diff options
| author | Andrew Bartlett <abartlet@samba.org> | 2019-09-19 11:50:01 +1200 |
|---|---|---|
| committer | Karolin Seeger <kseeger@samba.org> | 2019-10-29 10:04:45 +0000 |
| commit | d524c7ddee92a457ba680853b6c25c877d881ff8 (patch) | |
| tree | 7c7801d0c3cd14b972bc68ada43b77e69848f561 /selftest | |
| parent | 7ccc302b4bb9e0a9b695074959dc45e6fc4902bb (diff) | |
| download | samba-d524c7ddee92a457ba680853b6c25c877d881ff8.tar.gz | |
CVE-2019-14833: Use utf8 characters in the unacceptable password
This shows that the "check password script" handling has a bug.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=12438
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Diffstat (limited to 'selftest')
| -rw-r--r-- | selftest/knownfail.d/unacceptable-passwords | 1 | ||||
| -rwxr-xr-x | selftest/target/Samba4.pm | 2 |
2 files changed, 2 insertions, 1 deletions
diff --git a/selftest/knownfail.d/unacceptable-passwords b/selftest/knownfail.d/unacceptable-passwords new file mode 100644 index 00000000000..75fa2fc32b8 --- /dev/null +++ b/selftest/knownfail.d/unacceptable-passwords @@ -0,0 +1 @@ +^samba.tests.samba_tool.user_check_password_script.samba.tests.samba_tool.user_check_password_script.UserCheckPwdTestCase.test_checkpassword_unacceptable\(chgdcpass:local\)
\ No newline at end of file diff --git a/selftest/target/Samba4.pm b/selftest/target/Samba4.pm index 9df9e84ff63..1310e2ff09f 100755 --- a/selftest/target/Samba4.pm +++ b/selftest/target/Samba4.pm @@ -1882,7 +1882,7 @@ sub provision_chgdcpass($$) print "PROVISIONING CHGDCPASS...\n"; # This environment disallows the use of this password # (and also removes the default AD complexity checks) - my $unacceptable_password = "widk3Dsle32jxdBdskldsk55klASKQ"; + my $unacceptable_password = "Paßßword-widk3Dsle32jxdBdskldsk55klASKQ"; my $extra_smb_conf = " check password script = $self->{srcdir}/selftest/checkpassword_arg1.sh ${unacceptable_password} allow dcerpc auth level connect:lsarpc = yes |