mirror/openvpn3
0
0
Fork 0
mirror of https://github.com/OpenVPN/openvpn3.git synced 2024-09-20 12:12:15 +02:00
Code

Perform additional size-based sanitization on creds

Browse Source 
before passing to ManClientInstanceSend::auth_request()
This commit is contained in:
James Yonan 2015-06-27 16:34:41 -06:00
parent 9e50e8048a
commit 0ec1bf62ba
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
openvpn/server/servproto.hpp
View File

@ -306,10 +306,13 @@ namespace openvpn {
const std::string& peer_info,
const AuthCert::Ptr& auth_cert)
{
constexpr size_t MAX_USERNAME_SIZE = 256;
constexpr size_t MAX_PASSWORD_SIZE = 256;
if (get_management())
{
AuthCreds::Ptr auth_creds(new AuthCreds(Unicode::utf8_printable(username, Unicode::UTF8_FILTER),
Unicode::utf8_printable(password, Unicode::UTF8_FILTER),
AuthCreds::Ptr auth_creds(new AuthCreds(Unicode::utf8_printable(username, MAX_USERNAME_SIZE|Unicode::UTF8_FILTER),
Unicode::utf8_printable(password, MAX_PASSWORD_SIZE|Unicode::UTF8_FILTER),
Unicode::utf8_printable(peer_info, Unicode::UTF8_FILTER|Unicode::UTF8_PASS_FMT)));
ManLink::send->auth_request(auth_creds, auth_cert, peer_addr);
}