CVE-2020-25719 tests/krb5: Add test for user-to-user with no sname

author Joseph Sutton <josephsutton@catalyst.net.nz>

Tue, 26 Oct 2021 08:06:58 +0000 (21:06 +1300)

committer Jule Anger <janger@samba.org>

Mon, 8 Nov 2021 09:46:44 +0000 (10:46 +0100)
author Joseph Sutton <josephsutton@catalyst.net.nz>
Tue, 26 Oct 2021 08:06:58 +0000 (21:06 +1300)
committer Jule Anger <janger@samba.org>
Mon, 8 Nov 2021 09:46:44 +0000 (10:46 +0100)
diff --git a/python/samba/tests/krb5/kdc_tgs_tests.py b/python/samba/tests/krb5/kdc_tgs_tests.py

index 2005d71fa81a394e8f5c6b63b09dcc2a05c40bae..b0f60c0a8ce919d5b4227e2576931c220b32fd63 100755 (executable)
--- a/python/samba/tests/krb5/kdc_tgs_tests.py
+++ b/python/samba/tests/krb5/kdc_tgs_tests.py
@@ -1122,6 +1122,14 @@ class KdcTgsTests(KDCBaseTest):
          self._user2user(tgt, creds, sname=sname,
                          expected_error=KDC_ERR_S_PRINCIPAL_UNKNOWN)
  
+    def test_user2user_no_sname(self):
+        creds = self._get_creds()
+        tgt = self._get_tgt(creds)
+
+        self._user2user(tgt, creds, sname=False,
+                        expected_error=(KDC_ERR_GENERIC,
+                                        KDC_ERR_S_PRINCIPAL_UNKNOWN))
+
      def test_user2user_service_ticket(self):
          creds = self._get_creds()
          tgt = self._get_tgt(creds)
@@ -2025,16 +2033,24 @@ class KdcTgsTests(KDCBaseTest):
                   expected_status=None):
          srealm = target_creds.get_realm()
  
-        if sname is None:
-            target_name = target_creds.get_username()
-            if target_name == 'krbtgt':
-                sname = self.PrincipalName_create(name_type=NT_SRV_INST,
-                                                  names=[target_name, srealm])
-            else:
-                if target_name[-1] == '$':
-                    target_name = target_name[:-1]
-                sname = self.PrincipalName_create(name_type=NT_PRINCIPAL,
-                                                  names=['host', target_name])
+        if sname is False:
+            sname = None
+            expected_sname = self.get_krbtgt_sname()
+        else:
+            if sname is None:
+                target_name = target_creds.get_username()
+                if target_name == 'krbtgt':
+                    sname = self.PrincipalName_create(
+                        name_type=NT_SRV_INST,
+                        names=[target_name, srealm])
+                else:
+                    if target_name[-1] == '$':
+                        target_name = target_name[:-1]
+                    sname = self.PrincipalName_create(
+                        name_type=NT_PRINCIPAL,
+                        names=['host', target_name])
+
+            expected_sname = sname
  
          if additional_ticket is not None:
              additional_tickets = [additional_ticket.ticket]
@@ -2062,7 +2078,7 @@ class KdcTgsTests(KDCBaseTest):
              expected_crealm=tgt.crealm,
              expected_cname=expected_cname,
              expected_srealm=srealm,
-            expected_sname=sname,
+            expected_sname=expected_sname,
              ticket_decryption_key=decryption_key,
              generate_padata_fn=generate_padata_fn,
              check_error_fn=check_error_fn,
diff --git a/selftest/knownfail_heimdal_kdc b/selftest/knownfail_heimdal_kdc

index 41ad710d2f22550f1eb6aaecb99b3dcce1a640ca..fc2917761a1669cfc1c65cc9e5c401c53a5bf230 100644 (file)
--- a/selftest/knownfail_heimdal_kdc
+++ b/selftest/knownfail_heimdal_kdc
@@ -323,6 +323,7 @@
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_authdata_no_pac
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_matching_sname_host
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_no_pac
+^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_no_sname
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_non_existent_sname
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_req
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_rodc_allowed_denied
diff --git a/selftest/knownfail_mit_kdc b/selftest/knownfail_mit_kdc

index cf3fc5abbaf3f82487e1abc17f70da73b366d6c8..aa66f4cb0fc6edecc8b1d2d063befc6ed2830c1c 100644 (file)
--- a/selftest/knownfail_mit_kdc
+++ b/selftest/knownfail_mit_kdc
@@ -441,6 +441,7 @@ samba.tests.krb5.as_canonicalization_tests.samba.tests.krb5.as_canonicalization_
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_upn_dns_info_ex_user
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_authdata_no_pac
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_no_pac
+^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_no_sname
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_req
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_rodc_allowed_denied
  ^samba.tests.krb5.kdc_tgs_tests.samba.tests.krb5.kdc_tgs_tests.KdcTgsTests.test_user2user_rodc_denied
author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Tue, 26 Oct 2021 08:06:58 +0000 (21:06 +1300)
committer	Jule Anger <janger@samba.org>
	Mon, 8 Nov 2021 09:46:44 +0000 (10:46 +0100)
python/samba/tests/krb5/kdc_tgs_tests.py		patch \| blob \| history
selftest/knownfail_heimdal_kdc		patch \| blob \| history
selftest/knownfail_mit_kdc		patch \| blob \| history