diff options
author | Gary Lockyer <gary@catalyst.net.nz> | 2020-04-14 13:32:32 +1200 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2020-04-21 13:20:31 +0200 |
commit | e5c4b58314e9e8dba63b3078061619ae8b5d4ad3 (patch) | |
tree | bbe40e97f90ff27971a8cdf62d542784915ead70 /source4 | |
parent | ef35bb12674bf591385c4629c84b1a76f231755b (diff) | |
download | samba-e5c4b58314e9e8dba63b3078061619ae8b5d4ad3.tar.gz |
CVE-2020-10704: ldapserver tests: Limit search request sizes
Add tests to ensure that overly long (> 256000 bytes) LDAP search
requests are rejected.
Credit to OSS-Fuzz
REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334
Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Diffstat (limited to 'source4')
-rwxr-xr-x | source4/selftest/tests.py | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/source4/selftest/tests.py b/source4/selftest/tests.py index 251ace24052..f7645365384 100755 --- a/source4/selftest/tests.py +++ b/source4/selftest/tests.py @@ -881,6 +881,11 @@ plantestsuite_loadlist("samba4.ldap_modify_order.normal_user.python(ad_dc_defaul '$LOADLIST', '$LISTOPT']) +planoldpythontestsuite("ad_dc", + "samba.tests.ldap_raw", + extra_args=['-U"$USERNAME%$PASSWORD"'], + environ={'TEST_ENV': 'ad_dc'}) + plantestsuite_loadlist("samba4.tokengroups.krb5.python(ad_dc_default)", "ad_dc_default:local", [python, os.path.join(DSDB_PYTEST_DIR, "token_group.py"), '$SERVER', '-U"$USERNAME%$PASSWORD"', '--workgroup=$DOMAIN', '-k', 'yes', '$LOADLIST', '$LISTOPT']) plantestsuite_loadlist("samba4.tokengroups.ntlm.python(ad_dc_default)", "ad_dc_default:local", [python, os.path.join(DSDB_PYTEST_DIR, "token_group.py"), '$SERVER', '-U"$USERNAME%$PASSWORD"', '--workgroup=$DOMAIN', '-k', 'no', '$LOADLIST', '$LISTOPT']) plantestsuite("samba4.sam.python(fl2008r2dc)", "fl2008r2dc", [python, os.path.join(DSDB_PYTEST_DIR, "sam.py"), '$SERVER', '-U"$USERNAME%$PASSWORD"', '--workgroup=$DOMAIN']) |