diff options
author | Joseph Sutton <josephsutton@catalyst.net.nz> | 2022-11-18 12:11:39 +1300 |
---|---|---|
committer | Stefan Metzmacher <metze@samba.org> | 2022-12-13 13:07:29 +0000 |
commit | 371d7e63fcb966ab54915a3dedb888d48adbf0c0 (patch) | |
tree | 9b52c1e5e22f59ce6c66834632c6b8fb45683313 /selftest/target | |
parent | a7a0b9ad0757d6586905d64bc645a8946fe5c10e (diff) | |
download | samba-371d7e63fcb966ab54915a3dedb888d48adbf0c0.tar.gz |
CVE-2022-37966 selftest: Add tests for Kerberos session key behaviour since ENC_HMAC_SHA1_96_AES256_SK was added
ENC_HMAC_SHA1_96_AES256_SK is a flag introduced for by Microsoft in this CVE
to indicate that additionally, AES session keys are available.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15237
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
Diffstat (limited to 'selftest/target')
-rwxr-xr-x | selftest/target/Samba4.pm | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/selftest/target/Samba4.pm b/selftest/target/Samba4.pm index acf74aa899a..d15156a538b 100755 --- a/selftest/target/Samba4.pm +++ b/selftest/target/Samba4.pm @@ -1491,6 +1491,8 @@ sub provision_promoted_dc($$$) ntlm auth = ntlmv2-only + kdc force enable rc4 weak session keys = yes + [sysvol] path = $ctx->{statedir}/sysvol read only = yes |