git.samba.org - samba.git/commit

author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Tue, 25 Oct 2022 06:32:27 +0000 (19:32 +1300)
committer	Stefan Metzmacher <metze@samba.org>
	Tue, 13 Dec 2022 23:48:48 +0000 (00:48 +0100)
commit	07edcef7463103ebb9d3eb6e25c945c1abf1e5d2
tree	a4ed2f1b8e70627d09b027548b7ec740a4cda852	tree
parent	92763515d9f0bb8ed56c721d752db1fb7a268407	commit \| diff

CVE-2022-37966 tests/krb5: Add a test requesting tickets with various encryption types

The KDC should leave the choice of ticket encryption type up to the
target service, and admit no influence from the client.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15237

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(similar to commit 177334c04230d0ad74bfc2b6825ffbebd5afb9af)
[jsutton@samba.org Fixed conflicts in usage.py, knownfails, tests.py]

[jsutton@samba.org Fixed knownfail conflicts]

[jsutton@samba.org Added new enctype bits; re-added expect_edata
parameter to _test_as_exchange(); fixed conflicts in usage.py,
knownfails, tests.py]

librpc/idl/netlogon.idl		diff \| blob \| history
python/samba/tests/krb5/etype_tests.py	[new file with mode: 0755]	blob
python/samba/tests/krb5/kdc_tgs_tests.py		diff \| blob \| history
python/samba/tests/krb5/raw_testcase.py		diff \| blob \| history
python/samba/tests/usage.py		diff \| blob \| history
selftest/knownfail_heimdal_kdc		diff \| blob \| history
selftest/knownfail_mit_kdc		diff \| blob \| history
source4/selftest/tests.py		diff \| blob \| history