git.ipfire.org Git - thirdparty/freeradius-server.git/commit

]> git.ipfire.org Git - thirdparty/freeradius-server.git/commit

projects / thirdparty / freeradius-server.git / commit

author	Bjørn Mork <bjorn@mork.no>
	Tue, 27 Mar 2012 08:57:36 +0000 (10:57 +0200)
committer	Alan T. DeKok <aland@freeradius.org>
	Tue, 27 Mar 2012 11:58:06 +0000 (13:58 +0200)
commit	2e4093d54ebb073bc674f0c19a587ebdb6856a4c
tree	fa38b559709f5f36cc5c67ab8d62dabbf0d24b62	tree \| snapshot
parent	d0873b3cf5d7687739cedc0620a1f065a9c5ed7e	commit \| diff

Decode encrypted VSAs in requests

Incoming CoA requests can contain encrypted VSAs. At least one
vendor is known to use this. These VSAs must be decrypted before
being proxied to enable the server to re-encrypt them using
the correct home server secret.

Fix by attempting to decode any encrypted request attribute using
a static vector of \0 bytes.

This also fixes debug logging of encrypted request attributes.

Signed-off-by: Bjørn Mork <bjorn@mork.no>

src/lib/radius.c

diff | blob | blame | history

Mirror of https://github.com/FreeRADIUS/freeradius-server.git

RSS Atom