diff options
author | brian <brian@FreeBSD.org> | 2001-04-01 22:39:17 +0000 |
---|---|---|
committer | brian <brian@FreeBSD.org> | 2001-04-01 22:39:17 +0000 |
commit | 9e1dc5332d1757c528eaeac56798184e82839118 (patch) | |
tree | a2aa0ebd421ed7b70402cf5d3dc3be5cf390f150 /usr.sbin/ppp/pap.c | |
parent | 4cdbbd70f3a32d69b2b1eec231b8dcb52b4a0951 (diff) | |
download | FreeBSD-src-9e1dc5332d1757c528eaeac56798184e82839118.zip FreeBSD-src-9e1dc5332d1757c528eaeac56798184e82839118.tar.gz |
Don't assume challenges and responses don't contain embedded '\0's.
Mschapv2 response generation may produce embedded NULs... causing
us to send a bogus response to the radius server and end up
failing the client's valid response.
Problem pointed out by: Eugene Vigovskiy <vigov@com2com.ru>
Diffstat (limited to 'usr.sbin/ppp/pap.c')
-rw-r--r-- | usr.sbin/ppp/pap.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/usr.sbin/ppp/pap.c b/usr.sbin/ppp/pap.c index d70e198..a2f4488 100644 --- a/usr.sbin/ppp/pap.c +++ b/usr.sbin/ppp/pap.c @@ -249,7 +249,7 @@ pap_Input(struct bundle *bundle, struct link *l, struct mbuf *bp) #ifndef NORADIUS if (*bundle->radius.cfg.file) radius_Authenticate(&bundle->radius, authp, authp->in.name, - key, NULL); + key, strlen(key), NULL, 0); else #endif if (auth_Validate(bundle, authp->in.name, key, p)) |