git.ipfire.org Git - thirdparty/freeradius-server.git/commit

]> git.ipfire.org Git - thirdparty/freeradius-server.git/commit

projects / thirdparty / freeradius-server.git / commit

author	Bjørn Mork <bjorn@mork.no>
	Tue, 27 Mar 2012 08:57:36 +0000 (10:57 +0200)
committer	Alan T. DeKok <aland@freeradius.org>
	Tue, 27 Mar 2012 14:04:20 +0000 (16:04 +0200)
commit	b596b306ef0078f1192c54b47eb345035fc5f9b2
tree	4f23b1c829c54c1e73e22b35621b556ebd35af40	tree \| snapshot
parent	ad296ad5e598d1f1ff049cf07d8b7bdd5f2a3466	commit \| diff

Decode encrypted VSAs in requests

Incoming CoA requests can contain encrypted VSAs. At least one
vendor is known to use this. These VSAs must be decrypted before
being proxied to enable the server to re-encrypt them using
the correct home server secret.

Fix by attempting to decode any encrypted request attribute using
a static vector of \0 bytes.

This also fixes debug logging of encrypted request attributes.

Signed-off-by: Bjørn Mork <bjorn@mork.no>

src/lib/radius.c

diff | blob | blame | history

Mirror of https://github.com/FreeRADIUS/freeradius-server.git

RSS Atom