[28662] in CVS-changelog-for-Kerberos-V5
krb5 commit: Regression tests for keyless principals
daemon@ATHENA.MIT.EDU (Benjamin Kaduk)
Mon Dec 15 15:03:44 2014
Date: Mon, 15 Dec 2014 15:03:34 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
Message-Id: <201412152003.sBFK3YPO004814@drugstore.mit.edu>
To: cvs-krb5@mit.edu
Reply-To: krbdev@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: cvs-krb5-bounces@mit.edu
https://github.com/krb5/krb5/commit/71201ced154fd3d1a87358ebdaf209d24885ed13
commit 71201ced154fd3d1a87358ebdaf209d24885ed13
Author: Ben Kaduk <kaduk@mit.edu>
Date: Fri Nov 21 14:00:20 2014 -0500
Regression tests for keyless principals
Confirm that kadmind does not crash when creating/modifying a principal
to have no keys, and confirm that no keys are present after a
purgekeys -all.
src/tests/t_kdb.py | 17 +++++++++++++++++
1 files changed, 17 insertions(+), 0 deletions(-)
diff --git a/src/tests/t_kdb.py b/src/tests/t_kdb.py
index 9372926..a0bc096 100644
--- a/src/tests/t_kdb.py
+++ b/src/tests/t_kdb.py
@@ -329,6 +329,23 @@ out = realm.run_kadminl('getprinc kvnoprinc')
if 'Number of keys: 6' not in out:
fail('After cpw -keepold, wrong number of keys')
+# Regression test for #8041 (NULL dereference on keyless principals).
+out = realm.run_kadminl('addprinc -nokey keylessprinc')
+if 'Principal "keylessprinc@KRBTEST.COM" created' not in out:
+ fail('Failed to create keyless principal')
+out = realm.run_kadminl('getprinc keylessprinc')
+if 'Number of keys: 0' not in out:
+ fail('Failed to create a principal with no keys')
+realm.run_kadminl('cpw -randkey -e aes256-cts,aes128-cts keylessprinc')
+realm.run_kadminl('cpw -randkey -keepold -e aes256-cts,aes128-cts keylessprinc')
+out = realm.run_kadminl('getprinc keylessprinc')
+if 'Number of keys: 4' not in out:
+ fail('Failed to add keys to keylessprinc')
+realm.run_kadminl('purgekeys -all keylessprinc')
+out = realm.run_kadminl('getprinc keylessprinc')
+if 'Number of keys: 0' not in out:
+ fail('After purgekeys -all, keys remain')
+
realm.stop()
# Briefly test dump and load.
_______________________________________________
cvs-krb5 mailing list
cvs-krb5@mit.edu
https://mailman.mit.edu/mailman/listinfo/cvs-krb5
