]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ff5d59e) | patch
basic_getpwnam_auth: fail authentication on crypt() failures
authorAmos Jeffries <squid3@treenet.co.nz>
Thu, 19 Feb 2015 02:48:23 +0000 (18:48 -0800)
committerAmos Jeffries <squid3@treenet.co.nz>
Thu, 19 Feb 2015 02:48:23 +0000 (18:48 -0800)
commitb643cd09fe7732491eaababb64dfc1fca67d33c1
treee07c4383ac29ee3eec5148a0c9f95cafc3e7dbe0tree
parentff5d59eb0604ca143ebf703c5aa2ef54bf81970dcommit | diff
basic_getpwnam_auth: fail authentication on crypt() failures

... instead of crashing the helper.

"
Starting with glibc 2.17 (eglibc 2.17), crypt() fails with EINVAL (w/
NULL return) if the salt violates specifications. Additionally, on
FIPS-140 enabled Linux systems, DES or MD5 encrypted passwords passed to
crypt() fail with EPERM (w/ NULL return).
"
helpers/basic_auth/getpwnam/basic_getpwnam_auth.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git