be_a RubySMB::Dcerpc::Ndr::NdrLpDword
+    end
+  end
+
+  describe '#lp_data' do
+    it 'is a NdrLpByte structure' do
+      expect(packet.lp_data).to be_a RubySMB::Dcerpc::Ndr::NdrLpByte
+    end
+  end
+
+  describe '#lpcb_data' do
+    it 'is a NdrLpDword structure' do
+      expect(packet.lpcb_data).to be_a RubySMB::Dcerpc::Ndr::NdrLpDword
+    end
+  end
+
+  describe '#lpcb_len' do
+    it 'is a NdrLpDword structure' do
+      expect(packet.lpcb_len).to be_a RubySMB::Dcerpc::Ndr::NdrLpDword
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to REG_ENUM_VALUE constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::REG_ENUM_VALUE)
+    end
+  end
+
+  describe '#pad_length' do
+    it 'returns 0 when #lp_class is already 4-byte aligned' do
+      packet.lp_value_name = 'align'
+      expect(packet.pad_length).to eq 0
+    end
+
+    it 'returns 2 when #lp_class is only 2-byte aligned' do
+      packet.lp_value_name = 'align' + 'A'
+      expect(packet.pad_length).to eq 2
+    end
+  end
+end

data/spec/lib/ruby_smb/dcerpc/winreg/enum_value_response_spec.rb

@@ -0,0 +1,82 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::EnumValueResponse do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :lp_value_name }
+  it { is_expected.to respond_to :pad }
+  it { is_expected.to respond_to :lp_type }
+  it { is_expected.to respond_to :lp_data }
+  it { is_expected.to respond_to :lpcb_data }
+  it { is_expected.to respond_to :lpcb_len }
+  it { is_expected.to respond_to :error_status }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#lp_value_name' do
+    it 'is a RrpUnicodeString structure' do
+      expect(packet.lp_value_name).to be_a RubySMB::Dcerpc::RrpUnicodeString
+    end
+  end
+
+  describe '#pad' do
+    it 'is a string' do
+      expect(packet.pad).to be_a BinData::String
+    end
+
+    it 'should keep #lp_type 4-byte aligned' do
+      packet.lp_value_name = "test"
+      expect(packet.lp_type.abs_offset % 4).to eq 0
+    end
+  end
+
+  describe '#lp_type' do
+    it 'is a NdrLpDword structure' do
+      expect(packet.lp_type).to be_a RubySMB::Dcerpc::Ndr::NdrLpDword
+    end
+  end
+
+  describe '#lp_data' do
+    it 'is a NdrLpByte structure' do
+      expect(packet.lp_data).to be_a RubySMB::Dcerpc::Ndr::NdrLpByte
+    end
+  end
+
+  describe '#lpcb_data' do
+    it 'is a NdrLpDword structure' do
+      expect(packet.lpcb_data).to be_a RubySMB::Dcerpc::Ndr::NdrLpDword
+    end
+  end
+
+  describe '#lpcb_len' do
+    it 'is a NdrLpDword structure' do
+      expect(packet.lpcb_len).to be_a RubySMB::Dcerpc::Ndr::NdrLpDword
+    end
+  end
+
+  describe '#error_status' do
+    it 'is a 32-bit unsigned integer' do
+      expect(packet.error_status).to be_a BinData::Uint32le
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to REG_ENUM_VALUE constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::REG_ENUM_VALUE)
+    end
+  end
+
+  describe '#pad_length' do
+    it 'returns 0 when #lp_class is already 4-byte aligned' do
+      packet.lp_value_name = 'align'
+      expect(packet.pad_length).to eq 0
+    end
+
+    it 'returns 2 when #lp_class is only 2-byte aligned' do
+      packet.lp_value_name = 'align' + 'A'
+      expect(packet.pad_length).to eq 2
+    end
+  end
+end
+

