CVE-2022-2031 s4:kpasswd: Account for missing target principal

author Joseph Sutton <josephsutton@catalyst.net.nz>

Fri, 27 May 2022 07:17:02 +0000 (19:17 +1200)

committer Jule Anger <janger@samba.org>

Wed, 27 Jul 2022 10:52:36 +0000 (10:52 +0000)
author Joseph Sutton <josephsutton@catalyst.net.nz>
Fri, 27 May 2022 07:17:02 +0000 (19:17 +1200)
committer Jule Anger <janger@samba.org>
Wed, 27 Jul 2022 10:52:36 +0000 (10:52 +0000)
diff --git a/source4/kdc/kpasswd-service-mit.c b/source4/kdc/kpasswd-service-mit.c

index 1dbe5adad6da5064b98f176eb536d7d919a935db..670210819a1345cfa0ccc32e5e086ada5a0e3fe7 100644 (file)
--- a/source4/kdc/kpasswd-service-mit.c
+++ b/source4/kdc/kpasswd-service-mit.c
@@ -142,16 +142,18 @@ static krb5_error_code kpasswd_set_password(struct kdc_server *kdc,
                 return KRB5_KPASSWD_HARDERROR;
         }
  
-       target_realm = smb_krb5_principal_get_realm(
-               mem_ctx, context, target_principal);
-       code = krb5_unparse_name_flags(context,
-                                      target_principal,
-                                      KRB5_PRINCIPAL_UNPARSE_NO_REALM,
-                                      &target_name);
-       if (code != 0) {
-               DBG_WARNING("Failed to parse principal\n");
-               *error_string = "String conversion failed";
-               return KRB5_KPASSWD_HARDERROR;
+       if (target_principal != NULL) {
+               target_realm = smb_krb5_principal_get_realm(
+                       mem_ctx, context, target_principal);
+               code = krb5_unparse_name_flags(context,
+                                              target_principal,
+                                              KRB5_PRINCIPAL_UNPARSE_NO_REALM,
+                                              &target_name);
+               if (code != 0) {
+                       DBG_WARNING("Failed to parse principal\n");
+                       *error_string = "String conversion failed";
+                       return KRB5_KPASSWD_HARDERROR;
+               }
         }
  
         if ((target_name != NULL && target_realm == NULL) ||
author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Fri, 27 May 2022 07:17:02 +0000 (19:17 +1200)
committer	Jule Anger <janger@samba.org>
	Wed, 27 Jul 2022 10:52:36 +0000 (10:52 +0000)