2019-11-28 16:41:55 +01:00
|
|
|
From b9185139c688999c10ed90ca96120c6dad597666 Mon Sep 17 00:00:00 2001
|
2019-01-17 10:18:02 +01:00
|
|
|
From: Erik Johnson <palehose@gmail.com>
|
|
|
|
Date: Fri, 24 Aug 2018 10:35:55 -0500
|
|
|
|
Subject: [PATCH] Fixes: CVE-2018-15750, CVE-2018-15751
|
|
|
|
|
|
|
|
Ensure that tokens are hex to avoid hanging/errors in cherrypy
|
|
|
|
|
|
|
|
Add empty token salt-api integration tests
|
|
|
|
|
|
|
|
Handle Auth exceptions in run_job
|
|
|
|
|
|
|
|
Update tornado test to correct authentication message
|
|
|
|
---
|
2019-04-12 11:57:21 +02:00
|
|
|
salt/netapi/rest_cherrypy/app.py | 7 -------
|
|
|
|
tests/integration/netapi/rest_tornado/test_app.py | 4 ++--
|
|
|
|
2 files changed, 2 insertions(+), 9 deletions(-)
|
2019-01-17 10:18:02 +01:00
|
|
|
|
|
|
|
diff --git a/salt/netapi/rest_cherrypy/app.py b/salt/netapi/rest_cherrypy/app.py
|
2019-11-28 16:41:55 +01:00
|
|
|
index 82615afb29..d230d822cd 100644
|
2019-01-17 10:18:02 +01:00
|
|
|
--- a/salt/netapi/rest_cherrypy/app.py
|
|
|
|
+++ b/salt/netapi/rest_cherrypy/app.py
|
2019-04-12 11:57:21 +02:00
|
|
|
@@ -1174,13 +1174,6 @@ class LowDataAdapter(object):
|
|
|
|
except (TypeError, ValueError):
|
|
|
|
raise cherrypy.HTTPError(401, 'Invalid token')
|
|
|
|
|
|
|
|
- if 'token' in chunk:
|
|
|
|
- # Make sure that auth token is hex
|
|
|
|
- try:
|
|
|
|
- int(chunk['token'], 16)
|
|
|
|
- except (TypeError, ValueError):
|
|
|
|
- raise cherrypy.HTTPError(401, 'Invalid token')
|
|
|
|
-
|
2019-01-17 10:18:02 +01:00
|
|
|
if client:
|
|
|
|
chunk['client'] = client
|
|
|
|
|
|
|
|
diff --git a/tests/integration/netapi/rest_tornado/test_app.py b/tests/integration/netapi/rest_tornado/test_app.py
|
2019-11-28 16:41:55 +01:00
|
|
|
index 2c348a679d..40cf1ce580 100644
|
2019-01-17 10:18:02 +01:00
|
|
|
--- a/tests/integration/netapi/rest_tornado/test_app.py
|
|
|
|
+++ b/tests/integration/netapi/rest_tornado/test_app.py
|
2019-11-28 16:41:55 +01:00
|
|
|
@@ -276,8 +276,8 @@ class TestSaltAPIHandler(_SaltnadoIntegrationTestCase):
|
2019-01-17 10:18:02 +01:00
|
|
|
self.assertIn('jid', ret[0]) # the first 2 are regular returns
|
|
|
|
self.assertIn('jid', ret[1])
|
2019-04-12 11:57:21 +02:00
|
|
|
self.assertIn('Failed to authenticate', ret[2]) # bad auth
|
|
|
|
- self.assertEqual(ret[0]['minions'], sorted(['minion', 'sub_minion']))
|
|
|
|
- self.assertEqual(ret[1]['minions'], sorted(['minion', 'sub_minion']))
|
|
|
|
+ self.assertEqual(ret[0]['minions'], sorted(['minion', 'sub_minion', 'localhost']))
|
|
|
|
+ self.assertEqual(ret[1]['minions'], sorted(['minion', 'sub_minion', 'localhost']))
|
|
|
|
|
|
|
|
def test_simple_local_async_post_no_tgt(self):
|
|
|
|
low = [{'client': 'local_async',
|
2019-01-17 10:18:02 +01:00
|
|
|
--
|
2019-11-28 16:41:55 +01:00
|
|
|
2.16.4
|
2019-01-17 10:18:02 +01:00
|
|
|
|
|
|
|
|