ntlm_fake_auth: fix null pointer dereference

author Amos Jeffries <squid3@treenet.co.nz>

Thu, 8 Jan 2015 22:47:22 +0000 (14:47 -0800)

committer Amos Jeffries <squid3@treenet.co.nz>

Thu, 8 Jan 2015 22:47:22 +0000 (14:47 -0800)
author Amos Jeffries <squid3@treenet.co.nz>
Thu, 8 Jan 2015 22:47:22 +0000 (14:47 -0800)
committer Amos Jeffries <squid3@treenet.co.nz>
Thu, 8 Jan 2015 22:47:22 +0000 (14:47 -0800)
diff --git a/helpers/ntlm_auth/fake/ntlm_fake_auth.cc b/helpers/ntlm_auth/fake/ntlm_fake_auth.cc

index 06375d59b91b06405e0b0506ddfed4f8c2ca7f49..689775e8931436803347e46d19fa5f1acc813ad3 100644 (file)
--- a/helpers/ntlm_auth/fake/ntlm_fake_auth.cc
+++ b/helpers/ntlm_auth/fake/ntlm_fake_auth.cc
@@ -137,7 +137,6 @@ main(int argc, char *argv[])
      int decodedLen;
      char user[NTLM_MAX_FIELD_LENGTH], domain[NTLM_MAX_FIELD_LENGTH];
      char *p;
-    ntlmhdr *packet = NULL;
      char helper_command[3];
      int len;
  
@@ -157,6 +156,7 @@ main(int argc, char *argv[])
          if ((p = strchr(buf, '\n')) != NULL)
              *p = '\0';      /* strip \n */
          buflen = strlen(buf);   /* keep this so we only scan the buffer for \0 once per loop */
+        ntlmhdr *packet;
          struct base64_decode_ctx ctx;
          base64_decode_init(&ctx);
          size_t dstLen = 0;
@@ -182,7 +182,7 @@ main(int argc, char *argv[])
              char nonce[NTLM_NONCE_LEN];
              ntlm_challenge chal;
              ntlm_make_nonce(nonce);
-            if (buflen > 3) {
+            if (buflen > 3 && packet) {
                  ntlm_negotiate *nego = (ntlm_negotiate *)packet;
                  ntlm_make_challenge(&chal, authenticate_ntlm_domain, NULL, nonce, NTLM_NONCE_LEN, nego->flags);
              } else {
author	Amos Jeffries <squid3@treenet.co.nz>
	Thu, 8 Jan 2015 22:47:22 +0000 (14:47 -0800)
committer	Amos Jeffries <squid3@treenet.co.nz>
	Thu, 8 Jan 2015 22:47:22 +0000 (14:47 -0800)