index
:
delta/samba.git
master
old-v4-0-stable
old-v4-0-test
v3-0-stable
v3-0-test
v3-2-stable
v3-2-test
v3-3-stable
v3-3-test
v3-4-stable
v3-4-test
v3-5-stable
v3-5-test
v3-6-stable
v3-6-test
v3-devel
v4-0-stable
v4-0-test
v4-1-stable
v4-1-test
v4-10-stable
v4-10-test
v4-11-stable
v4-11-test
v4-12-stable
v4-12-test
v4-13-stable
v4-13-test
v4-14-stable
v4-14-test
v4-15-stable
v4-15-test
v4-16-stable
v4-16-test
v4-17-stable
v4-17-test
v4-18-stable
v4-18-test
v4-2-stable
v4-2-test
v4-3-stable
v4-3-test
v4-4-stable
v4-4-test
v4-5-stable
v4-5-test
v4-6-stable
v4-6-test
v4-7-stable
v4-7-test
v4-8-stable
v4-8-test
v4-9-stable
v4-9-test
git.samba.org: samba.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
selftest
/
knownfail_heimdal_kdc
Commit message (
Expand
)
Author
Age
Files
Lines
*
s4:kdc: Enforce TGT lifetime authentication policy
Joseph Sutton
2023-05-18
1
-21
/
+0
*
tests/krb5: Add tests for authentication policies
Joseph Sutton
2023-05-18
1
-0
/
+84
*
tests/krb5: Test that NT_STATUS_ACCOUNT_LOCKED_OUT is returned in KDC reply e...
Joseph Sutton
2023-05-18
1
-0
/
+7
*
s4:kdc: Add support for AD device claims
Joseph Sutton
2023-03-31
1
-37
/
+0
*
s4:kdc: Add support for AD client claims
Joseph Sutton
2023-03-31
1
-94
/
+0
*
tests/krb5: Test that denied attributes are still issued in claims
Joseph Sutton
2023-03-20
1
-0
/
+2
*
tests/krb5: Test that claims are generated even if PAC-OPTIONS are not set
Joseph Sutton
2023-03-20
1
-0
/
+3
*
tests/krb5: Test that RODC-issued device groups are regenerated
Joseph Sutton
2023-03-20
1
-0
/
+1
*
tests/krb5: Test that RODC-issued claims are regenerated
Joseph Sutton
2023-03-20
1
-0
/
+8
*
tests/krb5: Add tests for constrained delegation with RODC-issued tickets
Joseph Sutton
2023-03-20
1
-0
/
+1
*
tests/krb5: Add simple resource-based constrained delegation test
Joseph Sutton
2023-03-20
1
-0
/
+1
*
tests/krb5: Remove old device info and device claims tests
Joseph Sutton
2023-03-08
1
-3
/
+0
*
tests/krb5: Add tests for device claims
Joseph Sutton
2023-03-08
1
-0
/
+2
*
tests/krb5: Add tests for device info
Joseph Sutton
2023-03-08
1
-0
/
+35
*
tests/krb5: Add test for compressed claim
Joseph Sutton
2023-03-08
1
-0
/
+2
*
tests/krb5: Test we get correct values for integer syntax claims
Joseph Sutton
2023-03-08
1
-0
/
+2
*
tests/krb5: Document and tidy up existing claims tests
Joseph Sutton
2023-03-08
1
-2
/
+2
*
tests/krb5: Add tests adding a user to a group prior to a TGS-REQ
Joseph Sutton
2023-03-03
1
-0
/
+8
*
auth: Discard non-base SIDs when creating SamInfo2
Joseph Sutton
2023-02-08
1
-4
/
+0
*
tests/krb5: Test groups returned by SamLogon
Joseph Sutton
2023-02-08
1
-0
/
+4
*
s4/dsdb/samldb: Disallow setting a domain-local group as a primary group
Joseph Sutton
2023-02-08
1
-4
/
+0
*
auth: Correct primary group handling
Joseph Sutton
2023-02-08
1
-6
/