data/spec/lib/ruby_smb/dcerpc/winreg/open_key_request_spec.rb

@@ -0,0 +1,74 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::RpcHkey do
+  it 'is NdrContextHandle subclass' do
+    expect(described_class).to be < RubySMB::Dcerpc::Ndr::NdrContextHandle
+  end
+end
+
+RSpec.describe RubySMB::Dcerpc::Winreg::OpenKeyRequest do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :hkey }
+  it { is_expected.to respond_to :lp_sub_key }
+  it { is_expected.to respond_to :pad }
+  it { is_expected.to respond_to :dw_options }
+  it { is_expected.to respond_to :sam_desired }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#hkey' do
+    it 'is a RpcHkey structure' do
+      expect(packet.hkey).to be_a RubySMB::Dcerpc::Winreg::RpcHkey
+    end
+  end
+
+  describe '#lp_sub_key' do
+    it 'is a RrpUnicodeString structure' do
+      expect(packet.lp_sub_key).to be_a RubySMB::Dcerpc::RrpUnicodeString
+    end
+  end
+
+  describe '#pad' do
+    it 'is a string' do
+      expect(packet.pad).to be_a BinData::String
+    end
+
+    it 'should keep #dw_options 4-byte aligned' do
+      packet.lp_sub_key = "test"
+      expect(packet.dw_options.abs_offset % 4).to eq 0
+    end
+  end
+
+  describe '#dw_options' do
+    it 'is a 32-bit unsigned integer' do
+      expect(packet.dw_options).to be_a BinData::Uint32le
+    end
+  end
+
+  describe '#sam_desired' do
+    it 'is a Regsam structure' do
+      expect(packet.sam_desired).to be_a RubySMB::Dcerpc::Winreg::Regsam
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to REG_OPEN_KEY constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::REG_OPEN_KEY)
+    end
+  end
+
+  describe '#pad_length' do
+    it 'returns 0 when #dw_options is already 4-byte aligned' do
+      packet.lp_sub_key = 'align'
+      expect(packet.pad_length).to eq 0
+    end
+
+    it 'returns 2 when #dw_options is only 2-byte aligned' do
+      packet.lp_sub_key = 'align' + 'A'
+      expect(packet.pad_length).to eq 2
+    end
+  end
+end
+

data/spec/lib/ruby_smb/dcerpc/winreg/open_key_response_spec.rb

@@ -0,0 +1,35 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::PrpcHkey do
+  it 'is NdrContextHandle subclass' do
+    expect(described_class).to be < RubySMB::Dcerpc::Ndr::NdrContextHandle
+  end
+end
+
+RSpec.describe RubySMB::Dcerpc::Winreg::OpenKeyResponse do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :phk_result }
+  it { is_expected.to respond_to :error_status }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#phk_result' do
+    it 'is a PrpcHkey structure' do
+      expect(packet.phk_result).to be_a RubySMB::Dcerpc::Winreg::PrpcHkey
+    end
+  end
+
+  describe '#error_status' do
+    it 'is a 32-bit unsigned integer' do
+      expect(packet.error_status).to be_a BinData::Uint32le
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to REG_OPEN_KEY constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::REG_OPEN_KEY)
+    end
+  end
+end

