sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-06 13:18:07 +03:00
Code
4b61092459
samba-mirror/source4/kdc
History
Joseph Sutton 340181bc11 CVE-2022-32744 s4:kpasswd: Ensure we pass the kpasswd server principal into krb5_rd_req_ctx() 
To ensure that, when decrypting the kpasswd ticket, we look up the
correct principal and don't trust the sname from the ticket, we should
pass the principal name of the kpasswd service into krb5_rd_req_ctx().
However, gensec_krb5_update_internal() will pass in NULL unless the
principal in our credentials is CRED_SPECIFIED.

At present, our principal will be considered obtained as CRED_SMB_CONF
(from the cli_credentials_set_conf() a few lines up), so we explicitly
set the realm again, but this time as CRED_SPECIFIED. Now the value of
server_in_keytab that we provide to smb_krb5_rd_req_decoded() will not
be NULL.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15074

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>

[jsutton@samba.org Removed knownfail as KDC no longer panics]
2022-07-24 11:42:02 +02:00
..
mit-kdb CVE-2022-2031 s4:kdc: Limit kpasswd ticket lifetime to two minutes or less 2022-07-24 11:42:02 +02:00
db-glue.c CVE-2022-2031 s4:kdc: Don't use strncmp to compare principal components 2022-07-24 11:42:02 +02:00
db-glue.h CVE-2020-25719 kdc: Avoid races and multiple DB lookups in s4u2self check 2021-11-08 10:46:45 +01:00
hdb-samba4-plugin.c CVE-2022-32744 s4:kdc: Modify HDB plugin to only look up kpasswd principal 2022-07-24 11:42:02 +02:00
hdb-samba4.c CVE-2022-32744 s4:kdc: Modify HDB plugin to only look up kpasswd principal 2022-07-24 11:42:02 +02:00
kdc-glue.c s4-kdc: move kdc_check_pac() to a new subsystem KDC-GLUE. 2015-07-21 19:04:14 +02:00
kdc-glue.h CVE-2022-32744 s4:kdc: Modify HDB plugin to only look up kpasswd principal 2022-07-24 11:42:02 +02:00
kdc-heimdal.c CVE-2022-32744 s4:kdc: Rename keytab_name -> kpasswd_keytab_name 2022-07-24 11:42:02 +02:00
kdc-proxy.c s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
kdc-proxy.h s4-kdc: Create a kdc-proxy.h header file 2016-06-18 23:32:27 +02:00
kdc-server.c s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
kdc-server.h CVE-2022-32744 s4:kdc: Rename keytab_name -> kpasswd_keytab_name 2022-07-24 11:42:02 +02:00
kdc-service-mit.c CVE-2022-32744 s4:kdc: Rename keytab_name -> kpasswd_keytab_name 2022-07-24 11:42:02 +02:00
kdc-service-mit.h s4-kdc: restore MIT KDC backend 2018-11-09 17:52:30 +01:00
kpasswd_glue.c samdb: Add remote address to connect 2018-05-10 20:02:23 +02:00
kpasswd_glue.h s4-kdc_kpasswd: split out some code to a KPASSWD_GLUE subsystem. 2015-07-21 19:04:14 +02:00
kpasswd-helper.c CVE-2022-2031 s4:kpasswd: Correctly generate error strings 2022-07-24 11:42:02 +02:00
kpasswd-helper.h s4-kdc: Add a kpasswd_samdb_set_password() helper function 2016-09-13 00:19:24 +02:00
kpasswd-service-heimdal.c s4:kpasswd: Restructure code for clarity 2022-07-24 11:42:02 +02:00
kpasswd-service-mit.c CVE-2022-2031 s4:kpasswd: Require an initial ticket 2022-07-24 11:42:02 +02:00
kpasswd-service.c CVE-2022-32744 s4:kpasswd: Ensure we pass the kpasswd server principal into krb5_rd_req_ctx() 2022-07-24 11:42:02 +02:00
kpasswd-service.h s4-kdc: Add a new kpasswd service implementation 2016-09-13 00:19:25 +02:00
ktutil.c s4: Add kerberos tracing 2018-12-20 01:31:17 +01:00
mit_kdc_irpc.c s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
mit_kdc_irpc.h s4-kdc: Add MIT KRB5 based irpc service for PAC validation 2017-04-29 23:31:09 +02:00
mit_samba.c CVE-2022-2031 s4:kdc: Add MIT support for ATTRIBUTES_INFO and REQUESTER_SID PAC buffers 2022-07-24 11:42:01 +02:00
mit_samba.h CVE-2022-2031 s4:kdc: Add MIT support for ATTRIBUTES_INFO and REQUESTER_SID PAC buffers 2022-07-24 11:42:01 +02:00
pac-glue.c kdc: Adjust SID mismatch error code to match Windows 2022-07-24 11:42:01 +02:00
pac-glue.h CVE-2020-25719 s4:kdc: Add KDC support for PAC_REQUESTER_SID PAC buffer 2021-11-08 10:46:45 +01:00
samba_kdc.h CVE-2022-2031 s4:kdc: Limit kpasswd ticket lifetime to two minutes or less 2022-07-24 11:42:02 +02:00
sdb_to_hdb.c s4-sdb: Generate etypes list out of keys list 2016-09-26 02:25:07 +02:00
sdb_to_kdb.c CVE-2019-14870: mit-kdc: enforce delegation_not_allowed flag 2019-12-10 10:44:01 +00:00
sdb.c s4-kdc: Remove unused etypes from sdb structure 2016-09-26 06:08:09 +02:00
sdb.h s4:mit-kdb: Force canonicalization for looking up principals 2022-07-24 11:42:01 +02:00
wdc-samba4.c kdc: Require that PAC_REQUESTER_SID buffer is present for TGTs 2022-07-24 11:42:01 +02:00
wscript_build CVE-2022-2031 s4:kpasswd: Require an initial ticket 2022-07-24 11:42:02 +02:00