Add specs for QueryFileInformation

jvazquez-r7 · jvazquez-r7 · commit a2a24c56d667 · 2015-03-03T13:04:30.000-06:00
diff --git a/spec/lib/msf/core/exploit/smb/server/share/command/trans2/query_file_information_spec.rb b/spec/lib/msf/core/exploit/smb/server/share/command/trans2/query_file_information_spec.rb
@@ -0,0 +1,75 @@
+# -*- coding:binary -*-
+require 'spec_helper'
+
+require 'msf/core'
+require 'msf/core/exploit/smb/server/share'
+require 'rex/proto/smb/constants'
+
+describe Msf::Exploit::Remote::SMB::Server::Share do
+
+  subject(:mod) do
+    mod = Msf::Exploit.new
+    mod.extend described_class
+    mod.send(:initialize)
+
+    mod
+  end
+
+  let(:client_string) { '' }
+  let(:client) { StringIO.new(client_string) }
+
+  let(:valid_query_file_standard_info_params) do
+    "\xad\xde\xed\x03"
+  end
+  let(:query_file_standard_info_res_length) { 83 }
+
+  before(:each) do
+    mod.instance_variable_set('@state', {
+      client => {
+        :multiplex_id => 0x41424344,
+        :process_id   => 0x45464748,
+        :file_id      => 0xdead,
+        :dir_id       => 0xbeef
+      }
+    })
+    mod.lo = 0
+    mod.hi = 0
+    mod.share = 'test'
+    mod.path_name = "\\"
+    mod.file_name = 'test.exe'
+    mod.file_contents = 'metasploit'
+
+    allow_any_instance_of(::StringIO).to receive(:put) do |io, data|
+      io.write(data)
+    end
+  end
+
+  describe "#smb_cmd_trans2_query_file_information" do
+
+    context "when valid SMB_QUERY_FILE_STANDARD_INFO parameters" do
+      it "returns the number of bytes answered" do
+        expect(mod.smb_cmd_trans2_query_file_information(client, valid_query_file_standard_info_params)).to eq(query_file_standard_info_res_length)
+      end
+
+      it "send SMB_QUERY_FILE_STANDARD_INFO response with the file size" do
+        mod.smb_cmd_trans2_query_file_information(client, valid_query_file_standard_info_params)
+        client.seek(0)
+        res = client.read
+
+        trans2_res = Rex::Proto::SMB::Constants::SMB_TRANS_RES_PKT.make_struct
+        trans2_res.from_s(res)
+        param_count = trans2_res['Payload'].v['ParamCount']
+        data_count = trans2_res['Payload'].v['DataCount']
+
+        data  = trans2_res['Payload'].v['SetupData'][2 + param_count, data_count]
+        smb_data = Rex::Proto::SMB::Constants::SMB_QUERY_FILE_STANDARD_INFO_HDR.make_struct
+        smb_data.from_s(data)
+
+        expect(smb_data.v['EndOfFile']).to eq(mod.file_contents.length)
+      end
+    end
+  end
+
+end
+
+
