Ana Sayfa Keşfet Yardım
Üye Ol Giriş Yap
publics
/
gokrb5.v7
0
0
Çatalla 0
Dosyalar Sorunlar 0 Değişiklik İstekleri 0 Wiki
Kaynağa Gözat

Fix ResolveRealm for DNS domains (starting with a dot)

Daniel Potapov 8 yıl önce
ebeveyn
0b1e8dbf33
işleme
bb7971eac7
2 değiştirilmiş dosya ile 42 ekleme ve 5 silme
Birleşik Görünüm Farklılık Durumunu Göster
  1. 12 4
      config/krb5conf.go
  2. 30 1
      config/krb5conf_test.go

+ 12 - 4
config/krb5conf.go
Dosyayı Görüntüle 

@@ -6,8 +6,6 @@ import (
 
 	"encoding/hex"
 
 	"encoding/hex"
 
 	"errors"
 
 	"errors"
 
 	"fmt"
 
 	"fmt"
 
-	"github.com/jcmturner/asn1"
 
-	"gopkg.in/jcmturner/gokrb5.v2/iana/etypeID"
 
 	"io"
 
 	"io"
 
 	"os"
 
 	"os"
 
 	"os/user"
 
 	"os/user"
 
@@ -15,6 +13,9 @@ import (
 
 	"strconv"
 
 	"strconv"
 
 	"strings"
 
 	"strings"
 
 	"time"
 
 	"time"
 
+
 
+	"github.com/jcmturner/asn1"
 
+	"gopkg.in/jcmturner/gokrb5.v2/iana/etypeID"
 
 )
 
 )
 
 
 
 // Config represents the KRB5 configuration.
 
 // Config represents the KRB5 configuration.
 
@@ -431,10 +432,17 @@ func (d *DomainRealm) deleteMapping(domain, realm string) {
 
 // The most specific mapping is returned.
 
 // The most specific mapping is returned.
 
 func (c *Config) ResolveRealm(domainName string) string {
 
 func (c *Config) ResolveRealm(domainName string) string {
 
 	domainName = strings.TrimSuffix(domainName, ".")
 
 	domainName = strings.TrimSuffix(domainName, ".")
 
+
 
+	// Try to match the entire hostname first
 
+	if r, ok := c.DomainRealm[domainName]; ok {
 
+		return r
 
+	}
 
+
 
+	// Try to match all DNS domain parts
 
 	periods := strings.Count(domainName, ".") + 1
 
 	periods := strings.Count(domainName, ".") + 1
 
-	for i := 1; i <= periods; i++ {
 
+	for i := 2; i <= periods; i++ {
 
 		z := strings.SplitN(domainName, ".", i)
 
 		z := strings.SplitN(domainName, ".", i)
 
-		if r, ok := c.DomainRealm[z[len(z)-1]]; ok {
 
+		if r, ok := c.DomainRealm["."+z[len(z)-1]]; ok {
 
 			return r
 
 			return r
 
 		}
 
 		}
 
 	}
 
 	}

+ 30 - 1
config/krb5conf_test.go
Dosyayı Görüntüle 

@@ -1,11 +1,12 @@
 
 package config
 
 package config
 
 
 
 import (
 
 import (
 
-	"github.com/stretchr/testify/assert"
 
 	"io/ioutil"
 
 	"io/ioutil"
 
 	"os"
 
 	"os"
 
 	"testing"
 
 	"testing"
 
 	"time"
 
 	"time"
 
+
 
+	"github.com/stretchr/testify/assert"
 
 )
 
 )
 
 
 
 const (
 
 const (
 
@@ -56,6 +57,10 @@ const (
 
  .test.gokrb5 = TEST.GOKRB5
 
  .test.gokrb5 = TEST.GOKRB5
 
 
 
  test.gokrb5 = TEST.GOKRB5
 
  test.gokrb5 = TEST.GOKRB5
 
+ 
+  .example.com = EXAMPLE.COM
 
+ hostname1.example.com = EXAMPLE.COM
 
+ hostname2.example.com = TEST.GOKRB5
 
 
 
 [appdefaults]
 
 [appdefaults]
 
  pam = {
 
  pam = {
 
@@ -281,3 +286,27 @@ func TestParseDuration(t *testing.T) {
 
 	}
 
 	}
 
 
 
 }
 
 }
 
+
 
+func TestResolveRealm(t *testing.T) {
 
+	c, err := NewConfigFromString(krb5Conf)
 
+	if err != nil {
 
+		t.Fatalf("Error loading config: %v", err)
 
+	}
 
+
 
+	tests := []struct {
 
+		domainName string
 
+		want       string
 
+	}{
 
+		{"unknown.com", "TEST.GOKRB5"},
 
+		{"hostname1.example.com", "EXAMPLE.COM"},
 
+		{"hostname2.example.com", "TEST.GOKRB5"},
 
+		{"one.two.three.example.com", "EXAMPLE.COM"},
 
+	}
 
+	for _, tt := range tests {
 
+		t.Run(tt.domainName, func(t *testing.T) {
 
+			if got := c.ResolveRealm(tt.domainName); got != tt.want {
 
+				t.Errorf("Config.ResolveRealm() = %v, want %v", got, tt.want)
 
+			}
 
+		})
 
+	}
 
+}