CVE-2022-32744 tests/krb5: Correctly calculate salt for pre-existing accounts

author Joseph Sutton <josephsutton@catalyst.net.nz>

Tue, 24 May 2022 07:06:53 +0000 (19:06 +1200)

committer Jule Anger <janger@samba.org>

Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)
author Joseph Sutton <josephsutton@catalyst.net.nz>
Tue, 24 May 2022 07:06:53 +0000 (19:06 +1200)
committer Jule Anger <janger@samba.org>
Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)
diff --git a/python/samba/tests/krb5/kdc_base_test.py b/python/samba/tests/krb5/kdc_base_test.py

index 2117663b26b080018713fb5148f90be7646c4200..685a6f71f88d3b1e60b8fc55cb2e564477f6aceb 100644 (file)
--- a/python/samba/tests/krb5/kdc_base_test.py
+++ b/python/samba/tests/krb5/kdc_base_test.py
@@ -1048,6 +1048,7 @@ class KDCBaseTest(RawKerberosTest):
  
              kvno = int(res[0]['msDS-KeyVersionNumber'][0])
              creds.set_kvno(kvno)
+            creds.set_workstation(username[:-1])
              creds.set_dn(dn)
  
              keys = self.get_keys(samdb, dn)
diff --git a/python/samba/tests/krb5/raw_testcase.py b/python/samba/tests/krb5/raw_testcase.py

index 4120edf93b94e917ac48ba13268613f365ea05f1..a9a98c36cbfa66af462e3657d6b498c5602d1427 100644 (file)
--- a/python/samba/tests/krb5/raw_testcase.py
+++ b/python/samba/tests/krb5/raw_testcase.py
@@ -834,6 +834,7 @@ class RawKerberosTest(TestCaseInTempDir):
                                   allow_missing_password=allow_missing_password,
                                   allow_missing_keys=allow_missing_keys)
          c.set_gensec_features(c.get_gensec_features() | FEATURE_SEAL)
+        c.set_workstation('')
          return c
  
      def get_rodc_krbtgt_creds(self,
author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Tue, 24 May 2022 07:06:53 +0000 (19:06 +1200)
committer	Jule Anger <janger@samba.org>
	Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)
python/samba/tests/krb5/kdc_base_test.py		patch \| blob \| history
python/samba/tests/krb5/raw_testcase.py		patch \| blob \| history