diff options
author | Christian Niessner <openvpn@christian-niessner.de> | 2013-03-07 19:37:58 +0100 |
---|---|---|
committer | Gert Doering <gert@greenie.muc.de> | 2013-03-07 19:41:57 +0100 |
commit | 55058d4f96dfec96e9f0cad7802a5eaaf9a3301f (patch) | |
tree | a8b5436645fbf4cf94b3bf8f074ff75b6396f96d /src/openvpn/options.c | |
parent | ffb9d7d9bd24ee06f04f08b7bd77f61578e59431 (diff) | |
download | openvpn-55058d4f96dfec96e9f0cad7802a5eaaf9a3301f.tar.gz openvpn-55058d4f96dfec96e9f0cad7802a5eaaf9a3301f.tar.xz openvpn-55058d4f96dfec96e9f0cad7802a5eaaf9a3301f.zip |
Fix corner case in NTLM authentication (trac #172)
The problem is located in the file proxy.c within
"establish_http_proxy_passthru": To keep buffers small long
base64-encoded NTLM-Strings are truncated.
But the truncating is done on a wrong place: base 64 strings can be
cut every 4 chars. the buffer is 128 bytes - including the terminating
\0, so the usable data is only 127 bytes. And decoding a 127 char
base64 string fails... this is why the ntlm authentication fails in
certain cases (long strings)...
Acked-by: Joerg Willmann <joe@clnt.de>
URL: https://community.openvpn.net/openvpn/ticket/172
Signed-off-by: Gert Doering <gert@greenie.muc.de>
(cherry picked from commit f8ac53b98ed2513f1d80363b6fd2351f1b4ae511)
Diffstat (limited to 'src/openvpn/options.c')
0 files changed, 0 insertions, 0 deletions