summaryrefslogtreecommitdiff
path: root/selftest
Commit message (Expand)AuthorAgeFilesLines
* CVE-2022-38023 s3:rpc_server/netlogon: Use dcesrv_netr_creds_server_step_check()Samuel Cabrero2023-01-231-0/+14
* CVE-2022-38023 selftest:Samba3: avoid global 'server schannel = auto'Samuel Cabrero2023-01-231-1/+16
* kdc: avoid re-encoding KDC-REQ-BODYLuke Howard2022-12-151-2/+0
* tests/krb5: Add test requesting a service ticket expiring post-2038Joseph Sutton2022-12-141-0/+2
* CVE-2022-37966 s4:kdc: announce PA-SUPPORTED-ETYPES like windows.Stefan Metzmacher2022-12-142-2980/+616
* CVE-2022-37966 python:tests/krb5: test much more etype combinationsStefan Metzmacher2022-12-142-501/+3907
* CVE-2022-37966 kdc: Assume trust objects support AES by defaultJoseph Sutton2022-12-141-6/+0
* CVE-2022-37966 kdc: Implement new Kerberos session key behaviour since ENC_HM...Andrew Bartlett2022-12-142-598/+2
* CVE-2022-37966 s4:torture: Expect referral ticket enc-part encrypted with AES...Joseph Sutton2022-12-141-0/+6
* CVE-2022-37966 selftest: Run S4U tests against FL2003 DCJoseph Sutton2022-12-141-0/+7
* CVE-2022-37966 selftest: Add tests for Kerberos session key behaviour since E...Joseph Sutton2022-12-143-5/+1113
* CVE-2022-37967 Add new PAC checksumJoseph Sutton2022-12-141-2/+11
* CVE-2022-37966 HEIMDAL: Look up the server keys to combine with clients etype...Andrew Bartlett2022-12-141-5/+0
* CVE-2022-37966 tests/krb5: Add a test requesting tickets with various encrypt...Joseph Sutton2022-12-142-0/+12
* CVE-2022-37966 tests/krb5: Check encrypted-pa-data if presentJoseph Sutton2022-12-141-0/+2
* CVE-2022-38023 s4:rpc_server/netlogon: implement "server schannel require sea...Stefan Metzmacher2022-12-141-0/+28
* CVE-2022-38023 selftest:Samba4: avoid global 'allow nt4 crypto = yes' and 're...Stefan Metzmacher2022-12-141-6/+49
* CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 clients' default to yesStefan Metzmacher2022-12-141-0/+4
* CVE-2022-38023 selftest:Samba4: avoid global 'server schannel = auto'Stefan Metzmacher2022-12-131-3/+37
* selftest: make filter-subunit much more efficient for large knownfail listsAndrew Bartlett2022-12-131-17/+15
* CVE-2022-3437 source4/heimdal: Pass correct length to _gssapi_verify_pad()Joseph Sutton2022-10-241-2/+0
* CVE-2022-3437 source4/heimdal: Check for overflow in _gsskrb5_get_mech()Joseph Sutton2022-10-241-1/+0
* CVE-2022-3437 source4/heimdal: Check buffer length against overflow for DES{,...Joseph Sutton2022-10-241-5/+0
* CVE-2022-3437 source4/heimdal: Check the result of _gsskrb5_get_mech()Joseph Sutton2022-10-241-1/+0
* CVE-2022-3437 s4/auth/tests: Add unit tests for unwrap_des3()Joseph Sutton2022-10-242-0/+14
* smbd: check for streams support in unix_convert()Ralph Boehme2022-09-061-1/+0
* smbtorture: add a test trying to create a stream on share without streams sup...Ralph Boehme2022-09-061-0/+1
* smbd: implement access checks for SMB2-GETINFO as per MS-SMB2 3.3.5.20.1Ralph Boehme2022-09-062-4/+0
* smbtorture: check required access for SMB2-GETINFORalph Boehme2022-09-062-0/+3
* smbd: add and use vfs_fget_dos_attributes()Ralph Boehme2022-09-061-1/+0
* smbtorture: add test smb2.stream.attributes2Ralph Boehme2022-09-061-0/+1
* smbtorture: rename smb2.streams.attributes to smb2.streams.attributes1Ralph Boehme2022-09-061-2/+2
* smbd: use metadata_fsp() with SMB_VFS_FGET_NT_ACL()Ralph Boehme2022-09-061-1/+0
* CI: add a test trying to delete a stream on a pathref ("stat open") handleRalph Boehme2022-09-062-0/+8
* s3:smbd: only clear LEASE_READ if there's no read lease is leftStefan Metzmacher2022-08-231-2/+0
* s4:torture/smb2: add smb2.lease.v[1,2]_bug_15148Stefan Metzmacher2022-08-231-0/+2
* mdssvc: return all-zero policy handle if spotlight is disabledRalph Boehme2022-07-311-1/+0
* CI: fix check for correct mdsvc resonse when connecting to a share with Spotl...Ralph Boehme2022-07-311-0/+1
* CVE-2022-32742: s3: smbd: Harden the smbreq_bufrem() macro.Jeremy Allison2022-07-241-2/+0
* CVE-2022-32742: s4: torture: Add raw.write.bad-write test.Jeremy Allison2022-07-241-0/+2
* CVE-2022-2031 s4:kpasswd: Do not accept TGTs as kpasswd ticketsJoseph Sutton2022-07-242-8/+0
* CVE-2022-2031 tests/krb5: Add test that we cannot provide a TGT to kpasswdJoseph Sutton2022-07-242-0/+8
* CVE-2022-32744 s4:kpasswd: Ensure we pass the kpasswd server principal into k...Joseph Sutton2022-07-242-6/+0
* CVE-2022-32744 s4:kdc: Modify HDB plugin to only look up kpasswd principalJoseph Sutton2022-07-241-3/+0
* CVE-2022-2031 s4:kdc: Don't use strncmp to compare principal componentsJoseph Sutton2022-07-242-8/+0
* CVE-2022-2031 tests/krb5: Test truncated forms of server principalsJoseph Sutton2022-07-242-0/+8
* CVE-2022-2031 s4:kdc: Reject tickets during the last two minutes of their lifeJoseph Sutton2022-07-241-1/+0
* CVE-2022-2031 s4:kdc: Limit kpasswd ticket lifetime to two minutes or lessJoseph Sutton2022-07-242-2/+0
* CVE-2022-2031 s4:kdc: Fix canonicalisation of kadmin/changepw principalJoseph Sutton2022-07-242-3/+0
* CVE-2022-2031 testprogs: Add kadmin/changepw canonicalization test with MIT k...Andreas Schneider2022-07-241-0/+1
View Lorry Controller Status