+0
*
tests/krb5: Add tests for the primary group
Joseph Sutton
2023-02-08
1
-0
/
+10
*
s4:kdc: Add resource SID compression
Joseph Sutton
2023-02-08
1
-16
/
+0
*
auth: Pass through entire PAC flags value in auth_user_info
Joseph Sutton
2023-02-08
1
-1
/
+0
*
tests/krb5: Add tests of NETLOGON_RESOURCE_GROUPS flag handling
Joseph Sutton
2023-02-08
1
-0
/
+2
*
tests/krb5: Add group tests simulating PACs from a trusted domain
Joseph Sutton
2023-02-08
1
-0
/
+3
*
tests/krb5: Add some more test cases for PAC group handling
Joseph Sutton
2023-02-08
1
-0
/
+2
*
tests/krb5: Remove tests of KDCs without resource SID compression support
Joseph Sutton
2023-02-08
1
-2
/
+1
*
auth: Exclude resource groups from a TGT
Joseph Sutton
2023-02-08
1
-11
/
+0
*
auth: Store group attributes in auth_user_info_dc
Joseph Sutton
2023-02-08
1
-0
/
+1
*
CVE-2022-37966 kdc: Implement new Kerberos session key behaviour since ENC_HM...
Andrew Bartlett
2022-12-13
1
-516
/
+0
*
CVE-2022-37966 selftest: Add tests for Kerberos session key behaviour since E...
Joseph Sutton
2022-12-13
1
-0
/
+516
*
CVE-2022-37966 HEIMDAL: Look up the server keys to combine with clients etype...
Andrew Bartlett
2022-12-13
1
-5
/
+0
*
CVE-2022-37966 tests/krb5: Add a test requesting tickets with various encrypt...
Joseph Sutton
2022-12-13
1
-0
/
+5
*
tests/krb5: Add tests of PAC group handling
Joseph Sutton
2022-11-08
1
-0
/
+21
*
CVE-2021-20251 s4:kdc: Check badPwdCount update return status
Joseph Sutton
2022-09-12
1
-4
/
+0
*
CVE-2021-20251 s4-auth: Pass through error code from badPwdCount update
Joseph Sutton
2022-09-12
1
-1
/
+0
*
CVE-2021-20251 s4 auth: make bad password count increment atomic
Andrew Bartlett
2022-09-12
1
-5
/
+0
*
CVE-2021-20251 tests/krb5: Add tests for password lockout race
Joseph Sutton
2022-09-12
1
-0
/
+10
*
tests/krb5: Add claims tests
Joseph Sutton
2022-09-09
1
-0
/
+88
*
CVE-2022-2031 s4:kpasswd: Do not accept TGTs as kpasswd tickets
Joseph Sutton
2022-07-27
1
-4
/
+0
*
CVE-2022-2031 tests/krb5: Add test that we cannot provide a TGT to kpasswd
Joseph Sutton
2022-07-27
1
-0
/
+4
*
CVE-2022-32744 s4:kdc: Modify HDB plugin to only look up kpasswd principal
Joseph Sutton
2022-07-27
1
-6
/
+0
*
CVE-2022-2031 s4:kdc: Don't use strncmp to compare principal components
Joseph Sutton
2022-07-27
1
-4
/
+0
*
CVE-2022-2031 tests/krb5: Test truncated forms of server principals
Joseph Sutton
2022-07-27
1
-0
/
+4
*
CVE-2022-32744 s4:kdc: Don't allow HDB keytab iteration
Joseph Sutton
2022-07-27
1
-1
/
+0
*
CVE-2022-2031 s4:kdc: Reject tickets during the last two minutes of their life
Joseph Sutton
2022-07-27
1
-1
/
+0
*
CVE-2022-2031 s4:kdc: Limit kpasswd ticket lifetime to two minutes or less
Joseph Sutton
2022-07-27
1
-1
/
+0
*
CVE-2022-2031 s4:kdc: Fix canonicalisation of kadmin/changepw principal
Joseph Sutton
2022-07-27
1
-2
/
+0
[next]