data/spec/lib/ruby_smb/dcerpc/winreg/open_root_key_request_spec.rb

@@ -0,0 +1,90 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::PRegistryServerName do
+  it 'is NdrTopLevelFullPointer subclass' do
+    expect(described_class).to be < RubySMB::Dcerpc::Ndr::NdrTopLevelFullPointer
+  end
+
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :referent }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#referent' do
+    it 'is a string in UTF-16LE' do
+      expect(packet.referent).to be_a RubySMB::Field::String16
+    end
+
+    it 'reads 4-bytes' do
+      str = 'spec_test'.encode('utf-16le')
+      packet.referent.read(str)
+      expect(packet.referent.to_binary_s.bytes).to eq(str.bytes[0,4])
+    end
+  end
+end
+
+RSpec.describe RubySMB::Dcerpc::Winreg::OpenRootKeyRequest do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :p_registry_server_name }
+  it { is_expected.to respond_to :sam_desired }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#p_registry_server_name' do
+    it 'is a PRegistryServerName structure' do
+      expect(packet.p_registry_server_name).to be_a RubySMB::Dcerpc::Winreg::PRegistryServerName
+    end
+  end
+
+  describe '#sam_desired' do
+    it 'is a Regsam structure' do
+      expect(packet.sam_desired).to be_a RubySMB::Dcerpc::Winreg::Regsam
+    end
+  end
+
+  describe '#initialize_instance' do
+    context 'when an #opnum parameter is provided' do
+      it 'sets #opnum to the parameter\'s value' do
+        packet = described_class.new(opnum: RubySMB::Dcerpc::Winreg::OPEN_HKLM)
+        expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::OPEN_HKLM)
+      end
+    end
+
+    it 'sets #p_registry_server_name.referent to NULL unicode value' do
+      expect(packet.p_registry_server_name.referent).to eq("\0\0".encode('utf-16le'))
+    end
+
+    context 'when #opnum is not OPEN_HKPD, OPEN_HKPT or OPEN_HKPN' do
+      it 'sets the #sam_desired.maximum flag' do
+        packet = described_class.new(opnum: RubySMB::Dcerpc::Winreg::OPEN_HKCR)
+        expect(packet.sam_desired.maximum).to eq(1)
+      end
+    end
+
+    context 'when #opnum is OPEN_HKPD' do
+      it 'does not set the #sam_desired.maximum flag' do
+        packet = described_class.new(opnum: RubySMB::Dcerpc::Winreg::OPEN_HKPD)
+        expect(packet.sam_desired.maximum).to eq(0)
+      end
+    end
+
+    context 'when #opnum is OPEN_HKPT' do
+      it 'does not set the #sam_desired.maximum flag' do
+        packet = described_class.new(opnum: RubySMB::Dcerpc::Winreg::OPEN_HKPT)
+        expect(packet.sam_desired.maximum).to eq(0)
+      end
+    end
+
+    context 'when #opnum is OPEN_HKPN' do
+      it 'does not set the #sam_desired.maximum flag' do
+        packet = described_class.new(opnum: RubySMB::Dcerpc::Winreg::OPEN_HKPN)
+        expect(packet.sam_desired.maximum).to eq(0)
+      end
+    end
+  end
+end

data/spec/lib/ruby_smb/dcerpc/winreg/open_root_key_response_spec.rb

@@ -0,0 +1,38 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::PrpcHkey do
+  it 'is NdrContextHandle subclass' do
+    expect(described_class).to be < RubySMB::Dcerpc::Ndr::NdrContextHandle
+  end
+end
+
+RSpec.describe RubySMB::Dcerpc::Winreg::OpenRootKeyResponse do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :ph_key}
+  it { is_expected.to respond_to :error_status }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#ph_key' do
+    it 'is a PrpcHkey structure' do
+      expect(packet.ph_key).to be_a RubySMB::Dcerpc::Winreg::PrpcHkey
+    end
+  end
+
+  describe '#error_status' do
+    it 'is a 32-bit unsigned integer' do
+      expect(packet.error_status).to be_a BinData::Uint32le
+    end
+  end
+
+  describe '#initialize_instance' do
+    context 'when an #opnum parameter is provided' do
+      it 'sets #opnum to the parameter\'s value' do
+        packet = described_class.new(opnum: RubySMB::Dcerpc::Winreg::OPEN_HKLM)
+        expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::OPEN_HKLM)
+      end
+    end
+  end
+end

data/spec/lib/ruby_smb/dcerpc/winreg/query_info_key_request_spec.rb

@@ -0,0 +1,39 @@
+RSpec.describe RubySMB::Dcerpc::Winreg::RpcHkey do
+  it 'is NdrContextHandle subclass' do
+    expect(described_class).to be < RubySMB::Dcerpc::Ndr::NdrContextHandle
+  end
+end
+
+RSpec.describe RubySMB::Dcerpc::Winreg::QueryInfoKeyRequest do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :hkey }
+  it { is_expected.to respond_to :lp_class }
+  it { is_expected.to respond_to :opnum }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#hkey' do
+    it 'is a RpcHkey structure' do
+      expect(packet.hkey).to be_a RubySMB::Dcerpc::Winreg::RpcHkey
+    end
+  end
+
+  describe '#lp_class' do
+    it 'is a RrpUnicodeString structure' do
+      expect(packet.lp_class).to be_a RubySMB::Dcerpc::RrpUnicodeString
+    end
+
+    it 'has an initial value of 0' do
+      expect(packet.lp_class).to eq(0)
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to REG_QUERY_INFO_KEY constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::Winreg::REG_QUERY_INFO_KEY)
+    end
+  end
+end